I'm making these posts with my smart phone.
blue screen ach! [Closed]
Started by
devdyer
, Sep 02 2012 12:51 AM
-
This topic is locked
#1
Posted 02 September 2012 - 12:51 AM
devdyer
-
- Member
-
- 24 posts
Member
I'm making these posts with my smart phone.
#2
Posted 02 September 2012 - 12:54 AM
devdyer
- Topic Starter
-
- Member
-
- 24 posts
Member
Btw I'm unable to start in safe mode without the blue screen
#3
Posted 02 September 2012 - 08:03 AM
Essexboy
-
- Retired Staff
-
- 69,964 posts
GeekU Moderator
Hi what happened prior to the blue screen ?
What is your operating system i.e XP, Vista, 7 32 or 64bit
Can you burn a CD or USB on another computer
What is your operating system i.e XP, Vista, 7 32 or 64bit
Can you burn a CD or USB on another computer
#4
Posted 02 September 2012 - 11:27 AM
devdyer
- Topic Starter
-
- Member
-
- 24 posts
Member
The computer was running slow so I manually powered it down and when I turned it back on the blue screen that says c000021a {fatal system error}
I have windows xp home edition 32 bit (I think) and yes I can burn a cd on another computer
I have windows xp home edition 32 bit (I think) and yes I can burn a cd on another computer
#5
Posted 02 September 2012 - 12:05 PM
Essexboy
-
- Retired Staff
-
- 69,964 posts
GeekU Moderator
OK lets see what is happening within windows
Please print these instruction out so that you know what you are doing
Please print these instruction out so that you know what you are doing
- Download OTLPENet.exe to your desktop
- Download Farbar Recovery Scan Tool and save it to a flash drive.
- Ensure that you have a blank CD in the drive
- Double click OTLPENet.exe and this will then open imgburn to burn the file to CD
- Reboot your system using the boot CD you just created.
Note : If you do not know how to set your computer to boot from CD follow the steps here - As the CD needs to detect your hardware and load the operating system, I would recommend a nice cup of tea whilst it loads
- Your system should now display a Reatogo desktop.
Note : as you are running from CD it is not exactly speedy - Insert the flash drive with FRST on it
- Locate the flash drive and run FSRT
- The tool will start to run.
- When the tool opens click Yes to disclaimer.
- Press Scan button.
- It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.
#6
Posted 02 September 2012 - 06:14 PM
devdyer
- Topic Starter
-
- Member
-
- 24 posts
Member
Scan result of Farbar Recovery Scan Tool (FRST written by Farbar) Version: 02-09-2012 03
Ran by SYSTEM at 02-09-2012 19:04:21
Running from E:\
Microsoft Windows XP (X86) OS Language: English(US)
The current controlset is ControlSet003
==================== Registry (Whitelisted) ===================
HKLM\...\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k [x]
HKLM\...\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey [931200 2012-03-26] (Microsoft Corporation)
HKLM\...\Run: [TelevisionFanatic Search Scope Monitor] "C:\PROGRA~1\TELEVI~2\bar\1.bin\64srchmn.exe" /m=2 /w /h [42536 2012-08-08] (MindSpark)
HKLM\...\Run: [TelevisionFanatic Browser Plugin Loader] C:\PROGRA~1\TELEVI~2\bar\1.bin\64brmon.exe [30096 2012-08-08] (VER_COMPANY_NAME)
HKLM\...\Run: [SpeetItUpFree] "C:\Program Files\SpeedItup Free\speeditupfree.exe" [7697496 2012-02-23] (MicroSmarts LLC.)
HKU\Owner\...\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe [15360 2008-04-13] (Microsoft Corporation)
HKU\Owner\...\Run: [Search Protection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe [x]
HKU\Owner\...\Run: [EPSON NX100 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEDA.EXE /FU "C:\WINDOWS\TEMP\E_S1C1.tmp" /EF "HKCU" [188928 2008-02-04] (SEIKO EPSON CORPORATION)
HKU\Owner\...\Run: [Software Informer] "C:\Program Files\Software Informer\softinfo.exe" -autorun [x]
HKU\Owner\...\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h [x]
HKU\Owner\...\Run: [Spotify] "C:\Documents and Settings\Owner\Application Data\Spotify\Spotify.exe" /uri spotify:autostart [5576408 2012-08-20] (Spotify Ltd)
HKU\Owner\...\Run: [Spotify Web Helper] "C:\Documents and Settings\Owner\Application Data\Spotify\Data\SpotifyWebHelper.exe" [1193176 2012-08-20] ()
Winlogon\Notify\!SASWinLogon: C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [X]
Winlogon\Notify\igfxcui: igfxsrvc.dll (Intel Corporation)
Winlogon\Notify\WgaLogon: WgaLogon.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Wireless Connection Manager.lnk
ShortcutTarget: Wireless Connection Manager.lnk -> C:\Program Files\D-Link\DWA-552 revA\wirelesscm.exe (D-Link Corp.)
========================== Services (Whitelisted) ========================
2 DefaultTabUpdate; "C:\Documents and Settings\Owner\Application Data\DefaultTab\DefaultTab\DTUpdate.exe" [107520 2012-08-26] ()
2 Eventlog; C:\Windows\System32\services.exe [110592 2009-02-06] (Microsoft Corporation)
3 jswpsapi; C:\Program Files\D-Link\DWA-552 revA\jswpsapi.exe [356433 2008-09-26] (Atheros Communications, Inc.)
3 PD1171Srv; C:\WINDOWS\system32\P1171Srv.exe [20480 2004-02-03] (Creative Technology Ltd.)
2 TelevisionFanaticService; C:\PROGRA~1\TELEVI~2\bar\1.bin\64barsvc.exe [42504 2012-08-08] (COMPANYVERS_NAME)
2 WLSVC; C:\Program Files\D-Link\DWA-552 revA\WLSVC.exe [167936 2009-02-11] ()
3 AppMgmt; C:\Windows\System32\appmgmts.dll [x]
3 FontCache3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [x]
3 idsvc; "c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe" [x]
2 JavaQuickStarterService; "C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf" [x]
2 MsMpSvc; "c:\Program Files\Microsoft Security Client\MsMpEng.exe" [x]
4 NetTcpPortSharing; "c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe" [x]
==================== Drivers (Whitelisted) ===================
3 AR5416; C:\Windows\System32\DRIVERS\athw.sys [1605056 2010-04-27] (Atheros Communications, Inc.)
3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
1 Cdr4_2K; C:\Windows\System32\Drivers\Cdr4_2K.sys [52624 2009-08-29] (Adaptec)
2 Cdralw2k; C:\Windows\System32\Drivers\Cdralw2k.sys [21913 2009-08-29] (Adaptec)
1 eeCtrl; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [385072 2008-01-19] (Symantec Corporation)
3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [49664 2006-04-12] (HP)
3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16496 2006-04-12] (HP)
3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21568 2006-04-12] (HP)
3 ialm; C:\Windows\System32\DRIVERS\ialmnt5.sys [737874 2004-08-20] (Intel Corporation)
3 JSWSCIMD; C:\Windows\System32\DRIVERS\jswscimd.sys [57440 2008-09-25] (Atheros Communications, Inc.)
3 LVUSBSta; C:\Windows\System32\drivers\LVUSBSta.sys [41752 2008-07-26] (Logitech Inc.)
3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys [38224 2010-12-20] (Malwarebytes Corporation)
0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [171064 2012-03-20] (Microsoft Corporation)
3 NABTSFEC; C:\Windows\System32\DRIVERS\NABTSFEC.sys [85248 2008-04-13] (Microsoft Corporation)
3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
3 pepifilter; C:\Windows\System32\DRIVERS\lv302af.sys [13848 2008-07-26] (Logitech Inc.)
3 PID_PEPI; C:\Windows\System32\DRIVERS\LV302V32.SYS [2570520 2008-07-26] (Logitech Inc.)
1 SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12872 2010-02-17] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
1 SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67656 2010-05-10] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
3 senfilt; C:\Windows\System32\drivers\senfilt.sys [732928 2004-09-17] (Creative Technology Ltd.)
3 SLIP; C:\Windows\System32\DRIVERS\SLIP.sys [11136 2008-04-13] (Microsoft Corporation)
3 streamip; C:\Windows\System32\DRIVERS\StreamIP.sys [15232 2008-04-13] (Microsoft Corporation)
2 WLNdis50; C:\Windows\System32\DRIVERS\wlndis50.sys [20480 2008-02-27] ()
3 WSTCODEC; C:\Windows\System32\DRIVERS\WSTCODEC.SYS [19200 2008-04-13] (Microsoft Corporation)
4 Abiosdsk; [x]
4 abp480n5; [x]
4 adpu160m; [x]
4 Aha154x; [x]
4 aic78u2; [x]
4 aic78xx; [x]
4 AliIde; [x]
4 amsint; [x]
4 asc; [x]
4 asc3350p; [x]
4 asc3550; [x]
4 Atdisk; [x]
4 cd20xrnt; [x]
1 Changer; [x]
4 CmdIde; [x]
4 Cpqarray; [x]
4 dac2w2k; [x]
4 dac960nt; [x]
4 dpti2o; [x]
4 hpn; [x]
1 i2omgmt; [x]
4 i2omp; [x]
4 ini910u; [x]
1 lbrtfdc; [x]
4 mraid35x; [x]
1 PCIDump; [x]
3 PDCOMP; [x]
3 PDFRAME; [x]
3 PDRELI; [x]
3 PDRFRAME; [x]
4 perc2; [x]
4 perc2hib; [x]
0 pstjxmv; C:\Windows\System32\drivers\wfjte.sys [x]
4 ql1080; [x]
4 Ql10wnt; [x]
4 ql12160; [x]
4 ql1240; [x]
4 ql1280; [x]
4 Simbad; [x]
4 Sparrow; [x]
4 symc810; [x]
4 symc8xx; [x]
3 SymIM; C:\Windows\System32\DRIVERS\SymIM.sys [x]
3 SymIMMP; C:\Windows\System32\DRIVERS\SymIM.sys [x]
4 sym_hi; [x]
4 sym_u3; [x]
4 TosIde; [x]
4 ultra; [x]
4 ViaIde; [x]
3 WDICA; [x]
2 zumbus; C:\Windows\System32\DRIVERS\zumbus.sys [x]
==================== NetSvcs (Whitelisted) =================
============ One Month Created Files and Folders ==============
2012-09-02 00:49 - 2012-09-02 00:49 - 00010048 ____N C:\bootex.log
2012-09-02 00:47 - 2012-09-02 00:47 - 00000000 __SHD C:\found.000
2012-08-30 05:06 - 2012-08-31 05:29 - 00000000 ____D C:\Windows\System32\XPSViewer
2012-08-30 05:05 - 2012-08-30 05:05 - 00000000 ____D C:\Program Files\MSBuild
2012-08-30 05:04 - 2012-08-30 05:04 - 00000000 ____D C:\Program Files\Reference Assemblies
2012-08-28 03:49 - 2012-08-28 03:50 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2012-08-28 03:07 - 2012-08-28 03:07 - 00000641 ____A C:\Documents and Settings\All Users\Desktop\Wireless Connection Manager.lnk
2012-08-28 03:07 - 2012-08-28 03:07 - 00000000 ____D C:\Program Files\D-Link
2012-08-28 03:07 - 2012-08-28 03:07 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\D-Link
2012-08-28 03:07 - 2008-10-01 03:55 - 00035967 ____A C:\Windows\System32\jswscimdp.cat
2012-08-28 03:07 - 2008-10-01 03:55 - 00035538 ____A C:\Windows\System32\jswscimd.cat
2012-08-28 03:07 - 2008-09-26 21:01 - 00405582 ____A (Atheros Communications, Inc.) C:\Windows\System32\jswscsup.dll
2012-08-28 03:07 - 2008-09-25 21:07 - 00057440 ____A (Atheros Communications, Inc.) C:\Windows\System32\jswscimd.sys
2012-08-28 03:07 - 2008-09-25 21:07 - 00057440 ____A (Atheros Communications, Inc.) C:\Windows\System32\Drivers\jswscimd.sys
2012-08-28 03:07 - 2008-09-08 13:54 - 00010667 ____A C:\Windows\System32\wlndis50.cat
2012-08-28 03:07 - 2008-02-27 12:54 - 00020480 ____A () C:\Windows\System32\wlndis50.sys
2012-08-28 03:07 - 2008-02-27 12:54 - 00020480 ____A () C:\Windows\System32\Drivers\WLNdis50.sys
2012-08-28 03:06 - 2012-08-28 03:06 - 00000000 ____D C:\Windows\pcidevice
2012-08-28 03:06 - 2010-04-27 18:09 - 01605056 ____A (Atheros Communications, Inc.) C:\Windows\System32\Drivers\athw.sys
2012-08-28 03:05 - 2012-08-28 03:05 - 00000000 ____A C:\Windows\setuperr.log
2012-08-28 01:57 - 2012-08-28 05:02 - 00000000 ____D C:\Windows\LastGood.Tmp
2012-08-27 23:02 - 2012-08-27 23:10 - 06955968 ____A (Microsoft Corporation) C:\Documents and Settings\Owner\Desktop\Silverlight.exe
2012-08-26 23:24 - 2012-08-26 23:24 - 00000063 ___AC C:\1.html
2012-08-26 22:56 - 2012-09-02 00:41 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\PriceGong
2012-08-26 22:54 - 2012-08-26 22:58 - 00000782 ____A C:\Documents and Settings\Owner\Desktop\SpeedItup Free.lnk
2012-08-26 22:53 - 2012-08-27 22:33 - 00000000 ____D C:\Program Files\SpeedItup Free
2012-08-26 22:50 - 2012-08-26 22:51 - 00000000 ____D C:\Program Files\PriceGong
2012-08-26 22:42 - 2012-08-26 22:42 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\DefaultTab
2012-08-26 21:38 - 2012-08-26 21:38 - 01654976 ____A (W3i, LLC) C:\Documents and Settings\Owner\Desktop\mplayer_tuguu_1271.exe
2012-08-25 15:10 - 2012-08-25 15:10 - 20980010 ____A C:\Documents and Settings\Owner\Desktop\dwa552_drivers_170.zip
2012-08-25 13:36 - 2012-08-25 13:36 - 00000000 ____D C:\Program Files\Copy of Microsoft Security Client
2012-08-25 13:34 - 2012-08-25 13:34 - 00000000 ____D C:\Program Files\Copy of ArcSoft
2012-08-21 16:34 - 2012-08-21 16:34 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-2-toDownload.exe
2012-08-21 16:31 - 2012-08-21 16:32 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-3-toDownload.exe
2012-08-16 15:35 - 2012-08-25 13:27 - 00000000 ____D C:\Documents and Settings\Owner\Desktop\pics
2012-08-16 05:16 - 2012-08-16 05:16 - 00013332 ____A C:\Windows\KB2731847.log
2012-08-16 05:08 - 2012-08-16 05:09 - 00011942 ____A C:\Windows\KB2723135.log
2012-08-16 05:01 - 2012-08-16 05:05 - 00016405 ____A C:\Windows\KB2722913-IE8.log
2012-08-15 22:25 - 2012-08-16 05:18 - 00018547 ____A C:\Windows\KB2712808.log
2012-08-15 22:25 - 2012-08-16 05:10 - 00018161 ____A C:\Windows\KB2705219.log
2012-08-14 15:48 - 2012-08-14 15:48 - 09826504 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerInstaller.exe
2012-08-08 18:17 - 2012-08-08 18:20 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\vlc
2012-08-08 18:14 - 2012-08-27 18:16 - 00000000 ____D C:\Program Files\VideoLAN
2012-08-08 18:14 - 2012-08-08 18:14 - 00033958 ____A C:\Documents and Settings\All Users\Application Data\uninstaller.exe
2012-08-08 18:14 - 2012-08-08 18:14 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\WeCareReminder
2012-08-08 18:13 - 2012-08-08 18:13 - 00000000 ____D C:\Program Files\Yontoo
2012-08-08 18:12 - 2012-08-08 18:12 - 00000000 ____D C:\Documents and Settings\Owner\Local Settings\Application Data\TNT2
2012-08-08 18:10 - 2012-08-08 18:11 - 34294688 ____A C:\Documents and Settings\Owner\Desktop\vlcmediaplayer-setup.exe
2012-08-08 17:44 - 2012-08-08 17:44 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\TelevisionFanatic
2012-08-08 14:21 - 2012-08-08 14:21 - 00000000 ____D C:\Program Files\TelevisionFanatic
2012-08-05 02:55 - 2012-08-27 18:55 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\Teleca
2012-08-05 02:54 - 2012-08-27 18:55 - 00000000 ____D C:\Program Files\Common Files\Teleca Shared
2012-08-05 02:53 - 2012-08-27 18:56 - 00000000 ____D C:\Program Files\HTC
2012-08-05 02:53 - 2012-08-05 02:53 - 00012188 ____A C:\Windows\DPINST.LOG
============ 3 Months Modified Files ========================
2012-09-02 19:56 - 2005-12-08 07:39 - 00263824 ____A C:\Windows\System32\FNTCACHE.DAT
2012-09-02 00:49 - 2012-09-02 00:49 - 00010048 ____N C:\bootex.log
2012-09-01 23:48 - 2012-07-22 15:23 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2012-09-01 23:09 - 2005-12-08 15:47 - 01225068 ____A C:\Windows\WindowsUpdate.log
2012-09-01 10:48 - 2005-12-08 15:52 - 00032460 ____A C:\Windows\SchedLgU.Txt
2012-08-31 13:57 - 2009-10-26 14:45 - 00118272 __ASH C:\Documents and Settings\Owner\Desktop\Thumbs.db
2012-08-30 05:07 - 2005-12-08 07:40 - 00511862 ____A C:\Windows\System32\PerfStringBackup.INI
2012-08-29 05:01 - 2011-10-28 19:27 - 00023894 ___AC C:\Windows\KB2564958.log
2012-08-28 05:05 - 2012-07-22 10:52 - 00025551 ____A C:\Windows\KB2695962.log
2012-08-28 05:05 - 2012-01-10 13:19 - 00019556 ___AC C:\Windows\KB2618451.log
2012-08-28 03:08 - 2011-02-08 13:06 - 00262354 ____A C:\Windows\setupapi.log
2012-08-28 03:07 - 2012-08-28 03:07 - 00000641 ____A C:\Documents and Settings\All Users\Desktop\Wireless Connection Manager.lnk
2012-08-28 03:05 - 2012-08-28 03:05 - 00000000 ____A C:\Windows\setuperr.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00538508 ___AC C:\Windows\FaxSetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00259985 ___AC C:\Windows\ocgen.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00206798 ___AC C:\Windows\tsoc.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00177944 ___AC C:\Windows\comsetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00108289 ___AC C:\Windows\ntdtcsetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00084785 ___AC C:\Windows\iis6.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00029881 ___AC C:\Windows\ocmsn.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00027047 ___AC C:\Windows\msgsocm.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00001917 ____A C:\Windows\imsins.log
2012-08-27 23:10 - 2012-08-27 23:02 - 06955968 ____A (Microsoft Corporation) C:\Documents and Settings\Owner\Desktop\Silverlight.exe
2012-08-27 22:43 - 2012-07-22 10:46 - 00000384 ___AH C:\Windows\Tasks\Microsoft Antimalware Scheduled Scan.job
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\Owner\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\NetworkService\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\LocalService\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2012-08-27 22:33 - 2005-12-08 07:42 - 00000159 ____A C:\Windows\wiadebug.log
2012-08-27 22:33 - 2005-12-08 07:42 - 00000049 ____A C:\Windows\wiaservc.log
2012-08-27 22:33 - 2004-08-04 08:00 - 00002206 ____A C:\Windows\System32\wpa.dbl
2012-08-27 19:41 - 2005-12-08 15:52 - 00000278 ___SH C:\Documents and Settings\Owner\ntuser.ini
2012-08-27 18:49 - 2006-01-22 15:33 - 00067216 ___AC C:\Documents and Settings\Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2012-08-26 23:24 - 2012-08-26 23:24 - 00000063 ___AC C:\1.html
2012-08-26 22:58 - 2012-08-26 22:54 - 00000782 ____A C:\Documents and Settings\Owner\Desktop\SpeedItup Free.lnk
2012-08-26 21:38 - 2012-08-26 21:38 - 01654976 ____A (W3i, LLC) C:\Documents and Settings\Owner\Desktop\mplayer_tuguu_1271.exe
2012-08-26 06:51 - 2009-11-04 14:24 - 00000456 ____A C:\Windows\Tasks\Driver Robot.job
2012-08-25 15:10 - 2012-08-25 15:10 - 20980010 ____A C:\Documents and Settings\Owner\Desktop\dwa552_drivers_170.zip
2012-08-25 14:10 - 2011-02-08 13:06 - 00000671 ____A C:\Windows\setupact.log
2012-08-25 13:32 - 2006-10-09 02:49 - 00020992 ___AC C:\Documents and Settings\Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-08-21 16:34 - 2012-08-21 16:34 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-2-toDownload.exe
2012-08-21 16:32 - 2012-08-21 16:31 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-3-toDownload.exe
2012-08-21 01:22 - 2011-06-17 19:47 - 00003627 ___AC C:\Windows\wmsetup.log
2012-08-16 05:18 - 2012-08-15 22:25 - 00018547 ____A C:\Windows\KB2712808.log
2012-08-16 05:18 - 2011-02-09 05:00 - 00001374 ____A C:\Windows\imsins.BAK
2012-08-16 05:16 - 2012-08-16 05:16 - 00013332 ____A C:\Windows\KB2731847.log
2012-08-16 05:11 - 2005-12-10 12:01 - 59884088 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2012-08-16 05:10 - 2012-08-15 22:25 - 00018161 ____A C:\Windows\KB2705219.log
2012-08-16 05:10 - 2011-02-09 05:01 - 00034972 ___AC C:\Windows\updspapi.log
2012-08-16 05:09 - 2012-08-16 05:08 - 00011942 ____A C:\Windows\KB2723135.log
2012-08-16 05:05 - 2012-08-16 05:01 - 00016405 ____A C:\Windows\KB2722913-IE8.log
2012-08-14 15:48 - 2012-08-14 15:48 - 09826504 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerInstaller.exe
2012-08-14 15:48 - 2012-07-22 15:23 - 00426184 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2012-08-14 15:48 - 2011-05-26 09:00 - 00070344 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2012-08-08 18:14 - 2012-08-08 18:14 - 00033958 ____A C:\Documents and Settings\All Users\Application Data\uninstaller.exe
2012-08-08 18:11 - 2012-08-08 18:10 - 34294688 ____A C:\Documents and Settings\Owner\Desktop\vlcmediaplayer-setup.exe
2012-08-05 22:10 - 2009-10-26 15:00 - 01577188 __ASH C:\Documents and Settings\Owner\My Documents\Thumbs.db
2012-08-05 14:38 - 2006-10-09 02:49 - 00007680 _ASHC C:\Windows\Thumbs.db
2012-08-05 02:53 - 2012-08-05 02:53 - 00012188 ____A C:\Windows\DPINST.LOG
2012-07-23 01:28 - 2012-07-23 01:28 - 00001867 ____A C:\Documents and Settings\Owner\Desktop\Spotify.lnk
2012-07-22 17:55 - 2012-07-22 17:55 - 00000104 ____A C:\Documents and Settings\Owner\Desktop\Internet.lnk
2012-07-22 17:37 - 2012-07-22 17:37 - 00000932 ____A C:\Documents and Settings\Owner\My Documents\My Sharing Folders.lnk
2012-07-22 17:11 - 2004-08-04 08:00 - 00000578 ____A C:\Windows\win.ini
2012-07-22 11:34 - 2012-07-22 01:28 - 00026529 ____A C:\Windows\KB2707511.log
2012-07-22 11:33 - 2012-07-22 11:32 - 00013956 ____A C:\Windows\KB2659262.log
2012-07-22 11:27 - 2012-07-22 01:28 - 00024096 ____A C:\Windows\KB2691442.log
2012-07-22 11:17 - 2012-07-22 11:17 - 00016109 ____A C:\Windows\KB2718523.log
2012-07-22 11:17 - 2012-07-22 01:27 - 00023075 ____A C:\Windows\KB2655992.log
2012-07-22 11:08 - 2012-07-22 11:07 - 00015151 ____A C:\Windows\KB2686509.log
2012-07-22 11:05 - 2012-07-22 01:27 - 00022297 ____A C:\Windows\KB2719985.log
2012-07-22 11:04 - 2012-07-22 01:27 - 00021700 ____A C:\Windows\KB2718704.log
2012-07-22 10:50 - 2012-07-22 10:47 - 00018232 ____A C:\Windows\KB2699988-IE8.log
2012-07-22 10:46 - 2012-07-22 10:45 - 00009855 ____A C:\Windows\KB2685939.log
2012-07-22 10:43 - 2012-07-22 01:24 - 00016374 ____A C:\Windows\KB2653956.log
2012-07-22 10:39 - 2012-07-22 10:37 - 00009536 ____A C:\Windows\KB2698365.log
2012-07-22 10:36 - 2011-02-04 16:19 - 00001945 ___AC C:\Windows\epplauncher.mif
2012-07-22 05:28 - 2012-07-22 01:20 - 00021257 ____A C:\Windows\KB2676562.log
2012-07-12 10:29 - 2012-07-12 10:29 - 04534272 ____A C:\Documents and Settings\All Users\Application Data\ReadOnlyInstaller.msi
2012-07-06 09:58 - 2012-07-06 09:58 - 00078336 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\browser.dll
2012-07-06 09:58 - 2008-10-24 07:27 - 00337920 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\netapi32.dll
2012-07-06 09:58 - 2004-08-04 08:00 - 00337920 ____A (Microsoft Corporation) C:\Windows\System32\netapi32.dll
2012-07-06 09:58 - 2004-08-04 08:00 - 00078336 ____A (Microsoft Corporation) C:\Windows\System32\browser.dll
2012-07-04 10:05 - 2011-08-11 12:30 - 00139784 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\rdpwd.sys
2012-07-04 10:05 - 2005-12-08 15:44 - 00139784 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpwd.sys
2012-07-03 09:40 - 2008-10-15 18:04 - 01866112 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\win32k.sys
2012-07-03 09:40 - 2004-08-04 08:00 - 01866112 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-07-03 01:19 - 2007-05-09 15:16 - 11111424 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ieframe.dll
2012-07-03 01:19 - 2006-10-17 17:33 - 11111424 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-07-02 13:49 - 2012-07-22 01:27 - 00521728 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\jsdbgui.dll
2012-07-02 13:49 - 2010-06-11 21:23 - 00743424 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iedvtool.dll
2012-07-02 13:49 - 2009-08-30 22:02 - 00247808 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ieproxy.dll
2012-07-02 13:49 - 2009-08-30 22:02 - 00012800 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\xpshims.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 02000384 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iertutil.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 00629760 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\msfeeds.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 00055296 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\msfeedsbs.dll
2012-07-02 13:49 - 2006-10-17 17:33 - 00629760 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2012-07-02 13:49 - 2006-10-17 17:33 - 00055296 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2012-07-02 13:49 - 2006-10-17 16:57 - 02000384 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 06008320 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\mshtml.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 06008320 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 01469440 ____N (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-07-02 13:49 - 2004-08-04 08:00 - 01469440 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\inetcpl.cpl
2012-07-02 13:49 - 2004-08-04 08:00 - 01212416 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\urlmon.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 01212416 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00916992 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\wininet.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00916992 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00611840 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mstime.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00611840 ____A (Microsoft Corporation) C:\Windows\System32\mstime.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00387584 ____N (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00387584 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iedkcs32.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00206848 ____N (Microsoft Corporation) C:\Windows\System32\occache.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00206848 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\occache.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00184320 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iepeers.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00105984 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\url.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00105984 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00067072 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mshtmled.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00043520 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\licmgr10.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00043520 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00025600 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\jsproxy.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00025600 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-07-02 08:05 - 2004-08-04 08:00 - 00385024 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2012-07-02 08:05 - 2004-08-04 08:00 - 00174080 ____N (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2012-07-02 08:05 - 2004-08-04 08:00 - 00174080 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ie4uinit.exe
2012-06-08 10:26 - 2008-06-17 15:02 - 08462848 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\shell32.dll
2012-06-08 10:26 - 2004-08-04 08:00 - 08462848 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll
2012-06-06 22:59 - 2012-06-06 22:59 - 01070152 ____A (Microsoft Corporation) C:\Windows\System32\MSCOMCTL.OCX
2012-06-05 11:50 - 2008-11-11 22:42 - 01172480 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\msxml3.dll
2012-06-05 11:50 - 2008-09-20 02:22 - 01372672 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\msxml6.dll
2012-06-05 11:50 - 2007-05-15 18:43 - 01372672 ____A (Microsoft Corporation) C:\Windows\System32\msxml6.dll
2012-06-05 11:50 - 2004-08-04 08:00 - 01172480 ____A (Microsoft Corporation) C:\Windows\System32\msxml3.dll
==================== Known DLLs (Whitelisted) =================
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== EXE ASSOCIATION =====================
HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK
==================== Restore Points (XP) =====================
RP: -> 2012-09-01 22:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP73
RP: -> 2012-08-31 22:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP72
RP: -> 2012-08-31 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP71
RP: -> 2012-08-30 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP70
RP: -> 2012-08-30 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP69
RP: -> 2012-08-29 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP68
RP: -> 2012-08-29 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP67
RP: -> 2012-08-28 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP66
RP: -> 2012-08-28 05:01 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP65
RP: -> 2012-08-28 03:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP64
RP: -> 2012-08-28 03:07 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP63
RP: -> 2012-08-28 02:50 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP62
RP: -> 2012-08-28 01:59 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP61
RP: -> 2012-08-27 22:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP60
RP: -> 2012-08-27 19:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP59
RP: -> 2012-08-27 18:51 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP58
RP: -> 2012-08-27 17:37 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP57
RP: -> 2012-08-27 13:36 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP56
RP: -> 2012-08-26 22:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP55
RP: -> 2012-08-26 16:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP54
RP: -> 2012-08-26 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP53
RP: -> 2012-08-26 03:59 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP52
RP: -> 2012-08-25 16:21 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP51
RP: -> 2012-08-25 15:13 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP50
RP: -> 2012-08-24 12:55 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP49
RP: -> 2012-08-23 12:51 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP48
RP: -> 2012-08-22 18:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP47
RP: -> 2012-08-21 15:12 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP46
RP: -> 2012-08-20 15:09 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP45
RP: -> 2012-08-19 03:21 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP44
RP: -> 2012-08-18 16:28 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP43
RP: -> 2012-08-17 15:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP42
RP: -> 2012-08-16 12:28 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP41
RP: -> 2012-08-16 05:01 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP40
RP: -> 2012-08-15 12:31 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP39
RP: -> 2012-08-14 12:27 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP38
RP: -> 2012-08-13 12:30 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP37
RP: -> 2012-08-13 04:32 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP36
RP: -> 2012-08-12 02:48 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP35
RP: -> 2012-08-11 15:33 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP34
RP: -> 2012-08-10 02:46 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP33
RP: -> 2012-08-09 02:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP32
RP: -> 2012-08-08 02:45 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP31
RP: -> 2012-08-07 02:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP30
RP: -> 2012-08-06 02:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP29
RP: -> 2012-08-05 02:54 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP28
RP: -> 2012-08-05 02:53 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP27
RP: -> 2012-08-05 02:39 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP26
RP: -> 2012-08-02 21:10 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP25
RP: -> 2012-08-01 21:17 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP24
RP: -> 2012-08-01 18:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP23
RP: -> 2012-07-31 12:32 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP22
RP: -> 2012-07-30 11:43 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP21
RP: -> 2012-07-29 11:40 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP20
RP: -> 2012-07-29 04:18 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP19
RP: -> 2012-07-28 11:44 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP18
RP: -> 2012-07-27 20:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP17
RP: -> 2012-07-26 16:43 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP16
RP: -> 2012-07-25 13:26 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP15
RP: -> 2012-07-24 13:24 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP14
RP: -> 2012-07-23 12:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP13
==================== Memory info ===========================
Percentage of memory in use: 39%
Total physical RAM: 510 MB
Available physical RAM: 306.73 MB
Total Pagefile: 457.71 MB
Available Pagefile: 336.56 MB
Total Virtual: 2047.88 MB
Available Virtual: 2002.18 MB
==================== Partitions ============================
2 Drive b: (RAMDisk) (Fixed) (Total:0.06 GB) (Free:0.06 GB) NTFS
3 Drive c: () (Fixed) (Total:71.46 GB) (Free:50.48 GB) NTFS ==>[Drive with boot components (Windows XP)]
5 Drive e: () (Removable) (Total:0.95 GB) (Free:0.71 GB) FAT
6 Drive x: (ReatogoPE) (CDROM) (Total:0.43 GB) (Free:0 GB) CDFS
Disk ### Status Size Free Dyn Gpt
-------- ---------- ------- ------- --- ---
Disk 0 Online 74 GB 0 B
Partitions of Disk 0:
===============
Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 OEM 39 MB 32 KB
Partition 2 Primary 71 GB 39 MB
Partition 3 Unknown 3075 MB 71 GB
==================================================================================
Disk: 0
Partition 1
Type : DE
Hidden: Yes
Active: No
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 FAT Partition 39 MB Healthy
==================================================================================
Disk: 0
Partition 2
Type : 07
Hidden: No
Active: Yes
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 3 C NTFS Partition 71 GB Healthy
==================================================================================
Disk: 0
Partition 3
Type : DB
Hidden: Yes
Active: No
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 4 FAT32 Partition 3075 MB Healthy
==================================================================================
==================== End Of Log =============================
Ran by SYSTEM at 02-09-2012 19:04:21
Running from E:\
Microsoft Windows XP (X86) OS Language: English(US)
The current controlset is ControlSet003
==================== Registry (Whitelisted) ===================
HKLM\...\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k [x]
HKLM\...\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey [931200 2012-03-26] (Microsoft Corporation)
HKLM\...\Run: [TelevisionFanatic Search Scope Monitor] "C:\PROGRA~1\TELEVI~2\bar\1.bin\64srchmn.exe" /m=2 /w /h [42536 2012-08-08] (MindSpark)
HKLM\...\Run: [TelevisionFanatic Browser Plugin Loader] C:\PROGRA~1\TELEVI~2\bar\1.bin\64brmon.exe [30096 2012-08-08] (VER_COMPANY_NAME)
HKLM\...\Run: [SpeetItUpFree] "C:\Program Files\SpeedItup Free\speeditupfree.exe" [7697496 2012-02-23] (MicroSmarts LLC.)
HKU\Owner\...\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe [15360 2008-04-13] (Microsoft Corporation)
HKU\Owner\...\Run: [Search Protection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe [x]
HKU\Owner\...\Run: [EPSON NX100 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEDA.EXE /FU "C:\WINDOWS\TEMP\E_S1C1.tmp" /EF "HKCU" [188928 2008-02-04] (SEIKO EPSON CORPORATION)
HKU\Owner\...\Run: [Software Informer] "C:\Program Files\Software Informer\softinfo.exe" -autorun [x]
HKU\Owner\...\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h [x]
HKU\Owner\...\Run: [Spotify] "C:\Documents and Settings\Owner\Application Data\Spotify\Spotify.exe" /uri spotify:autostart [5576408 2012-08-20] (Spotify Ltd)
HKU\Owner\...\Run: [Spotify Web Helper] "C:\Documents and Settings\Owner\Application Data\Spotify\Data\SpotifyWebHelper.exe" [1193176 2012-08-20] ()
Winlogon\Notify\!SASWinLogon: C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [X]
Winlogon\Notify\igfxcui: igfxsrvc.dll (Intel Corporation)
Winlogon\Notify\WgaLogon: WgaLogon.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Wireless Connection Manager.lnk
ShortcutTarget: Wireless Connection Manager.lnk -> C:\Program Files\D-Link\DWA-552 revA\wirelesscm.exe (D-Link Corp.)
========================== Services (Whitelisted) ========================
2 DefaultTabUpdate; "C:\Documents and Settings\Owner\Application Data\DefaultTab\DefaultTab\DTUpdate.exe" [107520 2012-08-26] ()
2 Eventlog; C:\Windows\System32\services.exe [110592 2009-02-06] (Microsoft Corporation)
3 jswpsapi; C:\Program Files\D-Link\DWA-552 revA\jswpsapi.exe [356433 2008-09-26] (Atheros Communications, Inc.)
3 PD1171Srv; C:\WINDOWS\system32\P1171Srv.exe [20480 2004-02-03] (Creative Technology Ltd.)
2 TelevisionFanaticService; C:\PROGRA~1\TELEVI~2\bar\1.bin\64barsvc.exe [42504 2012-08-08] (COMPANYVERS_NAME)
2 WLSVC; C:\Program Files\D-Link\DWA-552 revA\WLSVC.exe [167936 2009-02-11] ()
3 AppMgmt; C:\Windows\System32\appmgmts.dll [x]
3 FontCache3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [x]
3 idsvc; "c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe" [x]
2 JavaQuickStarterService; "C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf" [x]
2 MsMpSvc; "c:\Program Files\Microsoft Security Client\MsMpEng.exe" [x]
4 NetTcpPortSharing; "c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe" [x]
==================== Drivers (Whitelisted) ===================
3 AR5416; C:\Windows\System32\DRIVERS\athw.sys [1605056 2010-04-27] (Atheros Communications, Inc.)
3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
1 Cdr4_2K; C:\Windows\System32\Drivers\Cdr4_2K.sys [52624 2009-08-29] (Adaptec)
2 Cdralw2k; C:\Windows\System32\Drivers\Cdralw2k.sys [21913 2009-08-29] (Adaptec)
1 eeCtrl; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [385072 2008-01-19] (Symantec Corporation)
3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [49664 2006-04-12] (HP)
3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16496 2006-04-12] (HP)
3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21568 2006-04-12] (HP)
3 ialm; C:\Windows\System32\DRIVERS\ialmnt5.sys [737874 2004-08-20] (Intel Corporation)
3 JSWSCIMD; C:\Windows\System32\DRIVERS\jswscimd.sys [57440 2008-09-25] (Atheros Communications, Inc.)
3 LVUSBSta; C:\Windows\System32\drivers\LVUSBSta.sys [41752 2008-07-26] (Logitech Inc.)
3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys [38224 2010-12-20] (Malwarebytes Corporation)
0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [171064 2012-03-20] (Microsoft Corporation)
3 NABTSFEC; C:\Windows\System32\DRIVERS\NABTSFEC.sys [85248 2008-04-13] (Microsoft Corporation)
3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
3 pepifilter; C:\Windows\System32\DRIVERS\lv302af.sys [13848 2008-07-26] (Logitech Inc.)
3 PID_PEPI; C:\Windows\System32\DRIVERS\LV302V32.SYS [2570520 2008-07-26] (Logitech Inc.)
1 SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12872 2010-02-17] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
1 SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67656 2010-05-10] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
3 senfilt; C:\Windows\System32\drivers\senfilt.sys [732928 2004-09-17] (Creative Technology Ltd.)
3 SLIP; C:\Windows\System32\DRIVERS\SLIP.sys [11136 2008-04-13] (Microsoft Corporation)
3 streamip; C:\Windows\System32\DRIVERS\StreamIP.sys [15232 2008-04-13] (Microsoft Corporation)
2 WLNdis50; C:\Windows\System32\DRIVERS\wlndis50.sys [20480 2008-02-27] ()
3 WSTCODEC; C:\Windows\System32\DRIVERS\WSTCODEC.SYS [19200 2008-04-13] (Microsoft Corporation)
4 Abiosdsk; [x]
4 abp480n5; [x]
4 adpu160m; [x]
4 Aha154x; [x]
4 aic78u2; [x]
4 aic78xx; [x]
4 AliIde; [x]
4 amsint; [x]
4 asc; [x]
4 asc3350p; [x]
4 asc3550; [x]
4 Atdisk; [x]
4 cd20xrnt; [x]
1 Changer; [x]
4 CmdIde; [x]
4 Cpqarray; [x]
4 dac2w2k; [x]
4 dac960nt; [x]
4 dpti2o; [x]
4 hpn; [x]
1 i2omgmt; [x]
4 i2omp; [x]
4 ini910u; [x]
1 lbrtfdc; [x]
4 mraid35x; [x]
1 PCIDump; [x]
3 PDCOMP; [x]
3 PDFRAME; [x]
3 PDRELI; [x]
3 PDRFRAME; [x]
4 perc2; [x]
4 perc2hib; [x]
0 pstjxmv; C:\Windows\System32\drivers\wfjte.sys [x]
4 ql1080; [x]
4 Ql10wnt; [x]
4 ql12160; [x]
4 ql1240; [x]
4 ql1280; [x]
4 Simbad; [x]
4 Sparrow; [x]
4 symc810; [x]
4 symc8xx; [x]
3 SymIM; C:\Windows\System32\DRIVERS\SymIM.sys [x]
3 SymIMMP; C:\Windows\System32\DRIVERS\SymIM.sys [x]
4 sym_hi; [x]
4 sym_u3; [x]
4 TosIde; [x]
4 ultra; [x]
4 ViaIde; [x]
3 WDICA; [x]
2 zumbus; C:\Windows\System32\DRIVERS\zumbus.sys [x]
==================== NetSvcs (Whitelisted) =================
============ One Month Created Files and Folders ==============
2012-09-02 00:49 - 2012-09-02 00:49 - 00010048 ____N C:\bootex.log
2012-09-02 00:47 - 2012-09-02 00:47 - 00000000 __SHD C:\found.000
2012-08-30 05:06 - 2012-08-31 05:29 - 00000000 ____D C:\Windows\System32\XPSViewer
2012-08-30 05:05 - 2012-08-30 05:05 - 00000000 ____D C:\Program Files\MSBuild
2012-08-30 05:04 - 2012-08-30 05:04 - 00000000 ____D C:\Program Files\Reference Assemblies
2012-08-28 03:49 - 2012-08-28 03:50 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2012-08-28 03:07 - 2012-08-28 03:07 - 00000641 ____A C:\Documents and Settings\All Users\Desktop\Wireless Connection Manager.lnk
2012-08-28 03:07 - 2012-08-28 03:07 - 00000000 ____D C:\Program Files\D-Link
2012-08-28 03:07 - 2012-08-28 03:07 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\D-Link
2012-08-28 03:07 - 2008-10-01 03:55 - 00035967 ____A C:\Windows\System32\jswscimdp.cat
2012-08-28 03:07 - 2008-10-01 03:55 - 00035538 ____A C:\Windows\System32\jswscimd.cat
2012-08-28 03:07 - 2008-09-26 21:01 - 00405582 ____A (Atheros Communications, Inc.) C:\Windows\System32\jswscsup.dll
2012-08-28 03:07 - 2008-09-25 21:07 - 00057440 ____A (Atheros Communications, Inc.) C:\Windows\System32\jswscimd.sys
2012-08-28 03:07 - 2008-09-25 21:07 - 00057440 ____A (Atheros Communications, Inc.) C:\Windows\System32\Drivers\jswscimd.sys
2012-08-28 03:07 - 2008-09-08 13:54 - 00010667 ____A C:\Windows\System32\wlndis50.cat
2012-08-28 03:07 - 2008-02-27 12:54 - 00020480 ____A () C:\Windows\System32\wlndis50.sys
2012-08-28 03:07 - 2008-02-27 12:54 - 00020480 ____A () C:\Windows\System32\Drivers\WLNdis50.sys
2012-08-28 03:06 - 2012-08-28 03:06 - 00000000 ____D C:\Windows\pcidevice
2012-08-28 03:06 - 2010-04-27 18:09 - 01605056 ____A (Atheros Communications, Inc.) C:\Windows\System32\Drivers\athw.sys
2012-08-28 03:05 - 2012-08-28 03:05 - 00000000 ____A C:\Windows\setuperr.log
2012-08-28 01:57 - 2012-08-28 05:02 - 00000000 ____D C:\Windows\LastGood.Tmp
2012-08-27 23:02 - 2012-08-27 23:10 - 06955968 ____A (Microsoft Corporation) C:\Documents and Settings\Owner\Desktop\Silverlight.exe
2012-08-26 23:24 - 2012-08-26 23:24 - 00000063 ___AC C:\1.html
2012-08-26 22:56 - 2012-09-02 00:41 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\PriceGong
2012-08-26 22:54 - 2012-08-26 22:58 - 00000782 ____A C:\Documents and Settings\Owner\Desktop\SpeedItup Free.lnk
2012-08-26 22:53 - 2012-08-27 22:33 - 00000000 ____D C:\Program Files\SpeedItup Free
2012-08-26 22:50 - 2012-08-26 22:51 - 00000000 ____D C:\Program Files\PriceGong
2012-08-26 22:42 - 2012-08-26 22:42 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\DefaultTab
2012-08-26 21:38 - 2012-08-26 21:38 - 01654976 ____A (W3i, LLC) C:\Documents and Settings\Owner\Desktop\mplayer_tuguu_1271.exe
2012-08-25 15:10 - 2012-08-25 15:10 - 20980010 ____A C:\Documents and Settings\Owner\Desktop\dwa552_drivers_170.zip
2012-08-25 13:36 - 2012-08-25 13:36 - 00000000 ____D C:\Program Files\Copy of Microsoft Security Client
2012-08-25 13:34 - 2012-08-25 13:34 - 00000000 ____D C:\Program Files\Copy of ArcSoft
2012-08-21 16:34 - 2012-08-21 16:34 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-2-toDownload.exe
2012-08-21 16:31 - 2012-08-21 16:32 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-3-toDownload.exe
2012-08-16 15:35 - 2012-08-25 13:27 - 00000000 ____D C:\Documents and Settings\Owner\Desktop\pics
2012-08-16 05:16 - 2012-08-16 05:16 - 00013332 ____A C:\Windows\KB2731847.log
2012-08-16 05:08 - 2012-08-16 05:09 - 00011942 ____A C:\Windows\KB2723135.log
2012-08-16 05:01 - 2012-08-16 05:05 - 00016405 ____A C:\Windows\KB2722913-IE8.log
2012-08-15 22:25 - 2012-08-16 05:18 - 00018547 ____A C:\Windows\KB2712808.log
2012-08-15 22:25 - 2012-08-16 05:10 - 00018161 ____A C:\Windows\KB2705219.log
2012-08-14 15:48 - 2012-08-14 15:48 - 09826504 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerInstaller.exe
2012-08-08 18:17 - 2012-08-08 18:20 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\vlc
2012-08-08 18:14 - 2012-08-27 18:16 - 00000000 ____D C:\Program Files\VideoLAN
2012-08-08 18:14 - 2012-08-08 18:14 - 00033958 ____A C:\Documents and Settings\All Users\Application Data\uninstaller.exe
2012-08-08 18:14 - 2012-08-08 18:14 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\WeCareReminder
2012-08-08 18:13 - 2012-08-08 18:13 - 00000000 ____D C:\Program Files\Yontoo
2012-08-08 18:12 - 2012-08-08 18:12 - 00000000 ____D C:\Documents and Settings\Owner\Local Settings\Application Data\TNT2
2012-08-08 18:10 - 2012-08-08 18:11 - 34294688 ____A C:\Documents and Settings\Owner\Desktop\vlcmediaplayer-setup.exe
2012-08-08 17:44 - 2012-08-08 17:44 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\TelevisionFanatic
2012-08-08 14:21 - 2012-08-08 14:21 - 00000000 ____D C:\Program Files\TelevisionFanatic
2012-08-05 02:55 - 2012-08-27 18:55 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\Teleca
2012-08-05 02:54 - 2012-08-27 18:55 - 00000000 ____D C:\Program Files\Common Files\Teleca Shared
2012-08-05 02:53 - 2012-08-27 18:56 - 00000000 ____D C:\Program Files\HTC
2012-08-05 02:53 - 2012-08-05 02:53 - 00012188 ____A C:\Windows\DPINST.LOG
============ 3 Months Modified Files ========================
2012-09-02 19:56 - 2005-12-08 07:39 - 00263824 ____A C:\Windows\System32\FNTCACHE.DAT
2012-09-02 00:49 - 2012-09-02 00:49 - 00010048 ____N C:\bootex.log
2012-09-01 23:48 - 2012-07-22 15:23 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2012-09-01 23:09 - 2005-12-08 15:47 - 01225068 ____A C:\Windows\WindowsUpdate.log
2012-09-01 10:48 - 2005-12-08 15:52 - 00032460 ____A C:\Windows\SchedLgU.Txt
2012-08-31 13:57 - 2009-10-26 14:45 - 00118272 __ASH C:\Documents and Settings\Owner\Desktop\Thumbs.db
2012-08-30 05:07 - 2005-12-08 07:40 - 00511862 ____A C:\Windows\System32\PerfStringBackup.INI
2012-08-29 05:01 - 2011-10-28 19:27 - 00023894 ___AC C:\Windows\KB2564958.log
2012-08-28 05:05 - 2012-07-22 10:52 - 00025551 ____A C:\Windows\KB2695962.log
2012-08-28 05:05 - 2012-01-10 13:19 - 00019556 ___AC C:\Windows\KB2618451.log
2012-08-28 03:08 - 2011-02-08 13:06 - 00262354 ____A C:\Windows\setupapi.log
2012-08-28 03:07 - 2012-08-28 03:07 - 00000641 ____A C:\Documents and Settings\All Users\Desktop\Wireless Connection Manager.lnk
2012-08-28 03:05 - 2012-08-28 03:05 - 00000000 ____A C:\Windows\setuperr.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00538508 ___AC C:\Windows\FaxSetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00259985 ___AC C:\Windows\ocgen.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00206798 ___AC C:\Windows\tsoc.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00177944 ___AC C:\Windows\comsetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00108289 ___AC C:\Windows\ntdtcsetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00084785 ___AC C:\Windows\iis6.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00029881 ___AC C:\Windows\ocmsn.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00027047 ___AC C:\Windows\msgsocm.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00001917 ____A C:\Windows\imsins.log
2012-08-27 23:10 - 2012-08-27 23:02 - 06955968 ____A (Microsoft Corporation) C:\Documents and Settings\Owner\Desktop\Silverlight.exe
2012-08-27 22:43 - 2012-07-22 10:46 - 00000384 ___AH C:\Windows\Tasks\Microsoft Antimalware Scheduled Scan.job
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\Owner\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\NetworkService\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\LocalService\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2012-08-27 22:33 - 2005-12-08 07:42 - 00000159 ____A C:\Windows\wiadebug.log
2012-08-27 22:33 - 2005-12-08 07:42 - 00000049 ____A C:\Windows\wiaservc.log
2012-08-27 22:33 - 2004-08-04 08:00 - 00002206 ____A C:\Windows\System32\wpa.dbl
2012-08-27 19:41 - 2005-12-08 15:52 - 00000278 ___SH C:\Documents and Settings\Owner\ntuser.ini
2012-08-27 18:49 - 2006-01-22 15:33 - 00067216 ___AC C:\Documents and Settings\Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2012-08-26 23:24 - 2012-08-26 23:24 - 00000063 ___AC C:\1.html
2012-08-26 22:58 - 2012-08-26 22:54 - 00000782 ____A C:\Documents and Settings\Owner\Desktop\SpeedItup Free.lnk
2012-08-26 21:38 - 2012-08-26 21:38 - 01654976 ____A (W3i, LLC) C:\Documents and Settings\Owner\Desktop\mplayer_tuguu_1271.exe
2012-08-26 06:51 - 2009-11-04 14:24 - 00000456 ____A C:\Windows\Tasks\Driver Robot.job
2012-08-25 15:10 - 2012-08-25 15:10 - 20980010 ____A C:\Documents and Settings\Owner\Desktop\dwa552_drivers_170.zip
2012-08-25 14:10 - 2011-02-08 13:06 - 00000671 ____A C:\Windows\setupact.log
2012-08-25 13:32 - 2006-10-09 02:49 - 00020992 ___AC C:\Documents and Settings\Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-08-21 16:34 - 2012-08-21 16:34 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-2-toDownload.exe
2012-08-21 16:32 - 2012-08-21 16:31 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-3-toDownload.exe
2012-08-21 01:22 - 2011-06-17 19:47 - 00003627 ___AC C:\Windows\wmsetup.log
2012-08-16 05:18 - 2012-08-15 22:25 - 00018547 ____A C:\Windows\KB2712808.log
2012-08-16 05:18 - 2011-02-09 05:00 - 00001374 ____A C:\Windows\imsins.BAK
2012-08-16 05:16 - 2012-08-16 05:16 - 00013332 ____A C:\Windows\KB2731847.log
2012-08-16 05:11 - 2005-12-10 12:01 - 59884088 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2012-08-16 05:10 - 2012-08-15 22:25 - 00018161 ____A C:\Windows\KB2705219.log
2012-08-16 05:10 - 2011-02-09 05:01 - 00034972 ___AC C:\Windows\updspapi.log
2012-08-16 05:09 - 2012-08-16 05:08 - 00011942 ____A C:\Windows\KB2723135.log
2012-08-16 05:05 - 2012-08-16 05:01 - 00016405 ____A C:\Windows\KB2722913-IE8.log
2012-08-14 15:48 - 2012-08-14 15:48 - 09826504 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerInstaller.exe
2012-08-14 15:48 - 2012-07-22 15:23 - 00426184 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2012-08-14 15:48 - 2011-05-26 09:00 - 00070344 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2012-08-08 18:14 - 2012-08-08 18:14 - 00033958 ____A C:\Documents and Settings\All Users\Application Data\uninstaller.exe
2012-08-08 18:11 - 2012-08-08 18:10 - 34294688 ____A C:\Documents and Settings\Owner\Desktop\vlcmediaplayer-setup.exe
2012-08-05 22:10 - 2009-10-26 15:00 - 01577188 __ASH C:\Documents and Settings\Owner\My Documents\Thumbs.db
2012-08-05 14:38 - 2006-10-09 02:49 - 00007680 _ASHC C:\Windows\Thumbs.db
2012-08-05 02:53 - 2012-08-05 02:53 - 00012188 ____A C:\Windows\DPINST.LOG
2012-07-23 01:28 - 2012-07-23 01:28 - 00001867 ____A C:\Documents and Settings\Owner\Desktop\Spotify.lnk
2012-07-22 17:55 - 2012-07-22 17:55 - 00000104 ____A C:\Documents and Settings\Owner\Desktop\Internet.lnk
2012-07-22 17:37 - 2012-07-22 17:37 - 00000932 ____A C:\Documents and Settings\Owner\My Documents\My Sharing Folders.lnk
2012-07-22 17:11 - 2004-08-04 08:00 - 00000578 ____A C:\Windows\win.ini
2012-07-22 11:34 - 2012-07-22 01:28 - 00026529 ____A C:\Windows\KB2707511.log
2012-07-22 11:33 - 2012-07-22 11:32 - 00013956 ____A C:\Windows\KB2659262.log
2012-07-22 11:27 - 2012-07-22 01:28 - 00024096 ____A C:\Windows\KB2691442.log
2012-07-22 11:17 - 2012-07-22 11:17 - 00016109 ____A C:\Windows\KB2718523.log
2012-07-22 11:17 - 2012-07-22 01:27 - 00023075 ____A C:\Windows\KB2655992.log
2012-07-22 11:08 - 2012-07-22 11:07 - 00015151 ____A C:\Windows\KB2686509.log
2012-07-22 11:05 - 2012-07-22 01:27 - 00022297 ____A C:\Windows\KB2719985.log
2012-07-22 11:04 - 2012-07-22 01:27 - 00021700 ____A C:\Windows\KB2718704.log
2012-07-22 10:50 - 2012-07-22 10:47 - 00018232 ____A C:\Windows\KB2699988-IE8.log
2012-07-22 10:46 - 2012-07-22 10:45 - 00009855 ____A C:\Windows\KB2685939.log
2012-07-22 10:43 - 2012-07-22 01:24 - 00016374 ____A C:\Windows\KB2653956.log
2012-07-22 10:39 - 2012-07-22 10:37 - 00009536 ____A C:\Windows\KB2698365.log
2012-07-22 10:36 - 2011-02-04 16:19 - 00001945 ___AC C:\Windows\epplauncher.mif
2012-07-22 05:28 - 2012-07-22 01:20 - 00021257 ____A C:\Windows\KB2676562.log
2012-07-12 10:29 - 2012-07-12 10:29 - 04534272 ____A C:\Documents and Settings\All Users\Application Data\ReadOnlyInstaller.msi
2012-07-06 09:58 - 2012-07-06 09:58 - 00078336 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\browser.dll
2012-07-06 09:58 - 2008-10-24 07:27 - 00337920 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\netapi32.dll
2012-07-06 09:58 - 2004-08-04 08:00 - 00337920 ____A (Microsoft Corporation) C:\Windows\System32\netapi32.dll
2012-07-06 09:58 - 2004-08-04 08:00 - 00078336 ____A (Microsoft Corporation) C:\Windows\System32\browser.dll
2012-07-04 10:05 - 2011-08-11 12:30 - 00139784 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\rdpwd.sys
2012-07-04 10:05 - 2005-12-08 15:44 - 00139784 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpwd.sys
2012-07-03 09:40 - 2008-10-15 18:04 - 01866112 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\win32k.sys
2012-07-03 09:40 - 2004-08-04 08:00 - 01866112 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-07-03 01:19 - 2007-05-09 15:16 - 11111424 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ieframe.dll
2012-07-03 01:19 - 2006-10-17 17:33 - 11111424 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-07-02 13:49 - 2012-07-22 01:27 - 00521728 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\jsdbgui.dll
2012-07-02 13:49 - 2010-06-11 21:23 - 00743424 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iedvtool.dll
2012-07-02 13:49 - 2009-08-30 22:02 - 00247808 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ieproxy.dll
2012-07-02 13:49 - 2009-08-30 22:02 - 00012800 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\xpshims.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 02000384 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iertutil.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 00629760 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\msfeeds.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 00055296 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\msfeedsbs.dll
2012-07-02 13:49 - 2006-10-17 17:33 - 00629760 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2012-07-02 13:49 - 2006-10-17 17:33 - 00055296 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2012-07-02 13:49 - 2006-10-17 16:57 - 02000384 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 06008320 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\mshtml.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 06008320 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 01469440 ____N (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-07-02 13:49 - 2004-08-04 08:00 - 01469440 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\inetcpl.cpl
2012-07-02 13:49 - 2004-08-04 08:00 - 01212416 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\urlmon.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 01212416 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00916992 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\wininet.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00916992 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00611840 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mstime.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00611840 ____A (Microsoft Corporation) C:\Windows\System32\mstime.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00387584 ____N (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00387584 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iedkcs32.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00206848 ____N (Microsoft Corporation) C:\Windows\System32\occache.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00206848 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\occache.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00184320 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iepeers.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00105984 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\url.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00105984 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00067072 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mshtmled.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00043520 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\licmgr10.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00043520 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00025600 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\jsproxy.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00025600 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-07-02 08:05 - 2004-08-04 08:00 - 00385024 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2012-07-02 08:05 - 2004-08-04 08:00 - 00174080 ____N (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2012-07-02 08:05 - 2004-08-04 08:00 - 00174080 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ie4uinit.exe
2012-06-08 10:26 - 2008-06-17 15:02 - 08462848 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\shell32.dll
2012-06-08 10:26 - 2004-08-04 08:00 - 08462848 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll
2012-06-06 22:59 - 2012-06-06 22:59 - 01070152 ____A (Microsoft Corporation) C:\Windows\System32\MSCOMCTL.OCX
2012-06-05 11:50 - 2008-11-11 22:42 - 01172480 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\msxml3.dll
2012-06-05 11:50 - 2008-09-20 02:22 - 01372672 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\msxml6.dll
2012-06-05 11:50 - 2007-05-15 18:43 - 01372672 ____A (Microsoft Corporation) C:\Windows\System32\msxml6.dll
2012-06-05 11:50 - 2004-08-04 08:00 - 01172480 ____A (Microsoft Corporation) C:\Windows\System32\msxml3.dll
==================== Known DLLs (Whitelisted) =================
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== EXE ASSOCIATION =====================
HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK
==================== Restore Points (XP) =====================
RP: -> 2012-09-01 22:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP73
RP: -> 2012-08-31 22:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP72
RP: -> 2012-08-31 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP71
RP: -> 2012-08-30 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP70
RP: -> 2012-08-30 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP69
RP: -> 2012-08-29 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP68
RP: -> 2012-08-29 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP67
RP: -> 2012-08-28 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP66
RP: -> 2012-08-28 05:01 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP65
RP: -> 2012-08-28 03:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP64
RP: -> 2012-08-28 03:07 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP63
RP: -> 2012-08-28 02:50 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP62
RP: -> 2012-08-28 01:59 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP61
RP: -> 2012-08-27 22:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP60
RP: -> 2012-08-27 19:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP59
RP: -> 2012-08-27 18:51 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP58
RP: -> 2012-08-27 17:37 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP57
RP: -> 2012-08-27 13:36 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP56
RP: -> 2012-08-26 22:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP55
RP: -> 2012-08-26 16:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP54
RP: -> 2012-08-26 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP53
RP: -> 2012-08-26 03:59 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP52
RP: -> 2012-08-25 16:21 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP51
RP: -> 2012-08-25 15:13 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP50
RP: -> 2012-08-24 12:55 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP49
RP: -> 2012-08-23 12:51 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP48
RP: -> 2012-08-22 18:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP47
RP: -> 2012-08-21 15:12 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP46
RP: -> 2012-08-20 15:09 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP45
RP: -> 2012-08-19 03:21 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP44
RP: -> 2012-08-18 16:28 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP43
RP: -> 2012-08-17 15:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP42
RP: -> 2012-08-16 12:28 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP41
RP: -> 2012-08-16 05:01 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP40
RP: -> 2012-08-15 12:31 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP39
RP: -> 2012-08-14 12:27 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP38
RP: -> 2012-08-13 12:30 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP37
RP: -> 2012-08-13 04:32 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP36
RP: -> 2012-08-12 02:48 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP35
RP: -> 2012-08-11 15:33 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP34
RP: -> 2012-08-10 02:46 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP33
RP: -> 2012-08-09 02:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP32
RP: -> 2012-08-08 02:45 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP31
RP: -> 2012-08-07 02:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP30
RP: -> 2012-08-06 02:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP29
RP: -> 2012-08-05 02:54 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP28
RP: -> 2012-08-05 02:53 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP27
RP: -> 2012-08-05 02:39 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP26
RP: -> 2012-08-02 21:10 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP25
RP: -> 2012-08-01 21:17 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP24
RP: -> 2012-08-01 18:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP23
RP: -> 2012-07-31 12:32 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP22
RP: -> 2012-07-30 11:43 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP21
RP: -> 2012-07-29 11:40 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP20
RP: -> 2012-07-29 04:18 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP19
RP: -> 2012-07-28 11:44 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP18
RP: -> 2012-07-27 20:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP17
RP: -> 2012-07-26 16:43 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP16
RP: -> 2012-07-25 13:26 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP15
RP: -> 2012-07-24 13:24 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP14
RP: -> 2012-07-23 12:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP13
==================== Memory info ===========================
Percentage of memory in use: 39%
Total physical RAM: 510 MB
Available physical RAM: 306.73 MB
Total Pagefile: 457.71 MB
Available Pagefile: 336.56 MB
Total Virtual: 2047.88 MB
Available Virtual: 2002.18 MB
==================== Partitions ============================
2 Drive b: (RAMDisk) (Fixed) (Total:0.06 GB) (Free:0.06 GB) NTFS
3 Drive c: () (Fixed) (Total:71.46 GB) (Free:50.48 GB) NTFS ==>[Drive with boot components (Windows XP)]
5 Drive e: () (Removable) (Total:0.95 GB) (Free:0.71 GB) FAT
6 Drive x: (ReatogoPE) (CDROM) (Total:0.43 GB) (Free:0 GB) CDFS
Disk ### Status Size Free Dyn Gpt
-------- ---------- ------- ------- --- ---
Disk 0 Online 74 GB 0 B
Partitions of Disk 0:
===============
Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 OEM 39 MB 32 KB
Partition 2 Primary 71 GB 39 MB
Partition 3 Unknown 3075 MB 71 GB
==================================================================================
Disk: 0
Partition 1
Type : DE
Hidden: Yes
Active: No
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 FAT Partition 39 MB Healthy
==================================================================================
Disk: 0
Partition 2
Type : 07
Hidden: No
Active: Yes
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 3 C NTFS Partition 71 GB Healthy
==================================================================================
Disk: 0
Partition 3
Type : DB
Hidden: Yes
Active: No
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 4 FAT32 Partition 3075 MB Healthy
==================================================================================
==================== End Of Log =============================
#7
Posted 03 September 2012 - 07:11 AM
Essexboy
-
- Retired Staff
-
- 69,964 posts
GeekU Moderator
Download the attached fixlist.txt to the same USB drive as FRST
[attachment=60224:fixlist.txt]
Restart the computer as before to the Reatogo desktop
Run FRST and click Fix
A log will be generated on the USB drive
Reboot to normal windows
Once there then please the FRST fix log
[attachment=60224:fixlist.txt]
Restart the computer as before to the Reatogo desktop
Run FRST and click Fix
A log will be generated on the USB drive
Reboot to normal windows
Once there then please the FRST fix log
#8
Posted 03 September 2012 - 03:13 PM
devdyer
- Topic Starter
-
- Member
-
- 24 posts
Member
Still the blue screen
#9
Posted 03 September 2012 - 05:57 PM
devdyer
- Topic Starter
-
- Member
-
- 24 posts
Member
The log is pasted below. However I'm still getting the blue screen when I try to reboot to normal windows.
Scan result of Farbar Recovery Scan Tool (FRST written by Farbar) Version: 02-09-2012 03
Ran by SYSTEM at 03-09-2012 18:06:28
Running from D:\
Microsoft Windows XP (X86) OS Language: English(US)
The current controlset is ControlSet003
==================== Registry (Whitelisted) ===================
HKLM\...\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k [x]
HKLM\...\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey [931200 2012-03-26] (Microsoft Corporation)
HKLM\...\Run: [TelevisionFanatic Search Scope Monitor] "C:\PROGRA~1\TELEVI~2\bar\1.bin\64srchmn.exe" /m=2 /w /h [x]
HKLM\...\Run: [TelevisionFanatic Browser Plugin Loader] C:\PROGRA~1\TELEVI~2\bar\1.bin\64brmon.exe [x]
HKLM\...\Run: [SpeetItUpFree] "C:\Program Files\SpeedItup Free\speeditupfree.exe" [x]
HKU\Owner\...\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe [15360 2008-04-13] (Microsoft Corporation)
HKU\Owner\...\Run: [Search Protection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe [x]
HKU\Owner\...\Run: [EPSON NX100 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEDA.EXE /FU "C:\WINDOWS\TEMP\E_S1C1.tmp" /EF "HKCU" [188928 2008-02-04] (SEIKO EPSON CORPORATION)
HKU\Owner\...\Run: [Software Informer] "C:\Program Files\Software Informer\softinfo.exe" -autorun [x]
HKU\Owner\...\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h [x]
HKU\Owner\...\Run: [Spotify] "C:\Documents and Settings\Owner\Application Data\Spotify\Spotify.exe" /uri spotify:autostart [5576408 2012-08-20] (Spotify Ltd)
HKU\Owner\...\Run: [Spotify Web Helper] "C:\Documents and Settings\Owner\Application Data\Spotify\Data\SpotifyWebHelper.exe" [1193176 2012-08-20] ()
Winlogon\Notify\!SASWinLogon: C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [X]
Winlogon\Notify\igfxcui: igfxsrvc.dll (Intel Corporation)
Winlogon\Notify\WgaLogon: WgaLogon.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Wireless Connection Manager.lnk
ShortcutTarget: Wireless Connection Manager.lnk -> C:\Program Files\D-Link\DWA-552 revA\wirelesscm.exe (D-Link Corp.)
========================== Services (Whitelisted) ========================
2 DefaultTabUpdate; "C:\Documents and Settings\Owner\Application Data\DefaultTab\DefaultTab\DTUpdate.exe" [107520 2012-08-26] ()
2 Eventlog; C:\Windows\System32\services.exe [110592 2009-02-06] (Microsoft Corporation)
3 jswpsapi; C:\Program Files\D-Link\DWA-552 revA\jswpsapi.exe [356433 2008-09-26] (Atheros Communications, Inc.)
3 PD1171Srv; C:\WINDOWS\system32\P1171Srv.exe [20480 2004-02-03] (Creative Technology Ltd.)
2 WLSVC; C:\Program Files\D-Link\DWA-552 revA\WLSVC.exe [167936 2009-02-11] ()
3 AppMgmt; C:\Windows\System32\appmgmts.dll [x]
3 FontCache3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [x]
3 idsvc; "c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe" [x]
2 JavaQuickStarterService; "C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf" [x]
2 MsMpSvc; "c:\Program Files\Microsoft Security Client\MsMpEng.exe" [x]
4 NetTcpPortSharing; "c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe" [x]
2 TelevisionFanaticService; C:\PROGRA~1\TELEVI~2\bar\1.bin\64barsvc.exe [x]
==================== Drivers (Whitelisted) ===================
3 AR5416; C:\Windows\System32\DRIVERS\athw.sys [1605056 2010-04-27] (Atheros Communications, Inc.)
3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
1 Cdr4_2K; C:\Windows\System32\Drivers\Cdr4_2K.sys [52624 2009-08-29] (Adaptec)
2 Cdralw2k; C:\Windows\System32\Drivers\Cdralw2k.sys [21913 2009-08-29] (Adaptec)
1 eeCtrl; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [385072 2008-01-19] (Symantec Corporation)
3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [49664 2006-04-12] (HP)
3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16496 2006-04-12] (HP)
3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21568 2006-04-12] (HP)
3 ialm; C:\Windows\System32\DRIVERS\ialmnt5.sys [737874 2004-08-20] (Intel Corporation)
3 JSWSCIMD; C:\Windows\System32\DRIVERS\jswscimd.sys [57440 2008-09-25] (Atheros Communications, Inc.)
3 LVUSBSta; C:\Windows\System32\drivers\LVUSBSta.sys [41752 2008-07-26] (Logitech Inc.)
3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys [38224 2010-12-20] (Malwarebytes Corporation)
0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [171064 2012-03-20] (Microsoft Corporation)
3 NABTSFEC; C:\Windows\System32\DRIVERS\NABTSFEC.sys [85248 2008-04-13] (Microsoft Corporation)
3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
3 pepifilter; C:\Windows\System32\DRIVERS\lv302af.sys [13848 2008-07-26] (Logitech Inc.)
3 PID_PEPI; C:\Windows\System32\DRIVERS\LV302V32.SYS [2570520 2008-07-26] (Logitech Inc.)
1 SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12872 2010-02-17] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
1 SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67656 2010-05-10] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
3 senfilt; C:\Windows\System32\drivers\senfilt.sys [732928 2004-09-17] (Creative Technology Ltd.)
3 SLIP; C:\Windows\System32\DRIVERS\SLIP.sys [11136 2008-04-13] (Microsoft Corporation)
3 streamip; C:\Windows\System32\DRIVERS\StreamIP.sys [15232 2008-04-13] (Microsoft Corporation)
2 WLNdis50; C:\Windows\System32\DRIVERS\wlndis50.sys [20480 2008-02-27] ()
3 WSTCODEC; C:\Windows\System32\DRIVERS\WSTCODEC.SYS [19200 2008-04-13] (Microsoft Corporation)
4 Abiosdsk; [x]
4 abp480n5; [x]
4 adpu160m; [x]
4 Aha154x; [x]
4 aic78u2; [x]
4 aic78xx; [x]
4 AliIde; [x]
4 amsint; [x]
4 asc; [x]
4 asc3350p; [x]
4 asc3550; [x]
4 Atdisk; [x]
4 cd20xrnt; [x]
1 Changer; [x]
4 CmdIde; [x]
4 Cpqarray; [x]
4 dac2w2k; [x]
4 dac960nt; [x]
4 dpti2o; [x]
4 hpn; [x]
1 i2omgmt; [x]
4 i2omp; [x]
4 ini910u; [x]
1 lbrtfdc; [x]
4 mraid35x; [x]
1 PCIDump; [x]
3 PDCOMP; [x]
3 PDFRAME; [x]
3 PDRELI; [x]
3 PDRFRAME; [x]
4 perc2; [x]
4 perc2hib; [x]
0 pstjxmv; C:\Windows\System32\drivers\wfjte.sys [x]
4 ql1080; [x]
4 Ql10wnt; [x]
4 ql12160; [x]
4 ql1240; [x]
4 ql1280; [x]
4 Simbad; [x]
4 Sparrow; [x]
4 symc810; [x]
4 symc8xx; [x]
3 SymIM; C:\Windows\System32\DRIVERS\SymIM.sys [x]
3 SymIMMP; C:\Windows\System32\DRIVERS\SymIM.sys [x]
4 sym_hi; [x]
4 sym_u3; [x]
4 TosIde; [x]
4 ultra; [x]
4 ViaIde; [x]
3 WDICA; [x]
2 zumbus; C:\Windows\System32\DRIVERS\zumbus.sys [x]
==================== NetSvcs (Whitelisted) =================
============ One Month Created Files and Folders ==============
2012-09-02 19:04 - 2012-09-02 19:04 - 00000000 ___DC C:\FRST
2012-09-02 00:49 - 2012-09-02 00:49 - 00010048 ____N C:\bootex.log
2012-09-02 00:47 - 2012-09-02 00:47 - 00000000 __SHD C:\found.000
2012-08-30 05:06 - 2012-08-31 05:29 - 00000000 ____D C:\Windows\System32\XPSViewer
2012-08-30 05:05 - 2012-08-30 05:05 - 00000000 ____D C:\Program Files\MSBuild
2012-08-30 05:04 - 2012-08-30 05:04 - 00000000 ____D C:\Program Files\Reference Assemblies
2012-08-28 03:49 - 2012-08-28 03:50 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2012-08-28 03:07 - 2012-08-28 03:07 - 00000641 ____A C:\Documents and Settings\All Users\Desktop\Wireless Connection Manager.lnk
2012-08-28 03:07 - 2012-08-28 03:07 - 00000000 ____D C:\Program Files\D-Link
2012-08-28 03:07 - 2012-08-28 03:07 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\D-Link
2012-08-28 03:07 - 2008-10-01 03:55 - 00035967 ____A C:\Windows\System32\jswscimdp.cat
2012-08-28 03:07 - 2008-10-01 03:55 - 00035538 ____A C:\Windows\System32\jswscimd.cat
2012-08-28 03:07 - 2008-09-26 21:01 - 00405582 ____A (Atheros Communications, Inc.) C:\Windows\System32\jswscsup.dll
2012-08-28 03:07 - 2008-09-25 21:07 - 00057440 ____A (Atheros Communications, Inc.) C:\Windows\System32\jswscimd.sys
2012-08-28 03:07 - 2008-09-25 21:07 - 00057440 ____A (Atheros Communications, Inc.) C:\Windows\System32\Drivers\jswscimd.sys
2012-08-28 03:07 - 2008-09-08 13:54 - 00010667 ____A C:\Windows\System32\wlndis50.cat
2012-08-28 03:07 - 2008-02-27 12:54 - 00020480 ____A () C:\Windows\System32\wlndis50.sys
2012-08-28 03:07 - 2008-02-27 12:54 - 00020480 ____A () C:\Windows\System32\Drivers\WLNdis50.sys
2012-08-28 03:06 - 2012-08-28 03:06 - 00000000 ____D C:\Windows\pcidevice
2012-08-28 03:06 - 2010-04-27 18:09 - 01605056 ____A (Atheros Communications, Inc.) C:\Windows\System32\Drivers\athw.sys
2012-08-28 03:05 - 2012-08-28 03:05 - 00000000 ____A C:\Windows\setuperr.log
2012-08-28 01:57 - 2012-08-28 05:02 - 00000000 ____D C:\Windows\LastGood.Tmp
2012-08-27 23:02 - 2012-08-27 23:10 - 06955968 ____A (Microsoft Corporation) C:\Documents and Settings\Owner\Desktop\Silverlight.exe
2012-08-26 23:24 - 2012-08-26 23:24 - 00000063 ___AC C:\1.html
2012-08-26 22:50 - 2012-08-26 22:51 - 00000000 ____D C:\Program Files\PriceGong
2012-08-26 22:42 - 2012-08-26 22:42 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\DefaultTab
2012-08-26 21:38 - 2012-08-26 21:38 - 01654976 ____A (W3i, LLC) C:\Documents and Settings\Owner\Desktop\mplayer_tuguu_1271.exe
2012-08-25 15:10 - 2012-08-25 15:10 - 20980010 ____A C:\Documents and Settings\Owner\Desktop\dwa552_drivers_170.zip
2012-08-25 13:36 - 2012-08-25 13:36 - 00000000 ____D C:\Program Files\Copy of Microsoft Security Client
2012-08-25 13:34 - 2012-08-25 13:34 - 00000000 ____D C:\Program Files\Copy of ArcSoft
2012-08-21 16:34 - 2012-08-21 16:34 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-2-toDownload.exe
2012-08-21 16:31 - 2012-08-21 16:32 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-3-toDownload.exe
2012-08-16 15:35 - 2012-08-25 13:27 - 00000000 ____D C:\Documents and Settings\Owner\Desktop\pics
2012-08-16 05:16 - 2012-08-16 05:16 - 00013332 ____A C:\Windows\KB2731847.log
2012-08-16 05:08 - 2012-08-16 05:09 - 00011942 ____A C:\Windows\KB2723135.log
2012-08-16 05:01 - 2012-08-16 05:05 - 00016405 ____A C:\Windows\KB2722913-IE8.log
2012-08-15 22:25 - 2012-08-16 05:18 - 00018547 ____A C:\Windows\KB2712808.log
2012-08-15 22:25 - 2012-08-16 05:10 - 00018161 ____A C:\Windows\KB2705219.log
2012-08-14 15:48 - 2012-08-14 15:48 - 09826504 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerInstaller.exe
2012-08-08 18:17 - 2012-08-08 18:20 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\vlc
2012-08-08 18:14 - 2012-08-27 18:16 - 00000000 ____D C:\Program Files\VideoLAN
2012-08-08 18:12 - 2012-08-08 18:12 - 00000000 ____D C:\Documents and Settings\Owner\Local Settings\Application Data\TNT2
2012-08-08 18:10 - 2012-08-08 18:11 - 34294688 ____A C:\Documents and Settings\Owner\Desktop\vlcmediaplayer-setup.exe
2012-08-05 02:55 - 2012-08-27 18:55 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\Teleca
2012-08-05 02:54 - 2012-08-27 18:55 - 00000000 ____D C:\Program Files\Common Files\Teleca Shared
2012-08-05 02:53 - 2012-08-27 18:56 - 00000000 ____D C:\Program Files\HTC
2012-08-05 02:53 - 2012-08-05 02:53 - 00012188 ____A C:\Windows\DPINST.LOG
============ 3 Months Modified Files ========================
2012-09-03 18:57 - 2005-12-08 07:39 - 00263824 ____A C:\Windows\System32\FNTCACHE.DAT
2012-09-02 00:49 - 2012-09-02 00:49 - 00010048 ____N C:\bootex.log
2012-09-01 23:48 - 2012-07-22 15:23 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2012-09-01 23:09 - 2005-12-08 15:47 - 01225068 ____A C:\Windows\WindowsUpdate.log
2012-09-01 10:48 - 2005-12-08 15:52 - 00032460 ____A C:\Windows\SchedLgU.Txt
2012-08-31 13:57 - 2009-10-26 14:45 - 00118272 __ASH C:\Documents and Settings\Owner\Desktop\Thumbs.db
2012-08-30 05:07 - 2005-12-08 07:40 - 00511862 ____A C:\Windows\System32\PerfStringBackup.INI
2012-08-29 05:01 - 2011-10-28 19:27 - 00023894 ___AC C:\Windows\KB2564958.log
2012-08-28 05:05 - 2012-07-22 10:52 - 00025551 ____A C:\Windows\KB2695962.log
2012-08-28 05:05 - 2012-01-10 13:19 - 00019556 ___AC C:\Windows\KB2618451.log
2012-08-28 03:08 - 2011-02-08 13:06 - 00262354 ____A C:\Windows\setupapi.log
2012-08-28 03:07 - 2012-08-28 03:07 - 00000641 ____A C:\Documents and Settings\All Users\Desktop\Wireless Connection Manager.lnk
2012-08-28 03:05 - 2012-08-28 03:05 - 00000000 ____A C:\Windows\setuperr.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00538508 ___AC C:\Windows\FaxSetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00259985 ___AC C:\Windows\ocgen.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00206798 ___AC C:\Windows\tsoc.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00177944 ___AC C:\Windows\comsetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00108289 ___AC C:\Windows\ntdtcsetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00084785 ___AC C:\Windows\iis6.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00029881 ___AC C:\Windows\ocmsn.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00027047 ___AC C:\Windows\msgsocm.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00001917 ____A C:\Windows\imsins.log
2012-08-27 23:10 - 2012-08-27 23:02 - 06955968 ____A (Microsoft Corporation) C:\Documents and Settings\Owner\Desktop\Silverlight.exe
2012-08-27 22:43 - 2012-07-22 10:46 - 00000384 ___AH C:\Windows\Tasks\Microsoft Antimalware Scheduled Scan.job
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\Owner\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\NetworkService\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\LocalService\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2012-08-27 22:33 - 2005-12-08 07:42 - 00000159 ____A C:\Windows\wiadebug.log
2012-08-27 22:33 - 2005-12-08 07:42 - 00000049 ____A C:\Windows\wiaservc.log
2012-08-27 22:33 - 2004-08-04 08:00 - 00002206 ____A C:\Windows\System32\wpa.dbl
2012-08-27 19:41 - 2005-12-08 15:52 - 00000278 ___SH C:\Documents and Settings\Owner\ntuser.ini
2012-08-27 18:49 - 2006-01-22 15:33 - 00067216 ___AC C:\Documents and Settings\Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2012-08-26 23:24 - 2012-08-26 23:24 - 00000063 ___AC C:\1.html
2012-08-26 21:38 - 2012-08-26 21:38 - 01654976 ____A (W3i, LLC) C:\Documents and Settings\Owner\Desktop\mplayer_tuguu_1271.exe
2012-08-26 06:51 - 2009-11-04 14:24 - 00000456 ____A C:\Windows\Tasks\Driver Robot.job
2012-08-25 15:10 - 2012-08-25 15:10 - 20980010 ____A C:\Documents and Settings\Owner\Desktop\dwa552_drivers_170.zip
2012-08-25 14:10 - 2011-02-08 13:06 - 00000671 ____A C:\Windows\setupact.log
2012-08-25 13:32 - 2006-10-09 02:49 - 00020992 ___AC C:\Documents and Settings\Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-08-21 16:34 - 2012-08-21 16:34 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-2-toDownload.exe
2012-08-21 16:32 - 2012-08-21 16:31 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-3-toDownload.exe
2012-08-21 01:22 - 2011-06-17 19:47 - 00003627 ___AC C:\Windows\wmsetup.log
2012-08-16 05:18 - 2012-08-15 22:25 - 00018547 ____A C:\Windows\KB2712808.log
2012-08-16 05:18 - 2011-02-09 05:00 - 00001374 ____A C:\Windows\imsins.BAK
2012-08-16 05:16 - 2012-08-16 05:16 - 00013332 ____A C:\Windows\KB2731847.log
2012-08-16 05:11 - 2005-12-10 12:01 - 59884088 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2012-08-16 05:10 - 2012-08-15 22:25 - 00018161 ____A C:\Windows\KB2705219.log
2012-08-16 05:10 - 2011-02-09 05:01 - 00034972 ___AC C:\Windows\updspapi.log
2012-08-16 05:09 - 2012-08-16 05:08 - 00011942 ____A C:\Windows\KB2723135.log
2012-08-16 05:05 - 2012-08-16 05:01 - 00016405 ____A C:\Windows\KB2722913-IE8.log
2012-08-14 15:48 - 2012-08-14 15:48 - 09826504 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerInstaller.exe
2012-08-14 15:48 - 2012-07-22 15:23 - 00426184 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2012-08-14 15:48 - 2011-05-26 09:00 - 00070344 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2012-08-08 18:11 - 2012-08-08 18:10 - 34294688 ____A C:\Documents and Settings\Owner\Desktop\vlcmediaplayer-setup.exe
2012-08-05 22:10 - 2009-10-26 15:00 - 01577188 __ASH C:\Documents and Settings\Owner\My Documents\Thumbs.db
2012-08-05 14:38 - 2006-10-09 02:49 - 00007680 _ASHC C:\Windows\Thumbs.db
2012-08-05 02:53 - 2012-08-05 02:53 - 00012188 ____A C:\Windows\DPINST.LOG
2012-07-23 01:28 - 2012-07-23 01:28 - 00001867 ____A C:\Documents and Settings\Owner\Desktop\Spotify.lnk
2012-07-22 17:55 - 2012-07-22 17:55 - 00000104 ____A C:\Documents and Settings\Owner\Desktop\Internet.lnk
2012-07-22 17:37 - 2012-07-22 17:37 - 00000932 ____A C:\Documents and Settings\Owner\My Documents\My Sharing Folders.lnk
2012-07-22 17:11 - 2004-08-04 08:00 - 00000578 ____A C:\Windows\win.ini
2012-07-22 11:34 - 2012-07-22 01:28 - 00026529 ____A C:\Windows\KB2707511.log
2012-07-22 11:33 - 2012-07-22 11:32 - 00013956 ____A C:\Windows\KB2659262.log
2012-07-22 11:27 - 2012-07-22 01:28 - 00024096 ____A C:\Windows\KB2691442.log
2012-07-22 11:17 - 2012-07-22 11:17 - 00016109 ____A C:\Windows\KB2718523.log
2012-07-22 11:17 - 2012-07-22 01:27 - 00023075 ____A C:\Windows\KB2655992.log
2012-07-22 11:08 - 2012-07-22 11:07 - 00015151 ____A C:\Windows\KB2686509.log
2012-07-22 11:05 - 2012-07-22 01:27 - 00022297 ____A C:\Windows\KB2719985.log
2012-07-22 11:04 - 2012-07-22 01:27 - 00021700 ____A C:\Windows\KB2718704.log
2012-07-22 10:50 - 2012-07-22 10:47 - 00018232 ____A C:\Windows\KB2699988-IE8.log
2012-07-22 10:46 - 2012-07-22 10:45 - 00009855 ____A C:\Windows\KB2685939.log
2012-07-22 10:43 - 2012-07-22 01:24 - 00016374 ____A C:\Windows\KB2653956.log
2012-07-22 10:39 - 2012-07-22 10:37 - 00009536 ____A C:\Windows\KB2698365.log
2012-07-22 10:36 - 2011-02-04 16:19 - 00001945 ___AC C:\Windows\epplauncher.mif
2012-07-22 05:28 - 2012-07-22 01:20 - 00021257 ____A C:\Windows\KB2676562.log
2012-07-12 10:29 - 2012-07-12 10:29 - 04534272 ____A C:\Documents and Settings\All Users\Application Data\ReadOnlyInstaller.msi
2012-07-06 09:58 - 2012-07-06 09:58 - 00078336 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\browser.dll
2012-07-06 09:58 - 2008-10-24 07:27 - 00337920 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\netapi32.dll
2012-07-06 09:58 - 2004-08-04 08:00 - 00337920 ____A (Microsoft Corporation) C:\Windows\System32\netapi32.dll
2012-07-06 09:58 - 2004-08-04 08:00 - 00078336 ____A (Microsoft Corporation) C:\Windows\System32\browser.dll
2012-07-04 10:05 - 2011-08-11 12:30 - 00139784 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\rdpwd.sys
2012-07-04 10:05 - 2005-12-08 15:44 - 00139784 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpwd.sys
2012-07-03 09:40 - 2008-10-15 18:04 - 01866112 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\win32k.sys
2012-07-03 09:40 - 2004-08-04 08:00 - 01866112 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-07-03 01:19 - 2007-05-09 15:16 - 11111424 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ieframe.dll
2012-07-03 01:19 - 2006-10-17 17:33 - 11111424 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-07-02 13:49 - 2012-07-22 01:27 - 00521728 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\jsdbgui.dll
2012-07-02 13:49 - 2010-06-11 21:23 - 00743424 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iedvtool.dll
2012-07-02 13:49 - 2009-08-30 22:02 - 00247808 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ieproxy.dll
2012-07-02 13:49 - 2009-08-30 22:02 - 00012800 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\xpshims.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 02000384 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iertutil.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 00629760 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\msfeeds.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 00055296 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\msfeedsbs.dll
2012-07-02 13:49 - 2006-10-17 17:33 - 00629760 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2012-07-02 13:49 - 2006-10-17 17:33 - 00055296 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2012-07-02 13:49 - 2006-10-17 16:57 - 02000384 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 06008320 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\mshtml.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 06008320 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 01469440 ____N (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-07-02 13:49 - 2004-08-04 08:00 - 01469440 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\inetcpl.cpl
2012-07-02 13:49 - 2004-08-04 08:00 - 01212416 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\urlmon.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 01212416 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00916992 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\wininet.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00916992 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00611840 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mstime.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00611840 ____A (Microsoft Corporation) C:\Windows\System32\mstime.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00387584 ____N (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00387584 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iedkcs32.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00206848 ____N (Microsoft Corporation) C:\Windows\System32\occache.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00206848 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\occache.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00184320 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iepeers.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00105984 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\url.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00105984 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00067072 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mshtmled.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00043520 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\licmgr10.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00043520 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00025600 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\jsproxy.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00025600 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-07-02 08:05 - 2004-08-04 08:00 - 00385024 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2012-07-02 08:05 - 2004-08-04 08:00 - 00174080 ____N (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2012-07-02 08:05 - 2004-08-04 08:00 - 00174080 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ie4uinit.exe
2012-06-08 10:26 - 2008-06-17 15:02 - 08462848 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\shell32.dll
2012-06-08 10:26 - 2004-08-04 08:00 - 08462848 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll
2012-06-06 22:59 - 2012-06-06 22:59 - 01070152 ____A (Microsoft Corporation) C:\Windows\System32\MSCOMCTL.OCX
==================== Known DLLs (Whitelisted) =================
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== EXE ASSOCIATION =====================
HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK
==================== Restore Points (XP) =====================
RP: -> 2012-09-01 22:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP73
RP: -> 2012-08-31 22:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP72
RP: -> 2012-08-31 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP71
RP: -> 2012-08-30 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP70
RP: -> 2012-08-30 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP69
RP: -> 2012-08-29 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP68
RP: -> 2012-08-29 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP67
RP: -> 2012-08-28 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP66
RP: -> 2012-08-28 05:01 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP65
RP: -> 2012-08-28 03:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP64
RP: -> 2012-08-28 03:07 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP63
RP: -> 2012-08-28 02:50 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP62
RP: -> 2012-08-28 01:59 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP61
RP: -> 2012-08-27 22:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP60
RP: -> 2012-08-27 19:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP59
RP: -> 2012-08-27 18:51 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP58
RP: -> 2012-08-27 17:37 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP57
RP: -> 2012-08-27 13:36 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP56
RP: -> 2012-08-26 22:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP55
RP: -> 2012-08-26 16:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP54
RP: -> 2012-08-26 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP53
RP: -> 2012-08-26 03:59 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP52
RP: -> 2012-08-25 16:21 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP51
RP: -> 2012-08-25 15:13 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP50
RP: -> 2012-08-24 12:55 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP49
RP: -> 2012-08-23 12:51 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP48
RP: -> 2012-08-22 18:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP47
RP: -> 2012-08-21 15:12 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP46
RP: -> 2012-08-20 15:09 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP45
RP: -> 2012-08-19 03:21 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP44
RP: -> 2012-08-18 16:28 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP43
RP: -> 2012-08-17 15:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP42
RP: -> 2012-08-16 12:28 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP41
RP: -> 2012-08-16 05:01 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP40
RP: -> 2012-08-15 12:31 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP39
RP: -> 2012-08-14 12:27 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP38
RP: -> 2012-08-13 12:30 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP37
RP: -> 2012-08-13 04:32 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP36
RP: -> 2012-08-12 02:48 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP35
RP: -> 2012-08-11 15:33 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP34
RP: -> 2012-08-10 02:46 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP33
RP: -> 2012-08-09 02:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP32
RP: -> 2012-08-08 02:45 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP31
RP: -> 2012-08-07 02:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP30
RP: -> 2012-08-06 02:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP29
RP: -> 2012-08-05 02:54 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP28
RP: -> 2012-08-05 02:53 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP27
RP: -> 2012-08-05 02:39 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP26
RP: -> 2012-08-02 21:10 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP25
RP: -> 2012-08-01 21:17 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP24
RP: -> 2012-08-01 18:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP23
RP: -> 2012-07-31 12:32 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP22
RP: -> 2012-07-30 11:43 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP21
RP: -> 2012-07-29 11:40 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP20
RP: -> 2012-07-29 04:18 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP19
RP: -> 2012-07-28 11:44 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP18
RP: -> 2012-07-27 20:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP17
RP: -> 2012-07-26 16:43 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP16
RP: -> 2012-07-25 13:26 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP15
RP: -> 2012-07-24 13:24 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP14
RP: -> 2012-07-23 12:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP13
==================== Memory info ===========================
Percentage of memory in use: 39%
Total physical RAM: 510 MB
Available physical RAM: 307.02 MB
Total Pagefile: 457.72 MB
Available Pagefile: 336.61 MB
Total Virtual: 2047.88 MB
Available Virtual: 2003.18 MB
==================== Partitions ============================
2 Drive b: (RAMDisk) (Fixed) (Total:0.06 GB) (Free:0.06 GB) NTFS
3 Drive c: () (Fixed) (Total:71.46 GB) (Free:50.48 GB) NTFS ==>[Drive with boot components (Windows XP)]
4 Drive d: () (Removable) (Total:0.95 GB) (Free:0.71 GB) FAT
7 Drive x: (ReatogoPE) (CDROM) (Total:0.43 GB) (Free:0 GB) CDFS
Disk ### Status Size Free Dyn Gpt
-------- ---------- ------- ------- --- ---
Disk 0 Online 74 GB 0 B
Partitions of Disk 0:
===============
Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 OEM 39 MB 32 KB
Partition 2 Primary 71 GB 39 MB
Partition 3 Unknown 3075 MB 71 GB
==================================================================================
Disk: 0
Partition 1
Type : DE
Hidden: Yes
Active: No
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 FAT Partition 39 MB Healthy
==================================================================================
Disk: 0
Partition 2
Type : 07
Hidden: No
Active: Yes
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 3 C NTFS Partition 71 GB Healthy
==================================================================================
Disk: 0
Partition 3
Type : DB
Hidden: Yes
Active: No
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 4 FAT32 Partition 3075 MB Healthy
==================================================================================
==================== End Of Log =============================
Scan result of Farbar Recovery Scan Tool (FRST written by Farbar) Version: 02-09-2012 03
Ran by SYSTEM at 03-09-2012 18:06:28
Running from D:\
Microsoft Windows XP (X86) OS Language: English(US)
The current controlset is ControlSet003
==================== Registry (Whitelisted) ===================
HKLM\...\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k [x]
HKLM\...\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey [931200 2012-03-26] (Microsoft Corporation)
HKLM\...\Run: [TelevisionFanatic Search Scope Monitor] "C:\PROGRA~1\TELEVI~2\bar\1.bin\64srchmn.exe" /m=2 /w /h [x]
HKLM\...\Run: [TelevisionFanatic Browser Plugin Loader] C:\PROGRA~1\TELEVI~2\bar\1.bin\64brmon.exe [x]
HKLM\...\Run: [SpeetItUpFree] "C:\Program Files\SpeedItup Free\speeditupfree.exe" [x]
HKU\Owner\...\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe [15360 2008-04-13] (Microsoft Corporation)
HKU\Owner\...\Run: [Search Protection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe [x]
HKU\Owner\...\Run: [EPSON NX100 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEDA.EXE /FU "C:\WINDOWS\TEMP\E_S1C1.tmp" /EF "HKCU" [188928 2008-02-04] (SEIKO EPSON CORPORATION)
HKU\Owner\...\Run: [Software Informer] "C:\Program Files\Software Informer\softinfo.exe" -autorun [x]
HKU\Owner\...\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h [x]
HKU\Owner\...\Run: [Spotify] "C:\Documents and Settings\Owner\Application Data\Spotify\Spotify.exe" /uri spotify:autostart [5576408 2012-08-20] (Spotify Ltd)
HKU\Owner\...\Run: [Spotify Web Helper] "C:\Documents and Settings\Owner\Application Data\Spotify\Data\SpotifyWebHelper.exe" [1193176 2012-08-20] ()
Winlogon\Notify\!SASWinLogon: C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [X]
Winlogon\Notify\igfxcui: igfxsrvc.dll (Intel Corporation)
Winlogon\Notify\WgaLogon: WgaLogon.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Wireless Connection Manager.lnk
ShortcutTarget: Wireless Connection Manager.lnk -> C:\Program Files\D-Link\DWA-552 revA\wirelesscm.exe (D-Link Corp.)
========================== Services (Whitelisted) ========================
2 DefaultTabUpdate; "C:\Documents and Settings\Owner\Application Data\DefaultTab\DefaultTab\DTUpdate.exe" [107520 2012-08-26] ()
2 Eventlog; C:\Windows\System32\services.exe [110592 2009-02-06] (Microsoft Corporation)
3 jswpsapi; C:\Program Files\D-Link\DWA-552 revA\jswpsapi.exe [356433 2008-09-26] (Atheros Communications, Inc.)
3 PD1171Srv; C:\WINDOWS\system32\P1171Srv.exe [20480 2004-02-03] (Creative Technology Ltd.)
2 WLSVC; C:\Program Files\D-Link\DWA-552 revA\WLSVC.exe [167936 2009-02-11] ()
3 AppMgmt; C:\Windows\System32\appmgmts.dll [x]
3 FontCache3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [x]
3 idsvc; "c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe" [x]
2 JavaQuickStarterService; "C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf" [x]
2 MsMpSvc; "c:\Program Files\Microsoft Security Client\MsMpEng.exe" [x]
4 NetTcpPortSharing; "c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe" [x]
2 TelevisionFanaticService; C:\PROGRA~1\TELEVI~2\bar\1.bin\64barsvc.exe [x]
==================== Drivers (Whitelisted) ===================
3 AR5416; C:\Windows\System32\DRIVERS\athw.sys [1605056 2010-04-27] (Atheros Communications, Inc.)
3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
1 Cdr4_2K; C:\Windows\System32\Drivers\Cdr4_2K.sys [52624 2009-08-29] (Adaptec)
2 Cdralw2k; C:\Windows\System32\Drivers\Cdralw2k.sys [21913 2009-08-29] (Adaptec)
1 eeCtrl; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [385072 2008-01-19] (Symantec Corporation)
3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [49664 2006-04-12] (HP)
3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16496 2006-04-12] (HP)
3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21568 2006-04-12] (HP)
3 ialm; C:\Windows\System32\DRIVERS\ialmnt5.sys [737874 2004-08-20] (Intel Corporation)
3 JSWSCIMD; C:\Windows\System32\DRIVERS\jswscimd.sys [57440 2008-09-25] (Atheros Communications, Inc.)
3 LVUSBSta; C:\Windows\System32\drivers\LVUSBSta.sys [41752 2008-07-26] (Logitech Inc.)
3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys [38224 2010-12-20] (Malwarebytes Corporation)
0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [171064 2012-03-20] (Microsoft Corporation)
3 NABTSFEC; C:\Windows\System32\DRIVERS\NABTSFEC.sys [85248 2008-04-13] (Microsoft Corporation)
3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
3 pepifilter; C:\Windows\System32\DRIVERS\lv302af.sys [13848 2008-07-26] (Logitech Inc.)
3 PID_PEPI; C:\Windows\System32\DRIVERS\LV302V32.SYS [2570520 2008-07-26] (Logitech Inc.)
1 SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12872 2010-02-17] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
1 SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67656 2010-05-10] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
3 senfilt; C:\Windows\System32\drivers\senfilt.sys [732928 2004-09-17] (Creative Technology Ltd.)
3 SLIP; C:\Windows\System32\DRIVERS\SLIP.sys [11136 2008-04-13] (Microsoft Corporation)
3 streamip; C:\Windows\System32\DRIVERS\StreamIP.sys [15232 2008-04-13] (Microsoft Corporation)
2 WLNdis50; C:\Windows\System32\DRIVERS\wlndis50.sys [20480 2008-02-27] ()
3 WSTCODEC; C:\Windows\System32\DRIVERS\WSTCODEC.SYS [19200 2008-04-13] (Microsoft Corporation)
4 Abiosdsk; [x]
4 abp480n5; [x]
4 adpu160m; [x]
4 Aha154x; [x]
4 aic78u2; [x]
4 aic78xx; [x]
4 AliIde; [x]
4 amsint; [x]
4 asc; [x]
4 asc3350p; [x]
4 asc3550; [x]
4 Atdisk; [x]
4 cd20xrnt; [x]
1 Changer; [x]
4 CmdIde; [x]
4 Cpqarray; [x]
4 dac2w2k; [x]
4 dac960nt; [x]
4 dpti2o; [x]
4 hpn; [x]
1 i2omgmt; [x]
4 i2omp; [x]
4 ini910u; [x]
1 lbrtfdc; [x]
4 mraid35x; [x]
1 PCIDump; [x]
3 PDCOMP; [x]
3 PDFRAME; [x]
3 PDRELI; [x]
3 PDRFRAME; [x]
4 perc2; [x]
4 perc2hib; [x]
0 pstjxmv; C:\Windows\System32\drivers\wfjte.sys [x]
4 ql1080; [x]
4 Ql10wnt; [x]
4 ql12160; [x]
4 ql1240; [x]
4 ql1280; [x]
4 Simbad; [x]
4 Sparrow; [x]
4 symc810; [x]
4 symc8xx; [x]
3 SymIM; C:\Windows\System32\DRIVERS\SymIM.sys [x]
3 SymIMMP; C:\Windows\System32\DRIVERS\SymIM.sys [x]
4 sym_hi; [x]
4 sym_u3; [x]
4 TosIde; [x]
4 ultra; [x]
4 ViaIde; [x]
3 WDICA; [x]
2 zumbus; C:\Windows\System32\DRIVERS\zumbus.sys [x]
==================== NetSvcs (Whitelisted) =================
============ One Month Created Files and Folders ==============
2012-09-02 19:04 - 2012-09-02 19:04 - 00000000 ___DC C:\FRST
2012-09-02 00:49 - 2012-09-02 00:49 - 00010048 ____N C:\bootex.log
2012-09-02 00:47 - 2012-09-02 00:47 - 00000000 __SHD C:\found.000
2012-08-30 05:06 - 2012-08-31 05:29 - 00000000 ____D C:\Windows\System32\XPSViewer
2012-08-30 05:05 - 2012-08-30 05:05 - 00000000 ____D C:\Program Files\MSBuild
2012-08-30 05:04 - 2012-08-30 05:04 - 00000000 ____D C:\Program Files\Reference Assemblies
2012-08-28 03:49 - 2012-08-28 03:50 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2012-08-28 03:07 - 2012-08-28 03:07 - 00000641 ____A C:\Documents and Settings\All Users\Desktop\Wireless Connection Manager.lnk
2012-08-28 03:07 - 2012-08-28 03:07 - 00000000 ____D C:\Program Files\D-Link
2012-08-28 03:07 - 2012-08-28 03:07 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\D-Link
2012-08-28 03:07 - 2008-10-01 03:55 - 00035967 ____A C:\Windows\System32\jswscimdp.cat
2012-08-28 03:07 - 2008-10-01 03:55 - 00035538 ____A C:\Windows\System32\jswscimd.cat
2012-08-28 03:07 - 2008-09-26 21:01 - 00405582 ____A (Atheros Communications, Inc.) C:\Windows\System32\jswscsup.dll
2012-08-28 03:07 - 2008-09-25 21:07 - 00057440 ____A (Atheros Communications, Inc.) C:\Windows\System32\jswscimd.sys
2012-08-28 03:07 - 2008-09-25 21:07 - 00057440 ____A (Atheros Communications, Inc.) C:\Windows\System32\Drivers\jswscimd.sys
2012-08-28 03:07 - 2008-09-08 13:54 - 00010667 ____A C:\Windows\System32\wlndis50.cat
2012-08-28 03:07 - 2008-02-27 12:54 - 00020480 ____A () C:\Windows\System32\wlndis50.sys
2012-08-28 03:07 - 2008-02-27 12:54 - 00020480 ____A () C:\Windows\System32\Drivers\WLNdis50.sys
2012-08-28 03:06 - 2012-08-28 03:06 - 00000000 ____D C:\Windows\pcidevice
2012-08-28 03:06 - 2010-04-27 18:09 - 01605056 ____A (Atheros Communications, Inc.) C:\Windows\System32\Drivers\athw.sys
2012-08-28 03:05 - 2012-08-28 03:05 - 00000000 ____A C:\Windows\setuperr.log
2012-08-28 01:57 - 2012-08-28 05:02 - 00000000 ____D C:\Windows\LastGood.Tmp
2012-08-27 23:02 - 2012-08-27 23:10 - 06955968 ____A (Microsoft Corporation) C:\Documents and Settings\Owner\Desktop\Silverlight.exe
2012-08-26 23:24 - 2012-08-26 23:24 - 00000063 ___AC C:\1.html
2012-08-26 22:50 - 2012-08-26 22:51 - 00000000 ____D C:\Program Files\PriceGong
2012-08-26 22:42 - 2012-08-26 22:42 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\DefaultTab
2012-08-26 21:38 - 2012-08-26 21:38 - 01654976 ____A (W3i, LLC) C:\Documents and Settings\Owner\Desktop\mplayer_tuguu_1271.exe
2012-08-25 15:10 - 2012-08-25 15:10 - 20980010 ____A C:\Documents and Settings\Owner\Desktop\dwa552_drivers_170.zip
2012-08-25 13:36 - 2012-08-25 13:36 - 00000000 ____D C:\Program Files\Copy of Microsoft Security Client
2012-08-25 13:34 - 2012-08-25 13:34 - 00000000 ____D C:\Program Files\Copy of ArcSoft
2012-08-21 16:34 - 2012-08-21 16:34 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-2-toDownload.exe
2012-08-21 16:31 - 2012-08-21 16:32 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-3-toDownload.exe
2012-08-16 15:35 - 2012-08-25 13:27 - 00000000 ____D C:\Documents and Settings\Owner\Desktop\pics
2012-08-16 05:16 - 2012-08-16 05:16 - 00013332 ____A C:\Windows\KB2731847.log
2012-08-16 05:08 - 2012-08-16 05:09 - 00011942 ____A C:\Windows\KB2723135.log
2012-08-16 05:01 - 2012-08-16 05:05 - 00016405 ____A C:\Windows\KB2722913-IE8.log
2012-08-15 22:25 - 2012-08-16 05:18 - 00018547 ____A C:\Windows\KB2712808.log
2012-08-15 22:25 - 2012-08-16 05:10 - 00018161 ____A C:\Windows\KB2705219.log
2012-08-14 15:48 - 2012-08-14 15:48 - 09826504 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerInstaller.exe
2012-08-08 18:17 - 2012-08-08 18:20 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\vlc
2012-08-08 18:14 - 2012-08-27 18:16 - 00000000 ____D C:\Program Files\VideoLAN
2012-08-08 18:12 - 2012-08-08 18:12 - 00000000 ____D C:\Documents and Settings\Owner\Local Settings\Application Data\TNT2
2012-08-08 18:10 - 2012-08-08 18:11 - 34294688 ____A C:\Documents and Settings\Owner\Desktop\vlcmediaplayer-setup.exe
2012-08-05 02:55 - 2012-08-27 18:55 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\Teleca
2012-08-05 02:54 - 2012-08-27 18:55 - 00000000 ____D C:\Program Files\Common Files\Teleca Shared
2012-08-05 02:53 - 2012-08-27 18:56 - 00000000 ____D C:\Program Files\HTC
2012-08-05 02:53 - 2012-08-05 02:53 - 00012188 ____A C:\Windows\DPINST.LOG
============ 3 Months Modified Files ========================
2012-09-03 18:57 - 2005-12-08 07:39 - 00263824 ____A C:\Windows\System32\FNTCACHE.DAT
2012-09-02 00:49 - 2012-09-02 00:49 - 00010048 ____N C:\bootex.log
2012-09-01 23:48 - 2012-07-22 15:23 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2012-09-01 23:09 - 2005-12-08 15:47 - 01225068 ____A C:\Windows\WindowsUpdate.log
2012-09-01 10:48 - 2005-12-08 15:52 - 00032460 ____A C:\Windows\SchedLgU.Txt
2012-08-31 13:57 - 2009-10-26 14:45 - 00118272 __ASH C:\Documents and Settings\Owner\Desktop\Thumbs.db
2012-08-30 05:07 - 2005-12-08 07:40 - 00511862 ____A C:\Windows\System32\PerfStringBackup.INI
2012-08-29 05:01 - 2011-10-28 19:27 - 00023894 ___AC C:\Windows\KB2564958.log
2012-08-28 05:05 - 2012-07-22 10:52 - 00025551 ____A C:\Windows\KB2695962.log
2012-08-28 05:05 - 2012-01-10 13:19 - 00019556 ___AC C:\Windows\KB2618451.log
2012-08-28 03:08 - 2011-02-08 13:06 - 00262354 ____A C:\Windows\setupapi.log
2012-08-28 03:07 - 2012-08-28 03:07 - 00000641 ____A C:\Documents and Settings\All Users\Desktop\Wireless Connection Manager.lnk
2012-08-28 03:05 - 2012-08-28 03:05 - 00000000 ____A C:\Windows\setuperr.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00538508 ___AC C:\Windows\FaxSetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00259985 ___AC C:\Windows\ocgen.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00206798 ___AC C:\Windows\tsoc.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00177944 ___AC C:\Windows\comsetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00108289 ___AC C:\Windows\ntdtcsetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00084785 ___AC C:\Windows\iis6.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00029881 ___AC C:\Windows\ocmsn.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00027047 ___AC C:\Windows\msgsocm.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00001917 ____A C:\Windows\imsins.log
2012-08-27 23:10 - 2012-08-27 23:02 - 06955968 ____A (Microsoft Corporation) C:\Documents and Settings\Owner\Desktop\Silverlight.exe
2012-08-27 22:43 - 2012-07-22 10:46 - 00000384 ___AH C:\Windows\Tasks\Microsoft Antimalware Scheduled Scan.job
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\Owner\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\NetworkService\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\LocalService\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2012-08-27 22:33 - 2005-12-08 07:42 - 00000159 ____A C:\Windows\wiadebug.log
2012-08-27 22:33 - 2005-12-08 07:42 - 00000049 ____A C:\Windows\wiaservc.log
2012-08-27 22:33 - 2004-08-04 08:00 - 00002206 ____A C:\Windows\System32\wpa.dbl
2012-08-27 19:41 - 2005-12-08 15:52 - 00000278 ___SH C:\Documents and Settings\Owner\ntuser.ini
2012-08-27 18:49 - 2006-01-22 15:33 - 00067216 ___AC C:\Documents and Settings\Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2012-08-26 23:24 - 2012-08-26 23:24 - 00000063 ___AC C:\1.html
2012-08-26 21:38 - 2012-08-26 21:38 - 01654976 ____A (W3i, LLC) C:\Documents and Settings\Owner\Desktop\mplayer_tuguu_1271.exe
2012-08-26 06:51 - 2009-11-04 14:24 - 00000456 ____A C:\Windows\Tasks\Driver Robot.job
2012-08-25 15:10 - 2012-08-25 15:10 - 20980010 ____A C:\Documents and Settings\Owner\Desktop\dwa552_drivers_170.zip
2012-08-25 14:10 - 2011-02-08 13:06 - 00000671 ____A C:\Windows\setupact.log
2012-08-25 13:32 - 2006-10-09 02:49 - 00020992 ___AC C:\Documents and Settings\Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-08-21 16:34 - 2012-08-21 16:34 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-2-toDownload.exe
2012-08-21 16:32 - 2012-08-21 16:31 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-3-toDownload.exe
2012-08-21 01:22 - 2011-06-17 19:47 - 00003627 ___AC C:\Windows\wmsetup.log
2012-08-16 05:18 - 2012-08-15 22:25 - 00018547 ____A C:\Windows\KB2712808.log
2012-08-16 05:18 - 2011-02-09 05:00 - 00001374 ____A C:\Windows\imsins.BAK
2012-08-16 05:16 - 2012-08-16 05:16 - 00013332 ____A C:\Windows\KB2731847.log
2012-08-16 05:11 - 2005-12-10 12:01 - 59884088 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2012-08-16 05:10 - 2012-08-15 22:25 - 00018161 ____A C:\Windows\KB2705219.log
2012-08-16 05:10 - 2011-02-09 05:01 - 00034972 ___AC C:\Windows\updspapi.log
2012-08-16 05:09 - 2012-08-16 05:08 - 00011942 ____A C:\Windows\KB2723135.log
2012-08-16 05:05 - 2012-08-16 05:01 - 00016405 ____A C:\Windows\KB2722913-IE8.log
2012-08-14 15:48 - 2012-08-14 15:48 - 09826504 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerInstaller.exe
2012-08-14 15:48 - 2012-07-22 15:23 - 00426184 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2012-08-14 15:48 - 2011-05-26 09:00 - 00070344 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2012-08-08 18:11 - 2012-08-08 18:10 - 34294688 ____A C:\Documents and Settings\Owner\Desktop\vlcmediaplayer-setup.exe
2012-08-05 22:10 - 2009-10-26 15:00 - 01577188 __ASH C:\Documents and Settings\Owner\My Documents\Thumbs.db
2012-08-05 14:38 - 2006-10-09 02:49 - 00007680 _ASHC C:\Windows\Thumbs.db
2012-08-05 02:53 - 2012-08-05 02:53 - 00012188 ____A C:\Windows\DPINST.LOG
2012-07-23 01:28 - 2012-07-23 01:28 - 00001867 ____A C:\Documents and Settings\Owner\Desktop\Spotify.lnk
2012-07-22 17:55 - 2012-07-22 17:55 - 00000104 ____A C:\Documents and Settings\Owner\Desktop\Internet.lnk
2012-07-22 17:37 - 2012-07-22 17:37 - 00000932 ____A C:\Documents and Settings\Owner\My Documents\My Sharing Folders.lnk
2012-07-22 17:11 - 2004-08-04 08:00 - 00000578 ____A C:\Windows\win.ini
2012-07-22 11:34 - 2012-07-22 01:28 - 00026529 ____A C:\Windows\KB2707511.log
2012-07-22 11:33 - 2012-07-22 11:32 - 00013956 ____A C:\Windows\KB2659262.log
2012-07-22 11:27 - 2012-07-22 01:28 - 00024096 ____A C:\Windows\KB2691442.log
2012-07-22 11:17 - 2012-07-22 11:17 - 00016109 ____A C:\Windows\KB2718523.log
2012-07-22 11:17 - 2012-07-22 01:27 - 00023075 ____A C:\Windows\KB2655992.log
2012-07-22 11:08 - 2012-07-22 11:07 - 00015151 ____A C:\Windows\KB2686509.log
2012-07-22 11:05 - 2012-07-22 01:27 - 00022297 ____A C:\Windows\KB2719985.log
2012-07-22 11:04 - 2012-07-22 01:27 - 00021700 ____A C:\Windows\KB2718704.log
2012-07-22 10:50 - 2012-07-22 10:47 - 00018232 ____A C:\Windows\KB2699988-IE8.log
2012-07-22 10:46 - 2012-07-22 10:45 - 00009855 ____A C:\Windows\KB2685939.log
2012-07-22 10:43 - 2012-07-22 01:24 - 00016374 ____A C:\Windows\KB2653956.log
2012-07-22 10:39 - 2012-07-22 10:37 - 00009536 ____A C:\Windows\KB2698365.log
2012-07-22 10:36 - 2011-02-04 16:19 - 00001945 ___AC C:\Windows\epplauncher.mif
2012-07-22 05:28 - 2012-07-22 01:20 - 00021257 ____A C:\Windows\KB2676562.log
2012-07-12 10:29 - 2012-07-12 10:29 - 04534272 ____A C:\Documents and Settings\All Users\Application Data\ReadOnlyInstaller.msi
2012-07-06 09:58 - 2012-07-06 09:58 - 00078336 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\browser.dll
2012-07-06 09:58 - 2008-10-24 07:27 - 00337920 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\netapi32.dll
2012-07-06 09:58 - 2004-08-04 08:00 - 00337920 ____A (Microsoft Corporation) C:\Windows\System32\netapi32.dll
2012-07-06 09:58 - 2004-08-04 08:00 - 00078336 ____A (Microsoft Corporation) C:\Windows\System32\browser.dll
2012-07-04 10:05 - 2011-08-11 12:30 - 00139784 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\rdpwd.sys
2012-07-04 10:05 - 2005-12-08 15:44 - 00139784 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpwd.sys
2012-07-03 09:40 - 2008-10-15 18:04 - 01866112 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\win32k.sys
2012-07-03 09:40 - 2004-08-04 08:00 - 01866112 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-07-03 01:19 - 2007-05-09 15:16 - 11111424 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ieframe.dll
2012-07-03 01:19 - 2006-10-17 17:33 - 11111424 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-07-02 13:49 - 2012-07-22 01:27 - 00521728 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\jsdbgui.dll
2012-07-02 13:49 - 2010-06-11 21:23 - 00743424 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iedvtool.dll
2012-07-02 13:49 - 2009-08-30 22:02 - 00247808 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ieproxy.dll
2012-07-02 13:49 - 2009-08-30 22:02 - 00012800 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\xpshims.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 02000384 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iertutil.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 00629760 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\msfeeds.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 00055296 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\msfeedsbs.dll
2012-07-02 13:49 - 2006-10-17 17:33 - 00629760 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2012-07-02 13:49 - 2006-10-17 17:33 - 00055296 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2012-07-02 13:49 - 2006-10-17 16:57 - 02000384 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 06008320 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\mshtml.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 06008320 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 01469440 ____N (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-07-02 13:49 - 2004-08-04 08:00 - 01469440 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\inetcpl.cpl
2012-07-02 13:49 - 2004-08-04 08:00 - 01212416 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\urlmon.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 01212416 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00916992 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\wininet.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00916992 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00611840 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mstime.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00611840 ____A (Microsoft Corporation) C:\Windows\System32\mstime.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00387584 ____N (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00387584 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iedkcs32.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00206848 ____N (Microsoft Corporation) C:\Windows\System32\occache.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00206848 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\occache.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00184320 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iepeers.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00105984 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\url.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00105984 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00067072 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mshtmled.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00043520 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\licmgr10.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00043520 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00025600 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\jsproxy.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00025600 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-07-02 08:05 - 2004-08-04 08:00 - 00385024 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2012-07-02 08:05 - 2004-08-04 08:00 - 00174080 ____N (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2012-07-02 08:05 - 2004-08-04 08:00 - 00174080 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ie4uinit.exe
2012-06-08 10:26 - 2008-06-17 15:02 - 08462848 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\shell32.dll
2012-06-08 10:26 - 2004-08-04 08:00 - 08462848 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll
2012-06-06 22:59 - 2012-06-06 22:59 - 01070152 ____A (Microsoft Corporation) C:\Windows\System32\MSCOMCTL.OCX
==================== Known DLLs (Whitelisted) =================
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== EXE ASSOCIATION =====================
HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK
==================== Restore Points (XP) =====================
RP: -> 2012-09-01 22:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP73
RP: -> 2012-08-31 22:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP72
RP: -> 2012-08-31 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP71
RP: -> 2012-08-30 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP70
RP: -> 2012-08-30 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP69
RP: -> 2012-08-29 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP68
RP: -> 2012-08-29 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP67
RP: -> 2012-08-28 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP66
RP: -> 2012-08-28 05:01 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP65
RP: -> 2012-08-28 03:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP64
RP: -> 2012-08-28 03:07 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP63
RP: -> 2012-08-28 02:50 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP62
RP: -> 2012-08-28 01:59 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP61
RP: -> 2012-08-27 22:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP60
RP: -> 2012-08-27 19:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP59
RP: -> 2012-08-27 18:51 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP58
RP: -> 2012-08-27 17:37 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP57
RP: -> 2012-08-27 13:36 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP56
RP: -> 2012-08-26 22:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP55
RP: -> 2012-08-26 16:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP54
RP: -> 2012-08-26 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP53
RP: -> 2012-08-26 03:59 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP52
RP: -> 2012-08-25 16:21 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP51
RP: -> 2012-08-25 15:13 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP50
RP: -> 2012-08-24 12:55 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP49
RP: -> 2012-08-23 12:51 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP48
RP: -> 2012-08-22 18:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP47
RP: -> 2012-08-21 15:12 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP46
RP: -> 2012-08-20 15:09 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP45
RP: -> 2012-08-19 03:21 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP44
RP: -> 2012-08-18 16:28 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP43
RP: -> 2012-08-17 15:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP42
RP: -> 2012-08-16 12:28 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP41
RP: -> 2012-08-16 05:01 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP40
RP: -> 2012-08-15 12:31 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP39
RP: -> 2012-08-14 12:27 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP38
RP: -> 2012-08-13 12:30 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP37
RP: -> 2012-08-13 04:32 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP36
RP: -> 2012-08-12 02:48 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP35
RP: -> 2012-08-11 15:33 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP34
RP: -> 2012-08-10 02:46 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP33
RP: -> 2012-08-09 02:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP32
RP: -> 2012-08-08 02:45 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP31
RP: -> 2012-08-07 02:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP30
RP: -> 2012-08-06 02:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP29
RP: -> 2012-08-05 02:54 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP28
RP: -> 2012-08-05 02:53 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP27
RP: -> 2012-08-05 02:39 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP26
RP: -> 2012-08-02 21:10 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP25
RP: -> 2012-08-01 21:17 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP24
RP: -> 2012-08-01 18:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP23
RP: -> 2012-07-31 12:32 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP22
RP: -> 2012-07-30 11:43 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP21
RP: -> 2012-07-29 11:40 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP20
RP: -> 2012-07-29 04:18 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP19
RP: -> 2012-07-28 11:44 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP18
RP: -> 2012-07-27 20:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP17
RP: -> 2012-07-26 16:43 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP16
RP: -> 2012-07-25 13:26 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP15
RP: -> 2012-07-24 13:24 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP14
RP: -> 2012-07-23 12:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP13
==================== Memory info ===========================
Percentage of memory in use: 39%
Total physical RAM: 510 MB
Available physical RAM: 307.02 MB
Total Pagefile: 457.72 MB
Available Pagefile: 336.61 MB
Total Virtual: 2047.88 MB
Available Virtual: 2003.18 MB
==================== Partitions ============================
2 Drive b: (RAMDisk) (Fixed) (Total:0.06 GB) (Free:0.06 GB) NTFS
3 Drive c: () (Fixed) (Total:71.46 GB) (Free:50.48 GB) NTFS ==>[Drive with boot components (Windows XP)]
4 Drive d: () (Removable) (Total:0.95 GB) (Free:0.71 GB) FAT
7 Drive x: (ReatogoPE) (CDROM) (Total:0.43 GB) (Free:0 GB) CDFS
Disk ### Status Size Free Dyn Gpt
-------- ---------- ------- ------- --- ---
Disk 0 Online 74 GB 0 B
Partitions of Disk 0:
===============
Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 OEM 39 MB 32 KB
Partition 2 Primary 71 GB 39 MB
Partition 3 Unknown 3075 MB 71 GB
==================================================================================
Disk: 0
Partition 1
Type : DE
Hidden: Yes
Active: No
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 FAT Partition 39 MB Healthy
==================================================================================
Disk: 0
Partition 2
Type : 07
Hidden: No
Active: Yes
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 3 C NTFS Partition 71 GB Healthy
==================================================================================
Disk: 0
Partition 3
Type : DB
Hidden: Yes
Active: No
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 4 FAT32 Partition 3075 MB Healthy
==================================================================================
==================== End Of Log =============================
#10
Posted 04 September 2012 - 07:15 AM
Essexboy
-
- Retired Staff
-
- 69,964 posts
GeekU Moderator
I will try a different restore point.. Do you have the XP disc as we may need to do a repair install
Download the attached fixlist.txt to the same USB drive as FRST
[attachment=60259:fixlist.txt]
Restart the computer as before to the recovery console... Reatogo desktop
Run FRST and click Fix
A log will be generated on the USB drive
Reboot to normal windows
Download the attached fixlist.txt to the same USB drive as FRST
[attachment=60259:fixlist.txt]
Restart the computer as before to the recovery console... Reatogo desktop
Run FRST and click Fix
A log will be generated on the USB drive
Reboot to normal windows
#11
Posted 04 September 2012 - 11:46 AM
devdyer
- Topic Starter
-
- Member
-
- 24 posts
Member
I don't have the XP discs.
I hit fix and it said there was no 'fixlog'.
I did hit 'scan' again. Here's the log:
Scan result of Farbar Recovery Scan Tool (FRST written by Farbar) Version: 02-09-2012 03
Ran by SYSTEM at 04-09-2012 16:39:42
Running from E:\
Microsoft Windows XP (X86) OS Language: English(US)
The current controlset is ControlSet003
==================== Registry (Whitelisted) ===================
HKLM\...\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k [x]
HKLM\...\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey [931200 2012-03-26] (Microsoft Corporation)
HKLM\...\Run: [TelevisionFanatic Search Scope Monitor] "C:\PROGRA~1\TELEVI~2\bar\1.bin\64srchmn.exe" /m=2 /w /h [x]
HKLM\...\Run: [TelevisionFanatic Browser Plugin Loader] C:\PROGRA~1\TELEVI~2\bar\1.bin\64brmon.exe [x]
HKLM\...\Run: [SpeetItUpFree] "C:\Program Files\SpeedItup Free\speeditupfree.exe" [x]
HKU\Owner\...\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe [15360 2008-04-13] (Microsoft Corporation)
HKU\Owner\...\Run: [Search Protection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe [x]
HKU\Owner\...\Run: [EPSON NX100 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEDA.EXE /FU "C:\WINDOWS\TEMP\E_S1C1.tmp" /EF "HKCU" [188928 2008-02-04] (SEIKO EPSON CORPORATION)
HKU\Owner\...\Run: [Software Informer] "C:\Program Files\Software Informer\softinfo.exe" -autorun [x]
HKU\Owner\...\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h [x]
HKU\Owner\...\Run: [Spotify] "C:\Documents and Settings\Owner\Application Data\Spotify\Spotify.exe" /uri spotify:autostart [5576408 2012-08-20] (Spotify Ltd)
HKU\Owner\...\Run: [Spotify Web Helper] "C:\Documents and Settings\Owner\Application Data\Spotify\Data\SpotifyWebHelper.exe" [1193176 2012-08-20] ()
Winlogon\Notify\!SASWinLogon: C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [X]
Winlogon\Notify\igfxcui: igfxsrvc.dll (Intel Corporation)
Winlogon\Notify\WgaLogon: WgaLogon.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Wireless Connection Manager.lnk
ShortcutTarget: Wireless Connection Manager.lnk -> C:\Program Files\D-Link\DWA-552 revA\wirelesscm.exe (D-Link Corp.)
========================== Services (Whitelisted) ========================
2 DefaultTabUpdate; "C:\Documents and Settings\Owner\Application Data\DefaultTab\DefaultTab\DTUpdate.exe" [107520 2012-08-26] ()
2 Eventlog; C:\Windows\System32\services.exe [110592 2009-02-06] (Microsoft Corporation)
3 jswpsapi; C:\Program Files\D-Link\DWA-552 revA\jswpsapi.exe [356433 2008-09-26] (Atheros Communications, Inc.)
3 PD1171Srv; C:\WINDOWS\system32\P1171Srv.exe [20480 2004-02-03] (Creative Technology Ltd.)
2 WLSVC; C:\Program Files\D-Link\DWA-552 revA\WLSVC.exe [167936 2009-02-11] ()
3 AppMgmt; C:\Windows\System32\appmgmts.dll [x]
3 FontCache3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [x]
3 idsvc; "c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe" [x]
2 JavaQuickStarterService; "C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf" [x]
2 MsMpSvc; "c:\Program Files\Microsoft Security Client\MsMpEng.exe" [x]
4 NetTcpPortSharing; "c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe" [x]
2 TelevisionFanaticService; C:\PROGRA~1\TELEVI~2\bar\1.bin\64barsvc.exe [x]
==================== Drivers (Whitelisted) ===================
3 AR5416; C:\Windows\System32\DRIVERS\athw.sys [1605056 2010-04-27] (Atheros Communications, Inc.)
3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
1 Cdr4_2K; C:\Windows\System32\Drivers\Cdr4_2K.sys [52624 2009-08-29] (Adaptec)
2 Cdralw2k; C:\Windows\System32\Drivers\Cdralw2k.sys [21913 2009-08-29] (Adaptec)
1 eeCtrl; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [385072 2008-01-19] (Symantec Corporation)
3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [49664 2006-04-12] (HP)
3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16496 2006-04-12] (HP)
3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21568 2006-04-12] (HP)
3 ialm; C:\Windows\System32\DRIVERS\ialmnt5.sys [737874 2004-08-20] (Intel Corporation)
3 JSWSCIMD; C:\Windows\System32\DRIVERS\jswscimd.sys [57440 2008-09-25] (Atheros Communications, Inc.)
3 LVUSBSta; C:\Windows\System32\drivers\LVUSBSta.sys [41752 2008-07-26] (Logitech Inc.)
3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys [38224 2010-12-20] (Malwarebytes Corporation)
0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [171064 2012-03-20] (Microsoft Corporation)
3 NABTSFEC; C:\Windows\System32\DRIVERS\NABTSFEC.sys [85248 2008-04-13] (Microsoft Corporation)
3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
3 pepifilter; C:\Windows\System32\DRIVERS\lv302af.sys [13848 2008-07-26] (Logitech Inc.)
3 PID_PEPI; C:\Windows\System32\DRIVERS\LV302V32.SYS [2570520 2008-07-26] (Logitech Inc.)
1 SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12872 2010-02-17] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
1 SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67656 2010-05-10] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
3 senfilt; C:\Windows\System32\drivers\senfilt.sys [732928 2004-09-17] (Creative Technology Ltd.)
3 SLIP; C:\Windows\System32\DRIVERS\SLIP.sys [11136 2008-04-13] (Microsoft Corporation)
3 streamip; C:\Windows\System32\DRIVERS\StreamIP.sys [15232 2008-04-13] (Microsoft Corporation)
2 WLNdis50; C:\Windows\System32\DRIVERS\wlndis50.sys [20480 2008-02-27] ()
3 WSTCODEC; C:\Windows\System32\DRIVERS\WSTCODEC.SYS [19200 2008-04-13] (Microsoft Corporation)
4 Abiosdsk; [x]
4 abp480n5; [x]
4 adpu160m; [x]
4 Aha154x; [x]
4 aic78u2; [x]
4 aic78xx; [x]
4 AliIde; [x]
4 amsint; [x]
4 asc; [x]
4 asc3350p; [x]
4 asc3550; [x]
4 Atdisk; [x]
4 cd20xrnt; [x]
1 Changer; [x]
4 CmdIde; [x]
4 Cpqarray; [x]
4 dac2w2k; [x]
4 dac960nt; [x]
4 dpti2o; [x]
4 hpn; [x]
1 i2omgmt; [x]
4 i2omp; [x]
4 ini910u; [x]
1 lbrtfdc; [x]
4 mraid35x; [x]
1 PCIDump; [x]
3 PDCOMP; [x]
3 PDFRAME; [x]
3 PDRELI; [x]
3 PDRFRAME; [x]
4 perc2; [x]
4 perc2hib; [x]
0 pstjxmv; C:\Windows\System32\drivers\wfjte.sys [x]
4 ql1080; [x]
4 Ql10wnt; [x]
4 ql12160; [x]
4 ql1240; [x]
4 ql1280; [x]
4 Simbad; [x]
4 Sparrow; [x]
4 symc810; [x]
4 symc8xx; [x]
3 SymIM; C:\Windows\System32\DRIVERS\SymIM.sys [x]
3 SymIMMP; C:\Windows\System32\DRIVERS\SymIM.sys [x]
4 sym_hi; [x]
4 sym_u3; [x]
4 TosIde; [x]
4 ultra; [x]
4 ViaIde; [x]
3 WDICA; [x]
2 zumbus; C:\Windows\System32\DRIVERS\zumbus.sys [x]
==================== NetSvcs (Whitelisted) =================
============ One Month Created Files and Folders ==============
2012-09-02 19:04 - 2012-09-02 19:04 - 00000000 ___DC C:\FRST
2012-09-02 00:49 - 2012-09-02 00:49 - 00010048 ____N C:\bootex.log
2012-09-02 00:47 - 2012-09-02 00:47 - 00000000 __SHD C:\found.000
2012-08-30 05:06 - 2012-08-31 05:29 - 00000000 ____D C:\Windows\System32\XPSViewer
2012-08-30 05:05 - 2012-08-30 05:05 - 00000000 ____D C:\Program Files\MSBuild
2012-08-30 05:04 - 2012-08-30 05:04 - 00000000 ____D C:\Program Files\Reference Assemblies
2012-08-28 03:49 - 2012-08-28 03:50 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2012-08-28 03:07 - 2012-08-28 03:07 - 00000641 ____A C:\Documents and Settings\All Users\Desktop\Wireless Connection Manager.lnk
2012-08-28 03:07 - 2012-08-28 03:07 - 00000000 ____D C:\Program Files\D-Link
2012-08-28 03:07 - 2012-08-28 03:07 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\D-Link
2012-08-28 03:07 - 2008-10-01 03:55 - 00035967 ____A C:\Windows\System32\jswscimdp.cat
2012-08-28 03:07 - 2008-10-01 03:55 - 00035538 ____A C:\Windows\System32\jswscimd.cat
2012-08-28 03:07 - 2008-09-26 21:01 - 00405582 ____A (Atheros Communications, Inc.) C:\Windows\System32\jswscsup.dll
2012-08-28 03:07 - 2008-09-25 21:07 - 00057440 ____A (Atheros Communications, Inc.) C:\Windows\System32\jswscimd.sys
2012-08-28 03:07 - 2008-09-25 21:07 - 00057440 ____A (Atheros Communications, Inc.) C:\Windows\System32\Drivers\jswscimd.sys
2012-08-28 03:07 - 2008-09-08 13:54 - 00010667 ____A C:\Windows\System32\wlndis50.cat
2012-08-28 03:07 - 2008-02-27 12:54 - 00020480 ____A () C:\Windows\System32\wlndis50.sys
2012-08-28 03:07 - 2008-02-27 12:54 - 00020480 ____A () C:\Windows\System32\Drivers\WLNdis50.sys
2012-08-28 03:06 - 2012-08-28 03:06 - 00000000 ____D C:\Windows\pcidevice
2012-08-28 03:06 - 2010-04-27 18:09 - 01605056 ____A (Atheros Communications, Inc.) C:\Windows\System32\Drivers\athw.sys
2012-08-28 03:05 - 2012-08-28 03:05 - 00000000 ____A C:\Windows\setuperr.log
2012-08-28 01:57 - 2012-08-28 05:02 - 00000000 ____D C:\Windows\LastGood.Tmp
2012-08-27 23:02 - 2012-08-27 23:10 - 06955968 ____A (Microsoft Corporation) C:\Documents and Settings\Owner\Desktop\Silverlight.exe
2012-08-26 23:24 - 2012-08-26 23:24 - 00000063 ___AC C:\1.html
2012-08-26 22:50 - 2012-08-26 22:51 - 00000000 ____D C:\Program Files\PriceGong
2012-08-26 22:42 - 2012-08-26 22:42 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\DefaultTab
2012-08-26 21:38 - 2012-08-26 21:38 - 01654976 ____A (W3i, LLC) C:\Documents and Settings\Owner\Desktop\mplayer_tuguu_1271.exe
2012-08-25 15:10 - 2012-08-25 15:10 - 20980010 ____A C:\Documents and Settings\Owner\Desktop\dwa552_drivers_170.zip
2012-08-25 13:36 - 2012-08-25 13:36 - 00000000 ____D C:\Program Files\Copy of Microsoft Security Client
2012-08-25 13:34 - 2012-08-25 13:34 - 00000000 ____D C:\Program Files\Copy of ArcSoft
2012-08-21 16:34 - 2012-08-21 16:34 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-2-toDownload.exe
2012-08-21 16:31 - 2012-08-21 16:32 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-3-toDownload.exe
2012-08-16 15:35 - 2012-08-25 13:27 - 00000000 ____D C:\Documents and Settings\Owner\Desktop\pics
2012-08-16 05:16 - 2012-08-16 05:16 - 00013332 ____A C:\Windows\KB2731847.log
2012-08-16 05:08 - 2012-08-16 05:09 - 00011942 ____A C:\Windows\KB2723135.log
2012-08-16 05:01 - 2012-08-16 05:05 - 00016405 ____A C:\Windows\KB2722913-IE8.log
2012-08-15 22:25 - 2012-08-16 05:18 - 00018547 ____A C:\Windows\KB2712808.log
2012-08-15 22:25 - 2012-08-16 05:10 - 00018161 ____A C:\Windows\KB2705219.log
2012-08-14 15:48 - 2012-08-14 15:48 - 09826504 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerInstaller.exe
2012-08-08 18:17 - 2012-08-08 18:20 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\vlc
2012-08-08 18:14 - 2012-08-27 18:16 - 00000000 ____D C:\Program Files\VideoLAN
2012-08-08 18:12 - 2012-08-08 18:12 - 00000000 ____D C:\Documents and Settings\Owner\Local Settings\Application Data\TNT2
2012-08-08 18:10 - 2012-08-08 18:11 - 34294688 ____A C:\Documents and Settings\Owner\Desktop\vlcmediaplayer-setup.exe
2012-08-05 02:55 - 2012-08-27 18:55 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\Teleca
2012-08-05 02:54 - 2012-08-27 18:55 - 00000000 ____D C:\Program Files\Common Files\Teleca Shared
2012-08-05 02:53 - 2012-08-27 18:56 - 00000000 ____D C:\Program Files\HTC
2012-08-05 02:53 - 2012-08-05 02:53 - 00012188 ____A C:\Windows\DPINST.LOG
============ 3 Months Modified Files ========================
2012-09-03 20:20 - 2005-12-08 07:39 - 00263824 ____A C:\Windows\System32\FNTCACHE.DAT
2012-09-02 00:49 - 2012-09-02 00:49 - 00010048 ____N C:\bootex.log
2012-09-01 23:48 - 2012-07-22 15:23 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2012-09-01 23:09 - 2005-12-08 15:47 - 01225068 ____A C:\Windows\WindowsUpdate.log
2012-09-01 10:48 - 2005-12-08 15:52 - 00032460 ____A C:\Windows\SchedLgU.Txt
2012-08-31 13:57 - 2009-10-26 14:45 - 00118272 __ASH C:\Documents and Settings\Owner\Desktop\Thumbs.db
2012-08-30 05:07 - 2005-12-08 07:40 - 00511862 ____A C:\Windows\System32\PerfStringBackup.INI
2012-08-29 05:01 - 2011-10-28 19:27 - 00023894 ___AC C:\Windows\KB2564958.log
2012-08-28 05:05 - 2012-07-22 10:52 - 00025551 ____A C:\Windows\KB2695962.log
2012-08-28 05:05 - 2012-01-10 13:19 - 00019556 ___AC C:\Windows\KB2618451.log
2012-08-28 03:08 - 2011-02-08 13:06 - 00262354 ____A C:\Windows\setupapi.log
2012-08-28 03:07 - 2012-08-28 03:07 - 00000641 ____A C:\Documents and Settings\All Users\Desktop\Wireless Connection Manager.lnk
2012-08-28 03:05 - 2012-08-28 03:05 - 00000000 ____A C:\Windows\setuperr.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00538508 ___AC C:\Windows\FaxSetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00259985 ___AC C:\Windows\ocgen.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00206798 ___AC C:\Windows\tsoc.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00177944 ___AC C:\Windows\comsetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00108289 ___AC C:\Windows\ntdtcsetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00084785 ___AC C:\Windows\iis6.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00029881 ___AC C:\Windows\ocmsn.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00027047 ___AC C:\Windows\msgsocm.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00001917 ____A C:\Windows\imsins.log
2012-08-27 23:10 - 2012-08-27 23:02 - 06955968 ____A (Microsoft Corporation) C:\Documents and Settings\Owner\Desktop\Silverlight.exe
2012-08-27 22:43 - 2012-07-22 10:46 - 00000384 ___AH C:\Windows\Tasks\Microsoft Antimalware Scheduled Scan.job
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\Owner\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\NetworkService\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\LocalService\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2012-08-27 22:33 - 2005-12-08 07:42 - 00000159 ____A C:\Windows\wiadebug.log
2012-08-27 22:33 - 2005-12-08 07:42 - 00000049 ____A C:\Windows\wiaservc.log
2012-08-27 22:33 - 2004-08-04 08:00 - 00002206 ____A C:\Windows\System32\wpa.dbl
2012-08-27 19:41 - 2005-12-08 15:52 - 00000278 ___SH C:\Documents and Settings\Owner\ntuser.ini
2012-08-27 18:49 - 2006-01-22 15:33 - 00067216 ___AC C:\Documents and Settings\Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2012-08-26 23:24 - 2012-08-26 23:24 - 00000063 ___AC C:\1.html
2012-08-26 21:38 - 2012-08-26 21:38 - 01654976 ____A (W3i, LLC) C:\Documents and Settings\Owner\Desktop\mplayer_tuguu_1271.exe
2012-08-26 06:51 - 2009-11-04 14:24 - 00000456 ____A C:\Windows\Tasks\Driver Robot.job
2012-08-25 15:10 - 2012-08-25 15:10 - 20980010 ____A C:\Documents and Settings\Owner\Desktop\dwa552_drivers_170.zip
2012-08-25 14:10 - 2011-02-08 13:06 - 00000671 ____A C:\Windows\setupact.log
2012-08-25 13:32 - 2006-10-09 02:49 - 00020992 ___AC C:\Documents and Settings\Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-08-21 16:34 - 2012-08-21 16:34 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-2-toDownload.exe
2012-08-21 16:32 - 2012-08-21 16:31 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-3-toDownload.exe
2012-08-21 01:22 - 2011-06-17 19:47 - 00003627 ___AC C:\Windows\wmsetup.log
2012-08-16 05:18 - 2012-08-15 22:25 - 00018547 ____A C:\Windows\KB2712808.log
2012-08-16 05:18 - 2011-02-09 05:00 - 00001374 ____A C:\Windows\imsins.BAK
2012-08-16 05:16 - 2012-08-16 05:16 - 00013332 ____A C:\Windows\KB2731847.log
2012-08-16 05:11 - 2005-12-10 12:01 - 59884088 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2012-08-16 05:10 - 2012-08-15 22:25 - 00018161 ____A C:\Windows\KB2705219.log
2012-08-16 05:10 - 2011-02-09 05:01 - 00034972 ___AC C:\Windows\updspapi.log
2012-08-16 05:09 - 2012-08-16 05:08 - 00011942 ____A C:\Windows\KB2723135.log
2012-08-16 05:05 - 2012-08-16 05:01 - 00016405 ____A C:\Windows\KB2722913-IE8.log
2012-08-14 15:48 - 2012-08-14 15:48 - 09826504 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerInstaller.exe
2012-08-14 15:48 - 2012-07-22 15:23 - 00426184 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2012-08-14 15:48 - 2011-05-26 09:00 - 00070344 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2012-08-08 18:11 - 2012-08-08 18:10 - 34294688 ____A C:\Documents and Settings\Owner\Desktop\vlcmediaplayer-setup.exe
2012-08-05 22:10 - 2009-10-26 15:00 - 01577188 __ASH C:\Documents and Settings\Owner\My Documents\Thumbs.db
2012-08-05 14:38 - 2006-10-09 02:49 - 00007680 _ASHC C:\Windows\Thumbs.db
2012-08-05 02:53 - 2012-08-05 02:53 - 00012188 ____A C:\Windows\DPINST.LOG
2012-07-23 01:28 - 2012-07-23 01:28 - 00001867 ____A C:\Documents and Settings\Owner\Desktop\Spotify.lnk
2012-07-22 17:55 - 2012-07-22 17:55 - 00000104 ____A C:\Documents and Settings\Owner\Desktop\Internet.lnk
2012-07-22 17:37 - 2012-07-22 17:37 - 00000932 ____A C:\Documents and Settings\Owner\My Documents\My Sharing Folders.lnk
2012-07-22 17:11 - 2004-08-04 08:00 - 00000578 ____A C:\Windows\win.ini
2012-07-22 11:34 - 2012-07-22 01:28 - 00026529 ____A C:\Windows\KB2707511.log
2012-07-22 11:33 - 2012-07-22 11:32 - 00013956 ____A C:\Windows\KB2659262.log
2012-07-22 11:27 - 2012-07-22 01:28 - 00024096 ____A C:\Windows\KB2691442.log
2012-07-22 11:17 - 2012-07-22 11:17 - 00016109 ____A C:\Windows\KB2718523.log
2012-07-22 11:17 - 2012-07-22 01:27 - 00023075 ____A C:\Windows\KB2655992.log
2012-07-22 11:08 - 2012-07-22 11:07 - 00015151 ____A C:\Windows\KB2686509.log
2012-07-22 11:05 - 2012-07-22 01:27 - 00022297 ____A C:\Windows\KB2719985.log
2012-07-22 11:04 - 2012-07-22 01:27 - 00021700 ____A C:\Windows\KB2718704.log
2012-07-22 10:50 - 2012-07-22 10:47 - 00018232 ____A C:\Windows\KB2699988-IE8.log
2012-07-22 10:46 - 2012-07-22 10:45 - 00009855 ____A C:\Windows\KB2685939.log
2012-07-22 10:43 - 2012-07-22 01:24 - 00016374 ____A C:\Windows\KB2653956.log
2012-07-22 10:39 - 2012-07-22 10:37 - 00009536 ____A C:\Windows\KB2698365.log
2012-07-22 10:36 - 2011-02-04 16:19 - 00001945 ___AC C:\Windows\epplauncher.mif
2012-07-22 05:28 - 2012-07-22 01:20 - 00021257 ____A C:\Windows\KB2676562.log
2012-07-12 10:29 - 2012-07-12 10:29 - 04534272 ____A C:\Documents and Settings\All Users\Application Data\ReadOnlyInstaller.msi
2012-07-06 09:58 - 2012-07-06 09:58 - 00078336 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\browser.dll
2012-07-06 09:58 - 2008-10-24 07:27 - 00337920 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\netapi32.dll
2012-07-06 09:58 - 2004-08-04 08:00 - 00337920 ____A (Microsoft Corporation) C:\Windows\System32\netapi32.dll
2012-07-06 09:58 - 2004-08-04 08:00 - 00078336 ____A (Microsoft Corporation) C:\Windows\System32\browser.dll
2012-07-04 10:05 - 2011-08-11 12:30 - 00139784 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\rdpwd.sys
2012-07-04 10:05 - 2005-12-08 15:44 - 00139784 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpwd.sys
2012-07-03 09:40 - 2008-10-15 18:04 - 01866112 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\win32k.sys
2012-07-03 09:40 - 2004-08-04 08:00 - 01866112 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-07-03 01:19 - 2007-05-09 15:16 - 11111424 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ieframe.dll
2012-07-03 01:19 - 2006-10-17 17:33 - 11111424 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-07-02 13:49 - 2012-07-22 01:27 - 00521728 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\jsdbgui.dll
2012-07-02 13:49 - 2010-06-11 21:23 - 00743424 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iedvtool.dll
2012-07-02 13:49 - 2009-08-30 22:02 - 00247808 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ieproxy.dll
2012-07-02 13:49 - 2009-08-30 22:02 - 00012800 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\xpshims.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 02000384 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iertutil.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 00629760 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\msfeeds.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 00055296 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\msfeedsbs.dll
2012-07-02 13:49 - 2006-10-17 17:33 - 00629760 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2012-07-02 13:49 - 2006-10-17 17:33 - 00055296 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2012-07-02 13:49 - 2006-10-17 16:57 - 02000384 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 06008320 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\mshtml.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 06008320 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 01469440 ____N (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-07-02 13:49 - 2004-08-04 08:00 - 01469440 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\inetcpl.cpl
2012-07-02 13:49 - 2004-08-04 08:00 - 01212416 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\urlmon.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 01212416 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00916992 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\wininet.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00916992 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00611840 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mstime.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00611840 ____A (Microsoft Corporation) C:\Windows\System32\mstime.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00387584 ____N (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00387584 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iedkcs32.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00206848 ____N (Microsoft Corporation) C:\Windows\System32\occache.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00206848 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\occache.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00184320 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iepeers.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00105984 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\url.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00105984 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00067072 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mshtmled.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00043520 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\licmgr10.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00043520 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00025600 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\jsproxy.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00025600 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-07-02 08:05 - 2004-08-04 08:00 - 00385024 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2012-07-02 08:05 - 2004-08-04 08:00 - 00174080 ____N (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2012-07-02 08:05 - 2004-08-04 08:00 - 00174080 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ie4uinit.exe
2012-06-08 10:26 - 2008-06-17 15:02 - 08462848 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\shell32.dll
2012-06-08 10:26 - 2004-08-04 08:00 - 08462848 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll
==================== Known DLLs (Whitelisted) =================
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== EXE ASSOCIATION =====================
HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK
==================== Restore Points (XP) =====================
RP: -> 2012-09-01 22:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP73
RP: -> 2012-08-31 22:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP72
RP: -> 2012-08-31 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP71
RP: -> 2012-08-30 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP70
RP: -> 2012-08-30 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP69
RP: -> 2012-08-29 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP68
RP: -> 2012-08-29 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP67
RP: -> 2012-08-28 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP66
RP: -> 2012-08-28 05:01 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP65
RP: -> 2012-08-28 03:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP64
RP: -> 2012-08-28 03:07 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP63
RP: -> 2012-08-28 02:50 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP62
RP: -> 2012-08-28 01:59 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP61
RP: -> 2012-08-27 22:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP60
RP: -> 2012-08-27 19:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP59
RP: -> 2012-08-27 18:51 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP58
RP: -> 2012-08-27 17:37 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP57
RP: -> 2012-08-27 13:36 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP56
RP: -> 2012-08-26 22:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP55
RP: -> 2012-08-26 16:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP54
RP: -> 2012-08-26 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP53
RP: -> 2012-08-26 03:59 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP52
RP: -> 2012-08-25 16:21 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP51
RP: -> 2012-08-25 15:13 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP50
RP: -> 2012-08-24 12:55 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP49
RP: -> 2012-08-23 12:51 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP48
RP: -> 2012-08-22 18:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP47
RP: -> 2012-08-21 15:12 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP46
RP: -> 2012-08-20 15:09 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP45
RP: -> 2012-08-19 03:21 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP44
RP: -> 2012-08-18 16:28 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP43
RP: -> 2012-08-17 15:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP42
RP: -> 2012-08-16 12:28 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP41
RP: -> 2012-08-16 05:01 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP40
RP: -> 2012-08-15 12:31 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP39
RP: -> 2012-08-14 12:27 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP38
RP: -> 2012-08-13 12:30 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP37
RP: -> 2012-08-13 04:32 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP36
RP: -> 2012-08-12 02:48 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP35
RP: -> 2012-08-11 15:33 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP34
RP: -> 2012-08-10 02:46 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP33
RP: -> 2012-08-09 02:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP32
RP: -> 2012-08-08 02:45 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP31
RP: -> 2012-08-07 02:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP30
RP: -> 2012-08-06 02:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP29
RP: -> 2012-08-05 02:54 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP28
RP: -> 2012-08-05 02:53 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP27
RP: -> 2012-08-05 02:39 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP26
RP: -> 2012-08-02 21:10 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP25
RP: -> 2012-08-01 21:17 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP24
RP: -> 2012-08-01 18:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP23
RP: -> 2012-07-31 12:32 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP22
RP: -> 2012-07-30 11:43 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP21
RP: -> 2012-07-29 11:40 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP20
RP: -> 2012-07-29 04:18 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP19
RP: -> 2012-07-28 11:44 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP18
RP: -> 2012-07-27 20:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP17
RP: -> 2012-07-26 16:43 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP16
RP: -> 2012-07-25 13:26 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP15
RP: -> 2012-07-24 13:24 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP14
RP: -> 2012-07-23 12:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP13
==================== Memory info ===========================
Percentage of memory in use: 39%
Total physical RAM: 510 MB
Available physical RAM: 306.05 MB
Total Pagefile: 457.71 MB
Available Pagefile: 335.89 MB
Total Virtual: 2047.88 MB
Available Virtual: 2003.18 MB
==================== Partitions ============================
2 Drive b: (RAMDisk) (Fixed) (Total:0.06 GB) (Free:0.06 GB) NTFS
3 Drive c: () (Fixed) (Total:71.46 GB) (Free:50.48 GB) NTFS ==>[Drive with boot components (Windows XP)]
5 Drive e: () (Removable) (Total:0.95 GB) (Free:0.71 GB) FAT
6 Drive x: (ReatogoPE) (CDROM) (Total:0.43 GB) (Free:0 GB) CDFS
Disk ### Status Size Free Dyn Gpt
-------- ---------- ------- ------- --- ---
Disk 0 Online 74 GB 0 B
Partitions of Disk 0:
===============
Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 OEM 39 MB 32 KB
Partition 2 Primary 71 GB 39 MB
Partition 3 Unknown 3075 MB 71 GB
==================================================================================
Disk: 0
Partition 1
Type : DE
Hidden: Yes
Active: No
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 FAT Partition 39 MB Healthy
==================================================================================
Disk: 0
Partition 2
Type : 07
Hidden: No
Active: Yes
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 3 C NTFS Partition 71 GB Healthy
==================================================================================
Disk: 0
Partition 3
Type : DB
Hidden: Yes
Active: No
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 4 FAT32 Partition 3075 MB Healthy
==================================================================================
==================== End Of Log =============================
I hit fix and it said there was no 'fixlog'.
I did hit 'scan' again. Here's the log:
Scan result of Farbar Recovery Scan Tool (FRST written by Farbar) Version: 02-09-2012 03
Ran by SYSTEM at 04-09-2012 16:39:42
Running from E:\
Microsoft Windows XP (X86) OS Language: English(US)
The current controlset is ControlSet003
==================== Registry (Whitelisted) ===================
HKLM\...\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k [x]
HKLM\...\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey [931200 2012-03-26] (Microsoft Corporation)
HKLM\...\Run: [TelevisionFanatic Search Scope Monitor] "C:\PROGRA~1\TELEVI~2\bar\1.bin\64srchmn.exe" /m=2 /w /h [x]
HKLM\...\Run: [TelevisionFanatic Browser Plugin Loader] C:\PROGRA~1\TELEVI~2\bar\1.bin\64brmon.exe [x]
HKLM\...\Run: [SpeetItUpFree] "C:\Program Files\SpeedItup Free\speeditupfree.exe" [x]
HKU\Owner\...\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe [15360 2008-04-13] (Microsoft Corporation)
HKU\Owner\...\Run: [Search Protection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe [x]
HKU\Owner\...\Run: [EPSON NX100 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEDA.EXE /FU "C:\WINDOWS\TEMP\E_S1C1.tmp" /EF "HKCU" [188928 2008-02-04] (SEIKO EPSON CORPORATION)
HKU\Owner\...\Run: [Software Informer] "C:\Program Files\Software Informer\softinfo.exe" -autorun [x]
HKU\Owner\...\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h [x]
HKU\Owner\...\Run: [Spotify] "C:\Documents and Settings\Owner\Application Data\Spotify\Spotify.exe" /uri spotify:autostart [5576408 2012-08-20] (Spotify Ltd)
HKU\Owner\...\Run: [Spotify Web Helper] "C:\Documents and Settings\Owner\Application Data\Spotify\Data\SpotifyWebHelper.exe" [1193176 2012-08-20] ()
Winlogon\Notify\!SASWinLogon: C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [X]
Winlogon\Notify\igfxcui: igfxsrvc.dll (Intel Corporation)
Winlogon\Notify\WgaLogon: WgaLogon.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Wireless Connection Manager.lnk
ShortcutTarget: Wireless Connection Manager.lnk -> C:\Program Files\D-Link\DWA-552 revA\wirelesscm.exe (D-Link Corp.)
========================== Services (Whitelisted) ========================
2 DefaultTabUpdate; "C:\Documents and Settings\Owner\Application Data\DefaultTab\DefaultTab\DTUpdate.exe" [107520 2012-08-26] ()
2 Eventlog; C:\Windows\System32\services.exe [110592 2009-02-06] (Microsoft Corporation)
3 jswpsapi; C:\Program Files\D-Link\DWA-552 revA\jswpsapi.exe [356433 2008-09-26] (Atheros Communications, Inc.)
3 PD1171Srv; C:\WINDOWS\system32\P1171Srv.exe [20480 2004-02-03] (Creative Technology Ltd.)
2 WLSVC; C:\Program Files\D-Link\DWA-552 revA\WLSVC.exe [167936 2009-02-11] ()
3 AppMgmt; C:\Windows\System32\appmgmts.dll [x]
3 FontCache3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [x]
3 idsvc; "c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe" [x]
2 JavaQuickStarterService; "C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf" [x]
2 MsMpSvc; "c:\Program Files\Microsoft Security Client\MsMpEng.exe" [x]
4 NetTcpPortSharing; "c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe" [x]
2 TelevisionFanaticService; C:\PROGRA~1\TELEVI~2\bar\1.bin\64barsvc.exe [x]
==================== Drivers (Whitelisted) ===================
3 AR5416; C:\Windows\System32\DRIVERS\athw.sys [1605056 2010-04-27] (Atheros Communications, Inc.)
3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
1 Cdr4_2K; C:\Windows\System32\Drivers\Cdr4_2K.sys [52624 2009-08-29] (Adaptec)
2 Cdralw2k; C:\Windows\System32\Drivers\Cdralw2k.sys [21913 2009-08-29] (Adaptec)
1 eeCtrl; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [385072 2008-01-19] (Symantec Corporation)
3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [49664 2006-04-12] (HP)
3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16496 2006-04-12] (HP)
3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21568 2006-04-12] (HP)
3 ialm; C:\Windows\System32\DRIVERS\ialmnt5.sys [737874 2004-08-20] (Intel Corporation)
3 JSWSCIMD; C:\Windows\System32\DRIVERS\jswscimd.sys [57440 2008-09-25] (Atheros Communications, Inc.)
3 LVUSBSta; C:\Windows\System32\drivers\LVUSBSta.sys [41752 2008-07-26] (Logitech Inc.)
3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys [38224 2010-12-20] (Malwarebytes Corporation)
0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [171064 2012-03-20] (Microsoft Corporation)
3 NABTSFEC; C:\Windows\System32\DRIVERS\NABTSFEC.sys [85248 2008-04-13] (Microsoft Corporation)
3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
3 pepifilter; C:\Windows\System32\DRIVERS\lv302af.sys [13848 2008-07-26] (Logitech Inc.)
3 PID_PEPI; C:\Windows\System32\DRIVERS\LV302V32.SYS [2570520 2008-07-26] (Logitech Inc.)
1 SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12872 2010-02-17] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
1 SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67656 2010-05-10] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
3 senfilt; C:\Windows\System32\drivers\senfilt.sys [732928 2004-09-17] (Creative Technology Ltd.)
3 SLIP; C:\Windows\System32\DRIVERS\SLIP.sys [11136 2008-04-13] (Microsoft Corporation)
3 streamip; C:\Windows\System32\DRIVERS\StreamIP.sys [15232 2008-04-13] (Microsoft Corporation)
2 WLNdis50; C:\Windows\System32\DRIVERS\wlndis50.sys [20480 2008-02-27] ()
3 WSTCODEC; C:\Windows\System32\DRIVERS\WSTCODEC.SYS [19200 2008-04-13] (Microsoft Corporation)
4 Abiosdsk; [x]
4 abp480n5; [x]
4 adpu160m; [x]
4 Aha154x; [x]
4 aic78u2; [x]
4 aic78xx; [x]
4 AliIde; [x]
4 amsint; [x]
4 asc; [x]
4 asc3350p; [x]
4 asc3550; [x]
4 Atdisk; [x]
4 cd20xrnt; [x]
1 Changer; [x]
4 CmdIde; [x]
4 Cpqarray; [x]
4 dac2w2k; [x]
4 dac960nt; [x]
4 dpti2o; [x]
4 hpn; [x]
1 i2omgmt; [x]
4 i2omp; [x]
4 ini910u; [x]
1 lbrtfdc; [x]
4 mraid35x; [x]
1 PCIDump; [x]
3 PDCOMP; [x]
3 PDFRAME; [x]
3 PDRELI; [x]
3 PDRFRAME; [x]
4 perc2; [x]
4 perc2hib; [x]
0 pstjxmv; C:\Windows\System32\drivers\wfjte.sys [x]
4 ql1080; [x]
4 Ql10wnt; [x]
4 ql12160; [x]
4 ql1240; [x]
4 ql1280; [x]
4 Simbad; [x]
4 Sparrow; [x]
4 symc810; [x]
4 symc8xx; [x]
3 SymIM; C:\Windows\System32\DRIVERS\SymIM.sys [x]
3 SymIMMP; C:\Windows\System32\DRIVERS\SymIM.sys [x]
4 sym_hi; [x]
4 sym_u3; [x]
4 TosIde; [x]
4 ultra; [x]
4 ViaIde; [x]
3 WDICA; [x]
2 zumbus; C:\Windows\System32\DRIVERS\zumbus.sys [x]
==================== NetSvcs (Whitelisted) =================
============ One Month Created Files and Folders ==============
2012-09-02 19:04 - 2012-09-02 19:04 - 00000000 ___DC C:\FRST
2012-09-02 00:49 - 2012-09-02 00:49 - 00010048 ____N C:\bootex.log
2012-09-02 00:47 - 2012-09-02 00:47 - 00000000 __SHD C:\found.000
2012-08-30 05:06 - 2012-08-31 05:29 - 00000000 ____D C:\Windows\System32\XPSViewer
2012-08-30 05:05 - 2012-08-30 05:05 - 00000000 ____D C:\Program Files\MSBuild
2012-08-30 05:04 - 2012-08-30 05:04 - 00000000 ____D C:\Program Files\Reference Assemblies
2012-08-28 03:49 - 2012-08-28 03:50 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2012-08-28 03:07 - 2012-08-28 03:07 - 00000641 ____A C:\Documents and Settings\All Users\Desktop\Wireless Connection Manager.lnk
2012-08-28 03:07 - 2012-08-28 03:07 - 00000000 ____D C:\Program Files\D-Link
2012-08-28 03:07 - 2012-08-28 03:07 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\D-Link
2012-08-28 03:07 - 2008-10-01 03:55 - 00035967 ____A C:\Windows\System32\jswscimdp.cat
2012-08-28 03:07 - 2008-10-01 03:55 - 00035538 ____A C:\Windows\System32\jswscimd.cat
2012-08-28 03:07 - 2008-09-26 21:01 - 00405582 ____A (Atheros Communications, Inc.) C:\Windows\System32\jswscsup.dll
2012-08-28 03:07 - 2008-09-25 21:07 - 00057440 ____A (Atheros Communications, Inc.) C:\Windows\System32\jswscimd.sys
2012-08-28 03:07 - 2008-09-25 21:07 - 00057440 ____A (Atheros Communications, Inc.) C:\Windows\System32\Drivers\jswscimd.sys
2012-08-28 03:07 - 2008-09-08 13:54 - 00010667 ____A C:\Windows\System32\wlndis50.cat
2012-08-28 03:07 - 2008-02-27 12:54 - 00020480 ____A () C:\Windows\System32\wlndis50.sys
2012-08-28 03:07 - 2008-02-27 12:54 - 00020480 ____A () C:\Windows\System32\Drivers\WLNdis50.sys
2012-08-28 03:06 - 2012-08-28 03:06 - 00000000 ____D C:\Windows\pcidevice
2012-08-28 03:06 - 2010-04-27 18:09 - 01605056 ____A (Atheros Communications, Inc.) C:\Windows\System32\Drivers\athw.sys
2012-08-28 03:05 - 2012-08-28 03:05 - 00000000 ____A C:\Windows\setuperr.log
2012-08-28 01:57 - 2012-08-28 05:02 - 00000000 ____D C:\Windows\LastGood.Tmp
2012-08-27 23:02 - 2012-08-27 23:10 - 06955968 ____A (Microsoft Corporation) C:\Documents and Settings\Owner\Desktop\Silverlight.exe
2012-08-26 23:24 - 2012-08-26 23:24 - 00000063 ___AC C:\1.html
2012-08-26 22:50 - 2012-08-26 22:51 - 00000000 ____D C:\Program Files\PriceGong
2012-08-26 22:42 - 2012-08-26 22:42 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\DefaultTab
2012-08-26 21:38 - 2012-08-26 21:38 - 01654976 ____A (W3i, LLC) C:\Documents and Settings\Owner\Desktop\mplayer_tuguu_1271.exe
2012-08-25 15:10 - 2012-08-25 15:10 - 20980010 ____A C:\Documents and Settings\Owner\Desktop\dwa552_drivers_170.zip
2012-08-25 13:36 - 2012-08-25 13:36 - 00000000 ____D C:\Program Files\Copy of Microsoft Security Client
2012-08-25 13:34 - 2012-08-25 13:34 - 00000000 ____D C:\Program Files\Copy of ArcSoft
2012-08-21 16:34 - 2012-08-21 16:34 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-2-toDownload.exe
2012-08-21 16:31 - 2012-08-21 16:32 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-3-toDownload.exe
2012-08-16 15:35 - 2012-08-25 13:27 - 00000000 ____D C:\Documents and Settings\Owner\Desktop\pics
2012-08-16 05:16 - 2012-08-16 05:16 - 00013332 ____A C:\Windows\KB2731847.log
2012-08-16 05:08 - 2012-08-16 05:09 - 00011942 ____A C:\Windows\KB2723135.log
2012-08-16 05:01 - 2012-08-16 05:05 - 00016405 ____A C:\Windows\KB2722913-IE8.log
2012-08-15 22:25 - 2012-08-16 05:18 - 00018547 ____A C:\Windows\KB2712808.log
2012-08-15 22:25 - 2012-08-16 05:10 - 00018161 ____A C:\Windows\KB2705219.log
2012-08-14 15:48 - 2012-08-14 15:48 - 09826504 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerInstaller.exe
2012-08-08 18:17 - 2012-08-08 18:20 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\vlc
2012-08-08 18:14 - 2012-08-27 18:16 - 00000000 ____D C:\Program Files\VideoLAN
2012-08-08 18:12 - 2012-08-08 18:12 - 00000000 ____D C:\Documents and Settings\Owner\Local Settings\Application Data\TNT2
2012-08-08 18:10 - 2012-08-08 18:11 - 34294688 ____A C:\Documents and Settings\Owner\Desktop\vlcmediaplayer-setup.exe
2012-08-05 02:55 - 2012-08-27 18:55 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\Teleca
2012-08-05 02:54 - 2012-08-27 18:55 - 00000000 ____D C:\Program Files\Common Files\Teleca Shared
2012-08-05 02:53 - 2012-08-27 18:56 - 00000000 ____D C:\Program Files\HTC
2012-08-05 02:53 - 2012-08-05 02:53 - 00012188 ____A C:\Windows\DPINST.LOG
============ 3 Months Modified Files ========================
2012-09-03 20:20 - 2005-12-08 07:39 - 00263824 ____A C:\Windows\System32\FNTCACHE.DAT
2012-09-02 00:49 - 2012-09-02 00:49 - 00010048 ____N C:\bootex.log
2012-09-01 23:48 - 2012-07-22 15:23 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2012-09-01 23:09 - 2005-12-08 15:47 - 01225068 ____A C:\Windows\WindowsUpdate.log
2012-09-01 10:48 - 2005-12-08 15:52 - 00032460 ____A C:\Windows\SchedLgU.Txt
2012-08-31 13:57 - 2009-10-26 14:45 - 00118272 __ASH C:\Documents and Settings\Owner\Desktop\Thumbs.db
2012-08-30 05:07 - 2005-12-08 07:40 - 00511862 ____A C:\Windows\System32\PerfStringBackup.INI
2012-08-29 05:01 - 2011-10-28 19:27 - 00023894 ___AC C:\Windows\KB2564958.log
2012-08-28 05:05 - 2012-07-22 10:52 - 00025551 ____A C:\Windows\KB2695962.log
2012-08-28 05:05 - 2012-01-10 13:19 - 00019556 ___AC C:\Windows\KB2618451.log
2012-08-28 03:08 - 2011-02-08 13:06 - 00262354 ____A C:\Windows\setupapi.log
2012-08-28 03:07 - 2012-08-28 03:07 - 00000641 ____A C:\Documents and Settings\All Users\Desktop\Wireless Connection Manager.lnk
2012-08-28 03:05 - 2012-08-28 03:05 - 00000000 ____A C:\Windows\setuperr.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00538508 ___AC C:\Windows\FaxSetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00259985 ___AC C:\Windows\ocgen.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00206798 ___AC C:\Windows\tsoc.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00177944 ___AC C:\Windows\comsetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00108289 ___AC C:\Windows\ntdtcsetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00084785 ___AC C:\Windows\iis6.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00029881 ___AC C:\Windows\ocmsn.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00027047 ___AC C:\Windows\msgsocm.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00001917 ____A C:\Windows\imsins.log
2012-08-27 23:10 - 2012-08-27 23:02 - 06955968 ____A (Microsoft Corporation) C:\Documents and Settings\Owner\Desktop\Silverlight.exe
2012-08-27 22:43 - 2012-07-22 10:46 - 00000384 ___AH C:\Windows\Tasks\Microsoft Antimalware Scheduled Scan.job
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\Owner\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\NetworkService\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\LocalService\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2012-08-27 22:33 - 2005-12-08 07:42 - 00000159 ____A C:\Windows\wiadebug.log
2012-08-27 22:33 - 2005-12-08 07:42 - 00000049 ____A C:\Windows\wiaservc.log
2012-08-27 22:33 - 2004-08-04 08:00 - 00002206 ____A C:\Windows\System32\wpa.dbl
2012-08-27 19:41 - 2005-12-08 15:52 - 00000278 ___SH C:\Documents and Settings\Owner\ntuser.ini
2012-08-27 18:49 - 2006-01-22 15:33 - 00067216 ___AC C:\Documents and Settings\Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2012-08-26 23:24 - 2012-08-26 23:24 - 00000063 ___AC C:\1.html
2012-08-26 21:38 - 2012-08-26 21:38 - 01654976 ____A (W3i, LLC) C:\Documents and Settings\Owner\Desktop\mplayer_tuguu_1271.exe
2012-08-26 06:51 - 2009-11-04 14:24 - 00000456 ____A C:\Windows\Tasks\Driver Robot.job
2012-08-25 15:10 - 2012-08-25 15:10 - 20980010 ____A C:\Documents and Settings\Owner\Desktop\dwa552_drivers_170.zip
2012-08-25 14:10 - 2011-02-08 13:06 - 00000671 ____A C:\Windows\setupact.log
2012-08-25 13:32 - 2006-10-09 02:49 - 00020992 ___AC C:\Documents and Settings\Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-08-21 16:34 - 2012-08-21 16:34 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-2-toDownload.exe
2012-08-21 16:32 - 2012-08-21 16:31 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-3-toDownload.exe
2012-08-21 01:22 - 2011-06-17 19:47 - 00003627 ___AC C:\Windows\wmsetup.log
2012-08-16 05:18 - 2012-08-15 22:25 - 00018547 ____A C:\Windows\KB2712808.log
2012-08-16 05:18 - 2011-02-09 05:00 - 00001374 ____A C:\Windows\imsins.BAK
2012-08-16 05:16 - 2012-08-16 05:16 - 00013332 ____A C:\Windows\KB2731847.log
2012-08-16 05:11 - 2005-12-10 12:01 - 59884088 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2012-08-16 05:10 - 2012-08-15 22:25 - 00018161 ____A C:\Windows\KB2705219.log
2012-08-16 05:10 - 2011-02-09 05:01 - 00034972 ___AC C:\Windows\updspapi.log
2012-08-16 05:09 - 2012-08-16 05:08 - 00011942 ____A C:\Windows\KB2723135.log
2012-08-16 05:05 - 2012-08-16 05:01 - 00016405 ____A C:\Windows\KB2722913-IE8.log
2012-08-14 15:48 - 2012-08-14 15:48 - 09826504 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerInstaller.exe
2012-08-14 15:48 - 2012-07-22 15:23 - 00426184 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2012-08-14 15:48 - 2011-05-26 09:00 - 00070344 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2012-08-08 18:11 - 2012-08-08 18:10 - 34294688 ____A C:\Documents and Settings\Owner\Desktop\vlcmediaplayer-setup.exe
2012-08-05 22:10 - 2009-10-26 15:00 - 01577188 __ASH C:\Documents and Settings\Owner\My Documents\Thumbs.db
2012-08-05 14:38 - 2006-10-09 02:49 - 00007680 _ASHC C:\Windows\Thumbs.db
2012-08-05 02:53 - 2012-08-05 02:53 - 00012188 ____A C:\Windows\DPINST.LOG
2012-07-23 01:28 - 2012-07-23 01:28 - 00001867 ____A C:\Documents and Settings\Owner\Desktop\Spotify.lnk
2012-07-22 17:55 - 2012-07-22 17:55 - 00000104 ____A C:\Documents and Settings\Owner\Desktop\Internet.lnk
2012-07-22 17:37 - 2012-07-22 17:37 - 00000932 ____A C:\Documents and Settings\Owner\My Documents\My Sharing Folders.lnk
2012-07-22 17:11 - 2004-08-04 08:00 - 00000578 ____A C:\Windows\win.ini
2012-07-22 11:34 - 2012-07-22 01:28 - 00026529 ____A C:\Windows\KB2707511.log
2012-07-22 11:33 - 2012-07-22 11:32 - 00013956 ____A C:\Windows\KB2659262.log
2012-07-22 11:27 - 2012-07-22 01:28 - 00024096 ____A C:\Windows\KB2691442.log
2012-07-22 11:17 - 2012-07-22 11:17 - 00016109 ____A C:\Windows\KB2718523.log
2012-07-22 11:17 - 2012-07-22 01:27 - 00023075 ____A C:\Windows\KB2655992.log
2012-07-22 11:08 - 2012-07-22 11:07 - 00015151 ____A C:\Windows\KB2686509.log
2012-07-22 11:05 - 2012-07-22 01:27 - 00022297 ____A C:\Windows\KB2719985.log
2012-07-22 11:04 - 2012-07-22 01:27 - 00021700 ____A C:\Windows\KB2718704.log
2012-07-22 10:50 - 2012-07-22 10:47 - 00018232 ____A C:\Windows\KB2699988-IE8.log
2012-07-22 10:46 - 2012-07-22 10:45 - 00009855 ____A C:\Windows\KB2685939.log
2012-07-22 10:43 - 2012-07-22 01:24 - 00016374 ____A C:\Windows\KB2653956.log
2012-07-22 10:39 - 2012-07-22 10:37 - 00009536 ____A C:\Windows\KB2698365.log
2012-07-22 10:36 - 2011-02-04 16:19 - 00001945 ___AC C:\Windows\epplauncher.mif
2012-07-22 05:28 - 2012-07-22 01:20 - 00021257 ____A C:\Windows\KB2676562.log
2012-07-12 10:29 - 2012-07-12 10:29 - 04534272 ____A C:\Documents and Settings\All Users\Application Data\ReadOnlyInstaller.msi
2012-07-06 09:58 - 2012-07-06 09:58 - 00078336 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\browser.dll
2012-07-06 09:58 - 2008-10-24 07:27 - 00337920 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\netapi32.dll
2012-07-06 09:58 - 2004-08-04 08:00 - 00337920 ____A (Microsoft Corporation) C:\Windows\System32\netapi32.dll
2012-07-06 09:58 - 2004-08-04 08:00 - 00078336 ____A (Microsoft Corporation) C:\Windows\System32\browser.dll
2012-07-04 10:05 - 2011-08-11 12:30 - 00139784 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\rdpwd.sys
2012-07-04 10:05 - 2005-12-08 15:44 - 00139784 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpwd.sys
2012-07-03 09:40 - 2008-10-15 18:04 - 01866112 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\win32k.sys
2012-07-03 09:40 - 2004-08-04 08:00 - 01866112 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-07-03 01:19 - 2007-05-09 15:16 - 11111424 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ieframe.dll
2012-07-03 01:19 - 2006-10-17 17:33 - 11111424 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-07-02 13:49 - 2012-07-22 01:27 - 00521728 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\jsdbgui.dll
2012-07-02 13:49 - 2010-06-11 21:23 - 00743424 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iedvtool.dll
2012-07-02 13:49 - 2009-08-30 22:02 - 00247808 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ieproxy.dll
2012-07-02 13:49 - 2009-08-30 22:02 - 00012800 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\xpshims.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 02000384 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iertutil.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 00629760 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\msfeeds.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 00055296 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\msfeedsbs.dll
2012-07-02 13:49 - 2006-10-17 17:33 - 00629760 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2012-07-02 13:49 - 2006-10-17 17:33 - 00055296 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2012-07-02 13:49 - 2006-10-17 16:57 - 02000384 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 06008320 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\mshtml.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 06008320 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 01469440 ____N (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-07-02 13:49 - 2004-08-04 08:00 - 01469440 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\inetcpl.cpl
2012-07-02 13:49 - 2004-08-04 08:00 - 01212416 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\urlmon.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 01212416 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00916992 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\wininet.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00916992 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00611840 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mstime.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00611840 ____A (Microsoft Corporation) C:\Windows\System32\mstime.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00387584 ____N (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00387584 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iedkcs32.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00206848 ____N (Microsoft Corporation) C:\Windows\System32\occache.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00206848 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\occache.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00184320 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iepeers.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00105984 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\url.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00105984 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00067072 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mshtmled.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00043520 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\licmgr10.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00043520 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00025600 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\jsproxy.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00025600 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-07-02 08:05 - 2004-08-04 08:00 - 00385024 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2012-07-02 08:05 - 2004-08-04 08:00 - 00174080 ____N (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2012-07-02 08:05 - 2004-08-04 08:00 - 00174080 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ie4uinit.exe
2012-06-08 10:26 - 2008-06-17 15:02 - 08462848 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\shell32.dll
2012-06-08 10:26 - 2004-08-04 08:00 - 08462848 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll
==================== Known DLLs (Whitelisted) =================
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== EXE ASSOCIATION =====================
HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK
==================== Restore Points (XP) =====================
RP: -> 2012-09-01 22:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP73
RP: -> 2012-08-31 22:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP72
RP: -> 2012-08-31 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP71
RP: -> 2012-08-30 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP70
RP: -> 2012-08-30 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP69
RP: -> 2012-08-29 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP68
RP: -> 2012-08-29 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP67
RP: -> 2012-08-28 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP66
RP: -> 2012-08-28 05:01 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP65
RP: -> 2012-08-28 03:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP64
RP: -> 2012-08-28 03:07 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP63
RP: -> 2012-08-28 02:50 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP62
RP: -> 2012-08-28 01:59 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP61
RP: -> 2012-08-27 22:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP60
RP: -> 2012-08-27 19:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP59
RP: -> 2012-08-27 18:51 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP58
RP: -> 2012-08-27 17:37 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP57
RP: -> 2012-08-27 13:36 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP56
RP: -> 2012-08-26 22:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP55
RP: -> 2012-08-26 16:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP54
RP: -> 2012-08-26 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP53
RP: -> 2012-08-26 03:59 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP52
RP: -> 2012-08-25 16:21 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP51
RP: -> 2012-08-25 15:13 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP50
RP: -> 2012-08-24 12:55 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP49
RP: -> 2012-08-23 12:51 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP48
RP: -> 2012-08-22 18:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP47
RP: -> 2012-08-21 15:12 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP46
RP: -> 2012-08-20 15:09 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP45
RP: -> 2012-08-19 03:21 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP44
RP: -> 2012-08-18 16:28 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP43
RP: -> 2012-08-17 15:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP42
RP: -> 2012-08-16 12:28 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP41
RP: -> 2012-08-16 05:01 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP40
RP: -> 2012-08-15 12:31 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP39
RP: -> 2012-08-14 12:27 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP38
RP: -> 2012-08-13 12:30 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP37
RP: -> 2012-08-13 04:32 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP36
RP: -> 2012-08-12 02:48 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP35
RP: -> 2012-08-11 15:33 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP34
RP: -> 2012-08-10 02:46 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP33
RP: -> 2012-08-09 02:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP32
RP: -> 2012-08-08 02:45 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP31
RP: -> 2012-08-07 02:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP30
RP: -> 2012-08-06 02:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP29
RP: -> 2012-08-05 02:54 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP28
RP: -> 2012-08-05 02:53 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP27
RP: -> 2012-08-05 02:39 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP26
RP: -> 2012-08-02 21:10 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP25
RP: -> 2012-08-01 21:17 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP24
RP: -> 2012-08-01 18:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP23
RP: -> 2012-07-31 12:32 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP22
RP: -> 2012-07-30 11:43 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP21
RP: -> 2012-07-29 11:40 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP20
RP: -> 2012-07-29 04:18 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP19
RP: -> 2012-07-28 11:44 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP18
RP: -> 2012-07-27 20:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP17
RP: -> 2012-07-26 16:43 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP16
RP: -> 2012-07-25 13:26 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP15
RP: -> 2012-07-24 13:24 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP14
RP: -> 2012-07-23 12:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP13
==================== Memory info ===========================
Percentage of memory in use: 39%
Total physical RAM: 510 MB
Available physical RAM: 306.05 MB
Total Pagefile: 457.71 MB
Available Pagefile: 335.89 MB
Total Virtual: 2047.88 MB
Available Virtual: 2003.18 MB
==================== Partitions ============================
2 Drive b: (RAMDisk) (Fixed) (Total:0.06 GB) (Free:0.06 GB) NTFS
3 Drive c: () (Fixed) (Total:71.46 GB) (Free:50.48 GB) NTFS ==>[Drive with boot components (Windows XP)]
5 Drive e: () (Removable) (Total:0.95 GB) (Free:0.71 GB) FAT
6 Drive x: (ReatogoPE) (CDROM) (Total:0.43 GB) (Free:0 GB) CDFS
Disk ### Status Size Free Dyn Gpt
-------- ---------- ------- ------- --- ---
Disk 0 Online 74 GB 0 B
Partitions of Disk 0:
===============
Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 OEM 39 MB 32 KB
Partition 2 Primary 71 GB 39 MB
Partition 3 Unknown 3075 MB 71 GB
==================================================================================
Disk: 0
Partition 1
Type : DE
Hidden: Yes
Active: No
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 FAT Partition 39 MB Healthy
==================================================================================
Disk: 0
Partition 2
Type : 07
Hidden: No
Active: Yes
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 3 C NTFS Partition 71 GB Healthy
==================================================================================
Disk: 0
Partition 3
Type : DB
Hidden: Yes
Active: No
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 4 FAT32 Partition 3075 MB Healthy
==================================================================================
==================== End Of Log =============================
#12
Posted 04 September 2012 - 11:57 AM
Essexboy
-
- Retired Staff
-
- 69,964 posts
GeekU Moderator
Hmm the restore points do not seem to be working
I will remove now what I consider to be the suspect driver causing the error
Download the attached fixlist.txt to the same USB drive as FRST
[attachment=60266:fixlist.txt]
Restart the computer as before to the recovery console... Reatogo desktop
Run FRST and click Fix
A log will be generated on the USB drive
Reboot to normal windows
Once there then please run aswMBR and OTL and post the logs along with the FRST fix log
I will remove now what I consider to be the suspect driver causing the error
Download the attached fixlist.txt to the same USB drive as FRST
[attachment=60266:fixlist.txt]
Restart the computer as before to the recovery console... Reatogo desktop
Run FRST and click Fix
A log will be generated on the USB drive
Reboot to normal windows
Once there then please run aswMBR and OTL and post the logs along with the FRST fix log
#13
Posted 04 September 2012 - 07:28 PM
devdyer
- Topic Starter
-
- Member
-
- 24 posts
Member
Still not able to reboot to normal windows.
Would you like a photo of the screen so you know exactly what the error is?
Here's the log:
Scan result of Farbar Recovery Scan Tool (FRST written by Farbar) Version: 02-09-2012 03
Ran by SYSTEM at 04-09-2012 16:39:42
Running from E:\
Microsoft Windows XP (X86) OS Language: English(US)
The current controlset is ControlSet003
==================== Registry (Whitelisted) ===================
HKLM\...\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k [x]
HKLM\...\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey [931200 2012-03-26] (Microsoft Corporation)
HKLM\...\Run: [TelevisionFanatic Search Scope Monitor] "C:\PROGRA~1\TELEVI~2\bar\1.bin\64srchmn.exe" /m=2 /w /h [x]
HKLM\...\Run: [TelevisionFanatic Browser Plugin Loader] C:\PROGRA~1\TELEVI~2\bar\1.bin\64brmon.exe [x]
HKLM\...\Run: [SpeetItUpFree] "C:\Program Files\SpeedItup Free\speeditupfree.exe" [x]
HKU\Owner\...\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe [15360 2008-04-13] (Microsoft Corporation)
HKU\Owner\...\Run: [Search Protection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe [x]
HKU\Owner\...\Run: [EPSON NX100 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEDA.EXE /FU "C:\WINDOWS\TEMP\E_S1C1.tmp" /EF "HKCU" [188928 2008-02-04] (SEIKO EPSON CORPORATION)
HKU\Owner\...\Run: [Software Informer] "C:\Program Files\Software Informer\softinfo.exe" -autorun [x]
HKU\Owner\...\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h [x]
HKU\Owner\...\Run: [Spotify] "C:\Documents and Settings\Owner\Application Data\Spotify\Spotify.exe" /uri spotify:autostart [5576408 2012-08-20] (Spotify Ltd)
HKU\Owner\...\Run: [Spotify Web Helper] "C:\Documents and Settings\Owner\Application Data\Spotify\Data\SpotifyWebHelper.exe" [1193176 2012-08-20] ()
Winlogon\Notify\!SASWinLogon: C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [X]
Winlogon\Notify\igfxcui: igfxsrvc.dll (Intel Corporation)
Winlogon\Notify\WgaLogon: WgaLogon.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Wireless Connection Manager.lnk
ShortcutTarget: Wireless Connection Manager.lnk -> C:\Program Files\D-Link\DWA-552 revA\wirelesscm.exe (D-Link Corp.)
========================== Services (Whitelisted) ========================
2 DefaultTabUpdate; "C:\Documents and Settings\Owner\Application Data\DefaultTab\DefaultTab\DTUpdate.exe" [107520 2012-08-26] ()
2 Eventlog; C:\Windows\System32\services.exe [110592 2009-02-06] (Microsoft Corporation)
3 jswpsapi; C:\Program Files\D-Link\DWA-552 revA\jswpsapi.exe [356433 2008-09-26] (Atheros Communications, Inc.)
3 PD1171Srv; C:\WINDOWS\system32\P1171Srv.exe [20480 2004-02-03] (Creative Technology Ltd.)
2 WLSVC; C:\Program Files\D-Link\DWA-552 revA\WLSVC.exe [167936 2009-02-11] ()
3 AppMgmt; C:\Windows\System32\appmgmts.dll [x]
3 FontCache3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [x]
3 idsvc; "c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe" [x]
2 JavaQuickStarterService; "C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf" [x]
2 MsMpSvc; "c:\Program Files\Microsoft Security Client\MsMpEng.exe" [x]
4 NetTcpPortSharing; "c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe" [x]
2 TelevisionFanaticService; C:\PROGRA~1\TELEVI~2\bar\1.bin\64barsvc.exe [x]
==================== Drivers (Whitelisted) ===================
3 AR5416; C:\Windows\System32\DRIVERS\athw.sys [1605056 2010-04-27] (Atheros Communications, Inc.)
3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
1 Cdr4_2K; C:\Windows\System32\Drivers\Cdr4_2K.sys [52624 2009-08-29] (Adaptec)
2 Cdralw2k; C:\Windows\System32\Drivers\Cdralw2k.sys [21913 2009-08-29] (Adaptec)
1 eeCtrl; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [385072 2008-01-19] (Symantec Corporation)
3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [49664 2006-04-12] (HP)
3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16496 2006-04-12] (HP)
3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21568 2006-04-12] (HP)
3 ialm; C:\Windows\System32\DRIVERS\ialmnt5.sys [737874 2004-08-20] (Intel Corporation)
3 JSWSCIMD; C:\Windows\System32\DRIVERS\jswscimd.sys [57440 2008-09-25] (Atheros Communications, Inc.)
3 LVUSBSta; C:\Windows\System32\drivers\LVUSBSta.sys [41752 2008-07-26] (Logitech Inc.)
3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys [38224 2010-12-20] (Malwarebytes Corporation)
0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [171064 2012-03-20] (Microsoft Corporation)
3 NABTSFEC; C:\Windows\System32\DRIVERS\NABTSFEC.sys [85248 2008-04-13] (Microsoft Corporation)
3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
3 pepifilter; C:\Windows\System32\DRIVERS\lv302af.sys [13848 2008-07-26] (Logitech Inc.)
3 PID_PEPI; C:\Windows\System32\DRIVERS\LV302V32.SYS [2570520 2008-07-26] (Logitech Inc.)
1 SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12872 2010-02-17] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
1 SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67656 2010-05-10] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
3 senfilt; C:\Windows\System32\drivers\senfilt.sys [732928 2004-09-17] (Creative Technology Ltd.)
3 SLIP; C:\Windows\System32\DRIVERS\SLIP.sys [11136 2008-04-13] (Microsoft Corporation)
3 streamip; C:\Windows\System32\DRIVERS\StreamIP.sys [15232 2008-04-13] (Microsoft Corporation)
2 WLNdis50; C:\Windows\System32\DRIVERS\wlndis50.sys [20480 2008-02-27] ()
3 WSTCODEC; C:\Windows\System32\DRIVERS\WSTCODEC.SYS [19200 2008-04-13] (Microsoft Corporation)
4 Abiosdsk; [x]
4 abp480n5; [x]
4 adpu160m; [x]
4 Aha154x; [x]
4 aic78u2; [x]
4 aic78xx; [x]
4 AliIde; [x]
4 amsint; [x]
4 asc; [x]
4 asc3350p; [x]
4 asc3550; [x]
4 Atdisk; [x]
4 cd20xrnt; [x]
1 Changer; [x]
4 CmdIde; [x]
4 Cpqarray; [x]
4 dac2w2k; [x]
4 dac960nt; [x]
4 dpti2o; [x]
4 hpn; [x]
1 i2omgmt; [x]
4 i2omp; [x]
4 ini910u; [x]
1 lbrtfdc; [x]
4 mraid35x; [x]
1 PCIDump; [x]
3 PDCOMP; [x]
3 PDFRAME; [x]
3 PDRELI; [x]
3 PDRFRAME; [x]
4 perc2; [x]
4 perc2hib; [x]
0 pstjxmv; C:\Windows\System32\drivers\wfjte.sys [x]
4 ql1080; [x]
4 Ql10wnt; [x]
4 ql12160; [x]
4 ql1240; [x]
4 ql1280; [x]
4 Simbad; [x]
4 Sparrow; [x]
4 symc810; [x]
4 symc8xx; [x]
3 SymIM; C:\Windows\System32\DRIVERS\SymIM.sys [x]
3 SymIMMP; C:\Windows\System32\DRIVERS\SymIM.sys [x]
4 sym_hi; [x]
4 sym_u3; [x]
4 TosIde; [x]
4 ultra; [x]
4 ViaIde; [x]
3 WDICA; [x]
2 zumbus; C:\Windows\System32\DRIVERS\zumbus.sys [x]
==================== NetSvcs (Whitelisted) =================
============ One Month Created Files and Folders ==============
2012-09-02 19:04 - 2012-09-02 19:04 - 00000000 ___DC C:\FRST
2012-09-02 00:49 - 2012-09-02 00:49 - 00010048 ____N C:\bootex.log
2012-09-02 00:47 - 2012-09-02 00:47 - 00000000 __SHD C:\found.000
2012-08-30 05:06 - 2012-08-31 05:29 - 00000000 ____D C:\Windows\System32\XPSViewer
2012-08-30 05:05 - 2012-08-30 05:05 - 00000000 ____D C:\Program Files\MSBuild
2012-08-30 05:04 - 2012-08-30 05:04 - 00000000 ____D C:\Program Files\Reference Assemblies
2012-08-28 03:49 - 2012-08-28 03:50 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2012-08-28 03:07 - 2012-08-28 03:07 - 00000641 ____A C:\Documents and Settings\All Users\Desktop\Wireless Connection Manager.lnk
2012-08-28 03:07 - 2012-08-28 03:07 - 00000000 ____D C:\Program Files\D-Link
2012-08-28 03:07 - 2012-08-28 03:07 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\D-Link
2012-08-28 03:07 - 2008-10-01 03:55 - 00035967 ____A C:\Windows\System32\jswscimdp.cat
2012-08-28 03:07 - 2008-10-01 03:55 - 00035538 ____A C:\Windows\System32\jswscimd.cat
2012-08-28 03:07 - 2008-09-26 21:01 - 00405582 ____A (Atheros Communications, Inc.) C:\Windows\System32\jswscsup.dll
2012-08-28 03:07 - 2008-09-25 21:07 - 00057440 ____A (Atheros Communications, Inc.) C:\Windows\System32\jswscimd.sys
2012-08-28 03:07 - 2008-09-25 21:07 - 00057440 ____A (Atheros Communications, Inc.) C:\Windows\System32\Drivers\jswscimd.sys
2012-08-28 03:07 - 2008-09-08 13:54 - 00010667 ____A C:\Windows\System32\wlndis50.cat
2012-08-28 03:07 - 2008-02-27 12:54 - 00020480 ____A () C:\Windows\System32\wlndis50.sys
2012-08-28 03:07 - 2008-02-27 12:54 - 00020480 ____A () C:\Windows\System32\Drivers\WLNdis50.sys
2012-08-28 03:06 - 2012-08-28 03:06 - 00000000 ____D C:\Windows\pcidevice
2012-08-28 03:06 - 2010-04-27 18:09 - 01605056 ____A (Atheros Communications, Inc.) C:\Windows\System32\Drivers\athw.sys
2012-08-28 03:05 - 2012-08-28 03:05 - 00000000 ____A C:\Windows\setuperr.log
2012-08-28 01:57 - 2012-08-28 05:02 - 00000000 ____D C:\Windows\LastGood.Tmp
2012-08-27 23:02 - 2012-08-27 23:10 - 06955968 ____A (Microsoft Corporation) C:\Documents and Settings\Owner\Desktop\Silverlight.exe
2012-08-26 23:24 - 2012-08-26 23:24 - 00000063 ___AC C:\1.html
2012-08-26 22:50 - 2012-08-26 22:51 - 00000000 ____D C:\Program Files\PriceGong
2012-08-26 22:42 - 2012-08-26 22:42 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\DefaultTab
2012-08-26 21:38 - 2012-08-26 21:38 - 01654976 ____A (W3i, LLC) C:\Documents and Settings\Owner\Desktop\mplayer_tuguu_1271.exe
2012-08-25 15:10 - 2012-08-25 15:10 - 20980010 ____A C:\Documents and Settings\Owner\Desktop\dwa552_drivers_170.zip
2012-08-25 13:36 - 2012-08-25 13:36 - 00000000 ____D C:\Program Files\Copy of Microsoft Security Client
2012-08-25 13:34 - 2012-08-25 13:34 - 00000000 ____D C:\Program Files\Copy of ArcSoft
2012-08-21 16:34 - 2012-08-21 16:34 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-2-toDownload.exe
2012-08-21 16:31 - 2012-08-21 16:32 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-3-toDownload.exe
2012-08-16 15:35 - 2012-08-25 13:27 - 00000000 ____D C:\Documents and Settings\Owner\Desktop\pics
2012-08-16 05:16 - 2012-08-16 05:16 - 00013332 ____A C:\Windows\KB2731847.log
2012-08-16 05:08 - 2012-08-16 05:09 - 00011942 ____A C:\Windows\KB2723135.log
2012-08-16 05:01 - 2012-08-16 05:05 - 00016405 ____A C:\Windows\KB2722913-IE8.log
2012-08-15 22:25 - 2012-08-16 05:18 - 00018547 ____A C:\Windows\KB2712808.log
2012-08-15 22:25 - 2012-08-16 05:10 - 00018161 ____A C:\Windows\KB2705219.log
2012-08-14 15:48 - 2012-08-14 15:48 - 09826504 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerInstaller.exe
2012-08-08 18:17 - 2012-08-08 18:20 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\vlc
2012-08-08 18:14 - 2012-08-27 18:16 - 00000000 ____D C:\Program Files\VideoLAN
2012-08-08 18:12 - 2012-08-08 18:12 - 00000000 ____D C:\Documents and Settings\Owner\Local Settings\Application Data\TNT2
2012-08-08 18:10 - 2012-08-08 18:11 - 34294688 ____A C:\Documents and Settings\Owner\Desktop\vlcmediaplayer-setup.exe
2012-08-05 02:55 - 2012-08-27 18:55 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\Teleca
2012-08-05 02:54 - 2012-08-27 18:55 - 00000000 ____D C:\Program Files\Common Files\Teleca Shared
2012-08-05 02:53 - 2012-08-27 18:56 - 00000000 ____D C:\Program Files\HTC
2012-08-05 02:53 - 2012-08-05 02:53 - 00012188 ____A C:\Windows\DPINST.LOG
============ 3 Months Modified Files ========================
2012-09-03 20:20 - 2005-12-08 07:39 - 00263824 ____A C:\Windows\System32\FNTCACHE.DAT
2012-09-02 00:49 - 2012-09-02 00:49 - 00010048 ____N C:\bootex.log
2012-09-01 23:48 - 2012-07-22 15:23 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2012-09-01 23:09 - 2005-12-08 15:47 - 01225068 ____A C:\Windows\WindowsUpdate.log
2012-09-01 10:48 - 2005-12-08 15:52 - 00032460 ____A C:\Windows\SchedLgU.Txt
2012-08-31 13:57 - 2009-10-26 14:45 - 00118272 __ASH C:\Documents and Settings\Owner\Desktop\Thumbs.db
2012-08-30 05:07 - 2005-12-08 07:40 - 00511862 ____A C:\Windows\System32\PerfStringBackup.INI
2012-08-29 05:01 - 2011-10-28 19:27 - 00023894 ___AC C:\Windows\KB2564958.log
2012-08-28 05:05 - 2012-07-22 10:52 - 00025551 ____A C:\Windows\KB2695962.log
2012-08-28 05:05 - 2012-01-10 13:19 - 00019556 ___AC C:\Windows\KB2618451.log
2012-08-28 03:08 - 2011-02-08 13:06 - 00262354 ____A C:\Windows\setupapi.log
2012-08-28 03:07 - 2012-08-28 03:07 - 00000641 ____A C:\Documents and Settings\All Users\Desktop\Wireless Connection Manager.lnk
2012-08-28 03:05 - 2012-08-28 03:05 - 00000000 ____A C:\Windows\setuperr.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00538508 ___AC C:\Windows\FaxSetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00259985 ___AC C:\Windows\ocgen.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00206798 ___AC C:\Windows\tsoc.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00177944 ___AC C:\Windows\comsetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00108289 ___AC C:\Windows\ntdtcsetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00084785 ___AC C:\Windows\iis6.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00029881 ___AC C:\Windows\ocmsn.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00027047 ___AC C:\Windows\msgsocm.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00001917 ____A C:\Windows\imsins.log
2012-08-27 23:10 - 2012-08-27 23:02 - 06955968 ____A (Microsoft Corporation) C:\Documents and Settings\Owner\Desktop\Silverlight.exe
2012-08-27 22:43 - 2012-07-22 10:46 - 00000384 ___AH C:\Windows\Tasks\Microsoft Antimalware Scheduled Scan.job
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\Owner\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\NetworkService\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\LocalService\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2012-08-27 22:33 - 2005-12-08 07:42 - 00000159 ____A C:\Windows\wiadebug.log
2012-08-27 22:33 - 2005-12-08 07:42 - 00000049 ____A C:\Windows\wiaservc.log
2012-08-27 22:33 - 2004-08-04 08:00 - 00002206 ____A C:\Windows\System32\wpa.dbl
2012-08-27 19:41 - 2005-12-08 15:52 - 00000278 ___SH C:\Documents and Settings\Owner\ntuser.ini
2012-08-27 18:49 - 2006-01-22 15:33 - 00067216 ___AC C:\Documents and Settings\Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2012-08-26 23:24 - 2012-08-26 23:24 - 00000063 ___AC C:\1.html
2012-08-26 21:38 - 2012-08-26 21:38 - 01654976 ____A (W3i, LLC) C:\Documents and Settings\Owner\Desktop\mplayer_tuguu_1271.exe
2012-08-26 06:51 - 2009-11-04 14:24 - 00000456 ____A C:\Windows\Tasks\Driver Robot.job
2012-08-25 15:10 - 2012-08-25 15:10 - 20980010 ____A C:\Documents and Settings\Owner\Desktop\dwa552_drivers_170.zip
2012-08-25 14:10 - 2011-02-08 13:06 - 00000671 ____A C:\Windows\setupact.log
2012-08-25 13:32 - 2006-10-09 02:49 - 00020992 ___AC C:\Documents and Settings\Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-08-21 16:34 - 2012-08-21 16:34 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-2-toDownload.exe
2012-08-21 16:32 - 2012-08-21 16:31 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-3-toDownload.exe
2012-08-21 01:22 - 2011-06-17 19:47 - 00003627 ___AC C:\Windows\wmsetup.log
2012-08-16 05:18 - 2012-08-15 22:25 - 00018547 ____A C:\Windows\KB2712808.log
2012-08-16 05:18 - 2011-02-09 05:00 - 00001374 ____A C:\Windows\imsins.BAK
2012-08-16 05:16 - 2012-08-16 05:16 - 00013332 ____A C:\Windows\KB2731847.log
2012-08-16 05:11 - 2005-12-10 12:01 - 59884088 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2012-08-16 05:10 - 2012-08-15 22:25 - 00018161 ____A C:\Windows\KB2705219.log
2012-08-16 05:10 - 2011-02-09 05:01 - 00034972 ___AC C:\Windows\updspapi.log
2012-08-16 05:09 - 2012-08-16 05:08 - 00011942 ____A C:\Windows\KB2723135.log
2012-08-16 05:05 - 2012-08-16 05:01 - 00016405 ____A C:\Windows\KB2722913-IE8.log
2012-08-14 15:48 - 2012-08-14 15:48 - 09826504 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerInstaller.exe
2012-08-14 15:48 - 2012-07-22 15:23 - 00426184 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2012-08-14 15:48 - 2011-05-26 09:00 - 00070344 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2012-08-08 18:11 - 2012-08-08 18:10 - 34294688 ____A C:\Documents and Settings\Owner\Desktop\vlcmediaplayer-setup.exe
2012-08-05 22:10 - 2009-10-26 15:00 - 01577188 __ASH C:\Documents and Settings\Owner\My Documents\Thumbs.db
2012-08-05 14:38 - 2006-10-09 02:49 - 00007680 _ASHC C:\Windows\Thumbs.db
2012-08-05 02:53 - 2012-08-05 02:53 - 00012188 ____A C:\Windows\DPINST.LOG
2012-07-23 01:28 - 2012-07-23 01:28 - 00001867 ____A C:\Documents and Settings\Owner\Desktop\Spotify.lnk
2012-07-22 17:55 - 2012-07-22 17:55 - 00000104 ____A C:\Documents and Settings\Owner\Desktop\Internet.lnk
2012-07-22 17:37 - 2012-07-22 17:37 - 00000932 ____A C:\Documents and Settings\Owner\My Documents\My Sharing Folders.lnk
2012-07-22 17:11 - 2004-08-04 08:00 - 00000578 ____A C:\Windows\win.ini
2012-07-22 11:34 - 2012-07-22 01:28 - 00026529 ____A C:\Windows\KB2707511.log
2012-07-22 11:33 - 2012-07-22 11:32 - 00013956 ____A C:\Windows\KB2659262.log
2012-07-22 11:27 - 2012-07-22 01:28 - 00024096 ____A C:\Windows\KB2691442.log
2012-07-22 11:17 - 2012-07-22 11:17 - 00016109 ____A C:\Windows\KB2718523.log
2012-07-22 11:17 - 2012-07-22 01:27 - 00023075 ____A C:\Windows\KB2655992.log
2012-07-22 11:08 - 2012-07-22 11:07 - 00015151 ____A C:\Windows\KB2686509.log
2012-07-22 11:05 - 2012-07-22 01:27 - 00022297 ____A C:\Windows\KB2719985.log
2012-07-22 11:04 - 2012-07-22 01:27 - 00021700 ____A C:\Windows\KB2718704.log
2012-07-22 10:50 - 2012-07-22 10:47 - 00018232 ____A C:\Windows\KB2699988-IE8.log
2012-07-22 10:46 - 2012-07-22 10:45 - 00009855 ____A C:\Windows\KB2685939.log
2012-07-22 10:43 - 2012-07-22 01:24 - 00016374 ____A C:\Windows\KB2653956.log
2012-07-22 10:39 - 2012-07-22 10:37 - 00009536 ____A C:\Windows\KB2698365.log
2012-07-22 10:36 - 2011-02-04 16:19 - 00001945 ___AC C:\Windows\epplauncher.mif
2012-07-22 05:28 - 2012-07-22 01:20 - 00021257 ____A C:\Windows\KB2676562.log
2012-07-12 10:29 - 2012-07-12 10:29 - 04534272 ____A C:\Documents and Settings\All Users\Application Data\ReadOnlyInstaller.msi
2012-07-06 09:58 - 2012-07-06 09:58 - 00078336 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\browser.dll
2012-07-06 09:58 - 2008-10-24 07:27 - 00337920 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\netapi32.dll
2012-07-06 09:58 - 2004-08-04 08:00 - 00337920 ____A (Microsoft Corporation) C:\Windows\System32\netapi32.dll
2012-07-06 09:58 - 2004-08-04 08:00 - 00078336 ____A (Microsoft Corporation) C:\Windows\System32\browser.dll
2012-07-04 10:05 - 2011-08-11 12:30 - 00139784 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\rdpwd.sys
2012-07-04 10:05 - 2005-12-08 15:44 - 00139784 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpwd.sys
2012-07-03 09:40 - 2008-10-15 18:04 - 01866112 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\win32k.sys
2012-07-03 09:40 - 2004-08-04 08:00 - 01866112 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-07-03 01:19 - 2007-05-09 15:16 - 11111424 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ieframe.dll
2012-07-03 01:19 - 2006-10-17 17:33 - 11111424 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-07-02 13:49 - 2012-07-22 01:27 - 00521728 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\jsdbgui.dll
2012-07-02 13:49 - 2010-06-11 21:23 - 00743424 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iedvtool.dll
2012-07-02 13:49 - 2009-08-30 22:02 - 00247808 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ieproxy.dll
2012-07-02 13:49 - 2009-08-30 22:02 - 00012800 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\xpshims.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 02000384 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iertutil.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 00629760 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\msfeeds.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 00055296 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\msfeedsbs.dll
2012-07-02 13:49 - 2006-10-17 17:33 - 00629760 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2012-07-02 13:49 - 2006-10-17 17:33 - 00055296 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2012-07-02 13:49 - 2006-10-17 16:57 - 02000384 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 06008320 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\mshtml.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 06008320 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 01469440 ____N (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-07-02 13:49 - 2004-08-04 08:00 - 01469440 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\inetcpl.cpl
2012-07-02 13:49 - 2004-08-04 08:00 - 01212416 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\urlmon.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 01212416 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00916992 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\wininet.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00916992 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00611840 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mstime.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00611840 ____A (Microsoft Corporation) C:\Windows\System32\mstime.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00387584 ____N (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00387584 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iedkcs32.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00206848 ____N (Microsoft Corporation) C:\Windows\System32\occache.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00206848 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\occache.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00184320 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iepeers.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00105984 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\url.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00105984 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00067072 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mshtmled.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00043520 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\licmgr10.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00043520 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00025600 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\jsproxy.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00025600 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-07-02 08:05 - 2004-08-04 08:00 - 00385024 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2012-07-02 08:05 - 2004-08-04 08:00 - 00174080 ____N (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2012-07-02 08:05 - 2004-08-04 08:00 - 00174080 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ie4uinit.exe
2012-06-08 10:26 - 2008-06-17 15:02 - 08462848 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\shell32.dll
2012-06-08 10:26 - 2004-08-04 08:00 - 08462848 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll
==================== Known DLLs (Whitelisted) =================
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== EXE ASSOCIATION =====================
HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK
==================== Restore Points (XP) =====================
RP: -> 2012-09-01 22:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP73
RP: -> 2012-08-31 22:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP72
RP: -> 2012-08-31 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP71
RP: -> 2012-08-30 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP70
RP: -> 2012-08-30 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP69
RP: -> 2012-08-29 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP68
RP: -> 2012-08-29 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP67
RP: -> 2012-08-28 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP66
RP: -> 2012-08-28 05:01 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP65
RP: -> 2012-08-28 03:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP64
RP: -> 2012-08-28 03:07 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP63
RP: -> 2012-08-28 02:50 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP62
RP: -> 2012-08-28 01:59 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP61
RP: -> 2012-08-27 22:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP60
RP: -> 2012-08-27 19:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP59
RP: -> 2012-08-27 18:51 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP58
RP: -> 2012-08-27 17:37 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP57
RP: -> 2012-08-27 13:36 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP56
RP: -> 2012-08-26 22:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP55
RP: -> 2012-08-26 16:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP54
RP: -> 2012-08-26 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP53
RP: -> 2012-08-26 03:59 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP52
RP: -> 2012-08-25 16:21 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP51
RP: -> 2012-08-25 15:13 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP50
RP: -> 2012-08-24 12:55 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP49
RP: -> 2012-08-23 12:51 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP48
RP: -> 2012-08-22 18:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP47
RP: -> 2012-08-21 15:12 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP46
RP: -> 2012-08-20 15:09 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP45
RP: -> 2012-08-19 03:21 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP44
RP: -> 2012-08-18 16:28 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP43
RP: -> 2012-08-17 15:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP42
RP: -> 2012-08-16 12:28 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP41
RP: -> 2012-08-16 05:01 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP40
RP: -> 2012-08-15 12:31 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP39
RP: -> 2012-08-14 12:27 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP38
RP: -> 2012-08-13 12:30 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP37
RP: -> 2012-08-13 04:32 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP36
RP: -> 2012-08-12 02:48 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP35
RP: -> 2012-08-11 15:33 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP34
RP: -> 2012-08-10 02:46 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP33
RP: -> 2012-08-09 02:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP32
RP: -> 2012-08-08 02:45 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP31
RP: -> 2012-08-07 02:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP30
RP: -> 2012-08-06 02:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP29
RP: -> 2012-08-05 02:54 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP28
RP: -> 2012-08-05 02:53 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP27
RP: -> 2012-08-05 02:39 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP26
RP: -> 2012-08-02 21:10 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP25
RP: -> 2012-08-01 21:17 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP24
RP: -> 2012-08-01 18:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP23
RP: -> 2012-07-31 12:32 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP22
RP: -> 2012-07-30 11:43 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP21
RP: -> 2012-07-29 11:40 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP20
RP: -> 2012-07-29 04:18 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP19
RP: -> 2012-07-28 11:44 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP18
RP: -> 2012-07-27 20:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP17
RP: -> 2012-07-26 16:43 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP16
RP: -> 2012-07-25 13:26 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP15
RP: -> 2012-07-24 13:24 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP14
RP: -> 2012-07-23 12:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP13
==================== Memory info ===========================
Percentage of memory in use: 39%
Total physical RAM: 510 MB
Available physical RAM: 306.05 MB
Total Pagefile: 457.71 MB
Available Pagefile: 335.89 MB
Total Virtual: 2047.88 MB
Available Virtual: 2003.18 MB
==================== Partitions ============================
2 Drive b: (RAMDisk) (Fixed) (Total:0.06 GB) (Free:0.06 GB) NTFS
3 Drive c: () (Fixed) (Total:71.46 GB) (Free:50.48 GB) NTFS ==>[Drive with boot components (Windows XP)]
5 Drive e: () (Removable) (Total:0.95 GB) (Free:0.71 GB) FAT
6 Drive x: (ReatogoPE) (CDROM) (Total:0.43 GB) (Free:0 GB) CDFS
Disk ### Status Size Free Dyn Gpt
-------- ---------- ------- ------- --- ---
Disk 0 Online 74 GB 0 B
Partitions of Disk 0:
===============
Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 OEM 39 MB 32 KB
Partition 2 Primary 71 GB 39 MB
Partition 3 Unknown 3075 MB 71 GB
==================================================================================
Disk: 0
Partition 1
Type : DE
Hidden: Yes
Active: No
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 FAT Partition 39 MB Healthy
==================================================================================
Disk: 0
Partition 2
Type : 07
Hidden: No
Active: Yes
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 3 C NTFS Partition 71 GB Healthy
==================================================================================
Disk: 0
Partition 3
Type : DB
Hidden: Yes
Active: No
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 4 FAT32 Partition 3075 MB Healthy
==================================================================================
==================== End Of Log =============================
Would you like a photo of the screen so you know exactly what the error is?
Here's the log:
Scan result of Farbar Recovery Scan Tool (FRST written by Farbar) Version: 02-09-2012 03
Ran by SYSTEM at 04-09-2012 16:39:42
Running from E:\
Microsoft Windows XP (X86) OS Language: English(US)
The current controlset is ControlSet003
==================== Registry (Whitelisted) ===================
HKLM\...\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k [x]
HKLM\...\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey [931200 2012-03-26] (Microsoft Corporation)
HKLM\...\Run: [TelevisionFanatic Search Scope Monitor] "C:\PROGRA~1\TELEVI~2\bar\1.bin\64srchmn.exe" /m=2 /w /h [x]
HKLM\...\Run: [TelevisionFanatic Browser Plugin Loader] C:\PROGRA~1\TELEVI~2\bar\1.bin\64brmon.exe [x]
HKLM\...\Run: [SpeetItUpFree] "C:\Program Files\SpeedItup Free\speeditupfree.exe" [x]
HKU\Owner\...\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe [15360 2008-04-13] (Microsoft Corporation)
HKU\Owner\...\Run: [Search Protection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe [x]
HKU\Owner\...\Run: [EPSON NX100 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEDA.EXE /FU "C:\WINDOWS\TEMP\E_S1C1.tmp" /EF "HKCU" [188928 2008-02-04] (SEIKO EPSON CORPORATION)
HKU\Owner\...\Run: [Software Informer] "C:\Program Files\Software Informer\softinfo.exe" -autorun [x]
HKU\Owner\...\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h [x]
HKU\Owner\...\Run: [Spotify] "C:\Documents and Settings\Owner\Application Data\Spotify\Spotify.exe" /uri spotify:autostart [5576408 2012-08-20] (Spotify Ltd)
HKU\Owner\...\Run: [Spotify Web Helper] "C:\Documents and Settings\Owner\Application Data\Spotify\Data\SpotifyWebHelper.exe" [1193176 2012-08-20] ()
Winlogon\Notify\!SASWinLogon: C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [X]
Winlogon\Notify\igfxcui: igfxsrvc.dll (Intel Corporation)
Winlogon\Notify\WgaLogon: WgaLogon.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Wireless Connection Manager.lnk
ShortcutTarget: Wireless Connection Manager.lnk -> C:\Program Files\D-Link\DWA-552 revA\wirelesscm.exe (D-Link Corp.)
========================== Services (Whitelisted) ========================
2 DefaultTabUpdate; "C:\Documents and Settings\Owner\Application Data\DefaultTab\DefaultTab\DTUpdate.exe" [107520 2012-08-26] ()
2 Eventlog; C:\Windows\System32\services.exe [110592 2009-02-06] (Microsoft Corporation)
3 jswpsapi; C:\Program Files\D-Link\DWA-552 revA\jswpsapi.exe [356433 2008-09-26] (Atheros Communications, Inc.)
3 PD1171Srv; C:\WINDOWS\system32\P1171Srv.exe [20480 2004-02-03] (Creative Technology Ltd.)
2 WLSVC; C:\Program Files\D-Link\DWA-552 revA\WLSVC.exe [167936 2009-02-11] ()
3 AppMgmt; C:\Windows\System32\appmgmts.dll [x]
3 FontCache3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [x]
3 idsvc; "c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe" [x]
2 JavaQuickStarterService; "C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf" [x]
2 MsMpSvc; "c:\Program Files\Microsoft Security Client\MsMpEng.exe" [x]
4 NetTcpPortSharing; "c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe" [x]
2 TelevisionFanaticService; C:\PROGRA~1\TELEVI~2\bar\1.bin\64barsvc.exe [x]
==================== Drivers (Whitelisted) ===================
3 AR5416; C:\Windows\System32\DRIVERS\athw.sys [1605056 2010-04-27] (Atheros Communications, Inc.)
3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
1 Cdr4_2K; C:\Windows\System32\Drivers\Cdr4_2K.sys [52624 2009-08-29] (Adaptec)
2 Cdralw2k; C:\Windows\System32\Drivers\Cdralw2k.sys [21913 2009-08-29] (Adaptec)
1 eeCtrl; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [385072 2008-01-19] (Symantec Corporation)
3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [49664 2006-04-12] (HP)
3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16496 2006-04-12] (HP)
3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21568 2006-04-12] (HP)
3 ialm; C:\Windows\System32\DRIVERS\ialmnt5.sys [737874 2004-08-20] (Intel Corporation)
3 JSWSCIMD; C:\Windows\System32\DRIVERS\jswscimd.sys [57440 2008-09-25] (Atheros Communications, Inc.)
3 LVUSBSta; C:\Windows\System32\drivers\LVUSBSta.sys [41752 2008-07-26] (Logitech Inc.)
3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys [38224 2010-12-20] (Malwarebytes Corporation)
0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [171064 2012-03-20] (Microsoft Corporation)
3 NABTSFEC; C:\Windows\System32\DRIVERS\NABTSFEC.sys [85248 2008-04-13] (Microsoft Corporation)
3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
3 pepifilter; C:\Windows\System32\DRIVERS\lv302af.sys [13848 2008-07-26] (Logitech Inc.)
3 PID_PEPI; C:\Windows\System32\DRIVERS\LV302V32.SYS [2570520 2008-07-26] (Logitech Inc.)
1 SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12872 2010-02-17] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
1 SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67656 2010-05-10] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
3 senfilt; C:\Windows\System32\drivers\senfilt.sys [732928 2004-09-17] (Creative Technology Ltd.)
3 SLIP; C:\Windows\System32\DRIVERS\SLIP.sys [11136 2008-04-13] (Microsoft Corporation)
3 streamip; C:\Windows\System32\DRIVERS\StreamIP.sys [15232 2008-04-13] (Microsoft Corporation)
2 WLNdis50; C:\Windows\System32\DRIVERS\wlndis50.sys [20480 2008-02-27] ()
3 WSTCODEC; C:\Windows\System32\DRIVERS\WSTCODEC.SYS [19200 2008-04-13] (Microsoft Corporation)
4 Abiosdsk; [x]
4 abp480n5; [x]
4 adpu160m; [x]
4 Aha154x; [x]
4 aic78u2; [x]
4 aic78xx; [x]
4 AliIde; [x]
4 amsint; [x]
4 asc; [x]
4 asc3350p; [x]
4 asc3550; [x]
4 Atdisk; [x]
4 cd20xrnt; [x]
1 Changer; [x]
4 CmdIde; [x]
4 Cpqarray; [x]
4 dac2w2k; [x]
4 dac960nt; [x]
4 dpti2o; [x]
4 hpn; [x]
1 i2omgmt; [x]
4 i2omp; [x]
4 ini910u; [x]
1 lbrtfdc; [x]
4 mraid35x; [x]
1 PCIDump; [x]
3 PDCOMP; [x]
3 PDFRAME; [x]
3 PDRELI; [x]
3 PDRFRAME; [x]
4 perc2; [x]
4 perc2hib; [x]
0 pstjxmv; C:\Windows\System32\drivers\wfjte.sys [x]
4 ql1080; [x]
4 Ql10wnt; [x]
4 ql12160; [x]
4 ql1240; [x]
4 ql1280; [x]
4 Simbad; [x]
4 Sparrow; [x]
4 symc810; [x]
4 symc8xx; [x]
3 SymIM; C:\Windows\System32\DRIVERS\SymIM.sys [x]
3 SymIMMP; C:\Windows\System32\DRIVERS\SymIM.sys [x]
4 sym_hi; [x]
4 sym_u3; [x]
4 TosIde; [x]
4 ultra; [x]
4 ViaIde; [x]
3 WDICA; [x]
2 zumbus; C:\Windows\System32\DRIVERS\zumbus.sys [x]
==================== NetSvcs (Whitelisted) =================
============ One Month Created Files and Folders ==============
2012-09-02 19:04 - 2012-09-02 19:04 - 00000000 ___DC C:\FRST
2012-09-02 00:49 - 2012-09-02 00:49 - 00010048 ____N C:\bootex.log
2012-09-02 00:47 - 2012-09-02 00:47 - 00000000 __SHD C:\found.000
2012-08-30 05:06 - 2012-08-31 05:29 - 00000000 ____D C:\Windows\System32\XPSViewer
2012-08-30 05:05 - 2012-08-30 05:05 - 00000000 ____D C:\Program Files\MSBuild
2012-08-30 05:04 - 2012-08-30 05:04 - 00000000 ____D C:\Program Files\Reference Assemblies
2012-08-28 03:49 - 2012-08-28 03:50 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2012-08-28 03:07 - 2012-08-28 03:07 - 00000641 ____A C:\Documents and Settings\All Users\Desktop\Wireless Connection Manager.lnk
2012-08-28 03:07 - 2012-08-28 03:07 - 00000000 ____D C:\Program Files\D-Link
2012-08-28 03:07 - 2012-08-28 03:07 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\D-Link
2012-08-28 03:07 - 2008-10-01 03:55 - 00035967 ____A C:\Windows\System32\jswscimdp.cat
2012-08-28 03:07 - 2008-10-01 03:55 - 00035538 ____A C:\Windows\System32\jswscimd.cat
2012-08-28 03:07 - 2008-09-26 21:01 - 00405582 ____A (Atheros Communications, Inc.) C:\Windows\System32\jswscsup.dll
2012-08-28 03:07 - 2008-09-25 21:07 - 00057440 ____A (Atheros Communications, Inc.) C:\Windows\System32\jswscimd.sys
2012-08-28 03:07 - 2008-09-25 21:07 - 00057440 ____A (Atheros Communications, Inc.) C:\Windows\System32\Drivers\jswscimd.sys
2012-08-28 03:07 - 2008-09-08 13:54 - 00010667 ____A C:\Windows\System32\wlndis50.cat
2012-08-28 03:07 - 2008-02-27 12:54 - 00020480 ____A () C:\Windows\System32\wlndis50.sys
2012-08-28 03:07 - 2008-02-27 12:54 - 00020480 ____A () C:\Windows\System32\Drivers\WLNdis50.sys
2012-08-28 03:06 - 2012-08-28 03:06 - 00000000 ____D C:\Windows\pcidevice
2012-08-28 03:06 - 2010-04-27 18:09 - 01605056 ____A (Atheros Communications, Inc.) C:\Windows\System32\Drivers\athw.sys
2012-08-28 03:05 - 2012-08-28 03:05 - 00000000 ____A C:\Windows\setuperr.log
2012-08-28 01:57 - 2012-08-28 05:02 - 00000000 ____D C:\Windows\LastGood.Tmp
2012-08-27 23:02 - 2012-08-27 23:10 - 06955968 ____A (Microsoft Corporation) C:\Documents and Settings\Owner\Desktop\Silverlight.exe
2012-08-26 23:24 - 2012-08-26 23:24 - 00000063 ___AC C:\1.html
2012-08-26 22:50 - 2012-08-26 22:51 - 00000000 ____D C:\Program Files\PriceGong
2012-08-26 22:42 - 2012-08-26 22:42 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\DefaultTab
2012-08-26 21:38 - 2012-08-26 21:38 - 01654976 ____A (W3i, LLC) C:\Documents and Settings\Owner\Desktop\mplayer_tuguu_1271.exe
2012-08-25 15:10 - 2012-08-25 15:10 - 20980010 ____A C:\Documents and Settings\Owner\Desktop\dwa552_drivers_170.zip
2012-08-25 13:36 - 2012-08-25 13:36 - 00000000 ____D C:\Program Files\Copy of Microsoft Security Client
2012-08-25 13:34 - 2012-08-25 13:34 - 00000000 ____D C:\Program Files\Copy of ArcSoft
2012-08-21 16:34 - 2012-08-21 16:34 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-2-toDownload.exe
2012-08-21 16:31 - 2012-08-21 16:32 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-3-toDownload.exe
2012-08-16 15:35 - 2012-08-25 13:27 - 00000000 ____D C:\Documents and Settings\Owner\Desktop\pics
2012-08-16 05:16 - 2012-08-16 05:16 - 00013332 ____A C:\Windows\KB2731847.log
2012-08-16 05:08 - 2012-08-16 05:09 - 00011942 ____A C:\Windows\KB2723135.log
2012-08-16 05:01 - 2012-08-16 05:05 - 00016405 ____A C:\Windows\KB2722913-IE8.log
2012-08-15 22:25 - 2012-08-16 05:18 - 00018547 ____A C:\Windows\KB2712808.log
2012-08-15 22:25 - 2012-08-16 05:10 - 00018161 ____A C:\Windows\KB2705219.log
2012-08-14 15:48 - 2012-08-14 15:48 - 09826504 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerInstaller.exe
2012-08-08 18:17 - 2012-08-08 18:20 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\vlc
2012-08-08 18:14 - 2012-08-27 18:16 - 00000000 ____D C:\Program Files\VideoLAN
2012-08-08 18:12 - 2012-08-08 18:12 - 00000000 ____D C:\Documents and Settings\Owner\Local Settings\Application Data\TNT2
2012-08-08 18:10 - 2012-08-08 18:11 - 34294688 ____A C:\Documents and Settings\Owner\Desktop\vlcmediaplayer-setup.exe
2012-08-05 02:55 - 2012-08-27 18:55 - 00000000 ____D C:\Documents and Settings\Owner\Application Data\Teleca
2012-08-05 02:54 - 2012-08-27 18:55 - 00000000 ____D C:\Program Files\Common Files\Teleca Shared
2012-08-05 02:53 - 2012-08-27 18:56 - 00000000 ____D C:\Program Files\HTC
2012-08-05 02:53 - 2012-08-05 02:53 - 00012188 ____A C:\Windows\DPINST.LOG
============ 3 Months Modified Files ========================
2012-09-03 20:20 - 2005-12-08 07:39 - 00263824 ____A C:\Windows\System32\FNTCACHE.DAT
2012-09-02 00:49 - 2012-09-02 00:49 - 00010048 ____N C:\bootex.log
2012-09-01 23:48 - 2012-07-22 15:23 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2012-09-01 23:09 - 2005-12-08 15:47 - 01225068 ____A C:\Windows\WindowsUpdate.log
2012-09-01 10:48 - 2005-12-08 15:52 - 00032460 ____A C:\Windows\SchedLgU.Txt
2012-08-31 13:57 - 2009-10-26 14:45 - 00118272 __ASH C:\Documents and Settings\Owner\Desktop\Thumbs.db
2012-08-30 05:07 - 2005-12-08 07:40 - 00511862 ____A C:\Windows\System32\PerfStringBackup.INI
2012-08-29 05:01 - 2011-10-28 19:27 - 00023894 ___AC C:\Windows\KB2564958.log
2012-08-28 05:05 - 2012-07-22 10:52 - 00025551 ____A C:\Windows\KB2695962.log
2012-08-28 05:05 - 2012-01-10 13:19 - 00019556 ___AC C:\Windows\KB2618451.log
2012-08-28 03:08 - 2011-02-08 13:06 - 00262354 ____A C:\Windows\setupapi.log
2012-08-28 03:07 - 2012-08-28 03:07 - 00000641 ____A C:\Documents and Settings\All Users\Desktop\Wireless Connection Manager.lnk
2012-08-28 03:05 - 2012-08-28 03:05 - 00000000 ____A C:\Windows\setuperr.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00538508 ___AC C:\Windows\FaxSetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00259985 ___AC C:\Windows\ocgen.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00206798 ___AC C:\Windows\tsoc.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00177944 ___AC C:\Windows\comsetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00108289 ___AC C:\Windows\ntdtcsetup.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00084785 ___AC C:\Windows\iis6.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00029881 ___AC C:\Windows\ocmsn.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00027047 ___AC C:\Windows\msgsocm.log
2012-08-28 03:05 - 2011-02-09 05:00 - 00001917 ____A C:\Windows\imsins.log
2012-08-27 23:10 - 2012-08-27 23:02 - 06955968 ____A (Microsoft Corporation) C:\Documents and Settings\Owner\Desktop\Silverlight.exe
2012-08-27 22:43 - 2012-07-22 10:46 - 00000384 ___AH C:\Windows\Tasks\Microsoft Antimalware Scheduled Scan.job
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\Owner\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\NetworkService\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000062 __ASH C:\Documents and Settings\LocalService\Local Settings\desktop.ini
2012-08-27 22:33 - 2005-12-08 15:52 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2012-08-27 22:33 - 2005-12-08 07:42 - 00000159 ____A C:\Windows\wiadebug.log
2012-08-27 22:33 - 2005-12-08 07:42 - 00000049 ____A C:\Windows\wiaservc.log
2012-08-27 22:33 - 2004-08-04 08:00 - 00002206 ____A C:\Windows\System32\wpa.dbl
2012-08-27 19:41 - 2005-12-08 15:52 - 00000278 ___SH C:\Documents and Settings\Owner\ntuser.ini
2012-08-27 18:49 - 2006-01-22 15:33 - 00067216 ___AC C:\Documents and Settings\Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2012-08-26 23:24 - 2012-08-26 23:24 - 00000063 ___AC C:\1.html
2012-08-26 21:38 - 2012-08-26 21:38 - 01654976 ____A (W3i, LLC) C:\Documents and Settings\Owner\Desktop\mplayer_tuguu_1271.exe
2012-08-26 06:51 - 2009-11-04 14:24 - 00000456 ____A C:\Windows\Tasks\Driver Robot.job
2012-08-25 15:10 - 2012-08-25 15:10 - 20980010 ____A C:\Documents and Settings\Owner\Desktop\dwa552_drivers_170.zip
2012-08-25 14:10 - 2011-02-08 13:06 - 00000671 ____A C:\Windows\setupact.log
2012-08-25 13:32 - 2006-10-09 02:49 - 00020992 ___AC C:\Documents and Settings\Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-08-21 16:34 - 2012-08-21 16:34 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-2-toDownload.exe
2012-08-21 16:32 - 2012-08-21 16:31 - 01096976 ____A C:\Documents and Settings\Owner\Desktop\windows-xp-service-pack-3-toDownload.exe
2012-08-21 01:22 - 2011-06-17 19:47 - 00003627 ___AC C:\Windows\wmsetup.log
2012-08-16 05:18 - 2012-08-15 22:25 - 00018547 ____A C:\Windows\KB2712808.log
2012-08-16 05:18 - 2011-02-09 05:00 - 00001374 ____A C:\Windows\imsins.BAK
2012-08-16 05:16 - 2012-08-16 05:16 - 00013332 ____A C:\Windows\KB2731847.log
2012-08-16 05:11 - 2005-12-10 12:01 - 59884088 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2012-08-16 05:10 - 2012-08-15 22:25 - 00018161 ____A C:\Windows\KB2705219.log
2012-08-16 05:10 - 2011-02-09 05:01 - 00034972 ___AC C:\Windows\updspapi.log
2012-08-16 05:09 - 2012-08-16 05:08 - 00011942 ____A C:\Windows\KB2723135.log
2012-08-16 05:05 - 2012-08-16 05:01 - 00016405 ____A C:\Windows\KB2722913-IE8.log
2012-08-14 15:48 - 2012-08-14 15:48 - 09826504 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerInstaller.exe
2012-08-14 15:48 - 2012-07-22 15:23 - 00426184 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2012-08-14 15:48 - 2011-05-26 09:00 - 00070344 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2012-08-08 18:11 - 2012-08-08 18:10 - 34294688 ____A C:\Documents and Settings\Owner\Desktop\vlcmediaplayer-setup.exe
2012-08-05 22:10 - 2009-10-26 15:00 - 01577188 __ASH C:\Documents and Settings\Owner\My Documents\Thumbs.db
2012-08-05 14:38 - 2006-10-09 02:49 - 00007680 _ASHC C:\Windows\Thumbs.db
2012-08-05 02:53 - 2012-08-05 02:53 - 00012188 ____A C:\Windows\DPINST.LOG
2012-07-23 01:28 - 2012-07-23 01:28 - 00001867 ____A C:\Documents and Settings\Owner\Desktop\Spotify.lnk
2012-07-22 17:55 - 2012-07-22 17:55 - 00000104 ____A C:\Documents and Settings\Owner\Desktop\Internet.lnk
2012-07-22 17:37 - 2012-07-22 17:37 - 00000932 ____A C:\Documents and Settings\Owner\My Documents\My Sharing Folders.lnk
2012-07-22 17:11 - 2004-08-04 08:00 - 00000578 ____A C:\Windows\win.ini
2012-07-22 11:34 - 2012-07-22 01:28 - 00026529 ____A C:\Windows\KB2707511.log
2012-07-22 11:33 - 2012-07-22 11:32 - 00013956 ____A C:\Windows\KB2659262.log
2012-07-22 11:27 - 2012-07-22 01:28 - 00024096 ____A C:\Windows\KB2691442.log
2012-07-22 11:17 - 2012-07-22 11:17 - 00016109 ____A C:\Windows\KB2718523.log
2012-07-22 11:17 - 2012-07-22 01:27 - 00023075 ____A C:\Windows\KB2655992.log
2012-07-22 11:08 - 2012-07-22 11:07 - 00015151 ____A C:\Windows\KB2686509.log
2012-07-22 11:05 - 2012-07-22 01:27 - 00022297 ____A C:\Windows\KB2719985.log
2012-07-22 11:04 - 2012-07-22 01:27 - 00021700 ____A C:\Windows\KB2718704.log
2012-07-22 10:50 - 2012-07-22 10:47 - 00018232 ____A C:\Windows\KB2699988-IE8.log
2012-07-22 10:46 - 2012-07-22 10:45 - 00009855 ____A C:\Windows\KB2685939.log
2012-07-22 10:43 - 2012-07-22 01:24 - 00016374 ____A C:\Windows\KB2653956.log
2012-07-22 10:39 - 2012-07-22 10:37 - 00009536 ____A C:\Windows\KB2698365.log
2012-07-22 10:36 - 2011-02-04 16:19 - 00001945 ___AC C:\Windows\epplauncher.mif
2012-07-22 05:28 - 2012-07-22 01:20 - 00021257 ____A C:\Windows\KB2676562.log
2012-07-12 10:29 - 2012-07-12 10:29 - 04534272 ____A C:\Documents and Settings\All Users\Application Data\ReadOnlyInstaller.msi
2012-07-06 09:58 - 2012-07-06 09:58 - 00078336 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\browser.dll
2012-07-06 09:58 - 2008-10-24 07:27 - 00337920 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\netapi32.dll
2012-07-06 09:58 - 2004-08-04 08:00 - 00337920 ____A (Microsoft Corporation) C:\Windows\System32\netapi32.dll
2012-07-06 09:58 - 2004-08-04 08:00 - 00078336 ____A (Microsoft Corporation) C:\Windows\System32\browser.dll
2012-07-04 10:05 - 2011-08-11 12:30 - 00139784 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\rdpwd.sys
2012-07-04 10:05 - 2005-12-08 15:44 - 00139784 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpwd.sys
2012-07-03 09:40 - 2008-10-15 18:04 - 01866112 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\win32k.sys
2012-07-03 09:40 - 2004-08-04 08:00 - 01866112 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-07-03 01:19 - 2007-05-09 15:16 - 11111424 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ieframe.dll
2012-07-03 01:19 - 2006-10-17 17:33 - 11111424 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-07-02 13:49 - 2012-07-22 01:27 - 00521728 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\jsdbgui.dll
2012-07-02 13:49 - 2010-06-11 21:23 - 00743424 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iedvtool.dll
2012-07-02 13:49 - 2009-08-30 22:02 - 00247808 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ieproxy.dll
2012-07-02 13:49 - 2009-08-30 22:02 - 00012800 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\xpshims.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 02000384 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iertutil.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 00629760 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\msfeeds.dll
2012-07-02 13:49 - 2007-05-09 15:16 - 00055296 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\msfeedsbs.dll
2012-07-02 13:49 - 2006-10-17 17:33 - 00629760 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2012-07-02 13:49 - 2006-10-17 17:33 - 00055296 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2012-07-02 13:49 - 2006-10-17 16:57 - 02000384 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 06008320 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\mshtml.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 06008320 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 01469440 ____N (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-07-02 13:49 - 2004-08-04 08:00 - 01469440 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\inetcpl.cpl
2012-07-02 13:49 - 2004-08-04 08:00 - 01212416 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\urlmon.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 01212416 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00916992 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\wininet.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00916992 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00611840 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mstime.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00611840 ____A (Microsoft Corporation) C:\Windows\System32\mstime.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00387584 ____N (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00387584 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iedkcs32.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00206848 ____N (Microsoft Corporation) C:\Windows\System32\occache.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00206848 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\occache.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00184320 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iepeers.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00105984 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\url.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00105984 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00067072 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mshtmled.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00043520 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\licmgr10.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00043520 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00025600 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\jsproxy.dll
2012-07-02 13:49 - 2004-08-04 08:00 - 00025600 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-07-02 08:05 - 2004-08-04 08:00 - 00385024 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2012-07-02 08:05 - 2004-08-04 08:00 - 00174080 ____N (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2012-07-02 08:05 - 2004-08-04 08:00 - 00174080 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ie4uinit.exe
2012-06-08 10:26 - 2008-06-17 15:02 - 08462848 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\shell32.dll
2012-06-08 10:26 - 2004-08-04 08:00 - 08462848 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll
==================== Known DLLs (Whitelisted) =================
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== EXE ASSOCIATION =====================
HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK
==================== Restore Points (XP) =====================
RP: -> 2012-09-01 22:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP73
RP: -> 2012-08-31 22:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP72
RP: -> 2012-08-31 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP71
RP: -> 2012-08-30 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP70
RP: -> 2012-08-30 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP69
RP: -> 2012-08-29 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP68
RP: -> 2012-08-29 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP67
RP: -> 2012-08-28 22:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP66
RP: -> 2012-08-28 05:01 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP65
RP: -> 2012-08-28 03:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP64
RP: -> 2012-08-28 03:07 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP63
RP: -> 2012-08-28 02:50 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP62
RP: -> 2012-08-28 01:59 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP61
RP: -> 2012-08-27 22:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP60
RP: -> 2012-08-27 19:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP59
RP: -> 2012-08-27 18:51 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP58
RP: -> 2012-08-27 17:37 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP57
RP: -> 2012-08-27 13:36 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP56
RP: -> 2012-08-26 22:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP55
RP: -> 2012-08-26 16:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP54
RP: -> 2012-08-26 05:00 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP53
RP: -> 2012-08-26 03:59 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP52
RP: -> 2012-08-25 16:21 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP51
RP: -> 2012-08-25 15:13 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP50
RP: -> 2012-08-24 12:55 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP49
RP: -> 2012-08-23 12:51 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP48
RP: -> 2012-08-22 18:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP47
RP: -> 2012-08-21 15:12 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP46
RP: -> 2012-08-20 15:09 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP45
RP: -> 2012-08-19 03:21 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP44
RP: -> 2012-08-18 16:28 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP43
RP: -> 2012-08-17 15:49 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP42
RP: -> 2012-08-16 12:28 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP41
RP: -> 2012-08-16 05:01 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP40
RP: -> 2012-08-15 12:31 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP39
RP: -> 2012-08-14 12:27 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP38
RP: -> 2012-08-13 12:30 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP37
RP: -> 2012-08-13 04:32 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP36
RP: -> 2012-08-12 02:48 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP35
RP: -> 2012-08-11 15:33 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP34
RP: -> 2012-08-10 02:46 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP33
RP: -> 2012-08-09 02:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP32
RP: -> 2012-08-08 02:45 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP31
RP: -> 2012-08-07 02:47 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP30
RP: -> 2012-08-06 02:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP29
RP: -> 2012-08-05 02:54 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP28
RP: -> 2012-08-05 02:53 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP27
RP: -> 2012-08-05 02:39 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP26
RP: -> 2012-08-02 21:10 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP25
RP: -> 2012-08-01 21:17 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP24
RP: -> 2012-08-01 18:42 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP23
RP: -> 2012-07-31 12:32 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP22
RP: -> 2012-07-30 11:43 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP21
RP: -> 2012-07-29 11:40 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP20
RP: -> 2012-07-29 04:18 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP19
RP: -> 2012-07-28 11:44 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP18
RP: -> 2012-07-27 20:57 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP17
RP: -> 2012-07-26 16:43 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP16
RP: -> 2012-07-25 13:26 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP15
RP: -> 2012-07-24 13:24 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP14
RP: -> 2012-07-23 12:23 - 024576 _restore{C5CE5F2E-4A5B-454A-9037-27DA643D364B}\RP13
==================== Memory info ===========================
Percentage of memory in use: 39%
Total physical RAM: 510 MB
Available physical RAM: 306.05 MB
Total Pagefile: 457.71 MB
Available Pagefile: 335.89 MB
Total Virtual: 2047.88 MB
Available Virtual: 2003.18 MB
==================== Partitions ============================
2 Drive b: (RAMDisk) (Fixed) (Total:0.06 GB) (Free:0.06 GB) NTFS
3 Drive c: () (Fixed) (Total:71.46 GB) (Free:50.48 GB) NTFS ==>[Drive with boot components (Windows XP)]
5 Drive e: () (Removable) (Total:0.95 GB) (Free:0.71 GB) FAT
6 Drive x: (ReatogoPE) (CDROM) (Total:0.43 GB) (Free:0 GB) CDFS
Disk ### Status Size Free Dyn Gpt
-------- ---------- ------- ------- --- ---
Disk 0 Online 74 GB 0 B
Partitions of Disk 0:
===============
Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 OEM 39 MB 32 KB
Partition 2 Primary 71 GB 39 MB
Partition 3 Unknown 3075 MB 71 GB
==================================================================================
Disk: 0
Partition 1
Type : DE
Hidden: Yes
Active: No
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 FAT Partition 39 MB Healthy
==================================================================================
Disk: 0
Partition 2
Type : 07
Hidden: No
Active: Yes
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 3 C NTFS Partition 71 GB Healthy
==================================================================================
Disk: 0
Partition 3
Type : DB
Hidden: Yes
Active: No
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 4 FAT32 Partition 3075 MB Healthy
==================================================================================
==================== End Of Log =============================
#14
Posted 05 September 2012 - 07:25 AM
Essexboy
-
- Retired Staff
-
- 69,964 posts
GeekU Moderator
If you could please. Could you also confirm that you ran the last fixlist.txt
#15
Posted 05 September 2012 - 12:05 PM
devdyer
- Topic Starter
-
- Member
-
- 24 posts
Member
Hmmm ...
I'm fairly certain.
I ran it. Posted the log. You provided another one. I deleted the previous one and downloaded the new one.
Am I doing that correctly?
I'm fairly certain.
I ran it. Posted the log. You provided another one. I deleted the previous one and downloaded the new one.
Am I doing that correctly?
Similar Topics
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
As Featured On:
Sign In
Create Account
