Solved Can't Back-up, Restore, Password effected, Even mouse, keyboard

BeverlyG · 2010/08/22

So, I hit Y....?? and....
BTW THANK YOU!!
SOOOOO MUCH!

broni · 2010/08/22

I'm not sure, what you just said....

BeverlyG · 2010/08/22

Found non-standard or infected MBR. Enter 'Y' and hit ENTER for more options said: ↑

I is my FreeAgent Drive.
Click to expand...

broni · 2010/08/22

Do nothing about MBRCheck now.

FreeAgent Drive? Some external drive?

Please, proceed with Combofix.

BeverlyG · 2010/08/22

Yes an external Drive. Downloading now, but overtired is probably not best for this portion aye? Will you be available tomorrow??

broni · 2010/08/22

I'll be around tomorrow and my bed time is coming too

BeverlyG · 2010/08/22

Good Night!

[FONT= "Microsoft Sans Serif"]Hopefully I can get on tomorrow! You ROCK!!
Be Blessed!![/FONT]

broni · 2010/08/22

Night

BeverlyG · 2010/08/22

Hi!

You There? I have all my shields down, but can't find how to turn AVG 9 (I think AntiVirus and AntiSpyware off... Resident Shield is off...

broni · 2010/08/22

Good enough. If Combofix still complains (it happens), run it anyway.

BeverlyG · 2010/08/22

Gotcha!! So Glad you're there!

broni · 2010/08/22

...

BeverlyG · 2010/08/22

Error Win32 only

Incompatible OS
(Vista)

BeverlyG · 2010/08/22

it says...

"ComboFix only works for workstations with Windows 2000 and XP "

BeverlyG · 2010/08/22

I only have a few minutes...

Will you be on late?

broni · 2010/08/22

Sorry, my fault. Combofix won't run on 64-bit.
You can delete the file.

I may go to the movies, but I'll be back sooner, or later

Download OTL to your Desktop.

* Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
* Under the Custom Scan box paste this in:

netsvcs
drivers32 /all
%SYSTEMDRIVE%\*.*
%systemroot%\system32\Spool\prtprocs\w32x86\*.dll
%systemroot%\system32\*.wt
%systemroot%\system32\*.ruy
%systemroot%\Fonts\*.com
%systemroot%\Fonts\*.dll
%systemroot%\system32\spool\prtprocs\w32x86\*.tmp
%systemroot%\*. /mp /s
/md5start
/md5stop
CREATERESTOREPOINT
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\user32.dll /md5
%systemroot%\system32\ws2_32.dll /md5
%systemroot%\system32\ws2help.dll /md5
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs

* Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.

When the scan completes, it will open two notepad windows: OTL.txt and Extras.txt. These are saved in the same location as OTL.

Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post them back here.

BeverlyG · 2010/08/22

OTL logfile created on: 8/22/2010 5:10:39 PM - Run 1
OTL by OldTimer - Version 3.2.10.0 Folder = C:\Users\beverly\Desktop
64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18943)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 49.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 62.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 283.40 Gb Total Space | 204.49 Gb Free Space | 72.15% Space Free | Partition Type: NTFS
Drive D: | 14.65 Gb Total Space | 6.47 Gb Free Space | 44.17% Space Free | Partition Type: NTFS
Unable to calculate disk information.
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: BEVERLY-PC
Current User Name: beverly
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2010/08/22 17:08:07 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\beverly\Desktop\OTL.exe
PRC - [2010/07/22 22:07:03 | 000,014,808 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
PRC - [2010/07/22 22:06:53 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2010/07/21 12:38:09 | 002,065,760 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG9\avgtray.exe
PRC - [2010/07/21 12:38:03 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe
PRC - [2010/07/21 12:37:25 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG9\avgemc.exe
PRC - [2010/07/21 12:37:24 | 000,723,296 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG9\avgcsrvx.exe
PRC - [2010/05/21 00:28:00 | 011,312,128 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
PRC - [2010/05/21 00:27:58 | 011,318,784 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
PRC - [2009/05/19 12:36:18 | 000,240,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
PRC - [2009/01/05 18:19:10 | 000,824,560 | ---- | M] (Dell Inc.) -- c:\Program Files (x86)\Common Files\Dell\Advanced Networking Service\hnm_svc.exe
PRC - [2008/12/18 14:05:28 | 000,155,648 | ---- | M] (Stardock Corporation) -- C:\Program Files\Dell\DellDock\DockLogin.exe
PRC - [2008/12/16 03:00:36 | 000,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files (x86)\Dell\DellComms\bin\sprtsvc.exe
PRC - [2008/12/16 03:00:34 | 000,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files (x86)\Dell\DellComms\bin\sprtcmd.exe
PRC - [2008/08/31 13:02:04 | 001,519,168 | ---- | M] (UltraVNC) -- C:\ProgramData\UltraVNC\winvnc.exe
PRC - [2008/05/23 15:06:08 | 000,128,296 | ---- | M] (CyberLink Corp.) -- C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
PRC - [2007/02/08 18:52:06 | 000,074,672 | ---- | M] (Lexmark International, Inc.) -- C:\Program Files (x86)\Lexmark 1200 Series\LXCZbmgr.exe
PRC - [2007/02/08 18:51:54 | 000,058,288 | ---- | M] (Lexmark International, Inc.) -- C:\Program Files (x86)\Lexmark 1200 Series\LXCZbmon.exe
PRC - [2006/11/03 19:02:14 | 000,050,688 | ---- | M] (Avanquest Software ) -- C:\Program Files (x86)\Digital Line Detect\DLG.exe
PRC - [2000/02/14 18:36:22 | 000,542,208 | ---- | M] () -- C:\Program Files (x86)\Symantec\WinFax\WFXCTL32.EXE
PRC - [1999/07/22 19:50:56 | 000,168,960 | ---- | M] (Concord Technologies, Inc.) -- C:\Program Files (x86)\Symantec\WinFax\CTITRAYI.EXE

========== Modules (SafeList) ==========

MOD - [2010/08/22 17:08:07 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\beverly\Desktop\OTL.exe
MOD - [2008/01/20 22:50:01 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx

========== Win32 Services (SafeList) ==========

SRV:64bit: - File not found [Disabled | Stopped] -- C:\Windows\SysNative\WFXSVC.EXE -- (wfxsvc)
SRV:64bit: - [2009/04/11 03:11:16 | 000,717,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2009/03/05 02:13:38 | 000,088,576 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe -- (AERTFilters)
SRV:64bit: - [2008/12/18 14:05:28 | 000,155,648 | ---- | M] (Stardock Corporation) [Auto | Running] -- C:\Program Files\Dell\DellDock\DockLogin.exe -- (DockLoginService)
SRV:64bit: - [2008/01/20 22:47:32 | 000,383,544 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2007/02/08 18:51:08 | 000,566,192 | ---- | M] ( ) [Auto | Running] -- C:\Windows\SysNative\lxczcoms.exe -- (lxcz_device)
SRV:64bit: - [2006/11/02 07:17:46 | 000,028,672 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2006/11/02 02:38:28 | 000,055,846 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysNative\Wbem\vss.mof -- (VSS)
SRV - [2010/07/21 12:38:03 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2010/07/21 12:37:25 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG9\avgemc.exe -- (avg9emc)
SRV - [2010/03/18 14:27:14 | 001,020,768 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400)
SRV - [2010/03/18 14:27:14 | 000,138,576 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_64)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/05/19 12:36:18 | 000,240,512 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort)
SRV - [2009/01/05 18:19:10 | 000,824,560 | ---- | M] (Dell Inc.) [Auto | Running] -- c:\Program Files (x86)\Common Files\Dell\Advanced Networking Service\hnm_svc.exe -- (hnmsvc)
SRV - [2009/01/05 18:19:08 | 000,173,296 | ---- | M] (SingleClick Systems) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Dell\Remote Access File Sync Service\dsl_fs_sync.exe -- (dsl-fs-sync)
SRV - [2008/12/16 03:00:36 | 000,206,064 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files (x86)\Dell\DellComms\bin\sprtsvc.exe -- (sprtsvc_DellComms) SupportSoft Sprocket Service (DellComms)
SRV - [2008/08/31 13:02:04 | 001,519,168 | ---- | M] (UltraVNC) [Auto | Running] -- C:\ProgramData\UltraVNC\winvnc.exe -- (uvnc_service)
SRV - [2007/09/21 14:26:34 | 000,015,872 | ---- | M] (Apache Software Foundation) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Dell\apache\bin\httpd.exe -- (Apache2.2)
SRV - [2007/09/14 14:35:04 | 005,730,304 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Dell\MySQL\bin\mysqld.exe -- (dsl-db)
SRV - [2007/02/08 18:50:33 | 000,537,520 | ---- | M] ( ) [Auto | Running] -- C:\Windows\SysWow64\lxczcoms.exe -- (lxcz_device)
SRV - [2006/11/02 02:35:15 | 000,060,994 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysWOW64\wbem\vds.mof -- (vds)
SRV - [2006/11/02 02:35:15 | 000,055,846 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysWOW64\wbem\vss.mof -- (VSS)
SRV - [2000/02/14 18:36:22 | 000,129,536 | ---- | M] (Symantec Corporation) [Disabled | Stopped] -- C:\Windows\SysWOW64\WFXSVC.EXE -- (wfxsvc)

========== Driver Services (SafeList) ==========

DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\ipinip.sys -- (IpInIp)
DRV:64bit: - [2010/07/21 12:38:08 | 000,317,520 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\avgtdia.sys -- (AvgTdiA)
DRV:64bit: - [2010/07/21 12:37:25 | 000,269,904 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\avgldx64.sys -- (AvgLdx64)
DRV:64bit: - [2010/06/02 09:12:19 | 000,035,536 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\Drivers\avgmfx64.sys -- (AvgMfx64)
DRV:64bit: - [2009/11/16 04:13:26 | 000,271,360 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\Rtlh64.sys -- (RTL8169)
DRV:64bit: - [2009/09/30 20:51:42 | 000,046,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\wpdusb.sys -- (WpdUsb)
DRV:64bit: - [2009/03/05 02:24:30 | 010,275,296 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\igdkmd64.sys -- (igfx)
DRV:64bit: - [2008/07/02 03:11:34 | 000,010,240 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\xaudio64.sys -- (XAudio)
DRV:64bit: - [2008/07/02 03:11:32 | 000,017,024 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\mdmxsdk.sys -- (mdmxsdk)
DRV:64bit: - [2008/07/02 03:11:28 | 001,487,872 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\CAX_DPV.sys -- (HSF_DPV)
DRV:64bit: - [2008/07/02 03:11:28 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\CAX_CNXT.sys -- (winachsf)
DRV:64bit: - [2008/07/02 03:11:28 | 000,411,136 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\CAXHWBS2.sys -- (CAXHWBS2)
DRV:64bit: - [2008/06/18 17:48:54 | 000,029,184 | ---- | M] (SingleClick Systems) [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\packet.sys -- (Packet)
DRV:64bit: - [2008/01/20 22:46:55 | 000,317,952 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\e1e6032e.sys -- (e1express) Intel(R)
DRV:64bit: - [2007/11/14 04:00:00 | 000,053,488 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2006/11/02 03:48:50 | 002,488,320 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\atikmdag.sys -- (R300)
DRV:64bit: - [2006/09/18 17:36:24 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\Wbem\ntfs.mof -- (Ntfs)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\..\URLSearchHook: {7b13ec3e-999a-4b70-b9cb-2617b8323822} - C:\Program Files (x86)\Zynga\tbZyng.dll (Conduit Ltd.)

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/USCON/1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://bing.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {7b13ec3e-999a-4b70-b9cb-2617b8323822} - C:\Program Files (x86)\Zynga\tbZyng.dll (Conduit Ltd.)
IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.bing.com/ "
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..network.proxy.type: 0

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010/08/13 14:42:44 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010/08/13 14:42:44 | 000,000,000 | ---D | M]

[2010/07/29 14:58:52 | 000,000,000 | ---D | M] -- C:\Users\beverly\AppData\Roaming\Mozilla\Extensions
[2010/08/22 01:15:34 | 000,000,000 | ---D | M] -- C:\Users\beverly\AppData\Roaming\Mozilla\Firefox\Profiles\lofc3lzy.default\extensions
[2010/07/29 15:14:37 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\beverly\AppData\Roaming\Mozilla\Firefox\Profiles\lofc3lzy.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/08/10 14:29:13 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010/08/10 14:29:13 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/08/10 14:29:00 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll

O1 HOSTS File: ([2006/09/18 17:37:24 | 000,000,761 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG9\avgssiea.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Zynga Toolbar) - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - C:\Program Files (x86)\Zynga\tbZyng.dll (Conduit Ltd.)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Zynga Toolbar) - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - C:\Program Files (x86)\Zynga\tbZyng.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Zynga Toolbar) - {7B13EC3E-999A-4B70-B9CB-2617B8323822} - C:\Program Files (x86)\Zynga\tbZyng.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll ()
O4:64bit: - HKLM..\Run: [] File not found
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [lxczbmgr.exe] C:\Program Files (x86)\Lexmark 1200 Series\lxczbmgr.exe (Lexmark International, Inc.)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe File not found
O4:64bit: - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [WPCUMI] C:\Windows\SysNative\WpcUmi.exe (Microsoft Corporation)
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files (x86)\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [DellComms] C:\Program Files (x86)\Dell\DellComms\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [PDVDDXSrv] C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.)
O4 - HKCU..\Run: [cdloader] C:\Users\beverly\AppData\Roaming\mjusbsp\cdloader2.exe (magicJack L.P.)
O4 - HKCU..\Run: [Speech Recognition] C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
O4 - Startup: C:\Users\beverly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk = C:\Program Files (x86)\Dell\DellDock\DellDock.exe File not found
O4 - Startup: C:\Users\beverly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysNative\wpclsp.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysNative\wpclsp.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysNative\wpclsp.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysNative\wpclsp.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysNative\wpclsp.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysNative\wpclsp.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysNative\wpclsp.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysNative\wpclsp.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\SysNative\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWow64\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWow64\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWow64\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWow64\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWow64\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWow64\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysWow64\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysWow64\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\SysWow64\wpclsp.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 66.51.150.6 66.51.150.5 192.168.1.1 66.51.150.6 66.51.150.5
O18:64bit: - Protocol\Handler\cozi {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG9\avgppa.dll (AVG Technologies CZ, s.r.o.)
O18:64bit: - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18 - Protocol\Handler\cozi {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - C:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll (Cozi Group, Inc.)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O20:64bit: - AppInit_DLLs: (avgrssta.dll) - C:\Windows\SysNative\avgrssta.dll (AVG Technologies CZ, s.r.o.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Key error. - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\dellwall3.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\dellwall3.jpg
O28 - HKLM ShellExecuteHooks: {A213B520-C6C2-11d0-AF9D-008029E1027E} - C:\Program Files (x86)\Symantec\WinFax\WFXSEH32.DLL (Symantec Corporation)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{7f00b112-1166-11df-8eb2-00256401d0bb}\Shell\AutoRun\command - " " = Setup.exe
O33 - MountPoints2\{f15dad31-4e20-11df-ace7-00256401d0bb}\Shell - " " = AutoRun
O33 - MountPoints2\H\Shell\AutoRun\command - " " = Setup.exe
O33 - MountPoints2\I\Shell\AutoRun\command - " " = Setup.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

Drivers32:64bit: aux - wdmaud.drv (Microsoft Corporation)
Drivers32:64bit: aux1 - wdmaud.drv (Microsoft Corporation)
Drivers32:64bit: midi - wdmaud.drv (Microsoft Corporation)
Drivers32:64bit: midi1 - wdmaud.drv (Microsoft Corporation)
Drivers32:64bit: midimapper - midimap.dll (Microsoft Corporation)
Drivers32:64bit: mixer - wdmaud.drv (Microsoft Corporation)
Drivers32:64bit: mixer1 - wdmaud.drv (Microsoft Corporation)
Drivers32:64bit: msacm.imaadpcm - imaadp32.acm (Microsoft Corporation)
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: msacm.msadpcm - msadp32.acm (Microsoft Corporation)
Drivers32:64bit: msacm.msg711 - msg711.acm (Microsoft Corporation)
Drivers32:64bit: msacm.msgsm610 - msgsm32.acm (Microsoft Corporation)
Drivers32:64bit: vidc.i420 - iyuv_32.dll (Microsoft Corporation)
Drivers32:64bit: vidc.iyuv - iyuv_32.dll (Microsoft Corporation)
Drivers32:64bit: vidc.mrle - msrle32.dll (Microsoft Corporation)
Drivers32:64bit: vidc.msvc - msvidc32.dll (Microsoft Corporation)
Drivers32:64bit: vidc.uyvy - msyuv.dll (Microsoft Corporation)
Drivers32:64bit: vidc.yuy2 - msyuv.dll (Microsoft Corporation)
Drivers32:64bit: vidc.yvu9 - tsbyuv.dll (Microsoft Corporation)
Drivers32:64bit: vidc.yvyu - msyuv.dll (Microsoft Corporation)
Drivers32:64bit: wave - wdmaud.drv (Microsoft Corporation)
Drivers32:64bit: wave1 - wdmaud.drv (Microsoft Corporation)
Drivers32:64bit: wavemapper - msacm32.drv (Microsoft Corporation)
Drivers32: aux - C:\Windows\SysWow64\wdmaud.drv (Microsoft Corporation)
Drivers32: aux1 - C:\Windows\SysWow64\wdmaud.drv (Microsoft Corporation)
Drivers32: midi - C:\Windows\SysWow64\wdmaud.drv (Microsoft Corporation)
Drivers32: midi1 - C:\Windows\SysWow64\wdmaud.drv (Microsoft Corporation)
Drivers32: midimapper - C:\Windows\SysWow64\midimap.dll (Microsoft Corporation)
Drivers32: mixer - C:\Windows\SysWow64\wdmaud.drv (Microsoft Corporation)
Drivers32: mixer1 - C:\Windows\SysWow64\wdmaud.drv (Microsoft Corporation)
Drivers32: msacm.imaadpcm - C:\Windows\SysWow64\imaadp32.acm (Microsoft Corporation)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.msadpcm - C:\Windows\SysWow64\msadp32.acm (Microsoft Corporation)
Drivers32: msacm.msg711 - C:\Windows\SysWow64\msg711.acm (Microsoft Corporation)
Drivers32: msacm.msgsm610 - C:\Windows\SysWow64\msgsm32.acm (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: vidc.i420 - C:\Windows\SysWow64\iyuv_32.dll (Microsoft Corporation)
Drivers32: VIDC.IV41 - C:\Windows\SysWow64\ir41_32.dll (Intel Corporation)
Drivers32: vidc.iyuv - C:\Windows\SysWow64\iyuv_32.dll (Microsoft Corporation)
Drivers32: vidc.mrle - C:\Windows\SysWow64\msrle32.dll (Microsoft Corporation)
Drivers32: vidc.msvc - C:\Windows\SysWow64\msvidc32.dll (Microsoft Corporation)
Drivers32: vidc.uyvy - C:\Windows\SysWow64\msyuv.dll (Microsoft Corporation)
Drivers32: vidc.yuy2 - C:\Windows\SysWow64\msyuv.dll (Microsoft Corporation)
Drivers32: vidc.yvu9 - C:\Windows\SysWow64\tsbyuv.dll (Microsoft Corporation)
Drivers32: vidc.yvyu - C:\Windows\SysWow64\msyuv.dll (Microsoft Corporation)
Drivers32: wave - C:\Windows\SysWow64\wdmaud.drv (Microsoft Corporation)
Drivers32: wave1 - C:\Windows\SysWow64\wdmaud.drv (Microsoft Corporation)
Drivers32: wavemapper - C:\Windows\SysWow64\msacm32.drv (Microsoft Corporation)

CREATERESTOREPOINT
Error creating restore point.

========== Files/Folders - Created Within 90 Days ==========

[2010/08/22 17:08:01 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\beverly\Desktop\OTL.exe
[2010/08/22 16:15:49 | 000,000,000 | R--D | C] -- C:\32788R22FWJFW
[2010/08/22 00:23:36 | 000,000,000 | ---D | C] -- C:\Users\beverly\AppData\Roaming\Malwarebytes
[2010/08/22 00:22:53 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010/08/22 00:22:52 | 000,024,664 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2010/08/22 00:22:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2010/08/22 00:22:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010/08/22 00:06:37 | 006,153,376 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\beverly\Desktop\mbam-setup-1.46.exe
[2010/08/20 10:59:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2010/08/20 10:59:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spybot - Search & Destroy
[2010/08/20 10:19:20 | 016,409,960 | ---- | C] (Safer Networking Limited ) -- C:\Users\beverly\Desktop\spybotsd162.exe
[2010/08/20 00:23:33 | 000,000,000 | ---D | C] -- C:\Program Files\EUSING~1
[2010/08/19 22:56:46 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\XPSViewer
[2010/08/16 19:12:37 | 000,000,000 | ---D | C] -- C:\Users\beverly\Documents\WebPage
[2010/08/14 20:55:56 | 000,000,000 | R--D | C] -- C:\Users\beverly\Desktop\Music
[2010/08/13 14:42:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2010/08/13 14:42:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2010/08/10 14:47:19 | 000,000,000 | ---D | C] -- C:\Users\beverly\AppData\Roaming\OpenOffice.org
[2010/08/10 14:35:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\JRE
[2010/08/10 14:35:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenOffice.org 3
[2010/08/10 14:29:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010/08/10 14:29:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2010/08/10 14:25:13 | 000,000,000 | ---D | C] -- C:\Users\beverly\Desktop\OpenOffice.org 3.2 (en-US) Installation Files
[2010/08/05 11:58:10 | 000,000,000 | ---D | C] -- C:\Users\beverly\Desktop\Media
[2010/08/03 20:28:15 | 000,000,000 | R-SD | C] -- C:\Users\beverly\Documents\My Stationery
[2010/07/31 20:37:58 | 000,000,000 | ---D | C] -- C:\Users\beverly\Desktop\The Warehouse
[2010/07/29 14:58:36 | 000,000,000 | ---D | C] -- C:\Users\beverly\AppData\Roaming\Mozilla
[2010/07/29 14:58:36 | 000,000,000 | ---D | C] -- C:\Users\beverly\AppData\Local\Mozilla
[2010/07/29 14:58:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2010/07/29 13:54:47 | 008,573,648 | ---- | C] (Mozilla) -- C:\Users\beverly\Firefox Setup 3.6.8.exe
[2010/07/22 20:20:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cozi Express
[2010/07/22 20:20:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Cozi
[2010/07/21 12:38:07 | 000,013,048 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\avgrssta.dll
[2010/06/28 03:03:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2010/06/05 13:30:37 | 000,000,000 | ---D | C] -- C:\Users\beverly\Desktop\Be Blessed!
[2010/01/18 09:38:54 | 000,413,696 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczinpa.dll
[2010/01/18 09:38:54 | 000,397,312 | ---- | C] ( ) -- C:\Windows\SysWow64\lxcziesc.dll
[2010/01/18 09:38:53 | 000,643,072 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczpmui.dll
[2010/01/18 09:38:52 | 001,224,704 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczserv.dll
[2010/01/18 09:38:52 | 000,991,232 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczusb1.dll
[2010/01/18 09:38:52 | 000,585,728 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczlmpm.dll
[2010/01/18 09:38:52 | 000,163,840 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczprox.dll
[2010/01/18 09:38:52 | 000,094,208 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczpplc.dll
[2010/01/18 09:38:51 | 000,696,320 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczhbn3.dll
[2010/01/18 09:38:51 | 000,684,032 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczcomc.dll
[2010/01/18 09:38:51 | 000,421,888 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczcomm.dll

========== Files - Modified Within 90 Days ==========

[2010/08/22 17:13:59 | 000,000,424 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{2D74C860-5EDC-4747-85AE-B8DF36E5B081}.job
[2010/08/22 17:10:12 | 002,097,152 | -HS- | M] () -- C:\Users\beverly\ntuser.dat
[2010/08/22 17:08:07 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\beverly\Desktop\OTL.exe
[2010/08/22 15:53:52 | 000,000,103 | ---- | M] () -- C:\Windows\SysWow64\faxman4.ini
[2010/08/22 13:44:44 | 000,000,422 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{ED28A1D7-DFCE-4F9B-AB12-132C5E947780}.job
[2010/08/22 08:48:40 | 063,714,321 | ---- | M] () -- C:\Windows\SysNative\drivers\Avg\incavi.avm
[2010/08/22 01:40:15 | 000,080,384 | ---- | M] () -- C:\Users\beverly\Desktop\MBRCheck.exe
[2010/08/22 01:10:14 | 000,293,376 | ---- | M] () -- C:\Users\beverly\Desktop\kri2upjy.exe
[2010/08/22 01:01:38 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/08/22 01:01:26 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/08/22 01:01:15 | 2110,840,832 | -HS- | M] () -- C:\hiberfil.sys
[2010/08/22 00:59:51 | 000,065,536 | -HS- | M] () -- C:\Users\beverly\ntuser.dat{6dbb0a34-323d-11df-9ed2-00256401d0bb}.TM.blf
[2010/08/22 00:59:50 | 000,524,288 | -HS- | M] () -- C:\Users\beverly\ntuser.dat{6dbb0a34-323d-11df-9ed2-00256401d0bb}.TMContainer00000000000000000001.regtrans-ms
[2010/08/22 00:59:46 | 006,291,456 | -H-- | M] () -- C:\Users\beverly\AppData\Local\IconCache.db
[2010/08/22 00:22:56 | 000,000,874 | ---- | M] () -- C:\Users\beverly\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2010/08/22 00:22:56 | 000,000,850 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/08/22 00:13:22 | 006,153,376 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\beverly\Desktop\mbam-setup-1.46.exe
[2010/08/20 17:47:00 | 000,001,815 | ---- | M] () -- C:\Users\beverly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
[2010/08/20 13:24:18 | 000,000,632 | RHS- | M] () -- C:\Users\beverly\ntuser.pol
[2010/08/20 13:20:05 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010/08/20 13:20:05 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010/08/20 10:59:56 | 000,001,123 | ---- | M] () -- C:\Users\beverly\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk
[2010/08/20 10:59:56 | 000,001,099 | ---- | M] () -- C:\Users\beverly\Desktop\Spybot - Search & Destroy.lnk
[2010/08/20 10:35:55 | 016,409,960 | ---- | M] (Safer Networking Limited ) -- C:\Users\beverly\Desktop\spybotsd162.exe
[2010/08/20 10:02:13 | 000,525,824 | ---- | M] () -- C:\Users\beverly\Desktop\dds.scr
[2010/08/20 00:39:45 | 000,000,894 | ---- | M] () -- C:\Users\beverly\Desktop\Eusing Free Registry Cleaner.lnk
[2010/08/20 00:38:42 | 000,963,827 | ---- | M] () -- C:\Users\beverly\Desktop\EFRCSetup.exe
[2010/08/19 22:58:27 | 000,718,136 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010/08/19 22:58:27 | 000,604,264 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010/08/19 22:58:27 | 000,103,964 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010/08/15 14:27:32 | 016,163,294 | ---- | M] () -- C:\Users\beverly\Desktop\Alice Cooper.zip
[2010/08/13 14:42:26 | 000,001,758 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2010/08/12 11:22:57 | 000,000,905 | ---- | M] () -- C:\Users\beverly\Desktop\magicJack.lnk
[2010/08/12 03:33:40 | 000,365,712 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010/08/11 22:16:25 | 000,017,297 | ---- | M] () -- C:\Users\beverly\Documents\Vittles.odt_0.odt
[2010/08/10 15:06:58 | 000,100,536 | ---- | M] () -- C:\Users\beverly\AppData\Local\GDIPFONTCACHEV1.DAT
[2010/08/10 14:48:17 | 000,001,072 | ---- | M] () -- C:\Users\beverly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk
[2010/08/10 14:36:33 | 000,001,027 | ---- | M] () -- C:\Users\Public\Desktop\OpenOffice.org 3.2.lnk
[2010/08/10 13:39:55 | 155,184,736 | ---- | M] () -- C:\Users\beverly\Desktop\OOo_3.2.1_Win_x86_install-wJRE_en-US.exe
[2010/08/08 21:53:02 | 000,001,919 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010/08/06 09:41:06 | 000,012,237 | ---- | M] () -- C:\Users\beverly\Desktop\Peaches.jpg
[2010/07/29 14:58:08 | 000,001,804 | ---- | M] () -- C:\Users\beverly\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010/07/29 14:58:08 | 000,001,780 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010/07/22 20:19:12 | 001,440,256 | ---- | M] () -- C:\Users\beverly\Desktop\SetupCoziCollage_COZI.msi
[2010/07/21 12:38:08 | 000,317,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgtdia.sys
[2010/07/21 12:38:07 | 000,013,048 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\avgrssta.dll
[2010/07/21 12:37:25 | 000,269,904 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgldx64.sys
[2010/06/21 16:19:46 | 000,012,288 | ---- | M] () -- C:\Users\beverly\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/06/16 22:48:32 | 000,002,302 | ---- | M] () -- C:\Users\beverly\AppData\Roaming\wklnhst.dat
[2010/06/02 09:12:19 | 000,035,536 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgmfx64.sys

========== Files Created - No Company Name ==========

[2010/08/22 01:40:12 | 000,080,384 | ---- | C] () -- C:\Users\beverly\Desktop\MBRCheck.exe
[2010/08/22 01:10:03 | 000,293,376 | ---- | C] () -- C:\Users\beverly\Desktop\kri2upjy.exe
[2010/08/22 00:22:56 | 000,000,874 | ---- | C] () -- C:\Users\beverly\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2010/08/22 00:22:56 | 000,000,850 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/08/20 17:47:00 | 000,001,815 | ---- | C] () -- C:\Users\beverly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
[2010/08/20 10:59:56 | 000,001,123 | ---- | C] () -- C:\Users\beverly\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk
[2010/08/20 10:59:56 | 000,001,099 | ---- | C] () -- C:\Users\beverly\Desktop\Spybot - Search & Destroy.lnk
[2010/08/20 10:01:45 | 000,525,824 | ---- | C] () -- C:\Users\beverly\Desktop\dds.scr
[2010/08/20 00:39:45 | 000,000,894 | ---- | C] () -- C:\Users\beverly\Desktop\Eusing Free Registry Cleaner.lnk
[2010/08/20 00:24:34 | 000,963,827 | ---- | C] () -- C:\Users\beverly\Desktop\EFRCSetup.exe
[2010/08/15 14:27:18 | 016,163,294 | ---- | C] () -- C:\Users\beverly\Desktop\Alice Cooper.zip
[2010/08/13 14:42:26 | 000,001,758 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2010/08/12 20:30:21 | 000,017,297 | ---- | C] () -- C:\Users\beverly\Documents\Vittles.odt_0.odt
[2010/08/10 14:48:16 | 000,001,072 | ---- | C] () -- C:\Users\beverly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk
[2010/08/10 14:36:33 | 000,001,027 | ---- | C] () -- C:\Users\Public\Desktop\OpenOffice.org 3.2.lnk
[2010/08/10 14:29:26 | 000,430,314 | ---- | C] () -- C:\Users\beverly\AppData\Local\dd_vcredistMSI5798.txt
[2010/08/10 14:29:24 | 000,017,918 | ---- | C] () -- C:\Users\beverly\AppData\Local\dd_vcredistUI5798.txt
[2010/08/10 11:02:49 | 155,184,736 | ---- | C] () -- C:\Users\beverly\Desktop\OOo_3.2.1_Win_x86_install-wJRE_en-US.exe
[2010/08/08 21:53:02 | 000,001,919 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010/08/06 09:41:05 | 000,012,237 | ---- | C] () -- C:\Users\beverly\Desktop\Peaches.jpg
[2010/08/05 22:20:13 | 000,000,905 | ---- | C] () -- C:\Users\beverly\Desktop\magicJack.lnk
[2010/07/29 14:58:08 | 000,001,804 | ---- | C] () -- C:\Users\beverly\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010/07/29 14:58:08 | 000,001,780 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010/07/22 20:18:36 | 001,440,256 | ---- | C] () -- C:\Users\beverly\Desktop\SetupCoziCollage_COZI.msi
[2010/03/23 13:18:43 | 000,002,302 | ---- | C] () -- C:\Users\beverly\AppData\Roaming\wklnhst.dat
[2010/02/28 15:10:18 | 000,001,919 | ---- | C] () -- C:\Program Files\Common Files\Adobe Reader 9.lnk
[2010/02/15 09:20:41 | 000,000,000 | ---- | C] () -- C:\Windows\WTNSETUP.INI
[2010/02/15 08:54:20 | 000,037,888 | ---- | C] () -- C:\Windows\SysWow64\DCCWFP32.DLL
[2010/02/15 08:54:19 | 000,000,250 | ---- | C] () -- C:\Windows\WINFAX.INI
[2010/02/15 08:54:18 | 000,017,920 | ---- | C] () -- C:\Windows\SysWow64\IMPLODE.DLL
[2010/02/08 13:16:04 | 000,000,680 | ---- | C] () -- C:\Users\beverly\AppData\Local\d3d9caps.dat
[2010/02/06 17:55:07 | 000,000,103 | ---- | C] () -- C:\Windows\SysWow64\faxman4.ini
[2010/01/18 09:49:58 | 000,000,259 | ---- | C] () -- C:\Windows\Lexstat.ini
[2010/01/18 09:38:54 | 000,274,432 | ---- | C] () -- C:\Windows\SysWow64\LXCZinst.dll
[2010/01/18 09:38:53 | 000,413,696 | ---- | C] () -- C:\Windows\SysWow64\lxczutil.dll
[2010/01/17 15:13:40 | 000,117,248 | ---- | C] () -- C:\Windows\SysWow64\EhStorAuthn.dll
[2010/01/17 15:11:17 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/09/29 11:55:10 | 000,000,226 | ---- | C] () -- C:\Windows\TLCAPPS.INI
[2009/09/29 11:54:27 | 000,000,000 | ---- | C] () -- C:\Windows\setup32.INI
[2009/09/29 10:37:02 | 000,000,201 | ---- | C] () -- C:\Windows\KA.INI
[2009/09/27 16:11:10 | 000,012,288 | ---- | C] () -- C:\Users\beverly\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/01/20 22:50:05 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini

========== LOP Check ==========

[2010/02/06 17:54:14 | 000,000,000 | ---D | M] -- C:\Users\beverly\AppData\Roaming\4Team
[2010/08/12 11:23:00 | 000,000,000 | ---D | M] -- C:\Users\beverly\AppData\Roaming\mjusbsp
[2010/08/10 14:47:19 | 000,000,000 | ---D | M] -- C:\Users\beverly\AppData\Roaming\OpenOffice.org
[2010/03/23 13:18:50 | 000,000,000 | ---D | M] -- C:\Users\beverly\AppData\Roaming\Template
[2010/01/15 19:02:58 | 000,000,000 | ---D | M] -- C:\Users\beverly\AppData\Roaming\Windows Live Writer
[2010/08/22 01:00:14 | 000,032,484 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2010/08/22 17:13:59 | 000,000,424 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{2D74C860-5EDC-4747-85AE-B8DF36E5B081}.job
[2010/08/22 13:44:44 | 000,000,422 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{ED28A1D7-DFCE-4F9B-AB12-132C5E947780}.job

========== Purity Check ==========

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.* >
[2009/04/11 02:36:36 | 000,333,257 | RHS- | M] () -- C:\bootmgr
[2008/06/24 19:22:20 | 000,546,872 | ---- | M] (Microsoft Corporation) -- C:\bootmgr.efi
[2009/06/25 14:48:40 | 000,003,906 | RH-- | M] () -- C:\dell.sdr
[2007/11/07 08:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1028.txt
[2007/11/07 08:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1031.txt
[2007/11/07 08:00:40 | 000,010,134 | ---- | M] () -- C:\eula.1033.txt
[2007/11/07 08:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1036.txt
[2007/11/07 08:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1040.txt
[2007/11/07 08:00:40 | 000,000,118 | ---- | M] () -- C:\eula.1041.txt
[2007/11/07 08:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1042.txt
[2007/11/07 08:00:40 | 000,017,734 | ---- | M] () -- C:\eula.2052.txt
[2007/11/07 08:00:40 | 000,017,734 | ---- | M] () -- C:\eula.3082.txt
[2007/11/07 08:00:40 | 000,001,110 | ---- | M] () -- C:\globdata.ini
[2010/08/22 01:01:15 | 2110,840,832 | -HS- | M] () -- C:\hiberfil.sys
[2007/11/07 08:44:20 | 000,855,040 | ---- | M] (Microsoft Corporation) -- C:\install.exe
[2007/11/07 08:00:40 | 000,000,843 | ---- | M] () -- C:\install.ini
[2007/11/07 08:44:20 | 000,075,280 | ---- | M] (Microsoft Corporation) -- C:\install.res.1028.dll
[2007/11/07 08:44:20 | 000,095,248 | ---- | M] (Microsoft Corporation) -- C:\install.res.1031.dll
[2007/11/07 08:44:20 | 000,090,128 | ---- | M] (Microsoft Corporation) -- C:\install.res.1033.dll
[2007/11/07 08:44:20 | 000,096,272 | ---- | M] (Microsoft Corporation) -- C:\install.res.1036.dll
[2007/11/07 08:44:20 | 000,094,224 | ---- | M] (Microsoft Corporation) -- C:\install.res.1040.dll
[2007/11/07 08:44:20 | 000,080,400 | ---- | M] (Microsoft Corporation) -- C:\install.res.1041.dll
[2007/11/07 08:44:20 | 000,078,864 | ---- | M] (Microsoft Corporation) -- C:\install.res.1042.dll
[2007/11/07 08:44:20 | 000,074,768 | ---- | M] (Microsoft Corporation) -- C:\install.res.2052.dll
[2007/11/07 08:44:20 | 000,095,248 | ---- | M] (Microsoft Corporation) -- C:\install.res.3082.dll
[2010/08/22 01:01:12 | 2424,582,144 | -HS- | M] () -- C:\pagefile.sys
[2007/11/07 08:00:40 | 000,005,686 | ---- | M] () -- C:\vcredist.bmp
[2007/11/07 08:50:40 | 001,927,956 | ---- | M] () -- C:\VC_RED.cab
[2007/11/07 08:53:12 | 000,242,176 | ---- | M] () -- C:\VC_RED.MSI

< %systemroot%\system32\Spool\prtprocs\w32x86\*.dll >
[2000/02/14 18:36:20 | 000,012,800 | ---- | M] () -- C:\Windows\SysWow64\Spool\prtprocs\w32x86\WFXPNT40.DLL

< %systemroot%\system32\*.wt >

< %systemroot%\system32\*.ruy >

< %systemroot%\Fonts\*.com >
[2010/08/19 22:55:19 | 000,026,040 | ---- | M] () -- C:\Windows\Fonts\GlobalMonospace.CompositeFont
[2010/08/19 22:55:19 | 000,026,489 | ---- | M] () -- C:\Windows\Fonts\GlobalSansSerif.CompositeFont
[2010/08/19 22:55:19 | 000,029,779 | ---- | M] () -- C:\Windows\Fonts\GlobalSerif.CompositeFont
[2010/08/19 22:55:19 | 000,037,665 | ---- | M] () -- C:\Windows\Fonts\GlobalUserInterface.CompositeFont

< %systemroot%\Fonts\*.dll >

< %systemroot%\system32\spool\prtprocs\w32x86\*.tmp >

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\user32.dll /md5 >
[2009/04/11 02:26:45 | 000,648,704 | ---- | M] (Microsoft Corporation) MD5=D29FDB5DEDBDC1BD882164DC6DC4DD53 -- C:\Windows\SysWOW64\user32.dll

< %systemroot%\system32\ws2_32.dll /md5 >
[2008/01/20 22:50:35 | 000,179,200 | ---- | M] (Microsoft Corporation) MD5=B304D47D5744BA20FCB99FB8B2C07B0B -- C:\Windows\SysWOW64\ws2_32.dll

< %systemroot%\system32\ws2help.dll /md5 >
[2006/11/02 05:44:30 | 000,004,608 | ---- | M] (Microsoft Corporation) MD5=17C0671BF57057108A6D949510EE42C8 -- C:\Windows\SysWOW64\ws2help.dll

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\ Auto Update\Results\Install|LastSuccessTime /rs >

========== Alternate Data Streams ==========

@Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:5D432CE3
< End of report >

BeverlyG · 2010/08/22

Taking my boy to YouthGroup.. Back later!

OTL Extras logfile created on: 8/22/2010 5:10:39 PM - Run 1
OTL by OldTimer - Version 3.2.10.0 Folder = C:\Users\beverly\Desktop
64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18943)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 49.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 62.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 283.40 Gb Total Space | 204.49 Gb Free Space | 72.15% Space Free | Partition Type: NTFS
Drive D: | 14.65 Gb Total Space | 6.47 Gb Free Space | 44.17% Space Free | Partition Type: NTFS
Unable to calculate disk information.
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: BEVERLY-PC
Current User Name: beverly
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan

========== Extra Registry (SafeList) ==========

========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" File not found
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll ",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1 ",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1 "
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1 "
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = 9F 9E 16 8C DC 5B C8 01 [binary data]
"VistaSp2" = 0E D8 11 4D F9 A8 CA 01 [binary data]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"oobe_av" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

========== Authorized Applications List ==========

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{176A88BB-157C-4540-AAE3-D6E07A68F2AF}" = lport=40092 | protocol=6 | dir=in | name=streaming web cam |
"{272766CD-6B29-45D0-8919-E3E1FCE30BA0}" = lport=5900 | protocol=6 | dir=in | name=ultravnc server |
"{2ACAC9FF-B4D4-4DEC-862D-70C5D925C622}" = lport=40091 | protocol=6 | dir=in | name=streaming web cam |
"{314E6876-FE8E-4353-927D-BEBCDDF25ADB}" = lport=40090 | protocol=6 | dir=in | name=streaming web cam |
"{9B9E6EB4-5882-4169-82EB-7607B6E826C7}" = lport=40094 | protocol=6 | dir=in | name=streaming web cam |
"{B87D032B-4522-4870-B43C-C15B8C247E9A}" = lport=40093 | protocol=6 | dir=in | name=streaming web cam |
"{BD3D9925-421A-495B-B4DD-1065B2A3786A}" = lport=40080 | protocol=6 | dir=in | name=remote access media server |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{04339E51-EEA6-48D1-BEDA-D727411E5F2B}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\dell\remote access file sync service\dsl_fs_sync.exe |
"{08B82DBF-1577-4C76-8499-E0378E2ABC2D}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\dell\mysql\bin\mysql.exe |
"{1734215F-F5F8-48E3-83EF-F96D6C4BD1FD}" = dir=in | app=c:\program files (x86)\avg\avg9\avgupd.exe |
"{1C6807BF-F578-44BC-91BA-A572A410CE85}" = protocol=6 | dir=in | app=c:\windows\syswow64\lxczcoms.exe |
"{1DD6843B-0EAE-4DA3-BCCC-5A2E3D37CDA4}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\dell\remote access file sync service\dsl_fs_sync.exe |
"{2676C130-998F-4B13-9EA0-2FED51239BE7}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\dell\vlc\vlc.exe |
"{26BBEC1C-861F-4DEA-B556-D5330EB106A7}" = protocol=17 | dir=in | app=c:\programdata\ultravnc\winvnc.exe |
"{3602028B-DB3E-4396-B79C-EE3E8801F2A0}" = protocol=6 | dir=in | app=c:\program files (x86)\dell remote access\ezi_ra.exe |
"{4820FF04-95B4-4DF0-9C47-771893261799}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\dell\mysql\bin\mysqld.exe |
"{4C1DAB6F-F116-46B7-BED9-679481E1E3C2}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\dell\apache\bin\httpd.exe |
"{4F964D3A-FB3F-453C-A848-5A9D05F541E3}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\dell\mysql\bin\mysqld.exe |
"{54DF91C5-2198-4B9D-836A-6B6D7446B168}" = dir=in | app=c:\program files (x86)\avg\avg9\avgnsa.exe |
"{653872E2-3F02-498C-AA9D-0C4499039B37}" = protocol=6 | dir=in | app=c:\windows\system32\lxczcoms.exe |
"{66A1282D-3713-416E-AA0D-1213455F9751}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\dell\advanced networking service\hnm_svc.exe |
"{70C1FF8F-AACD-4C1B-8545-DA13EDEA0FE6}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\dell\apache\bin\httpd.exe |
"{81F21C4D-64CA-4D1F-87F5-06E54AA44647}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\dell\advanced networking service\hnm_svc.exe |
"{8320AC02-CC53-4AC8-BB6E-FA0C9433CCBF}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\dell\apache\php.exe |
"{850FF35A-DBDF-4B29-A651-2AE363F4318B}" = protocol=17 | dir=in | app=c:\windows\system32\spool\drivers\x64\3\lxczpswx.exe |
"{9A1B9E55-D794-4A54-9D3A-DB70DAD71F84}" = protocol=17 | dir=in | app=c:\program files (x86)\dell remote access\ezi_ra.exe |
"{9F6B009E-12E7-46D0-8F88-D1B3018F59E3}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\dell\apache\php.exe |
"{AB69B2C9-BF8F-410C-B40F-707261466424}" = dir=in | app=c:\program files (x86)\windows live\messenger\wlcsdk.exe |
"{BFF6B66E-9CDF-4D33-B884-4A51854D4272}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe |
"{C359ADEA-4524-498D-9DDF-89BFD3A02A60}" = protocol=6 | dir=in | app=c:\windows\system32\spool\drivers\x64\3\lxczpswx.exe |
"{C5B92A69-1107-4B1F-BA74-AE24C406F7D0}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\dell\vlc\vlc.exe |
"{D1F4671A-01AC-4EE1-8D42-F2349F4A48A6}" = protocol=17 | dir=in | app=c:\windows\system32\lxczcoms.exe |
"{DE5C43ED-C43C-4976-9C57-BB1A83E922F5}" = protocol=17 | dir=in | app=c:\windows\syswow64\lxczcoms.exe |
"{E1D00E87-E925-45E0-BF62-108ADA4F5C94}" = dir=in | app=c:\program files (x86)\avg\avg9\avgemc.exe |
"{E879AF6D-8658-4F9F-8AEE-20A90CFD753C}" = dir=in | app=c:\program files\cyberlink\powerdvd dx\powerdvd.exe |
"{E88AE64B-AF9F-4A30-BB8B-9B37B416F46F}" = protocol=6 | dir=in | app=c:\programdata\ultravnc\winvnc.exe |
"{F160F095-530D-4086-9402-1E8C1CE9A347}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\dell\mysql\bin\mysql.exe |
"{F777A47A-0ACE-4370-9389-570F34AAC5A5}" = dir=in | app=c:\program files\cyberlink\powerdvd dx\pdvddxsrv.exe |
"TCP Query User{4FCA21AA-CAB4-4BD1-9232-A102A2DB85BF}C:\program files (x86)\microsoft games\age of empires\empires.exe" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft games\age of empires\empires.exe |
"TCP Query User{9D0CE6C7-7BB5-4ED2-BFE0-C5414D1529ED}C:\users\beverly\appdata\roaming\mjusbsp\magicjack.exe" = protocol=6 | dir=in | app=c:\users\beverly\appdata\roaming\mjusbsp\magicjack.exe |
"UDP Query User{0932648D-97CE-448D-9CF5-27DA9F8728A8}C:\users\beverly\appdata\roaming\mjusbsp\magicjack.exe" = protocol=17 | dir=in | app=c:\users\beverly\appdata\roaming\mjusbsp\magicjack.exe |
"UDP Query User{4777D9D2-5641-4AF7-8870-98838C062796}C:\program files (x86)\microsoft games\age of empires\empires.exe" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft games\age of empires\empires.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0335701D-8E28-4A7F-B0EF-312974755BB2}" = Modem Diagnostic Tool
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}" = Dell Edoc Viewer
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{F6CB42B9-F033-4152-8813-FF11DA8E6A78}" = Dell Dock
"CNXT_MODEM_PCI_HSF" = Conexant D850 PCI V.92 Modem
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"Lexmark 1200 Series" = Lexmark 1200 Series
"Lexmark Fax Solutions" = Lexmark Fax Solutions
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00203668-8170-44A0-BE44-B632FA4D780F}" = Adobe AIR
"{020D8396-D6D9-4B53-A9A1-83C47E2E27AA}" = Windows Live Call
"{08234a0d-cf39-4dca-99f0-0c5cb496da81}" = MSN Toolbar
"{08E81ABD-79F7-49C2-881F-FD6CB0975693}" = Roxio Creator Data
"{09760D42-E223-42AD-8C3E-55B47D0DDAC3}" = Roxio Creator DE
"{13766F76-6C8C-4E57-A9F3-3212D1C6E0D1}" = Dell DataSafe Online
"{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
"{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}" = Roxio Creator Tools
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 20
"{2B4C7E1E-E446-4740-ADB5-9842E742EE8A}" = Windows Live Toolbar
"{2FDBBCEA-62DB-45F4-B6E5-0E1FB2A1F29D}" = Visual C++ 8.0 Runtime Setup Package (x64)
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Roxio Update Manager
"{351DE0AB-7787-4497-9A7A-4AA9E3A4E290}" = Dell Communications (Support Software)
"{3F92ABBB-6BBF-11D5-B229-002078017FBF}" = NetWaiting
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AB8B41B-3AF1-46BE-99B0-0ACD3B300C0A}" = Junk Mail filter update
"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
"{517F0E64-7947-4B94-AE80-36A16135EB69}" = Cozi
"{5A13987D-55F4-4271-A40E-76AC9B1B38FD}" = OpenOffice.org 3.2
"{63C1109E-D977-49ED-BCE3-D00D0BF187D6}" = Windows Live Mail
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6A92E5C5-0578-443D-91F3-92ECE5F2CAE2}" = Windows Live Writer
"{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}" = Roxio Creator Audio
"{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{9422C8EA-B0C6-4197-B8FC-DC797658CA00}" = Windows Live Sign-in Assistant
"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
"{A93944F2-D2D4-4750-BFE7-9A288FEAF2CF}" = Apple Application Support
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3.3
"{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}" = Roxio Creator Copy
"{B935C985-A17F-484B-8470-09E4FC27DC26}" = Dell-eBay
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{D9D754A1-EAC5-406C-A28B-C49B1E846711}" = Windows Live Essentials
"{DBA8B9E1-C6FF-4624-9598-73D3B41A0903}" = Microsoft Picture It! Photo Premium 9
"{E646DCF0-5A68-11D5-B229-002078017FBF}" = Digital Line Detect
"{EB900AF8-CC61-4E15-871B-98D1EA3E8025}" = QuickTime
"{ED439A64-F018-4DD4-8BA5-328D85AB09AB}" = Roxio Creator DE
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F47C37A4-7189-430A-B81D-739FF8A7A554}" = Consumer In-Home Service Agreement
"{F66A31D9-7831-4FBA-BA02-C411C0047CC5}" = Dell Remote Access
"{F69E83CF-B440-43F8-89E6-6EA80712109B}" = Windows Live Communications Platform
"{F73A5B18-EB75-4B2C-B32D-9457576E2417}" = Windows Live Photo Gallery
"{F9B417E4-2A36-47BA-BBCE-89D6A14AF939}_is1" = The Friendly Address Book 3.0
"{FD9E03B5-AEEA-4D59-B512-6CE4AA0281D4}" = Byki
"{FDD810CA-D5E3-40E9-AB7B-36440B0D41EF}" = Windows Live Sync
"2G_1.1" = JumpStart 2nd Grade v1.1
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Age of Empires" = Microsoft Age of Empires
"Amazon Trail 3rd Edition" = Amazon Trail 3rd Edition
"AVG9Uninstall" = AVG Free 9.0
"Byki Express" = Byki Express
"ClueFinders(R) 3rd Grade Adventures" = ClueFinders(R) 3rd Grade Adventures
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"Eusing Free Registry Cleaner" = Eusing Free Registry Cleaner
"LiveUpdate" = LiveUpdate
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox (3.6.8)" = Mozilla Firefox (3.6.8)
"PictureIt_v9" = Microsoft Picture It! Photo Premium 9
"The Friendly Diary_is1" = The Friendly Diary 3.0
"WinFax" = Symantec WinFax PRO 10.0
"WinLiveSuite_Wave3" = Windows Live Essentials
"Zynga Toolbar" = Zynga Toolbar

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 8/12/2010 3:46:05 AM | Computer Name = beverly-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 8/12/2010 3:46:06 AM | Computer Name = beverly-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 8/12/2010 3:46:07 AM | Computer Name = beverly-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 8/12/2010 3:46:07 AM | Computer Name = beverly-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 8/12/2010 3:46:13 AM | Computer Name = beverly-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 8/12/2010 3:46:14 AM | Computer Name = beverly-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 8/12/2010 3:49:54 AM | Computer Name = beverly-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 8/12/2010 3:49:54 AM | Computer Name = beverly-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 8/12/2010 3:49:55 AM | Computer Name = beverly-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 8/12/2010 3:49:55 AM | Computer Name = beverly-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

[ System Events ]
Error - 8/22/2010 4:10:59 PM | Computer Name = beverly-PC | Source = netbt | ID = 4321
Description = The name "D8PMQ261 :0" could not be registered on the interface
with IP address 192.168.1.102. The computer with the IP address 192.168.1.100 did
not allow the name to be claimed by this computer.

Error - 8/22/2010 4:20:40 PM | Computer Name = beverly-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 8/22/2010 4:21:30 PM | Computer Name = beverly-PC | Source = netbt | ID = 4321
Description = The name "D8PMQ261 :0" could not be registered on the interface
with IP address 192.168.1.102. The computer with the IP address 192.168.1.100 did
not allow the name to be claimed by this computer.

Error - 8/22/2010 4:31:59 PM | Computer Name = beverly-PC | Source = netbt | ID = 4321
Description = The name "D8PMQ261 :0" could not be registered on the interface
with IP address 192.168.1.102. The computer with the IP address 192.168.1.100 did
not allow the name to be claimed by this computer.

Error - 8/22/2010 4:42:29 PM | Computer Name = beverly-PC | Source = netbt | ID = 4321
Description = The name "D8PMQ261 :0" could not be registered on the interface
with IP address 192.168.1.102. The computer with the IP address 192.168.1.100 did
not allow the name to be claimed by this computer.

Error - 8/22/2010 4:52:59 PM | Computer Name = beverly-PC | Source = netbt | ID = 4321
Description = The name "D8PMQ261 :0" could not be registered on the interface
with IP address 192.168.1.102. The computer with the IP address 192.168.1.100 did
not allow the name to be claimed by this computer.

Error - 8/22/2010 5:03:28 PM | Computer Name = beverly-PC | Source = netbt | ID = 4321
Description = The name "D8PMQ261 :0" could not be registered on the interface
with IP address 192.168.1.102. The computer with the IP address 192.168.1.100 did
not allow the name to be claimed by this computer.

Error - 8/22/2010 5:11:54 PM | Computer Name = beverly-PC | Source = DCOM | ID = 10005
Description =

Error - 8/22/2010 5:11:54 PM | Computer Name = beverly-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 8/22/2010 5:14:06 PM | Computer Name = beverly-PC | Source = netbt | ID = 4321
Description = The name "D8PMQ261 :0" could not be registered on the interface
with IP address 192.168.1.102. The computer with the IP address 192.168.1.100 did
not allow the name to be claimed by this computer.

< End of report >

BeverlyG · 2010/08/22

Should I "Run Fix "??

Should I Run Fix on OTL???

broni · 2010/08/22

Nope. That's for me. Hold your horses...

Log in or Sign up

Solved Can't Back-up, Restore, Password effected, Even mouse, keyboard

BeverlyG Inactive Thread Starter

broni Moderator Malware Analyst

BeverlyG Inactive Thread Starter

broni Moderator Malware Analyst

BeverlyG Inactive Thread Starter

broni Moderator Malware Analyst

BeverlyG Inactive Thread Starter

broni Moderator Malware Analyst

BeverlyG Inactive Thread Starter

broni Moderator Malware Analyst

BeverlyG Inactive Thread Starter

broni Moderator Malware Analyst

BeverlyG Inactive Thread Starter

BeverlyG Inactive Thread Starter

BeverlyG Inactive Thread Starter

broni Moderator Malware Analyst

BeverlyG Inactive Thread Starter

BeverlyG Inactive Thread Starter

BeverlyG Inactive Thread Starter

broni Moderator Malware Analyst

Share This Page

Log in or Sign up

Solved Can't Back-up, Restore, Password effected, Even mouse, keyboard

BeverlyG Inactive Thread Starter

broni Moderator Malware Analyst

BeverlyG Inactive Thread Starter

broni Moderator Malware Analyst

BeverlyG Inactive Thread Starter

broni Moderator Malware Analyst

BeverlyG Inactive Thread Starter

broni Moderator Malware Analyst

BeverlyG Inactive Thread Starter

broni Moderator Malware Analyst

BeverlyG Inactive Thread Starter

broni Moderator Malware Analyst

BeverlyG Inactive Thread Starter

BeverlyG Inactive Thread Starter

BeverlyG Inactive Thread Starter

broni Moderator Malware Analyst

BeverlyG Inactive Thread Starter

BeverlyG Inactive Thread Starter

BeverlyG Inactive Thread Starter

broni Moderator Malware Analyst

Share This Page

Useful Searches