Here are the logs you requested from OTL.... Thank you for your time.....
OTL logfile created on: 1/16/2012 6:55:05 PM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Bo Crunch\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
1023.48 Mb Total Physical Memory | 475.85 Mb Available Physical Memory | 46.49% Memory free
3.90 Gb Paging File | 3.50 Gb Available in Paging File | 89.55% Paging File free
Paging file location(s): [Binary data over 100 bytes]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 114.48 Gb Total Space | 95.61 Gb Free Space | 83.51% Space Free | Partition Type: NTFS
Drive D: | 74.53 Gb Total Space | 11.85 Gb Free Space | 15.90% Space Free | Partition Type: NTFS
Computer Name: GROUNDSCORE | User Name: Bo Crunch | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - C:\Documents and Settings\Bo Crunch\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Constant Guard Protection Suite\IDVaultSvc.exe (White Sky, Inc.)
PRC - C:\Program Files\SpeedFan\speedfan.exe (Almico Software (www.almico.com))
PRC - C:\Program Files\Norton Security Suite\Engine\5.1.0.29\ccsvchst.exe (Symantec Corporation)
PRC - C:\Program Files\Trend Micro\RUBotted\RUBotSrv.exe (Trend Micro Inc.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\HPZipm12.exe (HP)
========== Modules (No Company Name) ==========
MOD - C:\Documents and Settings\Bo Crunch\Local Settings\temp\sfamcc00001.dll ()
MOD - C:\Documents and Settings\Bo Crunch\Local Settings\temp\sfareca00001.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\2dac4fc006596760cd4988d0bfd52ff0\System.ServiceModel.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\23eb4618c9d171be9fb551a13a475a32\System.IdentityModel.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web.Services\f63ae1310e004777e880f28377bcddd2\System.Web.Services.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\62e34cfb5a8b233667c7c5a47a32ad93\System.Web.ni.dll ()
MOD - C:\WINDOWS\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll ()
MOD - C:\WINDOWS\assembly\GAC\Microsoft.mshtml\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.mshtml.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\474a341340f687bcbd7777f2820a8c7a\SMDiagnostics.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\afd6134c090faf8c29cd64d4835142b2\System.Runtime.Serialization.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\WindowsBase\1adc4ae51a5ac63e896a1402749ca495\WindowsBase.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Management\90b90e700e59d73d6d692cf74e1ba16e\System.Management.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\29d7091f6eab0ec61c4eb625ed221b73\System.Configuration.Install.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\abef85f2fb8ba830eda73e2d12e8d41e\System.ServiceProcess.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Data\ec323cf1df697cc0a45f67de685db90c\System.Data.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\71a2ae9ad561a62181cbd9fb11e9de7a\System.Windows.Forms.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\c10bea3c4bb7ef654651141bf9419090\System.Drawing.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\70cacc44f0b4257f6037eda7a59a0aeb\System.Xml.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\bce0720436dc6cb76006377f295ea365\System.Configuration.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\af39f6e644af02873b9bae319f2bfb13\System.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\ca87ba84221991839abbe7d4bc9c6721\mscorlib.ni.dll ()
MOD - C:\Program Files\Trend Micro\RUBotted\hc_help.dll ()
========== Win32 Services (SafeList) ==========
SRV - (AppMgmt) -- File not found
SRV - (IDVaultSvc) -- C:\Program Files\Constant Guard Protection Suite\IDVaultSvc.exe (White Sky, Inc.)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
SRV - (N360) -- C:\Program Files\Norton Security Suite\Engine\5.1.0.29\ccSvcHst.exe (Symantec Corporation)
SRV - (RUBotSrv) -- C:\Program Files\Trend Micro\RUBotted\RUBotSrv.exe (Trend Micro Inc.)
SRV - (rpcapd) Remote Packet Capture Protocol v.0 (experimental) -- C:\Program Files\WinPcap\rpcapd.exe (CACE Technologies, Inc.)
SRV - (UleadBurningHelper) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe (Ulead Systems, Inc.)
SRV - (StkASSrv) -- C:\WINDOWS\system32\StkASv2K.exe (Syntek America Inc.)
SRV - (Pml Driver HPZ12) -- C:\WINDOWS\system32\HPZipm12.exe (HP)
========== Driver Services (SafeList) ==========
DRV - (NAVEX15) -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20120116.002\NAVEX15.SYS (Symantec Corporation)
DRV - (NAVENG) -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20120116.002\NAVENG.SYS (Symantec Corporation)
DRV - (EraserUtilRebootDrv) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys (Symantec Corporation)
DRV - (BHDrvx86) -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20111223.001\BHDrvx86.sys (Symantec Corporation)
DRV - (eeCtrl) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys (Symantec Corporation)
DRV - (SymEvent) -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS (Symantec Corporation)
DRV - (IDSxpx86) -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20120113.002\IDSXpx86.sys (Symantec Corporation)
DRV - (SRTSP) -- C:\WINDOWS\System32\Drivers\N360\0501000.01D\SRTSP.SYS (Symantec Corporation)
DRV - (SRTSPX) Symantec Real Time Storage Protection (PEL) -- C:\WINDOWS\system32\drivers\N360\0501000.01D\SRTSPX.SYS (Symantec Corporation)
DRV - (SYMTDI) -- C:\WINDOWS\System32\Drivers\N360\0501000.01D\SYMTDI.SYS (Symantec Corporation)
DRV - (speedfan) -- C:\WINDOWS\system32\speedfan.sys (Almico Software)
DRV - (SymEFA) -- C:\WINDOWS\system32\drivers\N360\0501000.01D\SYMEFA.SYS (Symantec Corporation)
DRV - (SymDS) -- C:\WINDOWS\system32\drivers\N360\0501000.01D\SYMDS.SYS (Symantec Corporation)
DRV - (SmartDefragDriver) -- C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys ()
DRV - (SymIRON) -- C:\WINDOWS\system32\drivers\N360\0501000.01D\Ironx86.SYS (Symantec Corporation)
DRV - (cpudrv) -- C:\Program Files\SystemRequirementsLab\cpudrv.sys ()
DRV - (PTQHVSP) PANTECH HSUSB Diagnostic Serial Port(MSM6290) -- C:\WINDOWS\system32\drivers\PTQHVSP.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV - (PTQHMDM) PANTECH HSUSB Modem(MSM6290) -- C:\WINDOWS\system32\drivers\PTQHMDM.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV - (PTQHBUS) PANTECH Handset HSUSB Composite Device(MSM6290) -- C:\WINDOWS\system32\drivers\PTQHBUS.sys (DEVGURU Co., LTD.)
DRV - (NPF) -- C:\WINDOWS\system32\drivers\npf.sys (CACE Technologies, Inc.)
DRV - (RTL8023xp) -- C:\WINDOWS\system32\drivers\Rtnicxp.sys (Realtek Semiconductor Corporation )
DRV - (StkAMini) -- C:\WINDOWS\system32\drivers\StkAMini.sys (Syntek America Inc.)
DRV - (StkScan) -- C:\WINDOWS\system32\drivers\StkScan.sys (Syntek America Inc.)
DRV - (Ps2) -- C:\WINDOWS\system32\drivers\PS2.sys (Hewlett-Packard Company)
DRV - (ALCXWDM) Service for Realtek AC97 Audio (WDM) -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS (Realtek Semiconductor Corp.)
DRV - (rtl8139) Realtek RTL8139(A/B/C) -- C:\WINDOWS\system32\drivers\RTL8139.sys (Realtek Semiconductor Corporation)
DRV - (IdeChnDr) Intel® -- C:\WINDOWS\system32\DRIVERS\IdeChnDr.sys (Intel Corporation)
DRV - (IdeBusDr) -- C:\WINDOWS\system32\DRIVERS\IdeBusDr.sys (Intel Corporation)
DRV - (giveio) -- C:\WINDOWS\system32\giveio.sys ()
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://www.dogpile.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = A8 5B 1F 87 F0 D2 CC 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Bo Crunch\Local Settings\Application Data\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Bo Crunch\Local Settings\Application Data\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\IPSFFPlgn\ [2011/10/23 09:34:49 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\coFFPlgn\ [2011/10/23 08:06:22 | 000,000,000 | ---D | M]
========== Chrome ==========
CHR - default_search_provider: Dogpile (Enabled)
CHR - default_search_provider: search_url =
http://www.dogpile.c...y={searchTerms}
CHR - default_search_provider: suggest_url =
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Bo Crunch\Local Settings\Application Data\Google\Chrome\Application\16.0.912.75\gcswf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.290.11 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java Platform SE 6 U29 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Bo Crunch\Local Settings\Application Data\Google\Chrome\Application\16.0.912.75\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Disabled) = C:\Documents and Settings\Bo Crunch\Local Settings\Application Data\Google\Chrome\Application\16.0.912.75\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Browser\nppdf32.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Bo Crunch\Local Settings\Application Data\Google\Update\1.3.21.79\npGoogleUpdate3.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Documents and Settings\Bo Crunch\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.3_0\
CHR - Extension: Google Search = C:\Documents and Settings\Bo Crunch\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.16_0\
CHR - Extension: Gmail = C:\Documents and Settings\Bo Crunch\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
O1 HOSTS File: ([2012/01/14 11:07:07 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Security Suite\Engine\5.1.0.29\coieplg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Security Suite\Engine\5.1.0.29\ips\ipsbho.dll (Symantec Corporation)
O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Constant Guard Protection Suite (COM)) - {B84CDBE7-1B46-494B-A188-01D4C52DEB61} - C:\Program Files\Constant Guard Protection Suite\NativeBHO.dll (WhiteSky)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security Suite\Engine\5.1.0.29\coieplg.dll (Symantec Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security Suite\Engine\5.1.0.29\coieplg.dll (Symantec Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [Trend Micro RUBotted V2.0 Beta] C:\Program Files\Trend Micro\RUBotted\RUBottedGUI.exe (Trend Micro Inc.)
O4 - HKCU..\Run: [Multi Reminders] C:\Program Files\Multi Reminders\reminder.exe ()
O4 - Startup: C:\Documents and Settings\Bo Crunch\Start Menu\Programs\Startup\SpeedFan.lnk = C:\Program Files\SpeedFan\speedfan.exe (Almico Software (www.almico.com))
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\InfoDelivery present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsNetHood = 01 00 00 00 [binary data]
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyDocs = 01 00 00 00 [binary data]
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 01 00 00 00 [binary data]
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O8 - Extra context menu item: &ieSpell Options - C:\Program Files\ieSpell\iespell.dll (Red Egg Software)
O8 - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Append to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Check &Spelling - C:\Program Files\ieSpell\iespell.dll (Red Egg Software)
O8 - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Lookup on Merriam Webster - C:\Program Files\ieSpell\Merriam Webster.HTM ()
O8 - Extra context menu item: Lookup on Wikipedia - C:\Program Files\ieSpell\wikipedia.HTM ()
O9 - Extra Button: ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files\ieSpell\iespell.dll (Red Egg Software)
O9 - Extra 'Tools' menuitem : ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files\ieSpell\iespell.dll (Red Egg Software)
O9 - Extra 'Tools' menuitem : ieSpell Options - {1606D6F9-9D3B-4aea-A025-ED5B2FD488E7} - C:\Program Files\ieSpell\iespell.dll (Red Egg Software)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5}
http://download.eset...lineScanner.cab (OnlineScanner Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F}
http://content.syste...el_4.4.24.0.cab (SysInfo Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 75.75.75.75 75.75.76.76
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{981C3620-6F67-4AEE-AF5C-40EDFD946114}: DhcpNameServer = 75.75.75.75 75.75.76.76
O20 - AppInit_DLLs: (C:\WINDOWS\system32\acaptuser32.dll) -C:\WINDOWS\system32\acaptuser32.dll (Adobe Systems, Inc.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/12/20 11:23:56 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ]
O32 - AutoRun File - [2011/10/22 21:58:41 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2011/10/17 10:48:49 | 000,000,000 | ---- | M] () - D:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (SmartDefragBootTime.exe)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2012/01/16 18:46:35 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Bo Crunch\Desktop\OTL.exe
[2012/01/16 15:30:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bo Crunch\Application Data\ieSpell
[2012/01/16 15:22:50 | 000,000,000 | ---D | C] -- C:\Program Files\ieSpell
[2012/01/15 21:37:47 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2012/01/15 21:28:49 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2012/01/15 21:28:49 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2012/01/15 21:28:49 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2012/01/15 20:41:03 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Bo Crunch\Recent
[2012/01/14 21:10:40 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2012/01/13 18:18:37 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2012/01/13 18:14:40 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2012/01/13 18:14:40 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2012/01/13 18:14:40 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2012/01/13 18:14:40 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2012/01/13 18:14:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2012/01/13 18:11:02 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/01/13 18:09:00 | 004,383,253 | R--- | C] (Swearware) -- C:\Documents and Settings\Bo Crunch\Desktop\ComboFix.exe
[2012/01/13 11:26:17 | 000,607,260 | R--- | C] (Swearware) -- C:\Documents and Settings\Bo Crunch\Desktop\dds.com
[2012/01/12 19:09:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bo Crunch\Desktop\PC Help
[2012/01/12 19:09:08 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Bo Crunch\Desktop\HiJackThis.exe
[2012/01/11 18:23:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Trend Micro
[2012/01/11 18:15:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bo Crunch\Desktop\TMRBLog
[2012/01/11 18:15:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bo Crunch\Desktop\log
[2012/01/11 18:14:56 | 008,570,384 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Bo Crunch\Desktop\RootkitBuster.exe
[2012/01/11 18:13:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinPcap
[2012/01/11 18:13:34 | 000,000,000 | ---D | C] -- C:\Program Files\WinPcap
[2012/01/11 18:12:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Trend Micro RUBotted
[2012/01/11 18:12:41 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2012/01/11 18:10:30 | 006,018,568 | ---- | C] (Trend Micro, Inc. ) -- C:\Documents and Settings\Bo Crunch\Desktop\RUBottedSetup.exe
[2012/01/11 17:11:19 | 000,205,072 | ---- | C] (Trend Micro Inc.) -- C:\WINDOWS\System32\drivers\tmcomm.sys
[2012/01/11 17:11:17 | 000,065,808 | ---- | C] (trend_company_name) -- C:\WINDOWS\System32\drivers\tmrkb.sys
[2012/01/11 16:26:53 | 002,562,040 | ---- | C] (Symantec Corporation) -- C:\Documents and Settings\Bo Crunch\Desktop\NPE.exe
[2012/01/11 15:51:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bo Crunch\Application Data\Tific
[2012/01/11 15:51:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bo Crunch\Local Settings\Application Data\Symantec
[2012/01/07 08:52:34 | 000,000,000 | -HSD | C] -- C:\Temporary Internet Files
[2012/01/06 22:26:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\ID Vault
[2012/01/06 22:12:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bo Crunch\Local Settings\Application Data\Threat Expert
[2012/01/06 21:45:44 | 000,185,560 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\PCTSD.sys
[2012/01/06 21:45:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PC Tools
[2012/01/06 21:44:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PC Tools
[2012/01/06 21:44:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bo Crunch\Application Data\TestApp
[2012/01/04 21:39:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Smart Defrag 2
[2012/01/01 21:47:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Google Earth
[2011/12/31 22:37:39 | 000,532,240 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSEXCH35.DLL
[2011/12/31 22:37:35 | 000,169,984 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSLTUS35.DLL
[2011/12/31 22:37:32 | 000,254,976 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSEXCL35.DLL
[2011/12/31 22:37:28 | 000,166,912 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSTEXT35.DLL
[2011/12/31 22:37:25 | 000,253,952 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSPDOX35.DLL
[2011/12/31 22:37:21 | 000,290,816 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSXBSE35.DLL
[2011/12/31 22:37:18 | 000,403,216 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSREPL35.DLL
[2011/12/31 22:37:11 | 000,251,664 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSRD2X35.DLL
[2011/12/31 22:37:08 | 001,039,360 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSJET35.DLL
[2011/12/31 22:37:05 | 000,037,136 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSJINT35.DLL
[2011/12/31 22:37:04 | 000,024,336 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSJTER35.DLL
[2011/12/31 22:30:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Favorites
[2011/12/31 16:13:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Brother P-touch
[2011/12/31 16:13:41 | 000,000,000 | ---D | C] -- C:\Program Files\Brother
[2011/12/29 15:28:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bo Crunch\My Documents\Xmas
[2011/12/28 16:15:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2011/12/26 19:18:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel
[2011/12/26 19:02:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Speedbit
[2011/12/26 19:01:35 | 000,172,032 | ---- | C] (Jin Hui E-mail: jinhui@jcomsoft.com Web:
http://www.jcomsoft.com) -- C:\WINDOWS\System32\AniGIF.ocx
[2011/12/26 19:01:35 | 000,000,000 | ---D | C] -- C:\Program Files\SpeedBit Video Accelerator
[2011/12/26 14:37:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bo Crunch\Application Data\HpUpdate
[2011/12/26 14:37:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\Hewlett-Packard
[2011/12/25 17:37:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bo Crunch\Application Data\Google
[2011/12/25 17:35:58 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2011/12/25 13:57:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusb.dll
[2011/12/25 13:57:08 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusd.dll
[2011/12/25 06:19:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bo Crunch\My Documents\My Albums
[2011/12/25 06:19:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bo Crunch\Local Settings\Application Data\IsolatedStorage
[2011/12/25 06:19:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bo Crunch\Local Settings\Application Data\HP
[2011/12/25 06:13:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\HP
[2011/12/25 06:12:35 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Sonic Shared
[2011/12/25 06:12:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sonic
[2011/12/25 06:12:03 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP
[2011/12/25 06:10:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\HP
[2011/12/25 06:04:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bo Crunch\Application Data\HP
[2011/12/24 04:32:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bo Crunch\Application Data\ElevatedDiagnostics
[2011/12/24 04:31:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows PowerShell 1.0
[2011/12/24 04:31:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\windowspowershell
[2011/12/24 04:04:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2011/12/21 17:17:15 | 000,000,000 | ---D | C] -- C:\51ffea51ad657125d9e5
[2011/12/20 16:29:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard
[2011/12/20 16:26:35 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys
[2011/12/20 16:25:44 | 000,278,584 | ---- | C] (HP) -- C:\WINDOWS\System32\HPZidr12.dll
[2011/12/20 16:25:44 | 000,204,800 | ---- | C] (HP) -- C:\WINDOWS\System32\HPZipr12.dll
[2011/12/20 16:25:44 | 000,094,208 | ---- | C] (HP) -- C:\WINDOWS\System32\HPZipt12.dll
[2011/12/20 16:25:44 | 000,069,632 | ---- | C] (HP) -- C:\WINDOWS\System32\HPZipm12.exe
[2011/12/20 16:25:44 | 000,061,440 | ---- | C] (HP) -- C:\WINDOWS\System32\HPZinw12.exe
[2011/12/20 16:25:44 | 000,057,344 | ---- | C] (HP) -- C:\WINDOWS\System32\HPZisn12.dll
[2011/12/20 16:25:39 | 000,306,688 | ---- | C] (InstallShield Software Corporation) -- C:\WINDOWS\IsUninst.exe
[2011/12/20 16:25:25 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2011/12/20 16:25:16 | 000,000,000 | ---D | C] -- C:\Config.Msi
[2011/12/20 16:24:47 | 000,098,304 | ---- | C] (Hewlett Packard Company) -- C:\WINDOWS\System32\hpzjsn01.dll
[2011/12/20 16:24:46 | 000,606,208 | ---- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpotscl.dll
[2011/12/20 16:24:46 | 000,274,432 | ---- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\HPZc3212.dll
[2011/12/20 16:24:46 | 000,258,122 | ---- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpovst08.dll
[2011/12/20 16:24:45 | 000,278,528 | ---- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpgwiamd.dll
[2011/12/20 16:24:23 | 000,139,345 | ---- | C] (HP) -- C:\WINDOWS\System32\hpzlnt12.dll
[2011/12/20 16:24:22 | 000,393,216 | ---- | C] (Hewlett-Packard Company) -- C:\WINDOWS\System32\hpzcon12.dll
[2011/12/20 16:24:22 | 000,196,608 | ---- | C] (HP) -- C:\WINDOWS\System32\hpzcoi12.dll
[2011/12/20 11:35:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bo Crunch\Local Settings\Application Data\Autodesk
[2011/12/20 11:35:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bo Crunch\Application Data\Autodesk
[2011/12/20 11:35:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Autodesk
[2011/12/20 11:35:36 | 000,000,000 | ---D | C] -- C:\Program Files\AutoCAD 2010
[2011/12/20 11:34:26 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_37.dll
[2011/12/20 11:34:26 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_37.dll
[2011/12/20 11:34:24 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_37.dll
[2011/12/20 11:34:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs
[2011/12/20 11:33:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Autodesk
[2011/12/20 11:33:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Autodesk Shared
[2011/12/20 11:33:38 | 000,000,000 | ---D | C] -- C:\Program Files\Autodesk
[2011/12/20 11:23:56 | 000,000,000 | ---D | C] -- C:\Autodesk
[2011/12/20 11:22:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\KB905474
[2004/11/24 11:25:52 | 000,335,872 | ---- | C] ( ) -- C:\WINDOWS\System32\drvc.dll
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2012/01/16 18:46:41 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bo Crunch\Desktop\OTL.exe
[2012/01/16 18:38:00 | 000,000,994 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1844237615-920026266-725345543-1004UA.job
[2012/01/16 17:48:29 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012/01/16 17:47:57 | 000,000,394 | ---- | M] () -- C:\WINDOWS\tasks\Final Media Player Update Checker.job
[2012/01/16 17:47:56 | 000,000,888 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012/01/16 17:47:56 | 000,000,266 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job
[2012/01/16 17:47:52 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012/01/16 17:47:50 | 1073,270,784 | -HS- | M] () -- C:\hiberfil.sys
[2012/01/16 17:37:08 | 000,065,808 | ---- | M] (trend_company_name) -- C:\WINDOWS\System32\drivers\tmrkb.sys
[2012/01/16 15:41:48 | 000,071,168 | ---- | M] () -- C:\Documents and Settings\Bo Crunch\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/01/16 10:08:26 | 000,001,504 | ---- | M] () -- C:\Documents and Settings\Bo Crunch\Application Data\Microsoft\Internet Explorer\Quick Launch\Calculator.lnk
[2012/01/16 08:55:28 | 000,001,525 | ---- | M] () -- C:\Documents and Settings\Bo Crunch\Application Data\Microsoft\Internet Explorer\Quick Launch\Notepad.lnk
[2012/01/15 13:38:00 | 000,000,942 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1844237615-920026266-725345543-1004Core.job
[2012/01/14 11:07:07 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2012/01/13 18:33:29 | 000,444,020 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012/01/13 18:33:29 | 000,072,278 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012/01/13 18:18:48 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2012/01/13 18:09:12 | 004,383,253 | R--- | M] (Swearware) -- C:\Documents and Settings\Bo Crunch\Desktop\ComboFix.exe
[2012/01/13 11:27:29 | 000,294,216 | ---- | M] () -- C:\Documents and Settings\Bo Crunch\Desktop\gmer.zip
[2012/01/13 11:26:20 | 000,607,260 | R--- | M] (Swearware) -- C:\Documents and Settings\Bo Crunch\Desktop\dds.com
[2012/01/12 21:31:31 | 000,482,581 | ---- | M] () -- C:\Documents and Settings\Bo Crunch\My Documents\sp-studio.cpt
[2012/01/12 19:09:10 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\Bo Crunch\Desktop\HiJackThis.exe
[2012/01/11 18:11:34 | 004,104,900 | ---- | M] () -- C:\Documents and Settings\Bo Crunch\Desktop\RootkitBuster_5.00.1041.zip
[2012/01/11 18:10:39 | 006,018,568 | ---- | M] (Trend Micro, Inc. ) -- C:\Documents and Settings\Bo Crunch\Desktop\RUBottedSetup.exe
[2012/01/11 17:11:14 | 000,205,072 | ---- | M] (Trend Micro Inc.) -- C:\WINDOWS\System32\drivers\tmcomm.sys
[2012/01/11 16:53:23 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012/01/11 16:35:58 | 000,000,211 | ---- | M] () -- C:\Boot.bak
[2012/01/11 16:26:56 | 002,562,040 | ---- | M] (Symantec Corporation) -- C:\Documents and Settings\Bo Crunch\Desktop\NPE.exe
[2012/01/07 00:24:05 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\Bo Crunch\Start Menu\Programs\Startup\SpeedFan.lnk
[2012/01/06 23:08:48 | 000,374,464 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012/01/06 21:46:47 | 000,649,638 | ---- | M] () -- C:\WINDOWS\System32\drivers\Cat.DB
[2012/01/06 13:29:17 | 000,000,036 | ---- | M] () -- C:\Documents and Settings\Bo Crunch\Local Settings\Application Data\housecall.guid.cache
[2012/01/06 13:17:43 | 000,000,802 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2012/01/06 12:44:08 | 000,002,294 | ---- | M] () -- C:\Documents and Settings\Bo Crunch\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012/01/06 12:44:07 | 000,002,316 | ---- | M] () -- C:\Documents and Settings\Bo Crunch\Desktop\Google Chrome.lnk
[2012/01/01 21:47:13 | 000,001,921 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Google Earth.lnk
[2011/12/31 16:19:27 | 000,002,335 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\P-touch Update Software.lnk
[2011/12/31 16:18:50 | 000,001,902 | ---- | M] () -- C:\Documents and Settings\Bo Crunch\Application Data\Microsoft\Internet Explorer\Quick Launch\P-touch Update Software.lnk
[2011/12/31 16:14:14 | 000,001,666 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\P-touch Editor 5.0.lnk
[2011/12/30 12:50:03 | 000,001,263 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.bak
[2011/12/29 23:10:58 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf
[2011/12/27 12:01:15 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011/12/26 19:01:35 | 000,172,032 | ---- | M] (Jin Hui E-mail: jinhui@jcomsoft.com Web:
http://www.jcomsoft.com) -- C:\WINDOWS\System32\AniGIF.ocx
[2011/12/26 14:40:36 | 000,000,214 | ---- | M] () -- C:\WINDOWS\HP_InstantSHareJPG.ini
[2011/12/26 14:40:21 | 000,000,217 | ---- | M] () -- C:\WINDOWS\HP_IZClosingDiscErrorPatch.ini
[2011/12/26 14:39:38 | 000,000,227 | ---- | M] () -- C:\WINDOWS\HP_CounterReport_Update_HPSU.ini
[2011/12/26 14:39:34 | 000,000,214 | ---- | M] () -- C:\WINDOWS\HP_48BitScanUpdatePatch.ini
[2011/12/26 14:38:49 | 000,000,221 | ---- | M] () -- C:\WINDOWS\HP_RedboxHprblog_HPSU.ini
[2011/12/25 22:01:11 | 000,000,021 | ---- | M] () -- C:\WINDOWS\rgsavacam.rgk
[2011/12/25 06:19:02 | 000,000,132 | ---- | M] () -- C:\Documents and Settings\Bo Crunch\Local Settings\Application Data\fusioncache.dat
[2011/12/25 06:13:45 | 000,112,446 | ---- | M] () -- C:\WINDOWS\hpoins07.dat
[2011/12/25 06:13:06 | 000,001,904 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\HP Document Viewer.lnk
[2011/12/25 06:12:15 | 000,000,904 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\HP Image Zone.lnk
[2011/12/25 06:10:43 | 000,000,990 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\HP Solution Center.lnk
[2011/12/20 16:30:16 | 000,102,262 | ---- | M] () -- C:\WINDOWS\hpoins05.dat
[2011/12/20 14:51:18 | 000,020,231 | ---- | M] () -- C:\Documents and Settings\Bo Crunch\My Documents\Auto Cad Activation.pdf
[2011/12/20 11:37:59 | 000,001,694 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\AutoCAD 2010 - English.lnk
[2011/12/20 11:33:49 | 000,001,837 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Autodesk Design Review.lnk
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012/01/13 18:18:48 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2012/01/13 18:18:41 | 000,260,272 | RHS- | C] () -- C:\cmldr
[2012/01/13 18:14:40 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2012/01/13 18:14:40 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2012/01/13 18:14:40 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2012/01/13 18:14:40 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2012/01/13 18:14:40 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2012/01/13 12:05:13 | 000,302,592 | ---- | C] () -- C:\Documents and Settings\Bo Crunch\Desktop\gmer.exe
[2012/01/13 11:27:27 | 000,294,216 | ---- | C] () -- C:\Documents and Settings\Bo Crunch\Desktop\gmer.zip
[2012/01/12 21:31:31 | 000,482,581 | ---- | C] () -- C:\Documents and Settings\Bo Crunch\My Documents\sp-studio.cpt
[2012/01/11 18:11:20 | 004,104,900 | ---- | C] () -- C:\Documents and Settings\Bo Crunch\Desktop\RootkitBuster_5.00.1041.zip
[2012/01/06 21:46:23 | 000,649,638 | ---- | C] () -- C:\WINDOWS\System32\drivers\Cat.DB
[2012/01/06 13:29:17 | 000,000,036 | ---- | C] () -- C:\Documents and Settings\Bo Crunch\Local Settings\Application Data\housecall.guid.cache
[2012/01/06 13:17:43 | 000,000,802 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2012/01/04 21:39:07 | 000,025,944 | ---- | C] () -- C:\WINDOWS\System32\SmartDefragBootTime.exe
[2012/01/04 21:39:06 | 000,014,776 | ---- | C] () -- C:\WINDOWS\System32\drivers\SmartDefragDriver.sys
[2012/01/01 21:47:13 | 000,001,921 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Google Earth.lnk
[2011/12/31 16:18:50 | 000,002,335 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\P-touch Update Software.lnk
[2011/12/31 16:18:50 | 000,001,902 | ---- | C] () -- C:\Documents and Settings\Bo Crunch\Application Data\Microsoft\Internet Explorer\Quick Launch\P-touch Update Software.lnk
[2011/12/31 16:14:14 | 000,001,666 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\P-touch Editor 5.0.lnk
[2011/12/26 14:40:36 | 000,000,214 | ---- | C] () -- C:\WINDOWS\HP_InstantSHareJPG.ini
[2011/12/26 14:40:21 | 000,000,217 | ---- | C] () -- C:\WINDOWS\HP_IZClosingDiscErrorPatch.ini
[2011/12/26 14:39:38 | 000,000,227 | ---- | C] () -- C:\WINDOWS\HP_CounterReport_Update_HPSU.ini
[2011/12/26 14:39:34 | 000,000,214 | ---- | C] () -- C:\WINDOWS\HP_48BitScanUpdatePatch.ini
[2011/12/26 14:38:49 | 000,000,221 | ---- | C] () -- C:\WINDOWS\HP_RedboxHprblog_HPSU.ini
[2011/12/25 17:36:12 | 000,000,888 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/12/25 06:19:02 | 000,000,132 | ---- | C] () -- C:\Documents and Settings\Bo Crunch\Local Settings\Application Data\fusioncache.dat
[2011/12/25 06:13:06 | 000,001,904 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\HP Document Viewer.lnk
[2011/12/25 06:12:15 | 000,000,904 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\HP Image Zone.lnk
[2011/12/25 06:11:25 | 000,000,731 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\I.R.I.S. OCR Registration.lnk
[2011/12/25 06:10:43 | 000,000,990 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\HP Solution Center.lnk
[2011/12/25 06:04:14 | 000,112,446 | ---- | C] () -- C:\WINDOWS\hpoins07.dat
[2011/12/25 06:04:13 | 000,017,505 | ---- | C] () -- C:\WINDOWS\hpomdl07.dat.temp
[2011/12/20 16:24:53 | 000,102,262 | ---- | C] () -- C:\WINDOWS\hpoins05.dat
[2011/12/20 16:24:53 | 000,021,124 | ---- | C] () -- C:\WINDOWS\hpomdl07.dat
[2011/12/20 14:51:18 | 000,020,231 | ---- | C] () -- C:\Documents and Settings\Bo Crunch\My Documents\Auto Cad Activation.pdf
[2011/12/20 11:37:59 | 000,001,694 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\AutoCAD 2010 - English.lnk
[2011/12/20 11:33:49 | 000,001,837 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Autodesk Design Review.lnk
[2011/12/20 11:22:47 | 000,000,266 | ---- | C] () -- C:\WINDOWS\tasks\WGASetup.job
[2011/12/08 19:56:02 | 000,000,106 | ---- | C] () -- C:\WINDOWS\QTW.INI
[2011/12/08 19:54:54 | 000,000,553 | ---- | C] () -- C:\WINDOWS\ASLPC.INI
[2011/11/30 21:01:08 | 000,000,512 | ---- | C] () -- C:\WINDOWS\System32\gfbaksm.dat
[2011/11/13 14:11:16 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2011/11/02 16:54:34 | 000,084,616 | ---- | C] () -- C:\WINDOWS\StkUnist.exe
[2011/10/31 19:41:57 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\sh33w32.dll
[2011/10/31 19:41:20 | 000,039,095 | ---- | C] () -- C:\WINDOWS\iccsigs.dat
[2011/10/24 20:02:54 | 000,042,108 | ---- | C] () -- C:\WINDOWS\System32\fun_avutil.dll
[2011/10/24 20:02:53 | 003,566,434 | ---- | C] () -- C:\WINDOWS\System32\fun_avcodec.dll
[2011/10/24 20:02:53 | 000,827,392 | ---- | C] () -- C:\WINDOWS\System32\Mpeg4System.dll
[2011/10/24 20:02:53 | 000,241,664 | ---- | C] () -- C:\WINDOWS\System32\AMR.dll
[2011/10/24 20:02:53 | 000,167,936 | ---- | C] () -- C:\WINDOWS\System32\Mpeg4Tools.dll
[2011/10/24 20:02:53 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\Mpeg4DSF.dll
[2011/10/24 20:02:53 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\EvrcDecDll.dll
[2011/10/24 20:02:53 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\AMRDSF.dll
[2011/10/23 22:03:49 | 001,157,240 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2011/10/23 02:03:43 | 000,007,696 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011/10/23 00:54:36 | 000,071,168 | ---- | C] () -- C:\Documents and Settings\Bo Crunch\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/10/22 22:00:40 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011/10/22 21:55:58 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2011/10/22 14:41:05 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011/10/22 14:39:59 | 000,374,464 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009/10/20 10:19:30 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll
[2008/12/19 07:15:58 | 004,338,246 | ---- | C] () -- C:\WINDOWS\System32\libavcodec.dll
[2008/12/17 09:41:18 | 000,884,237 | ---- | C] () -- C:\WINDOWS\System32\ff_x264.dll
[2008/12/17 09:22:58 | 000,093,184 | ---- | C] () -- C:\WINDOWS\System32\ff_wmv9.dll
[2008/12/17 09:22:48 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2008/12/17 09:17:34 | 000,239,247 | ---- | C] () -- C:\WINDOWS\System32\ff_theora.dll
[2008/12/17 08:59:54 | 000,560,802 | ---- | C] () -- C:\WINDOWS\System32\libmplayer.dll
[2006/11/02 08:10:16 | 000,080,912 | ---- | C] () -- C:\WINDOWS\System32\sherlock2.exe
[2006/09/22 10:30:04 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\PTQL5F.DLL
[2006/01/10 05:00:00 | 000,000,110 | ---- | C] () -- C:\WINDOWS\Win_wpt_100_h_.dat
[2006/01/10 05:00:00 | 000,000,110 | ---- | C] () -- C:\WINDOWS\System32\Sys_wpt_100_h_.dat
[2004/10/03 09:50:54 | 000,129,024 | ---- | C] () -- C:\WINDOWS\System32\ff_mpeg2enc.dll
[2004/08/16 16:49:21 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004/08/16 16:49:20 | 000,444,020 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004/08/16 16:49:20 | 000,072,278 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004/08/16 16:49:20 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004/08/16 16:49:19 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2004/08/16 16:49:19 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2004/08/16 16:49:13 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2004/08/16 16:49:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004/08/16 16:49:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004/08/16 16:48:44 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004/08/03 17:07:22 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004/08/02 06:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2001/07/06 15:30:00 | 000,003,399 | ---- | C] () -- C:\WINDOWS\System32\hptcpmon.ini
[1996/04/03 11:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys
========== LOP Check ==========
[2011/12/26 17:11:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Autodesk
[2011/10/29 20:40:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Driver Tool
[2011/11/11 20:24:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\InterAction studios
[2011/10/22 23:19:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IsolatedStorage
[2011/12/26 19:02:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Speedbit
[2011/11/02 16:51:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ulead Systems
[2011/10/22 23:07:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\White Sky, Inc
[2011/11/18 21:42:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\X-Setup Pro
[2011/12/08 21:19:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\YouTube Downloader
[2011/12/26 17:11:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bo Crunch\Application Data\Autodesk
[2012/01/04 17:18:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bo Crunch\Application Data\avidemux
[2011/12/08 21:10:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bo Crunch\Application Data\Azureus
[2011/12/24 04:32:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bo Crunch\Application Data\ElevatedDiagnostics
[2011/10/24 22:21:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bo Crunch\Application Data\FinalMediaPlayer
[2011/10/22 23:55:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bo Crunch\Application Data\ID Vault
[2012/01/16 15:30:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bo Crunch\Application Data\ieSpell
[2011/11/08 18:11:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bo Crunch\Application Data\ldw_data
[2011/11/15 22:40:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bo Crunch\Application Data\MakeupGuide
[2011/10/23 21:45:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bo Crunch\Application Data\SolwaySoftware
[2011/11/07 21:37:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bo Crunch\Application Data\SystemRequirementsLab
[2012/01/06 21:44:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bo Crunch\Application Data\TestApp
[2012/01/11 15:51:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bo Crunch\Application Data\Tific
[2011/11/02 17:06:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bo Crunch\Application Data\Ulead Systems
[2011/11/24 06:50:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bo Crunch\Application Data\VSRevoGroup
[2011/11/18 21:42:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bo Crunch\Application Data\X-Setup Pro
[2012/01/16 17:47:57 | 000,000,394 | ---- | M] () -- C:\WINDOWS\Tasks\Final Media Player Update Checker.job
[2012/01/16 17:47:56 | 000,000,266 | ---- | M] () -- C:\WINDOWS\Tasks\WGASetup.job
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 54 bytes -> C:\Documents and Settings\Bo Crunch\ntuser.ini:l_encryption_d
< End of report >
OTL Extras logfile created on: 1/16/2012 6:55:05 PM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Bo Crunch\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
1023.48 Mb Total Physical Memory | 475.85 Mb Available Physical Memory | 46.49% Memory free
3.90 Gb Paging File | 3.50 Gb Available in Paging File | 89.55% Paging File free
Paging file location(s): [Binary data over 100 bytes]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 114.48 Gb Total Space | 95.61 Gb Free Space | 83.51% Space Free | Partition Type: NTFS
Drive D: | 74.53 Gb Total Space | 11.85 Gb Free Space | 15.90% Space Free | Partition Type: NTFS
Computer Name: GROUNDSCORE | User Name: Bo Crunch | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\FinalMediaPlayer\FMPCheckForUpdates.exe" = C:\Program Files\FinalMediaPlayer\FMPCheckForUpdates.exe:*:Enabled:Final Media Player Update Checker -- (Bitberry Software)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00F93853-D9D3-4795-A89E-84CCBA0205C9}" = Microsoft IntelliPoint 8.0
"{03B1B42B-F6DE-41d9-8CFF-DC44E895C7A7}" = PhotoGallery
"{0611BD4E-4FE4-4a62-B0C0-18A4CC463428}" = CP_Package_Variety1
"{08BAC163-A5E8-4838-90A9-8C9343400579}" = Brother P-touch Update Software
"{09984AEC-6B9F-4ca7-B78D-CB44D4771DA3}" = Destinations
"{0B33B738-AD79-4E32-90C5-E67BFB10BBFF}" = AiO_Scan
"{172975EB-9465-4861-95B5-C7BB6D3DE62A}" = DocumentViewer
"{175B2216-D8B0-46E3-9DF6-C26AE13DF43B}" = Brother P-touch Editor Label Collection - Event Planning [ENU]
"{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}" = YouTube Downloader 3.4
"{1C139D7D-9FEA-468d-A9C8-2A6E3BDE564A}" = CP_Package_Variety3
"{21DB3D90-D816-4092-A260-CA3F6B55A6DD}" = Sonic_PrimoSDK
"{23A7B376-BBEC-4e76-BBD7-0F155E70D74B}" = CP_Panorama1Config
"{26A24AE4-039D-4CA4-87B4-2F83216029FF}" = Java 6 Update 30
"{2C4EFE5A-C7B6-4162-8A8B-F616B35B8E3C}" = Brother P-touch Editor Label Collection - Birthday Banners [ENU]
"{2CADCEAB-D5DA-44D6-B5FC-7DEE87AB3C0C}" = Unload
"{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}" = HP Update
"{30C19FF2-7FBA-4d09-B9DE-1659977F64F6}" = TrayApp
"{32BDCCB8-9DC8-496d-9DB1-F77510775BDB}" = InstantShareDevices
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{36E47DA1-10E1-45d9-8B19-14D19607CDCF}" = CP_CalendarTemplates1
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3C5F1B30-B10B-4579-86DD-D00F662E1033}" = Nero 8
"{49FB31C1-26EC-44c6-AB47-73C66E2BC41E}" = HP PSC & OfficeJet 5.3.B
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4DC26D3D-3FA4-40C7-8957-FBC32289BB51}" = Pantech PCSuite
"{53EE9E42-CECB-4C92-BF76-9CA65DAF8F1C}" = FullDPAppQFolder
"{54D4EAF5-4C80-4878-B4AC-5AE454A02E3C}_is1" = Trend Micro RUBotted 2.0 Beta
"{54E3707F-808E-4fd4-95C9-15D1AB077E5D}" = NewCopy
"{55D9E026-DCB0-46FF-B60A-68B972228CF6}" = Autodesk Design Review 2010
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{56EE8B17-8274-418d-89AC-C057C5DB251E}" = RandMap
"{56F8AFC3-FA98-4ff1-9673-8A026CBF85BE}" = WebReg
"{5783F2D7-8001-0409-0002-0060B0CE6BBA}" = AutoCAD 2010 - English
"{5783F2D7-8001-0409-1002-0060B0CE6BBA}" = AutoCAD 2010 Language Pack - English
"{5A01C58E-B0EC-49b9-AD71-7C0468688087}" = CP_Package_Basic1
"{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
"{5B5FE75F-A999-45e7-AE6B-5B85E1DD0577}" = PANTECH Handset USB Driver V2
"{5B622B7A-60FB-4630-B11D-F121D20BCCD6}" = MarketResearch
"{5B79CFD1-6845-4158-9D7D-6BE89DF2C135}" = HP PSC & OfficeJet 5.3.B
"{5F26311C-B135-4F7F-B11E-8E650F83651E}" = DeviceFunctionQFolder
"{65248369-7CB9-43A9-82C8-C438AE04DED4}" = 1500
"{66BA8C26-AFE4-4408-807B-43E76B57EF53}" = SkinsHP1
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{6BB6627C-694F-4FDC-A3E5-C7F4BED4C724}" = DocProc
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7850A6D2-CBEA-4728-9877-F1BEDEA9F619}" = AiOSoftware
"{7C03270C-4FAB-4F5C-B10D-52FEDA190790}" = DocumentViewerQFolder
"{7C9B95B7-B598-4398-B30F-7F6827192E6C}" = ProductContext
"{7E27304E-BAA2-4d90-A34E-76641FAFABB4}" = CP_AtenaShokunin1Config
"{814DFF88-1736-4C0C-8296-E9DFCF91AC11}" = Brother P-touch Editor Label Collection - Sports Preparation [ENU]
"{81E06318-EEB9-4D55-8CD5-7AC9148D5E66}" = 1500_Help
"{8777AC6D-89F9-4793-8266-DE406F343E89}" = QFolder
"{8F8D9297-FDD2-405A-97E7-E52C7B2F97B3}" = Ulead VideoStudio SE DVD
"{90120000-0010-0409-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (English) 12
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{923A7F5A-1E8C-4FBE-8DF6-85940A60A79F}" = Readme
"{939D460F-DFD7-45D1-A4B2-7418856250C0}" = Brother P-touch Editor Label Collection - Building-Facility [ENU]
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{97C82B44-D408-4F14-9252-47FC1636D23E}_is1" = IZArc 4.1.2
"{9984DF60-1C5B-11D3-ACA1-908A4FC10801}" = Intel Application Accelerator
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B3F33D3-E2BC-4BAE-93AB-41700072F680}" = Pantech PCSuite
"{9C7AEE33-3558-4F35-A7C8-6C19F2D3D665}" = Brother P-touch Editor Label Collection - Package Shipping [ENU]
"{A195B13E-A5E3-4BAF-A995-7F70F445CD06}" = ScannerCopy
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A5BB5365-EFB4-44c3-A7E2-EB59B7EFD23D}" = CueTour
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC76BA86-1033-F400-7761-000000000004}" = Adobe Acrobat 9 Pro Extended - English, Français, Deutsch
"{AC76BA86-1033-F400-7761-000000000004}_920" = Adobe Acrobat 9.2.0 - CPSID_50026
"{AC76BA86-1033-F400-7761-000000000004}{AC76BA86-1033-F400-7761-000000000004}" = Adobe Acrobat 9 Pro Extended - English, Français, Deutsch
"{B4D279F1-4309-49cc-A4B5-3A0D2E59C7B5}" = PanoStandAlone
"{B824B5C9-849F-4b9e-9EA7-6FD8CD8116DA}" = CP_Package_Variety2
"{B996AE66-10DB-4ac5-B151-E8B4BFBC42FC}" = BufferChm
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{BE1DE490-DC58-4C7A-B6CA-D0D5DA2BABA1}" = Brother P-touch Editor Label Collection - Retail Store [ENU]
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C46EA53C-F04B-47C1-9D56-F944D6D78A78}" = Brother P-touch Editor Label Collection - Warning [ENU]
"{C506A18C-1469-4678-B094-F4EC9DAE6DB7}" = Scan
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CBA30674-A242-4531-82B5-586B31F90E04}" = 1500Trb
"{CD41B576-4787-4D5C-95EE-24A4ABD89CD3}" = System Requirements Lab for Intel
"{CE24344F-DFD8-40C8-8FD8-C9740B5F25AC}" = Fax
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{DF9A6075-9308-4572-8932-A4316243C4D9}" = Brother P-touch Editor 5.0
"{E337B156-DF81-48D8-8977-B1574EE87BCF}" = USB2.0 Capture Device
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series
"{E3F90083-80D4-4b5a-87C7-E97E12F5516D}" = HPProductAssistant
"{EA103B64-C0E4-4C0E-A506-751590E1653D}" = SolutionCenter
"{EAC6F977-98A2-4E9C-8FC7-8BC9F92B8258}" = Brother P-touch Editor Label Collection - Celebration Banners [ENU]
"{F0808C84-16BF-44CB-AADA-B1E614C7F1FC}" = Brother P-touch Editor Label Collection - Enviro-Recycle [ENU]
"{F4C2E5F5-2970-45f4-ABD3-C180C4D961C4}" = Status
"8461-7759-5462-8226" = Vuze
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"AutoCAD 2010 - English" = AutoCAD 2010 - English
"Autodesk Design Review 2010" = Autodesk Design Review 2010
"AvaCam_is1" = AvaCam v3.2.0
"Cool Timer_is1" = Cool Timer 3.6
"Corel Uninstaller" = Corel Uninstaller
"ENTERPRISE" = Microsoft Office Enterprise 2007
"ESET Online Scanner" = ESET Online Scanner v3
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"FinalMediaPlayer_is1" = Final Media Player 2011
"HP Document Viewer" = HP Document Viewer 5.3
"HP Imaging Device Functions" = HP Imaging Device Functions 5.3
"HP Photo & Imaging" = HP Image Zone 5.3
"HP Solution Center & Imaging Support Tools" = HP Solution Center & Imaging Support Tools 5.3
"HPExtendedCapabilities" = HP Extended Capabilities 5.3
"ID Vault" = Constant Guard Protection Suite
"ie8" = Windows Internet Explorer 8
"ieSpell" = ieSpell
"InstallShield_{DF9A6075-9308-4572-8932-A4316243C4D9}" = Brother P-touch Editor 5.0
"IsoBuster_is1" = IsoBuster 2.7
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.60.0.1800
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Multi Reminders" = Multi Reminders 2.75
"N360" = Norton Security Suite
"NVIDIA" = NVIDIA Windows 2000/XP Display Drivers
"Revo Uninstaller" = Revo Uninstaller 1.93
"SpeedFan" = SpeedFan (remove only)
"Spell Checker For OE 2.1" = Spell Checker For OE 2.1
"Tweak UI 2.10" = Tweak UI
"UBCD4Win_is1" = UBCD4Win 3.60
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"Windows Media Encoder 9" = Windows Media Encoder 9 Series
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinPcapInst" = WinPcap 4.1.1
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XP Codec Pack" = XP Codec Pack
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"xqdcXSP_is1" = XQDC X-Setup Pro 9.2.100
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 1/11/2012 8:55:56 PM | Computer Name = GROUNDSCORE | Source = Userenv | ID = 1090
Description = Windows couldn't log the RSoP (Resultant Set of Policies) session
status. An attempt to connect to WMI failed. No more RSoP logging will be done for
this application of policy.
Error - 1/11/2012 10:02:18 PM | Computer Name = GROUNDSCORE | Source = Userenv | ID = 1090
Description = Windows couldn't log the RSoP (Resultant Set of Policies) session
status. An attempt to connect to WMI failed. No more RSoP logging will be done for
this application of policy.
Error - 1/11/2012 10:02:18 PM | Computer Name = GROUNDSCORE | Source = Userenv | ID = 1090
Description = Windows couldn't log the RSoP (Resultant Set of Policies) session
status. An attempt to connect to WMI failed. No more RSoP logging will be done for
this application of policy.
Error - 1/11/2012 11:16:35 PM | Computer Name = GROUNDSCORE | Source = Userenv | ID = 1090
Description = Windows couldn't log the RSoP (Resultant Set of Policies) session
status. An attempt to connect to WMI failed. No more RSoP logging will be done for
this application of policy.
Error - 1/11/2012 11:16:35 PM | Computer Name = GROUNDSCORE | Source = Userenv | ID = 1090
Description = Windows couldn't log the RSoP (Resultant Set of Policies) session
status. An attempt to connect to WMI failed. No more RSoP logging will be done for
this application of policy.
Error - 1/11/2012 11:22:28 PM | Computer Name = GROUNDSCORE | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: C:\Program Files\Driver Tool\Driver Tool\DriverTool.exe .
Error code = 0x80131047
Error - 1/12/2012 12:47:37 AM | Computer Name = GROUNDSCORE | Source = Userenv | ID = 1090
Description = Windows couldn't log the RSoP (Resultant Set of Policies) session
status. An attempt to connect to WMI failed. No more RSoP logging will be done for
this application of policy.
Error - 1/12/2012 12:47:37 AM | Computer Name = GROUNDSCORE | Source = Userenv | ID = 1090
Description = Windows couldn't log the RSoP (Resultant Set of Policies) session
status. An attempt to connect to WMI failed. No more RSoP logging will be done for
this application of policy.
Error - 1/12/2012 4:52:45 AM | Computer Name = GROUNDSCORE | Source = Userenv | ID = 1090
Description = Windows couldn't log the RSoP (Resultant Set of Policies) session
status. An attempt to connect to WMI failed. No more RSoP logging will be done for
this application of policy.
Error - 1/12/2012 4:52:45 AM | Computer Name = GROUNDSCORE | Source = Userenv | ID = 1090
Description = Windows couldn't log the RSoP (Resultant Set of Policies) session
status. An attempt to connect to WMI failed. No more RSoP logging will be done for
this application of policy.
[ Application Events ]
Error - 1/11/2012 8:55:56 PM | Computer Name = GROUNDSCORE | Source = Userenv | ID = 1090
Description = Windows couldn't log the RSoP (Resultant Set of Policies) session
status. An attempt to connect to WMI failed. No more RSoP logging will be done for
this application of policy.
Error - 1/11/2012 10:02:18 PM | Computer Name = GROUNDSCORE | Source = Userenv | ID = 1090
Description = Windows couldn't log the RSoP (Resultant Set of Policies) session
status. An attempt to connect to WMI failed. No more RSoP logging will be done for
this application of policy.
Error - 1/11/2012 10:02:18 PM | Computer Name = GROUNDSCORE | Source = Userenv | ID = 1090
Description = Windows couldn't log the RSoP (Resultant Set of Policies) session
status. An attempt to connect to WMI failed. No more RSoP logging will be done for
this application of policy.
Error - 1/11/2012 11:16:35 PM | Computer Name = GROUNDSCORE | Source = Userenv | ID = 1090
Description = Windows couldn't log the RSoP (Resultant Set of Policies) session
status. An attempt to connect to WMI failed. No more RSoP logging will be done for
this application of policy.
Error - 1/11/2012 11:16:35 PM | Computer Name = GROUNDSCORE | Source = Userenv | ID = 1090
Description = Windows couldn't log the RSoP (Resultant Set of Policies) session
status. An attempt to connect to WMI failed. No more RSoP logging will be done for
this application of policy.
Error - 1/11/2012 11:22:28 PM | Computer Name = GROUNDSCORE | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: C:\Program Files\Driver Tool\Driver Tool\DriverTool.exe .
Error code = 0x80131047
Error - 1/12/2012 12:47:37 AM | Computer Name = GROUNDSCORE | Source = Userenv | ID = 1090
Description = Windows couldn't log the RSoP (Resultant Set of Policies) session
status. An attempt to connect to WMI failed. No more RSoP logging will be done for
this application of policy.
Error - 1/12/2012 12:47:37 AM | Computer Name = GROUNDSCORE | Source = Userenv | ID = 1090
Description = Windows couldn't log the RSoP (Resultant Set of Policies) session
status. An attempt to connect to WMI failed. No more RSoP logging will be done for
this application of policy.
Error - 1/12/2012 4:52:45 AM | Computer Name = GROUNDSCORE | Source = Userenv | ID = 1090
Description = Windows couldn't log the RSoP (Resultant Set of Policies) session
status. An attempt to connect to WMI failed. No more RSoP logging will be done for
this application of policy.
Error - 1/12/2012 4:52:45 AM | Computer Name = GROUNDSCORE | Source = Userenv | ID = 1090
Description = Windows couldn't log the RSoP (Resultant Set of Policies) session
status. An attempt to connect to WMI failed. No more RSoP logging will be done for
this application of policy.
[ System Events ]
Error - 1/16/2012 10:52:59 PM | Computer Name = GROUNDSCORE | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058
Error - 1/16/2012 10:53:14 PM | Computer Name = GROUNDSCORE | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058
Error - 1/16/2012 10:53:14 PM | Computer Name = GROUNDSCORE | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058
Error - 1/16/2012 10:53:14 PM | Computer Name = GROUNDSCORE | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058
Error - 1/16/2012 10:53:29 PM | Computer Name = GROUNDSCORE | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058
Error - 1/16/2012 10:53:29 PM | Computer Name = GROUNDSCORE | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058
Error - 1/16/2012 10:53:29 PM | Computer Name = GROUNDSCORE | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058
Error - 1/16/2012 10:53:29 PM | Computer Name = GROUNDSCORE | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058
Error - 1/16/2012 10:53:29 PM | Computer Name = GROUNDSCORE | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058
Error - 1/16/2012 10:53:29 PM | Computer Name = GROUNDSCORE | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058
[ System Events ]
Error - 1/16/2012 10:52:59 PM | Computer Name = GROUNDSCORE | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058
Error - 1/16/2012 10:53:14 PM | Computer Name = GROUNDSCORE | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058
Error - 1/16/2012 10:53:14 PM | Computer Name = GROUNDSCORE | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058
Error - 1/16/2012 10:53:14 PM | Computer Name = GROUNDSCORE | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058
Error - 1/16/2012 10:53:29 PM | Computer Name = GROUNDSCORE | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058
Error - 1/16/2012 10:53:29 PM | Computer Name = GROUNDSCORE | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058
Error - 1/16/2012 10:53:29 PM | Computer Name = GROUNDSCORE | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058
Error - 1/16/2012 10:53:29 PM | Computer Name = GROUNDSCORE | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058
Error - 1/16/2012 10:53:29 PM | Computer Name = GROUNDSCORE | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058
Error - 1/16/2012 10:53:29 PM | Computer Name = GROUNDSCORE | Source = Service Control Manager | ID = 7001
Description = The Remote Access Connection Manager service depends on the Telephony
service which failed to start because of the following error: %%1058
< End of report >