Inactive Should I start 6 step process?
- Thread starter papa877
- Start date
OTL logfile created on: 9/30/2011 10:28:38 PM - Run
OTLPE by OldTimer - Version 3.1.48.0 Folder = X:\Programs\OTLPE
64bit-Windows 7 Professional (Version = 6.1.7600) - Type = System
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
3.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 90.00% Memory free
3.00 Gb Paging File | 3.00 Gb Available in Paging File | 98.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = E: | %SystemRoot% = E:\Windows | %ProgramFiles% = E:\Program Files (x86)
Drive C: | 100.00 Mb Total Space | 74.34 Mb Free Space | 74.35% Space Free | Partition Type: NTFS
Drive E: | 931.42 Gb Total Space | 262.92 Gb Free Space | 28.23% Space Free | Partition Type: NTFS
Drive X: | 436.59 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet002
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2010/05/04 22:15:10 | 000,202,752 | ---- | M] (AMD) [Auto] -- E:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009/07/13 21:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/13 21:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2006/10/11 20:36:58 | 000,561,152 | ---- | M] ( ) [Auto] -- E:\Windows\System32\dlcxcoms.exe -- (dlcx_device)
SRV - [2011/09/29 03:04:07 | 002,151,640 | ---- | M] (Lavasoft Limited) [Auto] -- E:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2011/07/21 15:12:16 | 000,269,480 | ---- | M] (Avira GmbH) [Auto] -- E:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011/04/21 10:53:48 | 000,136,360 | ---- | M] (Avira GmbH) [Auto] -- E:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2010/06/03 17:12:47 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand] -- E:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010/06/03 04:22:53 | 000,066,872 | ---- | M] () [Auto] -- E:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2010/03/18 16:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto] -- E:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/08/19 07:56:38 | 000,090,112 | R--- | M] (ASUSTeK Computer Inc.) [Auto] -- E:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe -- (AsSysCtrlService)
SRV - [2009/07/16 20:04:16 | 000,316,664 | ---- | M] (Valve Corporation) [On_Demand] -- E:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled] -- E:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/06/04 22:03:06 | 000,354,840 | ---- | M] (Intel Corporation) [Auto] -- E:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R)
SRV - [2007/09/11 03:45:04 | 000,124,832 | ---- | M] () [Auto] -- E:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor6.0)
SRV - [2006/10/11 19:48:50 | 000,532,480 | ---- | M] ( ) [Auto] -- E:\Windows\SysWow64\dlcxcoms.exe -- (dlcx_device)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2011/08/18 18:25:12 | 000,069,376 | ---- | M] (Lavasoft AB) [File_System | Boot] -- E:\Windows\System32\drivers\Lbd.sys -- (Lbd)
DRV:64bit: - [2011/07/21 15:15:16 | 000,123,784 | ---- | M] (Avira GmbH) [Kernel | System] -- E:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV:64bit: - [2011/07/21 15:15:15 | 000,088,288 | ---- | M] (Avira GmbH) [File_System | Auto] -- E:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV:64bit: - [2010/06/10 02:44:27 | 000,834,544 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot] -- E:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010/06/03 17:10:12 | 000,052,856 | ---- | M] (Sonic Solutions) [Kernel | Boot] -- E:\Windows\System32\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2010/05/04 22:47:08 | 006,789,632 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- E:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2010/05/04 21:23:24 | 000,221,184 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand] -- E:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2010/04/07 15:14:50 | 000,446,304 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand] -- E:\Windows\System32\drivers\netr6164.sys -- (rt61x64)
DRV:64bit: - [2010/03/31 02:35:04 | 000,020,968 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | Auto] -- E:\Windows\System32\drivers\cpuz133_x64.sys -- (cpuz133)
DRV:64bit: - [2010/03/09 06:21:42 | 000,123,408 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand] -- E:\Windows\System32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2010/01/22 15:22:22 | 000,180,224 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2010/01/22 15:22:18 | 000,077,824 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2009/12/25 03:05:40 | 000,297,512 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot] -- E:\Windows\System32\drivers\mv91xx.sys -- (mv91xx)
DRV:64bit: - [2009/07/15 23:38:40 | 000,015,416 | ---- | M] () [Kernel | On_Demand] -- E:\Windows\System32\drivers\ASACPI.sys -- (MTsensor)
DRV:64bit: - [2009/07/13 20:06:43 | 000,060,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\61883.sys -- (61883)
DRV:64bit: - [2009/07/13 20:06:43 | 000,048,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\avc.sys -- (Avc)
DRV:64bit: - [2009/07/13 20:06:42 | 000,061,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\msdv.sys -- (MSDV)
DRV:64bit: - [2009/06/10 16:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand] -- E:\Windows\System32\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/05/20 05:10:00 | 000,393,728 | ---- | M] (Marvell) [Kernel | On_Demand] -- E:\Windows\System32\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2007/01/26 04:04:36 | 000,009,600 | ---- | M] () [Kernel | On_Demand] -- E:\Windows\System32\drivers\whfltr2k.sys -- (whfltr2k)
DRV - [2011/09/29 03:04:40 | 000,017,152 | ---- | M] () [Kernel | On_Demand] -- E:\Program Files (x86)\Lavasoft\Ad-Aware\kernexplorer64.sys -- (Lavasoft Kernexplorer)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Nick_ON_E\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKU\Nick_ON_E\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKU\Nick_ON_E\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = D3 B2 83 D8 74 7E CC 01 [binary data]
IE - HKU\Nick_ON_E\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Nick_ON_E\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: File not found
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer: E:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=:
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0: E:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE: File not found
FF - HKEY_LOCAL_MACHINE\software\wow6432node\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011/09/29 02:15:48 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\wow6432node\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011/09/29 01:34:29 | 000,000,000 | ---D | M]
[2011/09/30 19:06:40 | 000,000,000 | ---D | M] (No name found) -- E:\Program Files (x86)\Mozilla Firefox\extensions
[2010/06/03 05:09:54 | 000,000,000 | ---D | M] (Java Console) -- E:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2011/09/29 01:34:11 | 000,000,000 | ---D | M] (Java Console) -- E:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2011/09/29 01:34:11 | 000,000,000 | ---D | M] (Java Console) -- E:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}
[2010/06/03 05:09:50 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- E:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
Hosts file not found
O4:64bit: - HKLM..\Run: [DLCXCATS] E:\Windows\System32\spool\DRIVERS\x64\3\DLCXtime.DLL ()
O4:64bit: - HKLM..\Run: [dlcxmon.exe] E:\Program Files (x86)\Dell Photo AIO Printer 926\dlcxmon.exe ()
O4:64bit: - HKLM..\Run: [IAAnotif] E:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [MemoryCardManager] E:\Program Files (x86)\Dell Photo AIO Printer 926\memcard.exe ()
O4:64bit: - HKLM..\Run: [RtHDVCpl] E:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Adobe Photo Downloader] E:\Program Files (x86)\Adobe\Photoshop Elements 6.0\apdproxy.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avgnt] E:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [Cpu Level Up help] E:\Program Files (x86)\ASUS\AI Suite\CpuLevelUpHelp.exe ()
O4 - HKLM..\Run: [NUSB3MON] E:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (NEC Electronics Corporation)
O4 - HKLM..\Run: [QFan Help] E:\Program Files (x86)\ASUS\AI Suite\QFan3\QFanHelp.exe (ASUSTeK Computer Inc.)
O4 - HKLM..\Run: [StartCCC] E:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [WheelMouse] E:\Advanced Wheel Mouse\wh_exec.exe ()
O4 - HKU\LocalService_ON_E..\Run: [Sidebar] E:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\NetworkService_ON_E..\Run: [Sidebar] E:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\LocalService_ON_E..\RunOnce: [mctadmin] File not found
O4 - HKU\NetworkService_ON_E..\RunOnce: [mctadmin] File not found
O4 - Startup: Error locating startup folders.
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\Nick_ON_E\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - E:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - E:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13:64bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.10.1
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - E:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - E:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - E:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/03/24 07:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
64bit: O35 - HKLM\..comfile [open] -- "%1" %* File not found
64bit: O35 - HKLM\..exefile [open] -- "%1" %* File not found
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011/09/30 22:23:24 | 000,000,000 | ---D | C] -- E:\Windows\temp
[2011/09/30 22:14:44 | 000,000,000 | --SD | C] -- E:\ComboFix
[2011/09/30 20:57:45 | 000,000,000 | ---D | C] -- E:\Windows\ERDNT
[2011/09/30 20:57:41 | 000,000,000 | ---D | C] -- E:\Qoobox
[2011/09/30 20:01:06 | 000,607,260 | R--- | C] (Swearware) -- E:\Users\Nick\Desktop\dds.scr
[2011/09/30 19:26:09 | 000,000,000 | ---D | C] -- E:\Users\Nick\AppData\Roaming\Avira
[2011/09/30 19:05:24 | 000,000,000 | ---D | C] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
[2011/09/30 19:05:22 | 000,123,784 | ---- | C] (Avira GmbH) -- E:\Windows\System32\drivers\avipbb.sys
[2011/09/30 19:05:22 | 000,088,288 | ---- | C] (Avira GmbH) -- E:\Windows\System32\drivers\avgntflt.sys
[2011/09/30 19:05:22 | 000,000,000 | ---D | C] -- E:\ProgramData\Avira
[2011/09/30 19:05:22 | 000,000,000 | ---D | C] -- E:\Program Files (x86)\Avira
[2011/09/29 16:48:02 | 000,295,264 | ---- | C] (Microsoft Corporation) -- E:\Windows\SysWow64\PresentationHost.exe
[2011/09/29 16:48:02 | 000,099,176 | ---- | C] (Microsoft Corporation) -- E:\Windows\SysWow64\PresentationHostProxy.dll
[2011/09/29 16:48:02 | 000,049,472 | ---- | C] (Microsoft Corporation) -- E:\Windows\SysWow64\netfxperf.dll
[2011/09/29 16:48:01 | 001,942,856 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\dfshim.dll
[2011/09/29 16:48:01 | 001,130,824 | ---- | C] (Microsoft Corporation) -- E:\Windows\SysWow64\dfshim.dll
[2011/09/29 16:48:01 | 000,320,352 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\PresentationHost.exe
[2011/09/29 16:48:01 | 000,109,912 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\PresentationHostProxy.dll
[2011/09/29 16:48:01 | 000,048,960 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\netfxperf.dll
[2011/09/29 03:47:29 | 000,000,000 | ---D | C] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Printers
[2011/09/29 03:47:28 | 001,224,704 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxserv.dll
[2011/09/29 03:47:28 | 000,991,232 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxusb1.dll
[2011/09/29 03:47:28 | 000,983,107 | ---- | C] (Microsoft Corporation) -- E:\Windows\SysWow64\dlcxgf.dll
[2011/09/29 03:47:28 | 000,696,320 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxhbn3.dll
[2011/09/29 03:47:28 | 000,684,032 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxcomc.dll
[2011/09/29 03:47:28 | 000,643,072 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxpmui.dll
[2011/09/29 03:47:28 | 000,585,728 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxlmpm.dll
[2011/09/29 03:47:28 | 000,532,480 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxcoms.exe
[2011/09/29 03:47:28 | 000,421,888 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxcomm.dll
[2011/09/29 03:47:28 | 000,413,696 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxinpa.dll
[2011/09/29 03:47:28 | 000,397,312 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxiesc.dll
[2011/09/29 03:47:28 | 000,381,832 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxcfg.exe
[2011/09/29 03:47:28 | 000,380,928 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxih.exe
[2011/09/29 03:47:28 | 000,176,128 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxppls.exe
[2011/09/29 03:47:28 | 000,163,840 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxprox.dll
[2011/09/29 03:47:28 | 000,094,208 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxpplc.dll
[2011/09/29 03:47:18 | 001,417,728 | ---- | C] ( ) -- E:\Windows\System32\dlcxserv.dll
[2011/09/29 03:47:18 | 001,099,264 | ---- | C] ( ) -- E:\Windows\System32\dlcxusb1.dll
[2011/09/29 03:47:18 | 000,983,107 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\dlcxgf.dll
[2011/09/29 03:47:18 | 000,695,808 | ---- | C] ( ) -- E:\Windows\System32\dlcxcomc.dll
[2011/09/29 03:47:18 | 000,659,456 | ---- | C] ( ) -- E:\Windows\System32\dlcxhbn3.dll
[2011/09/29 03:47:18 | 000,561,152 | ---- | C] ( ) -- E:\Windows\System32\dlcxcoms.exe
[2011/09/29 03:47:18 | 000,487,424 | ---- | C] ( ) -- E:\Windows\System32\dlcxlmpm.dll
[2011/09/29 03:47:18 | 000,409,600 | ---- | C] ( ) -- E:\Windows\System32\dlcxpmui.dll
[2011/09/29 03:47:18 | 000,305,152 | ---- | C] ( ) -- E:\Windows\System32\dlcxhcp.dll
[2011/09/29 03:47:18 | 000,249,856 | ---- | C] ( ) -- E:\Windows\System32\dlcxcomm.dll
[2011/09/29 03:47:18 | 000,238,592 | ---- | C] ( ) -- E:\Windows\System32\dlcxinpa.dll
[2011/09/29 03:47:18 | 000,235,912 | ---- | C] ( ) -- E:\Windows\System32\dlcxcfg.exe
[2011/09/29 03:47:18 | 000,228,352 | ---- | C] ( ) -- E:\Windows\System32\dlcxih.exe
[2011/09/29 03:47:18 | 000,226,816 | ---- | C] ( ) -- E:\Windows\System32\dlcxiesc.dll
[2011/09/29 03:47:18 | 000,035,328 | ---- | C] ( ) -- E:\Windows\System32\dlcxprox.dll
[2011/09/29 03:47:18 | 000,010,752 | ---- | C] ( ) -- E:\Windows\System32\dlcxpplc.dll
[2011/09/29 03:31:36 | 000,000,000 | ---D | C] -- E:\Users\Nick\AppData\Roaming\Yjec
[2011/09/29 03:31:36 | 000,000,000 | ---D | C] -- E:\Users\Nick\AppData\Roaming\Ucori
[2011/09/29 03:04:40 | 000,055,384 | ---- | C] (Sunbelt Software) -- E:\Windows\System32\drivers\SBREDrv.sys
[2011/09/29 03:02:09 | 000,069,376 | ---- | C] (Lavasoft AB) -- E:\Windows\System32\drivers\Lbd.sys
[2011/09/29 03:02:05 | 000,000,000 | ---D | C] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
[2011/09/29 03:02:05 | 000,000,000 | ---D | C] -- E:\ProgramData\Lavasoft
[2011/09/29 03:02:05 | 000,000,000 | ---D | C] -- E:\Program Files (x86)\Lavasoft
[2011/09/29 02:19:29 | 000,025,416 | ---- | C] (Malwarebytes Corporation) -- E:\Windows\System32\drivers\mbam.sys
[2011/09/29 01:19:01 | 000,000,000 | ---D | C] -- E:\Windows\system64
[2011/09/29 01:17:45 | 000,000,000 | ---D | C] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/09/29 01:17:40 | 000,000,000 | ---D | C] -- E:\Program Files (x86)\Malwarebytes' Anti-Malware
[2011/09/29 00:51:38 | 000,000,000 | ---D | C] -- E:\Windows\Minidump
[2011/09/27 20:16:26 | 000,000,000 | ---D | C] -- E:\Users\Nick\AppData\Roaming\Malwarebytes
[2011/09/27 20:16:21 | 000,000,000 | ---D | C] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mbam
[2011/09/27 20:16:21 | 000,000,000 | ---D | C] -- E:\ProgramData\Malwarebytes
[2011/09/27 20:16:18 | 000,000,000 | ---D | C] -- E:\Program Files (x86)\Mbam
[2011/09/24 15:28:52 | 000,000,000 | ---D | C] -- E:\Users\Nick\Documents\NetBeansProjects
[2011/09/22 02:00:13 | 000,000,000 | ---D | C] -- E:\Program Files\Dell Photo AIO Printer 926
[2011/09/22 01:59:09 | 000,000,000 | ---D | C] -- E:\Program Files (x86)\Dell Photo AIO Printer 926
[2011/09/22 01:58:28 | 001,462,272 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\dlcxg.dll
[2011/09/22 01:58:28 | 000,000,000 | ---D | C] -- E:\dell
[2011/09/17 06:01:04 | 000,000,000 | -HSD | C] -- E:\Config.Msi
[2011/09/14 19:26:41 | 000,000,000 | ---D | C] -- E:\Program Files\Oracle
[2011/09/12 00:43:06 | 000,000,000 | ---D | C] -- E:\Program Files (x86)\7-Zip
[1 E:\Windows\System32\*.tmp files -> E:\Windows\System32\*.tmp -> ]
[1 E:\Windows\*.tmp files -> E:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2011/10/01 00:28:19 | 000,067,584 | --S- | M] () -- E:\Windows\bootstat.dat
[2011/10/01 00:11:29 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
[2011/09/30 22:26:42 | 2140,467,199 | -HS- | M] () -- E:\hiberfil.sys
[2011/09/30 20:51:10 | 000,000,512 | ---- | M] () -- E:\Users\Nick\Desktop\MBR.dat
[2011/09/30 20:02:11 | 000,049,152 | ---- | M] () -- E:\Windows\SysWow64\mdhcp32.dll
[2011/09/30 20:01:07 | 000,607,260 | R--- | M] (Swearware) -- E:\Users\Nick\Desktop\dds.scr
[2011/09/30 19:40:19 | 000,302,592 | ---- | M] () -- E:\Users\Nick\Desktop\0qvjn8mr.exe
[2011/09/30 19:20:20 | 000,020,512 | -H-- | M] () -- E:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/09/30 19:20:20 | 000,020,512 | -H-- | M] () -- E:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/09/30 19:17:07 | 000,623,940 | ---- | M] () -- E:\Windows\System32\perfh009.dat
[2011/09/30 19:17:07 | 000,106,316 | ---- | M] () -- E:\Windows\System32\perfc009.dat
[2011/09/30 19:05:24 | 000,002,070 | ---- | M] () -- E:\Users\Public\Desktop\Avira AntiVir Control Center.lnk
[2011/09/30 19:05:24 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
[2011/09/30 10:22:05 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2011/09/29 03:48:19 | 000,016,554 | ---- | M] () -- E:\Windows\System32\LexFiles.ulf
[2011/09/29 03:47:29 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Printers
[2011/09/29 03:04:40 | 000,055,384 | ---- | M] (Sunbelt Software) -- E:\Windows\System32\drivers\SBREDrv.sys
[2011/09/29 03:02:10 | 000,001,060 | ---- | M] () -- E:\Users\Public\Desktop\Ad-Aware.lnk
[2011/09/29 02:19:32 | 000,001,113 | ---- | M] () -- E:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/09/29 02:19:32 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/09/29 01:35:05 | 000,000,000 | R--D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2011/09/29 01:34:33 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
[2011/09/29 01:34:33 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2011/09/29 01:34:33 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2011/09/29 01:34:33 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts
[2011/09/29 01:34:33 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
[2011/09/29 01:34:32 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Active@ ISO Burner
[2011/09/29 01:33:45 | 000,000,000 | R--D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Virtual PC
[2011/09/29 01:33:45 | 000,000,000 | R--D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
[2011/09/29 01:33:45 | 000,000,000 | R--D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector
[2011/09/29 01:33:45 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\WorldWinner Games
[2011/09/29 01:33:45 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\PeerBlock
[2011/09/29 01:33:45 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mbam
[2011/09/29 01:33:45 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5
[2011/09/29 00:57:49 | 379,142,297 | ---- | M] () -- E:\Windows\MEMORY.DMP
[2011/09/19 05:47:09 | 000,000,600 | ---- | M] () -- E:\Users\Nick\AppData\Local\PUTTY.RND
[2011/09/16 17:37:21 | 000,000,000 | -H-- | M] () -- E:\Users\Nick\Documents\Default.rdp
[2011/09/05 16:34:48 | 006,400,588 | ---- | M] () -- E:\Users\Nick\Desktop\AdvancedLinuxProgramming_Full.zip
[1 E:\Windows\System32\*.tmp files -> E:\Windows\System32\*.tmp -> ]
[1 E:\Windows\*.tmp files -> E:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011/09/30 20:51:10 | 000,000,512 | ---- | C] () -- E:\Users\Nick\Desktop\MBR.dat
[2011/09/30 20:02:11 | 000,049,152 | ---- | C] () -- E:\Windows\SysWow64\mdhcp32.dll
[2011/09/30 19:40:18 | 000,302,592 | ---- | C] () -- E:\Users\Nick\Desktop\0qvjn8mr.exe
[2011/09/30 19:05:24 | 000,002,070 | ---- | C] () -- E:\Users\Public\Desktop\Avira AntiVir Control Center.lnk
[2011/09/29 03:47:28 | 000,532,462 | ---- | C] () -- E:\Windows\SysWow64\dlcxhelp.chm
[2011/09/29 03:47:28 | 000,454,656 | ---- | C] () -- E:\Windows\SysWow64\dlcxutil.dll
[2011/09/29 03:47:28 | 000,274,432 | ---- | C] () -- E:\Windows\SysWow64\dlcxinst.dll
[2011/09/29 03:47:28 | 000,176,128 | ---- | C] () -- E:\Windows\SysWow64\dlcxinsb.dll
[2011/09/29 03:47:28 | 000,176,128 | ---- | C] () -- E:\Windows\SysWow64\dlcxins.dll
[2011/09/29 03:47:28 | 000,139,264 | ---- | C] () -- E:\Windows\SysWow64\dlcxjswr.dll
[2011/09/29 03:47:28 | 000,106,496 | ---- | C] () -- E:\Windows\SysWow64\dlcxinsr.dll
[2011/09/29 03:47:28 | 000,086,016 | ---- | C] () -- E:\Windows\SysWow64\dlcxcub.dll
[2011/09/29 03:47:28 | 000,073,728 | ---- | C] () -- E:\Windows\SysWow64\dlcxcu.dll
[2011/09/29 03:47:28 | 000,073,728 | ---- | C] () -- E:\Windows\SysWow64\DLCXcfg.dll
[2011/09/29 03:47:28 | 000,036,864 | ---- | C] () -- E:\Windows\SysWow64\dlcxcur.dll
[2011/09/29 03:47:28 | 000,001,840 | ---- | C] () -- E:\Windows\SysWow64\dlcx.loc
[2011/09/29 03:47:18 | 000,642,560 | ---- | C] () -- E:\Windows\System32\dlcxutil.dll
[2011/09/29 03:47:18 | 000,532,462 | ---- | C] () -- E:\Windows\System32\dlcxhelp.chm
[2011/09/29 03:47:18 | 000,256,512 | ---- | C] () -- E:\Windows\System32\dlcxgrd.dll
[2011/09/29 03:47:18 | 000,235,008 | ---- | C] () -- E:\Windows\System32\dlcxins.dll
[2011/09/29 03:47:18 | 000,194,048 | ---- | C] () -- E:\Windows\System32\dlcxinst.dll
[2011/09/29 03:47:18 | 000,158,208 | ---- | C] () -- E:\Windows\System32\dlcxinsb.dll
[2011/09/29 03:47:18 | 000,122,368 | ---- | C] () -- E:\Windows\System32\dlcxjswr.dll
[2011/09/29 03:47:18 | 000,095,744 | ---- | C] () -- E:\Windows\System32\dlcxcu.dll
[2011/09/29 03:47:18 | 000,090,112 | ---- | C] () -- E:\Windows\System32\dlcxinsr.dll
[2011/09/29 03:47:18 | 000,068,096 | ---- | C] () -- E:\Windows\System32\dlcxcub.dll
[2011/09/29 03:47:18 | 000,022,016 | ---- | C] () -- E:\Windows\System32\dlcxcur.dll
[2011/09/29 03:47:18 | 000,016,554 | ---- | C] () -- E:\Windows\System32\LexFiles.ulf
[2011/09/29 03:47:18 | 000,001,840 | ---- | C] () -- E:\Windows\System32\dlcx.loc
[2011/09/29 03:45:53 | 000,415,744 | ---- | C] () -- E:\Windows\System32\dlcxcoin.dll
[2011/09/29 03:02:10 | 000,001,060 | ---- | C] () -- E:\Users\Public\Desktop\Ad-Aware.lnk
[2011/09/29 02:19:32 | 000,001,113 | ---- | C] () -- E:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/09/29 00:51:18 | 379,142,297 | ---- | C] () -- E:\Windows\MEMORY.DMP
[2011/09/22 01:58:29 | 000,109,056 | ---- | C] () -- E:\Windows\System32\dlcxvs.dll
[2011/09/16 17:37:21 | 000,000,000 | -H-- | C] () -- E:\Users\Nick\Documents\Default.rdp
[2011/09/11 16:55:59 | 000,000,600 | ---- | C] () -- E:\Users\Nick\AppData\Local\PUTTY.RND
[2011/09/05 16:34:43 | 006,400,588 | ---- | C] () -- E:\Users\Nick\Desktop\AdvancedLinuxProgramming_Full.zip
[2010/06/19 17:58:55 | 000,007,600 | ---- | C] () -- E:\Users\Nick\AppData\Local\Resmon.ResmonCfg
[2010/06/06 16:27:49 | 000,004,608 | ---- | C] () -- E:\Users\Nick\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/06/03 17:22:11 | 000,000,209 | ---- | C] () -- E:\Windows\ODBCINST.INI
[2010/06/03 04:22:54 | 000,103,736 | ---- | C] () -- E:\Windows\SysWow64\PnkBstrB.exe
[2010/06/03 04:22:53 | 000,669,184 | ---- | C] () -- E:\Windows\SysWow64\pbsvc.exe
[2010/06/03 04:22:53 | 000,066,872 | ---- | C] () -- E:\Windows\SysWow64\PnkBstrA.exe
[2010/06/02 23:12:32 | 000,000,000 | ---- | C] () -- E:\Windows\ativpsrm.bin
[2010/06/02 22:57:43 | 000,024,576 | R--- | C] () -- E:\Windows\SysWow64\AsIO.dll
[2010/06/02 22:57:43 | 000,013,440 | R--- | C] () -- E:\Windows\SysWow64\drivers\AsIO.sys
[2010/06/02 22:57:40 | 000,011,832 | ---- | C] () -- E:\Windows\SysWow64\drivers\AsInsHelp64.sys
[2010/06/02 22:57:40 | 000,010,216 | ---- | C] () -- E:\Windows\SysWow64\drivers\AsInsHelp32.sys
[2010/06/02 10:44:14 | 000,001,769 | ---- | C] () -- E:\Windows\Language_trs.ini
[2010/06/02 10:44:12 | 000,031,959 | ---- | C] () -- E:\Windows\Ascd_tmp.ini
[2010/04/28 17:17:50 | 000,002,110 | ---- | C] () -- E:\Windows\SysWow64\atipblag.dat
[2009/07/14 01:38:36 | 000,067,584 | --S- | C] () -- E:\Windows\bootstat.dat
[2009/07/13 22:35:51 | 000,000,741 | ---- | C] () -- E:\Windows\SysWow64\NOISE.DAT
[2009/07/13 22:34:42 | 000,215,943 | ---- | C] () -- E:\Windows\SysWow64\dssec.dat
[2009/07/13 20:10:29 | 000,043,131 | ---- | C] () -- E:\Windows\mib.bin
[2009/07/13 20:02:54 | 000,245,248 | ---- | C] () -- E:\Windows\SysWow64\DShowRdpFilter.dll
[2009/07/13 19:42:10 | 000,064,000 | ---- | C] () -- E:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 18:25:04 | 000,197,632 | ---- | C] () -- E:\Windows\SysWow64\ir32_32.dll
[2009/07/13 17:03:59 | 000,364,544 | ---- | C] () -- E:\Windows\SysWow64\msjetoledb40.dll
[2009/06/10 17:26:10 | 000,673,088 | ---- | C] () -- E:\Windows\SysWow64\mlang.dat
[2009/04/02 08:30:14 | 000,010,296 | ---- | C] () -- E:\Windows\SysWow64\drivers\ASUSHWIO.SYS
========== LOP Check ==========
[2009/07/14 01:08:56 | 000,000,000 | -HSD | M] -- E:\ProgramData\Application Data
[2010/06/03 05:31:46 | 000,000,000 | ---D | M] -- E:\ProgramData\ASUS OC Profiles
[2010/09/04 17:07:15 | 000,000,000 | ---D | M] -- E:\ProgramData\Canneverbe Limited
[2010/11/30 04:59:12 | 000,000,000 | ---D | M] -- E:\ProgramData\Codemasters
[2009/07/14 01:08:56 | 000,000,000 | -HSD | M] -- E:\ProgramData\Desktop
[2009/07/14 01:08:56 | 000,000,000 | -HSD | M] -- E:\ProgramData\Documents
[2011/09/29 01:34:32 | 000,000,000 | ---D | M] -- E:\ProgramData\Electronic Arts
[2009/07/14 01:08:56 | 000,000,000 | -HSD | M] -- E:\ProgramData\Favorites
[2011/05/04 18:59:13 | 000,000,000 | ---D | M] -- E:\ProgramData\PopCap Games
[2011/05/02 15:17:33 | 000,000,000 | ---D | M] -- E:\ProgramData\SmartSound Software Inc
[2010/06/12 15:37:23 | 000,000,000 | ---D | M] -- E:\ProgramData\SOUNDGRAPH
[2011/09/29 01:27:03 | 000,000,000 | ---D | M] -- E:\ProgramData\Stardock
[2009/07/14 01:08:56 | 000,000,000 | -HSD | M] -- E:\ProgramData\Start Menu
[2011/05/04 17:38:39 | 000,000,000 | ---D | M] -- E:\ProgramData\Steam
[2009/07/14 01:08:56 | 000,000,000 | -HSD | M] -- E:\ProgramData\Templates
[2011/06/26 22:02:20 | 000,000,000 | ---D | M] -- E:\ProgramData\Ubisoft
[2011/09/12 00:44:23 | 000,000,000 | ---D | M] -- E:\ProgramData\WinZip
[2011/08/13 03:39:12 | 000,000,000 | ---D | M] -- E:\ProgramData\WorldWinner
[2011/09/29 01:34:33 | 000,000,000 | -H-D | M] -- E:\ProgramData\{76C80417-0C74-4A18-B59E-593FCE06C2ED}
[2011/09/29 01:27:06 | 000,000,000 | ---D | M] -- E:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
[2009/07/14 01:08:49 | 000,014,586 | ---- | M] () -- E:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
< End of report >
OTLPE by OldTimer - Version 3.1.48.0 Folder = X:\Programs\OTLPE
64bit-Windows 7 Professional (Version = 6.1.7600) - Type = System
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
3.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 90.00% Memory free
3.00 Gb Paging File | 3.00 Gb Available in Paging File | 98.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = E: | %SystemRoot% = E:\Windows | %ProgramFiles% = E:\Program Files (x86)
Drive C: | 100.00 Mb Total Space | 74.34 Mb Free Space | 74.35% Space Free | Partition Type: NTFS
Drive E: | 931.42 Gb Total Space | 262.92 Gb Free Space | 28.23% Space Free | Partition Type: NTFS
Drive X: | 436.59 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet002
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2010/05/04 22:15:10 | 000,202,752 | ---- | M] (AMD) [Auto] -- E:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009/07/13 21:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/13 21:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2006/10/11 20:36:58 | 000,561,152 | ---- | M] ( ) [Auto] -- E:\Windows\System32\dlcxcoms.exe -- (dlcx_device)
SRV - [2011/09/29 03:04:07 | 002,151,640 | ---- | M] (Lavasoft Limited) [Auto] -- E:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2011/07/21 15:12:16 | 000,269,480 | ---- | M] (Avira GmbH) [Auto] -- E:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011/04/21 10:53:48 | 000,136,360 | ---- | M] (Avira GmbH) [Auto] -- E:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2010/06/03 17:12:47 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand] -- E:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010/06/03 04:22:53 | 000,066,872 | ---- | M] () [Auto] -- E:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2010/03/18 16:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto] -- E:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/08/19 07:56:38 | 000,090,112 | R--- | M] (ASUSTeK Computer Inc.) [Auto] -- E:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe -- (AsSysCtrlService)
SRV - [2009/07/16 20:04:16 | 000,316,664 | ---- | M] (Valve Corporation) [On_Demand] -- E:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled] -- E:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/06/04 22:03:06 | 000,354,840 | ---- | M] (Intel Corporation) [Auto] -- E:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R)
SRV - [2007/09/11 03:45:04 | 000,124,832 | ---- | M] () [Auto] -- E:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor6.0)
SRV - [2006/10/11 19:48:50 | 000,532,480 | ---- | M] ( ) [Auto] -- E:\Windows\SysWow64\dlcxcoms.exe -- (dlcx_device)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2011/08/18 18:25:12 | 000,069,376 | ---- | M] (Lavasoft AB) [File_System | Boot] -- E:\Windows\System32\drivers\Lbd.sys -- (Lbd)
DRV:64bit: - [2011/07/21 15:15:16 | 000,123,784 | ---- | M] (Avira GmbH) [Kernel | System] -- E:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV:64bit: - [2011/07/21 15:15:15 | 000,088,288 | ---- | M] (Avira GmbH) [File_System | Auto] -- E:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV:64bit: - [2010/06/10 02:44:27 | 000,834,544 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot] -- E:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010/06/03 17:10:12 | 000,052,856 | ---- | M] (Sonic Solutions) [Kernel | Boot] -- E:\Windows\System32\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2010/05/04 22:47:08 | 006,789,632 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- E:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2010/05/04 21:23:24 | 000,221,184 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand] -- E:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2010/04/07 15:14:50 | 000,446,304 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand] -- E:\Windows\System32\drivers\netr6164.sys -- (rt61x64)
DRV:64bit: - [2010/03/31 02:35:04 | 000,020,968 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | Auto] -- E:\Windows\System32\drivers\cpuz133_x64.sys -- (cpuz133)
DRV:64bit: - [2010/03/09 06:21:42 | 000,123,408 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand] -- E:\Windows\System32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2010/01/22 15:22:22 | 000,180,224 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2010/01/22 15:22:18 | 000,077,824 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2009/12/25 03:05:40 | 000,297,512 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot] -- E:\Windows\System32\drivers\mv91xx.sys -- (mv91xx)
DRV:64bit: - [2009/07/15 23:38:40 | 000,015,416 | ---- | M] () [Kernel | On_Demand] -- E:\Windows\System32\drivers\ASACPI.sys -- (MTsensor)
DRV:64bit: - [2009/07/13 20:06:43 | 000,060,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\61883.sys -- (61883)
DRV:64bit: - [2009/07/13 20:06:43 | 000,048,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\avc.sys -- (Avc)
DRV:64bit: - [2009/07/13 20:06:42 | 000,061,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\msdv.sys -- (MSDV)
DRV:64bit: - [2009/06/10 16:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand] -- E:\Windows\System32\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/05/20 05:10:00 | 000,393,728 | ---- | M] (Marvell) [Kernel | On_Demand] -- E:\Windows\System32\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2007/01/26 04:04:36 | 000,009,600 | ---- | M] () [Kernel | On_Demand] -- E:\Windows\System32\drivers\whfltr2k.sys -- (whfltr2k)
DRV - [2011/09/29 03:04:40 | 000,017,152 | ---- | M] () [Kernel | On_Demand] -- E:\Program Files (x86)\Lavasoft\Ad-Aware\kernexplorer64.sys -- (Lavasoft Kernexplorer)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Nick_ON_E\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKU\Nick_ON_E\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKU\Nick_ON_E\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = D3 B2 83 D8 74 7E CC 01 [binary data]
IE - HKU\Nick_ON_E\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Nick_ON_E\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: File not found
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer: E:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=:
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0: E:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE: File not found
FF - HKEY_LOCAL_MACHINE\software\wow6432node\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011/09/29 02:15:48 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\wow6432node\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011/09/29 01:34:29 | 000,000,000 | ---D | M]
[2011/09/30 19:06:40 | 000,000,000 | ---D | M] (No name found) -- E:\Program Files (x86)\Mozilla Firefox\extensions
[2010/06/03 05:09:54 | 000,000,000 | ---D | M] (Java Console) -- E:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2011/09/29 01:34:11 | 000,000,000 | ---D | M] (Java Console) -- E:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2011/09/29 01:34:11 | 000,000,000 | ---D | M] (Java Console) -- E:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}
[2010/06/03 05:09:50 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- E:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
Hosts file not found
O4:64bit: - HKLM..\Run: [DLCXCATS] E:\Windows\System32\spool\DRIVERS\x64\3\DLCXtime.DLL ()
O4:64bit: - HKLM..\Run: [dlcxmon.exe] E:\Program Files (x86)\Dell Photo AIO Printer 926\dlcxmon.exe ()
O4:64bit: - HKLM..\Run: [IAAnotif] E:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [MemoryCardManager] E:\Program Files (x86)\Dell Photo AIO Printer 926\memcard.exe ()
O4:64bit: - HKLM..\Run: [RtHDVCpl] E:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Adobe Photo Downloader] E:\Program Files (x86)\Adobe\Photoshop Elements 6.0\apdproxy.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avgnt] E:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [Cpu Level Up help] E:\Program Files (x86)\ASUS\AI Suite\CpuLevelUpHelp.exe ()
O4 - HKLM..\Run: [NUSB3MON] E:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (NEC Electronics Corporation)
O4 - HKLM..\Run: [QFan Help] E:\Program Files (x86)\ASUS\AI Suite\QFan3\QFanHelp.exe (ASUSTeK Computer Inc.)
O4 - HKLM..\Run: [StartCCC] E:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [WheelMouse] E:\Advanced Wheel Mouse\wh_exec.exe ()
O4 - HKU\LocalService_ON_E..\Run: [Sidebar] E:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\NetworkService_ON_E..\Run: [Sidebar] E:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\LocalService_ON_E..\RunOnce: [mctadmin] File not found
O4 - HKU\NetworkService_ON_E..\RunOnce: [mctadmin] File not found
O4 - Startup: Error locating startup folders.
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\Nick_ON_E\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - E:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - E:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13:64bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.10.1
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - E:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - E:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - E:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/03/24 07:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
64bit: O35 - HKLM\..comfile [open] -- "%1" %* File not found
64bit: O35 - HKLM\..exefile [open] -- "%1" %* File not found
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011/09/30 22:23:24 | 000,000,000 | ---D | C] -- E:\Windows\temp
[2011/09/30 22:14:44 | 000,000,000 | --SD | C] -- E:\ComboFix
[2011/09/30 20:57:45 | 000,000,000 | ---D | C] -- E:\Windows\ERDNT
[2011/09/30 20:57:41 | 000,000,000 | ---D | C] -- E:\Qoobox
[2011/09/30 20:01:06 | 000,607,260 | R--- | C] (Swearware) -- E:\Users\Nick\Desktop\dds.scr
[2011/09/30 19:26:09 | 000,000,000 | ---D | C] -- E:\Users\Nick\AppData\Roaming\Avira
[2011/09/30 19:05:24 | 000,000,000 | ---D | C] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
[2011/09/30 19:05:22 | 000,123,784 | ---- | C] (Avira GmbH) -- E:\Windows\System32\drivers\avipbb.sys
[2011/09/30 19:05:22 | 000,088,288 | ---- | C] (Avira GmbH) -- E:\Windows\System32\drivers\avgntflt.sys
[2011/09/30 19:05:22 | 000,000,000 | ---D | C] -- E:\ProgramData\Avira
[2011/09/30 19:05:22 | 000,000,000 | ---D | C] -- E:\Program Files (x86)\Avira
[2011/09/29 16:48:02 | 000,295,264 | ---- | C] (Microsoft Corporation) -- E:\Windows\SysWow64\PresentationHost.exe
[2011/09/29 16:48:02 | 000,099,176 | ---- | C] (Microsoft Corporation) -- E:\Windows\SysWow64\PresentationHostProxy.dll
[2011/09/29 16:48:02 | 000,049,472 | ---- | C] (Microsoft Corporation) -- E:\Windows\SysWow64\netfxperf.dll
[2011/09/29 16:48:01 | 001,942,856 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\dfshim.dll
[2011/09/29 16:48:01 | 001,130,824 | ---- | C] (Microsoft Corporation) -- E:\Windows\SysWow64\dfshim.dll
[2011/09/29 16:48:01 | 000,320,352 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\PresentationHost.exe
[2011/09/29 16:48:01 | 000,109,912 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\PresentationHostProxy.dll
[2011/09/29 16:48:01 | 000,048,960 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\netfxperf.dll
[2011/09/29 03:47:29 | 000,000,000 | ---D | C] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Printers
[2011/09/29 03:47:28 | 001,224,704 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxserv.dll
[2011/09/29 03:47:28 | 000,991,232 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxusb1.dll
[2011/09/29 03:47:28 | 000,983,107 | ---- | C] (Microsoft Corporation) -- E:\Windows\SysWow64\dlcxgf.dll
[2011/09/29 03:47:28 | 000,696,320 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxhbn3.dll
[2011/09/29 03:47:28 | 000,684,032 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxcomc.dll
[2011/09/29 03:47:28 | 000,643,072 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxpmui.dll
[2011/09/29 03:47:28 | 000,585,728 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxlmpm.dll
[2011/09/29 03:47:28 | 000,532,480 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxcoms.exe
[2011/09/29 03:47:28 | 000,421,888 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxcomm.dll
[2011/09/29 03:47:28 | 000,413,696 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxinpa.dll
[2011/09/29 03:47:28 | 000,397,312 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxiesc.dll
[2011/09/29 03:47:28 | 000,381,832 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxcfg.exe
[2011/09/29 03:47:28 | 000,380,928 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxih.exe
[2011/09/29 03:47:28 | 000,176,128 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxppls.exe
[2011/09/29 03:47:28 | 000,163,840 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxprox.dll
[2011/09/29 03:47:28 | 000,094,208 | ---- | C] ( ) -- E:\Windows\SysWow64\dlcxpplc.dll
[2011/09/29 03:47:18 | 001,417,728 | ---- | C] ( ) -- E:\Windows\System32\dlcxserv.dll
[2011/09/29 03:47:18 | 001,099,264 | ---- | C] ( ) -- E:\Windows\System32\dlcxusb1.dll
[2011/09/29 03:47:18 | 000,983,107 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\dlcxgf.dll
[2011/09/29 03:47:18 | 000,695,808 | ---- | C] ( ) -- E:\Windows\System32\dlcxcomc.dll
[2011/09/29 03:47:18 | 000,659,456 | ---- | C] ( ) -- E:\Windows\System32\dlcxhbn3.dll
[2011/09/29 03:47:18 | 000,561,152 | ---- | C] ( ) -- E:\Windows\System32\dlcxcoms.exe
[2011/09/29 03:47:18 | 000,487,424 | ---- | C] ( ) -- E:\Windows\System32\dlcxlmpm.dll
[2011/09/29 03:47:18 | 000,409,600 | ---- | C] ( ) -- E:\Windows\System32\dlcxpmui.dll
[2011/09/29 03:47:18 | 000,305,152 | ---- | C] ( ) -- E:\Windows\System32\dlcxhcp.dll
[2011/09/29 03:47:18 | 000,249,856 | ---- | C] ( ) -- E:\Windows\System32\dlcxcomm.dll
[2011/09/29 03:47:18 | 000,238,592 | ---- | C] ( ) -- E:\Windows\System32\dlcxinpa.dll
[2011/09/29 03:47:18 | 000,235,912 | ---- | C] ( ) -- E:\Windows\System32\dlcxcfg.exe
[2011/09/29 03:47:18 | 000,228,352 | ---- | C] ( ) -- E:\Windows\System32\dlcxih.exe
[2011/09/29 03:47:18 | 000,226,816 | ---- | C] ( ) -- E:\Windows\System32\dlcxiesc.dll
[2011/09/29 03:47:18 | 000,035,328 | ---- | C] ( ) -- E:\Windows\System32\dlcxprox.dll
[2011/09/29 03:47:18 | 000,010,752 | ---- | C] ( ) -- E:\Windows\System32\dlcxpplc.dll
[2011/09/29 03:31:36 | 000,000,000 | ---D | C] -- E:\Users\Nick\AppData\Roaming\Yjec
[2011/09/29 03:31:36 | 000,000,000 | ---D | C] -- E:\Users\Nick\AppData\Roaming\Ucori
[2011/09/29 03:04:40 | 000,055,384 | ---- | C] (Sunbelt Software) -- E:\Windows\System32\drivers\SBREDrv.sys
[2011/09/29 03:02:09 | 000,069,376 | ---- | C] (Lavasoft AB) -- E:\Windows\System32\drivers\Lbd.sys
[2011/09/29 03:02:05 | 000,000,000 | ---D | C] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
[2011/09/29 03:02:05 | 000,000,000 | ---D | C] -- E:\ProgramData\Lavasoft
[2011/09/29 03:02:05 | 000,000,000 | ---D | C] -- E:\Program Files (x86)\Lavasoft
[2011/09/29 02:19:29 | 000,025,416 | ---- | C] (Malwarebytes Corporation) -- E:\Windows\System32\drivers\mbam.sys
[2011/09/29 01:19:01 | 000,000,000 | ---D | C] -- E:\Windows\system64
[2011/09/29 01:17:45 | 000,000,000 | ---D | C] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/09/29 01:17:40 | 000,000,000 | ---D | C] -- E:\Program Files (x86)\Malwarebytes' Anti-Malware
[2011/09/29 00:51:38 | 000,000,000 | ---D | C] -- E:\Windows\Minidump
[2011/09/27 20:16:26 | 000,000,000 | ---D | C] -- E:\Users\Nick\AppData\Roaming\Malwarebytes
[2011/09/27 20:16:21 | 000,000,000 | ---D | C] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mbam
[2011/09/27 20:16:21 | 000,000,000 | ---D | C] -- E:\ProgramData\Malwarebytes
[2011/09/27 20:16:18 | 000,000,000 | ---D | C] -- E:\Program Files (x86)\Mbam
[2011/09/24 15:28:52 | 000,000,000 | ---D | C] -- E:\Users\Nick\Documents\NetBeansProjects
[2011/09/22 02:00:13 | 000,000,000 | ---D | C] -- E:\Program Files\Dell Photo AIO Printer 926
[2011/09/22 01:59:09 | 000,000,000 | ---D | C] -- E:\Program Files (x86)\Dell Photo AIO Printer 926
[2011/09/22 01:58:28 | 001,462,272 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\dlcxg.dll
[2011/09/22 01:58:28 | 000,000,000 | ---D | C] -- E:\dell
[2011/09/17 06:01:04 | 000,000,000 | -HSD | C] -- E:\Config.Msi
[2011/09/14 19:26:41 | 000,000,000 | ---D | C] -- E:\Program Files\Oracle
[2011/09/12 00:43:06 | 000,000,000 | ---D | C] -- E:\Program Files (x86)\7-Zip
[1 E:\Windows\System32\*.tmp files -> E:\Windows\System32\*.tmp -> ]
[1 E:\Windows\*.tmp files -> E:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2011/10/01 00:28:19 | 000,067,584 | --S- | M] () -- E:\Windows\bootstat.dat
[2011/10/01 00:11:29 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
[2011/09/30 22:26:42 | 2140,467,199 | -HS- | M] () -- E:\hiberfil.sys
[2011/09/30 20:51:10 | 000,000,512 | ---- | M] () -- E:\Users\Nick\Desktop\MBR.dat
[2011/09/30 20:02:11 | 000,049,152 | ---- | M] () -- E:\Windows\SysWow64\mdhcp32.dll
[2011/09/30 20:01:07 | 000,607,260 | R--- | M] (Swearware) -- E:\Users\Nick\Desktop\dds.scr
[2011/09/30 19:40:19 | 000,302,592 | ---- | M] () -- E:\Users\Nick\Desktop\0qvjn8mr.exe
[2011/09/30 19:20:20 | 000,020,512 | -H-- | M] () -- E:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/09/30 19:20:20 | 000,020,512 | -H-- | M] () -- E:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/09/30 19:17:07 | 000,623,940 | ---- | M] () -- E:\Windows\System32\perfh009.dat
[2011/09/30 19:17:07 | 000,106,316 | ---- | M] () -- E:\Windows\System32\perfc009.dat
[2011/09/30 19:05:24 | 000,002,070 | ---- | M] () -- E:\Users\Public\Desktop\Avira AntiVir Control Center.lnk
[2011/09/30 19:05:24 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
[2011/09/30 10:22:05 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2011/09/29 03:48:19 | 000,016,554 | ---- | M] () -- E:\Windows\System32\LexFiles.ulf
[2011/09/29 03:47:29 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Printers
[2011/09/29 03:04:40 | 000,055,384 | ---- | M] (Sunbelt Software) -- E:\Windows\System32\drivers\SBREDrv.sys
[2011/09/29 03:02:10 | 000,001,060 | ---- | M] () -- E:\Users\Public\Desktop\Ad-Aware.lnk
[2011/09/29 02:19:32 | 000,001,113 | ---- | M] () -- E:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/09/29 02:19:32 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/09/29 01:35:05 | 000,000,000 | R--D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2011/09/29 01:34:33 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
[2011/09/29 01:34:33 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2011/09/29 01:34:33 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2011/09/29 01:34:33 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts
[2011/09/29 01:34:33 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
[2011/09/29 01:34:32 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Active@ ISO Burner
[2011/09/29 01:33:45 | 000,000,000 | R--D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Virtual PC
[2011/09/29 01:33:45 | 000,000,000 | R--D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
[2011/09/29 01:33:45 | 000,000,000 | R--D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector
[2011/09/29 01:33:45 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\WorldWinner Games
[2011/09/29 01:33:45 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\PeerBlock
[2011/09/29 01:33:45 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mbam
[2011/09/29 01:33:45 | 000,000,000 | ---D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5
[2011/09/29 00:57:49 | 379,142,297 | ---- | M] () -- E:\Windows\MEMORY.DMP
[2011/09/19 05:47:09 | 000,000,600 | ---- | M] () -- E:\Users\Nick\AppData\Local\PUTTY.RND
[2011/09/16 17:37:21 | 000,000,000 | -H-- | M] () -- E:\Users\Nick\Documents\Default.rdp
[2011/09/05 16:34:48 | 006,400,588 | ---- | M] () -- E:\Users\Nick\Desktop\AdvancedLinuxProgramming_Full.zip
[1 E:\Windows\System32\*.tmp files -> E:\Windows\System32\*.tmp -> ]
[1 E:\Windows\*.tmp files -> E:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011/09/30 20:51:10 | 000,000,512 | ---- | C] () -- E:\Users\Nick\Desktop\MBR.dat
[2011/09/30 20:02:11 | 000,049,152 | ---- | C] () -- E:\Windows\SysWow64\mdhcp32.dll
[2011/09/30 19:40:18 | 000,302,592 | ---- | C] () -- E:\Users\Nick\Desktop\0qvjn8mr.exe
[2011/09/30 19:05:24 | 000,002,070 | ---- | C] () -- E:\Users\Public\Desktop\Avira AntiVir Control Center.lnk
[2011/09/29 03:47:28 | 000,532,462 | ---- | C] () -- E:\Windows\SysWow64\dlcxhelp.chm
[2011/09/29 03:47:28 | 000,454,656 | ---- | C] () -- E:\Windows\SysWow64\dlcxutil.dll
[2011/09/29 03:47:28 | 000,274,432 | ---- | C] () -- E:\Windows\SysWow64\dlcxinst.dll
[2011/09/29 03:47:28 | 000,176,128 | ---- | C] () -- E:\Windows\SysWow64\dlcxinsb.dll
[2011/09/29 03:47:28 | 000,176,128 | ---- | C] () -- E:\Windows\SysWow64\dlcxins.dll
[2011/09/29 03:47:28 | 000,139,264 | ---- | C] () -- E:\Windows\SysWow64\dlcxjswr.dll
[2011/09/29 03:47:28 | 000,106,496 | ---- | C] () -- E:\Windows\SysWow64\dlcxinsr.dll
[2011/09/29 03:47:28 | 000,086,016 | ---- | C] () -- E:\Windows\SysWow64\dlcxcub.dll
[2011/09/29 03:47:28 | 000,073,728 | ---- | C] () -- E:\Windows\SysWow64\dlcxcu.dll
[2011/09/29 03:47:28 | 000,073,728 | ---- | C] () -- E:\Windows\SysWow64\DLCXcfg.dll
[2011/09/29 03:47:28 | 000,036,864 | ---- | C] () -- E:\Windows\SysWow64\dlcxcur.dll
[2011/09/29 03:47:28 | 000,001,840 | ---- | C] () -- E:\Windows\SysWow64\dlcx.loc
[2011/09/29 03:47:18 | 000,642,560 | ---- | C] () -- E:\Windows\System32\dlcxutil.dll
[2011/09/29 03:47:18 | 000,532,462 | ---- | C] () -- E:\Windows\System32\dlcxhelp.chm
[2011/09/29 03:47:18 | 000,256,512 | ---- | C] () -- E:\Windows\System32\dlcxgrd.dll
[2011/09/29 03:47:18 | 000,235,008 | ---- | C] () -- E:\Windows\System32\dlcxins.dll
[2011/09/29 03:47:18 | 000,194,048 | ---- | C] () -- E:\Windows\System32\dlcxinst.dll
[2011/09/29 03:47:18 | 000,158,208 | ---- | C] () -- E:\Windows\System32\dlcxinsb.dll
[2011/09/29 03:47:18 | 000,122,368 | ---- | C] () -- E:\Windows\System32\dlcxjswr.dll
[2011/09/29 03:47:18 | 000,095,744 | ---- | C] () -- E:\Windows\System32\dlcxcu.dll
[2011/09/29 03:47:18 | 000,090,112 | ---- | C] () -- E:\Windows\System32\dlcxinsr.dll
[2011/09/29 03:47:18 | 000,068,096 | ---- | C] () -- E:\Windows\System32\dlcxcub.dll
[2011/09/29 03:47:18 | 000,022,016 | ---- | C] () -- E:\Windows\System32\dlcxcur.dll
[2011/09/29 03:47:18 | 000,016,554 | ---- | C] () -- E:\Windows\System32\LexFiles.ulf
[2011/09/29 03:47:18 | 000,001,840 | ---- | C] () -- E:\Windows\System32\dlcx.loc
[2011/09/29 03:45:53 | 000,415,744 | ---- | C] () -- E:\Windows\System32\dlcxcoin.dll
[2011/09/29 03:02:10 | 000,001,060 | ---- | C] () -- E:\Users\Public\Desktop\Ad-Aware.lnk
[2011/09/29 02:19:32 | 000,001,113 | ---- | C] () -- E:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/09/29 00:51:18 | 379,142,297 | ---- | C] () -- E:\Windows\MEMORY.DMP
[2011/09/22 01:58:29 | 000,109,056 | ---- | C] () -- E:\Windows\System32\dlcxvs.dll
[2011/09/16 17:37:21 | 000,000,000 | -H-- | C] () -- E:\Users\Nick\Documents\Default.rdp
[2011/09/11 16:55:59 | 000,000,600 | ---- | C] () -- E:\Users\Nick\AppData\Local\PUTTY.RND
[2011/09/05 16:34:43 | 006,400,588 | ---- | C] () -- E:\Users\Nick\Desktop\AdvancedLinuxProgramming_Full.zip
[2010/06/19 17:58:55 | 000,007,600 | ---- | C] () -- E:\Users\Nick\AppData\Local\Resmon.ResmonCfg
[2010/06/06 16:27:49 | 000,004,608 | ---- | C] () -- E:\Users\Nick\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/06/03 17:22:11 | 000,000,209 | ---- | C] () -- E:\Windows\ODBCINST.INI
[2010/06/03 04:22:54 | 000,103,736 | ---- | C] () -- E:\Windows\SysWow64\PnkBstrB.exe
[2010/06/03 04:22:53 | 000,669,184 | ---- | C] () -- E:\Windows\SysWow64\pbsvc.exe
[2010/06/03 04:22:53 | 000,066,872 | ---- | C] () -- E:\Windows\SysWow64\PnkBstrA.exe
[2010/06/02 23:12:32 | 000,000,000 | ---- | C] () -- E:\Windows\ativpsrm.bin
[2010/06/02 22:57:43 | 000,024,576 | R--- | C] () -- E:\Windows\SysWow64\AsIO.dll
[2010/06/02 22:57:43 | 000,013,440 | R--- | C] () -- E:\Windows\SysWow64\drivers\AsIO.sys
[2010/06/02 22:57:40 | 000,011,832 | ---- | C] () -- E:\Windows\SysWow64\drivers\AsInsHelp64.sys
[2010/06/02 22:57:40 | 000,010,216 | ---- | C] () -- E:\Windows\SysWow64\drivers\AsInsHelp32.sys
[2010/06/02 10:44:14 | 000,001,769 | ---- | C] () -- E:\Windows\Language_trs.ini
[2010/06/02 10:44:12 | 000,031,959 | ---- | C] () -- E:\Windows\Ascd_tmp.ini
[2010/04/28 17:17:50 | 000,002,110 | ---- | C] () -- E:\Windows\SysWow64\atipblag.dat
[2009/07/14 01:38:36 | 000,067,584 | --S- | C] () -- E:\Windows\bootstat.dat
[2009/07/13 22:35:51 | 000,000,741 | ---- | C] () -- E:\Windows\SysWow64\NOISE.DAT
[2009/07/13 22:34:42 | 000,215,943 | ---- | C] () -- E:\Windows\SysWow64\dssec.dat
[2009/07/13 20:10:29 | 000,043,131 | ---- | C] () -- E:\Windows\mib.bin
[2009/07/13 20:02:54 | 000,245,248 | ---- | C] () -- E:\Windows\SysWow64\DShowRdpFilter.dll
[2009/07/13 19:42:10 | 000,064,000 | ---- | C] () -- E:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 18:25:04 | 000,197,632 | ---- | C] () -- E:\Windows\SysWow64\ir32_32.dll
[2009/07/13 17:03:59 | 000,364,544 | ---- | C] () -- E:\Windows\SysWow64\msjetoledb40.dll
[2009/06/10 17:26:10 | 000,673,088 | ---- | C] () -- E:\Windows\SysWow64\mlang.dat
[2009/04/02 08:30:14 | 000,010,296 | ---- | C] () -- E:\Windows\SysWow64\drivers\ASUSHWIO.SYS
========== LOP Check ==========
[2009/07/14 01:08:56 | 000,000,000 | -HSD | M] -- E:\ProgramData\Application Data
[2010/06/03 05:31:46 | 000,000,000 | ---D | M] -- E:\ProgramData\ASUS OC Profiles
[2010/09/04 17:07:15 | 000,000,000 | ---D | M] -- E:\ProgramData\Canneverbe Limited
[2010/11/30 04:59:12 | 000,000,000 | ---D | M] -- E:\ProgramData\Codemasters
[2009/07/14 01:08:56 | 000,000,000 | -HSD | M] -- E:\ProgramData\Desktop
[2009/07/14 01:08:56 | 000,000,000 | -HSD | M] -- E:\ProgramData\Documents
[2011/09/29 01:34:32 | 000,000,000 | ---D | M] -- E:\ProgramData\Electronic Arts
[2009/07/14 01:08:56 | 000,000,000 | -HSD | M] -- E:\ProgramData\Favorites
[2011/05/04 18:59:13 | 000,000,000 | ---D | M] -- E:\ProgramData\PopCap Games
[2011/05/02 15:17:33 | 000,000,000 | ---D | M] -- E:\ProgramData\SmartSound Software Inc
[2010/06/12 15:37:23 | 000,000,000 | ---D | M] -- E:\ProgramData\SOUNDGRAPH
[2011/09/29 01:27:03 | 000,000,000 | ---D | M] -- E:\ProgramData\Stardock
[2009/07/14 01:08:56 | 000,000,000 | -HSD | M] -- E:\ProgramData\Start Menu
[2011/05/04 17:38:39 | 000,000,000 | ---D | M] -- E:\ProgramData\Steam
[2009/07/14 01:08:56 | 000,000,000 | -HSD | M] -- E:\ProgramData\Templates
[2011/06/26 22:02:20 | 000,000,000 | ---D | M] -- E:\ProgramData\Ubisoft
[2011/09/12 00:44:23 | 000,000,000 | ---D | M] -- E:\ProgramData\WinZip
[2011/08/13 03:39:12 | 000,000,000 | ---D | M] -- E:\ProgramData\WorldWinner
[2011/09/29 01:34:33 | 000,000,000 | -H-D | M] -- E:\ProgramData\{76C80417-0C74-4A18-B59E-593FCE06C2ED}
[2011/09/29 01:27:06 | 000,000,000 | ---D | M] -- E:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
[2009/07/14 01:08:49 | 000,014,586 | ---- | M] () -- E:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
< End of report >
Broni
Posts: 56,041 +516
OK, the problem is that I don't see anything malicious there.
Judging from your initial post and what we went through you either still have MBR issue (I doubt since the command you ran should have fixed it), or we corrupted Windows installation.
Can you still boot to Safe Mode?
Do you have any Windows 7 DVD?
Judging from your initial post and what we went through you either still have MBR issue (I doubt since the command you ran should have fixed it), or we corrupted Windows installation.
Can you still boot to Safe Mode?
Do you have any Windows 7 DVD?
same result. When trying to boot in safe mode it scrolls down the screen loading all the drivers then after a second there is a very quick blue screen flash and it goes down. In normal mode it goes down after the starting windows splash has been up for a few seconds. would a system restore using my old system image be worth a try at this point?
Broni
Posts: 56,041 +516
Not legally.
There is a great free office suite: http://www.openoffice.org/
There is a great free office suite: http://www.openoffice.org/
I purchased Office legally I just can't find the cd anymore but I know thats not what this forum is about.
My files are backed up and I'm hoping you can help me with formating my hard drive and reinstalling windows if possible. I know I have been very difficult and I really appreciate everything.
My files are backed up and I'm hoping you can help me with formating my hard drive and reinstalling windows if possible. I know I have been very difficult and I really appreciate everything.
Broni
Posts: 56,041 +516
If you don't have a CD I don't think there is any way around it.
Windows 7 clean installation: http://pcsupport.about.com/od/operatingsystems/ss/windows-7-clean-install-part-1.htm
