After reviewing your logs I believe it may be more of a hardware issue than a malware issue as bad blocks are being reported on your disk drive. Let's see if we can resolve.
Step#1 - ChkDsk Scan
1. Click your Start button and choose Run.
2. Type cmd in the Run box and hit enter on the keyboard.
3. You should now have a black window open that you can type in to.
4. Please type chkdsk /R and then press enter.
5. You may get a message that says the volume is locked and that you need to reboot for this to work. Type Y on your keyboard and then reboot your computer.
Note: This may take awhile to run. Let it finish.
6. If your machine boots back up in to Normal mode please keep it this way. If not then boot back into Safe mode With Networking.
7. Download ListChkdskResult.exe by SleepyDude and save it on your desktop.
8. Double-click this file and a text file will open (and also be saved on the desktop as ListChkdskResult.txt). Please copy the contents of this file and paste into your next post.
Step#2 - Fresh Set of Logs Needed
1. Please download Farbar Recovery Scan Tool and save it to your Desktop.
Note: You need to run the 32-bit Version so please ensure you download that one.
2. Double-Click to open. When the tool opens click Yes to disclaimer.
3. Press Scan button.
4. It will produce a log called FRST.txt in the same directory the tool is run from (which should be the desktop)
5. Please copy and paste log back here.
6. The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe). Please also paste that along with the FRST.txt into your reply.
Items for your next Post
1. ChkDsk Results
2. FRST and Addition logs
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-09-2014
Ran by User (administrator) on D88CFA77634F40F on 14-09-2014 13:53:23
Running from C:\Documents and Settings\User\Desktop
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English (United States)
Internet Explorer Version 8
Boot Mode: Safe Mode (with Networking)
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IntelZeroConfig] => C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe [802816 2006-08-02] (Intel Corporation)
HKLM\...\Run: [IntelWireless] => C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe [696320 2006-08-02] (Intel Corporation)
HKLM\...\Run: [igfxpers] => C:\WINDOWS\system32\igfxpers.exe [118784 2006-03-23] (Intel Corporation)
HKLM\...\Run: [UserFaultCheck] => %systemroot%\system32\dumprep 0 -u
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
Winlogon\Notify\VESWinlogon: C:\WINDOWS\system32\VESWinlogon.dll (Sony Corporation)
HKLM\...99B7938DA9E4}\LocalServer32: [Default-wmiprvse] <==== ATTENTION!
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
BootExecute: autocheck autochk * sdnclean.exeC:\PROGRA~1\AVG\AVG2014\avgrsx.exe /sync /restart
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
BHO: Spybot-S&D IE Protection -> {53707962-6F74-2D53-2644-206D7942484F} -> C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - &Address - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU - No Name - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No File
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2012-03-08]
FF HKLM\...\Firefox\Extensions: [
[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-01-02]
Chrome:
=======
CHR HomePage: Default ->
CHR DefaultSearchKeyword: Default -> mysearchdial.com
CHR DefaultSearchProvider: Default -> Mysearchdial
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\21.0.1180.89\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\36.0.1985.143\gcswf32.dll No File
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\36.0.1985.143\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\36.0.1985.143\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (RIM Handheld Application Loader) - C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll No File
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (MetaStream 3 Plugin) - C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll No File
CHR Plugin: (Shockwave for Director) - C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
CHR Plugin: (Windows Presentation Foundation) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR CustomProfile: C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Default
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-30]
CHR Extension: (Google Wallet) - C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-14]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-06]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
ATTENTION: => Could not perform signature verification. Cryptographic Service is not running.
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [142648 2014-07-22] (SUPERAntiSpyware.com)
S3 AOL ACS; C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe [46640 2006-10-23] (AOL LLC)
S4 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-06] (AVAST Software)
S2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3242000 2014-08-25] (AVG Technologies CZ, s.r.o.)
S2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [289328 2014-08-25] (AVG Technologies CZ, s.r.o.)
S2 dsNcService; C:\Program Files\Juniper Networks\Common Files\dsNcService.exe [670792 2011-10-11] (Juniper Networks)
S2 JuniperAccessService; C:\Program Files\Common Files\Juniper Networks\JUNS\dsAccessService.exe [198520 2011-09-07] (Juniper Networks, Inc.)
S2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
S2 MSSQL$MICROSOFTBCM; C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Binn\sqlservr.exe [7544916 2003-05-31] (Microsoft Corporation)
S3 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [66112 2002-12-17] (Microsoft Corporation)
S3 PACSPTISVR; C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [57344 2006-12-14] ()
S2 S24EventMonitor; C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [937984 2006-08-02] (Intel Corporation )
S2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
S2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
S2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S2 SmartWiService; C:\Program Files\Sony\SmartWi Connection Utility\SmartWiService.exe [94208 2006-02-07] (Sony Electronics, Inc)
S3 SPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe [69632 2006-12-14] (Sony Corporation)
S3 SQLAgent$MICROSOFTBCM; C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Binn\sqlagent.EXE [311872 2002-12-17] (Microsoft Corporation)
S3 VAIO Entertainment TV Device Arbitration Service; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe [73728 2005-10-06] (Sony Corporation)
S2 VAIO Event Service; C:\Program Files\Sony\VAIO Event Service\VESMgr.exe [153600 2005-05-20] (Sony Corporation)
S3 VAIOMediaPlatform-IntegratedServer-AppServer; C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe [2072576 2006-06-12] (Sony Corporation)
S3 VAIOMediaPlatform-IntegratedServer-HTTP; C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe [57344 2005-10-11] (Sony Corporation)
S3 VAIOMediaPlatform-IntegratedServer-UPnP; C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe [770048 2006-05-17] (Sony Corporation)
S3 VAIOMediaPlatform-Mobile-Gateway; C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe [155648 2006-05-17] (Sony Corporation)
S3 Vcsw; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe [270336 2005-09-01] (Sony Corporation)
S2 VzCdbSvc; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [131072 2005-09-01] (Sony Corporation)
S2 VzFw; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe [118784 2005-09-01] (Sony Corporation)
S3 WmcCds; c:\program files\windows media connect\mswmccds.exe [483328 2004-08-11] (Microsoft Corporation)
S3 WmcCdsLs; C:\Program Files\Windows Media Connect\mswmcls.exe [28160 2004-08-11] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21419 2010-05-13] (Meetinghouse Data Communications)
S2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-08-06] ()
S2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-08-06] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55112 2014-08-06] (AVAST Software)
S0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-08-06] ()
S1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [779536 2014-08-06] (AVAST Software)
S1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [414520 2014-09-06] (AVAST Software)
S1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57800 2014-08-06] (AVAST Software)
S0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [192352 2014-08-06] ()
S1 Avgdiskx; C:\WINDOWS\System32\DRIVERS\avgdiskx.sys [121624 2014-06-30] (AVG Technologies CZ, s.r.o.)
S1 AVGIDSDriverl; C:\WINDOWS\System32\DRIVERS\avgidsdriverlx.sys [191256 2014-07-21] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [147736 2014-06-17] (AVG Technologies CZ, s.r.o.)
S1 AVGIDSShim; C:\WINDOWS\System32\DRIVERS\avgidsshimx.sys [21272 2014-06-17] (AVG Technologies CZ, s.r.o.)
S1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [188696 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [241944 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [98584 2014-08-06] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [27416 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\WINDOWS\System32\DRIVERS\avgtdix.sys [197400 2014-06-17] (AVG Technologies CZ, s.r.o.)
R3 dsNcAdpt; C:\WINDOWS\System32\DRIVERS\dsNcAdpt.sys [26624 2011-10-11] (Juniper Networks)
S3 HSFHWAZL; C:\WINDOWS\System32\DRIVERS\HSFHWAZL.sys [178048 2005-05-23] (Conexant Systems, Inc.)
S3 HSF_DPV; C:\WINDOWS\System32\DRIVERS\HSF_DPV.sys [1034752 2005-05-23] (Conexant Systems, Inc.)
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2014-05-12] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [110296 2014-09-14] (Malwarebytes Corporation)
R1 NEOFLTR_710_19525; C:\WINDOWS\system32\Drivers\NEOFLTR_710_19525.SYS [85064 2011-10-11] (Juniper Networks)
S2 s24trans; C:\WINDOWS\System32\DRIVERS\s24trans.sys [12544 2006-08-02] (Intel Corporation)
S1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 SEMWModem; C:\WINDOWS\System32\DRIVERS\GCXX.sys [114944 2005-01-03] (Broadcom Corporation)
S3 SEMWWNIC; C:\WINDOWS\System32\DRIVERS\GCXXNet.sys [53248 2005-01-03] (Broadcom Corporation)
R3 SPI; C:\WINDOWS\System32\DRIVERS\SonyPI.sys [71961 2003-06-18] (Sony Corporation)
S3 ti21sony; C:\WINDOWS\System32\drivers\ti21sony.sys [812544 2007-04-23] (Texas Instruments)
R3 w29n51; C:\WINDOWS\System32\DRIVERS\w29n51.sys [2206720 2006-06-29] (Intel® Corporation)
R3 wanatw; C:\WINDOWS\System32\DRIVERS\wanatw4.sys [33588 2003-01-10] (America Online, Inc.)
S3 ZDPSp50; C:\WINDOWS\System32\Drivers\ZDPSp50.sys [17664 2010-05-06] (Printing Communications Assoc., Inc. (PCAUSA))
S3 PCTINDIS5; \??\C:\WINDOWS\system32\PCTINDIS5.SYS [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U1 WS2IFSL; No ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-14 13:01 - 2014-09-14 13:54 - 00017148 _____ () C:\Documents and Settings\User\Desktop\FRST.txt
2014-09-14 12:55 - 2014-09-14 13:53 - 00000000 ____D () C:\FRST
2014-09-14 12:33 - 2014-09-14 12:34 - 01097728 _____ (Farbar) C:\Documents and Settings\User\Desktop\FRST.exe
2014-09-14 12:31 - 2014-09-14 12:32 - 00000330 _____ () C:\Documents and Settings\User\Desktop\ListChkdskResult.txt
2014-09-14 12:25 - 2014-09-14 12:29 - 00197679 _____ () C:\Documents and Settings\User\Desktop\ListChkdskResult.exe
2014-09-12 12:23 - 2014-09-12 12:23 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2014-09-12 11:56 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\WINDOWS\system32\sqlite3.dll
2014-09-12 11:55 - 2014-09-12 12:04 - 00000000 ____D () C:\AdwCleaner
2014-09-12 11:44 - 2014-09-12 11:48 - 00004862 _____ () C:\Documents and Settings\User\Desktop\Rkill.txt
2014-09-11 18:13 - 2014-09-11 18:13 - 00000453 _____ () C:\Documents and Settings\Administrator\Desktop\Shortcut to iExplore.lnk
2014-09-11 18:12 - 2012-05-09 20:30 - 01012656 _____ () C:\Documents and Settings\Administrator\Desktop\WiNlOgOn.exe
2014-09-11 18:12 - 2012-05-09 20:29 - 01012656 _____ () C:\Documents and Settings\Administrator\Desktop\eXplorer.exe
2014-09-11 16:32 - 2014-09-11 18:14 - 00000394 _____ () C:\rkill.log
2014-09-07 11:45 - 2014-09-07 11:45 - 00000000 ____D () C:\Documents and Settings\User\Application Data\AVG2014
2014-09-07 11:43 - 2014-09-07 11:43 - 00000702 _____ () C:\Documents and Settings\All Users\Desktop\AVG 2014.lnk
2014-09-07 11:43 - 2014-09-07 11:43 - 00000000 ____D () C:\Documents and Settings\User\Application Data\TuneUp Software
2014-09-07 11:43 - 2014-09-07 11:43 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\AVG
2014-09-07 11:41 - 2014-09-07 11:44 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVG2014
2014-09-07 11:41 - 2014-09-07 11:41 - 00000000 ___HD () C:\$AVG
2014-09-07 11:38 - 2014-09-07 11:38 - 00000000 ____D () C:\Program Files\AVG
2014-09-07 11:32 - 2014-09-14 12:50 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\MFAData
2014-09-07 11:32 - 2014-09-07 11:44 - 00000000 ____D () C:\Documents and Settings\User\Local Settings\Application Data\Avg2014
2014-09-07 11:32 - 2014-09-07 11:32 - 00000000 ____D () C:\Documents and Settings\User\Local Settings\Application Data\MFAData
2014-09-07 11:30 - 2014-09-14 12:04 - 00000644 _____ () C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job
2014-09-07 11:30 - 2014-09-07 11:52 - 00000616 _____ () C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job
2014-09-07 11:30 - 2014-09-07 11:52 - 00000446 _____ () C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job
2014-09-07 11:30 - 2014-09-07 11:45 - 00065536 _____ () C:\WINDOWS\system32\config\SpybotSD.evt
2014-09-07 11:30 - 2014-09-07 11:30 - 00001842 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-09-07 11:30 - 2014-09-07 11:30 - 00001836 _____ () C:\Documents and Settings\All Users\Desktop\Spybot-S&D Start Center.lnk
2014-09-07 11:30 - 2014-09-07 11:30 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Spybot - Search & Destroy 2
2014-09-07 11:29 - 2013-09-20 10:49 - 00018968 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean.exe
2014-09-07 11:27 - 2014-09-07 11:31 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-09-06 23:51 - 2014-09-06 23:51 - 00000000 ____D () C:\Documents and Settings\User\Start Menu\Programs\Dropbox
2014-09-06 23:43 - 2014-09-06 23:49 - 00000000 ____D () C:\Documents and Settings\User\Application Data\Dropbox
2014-09-06 21:38 - 2014-09-06 21:38 - 00000000 ____D () C:\SUPERDelete
2014-09-06 21:36 - 2014-09-06 21:36 - 00000000 ____D () C:\Documents and Settings\User\Application Data\SUPERAntiSpyware.com
2014-09-06 21:35 - 2014-09-06 21:35 - 00001678 _____ () C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
2014-09-06 21:35 - 2014-09-06 21:35 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\SUPERAntiSpyware
2014-09-06 21:34 - 2014-09-06 21:45 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-09-06 21:34 - 2014-09-06 21:34 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2014-09-06 15:00 - 2014-09-14 12:33 - 00110296 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-09-06 15:00 - 2014-09-06 15:00 - 00000777 _____ () C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
2014-09-06 15:00 - 2014-09-06 15:00 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-09-06 15:00 - 2014-09-06 15:00 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes Anti-Malware
2014-09-06 15:00 - 2014-09-06 15:00 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes
2014-09-06 15:00 - 2014-05-12 07:26 - 00053208 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-09-06 15:00 - 2014-05-12 07:25 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-09-06 14:51 - 2014-09-06 14:53 - 00004862 _____ () C:\Documents and Settings\Administrator\Desktop\Rkill.txt
2014-09-06 14:48 - 2014-09-06 14:48 - 00000000 __SHD () C:\Documents and Settings\Administrator\IETldCache
2014-09-06 14:38 - 2014-09-14 11:43 - 00000000 __SHD () C:\WINDOWS\CSC
2014-08-30 10:01 - 2014-08-30 10:01 - 00090112 _____ () C:\WINDOWS\Minidump\Mini083014-01.dmp
2014-08-30 10:01 - 2014-08-30 10:01 - 00000000 ____D () C:\WINDOWS\Minidump
2014-08-20 15:46 - 2014-08-20 15:46 - 00000000 ____D () C:\WINDOWS\jumpshot.com
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-14 13:54 - 2014-09-14 13:01 - 00017148 _____ () C:\Documents and Settings\User\Desktop\FRST.txt
2014-09-14 13:54 - 2010-05-05 23:29 - 00000000 ____D () C:\Documents and Settings\User\Local Settings\Temp
2014-09-14 13:53 - 2014-09-14 12:55 - 00000000 ____D () C:\FRST
2014-09-14 13:48 - 2005-11-30 06:55 - 00001158 _____ () C:\WINDOWS\system32\wpa.dbl
2014-09-14 12:50 - 2014-09-07 11:32 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\MFAData
2014-09-14 12:34 - 2014-09-14 12:33 - 01097728 _____ (Farbar) C:\Documents and Settings\User\Desktop\FRST.exe
2014-09-14 12:33 - 2014-09-06 15:00 - 00110296 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-09-14 12:32 - 2014-09-14 12:31 - 00000330 _____ () C:\Documents and Settings\User\Desktop\ListChkdskResult.txt
2014-09-14 12:29 - 2014-09-14 12:25 - 00197679 _____ () C:\Documents and Settings\User\Desktop\ListChkdskResult.exe
2014-09-14 12:24 - 2005-11-30 08:19 - 00032524 _____ () C:\WINDOWS\SchedLgU.Txt
2014-09-14 12:19 - 2005-11-30 08:19 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-09-14 12:14 - 2012-07-24 08:57 - 00000878 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-14 12:13 - 2005-11-30 08:13 - 01758886 _____ () C:\WINDOWS\WindowsUpdate.log
2014-09-14 12:07 - 2005-11-30 00:09 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-09-14 12:06 - 2005-11-30 00:09 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2014-09-14 12:04 - 2014-09-07 11:30 - 00000644 _____ () C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job
2014-09-14 12:04 - 2014-01-02 23:49 - 00000312 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-09-14 11:57 - 2010-05-05 23:29 - 00000178 ___SH () C:\Documents and Settings\User\ntuser.ini
2014-09-14 11:43 - 2014-09-06 14:38 - 00000000 __SHD () C:\WINDOWS\CSC
2014-09-12 12:23 - 2014-09-12 12:23 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2014-09-12 12:15 - 2012-06-14 10:51 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-09-12 12:04 - 2014-09-12 11:55 - 00000000 ____D () C:\AdwCleaner
2014-09-12 11:48 - 2014-09-12 11:44 - 00004862 _____ () C:\Documents and Settings\User\Desktop\Rkill.txt
2014-09-11 18:16 - 2005-11-30 08:21 - 00000178 ___SH () C:\Documents and Settings\Administrator\ntuser.ini
2014-09-11 18:14 - 2014-09-11 16:32 - 00000394 _____ () C:\rkill.log
2014-09-11 18:14 - 2005-11-30 08:21 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Temp
2014-09-11 18:13 - 2014-09-11 18:13 - 00000453 _____ () C:\Documents and Settings\Administrator\Desktop\Shortcut to iExplore.lnk
2014-09-11 14:58 - 2005-11-30 00:03 - 00696592 _____ () C:\WINDOWS\setupapi.log
2014-09-11 14:36 - 2005-11-30 06:56 - 00000216 __RSH () C:\boot.ini
2014-09-11 14:36 - 2005-11-30 06:55 - 00000656 _____ () C:\WINDOWS\win.ini
2014-09-11 14:36 - 2005-11-30 06:55 - 00000227 _____ () C:\WINDOWS\system.ini
2014-09-07 11:52 - 2014-09-07 11:30 - 00000616 _____ () C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job
2014-09-07 11:52 - 2014-09-07 11:30 - 00000446 _____ () C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job
2014-09-07 11:45 - 2014-09-07 11:45 - 00000000 ____D () C:\Documents and Settings\User\Application Data\AVG2014
2014-09-07 11:45 - 2014-09-07 11:30 - 00065536 _____ () C:\WINDOWS\system32\config\SpybotSD.evt
2014-09-07 11:44 - 2014-09-07 11:41 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVG2014
2014-09-07 11:44 - 2014-09-07 11:32 - 00000000 ____D () C:\Documents and Settings\User\Local Settings\Application Data\Avg2014
2014-09-07 11:43 - 2014-09-07 11:43 - 00000702 _____ () C:\Documents and Settings\All Users\Desktop\AVG 2014.lnk
2014-09-07 11:43 - 2014-09-07 11:43 - 00000000 ____D () C:\Documents and Settings\User\Application Data\TuneUp Software
2014-09-07 11:43 - 2014-09-07 11:43 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\AVG
2014-09-07 11:41 - 2014-09-07 11:41 - 00000000 ___HD () C:\$AVG
2014-09-07 11:38 - 2014-09-07 11:38 - 00000000 ____D () C:\Program Files\AVG
2014-09-07 11:32 - 2014-09-07 11:32 - 00000000 ____D () C:\Documents and Settings\User\Local Settings\Application Data\MFAData
2014-09-07 11:31 - 2014-09-07 11:27 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-09-07 11:30 - 2014-09-07 11:30 - 00001842 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-09-07 11:30 - 2014-09-07 11:30 - 00001836 _____ () C:\Documents and Settings\All Users\Desktop\Spybot-S&D Start Center.lnk
2014-09-07 11:30 - 2014-09-07 11:30 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Spybot - Search & Destroy 2
2014-09-07 11:28 - 2010-05-07 11:47 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2014-09-07 10:08 - 2014-02-26 10:46 - 00010047 _____ () C:\Documents and Settings\User\reset.log
2014-09-06 23:51 - 2014-09-06 23:51 - 00000000 ____D () C:\Documents and Settings\User\Start Menu\Programs\Dropbox
2014-09-06 23:49 - 2014-09-06 23:43 - 00000000 ____D () C:\Documents and Settings\User\Application Data\Dropbox
2014-09-06 23:12 - 2014-01-02 23:50 - 00001733 _____ () C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
2014-09-06 23:12 - 2014-01-02 23:39 - 00414520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2014-09-06 21:45 - 2014-09-06 21:34 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-09-06 21:38 - 2014-09-06 21:38 - 00000000 ____D () C:\SUPERDelete
2014-09-06 21:36 - 2014-09-06 21:36 - 00000000 ____D () C:\Documents and Settings\User\Application Data\SUPERAntiSpyware.com
2014-09-06 21:35 - 2014-09-06 21:35 - 00001678 _____ () C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
2014-09-06 21:35 - 2014-09-06 21:35 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\SUPERAntiSpyware
2014-09-06 21:34 - 2014-09-06 21:34 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2014-09-06 18:26 - 2005-11-30 09:04 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB905749$
2014-09-06 15:00 - 2014-09-06 15:00 - 00000777 _____ () C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
2014-09-06 15:00 - 2014-09-06 15:00 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-09-06 15:00 - 2014-09-06 15:00 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes Anti-Malware
2014-09-06 15:00 - 2014-09-06 15:00 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes
2014-09-06 14:53 - 2014-09-06 14:51 - 00004862 _____ () C:\Documents and Settings\Administrator\Desktop\Rkill.txt
2014-09-06 14:49 - 2005-11-29 21:57 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Google
2014-09-06 14:48 - 2014-09-06 14:48 - 00000000 __SHD () C:\Documents and Settings\Administrator\IETldCache
2014-09-06 14:48 - 2005-11-30 08:21 - 00000000 ____D () C:\Documents and Settings\Administrator
2014-08-31 11:37 - 2012-07-24 08:57 - 00000882 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-30 13:17 - 2010-05-13 16:56 - 00000000 ____D () C:\WINDOWS\pss
2014-08-30 10:01 - 2014-08-30 10:01 - 00090112 _____ () C:\WINDOWS\Minidump\Mini083014-01.dmp
2014-08-30 10:01 - 2014-08-30 10:01 - 00000000 ____D () C:\WINDOWS\Minidump
2014-08-30 07:49 - 2012-10-03 17:42 - 00000000 ____D () C:\Documents and Settings\User\Local Settings\Application Data\Temp
2014-08-25 23:30 - 2012-03-10 16:31 - 00000258 _____ () C:\WINDOWS\Tasks\Disk Cleanup.job
2014-08-21 03:12 - 2014-06-01 10:04 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Microsoft Help
2014-08-21 03:10 - 2013-08-08 03:00 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-08-20 16:44 - 2012-07-24 09:00 - 00001813 _____ () C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
2014-08-20 15:46 - 2014-08-20 15:46 - 00000000 ____D () C:\WINDOWS\jumpshot.com
Some content of TEMP:
====================
C:\Documents and Settings\User\Local Settings\Temp\ose00000.exe
C:\Documents and Settings\User\Local Settings\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => MD5 is legit
C:\WINDOWS\system32\winlogon.exe => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit
C:\WINDOWS\system32\User32.dll => MD5 is legit
C:\WINDOWS\system32\userinit.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\volsnap.sys => MD5 is legit
==================== End Of Log ============================Additional scan result of Farbar Recovery Scan Tool (x86) Version: 12-09-2014
Ran by User at 2014-09-14 13:55:47
Running from C:\Documents and Settings\User\Desktop
Boot Mode: Safe Mode (with Networking)
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: AVG AntiVirus 2014 (Disabled - Up to date) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: avast! Antivirus (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 1.5.3.9130 - Adobe Systems Inc.)
Adobe AIR (Version: 1.5.3.9130 - Adobe Systems Inc.) Hidden
Adobe Flash Player 13 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 14 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Adobe Photoshop Album 2.0 Starter Edition (HKLM\...\{11B569C2-4BF6-4ED0-9D17-A4273943CB24}) (Version: 2.00.100 - Adobe Systems, Inc.)
Adobe Reader X (10.1.10) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.10 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.5 (HKLM\...\Adobe Shockwave Player) (Version: 11.5.6.606 - Adobe Systems, Inc.)
Aff Packages (HKCU\...\Aff Packages) (Version: - ) <==== ATTENTION
AOL Uninstaller (Choose which Products to Remove) (HKLM\...\AOL Uninstaller) (Version: - AOL Inc.)
AV Mode Button Utility (HKLM\...\{1C70BE80-35E0-46DA-B81D-5BF5652F8D80}) (Version: 1.0.00.10070 - Sony Corporation)
avast! Free Antivirus (HKLM\...\Avast) (Version: 9.0.2021 - AVAST Software)
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4765 - AVG Technologies)
AVG 2014 (Version: 14.0.4015 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4765 - AVG Technologies) Hidden
Battle.net (HKLM\...\Battle.net) (Version: - Blizzard Entertainment)
Bluetooth Stack for Windows by Toshiba (HKLM\...\{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}) (Version: v4.00.20(SO) - )
Business Contact Manager for Outlook 2003 (HKLM\...\{66563AD8-637B-407F-BCA7-0233A16891AB}) (Version: 1.0.2002.1 - Microsoft Corporation)
Centricity Enterprise Web 3.0 Client (SPa05) (HKLM\...\{4F79EDDE-2F37-4360-9662-933986FA2A50}) (Version: 1.0.0 - GE Medical Systems IT)
Centricity Enterprise Web 3.0 Client (SPa10) (HKLM\...\{A29C4047-4731-4F0D-86B8-FA6A301BFDD6}) (Version: 1.0.0 - GE Healthcare)
Citrix Presentation Server Client (HKLM\...\{E89956F9-5B89-470E-818D-BD46102D0A01}) (Version: 10.100.55836 - Citrix Systems, Inc.)
Click to DVD 2.0.03 Menu Data (HKLM\...\{9E407618-D9CD-4F39-9490-9ED45294073D}) (Version: 2.0.03 - Sony Corporation)
Click to DVD 2.5.32 (HKLM\...\{E809063C-51A3-4269-8984-D1EB742F2151}) (Version: 2.5.32 - Sony Corporation)
Dropbox (HKCU\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
DVgate Plus (HKLM\...\{685BCC47-B8EC-45EC-BBCE-77DF2451502C}) (Version: - )
Google Chrome (HKLM\...\Google Chrome) (Version: 36.0.1985.143 - Google Inc.)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
HDAUDIO SoftV92 Data Fax Modem with SmartCP (HKLM\...\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_20030003) (Version: - )
High Definition Audio Driver Package - KB835221 (HKLM\...\KB835221WXP) (Version: 20040219.000000 - Microsoft Corporation)
Instant Mode (HKLM\...\{E6707034-D7A4-49B1-94D0-F5AACE46F06C}) (Version: - )
Intel® Graphics Media Accelerator Driver for Mobile (HKLM\...\{8A708DD8-A5E6-11D4-A706-000629E95E20}) (Version: 6.14.10.4543 - )
Intel® PRO Network Connections Drivers (HKLM\...\PROSet) (Version: - )
Intel® PROSet/Wireless Software (HKLM\...\ProInst) (Version: 10.50.0000 - Intel Corporation)
InterVideo WinDVD for VAIO (HKLM\...\{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}) (Version: 5.0-B11.739 - InterVideo Inc.)
ISScript (Version: 3.00.185 - InstallShield Software Corp.) Hidden
J2SE Runtime Environment 5.0 Update 5 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0150050}) (Version: 1.5.0.50 - Sun Microsystems, Inc.)
Juniper Installer Service (HKLM\...\{3AAE5EBB-4CA1-442A-9F64-FF813F694A2D}) (Version: 7.1.0.19525 - Juniper Networks)
Juniper Networks Host Checker (HKCU\...\Neoteris_Host_Checker) (Version: 6.5.0.16789 - Juniper Networks)
Juniper Networks Network Connect 7.1.0 (HKLM\...\Juniper Network Connect 7.1.0) (Version: 7.1.0.19525 - Juniper Networks)
Juniper Networks Secure Application Manager (HKLM\...\Neoteris_Secure_Application_Manager) (Version: 7.1.0.19525 - Juniper Networks)
Juniper Networks, Inc. Setup Client (HKCU\...\Juniper_Setup_Client) (Version: 7.1.4.13103 - Juniper Networks, Inc.)
Juniper Networks, Inc. Setup Client Activex Control (HKLM\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Juniper Networks, Inc.)
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
mCore (Version: 7.05.0000 - Intel Corporation) Hidden
mDriver (Version: 7.05.0000 - Intel) Hidden
mDrWiFi (Version: 7.05.0000 - Intel Corporation) Hidden
Memory Stick Formatter (HKLM\...\{27337663-2619-11D4-99DC-0000F49094C7}) (Version: - )
mHelp (Version: 7.05.0000 - Intel) Hidden
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 (Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM\...\M2698023) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM\...\M979906) (Version: - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Data Access Components KB870669 (HKLM\...\KB870669) (Version: - Microsoft Corporation)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9 (Version: - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Software Update for Web Folders (English) 12 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft VC9 runtime libraries (Version: 1.0.0 - AOL Inc.) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Works (HKLM\...\{6D52C408-B09A-4520-9B18-475B81D393F1}) (Version: 08.05.0818 - Microsoft Corporation)
Miracle C (HKLM\...\{F9270D69-C715-4E1E-BFDD-03060438D181}) (Version: 4.1 - Tadeusz Szocik)
mIWA (Version: 7.05.0000 - Intel Corporation) Hidden
mLogView (Version: 7.05.0000 - Intel Corporation) Hidden
mMHouse (Version: 7.05.0000 - Intel Corporation) Hidden
mPfMgr (Version: 7.05.0000 - Intel Corporation) Hidden
mPfWiz (Version: 7.05.0000 - Intel Corporation) Hidden
mProSafe (Version: 9.00.0000 - Intel) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
mWlsSafe (Version: 7.05.0000 - Intel) Hidden
mXML (Version: 7.05.0000 - Intel Corporation) Hidden
mZConfig (Version: 7.05.0000 - Intel Corporation) Hidden
Office 2003 Trial Assistant (HKLM\...\{47D2103B-FD51-4017-9C20-DD408B17D726}) (Version: 1.0.0 - Microsoft)
OpenMG Limited Patch 4.7-07-14-05-01 (HKLM\...\OpenMG HotFix4.7-07-13-22-01) (Version: - )
OpenMG Secure Module 4.7.00 (HKLM\...\InstallShield_{CCD663AE-610D-4BDF-AAB0-E914B044527D}) (Version: 4.7.00.12140 - Sony Corporation)
OpenMG Secure Module 4.7.00 (Version: 4.7.00.12140 - Sony Corporation) Hidden
OpenOffice 4.0.1 (HKLM\...\{47F460DA-D1BE-4D85-8DF2-AA1F31D3445F}) (Version: 4.01.9714 - Apache Software Foundation)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 2.06 - Realtek Semiconductor Corp.)
Roxio DigitalMedia Audio (HKLM\...\{AB708C9B-97C8-4AC9-899B-DBF226AC9382}) (Version: 2.0.4 - Roxio)
Roxio DigitalMedia Copy (HKLM\...\{B12665F4-4E93-4AB4-B7FC-37053B524629}) (Version: 2.0.4 - Roxio)
Roxio DigitalMedia Data (HKLM\...\{075473F5-846A-448B-BCB3-104AA1760205}) (Version: 2.0.4 - Roxio)
Setting Utility Series (HKLM\...\{59452470-A902-477F-9338-9B88101681BD}) (Version: - )
SmartWi Connection Utility (HKLM\...\{9B5F85CA-90D4-4AFC-BB37-32477FD0D2B9}) (Version: - )
Sony Certificate PCH (HKLM\...\{D0448678-1203-4158-A58F-B3D0B616BF9E}) (Version: - )
Sony Ericsson Wireless Modem (HKLM\...\Sony Ericsson Wireless Modem) (Version: - )
Sony MP4 Shared Library (HKLM\...\{01FDC9FC-4D4F-4DB0-ACD1-D3E8E1D52902}) (Version: 2.0 - Sony Corporation)
Sony USB Mouse (HKLM\...\MouseSuite98) (Version: - )
Sony Utilities DLL (HKLM\...\{EF3D45BB-2260-4008-88EA-492E7744A9DF}) (Version: - )
Sony Video Shared Library (HKLM\...\{BE56FEF0-1A0F-4719-B3AD-34B5087AFA6D}) (Version: 2.0.01 - Sony Corporation)
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update for Windows Internet Explorer 8 (KB976662) (HKLM\...\KB976662-IE8) (Version: 1 - Microsoft Corporation)
Update for Windows Internet Explorer 8 (KB980182) (HKLM\...\KB980182-IE8) (Version: 1 - Microsoft Corporation)
Update for Windows Internet Explorer 8 (KB980302) (HKLM\...\KB980302-IE8) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2141007) (HKLM\...\KB2141007) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2541763) (HKLM\...\KB2541763) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2607712) (HKLM\...\KB2607712) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2641690) (HKLM\...\KB2641690) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2661254-v2) (HKLM\...\KB2661254-v2) (Version: 2 - Microsoft Corporation)
Update for Windows XP (KB2718704) (HKLM\...\KB2718704) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2736233) (HKLM\...\KB2736233) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2863058) (HKLM\...\KB2863058) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB951978) (HKLM\...\KB951978) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB967715) (HKLM\...\KB967715) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB971737) (HKLM\...\KB971737) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB973687) (HKLM\...\KB973687) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB980182) (HKLM\...\KB980182) (Version: 1 - Microsoft Corporation)
VAIO Breeze Wallpaper (HKLM\...\{2EA7CF7E-0C76-44A5-B0CF-A1D171476E42}) (Version: - )
VAIO Central (HKLM\...\{4E993095-28F2-4060-9101-99C1FD1195C0}) (Version: 1.1.02.071205 - Sony Corporation)
VAIO Entertainment Platform (HKLM\...\{6B1F20F2-6321-4669-A58C-33DF8E7517FF}) (Version: 1.2.20.10060 - Sony Corporation)
VAIO Event Service (HKLM\...\{F0D85ADD-DD61-4B43-87A0-6DA52A211A8B}) (Version: 2.2.00.06130 - Sony Corporation)
VAIO Light Flo Wallpaper (HKLM\...\{639BB4D3-AA30-4A7B-8CB5-6DE681AD6659}) (Version: - )
VAIO Media 5.0 (HKLM\...\{560F6B2E-F0DF-44E5-8190-A4A161F0E205}) (Version: 5.0.00 - Sony Corporation)
VAIO Media AC3 Decoder 1.0 (HKLM\...\{2063C2E8-3812-4BBD-9998-6610F80C1DD4}) (Version: - )
VAIO Media Integrated Server 5.0 (HKLM\...\{785EB1D4-ECEC-4195-99B4-73C47E187721}) (Version: - Sony Corporation)
VAIO Media Redistribution 5.0 (HKLM\...\{5855C127-1F20-404D-B7FB-1FD84D7EAB5E}) (Version: 5.0.00 - Sony Corporation)
VAIO Media Registration Tool 5.0 (HKLM\...\{AF9A04EB-7D8E-41DE-9EDE-4AB9BB2B71B6}) (Version: 5.0.00 - Sony Corporation)
VAIO Original Screen Saver (HKLM\...\{1BEF9285-5530-426B-A5F1-5836B95C7EB1}) (Version: - )
VAIO Original Screen Saver VAIO Cozy Screen SD Wide Contents (HKLM\...\{FB714F13-10C9-48DB-91C9-DDBCCCBF9370}) (Version: - )
VAIO Registration (HKLM\...\InstallShield_{315BA29D-2644-4760-B5FD-5AC04A52B8C5}) (Version: 15.1.0 - Sony Electronics)
VAIO Registration (Version: 15.1.0 - Sony Electronics) Hidden
VAIO Security Center (HKLM\...\{FE3BF611-9B8B-44DC-A424-F8C4BA122A1D}) (Version: 1.02.1202 - Sony)
VAIO Support Central (HKLM\...\{82081533-F045-469E-BD53-F16839E445C3}) (Version: 1.1.0.051121 - Sony Corporation)
VAIO Update 3 (HKLM\...\{9E158BB9-37B9-464B-837E-CC1D5766291B}) (Version: 3.0.02.05090 - Sony Corporation)
VAIO Wireless LAN Setup Utility (HKLM\...\{0DF00135-D5A7-476A-BFB3-EDFF2840076A}) (Version: - )
VAIOSurveySA (HKLM\...\InstallShield_{BA46CCF2-2C59-4DEB-93DC-7000B7C53B4E}) (Version: 4.02 - Sony Electronics)
VAIOSurveySA (Version: 4.02 - Sony Electronics) Hidden
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Driver Package - Sony Corporation (SNC) HIDClass (06/04/2002 6.0.0.2) (HKLM\...\6228B4FE0926AA3D873E8209B97FB99D06CC1DD8) (Version: 06/04/2002 6.0.0.2 - Sony Corporation)
Windows Driver Package - Sony Corporation (SPI) HIDCLASS (08/20/2002 7.0.3.820) (HKLM\...\474492506B458A0013C8197612FA45B887DF7B06) (Version: 08/20/2002 7.0.3.820 - Sony Corporation)
Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.9.0040.0 - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version: - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Media Connect (HKLM\...\Windows Media Connect) (Version: - )
Windows Media Connect (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Windows Media Format Runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
Windows Media Player 10 (HKLM\...\Windows Media Player) (Version: - )
Windows Media Player 10 Hotfix [See KB886612 for more information] (HKLM\...\KB886612) (Version: - Microsoft Corporation)
Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031525 - Microsoft Corporation)
Wireless Adapter Manager 1.3 (HKLM\...\WirelessAdapterManager) (Version: 1.3 - Sony Corporation)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
==================== Restore Points =========================
03-06-2014 11:24:29 Software Distribution Service 3.0
04-06-2014 07:00:27 Software Distribution Service 3.0
07-06-2014 16:32:15 System Checkpoint
08-06-2014 17:29:49 System Checkpoint
09-06-2014 17:54:48 System Checkpoint
10-06-2014 19:58:44 System Checkpoint
11-06-2014 20:45:45 System Checkpoint
12-06-2014 07:00:59 Software Distribution Service 3.0
13-06-2014 08:11:05 System Checkpoint
14-06-2014 15:46:38 System Checkpoint
15-06-2014 17:03:45 System Checkpoint
16-06-2014 17:18:54 System Checkpoint
17-06-2014 18:18:54 System Checkpoint
18-06-2014 19:18:54 System Checkpoint
19-06-2014 20:52:36 System Checkpoint
20-06-2014 20:57:18 System Checkpoint
21-06-2014 20:57:44 System Checkpoint
22-06-2014 20:58:44 System Checkpoint
24-06-2014 14:23:37 System Checkpoint
25-06-2014 14:57:41 System Checkpoint
26-06-2014 15:57:45 System Checkpoint
27-06-2014 16:57:38 System Checkpoint
28-06-2014 17:15:36 System Checkpoint
29-06-2014 17:57:03 System Checkpoint
30-06-2014 18:57:03 System Checkpoint
01-07-2014 19:57:04 System Checkpoint
02-07-2014 23:59:39 System Checkpoint
04-07-2014 00:57:06 System Checkpoint
10-07-2014 04:28:20 System Checkpoint
10-07-2014 07:00:21 Software Distribution Service 3.0
11-07-2014 07:21:48 System Checkpoint
14-07-2014 02:30:28 System Checkpoint
15-07-2014 21:46:17 System Checkpoint
17-07-2014 01:51:55 System Checkpoint
18-07-2014 04:31:25 System Checkpoint
19-07-2014 07:57:23 System Checkpoint
20-07-2014 08:53:51 System Checkpoint
21-07-2014 09:14:48 System Checkpoint
22-07-2014 15:05:59 System Checkpoint
23-07-2014 16:07:19 System Checkpoint
24-07-2014 16:55:21 System Checkpoint
25-07-2014 16:55:51 System Checkpoint
26-07-2014 17:55:48 System Checkpoint
28-07-2014 17:07:10 System Checkpoint
29-07-2014 17:08:45 System Checkpoint
30-07-2014 17:43:46 System Checkpoint
31-07-2014 18:43:44 System Checkpoint
01-08-2014 18:44:14 System Checkpoint
03-08-2014 04:06:45 System Checkpoint
04-08-2014 06:47:14 System Checkpoint
05-08-2014 07:44:13 System Checkpoint
06-08-2014 08:44:14 System Checkpoint
06-08-2014 13:52:17 avast! antivirus system restore point
20-08-2014 21:03:03 System Checkpoint
21-08-2014 07:00:48 Software Distribution Service 3.0
22-08-2014 14:21:44 System Checkpoint
23-08-2014 16:51:45 System Checkpoint
24-08-2014 20:38:02 System Checkpoint
26-08-2014 02:43:43 System Checkpoint
27-08-2014 03:08:53 System Checkpoint
28-08-2014 04:08:56 System Checkpoint
29-08-2014 04:09:26 System Checkpoint
30-08-2014 05:09:26 System Checkpoint
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2005-11-30 06:55 - 2004-08-04 08:00 - 00000734 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
Task: C:\WINDOWS\Tasks\Disk Cleanup.job => C:\WINDOWS\system32\cleanmgr.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe
Task: C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe
==================== Loaded Modules (whitelisted) =============
2011-04-18 23:51 - 2011-04-18 23:51 - 00569680 _____ () C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\MSVCP90.dll
2014-08-20 16:44 - 2014-08-06 23:20 - 08537928 _____ () C:\Program Files\Google\Chrome\Application\36.0.1985.143\pdf.dll
2014-08-20 16:44 - 2014-08-06 23:20 - 00353096 _____ () C:\Program Files\Google\Chrome\Application\36.0.1985.143\ppGoogleNaClPluginChrome.dll
2014-08-20 16:44 - 2014-08-06 23:20 - 01732936 _____ () C:\Program Files\Google\Chrome\Application\36.0.1985.143\ffmpegsumo.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2"
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\startupfolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Bluetooth Manager.lnk => C:\WINDOWS\pss\Bluetooth Manager.lnkCommon Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Alcmtr => ALCMTR.EXE
MSCONFIG\startupreg: AOL Fast Start => "C:\Program Files\AOL Desktop 9.6\AOL.EXE" -b
MSCONFIG\startupreg: Apoint => C:\Program Files\Apoint\Apoint.exe
MSCONFIG\startupreg: AutoEJCD_0ACE20FF => C:\Program Files\AutoInstall\ZD1211B_Auto_Install_CD_Only_Gen_0ACE20FF\AutoEJCD.EXE /VID=0ACE /PID=20FF
MSCONFIG\startupreg: AvastUI.exe => "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
MSCONFIG\startupreg: AVG_UI => "C:\Program Files\AVG\AVG2014\avgui.exe" /TRAYONLY
MSCONFIG\startupreg: AzMixerSel => C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
MSCONFIG\startupreg: HostManager => C:\Program Files\Common Files\AOL\1329685558\ee\AOLSoftware.exe
MSCONFIG\startupreg: igfxhkcmd => C:\WINDOWS\system32\hkcmd.exe
MSCONFIG\startupreg: ISBMgr.exe => C:\Program Files\Sony\ISB Utility\ISBMgr.exe
MSCONFIG\startupreg: KernelFaultCheck => %systemroot%\system32\dumprep 0 -k
MSCONFIG\startupreg: Mouse Suite 98 Daemon => ICO.EXE
MSCONFIG\startupreg: PartSeal => C:\WINDOWS\Sonysys\VAIO Recovery\PartSeal.exe
MSCONFIG\startupreg: SDTray => "C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe"
MSCONFIG\startupreg: SonyPowerCfg => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
MSCONFIG\startupreg: SpybotSD TeaTimer => C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
MSCONFIG\startupreg: SunJavaUpdateSched => C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe
MSCONFIG\startupreg: VAIO Recovery => C:\WINDOWS\Sonysys\VAIO Recovery\PartSeal.exe
MSCONFIG\startupreg: VAIO Update 3 => "C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe" /Stationary
MSCONFIG\startupreg: WCULauncher => C:\Program Files\Sony\SmartWi Connection Utility\WCULauncher.exe
MSCONFIG\startupreg: Wireless Adapter Manager => C:\Program Files\sony\Wireless adapter\ZDWLan.EXE -minisize
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/14/2014 00:55:28 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Windows cannot access the file C:\WINDOWS\system32\rasmans.dll for one of the following reasons:
there is a problem with the network connection, the disk that the file is stored on, or the storage
drivers installed on this computer; or the disk is missing.
Windows closed the program Remote Access Connection Manager because of this error.
Program: Remote Access Connection Manager
File: C:\WINDOWS\system32\rasmans.dll
The error value is listed in the Additional Data section.
User Action
1. Open the file again.
This situation might be a temporary problem that corrects itself when the program runs again.
2.
If the file still cannot be accessed and
- It is on the network,
your network administrator should verify that there is not a problem with the network and that the server can be contacted.
- It is on a removable disk, for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into the computer.
3. Check and repair the file system by running CHKDSK. To run CHKDSK, click Start, click Run, type CMD, and then click OK. At the command prompt, type CHKDSK /F, and then press ENTER.
4. If the problem persists, restore the file from a backup copy.
5. Determine whether other files on the same disk can be opened. If not, the disk might be damaged. If it is a hard disk, contact your administrator or computer hardware vendor for
further assistance.
Additional Data
Error value: C000009C
Disk type: 3
Error: (09/14/2014 00:51:21 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Windows cannot access the file C:\WINDOWS\system32\rasmans.dll for one of the following reasons:
there is a problem with the network connection, the disk that the file is stored on, or the storage
drivers installed on this computer; or the disk is missing.
Windows closed the program Remote Access Connection Manager because of this error.
Program: Remote Access Connection Manager
File: C:\WINDOWS\system32\rasmans.dll
The error value is listed in the Additional Data section.
User Action
1. Open the file again.
This situation might be a temporary problem that corrects itself when the program runs again.
2.
If the file still cannot be accessed and
- It is on the network,
your network administrator should verify that there is not a problem with the network and that the server can be contacted.
- It is on a removable disk, for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into the computer.
3. Check and repair the file system by running CHKDSK. To run CHKDSK, click Start, click Run, type CMD, and then click OK. At the command prompt, type CHKDSK /F, and then press ENTER.
4. If the problem persists, restore the file from a backup copy.
5. Determine whether other files on the same disk can be opened. If not, the disk might be damaged. If it is a hard disk, contact your administrator or computer hardware vendor for
further assistance.
Additional Data
Error value: C000009C
Disk type: 3
Error: (09/14/2014 00:46:54 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Windows cannot access the file C:\WINDOWS\system32\rasmans.dll for one of the following reasons:
there is a problem with the network connection, the disk that the file is stored on, or the storage
drivers installed on this computer; or the disk is missing.
Windows closed the program Remote Access Connection Manager because of this error.
Program: Remote Access Connection Manager
File: C:\WINDOWS\system32\rasmans.dll
The error value is listed in the Additional Data section.
User Action
1. Open the file again.
This situation might be a temporary problem that corrects itself when the program runs again.
2.
If the file still cannot be accessed and
- It is on the network,
your network administrator should verify that there is not a problem with the network and that the server can be contacted.
- It is on a removable disk, for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into the computer.
3. Check and repair the file system by running CHKDSK. To run CHKDSK, click Start, click Run, type CMD, and then click OK. At the command prompt, type CHKDSK /F, and then press ENTER.
4. If the problem persists, restore the file from a backup copy.
5. Determine whether other files on the same disk can be opened. If not, the disk might be damaged. If it is a hard disk, contact your administrator or computer hardware vendor for
further assistance.
Additional Data
Error value: C000009C
Disk type: 3
Error: (09/14/2014 00:43:01 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Windows cannot access the file C:\WINDOWS\system32\rasmans.dll for one of the following reasons:
there is a problem with the network connection, the disk that the file is stored on, or the storage
drivers installed on this computer; or the disk is missing.
Windows closed the program Remote Access Connection Manager because of this error.
Program: Remote Access Connection Manager
File: C:\WINDOWS\system32\rasmans.dll
The error value is listed in the Additional Data section.
User Action
1. Open the file again.
This situation might be a temporary problem that corrects itself when the program runs again.
2.
If the file still cannot be accessed and
- It is on the network,
your network administrator should verify that there is not a problem with the network and that the server can be contacted.
- It is on a removable disk, for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into the computer.
3. Check and repair the file system by running CHKDSK. To run CHKDSK, click Start, click Run, type CMD, and then click OK. At the command prompt, type CHKDSK /F, and then press ENTER.
4. If the problem persists, restore the file from a backup copy.
5. Determine whether other files on the same disk can be opened. If not, the disk might be damaged. If it is a hard disk, contact your administrator or computer hardware vendor for
further assistance.
Additional Data
Error value: C000009C
Disk type: 3
Error: (09/14/2014 00:37:24 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Windows cannot access the file C:\WINDOWS\system32\rasmans.dll for one of the following reasons:
there is a problem with the network connection, the disk that the file is stored on, or the storage
drivers installed on this computer; or the disk is missing.
Windows closed the program Remote Access Connection Manager because of this error.
Program: Remote Access Connection Manager
File: C:\WINDOWS\system32\rasmans.dll
The error value is listed in the Additional Data section.
User Action
1. Open the file again.
This situation might be a temporary problem that corrects itself when the program runs again.
2.
If the file still cannot be accessed and
- It is on the network,
your network administrator should verify that there is not a problem with the network and that the server can be contacted.
- It is on a removable disk, for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into the computer.
3. Check and repair the file system by running CHKDSK. To run CHKDSK, click Start, click Run, type CMD, and then click OK. At the command prompt, type CHKDSK /F, and then press ENTER.
4. If the problem persists, restore the file from a backup copy.
5. Determine whether other files on the same disk can be opened. If not, the disk might be damaged. If it is a hard disk, contact your administrator or computer hardware vendor for
further assistance.
Additional Data
Error value: C000009C
Disk type: 3
Error: (09/14/2014 00:26:03 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Windows cannot access the file C:\WINDOWS\system32\rasmans.dll for one of the following reasons:
there is a problem with the network connection, the disk that the file is stored on, or the storage
drivers installed on this computer; or the disk is missing.
Windows closed the program Remote Access Connection Manager because of this error.
Program: Remote Access Connection Manager
File: C:\WINDOWS\system32\rasmans.dll
The error value is listed in the Additional Data section.
User Action
1. Open the file again.
This situation might be a temporary problem that corrects itself when the program runs again.
2.
If the file still cannot be accessed and
- It is on the network,
your network administrator should verify that there is not a problem with the network and that the server can be contacted.
- It is on a removable disk, for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into the computer.
3. Check and repair the file system by running CHKDSK. To run CHKDSK, click Start, click Run, type CMD, and then click OK. At the command prompt, type CHKDSK /F, and then press ENTER.
4. If the problem persists, restore the file from a backup copy.
5. Determine whether other files on the same disk can be opened. If not, the disk might be damaged. If it is a hard disk, contact your administrator or computer hardware vendor for
further assistance.
Additional Data
Error value: C000009C
Disk type: 3
Error: (09/14/2014 00:20:55 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Windows cannot access the file C:\WINDOWS\system32\rasmans.dll for one of the following reasons:
there is a problem with the network connection, the disk that the file is stored on, or the storage
drivers installed on this computer; or the disk is missing.
Windows closed the program Remote Access Connection Manager because of this error.
Program: Remote Access Connection Manager
File: C:\WINDOWS\system32\rasmans.dll
The error value is listed in the Additional Data section.
User Action
1. Open the file again.
This situation might be a temporary problem that corrects itself when the program runs again.
2.
If the file still cannot be accessed and
- It is on the network,
your network administrator should verify that there is not a problem with the network and that the server can be contacted.
- It is on a removable disk, for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into the computer.
3. Check and repair the file system by running CHKDSK. To run CHKDSK, click Start, click Run, type CMD, and then click OK. At the command prompt, type CHKDSK /F, and then press ENTER.
4. If the problem persists, restore the file from a backup copy.
5. Determine whether other files on the same disk can be opened. If not, the disk might be damaged. If it is a hard disk, contact your administrator or computer hardware vendor for
further assistance.
Additional Data
Error value: C000009C
Disk type: 3
Error: (09/14/2014 00:14:33 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Windows cannot access the file C:\WINDOWS\system32\rasmans.dll for one of the following reasons:
there is a problem with the network connection, the disk that the file is stored on, or the storage
drivers installed on this computer; or the disk is missing.
Windows closed the program Remote Access Connection Manager because of this error.
Program: Remote Access Connection Manager
File: C:\WINDOWS\system32\rasmans.dll
The error value is listed in the Additional Data section.
User Action
1. Open the file again.
This situation might be a temporary problem that corrects itself when the program runs again.
2.
If the file still cannot be accessed and
- It is on the network,
your network administrator should verify that there is not a problem with the network and that the server can be contacted.
- It is on a removable disk, for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into the computer.
3. Check and repair the file system by running CHKDSK. To run CHKDSK, click Start, click Run, type CMD, and then click OK. At the command prompt, type CHKDSK /F, and then press ENTER.
4. If the problem persists, restore the file from a backup copy.
5. Determine whether other files on the same disk can be opened. If not, the disk might be damaged. If it is a hard disk, contact your administrator or computer hardware vendor for
further assistance.
Additional Data
Error value: C000009C
Disk type: 3
Error: (09/14/2014 00:07:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application svchost.exe, version 5.1.2600.5512, faulting module srsvc.dll, version 5.1.2600.5512, fault address 0x0001777e.
Processing media-specific event for [svchost.exe!ws!]
Error: (09/14/2014 00:06:36 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Windows cannot access the file C:\WINDOWS\system32\srsvc.dll for one of the following reasons:
there is a problem with the network connection, the disk that the file is stored on, or the storage
drivers installed on this computer; or the disk is missing.
Windows closed the program System Restore Service because of this error.
Program: System Restore Service
File: C:\WINDOWS\system32\srsvc.dll
The error value is listed in the Additional Data section.
User Action
1. Open the file again.
This situation might be a temporary problem that corrects itself when the program runs again.
2.
If the file still cannot be accessed and
- It is on the network,
your network administrator should verify that there is not a problem with the network and that the server can be contacted.
- It is on a removable disk, for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into the computer.
3. Check and repair the file system by running CHKDSK. To run CHKDSK, click Start, click Run, type CMD, and then click OK. At the command prompt, type CHKDSK /F, and then press ENTER.
4. If the problem persists, restore the file from a backup copy.
5. Determine whether other files on the same disk can be opened. If not, the disk might be damaged. If it is a hard disk, contact your administrator or computer hardware vendor for
further assistance.
Additional Data
Error value: C000009C
Disk type: 3
System errors:
=============
Error: (09/14/2014 01:56:12 PM) (Source: 0) (EventID: 7) (User: )
Description: \Device\Harddisk0\D
Error: (09/14/2014 01:56:04 PM) (Source: 0) (EventID: 7) (User: )
Description: \Device\Harddisk0\D
Error: (09/14/2014 01:50:55 PM) (Source: 0) (EventID: 7) (User: )
Description: \Device\Harddisk0\D
Error: (09/14/2014 01:50:46 PM) (Source: 0) (EventID: 7) (User: )
Description: \Device\Harddisk0\D
Error: (09/14/2014 01:50:38 PM) (Source: 0) (EventID: 7) (User: )
Description: \Device\Harddisk0\D
Error: (09/14/2014 01:49:52 PM) (Source: 0) (EventID: 7) (User: )
Description: \Device\Harddisk0\D
Error: (09/14/2014 01:49:39 PM) (Source: 0) (EventID: 7) (User: )
Description: \Device\Harddisk0\D
Error: (09/14/2014 01:49:29 PM) (Source: 0) (EventID: 7) (User: )
Description: \Device\Harddisk0\D
Error: (09/14/2014 01:49:21 PM) (Source: 0) (EventID: 7) (User: )
Description: \Device\Harddisk0\D
Error: (09/14/2014 01:49:09 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Management Instrumentation service, but this action failed with the following error:
%%1056
Microsoft Office Sessions:
=========================
==================== Memory info ===========================
Processor: Intel® Pentium® M processor 1.30GHz
Percentage of memory in use: 30%
Total physical RAM: 1014.11 MB
Available physical RAM: 701.57 MB
Total Pagefile: 2443.45 MB
Available Pagefile: 2199.44 MB
Total Virtual: 2047.88 MB
Available Virtual: 1950.73 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:69.53 GB) (Free:44.49 GB) NTFS ==>[Drive with boot components (Windows XP)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 74.5 GB) (Disk ID: FC5FAE0C)
Partition 1: (Not Active) - (Size=5 GB) - (Type=12)
Partition 2: (Active) - (Size=69.5 GB) - (Type=07 NTFS)
==================== End Of Log ============================ListChkdskResult by SleepyDude v0.1.7 Beta | 21-09-2013
------< Log generate on 9/14/2014 1:58:27 PM >------
No Events found for Winlogon, Chkdsk or Wininit!