Wise Disk Cleaner 10.26 serial key - Crack Key For U

December 31, 2021 / Rating: 4.7 / Views: 706

Related Images "Wise Disk Cleaner 10.26 serial key - Crack Key For U" (35 pics):

Pc cleaner pro 2021 serial number, key -

Put here a software name you are looking serial numbers for, i.e windows xp or internet download manager and press search button then, please, don't add serial, keygen and so on to the search pc cleaner pro 2021, 6480 records found, first 100 of them are

Wise Disk Cleaner 10.26 serial key  - Crack Key For U
· View Essential System Details with my Resources· Control When Windows 10 Updates with Kill-Update· How to Fix There Was a Problem Resetting Your PC Error on Windows 10· How to Turn on or off Recommended Troubleshooting in Windows 10· Major Geeks Deals Page - Windows Repair - - Windows Repair is an all-in-one repair tool to help fix many known Windows problems, including registry errors and file permissions. Hello, My bank has informed me that I have a virus called zeus keylogger. I went to log in to my account online and was directed to enter pin number and other personal info. I was able to shut the computer down and it started up ok. I have pasted the info below and attached the as well as the DDS (Ver_09-12-01.01) - NTFSx86 Run by Randy P at .23 on Sat 03/06/2010Internet Explorer: 8.0.6001.18702 Browser Java Version: 1.6.0_17Microsoft Windows XP Professional 5.1.2600.3.1252.1.10.89 [GMT -]AV: avast! Antivirus *On-access scanning enabled* (Updated) ============== Running Processes ===============C:\WINDOWS\system32\svchost -k Dcom C:\WINDOWS\System32\-k netsvcssvchost.C:\WINDOWS\Explorer. EXEC:\Program Files\Alwil Software\Avast5\Avast C:\PROGRA~1\ALWILS~1\Avast5\avast C:\Program Files\Tech Smith\Jing\C:\WINDOWS\system32\C:\WINDOWS\system32\spoolsv.C:\Program Files\Common Files\Apple\Mobile Device Support\bin\Apple Mobile Device C:\Program Files\Bonjour\m C:\Program Files\Cobian Backup 10\cb C:\WINDOWS\system32\C:\WINDOWS\system32\-k hpdevmgmt C:\Program Files\Java\jre6\bin\C:\Program Files\Common Files\Motive\Mcci C:\Program Files\Micro Niche Finder\C:\WINDOWS\System32\-k HPZ12C:\Program Files\Micro Niche Finder\C:\WINDOWS\System32\-k HPZ12C:\WINDOWS\system32\-k imgsvc C:\WINDOWS\System32\-k HTTPFilter C:\Program Files\Mozilla Firefox\C:\Documents and Settings\Randy P\Desktop\dds.scr============== Pseudo HJT Report ===============u Start Page = hxxp:// Default_Search_URL = hxxp:// Internet Connection Wizard, Shell Next = hxxp://osalerts.zonelabs.com/osanalyze.jsp? Product=Zone Alarm Security Suite&Product Version=7.0.337.000&HU100=ZLN01112060155491-1025&CL=en&LICFLAG=1&OEM=1025&SKU=5&Mode=1008&Product=Zone Alarm Security Suite&DTST=&QSRC=1&PU=1&OS=Windows XP-5.1.2600-Service Pack 2-SP&LANG=1033&PN=Internet Connection Wizard&VER=6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)&FN=icwconn1.exe&Created=345c4000&Size=214528&MD5=09a25348786b267204b300cfbc9960ec&SKIMP=dadb25036e90f51308a44295d545024b&CT=6003&EV=1&SUB=3&SEV=3&ARG1=C:\WINDOWS\system32\rundll32Search Assistant = hxxp:// Search URL,(Default) = hxxp:// q=%s BHO: - No File BHO: Adobe PDF Reader Link Helper: - c:\program files\adobe\acrobat 7.0\activex\Acro BHO: Google Toolbar Notifier BHO: - c:\program files\google\googletoolbarnotifier\5.4.4525.1752\BHO: Java™ Plug-In 2 SSV Helper: - c:\program files\java\jre6\bin\jp2BHO: JQSIEStart Detector Impl Class: - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_TB: - No Fileu Run: [swg] "c:\program files\google\googletoolbarnotifier\Google Toolbar Notifier.exe"u Run: [Jing] c:\program files\techsmith\jing\Run: [ctfmon.exe] c:\windows\system32\Run: [Si SPower] Rundll32Si SPower.dll, Mode Agentm Run: [avast5] c:\progra~1\alwils~1\avast5\avast /noguid Run: [swg] c:\program files\google\googletoolbarnotifier\Google Toolbar IE: E&xport to Microsoft Excel - c:\progra~1\mi1933~1\office10\EXCEL. - c:\program files\google\google toolbar\component\Google Toolbar Dynamic_mui_en_60D6097707281E79.dll/IE: - %windir%\Network Diagnostic\IE: - c:\program files\messenger\IE: - - c:\progra~1\mi1933~1\office11\REFIEBAR. DLLDPF: - hxxp://download.microsoft.com/download/0/A/9/0A9F8B32-9F8C-4D74-A130-E4CAB36EB01F/DPF: - hxxp://h20270.www2com/ediags/gmn2/install/HPProduct DPF: - hxxp:// - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxps://ilnet.wellsfargo.com/ilonline/clickloan/DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_01-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_02-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_03-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_05-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_07-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/DPF: - hxxps:// Click Loan/1,0,0,12/Pt Click Loan.cab================= FIREFOX ===================FF - Profile Path - c:\docume~1\randyp\applic~1\mozilla\firefox\profiles\d5x4eqho.default\FF - prefs.js: browser.startup.homepage - hxxp:// - prefs.js: keyword. fr=yhs-avg&type=yahoo_avg_hs2-tb-web_us&p=FF - prefs.js: network.- 4FF - plugin: c:\program files\google\google updater\2.4.1536.6592\np CIDetect13FF - Hidden Extension: Microsoft . NET Framework Assistant: - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\---- FIREFOX POLICIES ----FF - user.js: yahoo.homepage.dontask - truec:\program files\mozilla firefox\greprefs\- pref("ui.use_native_colors", true);c:\program files\mozilla firefox\greprefs\- pref("ui.use_native_popup_windows", false);c:\program files\mozilla firefox\greprefs\- pref("browser.enable_click_image_resizing", true);c:\program files\mozilla firefox\greprefs\- pref("accessibility.browsewithcaret_shortcut.enabled", true);c:\program files\mozilla firefox\greprefs\- pref("javascript.high_water_mark", 32);c:\program files\mozilla firefox\greprefs\- pref("javascript.gc_frequency", 1600);c:\program files\mozilla firefox\greprefs\- pref("force-generic-ntlm", false);c:\program files\mozilla firefox\greprefs\- pref("enabled", false);c:\program files\mozilla firefox\greprefs\- pref("ui.trackpoint_hack.enabled", -1);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.debug", false);c:\program files\mozilla firefox\greprefs\- pref("browser.Weight", 2);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.bucket Size", 1);c:\program files\mozilla firefox\greprefs\- pref("browser.Time Groupings", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.Grouping Size", 604800);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.boundary Weight", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.prefix Weight", 5);c:\program files\mozilla firefox\greprefs\- pref("html5.enable", false);c:\program files\mozilla firefox\greprefs\- pref("security.ssl3.rsa_seed_sha", true);c:\program files\mozilla firefox\defaults\pref\- pref("app.update.download.background Interval", 600);c:\program files\mozilla firefox\defaults\pref\- pref("app.manual", " files\mozilla firefox\defaults\pref\- pref("browser.search.param.yahoo-fr-ja", "mozff");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..name", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..description", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.whitelist.add", "addons.mozilla.org");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.36", "getpersonas.com");c:\program files\mozilla firefox\defaults\pref\- pref("lightweight Themes.update.enabled", true);c:\program files\mozilla firefox\defaults\pref\- pref("Tabs.previews", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.hide_infobar_for_outdated_plugin", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.update.notify User", false);c:\program files\mozilla firefox\defaults\pref\- pref("toolbar.customization.usesheet", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.enable", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.max", 20);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.cachetime", 20);============= SERVICES / DRIVERS ============================== Created Last 30 ================2010-03-06 20 ----a-w- c:\documents and settings\randyp\defogger_reenable2010-03-06 0 d-----w- c:\program files\Cobian Backup 102010-03-05 77312 ----a-w- c:\windows\MBR.exe2010-03-05 261632 ----a-w- c:\windows\PEV.exe2010-03-05 161792 ----a-w- c:\windows\SWREG.exe2010-03-05 98816 ----a-w- c:\windows\sed.exe2010-03-04 0 d-----w- c:\program files\common files\Wise Installation Wizard2010-02-27 0 dc-h--w- c:\windows\ie82010-02-12 0 d-----w- c:\windows\system32\Ntms Data2010-02-05 90624 ----a-w- c:\windows\system32\nmwcdcls.dll2010-02-05 21632 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys2010-02-05 0 d-----w- c:\windows\system32\Samsung_USB_Drivers2010-02-05 36608 ----a-w- c:\windows\system32\Fs Usb Ex Disk. Sys2010-02-05 110592 ----a-w- c:\windows\system32\Fs Usb Ex Device. Dll2010-02-05 233472 ----a-w- c:\windows\system32\Fs Usb Ex Service. Exe2010-02-05 0 d-----w- c:\docume~1\randyp\applic~1\Samsung2010-02-05 0 d-----w- c:\program files\PC Connectivity Solution2010-02-05 9232 ----a-w- c:\documents and settings\randyp\mqdmmdfl.sys2010-02-05 92064 ----a-w- c:\documents and settings\randyp\mqdmmdm.sys2010-02-05 79328 ----a-w- c:\documents and settings\randyp\mqdmserd.sys2010-02-05 6208 ----a-w- c:\documents and settings\randyp\mqdmcmnt.sys2010-02-05 5936 ----a-w- c:\documents and settings\randyp\mqdmwhnt.sys2010-02-05 4048 ----a-w- c:\documents and settings\randyp\mqdmcr.sys2010-02-05 9913 ----a-w- c:\documents and settings\randyp\MCCI_MDM. INF2010-02-05 6989 ----a-w- c:\documents and settings\randyp\MCCI_BUS. INF2010-02-05 66656 ----a-w- c:\documents and settings\randyp\mqdmbus.sys2010-02-05 4477 ----a-w- c:\documents and settings\randyp\MCCI_SDM. INF2010-02-05 12356 ----a-w- c:\documents and settings\randyp\Copy of oem9. PNF2010-02-05 6009 ----a-w- c:\documents and settings\randyp\Copy of oem8.inf2010-02-05 5877 ----a-w- c:\documents and settings\randyp\1265407124-(null)2010-02-05 5813 ----a-w- c:\documents and settings\randyp\Copy of oem9.inf2010-02-05 12828 ----a-w- c:\documents and settings\randyp\Copy of oem7. PNF2010-02-05 12690 ----a-w- c:\documents and settings\randyp\Copy of oem8. PNF2010-02-05 9232 ----a-w- c:\documents and settings\randyp\1265407121-(null)2010-02-05 6947 ----a-w- c:\documents and settings\randyp\1265407123-(null)2010-02-05 15690 ----a-w- c:\documents and settings\randyp\Copy of oem10. PNF2010-02-05 14006 ----a-w- c:\documents and settings\randyp\Copy of oem4. PNF2010-02-05 24192 ----a-r- c:\windows\system32\drivers\OLD73.tmp2010-02-05 26112 -c--a-w- c:\windows\system32\dllcache\usbser.sys2010-02-05 26112 ----a-w- c:\windows\system32\drivers\usbser.sys2010-02-05 9232 ----a-w- c:\documents and settings\randyp\USB_MOT_BRIT. INF2010-02-05 7201 ----a-w- c:\documents and settings\randyp\USBMOT2000. INF2010-02-05 64954 ----a-w- c:\documents and settings\randyp\1265405901-oem4. PNF2010-02-05 6141 ----a-w- c:\documents and settings\randyp\USBMOT2000XP. INF2010-02-05 5960 ----a-w- c:\documents and settings\randyp\USB_MOT_A1000. INF2010-02-05 5880 ----a-w- c:\documents and settings\randyp\USB_CMCS_2000. INF2010-02-05 48144 ----a-w- c:\documents and settings\randyp\1265405901-oem4.inf2010-02-05 25600 ----a-w- c:\documents and settings\randyp\usbsermptxp.sys2010-02-05 22768 ----a-w- c:\documents and settings\randyp\usbsermpt.sys==================== Find3M ====================2010-02-01 717296 ----a-w- c:\windows\system32\drivers\sptd.sys2010-01-07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys2010-01-07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys2009-12-21 916480 ------w- c:\windows\system32\wininet.dll2009-12-16 343040 ----a-w- c:\windows\system32\mspaint.exe2009-12-14 33280 ----a-w- c:\windows\system32\csrsrv.dll2009-12-08 2189184 ------w- c:\windows\system32\ntoskrnl.exe2009-12-08 2066048 ------w- c:\windows\system32\ntkrnlpa.exe2009-09-23 441 ----a-w- c:\program files\index.php============= FINISH: .18 =============== Hello and welcome to Bleeping Computer We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. Please include a clear description of the problems you're having, along with any steps you may have performed so far. Please refrain from running tools or applying updates other than those we suggest while we are cleaning up your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process. Even if you have already provided information about your PC, we need a new log to see what has changed since you originally posted your problem. We need to create an OTL Report In the upper right hand corner of the topic you will see a button called Options. If you click on this in the drop-down menu you can choose Track this topic. I suggest you do this and select Immediate E-Mail notification and click on Proceed. This way you will be advised when we respond to your topic and facilitate the cleaning of your machine. report: OTL logfile created on: 3/10/2010 AM - Run 1OTL by Old Timer - Version 3.1.36.0 Folder = C:\Documents and Settings\Randy P\Desktop Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702)Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 479.00 Mb Total Physical Memory | 135.00 Mb Available Physical Memory | 28.00% Memory free979.00 Mb Paging File | 600.00 Mb Available in Paging File | 61.00% Paging File free Paging file location(s): C:\576 1152 [binary data] %System Drive% = C: | %System Root% = C:\WINDOWS | %Program Files% = C:\Program Files Drive C: | 180.31 Gb Total Space | 136.50 Gb Free Space | 75.70% Space Free | Partition Type: NTFSD: Drive not present or media not loaded E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded Drive H: | 5.99 Gb Total Space | 1.04 Gb Free Space | 17.40% Space Free | Partition Type: FAT32I: Drive not present or media not loaded Computer Name: RANDYPCurrent User Name: Randy PLogged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard PRC - [2010/03/10 | 000,554,496 | ---- | M] (Old Timer Tools) -- C:\Documents and Settings\Randy P\desktop\PRC - [2010/03/05 | 000,067,584 | ---- | M] (Cobian Soft, Luis Cobian) -- C:\Program Files\Cobian Backup 10\cb PRC - [2010/02/11 | 002,756,488 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast5\Avast PRC - [2010/02/11 | 000,040,384 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast5\Avast PRC - [2010/01/19 | 003,118,344 | ---- | M] (Tech Smith Corporation) -- C:\Program Files\Tech Smith\Jing\PRC - [2010/01/15 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\PRC - [2009/11/23 | 000,736,464 | ---- | M] ( James J. Jones, LLC.) -- C:\Program Files\Micro Niche Finder\PRC - [2008/04/13 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PRC - [2006/11/03 | 000,537,480 | ---- | M] ( ) -- C:\WINDOWS\system32\PRC - [2003/04/18 | 000,008,192 | ---- | M] () -- C:\Program Files\Micro Niche Finder\SRV - [2010/03/05 | 000,067,584 | ---- | M] (Cobian Soft, Luis Cobian) [Auto | Running] -- C:\Program Files\Cobian Backup 10\cb -- (cb VSCService)SRV - [2010/02/11 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\Avast -- (avast! Web Scanner)SRV - [2010/02/11 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\Avast -- (avast! Mail Scanner)SRV - [2010/02/11 | 000,040,384 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\Avast -- (avast! Antivirus)SRV - [2008/04/07 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\Service -- (Service Layer)SRV - [2006/11/03 | 000,537,480 | ---- | M] ( ) [Auto | Running] -- C:\WINDOWS\System32\-- (dlcx_device)SRV - [2003/04/18 | 000,008,192 | ---- | M] () [Auto | Running] -- C:\Program Files\Micro Niche Finder\-- (Micro Niche Finder Background Download Service) DRV - [2010/02/11 | 000,046,672 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\asw -- (asw Tdi)DRV - [2010/02/11 | 000,162,512 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\asw -- (asw SP)DRV - [2010/02/11 | 000,023,376 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\asw -- (asw Rdr)DRV - [2010/02/11 | 000,100,432 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmon2-- (asw Mon2)DRV - [2010/02/11 | 000,019,024 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\asw Fs -- (asw Fs Blk)DRV - [2010/02/11 | 000,028,880 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aavmker4-- (Aavmker4)DRV - [2010/02/01 | 000,717,296 | ---- | M] (Duplex Secure Ltd.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\System32\Drivers\-- (sptd)DRV - [2009/02/19 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\Fs Usb Ex Disk. Sys -- (Fs Usb Ex Disk)DRV - [2008/04/13 | 000,088,320 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\-- (Nwlnk Ipx)DRV - [2007/09/28 | 000,019,345 | ---- | M] (Motive, Inc.) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Motive\MREMPR5-- (MREMPR5)DRV - [2007/09/28 | 000,018,003 | ---- | M] (Motive, Inc.) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Motive\MRENDIS5-- (MRENDIS5)DRV - [2007/09/17 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\-- (pccsmcfd)DRV - [2006/02/28 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\-- (Nwlnk Nb)DRV - [2006/02/28 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\-- (Nwlnk Spx)DRV - [2005/12/12 | 000,019,072 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\PS2-- (Ps2)DRV - [2005/04/20 | 002,317,696 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM. SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)DRV - [2005/04/12 | 000,011,904 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\-- (Si Skp)DRV - [2005/04/12 | 000,247,296 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\-- (Si S315)DRV - [2005/02/01 | 000,017,992 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\bcm42-- (BCM42RLY)DRV - [2004/12/11 | 000,371,584 | R--- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5. SYS -- (BCM43XX)DRV - [2004/08/03 | 000,032,768 | ---- | M] (Si S Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\-- (SISNIC)DRV - [2003/09/25 | 000,015,872 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\GTNDIS5-- (GTNDIS5)DRV - [2002/11/28 | 000,039,048 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ICDUSB2-- (ICDUSB2) Sony IC Recorder (P) IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search, Default_Search_URL = IE - HKU\. DEFAULT\Software\Microsoft\Windows\Current Version\Internet Settings: "Proxy Enable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\Current Version\Internet Settings: "Proxy Enable" = 0 IE - HKU\S-1-5-21-329068152-179605362-839522115-1005\SOFTWARE\Microsoft\Internet Explorer\Main, Default_Search_URL = IE - HKU\S-1-5-21-329068152-179605362-839522115-1005\SOFTWARE\Microsoft\Internet Explorer\Main, Start Page = - HKU\S-1-5-21-329068152-179605362-839522115-1005\SOFTWARE\Microsoft\Internet Explorer\Search, Default_Search_URL = IE - HKU\S-1-5-21-329068152-179605362-839522115-1005\SOFTWARE\Microsoft\Internet Explorer\Search, Search Assistant = IE - HKU\S-1-5-21-329068152-179605362-839522115-1005\Software\Microsoft\Windows\Current Version\Internet Settings: "Proxy Enable" = 0 FF - .browser.search.defaultenginename: "Yahoo! Search"FF - .browser.DBFor Order: true FF - .browser.startup.homepage: " - .extensions.enabled Items: [email protected]:1.0FF - .extensions.enabled Items: :1.33FF - .extensions.enabled Items: [email protected]:3.3.0FF - .keyword. fr=yhs-avg&type=yahoo_avg_hs2-tb-web_us&p="FF - .network.proxy.type: 4 FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/02/05 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/02/05 | 000,000,000 | ---D | M] [2010/03/08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Randy P\Application Data\Mozilla\Extensions[2010/03/08 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Randy P\Application Data\Mozilla\Extensions\[2009/08/04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Randy P\Application Data\Mozilla\Extensions\[email protected][2010/03/09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Randy P\Application Data\Mozilla\Firefox\Profiles\d5x4eqho.default\extensions[2009/06/29 | 000,000,000 | ---D | M] (Microsoft . NET Framework Assistant) -- C:\Documents and Settings\Randy P\Application Data\Mozilla\Firefox\Profiles\d5x4eqho.default\extensions\[2009/12/23 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Randy P\Application Data\Mozilla\Firefox\Profiles\d5x4eqho.default\extensions\[2009/12/16 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Randy P\Application Data\Mozilla\Firefox\Profiles\d5x4eqho.default\extensions\[2009/12/16 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Randy P\Application Data\Mozilla\Firefox\Profiles\d5x4eqho.default\extensions\[2009/11/30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Randy P\Application Data\Mozilla\Firefox\Profiles\d5x4eqho.default\extensions\[email protected][2010/01/28 | 000,002,172 | ---- | M] () -- C:\Documents and Settings\Randy P\Application Data\Mozilla\Firefox\Profiles\d5x4eqho.default\searchplugins\bing.xml[2010/03/09 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions O1 HOSTS File: ([2010/03/05 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (no name) - - No CLSID value found. O2 - BHO: (Adobe PDF Reader Link Helper) - - C:\Program Files\Adobe\Acrobat 7.0\Active X\Acro (Adobe Systems Incorporated)O2 - BHO: (Google Toolbar Notifier BHO) - - C:\Program Files\Google\Google Toolbar Notifier\5.4.4525.1752\(Google Inc.)O3 - HKU\. DEFAULT\..\Toolbar\Web Browser: (no name) - - No CLSID value found. O3 - HKU\S-1-5-18\..\Toolbar\Web Browser: (no name) - - No CLSID value found. O3 - HKU\S-1-5-21-329068152-179605362-839522115-1005\..\Toolbar\Shell Browser: (no name) - - No CLSID value found. O3 - HKU\S-1-5-21-329068152-179605362-839522115-1005\..\Toolbar\Web Browser: (no name) - - No CLSID value found. O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\Avast (ALWIL Software)O4 - HKLM..\Run: [Si SPower] C:\WINDOWS\System32\Si (Silicon Integrated Systems Corporation)O4 - HKU\. DEFAULT..\Run: [swg] C:\Program Files\Google\Google Toolbar Notifier\Google Toolbar (Google Inc.)O4 - HKU\S-1-5-18..\Run: [swg] C:\Program Files\Google\Google Toolbar Notifier\Google Toolbar (Google Inc.)O4 - HKU\S-1-5-21-329068152-179605362-839522115-1005..\Run: [Jing] C:\Program Files\Tech Smith\Jing\(Tech Smith Corporation)O4 - HKU\S-1-5-21-329068152-179605362-839522115-1005..\Run: [swg] C:\Program Files\Google\Google Toolbar Notifier\Google Toolbar (Google Inc.)O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft = C:\Program Files\Microsoft Office\Office10\OSA. EXE (Microsoft Corporation)O6 - HKLM\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: Honor Auto Run Setting = 1O6 - HKLM\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Auto Run = 67108863O6 - HKLM\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 323O6 - HKLM\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drives = 0O7 - HKU\. DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\. DEFAULT\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 323O7 - HKU\. DEFAULT\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Auto Run = 67108863O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 323O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Auto Run = 67108863O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-21-329068152-179605362-839522115-1005\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-329068152-179605362-839522115-1005\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 323O7 - HKU\S-1-5-21-329068152-179605362-839522115-1005\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Auto Run = 67108863O7 - HKU\S-1-5-21-329068152-179605362-839522115-1005\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drives = 0O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office10\EXCEL. EXE (Microsoft Corporation)O10 - Name Space_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\(Microsoft Corporation)O10 - Name Space_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdns (Apple Inc.)O16 - DPF: Error: Key error.)O16 - DPF: Error: Key error.)O16 - DPF: Control)O16 - DPF: Plug-in 1.6.0_17)O16 - DPF: https://ilnet.wellsfargo.com/ilonline/click...(Pt Click Loan WF Control)O16 - DPF: Error: Key error.)O16 - DPF: Error: Key error.)O16 - DPF: Error: Key error.)O16 - DPF: Error: Key error.)O16 - DPF: Error: Key error.)O16 - DPF: Plug-in 1.6.0_17)O16 - DPF: Plug-in 1.6.0_17)O16 - DPF: Flash Object)O16 - DPF: https:// Click Loan/1... Pt Click (Pt Click Loan Control)O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Dhcp Name Server = 192.168.254.254 192.168.254.254O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\(Microsoft Corporation)O24 - Desktop Components:0 () - file:///C:/DOCUME~1/Randy P/LOCALS~1/Temp/msohtml1/01/clip_image002O24 - Desktop Components:1 (My Current Home Page) - About: Home O24 - Desktop Wall Paper: C:\Documents and Settings\Randy P\Local Settings\Application Data\Microsoft\Wallpaper1O24 - Desktop Backup Wall Paper: C:\Documents and Settings\Randy P\Local Settings\Application Data\Microsoft\Wallpaper1O32 - HKLM CDRom: Auto Run - 1O32 - Auto Run File - [2001/07/28 | 000,000,000 | -HS- | M] () - H:\AUTOEXEC. BAT -- [ FAT32 ]O34 - HKLM Boot Execute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %*O35 - HKLM\..exefile [open] -- "%1" %* Net Svcs: 6to4 - File not found Net Svcs: Ias - C:\WINDOWS\system32\ias [2006/09/11 | 000,000,000 | ---D | M]Net Svcs: Iprip - File not found Net Svcs: Irmon - File not found Net Svcs: NWCWorkstation - File not found Net Svcs: Wmdm Pm Sp - File not found Ms Config - Start Up Folder: C:^Documents and Settings^All Users. WINDOWS^Start Menu^Programs^Startup^Adobe Reader Speed - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_- (Adobe Systems Incorporated)Ms Config - Start Up Folder: C:^Documents and Settings^All Users. WINDOWS^Start Menu^Programs^Startup^HP Digital Imaging - C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08- File not found Ms Config - Start Up Folder: C:^Documents and Settings^All Users. WINDOWS^Start Menu^Programs^Startup^Microsoft - C:\Program Files\Microsoft Office\Office10\OSA. EXE - (Microsoft Corporation)Ms Config - Start Up Folder: C:^Documents and Settings^Randy P^Start Menu^Programs^Startup^IDrive - Reg Error: Value error. - File not found Ms Config - Start Up Folder: C:^Documents and Settings^Randy P^Start Menu^Programs^Startup^Open 3.0- C:\Program Files\Open 3\program\- ()Ms Config - Start Up Reg: Alcx Monitor - hkey= - key= - C:\WINDOWS\ALCXMNTR. EXE (Realtek Semiconductor Corp.)Ms Config - Start Up Reg: - hkey= - key= - File not found Ms Config - Start Up Reg: i Tunes Helper - hkey= - key= - C:\Program Files\i Tunes\i Tunes (Apple Inc.)Ms Config - Start Up Reg: KBD - hkey= - key= - C:\hp\KBD\(Hewlett-Packard Company)Ms Config - Start Up Reg: Quick Time Task - hkey= - key= - C:\Program Files\Quick Time\(Apple Inc.)Ms Config - Start Up Reg: Sun Java Update Sched - hkey= - key= - C:\Program Files\Java\jre6\bin\(Sun Microsystems, Inc.)Ms Config - Start Up Reg: swg - hkey= - key= - C:\Program Files\Google\Google Toolbar Notifier\Google Toolbar (Google Inc.)Ms Config - Start Up Reg: Xerox Scanner Daemon - hkey= - key= - C:\Program Files\xerox\nwwia\Xrx ()Ms Config - State: "system.ini" - 0Ms Config - State: "win.ini" - 0Ms Config - State: "bootini" - 0Ms Config - State: "services" - 0Ms Config - State: "startup" - 2 Safe Boot Min: Base - Driver Group Safe Boot Min: Boot Bus Extender - Driver Group Safe Boot Min: Boot file system - Driver Group Safe Boot Min: File system - Driver Group Safe Boot Min: Filter - Driver Group Safe Boot Min: PCI Configuration - Driver Group Safe Boot Min: PNP Filter - Driver Group Safe Boot Min: Primary disk - Driver Group Safe Boot Min: SCSI Class - Driver Group Safe Boot Min: - Driver Safe Boot Min: System Bus Extender - Driver Group Safe Boot Min: vds - Service Safe Boot Min: - Driver Safe Boot Min: - Universal Serial Bus controllers Safe Boot Min: - CD-ROM Drive Safe Boot Min: - Disk Drive Safe Boot Min: - Standard floppy disk controller Safe Boot Min: - Hdc Safe Boot Min: - Keyboard Safe Boot Min: - Mouse Safe Boot Min: - PCMCIA Adapters Safe Boot Min: - SCSIAdapter Safe Boot Min: - System Safe Boot Min: - Floppy disk drive Safe Boot Min: - Volume shadow copy Safe Boot Min: - Volume Safe Boot Min: - Human Interface Devices Safe Boot Net: Base - Driver Group Safe Boot Net: Boot Bus Extender - Driver Group Safe Boot Net: Boot file system - Driver Group Safe Boot Net: File system - Driver Group Safe Boot Net: Filter - Driver Group Safe Boot Net: NDIS Wrapper - Driver Group Safe Boot Net: Net BIOSGroup - Driver Group Safe Boot Net: Net DDEGroup - Driver Group Safe Boot Net: Network - Driver Group Safe Boot Net: Network Provider - Driver Group Safe Boot Net: PCI Configuration - Driver Group Safe Boot Net: PNP Filter - Driver Group Safe Boot Net: PNP_TDI - Driver Group Safe Boot Net: Primary disk - Driver Group Safe Boot Net: SCSI Class - Driver Group Safe Boot Net: - Driver Safe Boot Net: Streams Drivers - Driver Group Safe Boot Net: System Bus Extender - Driver Group Safe Boot Net: TDI - Driver Group Safe Boot Net: - Driver Safe Boot Net: vsmon - Service Safe Boot Net: - Universal Serial Bus controllers Safe Boot Net: - CD-ROM Drive Safe Boot Net: - Disk Drive Safe Boot Net: - Standard floppy disk controller Safe Boot Net: - Hdc Safe Boot Net: - Keyboard Safe Boot Net: - Mouse Safe Boot Net: - Net Safe Boot Net: - Net Client Safe Boot Net: - Net Service Safe Boot Net: - Net Trans Safe Boot Net: - PCMCIA Adapters Safe Boot Net: - SCSIAdapter Safe Boot Net: - System Safe Boot Net: - Floppy disk drive Safe Boot Net: - Volume Safe Boot Net: - Human Interface Devices Active X: - Java (Sun)Active X: - Vector Graphics Rendering (VML)Active X: - Net Show Active X: - Microsoft Windows Media Player 6.4Active X: - Direct Animation Active X: - %System Root%\system32\regsvr32/s /n /i:/User Install %System Root%\system32\Active X: - Dynamic HTML Data Binding for Java Active X: - Offline Browsing Pack Active X: - Uniscribe Active X: - Microsoft . NTActive X: - Direct Show Active X: - Direct Draw Ex Active X: - Internet Explorer Help Active X: - Direct Animation Java Classes Active X: - Microsoft Windows Script 5.8Active X: - rundll32advpack.dll, Launch INFSection C:\WINDOWS\INF\msmsgs.inf, BLC. Per User Active X: - ICWActive X: - Internet Explorer Setup Tools Active X: - Browsing Enhancements Active X: - Microsoft Windows Media Player Active X: - MSN Site Access Active X: - . NET Framework 1.1 Service Pack 1 (KB867460)Active X: - Advanced Authoring Active X: - "%Program Files%\Outlook Express\setup50.exe" /APP: OE /CALLER: WINNT /user /install Active X: - rundll32advpack.dll, Launch INFSection C:\WINDOWS\INF\msnetmtg.inf, Net Mtg. NET Framework Active X: - Web Folders Active X: - "%Program Files%\Outlook Express\setup50.exe" /APP: WAB /CALLER: WINNT /user /install Active X: - regsvr32/s /n /i: U shell32Active X: - C:\WINDOWS\system32\ie4-Base Settings Active X: - c:\WINDOWS\system32\Rundll32c:\WINDOWS\system32\mscories.dll, Install Active X: - Dynamic HTML Data Binding Active X: - . NET Framework Active X: - Internet Explorer Core Fonts Active X: - . DLL (Microsoft Corporation) [2010/03/10 | 000,554,496 | ---- | C] (Old Timer Tools) -- C:\Documents and Settings\Randy P\Desktop\OTL.exe[2010/03/09 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Randy P\Recent[2010/03/06 | 003,396,856 | ---- | C] (Piriform Ltd) -- C:\Documents and Settings\Randy P\Desktop\ccsetup229.exe[2010/03/06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy P\Local Settings\Application Data\Safe mirror[2010/03/06 | 000,000,000 | ---D | C] -- C:\Program Files\Cobian Backup 10[2010/03/06 | 015,057,408 | ---- | C] (Luis Cobian, Cobian Soft) -- C:\Documents and Settings\Randy P\Desktop\cb Setup.exe[2010/03/06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy P\Desktop\lists to mail[2010/03/05 | 000,000,000 | -HSD | C] -- C:\RECYCLER[2010/03/05 | 000,031,232 | ---- | C] (Nir Soft) -- C:\WINDOWS\NIRCMD.exe[2010/03/05 | 000,161,792 | ---- | C] (Steel Wer X) -- C:\WINDOWS\SWREG.exe[2010/03/05 | 000,136,704 | ---- | C] (Steel Wer X) -- C:\WINDOWS\SWSC.exe[2010/03/05 | 000,212,480 | ---- | C] (Steel Wer X) -- C:\WINDOWS\SWXCACLS.exe[2010/03/05 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT[2010/03/05 | 000,000,000 | ---D | C] -- C:\Qoobox[2010/03/05 | 009,758,152 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\Randy P\Desktop\windows-kb890830-v3.4.exe[2010/03/04 | 000,000,000 | ---D | C] -- C:\Program Files\Tech Smith[2010/03/04 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard[2010/02/27 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8[2010/02/25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy P\My Documents\Micro Niche Finder[2010/02/12 | 009,034,488 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\Randy P\My Documents\mssefullinstall-x86fre-en-us-xp.exe[2010/02/12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy P\My Documents\Downloads[2010/02/11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy P\My Documents\CC Cleaner Backups[2010/02/11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Ntms Data[2006/10/11 | 000,643,072 | ---- | C] ( ) -- C:\WINDOWS\System32\dlcxpmui.dll[2006/10/11 | 001,224,704 | ---- | C] ( ) -- C:\WINDOWS\System32\dlcxserv.dll[2006/10/11 | 000,421,888 | ---- | C] ( ) -- C:\WINDOWS\System32\dlcxcomm.dll[2006/10/11 | 000,585,728 | ---- | C] ( ) -- C:\WINDOWS\System32\dlcxlmpm.dll[2006/10/11 | 000,397,312 | ---- | C] ( ) -- C:\WINDOWS\System32\dlcxiesc.dll[2006/10/11 | 000,094,208 | ---- | C] ( ) -- C:\WINDOWS\System32\dlcxpplc.dll[2006/10/11 | 000,684,032 | ---- | C] ( ) -- C:\WINDOWS\System32\dlcxcomc.dll[2006/10/11 | 000,163,840 | ---- | C] ( ) -- C:\WINDOWS\System32\dlcxprox.dll[2006/10/11 | 000,413,696 | ---- | C] ( ) -- C:\WINDOWS\System32\dlcxinpa.dll[2006/10/11 | 000,991,232 | ---- | C] ( ) -- C:\WINDOWS\System32\dlcxusb1.dll[2006/10/11 | 000,696,320 | ---- | C] ( ) -- C:\WINDOWS\System32\dlcxhbn3.dll[2006/09/01 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Local Service\Application Data\Microsoft[2006/09/01 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Network Service\Application Data\Microsoft[2006/08/11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Network Service\Local Settings\Application Data\Application History[2005/07/18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Local Service\Application Data\AVG7[2005/07/01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Local Service\Application Data\Symantec[2005/05/10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Local Service\Local Settings\Application Data\Microsoft[2005/05/10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Network Service\Local Settings\Application Data\Microsoft[5 C:\WINDOWS\*files - [2010/03/10 | 000,554,496 | ---- | M] (Old Timer Tools) -- C:\Documents and Settings\Randy P\Desktop\OTL.exe[2010/03/09 | 000,015,872 | ---- | M] () -- C:\Documents and Settings\Randy P\Desktop\Dentist Yonkers.xls[2010/03/09 | 000,000,868 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job[2010/03/08 | 000,013,694 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl[2010/03/08 | 000,000,314 | ---- | M] () -- C:\WINDOWS\tasks\Glary Initialize.job[2010/03/08 | 000,000,236 | ---- | M] () -- C:\WINDOWS\tasks\OGALogon.job[2010/03/08 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA. NET Framework Active X: - Task Scheduler Active X: - Windows Movie Maker v2.1Active X: - Adobe Flash Player Active X: - Microsoft . DAT[2010/03/08 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat[2010/03/08 | 011,272,192 | ---- | M] () -- C:\Documents and Settings\Randy P\NTUSER. NET Framework 1.1 Security Update (KB953297)Active X: - HTML Help Active X: - Active Directory Service Interface Active X: - %systemroot%\system32\OCInstall User Config OE Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32(Intel Corporation)Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3(Fraunhofer Institut Integrierte Schaltungen IIS)Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_(Sipro Lab Telecom Inc.)Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32(DSP GROUP, INC.)Drivers32: - C:\WINDOWS\System32\(Radius Inc.)Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32()Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32()Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32(Intel Corporation)Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32(Intel Corporation)Drivers32: VIDC. DAT[2010/03/08 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Randy P\ntuser.ini[2010/03/08 | 000,002,427 | ---- | M] () -- C:\Documents and Settings\Randy P\Desktop\Ad Words Editor.lnk[2010/03/08 | 016,717,312 | ---- | M] () -- C:\Documents and Settings\Randy P\Desktop\adwords_editor_en-US.msi[2010/03/08 | 000,002,341 | ---- | M] () -- C:\Documents and Settings\All Users. WINDOWS\Desktop\EVO2.lnk[2010/03/06 | 003,396,856 | ---- | M] (Piriform Ltd) -- C:\Documents and Settings\Randy P\Desktop\ccsetup229.exe[2010/03/06 | 000,284,915 | ---- | M] () -- C:\Documents and Settings\Randy P\Desktop\gmer.zip[2010/03/06 | 000,524,288 | ---- | M] () -- C:\Documents and Settings\Randy P\Desktop\dds.scr[2010/03/06 | 000,000,020 | ---- | M] () -- C:\Documents and Settings\Randy P\defogger_reenable[2010/03/06 | 000,050,477 | ---- | M] () -- C:\Documents and Settings\Randy P\Desktop\Defogger.exe[2010/03/06 | 000,000,433 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.ics[2010/03/06 | 015,057,408 | ---- | M] (Luis Cobian, Cobian Soft) -- C:\Documents and Settings\Randy P\Desktop\cb Setup.exe[2010/03/06 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\Randy P\My Documents\Internet Explorer.lnk[2010/03/05 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\Apple Software Update.job[2010/03/05 | 000,000,285 | ---- | M] () -- C:\WINDOWS\system.ini[2010/03/05 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts[2010/03/05 | 004,120,742 | R--- | M] () -- C:\Documents and Settings\Randy P\Desktop\Combo Fix.exe[2010/03/05 | 009,758,152 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Randy P\Desktop\windows-kb890830-v3.4.exe[2010/03/04 | 011,272,192 | ---- | M] () -- C:\Documents and Settings\Randy P\NTUSER. DAT.gbck[2010/03/04 | 000,077,510 | ---- | M] () -- C:\Documents and Settings\Randy P\My Documents\baltimore_cosmetic_surgeon_image_jing.png[2010/03/04 | 009,493,312 | ---- | M] () -- C:\Documents and Settings\Randy P\My Documents\jing_setup.exe[2010/03/04 | 000,061,457 | ---- | M] () -- C:\Documents and Settings\Randy P\Desktop\bookmarks-2010-03-04.json[2010/03/03 | 000,010,752 | ---- | M] () -- C:\Documents and Settings\Randy P\My Documents\Oliver the musical -mirannda.wps[2010/02/28 | 000,363,496 | ---- | M] () -- C:\Documents and Settings\Randy P\.ranktracker.properties[2010/02/27 | 016,883,056 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Randy P\My Documents\IE8-Windows XP-x86-ENU.exe[2010/02/27 | 000,001,117 | ---- | M] () -- C:\WINDOWS\winpoint.ini[2010/02/18 | 000,000,728 | ---- | M] () -- C:\Documents and Settings\Randy P\Desktop\Glary Utilities.lnk[2010/02/18 | 008,022,640 | ---- | M] (Glarysoft Ltd ) -- C:\Documents and Settings\Randy P\My Documents\gusetup.exe[2010/02/12 | 009,034,488 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Randy P\My Documents\mssefullinstall-x86fre-en-us-xp.exe[2010/02/12 | 000,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG. NT[2010/02/11 | 000,038,848 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\avast SS.scr[2010/02/11 | 000,153,184 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\asw Boot.exe[2010/02/11 | 000,046,672 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\asw Tdi.sys[2010/02/11 | 000,162,512 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\asw SP.sys[2010/02/11 | 000,023,376 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\asw Rdr.sys[2010/02/11 | 000,100,432 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys[2010/02/11 | 000,094,800 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys[2010/02/11 | 000,019,024 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\asw Fs Blk.sys[2010/02/11 | 000,028,880 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys[5 C:\WINDOWS\*files - [2099/01/01 | 000,006,456 | -H-- | C] () -- C:\WINDOWS\System32\sayefara[2010/03/09 | 000,015,872 | ---- | C] () -- C:\Documents and Settings\Randy P\Desktop\Dentist Yonkers.xls[2010/03/08 | 000,002,427 | ---- | C] () -- C:\Documents and Settings\Randy P\Desktop\Ad Words Editor.lnk[2010/03/08 | 016,717,312 | ---- | C] () -- C:\Documents and Settings\Randy P\Desktop\adwords_editor_en-US.msi[2010/03/06 | 000,293,376 | ---- | C] () -- C:\Documents and Settings\Randy P\Desktop\gmer.exe[2010/03/06 | 000,284,915 | ---- | C] () -- C:\Documents and Settings\Randy P\Desktop\gmer.zip[2010/03/06 | 000,524,288 | ---- | C] () -- C:\Documents and Settings\Randy P\Desktop\dds.scr[2010/03/06 | 000,000,020 | ---- | C] () -- C:\Documents and Settings\Randy P\defogger_reenable[2010/03/06 | 000,050,477 | ---- | C] () -- C:\Documents and Settings\Randy P\Desktop\Defogger.exe[2010/03/06 | 000,000,104 | ---- | C] () -- C:\Documents and Settings\Randy P\My Documents\Internet Explorer.lnk[2010/03/05 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe[2010/03/05 | 000,261,632 | ---- | C] () -- C:\WINDOWS\PEV.exe[2010/03/05 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe[2010/03/05 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe[2010/03/05 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe[2010/03/05 | 004,120,742 | R--- | C] () -- C:\Documents and Settings\Randy P\Desktop\Combo Fix.exe[2010/03/04 | 000,077,510 | ---- | C] () -- C:\Documents and Settings\Randy P\My Documents\baltimore_cosmetic_surgeon_image_jing.png[2010/03/04 | 009,493,312 | ---- | C] () -- C:\Documents and Settings\Randy P\My Documents\jing_setup.exe[2010/03/04 | 000,061,457 | ---- | C] () -- C:\Documents and Settings\Randy P\Desktop\bookmarks-2010-03-04.json[2010/03/03 | 000,010,752 | ---- | C] () -- C:\Documents and Settings\Randy P\My Documents\Oliver the musical -mirannda.wps[2010/02/27 | 000,002,341 | ---- | C] () -- C:\Documents and Settings\All Users. WINDOWS\Desktop\EVO2.lnk[2010/02/05 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\Fs Usb Ex Device. Dll[2010/02/05 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\Fs Usb Ex Disk. Sys[2010/02/05 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Randy P\Application Data\$_hpcst$.hpc[2009/11/13 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Randy P\Local Settings\Application Data\prvlcl.dat[2009/10/07 | 000,055,808 | ---- | C] () -- C:\WINDOWS\System32\zlib1.dll[2009/09/23 | 000,000,441 | ---- | C] () -- C:\Program Files\index.php[2009/08/03 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheck Control.dll[2009/02/11 | 000,000,127 | ---- | C] () -- C:\WINDOWS\System32\MRT. INI[2009/01/22 | 000,000,048 | ---- | C] () -- C:\WINDOWS\wininit.ini[2008/12/22 | 000,176,235 | ---- | C] () -- C:\WINDOWS\System32\Primomonnt.dll[2008/09/05 | 000,015,408 | ---- | C] () -- C:\Documents and Settings\All Users. WINDOWS\Application Data\hpzinstall.log[2008/09/04 | 000,018,944 | ---- | C] () -- C:\WINDOWS\System32\xrxscnui.dll[2008/05/05 | 000,005,632 | ---- | C] () -- C:\Documents and Settings\Randy P\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini[2008/04/09 | 000,471,040 | ---- | C] () -- C:\WINDOWS\dbengine.dll[2008/04/09 | 000,303,104 | ---- | C] () -- C:\WINDOWS\spy.dll[2008/04/09 | 000,184,320 | ---- | C] () -- C:\WINDOWS\keyboard.dll[2008/04/09 | 000,094,208 | ---- | C] () -- C:\WINDOWS\guidll.dll[2008/04/09 | 000,057,344 | ---- | C] () -- C:\WINDOWS\vxddll.dll[2008/04/09 | 000,049,152 | ---- | C] () -- C:\WINDOWS\hook.dll[2008/04/09 | 000,032,768 | ---- | C] () -- C:\WINDOWS\commhook.dll[2008/04/09 | 000,020,480 | ---- | C] () -- C:\WINDOWS\commque.dll[2008/04/09 | 000,245,760 | ---- | C] () -- C:\WINDOWS\dialogs.dll[2007/11/05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PNTINFO. INI[2007/11/01 | 000,000,043 | ---- | C] () -- C:\WINDOWS\POINTHelp. INI[2007/10/26 | 000,131,072 | -H-- | C] () -- C:\Documents and Settings\Randy P\Application Data\svfiles.log[2007/10/26 | 000,000,114 | ---- | C] () -- C:\Documents and Settings\Randy P\Application Data\sview.ini[2007/10/25 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\Star Open.sys[2007/08/23 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\Randy P\Local Settings\Application Data\fusioncache.dat[2006/10/28 | 000,344,064 | ---- | C] () -- C:\WINDOWS\System32\dlcxcoin.dll[2006/10/20 | 000,106,496 | ---- | C] () -- C:\WINDOWS\System32\dlcxinsr.dll[2006/10/20 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\dlcxcur.dll[2006/10/20 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\dlcxjswr.dll[2006/10/20 | 000,176,128 | ---- | C] () -- C:\WINDOWS\System32\dlcxinsb.dll[2006/10/20 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\dlcxcub.dll[2006/10/20 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\dlcxcu.dll[2006/10/20 | 000,176,128 | ---- | C] () -- C:\WINDOWS\System32\dlcxins.dll[2006/10/20 | 000,454,656 | ---- | C] () -- C:\WINDOWS\System32\dlcxutil.dll[2006/10/20 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\dlcxgrd.dll[2006/10/17 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\dsp_trc.dll[2006/09/12 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC. INI[2006/09/11 | 000,000,058 | ---- | C] () -- C:\WINDOWS\mchguid.ini[2006/09/11 | 000,010,875 | ---- | C] () -- C:\WINDOWS\ESOA. INI[2006/09/11 | 000,003,679 | ---- | C] () -- C:\WINDOWS\Gr Addr Bk.ini[2006/09/11 | 000,000,995 | ---- | C] () -- C:\WINDOWS\GRACE. INI[2006/09/11 | 000,000,053 | ---- | C] () -- C:\WINDOWS\PRSRVDLL. INI[2006/09/11 | 000,001,117 | ---- | C] () -- C:\WINDOWS\winpoint.ini[2006/09/11 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\GTW32N50.dll[2006/09/11 | 000,004,254 | ---- | C] () -- C:\WINDOWS\System32\WLAN. INI[2006/09/06 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\dlcxcfg.dll[2006/08/11 | 000,000,137 | ---- | C] () -- C:\Documents and Settings\Network Service\Local Settings\Application Data\fusioncache.dat[2006/04/24 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\dlcxvs.dll[2005/06/01 | 011,194,368 | ---- | C] () -- C:\WINDOWS\System32\ZHHP_RES. DLL[2005/06/01 | 000,749,568 | ---- | C] () -- C:\WINDOWS\System32\AGISSI. DLL[2005/06/01 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\VSHP2600. DLL[2003/01/07 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF. INI[1999/10/13 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\gns2[2006/02/28 | 018,738,937 | ---- | M] () file -- C:\WINDOWS\Driver Cache\i386\sp2.cab: AGP440.sys[2008/07/21 | 023,852,652 | ---- | M] () file -- C:\WINDOWS\Driver Cache\i386\sp3.cab: AGP440.sys[2008/07/21 | 023,852,652 | ---- | M] () file -- C:\WINDOWS\Service Pack Files\i386\sp3.cab: AGP440.sys[2008/04/13 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ERDNT\cache\agp440.sys[2008/04/13 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\Service Pack Files\i386\agp440.sys[2008/04/13 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440[2006/02/28 | 018,738,937 | ---- | M] () file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys[2008/07/21 | 023,852,652 | ---- | M] () file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys[2008/07/21 | 023,852,652 | ---- | M] () file -- C:\WINDOWS\Service Pack Files\i386\sp3.cab:atapi.sys[2008/04/13 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys[2008/04/13 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\Service Pack Files\i386\atapi.sys[2008/04/13 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\[2008/04/13 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\ERDNT\cache\eventlog.dll[2008/04/13 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\Service Pack Files\i386\eventlog.dll[2008/04/13 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\system32\[2008/04/13 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\ERDNT\cache\netlogon.dll[2008/04/13 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\Service Pack Files\i386\netlogon.dll[2008/04/13 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\system32\[2008/04/13 | 000,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\ERDNT\cache\scecli.dll[2008/04/13 | 000,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\Service Pack Files\i386\scecli.dll[2008/04/13 | 000,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\system32\report: OTL Extras logfile created on: 3/10/2010 AM - Run 1OTL by Old Timer - Version 3.1.36.0 Folder = C:\Documents and Settings\Randy P\Desktop Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702)Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 479.00 Mb Total Physical Memory | 135.00 Mb Available Physical Memory | 28.00% Memory free979.00 Mb Paging File | 600.00 Mb Available in Paging File | 61.00% Paging File free Paging file location(s): C:\576 1152 [binary data] %System Drive% = C: | %System Root% = C:\WINDOWS | %Program Files% = C:\Program Files Drive C: | 180.31 Gb Total Space | 136.50 Gb Free Space | 75.70% Space Free | Partition Type: NTFSD: Drive not present or media not loaded E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded Drive H: | 5.99 Gb Total Space | 1.04 Gb Free Space | 17.40% Space Free | Partition Type: FAT32I: Drive not present or media not loaded Computer Name: RANDYPCurrent User Name: Randy PLogged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard \shell\[command]\command]batfile [open] -- "%1" %*cmdfile [open] -- "%1" %*comfile [open] -- "%1" %*exefile [open] -- "%1" %*htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)https [open] -- Reg Error: Key error.piffile [open] -- "%1" %*regfile [merge] -- Reg Error: Key error.scrfile [config] -- "%1"scrfile [install] -- rundll32desk.cpl, Install Screen Saver %l (Microsoft Corporation)scrfile [open] -- "%1" /Stxtfile [edit] -- Reg Error: Key error. NET Framework 3.5 SP1"Mozilla Firefox (3.6)" = Mozilla Firefox (3.6)"Power Tools Lite_is1" = Power Tools Lite"seopowersuite" = SEO Power Suite"Smart FTP Client 3.0 Setup Files" = Smart FTP Client 3.0 Setup Files (remove only)"Sony Player Plug-in for Windows Media Player" = Sony Player Plug-in for Windows Media Player"Swift View" = Swift View Viewer"Traffic Travis_is1" = Traffic Travis 3.1.17"Win RAR archiver" = Win RAR archiver [ Application Events ]Error - 2/24/2010 PM | Computer Name = RANDYP | Source = Application Error | ID = 1000Description = Faulting application evo2.exe, version 1.0.0.1, faulting module unknown, version 0.0.0.0, fault address 0x04441c25. Unknown [openas] -- %System Root%\system32\rundll32%System Root%\system32\shell32.dll, Open As_Run DLL %1Directory [find] -- %System Root%\(Microsoft Corporation)Folder [open] -- Reg Error: Key error. Drive [find] -- %System Root%\(Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]"First Run Disabled" = 1"Anti Virus Disable Notify" = 0"Firewall Disable Notify" = 0"Anti Virus Override" = 0"Firewall Override" = 0"Updates Disable Notify" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\Ahnlab Anti Virus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\Computer Associates Anti Virus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\Kaspersky Anti Virus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\Mc Afee Anti Virus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\Mc Afee Firewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\Panda Anti Virus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\Panda Firewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\Sophos Anti Virus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\Symantec Anti Virus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\Symantec Firewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\Tiny Firewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\Trend Anti Virus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\Trend Firewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\Zone Labs Firewall] [HKEY_LOCAL_MACHINE\SYSTEM\Current Control Set\Services\Shared Access\Parameters\Firewall Policy\Domain Profile]"Enable Firewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\Current Control Set\Services\Shared Access\Parameters\Firewall Policy\Domain Profile\Globally Open Ports\List]"139: TCP" = 139: TCP:*: Enabled:@xpsp2res.dll,-22004"445: TCP" = 445: TCP:*: Enabled:@xpsp2res.dll,-22005"137: UDP" = 137: UDP:*: Enabled:@xpsp2res.dll,-22001"138: UDP" = 138: UDP:*: Enabled:@xpsp2res.dll,-22002"1900: UDP" = 1900: UDP: Local Sub Net: Enabled:@xpsp2res.dll,-22007"2869: TCP" = 2869: TCP: Local Sub Net: Enabled:@xpsp2res.dll,-22008"65533: TCP" = 65533: TCP:*: Enabled: Services"52344: TCP" = 52344: TCP:*: Enabled: Services"3246: TCP" = 3246: TCP:*: Enabled: Services"2479: TCP" = 2479: TCP:*: Enabled: Services"3389: TCP" = 3389: TCP:*: Enabled: Remote Desktop"1818: TCP" = 1818: TCP:*: Enabled: Services"6774: TCP" = 6774: TCP:*: Enabled: Services"5957: TCP" = 5957: TCP:*: Enabled: Services"9784: TCP" = 9784: TCP:*: Enabled: Services"4269: TCP" = 4269: TCP:*: Enabled: Services"4770: TCP" = 4770: TCP:*: Enabled: Services"2724: TCP" = 2724: TCP:*: Enabled: Services [HKEY_LOCAL_MACHINE\SYSTEM\Current Control Set\Services\Shared Access\Parameters\Firewall Policy\Standard Profile]"Enable Firewall" = 1"Do Not Allow Exceptions" = 0"Disable Notifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\Current Control Set\Services\Shared Access\Parameters\Firewall Policy\Standard Profile\Globally Open Ports\List]"1900: UDP" = 1900: UDP: Local Sub Net: Enabled:@xpsp2res.dll,-22007"2869: TCP" = 2869: TCP: Local Sub Net: Enabled:@xpsp2res.dll,-22008"139: TCP" = 139: TCP: Local Sub Net: Enabled:@xpsp2res.dll,-22004"445: TCP" = 445: TCP: Local Sub Net: Enabled:@xpsp2res.dll,-22005"137: UDP" = 137: UDP: Local Sub Net: Enabled:@xpsp2res.dll,-22001"138: UDP" = 138: UDP: Local Sub Net: Enabled:@xpsp2res.dll,-22002"65533: TCP" = 65533: TCP:*: Enabled: Services"52344: TCP" = 52344: TCP:*: Enabled: Services"3246: TCP" = 3246: TCP:*: Enabled: Services"2479: TCP" = 2479: TCP:*: Enabled: Services"3389: TCP" = 3389: TCP:*: Enabled: Remote Desktop"1818: TCP" = 1818: TCP:*: Enabled: Services"6774: TCP" = 6774: TCP:*: Enabled: Services"5957: TCP" = 5957: TCP:*: Enabled: Services"9784: TCP" = 9784: TCP:*: Enabled: Services"4269: TCP" = 4269: TCP:*: Enabled: Services"4770: TCP" = 4770: TCP:*: Enabled: Services"2724: TCP" = 2724: TCP:*: Enabled: Services [HKEY_LOCAL_MACHINE\SYSTEM\Current Control Set\Services\Shared Access\Parameters\Firewall Policy\Domain Profile\Authorized Applications\List]"C:\Program Files\MSN Messenger\msnmsgr.exe" = C:\Program Files\MSN Messenger\msnmsgr.exe:*: Enabled: Windows Live Messenger 8.1 -- File not found"C:\Program Files\MSN Messenger\livecall.exe" = C:\Program Files\MSN Messenger\livecall.exe:*: Enabled: Windows Live Messenger 8.1 (Phone) -- File not found [HKEY_LOCAL_MACHINE\SYSTEM\Current Control Set\Services\Shared Access\Parameters\Firewall Policy\Standard Profile\Authorized Applications\List]"C:\Program Files\Smart FTP Client\Smart FTP.exe" = C:\Program Files\Smart FTP Client\Smart FTP.exe:*: Enabled: Smart FTP Client 3.0 -- (Smart Soft Ltd.)"C:\WINDOWS\system32\dlcxcoms.exe" = C:\WINDOWS\system32\dlcxcoms.exe:*: Disabled: Dell 926 Server -- ( )"C:\Program Files\xerox\nwwia\Xrx FTPLt.exe" = C:\Program Files\xerox\nwwia\Xrx FTPLt.exe:*: Disabled: Xrx FTPLt -- ()"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*: Enabled: Firefox -- (Mozilla Corporation)"C:\Program Files\i Tunes\i Tunes.exe" = C:\Program Files\i Tunes\i Tunes.exe:*: Enabled:i Tunes -- (Apple Inc.) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Current Version\Uninstall]"" = Microsoft Visual C 2008 ATL Update kb973924 - x86 9.0.30729.4148"" = VC 9.0 Runtime"" = Bonjour"" = Web Reg"" = Calyx Loan Bridge11"" = Mass Article Creator"" = Microsoft Visual C 2008 Redistributable - x86 9.0.30729.4148"" = 32 Bit HP CIO Components Installer"" = Java™ 6 Update 17"" = EVO2"" = J2SE Runtime Environment 5.0 Update 11"" = Java™ SE Runtime Environment 6 Update 1"" = Java™ 6 Update 2"" = Java™ 6 Update 3"" = Java™ 6 Update 5"" = Java™ 6 Update 7"" = Web Fldrs XP"" = Authority Hub"" = Paint. Error - 2/25/2010 PM | Computer Name = RANDYP | Source = Application Error | ID = 1000Description = Faulting application evo2.exe, version 1.0.0.1, faulting module unknown, version 0.0.0.0, fault address 0x043b1c25. NET v3.36"" = SAPI"" = Apple Software Update"" = Setup"" = Smart FTP Client"" = Mass Article Submitter"" = Microsoft Visual C 2005 ATL Update kb973923 - x86 8.0.50727.4053"" = Keyword Blueprint"" = Fax"_is1" = g Keyword Tool 1.0"" = Microsoft Visual C 2005 Redistributable"" = Microsoft Office Professional Edition 2003"" = Compatibility Pack for the 2007 Office system"" = Microsoft Office XP Professional with Front Page"" = Microsoft Office Power Point Viewer 2007 (English)"" = Microsoft Application Error Reporting"" = VC 9.0 Runtime"" = Adobe AIR"" = Microsoft . A24874ABA585E72CC832DED473DD4E8BBFF88E58.1" = SERPy"File Zilla Client" = File Zilla Client 3.3.1"Glary Utilities_is1" = Glary Utilities 2.20.0.831"Google Updater" = Google Updater"HTMLExecutable IERuntime Setup44" = HTML Executable IERuntime"ie8" = Windows Internet Explorer 8"i Won Slots" = i Won Prize Machine"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware"Micro Niche Finder_is1" = Micro Niche Finder"Microsoft . Error - 2/27/2010 AM | Computer Name = RANDYP | Source = Userenv | ID = 1041Description = Windows cannot query Dll Name registry entry for and it will not be loaded. NET Framework 3.0 Service Pack 2"" = Quick Time"" = Apple Mobile Device Support"" = PC Connectivity Solution"" = Adobe Reader 7.1.0"" = OGA Notifier 2.0.0048.0"" = Apple Application Support"" = Microsoft . E611A7DFA7A14643DD636F3114ECD771F85A61E0.1" = Authority Hub"CB Niche Builder_is1" = CB Niche Builder"CCleaner" = CCleaner"Cob Backup10" = Cobian Backup 10"Commission Blueprint. E611A7DFA7A14643DD636F3114ECD771F85A61E0.1" = Keyword Blueprint"Commission Blueprint. This is most likely caused by a faulty registration. NET Framework 2.0 Service Pack 2"" = Toolbox"" = Setup"" = Microsoft . NET Framework 3.5 SP1"" = i Tunes"" = SERPy"" = Jing"" = BPDSoftware"" = Point DEMO"" = Visual C 2008 x86 Runtime - (v9.0.30729)".vc_x86runtime_30729_01" = Visual C 2008 x86 Runtime - v9.0.30729.01"" = Microsoft WSE 2.0 SP3 Runtime"" = Open 3.0"" = Google Ad Words Editor"" = Microsoft Visual C 2008 Redistributable - x86 9.0.21022"3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F" = Windows Driver Package - Nokia pccsmcfd (10/12/2007 6.85.4.0)"6194C28A8F62DD817EA1B918E6E46E806A21B452" = Windows Driver Package - Mobile Top (sshpmdm) Modem (02/23/2007 2.5.0.0)"65B6FE5418CE28F4D72543FB2D964C3CEC83F161" = Windows Driver Package - Mobile Top (sshpusb) USB (02/23/2007 2.5.0.0)"Adobe AIR" = Adobe AIR"Adobe Flash Player Active X" = Adobe Flash Player 10 Active X"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin"avast5" = avast! Error - 2/27/2010 AM | Computer Name = RANDYP | Source = Userenv | ID = 1041Description = Windows cannot query Dll Name registry entry for and it will not be loaded. This is most likely caused by a faulty registration. Error - 2/27/2010 AM | Computer Name = RANDYP | Source = Userenv | ID = 1041Description = Windows cannot query Dll Name registry entry for and it will not be loaded. This is most likely caused by a faulty registration. Error - 2/27/2010 AM | Computer Name = RANDYP | Source = Userenv | ID = 1041Description = Windows cannot query Dll Name registry entry for and it will not be loaded. This is most likely caused by a faulty registration. Error - 2/28/2010 AM | Computer Name = RANDYP | Source = Application Hang | ID = 1002Description = Hanging application Spybot SD.exe, version 1.6.2.46, hang module hungapp, version 0.0.0.0, hang address 0x00000000. Error - 3/1/2010 PM | Computer Name = RANDYP | Source = Application Hang | ID = 1002Description = Hanging application firefox.exe, version 1.9.2.3667, hang module hungapp, version 0.0.0.0, hang address 0x00000000. Error - 3/3/2010 AM | Computer Name = RANDYP | Source = . NET Runtime 2.0 Error Reporting | ID = 1000Description = Faulting application evo2.exe, version 1.0.0.1, stamp 4b832929, faulting module unknown, version 0.0.0.0, stamp 00000000, debug? Error - 3/4/2010 PM | Computer Name = RANDYP | Source = Application Error | ID = 1000Description = Faulting application iexplore.exe, version 8.0.6001.18702, faulting module unknown, version 0.0.0.0, fault address 0x020fa3db. [ System Events ]Error - 3/5/2010 PM | Computer Name = RANDYP | Source = Service Control Manager | ID = 7000Description = The Parallel port driver service failed to start due to the following error: %58 Error - 3/6/2010 PM | Computer Name = RANDYP | Source = Service Control Manager | ID = 7000Description = The Parallel port driver service failed to start due to the following error: %58 Error - 3/6/2010 PM | Computer Name = RANDYP | Source = Service Control Manager | ID = 7000Description = The Parallel port driver service failed to start due to the following error: %58 Error - 3/6/2010 PM | Computer Name = RANDYP | Source = Dhcp | ID = 1002Description = The IP address lease 192.168.254.1 for the Network Card with network address 001150A01D7E has been denied by the DHCP server 192.168.254.254 (The DHCP Server sent a DHCPNACK message). Error - 3/6/2010 PM | Computer Name = RANDYP | Source = Service Control Manager | ID = 7000Description = The Parallel port driver service failed to start due to the following error: %58 Error - 3/8/2010 AM | Computer Name = RANDYP | Source = Service Control Manager | ID = 7000Description = The Parallel port driver service failed to start due to the following error: %58 Error - 3/8/2010 AM | Computer Name = RANDYP | Source = Dhcp | ID = 1002Description = The IP address lease 192.168.254.1 for the Network Card with network address 001150A01D7E has been denied by the DHCP server 192.168.254.254 (The DHCP Server sent a DHCPNACK message). Error - 3/8/2010 PM | Computer Name = RANDYP | Source = Service Control Manager | ID = 7000Description = The Parallel port driver service failed to start due to the following error: %58 Error - 3/8/2010 PM | Computer Name = RANDYP | Source = Service Control Manager | ID = 7000Description = The Parallel port driver service failed to start due to the following error: %58 Error - 3/8/2010 PM | Computer Name = RANDYP | Source = Dhcp | ID = 1002Description = The IP address lease 192.168.254.1 for the Network Card with network address 001150A01D7E has been denied by the DHCP server 192.168.254.254 (The DHCP Server sent a DHCPNACK message). Hi, Combo Fix is an extremely powerful tool which should only be used when instructed to do so by someone who has been properly trained. It is intended by its creator to be used under the guidance and supervision of a Malware Removal Expert, not for private use. Using this tool incorrectly could lead to disastrous problems with your operating system such as preventing it from ever starting again. Please do not run Combofix on your own If you still have the log in C:\please post the content. Please download Help Asst_mebroot_and save it to your desktop. Double click the file to run it and follow any prompts. If the tool detects an mbr infection, please allow it to run mbr -f and shutdown your computer. In the event the tool does not detect an mbr infection and completes, click Start Run and type the following bolded command, then hit Enter.helpasst -mbrt Make sure you leave a space between helpasst and -mbrt ! Please post the contents of that log.**Important note to Dell users - fixing the mbr may prevent access the the Dell Restore Utility, which allows you to press a key on startup and revert your computer to a factory delivered state. Upon restarting, please wait about 5 minutes, click Start Run and type the following bolded command, then hit Enter.helpasst -mbrt Make sure you leave a space between helpasst and -mbrt ! There are a couple of known fixes for said condition, though the methods are somewhat advanced. Close/disable all anti virus and anti malware programs so they do not interfere with the running of Combo Fix.3. If you are unwilling to take such a risk, you should not allow the tool to execute mbr -f nor execute the command manually, and you will either need to restore your computer to a factory state or allow your computer to remain having an infected mbr (the latter not recommended).regards myrti Hi,this is looking rather promissing. Open notepad and copy/paste the text in the quotebox below into it: File:: Folder:: Registry::[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\Globally Open Ports\List] "65533: TCP"=- "52344: TCP"=- "3246: TCP"=- "2479: TCP"=- "3389: TCP"=- "1818: TCP"=- "6774: TCP"=- "5957: TCP"=- "9784: TCP"=- "4269: TCP"=- "4770: TCP"=- "2724: TCP"=-Refering to the picture above, drag CFScript into Combo When finished, it shall produce a log for you at C:\Combo which I will require in your next reply. If Combo Fix wants to update, please permit it.regards myrti It appears to be doing good. Thanks C:\Documents and Settings\Compaq_Owner\My Documents\New Folder\DVD Fab Platinum-Gold-Express 2.70 (With Key Generator)probably a variant of Win32/Agent trojan C:\Program Files\Incomplete\T-44468655-PC Adult Sex Games - Cracked Thri XXX Games - 3D Sex Villa 2.017.001 & Henta II 3D 2.017.004 & Virtually Jenna 2.017.002 Incl. Although it was pretty much ok other than the original problem with the bank redirecting to the false screen. AMD Patch(1)probably a variant of Win32/Agent trojan Cracking applications are used for illegally breaking (cracking) various copy-protection and registration techniques used in commercial software. These programs may be distributed via Web sites, Usenet, and P2P networks.. Searches for serial numbers, cracks, and even antivirus products like Trend Micro yield malcodes that come in the form of executables or self-extracting files...quick links in these sites also lead to malicious files. that some of the worst types of malware infections can be contracted and spread by visiting crack, keygen, warez and other pirated software sites. Please uninstall it and download the latest version from Adobe: Download Please untick all proposed toolbars unless you really want them. In many cases, those sites are infested with a lot of malware and an increasing source of system infection. Let me know if you run into any problems with this.regards myrti Hi,the log does not show any infections most of it is in a backup folder of the tools we used. Those who attempt to get software for free can end up with a computer system so .-- If you choose to update via the Java applet in Control Panel, uncheck the option to install the Toolbar unless you want it.-- The uninstaller incorporated in this release removes previous Updates 10 and above, but does not remove older versions, so they still need to be removed manually. C:\Documents and Settings\Compaq_Owner\My Documents\New Folder\DVD Fab Platinum-Gold-Express 2.70 (With Key Generator)probably a variant of Win32/Agent trojan C:\Program Files\Incomplete\T-44468655-PC Adult Sex Games - Cracked Thri XXX Games - 3D Sex Villa 2.017.001 & Henta II 3D 2.017.004 & Virtually Jenna 2.017.002 Incl. AMD Patch(1)probably a variant of Win32/Agent trojan Cracking applications are used for illegally breaking (cracking) various copy-protection and registration techniques used in commercial software. These programs may be distributed via Web sites, Usenet, and P2P networks.. Searches for serial numbers, cracks, and even antivirus products like Trend Micro yield malcodes that come in the form of executables or self-extracting files...quick links in these sites also lead to malicious files. that some of the worst types of malware infections can be contracted and spread by visiting crack, keygen, warez and other pirated software sites. Please uninstall it and download the latest version from Adobe: Download Please untick all proposed toolbars unless you really want them. In many cases, those sites are infested with a lot of malware and an increasing source of system infection. Let me know if you run into any problems with this.regards myrti Since the issue is resolved, this topic is now Closed If you need this topic reopened, please send me a PM. Those who attempt to get software for free can end up with a computer system so .-- If you choose to update via the Java applet in Control Panel, uncheck the option to install the Toolbar unless you want it.-- The uninstaller incorporated in this release removes previous Updates 10 and above, but does not remove older versions, so they still need to be removed manually. Please include the address of this thread in your request. “On The Smugglers’ Radar” is a feature for books that have caught our eye: books we have heard of via other bloggers, directly from publishers, and/or from our regular incursions into the Amazon jungle. Because we want far more books than we can possibly buy or review (what else is new? ), we thought we would make the Smugglers’ Radar into a weekly feature – so YOU can tell us which books you have on your radar as well! How far would you go to save your family from an invisible threat? A terrifyingly original thriller from the author of The Machine. Clear Vista is used by everyone and can predict anything. It’s a daily lifesaver, predicting weather to traffic to who you should befriend. Laurence Walker wants to be the next President of the United States. It will predict whether he’s the right man for the job. It will predict that his son can only survive for 102 seconds underwater. It will predict that Laurence’s life is about to collapse in the most unimaginable way. A densely atmospheric and intrigue-filled fantasy novel of living spies, dead gods, buried histories, and a mysterious, ever-changing city-from one of America’s most acclaimed young SF writers. Years ago, the city of Bulikov wielded the powers of the Gods to conquer the world. But after its divine protectors were mysteriously killed, the conqueror has become the conquered; the city’s proud history has been erased and censored, progress has left it behind, and it is just another colonial outpost of the world’s new geopolitical power. Officially, the quiet mousy woman is just another lowly diplomat sent by Bulikov’s oppressors. Unofficially, Shara is one of her country’s most accomplished spymasters-dispatched to investigate the brutal murder of a seemingly harmless historian. As Shara pursues the mystery through the ever-shifting physical and political geography of the city, she begins to suspect that the beings who once protected Bulikov may not be as dead as they seem-and that her own abilities might be touched by the divine as well. I never felt compelled to read Abercrombie’s books so far (not usually a fan of grimdark) but he has a Young Adult novel coming out and it makes me really, really curious indeed… I may be half a man, but I swore a whole oath.” Prince Yarvi has vowed to regain a throne he never wanted. Born a weakling in the eyes of his father, Yarvi is alone in a world where a strong arm and a cold heart rule. The government calls them Illegals — children with inexplicable abilities — and detains them in menacing facilities so that society is kept out of harm’s way. Been meaning to read Joe Abercrombie’s books for a wh…wait a minute. But first he must survive cruelty, chains, and the bitter waters of the Shattered Sea. He cannot grip a shield or swing an axe, so he must sharpen his mind to a deadly edge. Gathering a strange fellowship of the outcast and the lost, he finds they can do more to help him become the man he needs to be than any court of nobles could. But even with loyal friends at his side, Yarvi finds his path may end as it began—in twists, and traps, and tragedy. Ashala Wolf and her Tribe of fellow Illegals have taken refuge in the Firstwood, a forest eerily conscious of its inhabitants, where they do their best to survive and where they are free to practice their abilities. A compelling debut novel asks what happens when children develop inexplicable abilities—and the government sees them as a threat. But when Ashala is compelled to venture outside her territory, she is betrayed by a friend and captured by an enemy. Injured and vulnerable, with her own Sleepwalker ability blocked, Ashala is forced to succumb to a machine that will pull secrets from her mind. It’s only a matter of time before the machine ferrets out the location of the Tribe. Her betrayer, Justin Connor, is ever-present, saving her life when she wishes to die and watching her every move. Will the Tribe survive the interrogation of Ashala Wolf? Danger, subterfuge, and a secret romance are the perfect storm in this exciting first book in young new talent Lucy Saxon’s epic series Desperate to escape an arranged marriage and the life her high-ranking government official father planned for her, Cat Hunter does the unthinkable. She runs away from her homeland Tellus, disguises herself as a boy, and stows away on an air ship. She’s ready for life in a new land where the general population isn’t poverty stricken and at the mercy of the cruel officials. What she isn’t quite ready for is meeting Fox, a crew member aboard the Stormdancer—which turns out to be a smugglers’ ship. So begins an epic adventure that spans both land and sea. This explosive debut starts a unique six-book series. Frankweiler meets Chasing Vermeer in this smart middle grade debut When she spills a bottle of rubbing alcohol on her late grandfather’s painting, thirteen-year old Theodora Tenpenny wipes it off—and discovers what seems to be an old masterpiece underneath. Each novel will be set in a different land within the Tellus world, with repeating characters and related, nonlinear storylines that combine to create a one-of-a-kind, addictive reading experience. That’s great news for Theo, who’s struggling to hang onto her family’s fragile town house and support her mother on her grandfather’s legacy of $463. There’s just one problem: Theo’s grandfather was a security guard at the Metropolitan Museum of Art, and she worries the painting may be stolen. With the help of some unusual new friends, Theo’s search for answers takes her all around Manhattan, and introduces her to a side of the city—and her grandfather—that she never knew. This is the story of seventeen-year-old Prenna James, who immigrated to New York when she was twelve. To solve the mystery of the painting, she’ll have to abandon her hard-won self-reliance and build a community, one serendipitous friendship at a time. Except Prenna didn’t come from a different country. An unforgettable epic romantic thriller about a girl from the future who might be able to save the world…if she lets go of the one thing she’s found to hold on to. She came from a different time-a future where a mosquito-borne illness has mutated into a pandemic, killing millions and leaving the world in ruins. Prenna and the others who escaped to the present day must follow a strict set of rules: never reveal where they’re from, never interfere with history, and never, ever be intimate with anyone outside their community. Prenna does as she’s told, believing she can help prevent the plague that will one day ravage the earth. But everything changes when Prenna falls for Ethan Jarves. From Ann Brashares, the #1 New York Times bestselling author of The Sisterhood of the Traveling Pants series, The Here and Now is thrilling, exhilarating, haunting, and heartbreaking-and a must-read novel of the year. A grand innovation in hard SF space opera—a slower-than-light civilization of planets without stars When seventeen-year-old Toby Mc Gonigal finds himself lost in space, separated from his family, he expects his next drift into cold sleep to be his last. After all, the planet he’s orbiting is frozen and sunless, and the cities are dead. But when Toby wakes again, he’s surprised to discover a thriving planet, a strange and prosperous galaxy, and something stranger still—that he’s been asleep for 14,000 years. Welcome to the Lockstep Empire, where civilization is kept alive by careful hibernation. Here cold sleeps can last decades and waking moments mere weeks. Its citizens survive for millenia, traveling asleep on long voyages between worlds. Not only is Lockstep the new center of the galaxy, but Toby is shocked to learn that the Empire is still ruled by its founding family: his own. Suspicious of the return of his long-lost brother, whose rightful inheritance also controls the lockstep hibernation cycles, Peter sees Toby as a threat to his regime. Now, with the help of a lockstep girl named Corva, Toby must survive the forces of this new Empire, outwit his siblings, and save human civilization. Eric Albright is a twenty-six-year-old journalist living in London. That is to say he would be a journalist if he got off his backside. But this luckless slacker isn’t all bad—he has a soft spot for his sometimes friend Stuart Casey, the homeless old drunk who mostly lives under the railway bridge near his flat. Eric is willing to let his life just drift by…until the day a small red door appears on the graffiti-covered wall of the bridge, and a gang of strange-looking people—Eric’s pretty sure one of them is a giant—dash out of the door and rob the nearby newsagent. From that day on Eric and Case haunt the arch, waiting for the door to reappear. When it does, both Eric and Case choose to go through…to the land of Levaal. A place where a mountain-sized dragon with the powers of a god lies sleeping beneath a great white castle. In the castle the sinister Lord Vous rules with an iron fist, and the Project, designed to effect his transformation into an immortal spirit, nears completion. But Vous’s growing madness is close to consuming him, together with his fear of an imaginary being named Shadow. An impossibly vast wall divides Levall, and no one has ever seen what lies beyond. Eric and Casey are called Pilgrims, and may have powers that no one in either world yet understands, and soon the wall may be broken. Ana Grilo is a Brazilian who moved to the UK because of the weather. She works with translations in RL and hopes one day The Book Smugglers will be her day job. When she’s not here at The Book Smugglers, she is hogging our Twitter feed.

2017-2018 © theindy.us
Sitemap