Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

No wi-fi, no internet via ethernet. Cannot do updates.

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

No wi-fi, no internet via ethernet. Cannot do updates.

Unread postby lenw » January 15th, 2012, 4:36 am

Downloaded dds to another computer and ran on non internet netbook. Here are the results.
The attach.txt file said to not send it unless you asked for it.
Thanks for your help!

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_18
Run by New User at 0:30:59 on 2012-01-15
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1014.554 [GMT -8:00]
.
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\QSTART.SYS\config\DVMExportService.exe
C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
C:\Program Files\Motorola\MotoHelper\MotoHelperService.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\Program Files\Lenovo\OneKey App\System Repair\UpdateMonitor.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Motorola\MotoHelper\MotoHelperAgent.exe
C:\Program Files\Lenovo\Energy Management\utility.exe
C:\Program Files\Lenovo\Energy Management\Energy Management.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.ask.com?o=16794S&l=dis
mStart Page = about:blank
uInternet Settings,ProxyOverride = <local>;192.168.*.*;*.local
uInternet Settings,ProxyServer = http=127.0.0.1:6522;https=;ftp=;gopher=;socks=
uURLSearchHooks: H - No File
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: GuardId.MSIEBrowser.BHO: {5b0a01d2-b8a0-4e56-9e6b-cba0ef4b4eb5} - mscoree.dll
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [Persistence] "c:\windows\system32\igfxpers.exe"
mRun: [HotKeysCmds] "c:\windows\system32\hkcmd.exe"
mRun: [EnergyUtility] "c:\program files\lenovo\energy management\utility.exe"
mRun: [Energy Management] c:\program files\lenovo\energy management\Energy Management.exe
IE: Append Link Target to Existing PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683}
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC} - c:\program files\java\jre6\bin\jp2iexp.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Notify: igfxcui - igfxdev.dll
AppInit_DLLs: acaptuser32.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
Hosts: 127.0.0.1 www.spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\andrew\application data\mozilla\firefox\profiles\8vomc897.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - prefs.js: keyword.URL - hxxp://search.search-go.net/?sid=10101052100&s=
FF - plugin: c:\documents and settings\andrew\local settings\application data\yahoo!\browserplus\2.8.1\plugins\npybrowserplus_2.8.1.dll
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\java\jre6\lib\deploy\jqs\ff
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: Tweak Network: {DAD0F81A-CF67-4eed-98D6-26F6E47274CA} - %profile%\extensions\{DAD0F81A-CF67-4eed-98D6-26F6E47274CA}
FF - Ext: Download Statusbar: {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389} - %profile%\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}
FF - Ext: JSONView: jsonview@brh.numbera.com - %profile%\extensions\jsonview@brh.numbera.com
.
---- FIREFOX POLICIES ----
FF - user.js: browser.search.selectedEngine - Google
FF - user.js: browser.search.order.1 - Google
FF - user.js: keyword.URL - hxxp://search.search-go.net/?sid=10101052100&s=
============= SERVICES / DRIVERS ===============
.
R2 DvmMDES;DeviceVM Meta Data Export Service;c:\qstart.sys\config\DVMExportService.exe [2009-3-26 315392]
R2 FreeAgentGoNext Service;Seagate Service;c:\program files\seagate\seagatemanager\sync\FreeAgentService.exe [2009-12-18 189736]
R2 MotoHelper;MotoHelper Service;c:\program files\motorola\motohelper\MotoHelperService.exe [2010-12-2 218432]
R2 System_Repair_UpdateMonitor;System Repair Windows Update Monitor;c:\program files\lenovo\onekey app\system repair\UpdateMonitor.exe [2009-8-19 430080]
R2 tvtumon;tvtumon;c:\windows\system32\drivers\tvtumon.sys [2009-8-19 48192]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver;c:\windows\system32\drivers\AcpiVpc.sys [2009-8-23 9472]
R3 easytether;easytether;c:\windows\system32\drivers\easytthr.sys [2011-8-6 17296]
S0 bdqqm;bdqqm;c:\windows\system32\drivers\bdqqm.sys [2010-8-11 0]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 Ias;Network Security;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
S2 nlsX86cc;Nalpeiron Licensing Service V6;c:\windows\system32\nlssrv32.exe [2010-10-3 63488]
S2 SgtSch2Svc;Seagate Scheduler2 Service; [x]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2009-8-19 1684736]
S3 DsiUsb;DsiUsb; [x]
S3 motandroidusb;Mot ADB Interface Driver;c:\windows\system32\drivers\motoandroid.sys [2011-2-4 25856]
S3 motccgp;Motorola USB Composite Device Driver;c:\windows\system32\drivers\motccgp.sys [2011-2-4 20224]
S3 motccgpfl;MotCcgpFlService;c:\windows\system32\drivers\motccgpfl.sys [2011-2-4 8320]
S3 motusbdevice;Motorola USB Dev Driver;c:\windows\system32\drivers\motusbdevice.sys [2011-2-4 9472]
S3 NAVENG;NAVENG;\??\c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\norton\definitions\virusdefs\20080829.024\naveng.sys --> c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\norton\definitions\virusdefs\20080829.024\NAVENG.SYS [?]
S3 NAVEX15;NAVEX15;\??\c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\norton\definitions\virusdefs\20080829.024\navex15.sys --> c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\norton\definitions\virusdefs\20080829.024\NAVEX15.SYS [?]
S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [2010-4-15 27064]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUStor.sys [2009-8-19 165888]
S3 RtsUIR;Realtek IR Driver; [x]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2004-8-4 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
S3 WSVD;WSVD;c:\windows\system32\drivers\WSVD.sys [2009-8-19 81192]
S4 Norton Internet Security;Norton Internet Security; [x]
S4 WebUpdate4;Web Update Wizard Service V4;c:\windows\system32\WebUpdateSvc4.exe [2009-1-8 262360]
.
=============== File Associations ===============
.
regfile="regedit.exe" "%1"
.txt=
.
=============== Created Last 30 ================
.
2012-01-15 07:24:43 -------- d--h--w- C:\dvmexp
2011-12-27 21:33:17 -------- d-----w- c:\program files\Bonjour
.
==================== Find3M ====================
.
.
============= FINISH: 0:31:44.95 ===============
lenw
Active Member
 
Posts: 11
Joined: January 15th, 2012, 4:13 am
Advertisement
Register to Remove

Re: No wi-fi, no internet via ethernet. Cannot do updates.

Unread postby mambass » January 17th, 2012, 11:11 am

Hi lenw, :)

Welcome to the forum.

My nickname is mambass and I'll be helping you with any malware problems.

Before we begin...please read and follow these important guidelines so things will proceed smoothly.

  1. If you haven't done so already, please read this topic ALL USERS OF THIS FORUM MUST READ THIS FIRST where the conditions for receiving help here are explained.
  2. The instructions being given are for YOUR computer and system only!
    Using these instructions on a different computer can cause damage to that computer and possibly render it inoperable!
  3. Please read all instructions carefully before executing them and perform the steps in the order given.
    lf you have any questions or problems executing these instructions then <<STOP>> do not proceed but rather post back with the question or problem.
  4. Your security programs may give warnings for some of the tools I will ask you to use. Be assured that any links I give are safe.
  5. You must have Administrator rights permissions for this computer.
  6. DO NOT run any other fix or removal tools unless instructed to do so!
  7. DO NOT install any other software (or hardware) during the cleaning process. This adds more items to be researched.
  8. Only post your problem at one (1) help site. Applying fixes from multiple help sites can cause problems.
  9. Only reply to this thread. Do not start another thread.
  10. The absence of symptoms does not imply the absence of malware. Please continue responding until I give you the "All Clean".
  11. You might want to place a link to this thread in your Favorites/Bookmarks for easy access.
  12. No Reply Within 3 Days Will Result In Your Topic Being Closed! Please let me know in advance if you will not be able to reply within this time limit.
  13. The logs I request can take a while to research so please be patient.
  14. I am currently in training at Malware Removal University. Each set of instructions that I provide will be reviewed by a faculty member before being posted to this thread. This process may add a small amount of time to my replies. On the positive side you will have two people working together to resolve your malware issues.
Please be aware that removing Malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection. I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system or to necessitate you taking your computer to a repair shop.

Because of this I advise you to backup any personal files and folders before you start.

How to back up or transfer your data on a Windows-based computer

-----------------------------------------------------------

I am currently reviewing your log and will return as soon as possible with additional instructions.

Meanwhile, please post the contents of the Attach.txt log.

Thanks,

mambass
User avatar
mambass
Retired Graduate
 
Posts: 826
Joined: April 23rd, 2010, 9:26 am

Re: No wi-fi, no internet via ethernet. Cannot do updates.

Unread postby mambass » January 18th, 2012, 10:04 am

Hi lenw, :)

Until we regain Internet connectivity on the target computer, you'll need to download all tools to a clean computer with Internet connectivity and then transfer the file(s) over to the same folder on the computer that is being diagnosed (e.g., if we download a tool to the Desktop then that file should be copied to the Desktop on the affected computer). Similarly, any reports generated on the affected computer will need to be transferred back to the computer that has Internet connectivity in order to reply to this post.

It appears that you are not currently running any Anti-Virus software. Once we regain Internet access, please do not surf the web until I have provided instructions for the installation of Anti-Virus software.

  1. Run a Scan with OTL
    1. Click here to download OTL.exe by Old Timer and save it to your Desktop.
    2. Double-click the OTL icon on your Desktop to run the program.
    3. Check the boxes labeled :
      • Scan All Users
      • LOP check
      • Purity check
      • Extra Registry > Use SafeList
    4. Make sure all other windows are closed so that it can run uninterrupted.
    5. Click on the Run Scan button at the top left hand corner. Do not change any settings unless otherwise told to do so. The scan won't take long.
    6. When the scan completes, it will open two notepad windows. OTL.Txt will be displayed and Extras.Txt will be minimized. These are saved in the same location as OTL. (desktop)
    7. Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post them as a reply. Use separate replies if more convenient.

  2. IPConfig
    1. Connect your computer to the network using an Ethernet cable and enable your Wi-Fi adapter, then wait 1 minute.
    2. Click Start > Run to display the Run command window.
    3. Copy the command in the box below (do not include the word "Code:") and paste or type it into the Run text box and then click the OK button. A black command window will open briefly and will then close.
      Code: Select all
       cmd /c ipconfig /all > "%userprofile%\desktop\ipconfigexport.txt" 
    4. File ipconfigexport.txt should appear on your Desktop. Include the contents of this file in your reply.

  3. Network Hardware Configuration
    Please identify all hardware external to your computer that is used to connect your computer to the Internet (e.g., routers, modems, etc.). Please also identify the type of Internet connection that is being used (e.g., DSL, Cable Modem, Dialup, etc.).

  4. Question about ProxyServer entry
    Can you please review the entry in the box below and let me know if this is something that you created and, if so, why?
    Also, please let me know if you have "Gobby" installed (if you don't know what that is then you are not using it).
    Code: Select all
     uInternet Settings,ProxyServer = http=127.0.0.1:6522;https=;ftp=;gopher=;socks= 


Please include in your reply (you may post logs separately if more convenient):
  1. The text of any error messages and/or a description of any problems you encountered while performing these steps.
  2. The contents of the OTL.txt and Extras.txt logs.
  3. The contents of the ipconfigexport.txt file.
  4. A description of your network hardware configuration.
  5. The answer to my questions concerning the ProxyServer entry.


mambass
User avatar
mambass
Retired Graduate
 
Posts: 826
Joined: April 23rd, 2010, 9:26 am

Re: No wi-fi, no internet via ethernet. Cannot do updates.

Unread postby lenw » January 19th, 2012, 2:30 pm

OTL logfile created on: 1/19/2012 10:17:00 AM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Andrew\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1013.88 Mb Total Physical Memory | 680.89 Mb Available Physical Memory | 67.16% Memory free
2.38 Gb Paging File | 2.22 Gb Available in Paging File | 93.22% Paging File free
Paging file location(s): [Binary data over 100 bytes]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 105.10 Gb Total Space | 71.55 Gb Free Space | 68.08% Space Free | Partition Type: NTFS
Drive D: | 29.19 Gb Total Space | 21.55 Gb Free Space | 73.83% Space Free | Partition Type: NTFS

Computer Name: ANDREW | User Name: New User | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/01/19 10:08:50 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Andrew\Desktop\OTL.exe
PRC - [2010/12/02 11:45:18 | 000,218,432 | ---- | M] () -- C:\Program Files\Motorola\MotoHelper\MotoHelperService.exe
PRC - [2010/12/02 11:45:06 | 000,664,896 | ---- | M] () -- C:\Program Files\Motorola\MotoHelper\MotoHelperAgent.exe
PRC - [2010/09/28 21:48:52 | 000,315,392 | -H-- | M] (DeviceVM) -- C:\QSTART.SYS\config\DVMExportService.exe
PRC - [2009/12/18 11:25:16 | 000,189,736 | ---- | M] (Seagate Technology LLC) -- C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
PRC - [2009/01/04 11:57:28 | 004,462,464 | ---- | M] (Lenovo(Beijing)Limited) -- C:\Program Files\Lenovo\Energy Management\utility.exe
PRC - [2008/12/26 09:05:46 | 001,277,952 | ---- | M] (Lenovo (Beijing) Limited) -- C:\Program Files\Lenovo\Energy Management\Energy Management.exe
PRC - [2008/09/27 10:00:24 | 000,430,080 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\OneKey App\System Repair\UpdateMonitor.exe
PRC - [2008/04/13 13:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (No Company Name) ==========

MOD - [2010/12/02 11:45:18 | 000,218,432 | ---- | M] () -- C:\Program Files\Motorola\MotoHelper\MotoHelperService.exe
MOD - [2010/12/02 11:45:06 | 000,664,896 | ---- | M] () -- C:\Program Files\Motorola\MotoHelper\MotoHelperAgent.exe
MOD - [2010/11/16 13:52:06 | 000,761,856 | ---- | M] () -- C:\WINDOWS\system32\bcm1xsup.dll
MOD - [2009/08/16 17:06:02 | 000,141,312 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2008/05/21 16:33:22 | 000,045,056 | ---- | M] () -- C:\Program Files\Lenovo\Energy Management\KbdHook.dll
MOD - [2008/01/03 18:23:06 | 000,167,936 | ---- | M] () -- C:\Program Files\Lenovo\OneKey App\System Repair\LenovoAPI.dll
MOD - [2005/06/24 02:05:02 | 000,045,056 | ---- | M] () -- C:\Program Files\Lenovo\Energy Management\HookLib.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (SgtSch2Svc)
SRV - File not found [Disabled | Stopped] -- -- (Norton Internet Security)
SRV - File not found [On_Demand | Stopped] -- -- (hpqcxs08)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2010/12/02 11:45:18 | 000,218,432 | ---- | M] () [Auto | Running] -- C:\Program Files\Motorola\MotoHelper\MotoHelperService.exe -- (MotoHelper)
SRV - [2010/10/03 14:16:26 | 000,063,488 | ---- | M] (Nalpeiron Ltd.) [Auto | Stopped] -- C:\WINDOWS\system32\nlssrv32.exe -- (nlsX86cc)
SRV - [2010/09/28 21:48:52 | 000,315,392 | -H-- | M] (DeviceVM) [Auto | Running] -- C:\QSTART.SYS\config\DVMExportService.exe -- (DvmMDES)
SRV - [2009/12/24 19:34:57 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009/12/18 11:25:16 | 000,189,736 | ---- | M] (Seagate Technology LLC) [Auto | Running] -- C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe -- (FreeAgentGoNext Service)
SRV - [2009/01/08 01:34:10 | 000,262,360 | ---- | M] (Data Perceptions / PowerProgrammer) [Disabled | Stopped] -- C:\WINDOWS\system32\WebUpdateSvc4.exe -- (WebUpdate4)
SRV - [2008/09/27 10:00:24 | 000,430,080 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\OneKey App\System Repair\UpdateMonitor.exe -- (System_Repair_UpdateMonitor)


========== Driver Services (SafeList) ==========

DRV - [2011/05/22 14:42:52 | 000,017,296 | ---- | M] (Mobile Stream) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\easytthr.sys -- (easytether)
DRV - [2010/11/16 13:52:06 | 002,699,264 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2010/09/29 18:12:46 | 000,020,224 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motccgp.sys -- (motccgp)
DRV - [2010/08/12 07:04:14 | 000,000,000 | ---- | M] () [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\bdqqm.sys -- (bdqqm)
DRV - [2010/02/11 04:02:15 | 000,226,880 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2010/01/25 19:56:44 | 000,009,472 | ---- | M] (Motorola Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motusbdevice.sys -- (motusbdevice)
DRV - [2009/12/30 11:20:54 | 000,027,064 | ---- | M] (VS Revo Group) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\revoflt.sys -- (Revoflt)
DRV - [2009/07/10 13:01:06 | 000,025,856 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motoandroid.sys -- (motandroidusb)
DRV - [2009/04/17 14:26:16 | 001,226,792 | ---- | M] (Bison Electronics. Inc. ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\BisonC07.sys -- (Cam5607)
DRV - [2009/04/09 19:33:14 | 000,165,888 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV - [2009/03/26 22:33:42 | 000,130,816 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2009/03/24 03:35:00 | 005,056,000 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2009/01/29 17:18:00 | 000,008,320 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motccgpfl.sys -- (motccgpfl)
DRV - [2008/08/28 17:39:08 | 000,048,192 | ---- | M] (Lenovo) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\tvtumon.sys -- (tvtumon)
DRV - [2008/08/05 04:10:12 | 001,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2008/01/11 13:58:42 | 000,009,472 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AcpiVpc.sys -- (ACPIVPC)
DRV - [2008/01/10 09:59:08 | 000,081,192 | ---- | M] (CyberLink) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WSVD.sys -- (WSVD)
DRV - [2007/11/02 15:51:30 | 000,006,400 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motswch.sys -- (MotoSwitchService)
DRV - [2007/08/06 16:15:07 | 000,033,052 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2007/05/23 00:33:58 | 000,128,104 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WimFltr.sys -- (WimFltr)
DRV - [2006/04/04 13:20:37 | 000,009,344 | ---- | M] (Hewlett Packard) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hpfxbulk.sys -- (HPFXBULK)
DRV - [2006/01/03 23:41:48 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2004/08/03 22:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
DRV - [2004/02/04 10:27:56 | 000,049,536 | ---- | M] (Texas Instruments Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tiehdusb.sys -- (TIEHDUSB)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/ [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.lenovo.com
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:6522

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.lenovo.com
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:6522

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.lenovo.com
IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.lenovo.com
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-3576157772-505033533-1922330814-1009\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com?o=16794S&l=dis
IE - HKU\S-1-5-21-3576157772-505033533-1922330814-1009\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - No CLSID value found
IE - HKU\S-1-5-21-3576157772-505033533-1922330814-1009\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKU\S-1-5-21-3576157772-505033533-1922330814-1009\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>;192.168.*.*;*.local
IE - HKU\S-1-5-21-3576157772-505033533-1922330814-1009\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:6522;https=;ftp=;gopher=;socks=

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Google"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.com/"
FF - prefs.js..extensions.enabledItems: {1280606b-2510-4fe0-97ef-9b5a22eafe41}:1.0.9
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {DAD0F81A-CF67-4eed-98D6-26F6E47274CA}:1.4.2
FF - prefs.js..extensions.enabledItems: {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}:0.9.7
FF - prefs.js..extensions.enabledItems: jsonview@brh.numbera.com:0.5
FF - prefs.js..keyword.URL: "http://search.search-go.net/?sid=10101052100&s="

FF - user.js..browser.search.selectedEngine: "Google"
FF - user.js..browser.search.order.1: "Google"
FF - user.js..keyword.URL: "http://search.search-go.net/?sid=10101052100&s="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKCU\Software\MozillaPlugins\@yahoo.com/BrowserPlus,version=2.8.1: C:\Documents and Settings\Andrew\Local Settings\Application Data\Yahoo!\BrowserPlus\2.8.1\Plugins\npybrowserplus_2.8.1.dll (Yahoo! Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/02/04 15:20:53 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/01/15 00:05:00 | 000,000,000 | ---D | M]

[2009/12/13 11:24:32 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Andrew\Application Data\Mozilla\Extensions
[2009/12/13 11:24:32 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Andrew\Application Data\Mozilla\Extensions\mozswing@mozswing.org
[2010/11/21 20:38:38 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Andrew\Application Data\Mozilla\Firefox\Profiles\8vomc897.default\extensions
[2010/01/16 10:35:52 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Andrew\Application Data\Mozilla\Firefox\Profiles\8vomc897.default\extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe41}
[2010/04/26 18:05:35 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Andrew\Application Data\Mozilla\Firefox\Profiles\8vomc897.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/07/28 22:52:58 | 000,000,000 | ---D | M] (Download Statusbar) -- C:\Documents and Settings\Andrew\Application Data\Mozilla\Firefox\Profiles\8vomc897.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}
[2010/02/12 17:59:50 | 000,000,000 | ---D | M] (Tweak Network) -- C:\Documents and Settings\Andrew\Application Data\Mozilla\Firefox\Profiles\8vomc897.default\extensions\{DAD0F81A-CF67-4eed-98D6-26F6E47274CA}
[2010/08/10 09:48:56 | 000,000,000 | ---D | M] (JSONView) -- C:\Documents and Settings\Andrew\Application Data\Mozilla\Firefox\Profiles\8vomc897.default\extensions\jsonview@brh.numbera.com
[2011/08/13 14:27:25 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/03/07 21:20:29 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF

O1 HOSTS File: ([2010/05/10 21:18:49 | 000,393,544 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\HOSTS
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 13590 more lines...
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKU\S-1-5-21-3576157772-505033533-1922330814-1009\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Energy Management] C:\Program Files\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited)
O4 - HKLM..\Run: [EnergyUtility] C:\Program Files\Lenovo\Energy Management\utility.exe (Lenovo(Beijing)Limited)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: AllowLegacyWebView = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: AllowUnhashedWebView = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 60
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-3576157772-505033533-1922330814-1009\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Append to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\npjpi160_02.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - Reg Error: Value error. File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O20 - AppInit_DLLs: (acaptuser32.dll) -C:\WINDOWS\System32\acaptuser32.dll (Adobe Systems Incorporated)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -Explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Andrew\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Andrew\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/07/28 10:06:14 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{386bba07-a5dd-11df-aa8f-002622081479}\Shell\AutoRun\command - "" = E:\setup.exe
O33 - MountPoints2\{dd68ef04-f02c-11de-a9aa-002622081479}\Shell - "" = AutoRun
O33 - MountPoints2\{dd68ef04-f02c-11de-a9aa-002622081479}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{dd68ef04-f02c-11de-a9aa-002622081479}\Shell\AutoRun\command - "" = E:\KIS2010.EXE
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/01/19 10:11:40 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Andrew\Desktop\OTL.exe
[2012/01/15 00:46:51 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Andrew\Recent
[2012/01/15 00:31:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Videos
[2012/01/15 00:31:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music
[2012/01/15 00:30:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Andrew\My Documents\My Videos
[2012/01/14 23:24:43 | 000,000,000 | -H-D | C] -- C:\dvmexp
[2011/12/27 13:33:17 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/01/19 10:08:50 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Andrew\Desktop\OTL.exe
[2012/01/19 10:05:13 | 000,000,298 | -H-- | M] () -- C:\dvmexp.idx
[2012/01/15 00:53:45 | 000,488,286 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012/01/15 00:53:45 | 000,082,918 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012/01/15 00:48:04 | 000,000,056 | -HS- | M] () -- C:\_PartitionInfo
[2012/01/15 00:47:56 | 000,002,048 | ---- | M] () -- C:\WINDOWS\bootstat.dat
[2012/01/14 23:52:00 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011/12/27 14:13:28 | 000,000,221 | RHS- | M] () -- C:\boot.ini
[2011/12/27 13:36:41 | 000,001,553 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/01/14 23:23:40 | 000,000,298 | -H-- | C] () -- C:\dvmexp.idx
[2011/08/13 15:20:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Irremote.ini
[2011/08/13 14:15:24 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\bcm1xsup.dll
[2011/08/13 14:15:24 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\preflib.dll
[2011/08/13 14:15:24 | 000,025,088 | ---- | C] () -- C:\WINDOWS\System32\WLTRYSVC.EXE
[2010/10/03 14:16:26 | 000,002,560 | ---- | C] () -- C:\WINDOWS\System32\HDREfexProFC32.dll
[2010/08/25 21:36:06 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2010/08/11 11:04:45 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\drivers\bdqqm.sys
[2010/08/09 23:36:18 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\System Image Utility
[2010/08/09 23:36:18 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\Andrew\Application Data\Synth Basics
[2010/08/09 23:29:25 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLbx.DAT
[2010/05/31 09:16:28 | 000,000,040 | ---- | C] () -- C:\Documents and Settings\Andrew\Application Data\SQLite3.dll
[2010/04/11 16:58:57 | 000,000,990 | -HS- | C] () -- C:\Documents and Settings\Andrew\Application Data\systemfl.$dk
[2010/02/01 19:29:22 | 000,000,410 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI
[2010/02/01 19:29:22 | 000,000,034 | ---- | C] () -- C:\WINDOWS\System32\BD2040.DAT
[2010/01/15 05:27:56 | 000,295,936 | ---- | C] () -- C:\WINDOWS\System32\Viveza2FC32.dll
[2010/01/10 14:37:55 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\Andrew\Local Settings\Application Data\fusioncache.dat
[2010/01/10 12:25:54 | 000,000,394 | ---- | C] () -- C:\WINDOWS\hpbvspst.ini
[2010/01/10 12:25:34 | 000,001,575 | ---- | C] () -- C:\WINDOWS\hpbvnstp.ini
[2009/12/30 07:45:27 | 000,000,149 | ---- | C] () -- C:\WINDOWS\cncscore.ini
[2009/12/27 20:11:17 | 000,000,016 | ---- | C] () -- C:\WINDOWS\popcinfo.dat
[2009/12/27 11:02:01 | 000,000,141 | ---- | C] () -- C:\Documents and Settings\Andrew\Application Data\default.pls
[2009/12/25 01:23:07 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009/12/24 16:57:12 | 000,000,031 | ---- | C] () -- C:\WINDOWS\WebUpdateSvc4.INI
[2009/12/24 16:51:04 | 000,017,920 | ---- | C] () -- C:\WINDOWS\System32\astro32.dll
[2009/12/22 14:01:18 | 000,047,628 | ---- | C] () -- C:\WINDOWS\System32\wuwuninst.exe
[2009/12/15 16:49:39 | 000,150,528 | ---- | C] () -- C:\Documents and Settings\Andrew\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/12/15 16:25:56 | 000,080,292 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2009/12/13 10:46:55 | 006,028,320 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox.dat
[2009/12/13 10:46:55 | 000,778,272 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox2.dat
[2009/12/13 10:07:51 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009/12/13 04:38:37 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009/08/23 02:56:38 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2009/08/23 02:46:27 | 009,338,880 | ---- | C] () -- C:\WINDOWS\System32\Facev.dll
[2009/08/23 02:46:27 | 000,491,520 | ---- | C] () -- C:\WINDOWS\System32\picn.dll
[2009/08/23 02:46:26 | 000,208,896 | ---- | C] () -- C:\WINDOWS\System32\image.dll
[2009/08/23 02:46:26 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\FunFrm.dll
[2009/08/23 02:46:25 | 000,655,360 | ---- | C] () -- C:\WINDOWS\System32\EncIcons.dll
[2009/08/23 02:46:25 | 000,507,904 | ---- | C] () -- C:\WINDOWS\System32\SimpleExt.dll
[2009/08/23 02:46:25 | 000,241,752 | ---- | C] () -- C:\WINDOWS\System32\IcnOvrly.dll
[2009/08/23 02:46:24 | 001,564,672 | ---- | C] () -- C:\WINDOWS\System32\MainOp.dll
[2009/08/23 02:46:24 | 000,221,184 | ---- | C] () -- C:\WINDOWS\System32\SetDev.dll
[2009/08/23 02:46:24 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\VideoOp.dll
[2009/08/23 02:46:23 | 009,502,720 | ---- | C] () -- C:\WINDOWS\System32\FaceVerify.dll
[2009/08/23 02:46:23 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\DevFilt.dll
[2009/08/23 02:46:22 | 001,974,272 | ---- | C] () -- C:\WINDOWS\System32\Imagereog.dll
[2009/08/23 02:46:22 | 001,167,360 | ---- | C] () -- C:\WINDOWS\System32\PicNotify.dll
[2009/08/23 02:46:22 | 000,974,848 | ---- | C] () -- C:\WINDOWS\System32\Apblend.dll
[2009/08/23 02:46:22 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\Momo.dll
[2009/08/23 02:46:18 | 000,241,664 | ---- | C] () -- C:\WINDOWS\System32\3DImageRenderer.dll
[2009/08/23 02:43:45 | 000,015,190 | ---- | C] () -- C:\WINDOWS\M3000Twn.ini
[2009/08/19 21:17:39 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4926.dll
[2009/08/19 20:16:54 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll
[2009/08/19 20:16:05 | 000,000,008 | ---- | C] () -- C:\WINDOWS\System32\drivers\rtkhdaud.dat
[2009/01/08 01:34:12 | 000,418,008 | ---- | C] () -- C:\WINDOWS\System32\WuWUI.exe
[2008/11/07 17:08:20 | 000,362,029 | ---- | C] () -- C:\WINDOWS\System32\sqlite3.dll
[2006/07/28 10:18:05 | 000,002,048 | ---- | C] () -- C:\WINDOWS\bootstat.dat
[2006/07/28 10:03:20 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2006/07/28 09:57:44 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2006/07/28 09:56:26 | 003,685,424 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2005/03/29 12:58:46 | 000,001,650 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2004/08/04 12:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004/08/04 12:00:00 | 000,488,286 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004/08/04 12:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004/08/04 12:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004/08/04 12:00:00 | 000,082,918 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004/08/04 12:00:00 | 000,049,156 | ---- | C] () -- C:\WINDOWS\System32\certstore.dat
[2004/08/04 12:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004/08/04 12:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004/08/04 12:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004/08/04 12:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004/08/04 12:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2002/09/18 00:45:00 | 000,119,808 | ---- | C] () -- C:\WINDOWS\lsb_un20.exe
[2001/10/10 07:36:22 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2001/10/10 07:35:30 | 000,004,492 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[1999/01/12 11:40:22 | 000,029,184 | ---- | C] () -- C:\WINDOWS\rmud.exe

========== LOP Check ==========

[2009/12/15 22:05:14 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\DDNI
[2010/01/09 21:58:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\JCreator
[2010/12/05 00:20:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\regid.1986-12.com.adobe
[2010/11/26 09:27:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Seagate
[2010/01/18 01:01:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SecTaskMan
[2011/06/08 21:36:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2010/11/22 15:56:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Update
[2010/06/24 22:50:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2009/12/13 10:45:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2010/04/18 10:59:07 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\Andrew\Application Data\.#
[2010/08/10 10:24:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\19AAC327B1A6A822E7DBC56C65252347
[2009/12/15 23:21:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\Auslogics
[2010/05/08 16:40:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\com.adobe.bridge.PublishPanel
[2010/01/25 19:05:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2009/12/13 12:29:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\Deusty
[2010/11/30 21:56:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\FrostWire
[2010/05/10 00:00:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\ImgBurn
[2010/01/09 21:58:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\JCreator
[2010/11/26 09:23:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\Leadertech
[2011/06/07 19:36:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\LimeWire
[2010/11/26 11:16:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\Memeo
[2010/08/09 23:37:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\Nikon
[2010/06/15 22:13:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\Power Sound Editor Free
[2010/02/09 21:27:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\Seagate
[2010/05/10 22:12:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\StageManager
[2010/06/07 19:54:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2009/12/30 20:04:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\Styler
[2012/01/14 23:50:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\uTorrent
[2009/08/23 02:40:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Application Data\ID Vault
[2009/08/23 02:40:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\ID Vault
[2010/11/22 21:07:00 | 000,000,444 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{B547770A-D49E-49DB-BA57-6475FEFA3C5D}.job

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 178 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:54D4173A
@Alternate Data Stream - 156 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D1B5B4F1
@Alternate Data Stream - 133 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:07BF512B

< End of report >

OTL Extras logfile created on: 1/19/2012 10:17:00 AM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Andrew\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1013.88 Mb Total Physical Memory | 680.89 Mb Available Physical Memory | 67.16% Memory free
2.38 Gb Paging File | 2.22 Gb Available in Paging File | 93.22% Paging File free
Paging file location(s): [Binary data over 100 bytes]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 105.10 Gb Total Space | 71.55 Gb Free Space | 68.08% Space Free | Partition Type: NTFS
Drive D: | 29.19 Gb Total Space | 21.55 Gb Free Space | 73.83% Space Free | Partition Type: NTFS

Computer Name: ANDREW | User Name: New User | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
.js [@ = Reg Error: Value error.] -- Reg Error: Key error. File not found
.txt [@ = Reg Error: Value error.] -- Reg Error: Key error. File not found

[HKEY_USERS\S-1-5-21-3576157772-505033533-1922330814-1009\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"3389:TCP" = 3389:TCP:*:Enabled:@xpsp2res.dll,-22009
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- (Lime Wire, LLC)
"C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe" = C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit -- (Apple Inc.)
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{024521CF-C07E-4F8E-8481-0D75695E03AF}" = PxMergeModule
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{121634B0-2F4B-11D3-ADA3-00C04F52DD52}" = Windows Installer Clean Up
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{2614F54E-A828-49FA-93BA-45A3F756BFAA}" = 32 Bit HP CIO Components Installer
"{26A24AE4-039D-4CA4-87B4-2F83216016F0}" = Java(TM) 6 Update 16
"{26A24AE4-039D-4CA4-87B4-2F83216018FF}" = Java(TM) 6 Update 18
"{3248F0A8-6813-11D6-A77B-00B0D0160020}" = Java(TM) 6 Update 2
"{32A3A4F4-B792-11D6-A78A-00B0D0160160}" = Java(TM) SE Development Kit 6 Update 16
"{343666E2-A059-48AC-AD67-230BF74E2DB2}" = Apple Application Support
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{357B11ED-5417-4CF3-8EB2-386299BC30E0}" = Lenovo Quick Start
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3A6829EF-0791-4FDD-9382-C690DD0821B9}" = Adobe Flash Player 10 ActiveX
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3F5CFC1C-653B-4B22-9153-2BDDF2E03C0E}" = Seagate Manager Installer
"{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4BB1DCED-84D3-47F9-B718-5947E904593E}" = Lenovo EasyCamera
"{50A0893D-47D8-48E0-A7E8-44BCD7E4422E}" = Microsoft SQL Server Native Client
"{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}" = Microsoft SQL Server Setup Support Files (English)
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{606E5C0D-6039-42A7-988E-9D51DE773AFF}" = hppFonts
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1" = Revo Uninstaller Pro 2.2.3
"{6E9EF98E-259E-416D-B5F8-0ABDB99942CE}" = Adobe Flash Player 10 ActiveX
"{6F3D2F66-F050-45E3-BEB1-6523FE6D6690}" = MotoHelper MergeModules
"{717E0AD5-91EB-459F-AB8B-1B5219BAF7CE}" = Lenovo System Repair - Windows Update Monitor
"{7216871F-869E-437C-B9BF-2A13F2DCE63F}_is1" = Auslogics BoostSpeed
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{74D2638F-E20C-4EC0-97AA-6B6ECACA5D5C}" = Motorola Mobile Drivers Installation 4.8.0
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{8153ED9A-C94A-426E-9880-5E6775C08B62}" = Apple Mobile Device Support
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{87441A59-5E64-4096-A170-14EFE67200C3}" = Picture Control Utility
"{8777AC6D-89F9-4793-8266-DE406F343E89}" = QFolder
"{8991E763-21F5-4DEA-A938-5D9D77DCB488}" = Broadcom WLAN
"{90120000-0010-0409-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (English) 12
"{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007
"{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_PROPLUS_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_PROPLUS_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_PROPLUS_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_PROPLUS_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_PROPLUS_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_PROPLUS_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_PROPLUS_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_PROPLUS_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_PROPLUS_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_PROPLUS_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{926C96FB-9D0A-4504-8000-C6D3A4A3118E}" = Java DB 10.4.2.1
"{94CAC2F1-C856-47F4-AF24-65A1E75AEDB9}" = MotoHelper MergeModules
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = USB2.0 Card Reader Software
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A3FAE73B-4474-4A1D-A343-2FE248F05265}" = EasyTether
"{A8B94669-8654-4126-BD28-D0D2412CDED6}" = TI Connect 1.6
"{AC76BA86-7AD7-1033-7B44-A92000000001}" = Adobe Reader 9.2
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3.2
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{AE1E24C2-E720-42D5-B8E1-48F71A97B4DB}" = Energy Management
"{B194272D-1F92-46DF-99EB-8D5CE91CB4EC}" = Adobe AIR
"{B7DBF6E8-0D17-4BE4-853B-ACD6EFBD4A1F}" = iTunes
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{BC41C09D-FAA9-4346-9FE6-1E0017BC551A}" = Adobe Flash Player 10 Plugin
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C0D2F614-5CE5-4DCB-8678-E5C9AF7044F8}" = Microsoft SQL Server VSS Writer
"{C86E7C99-E4AD-79C7-375B-1AEF9A91EC2B}" = Acrobat.com
"{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}" = Nikon Message Center
"{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}" = PL-2303 USB-to-Serial
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2602F16-02D1-4F1C-99A5-E246C522A59D}" = Lenovo First Boot
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe AIR" = Adobe AIR
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Broadcom Wireless Utility" = Broadcom Wireless Utility
"Capture NX 2" = Capture NX 2
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"DVD Flick_is1" = DVD Flick 1.3.0.7
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"ImgBurn" = ImgBurn
"InstallShield_{3F5CFC1C-653B-4B22-9153-2BDDF2E03C0E}" = Seagate Manager Installer
"InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"JCreator Pro_is1" = JCreator Pro 4.50
"LimeWire" = LimeWire 5.6.2
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"MotoHelper" = MotoHelper 2.0.40 Driver 4.8.0
"Mozilla Firefox (3.6.8)" = Mozilla Firefox (3.6.8)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"MSCSR" = Microsoft Speech Recognition Engine 4.0 (English)
"MyDefrag v4.2.9_is1" = MyDefrag v4.2.9
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"PowerISO" = PowerISO
"PROPLUS" = Microsoft Office Professional Plus 2007
"Software Update Wizard (Redist)" = Software Update Wizard (Redist) 4.5
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Tunatic" = Tunatic
"tv_enua" = Lernout & Hauspie TruVoice American English TTS Engine
"uTorrent" = µTorrent
"VLC media player" = VLC media player 1.0.3
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WindowsScriptHost" = Microsoft Windows Script Host
"WinRAR archiver" = WinRAR archiver
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-3576157772-505033533-1922330814-1009\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Yahoo! BrowserPlus" = Yahoo! BrowserPlus 2.8.1

========== Last 10 Event Log Errors ==========

[ System Events ]
Error - 11/23/2010 12:24:23 AM | Computer Name = ANDREW | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058

Error - 11/23/2010 12:24:24 AM | Computer Name = ANDREW | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058

Error - 11/23/2010 12:29:03 AM | Computer Name = ANDREW | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058

Error - 11/23/2010 12:45:21 AM | Computer Name = ANDREW | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058

Error - 11/23/2010 12:45:21 AM | Computer Name = ANDREW | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058

Error - 11/23/2010 12:45:22 AM | Computer Name = ANDREW | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058

Error - 11/23/2010 12:45:23 AM | Computer Name = ANDREW | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058

Error - 11/23/2010 12:45:23 AM | Computer Name = ANDREW | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058

Error - 11/23/2010 12:45:24 AM | Computer Name = ANDREW | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058

Error - 11/23/2010 12:49:03 AM | Computer Name = ANDREW | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058


< End of report >



Windows IP Configuration



Host Name . . . . . . . . . . . . : Andrew

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Hybrid

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No



Ethernet adapter Local Area Connection:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Realtek RTL8102/8103/8136 Family PCI-E FE NIC

Physical Address. . . . . . . . . : 00-26-22-08-14-79

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 0.0.0.0

Subnet Mask . . . . . . . . . . . : 0.0.0.0

IP Address. . . . . . . . . . . . : fe80::226:22ff:fe08:1479%4

Default Gateway . . . . . . . . . :

DHCP Server . . . . . . . . . . . : 172.16.1.1

DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%2

fec0:0:0:ffff::2%2

fec0:0:0:ffff::3%2



Ethernet adapter Wireless Network Connection:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Broadcom 802.11g Network Adapter

Physical Address. . . . . . . . . : 00-25-56-B9-D7-A3



Ethernet adapter Local Area Connection 3:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : EasyTether Network Adapter

Physical Address. . . . . . . . . : 02-00-54-74-68-72



Tunnel adapter Teredo Tunneling Pseudo-Interface:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface

Physical Address. . . . . . . . . : FF-FF-FF-FF-FF-FF-FF-FF

Dhcp Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : fe80::ffff:ffff:fffd%6

Default Gateway . . . . . . . . . :

NetBIOS over Tcpip. . . . . . . . : Disabled

Network Hardware Configuration:
DSL at 6Mps via AT&T
Modem: D-linkDSL- 2320-B
Wireless router: Linksys WRT54G2 V1
There is a PC and a Mac that is connected wirelessly that are all working.

Proxy Server:
Did not create the code in the box.

Gobby- No idea, so probably not.

Thanks for your help!
lenw
Active Member
 
Posts: 11
Joined: January 15th, 2012, 4:13 am

Re: No wi-fi, no internet via ethernet. Cannot do updates.

Unread postby mambass » January 20th, 2012, 10:23 am

Hi lenw, :)

  1. P2P Program Policy Violation

    The following P2P (Peer to Peer) programs appear to be installed on your computer:
    LimeWire 5.6.2
    uTorrent


    Please note whenever you use any form of P2P networking to download files you can anticipate infestations of malware to occur.
    P2P file sharing used to be fairly safe. This is no longer true. Continue to use P2P sharing at your own risk! Keep in mind that this practice may be the source of your current malware infestation.

    References citing the risk factors of using P2P programs:
    How to boost your malware defense and protect your PC
    How to Prevent the Online Invasion of Spyware and Adware

    I can offer you no further assistance as long as you have the P2P programs installed, per Malware Removal Forum Policy.

    I strongly recommend that you uninstall the programs identified above
    however that choice is up to you.
    • If you choose NOT to remove these programs, please indicate that in your next reply and ignore the remaining steps.
    • If you choose to remove these programs then perform the following steps:
      1. Click Start > Settings > Control Panel or Start > Control Panel then double-click Add/Remove Programs.
      2. Highlight LimeWire 5.6.2 and choose Remove
      3. Highlight uTorrent and choose Remove
      4. Close both the Add or Remove Programs window and the Control Panel window.
      5. Reboot (restart) your computer.

  2. CKScanner
    1. Click here to download CKScanner © askey127 and save to your Desktop.
    2. Double-click on CKScanner.exe and then click Search For Files.
      Note: It's important that you run this program only one time.
    3. Click Save List To File after a very short time when the cursor hourglass disappears.
    4. Click OK when prompted.
    5. Post the contents of file ckfiles.txt on your Desktop in your reply.

  3. Run a Scan with OTL
    1. Double-click the OTL icon on your Desktop to run the program.
    2. Check the boxes labeled :
      • Scan All Users
      • LOP check
      • Purity check
      • Extra Registry > Use SafeList <-- Be sure to select this option
    3. Copy/paste or type the contents of the following box (do not include the word "Code:") into the Custom Scans/Fixes box (Note: The character after C:\ is the vertical line character | which is created by pressing Shift+\ on US keyboards)
      Code: Select all
      c:\|frostwire;true;true;true /fp
      c:\|limewire;true;true;true /fp
      c:\|torrent;true;true;true /fp
      
    4. Make sure all other windows are closed so that it can run uninterrupted.
    5. Click on the Run Scan button at the top left hand corner. Do not change any settings unless otherwise told to do so. The scan won't take long.
    6. When the scan completes, it will open two notepad windows. OTL.Txt will be displayed and Extras.Txt will be minimized. These are saved in the same location as OTL. (desktop)
    7. Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post them as a reply. Use separate replies if more convenient.


Please include in your reply (use separate replies for logs if convenient):
  1. The text of any error messages and/or a description of any problems you encountered while performing these steps.
  2. The contents of file ckfiles.txt.
  3. The contents of the OTL.txt and Extras.txt logs.


mambass
User avatar
mambass
Retired Graduate
 
Posts: 826
Joined: April 23rd, 2010, 9:26 am

Re: No wi-fi, no internet via ethernet. Cannot do updates.

Unread postby lenw » January 20th, 2012, 12:36 pm

We were waiting to delete limewire and utorrent until you told us to.
They are deleted!


CKScanner - Additional Security Risks - These are not necessarily bad
c:\documents and settings\andrew\my documents\my music\itunes\itunes media\mobile applications\452iblogger-v1.0.7 cracked by dnapda.ipa
c:\documents and settings\andrew\my documents\my music\itunes\itunes media\mobile applications\measures-v1.2.7cracked by c4pda.com.ipa
c:\documents and settings\andrew\my documents\my music\itunes\itunes media\mobile applications\mykaraoke-v1.0-cracked.ipa
c:\documents and settings\andrew\my documents\my music\itunes\itunes media\mobile applications\skyscape.a2zdrugs.v1.0.iphone.ipod.touch.cracked-binpda.ipa
c:\documents and settings\andrew\my documents\my music\itunes\itunes media\mobile applications\winephd-v1.1-cracked.ipa
c:\windows\prefetch\keygen.exe-22ace601.pf
hosts 127.0.0.1 activate.adobe.com
hosts 127.0.0.1 practivate.adobe.com
hosts 127.0.0.1 ereg.adobe.com
hosts 127.0.0.1 activate.wip3.adobe.com
hosts 127.0.0.1 wip3.adobe.com
hosts 127.0.0.1 3dns-3.adobe.com
hosts 127.0.0.1 3dns-2.adobe.com
hosts 127.0.0.1 adobe-dns.adobe.com
hosts 127.0.0.1 adobe-dns-2.adobe.com
hosts 127.0.0.1 adobe-dns-3.adobe.com
hosts 127.0.0.1 ereg.wip3.adobe.com
hosts 127.0.0.1 activate-sea.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip60.adobe.com
hosts 127.0.0.1 activate-sjc0.adobe.com
scanner sequence 3.JJ.11.NANABO
----- EOF -----

OTL logfile created on: 1/20/2012 8:25:51 AM - Run 2
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Andrew\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1013.88 Mb Total Physical Memory | 669.52 Mb Available Physical Memory | 66.04% Memory free
2.38 Gb Paging File | 2.20 Gb Available in Paging File | 92.13% Paging File free
Paging file location(s): [Binary data over 100 bytes]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 105.10 Gb Total Space | 71.68 Gb Free Space | 68.20% Space Free | Partition Type: NTFS
Drive D: | 29.19 Gb Total Space | 21.55 Gb Free Space | 73.83% Space Free | Partition Type: NTFS
Drive E: | 3.77 Gb Total Space | 3.76 Gb Free Space | 99.77% Space Free | Partition Type: FAT32

Computer Name: ANDREW | User Name: New User | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/01/19 10:08:50 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Andrew\Desktop\OTL.exe
PRC - [2010/12/02 11:45:18 | 000,218,432 | ---- | M] () -- C:\Program Files\Motorola\MotoHelper\MotoHelperService.exe
PRC - [2010/12/02 11:45:06 | 000,664,896 | ---- | M] () -- C:\Program Files\Motorola\MotoHelper\MotoHelperAgent.exe
PRC - [2010/09/28 21:48:52 | 000,315,392 | -H-- | M] (DeviceVM) -- C:\QSTART.SYS\config\DVMExportService.exe
PRC - [2009/12/18 11:25:16 | 000,189,736 | ---- | M] (Seagate Technology LLC) -- C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
PRC - [2009/01/04 11:57:28 | 004,462,464 | ---- | M] (Lenovo(Beijing)Limited) -- C:\Program Files\Lenovo\Energy Management\utility.exe
PRC - [2008/12/26 09:05:46 | 001,277,952 | ---- | M] (Lenovo (Beijing) Limited) -- C:\Program Files\Lenovo\Energy Management\Energy Management.exe
PRC - [2008/09/27 10:00:24 | 000,430,080 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\OneKey App\System Repair\UpdateMonitor.exe
PRC - [2008/04/13 13:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (No Company Name) ==========

MOD - [2010/12/02 11:45:18 | 000,218,432 | ---- | M] () -- C:\Program Files\Motorola\MotoHelper\MotoHelperService.exe
MOD - [2010/12/02 11:45:06 | 000,664,896 | ---- | M] () -- C:\Program Files\Motorola\MotoHelper\MotoHelperAgent.exe
MOD - [2010/11/16 13:52:06 | 000,761,856 | ---- | M] () -- C:\WINDOWS\system32\bcm1xsup.dll
MOD - [2009/08/16 17:06:02 | 000,141,312 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2008/05/21 16:33:22 | 000,045,056 | ---- | M] () -- C:\Program Files\Lenovo\Energy Management\KbdHook.dll
MOD - [2008/01/03 18:23:06 | 000,167,936 | ---- | M] () -- C:\Program Files\Lenovo\OneKey App\System Repair\LenovoAPI.dll
MOD - [2005/06/24 02:05:02 | 000,045,056 | ---- | M] () -- C:\Program Files\Lenovo\Energy Management\HookLib.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (SgtSch2Svc)
SRV - File not found [Disabled | Stopped] -- -- (Norton Internet Security)
SRV - File not found [On_Demand | Stopped] -- -- (hpqcxs08)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2010/12/02 11:45:18 | 000,218,432 | ---- | M] () [Auto | Running] -- C:\Program Files\Motorola\MotoHelper\MotoHelperService.exe -- (MotoHelper)
SRV - [2010/10/03 14:16:26 | 000,063,488 | ---- | M] (Nalpeiron Ltd.) [Auto | Stopped] -- C:\WINDOWS\system32\nlssrv32.exe -- (nlsX86cc)
SRV - [2010/09/28 21:48:52 | 000,315,392 | -H-- | M] (DeviceVM) [Auto | Running] -- C:\QSTART.SYS\config\DVMExportService.exe -- (DvmMDES)
SRV - [2009/12/24 19:34:57 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009/12/18 11:25:16 | 000,189,736 | ---- | M] (Seagate Technology LLC) [Auto | Running] -- C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe -- (FreeAgentGoNext Service)
SRV - [2009/01/08 01:34:10 | 000,262,360 | ---- | M] (Data Perceptions / PowerProgrammer) [Disabled | Stopped] -- C:\WINDOWS\system32\WebUpdateSvc4.exe -- (WebUpdate4)
SRV - [2008/09/27 10:00:24 | 000,430,080 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\OneKey App\System Repair\UpdateMonitor.exe -- (System_Repair_UpdateMonitor)


========== Driver Services (SafeList) ==========

DRV - [2011/05/22 14:42:52 | 000,017,296 | ---- | M] (Mobile Stream) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\easytthr.sys -- (easytether)
DRV - [2010/11/16 13:52:06 | 002,699,264 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2010/09/29 18:12:46 | 000,020,224 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motccgp.sys -- (motccgp)
DRV - [2010/08/12 07:04:14 | 000,000,000 | ---- | M] () [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\bdqqm.sys -- (bdqqm)
DRV - [2010/02/11 04:02:15 | 000,226,880 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2010/01/25 19:56:44 | 000,009,472 | ---- | M] (Motorola Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motusbdevice.sys -- (motusbdevice)
DRV - [2009/12/30 11:20:54 | 000,027,064 | ---- | M] (VS Revo Group) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\revoflt.sys -- (Revoflt)
DRV - [2009/07/10 13:01:06 | 000,025,856 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motoandroid.sys -- (motandroidusb)
DRV - [2009/04/17 14:26:16 | 001,226,792 | ---- | M] (Bison Electronics. Inc. ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\BisonC07.sys -- (Cam5607)
DRV - [2009/04/09 19:33:14 | 000,165,888 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV - [2009/03/26 22:33:42 | 000,130,816 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2009/03/24 03:35:00 | 005,056,000 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2009/01/29 17:18:00 | 000,008,320 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motccgpfl.sys -- (motccgpfl)
DRV - [2008/08/28 17:39:08 | 000,048,192 | ---- | M] (Lenovo) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\tvtumon.sys -- (tvtumon)
DRV - [2008/08/05 04:10:12 | 001,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2008/01/11 13:58:42 | 000,009,472 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AcpiVpc.sys -- (ACPIVPC)
DRV - [2008/01/10 09:59:08 | 000,081,192 | ---- | M] (CyberLink) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WSVD.sys -- (WSVD)
DRV - [2007/11/02 15:51:30 | 000,006,400 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motswch.sys -- (MotoSwitchService)
DRV - [2007/08/06 16:15:07 | 000,033,052 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2007/05/23 00:33:58 | 000,128,104 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WimFltr.sys -- (WimFltr)
DRV - [2006/04/04 13:20:37 | 000,009,344 | ---- | M] (Hewlett Packard) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hpfxbulk.sys -- (HPFXBULK)
DRV - [2006/01/03 23:41:48 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2004/08/03 22:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
DRV - [2004/02/04 10:27:56 | 000,049,536 | ---- | M] (Texas Instruments Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tiehdusb.sys -- (TIEHDUSB)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/ [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.lenovo.com
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:6522

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.lenovo.com
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:6522

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.lenovo.com
IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.lenovo.com
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-3576157772-505033533-1922330814-1009\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com?o=16794S&l=dis
IE - HKU\S-1-5-21-3576157772-505033533-1922330814-1009\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - No CLSID value found
IE - HKU\S-1-5-21-3576157772-505033533-1922330814-1009\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKU\S-1-5-21-3576157772-505033533-1922330814-1009\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>;192.168.*.*;*.local
IE - HKU\S-1-5-21-3576157772-505033533-1922330814-1009\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:6522;https=;ftp=;gopher=;socks=

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Google"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.com/"
FF - prefs.js..extensions.enabledItems: {1280606b-2510-4fe0-97ef-9b5a22eafe41}:1.0.9
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {DAD0F81A-CF67-4eed-98D6-26F6E47274CA}:1.4.2
FF - prefs.js..extensions.enabledItems: {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}:0.9.7
FF - prefs.js..extensions.enabledItems: jsonview@brh.numbera.com:0.5
FF - prefs.js..keyword.URL: "http://search.search-go.net/?sid=10101052100&s="

FF - user.js..browser.search.selectedEngine: "Google"
FF - user.js..browser.search.order.1: "Google"
FF - user.js..keyword.URL: "http://search.search-go.net/?sid=10101052100&s="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKCU\Software\MozillaPlugins\@yahoo.com/BrowserPlus,version=2.8.1: C:\Documents and Settings\Andrew\Local Settings\Application Data\Yahoo!\BrowserPlus\2.8.1\Plugins\npybrowserplus_2.8.1.dll (Yahoo! Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/02/04 15:20:53 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/01/15 00:05:00 | 000,000,000 | ---D | M]

[2009/12/13 11:24:32 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Andrew\Application Data\Mozilla\Extensions
[2009/12/13 11:24:32 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Andrew\Application Data\Mozilla\Extensions\mozswing@mozswing.org
[2010/11/21 20:38:38 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Andrew\Application Data\Mozilla\Firefox\Profiles\8vomc897.default\extensions
[2010/01/16 10:35:52 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Andrew\Application Data\Mozilla\Firefox\Profiles\8vomc897.default\extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe41}
[2010/04/26 18:05:35 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Andrew\Application Data\Mozilla\Firefox\Profiles\8vomc897.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/07/28 22:52:58 | 000,000,000 | ---D | M] (Download Statusbar) -- C:\Documents and Settings\Andrew\Application Data\Mozilla\Firefox\Profiles\8vomc897.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}
[2010/02/12 17:59:50 | 000,000,000 | ---D | M] (Tweak Network) -- C:\Documents and Settings\Andrew\Application Data\Mozilla\Firefox\Profiles\8vomc897.default\extensions\{DAD0F81A-CF67-4eed-98D6-26F6E47274CA}
[2010/08/10 09:48:56 | 000,000,000 | ---D | M] (JSONView) -- C:\Documents and Settings\Andrew\Application Data\Mozilla\Firefox\Profiles\8vomc897.default\extensions\jsonview@brh.numbera.com
[2011/08/13 14:27:25 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/03/07 21:20:29 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF

O1 HOSTS File: ([2010/05/10 21:18:49 | 000,393,544 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\HOSTS
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 13590 more lines...
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKU\S-1-5-21-3576157772-505033533-1922330814-1009\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Energy Management] C:\Program Files\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited)
O4 - HKLM..\Run: [EnergyUtility] C:\Program Files\Lenovo\Energy Management\utility.exe (Lenovo(Beijing)Limited)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: AllowLegacyWebView = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: AllowUnhashedWebView = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 60
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-3576157772-505033533-1922330814-1009\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Append to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\npjpi160_02.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - Reg Error: Value error. File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O20 - AppInit_DLLs: (acaptuser32.dll) -C:\WINDOWS\System32\acaptuser32.dll (Adobe Systems Incorporated)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -Explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Andrew\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Andrew\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/07/28 10:06:14 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{386bba07-a5dd-11df-aa8f-002622081479}\Shell\AutoRun\command - "" = E:\setup.exe
O33 - MountPoints2\{dd68ef04-f02c-11de-a9aa-002622081479}\Shell - "" = AutoRun
O33 - MountPoints2\{dd68ef04-f02c-11de-a9aa-002622081479}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{dd68ef04-f02c-11de-a9aa-002622081479}\Shell\AutoRun\command - "" = E:\KIS2010.EXE
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/01/19 10:11:40 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Andrew\Desktop\OTL.exe
[2012/01/15 00:46:51 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Andrew\Recent
[2012/01/15 00:31:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Videos
[2012/01/15 00:31:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music
[2012/01/15 00:30:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Andrew\My Documents\My Videos
[2012/01/14 23:24:43 | 000,000,000 | -H-D | C] -- C:\dvmexp
[2011/12/27 13:33:17 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/01/20 08:25:50 | 000,000,298 | -H-- | M] () -- C:\dvmexp.idx
[2012/01/20 08:16:34 | 000,458,240 | ---- | M] () -- C:\Documents and Settings\Andrew\Desktop\CKScanner.exe
[2012/01/19 10:08:50 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Andrew\Desktop\OTL.exe
[2012/01/15 00:53:45 | 000,488,286 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012/01/15 00:53:45 | 000,082,918 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012/01/15 00:48:04 | 000,000,056 | -HS- | M] () -- C:\_PartitionInfo
[2012/01/15 00:47:56 | 000,002,048 | ---- | M] () -- C:\WINDOWS\bootstat.dat
[2012/01/14 23:52:00 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011/12/27 14:13:28 | 000,000,221 | RHS- | M] () -- C:\boot.ini
[2011/12/27 13:36:41 | 000,001,553 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/01/20 08:20:34 | 000,458,240 | ---- | C] () -- C:\Documents and Settings\Andrew\Desktop\CKScanner.exe
[2012/01/14 23:23:40 | 000,000,298 | -H-- | C] () -- C:\dvmexp.idx
[2011/08/13 15:20:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Irremote.ini
[2011/08/13 14:15:24 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\bcm1xsup.dll
[2011/08/13 14:15:24 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\preflib.dll
[2011/08/13 14:15:24 | 000,025,088 | ---- | C] () -- C:\WINDOWS\System32\WLTRYSVC.EXE
[2010/10/03 14:16:26 | 000,002,560 | ---- | C] () -- C:\WINDOWS\System32\HDREfexProFC32.dll
[2010/08/25 21:36:06 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2010/08/11 11:04:45 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\drivers\bdqqm.sys
[2010/08/09 23:36:18 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\System Image Utility
[2010/08/09 23:36:18 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\Andrew\Application Data\Synth Basics
[2010/08/09 23:29:25 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLbx.DAT
[2010/05/31 09:16:28 | 000,000,040 | ---- | C] () -- C:\Documents and Settings\Andrew\Application Data\SQLite3.dll
[2010/04/11 16:58:57 | 000,000,990 | -HS- | C] () -- C:\Documents and Settings\Andrew\Application Data\systemfl.$dk
[2010/02/01 19:29:22 | 000,000,410 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI
[2010/02/01 19:29:22 | 000,000,034 | ---- | C] () -- C:\WINDOWS\System32\BD2040.DAT
[2010/01/15 05:27:56 | 000,295,936 | ---- | C] () -- C:\WINDOWS\System32\Viveza2FC32.dll
[2010/01/10 14:37:55 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\Andrew\Local Settings\Application Data\fusioncache.dat
[2010/01/10 12:25:54 | 000,000,394 | ---- | C] () -- C:\WINDOWS\hpbvspst.ini
[2010/01/10 12:25:34 | 000,001,575 | ---- | C] () -- C:\WINDOWS\hpbvnstp.ini
[2009/12/30 07:45:27 | 000,000,149 | ---- | C] () -- C:\WINDOWS\cncscore.ini
[2009/12/27 20:11:17 | 000,000,016 | ---- | C] () -- C:\WINDOWS\popcinfo.dat
[2009/12/27 11:02:01 | 000,000,141 | ---- | C] () -- C:\Documents and Settings\Andrew\Application Data\default.pls
[2009/12/25 01:23:07 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009/12/24 16:57:12 | 000,000,031 | ---- | C] () -- C:\WINDOWS\WebUpdateSvc4.INI
[2009/12/24 16:51:04 | 000,017,920 | ---- | C] () -- C:\WINDOWS\System32\astro32.dll
[2009/12/22 14:01:18 | 000,047,628 | ---- | C] () -- C:\WINDOWS\System32\wuwuninst.exe
[2009/12/15 16:49:39 | 000,150,528 | ---- | C] () -- C:\Documents and Settings\Andrew\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/12/15 16:25:56 | 000,080,292 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2009/12/13 10:46:55 | 006,028,320 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox.dat
[2009/12/13 10:46:55 | 000,778,272 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox2.dat
[2009/12/13 10:07:51 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009/12/13 04:38:37 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009/08/23 02:56:38 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2009/08/23 02:46:27 | 009,338,880 | ---- | C] () -- C:\WINDOWS\System32\Facev.dll
[2009/08/23 02:46:27 | 000,491,520 | ---- | C] () -- C:\WINDOWS\System32\picn.dll
[2009/08/23 02:46:26 | 000,208,896 | ---- | C] () -- C:\WINDOWS\System32\image.dll
[2009/08/23 02:46:26 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\FunFrm.dll
[2009/08/23 02:46:25 | 000,655,360 | ---- | C] () -- C:\WINDOWS\System32\EncIcons.dll
[2009/08/23 02:46:25 | 000,507,904 | ---- | C] () -- C:\WINDOWS\System32\SimpleExt.dll
[2009/08/23 02:46:25 | 000,241,752 | ---- | C] () -- C:\WINDOWS\System32\IcnOvrly.dll
[2009/08/23 02:46:24 | 001,564,672 | ---- | C] () -- C:\WINDOWS\System32\MainOp.dll
[2009/08/23 02:46:24 | 000,221,184 | ---- | C] () -- C:\WINDOWS\System32\SetDev.dll
[2009/08/23 02:46:24 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\VideoOp.dll
[2009/08/23 02:46:23 | 009,502,720 | ---- | C] () -- C:\WINDOWS\System32\FaceVerify.dll
[2009/08/23 02:46:23 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\DevFilt.dll
[2009/08/23 02:46:22 | 001,974,272 | ---- | C] () -- C:\WINDOWS\System32\Imagereog.dll
[2009/08/23 02:46:22 | 001,167,360 | ---- | C] () -- C:\WINDOWS\System32\PicNotify.dll
[2009/08/23 02:46:22 | 000,974,848 | ---- | C] () -- C:\WINDOWS\System32\Apblend.dll
[2009/08/23 02:46:22 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\Momo.dll
[2009/08/23 02:46:18 | 000,241,664 | ---- | C] () -- C:\WINDOWS\System32\3DImageRenderer.dll
[2009/08/23 02:43:45 | 000,015,190 | ---- | C] () -- C:\WINDOWS\M3000Twn.ini
[2009/08/19 21:17:39 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4926.dll
[2009/08/19 20:16:54 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll
[2009/08/19 20:16:05 | 000,000,008 | ---- | C] () -- C:\WINDOWS\System32\drivers\rtkhdaud.dat
[2009/01/08 01:34:12 | 000,418,008 | ---- | C] () -- C:\WINDOWS\System32\WuWUI.exe
[2008/11/07 17:08:20 | 000,362,029 | ---- | C] () -- C:\WINDOWS\System32\sqlite3.dll
[2006/07/28 10:18:05 | 000,002,048 | ---- | C] () -- C:\WINDOWS\bootstat.dat
[2006/07/28 10:03:20 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2006/07/28 09:57:44 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2006/07/28 09:56:26 | 003,685,424 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2005/03/29 12:58:46 | 000,001,650 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2004/08/04 12:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004/08/04 12:00:00 | 000,488,286 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004/08/04 12:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004/08/04 12:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004/08/04 12:00:00 | 000,082,918 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004/08/04 12:00:00 | 000,049,156 | ---- | C] () -- C:\WINDOWS\System32\certstore.dat
[2004/08/04 12:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004/08/04 12:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004/08/04 12:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004/08/04 12:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004/08/04 12:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2002/09/18 00:45:00 | 000,119,808 | ---- | C] () -- C:\WINDOWS\lsb_un20.exe
[2001/10/10 07:36:22 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2001/10/10 07:35:30 | 000,004,492 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[1999/01/12 11:40:22 | 000,029,184 | ---- | C] () -- C:\WINDOWS\rmud.exe

========== LOP Check ==========

[2009/12/15 22:05:14 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\DDNI
[2010/01/09 21:58:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\JCreator
[2010/12/05 00:20:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\regid.1986-12.com.adobe
[2010/11/26 09:27:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Seagate
[2010/01/18 01:01:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SecTaskMan
[2011/06/08 21:36:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2010/11/22 15:56:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Update
[2010/06/24 22:50:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2009/12/13 10:45:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2010/04/18 10:59:07 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\Andrew\Application Data\.#
[2010/08/10 10:24:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\19AAC327B1A6A822E7DBC56C65252347
[2009/12/15 23:21:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\Auslogics
[2010/05/08 16:40:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\com.adobe.bridge.PublishPanel
[2010/01/25 19:05:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2009/12/13 12:29:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\Deusty
[2010/11/30 21:56:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\FrostWire
[2010/05/10 00:00:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\ImgBurn
[2010/01/09 21:58:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\JCreator
[2010/11/26 09:23:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\Leadertech
[2010/11/26 11:16:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\Memeo
[2010/08/09 23:37:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\Nikon
[2010/06/15 22:13:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\Power Sound Editor Free
[2010/02/09 21:27:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\Seagate
[2010/05/10 22:12:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\StageManager
[2010/06/07 19:54:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2009/12/30 20:04:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\Styler
[2012/01/20 08:18:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrew\Application Data\uTorrent
[2009/08/23 02:40:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Application Data\ID Vault
[2009/08/23 02:40:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\ID Vault
[2010/11/22 21:07:00 | 000,000,444 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{B547770A-D49E-49DB-BA57-6475FEFA3C5D}.job

========== Purity Check ==========



========== Custom Scans ==========


< c:\|frostwire;true;true;true /fp >
[2010/11/30 21:56:15 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Andrew\Application Data\FrostWire
[2010/11/06 14:43:46 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Andrew\Application Data\FrostWire\.AppSpecialShare
[2010/11/30 21:56:33 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Andrew\Application Data\FrostWire\azureus
[2010/06/30 22:46:30 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Andrew\Application Data\FrostWire\hostilesUpdater
[2010/11/06 21:56:02 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Andrew\Application Data\FrostWire\overlays
[2010/11/06 14:43:18 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Andrew\Application Data\FrostWire\themes
[2010/11/30 21:56:13 | 000,002,123 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\FrostWire\frostwire.props
[2010/11/06 14:46:43 | 000,000,880 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\FrostWire\themes\frostwirePro_theme.fwtp
[2010/11/06 14:43:18 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Andrew\Application Data\FrostWire\themes\frostwirePro_theme
[2010/06/30 22:46:08 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Andrew\Local Settings\Application Data\VS Revo Group\Revo Uninstaller Pro\BackUpsData\FrostWire 4.18.6-30062010-234608
[2010/11/06 14:43:38 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Andrew\My Documents\FrostWire
[2010/11/30 21:55:00 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Andrew\My Documents\FrostWire\Incomplete
[2010/11/30 21:54:46 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Andrew\My Documents\FrostWire\Saved
[2010/11/06 14:43:36 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Andrew\My Documents\FrostWire\Store Purchased
[2010/11/06 14:43:38 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Andrew\My Documents\FrostWire\Torrents
[2009/12/26 20:32:14 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Wayne\My Documents\FrostWire
[2009/12/26 20:32:14 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Wayne\My Documents\FrostWire\Incomplete

< c:\|limewire;true;true;true /fp >
[2010/11/20 22:41:22 | 000,001,589 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\Microsoft\Internet Explorer\Quick Launch\LimeWire 5.6.2.lnk
[2010/01/04 22:49:47 | 000,007,629 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\LimeWire Pro v5.4.1.1 Beta Retail.torrent
[2010/01/04 23:52:52 | 000,007,690 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\LimeWire PRO v5.4.6.1 Final By ChattChitto.torrent
[2010/04/25 13:37:54 | 000,018,606 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\LimeWire PRO v5.5.8 Final + Crack [ChattChitto RG].1.torrent
[2010/04/09 20:53:19 | 000,018,460 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\LimeWire PRO v5.5.8 Final + Crack [ChattChitto RG].torrent
[2010/03/15 20:40:40 | 000,008,461 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\LimeWire.Pro.v5.5.1.1b.Retail.Multilingual-[HB].torrent
[2010/04/25 11:06:20 | 000,005,792 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\LimeWirePro_5.1.4_Mac.dmg.torrent
[2010/10/17 11:08:47 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Andrew\Local Settings\Application Data\VS Revo Group\Revo Uninstaller Pro\BackUpsData\LimeWire 5.5.16-17102010-120847
[2009/12/17 21:40:39 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Andrew\My Documents\LimeWire
[2011/06/07 19:37:20 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Andrew\My Documents\LimeWire\Incomplete
[2011/06/07 19:37:04 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Andrew\My Documents\LimeWire\Saved
[2009/12/13 11:25:34 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Andrew\My Documents\LimeWire\Store Purchased
[2010/11/16 22:44:36 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Andrew\My Documents\New Folder\Limewire Pirate Edition
[2010/11/15 18:13:32 | 000,001,282 | ---- | M] () -- c:\Documents and Settings\Andrew\My Documents\New Folder\Limewire Pirate Edition\Limewire Pirate Edition.txt
[2010/11/15 18:13:32 | 000,002,610 | ---- | M] () -- c:\Documents and Settings\Andrew\My Documents\New Folder\Limewire Pirate Edition\Limewire Shutdown Explained.txt
[2010/11/15 18:17:24 | 021,930,163 | ---- | M] (Lime Wire LLC) -- c:\Documents and Settings\Andrew\My Documents\New Folder\Limewire Pirate Edition\LimeWirePirateEdition.exe
[2009/12/27 16:19:22 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Wayne\My Documents\LimeWire
[2010/10/17 10:32:56 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Wayne\My Documents\LimeWire\Incomplete
[2010/10/17 10:32:24 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Wayne\My Documents\LimeWire\Saved
[2012/01/20 08:17:35 | 000,000,000 | ---D | M] -- c:\Program Files\LimeWire
[2009/12/13 11:25:39 | 000,001,536 | ---- | M] () -- c:\WINDOWS\pss\LimeWire On Startup.lnkStartup

< c:\|torrent;true;true /fp >
[2009/12/13 22:02:14 | 000,000,630 | ---- | M] () -- c:\Documents and Settings\All Users\Start Menu\Programs\µTorrent.lnk
[2012/01/20 08:18:06 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Andrew\Application Data\uTorrent
[2010/11/06 14:43:39 | 000,002,211 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\FrostWire\.AppSpecialShare\hostiles.txt.19.zip.torrent
[2010/11/06 14:43:44 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Andrew\Application Data\FrostWire\azureus\torrents
[2010/11/06 14:43:44 | 000,002,211 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\FrostWire\azureus\torrents\hostiles.txt.19.zip.torrent
[2010/06/25 19:24:13 | 000,016,334 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\!Kerry Books.torrent
[2009/12/30 12:29:16 | 000,019,022 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\100 Sexy Girls Valisere Lingerie Wallpapers 1440 X 900 (www.allwallpapersfree.blogspot.com).torrent
[2009/12/25 14:15:38 | 000,011,426 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\1000 Cell Phone Java Games.torrent
[2010/04/02 16:58:26 | 000,016,920 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\200 Stunning Landscapes Desktop HQ Wallpapers Collection.torrent
[2009/12/30 12:36:50 | 000,014,490 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\200 Win7 Wallpaper Suite - 200 Wallpapers in HIGH DEF 1900 by 1200 Resolution.zip.torrent
[2009/12/30 14:13:39 | 000,001,504 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\2009 Dance Mega Mix.torrent
[2010/01/08 20:53:42 | 000,014,893 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\2012 (2009) DVDRip XviD-MAXSPEED.1.torrent
[2010/01/19 16:21:58 | 000,015,791 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\2012 (2009) DVDRip XviD-MAXSPEED.2.torrent
[2010/02/14 22:56:03 | 000,015,791 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\2012 (2009) DVDRip XviD-MAXSPEED.3.torrent
[2009/12/22 16:06:04 | 000,015,791 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\2012 (2009) DVDRip XviD-MAXSPEED.torrent
[2010/02/14 22:55:25 | 000,035,012 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\2012.2009.720p.BluRay.x264-METiS.torrent
[2009/12/13 22:17:08 | 000,056,865 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\21[2008]DvDrip-aXXo.torrent
[2010/01/04 22:44:02 | 000,002,194 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\25 useful Mobile Softwares + Crack.torrent
[2010/04/27 16:32:18 | 000,010,811 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\36 Mac OS X Snow Leopard Wallpapers 1920 X 1200 (www.allwallpapersfree.blogspot.com).torrent
[2009/12/30 12:27:21 | 000,006,297 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\3D GLASS TRANSPARENT WALLPAPER {H33T} (www.wallpapersxplore.blogspot.com).torrent
[2010/01/04 22:39:31 | 000,014,525 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\500.Days.Of.Summer.BDRip.XviD-ARiGOLD.torrent
[2010/04/09 20:31:45 | 000,016,395 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\5000 professional fonts.1.torrent
[2010/04/09 20:31:45 | 000,016,395 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\5000 professional fonts.torrent
[2010/03/15 23:04:50 | 000,020,188 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\80 Life Under The Sea Wallpapers 1920X1200 [UHQ] [aVKs].torrent
[2010/03/22 22:28:11 | 000,014,760 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\A Christmas Carol (2009) DVDRip XviD-MC8.torrent
[2010/06/09 13:09:15 | 000,012,630 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\A Kid Named Cudi.torrent
[2010/01/05 23:00:55 | 000,017,826 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Adobe Acrobat 9 Pro Extended [ResourceRG] Multi+Crack.torrent
[2010/06/11 10:30:12 | 000,014,633 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Adobe Acrobat 9.3.1 Pro Extended + Keygen.torrent
[2010/01/06 17:31:12 | 000,000,489 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Adobe Acrobat Pro Extended v9.x keygen crack.rar.torrent
[2010/05/31 09:37:05 | 000,076,989 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Adobe Creative Suite 5 Master Collection - Shadeyman.torrent
[2010/05/04 20:37:10 | 000,048,084 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Adobe Creative Suite 5 Master Collection.torrent
[2010/04/17 19:31:53 | 000,175,633 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Adobe CS4 Master Collection (Volume License).torrent
[2010/06/10 16:15:56 | 000,028,430 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Adobe CS4 Master Collection - Shadeyman (Adobe.com direct download).torrent
[2009/12/29 12:05:42 | 000,036,570 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Adobe CS4 Master Collection.torrent
[2010/03/21 19:25:35 | 000,037,925 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Adobe Photoshop Lightroom 2.6.632038 Multilingual.torrent
[2009/12/29 12:12:56 | 000,000,622 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Adobe.CS4.Master.Collection.Keygen.Only.torrent
[2010/06/08 22:15:06 | 000,041,292 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Alice in Wonderland 1080p.torrent
[2010/06/07 18:40:24 | 000,098,561 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Alice in Wonderland 2010 BRRip 720p H264-3Li.torrent
[2010/05/16 18:42:20 | 000,015,467 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Alice In Wonderland 2010 TS XViD - IMAGiNE.1.torrent
[2010/04/09 20:39:26 | 000,015,467 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Alice In Wonderland 2010 TS XViD - IMAGiNE.torrent
[2009/12/22 10:34:59 | 000,015,034 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\All.About.Steve.DVDRip.XviD-Larceny.torrent
[2010/04/22 20:43:55 | 000,039,661 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\AP 2.torrent
[2010/06/12 22:06:08 | 000,007,412 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Apple QuickTime Pro v7.62.14.0.torrent
[2010/03/02 23:18:09 | 000,014,771 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Appli Need For Speed Shift Iphone.torrent
[2010/04/10 21:41:44 | 000,011,482 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Arnold Schwarzenegger Training Total Body Workout.torrent
[2009/12/28 00:53:54 | 000,015,887 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Assasins Creed Bloodlines [Mtrj1776].iso.torrent
[2010/02/14 00:25:43 | 000,007,123 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Atomix Virtual DJ v6.0.2 Professional + Key [RH].torrent
[2009/12/17 22:11:03 | 000,344,362 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Austin Powers Trilogy.torrent
[2010/02/28 11:08:35 | 000,015,870 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Avatar (2009) PROPER DVDSCR XviD-MAXSPEED.torrent
[2009/12/27 19:31:40 | 000,015,747 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Avatar (2009) PROPER TS XviD-MAXSPEED.torrent
[2010/05/28 16:14:11 | 000,057,282 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Avatar 2009 1080p BluRay X264-AMIABLE.torrent
[2010/01/16 17:46:37 | 000,045,182 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Avatar 2009 TELESYNC H264 AAC-SecretMyth (Kingdom-Release).torrent
[2009/12/30 14:14:55 | 000,026,732 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Avatar DVDRiP The Movie ENG AC3.torrent
[2010/02/06 20:16:39 | 000,015,632 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Avatar DVDScr_ipod_iphone_UpStream88.mp4.torrent
[2010/01/16 21:46:57 | 000,034,186 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Avatar [2009] [TELESYNC.PreDvDRip] [SDR] -=![Postarbhai]!=-.torrent
[2010/04/14 22:07:17 | 000,013,571 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Avatar.3D.Duel.Audio.DvDScr.Xvid-Classified.NoRar.www.crazy-torrent.com.torrent
[2010/02/28 08:31:09 | 000,001,414 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Bejeweled.2.v1.2.1.iPhone.iPod.Touch-iPWNPDA { www.torrentkit.com }.torrent
[2009/12/27 20:05:29 | 000,006,327 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\BEJEWLED 2 DELUXE aNDYpANDY @ H33T.torrent
[2010/03/22 22:19:49 | 000,020,839 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Boondock Saints II - All Saints Day.torrent
[2010/05/09 17:57:59 | 000,015,168 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Boys_Like_Girls-Love_Drunk-2009-SiRE.torrent
[2010/01/17 21:38:35 | 000,015,566 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Bruno (2009) DVDRip-MAXSPEED.torrent
[2010/01/06 20:13:04 | 000,065,612 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Changeling[2008]DvDrip-aXXo.torrent
[2010/06/25 19:43:33 | 000,000,604 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Clive Cussler - [Isaac Bell 01] - The Chase.torrent
[2010/04/03 18:07:03 | 000,015,263 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Cobra Starship.1.torrent
[2010/04/03 18:04:54 | 000,018,635 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Cobra Starship.torrent
[2009/12/28 23:55:34 | 000,053,534 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Coldplay.torrent
[2010/04/04 19:59:30 | 000,012,615 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Cross Over Mac.torrent
[2010/04/25 13:37:35 | 000,018,931 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Crossover 9 Pro.torrent
[2010/05/04 20:37:52 | 000,001,201 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\CS5_Activator.torrent
[2010/05/04 20:39:36 | 000,001,219 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\CS5_Ultimate_Activator!!.torrent
[2010/06/25 19:49:38 | 000,003,540 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Cussler, Clive, Du Brul, Jack - The Silent Sea.torrent
[2010/06/21 22:45:51 | 000,014,463 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Date Night.2010.R5.Line.Xvid {1337x}-Noir.torrent
[2010/05/16 18:51:42 | 000,019,589 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Daybreakers (2009) DVDSCR XviD-MAXSPEED.1.torrent
[2010/02/14 18:44:17 | 000,019,763 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Daybreakers (2009) DVDSCR XviD-MAXSPEED.torrent
[2010/01/27 19:34:18 | 000,012,432 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Daybreakers_2010_TS_GPB2008.torrent
[2010/04/14 22:09:13 | 000,014,809 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\DEAR JOHN DVDRip XviD.torrent
[2010/03/22 22:16:50 | 000,017,065 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\DragonNaturallySpeaking Preferred 10.torrent
[2010/04/28 20:51:32 | 000,005,275 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Driver Genius Pro 9.0.0.180 [ThumperWorld.webs.com].torrent
[2010/07/01 13:30:02 | 000,014,371 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Eurotrip.Unrated.DVDRip.2004.torrent
[2009/12/24 10:06:37 | 000,000,508 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Falling Stuff - Tetris clone with 8-bit graphics.torrent
[2010/01/08 21:01:33 | 000,014,866 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Family.Guy.2009.DVDRip.XviD-ViSiON.torrent
[2010/03/02 23:20:44 | 000,020,067 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\fifa 10 - ea sports - IPHONETEAM.ipa.torrent
[2010/06/15 21:20:20 | 000,016,029 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\FL Studio 9.torrent
[2010/04/11 16:51:45 | 000,001,552 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Folder Lock 6.4.0 + Serial -TrT.torrent
[2009/12/22 10:48:41 | 000,057,163 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Forgetting.Sarah.Marshall[2008][Unrated.Edition]DvDrip-aXXo.torrent
[2010/06/04 18:23:30 | 000,016,483 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Four Brothers 2005 DVDRip H264 AAC-Lifechanger.torrent
[2010/04/02 18:19:36 | 000,014,484 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\From Paris With Love.2010.R5.LiNE.Xvid {1337x}-Noir.torrent
[2009/12/26 22:03:42 | 000,015,664 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Funny People (2009) DVDRip XviD-MAXSPEED.torrent
[2010/01/17 21:29:46 | 000,015,522 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\G.I. Joe The Rise of Cobra (2009) DVDRip XviD-MAXSPEED.torrent
[2010/05/04 21:13:20 | 000,025,291 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\GIGCLUBMIX_[tfile.ru].torrent
[2010/05/16 19:24:04 | 000,014,870 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Green Zone TS XViD - IMAGiNE.torrent
[2010/08/09 23:19:42 | 000,017,589 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Grown Ups 2010 DVDSCR XViD-KiNGDOM v2.torrent
[2010/06/27 14:35:56 | 000,017,321 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Gym Class Heroes.torrent
[2010/01/08 21:06:03 | 000,036,919 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Harry.Potter.And.The.Half.Blood.Prince.2009.DvDRip-FxM.torrent
[2009/12/22 16:07:44 | 000,015,735 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Inglourious Basterds (2009) DVDRip XviD-MAXSPEED.torrent
[2009/12/26 21:50:48 | 000,014,605 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Inglourious Basterds 2009 DVDRip XviD-MegaPlay.torrent
[2010/04/17 23:15:12 | 000,035,534 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\INSANITY.torrent
[2009/12/26 22:06:11 | 000,014,694 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Invictus.2009.DvdScr.Xvid {1337x}-Noir.torrent
[2010/02/27 17:17:29 | 000,027,571 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Iphone games.torrent
[2010/02/27 17:03:09 | 000,041,996 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\iPod-iPhone Utilities-Tools Applications.torrent
[2010/04/20 21:24:47 | 000,000,830 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\iTunes Code Generator.torrent
[2010/03/15 22:58:31 | 000,120,934 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Jackass Number Two[2006]DvDrip[Eng][x264]-MagicOfTorr.torrent
[2010/03/15 22:57:44 | 000,099,171 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Jackass The Movie[2002]DvDrip[Eng][x264]-MagicOfTorr.torrent
[2010/03/15 22:58:10 | 000,014,324 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Jackass.3.2009.DVDRip.XviD-PROVOKE.torrent
[2010/03/15 22:58:56 | 000,014,916 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Jackass.The.Lost.Tapes.2009.PROPER.DVDRip.XviD-ViSiON.torrent
[2010/01/08 21:06:16 | 000,014,562 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Jennifers.Body.2009.DvDRip-FxM.torrent
[2010/04/19 21:01:16 | 000,010,041 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Joshua Radin - First Between 3rd and 4th (2004).torrent
[2010/04/19 20:59:10 | 000,009,929 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Joshua Radin - Unclear Sky EP.torrent
[2010/06/20 15:28:25 | 000,011,799 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Kama sutra.torrent
[2010/06/03 22:48:17 | 000,018,900 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Keak Da Sneak - Deified (2008) - Gangsta Rap.torrent
[2010/06/03 22:43:48 | 000,023,253 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Keak Da Sneak Presents Bruce Banna - (Mixed By DJ Fresh) [2008] - Gangsta Rap - BigGod.torrent
[2010/05/27 15:33:12 | 000,015,429 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Kick-Ass (2010) R5 XViD-MAXSPEED.torrent
[2010/06/09 13:09:54 | 000,016,758 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Kid Cudi.torrent
[2009/12/22 16:06:59 | 000,256,994 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Knowing[2009]DvDrip[Eng]-FXG.torrent
[2010/04/11 16:54:22 | 000,015,971 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Legion (2010) R5 DVDRip XviD-MAXSPEED.torrent
[2010/06/15 19:47:45 | 000,030,495 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Legion 2010 R5 LINE H264-SecretMyth (Kingdom-Release).1.torrent
[2010/04/02 15:12:10 | 000,030,495 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Legion 2010 R5 LINE H264-SecretMyth (Kingdom-Release).torrent
[2010/06/18 23:32:03 | 000,040,826 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Lil Jon.torrent
[2010/01/04 22:49:47 | 000,007,629 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\LimeWire Pro v5.4.1.1 Beta Retail.torrent
[2010/01/04 23:52:52 | 000,007,690 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\LimeWire PRO v5.4.6.1 Final By ChattChitto.torrent
[2010/04/25 13:37:54 | 000,018,606 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\LimeWire PRO v5.5.8 Final + Crack [ChattChitto RG].1.torrent
[2010/04/09 20:53:19 | 000,018,460 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\LimeWire PRO v5.5.8 Final + Crack [ChattChitto RG].torrent
[2010/03/15 20:40:40 | 000,008,461 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\LimeWire.Pro.v5.5.1.1b.Retail.Multilingual-[HB].torrent
[2010/04/25 11:06:20 | 000,005,792 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\LimeWirePro_5.1.4_Mac.dmg.torrent
[2010/04/26 18:22:33 | 000,037,460 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Mac OS X Snow Leopard.torrent
[2010/06/09 13:08:12 | 000,014,116 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Man On The Moon The End Of Day (Deluxe Version) (Parental Advisory).torrent
[2010/04/25 21:07:49 | 000,022,509 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Matisyahu Discography.torrent
[2010/04/25 11:54:48 | 000,015,917 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Matisyahu.torrent
[2010/04/04 20:02:03 | 000,002,825 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Media Monkey Gold 3.2+Serial.zip.torrent
[2009/12/30 12:44:02 | 000,030,416 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Megan Fox - Uncensored.torrent
[2010/04/14 21:52:08 | 000,028,264 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\MGMT.torrent
[2010/05/28 16:03:00 | 000,019,527 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Microsoft Office Enterpise & Professioal Plus 2007 with SP2.torrent
[2010/02/27 17:06:38 | 000,023,496 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Mobile Applications.torrent
[2010/07/28 22:50:40 | 000,045,514 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Need_for_Speed_Carbon_(NTSC)_(WII).torrent
[2009/12/27 20:11:45 | 000,197,055 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Nintendo NES with 1090 Games plus EMULATOR H33T 1981CamaroZ28.torrent
[2010/06/03 22:47:47 | 000,009,339 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\P.S.D. & Keak Da Sneak & Messy Marv - Da Bidness [2007] [Hip Hop] [www.file24ever.com].torrent
[2010/04/10 21:50:21 | 000,042,514 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\P90X Complete Disk Collection.torrent
[2010/05/04 21:22:30 | 000,000,386 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Pac-Man.rar.torrent
[2010/05/04 21:27:16 | 000,020,118 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Pac.Man.All.Stars.PC.Game(djDEVASTATE™).torrent
[2010/06/09 14:13:47 | 000,012,824 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\PC Rip by Freeman G Ripper - PacMan World 3.1.torrent
[2010/03/02 23:13:15 | 000,012,824 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\PC Rip by Freeman G Ripper - PacMan World 3.torrent
[2009/12/23 01:03:13 | 000,004,338 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\PCTools Registry Mechanic v9.0.0+Crack [ kk ].torrent
[2009/12/28 11:44:59 | 000,000,912 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Power ISO v3.8 + keygen [h33t] [Original].torrent
[2010/05/29 21:02:11 | 000,024,287 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Prince of Persia The Sands of Time TS XViD - IMAGiNE.torrent
[2010/06/09 12:57:51 | 000,000,645 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Prism Video Converter v1.20.1.torrent
[2010/03/14 17:50:13 | 000,000,645 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Prism Video Converter v1.20.torrent
[2009/12/23 01:12:12 | 000,002,798 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Registry.Mechanic.v8.0.0.900.Incl.Keygen.Patch-FFF.zip.torrent
[2010/06/07 18:44:55 | 000,014,362 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Remember Me (2010) DVDRip XviD-MAXSPEED.torrent
[2010/04/15 22:28:39 | 000,002,877 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Revo Uninstaller Pro 2.1.5 + Patch.rar.torrent
[2010/07/28 22:56:22 | 000,004,257 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Revo Uninstaller Pro 2.2.3 + crack -TrT.torrent
[2009/12/28 23:23:46 | 000,011,673 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Rob.Dyrdeks.Fantasy.Factory_S01_(BMAN).torrent
[2010/01/18 00:46:57 | 000,001,045 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Security Tasks Manager 1.7.torrent
[2009/12/27 23:36:29 | 000,023,474 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Sega Emulator 800 Games [English][PC][WwW.GamesTorrents.CoM].torrent
[2010/05/04 20:57:22 | 000,056,727 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Sex.Drive[2008][Unrated.Edition]DvDrip-aXXo.torrent
[2010/06/04 18:30:11 | 000,014,475 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\She's Out of My League (2010) DVDRip XviD-MAXSPEED.torrent
[2010/01/17 21:23:18 | 000,011,412 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Sherlock Holmes DVDSCR AC3 - IMAGiNE.torrent
[2010/04/11 16:35:54 | 000,014,597 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Shes Out Of My League 2009 TS XviD.UNDEAD.NoRar.www.crazy-torrent.com.torrent
[2010/05/16 18:53:50 | 000,015,071 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Shes.Out.Of.My.League.2010.TS.V2.XviD-Rx.torrent
[2010/04/11 16:28:16 | 000,015,599 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Shutter Island (2010) R5 DVDRip XviD-MAXSPEED.1.torrent
[2010/03/22 22:28:45 | 000,015,599 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Shutter Island (2010) R5 DVDRip XviD-MAXSPEED.torrent
[2010/04/19 20:59:20 | 000,016,323 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Simple Times.torrent
[2010/01/08 21:06:31 | 000,014,874 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Star Trek (2009) DVDRip XviD-MAXSPEED.torrent
[2009/12/27 23:34:48 | 000,013,629 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Super Mario Games Collection [English][PC][WwW.GamesTorrents.CoM].torrent
[2010/01/21 23:20:56 | 000,030,074 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Taylor Swift.torrent
[2009/12/22 11:00:31 | 000,018,556 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\TEAM.AMERICA.UNRATED[2004]DvDrip.torrent
[2009/12/24 10:13:03 | 000,004,279 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Tetris 5000.torrent
[2009/12/24 10:17:57 | 000,011,386 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Tetris Party(RF).wad.torrent
[2010/08/10 20:19:16 | 000,014,334 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The A-Team 2010.torrent
[2010/05/04 20:54:29 | 000,012,717 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The Back Up Plan DVDSCR AC3 XViD-BLaZE.torrent
[2010/02/14 23:06:27 | 000,032,470 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The Book Of Eli 2010 TELESYNC H264 AAC-SecretMyth (Kingdom-Release).torrent
[2010/01/09 00:01:40 | 000,004,018 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The Boondock Saints 2 (II) - All Saints Day (2009) DVDRip XviD-DivX.1.torrent
[2009/12/30 16:38:32 | 000,004,018 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The Boondock Saints 2 (II) - All Saints Day (2009) DVDRip XviD-DivX.torrent
[2010/04/11 16:54:50 | 000,015,716 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The Boondock Saints II All Saints Day (2009) DVDRip XviD-MAXSPEED.torrent
[2010/04/11 16:41:18 | 000,014,701 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The Bounty Hunter.2010.R5.LiNE.Xvid {1337x}-Noir.torrent
[2010/08/10 20:27:12 | 000,013,630 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The Crazies (2010) R5 DVDRip XviD-MAXSPEED.1.torrent
[2010/04/19 21:11:19 | 000,013,630 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The Crazies (2010) R5 DVDRip XviD-MAXSPEED.torrent
[2009/12/30 23:48:35 | 000,039,043 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The Edge - The ULTIMATE rock collection.torrent
[2010/04/14 22:14:02 | 000,001,173 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The Hackers Underground Handbook.torrent
[2010/01/13 00:03:55 | 000,012,076 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The Hurt Locker[2008] DvDrip H.264 AAC - Westy1983.torrent
[2010/05/27 15:34:04 | 000,015,681 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The Losers DvdScr-Xvid AC3 FLAWL3SS {AtomicRG}.torrent
[2010/01/17 21:43:43 | 000,015,360 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The Men Who Stare At Goats[2010]R5-DvDrip-LW.torrent
[2010/06/19 20:57:15 | 000,002,769 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The Photographer's Guide to Making Money - 2009.torrent
[2010/06/25 19:46:33 | 000,000,851 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The Spy - Clive Cussler.torrent
[2010/02/14 23:09:48 | 000,015,627 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The Spy Next Door (2010) DVDRiP LiNE XViD READNFO - IMAGiNE.torrent
[2010/04/02 15:13:54 | 000,014,083 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The Twilight Saga New Moon (2009) BDRip XviD-MAXSPEED.torrent
[2010/01/08 23:58:16 | 000,235,373 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The Twilight Saga New Moon (2009).DvDRIP-XviD-HQ-ghost.1.torrent
[2010/01/04 22:38:40 | 000,235,373 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The Twilight Saga New Moon (2009).DvDRIP-XviD-HQ-ghost.torrent
[2010/03/21 17:15:13 | 000,015,609 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The White Stripes - Under Great White Northern Lights [2010-MP3-Cov][Bubanee].torrent
[2009/12/26 22:02:13 | 000,014,805 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The.Blind.Side.DVDSCR.XviD.AC3-DEViSE.torrent
[2010/03/02 23:47:01 | 000,015,065 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The.Boondock.Saints.2.All.Saints.Day.2009.SCR.XviD.AC3-Rx.torrent
[2009/12/26 22:04:13 | 000,029,706 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The.Cove.2009.LIMITED.DVDRip.XviD.torrent
[2009/12/27 13:18:38 | 000,015,019 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The.Hangover.2009.UNRATED.BDRip.XviD-BeStDivX.torrent
[2010/01/27 19:36:10 | 000,017,602 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The.Twilight.Saga.New.Moon.2009.TS-Scr.DivX-nEHAL.torrent
[2010/06/04 18:25:22 | 000,019,561 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\The.Wolfman.UNRATED.DVDRip.XviD-DiAMOND.torrent
[2010/01/01 23:16:56 | 000,126,722 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\There Will be Blood KLAXXON.torrent
[2010/03/22 22:04:30 | 000,020,788 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Top 25 Paid Apps 3.3.2010.torrent
[2010/08/10 20:20:51 | 000,041,625 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Toy Story 3 720p TC XviD AC3-KiNGDOM (Kingdom-Release).torrent
[2010/01/17 21:28:30 | 000,015,489 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Transformers 2 Revenge Of The Fallen DVDRip XviD-MAXSPEED.torrent
[2010/01/17 21:32:45 | 000,059,071 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Up.In.The.Air.2009.DVDSCR.XviD-CAMELOT- [ www.torrentday.com ].torrent
[2010/01/04 22:45:21 | 000,001,982 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\uTorrent Turbo Accelerator 1.5.3 [ SXP ].torrent
[2010/10/21 22:23:37 | 000,675,346 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\utorrent.lng
[2010/04/02 19:33:14 | 000,036,304 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Valentines Day 2010 Re-Encoded XviD TS SAFCuk009.torrent
[2010/05/16 19:21:34 | 000,014,743 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Valentines.Day.2010.DVDRip.XviD-Larceny.torrent
[2010/05/09 18:01:22 | 000,021,528 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\VPP130-Boys Like Girls-Boys Like Girls(2006)-(62.2MB)-(Rock & Pop)-(192kbps).torrent
[2010/04/19 20:59:05 | 000,017,988 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\We Were Here.torrent
[2010/05/09 20:55:41 | 000,007,213 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Webroot Spy Sweeper 5.8.1.55+Keys-HeartBug.torrent
[2010/05/09 21:01:14 | 000,007,273 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Webroot Spy Sweeper 5.8.1.55+Keys-vibept.torrent
[2009/12/28 23:29:01 | 000,001,716 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Windows 7 Black Theme For Windows XP.1.torrent
[2009/12/27 19:51:45 | 000,001,716 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Windows 7 Black Theme For Windows XP.torrent
[2010/08/01 17:07:43 | 000,021,005 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Windows.7.Ultimate.32-64Bit.(2010-07-14).torrent
[2010/01/06 17:12:29 | 000,002,104 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\WinRAR v3.90 Final + KeyReg By ChattChitto.1.torrent
[2009/12/28 23:37:37 | 000,002,104 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\WinRAR v3.90 Final + KeyReg By ChattChitto.torrent
[2010/03/21 17:58:07 | 000,018,445 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Yellowcard.torrent
[2010/01/16 21:48:49 | 000,056,483 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Youth in Revolt 2010 DvDriP H264 AAC-SecretMyth (Kingdom-Release).torrent
[2010/05/28 16:12:35 | 000,015,329 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Youth.In.Revolt.DVDRip.XviD-ARROW.torrent
[2010/01/19 16:08:27 | 000,016,046 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Zombieland (2009) DVDRip XviD-MAX.torrent
[2010/05/04 21:20:24 | 000,014,290 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\Zuma's Revenge Collection.torrent
[2010/08/01 17:05:28 | 000,001,080 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\apps\http___apps_bittorrent_com_av_icon_bmp_small_icon.bmp
[2010/08/01 17:05:28 | 000,000,824 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\apps\http___apps_bittorrent_com_clearbits_icon_bmp_small_icon.bmp
[2010/08/01 17:05:28 | 000,001,078 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\apps\http___apps_bittorrent_com_outspark_icon_bmp_small_icon.bmp
[2010/08/01 17:05:28 | 000,001,080 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\apps\http___apps_bittorrent_com_raptr_icon_bmp_small_icon.bmp
[2010/08/01 17:05:28 | 000,001,078 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\apps\http___apps_bittorrent_com_tetronimoes_icon_bmp_small_icon.bmp
[2010/08/01 17:05:28 | 000,001,080 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\apps\http___apps_bittorrent_com_toolbar_icon_bmp_small_icon.bmp
[2010/08/09 23:20:11 | 000,000,824 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\apps\http___apps_bittorrent_com_torrent_tweet_icon_bmp_small_icon.bmp
[2010/08/01 17:05:28 | 000,000,822 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\apps\http___apps_bittorrent_com_tuneup_icon_bmp_small_icon.bmp
[2010/08/01 17:05:28 | 000,001,078 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\apps\http___apps_bittorrent_com_ubrowse_icon_bmp_small_icon.bmp
[2010/08/01 17:05:28 | 000,001,078 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\apps\http___apps_bittorrent_com_umap_icon_bmp_small_icon.bmp
[2010/08/01 17:05:29 | 000,001,080 | ---- | M] () -- c:\Documents and Settings\Andrew\Application Data\uTorrent\apps\http___apps_bittorrent_com_vodo_icon_bmp_small_icon.bmp
[2010/11/06 14:43:38 | 000,000,000 | ---D | M] -- c:\Documents and Settings\Andrew\My Documents\FrostWire\Torrents

========== Alternate Data Streams ==========

@Alternate Data Stream - 178 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:54D4173A
@Alternate Data Stream - 156 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D1B5B4F1
@Alternate Data Stream - 133 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:07BF512B

< End of report >


Thanks again!
lenw
Active Member
 
Posts: 11
Joined: January 15th, 2012, 4:13 am

Re: No wi-fi, no internet via ethernet. Cannot do updates.

Unread postby lenw » January 20th, 2012, 12:36 pm

OTL Extras logfile created on: 1/20/2012 8:25:51 AM - Run 2
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Andrew\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1013.88 Mb Total Physical Memory | 669.52 Mb Available Physical Memory | 66.04% Memory free
2.38 Gb Paging File | 2.20 Gb Available in Paging File | 92.13% Paging File free
Paging file location(s): [Binary data over 100 bytes]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 105.10 Gb Total Space | 71.68 Gb Free Space | 68.20% Space Free | Partition Type: NTFS
Drive D: | 29.19 Gb Total Space | 21.55 Gb Free Space | 73.83% Space Free | Partition Type: NTFS
Drive E: | 3.77 Gb Total Space | 3.76 Gb Free Space | 99.77% Space Free | Partition Type: FAT32

Computer Name: ANDREW | User Name: New User | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
.js [@ = Reg Error: Value error.] -- Reg Error: Key error. File not found
.txt [@ = Reg Error: Value error.] -- Reg Error: Key error. File not found

[HKEY_USERS\S-1-5-21-3576157772-505033533-1922330814-1009\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"3389:TCP" = 3389:TCP:*:Enabled:@xpsp2res.dll,-22009
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire
"C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe" = C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit -- (Apple Inc.)
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{024521CF-C07E-4F8E-8481-0D75695E03AF}" = PxMergeModule
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{121634B0-2F4B-11D3-ADA3-00C04F52DD52}" = Windows Installer Clean Up
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{2614F54E-A828-49FA-93BA-45A3F756BFAA}" = 32 Bit HP CIO Components Installer
"{26A24AE4-039D-4CA4-87B4-2F83216016F0}" = Java(TM) 6 Update 16
"{26A24AE4-039D-4CA4-87B4-2F83216018FF}" = Java(TM) 6 Update 18
"{3248F0A8-6813-11D6-A77B-00B0D0160020}" = Java(TM) 6 Update 2
"{32A3A4F4-B792-11D6-A78A-00B0D0160160}" = Java(TM) SE Development Kit 6 Update 16
"{343666E2-A059-48AC-AD67-230BF74E2DB2}" = Apple Application Support
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{357B11ED-5417-4CF3-8EB2-386299BC30E0}" = Lenovo Quick Start
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3A6829EF-0791-4FDD-9382-C690DD0821B9}" = Adobe Flash Player 10 ActiveX
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3F5CFC1C-653B-4B22-9153-2BDDF2E03C0E}" = Seagate Manager Installer
"{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4BB1DCED-84D3-47F9-B718-5947E904593E}" = Lenovo EasyCamera
"{50A0893D-47D8-48E0-A7E8-44BCD7E4422E}" = Microsoft SQL Server Native Client
"{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}" = Microsoft SQL Server Setup Support Files (English)
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{606E5C0D-6039-42A7-988E-9D51DE773AFF}" = hppFonts
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1" = Revo Uninstaller Pro 2.2.3
"{6E9EF98E-259E-416D-B5F8-0ABDB99942CE}" = Adobe Flash Player 10 ActiveX
"{6F3D2F66-F050-45E3-BEB1-6523FE6D6690}" = MotoHelper MergeModules
"{717E0AD5-91EB-459F-AB8B-1B5219BAF7CE}" = Lenovo System Repair - Windows Update Monitor
"{7216871F-869E-437C-B9BF-2A13F2DCE63F}_is1" = Auslogics BoostSpeed
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{74D2638F-E20C-4EC0-97AA-6B6ECACA5D5C}" = Motorola Mobile Drivers Installation 4.8.0
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{8153ED9A-C94A-426E-9880-5E6775C08B62}" = Apple Mobile Device Support
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{87441A59-5E64-4096-A170-14EFE67200C3}" = Picture Control Utility
"{8777AC6D-89F9-4793-8266-DE406F343E89}" = QFolder
"{8991E763-21F5-4DEA-A938-5D9D77DCB488}" = Broadcom WLAN
"{90120000-0010-0409-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (English) 12
"{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007
"{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_PROPLUS_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_PROPLUS_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_PROPLUS_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_PROPLUS_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_PROPLUS_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_PROPLUS_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_PROPLUS_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_PROPLUS_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_PROPLUS_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_PROPLUS_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{926C96FB-9D0A-4504-8000-C6D3A4A3118E}" = Java DB 10.4.2.1
"{94CAC2F1-C856-47F4-AF24-65A1E75AEDB9}" = MotoHelper MergeModules
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = USB2.0 Card Reader Software
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A3FAE73B-4474-4A1D-A343-2FE248F05265}" = EasyTether
"{A8B94669-8654-4126-BD28-D0D2412CDED6}" = TI Connect 1.6
"{AC76BA86-7AD7-1033-7B44-A92000000001}" = Adobe Reader 9.2
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3.2
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{AE1E24C2-E720-42D5-B8E1-48F71A97B4DB}" = Energy Management
"{B194272D-1F92-46DF-99EB-8D5CE91CB4EC}" = Adobe AIR
"{B7DBF6E8-0D17-4BE4-853B-ACD6EFBD4A1F}" = iTunes
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{BC41C09D-FAA9-4346-9FE6-1E0017BC551A}" = Adobe Flash Player 10 Plugin
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C0D2F614-5CE5-4DCB-8678-E5C9AF7044F8}" = Microsoft SQL Server VSS Writer
"{C86E7C99-E4AD-79C7-375B-1AEF9A91EC2B}" = Acrobat.com
"{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}" = Nikon Message Center
"{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}" = PL-2303 USB-to-Serial
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2602F16-02D1-4F1C-99A5-E246C522A59D}" = Lenovo First Boot
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe AIR" = Adobe AIR
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Broadcom Wireless Utility" = Broadcom Wireless Utility
"Capture NX 2" = Capture NX 2
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"DVD Flick_is1" = DVD Flick 1.3.0.7
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"ImgBurn" = ImgBurn
"InstallShield_{3F5CFC1C-653B-4B22-9153-2BDDF2E03C0E}" = Seagate Manager Installer
"InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"JCreator Pro_is1" = JCreator Pro 4.50
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"MotoHelper" = MotoHelper 2.0.40 Driver 4.8.0
"Mozilla Firefox (3.6.8)" = Mozilla Firefox (3.6.8)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"MSCSR" = Microsoft Speech Recognition Engine 4.0 (English)
"MyDefrag v4.2.9_is1" = MyDefrag v4.2.9
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"PowerISO" = PowerISO
"PROPLUS" = Microsoft Office Professional Plus 2007
"Software Update Wizard (Redist)" = Software Update Wizard (Redist) 4.5
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Tunatic" = Tunatic
"tv_enua" = Lernout & Hauspie TruVoice American English TTS Engine
"VLC media player" = VLC media player 1.0.3
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WindowsScriptHost" = Microsoft Windows Script Host
"WinRAR archiver" = WinRAR archiver
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-3576157772-505033533-1922330814-1009\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Yahoo! BrowserPlus" = Yahoo! BrowserPlus 2.8.1

========== Last 10 Event Log Errors ==========

[ System Events ]
Error - 11/23/2010 12:45:21 AM | Computer Name = ANDREW | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058

Error - 11/23/2010 12:45:22 AM | Computer Name = ANDREW | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058

Error - 11/23/2010 12:45:23 AM | Computer Name = ANDREW | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058

Error - 11/23/2010 12:45:23 AM | Computer Name = ANDREW | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058

Error - 11/23/2010 12:45:24 AM | Computer Name = ANDREW | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058

Error - 11/23/2010 12:49:03 AM | Computer Name = ANDREW | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058

Error - 1/19/2012 2:20:27 PM | Computer Name = ANDREW | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service StiSvc with
arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 1/19/2012 2:26:33 PM | Computer Name = ANDREW | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service StiSvc with
arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 1/20/2012 12:18:41 PM | Computer Name = ANDREW | Source = Windows Update Agent | ID = 16
Description = Unable to Connect: Windows is unable to connect to the automatic updates
service and therefore cannot download and install updates according to the set
schedule. Windows will continue to try to establish a connection.

Error - 1/20/2012 12:20:28 PM | Computer Name = ANDREW | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service StiSvc with
arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}


< End of report >
lenw
Active Member
 
Posts: 11
Joined: January 15th, 2012, 4:13 am

Re: No wi-fi, no internet via ethernet. Cannot do updates.

Unread postby mambass » January 21st, 2012, 9:26 pm

Hi lenw, :)

  1. MGADiag
    1. Click here to download MGADiag.exe from Microsoft and save it to your Desktop.
    2. Double-click on MGADiag.exe to run it.
    3. Click Continue. The program will run. It takes a while to finish the diagnosis, please be patient.
    4. Click the Copy button once the scan is done.
    5. Open Notepad and paste the contents in its window.
    6. Save this file and post it in your next reply.

  2. WVCheck
    1. Click here to download WVCheck.exe and save it to your Desktop.
    2. Double-click WVCheck.exe to run the program.
    3. Read the comments on the screen and then press Enter.
      The scan can take a while, depending on the size of your hard drive.
    4. Once the program is done, Notepad will open with the scan report. Save the report to your Desktop.
    5. Please copy and paste the contents of the Notepad scan report in your next reply.


Please include in your reply:
  1. The text of any error messages and/or a description of any problems you encountered while performing these steps.
  2. The contents of the MGADiag log.
  3. The contents of the WVCheck log.


mambass
User avatar
mambass
Retired Graduate
 
Posts: 826
Joined: April 23rd, 2010, 9:26 am

Re: No wi-fi, no internet via ethernet. Cannot do updates.

Unread postby lenw » January 21st, 2012, 10:42 pm

Diagnostic Report (1.9.0027.0):
-----------------------------------------
Windows Validation Data-->
Validation Status: Genuine
Validation Code: 0
Cached Validation Code: N/A
Windows Product Key: *****-*****-TP6MY-299P4-CPXQG
Windows Product Key Hash: wGTrggeqkZZDpBhEVwuue/JFBlE=
Windows Product ID: 76477-OEM-2111907-00154
Windows Product ID Type: 2
Windows License Type: OEM SLP
Windows OS version: 5.1.2600.2.00010300.3.0.hom
ID: {BF29771E-6345-4920-8981-3FD53A73FC37}(3)
Is Admin: Yes
TestCab: 0x0
LegitcheckControl ActiveX: Registered, 1.7.69.2
Signed By: Microsoft
Product Name: N/A
Architecture: N/A
Build lab: N/A
TTS Error: N/A
Validation Diagnostic: 025D1FF3-230-1
Resolution Status: N/A

Vista WgaER Data-->
ThreatID(s): N/A
Version: N/A

Windows XP Notifications Data-->
Cached Result: N/A, hr = 0x80070002
File Exists: No
Version: N/A, hr = 0x80070002
WgaTray.exe Signed By: N/A, hr = 0x80070002
WgaLogon.dll Signed By: N/A, hr = 0x80070002

OGA Notifications Data-->
Cached Result: N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002
OGAExec.exe Signed By: N/A, hr = 0x80070002
OGAAddin.dll Signed By: N/A, hr = 0x80070002

OGA Data-->
Office Status: 100 Genuine
Microsoft Office Professional Plus 2007 - 100 Genuine
OGA Version: N/A, 0x80070002
Signed By: N/A, hr = 0x80070002
Office Diagnostics: B4D0AA8B-604-645_B4D0AA8B-604-645_025D1FF3-230-1_E2AD56EA-765-d003_E2AD56EA-766-0_E2AD56EA-134-80004005_E2AD56EA-765-8009_E2AD56EA-766-2ee7_E2AD56EA-148-80004005_16E0B333-89-80004005_B4D0AA8B-1029-80004005

Browser Data-->
Proxy settings: http=127.0.0.1:6522;https=;ftp=;gopher=;socks=
User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
Default Browser: C:\Program Files\Mozilla Firefox\firefox.exe
Download signed ActiveX controls: Prompt
Download unsigned ActiveX controls: Disabled
Run ActiveX controls and plug-ins: Allowed
Initialize and script ActiveX controls not marked as safe: Disabled
Allow scripting of Internet Explorer Webbrowser control: Disabled
Active scripting: Allowed
Script ActiveX controls marked as safe for scripting: Allowed

File Scan Data-->

Other data-->
Office Details: <GenuineResults><MachineData><UGUID>{BF29771E-6345-4920-8981-3FD53A73FC37}</UGUID><Version>1.9.0027.0</Version><OS>5.1.2600.2.00010300.3.0.hom</OS><Architecture>x32</Architecture><PKey>*****-*****-*****-*****-CPXQG</PKey><PID>76477-OEM-2111907-00154</PID><PIDType>2</PIDType><SID>S-1-5-21-3576157772-505033533-1922330814</SID><SYSTEM><Manufacturer>LENOVO</Manufacturer><Model>2957 </Model></SYSTEM><BIOS><Manufacturer>LENOVO</Manufacturer><Version>1ACN26WW(V1.17)</Version><SMBIOSVersion major="2" minor="4"/><Date>20100517000000.000000+000</Date><SLPBIOS>LEGEND Dragon</SLPBIOS></BIOS><HWID>E3AD079001844065</HWID><UserLCID>0409</UserLCID><SystemLCID>0409</SystemLCID><TimeZone>Pacific Standard Time(GMT-08:00)</TimeZone><iJoin>0</iJoin><SBID><stat>2</stat><msppid></msppid><name>Lenovo</name><model></model></SBID><OEM/><GANotification/></MachineData><Software><Office><Result>100</Result><Products><Product GUID="{90120000-0011-0000-0000-0000000FF1CE}"><LegitResult>100</LegitResult><Name>Microsoft Office Professional Plus 2007</Name><Ver>12</Ver><Val>83770C147C39586</Val><Hash>HujjXRyTgOYjf4RCWfGtC0B0HlY=</Hash><Pid>89409-707-1230233-65206</Pid><PidType>14</PidType></Product></Products><Applications><App Id="15" Version="12" Result="100"/><App Id="16" Version="12" Result="100"/><App Id="18" Version="12" Result="100"/><App Id="19" Version="12" Result="100"/><App Id="1A" Version="12" Result="100"/><App Id="1B" Version="12" Result="100"/><App Id="44" Version="12" Result="100"/></Applications></Office></Software></GenuineResults>

Licensing Data-->
N/A

Windows Activation Technologies-->
N/A

HWID Data-->
N/A

OEM Activation 1.0 Data-->
BIOS string matches: yes
Marker string from BIOS: 1E810:Legend (Beijing) limited|A798:Lenovo
Marker string from OEMBIOS.DAT: LEGEND Dragon

OEM Activation 2.0 Data-->
N/A
Windows Validation Check
Version: 1.9.12.5
Log Created On: 1840_21-01-2012
-----------------------

Windows Information
-----------------------
Windows Version: Windows XP Service Pack 3
Windows Mode: Normal
Systemroot Path: C:\WINDOWS

WVCheck's Auto Update Check
-----------------------
Auto-Update Option: Download updates and install them automatically.
-----------------------
Last Success Time for Update Detection: 2011-06-11 19:07:55
Last Success Time for Update Download: 2011-05-20 05:50:03
Last Success Time for Update Installation: 2011-05-20 10:10:05


WVCheck's Registry Check Check
-----------------------
Antiwpa: Not Found
-----------------------
Chew7Hale: Not Found
-----------------------


WVCheck's File Dump
-----------------------
WVCheck found no known bad files.


WVCheck's Dir Dump
-----------------------
WVCheck found no known bad directories.


WVCheck's Missing File Check
-----------------------
WVCheck found no missing Windows files.


WVCheck's HOSTS File Check
-----------------------
WVCheck found no bad lines in the hosts file.


WVCheck's MD5 Check
EXPERIMENTAL!!
-----------------------
user32.dll - b26b135ff1b9f60c9388b4a7d16f600b


-------- End of File, program close at 1842_21-01-2012 --------
Thanks!
Lenw
lenw
Active Member
 
Posts: 11
Joined: January 15th, 2012, 4:13 am

Re: No wi-fi, no internet via ethernet. Cannot do updates.

Unread postby mambass » January 22nd, 2012, 3:23 pm

Hi Lenw, :)

  1. Question concerning auto updates
    Auto updates for the operating system and other Microsoft products were last performed on June 11, 2011. Did you disable this function and, if so, why?

  2. Question concerning most recent connection to the network
    When was the last time that you were able to connect this computer to the Internet? Do you recall what you were doing when it failed? Do you recall any error messages being displayed when it failed?


mambass
User avatar
mambass
Retired Graduate
 
Posts: 826
Joined: April 23rd, 2010, 9:26 am

Re: No wi-fi, no internet via ethernet. Cannot do updates.

Unread postby lenw » January 22nd, 2012, 4:54 pm

We have not had internet access since about 1-2011. We did an update by downloading the file with another computer.

When internet stopped my son thought that he was downloading music on limewire. Surprise!

Thanks!
Lenw
lenw
Active Member
 
Posts: 11
Joined: January 15th, 2012, 4:13 am

Re: No wi-fi, no internet via ethernet. Cannot do updates.

Unread postby lenw » January 22nd, 2012, 4:55 pm

Error message:
When it stopped he said that he just got the pop-up that said no interent connection.
lenw
Active Member
 
Posts: 11
Joined: January 15th, 2012, 4:13 am

Re: No wi-fi, no internet via ethernet. Cannot do updates.

Unread postby mambass » January 22nd, 2012, 5:05 pm

Hi Lenw, :)

Thank you for your reply. Could you please clarify the following line? I believe the date has a typo.
We have not had internet access since about 1-2011.

Thank you! :)

mambass
User avatar
mambass
Retired Graduate
 
Posts: 826
Joined: April 23rd, 2010, 9:26 am

Re: No wi-fi, no internet via ethernet. Cannot do updates.

Unread postby lenw » January 23rd, 2012, 12:38 am

Actually, it is not a typo.
We have not had internet access in over a year on that computer.

After fining this site, we wanted to try and fix it.
lenw
Active Member
 
Posts: 11
Joined: January 15th, 2012, 4:13 am

Re: No wi-fi, no internet via ethernet. Cannot do updates.

Unread postby mambass » January 24th, 2012, 6:53 pm

Hi lenw, :)

I apologize for the delay in getting back to you.

  1. Run a batch file
    1. Open Notepad.
    2. Copy the contents in the following box and then paste it into the Notepad window (do not include the word "Code:").
      Code: Select all
      @echo off
      sc query state= all > "%userprofile%\Desktop\mwr.log"
      del %0
      
    3. Save the file to your Desktop as "mwr.bat" (you must include the quotation marks in the filename otherwise the file won't work).
    4. Transfer this file to the Desktop of the affected computer.
    5. Connect the affected computer to the network using an Ethernet cable and enable your Wi-Fi adapter, then wait 1 minute.
    6. Double-click the mwr.bat icon on your desktop. A black command window will open briefly and then close.
    7. File mwr.log will appear on the desktop. Post the contents of this file in your reply.


Please include in your reply:
  1. The text of any error messages and/or a description of any problems you encountered while performing these steps.
  2. The contents of the mwr.log file.


mambass
User avatar
mambass
Retired Graduate
 
Posts: 826
Joined: April 23rd, 2010, 9:26 am
Advertisement
Register to Remove

Next

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 128 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware