Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Server Not Found/System Restore Not Working


  • Please log in to reply

#76
godawgs

godawgs

    Teacher

  • Retired Staff
  • 8,228 posts
If the internet connection is good with the hookup you have now I would leave it alone. The Ethernet cable will give you a faster connection, as you have seen.
If you are happy with that please get me a new OTL scan and we will make sure there is nothing else on the system.
If you have any other issues, other than the SP3 issue, now would be the time to let me know. :)

Please open OTL
Click the Posted Image button. Post the OTL.txt log it produces in your next reply.
  • 0

Advertisements


#77
tuffstuff

tuffstuff

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 104 posts
I think I will just leave the desktop hooked with the ethernet. It has worked all day.

The only thing now is the SP3 and I guess the fact that I can't uninstall AVG, I don't want to, but if I ever did. Also before my system restore did not work either. All my previous months have disappeared. Otherwise the SP3 is the top one. Thank you for your patience and your knowledge.

Here is the OTL log

OTL logfile created on: 5/31/2013 9:31:02 PM - Run 7
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Owner\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1013.47 Mb Total Physical Memory | 532.95 Mb Available Physical Memory | 52.59% Memory free
2.38 Gb Paging File | 1.97 Gb Available in Paging File | 82.56% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 228.28 Gb Total Space | 195.85 Gb Free Space | 85.79% Space Free | Partition Type: NTFS
Drive D: | 4.59 Gb Total Space | 2.24 Gb Free Space | 48.65% Space Free | Partition Type: FAT32

Computer Name: DEBEVE | User Name: Owner | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/05/14 00:54:12 | 004,937,264 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgidsagent.exe
PRC - [2013/04/29 00:58:42 | 004,408,368 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgui.exe
PRC - [2013/04/27 17:58:37 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Owner\Desktop\OTL.exe
PRC - [2013/04/18 22:42:32 | 000,181,664 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2013/04/18 04:34:38 | 000,283,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgwdsvc.exe
PRC - [2013/04/04 03:15:08 | 001,117,232 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgnsx.exe
PRC - [2013/03/28 02:48:36 | 000,763,952 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgrsx.exe
PRC - [2013/03/18 02:38:48 | 000,799,280 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgemcx.exe
PRC - [2013/02/19 04:00:58 | 000,448,560 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgcsrvx.exe
PRC - [2010/05/20 16:27:24 | 000,139,632 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe
PRC - [2008/04/14 05:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2005/07/25 15:25:18 | 000,491,520 | ---- | M] ( ) -- C:\WINDOWS\system32\lxcgcoms.exe
PRC - [2005/07/21 02:07:22 | 000,200,704 | ---- | M] (Lexmark International, Inc.) -- C:\Program Files\Lexmark 2300 Series\lxcgmon.exe


========== Modules (No Company Name) ==========

MOD - [2008/04/14 05:42:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2008/04/14 05:41:52 | 000,059,904 | ---- | M] () -- C:\WINDOWS\system32\devenum.dll
MOD - [2005/07/12 09:33:44 | 000,032,768 | ---- | M] () -- C:\WINDOWS\system32\LXPRMON.DLL
MOD - [2005/07/11 10:36:34 | 000,118,784 | ---- | M] () -- C:\Program Files\Lexmark 2300 Series\lxcgdrec.dll
MOD - [2005/03/13 14:32:14 | 000,061,440 | ---- | M] () -- C:\Program Files\Lexmark 2300 Series\lxcgcnv4.dll


========== Services (SafeList) ==========

SRV - [2013/05/15 13:15:42 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/05/14 00:54:12 | 004,937,264 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2013\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2013/04/18 22:42:32 | 000,181,664 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2013/04/18 13:42:58 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/04/18 04:34:38 | 000,283,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2013\avgwdsvc.exe -- (avgwd)
SRV - [2012/07/13 13:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2010/05/20 16:27:24 | 000,139,632 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe -- (MSCamSvc)
SRV - [2009/09/23 16:37:30 | 000,051,168 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper)
SRV - [2005/07/25 15:25:18 | 000,491,520 | ---- | M] ( ) [On_Demand | Running] -- C:\WINDOWS\system32\lxcgcoms.exe -- (lxcg_device)


========== Driver Services (SafeList) ==========

DRV - [2013/03/29 02:53:48 | 000,208,184 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)
DRV - [2013/03/21 03:08:24 | 000,182,072 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2013/03/01 10:32:20 | 000,022,328 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgidsshimx.sys -- (AVGIDSShim)
DRV - [2013/02/08 04:37:58 | 000,096,568 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2013/02/08 04:37:56 | 000,245,048 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\avglogx.sys -- (Avglogx)
DRV - [2013/02/08 04:37:52 | 000,060,216 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\avgidshx.sys -- (AVGIDSHX)
DRV - [2013/02/08 04:37:44 | 000,170,808 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2013/02/08 04:37:40 | 000,039,224 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avgrkx86.sys -- (Avgrkx86)
DRV - [2010/05/20 16:27:24 | 000,030,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nx6000.sys -- (MSHUSBVideo)
DRV - [2008/01/13 01:18:11 | 000,008,552 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\asctrm.sys -- (ASCTRM)
DRV - [2005/12/23 11:47:45 | 000,044,288 | ---- | M] (Roxio) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cdr4_xp.sys -- (Cdr4_xp)
DRV - [2005/06/28 06:28:00 | 000,349,856 | R--- | M] (SMC Networks, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\2862WICB.sys -- (SMC2862W)
DRV - [2005/04/27 14:45:08 | 000,300,672 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2005/04/04 12:01:34 | 000,035,712 | ---- | M] (Sonic Focus, Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sfng32.sys -- (sfng32)
DRV - [2004/11/15 21:41:54 | 000,036,804 | ---- | M] (Alcor Micro Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Sunkfilt.sys -- (SunkFilt)
DRV - [2004/11/10 21:30:18 | 000,024,832 | ---- | M] (Roxio) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cdralw2k.sys -- (Cdralw2k)
DRV - [2004/06/17 18:56:22 | 000,220,032 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWBS2.sys -- (HSFHWBS2)
DRV - [2004/06/17 18:55:38 | 000,685,056 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2004/06/17 18:55:04 | 001,041,536 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DP.sys -- (HSF_DP)
DRV - [2003/01/10 17:13:04 | 000,033,588 | R--- | M] (America Online, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wanatw4.sys -- (wanatw)
DRV - [2001/08/17 09:49:32 | 000,019,968 | ---- | M] (Macronix International Co., Ltd. ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mxnic.sys -- (mxnic)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}
IE - HKLM\..\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}: "URL" = http://us.yhs.search...p={searchTerms}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?fr=fp-yie8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/?fr=fp-yie8
IE - HKCU\..\SearchScopes,DefaultScope = {26AF14FB-6A63-4F42-AD51-591796EB8182}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{26AF14FB-6A63-4F42-AD51-591796EB8182}: "URL" = http://search.yahoo....f-8&fr=chr-yie8
IE - HKCU\..\SearchScopes\{423FDCB3-DF6A-49F7-896B-B5D6DD9AFC06}: "URL" = http://rover.ebay.co...e={searchTerms}
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{8261E192-A18E-4835-8B5D-CBA1147EABD2}: "URL" = http://www.flickr.co...q={searchTerms}
IE - HKCU\..\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}: "URL" = http://us.yhs.search...p={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Yahoo! Search"
FF - prefs.js..browser.search.selectedEngine: "Yahoo! Search"
FF - prefs.js..browser.startup.homepage: "http://www.yahoo.com/"
FF - prefs.js..extensions.enabledAddons: moveplayer%40movenetworks.com:1.0.0.071101000055
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:20.0.1
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_202.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@movenetworks.com/Quantum Media Player: File not found
FF - HKLM\Software\MozillaPlugins\@real.com/RhapsodyPlayerEngine,version=1.0: C:\Program Files\Real\RhapsodyPlayerEngine\nprhapengine.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\[email protected]/YahooActiveXPluginBridge;version=1.0.0.1: C:\Program Files\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)
FF - HKCU\Software\MozillaPlugins\@movenetworks.com/Quantum Media Player: File not found
FF - HKCU\Software\MozillaPlugins\@real.com/RhapsodyPlayerEngine: C:\Documents and Settings\Owner\Application Data\nprhapengine.dll File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG8\Toolbar\Firefox\avg@igeared
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013/04/18 13:42:59 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013/05/10 15:49:16 | 000,000,000 | ---D | M]

[2008/09/12 19:26:48 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Extensions
[2013/05/23 20:23:43 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions
[2008/09/12 14:48:16 | 000,000,000 | ---D | M] (Yuku) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{53A01AC4-9238-453c-990B-D4C5D4220FF2}(2)
[2008/09/12 14:48:12 | 000,000,000 | ---D | M] (Firefox Companion for eBay) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{62760FD6-B943-48C9-AB09-F99C6FE96088}(2)
[2008/09/12 14:48:15 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}(2)
[2008/09/12 14:46:19 | 000,000,000 | ---D | M] (mediaplayerconnectivity) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{84b24861-62f6-364b-eba5-2e5e2061d7e6}(2)
[2009/10/27 23:56:09 | 000,000,000 | ---D | M] (Adobe DLM (powered by getPlus®)) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}
[2008/10/21 19:12:08 | 000,000,000 | ---D | M] (Move Media Player) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\[email protected]
[2012/02/13 14:19:21 | 000,020,591 | ---- | M] () (No name found) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}.xpi
[2013/05/08 16:41:25 | 000,870,680 | ---- | M] () (No name found) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2010/04/03 13:15:08 | 000,005,511 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\searchplugins\foodtv.xml
[2008/06/21 02:33:13 | 000,000,908 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\searchplugins\IMDB.xml
[2013/04/18 13:42:35 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2013/04/18 13:42:35 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2013/04/18 13:42:33 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\distribution\extensions
[2013/04/18 13:42:35 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Program Files\Mozilla Firefox\distribution\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2013/04/18 13:42:58 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/12/07 06:09:19 | 000,466,944 | ---- | M] (Catalina Marketing Corporation) -- C:\Program Files\mozilla firefox\plugins\NPcol400.dll
[2013/03/07 10:30:20 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2013/03/07 10:30:20 | 000,002,086 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

O1 HOSTS File: ([2013/04/18 22:44:07 | 000,000,736 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [AVG_UI] C:\Program Files\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [LXCGCATS] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCGtime.DLL ()
O4 - HKLM..\Run: [lxcgmon.exe] C:\Program Files\Lexmark 2300 Series\lxcgmon.exe (Lexmark International, Inc.)
O4 - HKLM..\Run: [Recguard] C:\WINDOWS\SMINST\Recguard.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\AutorunsDisabled [2012/12/19 08:22:23 | 000,000,000 | -H-D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O15 - HKCU\..Trusted Domains: aol.com ([objects] * is out of zone range - 5)
O15 - HKCU\..Trusted Domains: everythinglv.com ([www] https in Trusted sites)
O15 - HKCU\..Trusted Domains: harristeeter.com ([www] https in Trusted sites)
O15 - HKCU\..Trusted Domains: imdb.com/help/show_leaf?enablecookies ([www] https in Trusted sites)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://fpdownload.ma...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft....k/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\yinsthelper.dll (YInstStarter Class)
O16 - DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} http://office.micros...ntent/opuc3.cab (Office Update Installation Engine)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.mi...b?1229556528546 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.21.2)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.21.2)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ent/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 209.18.47.61 209.18.47.62
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{61F975C4-2C6A-4D66-B786-9E482C2D5085}: DhcpNameServer = 209.18.47.61 209.18.47.62
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E26D7643-E044-42E4-93E9-6CA3007DCB6E}: DhcpNameServer = 209.18.47.61 209.18.47.62
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004/08/26 14:04:39 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2004/09/13 12:15:24 | 000,000,053 | -HS- | M] () - D:\Autorun.inf -- [ FAT32 ]
O32 - AutoRun File - [2003/08/08 17:24:26 | 000,000,045 | -HS- | M] () - D:\autorun.inf.aug.8 -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2013\avgrsx.exe /sync /restart)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2013/05/21 15:55:38 | 000,760,723 | ---- | C] (Farbar) -- C:\Documents and Settings\Owner\Desktop\MiniToolBox.exe
[2013/05/20 09:46:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\AVG
[2013/05/17 08:23:19 | 000,354,299 | ---- | C] (Farbar) -- C:\Documents and Settings\Owner\Desktop\FSS.exe
[2013/05/14 16:23:04 | 000,116,224 | ---- | C] (Xerox) -- C:\WINDOWS\System32\dllcache\xrxwiadr.dll
[2013/05/14 16:22:56 | 000,023,040 | ---- | C] (Xerox Corporation) -- C:\WINDOWS\System32\dllcache\xrxwbtmp.dll
[2013/05/14 16:22:26 | 000,099,865 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\xlog.exe
[2013/05/14 16:22:16 | 000,016,970 | ---- | C] (US Robotics MCD (Megahertz)) -- C:\WINDOWS\System32\dllcache\xem336n5.sys
[2013/05/14 16:21:36 | 000,154,624 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\wlluc48.sys
[2013/05/14 16:21:28 | 000,034,890 | ---- | C] (Raytheon Corp.) -- C:\WINDOWS\System32\dllcache\wlandrv2.sys
[2013/05/14 16:21:11 | 000,771,581 | ---- | C] (Rockwell) -- C:\WINDOWS\System32\dllcache\winacisa.sys
[2013/05/14 16:20:39 | 000,035,871 | ---- | C] (Winbond Electronics Corp.) -- C:\WINDOWS\System32\dllcache\wbfirdma.sys
[2013/05/14 16:20:15 | 000,016,925 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w940nd.sys
[2013/05/14 16:20:07 | 000,019,016 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w926nd.sys
[2013/05/14 16:19:59 | 000,019,528 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w840nd.sys
[2013/05/14 16:19:50 | 000,064,605 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vvoice.sys
[2013/05/14 16:19:41 | 000,397,502 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vpctcom.sys
[2013/05/14 16:19:31 | 000,604,253 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\vmodem.sys
[2013/05/14 16:19:23 | 000,249,402 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\vinwm.sys
[2013/05/14 16:18:55 | 000,765,884 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usrti.sys
[2013/05/14 16:18:22 | 000,794,399 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806v.sys
[2013/05/14 16:18:14 | 000,793,598 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806.sys
[2013/05/14 16:18:06 | 000,794,654 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1801.sys
[2013/05/14 16:17:56 | 000,032,384 | ---- | C] (KLSI USA, Inc.) -- C:\WINDOWS\System32\dllcache\usb101et.sys
[2013/05/14 16:17:13 | 000,050,688 | ---- | C] (UMAX DATA SYSTEMS INC.) -- C:\WINDOWS\System32\dllcache\umaxscan.dll
[2013/05/14 16:16:41 | 000,211,968 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um54scan.dll
[2013/05/14 16:16:33 | 000,216,064 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um34scan.dll
[2013/05/14 16:16:12 | 000,166,784 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxpm.sys
[2013/05/14 16:16:04 | 000,525,568 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxp.dll
[2013/05/14 16:15:56 | 000,159,232 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkbm.sys
[2013/05/14 16:15:48 | 000,440,576 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkb.dll
[2013/05/14 16:15:40 | 000,222,336 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3dm.sys
[2013/05/14 16:15:32 | 000,315,520 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3d.dll
[2013/05/14 16:14:32 | 000,123,995 | ---- | C] (Tiger Jet Network) -- C:\WINDOWS\System32\dllcache\tjisdn.sys
[2013/05/14 16:14:21 | 000,138,528 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiulnt5.sys
[2013/05/14 16:14:13 | 000,081,408 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiul50.dll
[2013/05/14 16:14:11 | 000,149,376 | ---- | C] (M-Systems) -- C:\WINDOWS\System32\dllcache\tffsport.sys
[2013/05/14 16:14:01 | 000,017,129 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdkcd31.sys
[2013/05/14 16:13:54 | 000,037,961 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdk100b.sys
[2013/05/14 16:13:27 | 000,036,640 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\t2r4mini.sys
[2013/05/14 16:13:20 | 000,172,768 | ---- | C] (Number Nine Visual Technology) -- C:\WINDOWS\System32\dllcache\t2r4disp.dll
[2013/05/14 16:12:09 | 000,155,648 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnprop.dll
[2013/05/14 16:12:02 | 000,053,248 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlncoin.dll
[2013/05/14 16:11:54 | 000,285,760 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnata.sys
[2013/05/14 16:11:46 | 000,016,896 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\stcusb.sys
[2013/05/14 16:11:36 | 000,048,736 | ---- | C] (3Com) -- C:\WINDOWS\System32\dllcache\srwlnd5.sys
[2013/05/14 16:09:54 | 000,058,368 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smiminib.sys
[2013/05/14 16:09:45 | 000,147,200 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smidispb.dll
[2013/05/14 16:09:37 | 000,025,034 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smcpwr2n.sys
[2013/05/14 16:09:29 | 000,035,913 | ---- | C] (SMC) -- C:\WINDOWS\System32\dllcache\smcirda.sys
[2013/05/14 16:09:22 | 000,024,576 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smc8000n.sys
[2013/05/14 16:08:29 | 000,063,547 | ---- | C] (Symbol Technologies) -- C:\WINDOWS\System32\dllcache\sla30nd5.sys
[2013/05/14 16:08:22 | 000,091,294 | ---- | C] (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) -- C:\WINDOWS\System32\dllcache\skfpwin.sys
[2013/05/14 16:08:14 | 000,094,698 | ---- | C] (SysKonnect GmbH.) -- C:\WINDOWS\System32\dllcache\sk98xwin.sys
[2013/05/14 16:07:57 | 000,032,768 | ---- | C] (SiS Corporation) -- C:\WINDOWS\System32\dllcache\sisnic.sys
[2013/05/14 16:06:56 | 000,161,568 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmusb.sys
[2013/05/14 16:06:49 | 000,018,400 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmld.sys
[2013/05/14 16:06:42 | 000,098,080 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiulnt5.sys
[2013/05/14 16:06:34 | 000,386,560 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiul50.dll
[2013/05/14 16:05:40 | 000,017,280 | ---- | C] (SCM Microsystems) -- C:\WINDOWS\System32\dllcache\scr111.sys
[2013/05/14 16:05:24 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmusbm.sys
[2013/05/14 16:05:17 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmn50m.sys
[2013/05/14 16:04:38 | 000,077,824 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4m.sys
[2013/05/14 16:04:29 | 000,198,400 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4.dll
[2013/05/14 16:04:21 | 000,061,504 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3dm.sys
[2013/05/14 16:04:12 | 000,179,264 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3d.dll
[2013/05/14 16:04:04 | 000,210,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mvirge.dll
[2013/05/14 16:03:56 | 000,062,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mtrio.dll
[2013/05/14 16:03:48 | 000,041,216 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.sys
[2013/05/14 16:03:40 | 000,182,272 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.dll
[2013/05/14 16:03:32 | 000,166,720 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3m.sys
[2013/05/14 16:03:15 | 000,082,432 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia450.dll
[2013/05/14 16:03:07 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia430.dll
[2013/05/14 16:03:00 | 000,029,696 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw450ext.dll
[2013/05/14 16:02:56 | 000,027,648 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw430ext.dll
[2013/05/14 16:02:21 | 000,009,216 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\rsmgrstr.dll
[2013/05/14 16:02:07 | 000,079,104 | ---- | C] (Comtrol Corporation) -- C:\WINDOWS\System32\dllcache\rocket.sys
[2013/05/14 16:01:59 | 000,037,563 | ---- | C] (RadioLAN) -- C:\WINDOWS\System32\dllcache\rlnet5.sys
[2013/05/14 16:01:51 | 000,086,097 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\reslog32.dll
[2013/05/14 16:01:23 | 000,714,762 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdmkxx.sys
[2013/05/14 16:01:15 | 000,899,146 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdkxga.sys
[2013/05/14 16:00:16 | 000,130,942 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlv.sys
[2013/05/14 16:00:10 | 000,112,574 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlp.sys
[2013/05/14 16:00:03 | 000,128,286 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserli.sys
[2013/05/14 15:59:35 | 000,016,128 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\pscr.sys
[2013/05/14 15:57:40 | 000,086,016 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\pctspk.exe
[2013/05/14 15:57:12 | 000,026,153 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pcmlm56.sys
[2013/05/14 15:57:09 | 000,029,502 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\pca200e.sys
[2013/05/14 15:57:02 | 000,030,495 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pc100nds.sys
[2013/05/14 15:55:38 | 000,054,186 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otcsercb.sys
[2013/05/14 15:55:32 | 000,043,689 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otceth5.sys
[2013/05/14 15:55:26 | 000,027,209 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otc06x5.sys
[2013/05/14 15:55:19 | 000,054,528 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\opl3sax.sys
[2013/05/14 15:54:46 | 000,051,552 | ---- | C] (Kensington Technology Group) -- C:\WINDOWS\System32\dllcache\ntgrip.sys
[2013/05/14 15:54:20 | 000,087,040 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm6wdm.sys
[2013/05/14 15:54:14 | 000,126,080 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm5a2wdm.sys
[2013/05/14 15:54:04 | 000,132,695 | ---- | C] (802.11b) -- C:\WINDOWS\System32\dllcache\netwlan5.sys
[2013/05/14 15:53:46 | 000,039,264 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.sys
[2013/05/14 15:53:40 | 000,060,480 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.dll
[2013/05/14 15:53:24 | 000,091,488 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3disp.dll
[2013/05/14 15:53:18 | 000,027,936 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3d.sys
[2013/05/14 15:53:12 | 000,033,088 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.sys
[2013/05/14 15:53:06 | 000,059,104 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.dll
[2013/05/14 15:52:59 | 000,013,664 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.sys
[2013/05/14 15:52:53 | 000,035,392 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.dll
[2013/05/14 15:52:36 | 000,075,520 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxport.sys
[2013/05/14 15:52:30 | 000,007,168 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxport.dll
[2013/05/14 15:52:23 | 000,019,968 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxicfg.dll
[2013/05/14 15:52:17 | 000,021,888 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxcard.sys
[2013/05/14 15:49:54 | 000,164,586 | ---- | C] (Madge Networks Ltd) -- C:\WINDOWS\System32\dllcache\mdgndis5.sys
[2013/05/14 15:49:11 | 000,797,500 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltsmt.sys
[2013/05/14 15:49:05 | 000,802,683 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\ltsm.sys
[2013/05/14 15:49:01 | 000,420,992 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntt.sys
[2013/05/14 15:48:56 | 000,576,746 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntl.sys
[2013/05/14 15:48:55 | 000,606,684 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmnt.sys
[2013/05/14 15:48:49 | 000,727,786 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ltck000c.sys
[2013/05/14 15:48:33 | 000,070,730 | ---- | C] (Linksys Group, Inc.) -- C:\WINDOWS\System32\dllcache\lne100tx.sys
[2013/05/14 15:48:27 | 000,020,573 | ---- | C] (The Linksts Group ) -- C:\WINDOWS\System32\dllcache\lne100.sys
[2013/05/14 15:48:22 | 000,025,065 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\lmndis3.sys
[2013/05/14 15:48:15 | 000,015,744 | ---- | C] (Litronic Industries) -- C:\WINDOWS\System32\dllcache\lit220p.sys
[2013/05/14 15:48:07 | 000,026,442 | ---- | C] (SMSC) -- C:\WINDOWS\System32\dllcache\lanepic5.sys
[2013/05/14 15:48:01 | 000,019,016 | ---- | C] (Kingston Technology Company ) -- C:\WINDOWS\System32\dllcache\ktc111.sys
[2013/05/14 15:46:21 | 000,023,552 | ---- | C] (MKNet Corporation) -- C:\WINDOWS\System32\dllcache\irmk7.sys
[2013/05/14 15:45:19 | 000,372,824 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\iconf32.dll
[2013/05/14 15:42:21 | 000,068,608 | ---- | C] (Avisioin) -- C:\WINDOWS\System32\dllcache\hpgt53tk.dll
[2013/05/14 15:42:04 | 000,126,976 | ---- | C] (Hewlett Packard) -- C:\WINDOWS\System32\dllcache\hpgt34tk.dll
[2013/05/14 15:41:15 | 000,028,288 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grserial.sys
[2013/05/14 15:41:12 | 000,082,304 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grclass.sys
[2013/05/14 15:41:08 | 000,017,408 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\gpr400.sys
[2013/05/14 15:40:44 | 000,454,912 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fxusbase.sys
[2013/05/14 15:40:32 | 000,455,296 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fusbbase.sys
[2013/05/14 15:40:28 | 000,455,680 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fus2base.sys
[2013/05/14 15:40:21 | 000,442,240 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpnpbase.sys
[2013/05/14 15:40:17 | 000,441,728 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcmbase.sys
[2013/05/14 15:40:13 | 000,444,416 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcibase.sys
[2013/05/14 15:40:11 | 000,034,173 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\forehe.sys
[2013/05/14 15:39:45 | 000,024,618 | ---- | C] (NETGEAR) -- C:\WINDOWS\System32\dllcache\fa410nd5.sys
[2013/05/14 15:39:37 | 000,011,850 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xj.sys
[2013/05/14 15:39:34 | 000,012,362 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xi.sys
[2013/05/14 15:37:23 | 000,334,208 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\ds1wdm.sys
[2013/05/14 15:37:15 | 000,028,062 | ---- | C] (National Semiconductor Coproration) -- C:\WINDOWS\System32\dllcache\dp83820.sys
[2013/05/14 15:37:01 | 000,029,696 | ---- | C] (CNet Technology, Inc. ) -- C:\WINDOWS\System32\dllcache\dm9pci5.sys
[2013/05/14 15:36:57 | 000,026,698 | ---- | C] (D-Link Corporation) -- C:\WINDOWS\System32\dllcache\dlh5xnd5.sys
[2013/05/14 15:36:56 | 000,952,007 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diwan.sys
[2013/05/14 15:36:49 | 000,236,060 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\ditrace.exe
[2013/05/14 15:36:47 | 000,038,985 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvsu.dll
[2013/05/14 15:36:45 | 000,031,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvpp.dll
[2013/05/14 15:36:44 | 000,006,729 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvci.dll
[2013/05/14 15:36:40 | 000,091,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\dimaint.sys
[2013/05/14 15:36:11 | 000,024,649 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650d.sys
[2013/05/14 15:36:09 | 000,024,648 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650.sys
[2013/05/14 15:36:03 | 000,020,928 | ---- | C] (Digital Networks, LLC) -- C:\WINDOWS\System32\dllcache\defpa.sys
[2013/05/14 15:35:35 | 000,048,640 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwrwdm.sys
[2013/05/14 15:35:34 | 000,093,952 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcwdm.sys
[2013/05/14 15:35:32 | 000,111,872 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcspud.sys
[2013/05/14 15:35:31 | 000,003,584 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcosnt5.sys
[2013/05/14 15:35:29 | 000,072,832 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbwdm.sys
[2013/05/14 15:35:28 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbmidi.sys
[2013/05/14 15:35:26 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbase.sys
[2013/05/14 15:35:24 | 000,249,856 | ---- | C] (Comtrol® Corporation) -- C:\WINDOWS\System32\dllcache\ctmasetp.dll
[2013/05/14 15:35:14 | 000,216,064 | ---- | C] (COMPAQ Inc.) -- C:\WINDOWS\System32\dllcache\cpscan.dll
[2013/05/14 15:34:59 | 000,020,736 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\cmbp0wdm.sys
[2013/05/14 15:34:49 | 000,980,034 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\cicap.sys
[2013/05/14 15:34:40 | 000,049,182 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem56n5.sys
[2013/05/14 15:34:40 | 000,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem33n5.sys
[2013/05/14 15:34:39 | 000,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem28n5.sys
[2013/05/14 15:34:38 | 000,027,164 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce3n5.sys
[2013/05/14 15:34:37 | 000,021,530 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce2n5.sys
[2013/05/14 15:34:35 | 000,714,698 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cbmdmkxx.sys
[2013/05/14 15:34:34 | 000,046,108 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cben5.sys
[2013/05/14 15:34:33 | 000,039,680 | ---- | C] (Silicom Ltd.) -- C:\WINDOWS\System32\dllcache\cb325.sys
[2013/05/14 15:34:32 | 000,037,916 | ---- | C] (Fast Ethernet Controller Provider) -- C:\WINDOWS\System32\dllcache\cb102.sys
[2013/05/14 15:34:30 | 000,032,256 | ---- | C] (Eicon Technology Corporation) -- C:\WINDOWS\System32\dllcache\diapi2NT.dll
[2013/05/14 15:34:29 | 000,164,923 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diapi2.sys
[2013/05/14 15:33:52 | 000,031,529 | ---- | C] (BreezeCOM) -- C:\WINDOWS\System32\dllcache\brzwlan.sys
[2013/05/14 15:33:51 | 000,011,008 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbmdm.sys
[2013/05/14 15:33:51 | 000,010,368 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbscn.sys
[2013/05/14 15:33:50 | 000,060,416 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brserwdm.sys
[2013/05/14 15:33:49 | 000,009,728 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brserif.dll
[2013/05/14 15:33:49 | 000,005,120 | ---- | C] (Brother Industries,Ltd.) -- C:\WINDOWS\System32\dllcache\brscnrsm.dll
[2013/05/14 15:33:48 | 000,039,552 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparwdm.sys
[2013/05/14 15:33:47 | 000,003,168 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparimg.sys
[2013/05/14 15:33:46 | 000,041,472 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfusb.dll
[2013/05/14 15:33:45 | 000,032,256 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfrsmg.exe
[2013/05/14 15:33:44 | 000,029,696 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmflpt.dll
[2013/05/14 15:33:43 | 000,015,360 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfbidi.dll
[2013/05/14 15:33:42 | 000,012,160 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltlo.sys
[2013/05/14 15:33:42 | 000,003,968 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltup.sys
[2013/05/14 15:33:41 | 000,002,944 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brfilt.sys
[2013/05/14 15:33:40 | 000,012,800 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brevif.dll
[2013/05/14 15:33:40 | 000,009,728 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brcoinst.dll
[2013/05/14 15:33:39 | 000,019,456 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brbidiif.dll
[2013/05/14 15:33:35 | 000,871,388 | ---- | C] (BCM) -- C:\WINDOWS\System32\dllcache\bcmdm.sys
[2013/05/14 15:33:31 | 000,036,128 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.sys
[2013/05/14 15:33:30 | 000,342,336 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.dll
[2013/05/14 15:33:29 | 000,089,952 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\b1cbase.sys
[2013/05/14 15:33:29 | 000,036,992 | ---- | C] (Aztech Systems Ltd) -- C:\WINDOWS\System32\dllcache\aztw2320.sys
[2013/05/14 15:33:28 | 000,037,568 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmwan.sys
[2013/05/14 15:33:27 | 000,144,384 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmenum.dll
[2013/05/14 15:33:26 | 000,087,552 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmcoxp.dll
[2013/05/14 15:33:04 | 000,097,354 | ---- | C] (Bay Networks, Inc.) -- C:\WINDOWS\System32\dllcache\aspndis3.sys
[2013/05/14 15:33:00 | 000,016,969 | ---- | C] (AmbiCom, Inc.) -- C:\WINDOWS\System32\dllcache\amb8002.sys
[2013/05/14 15:32:49 | 000,046,112 | ---- | C] (Adaptec, Inc ) -- C:\WINDOWS\System32\dllcache\adptsf50.sys
[2013/05/14 15:32:48 | 000,010,880 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\admjoy.sys
[2013/05/14 15:32:47 | 000,747,392 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8830.sys
[2013/05/14 15:32:47 | 000,553,984 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8820.sys
[2013/05/14 15:32:46 | 000,584,448 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8810.sys
[2013/05/14 15:32:44 | 000,061,440 | ---- | C] (Color Flatbed Scanner) -- C:\WINDOWS\System32\dllcache\acerscad.dll
[2013/05/14 15:32:40 | 000,462,848 | ---- | C] (Aureal Inc.) -- C:\WINDOWS\System32\dllcache\a3dapi.dll
[2013/05/14 15:32:40 | 000,098,304 | ---- | C] (Aureal Semiconductor) -- C:\WINDOWS\System32\dllcache\a3d.dll
[2013/05/14 15:32:37 | 000,148,352 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvsm.sys
[2013/05/14 15:32:36 | 000,762,780 | ---- | C] (3Com, Inc.) -- C:\WINDOWS\System32\dllcache\3cwmcru.sys
[2013/05/14 15:32:36 | 000,689,216 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvs.dll
[2013/05/10 16:00:06 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Owner\Desktop\OTL.exe
[2013/05/09 09:10:11 | 000,000,000 | ---D | C] -- C:\C_Documents and Settings
[2013/05/08 23:01:50 | 004,745,728 | ---- | C] (AVAST Software) -- C:\Documents and Settings\Owner\Desktop\aswMBR.exe
[2013/05/05 08:02:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVG April 2013 Campaign
[2013/05/04 21:07:48 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Owner\Recent
[2006/03/31 05:01:16 | 000,218,112 | ---- | C] (Soeperman Enterprises Ltd.) -- C:\Program Files\HijackThis.exe

========== Files - Modified Within 30 Days ==========

[2013/05/31 21:05:00 | 000,000,830 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013/05/31 20:52:00 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013/05/31 15:32:21 | 000,000,880 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013/05/31 14:19:13 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013/05/31 14:19:12 | 1062,776,832 | -HS- | M] () -- C:\hiberfil.sys
[2013/05/31 08:07:18 | 000,001,170 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013/05/28 13:43:24 | 000,020,530 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\brotherhood.JPG
[2013/05/26 05:56:20 | 000,980,358 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\smallskul3.JPG
[2013/05/26 05:56:12 | 001,008,300 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\smallskul4.JPG
[2013/05/26 05:55:32 | 000,942,864 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\smallskul2.JPG
[2013/05/26 05:55:28 | 000,943,705 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\smallskul1.JPG
[2013/05/26 05:54:32 | 000,948,466 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\ringset3.JPG
[2013/05/26 05:54:06 | 000,939,009 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\ringset4.JPG
[2013/05/26 05:53:38 | 000,925,099 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\ringset5.JPG
[2013/05/26 05:53:00 | 000,946,390 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\ringset4a.JPG
[2013/05/26 05:40:24 | 000,921,800 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\gene1.JPG
[2013/05/26 05:40:10 | 000,938,512 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\gene2.JPG
[2013/05/26 05:39:22 | 000,928,426 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\dollaring1.JPG
[2013/05/26 05:39:10 | 000,896,814 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\dollaring2.JPG
[2013/05/26 05:39:04 | 000,962,968 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\dollaring4.JPG
[2013/05/26 05:38:56 | 000,921,713 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\dollaring3.JPG
[2013/05/26 04:00:38 | 000,887,276 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\pauls2.JPG
[2013/05/26 04:00:18 | 000,864,518 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\pauls1.JPG
[2013/05/26 03:59:04 | 000,932,871 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\hangskel2.JPG
[2013/05/26 03:58:56 | 000,948,810 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\hangskel1.JPG
[2013/05/26 03:39:30 | 000,798,950 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\dqring2.JPG
[2013/05/26 03:39:24 | 000,821,414 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\dqring3.JPG
[2013/05/26 03:39:18 | 000,840,975 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\dqring4.JPG
[2013/05/26 03:38:50 | 000,843,007 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\dqring6.JPG
[2013/05/26 03:37:56 | 000,852,217 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\dqring5.JPG
[2013/05/26 03:37:46 | 000,796,962 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\dqring1.JPG
[2013/05/26 03:37:16 | 000,863,713 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\polyn3.JPG
[2013/05/26 03:36:58 | 000,872,036 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\polyn1.JPG
[2013/05/26 03:36:52 | 000,822,003 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\polyn2.JPG
[2013/05/26 03:36:20 | 000,796,474 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\love6.JPG
[2013/05/26 03:36:02 | 000,801,930 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\love5.JPG
[2013/05/26 03:35:56 | 000,806,974 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\love4.JPG
[2013/05/26 03:31:22 | 000,938,136 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\rolling6.JPG
[2013/05/26 03:31:08 | 000,877,195 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\rolling2.JPG
[2013/05/26 03:30:42 | 000,956,607 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\rolling5.JPG
[2013/05/26 03:30:26 | 000,910,295 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\rolling4.JPG
[2013/05/26 03:30:10 | 000,941,516 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\rolling3.JPG
[2013/05/26 03:29:18 | 000,864,976 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\gems1.JPG
[2013/05/26 03:28:42 | 000,918,195 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\gems3.JPG
[2013/05/26 03:28:36 | 000,895,243 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\gems2.JPG
[2013/05/26 03:28:12 | 000,997,696 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\gems4.JPG
[2013/05/26 02:13:08 | 000,928,625 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\spiderman1.JPG
[2013/05/26 02:11:28 | 000,968,027 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\spiderman8.JPG
[2013/05/26 02:11:10 | 000,969,117 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\spiderman6.JPG
[2013/05/26 02:10:42 | 000,984,927 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\spiderman3.JPG
[2013/05/26 02:10:36 | 000,905,388 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\spiderman4.JPG
[2013/05/26 02:10:20 | 000,947,670 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\spiderman3a.JPG
[2013/05/25 07:56:12 | 000,902,670 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\wynn3.JPG
[2013/05/25 07:56:04 | 000,874,347 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\wynn4.JPG
[2013/05/25 07:55:46 | 000,935,590 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\wynn2.JPG
[2013/05/25 07:55:28 | 000,891,143 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\wynn1.JPG
[2013/05/24 22:24:10 | 001,053,640 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\dual2.JPG
[2013/05/24 22:23:52 | 001,047,824 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\dual1.JPG
[2013/05/22 21:32:30 | 000,005,662 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\cc_20130522_213225.reg
[2013/05/22 20:46:56 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2013/05/21 15:55:39 | 000,760,723 | ---- | M] (Farbar) -- C:\Documents and Settings\Owner\Desktop\MiniToolBox.exe
[2013/05/20 09:46:18 | 000,000,702 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\AVG 2013.lnk
[2013/05/17 19:34:31 | 000,995,934 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4910.JPG
[2013/05/17 17:32:19 | 000,721,888 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP5000.JPG
[2013/05/17 17:13:28 | 000,942,136 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4908.JPG
[2013/05/17 17:13:13 | 000,993,276 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4907.JPG
[2013/05/17 17:12:55 | 000,954,994 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4919.JPG
[2013/05/17 17:12:33 | 000,899,669 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4916.JPG
[2013/05/17 17:12:20 | 000,912,488 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4917.JPG
[2013/05/17 12:50:05 | 000,000,924 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\edhardygrey1b.jpg
[2013/05/17 12:45:31 | 000,000,794 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\edhardygrey5.jpg
[2013/05/17 12:45:18 | 000,000,886 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\edhardygrey1a.jpg
[2013/05/17 12:45:03 | 000,000,600 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\edhardygrey3.jpg
[2013/05/17 12:44:49 | 000,000,877 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\edhardygrey2.jpg
[2013/05/17 12:35:14 | 000,002,540 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\edhardygrey1.jpg
[2013/05/17 08:23:21 | 000,354,299 | ---- | M] (Farbar) -- C:\Documents and Settings\Owner\Desktop\FSS.exe
[2013/05/17 02:19:34 | 000,915,861 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4997.JPG
[2013/05/17 02:19:26 | 000,842,983 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4996.JPG
[2013/05/17 02:16:44 | 000,919,356 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4991.JPG
[2013/05/17 02:16:30 | 000,856,634 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4990.JPG
[2013/05/17 02:15:22 | 000,946,713 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4987.JPG
[2013/05/17 02:15:04 | 000,934,574 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4986.JPG
[2013/05/17 02:12:00 | 000,959,827 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4976.JPG
[2013/05/16 07:47:06 | 000,964,161 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4971.JPG
[2013/05/16 07:45:38 | 001,001,824 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4966.JPG
[2013/05/16 07:42:16 | 001,028,869 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4961.JPG
[2013/05/16 07:41:08 | 000,951,662 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4956.JPG
[2013/05/16 07:40:50 | 000,990,258 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4954.JPG
[2013/05/16 06:20:00 | 000,944,580 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4924.JPG
[2013/05/16 06:19:48 | 000,942,925 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4923.JPG
[2013/05/16 06:19:36 | 001,000,211 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4921.JPG
[2013/05/15 05:43:48 | 000,208,104 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013/05/14 23:34:37 | 000,476,182 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013/05/14 23:34:37 | 000,085,324 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013/05/14 16:29:32 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Owner\CD
[2013/05/14 11:21:01 | 000,737,686 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4841.JPG
[2013/05/14 11:18:19 | 000,891,885 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4889.JPG
[2013/05/14 11:14:55 | 000,872,354 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4890.JPG
[2013/05/14 11:14:48 | 000,819,666 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4891.JPG
[2013/05/13 03:22:36 | 000,919,010 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4902.JPG
[2013/05/13 03:22:02 | 000,911,021 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4899.JPG
[2013/05/13 03:21:48 | 000,896,813 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4897.JPG
[2013/05/13 03:21:38 | 000,925,990 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4895.JPG
[2013/05/13 03:21:12 | 000,954,649 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4892.JPG
[2013/05/13 02:47:06 | 000,739,117 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4852.JPG
[2013/05/13 02:46:28 | 000,739,357 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4847.JPG
[2013/05/13 02:46:22 | 000,747,328 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4846.JPG
[2013/05/13 02:46:14 | 000,837,446 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4845.JPG
[2013/05/13 02:46:04 | 000,728,764 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4844.JPG
[2013/05/13 02:45:50 | 000,737,532 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4843.JPG
[2013/05/08 23:19:04 | 000,628,743 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\adwcleaner.exe
[2013/05/08 23:04:44 | 000,000,512 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\MBR.dat
[2013/05/08 23:03:25 | 004,745,728 | ---- | M] (AVAST Software) -- C:\Documents and Settings\Owner\Desktop\aswMBR.exe
[2013/05/06 15:07:15 | 000,021,007 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\swisstoolebay.JPG
[2013/05/06 14:57:21 | 000,949,010 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\andjinar5.JPG
[2013/05/06 14:55:06 | 000,871,593 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\swisstool4.JPG
[2013/05/06 14:52:37 | 000,861,764 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\andjinar1.JPG
[2013/05/06 14:51:42 | 000,956,113 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\girlmost3.JPG
[2013/05/06 14:51:33 | 000,921,687 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4832.JPG
[2013/05/06 14:51:04 | 000,953,760 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\girlmost2.JPG
[2013/05/06 14:50:59 | 000,934,597 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4830.JPG
[2013/05/06 14:50:41 | 000,958,906 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\IMGP4828.JPG
[2013/05/06 14:50:34 | 000,974,113 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\girlmost1.JPG
[2013/05/05 03:40:04 | 000,951,439 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\andjinar2.JPG
[2013/05/05 03:37:38 | 000,936,497 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\andjinar3.JPG
[2013/05/05 03:37:26 | 001,009,711 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\andjinar4.JPG
[2013/05/05 03:18:48 | 001,020,127 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\swisstool3a.JPG
[2013/05/04 21:08:31 | 000,011,772 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\cc_20130504_210829.reg
[2013/05/04 04:37:50 | 000,957,546 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\swisstool3.JPG
[2013/05/04 04:35:58 | 000,954,305 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\swisstool2.JPG
[2013/05/04 04:33:52 | 000,916,743 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\swisstool5.JPG
[2013/05/04 04:33:44 | 001,029,861 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\swisstool1.JPG

========== Files Created - No Company Name ==========

[2013/05/29 09:32:25 | 000,798,950 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\dqring2.JPG
[2013/05/29 09:32:23 | 000,821,414 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\dqring3.JPG
[2013/05/29 09:32:20 | 000,840,975 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\dqring4.JPG
[2013/05/29 09:32:16 | 000,843,007 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\dqring6.JPG
[2013/05/29 09:32:11 | 000,852,217 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\dqring5.JPG
[2013/05/29 09:32:07 | 000,796,962 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\dqring1.JPG
[2013/05/28 21:09:39 | 000,947,670 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\spiderman3a.JPG
[2013/05/28 21:08:26 | 000,905,388 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\spiderman4.JPG
[2013/05/28 21:08:22 | 000,984,927 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\spiderman3.JPG
[2013/05/28 21:08:18 | 000,969,117 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\spiderman6.JPG
[2013/05/28 21:08:14 | 000,968,027 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\spiderman8.JPG
[2013/05/28 21:08:10 | 000,928,625 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\spiderman1.JPG
[2013/05/28 13:43:23 | 000,020,530 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\brotherhood.JPG
[2013/05/27 19:38:37 | 000,796,474 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\love6.JPG
[2013/05/27 19:37:45 | 000,997,696 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\gems4.JPG
[2013/05/27 19:37:26 | 000,918,195 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\gems3.JPG
[2013/05/27 19:37:23 | 000,895,243 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\gems2.JPG
[2013/05/27 19:37:19 | 000,864,976 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\gems1.JPG
[2013/05/27 19:35:04 | 000,801,930 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\love5.JPG
[2013/05/27 19:35:00 | 000,806,974 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\love4.JPG
[2013/05/27 19:33:29 | 000,938,136 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\rolling6.JPG
[2013/05/27 19:33:07 | 000,877,195 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\rolling2.JPG
[2013/05/27 19:33:03 | 000,956,607 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\rolling5.JPG
[2013/05/27 19:32:59 | 000,910,295 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\rolling4.JPG
[2013/05/27 19:32:55 | 000,941,516 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\rolling3.JPG
[2013/05/27 10:32:54 | 000,925,099 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\ringset5.JPG
[2013/05/27 10:32:47 | 000,939,009 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\ringset4.JPG
[2013/05/27 10:32:43 | 000,948,466 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\ringset3.JPG
[2013/05/27 08:56:02 | 001,138,898 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\eagle4.JPG
[2013/05/26 22:09:15 | 001,053,640 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\dual2.JPG
[2013/05/26 22:09:11 | 001,047,824 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\dual1.JPG
[2013/05/26 21:13:25 | 000,874,347 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\wynn4.JPG
[2013/05/26 21:13:21 | 000,902,670 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\wynn3.JPG
[2013/05/26 21:13:17 | 000,935,590 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\wynn2.JPG
[2013/05/26 21:13:14 | 000,891,143 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\wynn1.JPG
[2013/05/26 21:10:20 | 000,946,390 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\ringset4a.JPG
[2013/05/26 21:06:56 | 000,962,968 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\dollaring4.JPG
[2013/05/26 21:06:43 | 000,921,713 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\dollaring3.JPG
[2013/05/26 21:06:39 | 000,896,814 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\dollaring2.JPG
[2013/05/26 21:06:36 | 000,928,426 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\dollaring1.JPG
[2013/05/26 21:01:54 | 000,980,358 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\smallskul3.JPG
[2013/05/26 21:01:51 | 001,008,300 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\smallskul4.JPG
[2013/05/26 21:01:45 | 000,942,864 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\smallskul2.JPG
[2013/05/26 21:01:42 | 000,943,705 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\smallskul1.JPG
[2013/05/26 21:00:02 | 000,863,713 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\polyn3.JPG
[2013/05/26 20:59:59 | 000,822,003 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\polyn2.JPG
[2013/05/26 20:59:55 | 000,872,036 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\polyn1.JPG
[2013/05/26 20:59:03 | 000,887,276 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\pauls2.JPG
[2013/05/26 20:58:59 | 000,864,518 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\pauls1.JPG
[2013/05/26 20:57:58 | 000,938,512 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\gene2.JPG
[2013/05/26 20:57:54 | 000,921,800 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\gene1.JPG
[2013/05/26 20:56:50 | 000,932,871 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\hangskel2.JPG
[2013/05/26 20:56:47 | 000,948,810 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\hangskel1.JPG
[2013/05/22 23:46:28 | 001,127,351 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\beatlesub1.JPG
[2013/05/22 23:46:24 | 001,122,729 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\beatlesub.JPG
[2013/05/22 21:32:27 | 000,005,662 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\cc_20130522_213225.reg
[2013/05/22 20:47:59 | 1062,776,832 | -HS- | C] () -- C:\hiberfil.sys
[2013/05/19 12:28:35 | 000,982,088 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\artifact4.JPG
[2013/05/19 12:28:14 | 000,933,377 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\artifact3.JPG
[2013/05/19 12:28:10 | 000,913,228 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\artifact2.JPG
[2013/05/19 12:28:07 | 001,057,425 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\artifact2a.JPG
[2013/05/19 12:28:03 | 000,926,036 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\artifact1.JPG
[2013/05/19 10:03:03 | 001,075,048 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\gdhershey2.JPG
[2013/05/19 10:03:00 | 001,113,379 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\gdhershey.JPG
[2013/05/18 17:36:59 | 001,127,546 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\reef2.JPG
[2013/05/18 17:36:56 | 001,146,528 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\reef1.JPG
[2013/05/18 17:36:21 | 001,146,528 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\aquatic.JPG
[2013/05/18 16:07:31 | 001,084,765 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\usarmy2.JPG
[2013/05/18 16:07:28 | 001,122,847 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\usarmy1.JPG
[2013/05/17 19:35:17 | 000,995,934 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4910.JPG
[2013/05/17 19:10:21 | 000,934,574 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4986.JPG
[2013/05/17 17:50:41 | 001,028,869 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4961.JPG
[2013/05/17 17:48:52 | 001,001,824 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4966.JPG
[2013/05/17 17:48:03 | 000,959,827 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4976.JPG
[2013/05/17 17:47:23 | 000,856,634 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4990.JPG
[2013/05/17 17:46:59 | 000,964,161 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4971.JPG
[2013/05/17 17:46:24 | 000,919,356 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4991.JPG
[2013/05/17 17:46:08 | 000,946,713 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4987.JPG
[2013/05/17 17:43:58 | 000,915,861 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4997.JPG
[2013/05/17 17:43:36 | 000,721,888 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP5000.JPG
[2013/05/17 17:43:30 | 000,842,983 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4996.JPG
[2013/05/17 17:43:08 | 000,990,258 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4954.JPG
[2013/05/17 17:42:43 | 000,951,662 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4956.JPG
[2013/05/17 17:38:32 | 000,954,994 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4919.JPG
[2013/05/17 17:38:25 | 000,912,488 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4917.JPG
[2013/05/17 17:38:16 | 000,899,669 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4916.JPG
[2013/05/17 17:37:34 | 000,944,580 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4924.JPG
[2013/05/17 17:37:30 | 000,942,925 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4923.JPG
[2013/05/17 17:37:26 | 001,000,211 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4921.JPG
[2013/05/17 17:37:22 | 000,942,136 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4908.JPG
[2013/05/17 17:37:19 | 000,993,276 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4907.JPG
[2013/05/17 15:55:30 | 000,921,687 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4832.JPG
[2013/05/17 15:55:26 | 000,934,597 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4830.JPG
[2013/05/17 15:55:23 | 000,958,906 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4828.JPG
[2013/05/17 12:50:04 | 000,000,924 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\edhardygrey1b.jpg
[2013/05/17 12:45:31 | 000,000,794 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\edhardygrey5.jpg
[2013/05/17 12:45:17 | 000,000,886 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\edhardygrey1a.jpg
[2013/05/17 12:45:02 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\edhardygrey3.jpg
[2013/05/17 12:44:49 | 000,000,877 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\edhardygrey2.jpg
[2013/05/17 12:35:12 | 000,002,540 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\edhardygrey1.jpg
[2013/05/16 09:06:03 | 000,891,885 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4889.JPG
[2013/05/16 09:05:58 | 000,819,666 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4891.JPG
[2013/05/16 09:05:55 | 000,872,354 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4890.JPG
[2013/05/14 23:27:29 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2013/05/14 16:29:32 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Owner\CD
[2013/05/14 16:22:54 | 000,018,944 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxscnui.dll
[2013/05/14 16:22:46 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxftplt.exe
[2013/05/14 15:59:52 | 000,033,280 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisrndr.ax
[2013/05/14 15:59:42 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisdecd.dll
[2013/05/14 15:51:06 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdvbnp.ax
[2013/05/14 15:47:53 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2013/05/14 15:45:31 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2013/05/14 15:42:17 | 000,165,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt53.dll
[2013/05/14 15:42:08 | 000,093,696 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt42.dll
[2013/05/14 15:42:00 | 000,101,376 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt34.dll
[2013/05/14 15:41:51 | 000,089,088 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt33.dll
[2013/05/14 15:41:42 | 000,083,968 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt21.dll
[2013/05/14 15:41:17 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2013/05/14 15:36:54 | 000,029,768 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divasu.dll
[2013/05/14 15:36:52 | 000,037,962 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaprop.dll
[2013/05/14 15:36:51 | 000,006,216 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaci.dll
[2013/05/14 15:33:19 | 000,026,624 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativxbar.sys
[2013/05/14 15:33:19 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atixbar.sys
[2013/05/14 15:33:18 | 000,019,456 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativttxx.sys
[2013/05/14 15:33:17 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitvsnd.sys
[2013/05/14 15:33:17 | 000,009,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativmdcd.sys
[2013/05/14 15:33:16 | 000,026,880 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtsnd.sys
[2013/05/14 15:33:16 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitunep.sys
[2013/05/14 15:33:15 | 000,049,920 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtcap.sys
[2013/05/14 15:33:13 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atipcxxx.sys
[2013/05/14 15:33:08 | 000,046,464 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atibt829.sys
[2013/05/14 11:22:18 | 000,739,117 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4852.JPG
[2013/05/14 11:22:12 | 000,737,686 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4841.JPG
[2013/05/14 11:22:05 | 000,739,357 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4847.JPG
[2013/05/14 11:21:42 | 000,747,328 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4846.JPG
[2013/05/14 11:21:33 | 000,837,446 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4845.JPG
[2013/05/14 11:21:27 | 000,728,764 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4844.JPG
[2013/05/14 11:21:23 | 000,737,532 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4843.JPG
[2013/05/14 11:18:00 | 000,896,813 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4897.JPG
[2013/05/14 11:17:31 | 000,919,010 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4902.JPG
[2013/05/14 11:17:09 | 000,911,021 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4899.JPG
[2013/05/14 11:17:00 | 000,925,990 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4895.JPG
[2013/05/14 11:16:56 | 000,954,649 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\IMGP4892.JPG
[2013/05/08 23:19:00 | 000,628,743 | ---- | C] () -- C:\Documents and Settings\Owner\Desktop\adwcleaner.exe
[2013/05/08 23:04:44 | 000,000,512 | ---- | C] () -- C:\Documents and Settings\Owner\Desktop\MBR.dat
[2013/05/06 15:07:13 | 000,021,007 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swisstoolebay.JPG
[2013/05/06 14:58:08 | 000,956,113 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\girlmost3.JPG
[2013/05/06 14:58:05 | 000,953,760 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\girlmost2.JPG
[2013/05/06 14:58:00 | 000,974,113 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\girlmost1.JPG
[2013/05/06 14:57:57 | 000,951,439 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\andjinar2.JPG
[2013/05/06 14:57:53 | 000,949,010 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\andjinar5.JPG
[2013/05/06 14:57:49 | 000,936,497 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\andjinar3.JPG
[2013/05/06 14:57:46 | 001,009,711 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\andjinar4.JPG
[2013/05/06 14:57:42 | 000,861,764 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\andjinar1.JPG
[2013/05/06 14:55:39 | 001,020,127 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swisstool3a.JPG
[2013/05/06 14:55:35 | 000,954,305 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swisstool2.JPG
[2013/05/06 14:55:31 | 000,957,546 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swisstool3.JPG
[2013/05/06 14:55:27 | 000,916,743 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swisstool5.JPG
[2013/05/06 14:55:23 | 000,871,593 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swisstool4.JPG
[2013/05/06 14:55:19 | 001,029,861 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swisstool1.JPG
[2013/05/04 21:08:30 | 000,011,772 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\cc_20130504_210829.reg
[2013/04/25 08:57:09 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2013/04/23 11:15:14 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2013/04/22 21:14:46 | 000,000,004 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2011/08/23 12:55:01 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2008/12/27 20:30:36 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\048BF8
[2008/12/27 20:30:35 | 000,870,128 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\mcs.rma
[2008/09/11 21:24:15 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Owner\ipconfig
[2006/06/04 22:54:12 | 000,810,283 | ---- | C] () -- C:\Program Files\DSC00235.JPG
[2006/01/11 17:03:56 | 000,003,384 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2005/12/28 10:45:10 | 000,017,920 | ---- | C] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2005/12/27 22:06:02 | 000,004,628 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\wklnhst.dat

========== ZeroAccess Check ==========

[2005/12/22 11:01:21 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008/04/14 05:42:06 | 001,499,136 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009/02/09 08:10:48 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008/04/14 05:42:10 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2013/05/05 08:02:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG April 2013 Campaign
[2013/01/21 09:34:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG January 2013 Campaign
[2013/04/25 18:37:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG2013
[2012/12/19 22:19:22 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2013/03/12 06:00:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Licenses
[2008/06/24 21:39:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ludia
[2007/09/19 17:29:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MailFrontier
[2013/05/31 17:43:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2006/03/31 22:38:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Napster
[2013/04/16 23:22:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2009/12/08 22:44:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Auslogics
[2013/04/25 18:37:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\AVG2013
[2011/12/07 06:09:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Catalina Marketing Corp
[2009/06/01 23:39:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2009/12/06 00:52:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Grisoft
[2006/06/04 22:09:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Leadertech
[2008/06/24 21:39:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Ludia
[2011/12/02 08:25:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\MSNInstaller
[2012/08/08 16:40:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Oracle
[2005/12/22 11:17:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\SampleView
[2010/07/06 18:07:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Template
[2012/12/19 22:27:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\TuneUp Software
[2007/06/14 18:24:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Walgreens

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5C321E34

< End of report >
  • 0

#78
godawgs

godawgs

    Teacher

  • Retired Staff
  • 8,228 posts

The only thing now is the SP3 and I guess the fact that I can't uninstall AVG, I don't want to, but if I ever did. Also before my system restore did not work either. All my previous months have disappeared. Otherwise the SP3 is the top one. Thank you for your patience and your knowledge.

You are welcome. Tell me again why you can't uninstall AVG. Does System Restore still not work? What happens when you try to create a restore point. The FSS scan that we ran didn't show anythng wrong with System Restore.


Step-1.

AdwCleaner by Xplode

Re-run AdwCleaner

Close all open windows and browsers.

Re-open AdwCleaner
  • Double click the adwcleaner.exe file to run AdwCleaner.
  • Click the Delete button and wait for the scan.
    Posted Image
  • Everything that was found will be deleted.
  • When the scan ends, a report appears.
  • Once done it will ask to reboot, allow this

    Posted Image
  • On reboot a log will be produced please copy / paste that in your next reply. This report is also saved to C:\AdwCleaner[S1].txt

Step-2

Scan with JRT:

Posted Image Please download Junkware Removal Tool to your desktop.

NOTE: Temporarily shut down your protection software now to avoid potential conflicts, how to do so can be read here.

  • Doube-click the JRT.exe file to launch the application.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
NOTE: Reboot the machine and ensure that all security software is now enabled.


Step-3.

Posted Image OTL Fix

Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot

1. Please copy all of the text in the quote box below (Do Not copy the word Quote. To do this, highlight everything
inside the quote box (except the word Quote) , right click and click Copy.

:COMMANDS
[createrestorepoint]

:OTL
[2011/12/07 06:09:19 | 000,466,944 | ---- | M] (Catalina Marketing Corporation) -- C:\Program Files\mozilla firefox\plugins\NPcol400.dll
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found

:COMMANDS
[emptytemp]


Warning: This fix is relevant for this system and no other. If you are not this user, do NOT follow these directions as they could damage the workings of your system.

2. Please re-open Posted Image on your desktop. To do that:
  • XP users: Double click the icon.
3. Place the mouse pointer inside the Posted Image textbox, right click and click Paste. This will put the above script inside the textbox.
4. Click the Posted Image button.
5. Let the program run unhindered.
6. OTL may ask to reboot the machine. Please do so if asked.
7. Click the Posted Image button.
8. A report will open. Copy and Paste that report in your next reply.
9. If the machine reboots, the log will be located at C:\_OTL\MovedFiles\mmddyyyy_hhmmss.log, (where mmddyyyy_hhmmss is the date of the tool run).


Step-4

Things For Your Next Post:
Please post the logs in the order requested. Do Not attach the logs unless I request it.
1. Answer my questions
2. The AdwCleaner[S1].txt log
3. The JRT.txt log
4. The OTL fixes log
  • 0

#79
tuffstuff

tuffstuff

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 104 posts
All my restore points from April back were gone and it would not let me click on a restore point in May. I haven't tried since then. AVG came up with a black box and said Parameter empty I think. I believe I posted that on the XP forum.

Here is the Adwcleaner log

# AdwCleaner v2.301 - Logfile created 06/01/2013 at 17:03:48
# Updated 16/05/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Owner - DEBEVE
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Owner\Desktop\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****

Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKLM\Software\AVG Secure Search

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Mozilla Firefox v20.0.1 (en-US)

File : C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\prefs.js

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [3355 octets] - [08/05/2013 23:20:05]
AdwCleaner[S1].txt - [3133 octets] - [10/05/2013 18:25:37]
AdwCleaner[S2].txt - [331 octets] - [01/06/2013 17:03:24]
AdwCleaner[S3].txt - [975 octets] - [01/06/2013 17:03:48]

########## EOF - C:\AdwCleaner[S3].txt - [1034 octets] ##########
  • 0

#80
tuffstuff

tuffstuff

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 104 posts
When I finished the JRT log, it updated me to Firefox 21 which had the yahoo toolbar.

Here is the JRT log

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Microsoft Windows XP x86
Ran by Owner on Sat 06/01/2013 at 17:12:00.71
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Program Files\bigfix"



~~~ FireFox

Successfully deleted: [File] C:\Documents and Settings\Owner\Application Data\mozilla\firefox\profiles\2u55g8c4.default\invalidprefs.js
Successfully deleted the following from C:\Documents and Settings\Owner\Application Data\mozilla\firefox\profiles\2u55g8c4.default\prefs.js

user_pref("avg.toolbar.buttons_icon", ",,chrome://avg/skin/safesurf.png,chrome://avg/skin/safesurf.png,chrome://avg/skin/safesearch.png,chrome://avg/skin/avglinks.png,chrome:/
Emptied folder: C:\Documents and Settings\Owner\Application Data\mozilla\firefox\profiles\2u55g8c4.default\minidumps [7 files]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 06/01/2013 at 17:15:48.03
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  • 0

#81
tuffstuff

tuffstuff

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 104 posts
I hope this is the right OTL.txt it wasn't on my desktop

All processes killed
========== COMMANDS ==========
Restore point Set: OTL Restore Point
========== OTL ==========
C:\Program Files\Mozilla Firefox\plugins\NPcol400.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{08B0E5C0-4FCB-11CF-AAA5-00401C608501}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{08B0E5C0-4FCB-11CF-AAA5-00401C608501}\ deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator

User: Administrator.DEBEVE
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Owner
->Temp folder emptied: 192533776 bytes
->Temporary Internet Files folder emptied: 9768050 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 69094927 bytes
->Flash cache emptied: 26393 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 41098 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 14281538 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 8389186 bytes

Total Files Cleaned = 281.00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 06012013_172339
  • 0

#82
godawgs

godawgs

    Teacher

  • Retired Staff
  • 8,228 posts

All my restore points from April back were gone and it would not let me click on a restore point in May. I haven't tried since then.

OTL is able to create restore points, see the first COMMANDS section in the OTL fixes log above. Please try creating a new restore point and let me know if it was successful. Directions to create a restore point can be found here

AVG came up with a black box and said Parameter empty I think.

What were you trying to do when AVG came up with the black box? Were you trying to uninstall it from the Add/Remove programs in Control Panel?

When I finished the JRT log, it updated me to Firefox 21 which had the yahoo toolbar.

If you don't want the Yahoo toolbar please look in the Add/Remove Programs of Control Panel and if it is listed there uninstall it.
  • 0

#83
tuffstuff

tuffstuff

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 104 posts
I cannot get on the internet limited or no connectivity and when I click repair it cannot renew IP address. Yesterday when I did the scans and logs after rebooting it updated automatically to firefox 21. Then my sister said today she turned on the compute she was on the internet and AVG popped up with firefox using too much memory and then it came up with server not found. When we restarted the little computer on the taskbar has the limited or no connectivity, plus when it restarts, it loads slowly.

I disconnected the ethernet cable and put the ez connect back on to see and it is on the internet, slow and will be restardted as before, but it connected. I don't know what is going on. It worked so well yesterday with the ethernet cable.

Edited by tuffstuff, 02 June 2013 - 06:20 PM.

  • 0

#84
godawgs

godawgs

    Teacher

  • Retired Staff
  • 8,228 posts
The OTL fix was run at 4:23 on 6/1/2013. You posted the log at 5:37. So it worked while you were on it yesterday. You said your sister was on the internet when AVG poped up. How long had she been on and what sites did she visit?
Is Avg in the Add/Remove Programs list in the Control Panel?
  • 0

#85
tuffstuff

tuffstuff

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 104 posts
She visited ebay, netflix but she didn't play anything, clicked on a few news headlines. Sitting idle for awhile. AVG is in my Add/Remove Programs.
I don't know why there was such a difference in time for the OTL log. After I do the scans I post them right away.
  • 0

Advertisements


#86
godawgs

godawgs

    Teacher

  • Retired Staff
  • 8,228 posts
Man this is frustrating! Let's see if the big gun finds anything.


Posted Image Run ComboFix
***Read through this entire procedure and if you have any questions, please ask them before you begin. Then either print out, or copy this page to Notepad and save to your desktop for reference as you will not have any browsers open while you are carrying out portions of these instructions.***

If you have a previous version of Combofix.exe, delete it and download a fresh copy.

* IMPORTANT - Disable your AntiVirus and AntiSpyware applications before downloading ComboFix. This is usually done via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here The list is not all inclusive.

How to disable AVG's Resident Shield.

  • Right click the AVG icon and click Open.
  • In the Overview panel click on Resident Shield > Uncheck the Resident Shield Active box > Save Changes.
VERY IMPORTANT !!! Save ComboFix.exe to your Desktop

Download ComboFix from one of the following locations:

Link 1
Link 2

  • Double click on ComboFix.exe & follow the prompts.
  • Accept the disclaimer and allow to update if it asks
  • Also allow the installation of the recovery console (XP only)

    Posted Image

    Posted Image
  • When finished, it shall produce a log for you.
  • Please include the C:\ComboFix.txt in your next reply.
Notes:
1. Do not mouse-click Combofix's window while it is running. That may cause it to stall.
2. Do not "re-run" ComboFix. If you have a problem, reply back for further instructions.
3. If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion". Please restart the computer. That will cure it.

A word of warning: Neither I nor sUBs are responsible for any damage you may have caused your machine by running ComboFix on your own.
This tool is not a toy and not for everyday use. ComboFix Should Not be used unless requested by a forum helper


Please make sure you include the combo fix log in your next reply as well as describe how your computer is running now
Don't forget to re-enable your Anti-Virus


Things For Your Next Post:
Please post the logs in the order requested. Do Not attach the logs unless I request it.
1. the ComboFix.txt log
  • 0

#87
tuffstuff

tuffstuff

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 104 posts
I ran the fix but can't find the log. During the scan, a box behind it came up and I could only read part of it. It was something to do with AVG detected. I was scared to touch the combo fix box to see what the box behind said, so I let it scan and then it rebooted itself. I went into AVG after and it has in the virus vault C:\combofix\Regt.3xe and it said deleted moved to virus vault. I had AVG disabled so I don't understand.
Also when I use my search box to find the combo log or anything it comes up with an unexpected error occurred cannot complete action.

Edited by tuffstuff, 03 June 2013 - 05:16 AM.

  • 0

#88
godawgs

godawgs

    Teacher

  • Retired Staff
  • 8,228 posts
AVG has flagged a file in the ComboFix program and quarantined it. Some time disabling AVG just doesn't do it. It still interferes with ComboFix.
Let's see if ComboFix completed and made a log.
Click Start then click Run. In the run box type cmd.exe and click the OK button. A black command window will open.
At the blinking cursor type start C:\combofix.txt and press the Enter key.
If the combofix.txt file is there it will open in a notepad window.
Minimize the combofix.txt file to the taskbar and back in the Command window, at the blinking cursor, type Exit and press the Enter key. This will close the Command window.
Copy and paste the contents of the combofix.txt file in your next reply

If the file is not there then ComboFix didn't run, or didn't complete.
  • 0

#89
tuffstuff

tuffstuff

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 104 posts
it says cannot find file make sure it is typed correctly

I typed next to the >start C:\combofix.txt a space between start and C: is that correct?

It run through a bunch of stages and then when I came back in the room the computer had rebooted. It was running.

Edited by tuffstuff, 03 June 2013 - 11:29 AM.

  • 0

#90
godawgs

godawgs

    Teacher

  • Retired Staff
  • 8,228 posts

It run through a bunch of stages and then when I came back in the room the computer had rebooted. It was running.

I'm not sure what you mean here. What ran through a bunch of stages? It sounds like ComboFix cause it goes through 50 stages.
What was running after the reboot?
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP