Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Daily BSOD, can't boot in normal mode, files locked, PLEASE HELP&#


  • This topic is locked This topic is locked

#1
AlyssaFrig

AlyssaFrig

    New Member

  • Member
  • Pip
  • 1 posts
My computer really has a mind of it's own now. If I try to boot in normal mode, it freezes. I had the BSOD twice yesterday and once today. My temp folder fills up constantly and I need major help! Here is my OTL log as requested. I really hope someone can help me with this! Thank you!!!


OTL logfile created on: 7/15/2011 7:29:28 PM - Run 4
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Users\Alyssa\Downloads
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.84 Gb Total Physical Memory | 2.83 Gb Available Physical Memory | 73.64% Memory free
7.68 Gb Paging File | 6.87 Gb Available in Paging File | 89.46% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 222.43 Gb Total Space | 125.82 Gb Free Space | 56.56% Space Free | Partition Type: NTFS

Computer Name: HOME-PC | User Name: Alyssa | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/07/15 19:29:22 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Alyssa\Downloads\OTL.scr
PRC - [2011/06/22 05:59:04 | 001,101,960 | ---- | M] () -- C:\Program Files (x86)\Lavasoft\Ad-Aware\AWSC.exe
PRC - [2011/06/16 00:17:34 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2011/05/04 11:31:00 | 000,108,392 | ---- | M] (Symantec Corporation) -- C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe
PRC - [2009/01/08 10:36:42 | 002,521,464 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\Updater6\Adobe_Updater.exe


========== Modules (SafeList) ==========

MOD - [2011/07/15 19:29:22 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Alyssa\Downloads\OTL.scr
MOD - [2010/08/21 01:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2011/05/04 13:55:09 | 000,128,384 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE -- (!SASCORE)
SRV:64bit: - [2009/08/21 12:31:06 | 000,488,800 | ---- | M] (TOSHIBA Corporation) [Auto | Stopped] -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe -- (TosCoSrv)
SRV:64bit: - [2009/08/03 22:17:56 | 000,137,560 | ---- | M] (TOSHIBA Corporation) [On_Demand | Stopped] -- C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe -- (TOSHIBA HDD SSD Alert Service)
SRV:64bit: - [2009/07/28 19:48:06 | 000,140,632 | ---- | M] (TOSHIBA Corporation) [Auto | Stopped] -- C:\Windows\SysNative\TODDSrv.exe -- (TODDSrv)
SRV:64bit: - [2009/07/13 21:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2011/06/28 07:19:39 | 002,151,640 | ---- | M] (Lavasoft Limited) [Auto | Stopped] -- C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2011/05/30 11:33:54 | 001,025,352 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\AVG\AVG10\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service)
SRV - [2011/05/04 11:31:00 | 000,108,392 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe -- (ccSetMgr)
SRV - [2011/05/04 11:31:00 | 000,108,392 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe -- (ccEvtMgr)
SRV - [2011/05/04 11:30:55 | 003,098,440 | ---- | M] (Symantec Corporation) [Disabled | Stopped] -- C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\Smc.exe -- (SmcService)
SRV - [2011/05/04 11:30:55 | 000,387,400 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\SNAC64.EXE -- (SNAC)
SRV - [2011/05/04 11:30:54 | 002,440,632 | ---- | M] (Symantec Corporation) [Disabled | Stopped] -- C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\Rtvscan.exe -- (Symantec AntiVirus)
SRV - [2011/04/18 17:39:42 | 007,398,752 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2011/03/09 19:24:44 | 002,708,024 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files (x86)\AVG\AVG10\avgfws.exe -- (avgfws)
SRV - [2011/02/22 13:57:30 | 000,070,928 | ---- | M] (PC Tools) [Auto | Stopped] -- C:\Program Files (x86)\ThreatFire\TFService.exe -- (ThreatFire)
SRV - [2011/02/11 13:45:52 | 000,054,136 | ---- | M] (TOSHIBA Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Toshiba\TOSHIBA Service Station\TMachInfo.exe -- (TMachInfo)
SRV - [2011/02/08 05:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe -- (avgwd)
SRV - [2010/09/23 09:49:08 | 000,067,584 | ---- | M] (CobianSoft, Luis Cobian) [Auto | Stopped] -- C:\Program Files (x86)\Cobian Backup 10\cbVSCService.exe -- (cbVSCService)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/08/10 22:55:58 | 000,248,688 | ---- | M] (TOSHIBA CORPORATION) [Auto | Stopped] -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe -- (cfWiMAXService)
SRV - [2009/07/14 22:10:30 | 000,042,368 | ---- | M] (TOSHIBA CORPORATION) [Auto | Stopped] -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe -- (ConfigFree Gadget Service)
SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/03/10 21:51:20 | 000,046,448 | ---- | M] (TOSHIBA CORPORATION) [Auto | Stopped] -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe -- (ConfigFree Service)
SRV - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Stopped] -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)
SRV - [2006/10/23 08:50:35 | 000,046,640 | R--- | M] (AOL LLC) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\AOL\ACS\AOLAcsd.exe -- (AOL ACS)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2011/07/15 13:38:11 | 000,096,376 | ---- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\SMR200.SYS -- (SMR200)
DRV:64bit: - [2011/06/20 10:31:32 | 000,069,376 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\Lbd.sys -- (Lbd)
DRV:64bit: - [2011/05/10 08:06:08 | 000,051,712 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2011/05/04 18:00:49 | 000,172,080 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS -- (SymEvent)
DRV:64bit: - [2011/05/04 11:31:04 | 000,052,784 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\WPSDRVnt.sys -- (WPS)
DRV:64bit: - [2011/05/04 11:31:01 | 000,480,304 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\srtspl64.sys -- (SRTSPL)
DRV:64bit: - [2011/05/04 11:31:01 | 000,441,904 | ---- | M] (Symantec Corporation) [File_System | System | Stopped] -- C:\Windows\SysNative\drivers\srtsp64.sys -- (SRTSP)
DRV:64bit: - [2011/05/04 11:31:01 | 000,032,304 | ---- | M] (Symantec Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\srtspx64.sys -- (SRTSPX)
DRV:64bit: - [2011/05/04 11:30:56 | 000,062,512 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Teefer2.sys -- (Teefer2)
DRV:64bit: - [2011/05/04 11:30:48 | 000,025,424 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\COH_Mon.sys -- (COH_Mon)
DRV:64bit: - [2011/04/14 21:28:24 | 000,118,864 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV:64bit: - [2011/04/05 00:59:54 | 000,377,936 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtdia.sys -- (Avgtdia)
DRV:64bit: - [2011/03/25 09:54:35 | 000,133,752 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AnyDVD.sys -- (AnyDVD)
DRV:64bit: - [2011/03/16 16:03:18 | 000,037,456 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgrkx64.sys -- (Avgrkx64)
DRV:64bit: - [2011/03/11 02:22:41 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 02:22:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/03/01 14:25:18 | 000,041,552 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Stopped] -- C:\Windows\SysNative\drivers\avgmfx64.sys -- (Avgmfx64)
DRV:64bit: - [2011/02/22 13:57:58 | 000,074,824 | ---- | M] (PC Tools) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\TfSysMon.sys -- (TfSysMon)
DRV:64bit: - [2011/02/22 13:57:56 | 000,041,888 | ---- | M] (PC Tools) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TfNetMon.sys -- (TfNetMon)
DRV:64bit: - [2011/02/22 13:57:54 | 000,065,072 | ---- | M] (PC Tools) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\TfFsMon.sys -- (TfFsMon)
DRV:64bit: - [2011/02/22 08:12:46 | 000,026,704 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AVGIDSEH.sys -- (AVGIDSEH)
DRV:64bit: - [2011/02/10 07:53:34 | 000,029,264 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV:64bit: - [2011/01/07 06:41:44 | 000,304,720 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\avgldx64.sys -- (Avgldx64)
DRV:64bit: - [2010/12/16 18:58:14 | 000,040,816 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV:64bit: - [2010/09/10 22:38:10 | 000,225,328 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpshelper.sys -- (WpsHelper)
DRV:64bit: - [2010/07/12 14:36:10 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2010/07/12 04:34:00 | 000,057,696 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgfwd6a.sys -- (Avgfwfd)
DRV:64bit: - [2010/05/26 10:39:08 | 000,006,144 | ---- | M] (Sophos Plc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\78F9.tmp -- (MEMSWEEP2)
DRV:64bit: - [2010/02/17 14:23:05 | 000,014,920 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Stopped] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2010/02/17 14:23:05 | 000,012,360 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Stopped] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64bit: - [2009/08/27 11:07:06 | 007,369,600 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009/08/20 19:04:06 | 000,446,976 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RTL8187B.sys -- (RTL8187B)
DRV:64bit: - [2009/07/31 00:22:04 | 000,027,784 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tdcmdpst.sys -- (tdcmdpst)
DRV:64bit: - [2009/07/31 00:02:36 | 000,044,912 | ---- | M] (COMPAL ELECTRONIC INC.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\LPCFilter.sys -- (LPCFilter)
DRV:64bit: - [2009/07/30 20:46:22 | 000,222,208 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2009/07/24 18:57:08 | 000,482,384 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\tos_sps64.sys -- (tos_sps64)
DRV:64bit: - [2009/07/20 20:48:32 | 000,274,480 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2009/07/14 18:31:18 | 000,026,840 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\TVALZ_O.SYS -- (TVALZ)
DRV:64bit: - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 21:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 17:01:06 | 001,146,880 | ---- | M] (LSI Corp) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AgereSoftModem)
DRV:64bit: - [2009/06/10 16:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/06/04 21:54:36 | 000,408,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2009/05/23 01:52:30 | 000,215,040 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2009/05/18 13:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2006/11/29 18:24:49 | 000,024,064 | ---- | M] (America Online, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wanatw64.sys -- (wanatw) WAN Miniport (ATW)
DRV - [2011/06/15 04:00:00 | 002,011,768 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20110713.024\EX64.SYS -- (NAVEX15)
DRV - [2011/06/15 04:00:00 | 000,117,880 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20110713.024\ENG64.SYS -- (NAVENG)
DRV - [2011/05/16 04:00:00 | 000,481,912 | ---- | M] (Symantec Corporation) [Kernel | System | Stopped] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl)
DRV - [2011/05/16 04:00:00 | 000,136,824 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2011/05/04 11:31:01 | 000,480,304 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\srtspl64.sys -- (SRTSPL)
DRV - [2011/05/04 11:31:01 | 000,441,904 | ---- | M] (Symantec Corporation) [File_System | System | Stopped] -- C:\Windows\SysWOW64\drivers\srtsp64.sys -- (SRTSP)
DRV - [2011/05/04 11:31:01 | 000,032,304 | ---- | M] (Symantec Corporation) [Kernel | System | Stopped] -- C:\Windows\SysWOW64\drivers\srtspx64.sys -- (SRTSPX)
DRV - [2011/03/25 09:54:35 | 000,133,752 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\AnyDVD.sys -- (AnyDVD)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://www.yahoo.com
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co...=TSNA&bmod=TSNA
IE - HKLM\..\URLSearchHook: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - Reg Error: Key error. File not found

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.co...=TSNA&bmod=TSNA
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore =
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "AVG Secure Search"
FF - prefs.js..browser.search.selectedEngine: "AVG Secure Search"
FF - prefs.js..browser.startup.homepage: "www.yahoo.com"
FF - prefs.js..keyword.URL: "http://search.avg.co...s&lng=en-US&q="


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files (x86)\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll ()

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files (x86)\AVG\AVG10\Firefox4\ [2011/07/11 20:15:05 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\AVG\AVG10\Toolbar\Firefox\[email protected] [2011/07/05 22:38:59 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011/07/09 02:31:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011/07/05 23:50:03 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011/07/05 22:39:20 | 000,000,000 | ---D | M]

[2011/04/30 15:13:42 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Alyssa\AppData\Roaming\Mozilla\Extensions
[2011/07/15 19:17:46 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Alyssa\AppData\Roaming\Mozilla\Firefox\Profiles\2bqv3bnc.default\extensions
[2011/07/15 19:06:25 | 000,000,000 | ---D | M] (Window Shopper - Powered by Superfish) -- C:\Users\Alyssa\AppData\Roaming\Mozilla\Firefox\Profiles\2bqv3bnc.default\extensions\[email protected]
[2011/07/09 15:04:39 | 000,000,000 | ---D | M] (ShopAtHome.com Intelligent Shopping Toolbar) -- C:\Users\Alyssa\AppData\Roaming\Mozilla\Firefox\Profiles\2bqv3bnc.default\extensions\[email protected]
[2011/07/15 19:06:28 | 000,002,289 | ---- | M] () -- C:\Users\Alyssa\AppData\Roaming\Mozilla\Firefox\Profiles\2bqv3bnc.default\searchplugins\bing-zugo.xml
[2011/07/05 23:50:03 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2011/07/05 22:39:20 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
File not found (No name found) --
[2011/07/11 20:15:05 | 000,000,000 | ---D | M] (AVG Safe Search) -- C:\PROGRAM FILES (X86)\AVG\AVG10\FIREFOX4
[2011/07/05 22:38:59 | 000,000,000 | ---D | M] ("urn:mozilla:install-manifest" em:id="[email protected]" em:name="AVG Security Toolbar" em:version="7.005.030.004" em:displayname="AVG Security Toolbar" em:iconURL="chrome://tavgp/skin/logo.ico" em:creator="AVG Technologies" em:description="AVG Security Toolbar" em:homepageURL="http://www.avg.com" >) -- C:\PROGRAM FILES (X86)\AVG\AVG10\TOOLBAR\FIREFOX\[email protected]
[2011/06/16 00:17:34 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011/03/18 14:32:12 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npCouponPrinter.dll
[2011/05/04 04:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
[2011/03/18 14:32:14 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npMozCouponPrinter.dll
[2010/01/01 04:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2010/01/01 04:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml.old

O1 HOSTS File: ([2011/06/21 02:27:10 | 000,000,027 | R--- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG10\avgssiea.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - File not found
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files (x86)\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [TaskTray] File not found
O4 - HKLM..\Run: [ToshibaServiceStation] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe (TOSHIBA Corporation)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4:64bit: - HKLM..\RunOnce: [GrpConv] C:\windows\SysNative\grpconv.exe (Microsoft Corporation)
O4 - HKLM..\RunOnce: [GrpConv] C:\windows\SysWow64\grpconv.exe (Microsoft Corporation)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKCU\..Trusted Domains: aol.com ([objects] * is out of zone range - 5)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.15.1
O18:64bit: - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG10\avgppa.dll (AVG Technologies CZ, s.r.o.)
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Reg Error: Key error. File not found
O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll ()
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Key error. - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (C:\PROGRA~2\AVG\AVG10\avgchsva.exe /sync) - C:\Program Files (x86)\AVG\AVG10\avgchsva.exe (AVG Technologies CZ, s.r.o.)
O34 - HKLM BootExecute: (C:\PROGRA~2\AVG\AVG10\avgrsa.exe /sync /restart) - C:\Program Files (x86)\AVG\AVG10\avgrsa.exe (AVG Technologies CZ, s.r.o.)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/07/15 19:10:27 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\Documents\DriverPerformer
[2011/07/15 13:38:11 | 000,096,376 | ---- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\SMR200.SYS
[2011/07/15 00:00:50 | 000,000,000 | ---D | C] -- C:\Temp Fake
[2011/07/14 23:43:53 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Local\Adobe
[2011/07/14 20:10:02 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Local\Safe mirror
[2011/07/14 20:09:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cobian Backup 10
[2011/07/14 20:07:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cobian Backup 10
[2011/07/14 18:37:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
[2011/07/14 18:37:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sophos
[2011/07/14 01:19:46 | 000,069,376 | ---- | C] (Lavasoft AB) -- C:\windows\SysNative\drivers\Lbd.sys
[2011/07/14 01:19:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
[2011/07/14 01:19:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Lavasoft
[2011/07/14 01:19:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lavasoft
[2011/07/14 01:18:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ThreatFire
[2011/07/14 01:18:56 | 000,074,824 | ---- | C] (PC Tools) -- C:\windows\SysNative\drivers\TfSysMon.sys
[2011/07/14 01:18:56 | 000,065,072 | ---- | C] (PC Tools) -- C:\windows\SysNative\drivers\TfFsMon.sys
[2011/07/14 01:18:56 | 000,041,888 | ---- | C] (PC Tools) -- C:\windows\SysNative\drivers\TfNetMon.sys
[2011/07/14 01:18:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ThreatFire
[2011/07/14 01:18:54 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Tools
[2011/07/14 00:12:01 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Roaming\InstallShield
[2011/07/13 21:13:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
[2011/07/13 19:20:50 | 000,000,000 | ---D | C] -- C:\ProgramData\SecTaskMan
[2011/07/13 19:20:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security Task Manager
[2011/07/13 19:20:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Security Task Manager
[2011/07/13 00:06:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/07/09 15:04:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SelectRebates
[2011/07/09 02:36:47 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Local\DDMSettings
[2011/07/09 02:31:33 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Roaming\DivX
[2011/07/09 02:29:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus
[2011/07/09 02:29:24 | 000,000,000 | ---D | C] -- C:\Program Files\DivX
[2011/07/09 02:29:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DivX Shared
[2011/07/09 02:24:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DivX
[2011/07/09 02:23:43 | 000,000,000 | ---D | C] -- C:\ProgramData\DivX
[2011/07/06 01:27:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2011/07/06 01:26:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2011/07/06 01:26:18 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011/07/06 01:26:17 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011/07/06 01:26:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2011/07/05 22:00:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Performer
[2011/07/05 22:00:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Driver-Soft
[2011/07/05 21:59:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Superfish
[2011/07/05 13:26:45 | 000,000,000 | -H-D | C] -- C:\$AVG
[2011/07/02 14:41:41 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\Documents\Scanned Documents
[2011/07/02 14:41:40 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\Documents\Fax
[2011/07/01 01:59:16 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Local\{BA044584-419F-4DAE-B429-728D628D9B77}
[2011/07/01 01:59:16 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Local\{23EF4BFB-E0FC-4988-B27C-C36EC63BB863}
[2011/06/28 00:33:53 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2011/06/28 00:33:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\eSellerate
[2011/06/28 00:33:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Chess Buddy Yahoo
[2011/06/26 04:19:36 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Roaming\SoMud
[2011/06/24 22:20:05 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Local\{34FFC964-C03F-4CC4-83BE-D73EEB18BF3D}
[2011/06/24 22:18:53 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Local\{104246FD-1D01-4B7D-AA7F-E4AE823BA70A}
[2011/06/24 22:18:19 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Local\{E3851C12-EF11-42CA-A58E-52F547670602}
[2011/06/24 03:33:07 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Local\{78CB17B6-B9B7-4383-96B5-6466562B7BFE}
[2011/06/24 00:08:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Conduit
[2011/06/24 00:08:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ConduitEngine
[2011/06/24 00:08:48 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Local\Conduit
[2011/06/24 00:08:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\uTorrentBar
[2011/06/23 21:59:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Coupons
[2011/06/23 21:58:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Coupons
[2011/06/23 21:33:41 | 000,000,000 | ---D | C] -- C:\REMEMBER_ME
[2011/06/23 20:37:27 | 000,000,000 | ---D | C] -- C:\windows\Sun
[2011/06/23 18:12:41 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Local\{7F5FF291-8D4D-4F4E-B50F-E89AF11A20CB}
[2011/06/23 18:04:43 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Roaming\HandBrake
[2011/06/23 18:04:43 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Local\HandBrake
[2011/06/23 18:04:31 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Handbrake
[2011/06/23 18:04:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Handbrake
[2011/06/23 18:04:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Handbrake
[2011/06/23 17:56:42 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Roaming\AVS4YOU
[2011/06/23 17:56:17 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU
[2011/06/23 17:55:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU
[2011/06/23 17:55:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\AVSMedia
[2011/06/23 17:54:40 | 000,000,000 | ---D | C] -- C:\ProgramData\AVS4YOU
[2011/06/23 17:54:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVS4YOU
[2011/06/23 16:34:30 | 000,000,000 | ---D | C] -- C:\HANNIBAL
[2011/06/23 16:16:06 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011/06/22 23:42:25 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Local\AVG Security Toolbar
[2011/06/22 23:36:27 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Roaming\AVG10
[2011/06/22 23:35:20 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG Security Toolbar
[2011/06/22 23:35:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2011
[2011/06/22 23:35:03 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\drivers\AVG
[2011/06/22 23:34:06 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG10
[2011/06/22 23:34:06 | 000,000,000 | ---D | C] -- C:\windows\SysNative\drivers\AVG
[2011/06/22 23:33:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVG
[2011/06/22 21:44:13 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2011/06/22 20:54:03 | 000,000,000 | ---D | C] -- C:\windows\Minidump
[2011/06/22 20:12:33 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2011/06/21 18:40:22 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Local\Windows Live Writer
[2011/06/21 18:40:21 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Roaming\Windows Live Writer
[2011/06/21 16:05:50 | 000,000,000 | ---D | C] -- C:\windows\en
[2011/06/21 16:05:39 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
[2011/06/21 16:04:02 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2011/06/21 02:31:52 | 000,000,000 | ---D | C] -- C:\windows\temp
[2011/06/21 02:27:54 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2011/06/21 02:09:20 | 000,518,144 | ---- | C] (SteelWerX) -- C:\windows\SWREG.exe
[2011/06/21 02:09:20 | 000,406,528 | ---- | C] (SteelWerX) -- C:\windows\SWSC.exe
[2011/06/21 02:09:20 | 000,060,416 | ---- | C] (NirSoft) -- C:\windows\NIRCMD.exe
[2011/06/21 02:09:08 | 000,000,000 | ---D | C] -- C:\windows\ERDNT
[2011/06/21 02:04:31 | 000,000,000 | ---D | C] -- C:\ComboFix
[2011/06/21 01:53:08 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Roaming\SUPERAntiSpyware.com
[2011/06/21 01:53:08 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2011/06/21 01:50:04 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011/06/21 01:47:56 | 000,000,000 | ---D | C] -- C:\ProgramData\!SASCORE
[2011/06/21 01:47:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[2011/06/21 01:47:50 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2011/06/21 01:21:29 | 000,055,384 | ---- | C] (Sunbelt Software) -- C:\windows\SysNative\drivers\SBREDrv.sys
[2011/06/21 01:16:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Trend Micro
[2011/06/21 01:16:19 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
[2011/06/20 23:56:15 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Local\NPE
[2011/06/20 13:03:45 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Roaming\Nero
[2011/06/20 13:02:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero
[2011/06/20 12:40:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Free Offers from Freeze.com
[2011/06/18 20:15:48 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Roaming\IrfanView
[2011/06/18 20:15:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IrfanView
[2011/06/17 21:58:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2011/06/17 21:58:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2011/06/17 21:38:37 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Roaming\acccore
[2011/06/17 21:38:24 | 000,000,000 | ---D | C] -- C:\ProgramData\AIM
[2011/06/17 21:38:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIM
[2011/06/17 21:38:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AIM
[2011/06/17 21:38:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Software Update Utility
[2011/06/17 21:20:24 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Roaming\AOL
[2011/06/17 21:20:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Macromedia
[2011/06/17 21:20:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOL
[2011/06/17 21:20:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Viewpoint
[2011/06/17 21:19:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Viewpoint
[2011/06/17 21:19:57 | 000,058,696 | ---- | C] (AOL Inc.) -- C:\windows\SysWow64\AOLParconLink.exe
[2011/06/17 21:19:15 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\AOL Downloads
[2011/06/17 21:18:35 | 000,000,000 | ---D | C] -- C:\ProgramData\AOL OCP
[2011/06/17 21:18:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AOL
[2011/06/17 21:18:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\AOL
[2011/06/17 21:18:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\aolshare
[2011/06/17 21:18:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AOL Desktop 9.6
[2011/06/17 21:18:01 | 000,000,000 | ---D | C] -- C:\ProgramData\AOL
[2011/06/17 21:11:25 | 000,000,000 | ---D | C] -- C:\ProgramData\AOL Downloads
[2011/06/17 20:28:47 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Roaming\mIRC
[2011/06/17 20:28:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\mIRC
[2011/06/16 16:03:00 | 000,000,000 | -HSD | C] -- C:\windows\SysWow64\%APPDATA%
[2011/06/16 02:01:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
[2011/06/16 02:01:40 | 000,091,568 | ---- | C] (PowerISO Computing, Inc.) -- C:\windows\SysNative\drivers\scdemu.sys
[2011/06/16 02:01:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PowerISO
[2011/06/16 01:59:43 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\Documents\AnyDVDHD
[2011/06/16 01:58:49 | 000,000,000 | ---D | C] -- C:\ProgramData\SlySoft
[2011/06/16 01:54:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlySoft
[2011/06/16 01:54:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SlySoft
[2011/06/16 01:02:56 | 000,000,000 | ---D | C] -- C:\Party_Monster
[2011/06/15 23:31:15 | 000,000,000 | ---D | C] -- C:\NO_LABEL
[2011/06/15 23:13:24 | 000,000,000 | ---D | C] -- C:\Party Monster
[2011/06/15 23:12:17 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DVD Decrypter
[2011/06/15 23:12:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD Decrypter
[2011/06/15 23:12:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DVD Decrypter
[2011/06/15 23:09:20 | 000,000,000 | ---D | C] -- C:\Users\Alyssa\AppData\Roaming\RipIt4Me
[2 C:\windows\SysNative\*.tmp files -> C:\windows\SysNative\*.tmp -> ]
[1 C:\windows\SysWow64\*.tmp files -> C:\windows\SysWow64\*.tmp -> ]
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/07/15 19:07:05 | 000,001,254 | ---- | M] () -- C:\Users\Alyssa\Desktop\Driver Performer.lnk
[2011/07/15 15:04:31 | 000,013,613 | ---- | M] () -- C:\Users\Alyssa\Desktop\dds.scr - Shortcut.lnk
[2011/07/15 13:38:12 | 000,000,020 | ---- | M] () -- C:\windows\SysNative\drivers\SMR200.dat
[2011/07/15 13:38:11 | 000,096,376 | ---- | M] (Symantec Corporation) -- C:\windows\SysNative\drivers\SMR200.SYS
[2011/07/15 13:37:57 | 000,002,243 | ---- | M] () -- C:\windows\epplauncher.mif
[2011/07/15 13:16:28 | 000,000,408 | ---- | M] () -- C:\windows\tasks\Ad-Aware Update (Weekly).job
[2011/07/15 13:15:49 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2011/07/15 13:15:41 | 3092,942,848 | -HS- | M] () -- C:\hiberfil.sys
[2011/07/15 13:15:40 | 942,497,947 | ---- | M] () -- C:\windows\MEMORY.DMP
[2011/07/15 12:40:23 | 000,000,512 | ---- | M] () -- C:\Users\Alyssa\Documents\MBR.dat
[2011/07/14 17:21:48 | 000,001,120 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/07/14 15:12:00 | 000,000,898 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/07/14 15:07:39 | 000,000,894 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/07/14 03:04:07 | 000,000,258 | ---- | M] () -- C:\windows\tasks\HP Photo Creations Messager.job
[2011/07/14 01:45:27 | 000,055,384 | ---- | M] (Sunbelt Software) -- C:\windows\SysNative\drivers\SBREDrv.sys
[2011/07/14 01:19:50 | 000,001,071 | ---- | M] () -- C:\Users\Public\Desktop\Ad-Aware.lnk
[2011/07/14 01:19:02 | 000,000,945 | ---- | M] () -- C:\Users\Public\Desktop\ThreatFire.lnk
[2011/07/13 21:45:52 | 000,016,304 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/07/13 21:45:52 | 000,016,304 | ---- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/07/13 17:53:48 | 122,251,097 | ---- | M] () -- C:\windows\SysNative\drivers\AVG\incavi.avm
[2011/07/13 16:18:01 | 000,343,552 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
[2011/07/13 13:55:36 | 000,009,216 | -H-- | M] () -- C:\Users\Alyssa\Documents\photothumb.db
[2011/07/13 12:33:31 | 000,656,796 | ---- | M] () -- C:\windows\SysNative\drivers\AVG\iavifw.avm
[2011/07/12 12:33:28 | 000,001,448 | ---- | M] () -- C:\Users\Alyssa\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/07/11 20:15:09 | 000,000,964 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2011.lnk
[2011/07/09 02:32:03 | 000,002,127 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
[2011/07/09 02:32:03 | 000,001,583 | ---- | M] () -- C:\Users\Alyssa\Desktop\DivX Movies.lnk
[2011/07/09 02:30:58 | 000,001,123 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
[2011/07/09 01:36:52 | 000,072,822 | ---- | M] () -- C:\windows\SysWow64\ieuinit.inf
[2011/07/09 01:36:48 | 000,072,822 | ---- | M] () -- C:\windows\SysNative\ieuinit.inf
[2011/07/06 19:52:42 | 000,041,272 | ---- | M] (Malwarebytes Corporation) -- C:\windows\SysWow64\drivers\mbamswissarmy.sys
[2011/07/06 19:52:42 | 000,025,912 | ---- | M] (Malwarebytes Corporation) -- C:\windows\SysNative\drivers\mbam.sys
[2011/07/06 01:26:40 | 000,001,794 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011/07/05 23:50:06 | 000,001,145 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011/07/05 22:57:06 | 000,740,374 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
[2011/07/05 22:57:06 | 000,624,178 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
[2011/07/05 22:57:06 | 000,106,522 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
[2011/07/05 20:31:38 | 000,000,000 | ---- | M] () -- C:\t150.2
[2011/07/02 14:45:58 | 000,250,321 | ---- | M] () -- C:\Users\Alyssa\Documents\documents for insurance 001.jpg
[2011/07/02 14:45:58 | 000,250,321 | ---- | M] () -- C:\Users\Alyssa\Documents\documents for insurance 001 (2).jpg
[2011/06/23 18:04:31 | 000,001,030 | ---- | M] () -- C:\Users\Alyssa\Desktop\Handbrake.lnk
[2011/06/23 17:56:22 | 000,001,304 | ---- | M] () -- C:\Users\Alyssa\Desktop\AVS4YOU Software Navigator.lnk
[2011/06/23 17:55:29 | 000,001,248 | ---- | M] () -- C:\Users\Alyssa\Desktop\AVS Video Converter.lnk
[2011/06/23 17:25:59 | 000,000,040 | -HS- | M] () -- C:\ProgramData\.zreglib
[2011/06/22 23:35:03 | 000,000,000 | ---- | M] () -- C:\windows\SysWow64\drivers\AVG\incavi.avm
[2011/06/22 23:35:03 | 000,000,000 | ---- | M] () -- C:\windows\SysWow64\drivers\AVG\iavifw.avm
[2011/06/22 23:35:03 | 000,000,000 | ---- | M] () -- C:\windows\SysWow64\drivers\AVG\iavichjw.avm
[2011/06/22 21:33:08 | 000,001,972 | ---- | M] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2011/06/21 17:17:38 | 000,000,370 | ---- | M] () -- C:\Users\Alyssa\Documents\symantic log.csv
[2011/06/21 02:27:10 | 000,000,027 | R--- | M] () -- C:\windows\SysNative\drivers\etc\hosts
[2011/06/21 01:16:19 | 000,002,981 | ---- | M] () -- C:\Users\Alyssa\Desktop\HiJackThis.lnk
[2011/06/21 00:53:09 | 000,007,612 | ---- | M] () -- C:\Users\Alyssa\AppData\Local\Resmon.ResmonCfg
[2011/06/20 14:13:11 | 095,646,164 | ---- | M] () -- C:\Users\Alyssa\Documents\Mix CD 1.daa
[2011/06/20 10:31:32 | 000,069,376 | ---- | M] (Lavasoft AB) -- C:\windows\SysNative\drivers\Lbd.sys
[2011/06/18 20:15:48 | 000,001,009 | ---- | M] () -- C:\Users\Alyssa\Desktop\IrfanView.lnk
[2011/06/17 21:38:35 | 000,000,360 | -H-- | M] () -- C:\IPH.PH
[2011/06/17 21:38:24 | 000,001,946 | ---- | M] () -- C:\Users\Alyssa\Application Data\Microsoft\Internet Explorer\Quick Launch\AIM.lnk
[2011/06/17 21:38:24 | 000,001,922 | ---- | M] () -- C:\Users\Public\Desktop\AIM.lnk
[2011/06/17 21:20:15 | 000,001,130 | ---- | M] () -- C:\Users\Alyssa\Application Data\Microsoft\Internet Explorer\Quick Launch\AOL Desktop 9.6.lnk
[2011/06/17 21:11:33 | 000,058,696 | ---- | M] (AOL Inc.) -- C:\windows\SysWow64\AOLParconLink.exe
[2011/06/17 21:11:24 | 000,000,335 | ---- | M] () -- C:\windows\nsreg.dat
[2011/06/17 20:29:32 | 000,000,962 | ---- | M] () -- C:\Users\Public\Desktop\mIRC.lnk
[2011/06/16 02:01:41 | 000,001,018 | ---- | M] () -- C:\Users\Public\Desktop\PowerISO.lnk
[2011/06/16 01:55:08 | 000,001,112 | ---- | M] () -- C:\Users\Public\Desktop\AnyDVD.lnk
[2011/06/15 23:12:18 | 000,001,983 | ---- | M] () -- C:\Users\Alyssa\Desktop\DVD Decrypter.lnk
[2011/06/15 19:30:57 | 000,002,014 | ---- | M] () -- C:\Users\Public\Desktop\HP Photo Creations.lnk
[2 C:\windows\SysNative\*.tmp files -> C:\windows\SysNative\*.tmp -> ]
[1 C:\windows\SysWow64\*.tmp files -> C:\windows\SysWow64\*.tmp -> ]
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/07/15 19:07:05 | 000,001,254 | ---- | C] () -- C:\Users\Alyssa\Desktop\Driver Performer.lnk
[2011/07/15 15:04:31 | 000,013,613 | ---- | C] () -- C:\Users\Alyssa\Desktop\dds.scr - Shortcut.lnk
[2011/07/15 13:38:11 | 000,000,020 | ---- | C] () -- C:\windows\SysNative\drivers\SMR200.dat
[2011/07/15 12:40:23 | 000,000,512 | ---- | C] () -- C:\Users\Alyssa\Documents\MBR.dat
[2011/07/14 16:21:02 | 000,000,408 | ---- | C] () -- C:\windows\tasks\Ad-Aware Update (Weekly).job
[2011/07/14 01:19:50 | 000,001,071 | ---- | C] () -- C:\Users\Public\Desktop\Ad-Aware.lnk
[2011/07/14 01:19:02 | 000,000,945 | ---- | C] () -- C:\Users\Public\Desktop\ThreatFire.lnk
[2011/07/13 18:27:29 | 000,002,243 | ---- | C] () -- C:\windows\epplauncher.mif
[2011/07/13 17:53:48 | 122,251,097 | ---- | C] () -- C:\windows\SysNative\drivers\AVG\incavi.avm
[2011/07/13 12:53:30 | 000,009,216 | -H-- | C] () -- C:\Users\Alyssa\Documents\photothumb.db
[2011/07/13 12:33:31 | 000,656,796 | ---- | C] () -- C:\windows\SysNative\drivers\AVG\iavifw.avm
[2011/07/12 12:33:28 | 000,001,420 | ---- | C] () -- C:\Users\Alyssa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[2011/07/12 12:33:26 | 000,001,454 | ---- | C] () -- C:\Users\Alyssa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2011/07/09 02:32:03 | 000,001,583 | ---- | C] () -- C:\Users\Alyssa\Desktop\DivX Movies.lnk
[2011/07/09 02:30:58 | 000,001,123 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
[2011/07/09 02:29:42 | 000,002,127 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
[2011/07/09 01:36:52 | 000,072,822 | ---- | C] () -- C:\windows\SysWow64\ieuinit.inf
[2011/07/09 01:36:48 | 000,072,822 | ---- | C] () -- C:\windows\SysNative\ieuinit.inf
[2011/07/06 01:26:40 | 000,001,794 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011/07/05 20:31:38 | 000,000,000 | ---- | C] () -- C:\t150.2
[2011/07/02 14:51:33 | 000,250,321 | ---- | C] () -- C:\Users\Alyssa\Documents\documents for insurance 001 (2).jpg
[2011/07/02 14:46:30 | 000,250,321 | ---- | C] () -- C:\Users\Alyssa\Documents\documents for insurance 001.jpg
[2011/06/23 18:04:31 | 000,001,030 | ---- | C] () -- C:\Users\Alyssa\Desktop\Handbrake.lnk
[2011/06/23 17:56:22 | 000,001,304 | ---- | C] () -- C:\Users\Alyssa\Desktop\AVS4YOU Software Navigator.lnk
[2011/06/23 17:55:29 | 000,001,248 | ---- | C] () -- C:\Users\Alyssa\Desktop\AVS Video Converter.lnk
[2011/06/22 23:35:05 | 000,000,964 | ---- | C] () -- C:\Users\Public\Desktop\AVG 2011.lnk
[2011/06/22 23:35:03 | 000,000,000 | ---- | C] () -- C:\windows\SysWow64\drivers\AVG\incavi.avm
[2011/06/22 23:35:03 | 000,000,000 | ---- | C] () -- C:\windows\SysWow64\drivers\AVG\iavifw.avm
[2011/06/22 23:35:03 | 000,000,000 | ---- | C] () -- C:\windows\SysWow64\drivers\AVG\iavichjw.avm
[2011/06/22 20:53:58 | 942,497,947 | ---- | C] () -- C:\windows\MEMORY.DMP
[2011/06/21 17:17:38 | 000,000,370 | ---- | C] () -- C:\Users\Alyssa\Documents\symantic log.csv
[2011/06/21 16:05:37 | 000,001,316 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk
[2011/06/21 16:05:25 | 000,001,385 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk
[2011/06/21 16:05:10 | 000,001,469 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
[2011/06/21 16:04:44 | 000,002,497 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
[2011/06/21 02:09:20 | 000,256,512 | ---- | C] () -- C:\windows\PEV.exe
[2011/06/21 02:09:20 | 000,208,896 | ---- | C] () -- C:\windows\MBR.exe
[2011/06/21 02:09:20 | 000,098,816 | ---- | C] () -- C:\windows\sed.exe
[2011/06/21 02:09:20 | 000,080,412 | ---- | C] () -- C:\windows\grep.exe
[2011/06/21 02:09:20 | 000,068,096 | ---- | C] () -- C:\windows\zip.exe
[2011/06/21 01:47:54 | 000,001,972 | ---- | C] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2011/06/21 01:16:19 | 000,002,981 | ---- | C] () -- C:\Users\Alyssa\Desktop\HiJackThis.lnk
[2011/06/21 00:53:09 | 000,007,612 | ---- | C] () -- C:\Users\Alyssa\AppData\Local\Resmon.ResmonCfg
[2011/06/20 14:12:57 | 095,646,164 | ---- | C] () -- C:\Users\Alyssa\Documents\Mix CD 1.daa
[2011/06/18 20:15:48 | 000,001,009 | ---- | C] () -- C:\Users\Alyssa\Desktop\IrfanView.lnk
[2011/06/17 21:38:24 | 000,001,946 | ---- | C] () -- C:\Users\Alyssa\Application Data\Microsoft\Internet Explorer\Quick Launch\AIM.lnk
[2011/06/17 21:38:24 | 000,001,922 | ---- | C] () -- C:\Users\Public\Desktop\AIM.lnk
[2011/06/17 21:38:04 | 000,000,360 | -H-- | C] () -- C:\IPH.PH
[2011/06/17 21:20:15 | 000,001,130 | ---- | C] () -- C:\Users\Alyssa\Application Data\Microsoft\Internet Explorer\Quick Launch\AOL Desktop 9.6.lnk
[2011/06/17 21:11:24 | 000,000,335 | ---- | C] () -- C:\windows\nsreg.dat
[2011/06/17 20:28:47 | 000,000,962 | ---- | C] () -- C:\Users\Public\Desktop\mIRC.lnk
[2011/06/16 02:01:41 | 000,001,018 | ---- | C] () -- C:\Users\Public\Desktop\PowerISO.lnk
[2011/06/16 01:58:20 | 000,000,040 | -HS- | C] () -- C:\ProgramData\.zreglib
[2011/06/16 01:55:08 | 000,001,112 | ---- | C] () -- C:\Users\Public\Desktop\AnyDVD.lnk
[2011/06/15 23:12:18 | 000,001,983 | ---- | C] () -- C:\Users\Alyssa\Desktop\DVD Decrypter.lnk
[2011/05/24 19:32:31 | 000,000,482 | ---- | C] () -- C:\Users\Alyssa\AppData\Roaming\wklnhst.dat
[2011/04/30 07:14:36 | 000,000,000 | ---- | C] () -- C:\windows\NDSTray.INI
[2009/08/27 11:05:12 | 000,982,220 | ---- | C] () -- C:\windows\SysWow64\igkrng500.bin
[2009/08/27 11:05:12 | 000,439,300 | ---- | C] () -- C:\windows\SysWow64\igcompkrng500.bin
[2009/08/27 11:05:12 | 000,134,592 | ---- | C] () -- C:\windows\SysWow64\igfcg500.bin
[2009/08/27 11:05:12 | 000,092,216 | ---- | C] () -- C:\windows\SysWow64\igfcg500m.bin
[2009/07/14 01:38:36 | 000,067,584 | --S- | C] () -- C:\windows\bootstat.dat
[2009/07/13 22:35:51 | 000,000,741 | ---- | C] () -- C:\windows\SysWow64\NOISE.DAT
[2009/07/13 22:34:42 | 000,215,943 | ---- | C] () -- C:\windows\SysWow64\dssec.dat
[2009/07/13 20:10:29 | 000,043,131 | ---- | C] () -- C:\windows\mib.bin
[2009/07/13 19:42:10 | 000,064,000 | ---- | C] () -- C:\windows\SysWow64\BWContextHandler.dll
[2009/07/13 17:03:59 | 000,364,544 | ---- | C] () -- C:\windows\SysWow64\msjetoledb40.dll
[2009/06/10 17:26:10 | 000,673,088 | ---- | C] () -- C:\windows\SysWow64\mlang.dat
[2009/04/28 07:37:00 | 000,028,672 | ---- | C] () -- C:\windows\SysWow64\SPCtl.dll

========== LOP Check ==========

[2011/06/17 21:39:02 | 000,000,000 | ---D | M] -- C:\Users\Alyssa\AppData\Roaming\acccore
[2011/06/22 23:36:27 | 000,000,000 | ---D | M] -- C:\Users\Alyssa\AppData\Roaming\AVG10
[2011/06/23 18:16:47 | 000,000,000 | ---D | M] -- C:\Users\Alyssa\AppData\Roaming\HandBrake
[2011/07/05 22:39:49 | 000,000,000 | ---D | M] -- C:\Users\Alyssa\AppData\Roaming\IrfanView
[2011/07/05 22:39:49 | 000,000,000 | ---D | M] -- C:\Users\Alyssa\AppData\Roaming\PhotoScape
[2011/07/05 22:39:49 | 000,000,000 | ---D | M] -- C:\Users\Alyssa\AppData\Roaming\RipIt4Me
[2011/06/26 04:19:36 | 000,000,000 | ---D | M] -- C:\Users\Alyssa\AppData\Roaming\SoMud
[2011/05/24 19:32:32 | 000,000,000 | ---D | M] -- C:\Users\Alyssa\AppData\Roaming\Template
[2011/05/04 17:59:09 | 000,000,000 | ---D | M] -- C:\Users\Alyssa\AppData\Roaming\Toshiba
[2011/06/13 20:24:41 | 000,000,000 | ---D | M] -- C:\Users\Alyssa\AppData\Roaming\Visan
[2011/04/30 12:43:29 | 000,000,000 | ---D | M] -- C:\Users\Alyssa\AppData\Roaming\WinBatch
[2011/06/21 18:40:21 | 000,000,000 | ---D | M] -- C:\Users\Alyssa\AppData\Roaming\Windows Live Writer
[2011/07/15 13:16:28 | 000,000,408 | ---- | M] () -- C:\windows\Tasks\Ad-Aware Update (Weekly).job
[2009/07/14 01:08:49 | 000,012,632 | ---- | M] () -- C:\windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



< End of report >
  • 0

Advertisements


#2
BlackOxide

BlackOxide

    Trusted Helper

  • Malware Removal
  • 1,976 posts
Hi, AlyssaFrig! Welcome to GeeksToGo! My name is BlackOxide and I will be assisting you with your Malware/Security problems. Please make sure you read all of the instructions and fixes thoroughly before continuing with them. If you have any queries or you are unsure about anything, just say and I'll help you out :)

It may well be worth you printing/saving the instructions throughout the fix, so you have them to hand just incase you are unable to access this site.

Please note the following:
  • Remember to post your logs, not attach them. So, any logs from any programs we run, should be just 'copied & pasted' into your reply, unless I specifically need you to attach them.
  • Please only run the tools that I request. I know malware can be frustrating but running other tools in the meantime and between posts, only makes it harder for me to analyse and fix your PC in the long run.
  • I will always try and respond to replies as soon as possible, but please be patient as some logs require more time than others to fully analyse.
  • If you are not sure of anything along the way, just ask.


Could you let me know if you still require assistance with this issue. If you do, just let me know and post a fresh OTL log please, using the instructions below :unsure:



OTL Quick Scan
  • Double click on the OTL icon to run it.
  • When the window appears, underneath Output at the top, make sure Standard Output is selected.
  • Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  • When the scan completes, it will open a notepad window.
  • Please post the contents of this log

  • 0

#3
BlackOxide

BlackOxide

    Trusted Helper

  • Malware Removal
  • 1,976 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP