Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

AVG Secure Search

Started by ttsstr5 , Sep 04 2012 07:49 AM

  • Please log in to reply

#1
ttsstr5
Posted 04 September 2012 - 07:49 AM

ttsstr5

    Member

  • Member
  • PipPip
  • 40 posts
I bought a used netbook. It has Win8 preview installed on it. I use Google sync to keep my browser info current on all my computers. When I load chrome and it doesn't matter from what computer I get the AVG secure search page. I have not installed AVG on any of my computers. I have searched online was directed to download adwcleaner and it works temporarily for that session but if I shut the computer down upon next boot the AVG is back. I have included an OTL report including the "extras" txt file that also opened. And no I do not have any virus protection on here as I have not been able to find one compatible with Win8. Hopefully you can point me in the right direction. Although I would rather get the OS that is supposed to be on here back, but not luck finding any information on Win7 starter edition.


OTL logfile created on: 9/4/2012 8:34:24 AM - Run 1
OTL by OldTimer - Version 3.2.60.0 Folder = C:\Users\Brandy\Desktop
Professional (Version = 6.2.8400) - Type = NTWorkstation
Internet Explorer (Version = 9.10.8400.0)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1013.09 Mb Total Physical Memory | 267.95 Mb Available Physical Memory | 26.45% Memory free
1.99 Gb Paging File | 1.10 Gb Available in Paging File | 55.26% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 148.95 Gb Total Space | 137.72 Gb Free Space | 92.46% Space Free | Partition Type: NTFS

Computer Name: SCHOOLWORK | User Name: Brandy | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/09/04 08:33:42 | 000,599,040 | ---- | M] (OldTimer Tools) -- C:\Users\Brandy\Desktop\OTL.exe
PRC - [2012/05/19 03:04:27 | 000,104,272 | ---- | M] (Microsoft Corporation) -- C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.3364.511_x86__8wekyb3d8bbwe\LiveComm.exe
PRC - [2012/05/18 23:57:44 | 002,104,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2012/05/18 23:57:44 | 000,745,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\ImmersiveControlPanel\SystemSettings.exe
PRC - [2012/05/18 23:49:33 | 000,030,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RuntimeBroker.exe
PRC - [2012/05/18 23:48:52 | 000,242,040 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MpCmdRun.exe
PRC - [2012/05/18 23:48:52 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MsMpEng.exe
PRC - [2012/05/18 23:43:54 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhostex.exe
PRC - [2012/05/18 23:43:54 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2012/05/18 23:43:20 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dasHost.exe


========== Modules (No Company Name) ==========

MOD - [2012/08/29 00:04:18 | 000,460,312 | ---- | M] () -- C:\Users\Brandy\AppData\Local\Google\Chrome\Application\22.0.1229.26\ppGoogleNaClPluginChrome.dll
MOD - [2012/08/29 00:04:17 | 012,282,904 | ---- | M] () -- C:\Users\Brandy\AppData\Local\Google\Chrome\Application\22.0.1229.26\PepperFlash\pepflashplayer.dll
MOD - [2012/08/29 00:04:15 | 004,005,912 | ---- | M] () -- C:\Users\Brandy\AppData\Local\Google\Chrome\Application\22.0.1229.26\pdf.dll
MOD - [2012/08/29 00:02:59 | 000,578,072 | ---- | M] () -- C:\Users\Brandy\AppData\Local\Google\Chrome\Application\22.0.1229.26\libglesv2.dll
MOD - [2012/08/29 00:02:58 | 000,123,416 | ---- | M] () -- C:\Users\Brandy\AppData\Local\Google\Chrome\Application\22.0.1229.26\libegl.dll
MOD - [2012/08/29 00:02:47 | 000,156,712 | ---- | M] () -- C:\Users\Brandy\AppData\Local\Google\Chrome\Application\22.0.1229.26\avutil-51.dll
MOD - [2012/08/29 00:02:46 | 000,275,496 | ---- | M] () -- C:\Users\Brandy\AppData\Local\Google\Chrome\Application\22.0.1229.26\avformat-54.dll
MOD - [2012/08/29 00:02:45 | 002,168,360 | ---- | M] () -- C:\Users\Brandy\AppData\Local\Google\Chrome\Application\22.0.1229.26\avcodec-54.dll


========== Services (SafeList) ==========

SRV - [2012/05/23 22:36:03 | 001,515,008 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\wlidsvc.dll -- (wlidsvc)
SRV - [2012/05/19 00:30:01 | 002,188,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\spool\drivers\w32x86\3\PrintConfig.dll -- (PrintNotify)
SRV - [2012/05/18 23:56:45 | 002,002,784 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\WSService.dll -- (WSService)
SRV - [2012/05/18 23:48:52 | 000,013,312 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV - [2012/05/18 23:42:44 | 000,052,224 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wiarpc.dll -- (WiaRpc)
SRV - [2012/05/18 23:42:38 | 000,231,936 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wcmsvc.dll -- (Wcmsvc)
SRV - [2012/05/18 23:42:35 | 000,194,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\vaultsvc.dll -- (VaultSvc)
SRV - [2012/05/18 23:42:23 | 000,113,664 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\TimeBrokerServer.dll -- (TimeBroker)
SRV - [2012/05/18 23:42:19 | 000,115,712 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV - [2012/05/18 23:42:17 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2012/05/18 23:42:17 | 000,010,752 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\svsvc.dll -- (svsvc)
SRV - [2012/05/18 23:41:59 | 000,132,608 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2012/05/18 23:41:36 | 002,029,568 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2012/05/18 23:41:07 | 000,369,664 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netprofmsvc.dll -- (netprofm)
SRV - [2012/05/18 23:41:05 | 000,139,264 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\NcaSvc.dll -- (NcaSvc)
SRV - [2012/05/18 23:41:05 | 000,063,488 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV - [2012/05/18 23:40:32 | 000,350,208 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\lsm.dll -- (LSM)
SRV - [2012/05/18 23:40:25 | 000,044,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\keyiso.dll -- (KeyIso)
SRV - [2012/05/18 23:40:06 | 000,095,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\fhsvc.dll -- (fhsvc)
SRV - [2012/05/18 23:40:02 | 000,026,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\efssvc.dll -- (EFS)
SRV - [2012/05/18 23:39:56 | 000,151,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\DeviceSetupManager.dll -- (DsmSvc)
SRV - [2012/05/18 23:39:53 | 000,259,072 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\das.dll -- (DeviceAssociationService)
SRV - [2012/05/18 23:39:42 | 000,122,368 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\bisrv.dll -- (BrokerInfrastructure)
SRV - [2012/05/18 23:39:40 | 000,107,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AUInstallAgent.dll -- (AllUserInstallAgent)
SRV - [2012/05/18 23:39:39 | 000,137,216 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV - [2012/05/18 20:50:28 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicvss)
SRV - [2012/05/18 20:50:28 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmictimesync)
SRV - [2012/05/18 20:50:28 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicshutdown)
SRV - [2012/05/18 20:50:28 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicrdv)
SRV - [2012/05/18 20:50:28 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmickvpexchange)
SRV - [2012/05/18 20:50:28 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicheartbeat)


========== Driver Services (SafeList) ==========

DRV - [2012/05/19 00:35:09 | 000,025,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\condrv.sys -- (condrv)
DRV - [2012/05/19 00:07:59 | 000,099,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV - [2012/05/19 00:07:59 | 000,070,344 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\EhStorClass.sys -- (EhStorClass)
DRV - [2012/05/19 00:07:56 | 000,085,192 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\3ware.sys -- (3ware)
DRV - [2012/05/19 00:06:09 | 000,285,384 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV - [2012/05/19 00:06:08 | 000,356,048 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\USBHUB3.SYS -- (USBHUB3)
DRV - [2012/05/19 00:06:08 | 000,263,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\USBXHCI.SYS -- (USBXHCI)
DRV - [2012/05/19 00:06:08 | 000,237,776 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\spaceport.sys -- (spaceport)
DRV - [2012/05/19 00:06:08 | 000,079,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\VerifierExt.sys -- (VerifierExt)
DRV - [2012/05/19 00:06:08 | 000,076,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\uaspstor.sys -- (UASPStor)
DRV - [2012/05/19 00:06:08 | 000,066,248 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\storahci.sys -- (storahci)
DRV - [2012/05/19 00:06:07 | 000,179,408 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\UCX01000.SYS -- (UCX01000)
DRV - [2012/05/19 00:06:04 | 000,102,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\msgpioclx.sys -- (GPIOClx0101)
DRV - [2012/05/19 00:06:04 | 000,068,808 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\lsi_sss.sys -- (LSI_SSS)
DRV - [2012/05/19 00:06:04 | 000,059,080 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\mvumis.sys -- (mvumis)
DRV - [2012/05/19 00:06:04 | 000,040,144 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\sdstor.sys -- (sdstor)
DRV - [2012/05/19 00:06:04 | 000,019,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\msgpiowin32.sys -- (msgpiowin32)
DRV - [2012/05/19 00:05:14 | 000,058,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\acpiex.sys -- (acpiex)
DRV - [2012/05/19 00:05:12 | 000,121,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\tpm.sys -- (TPM)
DRV - [2012/05/19 00:05:09 | 000,046,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\System32\Drivers\dam.sys -- (dam)
DRV - [2012/05/19 00:00:59 | 000,028,360 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\Drivers\cnghwassist.sys -- (cnghwassist)
DRV - [2012/05/19 00:00:11 | 000,029,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\terminpt.sys -- (terminpt)
DRV - [2012/05/19 00:00:11 | 000,023,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2012/05/18 23:59:18 | 000,038,600 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\wfplwfs.sys -- (WFPLWFS)
DRV - [2012/05/18 23:56:51 | 000,056,008 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\pdc.sys -- (pdc)
DRV - [2012/05/18 23:56:46 | 000,256,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\clfs.sys -- (CLFS)
DRV - [2012/05/18 23:55:04 | 000,200,904 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\System32\Drivers\WdFilter.sys -- (WdFilter)
DRV - [2012/05/18 23:50:43 | 000,129,984 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\vmbus.sys -- (vmbus)
DRV - [2012/05/18 23:50:43 | 000,042,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\vmstorfl.sys -- (storflt)
DRV - [2012/05/18 23:50:43 | 000,032,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\storvsc.sys -- (storvsc)
DRV - [2012/05/18 23:48:50 | 000,028,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\WdBoot.sys -- (WdBoot)
DRV - [2012/05/18 22:55:33 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV - [2012/05/18 22:54:37 | 000,042,496 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\BasicDisplay.sys -- (BasicDisplay)
DRV - [2012/05/18 22:54:32 | 000,007,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\mshidumdf.sys -- (mshidumdf)
DRV - [2012/05/18 22:54:21 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\HyperVideo.sys -- (HyperVideo)
DRV - [2012/05/18 22:54:18 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\BasicRender.sys -- (BasicRender)
DRV - [2012/05/18 22:53:35 | 000,024,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV - [2012/05/18 22:53:14 | 000,006,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\vms3cap.sys -- (s3cap)
DRV - [2012/05/18 22:53:12 | 000,017,408 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\npsvctrig.sys -- (npsvctrig)
DRV - [2012/05/18 22:53:05 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\fxppm.sys -- (FxPPM)
DRV - [2012/05/18 22:52:50 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\kdnic.sys -- (kdnic)
DRV - [2012/05/18 22:52:46 | 000,009,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\vmgencounter.sys -- (gencounter)
DRV - [2012/05/18 22:52:46 | 000,008,704 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\acpitime.sys -- (acpitime)
DRV - [2012/05/18 22:52:23 | 000,008,704 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\acpipagr.sys -- (acpipagr)
DRV - [2012/05/18 22:52:21 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV - [2012/05/18 22:52:02 | 000,018,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2012/05/18 22:51:57 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BthhfHid.sys -- (bthhfhid)
DRV - [2012/05/18 22:51:46 | 000,010,496 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\hyperkbd.sys -- (hyperkbd)
DRV - [2012/05/18 22:51:40 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SerCx.sys -- (SerCx)
DRV - [2012/05/18 22:51:33 | 000,044,544 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SpbCx.sys -- (SpbCx)
DRV - [2012/05/18 22:51:33 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\vwifimp.sys -- (vwifimp)
DRV - [2012/05/18 22:51:14 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2012/05/18 22:50:53 | 000,044,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\bthhfenum.sys -- (BthHFEnum)
DRV - [2012/05/18 22:50:40 | 000,029,184 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\hidi2c.sys -- (hidi2c)
DRV - [2012/05/18 22:50:38 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2012/05/18 22:50:33 | 000,028,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\dmvsc.sys -- (dmvsc)
DRV - [2012/05/18 22:49:47 | 000,035,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\wpcfltr.sys -- (wpcfltr)
DRV - [2012/05/18 22:49:06 | 000,111,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV - [2012/05/18 22:48:46 | 000,057,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\mslldp.sys -- (MsLldp)
DRV - [2012/05/18 22:48:34 | 000,081,920 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\Drivers\Ndu.sys -- (Ndu)
DRV - [2012/04/26 23:42:13 | 002,273,280 | ---- | M] (Qualcomm Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\athr.sys -- (athr)
DRV - [2012/04/13 13:00:18 | 000,085,504 | ---- | M] (Qualcomm Atheros Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\L1C63x86.sys -- (L1C)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer...84ww45w4482r24p
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE10SR
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Brandy\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Brandy\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)



========== Chrome ==========

CHR - homepage: http://www.currenttimestamp.com/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms},
CHR - homepage: http://www.currenttimestamp.com/
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Brandy\AppData\Local\Google\Chrome\Application\22.0.1229.26\PepperFlash\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Brandy\AppData\Local\Google\Chrome\Application\22.0.1229.26\gcswf32.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Brandy\AppData\Local\Google\Chrome\Application\22.0.1229.26\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Brandy\AppData\Local\Google\Chrome\Application\22.0.1229.26\pdf.dll
CHR - plugin: Java™ Platform SE 7 U7 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Java Deployment Toolkit 7.0.70.10 (Enabled) = C:\Windows\system32\npDeployJava1.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Brandy\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - Extension: Easy Auto Refresh = C:\Users\Brandy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aabcgdmkeabbnleenpncegpcngjpnjkc\1.9_0\
CHR - Extension: Pinky Pie (Jolly) Theme = C:\Users\Brandy\AppData\Local\Google\Chrome\User Data\Default\Extensions\bngbkgfflnbjlfaggpnlocheeghhlfgl\1_0\
CHR - Extension: SpokenText = C:\Users\Brandy\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbdenobeddjjnkbfpcfbdgchnjfafcai\1.2_0\
CHR - Extension: Click Trap Remover = C:\Users\Brandy\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbjnnkbagjpofgaljnneciaeihcnogno\1.0.0_0\
CHR - Extension: LastPass = C:\Users\Brandy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd\2.0.10_0\
CHR - Extension: LessonPlan.it = C:\Users\Brandy\AppData\Local\Google\Chrome\User Data\Default\Extensions\igmkdoohjpfkefcnjlfomajncffgamhf\1.2_0\
CHR - Extension: LiveBinders = C:\Users\Brandy\AppData\Local\Google\Chrome\User Data\Default\Extensions\kagfdmflaniigokendelkpbijalfmehd\1.1_0\
CHR - Extension: Gamers Unite! 1-Click Gifts = C:\Users\Brandy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nacankmfmpcdncjfbnmmogbakklibnol\0.4_0\
CHR - Extension: One Window = C:\Users\Brandy\AppData\Local\Google\Chrome\User Data\Default\Extensions\papnlnnbddhckngcblfljaelgceffobn\2.15_0\

O1 HOSTS File: ([2012/05/19 00:35:11 | 000,000,824 | ---- | M]) - C:\Windows\System32\Drivers\etc\hosts
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1DB163FB-ADF2-4F3C-B135-9817F044BA04}: DhcpNameServer = 192.168.1.1
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012/05/19 03:21:33 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2012/09/04 08:33:34 | 000,599,040 | ---- | C] (OldTimer Tools) -- C:\Users\Brandy\Desktop\OTL.exe
[2012/09/03 12:00:56 | 000,000,000 | ---D | C] -- C:\Users\Brandy\AppData\Local\ElevatedDiagnostics
[2012/09/03 11:46:36 | 000,000,000 | ---D | C] -- C:\Users\Brandy\AppData\Local\HP
[2012/08/31 15:22:11 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2012/08/31 14:49:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2012/08/31 14:49:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2012/08/31 14:48:48 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2012/08/31 14:48:39 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2012/08/31 14:40:00 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2012/08/31 11:38:53 | 000,000,000 | ---D | C] -- C:\Users\Brandy\Desktop\School
[2012/08/30 21:22:05 | 000,000,000 | ---D | C] -- C:\Users\Brandy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012/08/30 21:20:53 | 000,000,000 | ---D | C] -- C:\Users\Brandy\AppData\Local\Google
[2012/08/30 12:34:28 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2012/08/30 12:33:48 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2012/08/30 11:54:58 | 000,000,000 | -HSD | C] -- C:\Recovery
[2012/08/30 11:52:05 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2012/08/30 09:53:40 | 000,000,000 | ---D | C] -- C:\Users\Brandy\AppData\Roaming\Adobe
[2012/08/30 09:53:39 | 000,000,000 | R--D | C] -- C:\Users\Brandy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2012/08/30 09:53:39 | 000,000,000 | R--D | C] -- C:\Users\Brandy\Searches
[2012/08/30 09:53:39 | 000,000,000 | R--D | C] -- C:\Users\Brandy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012/08/30 09:53:38 | 000,000,000 | R--D | C] -- C:\Users\Brandy\Contacts
[2012/08/30 09:53:38 | 000,000,000 | -H-D | C] -- C:\Users\Brandy\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2012/08/30 09:53:09 | 000,000,000 | ---D | C] -- C:\Users\Brandy\AppData\Local\Packages
[2012/08/30 09:53:08 | 000,000,000 | ---D | C] -- C:\ProgramData\PRICache
[2012/08/30 09:53:05 | 000,000,000 | ---D | C] -- C:\Users\Brandy\AppData\Local\VirtualStore
[2012/08/30 09:52:52 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2012/08/30 09:52:45 | 000,000,000 | -HSD | C] -- C:\Users\Brandy\AppData\Local\Temporary Internet Files
[2012/08/30 09:52:45 | 000,000,000 | -HSD | C] -- C:\Users\Brandy\Templates
[2012/08/30 09:52:45 | 000,000,000 | -HSD | C] -- C:\Users\Brandy\Start Menu
[2012/08/30 09:52:45 | 000,000,000 | -HSD | C] -- C:\Users\Brandy\SendTo
[2012/08/30 09:52:45 | 000,000,000 | -HSD | C] -- C:\Users\Brandy\Recent
[2012/08/30 09:52:45 | 000,000,000 | -HSD | C] -- C:\Users\Brandy\PrintHood
[2012/08/30 09:52:45 | 000,000,000 | -HSD | C] -- C:\Users\Brandy\NetHood
[2012/08/30 09:52:45 | 000,000,000 | -HSD | C] -- C:\Users\Brandy\Documents\My Videos
[2012/08/30 09:52:45 | 000,000,000 | -HSD | C] -- C:\Users\Brandy\Documents\My Pictures
[2012/08/30 09:52:45 | 000,000,000 | -HSD | C] -- C:\Users\Brandy\Documents\My Music
[2012/08/30 09:52:45 | 000,000,000 | -HSD | C] -- C:\Users\Brandy\My Documents
[2012/08/30 09:52:45 | 000,000,000 | -HSD | C] -- C:\Users\Brandy\Local Settings
[2012/08/30 09:52:45 | 000,000,000 | -HSD | C] -- C:\Users\Brandy\AppData\Local\History
[2012/08/30 09:52:45 | 000,000,000 | -HSD | C] -- C:\Users\Brandy\Cookies
[2012/08/30 09:52:45 | 000,000,000 | -HSD | C] -- C:\Users\Brandy\Application Data
[2012/08/30 09:52:45 | 000,000,000 | -HSD | C] -- C:\Users\Brandy\AppData\Local\Application Data
[2012/08/30 09:52:44 | 000,000,000 | --SD | C] -- C:\Users\Brandy\AppData\Roaming\Microsoft
[2012/08/30 09:52:44 | 000,000,000 | R--D | C] -- C:\Users\Brandy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
[2012/08/30 09:52:44 | 000,000,000 | R--D | C] -- C:\Users\Brandy\Music
[2012/08/30 09:52:44 | 000,000,000 | R--D | C] -- C:\Users\Brandy\Links
[2012/08/30 09:52:44 | 000,000,000 | R--D | C] -- C:\Users\Brandy\Favorites
[2012/08/30 09:52:44 | 000,000,000 | R--D | C] -- C:\Users\Brandy\Downloads
[2012/08/30 09:52:44 | 000,000,000 | R--D | C] -- C:\Users\Brandy\Documents
[2012/08/30 09:52:44 | 000,000,000 | R--D | C] -- C:\Users\Brandy\Desktop
[2012/08/30 09:52:44 | 000,000,000 | R--D | C] -- C:\Users\Brandy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2012/08/30 09:52:44 | 000,000,000 | R--D | C] -- C:\Users\Brandy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
[2012/08/30 09:52:44 | 000,000,000 | -H-D | C] -- C:\Users\Brandy\AppData
[2012/08/30 09:52:44 | 000,000,000 | ---D | C] -- C:\Users\Brandy\AppData\Local\Temp
[2012/08/30 09:52:44 | 000,000,000 | ---D | C] -- C:\Users\Brandy\AppData\Local\Microsoft
[2012/08/30 09:52:44 | 000,000,000 | ---D | C] -- C:\Users\Brandy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2012/08/30 09:52:43 | 000,000,000 | R--D | C] -- C:\Users\Brandy\Videos
[2012/08/30 09:52:43 | 000,000,000 | R--D | C] -- C:\Users\Brandy\Saved Games
[2012/08/30 09:52:43 | 000,000,000 | R--D | C] -- C:\Users\Brandy\Pictures
[2012/08/30 09:52:41 | 000,000,000 | ---D | C] -- C:\Windows\CSC

========== Files - Modified Within 30 Days ==========

[2012/09/04 08:33:42 | 000,599,040 | ---- | M] (OldTimer Tools) -- C:\Users\Brandy\Desktop\OTL.exe
[2012/09/04 08:25:00 | 000,000,934 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2152027713-3771497243-4222264179-1001UA.job
[2012/09/04 08:08:45 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/09/04 08:06:42 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2012/09/04 08:06:39 | 849,842,176 | -HS- | M] () -- C:\hiberfil.sys
[2012/09/03 19:25:00 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2152027713-3771497243-4222264179-1001Core.job
[2012/09/03 12:02:07 | 024,712,880 | ---- | M] () -- C:\Users\Brandy\Desktop\DJ3050A_J611_Basic_x86_504.exe
[2012/09/03 11:44:55 | 094,450,640 | ---- | M] () -- C:\Users\Brandy\Desktop\DJ3050A_J611_504.exe
[2012/08/31 17:52:34 | 000,618,227 | ---- | M] () -- C:\Users\Brandy\Desktop\adwcleaner.exe
[2012/08/31 15:22:53 | 000,070,257 | ---- | M] () -- C:\Windows\System32\drivers\sfi.dat
[2012/08/31 15:19:17 | 000,684,122 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/08/31 15:19:17 | 000,124,968 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/08/31 15:11:51 | 000,000,869 | ---- | M] () -- C:\Users\Brandy\Documents\Farmtown trees.rtf
[2012/08/31 14:51:24 | 002,815,352 | ---- | M] () -- C:\Users\Brandy\Desktop\Farm Report.jar
[2012/08/31 14:40:03 | 000,000,969 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2012/08/30 21:24:23 | 000,002,335 | ---- | M] () -- C:\Users\Brandy\Desktop\Google Chrome.lnk
[2012/08/30 21:17:16 | 000,001,428 | ---- | M] () -- C:\Users\Brandy\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/08/30 11:53:55 | 000,031,420 | ---- | M] () -- C:\Windows\System32\license.rtf

========== Files Created - No Company Name ==========

[2012/09/03 12:01:54 | 024,712,880 | ---- | C] () -- C:\Users\Brandy\Desktop\DJ3050A_J611_Basic_x86_504.exe
[2012/09/03 11:43:58 | 094,450,640 | ---- | C] () -- C:\Users\Brandy\Desktop\DJ3050A_J611_504.exe
[2012/08/31 17:52:33 | 000,618,227 | ---- | C] () -- C:\Users\Brandy\Desktop\adwcleaner.exe
[2012/08/31 15:11:51 | 000,000,869 | ---- | C] () -- C:\Users\Brandy\Documents\Farmtown trees.rtf
[2012/08/31 15:03:23 | 000,070,257 | ---- | C] () -- C:\Windows\System32\drivers\sfi.dat
[2012/08/31 14:51:16 | 002,815,352 | ---- | C] () -- C:\Users\Brandy\Desktop\Farm Report.jar
[2012/08/31 14:40:03 | 000,000,969 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2012/08/30 21:22:09 | 000,002,335 | ---- | C] () -- C:\Users\Brandy\Desktop\Google Chrome.lnk
[2012/08/30 21:20:57 | 000,000,934 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2152027713-3771497243-4222264179-1001UA.job
[2012/08/30 21:20:57 | 000,000,882 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2152027713-3771497243-4222264179-1001Core.job
[2012/08/30 21:17:16 | 000,001,428 | ---- | C] () -- C:\Users\Brandy\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/08/30 11:54:31 | 849,842,176 | -HS- | C] () -- C:\hiberfil.sys
[2012/08/30 11:51:11 | 268,435,456 | -HS- | C] () -- C:\swapfile.sys
[2012/08/30 09:53:40 | 000,001,434 | ---- | C] () -- C:\Users\Brandy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2012/08/30 09:52:44 | 000,000,352 | ---- | C] () -- C:\Users\Brandy\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2012/08/30 09:52:44 | 000,000,334 | ---- | C] () -- C:\Users\Brandy\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2012/05/19 03:24:37 | 000,684,122 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2012/05/19 03:24:37 | 000,296,742 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2012/05/19 03:24:37 | 000,124,968 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2012/05/19 03:24:37 | 000,033,362 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2012/05/19 03:23:03 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2012/05/19 03:23:02 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2012/05/19 02:33:54 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2012/05/19 02:29:38 | 000,280,968 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2012/05/18 21:55:09 | 000,093,696 | ---- | C] () -- C:\Windows\System32\OEMLicense.dll
[2012/05/18 21:37:09 | 000,071,680 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2012/05/18 21:34:38 | 000,043,520 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2012/05/18 17:11:52 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2012/05/18 16:55:21 | 000,526,068 | ---- | C] () -- C:\Windows\System32\staticurllist.bin
[2012/04/24 12:31:46 | 000,041,690 | ---- | C] () -- C:\Windows\System32\srms.dat
[2012/03/22 13:22:28 | 001,520,828 | ---- | C] () -- C:\Windows\System32\WpcNBModel.bin
[2012/02/28 22:56:32 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2012/02/28 22:56:12 | 000,008,192 | ---- | C] () -- C:\Windows\System32\settings.dat

========== LOP Check ==========


========== Purity Check ==========



< End of report >


OTL Extras logfile created on: 9/4/2012 8:34:24 AM - Run 1
OTL by OldTimer - Version 3.2.60.0 Folder = C:\Users\Brandy\Desktop
Professional (Version = 6.2.8400) - Type = NTWorkstation
Internet Explorer (Version = 9.10.8400.0)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1013.09 Mb Total Physical Memory | 267.95 Mb Available Physical Memory | 26.45% Memory free
1.99 Gb Paging File | 1.10 Gb Available in Paging File | 55.26% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 148.95 Gb Total Space | 137.72 Gb Free Space | 92.46% Space Free | Partition Type: NTFS

Computer Name: SCHOOLWORK | User Name: Brandy | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0CC7FDE8-FB4C-43E6-A113-A0C7B11F127D}" = dir=out | name=@{microsoft.bingsports_1.1.1.45_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{1C68474F-769C-4BDC-ACBC-59629E2D5554}" = dir=out | name=@{microsoft.zunemusic_1.0.810.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} |
"{287BBE51-EC7B-4723-BA09-31D1A2300419}" = dir=out | name=@{microsoft.xboxlivegames_1.0.810.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/33276} |
"{433A9BE7-FB25-4711-9317-50FEECE52430}" = dir=in | name=@{microsoft.zunemusic_1.0.810.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} |
"{4EA3C486-E120-4B08-B3DF-9464B5940855}" = dir=out | name=@{microsoft.zunevideo_1.0.810.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} |
"{6752E183-6FA1-4F02-B913-CC434DF2BEA0}" = dir=in | name=@{microsoft.windowsphotos_16.4.3363.511_x86__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{702C6E22-C0CD-49C9-928D-4BBAF638BF20}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{70AA47D5-DC0E-4E88-B057-2CDCE1675FA4}" = dir=in | name=@{microsoft.reader_6.2.8379.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{86878A33-6FA9-4B93-B529-A9DEF3B06063}" = dir=in | name=@{microsoft.zunevideo_1.0.810.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} |
"{928AAD3F-0610-45C2-A0E4-48D295EFEFAB}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{9821E9A1-492B-4ADA-8B75-FF478EEC34BE}" = dir=out | name=@{microsoft.microsoftskydrive_16.4.3364.511_x86__8wekyb3d8bbwe?ms-resource://microsoft.microsoftskydrive/resources/shortproductname} |
"{9CD29098-7C05-40A6-AAA9-4F1B5BD26F15}" = dir=out | name=@{microsoft.windowsphotos_16.4.3363.511_x86__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{9E22D39D-95C4-4798-8D29-3D49FCE77E36}" = dir=out | name=@{microsoft.bingnews_1.1.1.41_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{A9F3ABD8-D081-4247-BBEE-6F999FDC2FDD}" = dir=out | name=@{microsoft.bingweather_1.1.1.40_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{AD3599E1-CF8A-4C49-9365-36961CAB48B2}" = dir=out | name=@{microsoft.bingtravel_1.1.1.45_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{B1576DEC-AF70-405F-9742-6453760905D8}" = dir=out | name=@{microsoft.bingfinance_1.1.1.43_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{B8967124-3030-41DD-938E-C2144C41E787}" = dir=out | name=@{microsoft.reader_6.2.8379.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{BB61D91D-BD35-4EA2-A9A2-DA6DE12F843C}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.3364.511_x86__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{E8FDF4E4-8AB6-485D-B496-1C1D4D01EF9C}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.3364.511_x86__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{FB3EB533-9AC8-4018-B8DC-59C343193519}" = dir=out | name=@{microsoft.bingmaps_1.1.1.41_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"TCP Query User{F63EB3CB-57C3-4C2A-A714-43DE57E5008D}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{823A6791-E3A7-4019-BF03-7D23492139BC}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{26A24AE4-039D-4CA4-87B4-2F83217007FF}" = Java 7 Update 7
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"CCleaner" = CCleaner

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 8/30/2012 10:22:24 PM | Computer Name = Schoolwork | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Activation of app DefaultBrowser_NOPUBLISHERID!Chrome.O7RES3XGOHIB5MMJ62JXUDUVZ4
failed with error: -2144927152 See the Microsoft-Windows-TWinUI/Operational log
for additional information.

Error - 8/31/2012 3:49:17 PM | Computer Name = Schoolwork | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Activation of app Microsoft.Reader_8wekyb3d8bbwe!Microsoft.Reader
failed with error: -2144927152 See the Microsoft-Windows-TWinUI/Operational log
for additional information.

Error - 9/3/2012 12:46:39 PM | Computer Name = Schoolwork | Source = MsiInstaller | ID = 10005
Description =

Error - 9/3/2012 12:58:20 PM | Computer Name = Schoolwork | Source = MsiInstaller | ID = 10005
Description =

Error - 9/3/2012 1:00:26 PM | Computer Name = Schoolwork | Source = MsiInstaller | ID = 10005
Description =

Error - 9/3/2012 1:02:37 PM | Computer Name = Schoolwork | Source = MsiInstaller | ID = 10005
Description =

Error - 9/4/2012 9:09:07 AM | Computer Name = Schoolwork | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Activation of app winstore_cw5n1h2txyewy!Windows.Store failed with
error: -2144927152 See the Microsoft-Windows-TWinUI/Operational log for additional
information.

Error - 9/4/2012 9:12:18 AM | Computer Name = Schoolwork | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Activation of app winstore_cw5n1h2txyewy!Windows.Store failed with
error: -2144927152 See the Microsoft-Windows-TWinUI/Operational log for additional
information.

Error - 9/4/2012 9:16:06 AM | Computer Name = Schoolwork | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Activation of app winstore_cw5n1h2txyewy!Windows.Store failed with
error: -2144927152 See the Microsoft-Windows-TWinUI/Operational log for additional
information.

[ System Events ]
Error - 8/30/2012 11:31:04 AM | Computer Name = Schoolwork | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =

Error - 8/30/2012 10:22:42 PM | Computer Name = Schoolwork | Source = Schannel | ID = 36888
Description = A fatal alert was generated and sent to the remote endpoint. This
may result in termination of the connection. The TLS protocol defined fatal error
code is 51. The Windows SChannel error state is 900.

Error - 8/31/2012 4:03:11 PM | Computer Name = Schoolwork | Source = Service Control Manager | ID = 7030
Description = The COMODO Internet Security Helper Service service is marked as an
interactive service. However, the system is configured to not allow interactive
services. This service may not function properly.

Error - 8/31/2012 4:12:04 PM | Computer Name = Schoolwork | Source = DCOM | ID = 10016
Description =

Error - 8/31/2012 4:15:02 PM | Computer Name = Schoolwork | Source = Service Control Manager | ID = 7009
Description = A timeout was reached (30000 milliseconds) while waiting for the COMODO
Internet Security Helper Service service to connect.

Error - 8/31/2012 4:15:02 PM | Computer Name = Schoolwork | Source = Service Control Manager | ID = 7000
Description = The COMODO Internet Security Helper Service service failed to start
due to the following error: %%1053

Error - 9/1/2012 12:21:01 AM | Computer Name = Schoolwork | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =

Error - 9/3/2012 2:26:49 PM | Computer Name = Schoolwork | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =

Error - 9/4/2012 9:04:27 AM | Computer Name = Schoolwork | Source = volmgr | ID = 262190
Description = Crash dump initialization failed!

Error - 9/4/2012 9:06:38 AM | Computer Name = Schoolwork | Source = volmgr | ID = 262190
Description = Crash dump initialization failed!


< End of report >
  • 0

Advertisements

#2
Gammo
Posted 08 September 2012 - 05:39 AM

Gammo

    Member 2k

  • Malware Removal
  • 2,299 posts
Hi ttsstr5,

You aren't supposed to use the Windows 8 preview as your main OS. I recommend you reinstall the original OS.

Can't you contact the person from who you bought the netbook, and ask him if he has a restoration/installation disk for the original OS? :)
  • 0

#3
ttsstr5
Posted 09 September 2012 - 08:44 AM

ttsstr5

    Member

  • Topic Starter
  • Member
  • PipPip
  • 40 posts
The netbooks don't come with installation disks or optical drives. I had to use a USB to install Win8. That still is not going to fix the AVG secure search as when I sync all my computers with Google sync it comes back.
  • 0

#4
Gammo
Posted 09 September 2012 - 10:05 AM

Gammo

    Member 2k

  • Malware Removal
  • 2,299 posts
Does any of the following solve the problem?

1. Go to wrench > Settings > Under "Search," click "Manage search engines." Delete "AVG Secure Search" and change your default search engine back to "Google" or another search engine.
2. Go to wrench > Tools > Extensions. Remove the "AVG Internet Security" extension
3. Go to wrench > Settings > On startup. Next to the option "Open a specific page or set of pages," click on "Set pages" button and then just click on the X to remove the AVG one.
4. If you have a homepage button next to your address bar, go to wrench > Settings. Under "Appearance," click on "Change" under the Show Home Buttom. Enter your desired homepage URL.
5. Uninstall the AVG Security Toolbar by going to your operating system's Start menu > Control Panel > Programs and Features
  • 0

#5
ttsstr5
Posted 09 September 2012 - 08:56 PM

ttsstr5

    Member

  • Topic Starter
  • Member
  • PipPip
  • 40 posts
As stated in my original post " I have not installed AVG on any of my computers. I have searched online was directed to download adwcleaner and it works temporarily for that session but if I shut the computer down upon next boot the AVG is back " I have never installed anything to do with AVG on any of my laptops. And yes I have looked under toolbars, under settings, under search engines and even the add/remove programs section. There is nothing there.
extensions.jpg

Attached Thumbnails

  • programs and features.jpg
  • search engines.jpg
  • settings.jpg

Edited by ttsstr5, 09 September 2012 - 09:05 PM.

  • 0

#6
Gammo
Posted 10 September 2012 - 07:49 AM

Gammo

    Member 2k

  • Malware Removal
  • 2,299 posts
I don't really know how Google Sync works, and also because your problem is not malware related, I think you better start a new topic about your problem here. :thumbsup:

They have more knowledge and experience in fixing these kind of problems than me.
  • 0

#7
ttsstr5
Posted 10 September 2012 - 08:29 AM

ttsstr5

    Member

  • Topic Starter
  • Member
  • PipPip
  • 40 posts
Ok Gammo thank you very much.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP