Solved windows 2000 suddenly resets as if new

[Resolved] windows 2000 suddenly resets as if new

Hello,
I am running Windows 2000 on my Dell pc. It has worked perfectly well until now.
The other day it was slow to open up things so I turned it off and then restarted it but, it has started up as if it is the first time of using.
All my added programs are still there, some still with files and photos but some, such as Internet Explorer has lost all my favourites, Outlook has lost all my emails and contact list and it is as if they had not been used and when I open them they are requsting set-up.
Also all the Word documents and folders etc I had on the desktop have gone.
Basically all the programs are there but it is as if its the first time Windows 2000 has been installed.
Attached are the logs requested:
Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Database version: 8083

Windows 5.0.2195 Service Pack 4
Internet Explorer 6.0.2800.1106

04/11/2011 14:11:37
mbam-log-2011-11-04 (14-11-37).txt

Scan type: Quick scan
Objects scanned: 131044
Time elapsed: 10 minute(s), 42 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

--------------------------------------------------------
--------------------------------------------------------

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2011-11-04 14:40:16
Windows 5.0.2195 Service Pack 4 Harddisk0\DR0 -> \Device\Scsi\IntelATA1Port0Path0Target0Lun0 QUANTUM_ rev.APL.
Running: derr9ck1.exe; Driver: C:\DOCUME~1\LYNJAM~1.SY~\LOCALS~1\Temp\ugliypow.sys


---- Kernel code sections - GMER 1.0.15 ----

? dimaint.sys The system cannot find the file specified. !
.text C:\WINNT\system32\DRIVERS\nv4_mini.sys section is writeable [0xBFAF7360, 0x1DEE5D, 0xE8000020]

---- User code sections - GMER 1.0.15 ----

.text C:\Program Files\internet explorer\iexplore.exe[1716] ole32.dll!OleLoadFromStream 7CE60C22 6 Bytes JMP 7179F160 C:\WINNT\system32\SHDOCVW.dll (Shell Doc Object and Control Library/Microsoft Corporation)

---- User IAT/EAT - GMER 1.0.15 ----

IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\Explorer.EXE [KERNEL32.DLL!CreateProcessW] [4AD84C9A] C:\WINNT\AppPatch\AcLayers.DLL (Windows 2000 Shim Accessory DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\Explorer.EXE [KERNEL32.DLL!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\Explorer.EXE [KERNEL32.DLL!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\Explorer.EXE [KERNEL32.DLL!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\Explorer.EXE [KERNEL32.DLL!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\ADVAPI32.DLL [KERNEL32.dll!LoadLibraryExW] [732E7955] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\ADVAPI32.DLL [KERNEL32.dll!CreateProcessA] [4AD84AE3] C:\WINNT\AppPatch\AcLayers.DLL (Windows 2000 Shim Accessory DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\ADVAPI32.DLL [KERNEL32.dll!CreateProcessW] [4AD84C9A] C:\WINNT\AppPatch\AcLayers.DLL (Windows 2000 Shim Accessory DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\ADVAPI32.DLL [KERNEL32.dll!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\ADVAPI32.DLL [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\ADVAPI32.DLL [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\ADVAPI32.DLL [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\GDI32.DLL [KERNEL32.dll!LoadLibraryExW] [732E7955] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\GDI32.DLL [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\GDI32.DLL [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\GDI32.DLL [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\GDI32.DLL [KERNEL32.dll!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [732E7955] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!CreateProcessW] [4AD84C9A] C:\WINNT\AppPatch\AcLayers.DLL (Windows 2000 Shim Accessory DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\SHLWAPI.DLL [KERNEL32.dll!LoadLibraryExA] [732E78DE] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\SHLWAPI.DLL [KERNEL32.dll!LoadLibraryExW] [732E7955] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\SHLWAPI.DLL [KERNEL32.dll!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\SHLWAPI.DLL [KERNEL32.dll!CreateProcessA] [4AD84AE3] C:\WINNT\AppPatch\AcLayers.DLL (Windows 2000 Shim Accessory DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\SHLWAPI.DLL [KERNEL32.dll!CreateProcessW] [4AD84C9A] C:\WINNT\AppPatch\AcLayers.DLL (Windows 2000 Shim Accessory DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\SHLWAPI.DLL [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\SHLWAPI.DLL [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\SHLWAPI.DLL [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] [4AD84AE3] C:\WINNT\AppPatch\AcLayers.DLL (Windows 2000 Shim Accessory DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] [4AD84C9A] C:\WINNT\AppPatch\AcLayers.DLL (Windows 2000 Shim Accessory DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [732E7955] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] [4AD84C9A] C:\WINNT\AppPatch\AcLayers.DLL (Windows 2000 Shim Accessory DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\OLE32.DLL [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\OLE32.DLL [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\OLE32.DLL [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\OLE32.DLL [KERNEL32.dll!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\OLE32.DLL [KERNEL32.dll!LoadLibraryExW] [732E7955] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\OLE32.DLL [KERNEL32.dll!CreateProcessW] [4AD84C9A] C:\WINNT\AppPatch\AcLayers.DLL (Windows 2000 Shim Accessory DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\NETAPI32.DLL [KERNEL32.dll!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\NETAPI32.DLL [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\NETAPI32.DLL [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\WS2_32.DLL [KERNEL32.DLL!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\WS2_32.DLL [KERNEL32.DLL!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\WS2_32.DLL [KERNEL32.DLL!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\WS2HELP.DLL [KERNEL32.DLL!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\WS2HELP.DLL [KERNEL32.DLL!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\WS2HELP.DLL [KERNEL32.DLL!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\USERENV.DLL [KERNEL32.dll!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\USERENV.DLL [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\USERENV.DLL [KERNEL32.dll!LoadLibraryExW] [732E7955] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\USERENV.DLL [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\USERENV.DLL [KERNEL32.dll!CreateProcessW] [4AD84C9A] C:\WINNT\AppPatch\AcLayers.DLL (Windows 2000 Shim Accessory DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\USERENV.DLL [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\WININET.DLL [KERNEL32.dll!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\WININET.DLL [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\WININET.DLL [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\WININET.DLL [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] [732E7955] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] [732E78DE] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\CRYPT32.dll [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\REGAPI.dll [KERNEL32.dll!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\REGAPI.dll [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\REGAPI.dll [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\iphlpapi.dll [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\WINNT\Explorer.EXE[1200] @ C:\WINNT\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [732E7955] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [732E7955] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [732E78DE] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [732E7955] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [732E7955] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [732E7955] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [732E7955] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\WININET.dll [KERNEL32.dll!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\WININET.dll [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\WININET.dll [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] [732E7955] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] [732E78DE] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\CRYPT32.dll [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExW] [732E7955] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\WS2_32.dll [KERNEL32.DLL!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\WS2_32.dll [KERNEL32.DLL!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\WS2_32.dll [KERNEL32.DLL!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\WS2HELP.DLL [KERNEL32.DLL!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\WS2HELP.DLL [KERNEL32.DLL!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\WS2HELP.DLL [KERNEL32.DLL!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\secur32.dll [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\secur32.dll [KERNEL32.dll!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\secur32.dll [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\secur32.dll [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\iphlpapi.dll [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\NETAPI32.DLL [KERNEL32.dll!LoadLibraryW] [732E786F] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\NETAPI32.DLL [KERNEL32.dll!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\NETAPI32.DLL [KERNEL32.dll!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\PSAPI.DLL [KERNEL32.DLL!LoadLibraryA] [732E7800] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\PSAPI.DLL [KERNEL32.DLL!FreeLibrary] [732E7A04] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)
IAT C:\Program Files\internet explorer\iexplore.exe[1716] @ C:\WINNT\system32\PSAPI.DLL [KERNEL32.DLL!GetProcAddress] [732E771E] C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation)

---- Devices - GMER 1.0.15 ----

AttachedDevice \Driver\Tcpip \Device\Ip avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\Tcp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\Udp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\RawIp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)

---- Services - GMER 1.0.15 ----

Service C:\WINNT\system32\MSTask.exe? (***hidden***) [AUTO] Schedule <-- ROOTKIT !!!

---- EOF - GMER 1.0.15 ----

-------------------------------------------------------
-------------------------------------------------------

Other Logs continued in Part 2 post

Regards

 

windows 2000 suddenly resets as if new - Part 2

Continued logs:

aswMBR version 0.9.8.986 Copyright(c) 2011 AVAST Software
Run date: 2011-11-04 14:43:02
-----------------------------
14:43:02.739 OS Version: Windows 5.0.2195 Service Pack 4
14:43:02.739 Number of processors: 1 586 0x806
14:43:02.739 ComputerName: SYSTEM-4 UserName:
14:43:03.841 Initialize success
14:43:15.017 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Scsi\IntelATA1Port0Path0Target0Lun0
14:43:15.017 Disk 0 Vendor: QUANTUM_ APL. Size: 0MB BusType: 3
14:43:15.017 Device \Driver\IntelATA -> DriverStartIo SCSIPORT.SYS bff715fa
14:43:15.017 Disk 0 MBR read successfully
14:43:15.027 Disk 0 MBR scan
14:43:15.027 Disk 0 Windows XP default MBR code
14:43:15.027 Disk 0 scanning C:\WINNT\system32\drivers
14:43:26.844 Service scanning
14:43:27.305 Service aaatimeo C:\WINNT\System32\DRIVERS\aaatimeo.sys **LOCKED**
14:43:27.305 Service Abiosdsk C:\WINNT\System32\Drivers\Abiosdsk.sys **LOCKED**
14:43:27.315 Service abp480n5 C:\WINNT\System32\Drivers\abp480n5.sys **LOCKED**
14:43:27.315 Service ACPI C:\WINNT\System32\DRIVERS\ACPI.sys **LOCKED**
14:43:27.315 Service ACPIEC C:\WINNT\System32\Drivers\ACPIEC.sys **LOCKED**
14:43:27.315 Service adpu160m C:\WINNT\System32\DRIVERS\adpu160m.sys **LOCKED**
14:43:27.325 Service AFD C:\WINNT\System32\drivers\afd.sys **LOCKED**
14:43:27.325 Service agp440 C:\WINNT\System32\DRIVERS\agp440.sys **LOCKED**
14:43:27.325 Service Aha154x C:\WINNT\System32\Drivers\Aha154x.sys **LOCKED**
14:43:27.335 Service aic116x C:\WINNT\System32\Drivers\aic116x.sys **LOCKED**
14:43:27.335 Service aic78u2 C:\WINNT\System32\DRIVERS\aic78u2.sys **LOCKED**
14:43:27.335 Service aic78xx C:\WINNT\System32\DRIVERS\aic78xx.sys **LOCKED**
14:43:27.345 Service ami0nt C:\WINNT\System32\Drivers\ami0nt.sys **LOCKED**
14:43:27.345 Service amsint C:\WINNT\System32\Drivers\amsint.sys **LOCKED**
14:43:27.355 Service asc C:\WINNT\System32\Drivers\asc.sys **LOCKED**
14:43:27.355 Service asc3350p C:\WINNT\System32\Drivers\asc3350p.sys **LOCKED**
14:43:27.355 Service asc3550 C:\WINNT\System32\Drivers\asc3550.sys **LOCKED**
14:43:27.365 Service Aspi32 C:\WINNT\System32\Drivers\Aspi32.sys **LOCKED**
14:43:27.365 Service AsyncMac C:\WINNT\system32\DRIVERS\asyncmac.sys **LOCKED**
14:43:27.375 Service atapi C:\WINNT\System32\DRIVERS\atapi.sys **LOCKED**
14:43:27.375 Service Atdisk C:\WINNT\System32\Drivers\Atdisk.sys **LOCKED**
14:43:27.375 Service ati2mtaa C:\WINNT\System32\DRIVERS\ati2mtaa.sys **LOCKED**
14:43:27.385 Service Atmarpc C:\WINNT\System32\DRIVERS\atmarpc.sys **LOCKED**
14:43:27.385 Service audstub C:\WINNT\System32\DRIVERS\audstub.sys **LOCKED**
14:43:27.395 Service AvgLdx86 C:\WINNT\System32\Drivers\avgldx86.sys **LOCKED**
14:43:27.395 Service AvgTdiX C:\WINNT\System32\Drivers\avgtdix.sys **LOCKED**
14:43:27.395 Service Beep C:\WINNT\System32\Drivers\Beep.sys **LOCKED**
14:43:27.405 Service BusLogic C:\WINNT\System32\Drivers\BusLogic.sys **LOCKED**
14:43:27.415 Service catchme C:\ComboFix\catchme.sys **LOCKED**
14:43:27.415 Service CCDECODE C:\WINNT\system32\DRIVERS\CCDECODE.sys **LOCKED**
14:43:27.415 Service cd20xrnt C:\WINNT\System32\Drivers\cd20xrnt.sys **LOCKED**
14:43:27.415 Service cda1000 C:\WINNT\System32\DRIVERS\cda1000.sys **LOCKED**
14:43:27.425 Service Cdaudio C:\WINNT\System32\Drivers\Cdaudio.sys **LOCKED**
14:43:27.425 Service Cdr4_2K C:\WINNT\System32\Drivers\Cdr4_2K.sys **LOCKED**
14:43:27.425 Service Cdralw2k C:\WINNT\System32\Drivers\Cdralw2k.sys **LOCKED**
14:43:27.435 Service Cdrom C:\WINNT\System32\DRIVERS\cdrom.sys **LOCKED**
14:43:27.435 Service Changer C:\WINNT\System32\Drivers\Changer.sys **LOCKED**
14:43:27.445 Service cmosa C:\WINNT\System32\DRIVERS\cmosa.sys **LOCKED**
14:43:27.445 Service Compbatt C:\WINNT\System32\DRIVERS\compbatt.sys **LOCKED**
14:43:27.445 Service Cpqarray C:\WINNT\System32\Drivers\Cpqarray.sys **LOCKED**
14:43:27.455 Service cpqarry2 C:\WINNT\System32\Drivers\cpqarry2.sys **LOCKED**
14:43:27.455 Service cpqfcalm C:\WINNT\System32\Drivers\cpqfcalm.sys **LOCKED**
14:43:27.455 Service cpqfws2e C:\WINNT\System32\Drivers\cpqfws2e.sys **LOCKED**
14:43:27.465 Service ctljystk C:\WINNT\System32\DRIVERS\ctljystk.sys **LOCKED**
14:43:27.465 Service dac960nt C:\WINNT\System32\Drivers\dac960nt.sys **LOCKED**
14:43:27.465 Service deckzpsx C:\WINNT\System32\Drivers\deckzpsx.sys **LOCKED**
14:43:27.475 Service DiCapi C:\WINNT\System32\DRIVERS\DISDN\capi202k.sys **LOCKED**
14:43:27.475 Service DiMaint C:\WINNT\System32\DRIVERS\disdn\dimaint.sys **LOCKED**
14:43:27.475 Service DiPort C:\WINNT\System32\DRIVERS\DISDN\diport40.sys **LOCKED**
14:43:27.475 Service Disk C:\WINNT\System32\DRIVERS\disk.sys **LOCKED**
14:43:27.485 Service Diskperf C:\WINNT\System32\Drivers\Diskperf.sys **LOCKED**
14:43:27.485 Service Diwan C:\WINNT\system32\DRIVERS\DISDN\Diwan.sys **LOCKED**
14:43:27.485 Service DM9102 C:\WINNT\System32\DRIVERS\DM9PCI5.SYS **LOCKED**
14:43:27.485 Service dmboot C:\WINNT\System32\drivers\dmboot.sys **LOCKED**
14:43:27.495 Service dmio C:\WINNT\System32\drivers\dmio.sys **LOCKED**
14:43:27.495 Service dmload C:\WINNT\System32\drivers\dmload.sys **LOCKED**
14:43:27.495 Service DMusic C:\WINNT\system32\drivers\DMusic.sys **LOCKED**
14:43:27.505 Service EL90BC C:\WINNT\System32\DRIVERS\el90xbc5.sys **LOCKED**
14:43:27.505 Service ELSAWAN C:\WINNT\System32\DRIVERS\ELSAWAN.sys **LOCKED**
14:43:27.505 Service emu10k C:\WINNT\system32\drivers\emu10k1.sys **LOCKED**
14:43:27.515 Service epstwnt C:\WINNT\System32\Drivers\epstwnt.mpd **LOCKED**
14:43:27.515 Service es1371mp C:\WINNT\system32\drivers\es1371mp.sys **LOCKED**
14:43:27.525 Service fasttrak C:\WINNT\System32\DRIVERS\fasttrak.sys **LOCKED**
14:43:27.535 Service Fd16_700 C:\WINNT\System32\DRIVERS\fd16_700.sys **LOCKED**
14:43:27.535 Service Fdc C:\WINNT\System32\DRIVERS\fdc.sys **LOCKED**
14:43:27.535 Service Fips C:\WINNT\System32\Drivers\Fips.sys **LOCKED**
14:43:27.535 Service fireport C:\WINNT\System32\Drivers\fireport.sys **LOCKED**
14:43:27.545 Service flashpnt C:\WINNT\System32\Drivers\flashpnt.sys **LOCKED**
14:43:27.545 Service Flpydisk C:\WINNT\System32\DRIVERS\flpydisk.sys **LOCKED**
14:43:27.545 Service fnetusb C:\WINNT\system32\DRIVERS\fnetusb.sys **LOCKED**
14:43:27.545 Service Fs_Rec C:\WINNT\System32\Drivers\Fs_Rec.sys **LOCKED**
14:43:27.555 Service Ftdisk C:\WINNT\System32\DRIVERS\ftdisk.sys **LOCKED**
14:43:27.555 Service gameenum C:\WINNT\System32\DRIVERS\gameenum.sys **LOCKED**
14:43:27.555 Service Gpc C:\WINNT\System32\DRIVERS\msgpc.sys **LOCKED**
14:43:27.565 Service HPZid412 C:\WINNT\system32\DRIVERS\HPZid412.sys **LOCKED**
14:43:27.565 Service HPZipr12 C:\WINNT\system32\DRIVERS\HPZipr12.sys **LOCKED**
14:43:27.565 Service HPZius12 C:\WINNT\system32\DRIVERS\HPZius12.sys **LOCKED**
14:43:27.565 Service i8042prt C:\WINNT\System32\DRIVERS\i8042prt.sys **LOCKED**
14:43:27.575 Service idebd C:\WINNT\System32\DRIVERS\idebd.sys **LOCKED**
14:43:27.575 Service ini910u C:\WINNT\System32\Drivers\ini910u.sys **LOCKED**
14:43:27.575 Service IntelATA C:\WINNT\System32\DRIVERS\intelata.sys **LOCKED**
14:43:27.575 Service IntelIde C:\WINNT\System32\DRIVERS\intelide.sys **LOCKED**
14:43:27.585 Service IPFilter C:\WINNT\System32\DRIVERS\IPFilter.sys **LOCKED**
14:43:27.585 Service IpFilterDriver C:\WINNT\System32\DRIVERS\ipfltdrv.sys **LOCKED**
14:43:27.585 Service IpInIp C:\WINNT\System32\DRIVERS\ipinip.sys **LOCKED**
14:43:27.585 Service IpNat C:\WINNT\System32\DRIVERS\ipnat.sys **LOCKED**
14:43:27.595 Service IPSEC C:\WINNT\System32\DRIVERS\ipsec.sys **LOCKED**
14:43:27.595 Service ipsraidn C:\WINNT\System32\Drivers\ipsraidn.sys **LOCKED**
14:43:27.595 Service IRENUM C:\WINNT\System32\DRIVERS\irenum.sys **LOCKED**
14:43:27.605 Service isapnp C:\WINNT\System32\DRIVERS\isapnp.sys **LOCKED**
14:43:27.605 Service Kbdclass C:\WINNT\System32\DRIVERS\kbdclass.sys **LOCKED**
14:43:27.605 Service kmixer C:\WINNT\system32\drivers\kmixer.sys **LOCKED**
14:43:27.615 Service KSecDD C:\WINNT\System32\Drivers\KSecDD.sys **LOCKED**
14:43:27.615 Service lbrtfdc C:\WINNT\System32\Drivers\lbrtfdc.sys **LOCKED**
14:43:27.615 Service lp6nds35 C:\WINNT\System32\Drivers\lp6nds35.sys **LOCKED**
14:43:27.625 Service mnmdd C:\WINNT\System32\Drivers\mnmdd.sys **LOCKED**
14:43:27.625 Service Modem C:\WINNT\System32\Drivers\Modem.sys **LOCKED**
14:43:27.625 Service Mouclass C:\WINNT\System32\DRIVERS\mouclass.sys **LOCKED**
14:43:27.635 Service MountMgr C:\WINNT\System32\Drivers\MountMgr.sys **LOCKED**
14:43:27.635 Service MPE C:\WINNT\system32\DRIVERS\MPE.sys **LOCKED**
14:43:27.635 Service mraid35x C:\WINNT\System32\DRIVERS\mraid35x.sys **LOCKED**
14:43:27.645 Service MSKSSRV C:\WINNT\system32\drivers\MSKSSRV.sys **LOCKED**
14:43:27.645 Service MSPCLOCK C:\WINNT\system32\drivers\MSPCLOCK.sys **LOCKED**
14:43:27.645 Service MSPQM C:\WINNT\system32\drivers\MSPQM.sys **LOCKED**
14:43:27.655 Service MSTEE C:\WINNT\system32\drivers\MSTEE.sys **LOCKED**
14:43:27.655 Service NABTSFEC C:\WINNT\system32\DRIVERS\NABTSFEC.sys **LOCKED**
14:43:27.655 Service Nbf C:\WINNT\System32\DRIVERS\nbf.sys **LOCKED**
14:43:27.665 Service Ncrc710 C:\WINNT\System32\Drivers\Ncrc710.sys **LOCKED**
14:43:27.665 Service NDIS C:\WINNT\System32\Drivers\NDIS.sys **LOCKED**
14:43:27.665 Service NdisTapi C:\WINNT\System32\DRIVERS\ndistapi.sys **LOCKED**
14:43:27.675 Service Ndisuio C:\WINNT\System32\DRIVERS\ndisuio.sys **LOCKED**
14:43:27.675 Service NdisWan C:\WINNT\System32\DRIVERS\ndiswan.sys **LOCKED**
14:43:27.675 Service NDProxy C:\WINNT\System32\Drivers\NDProxy.sys **LOCKED**
14:43:27.685 Service NetBT C:\WINNT\System32\DRIVERS\netbt.sys **LOCKED**
14:43:27.685 Service NetDetect C:\WINNT\system32\drivers\netdtect.sys **LOCKED**
14:43:27.695 Service Null C:\WINNT\System32\Drivers\Null.sys **LOCKED**
14:43:27.695 Service nv C:\WINNT\system32\DRIVERS\nv4_mini.sys **LOCKED**
14:43:27.705 Service nv4 C:\WINNT\System32\DRIVERS\nv4.sys **LOCKED**
14:43:27.705 Service NwlnkFlt C:\WINNT\System32\DRIVERS\nwlnkflt.sys **LOCKED**
14:43:27.705 Service NwlnkFwd C:\WINNT\System32\DRIVERS\nwlnkfwd.sys **LOCKED**
14:43:27.705 Service PACKET C:\WINNT\system32\drivers\packet.sys **LOCKED**
14:43:27.715 Service Parallel C:\WINNT\System32\DRIVERS\parallel.sys **LOCKED**
14:43:27.715 Service Parport C:\WINNT\System32\DRIVERS\parport.sys **LOCKED**
14:43:27.715 Service PartMgr C:\WINNT\System32\Drivers\PartMgr.sys **LOCKED**
14:43:27.725 Service ParVdm C:\WINNT\System32\Drivers\ParVdm.sys **LOCKED**
14:43:27.735 Service PCI C:\WINNT\System32\DRIVERS\pci.sys **LOCKED**
14:43:27.735 Service PCIDump C:\WINNT\System32\Drivers\PCIDump.sys **LOCKED**
14:43:27.735 Service PCIIde C:\WINNT\System32\DRIVERS\pciide.sys **LOCKED**
14:43:27.735 Service Pcmcia C:\WINNT\System32\Drivers\Pcmcia.sys **LOCKED**
14:43:27.745 Service PptpMiniport C:\WINNT\System32\DRIVERS\raspptp.sys **LOCKED**
14:43:27.745 Service Ptilink C:\WINNT\System32\DRIVERS\ptilink.sys **LOCKED**
14:43:27.755 Service ql1080 C:\WINNT\System32\Drivers\ql1080.sys **LOCKED**
14:43:27.755 Service Ql10wnt C:\WINNT\System32\Drivers\Ql10wnt.sys **LOCKED**
14:43:27.755 Service ql1240 C:\WINNT\System32\Drivers\ql1240.sys **LOCKED**
14:43:27.755 Service ql2100 C:\WINNT\System32\Drivers\ql2100.sys **LOCKED**
14:43:27.765 Service RasAcd C:\WINNT\System32\DRIVERS\rasacd.sys **LOCKED**
14:43:27.765 Service Rasl2tp C:\WINNT\System32\DRIVERS\rasl2tp.sys **LOCKED**
14:43:27.775 Service Raspti C:\WINNT\System32\DRIVERS\raspti.sys **LOCKED**
14:43:27.775 Service RCA C:\WINNT\system32\drivers\RCA.sys **LOCKED**
14:43:27.775 Service redbook C:\WINNT\System32\DRIVERS\redbook.sys **LOCKED**
14:43:27.785 Service ROOTMODEM C:\WINNT\System32\Drivers\RootMdm.sys **LOCKED**
14:43:27.795 Service Secdrv C:\WINNT\System32\drivers\SECDRV.SYS **LOCKED**
14:43:27.805 Service serenum C:\WINNT\System32\DRIVERS\serenum.sys **LOCKED**
14:43:27.805 Service Serial C:\WINNT\System32\DRIVERS\serial.sys **LOCKED**
14:43:27.815 Service Sfloppy C:\WINNT\System32\Drivers\Sfloppy.sys **LOCKED**
14:43:27.815 Service sglfb C:\WINNT\System32\Drivers\sglfb.sys **LOCKED**
14:43:27.815 Service SHARSHTL C:\WINNT\System32\Drivers\sharshtl.sys **LOCKED**
14:43:27.825 Service Simbad C:\WINNT\System32\Drivers\Simbad.sys **LOCKED**
14:43:27.825 Service SLIP C:\WINNT\system32\DRIVERS\SLIP.sys **LOCKED**
14:43:27.835 Service Sparrow C:\WINNT\System32\DRIVERS\sparrow.sys **LOCKED**
14:43:27.835 Service StillCam C:\WINNT\System32\DRIVERS\serscan.sys **LOCKED**
14:43:27.835 Service stltrk2k C:\WINNT\System32\Drivers\stltrk2k.sys **LOCKED**
14:43:27.845 Service streamip C:\WINNT\system32\DRIVERS\StreamIP.sys **LOCKED**
14:43:27.845 Service swenum C:\WINNT\System32\DRIVERS\swenum.sys **LOCKED**
14:43:27.845 Service swmidi C:\WINNT\system32\drivers\swmidi.sys **LOCKED**
14:43:27.855 Service symc810 C:\WINNT\System32\Drivers\symc810.sys **LOCKED**
14:43:27.855 Service symc8xx C:\WINNT\System32\Drivers\symc8xx.sys **LOCKED**
14:43:27.855 Service sym_hi C:\WINNT\System32\Drivers\sym_hi.sys **LOCKED**
14:43:27.855 Service sysaudio C:\WINNT\system32\drivers\sysaudio.sys **LOCKED**
14:43:27.865 Service Tcpip C:\WINNT\System32\DRIVERS\tcpip.sys **LOCKED**
14:43:27.865 Service tga C:\WINNT\System32\Drivers\tga.sys **LOCKED**
14:43:27.875 Service TVICHW32 C:\WINNT\system32\DRIVERS\TVICHW32.SYS **LOCKED**
14:43:27.875 Service uhcd C:\WINNT\System32\DRIVERS\uhcd.sys **LOCKED**
14:43:27.875 Service Ultra C:\WINNT\System32\DRIVERS\ultra.sys **LOCKED**
14:43:27.885 Service ultra66 C:\WINNT\System32\Drivers\ultra66.sys **LOCKED**
14:43:27.885 Service Update C:\WINNT\System32\DRIVERS\update.sys **LOCKED**
14:43:27.885 Service usb2vcom C:\WINNT\system32\DRIVERS\usb2vcom.sys **LOCKED**
14:43:27.885 Service usbhub C:\WINNT\System32\DRIVERS\usbhub.sys **LOCKED**
14:43:27.895 Service usbprint C:\WINNT\System32\DRIVERS\usbprint.sys **LOCKED**
14:43:27.895 Service usbscan C:\WINNT\system32\DRIVERS\usbscan.sys **LOCKED**
14:43:27.895 Service USBSTOR C:\WINNT\System32\DRIVERS\USBSTOR.SYS **LOCKED**
14:43:27.905 Service VgaSave C:\WINNT\System32\drivers\vga.sys **LOCKED**
14:43:27.905 Service Wanarp C:\WINNT\System32\DRIVERS\wanarp.sys **LOCKED**
14:43:27.905 Service wandrv C:\WINNT\System32\DRIVERS\wandrv.sys **LOCKED**
14:43:27.915 Service wdmaud C:\WINNT\system32\drivers\wdmaud.sys **LOCKED**
14:43:27.915 Service Winsock C:\WINNT\System32\Drivers\Winsock.sys **LOCKED**
14:43:27.925 Service WSTCODEC C:\WINNT\system32\DRIVERS\WSTCODEC.SYS **LOCKED**
14:43:28.436 Modules scanning
14:43:46.442 Disk 0 trace - called modules:
14:43:46.462 ntoskrnl.exe CLASSPNP.SYS disk.sys SCSIPORT.SYS hal.dll intelata.sys
14:43:46.462 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8203ba10]
14:43:46.462 3 CLASSPNP.SYS[eb470c60] -> nt!IofCallDriver -> \Device\Scsi\IntelATA1Port0Path0Target0Lun0[0x820352d0]
14:43:46.462 Scan finished successfully
14:44:38.647 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Lyn James.SYSTEM-4\Desktop\MBR.dat "
14:44:38.647 The log file has been saved successfully to "C:\Documents and Settings\Lyn James.SYSTEM-4\Desktop\aswMBR.txt "

---------------------------------------------------
---------------------------------------------------
.
DDS (Ver_2011-08-26.01) - FAT32x86
Internet Explorer: 6.0.2800.1106
Run by Lyn James at 14:48:58 on 2011-11-04
Microsoft Windows 2000 Professional 5.0.2195.4.1252.1.1033.18.511.160 [GMT 0:00]
.
.
============== Running Processes ===============
.
C:\WINNT\system32\spoolsv.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\WINNT\system32\nvsvc32.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\System32\tcpsvcs.exe
C:\WINNT\System32\snmp.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\WINNT\system32\stisvc.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINNT\system32\RUNDLL32.EXE
C:\WINNT\Explorer.EXE
C:\Program Files\internet explorer\iexplore.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
mURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg9\avgssie.dll
BHO: ST: {9394ede7-c8b5-483e-8773-474bf36af6e4} - c:\program files\msn apps\st\01.03.0000.1005\en-xu\stmain.dll
BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\3.1.807.1746\swg.dll
BHO: MSNToolBandBHO: {bdbd1dad-c946-4a17-adc1-64b5b4ff55d0} - c:\program files\msn apps\msn toolbar\01.02.5000.1021\en-gb\msntb.dll
TB: {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No File
TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [NvMediaCenter] RUNDLL32.EXE c:\winnt\system32\NvMcTray.dll,NvTaskbarInit
mRun: [nwiz] nwiz.exe /install
mRun: [NvCplDaemon] RUNDLL32.EXE c:\winnt\system32\NvCpl.dll,NvStartup
mRun: [TomcatStartup] c:\program files\hewlett-packard\toolbox2.0\hpbpsttp.exe
mRun: [StatusClient] c:\program files\hewlett-packard\toolbox2.0\apache tomcat 4.0\webapps\toolbox\statusclient\StatusClient.exe /auto
mRun: [RealTray] c:\program files\real\realplayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
mRun: [Synchronization Manager] mobsync.exe /logon
mRun: [WorksFUD] c:\program files\microsoft works\wkfud.exe
mRun: [Microsoft Works Portfolio] c:\program files\microsoft works\WksSb.exe /AllUsers
mRun: [Microsoft Works Update Detection] c:\program files\microsoft works\WkDetect.exe
mRunOnce: [Malwarebytes' Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent
dRunOnce: [^SetupICWDesktop] c:\program files\internet explorer\connection wizard\icwconn1.exe /desktop
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\micros~2.lnk - c:\program files\microsoft office\office\OSA9.EXE
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\micros~1.lnk - c:\program files\common files\microsoft shared\works shared\wkcalrem.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adober~1.lnk - c:\program files\adobe\acrobat 7.0\reader\reader_sl.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\winzip~1.lnk - c:\program files\winzip\WZQKPICK.EXE
IE: {c95fe080-8f5d-11d2-a20b-00aa003c157a} - %SystemRoot%\web\related.htm
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0015-0000-0007-ABCDEFFEDCBC} - c:\program files\java\jre1.5.0_07\bin\npjpi150_07.dll
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\winnt\system32\Shdocvw.dll
DPF: DirectAnimation Java Classes - file://c:\winnt\java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\winnt\java\classes\xmldso.cab
DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} - hxxp://office.microsoft.com/sites/production/ieawsdc32.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://go.microsoft.com/fwlink/?linkid=39204
DPF: {32564D57-0000-0010-8000-00AA00389B71} - hxxp://codecs.microsoft.com/codecs/i386/wmv8ax.cab
DPF: {6B75345B-AA36-438A-BBE6-4078B4C6984D} - hxxp://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1180115978708
DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} - hxxp://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection2.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {A796D216-2DE1-4EA8-BABB-FE6E7C959098} - hxxp://www.hp.com/cpso-support-new/SDD/hpsddObjSigned.cab
DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} - hxxp://www.crucial.com/controls/cpcScanner.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
TCP: DhcpNameServer = 192.168.1.254
TCP: Interfaces\{82C8009B-CBE7-4102-91F9-43DB273D8B5C} : DhcpNameServer = 192.168.1.254
Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg9\avgpp.dll
Notify: avgrsstarter - avgrsstx.dll
Notify: nwprovau - nwprovau.dll
.
============= SERVICES / DRIVERS ===============
.
R0 aaatimeo;aaatimeo;c:\winnt\system32\drivers\AAATIMEO.SYS [1980-1-1 4928]
R0 DiMaint;Eicon Maintenance Driver;c:\winnt\system32\drivers\disdn\dimaint.sys [2001-7-21 86288]
R0 fasttrak;fasttrak;c:\winnt\system32\drivers\Fasttrak.sys [2001-5-1 64418]
R0 idebd;idebd;c:\winnt\system32\drivers\IdeBd.sys [2001-5-1 3737]
R0 IntelATA;IntelATA;c:\winnt\system32\drivers\IntelATA.sys [2001-5-1 118480]
R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\winnt\system32\drivers\avgldx86.sys [2009-12-15 216400]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\winnt\system32\drivers\avgmfx86.sys [2009-12-15 29712]
R1 AvgTdiX;AVG Free Network Redirector;c:\winnt\system32\drivers\avgtdix.sys [2009-12-15 243152]
R1 cmosa;cmosa;c:\winnt\system32\drivers\cmosa.sys [2001-5-1 29344]
R2 avg9wd;AVG Free WatchDog;c:\program files\avg\avg9\avgwdsvc.exe [2010-7-17 308136]
R2 DiCapi;Eicon CAPI 2.0 Driver;c:\winnt\system32\drivers\disdn\capi202k.sys [2001-7-21 135824]
R2 DiPort;Eicon Port Driver;c:\winnt\system32\drivers\disdn\diport40.sys [2001-7-21 172912]
R3 Diwan;Eicon Driver for all DIVA Client cards;c:\winnt\system32\drivers\disdn\Diwan.sys [2001-7-21 922944]
R3 es1371mp;SB AudioPCI 64V Audio Driver (WDM);c:\winnt\system32\drivers\es1371mp.sys [1980-1-1 42623]
S0 cda1000;cda1000;c:\winnt\system32\drivers\CDA1000.SYS [1980-1-1 280608]
S0 epstwnt;epstwnt;c:\winnt\system32\drivers\epstwnt.mpd [2001-6-10 82432]
S2 ELSAWAN;ELSA LANCAPI (NDISWAN MiniPort) (Ver. 3.02.0005);c:\winnt\system32\drivers\ELSAWAN.sys [2001-7-20 19968]
S2 SHARSHTL;Shuttle Sharer;c:\winnt\system32\drivers\sharshtl.sys [2001-6-10 18432]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\avg\avg9\toolbar\ToolbarBroker.exe [2010-10-26 16384]
S3 EL90BC;3Com EtherLink XL B/C Adapter Driver;c:\winnt\system32\drivers\EL90XBC5.SYS [1980-1-1 61712]
S3 fnetusb;fnetusb;c:\winnt\system32\drivers\fnetusb.sys [2009-4-1 13696]
S3 usb2vcom;DKU-5 Connectivity Adapter Cable;c:\winnt\system32\drivers\usb2vcom.sys [2005-12-2 28928]
.
=============== File Associations ===============
.
JSEFile=NOTEPAD.EXE %1
.
=============== Created Last 30 ================
.
2011-11-04 13:59:01 -------- d-----w- c:\documents and settings\lyn james.system-4\application data\Malwarebytes
2011-11-04 13:58:38 20552 ----a-w- c:\winnt\system32\drivers\mbam.sys
2011-11-04 13:58:37 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-11-01 14:18:00 -------- d-----w- C:\FOUND.002
2011-11-01 14:09:02 -------- d-----w- C:\FOUND.001
2011-11-01 10:24:13 -------- d-s---w- c:\documents and settings\lyn james.system-4\UserData
2011-11-01 09:48:25 -------- d-----w- c:\documents and settings\lyn james.system-4\application data\IObit
2011-10-30 17:28:22 -------- d-----w- c:\documents and settings\lyn james.system-4\local settings\application data\Adobe
.
==================== Find3M ====================
.
2003-07-22 12:14:48 1694551 ----a-w- c:\program files\aaw6181.exe
.
============= FINISH: 14:49:51.17 ===============

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows 2000 Professional
Boot Device:
Install Date:
System Uptime: (980438 hours ago)
.
Motherboard: Intel Corporation | | D815EEA
Processor: Intel Pentium III processor | J4L1 | 996/133mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (FAT32) - 19 GiB total, 8.173 GiB free.
D: is CDROM ()
E: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E96A-E325-11CE-BFC1-08002BE10318}
Description: Primary IDE Channel
Device ID: PCIIDE\IDECHANNEL\4&19EACCA4&0&0
Manufacturer: (Standard IDE ATA/ATAPI controllers)
Name: Primary IDE Channel
PNP Device ID: PCIIDE\IDECHANNEL\4&19EACCA4&0&0
Service: atapi
.
Class GUID: {4D36E96A-E325-11CE-BFC1-08002BE10318}
Description: Secondary IDE Channel
Device ID: PCIIDE\IDECHANNEL\4&19EACCA4&0&1
Manufacturer: (Standard IDE ATA/ATAPI controllers)
Name: Secondary IDE Channel
PNP Device ID: PCIIDE\IDECHANNEL\4&19EACCA4&0&1
Service: atapi
.
==== System Restore Points ===================
.
No restore point in system.
.
==== Installed Programs ======================
.
Adaptec Easy CD Creator 4
Adobe Atmosphere Player for Acrobat and Adobe Reader
Adobe Flash Player 10 ActiveX
Adobe Reader 7.0
Advanced SystemCare 3
Any DWG to PDF Converter 2008
ATI Win2k Display Driver
AutoCAD 2000
AVG Free 9.0
Camera Support Core Library
Camera Window DS
Camera Window DVC
Camera Window MC
Canon Camera Support Core Library
Canon Camera TWAIN Driver
Canon Camera TWAIN Driver 6.5
Canon Camera Window DC_DV 5 for ZoomBrowser EX
Canon Camera Window DS for ZoomBrowser EX
Canon Camera Window MC 5 for ZoomBrowser EX
Canon MovieEdit Task for ZoomBrowser EX
Canon PhotoRecord
Canon RAW Image Task for ZoomBrowser EX
Canon Utilities PhotoStitch 3.1
Canon ZoomBrowser EX
CCleaner (remove only)
ConstructionSkills
Dell ResourceCD
Dell Solution Center
Fluke Networks Cable Manager
Google Earth
HijackThis 2.0.2
Hotfix for MDAC 2.53 (KB927779)
HP DeskJet 1220C Printer
HP Install Network Printer Wizard
hp LaserJet 1010 Series
HP Product Detection
HP Standard Port Monitor
Intel Ultra ATA Storage Driver
J2SE Runtime Environment 5.0 Update 7
LinkWare
Malwarebytes' Anti-Malware version 1.51.2.1300
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB971108)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft FrontPage 2000
Microsoft IntelliPoint
Microsoft Money 2001
Microsoft Office 2000 SR-1 Professional
Microsoft Picture It! Publishing 2001
Microsoft Project 2000
Microsoft Visual C++ 2005 Redistributable
Microsoft Word 2000 SR-1
Microsoft Works 2001 Setup Launcher
Microsoft Works 6.0
Microsoft Works Suite Add-in for Microsoft Word
Microsoft XML Parser and SDK
MovieEdit Task
MSN Messenger 7.0
MSN Toolbar
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MultiMediaCard Ver 3.00
Network Access Registration
Network Play System (Patching)
NVIDIA Drivers
PhoneTools
PhotoStitch
PRO200WL
Program Files
QuickTime
RAW Image Task 2.1
RealPlayer Basic
Recuva
Revo Uninstaller 1.91
RP3DA_Builder
Security Update for CAPICOM (KB931906)
Security Update for DirectX 9 (KB941568)
Security Update for DirectX 9 (KB951698)
Security Update for DirectX 9.0 (KB971633)
Security Update for DirectX 9.0 (KB975560)
Security Update for DirectX 9.0 (KB975562)
Security Update for Windows 2000 (KB904706)
Security Update for Windows 2000 (KB923689)
Security Update for Windows 2000 (KB941569)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB975025)
Security Update for Windows Media Player (KB977816)
Security Update for Windows Media Player (KB979402)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows Media Player 6.4 (KB954600)
Security Update for Windows Media Player 6.4 (KB974112)
Security Update for Windows Media Player 9 (KB917734)
Security Update for Windows Media Player 9 (KB936782)
Security Update for Windows Media Player 9 (KB973540)
Sharpmark Labelling Software
Shockwave
Snood for Windows version 3.02-W
Symantec Technical Support Web Controls
Update Rollup 1 for Windows 2000 SP4
Visio
Visio 2000 (IE)
WebFldrs
WebReg
WIN Doc Pro 3.5
Windows 2000 Hotfix - KB842773
Windows 2000 Hotfix - KB890046
Windows 2000 Hotfix - KB893756
Windows 2000 Hotfix - KB896358
Windows 2000 Hotfix - KB896422
Windows 2000 Hotfix - KB896423
Windows 2000 Hotfix - KB899587
Windows 2000 Hotfix - KB899589
Windows 2000 Hotfix - KB900725
Windows 2000 Hotfix - KB901017
Windows 2000 Hotfix - KB901214
Windows 2000 Hotfix - KB905414
Windows 2000 Hotfix - KB905495
Windows 2000 Hotfix - KB905749
Windows 2000 Hotfix - KB908519
Windows 2000 Hotfix - KB908531
Windows 2000 Hotfix - KB911280
Windows 2000 Hotfix - KB913580
Windows 2000 Hotfix - KB914388
Windows 2000 Hotfix - KB914389
Windows 2000 Hotfix - KB917008
Windows 2000 Hotfix - KB917736
Windows 2000 Hotfix - KB917953
Windows 2000 Hotfix - KB918118
Windows 2000 Hotfix - KB918439
Windows 2000 Hotfix - KB920213
Windows 2000 Hotfix - KB920670
Windows 2000 Hotfix - KB920683
Windows 2000 Hotfix - KB920685
Windows 2000 Hotfix - KB921398
Windows 2000 Hotfix - KB922582
Windows 2000 Hotfix - KB923191
Windows 2000 Hotfix - KB923414
Windows 2000 Hotfix - KB923561
Windows 2000 Hotfix - KB923694
Windows 2000 Hotfix - KB923810
Windows 2000 Hotfix - KB923980
Windows 2000 Hotfix - KB924191
Windows 2000 Hotfix - KB924270
Windows 2000 Hotfix - KB924667
Windows 2000 Hotfix - KB925902
Windows 2000 Hotfix - KB926122
Windows 2000 Hotfix - KB926247
Windows 2000 Hotfix - KB926436
Windows 2000 Hotfix - KB927891
Windows 2000 Hotfix - KB928843
Windows 2000 Hotfix - KB929969
Windows 2000 Hotfix - KB930178
Windows 2000 Hotfix - KB931784
Windows 2000 Hotfix - KB932168
Windows 2000 Hotfix - KB933566
Windows 2000 Hotfix - KB933729
Windows 2000 Hotfix - KB935839
Windows 2000 Hotfix - KB935840
Windows 2000 Hotfix - KB936021
Windows 2000 Hotfix - KB937894
Windows 2000 Hotfix - KB938127
Windows 2000 Hotfix - KB938464
Windows 2000 Hotfix - KB938827
Windows 2000 Hotfix - KB941202
Windows 2000 Hotfix - KB941644
Windows 2000 Hotfix - KB941693
Windows 2000 Hotfix - KB943055
Windows 2000 Hotfix - KB943485
Windows 2000 Hotfix - KB944338
Windows 2000 Hotfix - KB945553
Windows 2000 Hotfix - KB947864
Windows 2000 Hotfix - KB948590
Windows 2000 Hotfix - KB948881
Windows 2000 Hotfix - KB950749
Windows 2000 Hotfix - KB950974
Windows 2000 Hotfix - KB951066
Windows 2000 Hotfix - KB951748
Windows 2000 Hotfix - KB951748-V2
Windows 2000 Hotfix - KB952004
Windows 2000 Hotfix - KB952954
Windows 2000 Hotfix - KB953838
Windows 2000 Hotfix - KB953839
Windows 2000 Hotfix - KB955069
Windows 2000 Hotfix - KB955759
Windows 2000 Hotfix - KB956802
Windows 2000 Hotfix - KB956844
Windows 2000 Hotfix - KB957097
Windows 2000 Hotfix - KB958470
Windows 2000 Hotfix - KB958644
Windows 2000 Hotfix - KB958687
Windows 2000 Hotfix - KB958869
Windows 2000 Hotfix - KB959426
Windows 2000 Hotfix - KB960225
Windows 2000 Hotfix - KB960803
Windows 2000 Hotfix - KB960859
Windows 2000 Hotfix - KB961371-V2
Windows 2000 Hotfix - KB961501
Windows 2000 Hotfix - KB967715
Windows 2000 Hotfix - KB968537
Windows 2000 Hotfix - KB969059
Windows 2000 Hotfix - KB969947
Windows 2000 Hotfix - KB970238
Windows 2000 Hotfix - KB971468
Windows 2000 Hotfix - KB971557
Windows 2000 Hotfix - KB971961
Windows 2000 Hotfix - KB972260
Windows 2000 Hotfix - KB972270
Windows 2000 Hotfix - KB973346
Windows 2000 Hotfix - KB973354
Windows 2000 Hotfix - KB973507
Windows 2000 Hotfix - KB973869
Windows 2000 Hotfix - KB973904
Windows 2000 Hotfix - KB974318
Windows 2000 Hotfix - KB974392
Windows 2000 Hotfix - KB974571
Windows 2000 Hotfix - KB977165-V2
Windows 2000 Hotfix - KB977914
Windows 2000 Hotfix - KB978037
Windows 2000 Hotfix - KB978251
Windows 2000 Hotfix - KB978262
Windows 2000 Hotfix - KB978542
Windows 2000 Hotfix - KB978601
Windows 2000 Hotfix - KB978706
Windows 2000 Hotfix - KB979309
Windows 2000 Hotfix - KB979482
Windows 2000 Hotfix - KB979559
Windows 2000 Hotfix - KB979683
Windows 2000 Hotfix - KB980182
Windows 2000 Hotfix - KB980195
Windows 2000 Hotfix - KB980218
Windows 2000 Hotfix - KB980232
Windows 2000 Hotfix - KB981350
Windows 2000 Hotfix - KB982381
Windows Installer 3.1 (KB893803)
Windows Media Player Hotfix [See Q828026 for more information]
Windows Media Player system update (9 Series)
WinZip
Works Suite OS Pack
Works Synchronization
.
==== End Of File ===========================

I can see it highlighted a (*** Hidden***) problem
Can you offer any advise please

Regards
peter

 

Hello Broni,
Appologies for the 2x posts but there were toomany characters for 1x post and I didn't know how else to do it.
Below is the log as you requested:
17:15:00.0800 0980 TDSS rootkit removing tool 2.6.15.0 Nov 3 2011 17:15:49
17:15:01.0081 0980 ============================================================
17:15:01.0081 0980 Current date / time: 2011/11/04 17:15:01.0081
17:15:01.0081 0980 SystemInfo:
17:15:01.0081 0980
17:15:01.0081 0980 OS Version: 5.0.2195 ServicePack: 4.0
17:15:01.0081 0980 Product type: Workstation
17:15:01.0081 0980 ComputerName: SYSTEM-4
17:15:01.0081 0980 UserName: Lyn James
17:15:01.0081 0980 Windows directory: C:\WINNT
17:15:01.0081 0980 System windows directory: C:\WINNT
17:15:01.0081 0980 Processor architecture: Intel x86
17:15:01.0081 0980 Number of processors: 1
17:15:01.0081 0980 Page size: 0x1000
17:15:01.0081 0980 Boot type: Normal boot
17:15:01.0081 0980 ============================================================
17:15:02.0122 0980 Initialize success
17:15:05.0938 1228 ============================================================
17:15:05.0938 1228 Scan started
17:15:05.0938 1228 Mode: Manual;
17:15:05.0938 1228 ============================================================
17:15:08.0642 1228 aaatimeo (700eedfd930871e73999e86e86b6e2e4) C:\WINNT\system32\DRIVERS\aaatimeo.sys
17:15:08.0642 1228 aaatimeo - ok
17:15:10.0705 1228 Abiosdsk - ok
17:15:12.0677 1228 abp480n5 - ok
17:15:14.0550 1228 ACPI (083049d5dc3f32d17c2edfb732c78a09) C:\WINNT\system32\DRIVERS\ACPI.sys
17:15:14.0560 1228 ACPI - ok
17:15:16.0383 1228 ACPIEC (4b10b4db777ee2ef8e755e7f3d7c4fe8) C:\WINNT\system32\drivers\ACPIEC.sys
17:15:16.0383 1228 ACPIEC - ok
17:15:18.0165 1228 adpu160m (31b7c8770fda8a3a44bca9dcfe2d1e8b) C:\WINNT\system32\DRIVERS\adpu160m.sys
17:15:18.0165 1228 adpu160m - ok
17:15:19.0337 1228 AFD (632d753e9f103ebd30b18ce9f03596ab) C:\WINNT\System32\drivers\afd.sys
17:15:19.0337 1228 AFD - ok
17:15:21.0170 1228 agp440 (cddb71a90077c93bea5c72507f0b1394) C:\WINNT\system32\DRIVERS\agp440.sys
17:15:21.0170 1228 agp440 - ok
17:15:23.0173 1228 Aha154x - ok
17:15:25.0266 1228 aic116x - ok
17:15:26.0838 1228 aic78u2 (b70b2ca4b97847c57e39051f3df41811) C:\WINNT\system32\DRIVERS\aic78u2.sys
17:15:26.0838 1228 aic78u2 - ok
17:15:28.0470 1228 aic78xx (ed843659d0eacf21cb12d96ab4d98c03) C:\WINNT\system32\DRIVERS\aic78xx.sys
17:15:28.0470 1228 aic78xx - ok
17:15:30.0353 1228 ami0nt - ok
17:15:32.0266 1228 amsint - ok
17:15:34.0178 1228 asc - ok
17:15:36.0081 1228 asc3350p - ok
17:15:37.0984 1228 asc3550 - ok
17:15:39.0756 1228 Aspi32 (20d04091eba710f6988f710507d85868) C:\WINNT\system32\drivers\Aspi32.sys
17:15:39.0766 1228 Aspi32 - ok
17:15:41.0499 1228 AsyncMac (5d3d77c9eb3a8e6a14cc8e1252b6cc5c) C:\WINNT\system32\DRIVERS\asyncmac.sys
17:15:41.0509 1228 AsyncMac - ok
17:15:43.0251 1228 atapi (8c718aa8c77041b3285d55a0ce980867) C:\WINNT\system32\DRIVERS\atapi.sys
17:15:43.0261 1228 atapi - ok
17:15:45.0154 1228 Atdisk - ok
17:15:46.0827 1228 ati2mtaa (eec9c6ce66cee1f35fd220f5147e8c2d) C:\WINNT\system32\DRIVERS\ati2mtaa.sys
17:15:46.0837 1228 ati2mtaa - ok
17:15:47.0197 1228 Atmarpc (3e348b3313ea633d45caf59da0d631ba) C:\WINNT\system32\DRIVERS\atmarpc.sys
17:15:47.0207 1228 Atmarpc - ok
17:15:48.0519 1228 audstub (39d57104a45270f0d376e9ddb484ebbd) C:\WINNT\system32\DRIVERS\audstub.sys
17:15:48.0519 1228 audstub - ok
17:15:49.0831 1228 AvgLdx86 (b8c187439d27aba430dd69fdcf1fa657) C:\WINNT\System32\Drivers\avgldx86.sys
17:15:49.0841 1228 AvgLdx86 - ok
17:15:50.0352 1228 AvgMfx86 (80ff2b1b7eeda966394f0baa895bbf4b) C:\WINNT\System32\Drivers\avgmfx86.sys
17:15:50.0352 1228 AvgMfx86 - ok
17:15:51.0674 1228 AvgTdiX (9a7a93388f503a34e7339ae7f9997449) C:\WINNT\System32\Drivers\avgtdix.sys
17:15:51.0684 1228 AvgTdiX - ok
17:15:52.0054 1228 Beep (df012c2853281ce2bf536e8de871c8c1) C:\WINNT\system32\drivers\Beep.sys
17:15:52.0054 1228 Beep - ok
17:15:53.0987 1228 BusLogic - ok
17:15:55.0689 1228 catchme - ok
17:15:57.0101 1228 CCDECODE (1478e6a09512235b9e119d2920477021) C:\WINNT\system32\DRIVERS\CCDECODE.sys
17:15:57.0101 1228 CCDECODE - ok
17:15:58.0984 1228 cd20xrnt - ok
17:16:00.0376 1228 cda1000 (5de1200c99da1a5d7dc8b6509d95ca6e) C:\WINNT\system32\DRIVERS\cda1000.sys
17:16:00.0376 1228 cda1000 - ok
17:16:00.0767 1228 Cdaudio (b101e013d810d6125e17125e324fcd2c) C:\WINNT\system32\drivers\Cdaudio.sys
17:16:00.0767 1228 Cdaudio - ok
17:16:02.0279 1228 Cdfs (66c19373d5eb657fb028133bde5d2acb) C:\WINNT\system32\drivers\Cdfs.sys
17:16:02.0279 1228 Cdfs - ok
17:16:03.0771 1228 Cdr4_2K (bf79e659c506674c0497cc9c61f1a165) C:\WINNT\system32\drivers\Cdr4_2K.sys
17:16:03.0771 1228 Cdr4_2K - ok
17:16:05.0253 1228 Cdralw2k (8d82cfc410f2512f333b352089d0b38b) C:\WINNT\system32\drivers\Cdralw2k.sys
17:16:05.0253 1228 Cdralw2k - ok
17:16:07.0006 1228 Cdrom (4b86a90a7f0095d514d22a9083826488) C:\WINNT\system32\DRIVERS\cdrom.sys
17:16:07.0016 1228 Cdrom - ok
17:16:08.0948 1228 Changer - ok
17:16:10.0621 1228 cmosa (2bb3c81c74f83f9a86239e088ec4bd6a) C:\WINNT\system32\DRIVERS\cmosa.sys
17:16:10.0621 1228 cmosa - ok
17:16:12.0433 1228 Compbatt (1f7ffaacb988e2ff473ac128beca0a05) C:\WINNT\system32\DRIVERS\compbatt.sys
17:16:12.0433 1228 Compbatt - ok
17:16:14.0346 1228 Cpqarray - ok
17:16:16.0229 1228 cpqarry2 - ok
17:16:18.0112 1228 cpqfcalm - ok
17:16:19.0994 1228 cpqfws2e - ok
17:16:21.0236 1228 ctljystk (4a4791a53d9f551d7f0083b08baa49fa) C:\WINNT\system32\DRIVERS\ctljystk.sys
17:16:21.0236 1228 ctljystk - ok
17:16:23.0169 1228 dac960nt - ok
17:16:25.0082 1228 deckzpsx - ok
17:16:25.0542 1228 DiCapi (845d08cf5d543b0486f3f57791913184) C:\WINNT\system32\DRIVERS\DISDN\capi202k.sys
17:16:25.0552 1228 DiCapi - ok
17:16:25.0993 1228 DiMaint (0f6fe9a2bcc4ee0ca6af2ea1d5e3363c) C:\WINNT\system32\DRIVERS\disdn\dimaint.sys
17:16:25.0993 1228 DiMaint - ok
17:16:26.0423 1228 DiPort (b32805c3a7fe3debffee0f542056173b) C:\WINNT\system32\DRIVERS\DISDN\diport40.sys
17:16:26.0423 1228 DiPort - ok
17:16:28.0256 1228 Disk (322b9a3774dbf119f6635a476b0eb058) C:\WINNT\system32\DRIVERS\disk.sys
17:16:28.0256 1228 Disk - ok
17:16:30.0099 1228 Diskperf (fd94497dd145b3920f5c393eab50ee3a) C:\WINNT\system32\drivers\Diskperf.sys
17:16:30.0099 1228 Diskperf - ok
17:16:30.0589 1228 Diwan (5ed884831ce0a83dc55b3798ebf007a5) C:\WINNT\system32\DRIVERS\DISDN\Diwan.sys
17:16:30.0610 1228 Diwan - ok
17:16:31.0581 1228 DM9102 (efa372b03fa797c615add67b364e9c29) C:\WINNT\system32\DRIVERS\DM9PCI5.SYS
17:16:31.0581 1228 DM9102 - ok
17:16:33.0454 1228 dmboot (0b91c63540682bc3c826fc6d8b3ecb7b) C:\WINNT\system32\drivers\dmboot.sys
17:16:33.0464 1228 dmboot - ok
17:16:35.0306 1228 dmio (6b35bfdbdbc247113852f18bf0f10e3c) C:\WINNT\system32\drivers\dmio.sys
17:16:35.0306 1228 dmio - ok
17:16:37.0169 1228 dmload (3f1701ffa97ab012685abc8a2d6fce22) C:\WINNT\system32\drivers\dmload.sys
17:16:37.0169 1228 dmload - ok
17:16:38.0421 1228 DMusic (3431984234b5988d4c09f043cf4cd779) C:\WINNT\system32\drivers\DMusic.sys
17:16:38.0431 1228 DMusic - ok
17:16:40.0354 1228 EFS (b2916926428c0410fc1a26da0b650e41) C:\WINNT\system32\drivers\EFS.sys
17:16:40.0354 1228 EFS - ok
17:16:41.0565 1228 EL90BC (42b84a53ae478073dbe6bfdbe683df96) C:\WINNT\system32\DRIVERS\el90xbc5.sys
17:16:41.0565 1228 EL90BC - ok
17:16:43.0248 1228 ELSAWAN (4b0b50800693927abc6cbacdffed9645) C:\WINNT\system32\DRIVERS\ELSAWAN.sys
17:16:43.0258 1228 ELSAWAN - ok
17:16:44.0489 1228 emu10k (50ddcfd7793f0dacec977e312e7a56c2) C:\WINNT\system32\drivers\emu10k1.sys
17:16:44.0489 1228 emu10k - ok
17:16:46.0082 1228 epstwnt (161bbf9fd1c6b41c8e30f8282a36011a) C:\WINNT\system32\Drivers\epstwnt.mpd
17:16:46.0092 1228 epstwnt - ok
17:16:47.0654 1228 es1371mp (8ab874a734827817aba1b914de673793) C:\WINNT\system32\drivers\es1371mp.sys
17:16:47.0654 1228 es1371mp - ok
17:16:49.0216 1228 Fastfat (533478c99ca81fd700bcf6a2754ce793) C:\WINNT\system32\drivers\Fastfat.sys
17:16:49.0216 1228 Fastfat - ok
17:16:50.0839 1228 fasttrak (d03e959bbd9b534486434dc40e73190c) C:\WINNT\system32\DRIVERS\fasttrak.sys
17:16:50.0839 1228 fasttrak - ok
17:16:52.0401 1228 Fd16_700 (29dab4083bc78729299d090a694080d6) C:\WINNT\system32\DRIVERS\fd16_700.sys
17:16:52.0401 1228 Fd16_700 - ok
17:16:54.0294 1228 Fdc (233e2c4dae9c84cef241f0ea30619629) C:\WINNT\system32\DRIVERS\fdc.sys
17:16:54.0294 1228 Fdc - ok
17:16:56.0036 1228 Fips (b27a36d4725a362a13d0c52ad6c7175b) C:\WINNT\system32\drivers\Fips.sys
17:16:56.0046 1228 Fips - ok
17:16:57.0949 1228 fireport - ok
17:16:59.0862 1228 flashpnt - ok
17:17:01.0744 1228 Flpydisk (6ca845333da54f27a8657be7ee0b600d) C:\WINNT\system32\DRIVERS\flpydisk.sys
17:17:01.0744 1228 Flpydisk - ok
17:17:03.0006 1228 FltMgr (f574c40cd0db393c361363cc21592f4a) C:\WINNT\system32\drivers\fltmgr.sys
17:17:03.0016 1228 FltMgr - ok
17:17:04.0208 1228 fnetusb (dc7e2ac9996a39e24ccd4aafe7857d69) C:\WINNT\system32\DRIVERS\fnetusb.sys
17:17:04.0208 1228 fnetusb - ok
17:17:06.0131 1228 Fs_Rec (405f231ad65c03dac70992a2aba759a5) C:\WINNT\system32\drivers\Fs_Rec.sys
17:17:06.0131 1228 Fs_Rec - ok
17:17:07.0693 1228 Ftdisk (c757a3eefa44ea2d562424a4060329a6) C:\WINNT\system32\DRIVERS\ftdisk.sys
17:17:07.0693 1228 Ftdisk - ok
17:17:09.0676 1228 gameenum (1ee4975fbc708f34a6b07c8e47f6fa3a) C:\WINNT\system32\DRIVERS\gameenum.sys
17:17:09.0676 1228 gameenum - ok
17:17:10.0236 1228 Gpc (6667d07854a3ae7715d22b82761cf0e7) C:\WINNT\system32\DRIVERS\msgpc.sys
17:17:10.0236 1228 Gpc - ok
17:17:10.0717 1228 HPZid412 (2a8a2aa68185b47632188f1a8be44170) C:\WINNT\system32\DRIVERS\HPZid412.sys
17:17:10.0717 1228 HPZid412 - ok
17:17:11.0989 1228 HPZipr12 (0a520679b0ad3f438e88b746d0c5ba6c) C:\WINNT\system32\DRIVERS\HPZipr12.sys
17:17:11.0989 1228 HPZipr12 - ok
17:17:13.0341 1228 HPZius12 (1d53f2b2051a3fce2c8ef0e01b042e25) C:\WINNT\system32\DRIVERS\HPZius12.sys
17:17:13.0341 1228 HPZius12 - ok
17:17:15.0334 1228 i8042prt (3b538e8a6b5e078406159edfe09a5e53) C:\WINNT\system32\DRIVERS\i8042prt.sys
17:17:15.0334 1228 i8042prt - ok
17:17:16.0956 1228 idebd (7809790d4d8de75f30702410ac71a58b) C:\WINNT\system32\DRIVERS\idebd.sys
17:17:16.0956 1228 idebd - ok
17:17:18.0829 1228 ini910u - ok
17:17:20.0481 1228 IntelATA (fd320fdb6c7fc6ed60bb3cfd63b24faf) C:\WINNT\system32\DRIVERS\intelata.sys
17:17:20.0481 1228 IntelATA - ok
17:17:22.0394 1228 IntelIde (2c764febd7197e3331556fe215add934) C:\WINNT\system32\DRIVERS\intelide.sys
17:17:22.0394 1228 IntelIde - ok
17:17:23.0996 1228 IPFilter (5b64375d5ff9198b74b0ac50299d6f09) C:\WINNT\system32\DRIVERS\IPFilter.sys
17:17:23.0996 1228 IPFilter - ok
17:17:24.0547 1228 IpFilterDriver (09a604211e2b2334fc023a41337e3165) C:\WINNT\system32\DRIVERS\ipfltdrv.sys
17:17:24.0557 1228 IpFilterDriver - ok
17:17:25.0118 1228 IpInIp (dbc1437b56eea1af02cd39c011904491) C:\WINNT\system32\DRIVERS\ipinip.sys
17:17:25.0118 1228 IpInIp - ok
17:17:26.0670 1228 IpNat (adb8a3465c0fc01c3ae633adb33fcbb3) C:\WINNT\system32\DRIVERS\ipnat.sys
17:17:26.0670 1228 IpNat - ok
17:17:28.0152 1228 IPSEC (9d61c8e8044bdaac6d922eb27552f93a) C:\WINNT\system32\DRIVERS\ipsec.sys
17:17:28.0162 1228 IPSEC - ok
17:17:30.0085 1228 ipsraidn - ok
17:17:31.0227 1228 IRENUM (7f5315e32be0632f680b30e03a2ca809) C:\WINNT\system32\DRIVERS\irenum.sys
17:17:31.0227 1228 IRENUM - ok
17:17:31.0577 1228 isapnp (b630369ca276fd208c1b5146920b5f2e) C:\WINNT\system32\DRIVERS\isapnp.sys
17:17:31.0587 1228 isapnp - ok
17:17:31.0968 1228 Kbdclass (399055f5c4a98f39b47d26888a72145d) C:\WINNT\system32\DRIVERS\kbdclass.sys
17:17:31.0968 1228 Kbdclass - ok
17:17:32.0408 1228 kmixer (8e198ec9e823aa42edf45b07efe395ac) C:\WINNT\system32\drivers\kmixer.sys
17:17:32.0408 1228 kmixer - ok
17:17:33.0670 1228 KSecDD (80ffb99dcb8e6ab8a01be04fcb0b0758) C:\WINNT\system32\drivers\KSecDD.sys
17:17:33.0670 1228 KSecDD - ok
17:17:35.0583 1228 lbrtfdc - ok
17:17:37.0496 1228 lp6nds35 - ok
17:17:38.0036 1228 mnmdd (f9a1ccc84d1c8b392d67bf2e661ed334) C:\WINNT\system32\drivers\mnmdd.sys
17:17:38.0036 1228 mnmdd - ok
17:17:38.0457 1228 Modem (37478d40030b15ca3860509d4f5d39d8) C:\WINNT\system32\drivers\Modem.sys
17:17:38.0457 1228 Modem - ok
17:17:38.0888 1228 Mouclass (8d038dde3f19b88427968e99a6216766) C:\WINNT\system32\DRIVERS\mouclass.sys
17:17:38.0898 1228 Mouclass - ok
17:17:40.0480 1228 MountMgr (75e57b9f5c36137ea79466c3b63c38cc) C:\WINNT\system32\drivers\MountMgr.sys
17:17:40.0480 1228 MountMgr - ok
17:17:41.0872 1228 MPE (83eff7b976ae24f1a496ca94a8a19919) C:\WINNT\system32\DRIVERS\MPE.sys
17:17:41.0872 1228 MPE - ok
17:17:43.0394 1228 mraid35x (e1e21de56b46a34b383eec316b052709) C:\WINNT\system32\DRIVERS\mraid35x.sys
17:17:43.0394 1228 mraid35x - ok
17:17:44.0556 1228 MRxSmb (fc5a904bc78d43f2f7f014bd0d239c6d) C:\WINNT\system32\DRIVERS\mrxsmb.sys
17:17:44.0566 1228 MRxSmb - ok
17:17:45.0197 1228 Msfs (8840bc3953d2c0bbb104932cab848a27) C:\WINNT\system32\drivers\Msfs.sys
17:17:45.0197 1228 Msfs - ok
17:17:46.0529 1228 MSKSSRV (85736f804191cb420a31aca2a7f0674f) C:\WINNT\system32\drivers\MSKSSRV.sys
17:17:46.0529 1228 MSKSSRV - ok
17:17:47.0851 1228 MSPCLOCK (e943adb93d83c5cbc0ca3f53f53b48cc) C:\WINNT\system32\drivers\MSPCLOCK.sys
17:17:47.0861 1228 MSPCLOCK - ok
17:17:49.0182 1228 MSPQM (bb041315c9930063e5eab0bee90acff6) C:\WINNT\system32\drivers\MSPQM.sys
17:17:49.0182 1228 MSPQM - ok
17:17:50.0544 1228 MSTEE (d5059366b361f0e1124753447af08aa2) C:\WINNT\system32\drivers\MSTEE.sys
17:17:50.0544 1228 MSTEE - ok
17:17:51.0275 1228 Mup (84d27503181b716a222299e59cd1259a) C:\WINNT\system32\drivers\Mup.sys
17:17:51.0275 1228 Mup - ok
17:17:52.0678 1228 NABTSFEC (bb1c45d114b6dab0babf6b2fb0336db2) C:\WINNT\system32\DRIVERS\NABTSFEC.sys
17:17:52.0688 1228 NABTSFEC - ok
17:17:53.0278 1228 Nbf (c833146f3758b29ccf100fc32dad6fc4) C:\WINNT\system32\DRIVERS\nbf.sys
17:17:53.0278 1228 Nbf - ok
17:17:55.0201 1228 Ncrc710 - ok
17:17:55.0722 1228 NDIS (fb4f2d0595bd3546a4dd915e4a9b4809) C:\WINNT\system32\drivers\NDIS.sys
17:17:55.0722 1228 NDIS - ok
17:17:56.0303 1228 NdisTapi (e6f675c75c53887c58b98d6db356b153) C:\WINNT\system32\DRIVERS\ndistapi.sys
17:17:56.0303 1228 NdisTapi - ok
17:17:57.0414 1228 Ndisuio (69ecae880bdac3c288f0508df9cdeef0) C:\WINNT\system32\DRIVERS\ndisuio.sys
17:17:57.0414 1228 Ndisuio - ok
17:17:57.0965 1228 NdisWan (b86a37aa73868343a9eee148fdfce1e0) C:\WINNT\system32\DRIVERS\ndiswan.sys
17:17:57.0965 1228 NdisWan - ok
17:17:58.0636 1228 NDProxy (1f426863d87bdf75aec76584223cd0c7) C:\WINNT\system32\drivers\NDProxy.sys
17:17:58.0636 1228 NDProxy - ok
17:17:59.0267 1228 NetBIOS (5151e6020a26bf7bc21c18fd612506bd) C:\WINNT\system32\DRIVERS\netbios.sys
17:17:59.0267 1228 NetBIOS - ok
17:17:59.0668 1228 NetBT (a7ca87628217bbf4a6f501db65b19e9d) C:\WINNT\system32\DRIVERS\netbt.sys
17:17:59.0678 1228 NetBT - ok
17:18:00.0339 1228 NetDetect (9b2a6147a22f7e696cc7538283de6346) C:\WINNT\system32\drivers\netdtect.sys
17:18:00.0339 1228 NetDetect - ok
17:18:00.0989 1228 Npfs (e85a77dfcb8f1088f85120ca123ce191) C:\WINNT\system32\drivers\Npfs.sys
17:18:00.0989 1228 Npfs - ok
17:18:01.0590 1228 Ntfs (7dc1f0f9bf87ca5cee9a46c9a63dc1d3) C:\WINNT\system32\drivers\Ntfs.sys
17:18:01.0600 1228 Ntfs - ok
17:18:02.0301 1228 Null (280209cde798720a24d232bf9cfda8e9) C:\WINNT\system32\drivers\Null.sys
17:18:02.0301 1228 Null - ok
17:18:04.0004 1228 nv (10458bfc0968e7e69d77f292942b27b1) C:\WINNT\system32\DRIVERS\nv4_mini.sys
17:18:04.0094 1228 nv - ok
17:18:05.0346 1228 nv4 (7e0fa667ecb04e1d5d6dcd4227515673) C:\WINNT\system32\DRIVERS\nv4.sys
17:18:05.0376 1228 nv4 - ok
17:18:05.0997 1228 NwlnkFlt (9b0d6fb5c5d6a7571aedb0c1a7a9c1b6) C:\WINNT\system32\DRIVERS\nwlnkflt.sys
17:18:05.0997 1228 NwlnkFlt - ok
17:18:06.0638 1228 NwlnkFwd (09fa39e4812fdd042834650df09675a0) C:\WINNT\system32\DRIVERS\nwlnkfwd.sys
17:18:06.0638 1228 NwlnkFwd - ok
17:18:08.0370 1228 PACKET (740316811232600c84be9e3f4d1ace30) C:\WINNT\system32\drivers\packet.sys
17:18:08.0370 1228 PACKET - ok
17:18:09.0021 1228 Parallel (ea27799907eabdb66d2d56af68cd4f06) C:\WINNT\system32\DRIVERS\parallel.sys
17:18:09.0021 1228 Parallel - ok
17:18:09.0762 1228 Parport (69b713583d6e063ac487e2da30c04289) C:\WINNT\system32\DRIVERS\parport.sys
17:18:09.0762 1228 Parport - ok
17:18:10.0503 1228 PartMgr (f9e922dbe9f3719ce8376cc7ed18cb8d) C:\WINNT\system32\drivers\PartMgr.sys
17:18:10.0503 1228 PartMgr - ok
17:18:11.0204 1228 ParVdm (888f6a6ad5810f5828de594e17fe8f3b) C:\WINNT\system32\drivers\ParVdm.sys
17:18:11.0204 1228 ParVdm - ok
17:18:11.0885 1228 PCI (f0791b1f424f8d84a81d9ae6cfadf089) C:\WINNT\system32\DRIVERS\pci.sys
17:18:11.0895 1228 PCI - ok
17:18:13.0778 1228 PCIDump - ok
17:18:14.0579 1228 PCIIde (7d0bcb325d29d15024d6a572044e410b) C:\WINNT\system32\DRIVERS\pciide.sys
17:18:14.0579 1228 PCIIde - ok
17:18:15.0390 1228 Pcmcia (b737c89d439b771d92d7c5e8b8d3917c) C:\WINNT\system32\drivers\Pcmcia.sys
17:18:15.0390 1228 Pcmcia - ok
17:18:16.0271 1228 PptpMiniport (0e0212bbbf15800f1536cbfa157dddd6) C:\WINNT\system32\DRIVERS\raspptp.sys
17:18:16.0281 1228 PptpMiniport - ok
17:18:17.0283 1228 Ptilink (b78775f217255f786c2e8dbe4334e413) C:\WINNT\system32\DRIVERS\ptilink.sys
17:18:17.0283 1228 Ptilink - ok
17:18:19.0206 1228 ql1080 - ok
17:18:21.0098 1228 Ql10wnt - ok
17:18:22.0961 1228 ql1240 - ok
17:18:24.0884 1228 ql2100 - ok
17:18:25.0595 1228 RasAcd (63051b814e005dc62c7a0971668c52b4) C:\WINNT\system32\DRIVERS\rasacd.sys
17:18:25.0595 1228 RasAcd - ok
17:18:26.0346 1228 Rasl2tp (ec6037c594f20adedea65f0d809493d2) C:\WINNT\system32\DRIVERS\rasl2tp.sys
17:18:26.0346 1228 Rasl2tp - ok
17:18:27.0057 1228 Raspti (cb09a98e97e52c389ab17b1e003c9566) C:\WINNT\system32\DRIVERS\raspti.sys
17:18:27.0057 1228 Raspti - ok
17:18:27.0808 1228 RCA (afce1f733a6aa3a90ac60794dfb26104) C:\WINNT\system32\drivers\RCA.sys
17:18:27.0808 1228 RCA - ok
17:18:29.0030 1228 Rdbss (9218c2c9af3888fa2e808809b084b0df) C:\WINNT\system32\DRIVERS\rdbss.sys
17:18:29.0030 1228 Rdbss - ok
17:18:30.0021 1228 redbook (b5120cb5081865b0c7d93c305c7da939) C:\WINNT\system32\DRIVERS\redbook.sys
17:18:30.0021 1228 redbook - ok
17:18:30.0822 1228 ROOTMODEM (b6756550c2f1aa4be923d0cef5a9e0a4) C:\WINNT\system32\Drivers\RootMdm.sys
17:18:30.0832 1228 ROOTMODEM - ok
17:18:32.0575 1228 Secdrv (91bc8c886ed6de9ac8598e7f464a2a9b) C:\WINNT\System32\drivers\SECDRV.SYS
17:18:32.0575 1228 Secdrv - ok
17:18:33.0416 1228 serenum (6db5fdf67486679da3149ef212374861) C:\WINNT\system32\DRIVERS\serenum.sys
17:18:33.0416 1228 serenum - ok
17:18:34.0478 1228 Serial (80f28698f48e298d278057f23206133b) C:\WINNT\system32\DRIVERS\serial.sys
17:18:34.0478 1228 Serial - ok
17:18:35.0289 1228 Sfloppy (96b8aae4f799e81a23aeda935e14f768) C:\WINNT\system32\drivers\Sfloppy.sys
17:18:35.0289 1228 Sfloppy - ok
17:18:37.0212 1228 sglfb - ok
17:18:38.0874 1228 SHARSHTL (0a988950f625145a0730ba717f9c1c05) C:\WINNT\System32\Drivers\sharshtl.sys
17:18:38.0874 1228 SHARSHTL - ok
17:18:40.0847 1228 Simbad - ok
17:18:42.0249 1228 SLIP (92723fbdd30771c293fe5ed266a31ca6) C:\WINNT\system32\DRIVERS\SLIP.sys
17:18:42.0259 1228 SLIP - ok
17:18:43.0831 1228 Sparrow (56c24adde3c44d987c67033a7953c06f) C:\WINNT\system32\DRIVERS\sparrow.sys
17:18:43.0831 1228 Sparrow - ok
17:18:45.0063 1228 Srv (a908898f3fa95fd561c442dfc013f5a2) C:\WINNT\system32\DRIVERS\srv.sys
17:18:45.0073 1228 Srv - ok
17:18:46.0485 1228 StillCam (58a0b4bfe638f55ca594634e50dc15cf) C:\WINNT\system32\DRIVERS\serscan.sys
17:18:46.0485 1228 StillCam - ok
17:18:48.0217 1228 stltrk2k (6ac5505d2d5e64e61c518f0a704b0d49) C:\WINNT\system32\Drivers\stltrk2k.sys
17:18:48.0217 1228 stltrk2k - ok
17:18:49.0619 1228 streamip (4544fd0db39cb7b385a5392c068162cd) C:\WINNT\system32\DRIVERS\StreamIP.sys
17:18:49.0619 1228 streamip - ok
17:18:50.0981 1228 swenum (616a013d3ea068b6dee83d905e92ee9f) C:\WINNT\system32\DRIVERS\swenum.sys
17:18:50.0981 1228 swenum - ok
17:18:51.0983 1228 swmidi (8c7cd06d097a59391d94b59715fca67c) C:\WINNT\system32\drivers\swmidi.sys
17:18:51.0983 1228 swmidi - ok
17:18:53.0876 1228 symc810 - ok
17:18:55.0518 1228 symc8xx - ok
17:18:57.0401 1228 sym_hi - ok
17:18:58.0442 1228 sysaudio (6c14d96f8c1ba929fad4ba40a29217fa) C:\WINNT\system32\drivers\sysaudio.sys
17:18:58.0442 1228 sysaudio - ok
17:18:59.0003 1228 Tcpip (02fae418bd28e185a4909e5869497de5) C:\WINNT\system32\DRIVERS\tcpip.sys
17:18:59.0013 1228 Tcpip - ok
17:19:00.0886 1228 tga - ok
17:19:02.0358 1228 TVICHW32 (e266683fc95abdec17cd378564e1b54b) C:\WINNT\system32\DRIVERS\TVICHW32.SYS
17:19:02.0358 1228 TVICHW32 - ok
17:19:03.0369 1228 Udfs (1151500efb8759a69c3a0bb1f274138c) C:\WINNT\system32\drivers\Udfs.sys
17:19:03.0369 1228 Udfs - ok
17:19:04.0431 1228 uhcd (376fb5e14b9d375db3536ba563eae97a) C:\WINNT\system32\DRIVERS\uhcd.sys
17:19:04.0431 1228 uhcd - ok
17:19:06.0043 1228 Ultra (3b652d049a3a533a0ebb9bb0d5593be9) C:\WINNT\system32\DRIVERS\ultra.sys
17:19:06.0043 1228 Ultra - ok
17:19:07.0946 1228 ultra66 - ok
17:19:09.0017 1228 Update (7a77f319935328cf30945fe0f3c69c9a) C:\WINNT\system32\DRIVERS\update.sys
17:19:09.0027 1228 Update - ok
17:19:10.0249 1228 usb2vcom (129509bfb3b574cad0858f99646e729e) C:\WINNT\system32\DRIVERS\usb2vcom.sys
17:19:10.0249 1228 usb2vcom - ok
17:19:11.0351 1228 usbhub (5c202078f5d500786a1f3279fac3aa64) C:\WINNT\system32\DRIVERS\usbhub.sys
17:19:11.0351 1228 usbhub - ok
17:19:12.0602 1228 usbprint (e0e4367f5eff9e84fafeeba6ab937fd8) C:\WINNT\system32\DRIVERS\usbprint.sys
17:19:12.0612 1228 usbprint - ok
17:19:14.0045 1228 usbscan (6c0a98c98b84eee9e3fb1cf86b6250b8) C:\WINNT\system32\DRIVERS\usbscan.sys
17:19:14.0045 1228 usbscan - ok
17:19:15.0136 1228 USBSTOR (13eba8a2da3447fe7f217e34210ac554) C:\WINNT\system32\DRIVERS\USBSTOR.SYS
17:19:15.0136 1228 USBSTOR - ok
17:19:15.0977 1228 VgaSave (1b0040415ba34497a8d76a553aee88aa) C:\WINNT\System32\drivers\vga.sys
17:19:15.0977 1228 VgaSave - ok
17:19:16.0899 1228 Wanarp (aa8c76dfc4afa72f09fdbc6621b7d38d) C:\WINNT\system32\DRIVERS\wanarp.sys
17:19:16.0909 1228 Wanarp - ok
17:19:18.0271 1228 wandrv (85d294b1ba9307c229c099d1699c19ee) C:\WINNT\system32\DRIVERS\wandrv.sys
17:19:18.0271 1228 wandrv - ok
17:19:19.0362 1228 wdmaud (997d25513bc89614417829b5bec7c75c) C:\WINNT\system32\drivers\wdmaud.sys
17:19:19.0362 1228 wdmaud - ok
17:19:20.0894 1228 WSTCODEC (04aca6442e639a794293828e8dda7a44) C:\WINNT\system32\DRIVERS\WSTCODEC.SYS
17:19:20.0894 1228 WSTCODEC - ok
17:19:21.0015 1228 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk<UNK>\DR<UNK>(0)
17:20:14.0531 1228 \Device\Harddisk<UNK>\DR<UNK>(0) - ok
17:20:14.0572 1228 Boot (0x1200) (90deacae6ec55c182127a7627c351fc0) \Device\Harddisk<UNK>\DR<UNK>(0)\Partition0
17:20:14.0582 1228 \Device\Harddisk<UNK>\DR<UNK>(0)\Partition0 - ok
17:20:14.0592 1228 ============================================================
17:20:14.0592 1228 Scan finished
17:20:14.0592 1228 ============================================================
17:20:14.0652 0980 Detected object count: 0
17:20:14.0652 0980 Actual detected object count: 0
17:23:08.0361 1268 Deinitialize success

Regards
Peter

 

Hello,
I dowloaded Combofix as requested but it will not run as it says it does not support Windows 2000.
Any advise please
regards

 

windows 2000 suddenly resets as if new

Following, is the first part of the OTL.Txt Scan
OTL logfile created on: 23/11/2011 10:08:13 - Run 4
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Lyn James.SYSTEM-4\Desktop
Windows 2000 Professional Edition Service Pack 4 (Version = 5.0.2195) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2800.1106)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

511.30 Mb Total Physical Memory | 113.68 Mb Available Physical Memory | 22.23% Memory free
1.30 Gb Paging File | 0.86 Gb Available in Paging File | 66.08% Paging File free
Paging file location(s): C:\pagefile.sys 850 850 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINNT | %ProgramFiles% = C:\Program Files
Drive C: | 19.00 Gb Total Space | 7.90 Gb Free Space | 41.59% Space Free | Partition Type: FAT32

Computer Name: SYSTEM-4 | User Name: Lyn James | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/11/23 10:06:08 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Lyn James.SYSTEM-4\DESKTOP\OTL.exe
PRC - [2010/11/25 09:37:38 | 000,725,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2010/09/23 09:21:38 | 000,621,920 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2010/07/17 09:28:04 | 000,515,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2010/07/17 09:27:56 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2010/07/17 09:26:10 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2004/09/07 16:59:06 | 000,122,128 | ---- | M] (Microsoft Corporation) -- C:\WINNT\SYSTEM32\mstask.exe
PRC - [2003/06/19 19:05:04 | 000,243,472 | ---- | M] (Microsoft Corporation) -- C:\WINNT\explorer.exe
PRC - [2003/06/19 19:05:04 | 000,196,706 | ---- | M] (Microsoft Corporation) -- C:\WINNT\SYSTEM32\WBEM\WinMgmt.exe
PRC - [2003/06/19 19:05:04 | 000,061,712 | ---- | M] (Microsoft Corporation) -- C:\WINNT\SYSTEM32\stisvc.exe
PRC - [2003/02/11 08:10:00 | 000,106,560 | ---- | M] (WinZip Computing, Inc.) -- C:\Program Files\WinZip\WZQKPICK.EXE
PRC - [2002/12/16 16:51:24 | 000,036,864 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe
PRC - [2001/07/12 17:52:34 | 000,026,112 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\realplay.exe
PRC - [2001/05/06 11:14:22 | 000,020,549 | ---- | M] () -- C:\Program Files\Hewlett-Packard\Toolbox2.0\Javasoft\JRE\1.3.1\bin\javaw.exe


========== Modules (No Company Name) ==========

MOD - [2011/07/26 10:15:58 | 002,532,680 | ---- | M] () -- C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
MOD - [2003/08/29 09:23:50 | 000,094,274 | ---- | M] () -- C:\WINNT\SYSTEM32\HPBHEALR.DLL
MOD - [2001/05/06 11:14:24 | 000,765,952 | ---- | M] () -- C:\Program Files\Hewlett-Packard\Toolbox2.0\Javasoft\JRE\1.3.1\bin\hotspot\jvm.dll
MOD - [2001/05/06 11:14:22 | 000,086,093 | ---- | M] () -- C:\Program Files\Hewlett-Packard\Toolbox2.0\Javasoft\JRE\1.3.1\bin\java.dll
MOD - [2001/05/06 11:14:22 | 000,053,326 | ---- | M] () -- C:\Program Files\Hewlett-Packard\Toolbox2.0\Javasoft\JRE\1.3.1\bin\zip.dll
MOD - [2001/05/06 11:14:22 | 000,053,319 | ---- | M] () -- C:\Program Files\Hewlett-Packard\Toolbox2.0\Javasoft\JRE\1.3.1\bin\verify.dll
MOD - [2001/05/06 11:14:22 | 000,032,841 | ---- | M] () -- C:\Program Files\Hewlett-Packard\Toolbox2.0\Javasoft\JRE\1.3.1\bin\net.dll
MOD - [2001/05/06 11:14:22 | 000,028,753 | ---- | M] () -- C:\Program Files\Hewlett-Packard\Toolbox2.0\Javasoft\JRE\1.3.1\bin\hpi.dll
MOD - [2001/05/06 11:14:22 | 000,020,549 | ---- | M] () -- C:\Program Files\Hewlett-Packard\Toolbox2.0\Javasoft\JRE\1.3.1\bin\javaw.exe
MOD - [2000/01/28 06:18:04 | 000,561,209 | ---- | M] () -- C:\Program Files\Common Files\Microsoft Shared\Web Folders\MSONSEXT.DLL


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (HP Status Server)
SRV - File not found [On_Demand | Stopped] -- -- (HP Port Resolver)
SRV - File not found [On_Demand | Stopped] -- -- (AVG Security Toolbar Service)
SRV - [2010/07/17 09:27:56 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2006/03/03 21:03:10 | 000,069,632 | ---- | M] (HP) [On_Demand | Stopped] -- C:\WINNT\SYSTEM32\HPZipm12.exe -- (Pml Driver HPZ12)
SRV - [2004/09/07 16:59:06 | 000,122,128 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINNT\SYSTEM32\mstask.exe -- (Schedule)
SRV - [2003/06/19 19:05:04 | 000,196,706 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINNT\SYSTEM32\WBEM\WinMgmt.exe -- (WinMgmt)
SRV - [2003/06/19 19:05:04 | 000,147,728 | ---- | M] (VERITAS Software Corp.) [On_Demand | Stopped] -- C:\WINNT\System32\dmadmin.exe -- (dmadmin)
SRV - [2003/06/19 19:05:04 | 000,094,992 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINNT\SYSTEM32\FAXSVC.EXE -- (Fax)
SRV - [2003/06/19 19:05:04 | 000,068,368 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINNT\SYSTEM32\regsvc.exe -- (RemoteRegistry)
SRV - [2003/06/19 19:05:04 | 000,061,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINNT\SYSTEM32\stisvc.exe -- (StiSvc)
SRV - [2003/06/19 19:05:04 | 000,022,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINNT\SYSTEM32\utilman.exe -- (UtilMan)


========== Driver Services (SafeList) ==========

DRV - [2011/09/13 09:04:26 | 000,029,712 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINNT\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2011/05/06 09:04:36 | 000,243,152 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINNT\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2010/07/17 09:26:14 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINNT\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2007/10/19 21:23:44 | 000,013,696 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINNT\SYSTEM32\DRIVERS\fnetusb.sys -- (fnetusb)
DRV - [2005/09/02 09:27:02 | 000,028,928 | R--- | M] () [Kernel | On_Demand | Stopped] -- C:\WINNT\SYSTEM32\DRIVERS\usb2vcom.sys -- (usb2vcom)
DRV - [2005/08/19 03:00:00 | 000,002,560 | ---- | M] (Sonic Solutions) [Kernel | Auto | Stopped] -- C:\WINNT\System32\drivers\cdralw2k.BAK -- (Cdralw2k)
DRV - [2005/08/19 03:00:00 | 000,002,432 | ---- | M] (Sonic Solutions) [Kernel | System | Stopped] -- C:\WINNT\System32\drivers\cdr4_2k.sys -- (Cdr4_2K)
DRV - [2004/07/09 02:58:10 | 000,015,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINNT\SYSTEM32\DRIVERS\mpe.sys -- (MPE)
DRV - [2003/06/19 19:05:04 | 000,369,104 | ---- | M] (VERITAS Software Corp.) [Kernel | Disabled | Stopped] -- C:\WINNT\SYSTEM32\DRIVERS\dmboot.sys -- (dmboot)
DRV - [2003/06/19 19:05:04 | 000,137,936 | ---- | M] (VERITAS Software Corp.) [Kernel | Boot | Running] -- C:\WINNT\System32\drivers\dmio.sys -- (dmio)
DRV - [2003/06/19 19:05:04 | 000,060,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINNT\SYSTEM32\DRIVERS\parallel.sys -- (Parallel)
DRV - [2003/06/19 19:05:04 | 000,032,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINNT\SYSTEM32\DRIVERS\uhcd.sys -- (uhcd)
DRV - [2003/06/19 19:05:04 | 000,027,440 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\WINNT\System32\drivers\efs.sys -- (EFS)
DRV - [2003/06/19 19:05:04 | 000,009,808 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINNT\SYSTEM32\DRIVERS\gameenum.sys -- (gameenum)
DRV - [2003/06/19 19:05:04 | 000,007,728 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\WINNT\System32\drivers\diskperf.sys -- (Diskperf)
DRV - [2003/06/19 19:05:04 | 000,007,312 | ---- | M] (VERITAS Software Corp.) [Kernel | Boot | Running] -- C:\WINNT\System32\drivers\dmload.sys -- (dmload)
DRV - [2001/07/25 16:49:54 | 000,033,207 | ---- | M] (CNet Technology, Inc. ) [Kernel | On_Demand | Running] -- C:\WINNT\SYSTEM32\DRIVERS\DM9PCI5.SYS -- (DM9102)
DRV - [2001/05/01 21:46:58 | 000,064,418 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Running] -- C:\WINNT\System32\DRIVERS\fasttrak.sys -- (fasttrak)
DRV - [2000/12/03 09:35:58 | 000,022,640 | ---- | M] (America Online, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINNT\SYSTEM32\DRIVERS\wandrv.sys -- (wandrv)
DRV - [2000/11/30 14:17:50 | 000,029,344 | ---- | M] (Dell Computer Corporation.) [Kernel | System | Running] -- C:\WINNT\SYSTEM32\DRIVERS\cmosa.sys -- (cmosa)
DRV - [2000/07/26 12:00:00 | 000,102,160 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINNT\SYSTEM32\DRIVERS\NBF.SYS -- (Nbf)
DRV - [2000/07/26 12:00:00 | 000,021,712 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINNT\SYSTEM32\DRIVERS\RCA.SYS -- (RCA)
DRV - [2000/07/26 12:00:00 | 000,009,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINNT\system32\drivers\netdtect.sys -- (NetDetect)
DRV - [2000/06/29 10:36:42 | 000,260,841 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINNT\SYSTEM32\DRIVERS\ati2mtaa.sys -- (ati2mtaa)
DRV - [2000/06/02 13:27:20 | 000,013,806 | ---- | M] (SCM Microsystems Inc.) [Kernel | Auto | Running] -- C:\WINNT\SYSTEM32\DRIVERS\STLTRK2K.SYS -- (stltrk2k)
DRV - [2000/05/30 00:00:00 | 000,118,480 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\WINNT\System32\DRIVERS\intelata.sys -- (IntelATA)
DRV - [2000/05/30 00:00:00 | 000,003,737 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\WINNT\System32\DRIVERS\idebd.sys -- (idebd)
DRV - [2000/04/05 16:36:56 | 000,922,944 | R--- | M] (Eicon Technology) [Kernel | On_Demand | Running] -- C:\WINNT\SYSTEM32\DRIVERS\DISDN\Diwan.sys -- (Diwan)
DRV - [2000/03/10 20:50:58 | 000,172,912 | R--- | M] (Eicon Technology) [Kernel | Auto | Running] -- C:\WINNT\SYSTEM32\DRIVERS\DISDN\diport40.sys -- (DiPort)
DRV - [2000/02/25 16:31:34 | 000,135,824 | R--- | M] (Eicon Technology) [Kernel | Auto | Running] -- C:\WINNT\SYSTEM32\DRIVERS\DISDN\capi202k.sys -- (DiCapi)
DRV - [2000/02/14 20:39:28 | 000,086,288 | R--- | M] (Eicon Technology) [Kernel | Boot | Running] -- C:\WINNT\System32\DRIVERS\disdn\dimaint.sys -- (DiMaint)
DRV - [2000/01/27 21:04:48 | 000,019,384 | ---- | M] () [Kernel | Auto | Running] -- C:\WINNT\system32\drivers\packet.sys -- (PACKET)
DRV - [2000/01/24 14:34:50 | 000,004,928 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\WINNT\System32\DRIVERS\aaatimeo.sys -- (aaatimeo)
DRV - [2000/01/24 14:34:48 | 000,280,608 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Stopped] -- C:\WINNT\System32\DRIVERS\cda1000.sys -- (cda1000)
DRV - [2000/01/14 14:46:52 | 000,019,968 | R--- | M] (ELSA, Aachen (Germany)) [Kernel | Auto | Stopped] -- C:\WINNT\SYSTEM32\DRIVERS\ELSAWAN.sys -- (ELSAWAN) ELSA LANCAPI (NDISWAN MiniPort) (Ver. 3.02.0005)
DRV - [1999/12/23 15:52:32 | 000,042,623 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINNT\SYSTEM32\DRIVERS\es1371mp.sys -- (es1371mp) SB AudioPCI 64V Audio Driver (WDM)
DRV - [1999/12/07 15:06:32 | 000,011,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINNT\SYSTEM32\DRIVERS\ipfilter.sys -- (IPFilter)
DRV - [1999/10/27 15:23:38 | 000,345,040 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINNT\SYSTEM32\DRIVERS\NV4.SYS -- (nv4)
DRV - [1999/10/23 12:22:20 | 000,061,712 | ---- | M] (3Com Corporation) [Kernel | On_Demand | Stopped] -- C:\WINNT\SYSTEM32\DRIVERS\EL90XBC5.SYS -- (EL90BC)
DRV - [1999/10/15 14:35:04 | 000,214,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINNT\SYSTEM32\DRIVERS\EMU10K1.SYS -- (emu10k) Creative SB Live! Basic (WDM)
DRV - [1999/10/07 15:38:10 | 000,004,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINNT\SYSTEM32\DRIVERS\CTLJYSTK.SYS -- (ctljystk)
DRV - [1999/09/25 11:11:42 | 000,011,280 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\WINNT\System32\DRIVERS\fd16_700.sys -- (Fd16_700)
DRV - [1998/03/30 02:18:00 | 000,082,432 | ---- | M] (Shuttle Technology. ) [Kernel | Boot | Stopped] -- C:\WINNT\System32\Drivers\epstwnt.mpd -- (epstwnt)
DRV - [1998/03/30 02:18:00 | 000,018,432 | ---- | M] (Shuttle Technology) [Kernel | Auto | Stopped] -- C:\WINNT\System32\Drivers\sharshtl.sys -- (SHARSHTL)
DRV - [1997/12/23 02:02:46 | 000,023,936 | ---- | M] (Adaptec) [Kernel | Auto | Running] -- C:\WINNT\System32\drivers\aspi32.sys -- (Aspi32)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Update_Check_Page = http://www.http://www.aol.co.uk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.euro.dell.com/countries/uk/enu/gen/default.htm
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = http://www.euro.dell.com/countries/uk/enu/gen/default.htm
IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-2025429265-1383384898-1060284298-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINNT\system32\blank.htm
IE - HKU\S-1-5-21-2025429265-1383384898-1060284298-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-21-2025429265-1383384898-1060284298-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files\Viewpoint\Viewpoint Media Player\npViewpoint.dll ()



O1 HOSTS File: ([2010/04/15 22:06:08 | 000,000,027 | ---- | M]) - C:\WINNT\SYSTEM32\DRIVERS\ETC\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (ST) - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll (Microsoft Corporation)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll (Google Inc.)
O2 - BHO: (MSNToolBandBHO) - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\en-gb\msntb.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKU\S-1-5-21-2025429265-1383384898-1060284298-1000\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe (Microsoft® Corporation)
O4 - HKLM..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe (Microsoft® Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINNT\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINNT\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINNT\System32\nwiz.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [StatusClient] C:\Program Files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe (Hewlett-Packard)
O4 - HKLM..\Run: [TomcatStartup] C:\Program Files\Hewlett-Packard\Toolbox2.0\hpbpsttp.exe (Hewlett-Packard)
O4 - HKLM..\Run: [WorksFUD] C:\Program Files\Microsoft Works\wkfud.exe (Microsoft® Corporation)
O4 - Startup: C:\Documents and Settings\Default User\Start Menu\Programs\Startup\discfix.lnk = C:\DELL\DISCFIX.CMD ()
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe (Adobe Systems Incorporated)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE (WinZip Computing, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-2025429265-1383384898-1060284298-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\S-1-5-21-2025429265-1383384898-1060284298-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\NPJPI150_07.dll (Sun Microsystems, Inc.)
O9 - Extra Button: @shdoclc.dll,-866 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\WEB\RELATED.HTM ()
O9 - Extra 'Tools' menuitem : @shdoclc.dll,-864 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\WEB\RELATED.HTM ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINNT\SYSTEM32\RNR20.DLL (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000025 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000027 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000028 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000029 - C:\WINNT\SYSTEM32\msafd.dll (Microsoft Corporation)
O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.microsoft.com/sites/production/ieawsdc32.cab (Microsoft Office Template and Media Control)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft.com/fwlink/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {32564D57-0000-0010-8000-00AA00389B71} http://codecs.microsoft.com/codecs/i386/wmv8ax.cab (Reg Error: Value error.)
O16 - DPF: {6B75345B-AA36-438A-BBE6-4078B4C6984D} http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab (HpProductDetection Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/mic...ls/en/x86/client/muweb_site.cab?1180115978708 (MUWebControl Class)
O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection2.cab (GMNRev Class)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Value error.)
O16 - DPF: {A796D216-2DE1-4EA8-BABB-FE6E7C959098} http://www.hp.com/cpso-support-new/SDD/hpsddObjSigned.cab (HPSDDX Class)
O16 - DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} http://www.crucial.com/controls/cpcScanner.cab (Crucial cpcScan)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: DirectAnimation Java Classes file://C:\WINNT\Java\classes\dajava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINNT\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{82C8009B-CBE7-4102-91F9-43DB273D8B5C}: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\vnd.ms.radio {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - C:\WINNT\SYSTEM32\msdxm.ocx ()
O18 - Protocol\Filter\application/octet-stream - No CLSID value found
O18 - Protocol\Filter\application/x-complus - No CLSID value found
O18 - Protocol\Filter\application/x-msdownload - No CLSID value found
O18 - Protocol\Filter\Class Install Handler - No CLSID value found
O18 - Protocol\Filter\deflate - No CLSID value found
O18 - Protocol\Filter\gzip - No CLSID value found
O18 - Protocol\Filter\lzdhtml - No CLSID value found
O18 - Protocol\Filter\text/webviewhtml - No CLSID value found
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINNT\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINNT\system32\userinit.exe) -C:\WINNT\SYSTEM32\USERINIT.EXE (Microsoft Corporation)
O20 - Winlogon\Notify\avgrsstarter: DllName - (avgrsstx.dll) - C:\WINNT\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - Winlogon\Notify\nwprovau: DllName - (nwprovau.dll) - C:\WINNT\System32\NWPROVAU.DLL (Microsoft Corporation)
O20 - Winlogon\Notify\wzcnotif: DllName - (wzcdlg.dll) - C:\WINNT\System32\wzcdlg.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: Ias - C:\WINNT\System32\IAS.MSC ()
NetSvcs: Iprip - C:\WINNT\System32\iprip.dll (Microsoft Corporation)
NetSvcs: Nwsapagent - File not found

Drivers32: aux - C:\WINNT\System32\MMDRV.DLL (Microsoft Corporation)
Drivers32: msacm.iac2 - C:\WINNT\SYSTEM32\IAC25_32.AX (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINNT\SYSTEM32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lhacm - C:\WINNT\System32\LHACM.ACM (Microsoft Corporation)
Drivers32: msacm.trspch - C:\WINNT\System32\TSSOFT32.ACM (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINNT\System32\ICCVID.DLL (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINNT\System32\IR32_32.DLL ()
Drivers32: vidc.iv32 - C:\WINNT\System32\IR32_32.DLL ()
Drivers32: VIDC.IV41 - C:\WINNT\System32\ir41_32.dll (Intel(R) Corporation)
Drivers32: vidc.iv50 - C:\WINNT\System32\IR50_32.DLL (Intel Corporation)
Drivers32: VIDC.YVU9 - C:\WINNT\System32\IYVU9_32.DLL ()

CREATERESTOREPOINT
Error creating restore point.

========== Files/Folders - Created Within 30 Days ==========

[2011/11/23 10:06:06 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Lyn James.SYSTEM-4\Desktop\OTL.exe
[2011/11/21 09:56:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Application Data\Sun
[2011/11/18 15:13:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Local Settings\Application Data\Identities
[2011/11/08 17:11:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Desktop\Panbet
[2011/11/04 15:47:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Desktop\PC Tools
[2011/11/04 14:46:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\My Documents\My Music
[2011/11/04 14:46:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Start Menu\Programs\Administrative Tools
[2011/11/04 13:59:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Application Data\Malwarebytes
[2011/11/04 13:58:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/11/04 13:58:38 | 000,020,552 | ---- | C] (Malwarebytes Corporation) -- C:\WINNT\System32\drivers\mbam.sys
[2011/11/04 13:58:37 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/11/02 09:20:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Application Data\AdobeUM
[2011/11/01 16:44:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Desktop\Datanetwork Documents
[2011/11/01 14:18:00 | 000,000,000 | ---D | C] -- C:\FOUND.002
[2011/11/01 14:09:02 | 000,000,000 | ---D | C] -- C:\FOUND.001
[2011/11/01 10:24:13 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\UserData
[2011/11/01 10:23:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Application Data\Macromedia
[2011/11/01 09:48:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Application Data\IObit
[2011/10/30 17:37:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinZip
[2011/10/30 17:28:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Local Settings\Application Data\Adobe
[2011/10/30 17:28:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Application Data\Adobe
[2011/10/30 16:44:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Recuva
[2011/10/30 16:44:44 | 000,000,000 | ---D | C] -- C:\Program Files\Recuva
[2011/10/29 16:11:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\My Documents\LinkWare Files
[2011/10/28 09:57:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Application Data\Identities
[2011/10/28 09:56:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Local Settings\Application Data\Microsoft
[2011/10/28 09:56:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Start Menu\Programs\Startup
[2011/10/28 09:56:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Start Menu\Programs\Dell Accessories
[2011/10/28 09:56:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Start Menu\Programs\Accessories
[2011/10/28 09:56:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Start Menu\Programs\User's Guides
[2011/10/28 09:56:37 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\RECENT
[2011/10/28 09:56:37 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\NETHOOD
[2011/10/28 09:56:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Start Menu
[2011/10/28 09:56:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\DESKTOP
[2011/10/28 09:56:36 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\SENDTO
[2011/10/28 09:56:35 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Application Data\Microsoft
[2011/10/28 09:56:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Application Data\iolo
[2011/10/28 09:56:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Application Data\Help
[2011/10/28 09:56:33 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Application Data
[2011/10/28 09:56:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\My Documents\My Pictures
[2011/10/28 09:56:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Favorites
[2011/10/28 09:56:31 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Templates
[2011/10/28 09:56:31 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\PrintHood
[2011/10/28 09:56:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\My Documents
[2011/10/28 09:56:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Local Settings\Application Data\Help
[2011/10/28 09:56:30 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Local Settings
[2011/10/28 09:56:29 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Cookies
[3 C:\WINNT\*.tmp files -> C:\WINNT\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/11/23 10:06:08 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Lyn James.SYSTEM-4\Desktop\OTL.exe
[2011/11/22 15:12:40 | 000,026,682 | ---- | M] () -- C:\WINNT\System32\nvapps.xml
[2011/11/22 15:11:08 | 000,000,304 | -HS- | M] () -- C:\WINNT\tasks\Nzyn.job
[2011/11/12 06:18:14 | 000,000,453 | ---- | M] () -- C:\WINNT\smlabels.ini
[2011/11/08 11:25:50 | 000,002,563 | ---- | M] () -- C:\WINNT\System32\HPANT.DAT
[2011/11/04 13:58:48 | 000,000,602 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/11/03 15:27:44 | 000,000,541 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\LinkWare.lnk
[2011/11/01 20:50:46 | 000,001,351 | ---- | M] () -- C:\WINNT\System32\HPCOLANT.DAT
[2011/11/01 20:50:24 | 001,375,910 | -H-- | M] () -- C:\WINNT\ShellIconCache
[2011/11/01 20:34:20 | 000,000,680 | ---- | M] () -- C:\Documents and Settings\Lyn James.SYSTEM-4\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/10/30 17:37:16 | 000,001,348 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\WinZip Quick Pick.lnk
[2011/10/30 17:37:16 | 000,000,566 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\WinZip.lnk
[2011/10/30 11:27:04 | 000,001,531 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
[2011/10/30 11:27:02 | 000,000,794 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Works Calendar Reminders.lnk
[2011/10/30 11:27:00 | 000,001,519 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk
[2011/10/30 11:19:08 | 000,375,264 | ---- | M] () -- C:\WINNT\System32\FNTCACHE.DAT
[2011/10/29 16:59:00 | 000,016,384 | ---- | M] () -- C:\WINNT\System32\Perflib_Perfdata_554.dat
[2011/10/29 16:55:08 | 000,016,384 | ---- | M] () -- C:\WINNT\System32\Perflib_Perfdata_458.dat
[2011/10/29 16:44:50 | 000,002,340 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\ZoomBrowser EX.lnk
[2011/10/29 16:11:14 | 000,001,592 | ---- | M] () -- C:\WINNT\ODBC.INI
[2011/10/29 16:09:58 | 000,016,384 | ---- | M] () -- C:\WINNT\System32\Perflib_Perfdata_374.dat
[2011/10/28 09:58:02 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\Lyn James.SYSTEM-4\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[3 C:\WINNT\*.tmp files -> C:\WINNT\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/11/04 13:58:47 | 000,000,602 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/10/29 16:58:59 | 000,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_554.dat
[2011/10/29 16:55:06 | 000,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_458.dat
[2011/10/29 16:09:56 | 000,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_374.dat
[2011/10/28 09:58:00 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\Lyn James.SYSTEM-4\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2011/10/28 09:57:39 | 000,000,662 | ---- | C] () -- C:\Documents and Settings\Lyn James.SYSTEM-4\Start Menu\Programs\Windows Media Player.lnk
[2011/10/28 09:57:34 | 000,000,624 | ---- | C] () -- C:\Documents and Settings\Lyn James.SYSTEM-4\Start Menu\Programs\Outlook Express.lnk
[2011/10/28 09:57:32 | 000,000,680 | ---- | C] () -- C:\Documents and Settings\Lyn James.SYSTEM-4\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/10/28 09:57:29 | 000,000,668 | ---- | C] () -- C:\Documents and Settings\Lyn James.SYSTEM-4\Start Menu\Programs\Internet Explorer.lnk
[2011/10/03 10:13:55 | 000,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_338.dat
[2011/07/12 14:24:47 | 000,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_2c0.dat
[2011/06/28 20:49:08 | 000,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_2f0.dat
[2011/02/26 18:30:38 | 000,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_2d4.dat
[2011/02/02 10:57:49 | 000,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_2d0.dat
[2010/12/18 17:15:07 | 000,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_354.dat
[2010/10/24 09:40:01 | 000,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_2c8.dat
[2010/10/22 09:21:40 | 000,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_2e0.dat
[2010/10/07 23:42:35 | 000,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_37c.dat
[2010/10/06 22:28:51 | 000,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_288.dat
[2010/09/15 17:20:25 | 000,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_348.dat
[2010/07/26 20:23:33 | 000,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_2bc.dat
[2010/06/07 12:36:39 | 000,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_2e4.dat
[2010/05/30 11:45:27 | 000,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_2dc.dat
[2010/05/22 09:37:55 | 000,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_360.dat
[2010/05/20 10:02:37 | 000,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_2c4.dat
[2010/04/21 10:14:39 | 000,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_2ec.dat
[2010/04/18 23:40:28 | 000,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_350.dat
[2010/04/17 15:50:44 | 000,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_34c.dat
[2010/04/15 21:44:56 | 000,261,632 | ---- | C] () -- C:\WINNT\PEV.exe
[2010/04/15 21:44:56 | 000,098,816 | ---- | C] () -- C:\WINNT\sed.exe
[2010/04/15 21:44:56 | 000,080,412 | ---- | C] () -- C:\WINNT\grep.exe
[2010/04/15 21:44:56 | 000,077,312 | ---- | C] () -- C:\WINNT\MBR.exe
[2010/04/15 21:44:56 | 000,068,096 | ---- | C] () -- C:\WINNT\zip.exe
[2010/01/14 17:13:18 | 000,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_2d8.dat
[2009/12/15 15:51:30 | 001,039,424 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\LuUninstall.LiveUpdate
[2009/12/06 13:13:51 | 000,001,351 | ---- | C] () -- C:\WINNT\System32\HPCOLANT.DAT
[2009/04/01 17:52:12 | 000,013,696 | ---- | C] () -- C:\WINNT\System32\fnetusb.sys
[2009/04/01 17:52:12 | 000,013,696 | ---- | C] () -- C:\WINNT\System32\drivers\fnetusb.sys
[2009/01/31 12:24:21 | 000,260,531 | ---- | C] () -- C:\WINNT\pdfcvt.dat
[2009/01/31 12:17:46 | 000,000,298 | ---- | C] () -- C:\WINNT\dxf2pdf.INI
[2009/01/31 12:11:27 | 000,075,264 | ---- | C] () -- C:\WINNT\cadkasdeinst01e.exe
[2008/05/03 14:57:02 | 000,000,191 | ---- | C] () -- C:\WINNT\icm.ini
[2008/04/04 22:39:19 | 000,000,100 | ---- | C] () -- C:\WINNT\wininit.ini
[2008/01/17 11:59:34 | 000,037,027 | ---- | C] () -- C:\WINNT\atmoUn.exe
[2007/09/28 16:49:15 | 000,045,056 | ---- | C] () -- C:\WINNT\System32\hpspmins.dll
[2007/09/28 16:49:15 | 000,000,991 | ---- | C] () -- C:\WINNT\System32\hpipxmon.ini
[2007/05/29 18:50:20 | 000,000,045 | ---- | C] () -- C:\WINNT\System32\RPVersion.ini
[2007/04/26 15:09:25 | 000,002,563 | ---- | C] () -- C:\WINNT\System32\HPANT.DAT
[2007/04/07 17:44:59 | 000,077,824 | R--- | C] () -- C:\WINNT\System32\HPZIDS01.dll
[2007/04/07 17:29:02 | 000,000,766 | ---- | C] () -- C:\WINNT\hpntwksetup.ini
[2006/09/23 14:09:32 | 000,003,399 | ---- | C] () -- C:\WINNT\System32\hptcpmon.ini
[2006/01/30 15:44:49 | 000,000,000 | ---- | C] () -- C:\WINNT\OpPrintServer.INI
[2006/01/03 16:53:18 | 000,000,019 | ---- | C] () -- C:\WINNT\SoundConverter.INI
[2006/01/02 19:49:39 | 000,001,960 | ---- | C] () -- C:\WINNT\System32\d3d9caps.dat
[2006/01/02 19:15:15 | 000,354,816 | ---- | C] () -- C:\WINNT\System32\psisdecd.dll
[2005/12/02 22:59:23 | 000,028,928 | R--- | C] () -- C:\WINNT\System32\drivers\usb2vcom.sys
[2005/07/18 11:02:56 | 000,000,035 | ---- | C] () -- C:\WINNT\A6W.INI
[2005/07/11 22:17:39 | 000,000,000 | ---- | C] () -- C:\WINNT\mtstack.INI
[2005/07/11 22:07:44 | 000,045,056 | ---- | C] () -- C:\WINNT\System32\MTSTACK.EXE
[2005/06/15 15:20:00 | 000,540,672 | ---- | C] () -- C:\WINNT\System32\nvhwvid.dll
[2005/02/20 16:06:01 | 000,000,067 | ---- | C] () -- C:\WINNT\PLAY-DOH.INI
[2005/01/12 14:57:03 | 000,018,699 | ---- | C] () -- C:\WINNT\hplj1010.ini
[2004/05/08 19:18:51 | 000,057,344 | ---- | C] () -- C:\WINNT\System32\SageFolderBrowser.dll
[2003/11/14 18:53:02 | 000,006,550 | ---- | C] () -- C:\WINNT\jautoexp.dat
[2003/08/29 09:23:49 | 000,094,274 | ---- | C] () -- C:\WINNT\System32\HPBHEALR.DLL
[2003/07/22 12:14:47 | 001,694,551 | ---- | C] () -- C:\Program Files\aaw6181.exe
[2003/05/22 14:32:05 | 000,056,832 | ---- | C] () -- C:\WINNT\System32\IYVU9_32.DLL
[2003/02/18 17:45:17 | 000,084,360 | ---- | C] () -- C:\WINNT\gamedelete.exe
[2002/12/25 21:58:46 | 000,000,058 | ---- | C] () -- C:\WINNT\winemcfg.sys
[2002/12/25 21:56:40 | 000,031,744 | ---- | C] () -- C:\WINNT\UNISTB32.EXE
[2002/11/19 19:10:21 | 000,000,047 | ---- | C] () -- C:\WINNT\agentusa.ini
[2002/08/07 17:47:47 | 000,000,002 | ---- | C] () -- C:\WINNT\msoffice.ini
[2002/02/07 17:42:33 | 000,122,880 | ---- | C] () -- C:\WINNT\UnGins.exe
[2002/02/07 17:42:32 | 000,473,600 | ---- | C] () -- C:\WINNT\System32\Harmony.dll
[2002/02/07 17:42:32 | 000,237,568 | ---- | C] () -- C:\WINNT\System32\Unlha32.dll
[2002/01/14 16:32:54 | 000,001,848 | ---- | C] () -- C:\WINNT\System32\d3d8caps.dat
[2001/08/17 20:08:50 | 000,000,035 | ---- | C] () -- C:\WINNT\POODLE.INI
[2001/08/17 20:08:12 | 000,002,985 | ---- | C] () -- C:\WINNT\MOGGIE.INI
[2001/07/21 19:37:36 | 000,064,808 | R--- | C] () -- C:\WINNT\System32\DIVAprop.dll
[2001/07/21 19:37:36 | 000,060,044 | R--- | C] () -- C:\WINNT\System32\divasu.dll
[2001/07/20 19:40:19 | 000,021,816 | R--- | C] () -- C:\WINNT\System32\divaci.dll
[2001/07/20 13:46:04 | 000,000,000 | ---- | C] () -- C:\WINNT\FoneSync.INI
[2001/07/08 07:18:37 | 000,020,128 | ---- | C] () -- C:\WINNT\System32\drivers\SECDRV.SYS
[2001/06/10 11:01:25 | 000,000,074 | ---- | C] () -- C:\WINNT\hpsjbmgr.ini
[2001/06/10 10:58:15 | 000,306,688 | ---- | C] () -- C:\WINNT\System32\Lffpx7.dll
[2001/06/10 10:58:15 | 000,095,232 | ---- | C] () -- C:\WINNT\System32\Lfkodak.dll
[2001/06/10 10:58:11 | 000,024,576 | ---- | C] () -- C:\WINNT\System32\drivers\sharshtw.exe
[2001/06/10 10:58:11 | 000,013,824 | ---- | C] () -- C:\WINNT\System32\hpscan32.dll
[2001/06/09 18:27:50 | 000,000,453 | ---- | C] () -- C:\WINNT\smlabels.ini
[2001/06/09 17:22:28 | 000,000,289 | ---- | C] () -- C:\WINNT\System32\AddPort.ini
[2001/06/09 17:00:47 | 000,020,992 | ---- | C] () -- C:\WINNT\System32\hpuninst.dll
[2001/06/09 17:00:42 | 000,000,162 | ---- | C] () -- C:\WINNT\System32\JAResult.ini
[2001/06/09 16:54:17 | 000,000,000 | ---- | C] () -- C:\WINNT\DellSC.INI
[2001/06/09 16:33:18 | 000,000,067 | ---- | C] () -- C:\WINNT\pctcp.ini
[2001/06/09 16:32:56 | 000,001,269 | ---- | C] () -- C:\WINNT\HPDWNLD.INI
[2001/06/07 09:48:41 | 000,000,050 | ---- | C] () -- C:\WINNT\InfModM.ini
[2001/05/01 22:22:42 | 000,001,592 | ---- | C] () -- C:\WINNT\ODBC.INI
[2001/05/01 22:12:48 | 000,019,384 | ---- | C] () -- C:\WINNT\System32\drivers\packet.sys
[2001/05/01 22:12:48 | 000,009,120 | ---- | C] () -- C:\WINNT\System32\packet32.dll
[2001/05/01 22:12:15 | 000,000,029 | ---- | C] () -- C:\WINNT\wgedit.ini
[2001/05/01 22:12:05 | 000,057,344 | ---- | C] () -- C:\WINNT\uninstBVRP.dll
[2001/05/01 21:53:55 | 000,220,944 | ---- | C] () -- C:\WINNT\System32\disdnsu.dll
[2001/05/01 21:53:55 | 000,006,928 | ---- | C] () -- C:\WINNT\System32\disdnci.dll
[2000/02/24 05:03:04 | 000,061,502 | ---- | C] () -- C:\WINNT\System32\ODBCMON.DLL
[1999/01/22 19:46:56 | 000,065,536 | ---- | C] () -- C:\WINNT\System32\MSRTEDIT.DLL
[1980/01/01 00:00:00 | 000,673,088 | ---- | C] () -- C:\WINNT\System32\MLANG.DAT
[1980/01/01 00:00:00 | 000,375,264 | ---- | C] () -- C:\WINNT\System32\FNTCACHE.DAT
[1980/01/01 00:00:00 | 000,369,124 | ---- | C] () -- C:\WINNT\System32\PERFH009.DAT
[1980/01/01 00:00:00 | 000,272,492 | ---- | C] () -- C:\WINNT\System32\PERFI009.DAT
[1980/01/01 00:00:00 | 000,217,359 | ---- | C] () -- C:\WINNT\System32\DSSEC.DAT
[1980/01/01 00:00:00 | 000,176,400 | ---- | C] () -- C:\WINNT\System32\QCUT.DLL
[1980/01/01 00:00:00 | 000,088,816 | ---- | C] () -- C:\WINNT\System32\drivers\LVCAM.SYS
[1980/01/01 00:00:00 | 000,050,808 | ---- | C] () -- C:\WINNT\System32\PERFC009.DAT
[1980/01/01 00:00:00 | 000,046,258 | ---- | C] () -- C:\WINNT\System32\MIB.BIN
[1980/01/01 00:00:00 | 000,033,552 | ---- | C] () -- C:\WINNT\System32\EFSADU.DLL
[1980/01/01 00:00:00 | 000,028,270 | ---- | C] () -- C:\WINNT\System32\PERFD009.DAT
[1980/01/01 00:00:00 | 000,021,952 | -H-- | C] () -- C:\Program Files\FOLDER.HTT
[1980/01/01 00:00:00 | 000,017,424 | ---- | C] () -- C:\WINNT\System32\drivers\LVSOUND.SYS
[1980/01/01 00:00:00 | 000,015,012 | ---- | C] () -- C:\WINNT\System32\emptyregdb.dat
[1980/01/01 00:00:00 | 000,007,265 | ---- | C] () -- C:\WINNT\System32\IASPERF.INI
[1980/01/01 00:00:00 | 000,004,374 | ---- | C] () -- C:\WINNT\ODBCINST.INI
[1980/01/01 00:00:00 | 000,001,505 | ---- | C] () -- C:\WINNT\System32\FAXPERF.INI
[1980/01/01 00:00:00 | 000,000,741 | ---- | C] () -- C:\WINNT\System32\NOISE.DAT
[1980/01/01 00:00:00 | 000,000,478 | ---- | C] () -- C:\WINNT\System32\OEMINFO.INI
[1980/01/01 00:00:00 | 000,000,023 | ---- | C] () -- C:\WINNT\WELCOME.INI

 

windows suddenly reset as if new

Following is the remainder of the OTL Txt Scan

========== LOP Check ==========

[2008/04/04 17:30:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Application Data\iolo
[2007/05/28 19:49:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2007/07/02 10:12:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TomTom
[2008/01/17 11:59:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2008/04/04 17:23:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\iolo
[2009/04/01 17:51:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{6764A9A0-1DAB-4AED-8936-9270ACCA5E17}
[2009/12/15 15:37:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\avg9
[2009/12/15 15:37:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar
[2011/03/15 08:18:18 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2008/04/04 17:30:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Application Data\iolo
[2011/11/01 09:48:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lyn James.SYSTEM-4\Application Data\IObit
[2008/04/04 17:30:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\iolo
[2011/11/22 15:11:08 | 000,000,304 | -HS- | M] () -- C:\WINNT\Tasks\Nzyn.job

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.* >
[2001/05/31 13:59:54 | 000,000,000 | -HS- | M] () -- C:\BOOTLOG.TXT
[2003/11/07 16:53:14 | 000,214,432 | RHS- | M] () -- C:\NTLDR
[2003/11/07 16:53:14 | 000,034,724 | RHS- | M] () -- C:\NTDETECT.COM
[2009/12/15 11:25:54 | 000,000,192 | -HS- | M] () -- C:\BOOT.INI
[2001/09/20 22:52:54 | 001,219,556 | ---- | M] () -- C:\08612002.027
[2001/09/27 12:33:56 | 001,226,674 | ---- | M] () -- C:\09102002.028
[2001/09/28 18:12:08 | 001,227,456 | ---- | M] () -- C:\09122002.029
[2001/10/04 01:04:36 | 001,237,614 | ---- | M] () -- C:\10172002.030
[2001/10/10 00:34:46 | 001,243,382 | ---- | M] () -- C:\10502002.031
[2001/10/14 22:16:14 | 001,247,395 | ---- | M] () -- C:\10902002.032
[2001/10/15 15:34:26 | 001,247,768 | ---- | M] () -- C:\10912002.033
[2001/10/16 09:52:42 | 001,248,916 | ---- | M] () -- C:\11062002.034
[2001/10/17 01:12:48 | 001,250,814 | ---- | M] () -- C:\11232002.035
[2001/10/18 14:14:46 | 001,251,414 | ---- | M] () -- C:\11252002.036
[2001/10/18 15:28:20 | 001,251,775 | ---- | M] () -- C:\11282002.037
[2001/10/21 00:02:34 | 001,253,940 | ---- | M] () -- C:\11452002.038
[2001/10/23 11:56:38 | 001,257,486 | ---- | M] () -- C:\11812002.039
[2001/10/23 23:42:34 | 001,258,826 | ---- | M] () -- C:\11992002.040
[2001/10/25 11:36:24 | 001,261,130 | ---- | M] () -- C:\12112002.042
[2001/10/26 17:52:54 | 001,265,976 | ---- | M] () -- C:\12502002.043
[2001/05/01 20:59:16 | 000,000,512 | -HS- | M] () -- C:\BOOTSECT.DOS
[2001/10/30 15:47:02 | 001,268,005 | ---- | M] () -- C:\12672002.044
[2001/10/30 22:50:40 | 001,268,980 | ---- | M] () -- C:\12722002.045
[2001/11/04 22:42:38 | 001,275,955 | ---- | M] () -- C:\13702002.046
[2001/11/05 19:56:38 | 001,277,784 | ---- | M] () -- C:\13762002.047
[2001/11/06 17:07:22 | 001,280,930 | ---- | M] () -- C:\14102002.048
[2001/11/06 22:27:02 | 001,281,256 | ---- | M] () -- C:\14142002.049
[2001/11/08 17:09:06 | 001,282,269 | ---- | M] () -- C:\14182002.050
[2001/11/09 02:40:52 | 001,283,294 | ---- | M] () -- C:\14202002.051
[2001/11/10 13:12:20 | 001,284,368 | ---- | M] () -- C:\14362002.052
[2001/05/01 21:43:28 | 000,002,869 | RH-- | M] () -- C:\DELL.SDR
[2001/11/13 23:32:34 | 001,286,441 | ---- | M] () -- C:\14582002.053
[2001/11/14 23:20:12 | 001,286,877 | ---- | M] () -- C:\14602002.054
[2001/11/15 23:26:44 | 001,289,286 | ---- | M] () -- C:\14692002.055
[2011/11/22 15:10:24 | 891,289,600 | -HS- | M] () -- C:\pagefile.sys
[2001/11/16 17:34:50 | 001,291,754 | ---- | M] () -- C:\14912002.056
[2001/11/20 15:46:50 | 001,294,354 | ---- | M] () -- C:\15312002.057
[2001/11/21 17:22:44 | 001,294,688 | ---- | M] () -- C:\15332002.058
[2001/11/23 23:31:18 | 001,298,804 | ---- | M] () -- C:\15682002.059
[2001/11/26 22:20:22 | 001,299,160 | ---- | M] () -- C:\15702002.060
[2001/11/27 23:58:26 | 001,300,330 | ---- | M] () -- C:\15742002.061
[2001/11/28 23:21:46 | 001,305,783 | ---- | M] () -- C:\16132002.062
[2001/11/30 09:35:22 | 001,306,084 | ---- | M] () -- C:\16142002.063
[2001/12/01 00:11:56 | 001,309,262 | ---- | M] () -- C:\16332002.064
[2010/04/19 18:26:20 | 000,081,920 | ---- | M] () -- C:\contacts.pst
[2001/12/12 02:41:16 | 001,319,273 | ---- | M] () -- C:\16902002.075
[2001/12/15 01:09:08 | 001,320,167 | ---- | M] () -- C:\17032002.076
[2001/12/17 21:41:54 | 001,320,510 | ---- | M] () -- C:\17072002.077
[2001/12/18 00:19:36 | 001,320,737 | ---- | M] () -- C:\17082002.078
[2001/12/18 03:01:48 | 001,322,062 | ---- | M] () -- C:\17132002.079
[2001/12/19 11:22:38 | 001,324,085 | ---- | M] () -- C:\17222002.080
[2001/12/20 10:30:32 | 001,324,421 | ---- | M] () -- C:\17242002.081
[2010/04/15 22:11:04 | 000,012,437 | ---- | M] () -- C:\ComboFix.txt
[2009/11/11 11:01:28 | 000,022,481 | -H-- | M] () -- C:\ZbThumbnail.info
[2011/11/04 17:23:10 | 000,048,656 | ---- | M] () -- C:\TDSSKiller.2.6.15.0_04.11.2011_17.15.00_log.txt
[2001/06/09 16:32:44 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2001/06/09 16:32:44 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2001/07/21 21:12:52 | 001,172,469 | ---- | M] () -- C:\05062002.012
[2001/07/22 01:15:02 | 000,009,467 | ---- | M] () -- C:\datan.dgr
[2001/07/22 02:39:40 | 000,617,786 | ---- | M] () -- C:\untitled.bmp
[2001/07/22 02:39:48 | 000,006,906 | ---- | M] () -- C:\untitled.dgr
[2001/07/24 15:11:22 | 001,175,943 | ---- | M] () -- C:\05352002.013
[2001/07/24 18:34:36 | 001,177,157 | ---- | M] () -- C:\05412002.014
[2001/07/27 12:34:22 | 001,177,630 | ---- | M] () -- C:\05422002.015
[2001/08/02 14:27:28 | 001,179,537 | ---- | M] () -- C:\05512002.016
[2001/08/07 11:59:46 | 001,181,545 | ---- | M] () -- C:\05542002.017
[2001/08/12 09:04:08 | 001,182,241 | ---- | M] () -- C:\05562002.018
[2001/08/14 02:30:26 | 001,182,550 | ---- | M] () -- C:\05572002.019
[2001/08/15 01:32:26 | 001,192,753 | ---- | M] () -- C:\06542002.020
[2001/08/20 01:04:16 | 001,194,267 | ---- | M] () -- C:\06612002.021
[2001/08/21 02:45:12 | 001,194,754 | ---- | M] () -- C:\06622002.022
[2001/08/22 23:33:16 | 001,195,161 | ---- | M] () -- C:\06642002.023
[2001/08/25 00:11:38 | 001,200,949 | ---- | M] () -- C:\07072002.024
[2001/08/30 08:52:30 | 001,204,552 | ---- | M] () -- C:\07432002.025
[2001/09/12 00:49:22 | 001,214,124 | ---- | M] () -- C:\08172002.026

< %systemroot%\Fonts\*.com >

< %systemroot%\Fonts\*.dll >

< %systemroot%\Fonts\*.ini >
[2000/08/31 19:06:38 | 000,000,067 | -HS- | M] () -- C:\WINNT\Fonts\DESKTOP.INI

< %systemroot%\Fonts\*.ini2 >

< %systemroot%\Fonts\*.exe >

< %systemroot%\system32\spool\prtprocs\w32x86\*.* >
[2000/03/21 12:29:42 | 000,016,840 | ---- | M] (BVRP Software) -- C:\WINNT\system32\spool\prtprocs\w32x86\wfxprint2000.dll
[2003/06/19 19:05:04 | 000,006,928 | ---- | M] (Microsoft Corporation) -- C:\WINNT\system32\spool\prtprocs\w32x86\sfmpsprt.dll
[2003/08/29 09:23:50 | 000,049,152 | ---- | M] (Zenographics, Inc.) -- C:\WINNT\system32\spool\prtprocs\w32x86\IMFPRINT.DLL
[2006/04/10 14:02:32 | 000,074,240 | ---- | M] (Hewlett-Packard Corporation) -- C:\WINNT\system32\spool\prtprocs\w32x86\hpzpp054.dll

< %systemroot%\REPAIR\*.bak1 >

< %systemroot%\REPAIR\*.ini >

< %systemroot%\system32\*.jpg >

< %systemroot%\*.jpg >

< %systemroot%\*.png >

< %systemroot%\*.scr >

< %systemroot%\*._sy >

< %APPDATA%\Adobe\Update\*.* >

< %ALLUSERSPROFILE%\Favorites\*.* >

< %APPDATA%\Microsoft\*.* >

< %PROGRAMFILES%\*.* >
[2000/08/31 19:06:16 | 000,021,952 | -H-- | M] () -- C:\Program Files\FOLDER.HTT
[2000/08/31 19:06:16 | 000,000,271 | -H-- | M] () -- C:\Program Files\DESKTOP.INI
[2003/07/22 12:14:48 | 001,694,551 | ---- | M] () -- C:\Program Files\aaw6181.exe

< %APPDATA%\Update\*.* >

< %systemroot%\*. /mp /s >

< %systemroot%\System32\config\*.sav >
[2000/08/31 18:58:52 | 000,352,256 | ---- | M] () -- C:\WINNT\System32\config\SYSTEM.SAV
[2000/08/31 18:58:52 | 000,540,672 | ---- | M] () -- C:\WINNT\System32\config\SOFTWARE.SAV
[2000/08/31 18:58:52 | 000,081,920 | ---- | M] () -- C:\WINNT\System32\config\DEFAULT.SAV

< %PROGRAMFILES%\bak. /s >

< %systemroot%\system32\bak. /s >

< %ALLUSERSPROFILE%\Start Menu\*.lnk /x >

< %systemroot%\system32\config\systemprofile\*.dat /x >

< %systemroot%\*.config >

< %systemroot%\system32\*.db >

< %APPDATA%\Microsoft\Internet Explorer\Quick Launch\*.lnk /x >
[2011/10/28 09:58:02 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\Lyn James.SYSTEM-4\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf

< %USERPROFILE%\Desktop\*.exe >
[2011/11/23 10:06:08 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Lyn James.SYSTEM-4\Desktop\OTL.exe

< %PROGRAMFILES%\Common Files\*.* >

< %systemroot%\*.src >

< %systemroot%\install\*.* >

< %systemroot%\system32\DLL\*.* >

< %systemroot%\system32\HelpFiles\*.* >

< %systemroot%\system32\rundll\*.* >

< %systemroot%\winn32\*.* >

< %systemroot%\Java\*.* >
[2007/05/15 21:39:58 | 000,557,056 | ---- | M] (Citrix Online) -- C:\WINNT\Java\GoToAssist_phone__319_en.exe

< %systemroot%\system32\test\*.* >

< %systemroot%\system32\Rundll32\*.* >

< %systemroot%\AppPatch\Custom\*.* >

< %APPDATA%\Roaming\Microsoft\Windows\Recent\*.lnk /x >

< %PROGRAMFILES%\PC-Doctor\Downloads\*.* >

< %PROGRAMFILES%\Internet Explorer\*.tmp >

< %PROGRAMFILES%\Internet Explorer\*.dat >

< %USERPROFILE%\My Documents\*.exe >

< %USERPROFILE%\*.exe >

< %systemroot%\ADDINS\*.* >
[2000/07/26 12:00:00 | 000,000,777 | ---- | M] () -- C:\WINNT\ADDINS\FAXEXT.ECF

< %systemroot%\assembly\*.bak2 >

< %systemroot%\Config\*.* >
[2000/07/26 12:00:00 | 000,000,654 | ---- | M] () -- C:\WINNT\Config\GENERAL.IDF
[2000/07/26 12:00:00 | 000,000,658 | ---- | M] () -- C:\WINNT\Config\HINDERED.IDF
[2000/07/26 12:00:00 | 000,000,302 | ---- | M] () -- C:\WINNT\Config\MSADLIB.IDF

< %systemroot%\REPAIR\*.bak2 >

< %systemroot%\SECURITY\Database\*.sdb /x >

< %systemroot%\SYSTEM\*.bak2 >

< %systemroot%\Web\*.bak2 >

< %systemroot%\Driver Cache\*.* >

< %PROGRAMFILES%\Mozilla Firefox\0*.exe >

< %ProgramFiles%\Microsoft Common\*.* >

< %ProgramFiles%\TinyProxy. >

< %USERPROFILE%\Favorites\*.url /x >
[2011/10/28 09:58:00 | 000,000,083 | -HS- | M] () -- C:\Documents and Settings\Lyn James.SYSTEM-4\Favorites\Desktop.ini

< %systemroot%\system32\*.bk >

< %systemroot%\*.te >

< %systemroot%\system32\system32\*.* >

< %ALLUSERSPROFILE%\*.dat /x >
[2003/11/07 17:46:18 | 000,002,354 | RHS- | M] () -- C:\Documents and Settings\All Users\ntuser.pol

< %systemroot%\system32\drivers\*.rmv >

< dir /b "%systemroot%\system32\*.exe" | find /i " " /c >

< dir /b "%systemroot%\*.exe" | find /i " " /c >

< %PROGRAMFILES%\Microsoft\*.* >

< %systemroot%\System32\Wbem\proquota.exe >

< %PROGRAMFILES%\Mozilla Firefox\*.dat >

< %USERPROFILE%\Cookies\*.txt /x >
[2011/11/23 10:16:50 | 000,098,304 | ---- | M] () -- C:\Documents and Settings\Lyn James.SYSTEM-4\Cookies\index.dat

< %SystemRoot%\system32\fonts\*.* >

< %systemroot%\system32\winlog\*.* >

< %systemroot%\system32\Language\*.* >

< %systemroot%\system32\Settings\*.* >

< %systemroot%\system32\*.quo >

< %SYSTEMROOT%\AppPatch\*.exe >

< %SYSTEMROOT%\inf\*.exe >
[2002/12/11 15:08:28 | 000,192,512 | ---- | M] (Microsoft Corporation) -- C:\WINNT\inf\unregmp2.exe

< %SYSTEMROOT%\Installer\*.exe >

< %systemroot%\system32\config\*.bak2 >

< %systemroot%\system32\Computers\*.* >

< %SystemRoot%\system32\Sound\*.* >

< %SystemRoot%\system32\SpecialImg\*.* >

< %SystemRoot%\system32\code\*.* >

< %SystemRoot%\system32\draft\*.* >

< %SystemRoot%\system32\MSSSys\*.* >

< %ProgramFiles%\Javascript\*.* >

< %systemroot%\pchealth\helpctr\System\*.exe /s >

< %systemroot%\Web\*.exe >

< %systemroot%\system32\msn\*.* >

< %systemroot%\system32\*.tro >

< %AppData%\Microsoft\Installer\msupdates\*.* >

< %ProgramFiles%\Messenger\*.* >

< %systemroot%\system32\systhem32\*.* >

< %systemroot%\system\*.exe >
[1997/12/23 01:23:36 | 000,004,672 | ---- | M] (Adaptec) -- C:\WINNT\system\wowpost.exe
[1995/03/03 00:00:00 | 000,006,464 | ---- | M] (Microsoft Corporation) -- C:\WINNT\system\ODBCADM.EXE

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\ Auto Update\Results\Install|LastSuccessTime /rs >


========== Files - Unicode (All) ==========
[2003/05/22 14:31:46 | 000,000,000 | ---- | M] ()(C:\WINNT\?) -- C:\WINNT\
[2003/05/22 14:31:44 | 000,000,000 | ---- | C] ()(C:\WINNT\?) -- C:\WINNT\
[2001/12/11 15:18:24 | 000,000,000 | ---- | M] ()(C:\WINNT\?) -- C:\WINNT\ⱴ
[2001/12/11 15:18:23 | 000,000,000 | ---- | C] ()(C:\WINNT\?) -- C:\WINNT\ⱴ
[2001/12/09 18:39:00 | 000,000,000 | ---- | M] ()(C:\WINNT\?) -- C:\WINNT\㎀
[2001/12/09 18:38:58 | 000,000,000 | ---- | C] ()(C:\WINNT\?) -- C:\WINNT\㎀
[2001/05/01 22:12:16 | 000,000,000 | ---- | M] ()(C:\WINNT\?) -- C:\WINNT\漀
[2001/05/01 22:12:15 | 000,000,000 | ---- | C] ()(C:\WINNT\?) -- C:\WINNT\漀

< End of report >

 

windows 2000 suddenly reset as if new

Following is OTL scan result:

All processes killed
Error: Unable to interpret <O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.> in the current context!
Error: Unable to interpret <O3 - HKLM\..\Toolbar: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.> in the current context!
Error: Unable to interpret <O16 - DPF: {32564D57-0000-0010-8000-00AA00389B71} http://codecs.microsoft.com/codecs/i386/wmv8ax.cab (Reg Error: Value error.)> in the current context!
Error: Unable to interpret <O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get.../ultrashim.cab (Reg Error: Value error.)> in the current context!
Error: Unable to interpret <O16 - DPF: DirectAnimation Java Classes file://C:\WINNT\Java\classes\dajava.cab (Reg Error: Key error.)> in the current context!
Error: Unable to interpret <O16 - DPF: Microsoft XML Parser for Java file://C:\WINNT\Java\classes\xmldso.cab (Reg Error: Key error.)> in the current context!
========== COMMANDS ==========

[EMPTYTEMP]

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: All Users

User: Lyn James.SYSTEM-4
->Temp folder emptied: 4182277 bytes
->Temporary Internet Files folder emptied: 176240755 bytes
->Java cache emptied: 0 bytes
->Flash cache emptied: 2419 bytes

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 86528 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 202 bytes
RecycleBin emptied: shell32.dll unable to determine bytes removed.

Total Files Cleaned = 172.00 mb


[EMPTYFLASH]

User: Default User

User: All Users

User: Lyn James.SYSTEM-4
->Flash cache emptied: 0 bytes

User: Administrator

Total Flash Files Cleaned = 0.00 mb


OTL by OldTimer - Version 3.2.31.0 log created on 12042011_213209

Files\Folders moved on Reboot...
C:\Documents and Settings\Lyn James.SYSTEM-4\Local Settings\Temporary Internet Files\Content.IE5\2IN3PCJ3\p-01-0VIaSjnOLg[1].gif moved successfully.

Registry entries deleted on Reboot...

 

windows 2000 suddenly reset as if new

Following is the security check result:

Results of screen317's Security Check version 0.99.24
Windows 2000 Service Pack 4 x86
Internet Explorer 6 Out of date!
``````````````````````````````
Antivirus/Firewall Check:
AVG Free 9.0
```````````````````````````````
Anti-malware/Other Utilities Check:
Malwarebytes' Anti-Malware
HijackThis 2.0.2
CCleaner (remove only)
````````````````````````````````
Process Check:
objlist.exe by Laurent
AVG avgwdsvc.exe
AVG avgrsx.exe
AVG avgnsx.exe
AVG avgemc.exe
``````````End of Log````````````

 

windows 2000 suddenly resets as if new

no , sorry i was in the process of doing the other items and didn't notice it.
I will re-do OTL and post it

 

windows 2000 suddenly resets as if new

Following is the log for OTL Custom Scan

All processes killed
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Code: > in the current context!
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6}\ not found.
Starting removal of ActiveX control {32564D57-0000-0010-8000-00AA00389B71}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{32564D57-0000-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32564D57-0000-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{32564D57-0000-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32564D57-0000-0010-8000-00AA00389B71}\ not found.
Starting removal of ActiveX control {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
File Animation Java Classes file://C:\WINNT\Java\classes\dajava.cab not found.
Starting removal of ActiveX control DirectAnimation Java Classes
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\DirectAnimation Java Classes\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\DirectAnimation Java Classes\ not found.
File oft XML Parser for Java file://C:\WINNT\Java\classes\xmldso.cab not found.
Starting removal of ActiveX control Microsoft XML Parser for Java
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\Microsoft XML Parser for Java\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\Microsoft XML Parser for Java\ not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: All Users