When I go into Add/Remove Programs to get rid of programs I'm not using (such as Firefox), I click on remove and it just flickers another window (I just see a quick, slight glimpse and it's gone) and then it ignores my request. I've tried, twice now, to do a System Restore but it hasn't fixed anything. I have run scans with Avast, Malwarebytes and Ad-Aware but they have all found nothing.
I know there's something very wrong with my computer and need some serious help to fix it...and wouldn't it be lovely to finally fix this magicJack at the same time?!
Added July 16, 2011
Now my computer is telling me that my Virtual Memory is too low. Also, I can be looking at one page and all of a sudden my computer will bring up a page I've closed. It now takes up to 3 minutes for a page to load, all the time.
OTL logfile created on: 7/11/2011 11:22:51 PM - Run 2
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Documents and Settings\Cara-Leigh\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
1014.05 Mb Total Physical Memory | 117.99 Mb Available Physical Memory | 11.64% Memory free
2.38 Gb Paging File | 1.51 Gb Available in Paging File | 63.54% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 44.87 Gb Total Space | 23.32 Gb Free Space | 51.97% Space Free | Partition Type: NTFS
Drive D: | 45.35 Gb Total Space | 45.22 Gb Free Space | 99.72% Space Free | Partition Type: NTFS
Computer Name: DRSLAPTOP | User Name: Cara-Leigh | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011/07/11 23:19:37 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Cara-Leigh\Desktop\OTL.exe
PRC - [2011/07/04 04:43:54 | 003,493,720 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011/07/04 04:43:51 | 000,042,184 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2011/06/28 04:19:39 | 002,151,640 | ---- | M] (Lavasoft Limited) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
PRC - [2011/06/22 13:34:50 | 002,408,448 | ---- | M] (W3i, LLC) -- C:\Program Files\W3i\InstallIQUpdater\InstallIQUpdater.exe
PRC - [2011/06/15 15:16:48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2011/05/29 09:11:28 | 000,449,584 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2011/05/29 09:11:28 | 000,366,640 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011/05/16 05:51:00 | 022,119,824 | ---- | M] (magicJack L.P.) -- C:\Documents and Settings\Cara-Leigh\Application Data\mjusbsp\magicJack.exe
PRC - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2011/02/18 21:45:23 | 000,160,592 | ---- | M] (Siber Systems) -- C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe
PRC - [2008/04/13 17:12:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2005/08/11 20:21:00 | 000,200,704 | ---- | M] (Acer Inc) -- C:\Acer\ePM\epm-dm.exe
PRC - [2004/10/08 15:44:24 | 000,098,394 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
========== Modules (SafeList) ==========
MOD - [2011/07/11 23:19:37 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Cara-Leigh\Desktop\OTL.exe
MOD - [2011/07/04 04:43:51 | 000,199,792 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\snxhk.dll
MOD - [2010/08/23 09:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2004/10/08 15:44:16 | 000,069,722 | ---- | M] (Synaptics, Inc.) -- C:\WINDOWS\system32\SynTPFcs.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [Disabled | Stopped] -- -- (MySql)
SRV - File not found [Disabled | Stopped] -- -- (Awmcnkh)
SRV - [2011/07/04 04:43:51 | 000,042,184 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011/06/28 04:19:39 | 002,151,640 | ---- | M] (Lavasoft Limited) [Auto | Running] -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2011/05/29 09:11:28 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2005/06/06 20:08:58 | 001,273,344 | ---- | M] (OSA Technologies Inc.) [Disabled | Stopped] -- C:\Acer\eManager\anbmServ.exe -- (anbmService)
SRV - [2004/09/29 13:14:36 | 000,069,632 | ---- | M] (HP) [Disabled | Stopped] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
========== Driver Services (SafeList) ==========
DRV - [2011/07/11 20:10:17 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{82A62AC3-DC81-4C60-B4EE-0728111B3CE8}\MpKslfed96d7c.sys -- (MpKslfed96d7c)
DRV - [2011/07/08 00:03:30 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{82A62AC3-DC81-4C60-B4EE-0728111B3CE8}\MpKsld6b77242.sys -- (MpKsld6b77242)
DRV - [2011/07/04 04:36:43 | 000,441,176 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011/07/04 04:36:32 | 000,309,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011/07/04 04:35:23 | 000,043,608 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011/07/04 04:35:12 | 000,102,616 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011/07/04 04:32:32 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011/07/04 04:32:13 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011/07/04 04:32:12 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011/06/20 10:31:32 | 000,064,512 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\Lbd.sys -- (Lbd)
DRV - [2011/06/20 10:31:32 | 000,015,232 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\Lavasoft\Ad-Aware\kernexplorer.sys -- (Lavasoft Kernexplorer)
DRV - [2011/05/29 09:11:20 | 000,022,712 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2009/11/06 02:25:58 | 000,044,032 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RtsUCcid.sys -- (RSUSBCCID)
DRV - [2009/11/06 02:25:58 | 000,017,536 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RtsUIr.sys -- (RtsUIr)
DRV - [2009/01/21 08:49:40 | 000,118,656 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2005/09/23 19:56:28 | 003,966,976 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2005/06/30 17:58:24 | 000,007,296 | ---- | M] (OSA Technologies, An Avocent Company) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\osaio.sys -- (osaio)
DRV - [2005/06/30 16:16:58 | 001,034,752 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV)
DRV - [2005/06/30 16:16:06 | 000,200,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys -- (HSFHWAZL)
DRV - [2005/06/30 16:16:02 | 000,716,416 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2005/04/07 19:08:46 | 000,078,208 | ---- | M] (Acer Value Labs, USA) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epm-shd.sys -- (EpmShd)
DRV - [2005/01/14 16:57:16 | 000,004,010 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\osanbm.sys -- (osanbm)
DRV - [2005/01/10 16:47:14 | 000,449,888 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ar5211.sys -- (AR5211)
DRV - [2005/01/07 18:07:16 | 000,145,920 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Hdaudio.sys -- (HdAudAddService)
DRV - [2004/11/16 13:06:00 | 003,222,784 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\w29n51.sys -- (w29n51) Intel®
DRV - [2004/07/19 14:10:00 | 000,004,096 | ---- | M] (Acer Value Labs, USA) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epm-psd.sys -- (EpmPsd)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.thecomedynetwork.ca
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.google.ca/ [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.search.ya...728,16969,0,8,0
IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@checkpoint.com/FFApi: C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Program Files\Google\Update\1.2.183.23\npGoogleOneClick8.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Documents and Settings\Cara-Leigh\Application Data\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Documents and Settings\Cara-Leigh\Application Data\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Documents and Settings\Cara-Leigh\Local Settings\Application Data\Google\Update\1.2.183.23\npGoogleOneClick8.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2011/07/11 20:11:12 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/07/11 19:46:52 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
[2011/07/11 19:46:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Cara-Leigh\Application Data\Mozilla\Extensions
[2011/07/11 19:56:29 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Cara-Leigh\Application Data\Mozilla\Firefox\Profiles\2xhauns0.default\extensions
[2011/07/11 19:46:57 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Cara-Leigh\Application Data\Mozilla\Firefox\Profiles\2xhauns0.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}
[2011/07/11 19:46:59 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Cara-Leigh\Application Data\Mozilla\Firefox\Profiles\2xhauns0.default\extensions\[email protected]
[2011/07/11 19:46:58 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Cara-Leigh\Application Data\Mozilla\Firefox\Profiles\2xhauns0.default\extensions\[email protected]
[2011/07/11 19:56:30 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/03/18 10:53:24 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
O1 HOSTS File: ([2004/08/04 06:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Fast Search) - {5AB7104A-B71F-49AD-9154-F7F8806AE848} - C:\Program Files\Surf Canyon\surfcanyon.dll (Surf Canyon Incorporated)
O2 - BHO: (no name) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll (Google Inc.)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (&RoboForm) - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {00000000-0000-0000-0000-000000000000} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {472734EA-242A-422B-ADF8-83D1E48CC825} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (&RoboForm) - {724D43A0-0D85-11D4-9908-00400523E39A} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation)
O4 - HKLM..\Run: [epm-dm] c:\Acer\ePM\epm-dm.exe (Acer Inc)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Spiceworks] C:\Program Files\Spiceworks\bin\spicetray_silent.exe ()
O4 - HKLM..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Synaptics, Inc.)
O4 - HKCU..\Run: [InstallIQUpdater] C:\Program Files\W3i\InstallIQUpdater\InstallIQUpdater.exe (W3i, LLC)
O4 - HKCU..\Run: [RoboForm] C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe (Siber Systems)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoInternetOpenWith = 1
O8 - Extra context menu item: Customize Menu - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html ()
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Fill Forms - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html ()
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll (Google Inc.)
O8 - Extra context menu item: RoboForm Toolbar - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html ()
O8 - Extra context menu item: Save Forms - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html ()
O9 - Extra Button: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html ()
O9 - Extra 'Tools' menuitem : Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html ()
O9 - Extra Button: Save - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html ()
O9 - Extra 'Tools' menuitem : Save Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html ()
O9 - Extra Button: RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html ()
O9 - Extra 'Tools' menuitem : RoboForm Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html ()
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.micros...b?1293144173619 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.mi...b?1293144229119 (MUWebControl Class)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ent/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Cara-Leigh\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Cara-Leigh\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2005/08/17 18:39:24 | 000,000,100 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (lsdelete) - C:\WINDOWS\System32\lsdelete.exe ()
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011/07/11 23:19:24 | 000,579,584 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Cara-Leigh\Desktop\OTL.exe
[2011/07/11 20:15:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2011/07/11 19:57:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cara-Leigh\Start Menu\Programs\Spiceworks
[2011/07/11 19:57:35 | 000,000,000 | ---D | C] -- C:\Program Files\Spiceworks
[2011/07/11 19:57:30 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Cara-Leigh\Recent
[2011/07/11 19:56:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cara-Leigh\Local Settings\Application Data\tjnet
[2011/07/11 19:56:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cara-Leigh\Local Settings\Application Data\magicJack
[2011/07/11 19:56:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cara-Leigh\Application Data\mjusbsp
[2011/07/11 19:47:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SpeedItup Free
[2011/07/11 19:47:04 | 000,000,000 | ---D | C] -- C:\Program Files\SpeedItup Free
[2011/07/11 17:45:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood(4)
[2011/07/11 16:56:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cara-Leigh\Local Settings\Application Data\tjnet(2)
[2011/07/11 16:36:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cara-Leigh\Application Data\Sun
[2011/07/11 15:52:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\hsswpr
[2011/07/11 13:02:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cara-Leigh\Local Settings\Application Data\Conduit
[2011/07/11 13:02:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cara-Leigh\Local Settings\Application Data\Hotspot_Shield
[2011/07/11 13:00:34 | 000,000,000 | ---D | C] -- C:\Program Files\Hotspot Shield
[2011/07/11 11:35:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cara-Leigh\Application Data\mjusbsp(2)
[2011/07/08 23:31:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cara-Leigh\Desktop\Laser Printing
[2011/07/08 14:15:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cara-Leigh\Application Data\DDMSettings
[2011/07/08 14:04:40 | 000,000,000 | ---D | C] -- C:\Program Files\DivX
[2011/07/08 14:01:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\DivX
[2011/07/08 00:31:44 | 000,000,000 | -HSD | C] -- C:\WINDOWS\System32\AI_RecycleBin
[2011/07/07 23:53:09 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2011/07/07 23:41:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\avast! Free Antivirus
[2011/07/07 23:41:58 | 000,019,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011/07/07 23:41:57 | 000,309,848 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011/07/07 23:41:51 | 000,043,608 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011/07/07 23:41:51 | 000,025,432 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011/07/07 23:41:50 | 000,441,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011/07/07 23:41:50 | 000,102,616 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011/07/07 23:41:50 | 000,096,344 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011/07/07 23:41:49 | 000,030,808 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011/07/07 23:40:31 | 000,040,112 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011/07/07 23:40:30 | 000,199,304 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011/07/07 23:35:20 | 000,000,000 | ---D | C] -- C:\Program Files\Lavasoft
[2011/07/07 23:35:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Lavasoft
[2011/07/04 20:36:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood(3)
[2011/07/04 15:53:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood(2)
[2011/07/04 15:42:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cara-Leigh\Desktop\Chipset_Intel_6.3.0.1007_XPx86
[2011/07/04 15:41:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cara-Leigh\Application Data\Intel
[2011/07/04 15:40:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Intel
[2011/07/04 15:38:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cara-Leigh\Desktop\Wireless_Intel_9.0.3.9_XPx86
[2011/07/03 23:17:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cara-Leigh\Application Data\SpeedItUp
[2011/07/03 20:27:48 | 000,000,000 | ---D | C] -- C:\Program Files\Surf Canyon
[2011/07/03 20:27:46 | 000,000,000 | ---D | C] -- C:\Program Files\W3i
[2011/07/03 20:27:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\W3i
[2011/07/03 20:27:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\InstallIQ Updater
[2011/07/03 20:27:39 | 000,000,000 | ---D | C] -- C:\Program Files\Free Offers from Freeze.com
[2011/06/28 19:00:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cara-Leigh\Local Settings\Application Data\AskToolbar
[2011/06/28 19:00:34 | 000,000,000 | ---D | C] -- C:\Program Files\Ask.com
[2011/06/18 23:35:50 | 000,000,000 | ---D | C] -- C:\Program Files\Insider Tales - The Stolen Venus 2
[2011/06/18 23:35:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Insider Tales - The Stolen Venus 2
[2011/06/18 13:27:46 | 000,000,000 | ---D | C] -- C:\Avenger
[2011/06/18 00:04:16 | 000,062,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mtrio.dll
[2011/06/17 22:50:00 | 000,802,683 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\ltsm.sys
[2011/06/17 21:01:42 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbmidi.sys
[2011/06/17 21:00:21 | 000,249,856 | ---- | C] (Comtrol® Corporation) -- C:\WINDOWS\System32\dllcache\ctmasetp.dll
[2011/06/17 20:18:22 | 000,039,552 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparwdm.sys
[2011/06/12 23:05:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cara-Leigh\Application Data\Dream Aquarium
[2011/06/12 22:42:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cara-Leigh\Desktop\Rental Disputes
[2011/06/12 22:38:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cara-Leigh\Desktop\Bible, Service Products
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3863 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2011/07/11 23:19:37 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Cara-Leigh\Desktop\OTL.exe
[2011/07/11 20:26:36 | 000,000,486 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2011/07/11 20:25:57 | 000,000,064 | ---- | M] () -- C:\WINDOWS\System32\rp_stats.dat
[2011/07/11 20:25:57 | 000,000,044 | ---- | M] () -- C:\WINDOWS\System32\rp_rules.dat
[2011/07/11 20:25:56 | 000,001,037 | ---- | M] () -- C:\Documents and Settings\Cara-Leigh\Desktop\magicJack.lnk
[2011/07/11 20:15:19 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2011/07/11 20:14:51 | 000,001,693 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2011/07/11 20:14:21 | 000,002,625 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011/07/11 20:14:19 | 000,000,390 | -H-- | M] () -- C:\WINDOWS\tasks\MpIdleTask.job
[2011/07/11 20:12:05 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/07/11 20:09:01 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/07/11 20:08:53 | 1063,374,848 | -HS- | M] () -- C:\hiberfil.sys
[2011/07/11 17:38:39 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011/07/11 16:22:17 | 000,000,261 | ---- | M] () -- C:\Documents and Settings\Cara-Leigh\Desktop\Self-Service Support.url
[2011/07/11 12:54:44 | 000,280,620 | ---- | M] () -- C:\Documents and Settings\Cara-Leigh\My Documents\Bad audio quality.pdf
[2011/07/08 04:01:00 | 000,000,244 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2011/07/08 03:58:02 | 000,000,894 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/07/08 03:57:39 | 000,000,432 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{A66A6A00-5E7B-4145-A922-2DD292CA2173}.job
[2011/07/08 03:21:03 | 000,000,996 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-4006041411-1818442623-1130046000-1009UA.job
[2011/07/08 00:31:55 | 000,000,771 | ---- | M] () -- C:\Documents and Settings\Cara-Leigh\Application Data\Microsoft\Internet Explorer\Quick Launch\SpeedItup Free.lnk
[2011/07/08 00:05:15 | 000,002,198 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2011/07/07 23:40:57 | 000,101,720 | ---- | M] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2011/07/07 23:35:36 | 000,000,801 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Ad-Aware.lnk
[2011/07/07 23:09:44 | 000,001,668 | ---- | M] () -- C:\WINDOWS\System32\.ini
[2011/07/07 21:44:01 | 000,000,890 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/07/07 20:34:52 | 001,008,488 | ---- | M] () -- C:\WINDOWS\System32\AAWService__2011_07_07_20_34_52_000169f0.dmp
[2011/07/07 20:34:44 | 001,008,817 | ---- | M] () -- C:\WINDOWS\System32\AAWService__2011_07_07_20_34_40_00013db0.dmp
[2011/07/07 20:34:18 | 001,009,889 | ---- | M] () -- C:\WINDOWS\System32\AAWService__2011_07_07_20_34_15_0000dc65.dmp
[2011/07/04 22:52:18 | 000,000,518 | ---- | M] () -- C:\Documents and Settings\Cara-Leigh\Desktop\Win a trip around the World with Sofitel.url
[2011/07/04 13:26:20 | 000,000,293 | ---- | M] () -- C:\Documents and Settings\Cara-Leigh\Desktop\I need someone to help at farmers markets.url
[2011/07/04 13:24:36 | 000,000,293 | ---- | M] () -- C:\Documents and Settings\Cara-Leigh\Desktop\Retired, Semi-Retired or Homemakers.url
[2011/07/04 09:21:00 | 000,000,944 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-4006041411-1818442623-1130046000-1009Core.job
[2011/07/04 04:43:53 | 000,040,112 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011/07/04 04:43:51 | 000,199,304 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011/07/04 04:36:43 | 000,441,176 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011/07/04 04:36:32 | 000,309,848 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011/07/04 04:35:23 | 000,043,608 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011/07/04 04:35:12 | 000,102,616 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011/07/04 04:35:09 | 000,096,344 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011/07/04 04:32:32 | 000,025,432 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011/07/04 04:32:13 | 000,030,808 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011/07/04 04:32:12 | 000,019,544 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011/06/27 17:32:56 | 000,001,136 | ---- | M] () -- C:\Documents and Settings\Cara-Leigh\My Documents\Dollar Store ad.rtf
[2011/06/23 14:59:14 | 000,000,272 | ---- | M] () -- C:\Documents and Settings\Cara-Leigh\Desktop\Dis.Chq. Dts.url
[2011/06/22 10:29:15 | 000,000,249 | ---- | M] () -- C:\Documents and Settings\Cara-Leigh\Desktop\RBC.url
[2011/06/21 03:14:06 | 000,456,082 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/06/21 03:14:06 | 000,075,200 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/06/20 10:31:32 | 000,064,512 | ---- | M] (Lavasoft AB) -- C:\WINDOWS\System32\drivers\Lbd.sys
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3863 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011/07/11 19:33:15 | 000,049,275 | ---- | C] () -- C:\WINDOWS\System32\wfospf.mib
[2011/07/11 19:33:15 | 000,026,236 | ---- | C] () -- C:\WINDOWS\System32\wins.mib
[2011/07/11 19:33:15 | 000,004,332 | ---- | C] () -- C:\WINDOWS\System32\smi.mib
[2011/07/11 19:33:14 | 000,107,882 | ---- | C] () -- C:\WINDOWS\System32\mib_ii.mib
[2011/07/11 19:33:14 | 000,038,608 | ---- | C] () -- C:\WINDOWS\System32\nipx.mib
[2011/07/11 19:33:14 | 000,034,317 | ---- | C] () -- C:\WINDOWS\System32\msiprip2.mib
[2011/07/11 19:33:14 | 000,030,448 | ---- | C] () -- C:\WINDOWS\System32\mcastmib.mib
[2011/07/11 19:33:14 | 000,026,100 | ---- | C] () -- C:\WINDOWS\System32\lmmib2.mib
[2011/07/11 19:33:14 | 000,021,386 | ---- | C] () -- C:\WINDOWS\System32\mipx.mib
[2011/07/11 19:33:14 | 000,015,799 | ---- | C] () -- C:\WINDOWS\System32\ipforwd.mib
[2011/07/11 19:33:14 | 000,013,767 | ---- | C] () -- C:\WINDOWS\System32\msipbtp.mib
[2011/07/11 19:33:14 | 000,010,313 | ---- | C] () -- C:\WINDOWS\System32\mripsap.mib
[2011/07/11 19:33:14 | 000,000,581 | ---- | C] () -- C:\WINDOWS\System32\msft.mib
[2011/07/11 19:33:13 | 000,048,593 | ---- | C] () -- C:\WINDOWS\System32\hostmib.mib
[2011/07/11 19:33:13 | 000,020,079 | ---- | C] () -- C:\WINDOWS\System32\http.mib
[2011/07/11 19:33:13 | 000,016,617 | ---- | C] () -- C:\WINDOWS\System32\authserv.mib
[2011/07/11 19:33:13 | 000,015,597 | ---- | C] () -- C:\WINDOWS\System32\accserv.mib
[2011/07/11 19:33:13 | 000,006,179 | ---- | C] () -- C:\WINDOWS\System32\ftp.mib
[2011/07/11 19:33:13 | 000,004,597 | ---- | C] () -- C:\WINDOWS\System32\dhcp.mib
[2011/07/11 19:33:13 | 000,000,698 | ---- | C] () -- C:\WINDOWS\System32\inetsrv.mib
[2011/07/11 17:38:27 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2011/07/11 16:22:17 | 000,000,261 | ---- | C] () -- C:\Documents and Settings\Cara-Leigh\Desktop\Self-Service Support.url
[2011/07/11 12:54:39 | 000,280,620 | ---- | C] () -- C:\Documents and Settings\Cara-Leigh\My Documents\Bad audio quality.pdf
[2011/07/08 00:31:55 | 000,000,771 | ---- | C] () -- C:\Documents and Settings\Cara-Leigh\Application Data\Microsoft\Internet Explorer\Quick Launch\SpeedItup Free.lnk
[2011/07/07 23:59:26 | 000,000,390 | -H-- | C] () -- C:\WINDOWS\tasks\MpIdleTask.job
[2011/07/07 23:58:43 | 000,000,424 | -H-- | C] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2011/07/07 23:54:00 | 000,002,198 | ---- | C] () -- C:\WINDOWS\epplauncher.mif
[2011/07/07 23:53:25 | 000,001,684 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Security Essentials.lnk
[2011/07/07 23:41:59 | 000,001,693 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2011/07/07 23:35:36 | 000,000,801 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Ad-Aware.lnk
[2011/07/07 23:09:44 | 000,001,668 | ---- | C] () -- C:\WINDOWS\System32\.ini
[2011/07/07 20:34:52 | 001,008,488 | ---- | C] () -- C:\WINDOWS\System32\AAWService__2011_07_07_20_34_52_000169f0.dmp
[2011/07/07 20:34:44 | 001,008,817 | ---- | C] () -- C:\WINDOWS\System32\AAWService__2011_07_07_20_34_40_00013db0.dmp
[2011/07/07 20:34:15 | 001,009,889 | ---- | C] () -- C:\WINDOWS\System32\AAWService__2011_07_07_20_34_15_0000dc65.dmp
[2011/07/04 22:52:18 | 000,000,518 | ---- | C] () -- C:\Documents and Settings\Cara-Leigh\Desktop\Win a trip around the World with Sofitel.url
[2011/07/04 13:26:20 | 000,000,293 | ---- | C] () -- C:\Documents and Settings\Cara-Leigh\Desktop\I need someone to help at farmers markets.url
[2011/07/04 13:24:36 | 000,000,293 | ---- | C] () -- C:\Documents and Settings\Cara-Leigh\Desktop\Retired, Semi-Retired or Homemakers.url
[2011/06/28 19:01:14 | 000,000,244 | ---- | C] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2011/06/27 17:32:56 | 000,001,136 | ---- | C] () -- C:\Documents and Settings\Cara-Leigh\My Documents\Dollar Store ad.rtf
[2011/06/18 20:38:06 | 000,001,804 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader X.lnk
[2011/06/15 17:49:55 | 1063,374,848 | -HS- | C] () -- C:\hiberfil.sys
[2011/06/14 22:18:37 | 000,000,272 | ---- | C] () -- C:\Documents and Settings\Cara-Leigh\Desktop\Dis.Chq. Dts.url
[2011/04/20 23:40:28 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\rp_stats.dat
[2011/04/20 23:40:28 | 000,000,044 | ---- | C] () -- C:\WINDOWS\System32\rp_rules.dat
[2011/03/28 00:01:11 | 000,000,036 | ---- | C] () -- C:\Documents and Settings\Cara-Leigh\Local Settings\Application Data\housecall.guid.cache
[2011/03/27 23:59:51 | 000,016,432 | ---- | C] () -- C:\WINDOWS\System32\lsdelete.exe
[2011/03/27 22:42:04 | 000,004,212 | -H-- | C] () -- C:\WINDOWS\System32\zllictbl.dat
[2011/01/03 23:42:50 | 000,000,064 | ---- | C] () -- C:\WINDOWS\GPlrLanc.dat
[2009/08/20 00:13:53 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009/08/19 23:49:12 | 000,016,384 | ---- | C] () -- C:\WINDOWS\System32\FileOps.exe
[2008/04/03 12:06:54 | 000,000,012 | ---- | C] () -- C:\WINDOWS\bthservsdp.dat
[2006/05/18 05:09:16 | 000,000,639 | ---- | C] () -- C:\WINDOWS\System32\Autorun.ini
[2006/05/18 04:41:41 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\eRLog.ini
[2006/05/18 04:40:34 | 000,000,082 | ---- | C] () -- C:\WINDOWS\ALaunch.ini
[2006/05/18 04:37:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\NT.INI
[2006/05/17 15:12:41 | 000,000,083 | ---- | C] () -- C:\WINDOWS\ppserial.ini
[2006/05/17 15:09:14 | 000,000,588 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2005/08/19 16:56:44 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2005/08/16 18:58:19 | 000,000,336 | ---- | C] () -- C:\WINDOWS\uninstall.ini
[2005/08/16 18:58:19 | 000,000,225 | ---- | C] () -- C:\WINDOWS\FlashSaver.dat
[2005/08/16 18:58:19 | 000,000,033 | ---- | C] () -- C:\WINDOWS\Acer.ini
[2005/08/16 18:37:28 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIBUN4.dll
[2005/08/16 18:36:33 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIMPEG2.dll
[2005/08/16 18:36:33 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIMP3.dll
[2005/08/16 18:36:33 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIFCD3.dll
[2005/08/16 18:36:33 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTICDMK7.dll
[2005/08/16 18:29:57 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2005/08/16 18:23:49 | 000,114,688 | ---- | C] () -- C:\WINDOWS\PowerOption.exe
[2005/08/16 18:23:49 | 000,000,750 | ---- | C] () -- C:\WINDOWS\PowerOption.ini
[2005/08/16 18:23:25 | 000,037,776 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2005/08/16 18:23:24 | 000,032,768 | ---- | C] () -- C:\WINDOWS\AMove.exe
[2005/08/16 18:22:20 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2005/08/16 18:14:50 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2005/08/16 18:13:54 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2005/08/16 18:08:38 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2005/08/16 18:07:48 | 002,373,520 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2005/08/16 18:00:48 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2005/08/16 18:00:45 | 000,456,082 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2005/08/16 18:00:45 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2005/08/16 18:00:45 | 000,075,200 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2005/08/16 18:00:45 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2005/08/16 18:00:44 | 000,004,524 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2005/08/16 18:00:43 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2005/08/16 18:00:40 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2005/08/16 18:00:34 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2005/08/16 18:00:34 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2005/08/16 18:00:25 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2005/08/16 18:00:13 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2005/08/09 21:34:56 | 000,002,772 | ---- | C] () -- C:\WINDOWS\ANTIV.INI
[2005/04/27 12:38:00 | 000,372,736 | ---- | C] () -- C:\WINDOWS\System32\hpzidi01.dll
[2005/04/27 12:37:49 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\hpzids01.dll
[2004/08/25 21:48:00 | 000,589,824 | ---- | C] () -- C:\WINDOWS\ANTIV.EXE
[2001/12/26 17:12:30 | 000,065,536 | R--- | C] () -- C:\WINDOWS\System32\multiplex_vcd.dll
[2001/09/04 00:46:38 | 000,110,592 | R--- | C] () -- C:\WINDOWS\System32\Hmpg12.dll
[2001/07/30 17:33:56 | 000,118,784 | R--- | C] () -- C:\WINDOWS\System32\HMPV2_ENC.dll
[2001/07/23 23:04:36 | 000,118,784 | R--- | C] () -- C:\WINDOWS\System32\HMPV2_ENC_MMX.dll
[2001/06/29 03:21:22 | 000,126,976 | ---- | C] () -- C:\WINDOWS\MKICON.EXE
========== LOP Check ==========
[2011/01/30 21:26:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2011/07/07 23:40:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2011/02/28 04:39:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG10
[2011/03/28 23:51:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Big Fish Games
[2011/01/30 21:40:49 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2011/05/31 13:18:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Elephant Games
[2011/04/28 23:34:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Far Mills
[2011/07/11 15:52:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\hsswpr
[2011/03/29 00:04:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Kristanix Games
[2011/02/11 12:45:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LittleGamesCompany
[2011/05/19 19:44:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\magicJack
[2011/01/04 04:53:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Merscom
[2011/03/27 23:00:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2011/01/20 23:09:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MGS
[2011/04/28 23:35:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Particles
[2011/01/24 00:30:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PoBros
[2011/02/18 21:45:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\RoboForm
[2011/01/22 23:33:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sandlot Games
[2011/06/18 23:36:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2011/07/03 20:27:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\W3i
[2011/05/06 00:03:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\Alawar
[2011/04/15 15:34:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\Artogon
[2011/01/30 23:47:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\AVG
[2011/01/30 21:42:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\AVG10
[2011/03/27 22:42:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\CheckPoint
[2011/07/08 14:15:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\DDMSettings
[2011/02/23 00:55:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\Dekovir
[2011/06/14 22:56:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\Dream Aquarium
[2011/05/31 13:18:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\Elephant Games
[2011/05/06 00:09:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\Fugazo
[2011/04/29 00:15:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\Fuzzy Bug Interactive
[2011/01/13 22:38:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\G-HeadGames
[2011/01/07 11:15:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\Gaijin Ent
[2011/02/11 11:58:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\GameMill Entertainment
[2011/03/17 15:53:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\Keyword Strategy Studio Pro
[2011/02/11 12:45:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\LittleGamesCompany
[2011/01/04 04:53:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\Merscom
[2011/07/11 20:26:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\mjusbsp
[2011/07/11 19:56:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\mjusbsp(2)
[2011/03/29 23:13:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\Namco
[2011/01/24 00:30:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\PoBros
[2011/07/08 01:31:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\SpeedItUp
[2011/04/14 22:09:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\Stellarium
[2011/04/01 22:37:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\Uniblue
[2011/01/06 07:36:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\Watchtower
[2011/02/13 22:18:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cara-Leigh\Application Data\WhiteBirdsProductions
[2011/07/11 20:26:36 | 000,000,486 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
[2011/07/11 20:15:19 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
[2011/07/11 20:14:19 | 000,000,390 | -H-- | M] () -- C:\WINDOWS\Tasks\MpIdleTask.job
[2011/07/08 04:01:00 | 000,000,244 | ---- | M] () -- C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job
[2011/07/08 03:57:39 | 000,000,432 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{A66A6A00-5E7B-4145-A922-2DD292CA2173}.job
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 143 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:9720EBEF
@Alternate Data Stream - 139 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E21433CE
@Alternate Data Stream - 139 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:BE6B5FC3
@Alternate Data Stream - 136 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:52C24010
@Alternate Data Stream - 135 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:207C4C79
@Alternate Data Stream - 134 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:697DDE2B
@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7DC5D762
@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:23834E1E
@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5FD26EF3
@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:430C6D84
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3E06C78F
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0B4227B4
@Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CA0CE093
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4DDE401B
@Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:85C3B823
@Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CB16385F
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2
< End of report >
Edited by peta.grrl, 16 July 2011 - 05:48 PM.