Hi
I'll try to explain what happened. My computer had gotten so cluttered with junk and I was running wins xp pro. and knew that I needed to clean it up and it was beginning to have a mind of its own so before I tried to installing wins 7. I decided to wipe the hard drive and reinstall to factory specs then after installing a few things I would do a wins 7 install. Here's where my nightmare begins. I deleted hard drive had the recovery disk to the computer, they were for wins xp media center service pack 2. I did manage to get that much accomplished but I then tried to reinstall wins xp pro and which starts but when it asks me to put in key code it says invalid. Did several different things but nothing worked still the same thing invalid key. I know it's a good disk and it was bought thru microsoft so who knows why it won't work but that wasn't my only problem. After downloading microsoft updates, spyware, antivirus, malwarebytes and other several programs I needed and had tons of problems doing but managed to get it done. Now when I get on the internet computer totally freezes on web sites. I can't move mouse, can't close site. Nothing, just stops reponding almost like it died. I literally have to press and hold power button and restart computer. After restarting can search internet for awhile then all of a sudden be on a site and there it is froze. I want to install wins 7 but not until I get this worked out. I'm afraid I have a virus or something is doing this but not sure what. I have ran avast antivirus several times, malwarebytes and antispyware a few cookies and pup malware has come up but the programs took care of those so I think. Can you please help me if you can. I downloaded otl and here are those results. Thanks Pat.
( update) Omg. Just today on starting the computer I had to start it three times before it finally would let me do anything. It just kept freezing up. I had to power off and back on before it finally started to work. It will power up to desktop but then just freezes or stops responding, have no idea whats going on. Please help.(update) This thing is getting worse. I had spybot search and destroy downloaded on laptop upon opening computer today avast started a boot scan and found spybot search and destroy is infected with win32 solimba-s pup. win32 pup-gen. all which was on desktop, documents and settings, system volume info. I had it delete all so not sure if I did more good or bad. Please any help would be greatly appreciated.
(another update) I noticed when I go to any website when I click on something or a link, my mouse sounds like it is double clicking. I here click click.
OTL logfile created on: 11/20/2014 3:30:33 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Administrator\Desktop
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.00 Gb Total Physical Memory | 1.46 Gb Available Physical Memory | 73.22% Memory free
3.84 Gb Paging File | 3.45 Gb Available in Paging File | 89.72% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 70.35 Gb Total Space | 47.92 Gb Free Space | 68.12% Space Free | Partition Type: NTFS
Drive D: | 4.17 Gb Total Space | 1.49 Gb Free Space | 35.74% Space Free | Partition Type: FAT32
Computer Name: GATEWAY | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2014/11/20 03:29:41 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
PRC - [2014/11/11 17:45:08 | 000,182,696 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2014/10/26 00:33:23 | 006,692,632 | ---- | M] (SUPERAntiSpyware) -- C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
PRC - [2014/10/26 00:05:42 | 003,890,208 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\avastui.exe
PRC - [2014/10/26 00:05:07 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014/10/24 00:26:14 | 000,196,608 | ---- | M] (New Boundary Technologies, Inc.) -- C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
PRC - [2014/07/22 18:47:10 | 000,142,648 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SASCore.exe
PRC - [2014/07/21 11:22:02 | 002,462,160 | ---- | M] (Paramount Software UK Ltd) -- C:\Program Files\Macrium\Reflect\ReflectService.exe
PRC - [2014/07/20 20:39:26 | 001,154,112 | ---- | M] (Ruiware LLC) -- C:\Program Files\Ruiware\WinPatrol\WinPatrol.exe
PRC - [2014/07/15 09:46:00 | 000,786,256 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Update\NASvc.exe
PRC - [2012/11/29 16:07:16 | 015,642,512 | ---- | M] (Ralink Technology, Corp.) -- C:\Program Files\Ralink\Common\RaUI.exe
PRC - [2012/07/04 19:10:06 | 000,372,736 | ---- | M] (Ralink Technology, Corp.) -- C:\Program Files\Ralink\Common\RaRegistry.exe
PRC - [2008/04/14 04:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006/09/14 08:00:28 | 000,577,536 | ---- | M] (Motorola Inc.) -- C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
PRC - [2006/08/02 02:38:30 | 000,802,816 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\ZCfgSvc.exe
PRC - [2006/08/02 02:32:44 | 000,696,320 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe
PRC - [2006/08/02 02:27:54 | 000,479,232 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
PRC - [2006/03/14 15:42:18 | 000,622,653 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2006/03/14 15:40:52 | 001,376,340 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
PRC - [2006/02/13 11:23:38 | 000,282,624 | ---- | M] (SigmaTel, Inc.) -- C:\WINDOWS\stsystra.exe
PRC - [2004/11/05 04:47:00 | 000,098,394 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
========== Modules (No Company Name) ==========
MOD - [2014/11/19 15:02:15 | 002,902,528 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\14111901\algo.dll
MOD - [2014/10/26 00:05:10 | 019,336,120 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2013/01/02 01:49:10 | 001,292,288 | ---- | M] () -- C:\WINDOWS\system32\quartz.dll
MOD - [2012/11/27 11:12:46 | 001,210,256 | ---- | M] () -- C:\Program Files\Ralink\Common\RaWLAPI.dll
MOD - [2011/02/04 16:48:30 | 000,291,840 | ---- | M] () -- C:\WINDOWS\system32\sbe.dll
MOD - [2010/06/29 10:34:56 | 000,480,608 | ---- | M] () -- C:\WINDOWS\system32\DiagFunc.dll
MOD - [2008/04/14 04:42:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2008/04/14 04:41:52 | 000,059,904 | ---- | M] () -- C:\WINDOWS\system32\devenum.dll
MOD - [2006/08/02 02:26:20 | 000,118,784 | ---- | M] () -- C:\Program Files\Intel\Wireless\Bin\iWMSProv.dll
MOD - [2006/08/02 02:24:54 | 000,348,160 | ---- | M] () -- C:\Program Files\Intel\Wireless\Bin\IntStngs.dll
MOD - [2006/06/23 15:07:08 | 001,167,360 | ---- | M] () -- C:\Program Files\Intel\Wireless\Bin\acAuth.dll
MOD - [2006/03/14 15:43:44 | 000,053,248 | ---- | M] () -- C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll
========== Services (SafeList) ==========
SRV - [2014/11/11 17:45:08 | 000,182,696 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2014/11/06 19:09:45 | 000,114,288 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014/10/26 00:05:07 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2014/10/24 00:26:14 | 000,196,608 | ---- | M] (New Boundary Technologies, Inc.) [Auto | Running] -- C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS -- (PrismXL)
SRV - [2014/07/22 18:47:10 | 000,142,648 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore.exe -- (!SASCORE)
SRV - [2014/07/21 11:22:02 | 002,462,160 | ---- | M] (Paramount Software UK Ltd) [Auto | Running] -- C:\Program Files\Macrium\Reflect\ReflectService.exe -- (ReflectService.exe)
SRV - [2014/07/15 09:46:00 | 000,786,256 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2012/07/06 18:20:54 | 001,863,680 | ---- | M] (Ralink) [On_Demand | Stopped] -- C:\Program Files\Ralink\Common\RaMediaServer.exe -- (RaMediaServer)
SRV - [2012/07/04 19:10:06 | 000,372,736 | ---- | M] (Ralink Technology, Corp.) [Auto | Running] -- C:\Program Files\Ralink\Common\RaRegistry.exe -- (RalinkRegistryWriter)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\wanatw4.sys -- (wanatw)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - [2014/10/30 05:44:06 | 000,152,952 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\psmounterex.sys -- (PSMounterEx)
DRV - [2014/10/26 00:05:30 | 000,777,488 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\aswsnx.sys -- (aswSnx)
DRV - [2014/10/26 00:05:30 | 000,411,680 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\aswsp.sys -- (aswSP)
DRV - [2014/10/26 00:05:30 | 000,054,832 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswrdr.sys -- (aswRdr)
DRV - [2014/10/26 00:05:11 | 000,180,632 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2014/10/26 00:05:11 | 000,067,824 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2014/10/26 00:05:11 | 000,057,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2014/10/26 00:05:11 | 000,049,944 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2014/10/26 00:05:11 | 000,024,184 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\aswHwid.sys -- (aswHwid)
DRV - [2014/10/24 00:18:37 | 000,008,552 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\asctrm.sys -- (ASCTRM)
DRV - [2014/07/21 11:50:16 | 000,013,528 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\pssnap.sys -- (pssnap)
DRV - [2014/07/21 11:35:24 | 000,012,248 | ---- | M] (Paramount Software UK Ltd) [File_System | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\PSVolAcc.sys -- (PSVolAcc)
DRV - [2012/10/25 09:43:10 | 000,026,336 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\Scutum50.sys -- (Scutum50)
DRV - [2012/08/20 10:16:20 | 001,249,888 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\rt2870.sys -- (rt2870)
DRV - [2011/07/22 11:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2011/07/12 16:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2006/09/14 08:03:52 | 000,980,736 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\smserial.sys -- (smserial)
DRV - [2006/08/02 03:27:48 | 000,012,544 | ---- | M] (Intel Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\s24trans.sys -- (s24trans)
DRV - [2006/07/06 21:44:00 | 000,168,448 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tifm21.sys -- (tifm21)
DRV - [2006/03/14 15:21:18 | 000,328,237 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (btaudio)
DRV - [2006/03/14 15:19:24 | 000,023,271 | ---- | M] (Broadcom Corporation.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\btserial.sys -- (BTSERIAL)
DRV - [2006/03/14 15:18:00 | 000,851,402 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL)
DRV - [2006/03/14 15:15:34 | 000,030,427 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver)
DRV - [2006/03/14 15:14:52 | 000,065,784 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB)
DRV - [2006/03/14 15:12:02 | 000,148,900 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btwdndis.sys -- (BTWDNDIS)
DRV - [2006/03/14 15:10:56 | 000,045,683 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwhid.sys -- (btwhid)
DRV - [2006/02/13 11:26:02 | 001,106,888 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.safesear....&q={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.gateway.c...s=PTB&M=NX860XL
IE - HKLM\..\SearchScopes,DefaultScope = {9CB96984-43C3-4D44-90EF-01466EFCF7BB}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.safesear....&q={searchTerms}
IE - HKLM\..\SearchScopes\{9CB96984-43C3-4D44-90EF-01466EFCF7BB}: "URL" = https://search.yahoo...&p={searchTerms}
IE - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.safesear....&q={searchTerms}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.safesear....&q={searchTerms}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.safesear....&q={searchTerms}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = www.google.com
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.safesear....&q={searchTerms}
IE - HKCU\..\SearchScopes\{9CB96984-43C3-4D44-90EF-01466EFCF7BB}: "URL" = https://search.yahoo...&p={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <-loopback>
========== FireFox ==========
FF - prefs.js..extensions.enabledAddons: wrc%40avast.com:9.0.2018.95
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:33.1
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.71.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.71.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Nero.com/KM: C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2014/10/26 00:05:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 33.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 33.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
[2014/11/11 22:31:22 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions
[2014/11/11 22:41:27 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\tqxbj8ku.default\extensions
[2014/11/11 22:28:08 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2014/11/11 22:28:08 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2014/10/26 00:05:13 | 000,000,000 | ---D | M] (avast! Online Security) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF
O1 HOSTS File: ([2004/08/10 14:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (no name) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - No CLSID value found.
O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe (Intel Corporation)
O4 - HKLM..\Run: [IntelZeroConfig] C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe (Intel Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [Recguard] C:\WINDOWS\SMINST\Recguard.exe ()
O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\WINDOWS\stsystra.exe (SigmaTel, Inc.)
O4 - HKLM..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe (Motorola Inc.)
O4 - HKLM..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Synaptics, Inc.)
O4 - HKCU..\Run: [Power2GoExpress] NA File not found
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware)
O4 - HKCU..\Run: [WinPatrol] C:\Program Files\Ruiware\WinPatrol\winpatrol.exe (Ruiware LLC)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Bluetooth.lnk = C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Ralink Wireless Utility.lnk = C:\Program Files\Ralink\Common\RaUI.exe (Ralink Technology, Corp.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme ()
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate...b?1414261654420 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.71.2)
O16 - DPF: {CAFEEFAC-0017-0000-0065-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.7.0_65)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6E4BE848-2F23-454A-B945-66FFBB59857D}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C2F10648-E7E8-4A4A-BCBF-8EEA49673397}: DhcpNameServer = 192.168.1.1 192.168.2.1 192.168.1.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/06/17 04:41:16 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2004/09/13 19:15:24 | 000,000,053 | -HS- | M] () - D:\Autorun.inf -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
========== Files/Folders - Created Within 30 Days ==========
[2014/11/20 03:29:40 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2014/11/19 14:00:26 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\Recent
[2014/11/18 00:16:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\driverview
[2014/11/18 00:11:45 | 000,000,000 | ---D | C] -- C:\Program Files\Magical Jelly Bean
[2014/11/18 00:11:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\KeyFinder
[2014/11/17 06:06:14 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2014/11/17 05:53:04 | 001,166,232 | ---- | C] (Magical Jelly Bean ) -- C:\Documents and Settings\Administrator\Desktop\KeyFinderInstaller.exe
[2014/11/17 02:51:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\gBurner
[2014/11/17 02:50:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\gBurner
[2014/11/17 02:50:02 | 000,000,000 | ---D | C] -- C:\Program Files\gBurner
[2014/11/11 22:28:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla
[2014/11/11 22:28:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Mozilla
[2014/11/11 22:28:11 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2014/11/11 22:28:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Mozilla
[2014/11/11 22:28:03 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2014/11/11 18:44:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Deployment
[2014/11/11 17:46:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Oracle
[2014/11/11 17:45:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2014/11/11 17:45:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Java
[2014/11/11 17:45:01 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2014/11/07 18:59:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Package Cache
[2014/11/06 17:40:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Downloaded Installations
[2014/11/06 17:36:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Component
[2014/11/06 17:35:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Fast Browser
[2014/11/04 10:25:29 | 002,178,112 | ---- | C] (Ralink Technology, Corp.) -- C:\WINDOWS\System32\Scutum.dll
[2014/11/04 10:25:29 | 001,608,768 | ---- | C] (Ralink Technology, Corp.) -- C:\WINDOWS\System32\RaCertMgr.dll
[2014/11/04 10:25:29 | 000,185,696 | ---- | C] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\System32\W32N55.dll
[2014/11/04 10:25:29 | 000,151,552 | ---- | C] (Ralink Tech) -- C:\WINDOWS\System32\RalinkGina.dll
[2014/11/04 10:25:29 | 000,026,336 | ---- | C] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\System32\drivers\Scutum50.sys
[2014/11/04 10:25:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Ralink Wireless
[2014/11/04 10:24:55 | 001,249,888 | ---- | C] (Ralink Technology, Corp.) -- C:\WINDOWS\System32\drivers\rt2870.sys
[2014/11/04 10:24:55 | 000,238,944 | ---- | C] (Ralink Technology, Inc.) -- C:\WINDOWS\System32\RaCoInst.dll
[2014/11/04 10:24:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ralink Driver
[2014/11/04 10:24:49 | 000,000,000 | ---D | C] -- C:\Program Files\Ralink
[2014/11/04 10:24:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\InstallShield
[2014/11/01 17:29:51 | 000,114,904 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys
[2014/11/01 17:29:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes Anti-Malware
[2014/11/01 17:29:29 | 000,054,360 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamchameleon.sys
[2014/11/01 17:29:29 | 000,023,256 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2014/11/01 17:29:29 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes Anti-Malware
[2014/11/01 17:29:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2014/11/01 03:15:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\jagexcache1
[2014/11/01 01:00:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\jagexcache
[2014/11/01 00:57:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Sun
[2014/11/01 00:27:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2014/10/31 22:50:09 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2014/10/31 22:50:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2014/10/31 22:49:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2014/10/31 22:47:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Adobe
[2014/10/31 22:36:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2014/10/31 22:36:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Sun
[2014/10/30 06:18:02 | 000,152,952 | ---- | C] (Windows ® Win 7 DDK provider) -- C:\WINDOWS\System32\drivers\psmounterex.sys
[2014/10/28 23:01:46 | 000,000,000 | ---D | C] -- C:\boot
[2014/10/28 23:01:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Macrium
[2014/10/28 23:01:27 | 000,000,000 | ---D | C] -- C:\Program Files\Macrium
[2014/10/28 22:54:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2014/10/28 22:53:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Macrium
[2014/10/28 22:52:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Macrium
[2014/10/28 17:50:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\Hardwood Euchre
[2014/10/28 17:48:17 | 000,000,000 | ---D | C] -- C:\Program Files\SilverCreekCommonFiles
[2014/10/28 17:48:12 | 000,000,000 | ---D | C] -- C:\Program Files\Hardwood Euchre
[2014/10/27 00:45:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Nero_AG
[2014/10/27 00:44:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Nero
[2014/10/27 00:42:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Nero
[2014/10/27 00:34:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero
[2014/10/27 00:34:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Nero
[2014/10/27 00:34:32 | 000,000,000 | ---D | C] -- C:\Program Files\Nero
[2014/10/27 00:34:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Nero
[2014/10/27 00:25:37 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2014/10/27 00:24:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs
[2014/10/26 23:49:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\CyberLink
[2014/10/26 23:49:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\CyberLink
[2014/10/26 23:48:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\CyberLink
[2014/10/26 23:32:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\nLite
[2014/10/26 23:32:27 | 000,000,000 | ---D | C] -- C:\Program Files\nLite
[2014/10/26 03:08:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\MSNInstaller
[2014/10/26 01:56:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\CrystalIdea Software
[2014/10/26 01:35:59 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF
[2014/10/26 01:00:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\downloaded programs
[2014/10/26 00:56:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\program short cuts
[2014/10/26 00:31:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SUPERAntiSpyware
[2014/10/26 00:31:12 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2014/10/26 00:16:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Temp
[2014/10/26 00:05:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\AVAST Software
[2014/10/26 00:05:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Avast
[2014/10/26 00:05:15 | 000,057,672 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2014/10/26 00:05:14 | 000,777,488 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswsnx.sys
[2014/10/26 00:05:14 | 000,776,976 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswsnx.sys.1414299930453
[2014/10/26 00:05:14 | 000,411,680 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswsp.sys
[2014/10/26 00:05:14 | 000,067,824 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswMonFlt.sys
[2014/10/26 00:05:14 | 000,054,832 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswrdr.sys.1414299930453
[2014/10/26 00:05:14 | 000,054,832 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswrdr.sys
[2014/10/26 00:05:13 | 000,271,264 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2014/10/26 00:05:11 | 000,043,152 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2014/10/26 00:04:41 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2014/10/26 00:03:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2014/10/25 23:55:15 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
[2014/10/25 23:55:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\Revo Uninstaller
[2014/10/25 23:54:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Downloads
[2014/10/25 23:53:52 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\My Documents\My Videos
[2014/10/25 23:53:52 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\Administrative Tools
[2014/10/25 23:52:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\WinPatrol
[2014/10/25 23:52:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinPatrol
[2014/10/25 23:52:17 | 000,000,000 | ---D | C] -- C:\Program Files\Ruiware
[2014/10/25 23:52:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\InstallMate
[2014/10/25 23:48:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\SUPERAntiSpyware.com
[2014/10/25 23:47:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
[2014/10/25 22:59:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Adobe
[2014/10/25 22:44:06 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\IECompatCache
[2014/10/25 20:46:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\PrivacIE
[2014/10/25 20:11:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2014/10/25 20:11:27 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2014/10/25 20:11:21 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2014/10/25 20:10:58 | 000,000,000 | ---D | C] -- C:\bd242b0b1f20b7edc2c65c544e03
[2014/10/25 20:03:52 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\IETldCache
[2014/10/25 19:48:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2014/10/25 19:48:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2014/10/25 19:48:00 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2014/10/25 19:19:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MRT
[2014/10/25 18:24:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2014/10/25 17:47:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2014/10/25 17:40:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2014/10/25 17:38:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2014/10/25 17:22:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us
[2014/10/25 17:22:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting
[2014/10/25 17:22:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2014/10/25 17:22:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en
[2014/10/25 17:22:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2014/10/25 17:20:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2014/10/25 17:19:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2014/10/25 17:17:26 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2014/10/25 13:27:21 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\UserData
[2014/10/25 12:13:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Macromedia
[2014/10/25 11:22:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Identities
[2014/10/24 00:31:59 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2014/10/24 00:31:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Google
[2014/10/24 00:28:42 | 000,020,480 | ---- | C] (Gateway) -- C:\WINDOWS\System32\Marker32.exe
[2014/10/24 00:28:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinPhlash
[2014/10/24 00:28:26 | 000,000,000 | ---D | C] -- C:\Program Files\Phoenix Technologies Ltd
[2014/10/24 00:27:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Intel PROSet Wireless
[2014/10/24 00:27:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Intel
[2014/10/24 00:27:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Intel
[2014/10/24 00:27:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Intel
[2014/10/24 00:26:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Intel
[2014/10/24 00:26:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Leadertech
[2014/10/24 00:26:02 | 000,743,936 | ---- | C] (Leader Technologies) -- C:\WINDOWS\System32\GTW1.exe
[2014/10/24 00:23:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Bluetooth Software
[2014/10/24 00:23:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Bluetooth Exchange Folder
[2014/10/24 00:21:20 | 000,000,000 | ---D | C] -- C:\Program Files\WIDCOMM
[2014/10/24 00:19:48 | 000,000,000 | ---D | C] -- C:\Program Files\Motorola
[2014/10/24 00:19:03 | 000,000,000 | ---D | C] -- C:\Program Files\SigmaTel
[2014/10/24 00:18:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Pure Networks
[2014/10/24 00:18:53 | 000,102,400 | ---- | C] (4Developers LLC) -- C:\WINDOWS\System32\SimpleRegistry.dll
[2014/10/24 00:18:53 | 000,010,752 | ---- | C] (Almeida & Andrade Ltda) -- C:\WINDOWS\System32\aamd532.dll
[2014/10/24 00:18:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\You've Got Pictures Screensaver
[2014/10/24 00:18:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2014/10/24 00:18:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\occache
[2014/10/24 00:18:50 | 000,000,000 | ---D | C] -- C:\Program Files\Learn2.com
[2014/10/24 00:18:49 | 000,000,000 | ---D | C] -- C:\Program Files\Viewpoint
[2014/10/24 00:18:47 | 000,086,016 | ---- | C] (MindVision) -- C:\WINDOWS\unvise32qt.exe
[2014/10/24 00:18:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\QuickTime
[2014/10/24 00:18:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\QuickTime
[2014/10/24 00:18:40 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nullsoft
[2014/10/24 00:18:37 | 000,000,000 | ---D | C] -- C:\My Music
[2014/10/24 00:18:35 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2014/10/24 00:18:35 | 000,000,000 | ---D | C] -- C:\Program Files\Real
[2014/10/24 00:18:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Real
[2014/10/24 00:18:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Real
[2014/10/24 00:18:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\AOL Downloads
[2014/10/24 00:18:24 | 001,044,480 | ---- | C] (eHelp Corporation.) -- C:\WINDOWS\System32\roboex32.dll
[2014/10/24 00:18:24 | 000,054,784 | ---- | C] (Blue Sky Software Corporation.) -- C:\WINDOWS\System32\Inetwh32.dll
[2014/10/24 00:18:24 | 000,029,184 | ---- | C] (Blue Sky Software) -- C:\WINDOWS\System32\popup.ocx
[2014/10/24 00:17:54 | 000,168,448 | ---- | C] (Texas Instruments) -- C:\WINDOWS\System32\drivers\tifm21.sys
[2014/10/24 00:17:54 | 000,000,000 | ---D | C] -- C:\Program Files\Texas Instruments Inc
[2014/10/24 00:17:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2014/10/24 00:17:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\SampleView
[2014/10/24 00:17:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview
[2014/10/24 00:17:30 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Gateway Documentation
[2014/10/24 00:17:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\System Recovery
[2014/10/24 00:16:19 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2014/10/24 00:16:14 | 000,351,526 | ---- | C] (Wilson WindowWare, Inc.) -- C:\WINDOWS\WBDDA34I.DLL
[2014/10/24 00:16:14 | 000,046,433 | ---- | C] (Wilson WindowWare, Inc.) -- C:\WINDOWS\WBODA34I.DLL
[2014/10/24 00:16:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2014/10/24 00:16:09 | 000,081,920 | ---- | C] (Synaptics, Inc.) -- C:\WINDOWS\System32\SynTPCo2.dll
[2014/10/24 00:16:09 | 000,069,722 | ---- | C] (Synaptics, Inc.) -- C:\WINDOWS\System32\SynTPFcs.dll
[2014/10/24 00:16:09 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2014/10/24 00:16:07 | 000,094,208 | ---- | C] (Gateway Inc.) -- C:\WINDOWS\System32\BAE.dll
[2014/10/24 00:15:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\CyberLink DVD Solution
[2014/10/24 00:15:37 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2014/10/24 00:15:37 | 000,000,000 | ---D | C] -- C:\Program Files\CyberLink
[2014/10/24 00:15:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2014/10/24 00:10:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\Downloaded Installations
[2014/10/24 00:06:06 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2014/10/24 00:01:50 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2014/10/24 00:00:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\creator
[2014/10/24 00:00:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\SMINST
[2014/10/24 00:00:26 | 000,000,000 | R--D | C] -- C:\Program Files
[2014/10/24 00:00:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup
[2014/10/24 00:00:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Games
[2014/10/24 00:00:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools
[2014/10/24 00:00:17 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\SendTo
[2014/10/24 00:00:17 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data
[2014/10/24 00:00:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\Startup
[2014/10/24 00:00:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu
[2014/10/24 00:00:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Start Menu
[2014/10/24 00:00:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Videos
[2014/10/24 00:00:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Pictures
[2014/10/24 00:00:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\My Documents\My Pictures
[2014/10/24 00:00:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music
[2014/10/24 00:00:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\My Documents\My Music
[2014/10/24 00:00:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\My Documents
[2014/10/24 00:00:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents
[2014/10/24 00:00:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Accessories
[2014/10/24 00:00:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\Accessories
[2014/10/24 00:00:16 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\Application Data
[2014/10/24 00:00:16 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Favorites
[2014/10/23 23:59:13 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2014/10/23 23:59:05 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2014/10/23 23:56:56 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2014/11/20 03:29:41 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2014/11/20 02:48:36 | 000,000,378 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2014/11/20 02:48:30 | 000,051,048 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2014/11/20 02:48:29 | 000,000,434 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.ics
[2014/11/20 02:48:26 | 000,000,238 | ---- | M] () -- C:\WINDOWS\tasks\Microsoft Windows XP End of Service Notification Logon.job
[2014/11/20 02:48:20 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014/11/20 02:48:16 | 2145,505,280 | -HS- | M] () -- C:\hiberfil.sys
[2014/11/19 19:07:02 | 000,000,288 | ---- | M] () -- C:\WINDOWS\tasks\Nero Info.job
[2014/11/18 00:11:45 | 000,000,757 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\KeyFinder.lnk
[2014/11/17 14:48:55 | 000,114,904 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys
[2014/11/17 05:53:08 | 001,166,232 | ---- | M] (Magical Jelly Bean ) -- C:\Documents and Settings\Administrator\Desktop\KeyFinderInstaller.exe
[2014/11/17 05:26:39 | 000,001,908 | ---- | M] () -- C:\WINDOWS\diagwrn.xml
[2014/11/17 05:26:39 | 000,001,908 | ---- | M] () -- C:\WINDOWS\diagerr.xml
[2014/11/17 03:33:06 | 2564,784,128 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\win7_32bit.iso
[2014/11/17 01:20:06 | 000,045,208 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\driverview.zip
[2014/11/17 00:43:17 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2014/11/11 22:28:16 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2014/11/11 22:28:12 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2014/11/09 18:13:44 | 000,000,232 | ---- | M] () -- C:\WINDOWS\tasks\Microsoft Windows XP End of Service Notification Monthly.job
[2014/11/07 19:06:21 | 000,001,912 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Nero MediaHome.lnk
[2014/11/06 17:43:21 | 000,483,126 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2014/11/06 17:43:21 | 000,080,676 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2014/11/06 17:35:31 | 000,001,979 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2014/11/04 10:25:28 | 000,001,621 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Ralink Wireless Utility.lnk
[2014/11/04 00:28:37 | 000,000,024 | ---- | M] () -- C:\Documents and Settings\Administrator\random.dat
[2014/11/03 22:46:52 | 000,000,069 | ---- | M] () -- C:\Documents and Settings\Administrator\jagex_cl_runescape_LIVE.dat
[2014/11/01 03:15:26 | 000,000,070 | ---- | M] () -- C:\Documents and Settings\Administrator\jagex_cl_runescape_LIVE1.dat
[2014/10/31 02:42:09 | 000,005,120 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014/10/30 05:44:06 | 000,152,952 | ---- | M] (Windows ® Win 7 DDK provider) -- C:\WINDOWS\System32\drivers\psmounterex.sys
[2014/10/28 17:50:26 | 000,000,743 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Play Euchre.lnk
[2014/10/27 01:30:51 | 000,000,804 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2014/10/26 01:10:01 | 000,000,002 | ---- | M] () -- C:\WINDOWS\msoffice.ini
[2014/10/26 00:05:30 | 000,777,488 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswsnx.sys
[2014/10/26 00:05:30 | 000,411,680 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswsp.sys
[2014/10/26 00:05:30 | 000,054,832 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswrdr.sys
[2014/10/26 00:05:11 | 000,776,976 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswsnx.sys.1414299930453
[2014/10/26 00:05:11 | 000,271,264 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2014/10/26 00:05:11 | 000,180,632 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswVmm.sys
[2014/10/26 00:05:11 | 000,067,824 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswMonFlt.sys
[2014/10/26 00:05:11 | 000,057,672 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2014/10/26 00:05:11 | 000,054,832 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswrdr.sys.1414299930453
[2014/10/26 00:05:11 | 000,049,944 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswRvrt.sys
[2014/10/26 00:05:11 | 000,043,152 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2014/10/26 00:05:11 | 000,024,184 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswHwid.sys
[2014/10/25 20:20:31 | 000,098,256 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2014/10/25 18:26:17 | 000,000,209 | RHS- | M] () -- C:\boot.ini
[2014/10/25 17:40:53 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2014/10/25 17:19:04 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2014/10/24 00:35:48 | 000,000,097 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2014/10/24 00:32:01 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\Gateway_NX860XL_Rev.1_0039087414.MRK
[2014/10/24 00:31:47 | 000,000,333 | ---- | M] () -- C:\WINDOWS\System32\$ncsp$.inf
[2014/10/24 00:31:07 | 000,000,000 | ---- | M] () -- C:\REQUEST_OEMRESET_ENDUSER
[2014/10/24 00:28:26 | 000,000,498 | ---- | M] () -- C:\WINDOWS\System32\emver.ini
[2014/10/24 00:21:24 | 000,000,637 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Bluetooth.lnk
[2014/10/24 00:19:00 | 000,000,894 | -H-- | M] () -- C:\IPH.PH
[2014/10/24 00:18:35 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2014/10/24 00:18:00 | 000,000,335 | ---- | M] () -- C:\WINDOWS\nsreg.dat
[2014/10/24 00:15:24 | 000,000,002 | ---- | M] () -- C:\AUDIT_INSTALL_IN_PROGRESS
[2014/10/24 00:03:43 | 000,000,002 | RHS- | M] () -- C:\USER
[2014/10/24 00:00:54 | 000,000,060 | ---- | M] () -- C:\WINDOWS\System32\SYSDRV.DAT
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2014/11/18 00:11:45 | 000,000,757 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\KeyFinder.lnk
[2014/11/17 03:03:50 | 2564,784,128 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\win7_32bit.iso
[2014/11/17 02:54:08 | 000,001,908 | ---- | C] () -- C:\WINDOWS\diagwrn.xml
[2014/11/17 02:54:08 | 000,001,908 | ---- | C] () -- C:\WINDOWS\diagerr.xml
[2014/11/17 01:20:06 | 000,045,208 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\driverview.zip
[2014/11/11 22:28:12 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk
[2014/11/11 22:28:12 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2014/11/07 19:07:27 | 000,000,288 | ---- | C] () -- C:\WINDOWS\tasks\Nero Info.job
[2014/11/07 19:06:21 | 000,001,912 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Nero MediaHome.lnk
[2014/11/06 17:35:31 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2014/11/04 10:25:29 | 000,480,608 | ---- | C] () -- C:\WINDOWS\System32\DiagFunc.dll
[2014/11/04 10:25:29 | 000,034,080 | ---- | C] () -- C:\WINDOWS\System32\CTAAEI.dll
[2014/11/04 10:25:29 | 000,001,191 | ---- | C] () -- C:\WINDOWS\System32\W32N55.INI
[2014/11/04 10:25:29 | 000,000,449 | ---- | C] () -- C:\WINDOWS\System32\DiagFunc.ini
[2014/11/04 10:25:28 | 000,001,621 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Ralink Wireless Utility.lnk
[2014/11/04 10:24:51 | 000,014,119 | ---- | C] () -- C:\WINDOWS\System32\RaCoInst.dat
[2014/11/01 03:15:26 | 000,000,070 | ---- | C] () -- C:\Documents and Settings\Administrator\jagex_cl_runescape_LIVE1.dat
[2014/11/01 01:00:33 | 000,000,069 | ---- | C] () -- C:\Documents and Settings\Administrator\jagex_cl_runescape_LIVE.dat
[2014/11/01 01:00:33 | 000,000,024 | ---- | C] () -- C:\Documents and Settings\Administrator\random.dat
[2014/10/31 22:50:57 | 000,001,804 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader XI.lnk
[2014/10/28 17:50:26 | 000,000,743 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Play Euchre.lnk
[2014/10/27 03:20:03 | 000,093,854 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-2535354235-3254226930-1038610633-500-0.dat
[2014/10/27 03:20:02 | 000,093,854 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
[2014/10/27 01:30:51 | 000,000,804 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2014/10/26 03:41:29 | 000,005,120 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014/10/26 01:10:01 | 000,000,002 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2014/10/26 00:05:23 | 000,000,378 | -H-- | C] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2014/10/26 00:05:15 | 000,180,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswVmm.sys
[2014/10/26 00:05:14 | 000,049,944 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswRvrt.sys
[2014/10/26 00:05:14 | 000,024,184 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswHwid.sys
[2014/10/25 20:04:12 | 000,000,238 | ---- | C] () -- C:\WINDOWS\tasks\Microsoft Windows XP End of Service Notification Logon.job
[2014/10/25 20:04:12 | 000,000,232 | ---- | C] () -- C:\WINDOWS\tasks\Microsoft Windows XP End of Service Notification Monthly.job
[2014/10/25 17:50:48 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2014/10/25 17:50:48 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\dllcache\iacenc.dll
[2014/10/25 17:19:17 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
[2014/10/25 17:19:16 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2014/10/25 17:19:15 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2014/10/24 00:32:01 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\Gateway_NX860XL_Rev.1_0039087414.MRK
[2014/10/24 00:31:47 | 000,000,333 | ---- | C] () -- C:\WINDOWS\System32\$ncsp$.inf
[2014/10/24 00:26:01 | 2145,505,280 | -HS- | C] () -- C:\hiberfil.sys
[2014/10/24 00:24:57 | 000,051,656 | ---- | C] () -- C:\WINDOWS\System32\OEMLOGO.bmp
[2014/10/24 00:24:57 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\jesterss.dll
[2014/10/24 00:21:45 | 000,000,901 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\My Bluetooth Places.lnk
[2014/10/24 00:21:24 | 000,000,637 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Bluetooth.lnk
[2014/10/24 00:18:01 | 000,000,894 | -H-- | C] () -- C:\IPH.PH
[2014/10/24 00:18:00 | 000,000,335 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2014/10/24 00:17:41 | 000,051,048 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml
[2014/10/24 00:17:38 | 000,016,960 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu
[2014/10/24 00:15:24 | 000,000,002 | ---- | C] () -- C:\AUDIT_INSTALL_IN_PROGRESS
[2014/10/24 00:14:32 | 000,518,520 | ---- | C] () -- C:\WINDOWS\vidres.exe
[2014/10/24 00:03:43 | 000,000,002 | RHS- | C] () -- C:\USER
[2014/10/24 00:03:43 | 000,000,000 | ---- | C] () -- C:\REQUEST_OEMRESET_ENDUSER
[2014/10/24 00:00:54 | 000,000,060 | ---- | C] () -- C:\WINDOWS\System32\SYSDRV.DAT
[2014/10/24 00:00:50 | 000,002,790 | ---- | C] () -- C:\WINDOWS\System32\e1e5132.din
[2014/10/12 17:35:28 | 001,519,616 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2014/10/12 17:35:26 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2014/10/12 17:35:25 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2014/10/12 17:35:24 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2014/10/12 17:35:21 | 001,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2014/10/12 17:35:21 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2014/10/12 17:35:21 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2014/10/12 17:35:21 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2014/10/12 17:35:17 | 000,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[2014/07/21 11:50:16 | 000,013,528 | ---- | C] () -- C:\WINDOWS\System32\drivers\pssnap.sys
========== ZeroAccess Check ==========
[2006/06/17 04:37:41 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2014/02/24 22:30:52 | 001,510,400 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009/02/09 07:10:48 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008/04/14 04:42:10 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2014/10/26 00:05:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\AVAST Software
[2014/10/26 01:56:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\CrystalIdea Software
[2014/11/17 02:51:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\gBurner
[2014/10/24 00:26:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Leadertech
[2014/10/26 03:08:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\MSNInstaller
[2014/11/11 17:46:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Oracle
[2014/10/24 00:17:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\SampleView
[2014/10/25 23:52:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\WinPatrol
[2014/10/26 00:03:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2014/10/25 23:52:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\InstallMate
[2014/10/31 01:39:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Macrium
[2014/11/07 19:55:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Package Cache
[2014/11/04 10:24:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ralink Driver
[2014/10/24 00:18:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
========== Purity Check ==========
< End of report >
OTL Extras logfile created on: 11/20/2014 3:30:33 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Administrator\Desktop
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.00 Gb Total Physical Memory | 1.46 Gb Available Physical Memory | 73.22% Memory free
3.84 Gb Paging File | 3.45 Gb Available in Paging File | 89.72% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 70.35 Gb Total Space | 47.92 Gb Free Space | 68.12% Space Free | Partition Type: NTFS
Drive D: | 4.17 Gb Total Space | 1.49 Gb Free Space | 35.74% Space Free | Partition Type: FAT32
Computer Name: GATEWAY | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe" = C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe:*:Enabled:AOL
"C:\Program Files\Common Files\AOL\ACS\AOLDial.exe" = C:\Program Files\Common Files\AOL\ACS\AOLDial.exe:*:Enabled:AOL
"C:\Program Files\America Online 9.0\waol.exe" = C:\Program Files\America Online 9.0\waol.exe:*:Enabled:AOL
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe" = C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe:*:Enabled:AOL
"C:\Program Files\Common Files\AOL\ACS\AOLDial.exe" = C:\Program Files\Common Files\AOL\ACS\AOLDial.exe:*:Enabled:AOL
"C:\Program Files\America Online 9.0\waol.exe" = C:\Program Files\America Online 9.0\waol.exe:*:Enabled:AOL
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\Ralink\Common\RaMediaServer.exe" = C:\Program Files\Ralink\Common\RaMediaServer.exe:*:Enabled:Ralink UPnP Media Server -- (Ralink)
"C:\Program Files\Ralink\Common\RaUI.exe" = C:\Program Files\Ralink\Common\RaUI.exe:*:Enabled:Ralink Utility -- (Ralink Technology, Corp.)
"C:\Program Files\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe" = C:\Program Files\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe:*:Enabled:Nero Blu-ray Player -- (Nero AG)
"C:\Program Files\Nero\KM\NMDllHost.exe" = C:\Program Files\Nero\KM\NMDllHost.exe:*:Enabled:NMDllHost -- (Nero AG)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0215ACE5-DEC8-4486-A3EA-B8B08A6CF5FD}" = Nero MediaHome
"{0708FF30-78C0-47B0-81F0-C84604DC769C}" = Nero Express Help (CHM)
"{0E2B0B41-7E08-4F9F-B21F-41C4133F43B7}" = mLogView
"{150D88F1-40AF-4678-A39D-BCE2332F34E5}" = Nero Abstract Themes
"{15377C3E-9655-400F-B441-E69F0A6BEAFE}" = Recovery Software Suite Gateway
"{18C0CD5B-571B-4D46-A71E-CD90CA4E75FA}" = Macrium Reflect Standard Edition
"{1B6F5E51-575E-4693-BCA2-7543570D076D}" = Nero Kwik Themes Basic
"{1F16820E-D0E7-4636-939E-45CBFEFB06E1}" = Nero Kwik Media Help (CHM)
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = DVD Solution
"{22124B84-93B2-4603-B212-146665E4B6B1}" = Nero Blu-ray Player
"{23FB368F-1399-4EAC-817C-4B83ECBE3D83}" = mProSafe
"{2432E589-6256-4513-B0BF-EFA8E325D5F0}" = Nero SharedVideoCodecs
"{26A24AE4-039D-4CA4-87B4-2F03217071FF}" = Java 7 Update 71
"{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}" = Ralink RT2870 Wireless LAN Card
"{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3AAB08A3-F129-4BD5-B409-AE674F93759D}" = Prerequisite installer
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3E9D596A-61D4-4239-BD19-2DB984D2A16F}" = mIWA
"{3EE33958-7381-4E7B-A4F3-6E43098E9E9C}" = Browser Address Error Redirector
"{3F4EC965-28EF-45C3-B063-04B25D4E9679}" = WIDCOMM Bluetooth Software
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go 4.0
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{57AB77BC-E70C-454B-BD0C-E543A7961912}" = nero12kwikburnexpressess
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{6A206A04-6BC1-411B-AA04-4E52EDEEADF2}" = WinPatrol
"{799AFA36-4EA5-4323-8689-74C06645A26B}" = Prerequisite installer
"{848A7C68-0ADC-4193-8A89-2CEA78E56A0C}" = Nero Express
"{8B928BA1-EDEC-4227-A2DA-DD83026C36F5}" = mPfMgr
"{8C6BB412-D3A8-4AAE-A01B-35B681789D68}" = mHelp
"{90B0D222-8C21-4B35-9262-53B042F18AF9}" = mPfWiz
"{90CC4231-94AC-45CD-991A-0253BFAC0650}" = mDrWiFi
"{94658027-9F16-4509-BBD7-A59FE57C3023}" = mZConfig
"{96F31DB7-9239-4FBE-B75E-056AEAB192D9}" = Nero MediaHome Free
"{9941F0AA-B903-4AF4-A055-83A9815CC011}" = Sonic Encoders
"{9CC89556-3578-48DD-8408-04E66EBEF401}" = mXML
"{A0F925BF-5C55-44C2-A4E7-5A4C59791C29}" = mDriver
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}" = SigmaTel Audio
"{A7A0BF2E-31CC-49E3-9913-52C503EB969D}" = Nero Audio Pack 1
"{ABC88553-8770-4B97-B43E-5A90647A5B63}" = Nero ControlCenter
"{AC76BA86-7AD7-1033-7B44-AB0000000001}" = Adobe Reader XI (11.0.08)
"{AD7914E1-6453-4440-AEC7-02C72AD6FE5F}" = TIPCI
"{B175520C-86A2-35A7-8619-86DC379688B9}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
"{B791E0AB-87A9-41A4-8D98-D13C2E37D928}" = Nero Info
"{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
"{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}" = Nero Core Components
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C994C746-C6D0-4EBA-B09E-DF7B18381B69}" = Nero ControlCenter Help (CHM)
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{E81667C6-2856-46D6-ABEA-6A2F42166779}" = mCore
"{F0BFC7EF-9CF8-44EE-91B0-158884CD87C5}" = mMHouse
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{FCA651F3-5BDA-4DDA-9E4A-5D87D6914CC4}" = mWlsSafe
"Adobe Flash Player ActiveX" = Adobe Flash Player 15 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 15 Plugin
"Avast" = avast! Free Antivirus
"CCleaner" = CCleaner
"gBurner" = gBurner
"Hardwood Euchre" = Hardwood Euchre
"ie8" = Windows Internet Explorer 8
"InstallShield_{AD7914E1-6453-4440-AEC7-02C72AD6FE5F}" = Texas Instruments PCIxx21/x515/xx12 drivers.
"KeyFinder_is1" = Magical Jelly Bean KeyFinder
"MacriumReflect" = Macrium Reflect Standard Edition
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware version 2.0.3.1025
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Mozilla Firefox 33.1 (x86 en-US)" = Mozilla Firefox 33.1 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"nLite_is1" = nLite 1.4.9.1
"NVIDIA Drivers" = NVIDIA Drivers
"ProInst" = Intel® PROSet/Wireless Software
"PROSet" = Intel® PRO Network Connections Drivers
"RealPlayer 6.0" = RealPlayer Basic
"Revo Uninstaller" = Revo Uninstaller 1.95
"SMSERIAL" = Motorola SM56 Data Fax Modem
"StreetPlugin" = Learn2 Player (Uninstall Only)
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"ViewpointMediaPlayer" = Viewpoint Media Player
"WGA" = Windows Genuine Advantage Validation Tool
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinPhlash" = WinPhlash
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 11/6/2014 7:57:36 PM | Computer Name = GATEWAY | Source = Application Error | ID = 1000
Description = Faulting application explorer.exe, version 6.0.2900.5512, faulting
module shell32.dll, version 6.0.2900.6242, fault address 0x00076f0b.
Error - 11/6/2014 7:57:44 PM | Computer Name = GATEWAY | Source = Application Error | ID = 1000
Description = Faulting application drwtsn32.exe, version 5.1.2600.0, faulting module
dbghelp.dll, version 5.1.2600.5512, fault address 0x0001295d.
Error - 11/13/2014 12:29:22 AM | Computer Name = GATEWAY | Source = Application Hang | ID = 1002
Description = Hanging application iexplore.exe, version 8.0.6001.18702, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.
Error - 11/13/2014 12:29:22 AM | Computer Name = GATEWAY | Source = Application Hang | ID = 1002
Description = Hanging application iexplore.exe, version 8.0.6001.18702, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.
Error - 11/14/2014 11:32:39 PM | Computer Name = GATEWAY | Source = Application Error | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.18702, faulting
module flash32_15_0_0_189.ocx, version 15.0.0.189, fault address 0x000f550b.
Error - 11/14/2014 11:34:44 PM | Computer Name = GATEWAY | Source = Application Error | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.18702, faulting
module flash32_15_0_0_189.ocx, version 15.0.0.189, fault address 0x000f550b.
Error - 11/14/2014 11:34:54 PM | Computer Name = GATEWAY | Source = Application Error | ID = 1001
Description = Fault bucket 578590292.
Error - 11/17/2014 5:40:09 AM | Computer Name = GATEWAY | Source = Application Hang | ID = 1002
Description = Hanging application explorer.exe, version 6.0.2900.5512, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.
Error - 11/19/2014 7:34:38 PM | Computer Name = GATEWAY | Source = Application Error | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.18702, faulting
module kernel32.dll, version 5.1.2600.6532, fault address 0x00012fd3.
Error - 11/19/2014 7:34:51 PM | Computer Name = GATEWAY | Source = Application Error | ID = 1001
Description = Fault bucket 177523516.
[ System Events ]
Error - 11/7/2014 8:56:11 PM | Computer Name = GATEWAY | Source = Service Control Manager | ID = 7011
Description = Timeout (30000 milliseconds) waiting for a transaction response from
the NVSvc service.
Error - 11/9/2014 7:11:39 PM | Computer Name = GATEWAY | Source = Service Control Manager | ID = 7011
Description = Timeout (30000 milliseconds) waiting for a transaction response from
the NVSvc service.
Error - 11/11/2014 6:22:20 PM | Computer Name = GATEWAY | Source = ipnathlp | ID = 31008
Description = The DNS proxy agent was unable to read the local list of name-resolution
servers
from the registry. The data is the error code.
Error - 11/11/2014 6:23:14 PM | Computer Name = GATEWAY | Source = DCOM | ID = 10010
Description = The server {7F6316B4-4D69-4765-B0A3-B2598F2FA80A} did not register
with DCOM within the required timeout.
Error - 11/11/2014 6:44:21 PM | Computer Name = GATEWAY | Source = Service Control Manager | ID = 7034
Description = The Java Quick Starter service terminated unexpectedly. It has done
this 1 time(s).
Error - 11/12/2014 7:58:19 PM | Computer Name = GATEWAY | Source = ipnathlp | ID = 30005
Description = The DHCP allocator has detected a DHCP server with IP address 192.168.1.254
on
the same network as the interface with IP address 192.168.0.1. The allocator has
disabled itself on the interface in order to avoid confusing DHCP clients.
Error - 11/12/2014 8:17:27 PM | Computer Name = GATEWAY | Source = ipnathlp | ID = 30005
Description = The DHCP allocator has detected a DHCP server with IP address 192.168.137.1
on
the same network as the interface with IP address 192.168.0.1. The allocator has
disabled itself on the interface in order to avoid confusing DHCP clients.
Error - 11/12/2014 8:30:22 PM | Computer Name = GATEWAY | Source = ipnathlp | ID = 30013
Description = The DHCP allocator has disabled itself on IP address 192.168.1.69,
since
the IP address is outside the 192.168.0.0/255.255.255.0 scope from which addresses
are being allocated to DHCP clients. To enable the DHCP allocator on this IP address,
please
change the scope to include the IP address, or change the IP address to fall within
the scope.
Error - 11/13/2014 8:09:03 PM | Computer Name = GATEWAY | Source = Service Control Manager | ID = 7034
Description = The NVIDIA Display Driver Service service terminated unexpectedly.
It has done this 1 time(s).
Error - 11/13/2014 8:10:05 PM | Computer Name = GATEWAY | Source = ipnathlp | ID = 30013
Description = The DHCP allocator has disabled itself on IP address 192.168.1.69,
since
the IP address is outside the 192.168.0.0/255.255.255.0 scope from which addresses
are being allocated to DHCP clients. To enable the DHCP allocator on this IP address,
please
change the scope to include the IP address, or change the IP address to fall within
the scope.
< End of report >
Edited by Pat_54, 23 November 2014 - 03:19 AM.