Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Hijackthis log [Solved]

Started by CBon , Apr 20 2012 10:40 AM

This topic is locked

#16
CBon

Posted 21 April 2012 - 12:22 PM

Member

Topic Starter
Member
32 posts

There is 3 on that page which would be the right one? Also my computer has Visual C== 2008 3 versions showing in the files should I remove them first?

#17
CBon

Posted 21 April 2012 - 12:26 PM

Member

Topic Starter
Member
32 posts

There is 3 on that page which would be the right one? Also my computer has Visual C== 2008 3 versions showing in the files should I remove them first?

sorry double post don't see a delete

Edited by CBon, 21 April 2012 - 12:28 PM.

#18
CBon

Posted 21 April 2012 - 12:44 PM

Member

Topic Starter
Member
32 posts

OTL Extras logfile created on: 4/21/2012 11:33:57 AM - Run 1
OTL by OldTimer - Version 3.2.40.0 Folder = C:\Documents and Settings\Owner\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.50 Gb Total Physical Memory | 2.95 Gb Available Physical Memory | 84.36% Memory free
5.34 Gb Paging File | 4.96 Gb Available in Paging File | 92.92% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 153.38 Gb Total Space | 132.87 Gb Free Space | 86.63% Space Free | Partition Type: NTFS

Computer Name: CAROL-DBD94E373 | User Name: Owner | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

[HKEY_USERS\S-1-5-21-1801674531-813497703-1177238915-1003\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Google\Google Earth\client\googleearth.exe" = C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth -- (Google)
"C:\Program Files\Sony Online Entertainment\Installed Games\EverQuest\EQVoiceService.exe" = C:\Program Files\Sony Online Entertainment\Installed Games\EverQuest\EQVoiceService.exe:*:Enabled:EQVoiceService -- (Vivox Inc.)
"C:\MacroQuest2\MMOLoader.exe" = C:\MacroQuest2\MMOLoader.exe:*:Enabled:MacroQuest2 Loader -- (HTW Software)
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe" = C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Disabled:Google Earth -- (Google)
"C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe" = C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe:*:Enabled:Daemonu.exe -- (NVIDIA Corporation)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{16D0F2D2-242C-4885-BEF1-4B1655C141AE}" = Bing Bar
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{294A2E0E-3A0B-4D1F-8282-11DEF2040227}" = InstallIQ Updater
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{44663264-E108-4938-BF9E-A767315072C9}" = Intel® Network Connections 16.3.48.0
"{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 295.73
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 295.73
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 136.18
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.7.11
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CAE7D1D9-3794-4169-B4DD-964ADBC534EE}" = HP Product Detection
"{CD41B576-4787-4D5C-95EE-24A4ABD89CD3}" = System Requirements Lab for Intel
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FDB3B167-F4FA-461D-976F-286304A57B2A}" = Adobe AIR
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"avast" = avast! Free Antivirus
"Defraggler" = Defraggler
"ie8" = Windows Internet Explorer 8
"Image Expert 1.9.0" = Image Expert 1.9.0
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MPlayer" = MPlayer (remove only)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NBRTWizard" = Norton Bootable Recovery Tool Wizard
"Notepad++" = Notepad++
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"QuickTime" = QuickTime
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1801674531-813497703-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"SOE-EverQuest" = EverQuest
"SOE-EverQuest (2)" = EverQuest (2)

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 10/10/2011 8:38:38 PM | Computer Name = CAROL-DBD94E373 | Source = Application Error | ID = 1000
Description = Faulting application eqgame.exe, version 0.0.0.0, faulting module
eqgraphicsdx9.dll, version 0.0.0.0, fault address 0x000a584e.

Error - 10/10/2011 8:55:58 PM | Computer Name = CAROL-DBD94E373 | Source = Application Error | ID = 1000
Description = Faulting application eqgame.exe, version 0.0.0.0, faulting module
eqgraphicsdx9.dll, version 0.0.0.0, fault address 0x000a584e.

Error - 10/16/2011 8:02:06 PM | Computer Name = CAROL-DBD94E373 | Source = Application Error | ID = 1000
Description = Faulting application chrome.exe, version 14.0.835.202, faulting module
gcswf32.dll, version 11.0.1.152, fault address 0x00403e66.

Error - 11/1/2011 9:53:52 PM | Computer Name = CAROL-DBD94E373 | Source = Application Error | ID = 1000
Description = Faulting application eqgame.exe, version 0.0.0.0, faulting module
eqgraphicsdx9.dll, version 0.0.0.0, fault address 0x000a584e.

Error - 12/17/2011 10:45:30 PM | Computer Name = CAROL-DBD94E373 | Source = Application Error | ID = 1000
Description = Faulting application eqgame.exe, version 0.0.0.0, faulting module
, version 0.0.0.0, fault address 0x00000000.

Error - 12/17/2011 10:46:32 PM | Computer Name = CAROL-DBD94E373 | Source = Application Error | ID = 1000
Description = Faulting application eqgame.exe, version 0.0.0.0, faulting module
, version 0.0.0.0, fault address 0x00000000.

Error - 12/17/2011 10:48:07 PM | Computer Name = CAROL-DBD94E373 | Source = Application Error | ID = 1000
Description = Faulting application eqgame.exe, version 0.0.0.0, faulting module
, version 0.0.0.0, fault address 0x00000000.

Error - 12/17/2011 10:49:44 PM | Computer Name = CAROL-DBD94E373 | Source = Application Error | ID = 1000
Description = Faulting application eqgame.exe, version 0.0.0.0, faulting module
, version 0.0.0.0, fault address 0x00000000.

Error - 1/1/2012 11:04:13 PM | Computer Name = CAROL-DBD94E373 | Source = Application Error | ID = 1000
Description = Faulting application eqgame.exe, version 0.0.0.0, faulting module
netapi32.dll, version 5.1.2600.5694, fault address 0x00003570.

[ System Events ]
Error - 3/1/2012 7:19:09 PM | Computer Name = CAROL-DBD94E373 | Source = Service Control Manager | ID = 7023
Description = The Application Management service terminated with the following error:
%%126

Error - 3/1/2012 8:26:21 PM | Computer Name = CAROL-DBD94E373 | Source = Service Control Manager | ID = 7006
Description = The ScRegSetValueExW call failed for Start with the following error:
%%5

Error - 3/2/2012 12:32:06 PM | Computer Name = CAROL-DBD94E373 | Source = sr | ID = 1
Description = The System Restore filter encountered the unexpected error '0xC0000243'
while processing the file 'r264' on the volume 'HarddiskVolume1'. It has stopped
monitoring the volume.

Error - 3/5/2012 12:29:50 PM | Computer Name = CAROL-DBD94E373 | Source = sr | ID = 1
Description = The System Restore filter encountered the unexpected error '0xC0000243'
while processing the file 'r267' on the volume 'HarddiskVolume1'. It has stopped
monitoring the volume.

Error - 3/8/2012 2:46:43 PM | Computer Name = CAROL-DBD94E373 | Source = sr | ID = 1
Description = The System Restore filter encountered the unexpected error '0xC0000243'
while processing the file 'MMOLoader.exe' on the volume 'HarddiskVolume1'. It
has stopped monitoring the volume.

Error - 3/13/2012 2:10:11 AM | Computer Name = CAROL-DBD94E373 | Source = Dhcp | ID = 1002
Description = The IP address lease 192.168.1.101 for the Network Card with network
address 001E8CDFE3F6 has been denied by the DHCP server 192.168.1.1 (The DHCP Server
sent a DHCPNACK message).

Error - 3/27/2012 2:26:52 PM | Computer Name = CAROL-DBD94E373 | Source = Print | ID = 6161
Description = The document mhtml:mid://00000002/ owned by Owner failed to print
on printer Canon MP470 series Printer. Data type: NT EMF 1.008. Size of the spool
file in bytes: 458752. Number of bytes printed: 310896. Total number of pages in
the document: 3. Number of pages printed: 0. Client machine: \\CAROL-DBD94E373.
Win32 error code returned by the print processor: 13 (0xd).

Error - 3/27/2012 2:28:16 PM | Computer Name = CAROL-DBD94E373 | Source = Print | ID = 6161
Description = The document Document owned by Owner failed to print on printer Canon
MP470 series Printer. Data type: NT EMF 1.008. Size of the spool file in bytes:
196608. Number of bytes printed: 55580. Total number of pages in the document:
3. Number of pages printed: 0. Client machine: \\CAROL-DBD94E373. Win32 error code
returned by the print processor: 13 (0xd).

Error - 4/5/2012 1:28:22 PM | Computer Name = CAROL-DBD94E373 | Source = sr | ID = 1
Description = The System Restore filter encountered the unexpected error '0xC0000098'
while processing the file 'avutil-50.dll' on the volume 'HarddiskVolume1'. It
has stopped monitoring the volume.

Error - 4/8/2012 1:32:34 PM | Computer Name = CAROL-DBD94E373 | Source = sr | ID = 1
Description = The System Restore filter encountered the unexpected error '0xC0000243'
while processing the file 'MMOLoader.exe' on the volume 'HarddiskVolume1'. It
has stopped monitoring the volume.

< End of report >

OTL logfile created on: 4/21/2012 11:33:56 AM - Run 1
OTL by OldTimer - Version 3.2.40.0 Folder = C:\Documents and Settings\Owner\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.50 Gb Total Physical Memory | 2.95 Gb Available Physical Memory | 84.36% Memory free
5.34 Gb Paging File | 4.96 Gb Available in Paging File | 92.92% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 153.38 Gb Total Space | 132.87 Gb Free Space | 86.63% Space Free | Partition Type: NTFS

Computer Name: CAROL-DBD94E373 | User Name: Owner | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/04/21 11:31:57 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Owner\Desktop\OTL.exe
PRC - [2012/04/12 00:37:36 | 001,224,176 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
PRC - [2012/03/06 16:15:17 | 004,241,512 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2012/03/06 16:15:14 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2012/02/09 21:10:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2011/08/27 06:03:02 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
PRC - [2011/08/09 17:02:04 | 001,176,064 | ---- | M] (W3i, LLC) -- C:\Program Files\W3i\InstallIQUpdater\InstallIQUpdater.exe
PRC - [2011/06/15 17:33:20 | 000,249,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft\BingBar\SeaPort.EXE
PRC - [2011/04/11 14:44:44 | 000,112,800 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\IPROSetMonitor.exe
PRC - [2008/04/14 05:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2001/03/23 12:53:46 | 000,103,424 | ---- | M] (Sierra Imaging) -- C:\Program Files\Sierra Imaging\Image Expert 1.9.0\IXApplet.exe

========== Modules (No Company Name) ==========

MOD - [2012/04/20 23:32:24 | 001,769,984 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\12042100\algo.dll
MOD - [2012/04/12 00:37:34 | 000,444,400 | ---- | M] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.162\ppgooglenaclpluginchrome.dll
MOD - [2012/04/12 00:37:33 | 003,915,248 | ---- | M] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.162\pdf.dll
MOD - [2012/04/12 00:36:08 | 000,122,880 | ---- | M] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.162\avutil-51.dll
MOD - [2012/04/12 00:36:06 | 000,220,672 | ---- | M] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.162\avformat-53.dll
MOD - [2012/04/12 00:36:05 | 001,747,456 | ---- | M] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.162\avcodec-53.dll

========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2012/03/06 16:15:14 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2012/02/09 21:10:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2011/08/27 06:03:02 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCORE.EXE -- (!SASCORE)
SRV - [2011/07/07 19:31:08 | 000,195,336 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files\Microsoft\BingBar\BBSvc.EXE -- (BBSvc)
SRV - [2011/06/15 17:33:20 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft\BingBar\SeaPort.EXE -- (BBUpdate)
SRV - [2011/04/11 14:44:44 | 000,112,800 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\WINDOWS\system32\IPROSetMonitor.exe -- (Intel® PROSet Monitoring Service) Intel®

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - [2012/03/06 16:03:51 | 000,612,184 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2012/03/06 16:03:38 | 000,337,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2012/03/06 16:02:00 | 000,035,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2012/03/06 16:01:53 | 000,053,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2012/03/06 16:01:39 | 000,095,704 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\windows\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2012/03/06 16:01:30 | 000,020,696 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2012/03/06 15:58:29 | 000,024,920 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\windows\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011/08/27 06:02:58 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2011/08/27 06:02:58 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS -- (SASDIFSV)
DRV - [2009/12/18 11:58:52 | 000,011,336 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\SystemRequirementsLab\cpudrv.sys -- (cpudrv)
DRV - [2009/02/11 12:40:40 | 005,028,352 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008/04/13 22:05:36 | 000,032,384 | ---- | M] (KLSI USA, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usb101et.sys -- (KLSIENET)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1801674531-813497703-1177238915-1003\..\SearchScopes,DefaultScope = {C28FB496-44F6-4652-8916-1F8DE94E3149}
IE - HKU\S-1-5-21-1801674531-813497703-1177238915-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRC
IE - HKU\S-1-5-21-1801674531-813497703-1177238915-1003\..\SearchScopes\{C28FB496-44F6-4652-8916-1F8DE94E3149}: "URL" = http://www.google.co...utputEncoding?}
IE - HKU\S-1-5-21-1801674531-813497703-1177238915-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.162\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.162\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.162\gcswf32.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: YouTube = C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google Search = C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: avast! WebRep = C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1426_0\
CHR - Extension: Gmail = C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2008/04/14 05:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll File not found
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" File not found
O4 - HKLM..\Run: [Alcmtr] C:\windows\ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [NvCplDaemon] C:\windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\windows\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" File not found
O4 - HKU\S-1-5-21-1801674531-813497703-1177238915-1003..\Run: [InstallIQUpdater] C:\Program Files\W3i\InstallIQUpdater\InstallIQUpdater.exe (W3i, LLC)
O4 - HKU\S-1-5-21-1801674531-813497703-1177238915-1003..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware.com)
O4 - Startup: C:\Documents and Settings\Owner\Start Menu\Programs\Startup\Camio Viewer 1.9.0.lnk = C:\Program Files\Sierra Imaging\Image Expert 1.9.0\IXApplet.exe (Sierra Imaging)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1801674531-813497703-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1801674531-813497703-1177238915-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O15 - HKU\.DEFAULT\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-19\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\S-1-5-19\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\S-1-5-19\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\S-1-5-19\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-20\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\S-1-5-20\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\S-1-5-20\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\S-1-5-20\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-1801674531-813497703-1177238915-1003\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-1801674531-813497703-1177238915-1003\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-1801674531-813497703-1177238915-1003\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-1801674531-813497703-1177238915-1003\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-1801674531-813497703-1177238915-1006\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-1801674531-813497703-1177238915-1006\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-1801674531-813497703-1177238915-1006\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-1801674531-813497703-1177238915-1006\..Trusted Domains: sony.com ([]* in Trusted sites)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.micros...b?1310143803296 (WUWebControl Class)
O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20270.www2.h...tDetection2.cab (GMNRev Class)
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} http://content.syste...el_4.4.24.0.cab (SysInfo Class)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.116.46.115 24.205.192.61 24.205.224.36
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1301C296-AC22-4BAF-B363-4FAB425CF2C2}: DhcpNameServer = 68.116.46.115 24.205.192.61 24.205.224.36
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{344A6AE9-517A-424D-85C9-7B0FBE30B2B6}: DhcpNameServer = 192.168.1.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2012/04/21 11:32:02 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Owner\Desktop\OTL.exe
[2012/04/08 15:51:05 | 000,000,000 | ---D | C] -- C:\windows\System32\NtmsData
[2012/04/08 13:23:46 | 000,116,224 | ---- | C] (Xerox) -- C:\windows\System32\dllcache\xrxwiadr.dll
[2012/04/08 13:23:42 | 000,023,040 | ---- | C] (Xerox Corporation) -- C:\windows\System32\dllcache\xrxwbtmp.dll
[2012/04/08 13:23:27 | 000,099,865 | ---- | C] (Eicon Technology) -- C:\windows\System32\dllcache\xlog.exe
[2012/04/08 13:23:23 | 000,016,970 | ---- | C] (US Robotics MCD (Megahertz)) -- C:\windows\System32\dllcache\xem336n5.sys
[2012/04/08 13:22:48 | 000,154,624 | ---- | C] (Lucent Technologies) -- C:\windows\System32\dllcache\wlluc48.sys
[2012/04/08 13:22:45 | 000,034,890 | ---- | C] (Raytheon Corp.) -- C:\windows\System32\dllcache\wlandrv2.sys
[2012/04/08 13:22:32 | 000,771,581 | ---- | C] (Rockwell) -- C:\windows\System32\dllcache\winacisa.sys
[2012/04/08 13:22:10 | 000,035,871 | ---- | C] (Winbond Electronics Corp.) -- C:\windows\System32\dllcache\wbfirdma.sys
[2012/04/08 13:21:50 | 000,016,925 | ---- | C] (Winbond Electronics Corporation) -- C:\windows\System32\dllcache\w940nd.sys
[2012/04/08 13:21:46 | 000,019,016 | ---- | C] (Winbond Electronics Corporation) -- C:\windows\System32\dllcache\w926nd.sys
[2012/04/08 13:21:42 | 000,019,528 | ---- | C] (Winbond Electronics Corporation) -- C:\windows\System32\dllcache\w840nd.sys
[2012/04/08 13:21:37 | 000,064,605 | ---- | C] (PCtel, Inc.) -- C:\windows\System32\dllcache\vvoice.sys
[2012/04/08 13:21:32 | 000,397,502 | ---- | C] (PCtel, Inc.) -- C:\windows\System32\dllcache\vpctcom.sys
[2012/04/08 13:21:26 | 000,604,253 | ---- | C] (PCTEL, INC.) -- C:\windows\System32\dllcache\vmodem.sys
[2012/04/08 13:21:22 | 000,249,402 | ---- | C] (Xircom) -- C:\windows\System32\dllcache\vinwm.sys
[2012/04/08 13:21:02 | 000,765,884 | ---- | C] (U.S. Robotics, Inc.) -- C:\windows\System32\dllcache\usrti.sys
[2012/04/08 13:20:45 | 000,794,399 | ---- | C] (U.S. Robotics, Inc.) -- C:\windows\System32\dllcache\usr1806v.sys
[2012/04/08 13:20:41 | 000,793,598 | ---- | C] (U.S. Robotics, Inc.) -- C:\windows\System32\dllcache\usr1806.sys
[2012/04/08 13:20:37 | 000,794,654 | ---- | C] (U.S. Robotics, Inc.) -- C:\windows\System32\dllcache\usr1801.sys
[2012/04/08 13:20:06 | 000,050,688 | ---- | C] (UMAX DATA SYSTEMS INC.) -- C:\windows\System32\dllcache\umaxscan.dll
[2012/04/08 13:19:51 | 000,211,968 | ---- | C] (UMAX Data Systems Inc.) -- C:\windows\System32\dllcache\um54scan.dll
[2012/04/08 13:19:47 | 000,216,064 | ---- | C] (UMAX Data Systems Inc.) -- C:\windows\System32\dllcache\um34scan.dll
[2012/04/08 13:19:30 | 000,166,784 | ---- | C] (Trident Microsystems Inc.) -- C:\windows\System32\dllcache\tridxpm.sys
[2012/04/08 13:19:26 | 000,525,568 | ---- | C] (Trident Microsystems Inc.) -- C:\windows\System32\dllcache\tridxp.dll
[2012/04/08 13:19:22 | 000,159,232 | ---- | C] (Trident Microsystems Inc.) -- C:\windows\System32\dllcache\tridkbm.sys
[2012/04/08 13:19:19 | 000,440,576 | ---- | C] (Trident Microsystems Inc.) -- C:\windows\System32\dllcache\tridkb.dll
[2012/04/08 13:19:15 | 000,222,336 | ---- | C] (Trident Microsystems Inc.) -- C:\windows\System32\dllcache\trid3dm.sys
[2012/04/08 13:19:11 | 000,315,520 | ---- | C] (Trident Microsystems Inc.) -- C:\windows\System32\dllcache\trid3d.dll
[2012/04/08 13:18:38 | 000,123,995 | ---- | C] (Tiger Jet Network) -- C:\windows\System32\dllcache\tjisdn.sys
[2012/04/08 13:18:31 | 000,138,528 | ---- | C] (Trident Microsystems Inc.) -- C:\windows\System32\dllcache\tgiulnt5.sys
[2012/04/08 13:18:28 | 000,081,408 | ---- | C] (Trident Microsystems Inc.) -- C:\windows\System32\dllcache\tgiul50.dll
[2012/04/08 13:18:26 | 000,149,376 | ---- | C] (M-Systems) -- C:\windows\System32\dllcache\tffsport.sys
[2012/04/08 13:18:20 | 000,017,129 | ---- | C] (TDK Corporation) -- C:\windows\System32\dllcache\tdkcd31.sys
[2012/04/08 13:18:15 | 000,037,961 | ---- | C] (TDK Corporation) -- C:\windows\System32\dllcache\tdk100b.sys
[2012/04/08 13:17:59 | 000,036,640 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\windows\System32\dllcache\t2r4mini.sys
[2012/04/08 13:17:56 | 000,172,768 | ---- | C] (Number Nine Visual Technology) -- C:\windows\System32\dllcache\t2r4disp.dll
[2012/04/08 13:17:09 | 000,155,648 | ---- | C] (Stallion Technologies) -- C:\windows\System32\dllcache\stlnprop.dll
[2012/04/08 13:17:06 | 000,053,248 | ---- | C] (Stallion Technologies) -- C:\windows\System32\dllcache\stlncoin.dll
[2012/04/08 13:17:03 | 000,285,760 | ---- | C] (Stallion Technologies) -- C:\windows\System32\dllcache\stlnata.sys
[2012/04/08 13:16:58 | 000,016,896 | ---- | C] (SCM Microsystems, Inc.) -- C:\windows\System32\dllcache\stcusb.sys
[2012/04/08 13:16:52 | 000,048,736 | ---- | C] (3Com) -- C:\windows\System32\dllcache\srwlnd5.sys
[2012/04/08 13:16:28 | 000,019,072 | ---- | C] (Adaptec, Inc.) -- C:\windows\System32\dllcache\sparrow.sys
[2012/04/08 13:15:53 | 000,058,368 | ---- | C] (Silicon Motion Inc.) -- C:\windows\System32\dllcache\smiminib.sys
[2012/04/08 13:15:50 | 000,147,200 | ---- | C] (Silicon Motion Inc.) -- C:\windows\System32\dllcache\smidispb.dll
[2012/04/08 13:15:46 | 000,025,034 | ---- | C] (SMC Networks, Inc.) -- C:\windows\System32\dllcache\smcpwr2n.sys
[2012/04/08 13:15:42 | 000,035,913 | ---- | C] (SMC) -- C:\windows\System32\dllcache\smcirda.sys
[2012/04/08 13:15:39 | 000,024,576 | ---- | C] (SMC Networks, Inc.) -- C:\windows\System32\dllcache\smc8000n.sys
[2012/04/08 13:15:07 | 000,063,547 | ---- | C] (Symbol Technologies) -- C:\windows\System32\dllcache\sla30nd5.sys
[2012/04/08 13:15:04 | 000,091,294 | ---- | C] (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) -- C:\windows\System32\dllcache\skfpwin.sys
[2012/04/08 13:15:00 | 000,094,698 | ---- | C] (SysKonnect GmbH.) -- C:\windows\System32\dllcache\sk98xwin.sys
[2012/04/08 13:14:53 | 000,032,768 | ---- | C] (SiS Corporation) -- C:\windows\System32\dllcache\sisnic.sys
[2012/04/08 13:14:21 | 000,161,568 | ---- | C] (Micro Systemation) -- C:\windows\System32\dllcache\sgsmusb.sys
[2012/04/08 13:14:18 | 000,018,400 | ---- | C] (Micro Systemation) -- C:\windows\System32\dllcache\sgsmld.sys
[2012/04/08 13:14:15 | 000,098,080 | ---- | C] (Trident Microsystems Inc.) -- C:\windows\System32\dllcache\sgiulnt5.sys
[2012/04/08 13:14:12 | 000,386,560 | ---- | C] (Trident Microsystems Inc.) -- C:\windows\System32\dllcache\sgiul50.dll
[2012/04/08 13:13:41 | 000,017,280 | ---- | C] (SCM Microsystems) -- C:\windows\System32\dllcache\scr111.sys
[2012/04/08 13:13:34 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\windows\System32\dllcache\sccmusbm.sys
[2012/04/08 13:13:31 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\windows\System32\dllcache\sccmn50m.sys
[2012/04/08 13:13:14 | 000,077,824 | ---- | C] (S3 Incorporated) -- C:\windows\System32\dllcache\s3sav4m.sys
[2012/04/08 13:13:11 | 000,198,400 | ---- | C] (S3 Incorporated) -- C:\windows\System32\dllcache\s3sav4.dll
[2012/04/08 13:13:08 | 000,061,504 | ---- | C] (S3 Incorporated) -- C:\windows\System32\dllcache\s3sav3dm.sys
[2012/04/08 13:13:05 | 000,179,264 | ---- | C] (S3 Incorporated) -- C:\windows\System32\dllcache\s3sav3d.dll
[2012/04/08 13:13:01 | 000,210,496 | ---- | C] (S3 Incorporated) -- C:\windows\System32\dllcache\s3mvirge.dll
[2012/04/08 13:12:58 | 000,062,496 | ---- | C] (S3 Incorporated) -- C:\windows\System32\dllcache\s3mtrio.dll
[2012/04/08 13:12:55 | 000,041,216 | ---- | C] (S3 Incorporated) -- C:\windows\System32\dllcache\s3mt3d.sys
[2012/04/08 13:12:52 | 000,182,272 | ---- | C] (S3 Incorporated) -- C:\windows\System32\dllcache\s3mt3d.dll
[2012/04/08 13:12:49 | 000,166,720 | ---- | C] (S3 Incorporated) -- C:\windows\System32\dllcache\s3m.sys
[2012/04/08 13:12:41 | 000,082,432 | ---- | C] (Ricoh Co., Ltd.) -- C:\windows\System32\dllcache\rwia450.dll
[2012/04/08 13:12:37 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\windows\System32\dllcache\rwia430.dll
[2012/04/08 13:12:36 | 000,029,696 | ---- | C] (Ricoh Co., Ltd.) -- C:\windows\System32\dllcache\rw450ext.dll
[2012/04/08 13:12:34 | 000,027,648 | ---- | C] (Ricoh Co., Ltd.) -- C:\windows\System32\dllcache\rw430ext.dll
[2012/04/08 13:12:19 | 000,009,216 | ---- | C] (Brother Industries, Ltd.) -- C:\windows\System32\dllcache\rsmgrstr.dll
[2012/04/08 13:12:11 | 000,079,104 | ---- | C] (Comtrol Corporation) -- C:\windows\System32\dllcache\rocket.sys
[2012/04/08 13:12:07 | 000,037,563 | ---- | C] (RadioLAN) -- C:\windows\System32\dllcache\rlnet5.sys
[2012/04/08 13:12:01 | 000,086,097 | ---- | C] (Xircom) -- C:\windows\System32\dllcache\reslog32.dll
[2012/04/08 13:11:40 | 000,714,762 | ---- | C] (Xircom, Inc.) -- C:\windows\System32\dllcache\r2mdmkxx.sys
[2012/04/08 13:11:36 | 000,899,146 | ---- | C] (Xircom, Inc.) -- C:\windows\System32\dllcache\r2mdkxga.sys
[2012/04/08 13:11:04 | 000,130,942 | ---- | C] (PCTEL, INC.) -- C:\windows\System32\dllcache\ptserlv.sys
[2012/04/08 13:11:01 | 000,112,574 | ---- | C] (PCTEL, INC.) -- C:\windows\System32\dllcache\ptserlp.sys
[2012/04/08 13:10:57 | 000,128,286 | ---- | C] (PCTEL, INC.) -- C:\windows\System32\dllcache\ptserli.sys
[2012/04/08 13:10:45 | 000,016,128 | ---- | C] (SCM Microsystems, Inc.) -- C:\windows\System32\dllcache\pscr.sys
[2012/04/08 13:09:50 | 000,086,016 | ---- | C] (PCtel, Inc.) -- C:\windows\System32\dllcache\pctspk.exe
[2012/04/08 13:09:38 | 000,026,153 | ---- | C] (Linksys) -- C:\windows\System32\dllcache\pcmlm56.sys
[2012/04/08 13:09:36 | 000,029,502 | ---- | C] (Marconi Communications, Inc.) -- C:\windows\System32\dllcache\pca200e.sys
[2012/04/08 13:09:32 | 000,030,495 | ---- | C] (Linksys) -- C:\windows\System32\dllcache\pc100nds.sys
[2012/04/08 13:08:49 | 000,054,186 | ---- | C] (Ositech Communications, Inc.) -- C:\windows\System32\dllcache\otcsercb.sys
[2012/04/08 13:08:46 | 000,043,689 | ---- | C] (Ositech Communications, Inc.) -- C:\windows\System32\dllcache\otceth5.sys
[2012/04/08 13:08:43 | 000,027,209 | ---- | C] (Ositech Communications, Inc.) -- C:\windows\System32\dllcache\otc06x5.sys
[2012/04/08 13:08:39 | 000,054,528 | ---- | C] (Yamaha Corp.) -- C:\windows\System32\dllcache\opl3sax.sys
[2012/04/08 13:08:11 | 000,051,552 | ---- | C] (Kensington Technology Group) -- C:\windows\System32\dllcache\ntgrip.sys
[2012/04/08 13:07:56 | 000,087,040 | ---- | C] (NeoMagic Corporation) -- C:\windows\System32\dllcache\nm6wdm.sys
[2012/04/08 13:07:53 | 000,126,080 | ---- | C] (NeoMagic Corporation) -- C:\windows\System32\dllcache\nm5a2wdm.sys
[2012/04/08 13:07:47 | 000,132,695 | ---- | C] (802.11b) -- C:\windows\System32\dllcache\netwlan5.sys
[2012/04/08 13:07:36 | 000,039,264 | ---- | C] (NeoMagic Corporation) -- C:\windows\System32\dllcache\neo20xx.sys
[2012/04/08 13:07:33 | 000,060,480 | ---- | C] (NeoMagic Corporation) -- C:\windows\System32\dllcache\neo20xx.dll
[2012/04/08 13:07:22 | 000,091,488 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\windows\System32\dllcache\n9i3disp.dll
[2012/04/08 13:07:19 | 000,027,936 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\windows\System32\dllcache\n9i3d.sys
[2012/04/08 13:07:16 | 000,033,088 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\windows\System32\dllcache\n9i128v2.sys
[2012/04/08 13:07:13 | 000,059,104 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\windows\System32\dllcache\n9i128v2.dll
[2012/04/08 13:07:10 | 000,013,664 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\windows\System32\dllcache\n9i128.sys
[2012/04/08 13:07:07 | 000,035,392 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\windows\System32\dllcache\n9i128.dll
[2012/04/08 13:06:58 | 000,075,520 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\windows\System32\dllcache\mxport.sys
[2012/04/08 13:06:55 | 000,007,168 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\windows\System32\dllcache\mxport.dll
[2012/04/08 13:06:52 | 000,019,968 | ---- | C] (Macronix International Co., Ltd. ) -- C:\windows\System32\dllcache\mxnic.sys
[2012/04/08 13:06:49 | 000,019,968 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\windows\System32\dllcache\mxicfg.dll
[2012/04/08 13:06:46 | 000,021,888 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\windows\System32\dllcache\mxcard.sys
[2012/04/08 13:05:43 | 000,017,280 | ---- | C] (American Megatrends Inc.) -- C:\windows\System32\dllcache\mraid35x.sys
[2012/04/08 13:05:04 | 000,164,586 | ---- | C] (Madge Networks Ltd) -- C:\windows\System32\dllcache\mdgndis5.sys
[2012/04/08 13:04:42 | 000,797,500 | ---- | C] (LT) -- C:\windows\System32\dllcache\ltsmt.sys
[2012/04/08 13:04:39 | 000,802,683 | ---- | C] (Lucent Technologies) -- C:\windows\System32\dllcache\ltsm.sys
[2012/04/08 13:04:37 | 000,420,992 | ---- | C] (LT) -- C:\windows\System32\dllcache\ltmdmntt.sys
[2012/04/08 13:04:34 | 000,606,684 | ---- | C] (LT) -- C:\windows\System32\dllcache\ltmdmnt.sys
[2012/04/08 13:04:34 | 000,576,746 | ---- | C] (LT) -- C:\windows\System32\dllcache\ltmdmntl.sys
[2012/04/08 13:04:31 | 000,727,786 | ---- | C] (Xircom, Inc.) -- C:\windows\System32\dllcache\ltck000c.sys
[2012/04/08 13:04:20 | 000,070,730 | ---- | C] (Linksys Group, Inc.) -- C:\windows\System32\dllcache\lne100tx.sys
[2012/04/08 13:04:17 | 000,020,573 | ---- | C] (The Linksts Group ) -- C:\windows\System32\dllcache\lne100.sys
[2012/04/08 13:04:14 | 000,025,065 | ---- | C] (D-Link) -- C:\windows\System32\dllcache\lmndis3.sys
[2012/04/08 13:04:11 | 000,015,744 | ---- | C] (Litronic Industries) -- C:\windows\System32\dllcache\lit220p.sys
[2012/04/08 13:04:06 | 000,026,442 | ---- | C] (SMSC) -- C:\windows\System32\dllcache\lanepic5.sys
[2012/04/08 13:04:03 | 000,019,016 | ---- | C] (Kingston Technology Company ) -- C:\windows\System32\dllcache\ktc111.sys
[2012/04/08 13:03:06 | 000,023,552 | ---- | C] (MKNet Corporation) -- C:\windows\System32\dllcache\irmk7.sys
[2012/04/08 13:02:09 | 000,372,824 | ---- | C] (Xircom) -- C:\windows\System32\dllcache\iconf32.dll
[2012/04/08 13:00:12 | 000,068,608 | ---- | C] (Avisioin) -- C:\windows\System32\dllcache\hpgt53tk.dll
[2012/04/08 13:00:02 | 000,126,976 | ---- | C] (Hewlett Packard) -- C:\windows\System32\dllcache\hpgt34tk.dll
[2012/04/08 12:59:30 | 000,028,288 | ---- | C] (Gemplus) -- C:\windows\System32\dllcache\grserial.sys
[2012/04/08 12:59:28 | 000,082,304 | ---- | C] (Gemplus) -- C:\windows\System32\dllcache\grclass.sys
[2012/04/08 12:59:25 | 000,017,408 | ---- | C] (Gemplus) -- C:\windows\System32\dllcache\gpr400.sys
[2012/04/08 12:59:10 | 000,454,912 | ---- | C] (AVM GmbH) -- C:\windows\System32\dllcache\fxusbase.sys
[2012/04/08 12:58:55 | 000,455,296 | ---- | C] (AVM GmbH) -- C:\windows\System32\dllcache\fusbbase.sys
[2012/04/08 12:58:53 | 000,455,680 | ---- | C] (AVM GmbH) -- C:\windows\System32\dllcache\fus2base.sys
[2012/04/08 12:58:47 | 000,442,240 | ---- | C] (AVM GmbH) -- C:\windows\System32\dllcache\fpnpbase.sys
[2012/04/08 12:58:44 | 000,441,728 | ---- | C] (AVM GmbH) -- C:\windows\System32\dllcache\fpcmbase.sys
[2012/04/08 12:58:42 | 000,444,416 | ---- | C] (AVM GmbH) -- C:\windows\System32\dllcache\fpcibase.sys
[2012/04/08 12:58:39 | 000,034,173 | ---- | C] (Marconi Communications, Inc.) -- C:\windows\System32\dllcache\forehe.sys
[2012/04/08 12:58:20 | 000,024,618 | ---- | C] (NETGEAR) -- C:\windows\System32\dllcache\fa410nd5.sys
[2012/04/08 12:58:16 | 000,011,850 | ---- | C] (FUJITSU LIMITED) -- C:\windows\System32\dllcache\f3ab18xj.sys
[2012/04/08 12:58:14 | 000,012,362 | ---- | C] (FUJITSU LIMITED) -- C:\windows\System32\dllcache\f3ab18xi.sys
[2012/04/08 12:56:41 | 000,334,208 | ---- | C] (Yamaha Corp.) -- C:\windows\System32\dllcache\ds1wdm.sys
[2012/04/08 12:56:33 | 000,028,062 | ---- | C] (National Semiconductor Coproration) -- C:\windows\System32\dllcache\dp83820.sys
[2012/04/08 12:56:20 | 000,029,696 | ---- | C] (CNet Technology, Inc. ) -- C:\windows\System32\dllcache\dm9pci5.sys
[2012/04/08 12:56:18 | 000,026,698 | ---- | C] (D-Link Corporation) -- C:\windows\System32\dllcache\dlh5xnd5.sys
[2012/04/08 12:56:16 | 000,952,007 | ---- | C] (Eicon Technology) -- C:\windows\System32\dllcache\diwan.sys
[2012/04/08 12:56:11 | 000,236,060 | ---- | C] (Eicon Technology) -- C:\windows\System32\dllcache\ditrace.exe
[2012/04/08 12:56:10 | 000,038,985 | ---- | C] (Eicon Technology) -- C:\windows\System32\dllcache\disrvsu.dll
[2012/04/08 12:56:09 | 000,031,305 | ---- | C] (Eicon Technology) -- C:\windows\System32\dllcache\disrvpp.dll
[2012/04/08 12:56:08 | 000,006,729 | ---- | C] (Eicon Technology) -- C:\windows\System32\dllcache\disrvci.dll
[2012/04/08 12:56:04 | 000,091,305 | ---- | C] (Eicon Technology) -- C:\windows\System32\dllcache\dimaint.sys
[2012/04/08 12:55:41 | 000,024,649 | ---- | C] (D-Link) -- C:\windows\System32\dllcache\dfe650d.sys
[2012/04/08 12:55:40 | 000,024,648 | ---- | C] (D-Link) -- C:\windows\System32\dllcache\dfe650.sys
[2012/04/08 12:55:35 | 000,020,928 | ---- | C] (Digital Networks, LLC) -- C:\windows\System32\dllcache\defpa.sys
[2012/04/08 12:55:09 | 000,048,640 | ---- | C] (Crystal Semiconductor Corp.) -- C:\windows\System32\dllcache\cwrwdm.sys
[2012/04/08 12:55:08 | 000,093,952 | ---- | C] (Crystal Semiconductor Corp.) -- C:\windows\System32\dllcache\cwcwdm.sys
[2012/04/08 12:55:07 | 000,111,872 | ---- | C] (Crystal Semiconductor Corp.) -- C:\windows\System32\dllcache\cwcspud.sys
[2012/04/08 12:55:06 | 000,003,584 | ---- | C] (Crystal Semiconductor Corp.) -- C:\windows\System32\dllcache\cwcosnt5.sys
[2012/04/08 12:55:04 | 000,072,832 | ---- | C] (Crystal Semiconductor Corp.) -- C:\windows\System32\dllcache\cwbwdm.sys
[2012/04/08 12:55:03 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\windows\System32\dllcache\cwbmidi.sys
[2012/04/08 12:55:02 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\windows\System32\dllcache\cwbase.sys
[2012/04/08 12:55:00 | 000,249,856 | ---- | C] (Comtrol® Corporation) -- C:\windows\System32\dllcache\ctmasetp.dll
[2012/04/08 12:54:51 | 000,216,064 | ---- | C] (COMPAQ Inc.) -- C:\windows\System32\dllcache\cpscan.dll
[2012/04/08 12:54:33 | 000,020,736 | ---- | C] (OMNIKEY AG) -- C:\windows\System32\dllcache\cmbp0wdm.sys
[2012/04/08 12:54:21 | 000,980,034 | ---- | C] (Xircom) -- C:\windows\System32\dllcache\cicap.sys
[2012/04/08 12:54:10 | 000,049,182 | ---- | C] (Xircom, Inc.) -- C:\windows\System32\dllcache\cem56n5.sys
[2012/04/08 12:54:09 | 000,022,044 | ---- | C] (Xircom, Inc.) -- C:\windows\System32\dllcache\cem33n5.sys
[2012/04/08 12:54:08 | 000,027,164 | ---- | C] (Xircom, Inc.) -- C:\windows\System32\dllcache\ce3n5.sys
[2012/04/08 12:54:08 | 000,022,044 | ---- | C] (Xircom, Inc.) -- C:\windows\System32\dllcache\cem28n5.sys
[2012/04/08 12:54:07 | 000,021,530 | ---- | C] (Xircom, Inc.) -- C:\windows\System32\dllcache\ce2n5.sys
[2012/04/08 12:54:03 | 000,714,698 | ---- | C] (Xircom, Inc.) -- C:\windows\System32\dllcache\cbmdmkxx.sys
[2012/04/08 12:54:02 | 000,046,108 | ---- | C] (Xircom, Inc.) -- C:\windows\System32\dllcache\cben5.sys
[2012/04/08 12:54:01 | 000,039,680 | ---- | C] (Silicom Ltd.) -- C:\windows\System32\dllcache\cb325.sys
[2012/04/08 12:54:00 | 000,037,916 | ---- | C] (Fast Ethernet Controller Provider) -- C:\windows\System32\dllcache\cb102.sys
[2012/04/08 12:53:58 | 000,032,256 | ---- | C] (Eicon Technology Corporation) -- C:\windows\System32\dllcache\diapi2NT.dll
[2012/04/08 12:53:56 | 000,164,923 | ---- | C] (Eicon Technology) -- C:\windows\System32\dllcache\diapi2.sys
[2012/04/08 12:53:23 | 000,031,529 | ---- | C] (BreezeCOM) -- C:\windows\System32\dllcache\brzwlan.sys
[2012/04/08 12:53:23 | 000,010,368 | ---- | C] (Brother Industries Ltd.) -- C:\windows\System32\dllcache\brusbscn.sys
[2012/04/08 12:53:22 | 000,011,008 | ---- | C] (Brother Industries Ltd.) -- C:\windows\System32\dllcache\brusbmdm.sys
[2012/04/08 12:53:21 | 000,060,416 | ---- | C] (Brother Industries Ltd.) -- C:\windows\System32\dllcache\brserwdm.sys
[2012/04/08 12:53:21 | 000,009,728 | ---- | C] (Brother Industries, Ltd.) -- C:\windows\System32\dllcache\brserif.dll
[2012/04/08 12:53:20 | 000,005,120 | ---- | C] (Brother Industries,Ltd.) -- C:\windows\System32\dllcache\brscnrsm.dll
[2012/04/08 12:53:19 | 000,039,552 | ---- | C] (Brother Industries Ltd.) -- C:\windows\System32\dllcache\brparwdm.sys
[2012/04/08 12:53:19 | 000,003,168 | ---- | C] (Brother Industries Ltd.) -- C:\windows\System32\dllcache\brparimg.sys
[2012/04/08 12:53:17 | 000,041,472 | ---- | C] (Brother Industries, Ltd.) -- C:\windows\System32\dllcache\brmfusb.dll
[2012/04/08 12:53:17 | 000,032,256 | ---- | C] (Brother Industries, Ltd.) -- C:\windows\System32\dllcache\brmfrsmg.exe
[2012/04/08 12:53:16 | 000,029,696 | ---- | C] (Brother Industries, Ltd.) -- C:\windows\System32\dllcache\brmflpt.dll
[2012/04/08 12:53:15 | 000,015,360 | ---- | C] (Brother Industries, Ltd.) -- C:\windows\System32\dllcache\brmfbidi.dll
[2012/04/08 12:53:14 | 000,003,968 | ---- | C] (Brother Industries, Ltd.) -- C:\windows\System32\dllcache\brfiltup.sys
[2012/04/08 12:53:13 | 000,012,160 | ---- | C] (Brother Industries, Ltd.) -- C:\windows\System32\dllcache\brfiltlo.sys
[2012/04/08 12:53:12 | 000,012,800 | ---- | C] (Brother Industries, Ltd.) -- C:\windows\System32\dllcache\brevif.dll
[2012/04/08 12:53:12 | 000,002,944 | ---- | C] (Brother Industries Ltd.) -- C:\windows\System32\dllcache\brfilt.sys
[2012/04/08 12:53:11 | 000,009,728 | ---- | C] (Brother Industries Ltd.) -- C:\windows\System32\dllcache\brcoinst.dll
[2012/04/08 12:53:10 | 000,019,456 | ---- | C] (Brother Industries, Ltd.) -- C:\windows\System32\dllcache\brbidiif.dll
[2012/04/08 12:53:00 | 000,871,388 | ---- | C] (BCM) -- C:\windows\System32\dllcache\bcmdm.sys
[2012/04/08 12:52:55 | 000,342,336 | ---- | C] (3Dfx Interactive, Inc.) -- C:\windows\System32\dllcache\banshee.dll
[2012/04/08 12:52:55 | 000,036,128 | ---- | C] (3Dfx Interactive, Inc.) -- C:\windows\System32\dllcache\banshee.sys
[2012/04/08 12:52:53 | 000,089,952 | ---- | C] (AVM GmbH) -- C:\windows\System32\dllcache\b1cbase.sys
[2012/04/08 12:52:53 | 000,036,992 | ---- | C] (Aztech Systems Ltd) -- C:\windows\System32\dllcache\aztw2320.sys
[2012/04/08 12:52:52 | 000,037,568 | ---- | C] (AVM GmbH) -- C:\windows\System32\dllcache\avmwan.sys
[2012/04/08 12:52:51 | 000,144,384 | ---- | C] (AVM GmbH) -- C:\windows\System32\dllcache\avmenum.dll
[2012/04/08 12:52:51 | 000,087,552 | ---- | C] (AVM GmbH) -- C:\windows\System32\dllcache\avmcoxp.dll
[2012/04/08 12:51:58 | 000,097,354 | ---- | C] (Bay Networks, Inc.) -- C:\windows\System32\dllcache\aspndis3.sys
[2012/04/08 12:51:50 | 000,016,969 | ---- | C] (AmbiCom, Inc.) -- C:\windows\System32\dllcache\amb8002.sys
[2012/04/08 12:51:29 | 000,046,112 | ---- | C] (Adaptec, Inc ) -- C:\windows\System32\dllcache\adptsf50.sys
[2012/04/08 12:51:28 | 000,010,880 | ---- | C] (Aureal, Inc.) -- C:\windows\System32\dllcache\admjoy.sys
[2012/04/08 12:51:27 | 000,747,392 | ---- | C] (Aureal, Inc.) -- C:\windows\System32\dllcache\adm8830.sys
[2012/04/08 12:51:26 | 000,584,448 | ---- | C] (Aureal, Inc.) -- C:\windows\System32\dllcache\adm8810.sys
[2012/04/08 12:51:26 | 000,553,984 | ---- | C] (Aureal, Inc.) -- C:\windows\System32\dllcache\adm8820.sys
[2012/04/08 12:51:22 | 000,061,440 | ---- | C] (Color Flatbed Scanner) -- C:\windows\System32\dllcache\acerscad.dll
[2012/04/08 12:51:17 | 000,462,848 | ---- | C] (Aureal Inc.) -- C:\windows\System32\dllcache\a3dapi.dll
[2012/04/08 12:51:17 | 000,098,304 | ---- | C] (Aureal Semiconductor) -- C:\windows\System32\dllcache\a3d.dll
[2012/04/08 12:51:14 | 000,689,216 | ---- | C] (3dfx Interactive, Inc.) -- C:\windows\System32\dllcache\3dfxvs.dll
[2012/04/08 12:51:14 | 000,148,352 | ---- | C] (3dfx Interactive, Inc.) -- C:\windows\System32\dllcache\3dfxvsm.sys
[2012/04/08 12:51:13 | 000,762,780 | ---- | C] (3Com, Inc.) -- C:\windows\System32\dllcache\3cwmcru.sys
[2012/04/05 10:28:21 | 000,000,000 | ---D | C] -- C:\Crash
[4 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
[1 C:\windows\System32\*.tmp files -> C:\windows\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/04/21 11:40:00 | 000,000,978 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-1801674531-813497703-1177238915-1003UA.job
[2012/04/21 11:40:00 | 000,000,926 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-1801674531-813497703-1177238915-1003Core.job
[2012/04/21 11:31:57 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Owner\Desktop\OTL.exe
[2012/04/21 11:28:18 | 000,000,422 | -H-- | M] () -- C:\windows\tasks\User_Feed_Synchronization-{A5E7ED2E-8444-4036-9F9E-89A907ED8F97}.job
[2012/04/21 10:55:00 | 000,000,884 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/04/21 09:56:26 | 000,000,880 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/04/21 09:56:24 | 000,012,598 | ---- | M] () -- C:\windows\System32\wpa.dbl
[2012/04/21 09:56:21 | 000,002,048 | --S- | M] () -- C:\windows\bootstat.dat
[2012/04/18 10:42:29 | 000,000,510 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\Shortcut to MMOLoader.lnk
[2012/04/18 10:39:38 | 000,000,566 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch MMOLoader.lnk
[2012/04/18 10:39:38 | 000,000,561 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\EQLaunch.lnk
[2012/04/18 10:39:38 | 000,000,548 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\Launch MMOLoader.lnk
[2012/04/18 10:39:38 | 000,000,543 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\EQLaunch.lnk
[2012/04/12 22:05:01 | 000,001,374 | ---- | M] () -- C:\windows\imsins.BAK
[2012/04/12 22:03:17 | 000,432,838 | ---- | M] () -- C:\windows\System32\perfh009.dat
[2012/04/12 22:03:17 | 000,067,794 | ---- | M] () -- C:\windows\System32\perfc009.dat
[2012/04/09 18:28:20 | 000,002,625 | ---- | M] () -- C:\windows\System32\CONFIG.NT
[2012/03/25 17:21:52 | 000,292,700 | ---- | M] () -- C:\windows\System32\nvdrsdb0.bin
[2012/03/25 17:21:52 | 000,000,001 | ---- | M] () -- C:\windows\System32\nvdrssel.bin
[2012/03/25 17:21:47 | 000,292,700 | ---- | M] () -- C:\windows\System32\nvdrsdb1.bin
[4 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
[1 C:\windows\System32\*.tmp files -> C:\windows\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/04/18 10:42:29 | 000,000,510 | ---- | C] () -- C:\Documents and Settings\Owner\Desktop\Shortcut to MMOLoader.lnk
[2012/04/18 10:39:38 | 000,000,566 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch MMOLoader.lnk
[2012/04/18 10:39:38 | 000,000,561 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\EQLaunch.lnk
[2012/04/18 10:39:38 | 000,000,548 | ---- | C] () -- C:\Documents and Settings\Owner\Desktop\Launch MMOLoader.lnk
[2012/04/08 13:23:42 | 000,018,944 | ---- | C] () -- C:\windows\System32\dllcache\xrxscnui.dll
[2012/04/08 13:23:38 | 000,027,648 | ---- | C] () -- C:\windows\System32\dllcache\xrxftplt.exe
[2012/04/08 13:10:52 | 000,033,280 | ---- | C] () -- C:\windows\System32\dllcache\psisrndr.ax
[2012/04/08 13:10:48 | 000,363,520 | ---- | C] () -- C:\windows\System32\dllcache\psisdecd.dll
[2012/04/08 13:05:54 | 000,056,832 | ---- | C] () -- C:\windows\System32\dllcache\msdvbnp.ax
[2012/04/08 13:00:09 | 000,165,888 | ---- | C] () -- C:\windows\System32\dllcache\hpgt53.dll
[2012/04/08 13:00:05 | 000,093,696 | ---- | C] () -- C:\windows\System32\dllcache\hpgt42.dll
[2012/04/08 13:00:00 | 000,101,376 | ---- | C] () -- C:\windows\System32\dllcache\hpgt34.dll
[2012/04/08 12:59:55 | 000,089,088 | ---- | C] () -- C:\windows\System32\dllcache\hpgt33.dll
[2012/04/08 12:59:50 | 000,083,968 | ---- | C] () -- C:\windows\System32\dllcache\hpgt21.dll
[2012/04/08 12:56:15 | 000,029,768 | ---- | C] () -- C:\windows\System32\dllcache\divasu.dll
[2012/04/08 12:56:14 | 000,037,962 | ---- | C] () -- C:\windows\System32\dllcache\divaprop.dll
[2012/04/08 12:56:13 | 000,006,216 | ---- | C] () -- C:\windows\System32\dllcache\divaci.dll
[2012/04/08 12:52:37 | 000,026,624 | ---- | C] () -- C:\windows\System32\dllcache\ativxbar.sys
[2012/04/08 12:52:37 | 000,023,552 | ---- | C] () -- C:\windows\System32\dllcache\atixbar.sys
[2012/04/08 12:52:35 | 000,019,456 | ---- | C] () -- C:\windows\System32\dllcache\ativttxx.sys
[2012/04/08 12:52:32 | 000,009,472 | ---- | C] () -- C:\windows\System32\dllcache\ativmdcd.sys
[2012/04/08 12:52:31 | 000,017,152 | ---- | C] () -- C:\windows\System32\dllcache\atitvsnd.sys
[2012/04/08 12:52:31 | 000,017,152 | ---- | C] () -- C:\windows\System32\dllcache\atitunep.sys
[2012/04/08 12:52:30 | 000,026,880 | ---- | C] () -- C:\windows\System32\dllcache\atirtsnd.sys
[2012/04/08 12:52:29 | 000,049,920 | ---- | C] () -- C:\windows\System32\dllcache\atirtcap.sys
[2012/04/08 12:52:28 | 000,010,240 | ---- | C] () -- C:\windows\System32\dllcache\atipcxxx.sys
[2012/04/08 12:52:15 | 000,046,464 | ---- | C] () -- C:\windows\System32\dllcache\atibt829.sys
[2012/03/25 17:20:57 | 000,007,843 | ---- | C] () -- C:\windows\System32\nvinfo.pb
[2012/02/28 17:12:05 | 000,178,406 | ---- | C] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\census.cache
[2012/02/28 17:12:02 | 000,157,977 | ---- | C] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\ars.cache
[2012/02/28 17:06:38 | 000,000,036 | ---- | C] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\housecall.guid.cache
[2012/02/14 21:52:16 | 000,003,072 | ---- | C] () -- C:\windows\System32\iacenc.dll
[2011/09/05 15:01:19 | 000,004,096 | ---- | C] () -- C:\windows\d3dx.dat
[2011/07/08 09:42:53 | 000,049,152 | ---- | C] () -- C:\windows\System32\ChCfg.exe
[2011/07/08 09:31:21 | 000,292,700 | ---- | C] () -- C:\windows\System32\nvdrsdb1.bin
[2011/07/08 09:31:21 | 000,292,700 | ---- | C] () -- C:\windows\System32\nvdrsdb0.bin
[2011/07/08 09:31:21 | 000,000,001 | ---- | C] () -- C:\windows\System32\nvdrssel.bin
[2011/07/08 09:31:12 | 002,783,770 | ---- | C] () -- C:\windows\System32\nvdata.data
[2011/07/08 09:20:06 | 000,000,664 | ---- | C] () -- C:\windows\System32\d3d9caps.dat
[2011/07/08 09:20:06 | 000,000,552 | ---- | C] () -- C:\windows\System32\d3d8caps.dat
[2011/07/07 12:33:59 | 000,002,048 | --S- | C] () -- C:\windows\bootstat.dat
[2011/07/07 12:29:55 | 000,021,640 | ---- | C] () -- C:\windows\System32\emptyregdb.dat
[2011/07/07 05:22:01 | 000,004,161 | ---- | C] () -- C:\windows\ODBCINST.INI
[2011/07/07 05:20:49 | 000,093,480 | ---- | C] () -- C:\windows\System32\FNTCACHE.DAT

========== LOP Check ==========

[2011/07/08 11:58:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2011/07/14 14:54:57 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
[2011/07/08 11:19:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\W3i
[2012/03/15 15:28:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Canon
[2011/07/07 15:28:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Easeware
[2011/07/24 13:06:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Notepad++
[2011/08/06 13:49:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\RegistryKeys
[2012/04/11 09:04:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Sony Online Entertainment
[2011/07/07 15:28:42 | 000,000,436 | ---- | M] () -- C:\windows\Tasks\DriverNavigator Scheduled Scan.job
[2012/04/21 11:28:18 | 000,000,422 | -H-- | M] () -- C:\windows\Tasks\User_Feed_Synchronization-{A5E7ED2E-8444-4036-9F9E-89A907ED8F97}.job

========== Purity Check ==========

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.exe >

< MD5 for: EXPLORER.EXE >
[2008/04/14 05:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\explorer.exe
[2008/04/14 05:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\system32\dllcache\explorer.exe

< MD5 for: SVCHOST.EXE >
[2008/04/14 05:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\system32\dllcache\svchost.exe
[2008/04/14 05:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\system32\svchost.exe

< MD5 for: USERINIT.EXE >
[2008/04/14 05:00:00 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\system32\dllcache\userinit.exe
[2008/04/14 05:00:00 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\system32\userinit.exe

< MD5 for: WINLOGON.EXE >
[2008/04/14 05:00:00 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2008/04/14 05:00:00 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\system32\winlogon.exe

< C:\Windows\assembly\tmp\U\*.* /s >

< %Temp%\smtmp\1\*.* >

< %Temp%\smtmp\2\*.* >

< %Temp%\smtmp\3\*.* >

< %Temp%\smtmp\4\*.* >

< type c:\diskreport.txt /c >
Microsoft DiskPart version 5.1.3565
Copyright © 1999-2003 Microsoft Corporation.
On computer: CAROL-DBD94E373
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
Volume 0 D DVD-ROM 0 B
Volume 1 C NTFS Partition 153 GB Healthy System

< End of report >

#19
Essexboy

Posted 21 April 2012 - 12:48 PM

GeekU Moderator

Retired Staff
69,964 posts

Just checking the log now - This is the version you need , keep the remainder vcredist_x64.exe

#20
CBon

Posted 21 April 2012 - 12:53 PM

Member

Topic Starter
Member
32 posts

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-04-21 11:46:49
-----------------------------
11:46:49.546 OS Version: Windows 5.1.2600 Service Pack 3
11:46:49.546 Number of processors: 2 586 0x401
11:46:49.546 ComputerName: CAROL-DBD94E373 UserName: Owner
11:46:50.343 Initialize success
11:46:50.421 AVAST engine defs: 12042100
11:46:53.515 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-10
11:46:53.515 Disk 0 Vendor: Hitachi_HDS721616PLA380 P22OABEA Size: 157066MB BusType: 3
11:46:53.531 Disk 0 MBR read successfully
11:46:53.531 Disk 0 MBR scan
11:46:53.531 Disk 0 Windows XP default MBR code
11:46:53.531 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 157057 MB offset 63
11:46:53.531 Disk 0 scanning sectors +321653430
11:46:53.578 Disk 0 scanning C:\windows\system32\drivers
11:46:59.312 Service scanning
11:47:10.062 Modules scanning
11:47:19.906 Disk 0 trace - called modules:
11:47:19.906 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
11:47:19.921 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8a877ab8]
11:47:19.921 3 CLASSPNP.SYS[b8108fd7] -> nt!IofCallDriver -> \Device\0000005f[0x8a87a9e8]
11:47:19.921 5 ACPI.sys[b7f7f620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-10[0x8a878d98]
11:47:20.531 AVAST engine scan C:\windows
11:47:26.203 AVAST engine scan C:\windows\system32
11:48:53.859 AVAST engine scan C:\windows\system32\drivers
11:49:03.875 AVAST engine scan C:\Documents and Settings\Owner
11:52:40.875 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Owner\Desktop\MBR.dat"
11:52:40.875 The log file has been saved successfully to "C:\Documents and Settings\Owner\Desktop\aswMBR.txt"

#21
Essexboy

Posted 21 April 2012 - 01:14 PM

GeekU Moderator

Retired Staff
69,964 posts

The XP logs look clean - So we can apply a little TLC to see if we can speed it up

First though we will do a disc and file check, then reset all services etc.. to the normal. This may take about an hour to do though. Or we can leave that till the end after I have done a deep malware check

which way would you like to go

#22
CBon

Posted 21 April 2012 - 01:18 PM

Member

Topic Starter
Member
32 posts

Whatever you want. I am very slow so just so you know I don't actually even type :-)

PC 1 did all you said and Avast looked like it installed fine. No error message, but it is not there. it put a file folder in C/Programs but it is empty.

Maybe there is another virus program that would do?

Edited by CBon, 21 April 2012 - 01:21 PM.

#23
Essexboy

Posted 21 April 2012 - 01:31 PM

GeekU Moderator

Retired Staff
69,964 posts

OK next task for this one is to go to the control panel > Programs and Features
Click Avast as if you were going to uninstall
Select repair as shown in the screenshot below
Select Next to commence the repair

.... Did that fix it ?
Posted Image

For the XP computer

Download and Install Combofix

Download ComboFix from one of the following locations:
Link 1
Link 2

VERY IMPORTANT !!! Save ComboFix.exe to your Desktop

* IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here

Double click on ComboFix.exe & follow the prompts.
Accept the disclaimer and allow to update if it asks
Allow the installation of the recovery console
When finished, it shall produce a log for you.
Please include the C:\ComboFix.txt in your next reply.

Notes:
1. Do not mouse-click Combofix's window while it is running. That may cause it to stall.
2. Do not "re-run" Combofix. If you have a problem, reply back for further instructions.
3. If after the reboot you get errors about programmes being marked for deletion then reboot, that will cure it.

Please make sure you include the combo fix log in your next reply as well as describe how your computer is running now

#24
CBon

Posted 21 April 2012 - 01:35 PM

Member

Topic Starter
Member
32 posts

Wow on PC #1 Avast is not even listed under installed programs on the uninstall thing.

#25
Essexboy

Posted 21 April 2012 - 01:47 PM

GeekU Moderator

Retired Staff
69,964 posts

OK one final try for Avast and then I will get a different AV for you

Could you double click the Avast set up you downloaded previously and see whether it installs

If it does not then Download and install Microsoft Security Essentials

#26
CBon

Posted 21 April 2012 - 01:52 PM

Member

Topic Starter
Member
32 posts

ComboFix 12-04-20.03 - Owner 04/21/2012 12:42:06.1.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.3582.3050 [GMT -7:00]
Running from: c:\documents and settings\Owner\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Owner\WINDOWS
.
.
((((((((((((((((((((((((( Files Created from 2012-03-21 to 2012-04-21 )))))))))))))))))))))))))))))))
.
.
2012-04-08 22:51 . 2012-04-08 22:58 -------- dc----w- c:\windows\system32\NtmsData
2012-04-08 20:23 . 2008-04-14 12:42 116224 -c--a-w- c:\windows\system32\dllcache\xrxwiadr.dll
2012-04-08 20:23 . 2008-04-14 12:42 18944 -c--a-w- c:\windows\system32\dllcache\xrxscnui.dll
2012-04-08 20:23 . 2001-08-18 05:36 23040 -c--a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
2012-04-08 20:23 . 2001-08-18 05:37 27648 -c--a-w- c:\windows\system32\dllcache\xrxftplt.exe
2012-04-08 20:23 . 2001-08-18 05:37 4608 -c--a-w- c:\windows\system32\dllcache\xrxflnch.exe
2012-04-08 20:23 . 2001-08-18 05:37 99865 -c--a-w- c:\windows\system32\dllcache\xlog.exe
2012-04-08 20:23 . 2001-08-17 19:11 16970 -c--a-w- c:\windows\system32\dllcache\xem336n5.sys
2012-04-08 20:23 . 2008-04-14 05:04 19455 -c--a-w- c:\windows\system32\dllcache\wvchntxx.sys
2012-04-08 20:23 . 2008-04-14 07:16 19200 -c--a-w- c:\windows\system32\dllcache\wstcodec.sys
2012-04-08 20:23 . 2008-04-14 05:04 12063 -c--a-w- c:\windows\system32\dllcache\wsiintxx.sys
2012-04-08 20:23 . 2008-04-14 12:42 8192 -c--a-w- c:\windows\system32\dllcache\wshirda.dll
2012-04-08 20:21 . 2008-04-14 05:04 11807 -c--a-w- c:\windows\system32\dllcache\wadv07nt.sys
2012-04-08 20:20 . 2001-08-17 20:28 113762 -c--a-w- c:\windows\system32\dllcache\usrpda.sys
2012-04-08 20:19 . 2001-08-18 05:36 50176 -c--a-w- c:\windows\system32\dllcache\umaxp60.dll
2012-04-08 20:18 . 2001-08-18 05:36 31744 -c--a-w- c:\windows\system32\dllcache\tp4.dll
2012-04-08 20:18 . 2001-08-17 20:51 4992 -c--a-w- c:\windows\system32\dllcache\toside.sys
2012-04-08 20:18 . 2001-08-17 21:02 230912 -c--a-w- c:\windows\system32\dllcache\tosdvd03.sys
2012-04-08 20:18 . 2001-08-17 21:01 241664 -c--a-w- c:\windows\system32\dllcache\tosdvd02.sys
2012-04-08 20:18 . 2001-08-17 19:10 28232 -c--a-w- c:\windows\system32\dllcache\tos4mo.sys
2012-04-08 20:18 . 2001-08-17 19:14 123995 -c--a-w- c:\windows\system32\dllcache\tjisdn.sys
2012-04-08 20:18 . 2001-08-17 19:51 138528 -c--a-w- c:\windows\system32\dllcache\tgiulnt5.sys
2012-04-08 20:18 . 2001-08-17 21:56 81408 -c--a-w- c:\windows\system32\dllcache\tgiul50.dll
2012-04-08 20:18 . 2008-04-14 07:10 149376 -c--a-w- c:\windows\system32\dllcache\tffsport.sys
2012-04-08 20:18 . 2001-08-17 19:13 17129 -c--a-w- c:\windows\system32\dllcache\tdkcd31.sys
2012-04-08 20:18 . 2001-08-17 19:13 37961 -c--a-w- c:\windows\system32\dllcache\tdk100b.sys
2012-04-08 20:18 . 2001-08-17 20:49 30464 -c--a-w- c:\windows\system32\dllcache\tbatm155.sys
2012-04-08 20:18 . 2001-08-17 20:52 7040 -c--a-w- c:\windows\system32\dllcache\tandqic.sys
2012-04-08 20:16 . 2001-08-17 20:51 16896 -c--a-w- c:\windows\system32\dllcache\stcusb.sys
2012-04-08 20:15 . 2001-08-17 19:51 58368 -c--a-w- c:\windows\system32\dllcache\smiminib.sys
2012-04-08 20:14 . 2001-08-17 21:56 157696 -c--a-w- c:\windows\system32\dllcache\sisv256.dll
2012-04-08 20:13 . 2001-08-17 20:48 17664 -c--a-w- c:\windows\system32\dllcache\sermouse.sys
2012-04-08 20:12 . 2001-08-18 05:36 62496 -c--a-w- c:\windows\system32\dllcache\s3mtrio.dll
2012-04-08 20:11 . 2008-04-14 06:53 13776 -c--a-w- c:\windows\system32\dllcache\recagent.sys
2012-04-08 20:10 . 2001-08-17 20:28 128286 -c--a-w- c:\windows\system32\dllcache\ptserli.sys
2012-04-08 20:09 . 2001-08-17 21:07 5504 -c--a-w- c:\windows\system32\dllcache\perc2hib.sys
2012-04-08 20:08 . 2001-08-17 21:05 28032 -c--a-w- c:\windows\system32\dllcache\ovcd.sys
2012-04-08 20:07 . 2001-08-17 19:20 87040 -c--a-w- c:\windows\system32\dllcache\nm6wdm.sys
2012-04-08 20:06 . 2001-08-17 20:50 75520 -c--a-w- c:\windows\system32\dllcache\mxport.sys
2012-04-08 20:05 . 2001-08-17 21:02 35200 -c--a-w- c:\windows\system32\dllcache\msgame.sys
2012-04-08 20:05 . 2001-08-17 20:48 6016 -c--a-w- c:\windows\system32\dllcache\msfsio.sys
2012-04-08 20:05 . 2008-04-14 07:16 51200 -c--a-w- c:\windows\system32\dllcache\msdv.sys
2012-04-08 20:05 . 2001-08-17 20:52 17280 -c--a-w- c:\windows\system32\dllcache\mraid35x.sys
2012-04-08 20:05 . 2008-04-14 07:16 15232 -c--a-w- c:\windows\system32\dllcache\mpe.sys
2012-04-08 20:05 . 2001-08-17 20:57 16128 -c--a-w- c:\windows\system32\dllcache\modemcsa.sys
2012-04-08 20:05 . 2001-08-17 20:52 6528 -c--a-w- c:\windows\system32\dllcache\miniqic.sys
2012-04-08 20:05 . 2001-08-17 19:50 320384 -c--a-w- c:\windows\system32\dllcache\mgaum.sys
2012-04-08 20:05 . 2001-08-17 21:56 235648 -c--a-w- c:\windows\system32\dllcache\mgaud.dll
2012-04-08 20:05 . 2008-04-14 07:11 26112 -c--a-w- c:\windows\system32\dllcache\memstpci.sys
2012-04-08 20:05 . 2001-08-18 05:36 47616 -c--a-w- c:\windows\system32\dllcache\memgrp.dll
2012-04-08 20:05 . 2001-08-17 20:58 8320 -c--a-w- c:\windows\system32\dllcache\memcard.sys
2012-04-08 20:05 . 2001-08-17 19:12 164586 -c--a-w- c:\windows\system32\dllcache\mdgndis5.sys
2012-04-08 20:03 . 2001-08-18 05:36 37376 -c--a-w- c:\windows\system32\dllcache\kousd.dll
2012-04-08 20:02 . 2001-08-17 19:12 45632 -c--a-w- c:\windows\system32\dllcache\ip5515.sys
2012-04-08 20:02 . 2001-08-18 05:36 90200 -c--a-w- c:\windows\system32\dllcache\io8ports.dll
2012-04-08 20:02 . 2001-08-17 20:50 38784 -c--a-w- c:\windows\system32\dllcache\io8.sys
2012-04-08 20:02 . 2008-04-14 07:10 5504 -c--a-w- c:\windows\system32\dllcache\intelide.sys
2012-04-08 20:02 . 2001-08-17 20:47 13056 -c--a-w- c:\windows\system32\dllcache\inport.sys
2012-04-08 20:02 . 2001-08-17 20:52 16000 -c--a-w- c:\windows\system32\dllcache\ini910u.sys
2012-04-08 20:02 . 2008-04-14 12:00 81920 -c--a-w- c:\windows\system32\dllcache\ieencode.dll
2012-04-08 20:02 . 2001-08-18 05:36 372824 -c--a-w- c:\windows\system32\dllcache\iconf32.dll
2012-04-08 20:02 . 2001-08-17 21:06 100992 -c--a-w- c:\windows\system32\dllcache\icam5usb.sys
2012-04-08 20:02 . 2001-08-18 05:36 20480 -c--a-w- c:\windows\system32\dllcache\icam5ext.dll
2012-04-08 20:02 . 2001-08-18 05:36 45056 -c--a-w- c:\windows\system32\dllcache\icam5com.dll
2012-04-08 20:00 . 2001-08-17 20:28 50751 -c--a-w- c:\windows\system32\dllcache\hsf_tone.sys
2012-04-08 19:59 . 2001-08-18 05:36 48128 -c--a-w- c:\windows\system32\dllcache\hpgt33tk.dll
2012-04-08 19:58 . 2001-08-18 05:36 92160 -c--a-w- c:\windows\system32\dllcache\fuusd.dll
2012-04-08 19:57 . 2001-08-18 05:36 34816 -c--a-w- c:\windows\system32\dllcache\esuimg.dll
2012-04-08 19:56 . 2001-08-17 19:10 69692 -c--a-w- c:\windows\system32\dllcache\el575nd5.sys
2012-04-08 19:55 . 2001-08-17 19:14 21606 -c--a-w- c:\windows\system32\dllcache\digiisdn.sys
2012-04-08 19:54 . 2001-08-17 19:19 96256 -c--a-w- c:\windows\system32\dllcache\ctlsb16.sys
2012-04-08 19:53 . 2001-08-18 05:36 32256 -c--a-w- c:\windows\system32\dllcache\diapi2NT.dll
2012-04-08 19:52 . 2001-08-17 19:11 26568 -c--a-w- c:\windows\system32\dllcache\bcm4e5.sys
2012-04-08 19:51 . 2001-08-17 19:12 97354 -c--a-w- c:\windows\system32\dllcache\aspndis3.sys
2012-04-08 19:50 . 2001-08-17 21:56 66048 -c--a-w- c:\windows\system32\dllcache\s3legacy.dll
2012-04-05 17:28 . 2012-04-05 17:28 -------- dc----w- C:\Crash
2012-03-26 00:22 . 2012-03-26 00:22 -------- dc----w- c:\documents and settings\UpdatusUser
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-03-06 23:15 . 2011-07-08 18:58 41184 -c--a-w- c:\windows\avastSS.scr
2012-03-06 23:15 . 2011-07-08 18:58 201352 -c--a-w- c:\windows\system32\aswBoot.exe
2012-03-06 23:03 . 2011-07-08 18:58 612184 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-03-06 23:03 . 2011-07-08 18:58 337880 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-03-06 23:02 . 2011-07-08 18:58 35672 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2012-03-06 23:01 . 2011-07-08 18:58 53848 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-03-06 23:01 . 2011-07-08 18:58 95704 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2012-03-06 23:01 . 2011-07-08 18:58 89048 ----a-w- c:\windows\system32\drivers\aswmon.sys
2012-03-06 23:01 . 2011-07-08 18:58 20696 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-03-06 22:58 . 2011-07-08 18:58 24920 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2012-03-01 11:01 . 2008-04-14 12:00 916992 -c--a-w- c:\windows\system32\wininet.dll
2012-03-01 11:01 . 2008-04-14 12:00 43520 -c--a-w- c:\windows\system32\licmgr10.dll
2012-03-01 11:01 . 2008-04-14 12:00 1469440 -c--a-w- c:\windows\system32\inetcpl.cpl
2012-02-29 14:10 . 2008-04-14 12:00 177664 -c--a-w- c:\windows\system32\wintrust.dll
2012-02-29 14:10 . 2008-04-14 12:00 148480 -c--a-w- c:\windows\system32\imagehlp.dll
2012-02-29 12:17 . 2008-04-14 12:00 385024 -c--a-w- c:\windows\system32\html.iec
2012-02-10 04:10 . 2012-02-23 18:33 881984 -c--a-w- c:\windows\system32\nvgenco32.dll
2012-02-10 04:10 . 2012-02-23 18:33 1000256 -c--a-w- c:\windows\system32\nvdispco32.dll
2012-02-10 04:10 . 2011-07-08 16:31 65536 -c--a-w- c:\windows\system32\OpenCL.dll
2012-02-10 04:10 . 2011-07-08 16:31 5918720 -c--a-w- c:\windows\system32\nvcuda.dll
2012-02-10 04:10 . 2011-07-08 16:31 4309760 -c--a-w- c:\windows\system32\nv4_disp.dll
2012-02-10 04:10 . 2011-07-08 16:31 2522944 -c--a-w- c:\windows\system32\nvcuvid.dll
2012-02-10 04:10 . 2011-07-08 16:31 2437440 -c--a-w- c:\windows\system32\nvcuvenc.dll
2012-02-10 04:10 . 2011-07-08 16:31 2292224 -c--a-w- c:\windows\system32\nvapi.dll
2012-02-10 04:10 . 2011-07-08 16:31 18620416 -c--a-w- c:\windows\system32\nvoglnt.dll
2012-02-10 04:10 . 2011-07-08 16:31 17534976 -c--a-w- c:\windows\system32\nvcompiler.dll
2012-02-10 04:10 . 2011-07-08 16:31 13415040 -c--a-w- c:\windows\system32\drivers\nv4_mini.sys
2012-02-10 03:04 . 2011-07-08 16:31 54272 -c--a-w- c:\windows\system32\nvwddi.dll
2012-02-10 03:04 . 2011-07-08 16:31 164160 ----a-w- c:\windows\system32\nvsvc32.exe
2012-02-10 03:04 . 2011-07-08 16:31 143680 -c--a-w- c:\windows\system32\nvcolor.exe
2012-02-10 03:04 . 2011-07-08 16:31 15494464 -c--a-w- c:\windows\system32\nvcpl.dll
2012-02-10 03:04 . 2011-07-08 16:31 108352 -c--a-w- c:\windows\system32\nvmctray.dll
2012-02-03 09:22 . 2008-04-14 12:00 1860096 -c--a-w- c:\windows\system32\win32k.sys
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-03-06 23:15 123536 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2012-03-10 3905920]
"InstallIQUpdater"="c:\program files\W3i\InstallIQUpdater\InstallIQUpdater.exe" [2011-08-10 1176064]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-03-06 4241512]
"RTHDCPL"="RTHDCPL.EXE" [2009-02-03 18085888]
"NvMediaCenter"="NvMCTray.dll" [2012-02-10 108352]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2012-02-10 15494464]
"nwiz"="c:\program files\NVIDIA Corporation\nview\nwiz.exe" [2012-02-10 1634112]
.
c:\windows\system32\config\systemprofile\Start Menu\Programs\Startup\
Camio Viewer 1.9.0.lnk - c:\program files\Sierra Imaging\Image Expert 1.9.0\IXApplet.exe [2011-7-15 103424]
.
c:\documents and settings\Owner\Start Menu\Programs\Startup\
Camio Viewer 1.9.0.lnk - c:\program files\Sierra Imaging\Image Expert 1.9.0\IXApplet.exe [2011-7-15 103424]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-08-27 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2009-09-03 22:21 548352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"JavaQuickStarterService"=2 (0x2)
"BBUpdate"=2 (0x2)
"BBSvc"=3 (0x3)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\Program Files\\Google\\Google Earth\\client\\googleearth.exe"=
"c:\\Program Files\\Sony Online Entertainment\\Installed Games\\EverQuest\\EQVoiceService.exe"=
"c:\\MacroQuest2\\MMOLoader.exe"=
"c:\\Program Files\\Google\\Google Earth\\plugin\\geplugin.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Update Core\\daemonu.exe"=
"c:\\windows\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\windows\\system32\\sessmgr.exe"=
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [7/8/2011 11:58 AM 612184]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [7/8/2011 11:58 AM 337880]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2/17/2010 11:25 AM 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [5/10/2010 11:41 AM 67664]
R2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [5/4/2011 10:54 AM 116608]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [7/8/2011 11:58 AM 20696]
R2 BBUpdate;BBUpdate;c:\program files\Microsoft\BingBar\SeaPort.EXE [6/15/2011 5:33 PM 249648]
R2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service;c:\windows\system32\IPROSetMonitor.exe [7/7/2011 4:00 PM 112800]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2/23/2012 11:35 AM 2348352]
S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [8/8/2011 6:30 PM 136176]
S3 BBSvc;Bing Bar Update Service;c:\program files\Microsoft\BingBar\BBSvc.EXE [7/7/2011 7:31 PM 195336]
S3 cpudrv;cpudrv;c:\program files\SystemRequirementsLab\cpudrv.sys [12/18/2009 11:58 AM 11336]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [8/8/2011 6:30 PM 136176]
S3 KLSIENET;Driver for USB Ethernet Adapter;c:\windows\system32\drivers\usb101et.sys [7/7/2011 1:37 PM 32384]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - ASWMBR
*Deregistered* - aswMBR
.
Contents of the 'Scheduled Tasks' folder
.
2012-04-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-09 01:30]
.
2012-04-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-09 01:30]
.
2012-04-21 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1801674531-813497703-1177238915-1003Core.job
- c:\documents and settings\Owner\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-07-13 21:10]
.
2012-04-21 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1801674531-813497703-1177238915-1003UA.job
- c:\documents and settings\Owner\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-07-13 21:10]
.
2012-04-21 c:\windows\Tasks\User_Feed_Synchronization-{A5E7ED2E-8444-4036-9F9E-89A907ED8F97}.job
- c:\windows\system32\msfeedssync.exe [2009-03-08 11:31]
.
.
------- Supplementary Scan -------
.
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
TCP: DhcpNameServer = 68.116.46.115 24.205.192.61 24.205.224.36
.
- - - - ORPHANS REMOVED - - - -
.
HKLM-Run-SunJavaUpdateSched - c:\program files\Common Files\Java\Java Update\jusched.exe
HKLM-Run-Adobe ARM - c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
AddRemove-SOE-EverQuest (2) - c:\documents and settings\Owner\Desktop\New Folder\eq setup\uninstaller.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-04-21 12:50
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(756)
c:\program files\SUPERAntiSpyware\SASWINLO.DLL
c:\windows\system32\WININET.dll
.
- - - - - - - > 'explorer.exe'(3660)
c:\windows\system32\WININET.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Completion time: 2012-04-21 12:51:36
ComboFix-quarantined-files.txt 2012-04-21 19:51
.
Pre-Run: 142,640,676,864 bytes free
Post-Run: 142,840,803,328 bytes free
.
- - End Of File - - 0667F47008393DE4D38A5246905E2883

#27
Essexboy

Posted 21 April 2012 - 02:01 PM

GeekU Moderator

Retired Staff
69,964 posts

XP looks clean so lets go for some TLC and resets

Download Windows Repair (all in one) from this site

Install the programme then run

Go to step 2 and allow it to run Disc check
Posted Image

Once that is done then go to step 3 and allow it to run SFC
Posted Image

On the start repairs tab select advanced mode and click start
Posted Image

Leave the default options ticked and tick restart system when finished
Posted Image

#28
CBon

Posted 21 April 2012 - 02:09 PM

Member

Topic Starter
Member
32 posts

OK one final try for Avast and then I will get a different AV for you

Could you double click the Avast set up you downloaded previously and see whether it installs

If it does not then Download and install Microsoft Security Essentials

Win 7 64 Avast showed the error again so I downloaded the other one and it is installed.

#29
CBon

Posted 21 April 2012 - 02:22 PM

Member

Topic Starter
Member
32 posts

"Once that is done then go to step 3 and allow it to run SFC"

On this step I don't have the disk it is asking for, also a few weeks ago I followed some instructions on a Blog and reset the computer to look for missing files in a folder instead of on a disk, which it did and it fixed some files, but i don't remember now what I did to redirect it to that file...It didn't improve anything, .I am always messing with stuff and I don't know anything about it so I cause huge problems.

Also when I did that scan, and on this one it asks for Windows XP Pro service pack 3 and that is not what I have it is windows XP Home sp3

I have a windows home, not the one on the computer I put it in when it asked for the XP Pro and it seems to be running...I think

Edited by CBon, 21 April 2012 - 02:29 PM.

#30
CBon

Posted 21 April 2012 - 03:25 PM

Member

Topic Starter
Member
32 posts

Finished that.
We done?

Thanks a bunch just getting my Word program open was a big thing for me. I sent you some $$ about what I would have paid the people here. They charge $30.00 just to look at the computer before they do anything.

Edited by CBon, 21 April 2012 - 03:46 PM.