Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

blue screen from a new hardrive [Closed]

Started by ounaatm , Sep 29 2012 10:59 AM

  • This topic is locked This topic is locked

#1
ounaatm
Posted 29 September 2012 - 10:59 AM

ounaatm

    New Member

  • Member
  • Pip
  • 2 posts
I just had a new hard drive installed, and I think it might have a virus

otl report and extras

OTL logfile created on: 9/29/2012 9:31:35 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Hunter\My Documents\Downloads
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

767.53 Mb Total Physical Memory | 199.99 Mb Available Physical Memory | 26.06% Memory free
1.83 Gb Paging File | 1.19 Gb Available in Paging File | 64.84% Paging File free
Paging file location(s): C:\pagefile.sys 1152 2304 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 13.97 Gb Total Space | 1.91 Gb Free Space | 13.65% Space Free | Partition Type: NTFS
Drive D: | 60.56 Gb Total Space | 60.46 Gb Free Space | 99.84% Space Free | Partition Type: NTFS
Drive F: | 127.98 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: HUNTERSVAIO | User Name: Hunter | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/09/29 09:30:34 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Hunter\My Documents\Downloads\OTL.exe
PRC - [2012/09/25 02:43:01 | 001,239,064 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Hunter\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
PRC - [2012/09/21 18:58:40 | 000,722,528 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
PRC - [2012/09/21 18:58:39 | 000,947,808 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe
PRC - [2012/09/20 21:04:18 | 000,161,768 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2012/09/14 05:35:58 | 003,039,352 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgui.exe
PRC - [2012/09/12 05:41:24 | 000,713,848 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgrsx.exe
PRC - [2012/08/29 12:03:38 | 001,996,200 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
PRC - [2012/08/29 12:03:36 | 001,385,896 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
PRC - [2012/08/27 02:27:10 | 001,108,088 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgnsx.exe
PRC - [2012/08/20 04:53:34 | 000,184,304 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgwdsvc.exe
PRC - [2012/08/20 04:52:42 | 005,751,928 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgidsagent.exe
PRC - [2012/08/20 04:52:34 | 000,783,992 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgemcx.exe
PRC - [2012/08/20 04:52:26 | 000,450,168 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgcsrvx.exe
PRC - [2010/03/18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
PRC - [2008/04/14 05:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2002/11/13 18:21:12 | 000,376,898 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Media Music Server\SSSvr.exe
PRC - [2002/11/07 21:56:36 | 000,040,960 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Action Setup\VAServ.exe
PRC - [2002/11/06 11:42:26 | 000,585,728 | ---- | M] (Sony Corporation) -- C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\UPnPFramework.exe
PRC - [2002/10/30 18:40:34 | 000,028,672 | ---- | M] () -- C:\WINDOWS\htpatch.exe
PRC - [2002/10/30 10:43:30 | 000,462,848 | ---- | M] () -- C:\Program Files\Sony\Photo Server 20\appsrv\PicAppSrv.exe
PRC - [2002/08/20 11:29:26 | 000,040,960 | ---- | M] (Easy Systems Japan Ltd.) -- C:\WINDOWS\system32\ezSP_Px.exe
PRC - [2002/07/18 22:27:26 | 000,045,056 | ---- | M] (Sony Corporation) -- C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\sv_httpd.exe
PRC - [2002/04/12 15:02:16 | 001,417,216 | ---- | M] (Support.com, Inc.) -- c:\Program Files\support.com\client\bin\tgcmd.exe


========== Modules (No Company Name) ==========

MOD - [2012/09/25 02:42:58 | 000,460,312 | ---- | M] () -- C:\Documents and Settings\Hunter\Local Settings\Application Data\Google\Chrome\Application\22.0.1229.79\ppgooglenaclpluginchrome.dll
MOD - [2012/09/25 02:42:55 | 004,005,912 | ---- | M] () -- C:\Documents and Settings\Hunter\Local Settings\Application Data\Google\Chrome\Application\22.0.1229.79\pdf.dll
MOD - [2012/09/25 02:41:27 | 000,156,712 | ---- | M] () -- C:\Documents and Settings\Hunter\Local Settings\Application Data\Google\Chrome\Application\22.0.1229.79\avutil-51.dll
MOD - [2012/09/25 02:41:26 | 000,275,496 | ---- | M] () -- C:\Documents and Settings\Hunter\Local Settings\Application Data\Google\Chrome\Application\22.0.1229.79\avformat-54.dll
MOD - [2012/09/25 02:41:24 | 002,168,360 | ---- | M] () -- C:\Documents and Settings\Hunter\Local Settings\Application Data\Google\Chrome\Application\22.0.1229.79\avcodec-54.dll
MOD - [2012/09/21 18:58:43 | 000,564,832 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\DNTInstaller\12.2.6\avgdttbx.dll
MOD - [2012/09/21 18:58:41 | 000,132,704 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\12.2.6\SiteSafety.dll
MOD - [2012/09/21 18:58:40 | 000,722,528 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
MOD - [2012/09/21 18:58:39 | 000,947,808 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe
MOD - [2008/04/14 05:42:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2008/04/14 05:41:52 | 000,059,904 | ---- | M] () -- C:\WINDOWS\system32\devenum.dll
MOD - [2007/04/02 18:19:22 | 000,355,112 | ---- | M] () -- C:\WINDOWS\system32\msjetoledb40.dll
MOD - [2002/10/30 18:40:34 | 000,028,672 | ---- | M] () -- C:\WINDOWS\htpatch.exe
MOD - [2002/10/30 10:43:30 | 000,462,848 | ---- | M] () -- C:\Program Files\Sony\Photo Server 20\appsrv\PicAppSrv.exe
MOD - [2002/04/12 15:02:18 | 000,516,096 | ---- | M] () -- c:\Program Files\support.com\client\bin\sdcmon.dll


========== Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2012/09/21 18:58:40 | 000,722,528 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe -- (vToolbarUpdater12.2.6)
SRV - [2012/09/20 21:04:18 | 000,161,768 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2012/08/29 12:03:36 | 001,385,896 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2012/08/20 04:53:34 | 000,184,304 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2013\avgwdsvc.exe -- (avgwd)
SRV - [2012/08/20 04:52:42 | 005,751,928 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2013\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2012/07/13 13:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2010/03/18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [Auto | Running] -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon)
SRV - [2002/11/13 18:21:12 | 000,376,898 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files\Sony\VAIO Media Music Server\SSSvr.exe -- (VAIOMediaPlatform-MusicServer-AppServer)
SRV - [2002/11/06 11:42:26 | 000,585,728 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\UPnPFramework.exe -- (VAIOMediaPlatform-PhotoServer-UPnP)
SRV - [2002/11/06 11:42:26 | 000,585,728 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\UPnPFramework.exe -- (VAIOMediaPlatform-MusicServer-UPnP)
SRV - [2002/10/30 10:43:30 | 000,462,848 | ---- | M] () [Auto | Running] -- C:\Program Files\Sony\Photo Server 20\appsrv\PicAppSrv.exe -- (VAIOMediaPlatform-PhotoServer-AppServer)
SRV - [2002/07/23 06:45:12 | 000,065,536 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV)
SRV - [2002/07/18 22:27:26 | 000,045,056 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\SV_Httpd.exe -- (VAIOMediaPlatform-PhotoServer-HTTP)
SRV - [2002/07/18 22:27:26 | 000,045,056 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\sv_httpd.exe -- (VAIOMediaPlatform-MusicServer-HTTP)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - [2012/09/21 18:58:43 | 000,027,496 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtpx86.sys -- (avgtp)
DRV - [2012/09/17 18:58:56 | 000,051,936 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\avgidshx.sys -- (AVGIDSHX)
DRV - [2012/09/14 05:34:34 | 000,089,440 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2012/09/12 11:47:22 | 000,164,704 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2012/09/12 11:47:04 | 000,151,648 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2012/08/13 16:40:54 | 000,176,096 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)
DRV - [2012/08/10 04:52:28 | 000,019,808 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgidsshimx.sys -- (AVGIDSShim)
DRV - [2012/08/10 04:52:18 | 000,035,168 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avgrkx86.sys -- (Avgrkx86)
DRV - [2012/08/09 13:56:44 | 000,178,656 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\avglogx.sys -- (Avglogx)
DRV - [2009/03/18 17:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2008/04/14 00:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2005/09/30 21:42:48 | 000,282,624 | ---- | M] (Marvell Semiconductor, Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\MRVW225.sys -- (MRVW225)
DRV - [2003/05/05 18:25:48 | 000,028,205 | ---- | M] (Alpha Networks Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\ANIO.sys -- (ANIO)
DRV - [2002/11/27 15:36:38 | 000,591,232 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\soma.sys -- (soma)
DRV - [2002/11/19 01:12:04 | 000,036,184 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SonyWBMS.sys -- (SONYWBMS)
DRV - [2002/11/14 17:34:48 | 000,224,256 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sisgrp.sys -- (SiS315)
DRV - [2002/11/11 12:26:38 | 000,819,408 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ha10kx2k.sys -- (ha10kx2k)
DRV - [2002/11/08 11:24:54 | 000,115,696 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\emupia2k.sys -- (emupia)
DRV - [2002/11/08 11:24:42 | 000,135,728 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctsfm2k.sys -- (ctsfm2k)
DRV - [2002/11/08 11:24:24 | 000,006,144 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctprxy2k.sys -- (ctprxy2k)
DRV - [2002/11/08 11:24:20 | 000,113,488 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv)
DRV - [2002/11/08 11:24:08 | 000,492,560 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctaud2k.sys -- (ctaud2k)
DRV - [2002/11/08 11:22:36 | 000,186,068 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctac32k.sys -- (ctac32k)
DRV - [2002/10/31 12:58:42 | 000,030,848 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\SISAGPX.SYS -- (sisagp)
DRV - [2002/10/18 12:07:34 | 001,156,672 | ---- | M] (Agere Systems) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2002/09/19 20:19:56 | 000,205,056 | ---- | M] (YAMAHA CORPORATION) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\yacxgc.sys -- (WDM_YAMAHAAC97)
DRV - [2002/06/13 12:37:16 | 000,045,568 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\R8139n51.sys -- (rtl8139)
DRV - [2002/04/03 19:51:34 | 000,005,760 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\srvkp.sys -- (SiSkp)
DRV - [2001/08/17 13:28:02 | 000,907,456 | ---- | M] (Conexant) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HCF_MSFT.sys -- (HCF_MSFT)
DRV - [2000/12/05 17:18:02 | 000,003,952 | R--- | M] (Sony Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\DMICall.sys -- (DMICall)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ogle.com/
IE - HKCU\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...Box&Form=IE8SRC
IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = https://isearch.avg....fr&d=2012-09-21 18:58:44&v=12.2.5.34&sap=dsp&q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1167637.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\12.2.6\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.10.826: C:\Program Files\Real\RealOne Player\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.2.1127: C:\Program Files\Real\RealOne Player\Netscape6\nprjplug.dll (RealNetworks)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.11.813: C:\Program Files\Real\RealOne Player\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKCU\Software\MozillaPlugins\@adobe.com/Acrobat,version=5.1: C:\Program Files\Adobe\Acrobat 5.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Hunter\Local Settings\Application Data\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Hunter\Local Settings\Application Data\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\Documents and Settings\All Users\Application Data\AVG Secure Search\12.2.5.34\ [2012/09/21 18:59:07 | 000,000,000 | ---D | M]


========== Chrome ==========

CHR - homepage: http://www.google.com
CHR - default_search_provider: AVG Secure Search (Enabled)
CHR - default_search_provider: search_url = https://isearch.avg....q={searchTerms}
CHR - default_search_provider: suggest_url = http://clients5.goog...outputEncoding},
CHR - homepage: http://www.google.com
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Hunter\Local Settings\Application Data\Google\Chrome\Application\21.0.1180.89\PepperFlash\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Hunter\Local Settings\Application Data\Google\Chrome\Application\22.0.1229.79\gcswf32.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Hunter\Local Settings\Application Data\Google\Chrome\Application\22.0.1229.79\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Hunter\Local Settings\Application Data\Google\Chrome\Application\22.0.1229.79\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Acrobat 5.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Hunter\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files\Real\RealOne Player\Netscape6\nppl3260.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files\Real\RealOne Player\Netscape6\nprjplug.dll
CHR - plugin: RealOne Player Version Plugin (Enabled) = C:\Program Files\Real\RealOne Player\Netscape6\nprpjplug.dll
CHR - Extension: Google Drive = C:\Documents and Settings\Hunter\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\
CHR - Extension: WOT = C:\Documents and Settings\Hunter\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp\1.3.1_0\
CHR - Extension: YouTube = C:\Documents and Settings\Hunter\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Adblock Plus (Beta) = C:\Documents and Settings\Hunter\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.2_0\
CHR - Extension: Google Search = C:\Documents and Settings\Hunter\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Aperture Science Network Interface (Blue) = C:\Documents and Settings\Hunter\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jddpjgadbhnefiopiagpjbocgbhbjngc\1_0\
CHR - Extension: AVG Secure Search = C:\Documents and Settings\Hunter\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\12.2.5.34_0\
CHR - Extension: Gmail = C:\Documents and Settings\Hunter\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012/09/29 09:28:43 | 000,000,698 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx ()
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\12.2.5.34\AVG Secure Search_toolbar.dll ()
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\12.2.5.34\AVG Secure Search_toolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found.
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [ANIWZCS2Service] C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe (Alpha Networks Inc.)
O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
O4 - HKLM..\Run: [AVG_UI] C:\Program Files\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [CTHelper] C:\WINDOWS\System32\cthelper.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [D-Link AirPlus G] C:\Program Files\D-Link\AirPlus G\AirGCFG.exe (D-Link)
O4 - HKLM..\Run: [ezShieldProtector for Px] C:\WINDOWS\system32\ezSP_Px.exe (Easy Systems Japan Ltd.)
O4 - HKLM..\Run: [HTpatch] C:\WINDOWS\htpatch.exe ()
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [ROC_ROC_NT] C:\Program Files\AVG Secure Search\ROC_ROC_NT.exe ()
O4 - HKLM..\Run: [SiS KHooker] C:\WINDOWS\System32\khooker.exe File not found
O4 - HKLM..\Run: [SiS Tray] File not found
O4 - HKLM..\Run: [VAIOSURVEY] C:\Program Files\Sony\VAIO Survey\SurveySA.exe (Sony Electronics)
O4 - HKLM..\Run: [vProt] C:\Program Files\AVG Secure Search\vprot.exe ()
O4 - HKLM..\Run: [ZTgServerSwitch] c:\Program Files\support.com\client\lserver\Server.vbs ()
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\VAIO Action Setup (Server).lnk = C:\Program Files\Sony\VAIO Action Setup\VAServ.exe (Sony Corporation)
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F73A131D-B994-4563-B6CF-1E1738CE5343}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\12.2.6\ViProtocol.dll ()
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Hunter\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Hunter\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2002/12/04 19:24:01 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2010/10/16 00:25:08 | 000,000,041 | R--- | M] () - F:\Autorun.inf -- [ CDFS ]
O33 - MountPoints2\H\Shell - "" = AutoRun
O33 - MountPoints2\H\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2013\avgrsx.exe /sync /restart)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2012/09/29 09:25:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2012/09/28 20:30:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Desktop\Slender v0.9.7
[2012/09/28 19:08:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe
[2012/09/26 22:41:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\My Documents\Amnesia
[2012/09/26 07:20:50 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2012/09/23 17:01:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Application Data\Skype
[2012/09/23 17:00:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Skype
[2012/09/23 17:00:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2012/09/23 17:00:53 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2012/09/23 17:00:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Skype
[2012/09/23 17:00:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Local Settings\Application Data\ArcSoft
[2012/09/23 17:00:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\My Documents\WebCam Media
[2012/09/23 17:00:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ArcSoft
[2012/09/23 16:59:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\ArcSoft Connect
[2012/09/23 16:59:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\ArcSoft WebCam Companion 3
[2012/09/23 16:58:21 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ArcSoft
[2012/09/23 16:58:21 | 000,000,000 | ---D | C] -- C:\Program Files\ArcSoft
[2012/09/23 16:58:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Application Data\ArcSoft
[2012/09/23 16:34:37 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Hunter\PrivacIE
[2012/09/23 03:00:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2012/09/22 03:30:26 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Hunter\IETldCache
[2012/09/22 03:12:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2012/09/22 03:11:25 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2012/09/21 19:52:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Application Data\WinRAR
[2012/09/21 19:52:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR
[2012/09/21 19:52:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Start Menu\Programs\WinRAR
[2012/09/21 19:52:09 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2012/09/21 19:48:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Desktop\Minecraft
[2012/09/21 19:37:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Local Settings\Application Data\LogMeIn Hamachi
[2012/09/21 19:37:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\LogMeIn Hamachi
[2012/09/21 19:36:41 | 000,000,000 | ---D | C] -- C:\Program Files\LogMeIn Hamachi
[2012/09/21 19:36:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\LogMeIn Hamachi
[2012/09/21 19:18:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Application Data\AVG2013
[2012/09/21 18:59:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\AVG
[2012/09/21 18:59:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Application Data\TuneUp Software
[2012/09/21 18:59:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Local Settings\Application Data\AVG Secure Search
[2012/09/21 18:59:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVG Secure Search
[2012/09/21 18:58:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Application Data\AVG Secure Search
[2012/09/21 18:58:43 | 000,027,496 | ---- | C] (AVG Technologies) -- C:\WINDOWS\System32\drivers\avgtpx86.sys
[2012/09/21 18:58:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AVG Secure Search
[2012/09/21 18:58:38 | 000,000,000 | ---D | C] -- C:\Program Files\AVG Secure Search
[2012/09/21 18:56:02 | 000,000,000 | -H-D | C] -- C:\$AVG
[2012/09/21 18:56:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVG2013
[2012/09/21 18:55:16 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2012/09/21 18:51:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Application Data\.minecraft
[2012/09/21 18:50:01 | 000,695,296 | ---- | C] (AnjoCaido) -- C:\Documents and Settings\Hunter\Desktop\Minecraft.exe
[2012/09/21 18:49:01 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2012/09/21 18:49:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Local Settings\Application Data\MFAData
[2012/09/21 18:49:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2012/09/21 18:49:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Local Settings\Application Data\Avg2013
[2012/09/21 18:45:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Local Settings\Application Data\Sun
[2012/09/20 21:05:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2012/09/20 21:05:27 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2012/09/20 21:04:03 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2012/09/20 20:59:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\McAfee
[2012/09/20 20:41:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Application Data\Sun
[2012/09/20 20:41:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\My Documents\Downloads
[2012/09/20 20:38:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Desktop\Desktops
[2012/09/20 20:33:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Start Menu\Programs\Google Chrome
[2012/09/20 20:26:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Local Settings\Application Data\Google
[2012/09/20 20:25:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2012/09/20 20:25:29 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2012/09/20 11:42:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2012/09/20 06:45:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2012/09/20 06:39:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us
[2012/09/20 06:39:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting
[2012/09/20 06:39:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2012/09/20 06:39:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en
[2012/09/20 06:39:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2012/09/20 06:34:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2012/09/19 20:39:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2012/09/19 19:42:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\peernet
[2012/09/19 19:41:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\provisioning
[2012/09/19 19:31:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2012/09/19 19:14:24 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2012/09/19 19:14:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\EHome
[2012/09/19 16:52:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Application Data\driveridentifier
[2012/09/19 16:52:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Driver Identifier
[2012/09/19 16:52:45 | 000,000,000 | ---D | C] -- C:\Program Files\Driver Identifier
[2012/09/19 16:37:07 | 001,163,337 | ---- | C] (Funk Software, Inc.) -- C:\WINDOWS\System32\odSupp_M.dll
[2012/09/19 16:37:07 | 000,561,152 | ---- | C] (Alpha Networks Inc.) -- C:\WINDOWS\System32\ANIWZCS2.dll
[2012/09/19 16:37:07 | 000,192,512 | ---- | C] (Alpha Networks Inc.) -- C:\WINDOWS\System32\aIPH.dll
[2012/09/19 16:37:07 | 000,118,784 | ---- | C] (Alpha Networks Inc.) -- C:\WINDOWS\System32\WlanApp.dll
[2012/09/19 16:37:07 | 000,057,407 | ---- | C] (Alpha Networks Inc.) -- C:\WINDOWS\System32\ANICtl.dll
[2012/09/19 16:37:07 | 000,049,152 | ---- | C] (Alpha Networks Inc.) -- C:\WINDOWS\System32\AQCKGen.dll
[2012/09/19 16:36:57 | 000,036,864 | ---- | C] (Alpha Networks Inc.) -- C:\WINDOWS\System32\ANIOApi.dll
[2012/09/19 16:36:57 | 000,028,205 | ---- | C] (Alpha Networks Inc.) -- C:\WINDOWS\System32\ANIO.sys
[2012/09/19 16:36:57 | 000,011,904 | ---- | C] (ANI ) -- C:\WINDOWS\System32\anio4.sys
[2012/09/19 16:36:57 | 000,000,000 | ---D | C] -- C:\Program Files\ANI
[2012/09/19 16:36:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\D-Link AirPlus G
[2012/09/19 16:24:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Desktop\WinXP2K
[2012/09/19 16:24:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Desktop\Win98ME
[2012/09/19 16:08:15 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Hunter\UserData
[2012/09/19 16:00:15 | 000,000,000 | ---D | C] -- C:\Program Files\D-Link
[2012/09/19 15:59:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Application Data\U3
[2012/09/19 15:56:18 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Hunter\Application Data\Microsoft
[2012/09/19 15:56:18 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Hunter\SendTo
[2012/09/19 15:56:18 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Hunter\Recent
[2012/09/19 15:56:18 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Hunter\Application Data
[2012/09/19 15:56:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Hunter\Start Menu\Programs\Startup
[2012/09/19 15:56:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Hunter\Start Menu
[2012/09/19 15:56:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Hunter\My Documents\My Pictures
[2012/09/19 15:56:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Hunter\My Documents\My Music
[2012/09/19 15:56:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Hunter\My Documents
[2012/09/19 15:56:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Hunter\Favorites
[2012/09/19 15:56:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Hunter\Desktop
[2012/09/19 15:56:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Hunter\Start Menu\Programs\Accessories
[2012/09/19 15:56:18 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Hunter\Cookies
[2012/09/19 15:56:18 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Hunter\Templates
[2012/09/19 15:56:18 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Hunter\PrintHood
[2012/09/19 15:56:18 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Hunter\NetHood
[2012/09/19 15:56:18 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Hunter\Local Settings
[2012/09/19 15:56:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\WINDOWS
[2012/09/19 15:56:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Application Data\Sony Corporation
[2012/09/19 15:56:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Application Data\Real
[2012/09/19 15:56:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\My Documents\My eBooks
[2012/09/19 15:56:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Application Data\MSN6
[2012/09/19 15:56:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Start Menu\Programs\MoodLogic
[2012/09/19 15:56:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Local Settings\Application Data\Microsoft
[2012/09/19 15:56:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Application Data\InterTrust
[2012/09/19 15:56:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Application Data\Identities
[2012/09/19 15:56:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Hunter\Application Data\Adobe
[2012/09/17 18:58:56 | 000,051,936 | ---- | C] (AVG Technologies CZ, s.r.o. ) -- C:\WINDOWS\System32\drivers\avgidshx.sys
[2012/09/14 05:34:34 | 000,089,440 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys
[2012/09/12 11:47:22 | 000,164,704 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys
[2012/09/12 11:47:04 | 000,151,648 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/09/29 09:38:33 | 000,000,982 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1372192452-2057094280-3934032848-1005UA.job
[2012/09/29 09:31:07 | 000,311,934 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012/09/29 09:31:07 | 000,040,196 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012/09/29 09:28:43 | 000,000,698 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2012/09/29 09:25:58 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012/09/29 09:25:57 | 804,884,480 | -HS- | M] () -- C:\hiberfil.sys
[2012/09/28 21:58:11 | 000,002,265 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2012/09/28 19:39:12 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1372192452-2057094280-3934032848-1005Core.job
[2012/09/28 09:35:13 | 000,001,975 | ---- | M] () -- C:\Documents and Settings\Hunter\Desktop\my_skin.png
[2012/09/28 09:15:10 | 000,002,080 | ---- | M] () -- C:\Documents and Settings\Hunter\Desktop\Collins_3203606.png
[2012/09/26 02:40:17 | 000,002,293 | ---- | M] () -- C:\Documents and Settings\Hunter\Desktop\Google Chrome.lnk
[2012/09/26 02:40:17 | 000,002,271 | ---- | M] () -- C:\Documents and Settings\Hunter\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012/09/23 16:59:29 | 000,001,657 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\WebCam Companion 3.lnk
[2012/09/23 03:01:08 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012/09/22 03:30:31 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\Hunter\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/09/22 03:30:17 | 000,104,624 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012/09/21 19:55:01 | 001,685,180 | ---- | M] () -- C:\Documents and Settings\Hunter\Desktop\mcpatcher-2.4.3.exe
[2012/09/21 19:52:13 | 000,000,704 | ---- | M] () -- C:\Documents and Settings\Hunter\Desktop\WinRAR.lnk
[2012/09/21 19:36:42 | 000,000,685 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\LogMeIn Hamachi.lnk
[2012/09/21 18:59:19 | 000,000,702 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\AVG 2013.lnk
[2012/09/21 18:58:43 | 000,027,496 | ---- | M] (AVG Technologies) -- C:\WINDOWS\System32\drivers\avgtpx86.sys
[2012/09/20 20:01:50 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2012/09/20 20:01:44 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012/09/20 06:34:35 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2012/09/19 19:44:09 | 000,000,211 | RHS- | M] () -- C:\boot.ini
[2012/09/19 19:26:14 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2012/09/19 19:08:52 | 000,005,632 | ---- | M] () -- C:\Documents and Settings\Hunter\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/09/19 19:07:19 | 000,012,292 | -H-- | M] () -- C:\Documents and Settings\All Users\Documents\.DS_Store
[2012/09/19 17:54:48 | 000,000,296 | -H-- | M] () -- C:\Documents and Settings\All Users\Documents\.apdisk
[2012/09/19 17:10:50 | 000,000,375 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.ics
[2012/09/19 16:36:53 | 000,001,695 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\D-Link AirPlus Utility.lnk
[2012/09/19 15:56:42 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\Hunter\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2012/09/19 15:56:36 | 000,000,786 | ---- | M] () -- C:\Documents and Settings\Hunter\Desktop\Windows Media Player.lnk
[2012/09/19 15:56:35 | 000,025,065 | ---- | M] () -- C:\WINDOWS\System32\wmpscheme.xml
[2012/09/19 15:55:37 | 000,001,102 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2012/09/19 15:55:35 | 000,000,000 | RH-- | M] () -- C:\WINDOWS\System32\drivers\Sony_PCV-RZ22G(UC)_.mrk
[2012/09/19 15:55:32 | 000,000,258 | ---- | M] () -- C:\WINDOWS\tasks\Registration reminder 3.job
[2012/09/17 18:58:56 | 000,051,936 | ---- | M] (AVG Technologies CZ, s.r.o. ) -- C:\WINDOWS\System32\drivers\avgidshx.sys
[2012/09/14 05:34:34 | 000,089,440 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys
[2012/09/12 11:47:22 | 000,164,704 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys
[2012/09/12 11:47:04 | 000,151,648 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/09/28 09:35:12 | 000,001,975 | ---- | C] () -- C:\Documents and Settings\Hunter\Desktop\my_skin.png
[2012/09/28 09:15:21 | 000,002,080 | ---- | C] () -- C:\Documents and Settings\Hunter\Desktop\Collins_3203606.png
[2012/09/23 17:00:57 | 000,002,265 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2012/09/23 16:59:29 | 000,001,657 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\WebCam Companion 3.lnk
[2012/09/21 19:55:25 | 001,685,180 | ---- | C] () -- C:\Documents and Settings\Hunter\Desktop\mcpatcher-2.4.3.exe
[2012/09/21 19:52:13 | 000,000,704 | ---- | C] () -- C:\Documents and Settings\Hunter\Desktop\WinRAR.lnk
[2012/09/21 19:36:42 | 000,000,685 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\LogMeIn Hamachi.lnk
[2012/09/21 18:59:19 | 000,000,702 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\AVG 2013.lnk
[2012/09/20 20:33:53 | 000,002,271 | ---- | C] () -- C:\Documents and Settings\Hunter\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012/09/20 20:33:52 | 000,002,293 | ---- | C] () -- C:\Documents and Settings\Hunter\Desktop\Google Chrome.lnk
[2012/09/20 20:33:34 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012/09/20 20:33:34 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\dllcache\iacenc.dll
[2012/09/20 20:26:20 | 000,000,982 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1372192452-2057094280-3934032848-1005UA.job
[2012/09/20 20:26:19 | 000,000,930 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1372192452-2057094280-3934032848-1005Core.job
[2012/09/20 06:39:31 | 000,613,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm
[2012/09/20 06:39:31 | 000,067,374 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm
[2012/09/20 06:39:31 | 000,023,195 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplay.chm
[2012/09/20 06:39:31 | 000,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta
[2012/09/20 06:39:31 | 000,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css
[2012/09/20 06:39:31 | 000,000,855 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf
[2012/09/20 06:39:31 | 000,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js
[2012/09/20 06:39:30 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav
[2012/09/20 06:39:30 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav
[2012/09/20 06:39:30 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav
[2012/09/20 06:39:30 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav
[2012/09/20 06:39:30 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav
[2012/09/20 06:39:30 | 000,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav
[2012/09/20 06:39:30 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav
[2012/09/20 06:39:29 | 000,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav
[2012/09/20 06:39:29 | 000,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv
[2012/09/20 06:39:29 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav
[2012/09/20 06:39:29 | 000,029,070 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmp.inf
[2012/09/20 06:39:29 | 000,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif
[2012/09/20 06:39:29 | 000,017,272 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf
[2012/09/20 06:39:29 | 000,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif
[2012/09/20 06:39:29 | 000,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif
[2012/09/20 06:39:29 | 000,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif
[2012/09/20 06:39:29 | 000,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif
[2012/09/20 06:39:29 | 000,006,769 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf
[2012/09/20 06:39:29 | 000,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif
[2012/09/20 06:39:29 | 000,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif
[2012/09/20 06:39:29 | 000,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif
[2012/09/20 06:39:29 | 000,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif
[2012/09/20 06:39:29 | 000,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif
[2012/09/20 06:39:29 | 000,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif
[2012/09/20 06:39:29 | 000,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif
[2012/09/20 06:39:29 | 000,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif
[2012/09/20 06:39:29 | 000,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif
[2012/09/20 06:39:29 | 000,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif
[2012/09/20 06:39:28 | 000,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv
[2012/09/20 06:39:28 | 000,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv
[2012/09/20 06:39:28 | 000,077,307 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm
[2012/09/20 06:39:28 | 000,066,725 | ---- | C] () -- C:\WINDOWS\System32\dllcache\revert.wmz
[2012/09/20 06:39:28 | 000,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif
[2012/09/20 06:39:28 | 000,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip
[2012/09/20 06:39:28 | 000,018,286 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf
[2012/09/20 06:39:28 | 000,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js
[2012/09/20 06:39:28 | 000,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif
[2012/09/20 06:39:28 | 000,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif
[2012/09/20 06:39:28 | 000,001,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst6.wpl
[2012/09/20 06:39:28 | 000,001,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst5.wpl
[2012/09/20 06:39:28 | 000,001,474 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst3.wpl
[2012/09/20 06:39:28 | 000,001,451 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst12.wpl
[2012/09/20 06:39:28 | 000,001,448 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst4.wpl
[2012/09/20 06:39:28 | 000,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif
[2012/09/20 06:39:28 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif
[2012/09/20 06:39:28 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif
[2012/09/20 06:39:28 | 000,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif
[2012/09/20 06:39:28 | 000,001,250 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst1.wpl
[2012/09/20 06:39:28 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm
[2012/09/20 06:39:28 | 000,001,049 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst2.wpl
[2012/09/20 06:39:28 | 000,001,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst7.wpl
[2012/09/20 06:39:28 | 000,001,036 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst8.wpl
[2012/09/20 06:39:28 | 000,000,908 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf
[2012/09/20 06:39:28 | 000,000,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst11.wpl
[2012/09/20 06:39:28 | 000,000,787 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst10.wpl
[2012/09/20 06:39:28 | 000,000,784 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst9.wpl
[2012/09/20 06:39:28 | 000,000,783 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst13.wpl
[2012/09/20 06:39:28 | 000,000,775 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst14.wpl
[2012/09/20 06:39:28 | 000,000,733 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst15.wpl
[2012/09/20 06:39:28 | 000,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip
[2012/09/20 06:39:27 | 000,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv
[2012/09/20 06:39:27 | 000,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv
[2012/09/20 06:39:27 | 000,184,959 | ---- | C] () -- C:\WINDOWS\System32\dllcache\compact.wmz
[2012/09/20 06:39:27 | 000,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css
[2012/09/20 06:39:27 | 000,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm
[2012/09/20 06:39:27 | 000,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js
[2012/09/20 06:39:27 | 000,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js
[2012/09/20 06:39:27 | 000,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif
[2012/09/20 06:39:27 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif
[2012/09/20 06:39:27 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif
[2012/09/20 06:39:27 | 000,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif
[2012/09/20 06:39:27 | 000,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif
[2012/09/20 06:39:27 | 000,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif
[2012/09/20 06:36:32 | 000,844,314 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdxm.ocx
[2012/09/20 06:36:32 | 000,498,742 | ---- | C] () -- C:\WINDOWS\System32\dllcache\dxmasf.dll
[2012/09/20 06:36:32 | 000,004,126 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdxmlc.dll
[2012/09/19 19:43:53 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2012/09/19 19:42:32 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
[2012/09/19 19:42:31 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2012/09/19 19:42:28 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2012/09/19 19:42:16 | 000,118,272 | ---- | C] () -- C:\WINDOWS\System32\mpeg2data.ax
[2012/09/19 19:08:45 | 000,005,632 | ---- | C] () -- C:\Documents and Settings\Hunter\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/09/19 17:54:48 | 000,000,296 | -H-- | C] () -- C:\Documents and Settings\All Users\Documents\.apdisk
[2012/09/19 17:15:47 | 000,012,292 | -H-- | C] () -- C:\Documents and Settings\All Users\Documents\.DS_Store
[2012/09/19 16:36:57 | 000,016,997 | ---- | C] () -- C:\WINDOWS\System32\ANIO.VXD
[2012/09/19 16:36:53 | 000,001,695 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\D-Link AirPlus Utility.lnk
[2012/09/19 15:56:31 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\Hunter\Desktop\Windows Media Player.lnk
[2012/09/19 15:56:19 | 000,001,648 | ---- | C] () -- C:\Documents and Settings\Hunter\Application Data\Microsoft\Internet Explorer\Quick Launch\MSN 8.lnk
[2012/09/19 15:56:19 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Hunter\Start Menu\Programs\Remote Assistance.lnk
[2012/09/19 15:56:19 | 000,000,815 | ---- | C] () -- C:\Documents and Settings\Hunter\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/09/19 15:56:19 | 000,000,804 | ---- | C] () -- C:\Documents and Settings\Hunter\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2012/09/19 15:56:19 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\Hunter\Start Menu\Programs\Internet Explorer.lnk
[2012/09/19 15:56:19 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\Hunter\Start Menu\Programs\Windows Media Player.lnk
[2012/09/19 15:56:19 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\Hunter\Application Data\Microsoft\Internet Explorer\Quick Launch\QuickTime Player.lnk
[2012/09/19 15:56:19 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\Hunter\Start Menu\Programs\Outlook Express.lnk
[2012/09/19 15:56:19 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\Hunter\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2012/09/19 15:55:35 | 000,000,000 | RH-- | C] () -- C:\WINDOWS\System32\drivers\Sony_PCV-RZ22G(UC)_.mrk
[2012/09/19 15:55:32 | 000,000,258 | ---- | C] () -- C:\WINDOWS\tasks\Registration reminder 3.job
[2012/09/19 15:48:02 | 804,884,480 | -HS- | C] () -- C:\hiberfil.sys

========== ZeroAccess Check ==========


[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\System32\shdocvw.dll -- [2012/08/30 13:29:36 | 001,510,400 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\System32\wbem\fastprox.dll -- [2009/02/09 05:10:48 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\System32\wbem\wbemess.dll -- [2008/04/14 05:42:10 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2012/09/21 19:19:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG Secure Search
[2012/09/27 23:07:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG2013
[2012/09/21 18:49:01 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2012/09/29 09:15:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2012/09/29 09:36:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hunter\Application Data\.minecraft
[2012/09/21 18:58:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hunter\Application Data\AVG Secure Search
[2012/09/21 19:18:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hunter\Application Data\AVG2013
[2012/09/19 16:53:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hunter\Application Data\driveridentifier
[2002/12/17 16:18:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hunter\Application Data\InterTrust
[2012/09/21 18:59:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hunter\Application Data\TuneUp Software

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 60 bytes -> C:\Documents and Settings\All Users\Documents\WindowsXP-KB835935-SP2-ENU.exe:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\Documents and Settings\All Users\Documents\.DS_Store:AFP_AfpInfo
@Alternate Data Stream - 57 bytes -> C:\Documents and Settings\All Users\Documents\WindowsXP-KB835935-SP2-ENU.exe:com.apple.quarantine

< End of report >

OTL Extras logfile created on: 9/29/2012 9:31:35 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Hunter\My Documents\Downloads
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

767.53 Mb Total Physical Memory | 199.99 Mb Available Physical Memory | 26.06% Memory free
1.83 Gb Paging File | 1.19 Gb Available in Paging File | 64.84% Paging File free
Paging file location(s): C:\pagefile.sys 1152 2304 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 13.97 Gb Total Space | 1.91 Gb Free Space | 13.65% Space Free | Partition Type: NTFS
Drive D: | 60.56 Gb Total Space | 60.46 Gb Free Space | 99.84% Space Free | Partition Type: NTFS
Drive F: | 127.98 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: HUNTERSVAIO | User Name: Hunter | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML.RQQKXJT7WKW2IK3R3FLOYPTYFM] -- C:\Documents and Settings\Hunter\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (Google Inc.)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\support.com\client\bin\tgcmd.exe" = C:\Program Files\support.com\client\bin\tgcmd.exe:*:Disabled:tgcmd Module -- (Support.com, Inc.)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\AVG\AVG2013\avgnsx.exe" = C:\Program Files\AVG\AVG2013\avgnsx.exe:*:Enabled:Online Shield -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG2013\avgdiagex.exe" = C:\Program Files\AVG\AVG2013\avgdiagex.exe:*:Enabled:AVG Diagnostics 2013 -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG2013\avgmfapx.exe" = C:\Program Files\AVG\AVG2013\avgmfapx.exe:*:Enabled:AVG Installer -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG2013\avgemcx.exe" = C:\Program Files\AVG\AVG2013\avgemcx.exe:*:Enabled:Personal E-mail Scanner -- (AVG Technologies CZ, s.r.o.)
"C:\WINDOWS\system32\javaw.exe" = C:\WINDOWS\system32\javaw.exe:*:Enabled:Java™ Platform SE binary -- (Oracle Corporation)
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)
"C:\Documents and Settings\Hunter\Desktop\Minecraft\M12N8F12\M12N8F12\MNF GAMES\DO NEED SERVERS\3.MNF Rus\mnfserver13.exe" = C:\Documents and Settings\Hunter\Desktop\Minecraft\M12N8F12\M12N8F12\MNF GAMES\DO NEED SERVERS\3.MNF Rus\mnfserver13.exe:*:Enabled:mnfserver13
"C:\Documents and Settings\Hunter\Desktop\Minecraft\M12N8F12\M12N8F12\MNF GAMES\DO NEED SERVERS\2.WORK WITH SERVER 13\mnfserver13.exe" = C:\Documents and Settings\Hunter\Desktop\Minecraft\M12N8F12\M12N8F12\MNF GAMES\DO NEED SERVERS\2.WORK WITH SERVER 13\mnfserver13.exe:*:Enabled:mnfserver13


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00000000-3976-4267-9F39-1DC4745090B7}" = Microsoft Learning and Research Plus Support Files
"{117C01B5-9D68-4A15-85E2-A7CDFA82CEB9}" = OpenMG Secure Module 3.1
"{1EB317D8-8945-4FD6-B37F-DF470317C6AB}" = VAIO Media 2.0
"{26A24AE4-039D-4CA4-87B4-2F83217007FF}" = Java 7 Update 7
"{27C5164D-ED0E-4D64-B788-93305BD62100}" = PictureGear Studio 1.0
"{28336AFC-722C-4E17-B286-2A7C906183C0}" = ImageStation Tour
"{29F61465-428A-11D4-B646-00C04F790F76}" = DVgate
"{2B7E4354-0492-460A-BDB1-1F59EE141025}" = AirPlus G
"{30642CE1-217B-40C0-92E2-6BF849599D9E}" = Network Smart Capture
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{369B36BE-3D64-4641-9AEA-808D436FE130}" = Microsoft Picture It! Express 7.0
"{36FE914F-1B2B-4D83-B3E1-032A508E9EC4}" = Experience VAIO
"{3B24B725-D81F-442D-8CE5-2AF05A4A4CC9}" = Music Visualizer Library 1.4.00
"{3C67D8C0-F0EC-11D3-99D3-00C04FCCB775}" = VAIO Action Setup
"{40A3E5DB-5EF8-4F04-BF3E-7AB87C4AE85A}_is1" = DriverIdentifier 4.2
"{48BE827A-2D06-4804-90C3-4F2F8460F9D4}" = Support Actions WinXP
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4C590030-7469-453E-8589-D15DA9D03F52}" = ANIWZCS2 Service
"{55FB8585-9F5F-482E-BDE3-57F338C1DE97}" = ArcSoft WebCam Companion 3
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{6990A2BF-D1D2-11D3-81BC-00609789C908}" = Sony DV Shared Library
"{6F8C35F6-AD7E-4DCF-8FAC-5CB10BC5BC00}" = AVG 2013
"{7128C69B-8F7E-4336-8698-3FD3CDD955EC}" = VAIO Media Installer 2.0
"{71D6CE84-B7DC-4166-8E0D-56C1C37BFB5A}" = SonicStage 1.5.05
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7B5CE976-C7A9-4E38-A7F3-6C8EF025DD8E}" = ANIO Service
"{802EF464-4992-42B3-8434-45151AD3C933}" = VAIO Serenus Wallpaper
"{80EE18E6-F16C-11D4-8BE8-006097C9A3ED}" = ISScript
"{8E1A8479-D871-4573-AA8C-90BF0338B242}" = VAIO Media Photo Server 2.0
"{8E503D23-7969-45EE-B488-F80B8AE28D39}" = AVG 2013
"{AA14D661-8B7A-4A8F-B093-405C160178AF}" = VAIO Registration
"{ABEB838C-A1A7-4C5D-B7E1-8B4314B00527}" = MSN Messenger 5.0
"{B8ABD8C7-991E-4A70-B5A3-20C6FC680680}" = LogMeIn Hamachi
"{CD7D5804-C157-48A6-AEE0-4A40A4B5C054}" = VAIO System Information
"{D0448678-1203-4158-A58F-B3D0B616BF9E}" = Sony Certificate PCH
"{D4A49B00-02F8-11D5-B64D-00C04F790F76}" = MovieShaker 3.3
"{DCDCDBDA-8243-4779-9906-9242D1851FE0}" = SupportComPatch
"{DD18BE6E-F0B8-41DC-A9F3-AC1ABB918587}" = Help and Support
"{DF0DD6E9-F673-4466-8353-70B50A506FD9}" = VAIO Media Platform 2.0
"{DF733005-0F40-11D6-9254-0000F460E7A9}" = VAIO Media Music Server 2.0
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{FA11D5B5-7D0A-43E8-88C4-960F97B194DE}" = VAIO Survey Standalone
"Adobe Acrobat 5.0" = Adobe Acrobat 5.0
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Agere Systems Soft Modem" = Agere Systems AC'97 Modem
"AVG" = AVG 2013
"Creative Driver" = Creative Driver
"ie8" = Windows Internet Explorer 8
"InstallShield_{2B7E4354-0492-460A-BDB1-1F59EE141025}" = AirPlus G
"InstallShield_{AA14D661-8B7A-4A8F-B093-405C160178AF}" = VAIO Registration
"InstallShield_{DCDCDBDA-8243-4779-9906-9242D1851FE0}" = SupportComPatch
"InstallShield_{DD18BE6E-F0B8-41DC-A9F3-AC1ABB918587}" = Help and Support
"InstallShield_{FA11D5B5-7D0A-43E8-88C4-960F97B194DE}" = VAIO Survey Standalone
"LogMeIn Hamachi" = LogMeIn Hamachi
"MoodLogic" = MoodLogic
"MSNMS" = MSN Internet Software
"NVIDIA" = NVIDIA Windows 2000/XP Display Drivers
"OpenMG HotFix3.1-02-08-09-01" = OpenMG Limited Patch 3.1-02-10-23-01
"OpenMG HotFix3.1-02-08-15-01" = OpenMG Limited Patch 3.1-02-10-22-01
"QuickTime" = QuickTime
"RealPlayer 6.0" = RealOne Player
"RealProducer 8.5" = RealProducer Basic 8.5
"Shockwave" = Shockwave
"SiS Compatible VGA V2.09s" = SiS Compatible VGA V2.09s
"Sony on Yahoo! Essentials" = Sony on Yahoo! Essentials
"VAIO Support" = VAIO Support
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR 4.20 (32-bit)

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 9/19/2012 9:41:32 PM | Computer Name = HUNTERSVAIO | Source = Application Error | ID = 1000
Description = Faulting application iexplore.exe, version 6.0.2800.1106, faulting
module mshtml.dll, version 6.0.2800.1106, fault address 0x000a6eb5.

Error - 9/19/2012 9:42:29 PM | Computer Name = HUNTERSVAIO | Source = Application Error | ID = 1000
Description = Faulting application iexplore.exe, version 6.0.2800.1106, faulting
module flash.ocx, version 6.0.29.0, fault address 0x00054564.

Error - 9/20/2012 11:32:16 PM | Computer Name = HUNTERSVAIO | Source = Application Error | ID = 1000
Description = Faulting application iexplore.exe, version 6.0.2900.5512, faulting
module ntdll.dll, version 5.1.2600.5512, fault address 0x000109f9.

[ System Events ]
Error - 9/25/2012 12:18:45 AM | Computer Name = HUNTERSVAIO | Source = SideBySide | ID = 16842784
Description = Dependent Assembly Microsoft.VC90.CRT could not be found and Last
Error was The referenced assembly is not installed on your system.

Error - 9/25/2012 12:18:45 AM | Computer Name = HUNTERSVAIO | Source = SideBySide | ID = 16842811
Description = Resolve Partial Assembly failed for Microsoft.VC90.CRT. Reference error
message: The referenced assembly is not installed on your system. .

Error - 9/25/2012 12:18:45 AM | Computer Name = HUNTERSVAIO | Source = SideBySide | ID = 16842811
Description = Generate Activation Context failed for C:\Program Files\Common Files\AVG
Secure Search\SiteSafetyInstaller\12.2.6\SiteSafety.dll. Reference error message:
The operation completed successfully. .

Error - 9/25/2012 12:18:46 AM | Computer Name = HUNTERSVAIO | Source = SideBySide | ID = 16842784
Description = Dependent Assembly Microsoft.VC90.CRT could not be found and Last
Error was The referenced assembly is not installed on your system.

Error - 9/25/2012 12:18:46 AM | Computer Name = HUNTERSVAIO | Source = SideBySide | ID = 16842811
Description = Resolve Partial Assembly failed for Microsoft.VC90.CRT. Reference error
message: The referenced assembly is not installed on your system. .

Error - 9/25/2012 12:18:46 AM | Computer Name = HUNTERSVAIO | Source = SideBySide | ID = 16842811
Description = Generate Activation Context failed for C:\Program Files\Common Files\AVG
Secure Search\SiteSafetyInstaller\12.2.6\SiteSafety.dll. Reference error message:
The operation completed successfully. .

Error - 9/25/2012 12:18:47 AM | Computer Name = HUNTERSVAIO | Source = SideBySide | ID = 16842784
Description = Dependent Assembly Microsoft.VC90.CRT could not be found and Last
Error was The referenced assembly is not installed on your system.

Error - 9/25/2012 12:18:47 AM | Computer Name = HUNTERSVAIO | Source = SideBySide | ID = 16842811
Description = Resolve Partial Assembly failed for Microsoft.VC90.CRT. Reference error
message: The referenced assembly is not installed on your system. .

Error - 9/25/2012 12:18:47 AM | Computer Name = HUNTERSVAIO | Source = SideBySide | ID = 16842811
Description = Generate Activation Context failed for C:\Program Files\Common Files\AVG
Secure Search\SiteSafetyInstaller\12.2.6\SiteSafety.dll. Reference error message:
The operation completed successfully. .

Error - 9/25/2012 12:18:48 AM | Computer Name = HUNTERSVAIO | Source = SideBySide | ID = 16842784
Description = Dependent Assembly Microsoft.VC90.CRT could not be found and Last
Error was The referenced assembly is not installed on your system.


< End of report >
  • 0

Advertisements

#2
Dakeyras
Posted 05 October 2012 - 04:33 AM

Dakeyras

    Anti-Malware Mammoth

  • Expert
  • 9,772 posts

Please note that all instructions given are customised for this computer only, the tools used may cause damage if used on a computer with different infections.

If you think you have similar problems, please post the appropriate logs in the Malware Removal forum and wait for help.

Hi and welcome to Geeks to Go. :)

I'm Dakeyras and I am going to try to assist you with your problem. Please take note of the below:

  • I will start working on your Malware issues, this may or may not, solve other issues you have with your machine.
  • The fixes are specific to your problem and should only be used for this issue on this machine!
  • The process is not instant. Please continue to review my answers until I tell you your machine is clear. Absence of symptoms does not mean that everything is clear.
  • If you don't know, stop and ask! Don't keep going on.
  • Please reply to this thread. Do not start a new topic.
  • Refrain from running self fixes as this will hinder the malware removal process.
  • It may prove beneficial if you print of the following instructions or save them to notepad as I post them.
  • Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
Before we start:

Please be aware that removing Malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.

Because of this, I advise you to backup any personal files and folders before you start.

Hard-Drive Free Space Advice:

Drive C: | 13.97 Gb Total Space | 1.91 Gb Free Space | 13.65% Space Free | Partition Type: NTFS

This is considered borderline....A Hard-Drive requires a bare minimum of 15% available free space to be able to function correctly, but at least 25% is better in my humble opinion.

I advise you choose to uninstall some software you do not need and or move any documents/files/pictures etc to a form of removable storage media.

This is just my friendly advice as the lack of current Hard-Drive space will be impacting on overall system performance. Plus eventually any type of system maintenance will prove to be problematic.

Scan with DDS:

Please download DDS and save it to your Desktop from here.

Alternate downloads are here or here.

  • Disable any script blocker, and then double click on DDS to run the tool.
  • When done, DDS will open two logs:
  • DDS.txt <-- Will be opened
  • Attach.txt <-- Will be minimized
  • Save both reports to your desktop.
  • Please post the contents of these two Notepad files in your next reply.
When completed the above, please post back the following in the order asked for:

  • How is you computer performing now, any further symptoms and or problems encountered?
  • Both DDS logs. <-- Post them individually please, IE: one Log per post/reply.

  • 0

#3
Dakeyras
Posted 08 October 2012 - 05:30 AM

Dakeyras

    Anti-Malware Mammoth

  • Expert
  • 9,772 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP