Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

no system restore,

Started by kobisu , Apr 18 2011 08:28 AM

  • Please log in to reply

#1
kobisu
Posted 18 April 2011 - 08:28 AM

kobisu

    New Member

  • Member
  • Pip
  • 1 posts
Have just done, two days ago, a clean re install of Windows 7 and today when I tried to uninstall some facebook rubbish??? I noticed that a restore point creation failed so I then went to Computer/properties/system protection and saw that none of the boxes were active...no system restore and error message 0x81000203. When I reinstalled the various apps I thought I had only clean downloads on my external HD but obviously something is amiss!!!

I have done a Malwarebytes scan, a Microsoft Security Essentials Scan and now the OTL scan

Here is the result of the OTL scan:

OTL logfile created on: 4/18/2011 11:56:21 PM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Susan Zilberstein\Downloads
Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: Australia | Language: ENA | Date Format: d/MM/yyyy

3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 51.00% Memory free
7.00 Gb Paging File | 5.00 Gb Available in Paging File | 74.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 931.41 Gb Total Space | 826.49 Gb Free Space | 88.73% Space Free | Partition Type: NTFS
Drive F: | 1397.26 Gb Total Space | 1043.56 Gb Free Space | 74.69% Space Free | Partition Type: NTFS
Drive H: | 100.00 Mb Total Space | 70.29 Mb Free Space | 70.30% Space Free | Partition Type: NTFS

Computer Name: KOBISU | User Name: Susan Zilberstein | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/04/18 23:55:42 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Susan Zilberstein\Downloads\OTL.exe
PRC - [2011/03/19 03:57:02 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011/02/17 06:21:58 | 002,190,688 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgtray.exe
PRC - [2011/02/15 05:38:06 | 007,421,280 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
PRC - [2011/02/11 06:25:52 | 001,080,672 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgnsx.exe
PRC - [2011/02/10 07:55:18 | 001,148,256 | ---- | M] () -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
PRC - [2011/02/08 05:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe
PRC - [2011/02/08 05:33:40 | 002,707,512 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgfws.exe
PRC - [2011/02/08 05:33:20 | 000,658,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgrsx.exe
PRC - [2011/02/08 05:32:52 | 001,025,376 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgemcx.exe
PRC - [2011/02/08 05:32:48 | 000,351,072 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgcsrvx.exe
PRC - [2011/02/08 05:32:46 | 000,656,736 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgchsvx.exe
PRC - [2011/02/08 05:32:42 | 000,750,432 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgam.exe
PRC - [2010/12/14 14:42:42 | 000,653,120 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
PRC - [2010/12/14 14:41:10 | 001,517,376 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
PRC - [2010/11/30 13:20:36 | 000,997,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2010/11/11 12:26:42 | 000,206,360 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
PRC - [2010/11/11 12:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2010/05/04 12:07:22 | 000,503,080 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Update\NASvc.exe
PRC - [2010/03/10 14:24:40 | 002,230,648 | ---- | M] (OrdinarySoft) -- C:\Program Files\Start Menu 7\StartMenu7.exe
PRC - [2010/02/22 10:44:14 | 000,045,312 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Program Files\NewTech Infosystems\Backup Now EZ\BackupNowEZSvr.exe
PRC - [2009/10/31 15:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/08/14 00:32:04 | 001,572,864 | ---- | M] (Edimax Technology Co., Ltd.) -- C:\Program Files\Edimax\Common\RaUI.exe
PRC - [2009/07/14 21:53:00 | 000,185,632 | ---- | M] (Ralink Technology, Corp.) -- C:\Program Files\Edimax\Common\RaRegistry.exe
PRC - [2009/07/14 11:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009/07/14 11:14:29 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PrintIsolationHost.exe
PRC - [2009/07/14 11:14:15 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe


========== Modules (SafeList) ==========

MOD - [2011/04/18 23:55:42 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Susan Zilberstein\Downloads\OTL.exe
MOD - [2010/08/21 15:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - [2011/04/18 11:19:19 | 001,343,400 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2011/03/18 08:11:02 | 000,947,528 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service)
SRV - [2011/02/15 05:38:06 | 007,421,280 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2011/02/08 05:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd)
SRV - [2011/02/08 05:33:40 | 002,707,512 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgfws.exe -- (avgfws)
SRV - [2010/12/14 14:41:10 | 001,517,376 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2010/12/14 14:39:10 | 000,029,504 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\System32\uxtuneup.dll -- (UxTuneUp)
SRV - [2010/11/11 12:26:42 | 000,206,360 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe -- (NisSrv)
SRV - [2010/11/11 12:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2010/05/04 12:07:22 | 000,503,080 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2010/02/22 10:44:14 | 000,045,312 | ---- | M] (NewTech Infosystems, Inc.) [Auto | Running] -- C:\Program Files\NewTech Infosystems\Backup Now EZ\BackupNowEZSvr.exe -- (NTI BackupNowEZSvr)
SRV - [2009/07/14 21:53:00 | 000,185,632 | ---- | M] (Ralink Technology, Corp.) [Auto | Running] -- C:\Program Files\Edimax\Common\RaRegistry.exe -- (RalinkRegistryWriter)
SRV - [2009/07/14 11:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 11:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)


========== Driver Services (SafeList) ==========

DRV - [2011/04/18 19:14:49 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{EBA76B1A-4970-490C-9F90-EDA74B98AF92}\MpKsl88a97ecc.sys -- (MpKsl88a97ecc)
DRV - [2011/03/30 17:17:06 | 000,134,480 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV - [2011/03/01 14:25:18 | 000,034,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2011/02/23 08:27:00 | 010,468,360 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2011/02/22 08:12:50 | 000,022,992 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH)
DRV - [2011/02/10 07:54:00 | 000,296,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2011/02/10 07:53:42 | 000,021,968 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSShim.sys -- (AVGIDSShim)
DRV - [2011/02/10 07:53:40 | 000,024,144 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV - [2011/01/19 04:32:56 | 000,032,464 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86)
DRV - [2011/01/07 06:41:46 | 000,248,656 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2010/11/29 19:27:40 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - [2010/10/24 21:25:38 | 000,054,144 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2010/10/24 21:25:38 | 000,043,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon)
DRV - [2010/07/12 04:34:02 | 000,054,112 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgfwd6x.sys -- (Avgfwfd)
DRV - [2010/05/11 04:41:30 | 000,067,656 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010/02/18 04:25:48 | 000,012,872 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2009/07/14 10:56:07 | 000,265,088 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\BrSerIb.sys -- (BrSerIb) Brother MFC Serial Interface Driver(WDM)
DRV - [2009/07/14 08:53:33 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\BrUsbSIb.sys -- (BrUsbSIb) Brother MFC Serial USB Driver(WDM)
DRV - [2009/07/03 17:31:28 | 000,746,496 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netr28u.sys -- (netr28u)
DRV - [2004/08/13 09:56:20 | 000,005,810 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ASACPI.sys -- (MTsensor)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoo...earchTerms}&f=4

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google .com.au
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ninemsn.com.au/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-au
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = AF 53 F8 FB D6 FC CB 01 [binary data]
IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "AVG Secure Search"
FF - prefs.js..browser.search.selectedEngine: "AVG Secure Search"
FF - prefs.js..browser.startup.homepage: "http://www.google.com.au/"
FF - prefs.js..keyword.URL: "http://search.avg.co...u&lng=en-GB&q="
FF - prefs.js..network.proxy.type: 0


FF - HKLM\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG10\Firefox4\ [2011/04/18 11:01:54 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared [2011/04/18 11:01:54 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/04/18 11:03:13 | 000,000,000 | ---D | M]

[2011/04/17 19:14:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Susan Zilberstein\AppData\Roaming\Mozilla\Extensions
[2011/04/18 11:14:41 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Susan Zilberstein\AppData\Roaming\Mozilla\Firefox\Profiles\fpfr7ya4.default\extensions
[2011/04/18 11:02:07 | 000,000,000 | ---D | M] (Facemoods) -- C:\Users\Susan Zilberstein\AppData\Roaming\Mozilla\Firefox\Profiles\fpfr7ya4.default\extensions\[email protected]
[2011/04/17 19:13:47 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
File not found (No name found) --
[2011/04/18 11:01:54 | 000,000,000 | ---D | M] (AVG Safe Search) -- C:\PROGRAM FILES\AVG\AVG10\FIREFOX4
[2011/04/18 11:01:54 | 000,000,000 | ---D | M] ("urn:mozilla:install-manifest" em:id="avg@igeared" em:name="AVG Security Toolbar" em:version="6.103.018.001" em:displayname="AVG Security Toolbar" em:iconURL="chrome://tavgp/skin/logo.ico" em:creator="AVG Technologies" em:description="AVG Security Toolbar" em:homepageURL="http://www.avg.com" >) -- C:\PROGRAM FILES\AVG\AVG10\TOOLBAR\FIREFOX\AVG@IGEARED
() (No name found) -- C:\USERS\SUSAN ZILBERSTEIN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\FPFR7YA4.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
[2011/03/19 03:57:02 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
[2010/01/01 18:00:00 | 000,001,538 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-en-GB.xml
[2010/01/01 18:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\bing.xml
[2010/01/01 18:00:00 | 000,000,947 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\chambers-en-GB.xml
[2010/01/01 18:00:00 | 000,001,180 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-en-GB.xml
[2011/04/17 22:06:50 | 000,002,048 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fcmdSrchostpl.xml
[2010/01/01 18:00:00 | 000,001,135 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-en-GB.xml

O1 HOSTS File: ([2009/06/11 07:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O2 - BHO: (Nero Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O2 - BHO: (IplexToALLPlayer) - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\Program Files\OpenSubtitlesPlayer\Iplex\IplexToALLPlayer.dll (ALLCinema Ltd.)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (Nero Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (no name) - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Nero Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O4 - HKLM..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Arovax AntiSpyware] C:\Program Files\Arovax AntiSpyware\arovaxantispyware.exe (Arovax)
O4 - HKCU..\Run: [StartMenu7] C:\Program Files\Start Menu 7\StartMenu7.exe (OrdinarySoft)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O13 - gopher Prefix: missing
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/11 07:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{c0386a17-6952-11e0-95ca-806e6f6e6963}\Shell - "" = AutoRun
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync) - C:\Program Files\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/04/18 19:16:32 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Local\{3BD0A925-5F42-4629-8876-66EFCED5B1E6}
[2011/04/18 19:01:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Ralink
[2011/04/18 19:01:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Edimax Wireless
[2011/04/18 19:01:00 | 000,746,496 | ---- | C] (Ralink Technology Corp.) -- C:\Windows\System32\drivers\netr28u.sys
[2011/04/18 19:01:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Edimax Driver
[2011/04/18 19:00:54 | 000,000,000 | ---D | C] -- C:\Program Files\Cisco
[2011/04/18 19:00:52 | 000,764,416 | ---- | C] (Ralink Technology, Corp.) -- C:\Windows\System32\RAIHV.dll
[2011/04/18 19:00:52 | 000,097,280 | ---- | C] (Ralink Technology, Corp.) -- C:\Windows\System32\RAEXTUI.dll
[2011/04/18 19:00:51 | 001,597,440 | ---- | C] (Ralink Technology, Corp.) -- C:\Windows\System32\RaCertMgr.dll
[2011/04/18 19:00:51 | 000,000,000 | ---D | C] -- C:\Program Files\Edimax
[2011/04/18 18:29:08 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2011/04/18 16:42:54 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Local\{8E7F459D-B9A8-4A98-9D52-EBD917D4D282}
[2011/04/18 12:24:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EZBackitup
[2011/04/18 12:24:43 | 000,000,000 | ---D | C] -- C:\Program Files\EZBackitup
[2011/04/18 11:27:24 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2011/04/18 11:21:34 | 000,000,000 | ---D | C] -- C:\Windows.old
[2011/04/18 11:19:20 | 000,000,000 | ---D | C] -- C:\Windows\System32\Wat
[2011/04/18 11:18:26 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2011/04/18 11:16:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Backup Now EZ
[2011/04/18 11:16:42 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\nti\Xp_x86
[2011/04/18 11:16:42 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\nti\w2k_x86
[2011/04/18 11:16:42 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\nti\Vista_x86
[2011/04/18 11:16:42 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\nti\Vista_ia64
[2011/04/18 11:16:42 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\nti\Vista_amd64
[2011/04/18 11:16:41 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\nti\2003_x86
[2011/04/18 11:16:41 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\nti\2003_ia64
[2011/04/18 11:16:41 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\nti\2003_amd64
[2011/04/18 11:16:32 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\nti
[2011/04/18 11:16:32 | 000,000,000 | ---D | C] -- C:\Program Files\NewTech Infosystems
[2011/04/18 11:15:49 | 000,000,000 | ---D | C] -- C:\Windows\Downloaded Installations
[2011/04/18 11:09:07 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Roaming\AVG10
[2011/04/18 10:37:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Clock Mechanism Screensaver
[2011/04/18 10:37:25 | 000,000,000 | ---D | C] -- C:\Program Files\SaversPlanet.com
[2011/04/18 10:31:28 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2011/04/18 10:29:20 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2011/04/18 07:54:30 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Local\AVG Security Toolbar
[2011/04/18 07:37:41 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2011/04/17 23:25:12 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2011/04/17 23:25:07 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG Security Toolbar
[2011/04/17 23:24:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2011
[2011/04/17 23:24:09 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG10
[2011/04/17 23:24:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\AVG
[2011/04/17 23:12:39 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Local\WindowsForUs
[2011/04/17 23:12:16 | 000,000,000 | ---D | C] -- C:\Program Files\WinBubble
[2011/04/17 23:06:29 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2011/04/17 23:01:24 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Local\{E96EC9C4-8F46-43C2-80A5-A4E21EDE5064}
[2011/04/17 23:00:47 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Roaming\Windows Live Writer
[2011/04/17 23:00:47 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Local\Windows Live Writer
[2011/04/17 23:00:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero
[2011/04/17 23:00:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero
[2011/04/17 23:00:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
[2011/04/17 23:00:03 | 000,000,000 | ---D | C] -- C:\Program Files\Nero
[2011/04/17 22:49:08 | 000,000,000 | ---D | C] -- C:\Windows\en
[2011/04/17 22:48:18 | 000,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
[2011/04/17 22:47:46 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
[2011/04/17 22:47:09 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2011/04/17 22:45:55 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2011/04/17 22:44:55 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2011/04/17 22:27:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
[2011/04/17 22:26:43 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\BrFaxRx
[2011/04/17 22:26:23 | 000,073,728 | ---- | C] (Brother Industories Ltd. P&S Company) -- C:\Windows\System32\BRCrypt.dll
[2011/04/17 22:26:12 | 000,118,784 | ---- | C] (Brother Industries,LTD.) -- C:\Windows\System32\BrMfNt.dll
[2011/04/17 22:26:11 | 000,126,976 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\System32\BrfxD05b.dll
[2011/04/17 22:26:10 | 001,534,464 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\System32\BrWia09b.dll
[2011/04/17 22:26:10 | 000,176,128 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\System32\BroSNMP.dll
[2011/04/17 22:26:10 | 000,073,728 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\System32\BrDctF2.dll
[2011/04/17 22:26:10 | 000,053,760 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\System32\BrUsi09a.dll
[2011/04/17 22:26:10 | 000,005,120 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\System32\BrDctF2L.dll
[2011/04/17 22:26:10 | 000,003,072 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\System32\BrDctF2S.dll
[2011/04/17 22:26:07 | 000,167,936 | ---- | C] (brother) -- C:\Windows\System32\NSSearch.dll
[2011/04/17 22:26:07 | 000,000,000 | ---D | C] -- C:\Program Files\Brother
[2011/04/17 22:25:59 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2011/04/17 22:25:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Brother
[2011/04/17 22:25:36 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Roaming\InstallShield
[2011/04/17 22:17:58 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Local\AskToolbar
[2011/04/17 22:15:25 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\Desktop\DVD software
[2011/04/17 22:14:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Youtube Downloader HD
[2011/04/17 22:14:58 | 000,000,000 | ---D | C] -- C:\Program Files\Youtube Downloader HD
[2011/04/17 22:14:23 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2011/04/17 22:13:56 | 000,000,000 | ---D | C] -- C:\Program Files\MSECache
[2011/04/17 22:13:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2011/04/17 22:13:24 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2011/04/17 22:12:58 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2011/04/17 22:12:26 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Roaming\uTorrent
[2011/04/17 22:11:49 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Roaming\Start Menu 7
[2011/04/17 22:11:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Start Menu 7
[2011/04/17 22:11:33 | 000,000,000 | ---D | C] -- C:\Program Files\Start Menu 7
[2011/04/17 22:10:40 | 002,180,240 | ---- | C] (OrdinarySoft ) -- C:\Users\Susan Zilberstein\Desktop\StartMenu7_Setup_3_6_freeware.exe
[2011/04/17 22:10:33 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Roaming\Macromedia
[2011/04/17 22:10:32 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Roaming\Adobe
[2011/04/17 22:10:27 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2011/04/17 22:09:20 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DVD Decrypter
[2011/04/17 22:09:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD Decrypter
[2011/04/17 22:09:18 | 000,000,000 | ---D | C] -- C:\Program Files\DVD Decrypter
[2011/04/17 22:08:53 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
[2011/04/17 22:08:53 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
[2011/04/17 22:06:48 | 000,000,000 | ---D | C] -- C:\Program Files\facemoods.com
[2011/04/17 22:06:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALLConverter PRO
[2011/04/17 22:06:47 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Local\ALLConverter
[2011/04/17 22:06:45 | 000,000,000 | ---D | C] -- C:\Program Files\ALLConverter PRO
[2011/04/17 22:06:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenSubtitlesPlayer
[2011/04/17 22:06:35 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Local\ALLPlayer
[2011/04/17 22:06:30 | 000,000,000 | ---D | C] -- C:\Program Files\OpenSubtitlesPlayer
[2011/04/17 22:05:12 | 000,000,000 | ---D | C] -- C:\Program Files\Ask.com
[2011/04/17 22:02:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Player Classic - Home Cinema
[2011/04/17 22:02:08 | 000,000,000 | ---D | C] -- C:\Program Files\Media Player Classic - Home Cinema
[2011/04/17 22:01:29 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Roaming\Malwarebytes
[2011/04/17 22:01:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/04/17 22:01:21 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/04/17 22:01:20 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/04/17 22:01:20 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/04/17 22:01:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/04/17 21:59:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
[2011/04/17 21:57:14 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\Desktop\Security
[2011/04/17 21:56:55 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2011/04/17 21:56:52 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Local\Google
[2011/04/17 21:56:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
[2011/04/17 21:56:28 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2011/04/17 21:48:09 | 000,000,000 | ---D | C] -- C:\Program Files\NewFreeScreensavers
[2011/04/17 21:45:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3Planesoft
[2011/04/17 21:45:51 | 001,259,520 | ---- | C] (3Planesoft) -- C:\Windows\System32\Digital_Clock_3D_Screensaver.scr
[2011/04/17 21:45:51 | 000,000,000 | ---D | C] -- C:\Program Files\Digital Clock 3D Screensaver
[2011/04/17 21:39:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3D World Map
[2011/04/17 21:37:43 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Clock Saver
[2011/04/17 21:37:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Clock Saver
[2011/04/17 21:37:43 | 000,000,000 | ---D | C] -- C:\Program Files\CCSSaver
[2011/04/17 21:37:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Agate
[2011/04/17 19:36:00 | 000,000,000 | ---D | C] -- C:\Program Files\CyberLink
[2011/04/17 19:33:38 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free Registry Cleaner
[2011/04/17 19:33:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Registry Cleaner
[2011/04/17 19:33:36 | 000,000,000 | ---D | C] -- C:\Program Files\Eusing Free Registry Cleaner
[2011/04/17 19:33:12 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011/04/17 19:32:29 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2011/04/17 19:32:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC Tuneup 2011
[2011/04/17 19:32:22 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2011/04/17 19:29:37 | 000,000,000 | -H-D | C] -- C:\Windows\Icons
[2011/04/17 19:20:59 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Toolbar
[2011/04/17 19:20:52 | 000,000,000 | ---D | C] -- C:\Program Files\Bing Bar Installer
[2011/04/17 19:19:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2011/04/17 19:19:01 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Local\Diagnostics
[2011/04/17 19:18:57 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2011/04/17 19:15:56 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Local\Windows Live
[2011/04/17 19:15:54 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live
[2011/04/17 19:14:00 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Roaming\Mozilla
[2011/04/17 19:14:00 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Local\Mozilla
[2011/04/17 19:13:46 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2011/04/17 19:10:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PeerBlock
[2011/04/17 19:10:53 | 000,000,000 | ---D | C] -- C:\Program Files\PeerBlock
[2011/04/17 19:09:50 | 000,047,360 | ---- | C] (VSO Software) -- C:\Users\Susan Zilberstein\AppData\Roaming\pcouffin.sys
[2011/04/17 19:09:50 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Roaming\Vso
[2011/04/17 19:09:50 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\Documents\PcSetup
[2011/04/17 19:09:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO
[2011/04/17 19:09:46 | 000,626,688 | ---- | C] (On2.com) -- C:\Windows\System32\vp7vfw.dll
[2011/04/17 19:09:44 | 000,000,000 | ---D | C] -- C:\Program Files\VSO
[2011/04/17 19:09:02 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Roaming\SUPERAntiSpyware.com
[2011/04/17 19:09:02 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2011/04/17 19:08:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[2011/04/17 19:08:55 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2011/04/17 19:06:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Arovax
[2011/04/17 19:06:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arovax AntiSpyware
[2011/04/17 19:06:20 | 000,000,000 | ---D | C] -- C:\Program Files\Arovax AntiSpyware
[2011/04/17 18:30:07 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Local\ElevatedDiagnostics
[2011/04/17 18:29:45 | 000,031,552 | ---- | C] (TuneUp Software) -- C:\Windows\System32\TURegOpt.exe
[2011/04/17 18:29:41 | 000,029,504 | ---- | C] (TuneUp Software) -- C:\Windows\System32\uxtuneup.dll
[2011/04/17 18:29:41 | 000,021,312 | ---- | C] (TuneUp Software) -- C:\Windows\System32\authuitu.dll
[2011/04/17 18:29:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2011
[2011/04/17 18:29:28 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Roaming\TuneUp Software
[2011/04/17 18:29:25 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2011
[2011/04/17 18:29:16 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
[2011/04/17 18:29:03 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2011/04/17 18:29:00 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2011/04/17 18:28:56 | 000,000,000 | -HSD | C] -- C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
[2011/04/17 18:28:56 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2011/04/17 18:27:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hitman Pro 3.5
[2011/04/17 18:27:59 | 000,000,000 | ---D | C] -- C:\Program Files\Hitman Pro 3.5
[2011/04/17 18:27:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Hitman Pro
[2011/04/17 18:09:04 | 000,000,000 | R--D | C] -- C:\Users\Susan Zilberstein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2011/04/17 18:09:04 | 000,000,000 | R--D | C] -- C:\Users\Susan Zilberstein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2011/04/17 18:09:03 | 000,000,000 | R--D | C] -- C:\Users\Susan Zilberstein\Searches
[2011/04/17 18:09:03 | 000,000,000 | -H-D | C] -- C:\Users\Susan Zilberstein\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2011/04/17 18:08:50 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Roaming\Identities
[2011/04/17 18:08:48 | 000,000,000 | R--D | C] -- C:\Users\Susan Zilberstein\Contacts
[2011/04/17 18:08:41 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Local\VirtualStore
[2011/04/17 18:08:37 | 000,000,000 | -HSD | C] -- C:\Users\Susan Zilberstein\AppData\Local\Temporary Internet Files
[2011/04/17 18:08:37 | 000,000,000 | -HSD | C] -- C:\Users\Susan Zilberstein\Templates
[2011/04/17 18:08:37 | 000,000,000 | -HSD | C] -- C:\Users\Susan Zilberstein\Start Menu
[2011/04/17 18:08:37 | 000,000,000 | -HSD | C] -- C:\Users\Susan Zilberstein\SendTo
[2011/04/17 18:08:37 | 000,000,000 | -HSD | C] -- C:\Users\Susan Zilberstein\Recent
[2011/04/17 18:08:37 | 000,000,000 | -HSD | C] -- C:\Users\Susan Zilberstein\PrintHood
[2011/04/17 18:08:37 | 000,000,000 | -HSD | C] -- C:\Users\Susan Zilberstein\NetHood
[2011/04/17 18:08:37 | 000,000,000 | -HSD | C] -- C:\Users\Susan Zilberstein\Documents\My Videos
[2011/04/17 18:08:37 | 000,000,000 | -HSD | C] -- C:\Users\Susan Zilberstein\Documents\My Pictures
[2011/04/17 18:08:37 | 000,000,000 | -HSD | C] -- C:\Users\Susan Zilberstein\Documents\My Music
[2011/04/17 18:08:37 | 000,000,000 | -HSD | C] -- C:\Users\Susan Zilberstein\My Documents
[2011/04/17 18:08:37 | 000,000,000 | -HSD | C] -- C:\Users\Susan Zilberstein\Local Settings
[2011/04/17 18:08:37 | 000,000,000 | -HSD | C] -- C:\Users\Susan Zilberstein\AppData\Local\History
[2011/04/17 18:08:37 | 000,000,000 | -HSD | C] -- C:\Users\Susan Zilberstein\Cookies
[2011/04/17 18:08:37 | 000,000,000 | -HSD | C] -- C:\Users\Susan Zilberstein\Application Data
[2011/04/17 18:08:37 | 000,000,000 | -HSD | C] -- C:\Users\Susan Zilberstein\AppData\Local\Application Data
[2011/04/17 18:08:36 | 000,000,000 | --SD | C] -- C:\Users\Susan Zilberstein\AppData\Roaming\Microsoft
[2011/04/17 18:08:36 | 000,000,000 | R--D | C] -- C:\Users\Susan Zilberstein\Videos
[2011/04/17 18:08:36 | 000,000,000 | R--D | C] -- C:\Users\Susan Zilberstein\Saved Games
[2011/04/17 18:08:36 | 000,000,000 | R--D | C] -- C:\Users\Susan Zilberstein\Pictures
[2011/04/17 18:08:36 | 000,000,000 | R--D | C] -- C:\Users\Susan Zilberstein\Music
[2011/04/17 18:08:36 | 000,000,000 | R--D | C] -- C:\Users\Susan Zilberstein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2011/04/17 18:08:36 | 000,000,000 | R--D | C] -- C:\Users\Susan Zilberstein\Links
[2011/04/17 18:08:36 | 000,000,000 | R--D | C] -- C:\Users\Susan Zilberstein\Favorites
[2011/04/17 18:08:36 | 000,000,000 | R--D | C] -- C:\Users\Susan Zilberstein\Downloads
[2011/04/17 18:08:36 | 000,000,000 | R--D | C] -- C:\Users\Susan Zilberstein\My Documents
[2011/04/17 18:08:36 | 000,000,000 | R--D | C] -- C:\Users\Susan Zilberstein\Desktop
[2011/04/17 18:08:36 | 000,000,000 | R--D | C] -- C:\Users\Susan Zilberstein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2011/04/17 18:08:36 | 000,000,000 | -H-D | C] -- C:\Users\Susan Zilberstein\AppData
[2011/04/17 18:08:36 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Local\Temp
[2011/04/17 18:08:36 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Local\Microsoft
[2011/04/17 18:08:36 | 000,000,000 | ---D | C] -- C:\Users\Susan Zilberstein\AppData\Roaming\Media Center Programs
[2011/04/15 18:52:28 | 000,000,000 | -H-D | C] -- C:\$AVG
[2011/03/30 17:17:06 | 000,134,480 | ---- | C] (AVG Technologies CZ, s.r.o. ) -- C:\Windows\System32\drivers\AVGIDSDriver.sys
[2011/03/23 23:08:58 | 000,000,000 | -HSD | C] -- C:\Config.Msi

========== Files - Modified Within 30 Days ==========

[2011/04/18 23:41:47 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/04/18 23:17:08 | 000,013,808 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/04/18 23:17:08 | 000,013,808 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/04/18 23:02:00 | 000,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/04/18 22:02:00 | 000,000,904 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/04/18 20:36:58 | 112,716,855 | ---- | M] () -- C:\Windows\System32\drivers\AVG\incavi.avm
[2011/04/18 19:18:45 | 000,621,306 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/04/18 19:18:45 | 000,108,388 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/04/18 19:17:24 | 000,016,968 | ---- | M] () -- C:\Windows\System32\drivers\hitmanpro35.sys
[2011/04/18 19:14:23 | 2811,486,208 | -HS- | M] () -- C:\hiberfil.sys
[2011/04/18 19:01:21 | 000,001,936 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Wireless Utility.lnk
[2011/04/18 18:29:23 | 000,001,945 | ---- | M] () -- C:\Windows\epplauncher.mif
[2011/04/18 17:03:28 | 000,000,354 | ---- | M] () -- C:\Users\Susan Zilberstein\Desktop\All Control Panel Items - Shortcut.lnk
[2011/04/18 17:02:24 | 000,001,110 | ---- | M] () -- C:\Users\Susan Zilberstein\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2011/04/18 12:24:45 | 000,000,937 | ---- | M] () -- C:\Users\Susan Zilberstein\Desktop\EZBackitup.lnk
[2011/04/18 11:16:44 | 000,002,161 | ---- | M] () -- C:\Users\Public\Desktop\Backup Now EZ.lnk
[2011/04/18 11:12:50 | 000,650,331 | ---- | M] () -- C:\Windows\System32\drivers\AVG\iavifw.avm
[2011/04/18 10:51:55 | 001,746,142 | ---- | M] () -- C:\Users\Susan Zilberstein\Documents\Monitor manual.pdf
[2011/04/18 10:34:35 | 000,039,252 | ---- | M] () -- C:\Windows\System32\license.rtf
[2011/04/18 10:33:06 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2011/04/17 23:24:57 | 000,000,923 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2011.lnk
[2011/04/17 23:12:17 | 000,001,992 | ---- | M] () -- C:\Users\Susan Zilberstein\Desktop\WinBubbles.lnk
[2011/04/17 23:09:58 | 000,001,404 | ---- | M] () -- C:\Users\Susan Zilberstein\Desktop\Windows Live Mail.lnk
[2011/04/17 22:57:54 | 000,001,411 | ---- | M] () -- C:\Users\Susan Zilberstein\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/04/17 22:27:43 | 000,002,090 | ---- | M] () -- C:\Users\Public\Desktop\Brother Creative Center.lnk
[2011/04/17 22:27:19 | 000,000,243 | ---- | M] () -- C:\Windows\Brpfx04a.ini
[2011/04/17 22:27:19 | 000,000,094 | ---- | M] () -- C:\Windows\brpcfx.ini
[2011/04/17 22:26:43 | 000,000,066 | ---- | M] () -- C:\Windows\Brfaxrx.ini
[2011/04/17 22:26:43 | 000,000,050 | ---- | M] () -- C:\Windows\System32\bridf08b.dat
[2011/04/17 22:26:42 | 000,000,419 | ---- | M] () -- C:\Windows\BRWMARK.INI
[2011/04/17 22:26:42 | 000,000,027 | ---- | M] () -- C:\Windows\BRPP2KA.INI
[2011/04/17 22:17:13 | 000,000,956 | ---- | M] () -- C:\Users\Susan Zilberstein\Desktop\My Documents - Shortcut.lnk
[2011/04/17 22:12:59 | 000,000,917 | ---- | M] () -- C:\Users\Public\Desktop\µTorrent.lnk
[2011/04/17 22:11:46 | 000,001,031 | ---- | M] () -- C:\Users\Susan Zilberstein\Application Data\Microsoft\Internet Explorer\Quick Launch\Start Menu 7.lnk
[2011/04/17 22:11:07 | 002,180,240 | ---- | M] (OrdinarySoft ) -- C:\Users\Susan Zilberstein\Desktop\StartMenu7_Setup_3_6_freeware.exe
[2011/04/17 22:08:53 | 000,001,226 | ---- | M] () -- C:\Users\Susan Zilberstein\Desktop\Revo Uninstaller.lnk
[2011/04/17 22:06:48 | 000,001,084 | ---- | M] () -- C:\Users\Susan Zilberstein\Application Data\Microsoft\Internet Explorer\Quick Launch\ALLConverter PRO.lnk
[2011/04/17 22:04:05 | 000,072,822 | ---- | M] () -- C:\Windows\System32\ieuinit.inf
[2011/04/17 21:59:23 | 000,002,246 | ---- | M] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2011/04/17 21:45:54 | 000,001,215 | ---- | M] () -- C:\Users\Susan Zilberstein\Desktop\Digital Clock 3D Wallpaper.lnk
[2011/04/17 19:57:06 | 000,267,496 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/04/17 19:13:48 | 000,001,096 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011/04/17 19:10:54 | 000,001,895 | ---- | M] () -- C:\Users\Susan Zilberstein\Desktop\PeerBlock.lnk
[2011/04/17 19:09:50 | 000,087,608 | ---- | M] () -- C:\Users\Susan Zilberstein\AppData\Roaming\inst.exe
[2011/04/17 19:09:50 | 000,047,360 | ---- | M] (VSO Software) -- C:\Users\Susan Zilberstein\AppData\Roaming\pcouffin.sys
[2011/04/17 19:09:50 | 000,007,887 | ---- | M] () -- C:\Users\Susan Zilberstein\AppData\Roaming\pcouffin.cat
[2011/04/17 19:09:50 | 000,001,144 | ---- | M] () -- C:\Users\Susan Zilberstein\AppData\Roaming\pcouffin.inf
[2011/04/17 18:13:29 | 000,033,134 | ---- | M] () -- C:\Users\Susan Zilberstein\AppData\Roaming\UserTile.png
[2011/03/30 17:17:06 | 000,134,480 | ---- | M] (AVG Technologies CZ, s.r.o. ) -- C:\Windows\System32\drivers\AVGIDSDriver.sys

========== Files Created - No Company Name ==========

[2011/04/18 20:36:58 | 112,716,855 | ---- | C] () -- C:\Windows\System32\drivers\AVG\incavi.avm
[2011/04/18 19:01:21 | 000,001,936 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Wireless Utility.lnk
[2011/04/18 18:29:09 | 000,001,897 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2011/04/18 17:03:28 | 000,000,354 | ---- | C] () -- C:\Users\Susan Zilberstein\Desktop\All Control Panel Items - Shortcut.lnk
[2011/04/18 12:24:45 | 000,000,937 | ---- | C] () -- C:\Users\Susan Zilberstein\Desktop\EZBackitup.lnk
[2011/04/18 11:16:44 | 000,002,161 | ---- | C] () -- C:\Users\Public\Desktop\Backup Now EZ.lnk
[2011/04/18 11:12:50 | 000,650,331 | ---- | C] () -- C:\Windows\System32\drivers\AVG\iavifw.avm
[2011/04/18 10:51:55 | 001,746,142 | ---- | C] () -- C:\Users\Susan Zilberstein\Documents\Monitor manual.pdf
[2011/04/18 10:34:05 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2011/04/18 10:33:57 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2011/04/18 10:33:06 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2011/04/18 10:28:31 | 2811,486,208 | -HS- | C] () -- C:\hiberfil.sys
[2011/04/17 23:24:57 | 000,000,923 | ---- | C] () -- C:\Users\Public\Desktop\AVG 2011.lnk
[2011/04/17 23:12:17 | 000,001,992 | ---- | C] () -- C:\Users\Susan Zilberstein\Desktop\WinBubbles.lnk
[2011/04/17 23:09:58 | 000,001,404 | ---- | C] () -- C:\Users\Susan Zilberstein\Desktop\Windows Live Mail.lnk
[2011/04/17 22:47:34 | 000,001,251 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk
[2011/04/17 22:47:16 | 000,001,320 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk
[2011/04/17 22:46:51 | 000,001,404 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
[2011/04/17 22:46:31 | 000,002,432 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
[2011/04/17 22:27:43 | 000,002,090 | ---- | C] () -- C:\Users\Public\Desktop\Brother Creative Center.lnk
[2011/04/17 22:27:19 | 000,000,243 | ---- | C] () -- C:\Windows\Brpfx04a.ini
[2011/04/17 22:27:19 | 000,000,094 | ---- | C] () -- C:\Windows\brpcfx.ini
[2011/04/17 22:26:43 | 000,000,050 | ---- | C] () -- C:\Windows\System32\bridf08b.dat
[2011/04/17 22:26:42 | 000,000,419 | ---- | C] () -- C:\Windows\BRWMARK.INI
[2011/04/17 22:26:42 | 000,000,027 | ---- | C] () -- C:\Windows\BRPP2KA.INI
[2011/04/17 22:26:12 | 000,106,496 | ---- | C] () -- C:\Windows\System32\BrMuSNMP.dll
[2011/04/17 22:26:12 | 000,000,066 | ---- | C] () -- C:\Windows\Brfaxrx.ini
[2011/04/17 22:26:11 | 000,000,000 | ---- | C] () -- C:\Windows\brdfxspd.dat
[2011/04/17 22:17:13 | 000,000,956 | ---- | C] () -- C:\Users\Susan Zilberstein\Desktop\My Documents - Shortcut.lnk
[2011/04/17 22:14:24 | 000,002,671 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Word Viewer 2003.lnk
[2011/04/17 22:12:59 | 000,000,917 | ---- | C] () -- C:\Users\Public\Desktop\µTorrent.lnk
[2011/04/17 22:11:46 | 000,001,031 | ---- | C] () -- C:\Users\Susan Zilberstein\Application Data\Microsoft\Internet Explorer\Quick Launch\Start Menu 7.lnk
[2011/04/17 22:08:53 | 000,001,226 | ---- | C] () -- C:\Users\Susan Zilberstein\Desktop\Revo Uninstaller.lnk
[2011/04/17 22:06:48 | 000,001,084 | ---- | C] () -- C:\Users\Susan Zilberstein\Application Data\Microsoft\Internet Explorer\Quick Launch\ALLConverter PRO.lnk
[2011/04/17 22:06:35 | 000,810,496 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2011/04/17 22:06:35 | 000,797,184 | ---- | C] () -- C:\Windows\System32\ac3filter.ax
[2011/04/17 22:06:35 | 000,258,048 | ---- | C] () -- C:\Windows\System32\libFLAC.dll
[2011/04/17 22:04:05 | 000,072,822 | ---- | C] () -- C:\Windows\System32\ieuinit.inf
[2011/04/17 21:59:23 | 000,002,246 | ---- | C] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2011/04/17 21:57:46 | 174,337,969 | ---- | C] () -- C:\Windows\System32\nfsInkColor.scr
[2011/04/17 21:57:14 | 000,000,908 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/04/17 21:57:03 | 000,000,904 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/04/17 21:55:28 | 006,612,487 | ---- | C] () -- C:\Windows\System32\nfsMoonClock.scr
[2011/04/17 21:53:24 | 002,242,786 | ---- | C] () -- C:\Windows\System32\nfsWorldTime04.scr
[2011/04/17 21:53:04 | 003,958,857 | ---- | C] () -- C:\Windows\System32\nfsWorldTime03.scr
[2011/04/17 21:52:05 | 003,901,858 | ---- | C] () -- C:\Windows\System32\nfsDigitalClock08.scr
[2011/04/17 21:51:17 | 001,990,841 | ---- | C] () -- C:\Windows\System32\nfsClock18.scr
[2011/04/17 21:50:55 | 001,259,588 | ---- | C] () -- C:\Windows\System32\nfsClock15Moon.scr
[2011/04/17 21:50:31 | 000,270,461 | ---- | C] () -- C:\Windows\System32\nfsClock11.scr
[2011/04/17 21:50:06 | 000,230,680 | ---- | C] () -- C:\Windows\System32\nfsClock10.scr
[2011/04/17 21:49:48 | 000,610,658 | ---- | C] () -- C:\Windows\System32\nfsClock06.scr
[2011/04/17 21:49:23 | 000,277,271 | ---- | C] () -- C:\Windows\System32\nfsClock05.scr
[2011/04/17 21:48:55 | 000,450,011 | ---- | C] () -- C:\Windows\System32\nfsClock03.scr
[2011/04/17 21:48:10 | 000,500,077 | ---- | C] () -- C:\Windows\System32\nfsClock02.scr
[2011/04/17 21:45:54 | 000,001,215 | ---- | C] () -- C:\Users\Susan Zilberstein\Desktop\Digital Clock 3D Wallpaper.lnk
[2011/04/17 19:34:02 | 000,001,945 | ---- | C] () -- C:\Windows\epplauncher.mif
[2011/04/17 19:13:48 | 000,001,108 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2011/04/17 19:13:48 | 000,001,096 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011/04/17 19:10:54 | 000,001,895 | ---- | C] () -- C:\Users\Susan Zilberstein\Desktop\PeerBlock.lnk
[2011/04/17 19:09:50 | 000,087,608 | ---- | C] () -- C:\Users\Susan Zilberstein\AppData\Roaming\inst.exe
[2011/04/17 19:09:50 | 000,007,887 | ---- | C] () -- C:\Users\Susan Zilberstein\AppData\Roaming\pcouffin.cat
[2011/04/17 19:09:50 | 000,001,144 | ---- | C] () -- C:\Users\Susan Zilberstein\AppData\Roaming\pcouffin.inf
[2011/04/17 18:29:40 | 000,002,153 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2011
[2011/04/17 18:28:07 | 000,016,968 | ---- | C] () -- C:\Windows\System32\drivers\hitmanpro35.sys
[2011/04/17 18:13:29 | 000,033,134 | ---- | C] () -- C:\Users\Susan Zilberstein\AppData\Roaming\UserTile.png
[2011/04/17 18:10:55 | 000,001,411 | ---- | C] () -- C:\Users\Susan Zilberstein\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/04/17 18:09:06 | 000,001,417 | ---- | C] () -- C:\Users\Susan Zilberstein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2011/04/17 18:08:36 | 000,001,110 | ---- | C] () -- C:\Users\Susan Zilberstein\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2011/04/17 18:08:36 | 000,000,272 | ---- | C] () -- C:\Users\Susan Zilberstein\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2009/07/14 14:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 14:33:53 | 000,267,496 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/07/14 12:05:48 | 000,621,306 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009/07/14 12:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009/07/14 12:05:48 | 000,108,388 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009/07/14 12:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009/07/14 12:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009/07/14 12:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009/07/14 09:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/14 09:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/14 09:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/06/11 07:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2009/05/25 03:32:14 | 000,013,931 | ---- | C] () -- C:\Windows\System32\RaCoInst.dat
[2004/08/13 09:56:20 | 000,005,810 | ---- | C] () -- C:\Windows\System32\drivers\ASACPI.sys
[2000/07/13 23:18:56 | 000,000,312 | ---- | C] () -- C:\Windows\System32\Agate.ini
[2000/07/13 22:58:32 | 000,576,000 | ---- | C] () -- C:\Windows\System32\Agate.exe

========== LOP Check ==========

[2011/04/18 11:09:07 | 000,000,000 | ---D | M] -- C:\Users\Susan Zilberstein\AppData\Roaming\AVG10
[2011/04/18 23:12:54 | 000,000,000 | ---D | M] -- C:\Users\Susan Zilberstein\AppData\Roaming\Start Menu 7
[2011/04/18 11:02:07 | 000,000,000 | ---D | M] -- C:\Users\Susan Zilberstein\AppData\Roaming\TuneUp Software
[2011/04/17 22:55:15 | 000,000,000 | ---D | M] -- C:\Users\Susan Zilberstein\AppData\Roaming\uTorrent
[2011/04/17 19:10:36 | 000,000,000 | ---D | M] -- C:\Users\Susan Zilberstein\AppData\Roaming\Vso
[2011/04/18 10:50:09 | 000,000,000 | ---D | M] -- C:\Users\Susan Zilberstein\AppData\Roaming\Windows Live Writer
[2009/07/14 14:53:46 | 000,002,888 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 138 bytes -> C:\ProgramData\TEMP:0B4227B4

< End of report >

Edited by SweetTech, 18 April 2011 - 08:32 AM.
moved from Windows Vista™ and Windows 7™.--ST

  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP