Sign in to follow this  
DDon

Need help, again - Trovi search

Recommended Posts

I appreciate the help I received recently here, and need more help on a new problem, please - different computer. Trovi search keeps hijacking my Chrome search function.

 

I ran Ad-Aware, finding nothing.

 

DDS report

 

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.55.2
Run by test at 11:04:46 on 2014-05-16
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3319.1361 [GMT -5:00]
.
AV: Ad-Aware Antivirus *Disabled/Outdated* {22CB8761-914A-11CF-B705-00AA0062CBB7}
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: Ad-Aware Firewall *Disabled*
.
============== Running Processes ================
.
C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
C:\WINDOWS\Explorer.EXE
C:\Documents and Settings\Jerry Richardson\Application Data\alotservice\alotservice.exe
C:\Program Files\Application Updater\ApplicationUpdater.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5354.0\AdAwareService.exe
C:\Program Files\IObit\Driver Booster\AutoUpdate.exe
C:\Program Files\IObit\Advanced SystemCare 7\Monitor.exe
C:\Program Files\IObit\Driver Booster\DriverBooster.exe
C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5354.0\AdAwareTray.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\IObit\IObit Malware Fighter\IMF.exe
C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5354.0\AdAwareDesktop.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.

uURLSearchHooks: IObit Apps Toolbar: {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - c:\program files\iobit apps toolbar\ie\9.2\iobitappsToolbarIE.dll
dURLSearchHooks: {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - <orphaned>
dURLSearchHooks: {f0e98552-8e47-4c6c-9b3a-11ab0549f94d} - <orphaned>
BHO: IObit Apps Toolbar: {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - c:\program files\iobit apps toolbar\ie\9.2\iobitappsToolbarIE.dll
BHO: ExplorerWnd Helper: {10921475-03CE-4E04-90CE-E2E7EF20C814} - c:\program files\iobit\iobit uninstaller\UninstallExplorer32.dll
BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\ie\rndlbrowserrecordplugin.dll
BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: ALOT Appbar Helper: {85F5CF95-EC8F-49fc-BB3F-38C79455CBA2} - c:\program files\alotappbar\bin\bho\ALOTHelperBHO.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\alwil software\avast5\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Ads Removal: {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} - c:\program files\iobit\iobit malware fighter\adsremoval\ie\Adblock.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Skype Plug-In: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\5.7.9012.1008\swg.dll
BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: ALOT Appbar: {A531D99C-5A22-449b-83DA-872725C6D0ED} - c:\program files\alotappbar\bin\ALOTHelper.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: ExplorerWnd Helper: {10921475-03CE-4E04-90CE-E2E7EF20C814} - c:\program files\iobit\iobit uninstaller\UninstallExplorer32.dll
TB: IObit Apps Toolbar: {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - c:\program files\iobit apps toolbar\ie\9.2\iobitappsToolbarIE.dll
mRun: [iObit Malware Fighter] "c:\program files\iobit\iobit malware fighter\IMF.exe" /autostart
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [AdAwareTray] "c:\program files\lavasoft\ad-aware antivirus\ad-aware antivirus\11.1.5354.0\AdAwareTray.exe"
dRun: [AROReminder] c:\program files\aro 2011\aro.exe -rem
dRun: [Advanced SystemCare 4] "c:\program files\iobit\advanced systemcare 4\ASCTray.exe"
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.




TCP: NameServer = 192.168.1.254
TCP: Interfaces\{3DF2044A-F371-46D8-A12A-F138E1EA7BB9} : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{6B9FEB0E-E556-4724-AC36-901822C6EF7F} : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{8E5DF68B-8DA9-4307-A603-2AA4D4C9089B} : DHCPNameServer = 192.168.1.254
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Notify: igfxcui - igfxdev.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\34.0.1847.137\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\test\application data\mozilla\firefox\profiles\0u54w5zp.default\

FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\mozillaplugins\nprndlchromebrowserrecordext.dll
FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\mozillaplugins\nprndlhtml5videoshim.dll
FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\mozillaplugins\nprndlpepperflashvideoshim.dll
FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\npdlplugin.dll
FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\update\1.3.24.7\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.30214.0\npctrlui.dll
FF - plugin: c:\program files\real\realplayer\netscape6\nprpplugin.dll
FF - plugin: c:\program files\viewpoint\viewpoint experience technology\npViewpoint.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_13_0_0_214.dll
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [2013-3-1 49944]
R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [2013-3-1 180632]
R0 SmartDefragDriver;SmartDefragDriver;c:\windows\system32\drivers\SmartDefragDriver.sys [2014-5-16 15808]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswsnx.sys [2011-2-23 777488]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswsp.sys [2010-11-1 411680]
R2 AdvancedSystemCareService7;Advanced SystemCare Service 7;c:\program files\iobit\advanced systemcare 7\ASCService.exe [2013-11-20 881952]
R2 AlotService;ALOT Update Service;c:\documents and settings\jerry richardson\application data\alotservice\alotservice.exe [2012-10-16 255880]
R2 Application Updater;Application Updater;c:\program files\application updater\ApplicationUpdater.exe [2014-5-9 807800]
R2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [2014-4-28 24184]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswmonflt.sys [2013-3-1 67824]
R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast5\AvastSvc.exe [2010-11-1 50344]
R2 IMFservice;IMF Service;c:\program files\iobit\iobit malware fighter\IMFsrv.exe [2014-1-14 342336]
R2 LavasoftAdAwareService11;Ad-Aware Service 11;c:\program files\lavasoft\ad-aware antivirus\ad-aware antivirus\11.1.5354.0\AdAwareService.exe [2014-1-23 651232]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files\realnetworks\realdownloader\rndlresolversvc.exe [2013-8-14 39056]
R2 TomTomHOMEService;TomTomHOMEService;c:\program files\tomtom home 2\TomTomHOMEService.exe [2012-4-20 92592]
R3 FileMonitor;FileMonitor;c:\program files\iobit\iobit malware fighter\drivers\wxp_x86\FileMonitor.sys [2014-3-31 247968]
R3 IntcHdmiAddService;Intel® High Definition Audio HDMI Service;c:\windows\system32\drivers\IntcHdmi.sys [2014-1-14 116224]
R3 RegFilter;RegFilter;c:\program files\iobit\iobit malware fighter\drivers\wxp_x86\RegFilter.sys [2014-3-31 31776]
R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\drivers\RTL8192su.sys [2011-5-24 606440]
R3 UrlFilter;UrlFilter;c:\program files\iobit\iobit malware fighter\drivers\wxp_x86\UrlFilter.sys [2014-3-31 17360]
S0 Lbd;Lbd;c:\windows\system32\drivers\lbd.sys --> c:\windows\system32\drivers\Lbd.sys [?]
S2 LiveUpdateSvc;LiveUpdate;c:\program files\iobit\liveupdate\LiveUpdate.exe [2013-11-20 2151200]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2011-1-7 1691480]
S3 AtcL001;NDIS Miniport Driver for Atheros L1 Gigabit Ethernet Controller;c:\windows\system32\drivers\l151x86.sys --> c:\windows\system32\drivers\l151x86.sys [?]
S3 hitmanpro37;HitmanPro 3.7 Support Driver;c:\windows\system32\drivers\hitmanpro37.sys [2014-5-1 30976]
S3 KCFdcDevice0;KCFdcDevice0; [x]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2014-1-14 107736]
S3 motccgp;Motorola USB Composite Device Driver;c:\windows\system32\drivers\motccgp.sys [2011-8-15 18688]
S3 motccgpfl;MotCcgpFlService;c:\windows\system32\drivers\motccgpfl.sys [2011-8-15 8320]
S3 motport;Motorola USB Diagnostic Port;c:\windows\system32\drivers\motport.sys [2011-8-15 23680]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2008-4-14 14336]
S4 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-10-23 172192]
.
=============== Created Last 30 ================
.
2014-05-16 15:36:13 -------- d-----w- c:\documents and settings\test\application data\LavasoftStatistics
2014-05-16 15:30:10 109856 ----a-w- c:\windows\system32\IObitSmartDefragExtension.dll
2014-05-16 15:30:05 15808 ----a-w- c:\windows\system32\drivers\SmartDefragDriver.sys
2014-05-16 15:26:49 -------- d-----w- c:\program files\Lavasoft
2014-05-16 15:25:53 -------- d-----w- c:\program files\common files\Lavasoft
2014-05-15 14:22:58 -------- d-----w- c:\documents and settings\test\application data\Search Settings
2014-05-15 14:22:54 -------- d-----w- c:\program files\IObit Apps Toolbar
2014-05-15 14:22:54 -------- d-----w- c:\program files\Application Updater
2014-05-15 14:22:39 -------- d-----w- c:\documents and settings\test\local settings\application data\Sun
2014-05-14 21:01:15 145408 ----a-w- c:\windows\system32\javacpl.cpl
2014-05-14 21:01:05 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-05-14 20:01:35 -------- d-----w- c:\documents and settings\test\application data\alotappbar
2014-05-12 22:27:23 -------- d-----w- c:\windows\system32\wbem\repository\FS
2014-05-12 22:27:23 -------- d-----w- c:\windows\system32\wbem\Repository
2014-05-12 22:27:02 -------- d-----w- C:\b352f5a442b9f53f13d073d5
2014-05-12 22:14:57 664 ----a-w- c:\windows\system32\d3d9caps.tmp
2014-05-12 20:29:48 -------- d-----w- c:\program files\Optimizer Pro(2)
2014-05-12 20:29:30 -------- d-----w- c:\program files\AnyProtectEx
2014-05-12 20:25:40 -------- d-----w- c:\documents and settings\all users\application data\PriceMeterLiveUpdate
2014-05-12 20:25:32 -------- d-----w- c:\documents and settings\test\application data\Systweak
2014-05-12 20:25:27 -------- d-----w- c:\program files\RegClean Pro
2014-05-12 20:18:27 -------- d-----w- c:\program files\VideoLAN
2014-05-12 20:16:03 -------- d-----w- c:\program files\ConstaSurf
2014-05-12 20:15:19 -------- d-----w- c:\documents and settings\test\local settings\application data\SearchProtect
2014-05-12 15:53:47 -------- d-sh--w- c:\documents and settings\test\IECompatCache
2014-05-12 15:46:04 -------- d-sh--w- c:\documents and settings\test\PrivacIE
2014-05-08 22:08:46 -------- d-----w- c:\documents and settings\test\AppData
2014-05-08 22:08:32 -------- d-----w- c:\documents and settings\test\application data\RealNetworks
2014-05-08 22:08:32 -------- d-----w- c:\documents and settings\test\application data\IObit Apps
2014-05-08 21:33:01 -------- d-----w- c:\documents and settings\test\local settings\application data\Mozilla
2014-05-08 19:02:10 -------- d-----w- c:\documents and settings\all users\application data\Driver Support
2014-05-08 19:01:43 -------- d-----w- c:\program files\Driver Support
2014-05-08 19:01:40 -------- d-----w- c:\program files\webget
2014-05-08 19:01:15 -------- d-----w- c:\documents and settings\test\application data\Settings Manager
2014-05-08 19:01:07 -------- d-----w- c:\program files\Settings Manager
2014-05-02 18:58:38 -------- d--h--w- c:\windows\$hf_mig$
2014-05-01 21:41:37 30976 ----a-w- c:\windows\system32\drivers\hitmanpro37.sys
2014-05-01 21:20:48 -------- d-----w- c:\documents and settings\all users\application data\HitmanPro
2014-05-01 21:17:35 -------- d-----w- c:\documents and settings\all users\application data\Licenses
2014-05-01 21:16:26 -------- d-----w- c:\documents and settings\all users\application data\Simply Super Software
2014-05-01 18:16:09 -------- d-----w- c:\documents and settings\test\LocalLow
2014-05-01 18:03:33 -------- d-----w- c:\documents and settings\test\local settings\application data\Google
2014-05-01 18:01:59 -------- d-----w- c:\documents and settings\test\local settings\application data\Adobe
2014-05-01 17:22:30 -------- d-----w- c:\documents and settings\test\local settings\application data\Temp
2014-05-01 17:12:09 -------- d-----w- c:\documents and settings\test\application data\IObit
2014-05-01 17:00:39 -------- d-----w- c:\documents and settings\test\application data\AVAST Software
2014-05-01 15:32:55 -------- d-----w- c:\program files\CCleaner
2014-04-29 20:51:31 -------- d-----w- C:\RegBackup
2014-04-29 20:46:42 -------- d-----w- c:\program files\Tweaking.com
2014-04-29 20:10:29 -------- d-----w- c:\windows\system32\CatRoot2
2014-04-29 17:14:41 -------- d-----w- c:\windows\pss
2014-04-29 16:34:41 -------- d-----w- C:\temp
2014-04-29 16:33:26 -------- d-----w- c:\program files\003
2014-04-28 14:17:19 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-04-28 14:17:12 43152 ----a-w- c:\windows\avastSS.scr
2014-04-22 18:48:52 -------- d-----w- c:\program files\Video Performer
.
==================== Find3M ====================
.
2014-05-16 15:32:17 606440 ----a-w- c:\windows\system32\drivers\RTL8192su.sys
2014-05-16 15:30:38 56352 ----a-w- c:\windows\system32\drivers\HPZid412.sys
2014-05-16 15:30:38 28000 ----a-w- c:\windows\system32\drivers\HPZius12.sys
2014-05-16 15:30:38 22928 ----a-w- c:\windows\system32\drivers\HPZipr12.sys
2014-05-16 15:12:39 107736 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2014-05-15 14:17:50 777488 ----a-w- c:\windows\system32\drivers\aswsnx.sys
2014-05-14 20:40:28 70832 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-05-14 20:40:28 692400 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-04-28 14:17:13 776976 ----a-w- c:\windows\system32\drivers\aswsnx.sys.1400163468437
2014-04-28 14:17:13 67824 ----a-w- c:\windows\system32\drivers\aswmonflt.sys
2014-04-28 14:17:13 54832 ----a-w- c:\windows\system32\drivers\aswrdr.sys.1400163468437
2014-04-28 14:17:13 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-04-28 14:17:13 180632 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-03-21 16:46:46 152848 ----a-w- c:\windows\system32\comdlg32.ocx
2014-03-14 16:01:01 20747 ----a-w- c:\windows\system32\drivers\AegisP.sys
2014-03-06 17:59:23 920064 ----a-w- c:\windows\system32\wininet.dll
2014-03-06 17:59:22 43520 ------w- c:\windows\system32\licmgr10.dll
2014-03-06 17:59:22 18944 ----a-w- c:\windows\system32\corpol.dll
2014-03-06 17:59:22 1469440 ------w- c:\windows\system32\inetcpl.cpl
2014-03-06 00:46:54 385024 ----a-w- c:\windows\system32\html.iec
2014-02-26 01:59:05 13312 ----a-w- c:\windows\system32\xp_eos.exe
.
============= FINISH: 11:05:16.67 ===============

 

Attach text

 

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 11/1/2010 5:21:09 PM
System Uptime: 5/16/2014 10:39:14 AM (1 hours ago)
.
Motherboard: ASUSTeK Computer INC. | | P5E-VM HDMI
Processor: Intel® Core2 Duo CPU E6550 @ 2.33GHz | LGA775 | 2337/333mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 149 GiB total, 107.351 GiB free.
D: is CDROM ()
E: is Removable
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Description: Realtek High Definition Audio
Device ID: HDAUDIO\FUNC_01&VEN_10EC&DEV_0883&SUBSYS_1043829F&REV_1000\4&B3DDC6A&0&0001
Manufacturer: Realtek
Name: Realtek High Definition Audio
PNP Device ID: HDAUDIO\FUNC_01&VEN_10EC&DEV_0883&SUBSYS_1043829F&REV_1000\4&B3DDC6A&0&0001
Service:
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Atheros L1 Gigabit Ethernet 10/100/1000Base-T Controller
Device ID: PCI\VEN_1969&DEV_1048&SUBSYS_82261043&REV_B0\4&625283&0&00E5
Manufacturer: Atheros
Name: Atheros L1 Gigabit Ethernet 10/100/1000Base-T Controller
PNP Device ID: PCI\VEN_1969&DEV_1048&SUBSYS_82261043&REV_B0\4&625283&0&00E5
Service: AtcL001
.
Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description:
Device ID: ACPI\ATK0110\1010110
Manufacturer:
Name:
PNP Device ID: ACPI\ATK0110\1010110
Service:
.
Class GUID: {4D36E96F-E325-11CE-BFC1-08002BE10318}
Description: Microsoft PS/2 Mouse
Device ID: ACPI\PNP0F03\4&B6AFFD&0
Manufacturer: Microsoft
Name: Microsoft PS/2 Mouse
PNP Device ID: ACPI\PNP0F03\4&B6AFFD&0
Service: i8042prt
.
==== System Restore Points ===================
.
RP976: 2/17/2014 9:43:19 AM - System Checkpoint
RP977: 2/18/2014 9:46:10 AM - System Checkpoint
RP978: 2/19/2014 10:07:43 AM - System Checkpoint
RP979: 2/20/2014 11:10:02 AM - System Checkpoint
RP980: 2/21/2014 11:19:16 AM - System Checkpoint
RP981: 2/24/2014 11:39:24 AM - System Checkpoint
RP982: 2/25/2014 12:00:45 PM - System Checkpoint
RP983: 2/26/2014 12:20:19 PM - System Checkpoint
RP984: 2/27/2014 1:14:38 PM - System Checkpoint
RP985: 2/28/2014 2:44:49 PM - System Checkpoint
RP986: 3/3/2014 9:54:49 AM - System Checkpoint
RP987: 3/4/2014 12:18:03 PM - System Checkpoint
RP988: 3/5/2014 12:45:15 PM - System Checkpoint
RP989: 3/6/2014 1:35:35 PM - System Checkpoint
RP990: 3/7/2014 2:08:35 PM - System Checkpoint
RP991: 3/10/2014 10:24:12 AM - System Checkpoint
RP992: 3/11/2014 11:24:31 AM - System Checkpoint
RP993: 3/12/2014 9:23:16 AM - Software Distribution Service 3.0
RP994: 3/13/2014 10:36:02 AM - System Checkpoint
RP995: 3/13/2014 12:00:15 PM - Software Distribution Service 3.0
RP996: 3/14/2014 9:29:58 AM - Software Distribution Service 3.0
RP997: 3/14/2014 5:43:23 PM - Installed Windows XP KB2934207.
RP998: 3/17/2014 11:13:30 AM - System Checkpoint
RP999: 3/18/2014 11:16:50 AM - System Checkpoint
RP1000: 3/18/2014 12:00:16 PM - Software Distribution Service 3.0
RP1001: 3/19/2014 12:25:00 PM - System Checkpoint
RP1002: 3/20/2014 1:41:32 PM - System Checkpoint
RP1003: 3/21/2014 2:33:59 PM - System Checkpoint
RP1004: 3/24/2014 10:43:13 AM - System Checkpoint
RP1005: 3/25/2014 12:04:10 PM - System Checkpoint
RP1006: 3/26/2014 9:22:36 AM - Software Distribution Service 3.0
RP1007: 3/27/2014 12:29:09 PM - System Checkpoint
RP1008: 3/28/2014 1:51:42 PM - System Checkpoint
RP1009: 3/31/2014 9:15:43 AM - avast! antivirus system restore point
RP1010: 4/1/2014 10:08:59 AM - System Checkpoint
RP1011: 4/2/2014 12:12:52 PM - System Checkpoint
RP1012: 4/3/2014 12:19:13 PM - System Checkpoint
RP1013: 4/4/2014 2:25:02 PM - System Checkpoint
RP1014: 4/7/2014 9:48:35 AM - System Checkpoint
RP1015: 4/8/2014 11:07:03 AM - System Checkpoint
RP1016: 4/9/2014 11:43:51 AM - System Checkpoint
RP1017: 4/9/2014 12:00:27 PM - Software Distribution Service 3.0
RP1018: 4/10/2014 12:00:16 PM - Software Distribution Service 3.0
RP1019: 4/11/2014 12:25:58 PM - System Checkpoint
RP1020: 4/14/2014 11:24:12 AM - System Checkpoint
RP1021: 4/15/2014 11:53:48 AM - System Checkpoint
RP1022: 4/16/2014 12:10:20 PM - System Checkpoint
RP1023: 4/17/2014 12:21:55 PM - System Checkpoint
RP1024: 4/18/2014 9:24:52 AM - Software Distribution Service 3.0
RP1025: 4/19/2014 9:59:04 AM - System Checkpoint
RP1026: 4/20/2014 10:56:58 AM - System Checkpoint
RP1027: 4/21/2014 12:02:47 PM - System Checkpoint
RP1028: 4/22/2014 12:16:32 PM - System Checkpoint
RP1029: 4/23/2014 12:19:27 PM - System Checkpoint
RP1030: 4/24/2014 1:07:51 PM - System Checkpoint
RP1031: 4/25/2014 1:21:54 PM - System Checkpoint
RP1032: 4/28/2014 9:16:33 AM - avast! antivirus system restore point
RP1033: 4/29/2014 9:32:12 AM - System Checkpoint
RP1034: 4/29/2014 12:55:28 PM - 29th April
RP1035: 4/29/2014 1:39:58 PM - Restore Operation
RP1036: 4/29/2014 3:51:26 PM - Tweaking.com - Windows Repair
RP1037: 4/30/2014 12:00:35 PM - Software Distribution Service 3.0
RP1038: 5/1/2014 4:51:33 PM - Software Distribution Service 3.0
RP1039: 5/2/2014 1:58:52 PM - Installed Windows XP KB2618444.
RP1040: 5/5/2014 9:52:41 AM - System Checkpoint
RP1041: 5/6/2014 9:57:55 AM - System Checkpoint
RP1042: 5/7/2014 10:03:38 AM - System Checkpoint
RP1043: 5/8/2014 10:25:06 AM - System Checkpoint
RP1044: 5/8/2014 5:23:53 PM - Software Distribution Service 3.0
RP1045: 5/9/2014 4:01:38 PM - Restore Operation
RP1046: 5/12/2014 11:21:19 AM - Driver Booster : Airlink101 Wireless N USB Adapter
RP1047: 5/12/2014 5:23:57 PM - Restore Operation
RP1048: 5/12/2014 5:29:25 PM - avast! antivirus system restore point
RP1049: 5/13/2014 5:39:30 PM - System Checkpoint
RP1050: 5/14/2014 3:56:55 PM - Installed Java 7 Update 55
RP1051: 5/15/2014 12:00:15 PM - Software Distribution Service 3.0
RP1052: 5/16/2014 10:25:19 AM - Installed Windows XP KB942288-v3.
RP1053: 5/16/2014 10:25:36 AM - AA11
RP1054: 5/16/2014 10:30:37 AM - Driver Booster : psc 2200 (DOT4)
.
==== Installed Programs ======================
.
FUTURA CE-250 Software
Ad-Aware Antivirus
AdAwareInstaller
AdAwareUpdater
Adobe AIR
Adobe Flash Player 13 ActiveX
Adobe Flash Player 13 Plugin
Adobe Reader XI (11.0.07)
Adobe® Photoshop® Album Starter Edition 3.2
Advanced SystemCare 7
ALOT Appbar
AntimalwareEngine
AOL Uninstaller (Choose which Products to Remove)
Ask Toolbar
Atheros Communications Inc.® L1 Gigabit Ethernet Driver
avast! Free Antivirus
Belkin 54Mbps Wireless Network Adapter
CCleaner
Chinese Traditional Fonts Support For Adobe Reader 9
Cisco Connect
Compatibility Pack for the 2007 Office system
Download Updater (AOL LLC)
Driver Booster
ExFriendAlert
Google Chrome
Google Earth
Google Toolbar for Internet Explorer
Google Update Helper
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows XP (KB2570791)
Hotfix for Windows XP (KB2633952)
Hotfix for Windows XP (KB2756822)
Hotfix for Windows XP (KB2779562)
Hotfix for Windows XP (KB942288-v3)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
HP Memories Disc
HP Photo and Imaging 2.0 - All-in-One
HP Photo and Imaging 2.0 - All-in-One Drivers
HP Photo and Imaging 2.0 - hp psc 2200 series
hp psc 2200 series
Image Resizer Powertoy for Windows XP
Intel® Graphics Media Accelerator Driver
Intel® PROSet for Wired Connections
IObit Apps Toolbar v9.2
IObit Malware Fighter
IObit Uninstaller
IrfanView (remove only)
Japanese Fonts Support For Adobe Reader 9
Java 7 Update 55
Java Auto Updater
Magical Jelly Bean KeyFinder
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
Microsoft Office File Validation Add-In
Microsoft Office Professional Edition 2003
Microsoft Silverlight
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft VC9 runtime libraries
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Mozilla Firefox 20.0.1 (x86 en-US)
Mozilla Maintenance Service
MSN
OGA Notifier 2.0.0048.0
PDF Repair Toolbox 1.0
RealDownloader
RealNetworks - Microsoft Visual C++ 2008 Runtime
RealNetworks - Microsoft Visual C++ 2010 Runtime
RealPlayer
Realtek High Definition Audio Driver
RealUpgrade 1.1
Revo Uninstaller 1.92
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697)
Security Update for Microsoft Windows (KB2564958)
Security Update for Windows Internet Explorer 8 (KB2559049)
Security Update for Windows Internet Explorer 8 (KB2586448)
Security Update for Windows Internet Explorer 8 (KB2618444)
Security Update for Windows Internet Explorer 8 (KB2647516)
Security Update for Windows Internet Explorer 8 (KB2675157)
Security Update for Windows Internet Explorer 8 (KB2699988)
Security Update for Windows Internet Explorer 8 (KB2722913)
Security Update for Windows Internet Explorer 8 (KB2744842)
Security Update for Windows Internet Explorer 8 (KB2761465)
Security Update for Windows Internet Explorer 8 (KB2792100)
Security Update for Windows Internet Explorer 8 (KB2797052)
Security Update for Windows Internet Explorer 8 (KB2799329)
Security Update for Windows Internet Explorer 8 (KB2809289)
Security Update for Windows Internet Explorer 8 (KB2817183)
Security Update for Windows Internet Explorer 8 (KB2829530)
Security Update for Windows Internet Explorer 8 (KB2838727)
Security Update for Windows Internet Explorer 8 (KB2846071)
Security Update for Windows Internet Explorer 8 (KB2847204)
Security Update for Windows Internet Explorer 8 (KB2862772)
Security Update for Windows Internet Explorer 8 (KB2870699)
Security Update for Windows Internet Explorer 8 (KB2879017)
Security Update for Windows Internet Explorer 8 (KB2888505)
Security Update for Windows Internet Explorer 8 (KB2898785)
Security Update for Windows Internet Explorer 8 (KB2909210)
Security Update for Windows Internet Explorer 8 (KB2909921)
Security Update for Windows Internet Explorer 8 (KB2925418)
Security Update for Windows Internet Explorer 8 (KB2936068)
Security Update for Windows Internet Explorer 8 (KB2964358)
Security Update for Windows Media Player (KB2834904-v2)
Security Update for Windows Media Player (KB2834904)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2544893-v2)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2567053)
Security Update for Windows XP (KB2567680)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2584146)
Security Update for Windows XP (KB2585542)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB2598479)
Security Update for Windows XP (KB2603381)
Security Update for Windows XP (KB2618451)
Security Update for Windows XP (KB2619339)
Security Update for Windows XP (KB2620712)
Security Update for Windows XP (KB2621440)
Security Update for Windows XP (KB2624667)
Security Update for Windows XP (KB2631813)
Security Update for Windows XP (KB2633171)
Security Update for Windows XP (KB2639417)
Security Update for Windows XP (KB2641653)
Security Update for Windows XP (KB2646524)
Security Update for Windows XP (KB2647518)
Security Update for Windows XP (KB2653956)
Security Update for Windows XP (KB2655992)
Security Update for Windows XP (KB2659262)
Security Update for Windows XP (KB2660465)
Security Update for Windows XP (KB2661637)
Security Update for Windows XP (KB2676562)
Security Update for Windows XP (KB2685939)
Security Update for Windows XP (KB2686509)
Security Update for Windows XP (KB2691442)
Security Update for Windows XP (KB2695962)
Security Update for Windows XP (KB2698365)
Security Update for Windows XP (KB2705219)
Security Update for Windows XP (KB2707511)
Security Update for Windows XP (KB2709162)
Security Update for Windows XP (KB2712808)
Security Update for Windows XP (KB2718523)
Security Update for Windows XP (KB2719985)
Security Update for Windows XP (KB2723135)
Security Update for Windows XP (KB2724197)
Security Update for Windows XP (KB2727528)
Security Update for Windows XP (KB2731847)
Security Update for Windows XP (KB2753842-v2)
Security Update for Windows XP (KB2753842)
Security Update for Windows XP (KB2757638)
Security Update for Windows XP (KB2758857)
Security Update for Windows XP (KB2761226)
Security Update for Windows XP (KB2770660)
Security Update for Windows XP (KB2778344)
Security Update for Windows XP (KB2779030)
Security Update for Windows XP (KB2780091)
Security Update for Windows XP (KB2799494)
Security Update for Windows XP (KB2802968)
Security Update for Windows XP (KB2807986)
Security Update for Windows XP (KB2808735)
Security Update for Windows XP (KB2813170)
Security Update for Windows XP (KB2813345)
Security Update for Windows XP (KB2820197)
Security Update for Windows XP (KB2820917)
Security Update for Windows XP (KB2829361)
Security Update for Windows XP (KB2834886)
Security Update for Windows XP (KB2839229)
Security Update for Windows XP (KB2845187)
Security Update for Windows XP (KB2847311)
Security Update for Windows XP (KB2849470)
Security Update for Windows XP (KB2850851)
Security Update for Windows XP (KB2850869)
Security Update for Windows XP (KB2859537)
Security Update for Windows XP (KB2862152)
Security Update for Windows XP (KB2862330)
Security Update for Windows XP (KB2862335)
Security Update for Windows XP (KB2864063)
Security Update for Windows XP (KB2868038)
Security Update for Windows XP (KB2868626)
Security Update for Windows XP (KB2876217)
Security Update for Windows XP (KB2876315)
Security Update for Windows XP (KB2876331)
Security Update for Windows XP (KB2883150)
Security Update for Windows XP (KB2884256)
Security Update for Windows XP (KB2892075)
Security Update for Windows XP (KB2893294)
Security Update for Windows XP (KB2893984)
Security Update for Windows XP (KB2898715)
Security Update for Windows XP (KB2900986)
Security Update for Windows XP (KB2914368)
Security Update for Windows XP (KB2916036)
Security Update for Windows XP (KB2922229)
Security Update for Windows XP (KB2929961)
Security Update for Windows XP (KB2930275)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB941569)
Skype Toolbars
Skype™ 6.11
Smart Defrag 3
TomTom HOME 2.8.4.2596
TomTom HOME Visual Studio Merge Modules
Tweaking.com - Windows Repair (All in One)
Uninstall AOL Emergency Connect Utility 1.0
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft Windows (KB971513)
Update for Windows Internet Explorer 8 (KB2447568)
Update for Windows Internet Explorer 8 (KB2598845)
Update for Windows Internet Explorer 8 (KB2632503)
Update for Windows XP (KB2492386)
Update for Windows XP (KB2607712)
Update for Windows XP (KB2616676)
Update for Windows XP (KB2641690)
Update for Windows XP (KB2661254-v2)
Update for Windows XP (KB2718704)
Update for Windows XP (KB2736233)
Update for Windows XP (KB2749655)
Update for Windows XP (KB2808679)
Update for Windows XP (KB2863058)
Update for Windows XP (KB2904266)
Update for Windows XP (KB2934207)
Video Performer
Viewpoint Media Player
Visual C++ 2008 x86 Runtime - (v9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01
WebFldrs XP
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 8
Windows Live ID Sign-in Assistant
Windows Management Framework Core
Windows Media Format 11 runtime
Wisdom-soft Set up ScreenHunter 5.1 Free
.
==== Event Viewer Messages From Past Week ========
.
5/9/2014 3:58:11 PM, error: NetBT [4311] - Initialization failed because the driver device could not be created.
5/9/2014 3:51:45 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
5/9/2014 3:43:52 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service StiSvc with arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
5/16/2014 9:06:51 AM, error: sr [1] - The System Restore filter encountered the unexpected error '0xC0000001' while processing the file '' on the volume 'HarddiskVolume1'. It has stopped monitoring the volume.
5/16/2014 10:25:00 AM, error: Schedule [7901] - The At1.job command failed to start due to the following error: %%2147942403
5/13/2014 3:25:00 PM, error: Schedule [7901] - The At1.job command failed to start due to the following error: %%2147942402
5/12/2014 9:11:29 AM, error: sr [1] - The System Restore filter encountered the unexpected error '0xC0000043' while processing the file '' on the volume 'HarddiskVolume1'. It has stopped monitoring the volume.
5/12/2014 5:12:10 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
5/12/2014 10:46:05 AM, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service gupdatem with arguments "/comsvc" in order to run the server: {E225E692-4B47-4777-9BED-4FD7FE257F0E}
5/12/2014 10:46:04 AM, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service gusvc with arguments "" in order to run the server: {89DAE4CD-9F17-4980-902A-99BA84A8F5C8}
.
==== End Of File ===========================

 

Share this post


Link to post
Share on other sites

Hi DDon,

 

1. Please, uninstall:

IObit Apps Toolbar v9.2 due to http://www.systemlookup.com/CLSID/76871-IobitappsToolbarIE_dll.html

Ask Toolbar http://www.systemlookup.com/CLSID/56968-GenericAskToolbar_dll_GENERI_1_DLL.html

ALOT Appbar http://www.systemlookup.com/CLSID/72619-alotappbar_dll_ALOTHelperBHO_dll.html

 

2. Please, read the http://www.pcmag.com/article2/0,2817,2419549,00.asp article.

 

3. Please, save AdwCleaner by Xplode on the desktop: http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner

 

Turn off all programs, including browsers.

Double-click on AdwCleaner to start the program.

 

Click on the Scan button.

Wait until the search has finished.

 

Click on the Report button.

A report will be displayed, copy its content and paste into your answer.

If the report isn't displayed, it exist as C:\AdwCleaner[R1].txt.

Share this post


Link to post
Share on other sites

Okay, thanks. Got all that done. I'd removed the ALOT toolbar, but the Adwcleaner found and removed more of it.

 

The Trovi search is still in my Chrome page tho...?

 

# AdwCleaner v3.209 - Report created 19/05/2014 at 10:45:50
# Updated 18/05/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : test - JERRY-BBD10ECC6
# Running from : C:\Documents and Settings\test\My Documents\Downloads\adwcleaner_3.209.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : AlotService

***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Application Data\PriceMeterLiveUpdate
Folder Deleted : C:\Documents and Settings\All Users\Application Data\Viewpoint
Folder Deleted : C:\Program Files\003
Folder Deleted : C:\Program Files\AnyProtectEx
Folder Deleted : C:\Program Files\ConstaSurf
Folder Deleted : C:\Program Files\Crawler
Folder Deleted : C:\Program Files\RegClean Pro
Folder Deleted : C:\Program Files\Settings Manager
Folder Deleted : C:\Program Files\Video Performer
Folder Deleted : C:\Program Files\Viewpoint
Folder Deleted : C:\Program Files\webget
Folder Deleted : C:\Program Files\Common Files\Software Update Utility
Folder Deleted : C:\Program Files\Common Files\Spigot
Folder Deleted : C:\Documents and Settings\Jerry Richardson\Application Data\alotservice
Folder Deleted : C:\Documents and Settings\test\Local Settings\Application Data\SearchProtect
Folder Deleted : C:\DOCUME~1\test\LOCALS~1\Temp\ConstaSurf
Folder Deleted : C:\DOCUME~1\test\LOCALS~1\Temp\webget
Folder Deleted : C:\Documents and Settings\test\AppData\LocalLow\DataMngr
Folder Deleted : C:\Documents and Settings\test\Application Data\Settings Manager
Folder Deleted : C:\Documents and Settings\test\Application Data\Systweak
Folder Deleted : C:\Documents and Settings\test\Start Menu\Programs\PriceMeter
Folder Deleted : C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\wtes0oy2.default\Extensions\[email protected]
[!] Folder Deleted : C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pljcgbedjplidkdjahbaalanadmjfgop
File Deleted : C:\alotserviceruntime.log
File Deleted : C:\Documents and Settings\test\Application Data\aps.scan.quick.results
File Deleted : C:\Documents and Settings\test\Application Data\aps.scan.results
File Deleted : C:\Documents and Settings\test\Application Data\aps.uninstall.scan.results
File Deleted : C:\Documents and Settings\test\Desktop\Free Games.lnk
File Deleted : C:\Program Files\Mozilla Firefox\plugins\npdnu.dll
File Deleted : C:\Program Files\Mozilla Firefox\plugins\npdnu.xpt
File Deleted : C:\Program Files\Mozilla Firefox\plugins\npdnupdater2.dll
File Deleted : C:\Program Files\Mozilla Firefox\plugins\npdnupdater2.xpt
File Deleted : C:\Documents and Settings\test\Application Data\Mozilla\Firefox\Profiles\0u54w5zp.default\user.js
File Deleted : C:\Documents and Settings\test\Application Data\Mozilla\Firefox\Profiles\ao7agwz8.default\user.js
File Deleted : C:\Documents and Settings\test\Application Data\Mozilla\Firefox\Profiles\vqjv3w6s.default\user.js
File Deleted : C:\WINDOWS\Tasks\APSnotifierPP1.job
File Deleted : C:\WINDOWS\Tasks\APSnotifierPP2.job
File Deleted : C:\WINDOWS\Tasks\APSnotifierPP3.job
File Deleted : C:\WINDOWS\Tasks\Driver Booster Update.job

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pljcgbedjplidkdjahbaalanadmjfgop
Key Deleted : HKLM\SOFTWARE\Classes\AppID\AddonsFramework.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ButtonSite.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHost.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdate
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SearchSettings
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{443789B7-F39C-4B5C-9287-DA72D38F4FE6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{443789B7-F39C-4B5C-9287-DA72D38F4FE6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Key Deleted : HKCU\Software\alotservice
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKCU\Software\AppDataLow\Software\adawarebp
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKLM\Software\MetaStream
Key Deleted : HKLM\Software\PerformerSoft
Key Deleted : HKLM\Software\Viewpoint
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Video Performer
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\alotAppbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Free Games 111
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Optimizer Pro_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SoftwareUpdUtility
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Video Performer
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00E944CB89111313EAF35A0553F547F9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\53F55AF3F4049ED3FA6EA6F88E414E24
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E4BF4B11615E03C97732FD581AB607
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CE3DDAB2D152683FBCEB4866BCD2B0F
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF6CE16AFEA5C9A39B766468A8B35C21
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB1E44269B58F433A8C8E671E37CFDCF

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v20.0.1 (en-US)

[ File : C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\wtes0oy2.default\prefs.js ]


[ File : C:\Documents and Settings\test\Application Data\Mozilla\Firefox\Profiles\0u54w5zp.default\prefs.js ]


[ File : C:\Documents and Settings\test\Application Data\Mozilla\Firefox\Profiles\ao7agwz8.default\prefs.js ]

Line Deleted : user_pref("browser.search.defaultenginename", "default-search.net");
Line Deleted : user_pref("browser.search.order.1", "default-search.net");

[ File : C:\Documents and Settings\test\Application Data\Mozilla\Firefox\Profiles\vqjv3w6s.default\prefs.js ]


-\\ Google Chrome v34.0.1847.137

[ File : C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ]



Deleted [Extension] : gkcefkcdkepgkpbgncjchhbjgoanleod
Deleted [Extension] : hbcennhacfaagdopikcegfcobcadeocj
Deleted [Extension] : icdlfehblmklkikfigmjhbmmpmkmpooj
Deleted [Extension] : mhkaekfpcppmmioggniknbnbdbcigpkk
Deleted [Extension] : pfndaklgolladniicklehhancnlgocpp
Deleted [Extension] : pljcgbedjplidkdjahbaalanadmjfgop

[ File : C:\Documents and Settings\test\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ]


Deleted [Extension] : booedmolknjekdopkepjjeckmjkdpfgl
Deleted [Extension] : flpcjncodpafbgdpnkljologafpionhb
Deleted [Extension] : gkcefkcdkepgkpbgncjchhbjgoanleod
Deleted [Extension] : pljcgbedjplidkdjahbaalanadmjfgop

*************************

AdwCleaner[R0].txt - [10358 octets] - [19/05/2014 10:43:55]
AdwCleaner[s0].txt - [10512 octets] - [19/05/2014 10:45:50]

########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [10573 octets] ##########

Edited by DDon

Share this post


Link to post
Share on other sites

You're welcome :)

 

Let us see what's still running in the computer with the help of FRST.

Please, download Farbar Recovery Scan Tool (FRST) and save it on the desktop:

For 64 bits Windows: http://download.bleepingcomputer.com/farbar/FRST64.exe

For 32 bits Windows: http://download.bleepingcomputer.com/farbar/FRST.exe

 

Start the FRST program.

 

Click Scan button.

When done, FRST will create two log files, called FRST.txt and Addition.txt, on the desktop.

 

Please, paste them into your reply.

Share this post


Link to post
Share on other sites

Okee dokee...

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:17-05-2014
Ran by test (administrator) on JERRY-BBD10ECC6 on 19-05-2014 13:17:08
Running from C:\Documents and Settings\test\My Documents\Downloads
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English(US)
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.adobe.com)
Adobe® Photoshop® Album Starter Edition 3.2 (Version: 3.2.0 - Adobe Systems, Inc.) Hidden
Advanced SystemCare 7 (HKLM\...\Advanced SystemCare 7_is1) (Version: 7.2.1 - IObit)
AntimalwareEngine (Version: 2.6.0.0 - Lavasoft) Hidden
AOL Uninstaller (Choose which Products to Remove) (HKLM\...\AOL Uninstaller) (Version: - AOL Inc.)
Atheros Communications Inc.® L1 Gigabit Ethernet Driver (HKLM\...\{6E19F210-3813-4002-B561-94D66AA182B6}) (Version: 1.0.11.2 - Atheros Communications Inc.)
avast! Free Antivirus (HKLM\...\avast) (Version: 9.0.2018 - Avast Software)
Belkin 54Mbps Wireless Network Adapter (HKLM\...\{F3759A9F-7AFA-4FB4-8DF1-53F26B979DEE}) (Version: 3.00.07 - Belkin)
CCleaner (HKLM\...\CCleaner) (Version: 3.07 - Piriform)
Chinese Traditional Fonts Support For Adobe Reader 9 (HKLM\...\{AC76BA86-7AD7-2448-0000-900000000003}) (Version: 9.0.0 - Adobe Systems Incorporated)
Cisco Connect (HKLM\...\Cisco Connect) (Version: 1.4.11299.0 - Cisco Consumer Products LLC)
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Driver Booster (HKLM\...\Driver Booster_is1) (Version: 1.3 - IObit)
ExFriendAlert (HKLM\...\ExFriendAlert) (Version: 2.5.77 - ExFriendAlert)
Google Chrome (HKLM\...\Google Chrome) (Version: 34.0.1847.137 - Google Inc.)
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.24.7 - Google Inc.) Hidden
HP Memories Disc (HKLM\...\{B376402D-58EA-45EA-BD50-DD924EB67A70}) (Version: 1.0.4.805 - Hewlett-Packard Company)
HP Photo and Imaging 2.0 - All-in-One (Version: 1.10.0000 - Hewlett-Packard Company) Hidden
HP Photo and Imaging 2.0 - All-in-One Drivers (Version: 1.10.0000 - Hewlett-Packard Company) Hidden
HP Photo and Imaging 2.0 - hp psc 2200 series (HKLM\...\HP PSC 2200 Series) (Version: - )
hp psc 2200 series (HKLM\...\hp psc 2200 series_Driver) (Version: - )
hp psc 2200 series (Version: 1.10.0000 - Hewlett-Packard Company) Hidden
Image Resizer Powertoy for Windows XP (HKLM\...\{1CB92574-96F2-467B-B793-5CEB35C40C29}) (Version: 1.00.0001 - Microsoft Corporation)
Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 6.14.10.5218 - Intel Corporation)
Intel® PROSet for Wired Connections (HKLM\...\{7A915C5D-0ECE-4013-ABB5-39D82C572533}) (Version: 9.00.0000 - Intel)
IObit Uninstaller (HKLM\...\IObitUninstall) (Version: 3.1.8.2434 - IObit)
IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
Japanese Fonts Support For Adobe Reader 9 (HKLM\...\{AC76BA86-7AD7-5760-0000-900000000003}) (Version: 9.0.0 - Adobe Systems Incorporated)
Java 7 Update 55 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Magical Jelly Bean KeyFinder (HKLM\...\KeyFinder_is1) (Version: 2.0.9.8 - Magical Jelly Bean)
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft Base Smart Card Cryptographic Service Provider Package (HKLM\...\KB909520) (Version: - Microsoft Corporation)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5 (Version: - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM\...\{90110409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version: - Microsoft Corporation)
Microsoft VC9 runtime libraries (Version: 1.0.0 - AOL Inc.) Hidden
Microsoft VC9 runtime libraries (Version: 1.0.0 - AOL LLC) Hidden
Microsoft VC9 runtime libraries (Version: 2.0.0 - AOL Inc.) Hidden
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 20.0.1 (x86 en-US) (HKLM\...\Mozilla Firefox 20.0.1 (x86 en-US)) (Version: 20.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSN (HKLM\...\MSNINST) (Version: - )
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0 - Microsoft Corporation) Hidden
PDF Repair Toolbox 1.0 (HKLM\...\PDF Repair Toolbox_is1) (Version: - Recovery Toolbox, Inc.)
RealDownloader (Version: 1.3.3 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM\...\RealPlayer 16.0) (Version: 16.0.3 - RealNetworks)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.7111 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden
Revo Uninstaller 1.92 (HKLM\...\Revo Uninstaller) (Version: 1.92 - VS Revo Group)
Skype™ 6.11 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Smart Defrag 3 (HKLM\...\Smart Defrag 3_is1) (Version: 3.1 - IObit)
TomTom HOME 2.8.4.2596 (HKLM\...\TomTom HOME) (Version: 2.8.4.2596 - TomTom)
TomTom HOME Visual Studio Merge Modules (HKLM\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
Tweaking.com - Windows Repair (All in One) (HKLM\...\Tweaking.com - Windows Repair (All in One)) (Version: 2.7.0 - Tweaking.com)
Uninstall AOL Emergency Connect Utility 1.0 (HKLM\...\AOL Emergency Connect Utility 1.0) (Version: - )
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft Windows (KB971513) (HKLM\...\KB971513) (Version: - Microsoft Corporation)
Update for Windows Internet Explorer 8 (KB2447568) (HKLM\...\KB2447568-IE8) (Version: 1 - Microsoft Corporation)
Update for Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation)
Update for Windows Internet Explorer 8 (KB2632503) (HKLM\...\KB2632503-IE8) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2492386) (HKLM\...\KB2492386) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2607712) (HKLM\...\KB2607712) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2616676) (HKLM\...\KB2616676) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2641690) (HKLM\...\KB2641690) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2661254-v2) (HKLM\...\KB2661254-v2) (Version: 2 - Microsoft Corporation)
Update for Windows XP (KB2718704) (HKLM\...\KB2718704) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2736233) (HKLM\...\KB2736233) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2808679) (HKLM\...\KB2808679) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2863058) (HKLM\...\KB2863058) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729 - Microsoft Corporation) Hidden
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.9.0040.0 - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version: - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Management Framework Core (HKLM\...\KB968930) (Version: - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
Windows Media Format 11 runtime (Version: - Microsoft Corporation) Hidden
Wisdom-soft Set up ScreenHunter 5.1 Free (HKLM\...\Wisdom-soft Set up ScreenHunter 5.1 Free) (Version: - Wisdom Software Inc.)

==================== Restore Points =========================

19-02-2014 16:07:43 System Checkpoint
20-02-2014 17:10:02 System Checkpoint
21-02-2014 17:19:16 System Checkpoint
24-02-2014 17:39:24 System Checkpoint
25-02-2014 18:00:45 System Checkpoint
26-02-2014 18:20:19 System Checkpoint
27-02-2014 19:14:38 System Checkpoint
28-02-2014 20:44:49 System Checkpoint
03-03-2014 15:54:49 System Checkpoint
04-03-2014 18:18:03 System Checkpoint
05-03-2014 18:45:15 System Checkpoint
06-03-2014 19:35:35 System Checkpoint
07-03-2014 20:08:35 System Checkpoint
10-03-2014 15:24:12 System Checkpoint
11-03-2014 16:24:31 System Checkpoint
12-03-2014 14:23:16 Software Distribution Service 3.0
13-03-2014 15:36:02 System Checkpoint
13-03-2014 17:00:15 Software Distribution Service 3.0
14-03-2014 14:29:58 Software Distribution Service 3.0
14-03-2014 22:43:23 Installed Windows XP KB2934207.
17-03-2014 16:13:30 System Checkpoint
18-03-2014 16:16:50 System Checkpoint
18-03-2014 17:00:16 Software Distribution Service 3.0
19-03-2014 17:25:00 System Checkpoint
20-03-2014 18:41:32 System Checkpoint
21-03-2014 19:33:59 System Checkpoint
24-03-2014 15:43:13 System Checkpoint
25-03-2014 17:04:10 System Checkpoint
26-03-2014 14:22:36 Software Distribution Service 3.0
27-03-2014 17:29:09 System Checkpoint
28-03-2014 18:51:42 System Checkpoint
31-03-2014 14:15:43 avast! antivirus system restore point
01-04-2014 15:08:59 System Checkpoint
02-04-2014 17:12:52 System Checkpoint
03-04-2014 17:19:13 System Checkpoint
04-04-2014 19:25:02 System Checkpoint
07-04-2014 14:48:35 System Checkpoint
08-04-2014 16:07:03 System Checkpoint
09-04-2014 16:43:51 System Checkpoint
09-04-2014 17:00:27 Software Distribution Service 3.0
10-04-2014 17:00:16 Software Distribution Service 3.0
11-04-2014 17:25:58 System Checkpoint
14-04-2014 16:24:12 System Checkpoint
15-04-2014 16:53:48 System Checkpoint
16-04-2014 17:10:20 System Checkpoint
17-04-2014 17:21:55 System Checkpoint
18-04-2014 14:24:52 Software Distribution Service 3.0
19-04-2014 14:59:04 System Checkpoint
20-04-2014 15:56:58 System Checkpoint
21-04-2014 17:02:47 System Checkpoint
22-04-2014 17:16:32 System Checkpoint
23-04-2014 17:19:27 System Checkpoint
24-04-2014 18:07:51 System Checkpoint
25-04-2014 18:21:54 System Checkpoint
28-04-2014 14:16:33 avast! antivirus system restore point
29-04-2014 14:32:12 System Checkpoint
29-04-2014 17:55:28 29th April
29-04-2014 18:39:58 Restore Operation
29-04-2014 20:51:26 Tweaking.com - Windows Repair
30-04-2014 17:00:35 Software Distribution Service 3.0
01-05-2014 21:51:33 Software Distribution Service 3.0
02-05-2014 18:58:52 Installed Windows XP KB2618444.
05-05-2014 14:52:41 System Checkpoint
06-05-2014 14:57:55 System Checkpoint
07-05-2014 15:03:38 System Checkpoint
08-05-2014 15:25:06 System Checkpoint
08-05-2014 22:23:53 Software Distribution Service 3.0
09-05-2014 21:01:38 Restore Operation
12-05-2014 16:21:19 Driver Booster : Airlink101 Wireless N USB Adapter
12-05-2014 22:23:57 Restore Operation
12-05-2014 22:29:25 avast! antivirus system restore point
13-05-2014 22:39:30 System Checkpoint
14-05-2014 20:56:55 Installed Java 7 Update 55
15-05-2014 17:00:15 Software Distribution Service 3.0
16-05-2014 15:25:19 Installed Windows XP KB942288-v3.
16-05-2014 15:25:36 AA11
16-05-2014 15:30:37 Driver Booster : psc 2200 (DOT4)
16-05-2014 16:13:36 AA11
16-05-2014 16:15:28 AA11
19-05-2014 15:21:25 Removed IObit Apps Toolbar v9.2.
19-05-2014 15:25:33 Removed Ask Toolbar
19-05-2014 15:42:15 Removed Windows Live ID Sign-in Assistant

==================== Hosts content: ==========================

2008-04-14 07:00 - 2014-04-29 16:20 - 00000855 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\ASC7_PerformanceMonitor.job => C:\Program Files\IObit\Advanced SystemCare 7\Monitor.exe
Task: C:\WINDOWS\Tasks\At1.job => C:\DOCUME~1\test\APPLIC~1\PRICEM~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\AWC AutoSweep.job => C:\Program Files\IObit\Advanced SystemCare 3\AutoSweep.exe
Task: C:\WINDOWS\Tasks\AWC Update.job => C:\Program Files\IObit\Advanced SystemCare 3\IObitUpdate.exe
Task: C:\WINDOWS\Tasks\Driver Booster Scan.job => C:\Program Files\IObit\Driver Booster\Scheduler.exe
Task: C:\WINDOWS\Tasks\Driver Support-RTMRules.job => C:\Program Files\Driver Support\Driver Support\DriverSupport.exe
Task: C:\WINDOWS\Tasks\Driver Support-RTMScan.job => C:\Program Files\Driver Support\Driver Support\DriverSupport.exe
Task: C:\WINDOWS\Tasks\Driver Support-RTMUpdater.job => C:\Program Files\Driver Support\Driver Support\DriverSupport.exe
Task: C:\WINDOWS\Tasks\FRU Task #Hewlett-Packard#hp psc 2200 series#1289599611.job => C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf706e2ef7f7f0.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf706e2f6a68d0.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Logon.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-329068152-813497703-1801674531-1003.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
Task: C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-329068152-813497703-1801674531-1003.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
Task: C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-18.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
Task: C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-329068152-813497703-1801674531-1003.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
Task: C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-18.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
Task: C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-329068152-813497703-1801674531-1003.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
Task: C:\WINDOWS\Tasks\SmartDefrag.job => C:\Program Files\IObit\IObit SmartDefrag\IObit SmartDefrag.exe
Task: C:\WINDOWS\Tasks\SmartDefrag3_Update.job => C:\Program Files\IObit\Smart Defrag 3\AutoUpdate.exe
Task: C:\WINDOWS\Tasks\SmartDefrag_Schedule.job => C:\Program Files\IObit\Smart Defrag 2\SmartDefrag.exe
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{EC2759DA-ABCC-4E4B-9CFF-0762D0C18332}.job => C:\WINDOWS\system32\msfeedssync.exe

==================== Loaded Modules (whitelisted) =============

2013-11-20 10:21 - 2013-10-25 12:08 - 00517408 _____ () C:\Program Files\IObit\Advanced SystemCare 7\sqlite3.dll
2014-05-19 11:09 - 2014-05-19 11:09 - 02253312 _____ () C:\Program Files\Alwil Software\Avast5\defs\14051901\algo.dll
2013-08-14 15:19 - 2013-08-14 15:19 - 00039056 _____ () C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
2010-11-02 13:03 - 2003-03-09 15:31 - 00561152 ____R () C:\WINDOWS\system32\hpotscl.dll
2013-11-20 10:22 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files\IObit\Advanced SystemCare 7\madExcept_.bpl
2013-11-20 10:22 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files\IObit\Advanced SystemCare 7\madBasic_.bpl
2013-11-20 10:22 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files\IObit\Advanced SystemCare 7\madDisAsm_.bpl
2013-11-20 10:21 - 2013-01-15 18:47 - 00893248 _____ () C:\Program Files\IObit\Advanced SystemCare 7\webres.dll
2014-05-14 15:33 - 2014-05-14 15:33 - 03839088 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:373E1720

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SecureAssist => ""="service"

==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Photo Downloader => "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
MSCONFIG\startupreg: Advanced SystemCare 7 => "C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto
MSCONFIG\startupreg: Amazing3DAquariumWallpaper =>
MSCONFIG\startupreg: AOL Fast Start => "C:\program files\aol desktop 9.6\AOL.EXE" -b
MSCONFIG\startupreg: AvastUI.exe => "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
MSCONFIG\startupreg: ctfmon.exe => C:\WINDOWS\system32\ctfmon.exe
MSCONFIG\startupreg: F5D7050v3 => C:\Program Files\Belkin\F5D7050v3\Belkinwcui.exe
MSCONFIG\startupreg: HostManager => C:\Program Files\Common Files\AOL\1288819274\ee\AOLSoftware.exe
MSCONFIG\startupreg: HotKeysCmds => C:\WINDOWS\system32\hkcmd.exe
MSCONFIG\startupreg: IgfxTray => C:\WINDOWS\system32\igfxtray.exe
MSCONFIG\startupreg: IObit Malware Fighter => "C:\Program Files\IObit\IObit Malware Fighter\IMF.exe" /autostart
MSCONFIG\startupreg: Malwarebytes' Anti-Malware =>
MSCONFIG\startupreg: Optimizer Pro => C:\Program Files\Optimizer Pro\OptProLauncher.exe
MSCONFIG\startupreg: Persistence => C:\WINDOWS\system32\igfxpers.exe
MSCONFIG\startupreg: PRONoMgrWired => C:\Program Files\Intel\PROSetWired\NCS\PROSet\PRONoMgr.exe
MSCONFIG\startupreg: RTHDCPL => RTHDCPL.EXE
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: swg => "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
MSCONFIG\startupreg: TkBellExe => "C:\program files\real\realplayer\update\realsched.exe" -osboot

==================== Faulty Device Manager Devices =============

Name: Atheros L1 Gigabit Ethernet 10/100/1000Base-T Controller
Description: Atheros L1 Gigabit Ethernet 10/100/1000Base-T Controller
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Atheros
Service: AtcL001
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.

Name:
Description:
Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Microsoft PS/2 Mouse
Description: Microsoft PS/2 Mouse
Class Guid: {4D36E96F-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (05/19/2014 10:25:33 AM) (Source: MsiInstaller) (EventID: 11316) (User: JERRY-BBD10ECC6)
Description: Product: Ask Toolbar -- Error 1316. A network error occurred while attempting to read from the file: C:\WINDOWS\Installer\AskToolbarInstaller-12.10.6_ORJ-V7C.msi

Error: (05/16/2014 11:15:26 AM) (Source: MsiInstaller) (EventID: 11721) (User: JERRY-BBD10ECC6)
Description: Product: AdAwareInstaller -- Error 1721. There is a problem with this Windows Installer package. A program required for this install to complete could not be run. Contact your support personnel or package vendor. Action: UnInstallSecurityCenterApp, location: C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5354.0\\AdAwareSecurityCenter.exe, command: --uninstall

Error: (05/16/2014 11:13:34 AM) (Source: MsiInstaller) (EventID: 11721) (User: JERRY-BBD10ECC6)
Description: Product: AdAwareInstaller -- Error 1721. There is a problem with this Windows Installer package. A program required for this install to complete could not be run. Contact your support personnel or package vendor. Action: UnInstallSecurityCenterApp, location: C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5354.0\\AdAwareSecurityCenter.exe, command: --uninstall

Error: (05/12/2014 03:26:24 PM) (Source: MsiInstaller) (EventID: 11316) (User: JERRY-BBD10ECC6)
Description: Product: Google Update Helper -- Error 1316. A network error occurred while attempting to read from the file: C:\Program Files\PriceMeterLiveUpdate\Update\1.3.23.0\GoogleUpdateHelper.msi

Error: (05/08/2014 05:29:24 PM) (Source: MsiInstaller) (EventID: 1024) (User: JERRY-BBD10ECC6)
Description: Product: Microsoft Office Professional Edition 2003 - Update 'Security Update for Word 2003 (KB2878303): WINWORD' could not be installed. Error code 1603. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127

Error: (05/08/2014 05:29:24 PM) (Source: MsiInstaller) (EventID: 11706) (User: JERRY-BBD10ECC6)
Description: Product: Microsoft Office Professional Edition 2003 -- Error 1706. Setup cannot find the required files. Check your connection to the network, or CD-ROM drive. For other potential solutions to this problem, see C:\Program Files\Microsoft Office\OFFICE11\1033\SETUP.CHM.

Error: (05/08/2014 05:29:08 PM) (Source: MsiInstaller) (EventID: 1024) (User: JERRY-BBD10ECC6)
Description: Product: Microsoft Office Professional Edition 2003 - Update 'Security Update for Publisher 2003 (KB2878299): MSPUB' could not be installed. Error code 1603. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127

Error: (05/08/2014 05:29:08 PM) (Source: MsiInstaller) (EventID: 11706) (User: JERRY-BBD10ECC6)
Description: Product: Microsoft Office Professional Edition 2003 -- Error 1706. Setup cannot find the required files. Check your connection to the network, or CD-ROM drive. For other potential solutions to this problem, see C:\Program Files\Microsoft Office\OFFICE11\1033\SETUP.CHM.

Error: (05/08/2014 05:28:53 PM) (Source: MsiInstaller) (EventID: 1024) (User: JERRY-BBD10ECC6)
Description: Product: Microsoft Office Professional Edition 2003 - Update 'Update for Outlook 2003 Junk E-mail Filter (KB2863822): OUTLFLTR' could not be installed. Error code 1603. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127

Error: (05/08/2014 05:28:53 PM) (Source: MsiInstaller) (EventID: 11706) (User: JERRY-BBD10ECC6)
Description: Product: Microsoft Office Professional Edition 2003 -- Error 1706. Setup cannot find the required files. Check your connection to the network, or CD-ROM drive. For other potential solutions to this problem, see C:\Program Files\Microsoft Office\OFFICE11\1033\SETUP.CHM.


System errors:
=============
Error: (05/19/2014 00:25:00 PM) (Source: Schedule) (EventID: 7901) (User: )
Description: The At1.job command failed to start due to the following error:
%%2147942403

Error: (05/19/2014 11:25:00 AM) (Source: Schedule) (EventID: 7901) (User: )
Description: The At1.job command failed to start due to the following error:
%%2147942403

Error: (05/19/2014 11:08:28 AM) (Source: 0) (EventID: 4311) (User: )
Description:

Error: (05/19/2014 10:48:51 AM) (Source: Dhcp) (EventID: 1000) (User: )
Description: Your computer has lost the lease to its IP address 192.168.1.70 on the
Network Card with network address 001B21481A83.

Error: (05/19/2014 10:48:09 AM) (Source: 0) (EventID: 4311) (User: )
Description:

Error: (05/19/2014 10:29:06 AM) (Source: Dhcp) (EventID: 1000) (User: )
Description: Your computer has lost the lease to its IP address 192.168.1.65 on the
Network Card with network address 00212F396E7A.

Error: (05/19/2014 10:29:06 AM) (Source: Dhcp) (EventID: 1000) (User: )
Description: Your computer has lost the lease to its IP address 192.168.1.70 on the
Network Card with network address 001B21481A83.

Error: (05/19/2014 10:27:59 AM) (Source: 0) (EventID: 4311) (User: )
Description:

Error: (05/19/2014 10:25:00 AM) (Source: Schedule) (EventID: 7901) (User: )
Description: The At1.job command failed to start due to the following error:
%%2147942403

Error: (05/19/2014 10:21:26 AM) (Source: PlugPlayManager) (EventID: 11) (User: )
Description: The device Root\LEGACY_URLFILTER\0000 disappeared from the system without first being prepared for removal.


Microsoft Office Sessions:
=========================
Error: (05/19/2014 10:25:33 AM) (Source: MsiInstaller) (EventID: 11316) (User: JERRY-BBD10ECC6)
Description: Product: Ask Toolbar -- Error 1316. A network error occurred while attempting to read from the file: C:\WINDOWS\Installer\AskToolbarInstaller-12.10.6_ORJ-V7C.msi(NULL)(NULL)(NULL)(NULL)

Error: (05/16/2014 11:15:26 AM) (Source: MsiInstaller) (EventID: 11721) (User: JERRY-BBD10ECC6)
Description: Product: AdAwareInstaller -- Error 1721. There is a problem with this Windows Installer package. A program required for this install to complete could not be run. Contact your support personnel or package vendor. Action: UnInstallSecurityCenterApp, location: C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5354.0\\AdAwareSecurityCenter.exe, command: --uninstall(NULL)(NULL)(NULL)(NULL)

Error: (05/16/2014 11:13:34 AM) (Source: MsiInstaller) (EventID: 11721) (User: JERRY-BBD10ECC6)
Description: Product: AdAwareInstaller -- Error 1721. There is a problem with this Windows Installer package. A program required for this install to complete could not be run. Contact your support personnel or package vendor. Action: UnInstallSecurityCenterApp, location: C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5354.0\\AdAwareSecurityCenter.exe, command: --uninstall(NULL)(NULL)(NULL)(NULL)

Error: (05/12/2014 03:26:24 PM) (Source: MsiInstaller) (EventID: 11316) (User: JERRY-BBD10ECC6)
Description: Product: Google Update Helper -- Error 1316. A network error occurred while attempting to read from the file: C:\Program Files\PriceMeterLiveUpdate\Update\1.3.23.0\GoogleUpdateHelper.msi(NULL)(NULL)(NULL)

Error: (05/08/2014 05:29:24 PM) (Source: MsiInstaller) (EventID: 1024) (User: JERRY-BBD10ECC6)
Description: Microsoft Office Professional Edition 2003Security Update for Word 2003 (KB2878303): WINWORD1603(NULL)

Error: (05/08/2014 05:29:24 PM) (Source: MsiInstaller) (EventID: 11706) (User: JERRY-BBD10ECC6)
Description: Product: Microsoft Office Professional Edition 2003 -- Error 1706. Setup cannot find the required files. Check your connection to the network, or CD-ROM drive. For other potential solutions to this problem, see C:\Program Files\Microsoft Office\OFFICE11\1033\SETUP.CHM.(NULL)(NULL)(NULL)

Error: (05/08/2014 05:29:08 PM) (Source: MsiInstaller) (EventID: 1024) (User: JERRY-BBD10ECC6)
Description: Microsoft Office Professional Edition 2003Security Update for Publisher 2003 (KB2878299): MSPUB1603(NULL)

Error: (05/08/2014 05:29:08 PM) (Source: MsiInstaller) (EventID: 11706) (User: JERRY-BBD10ECC6)
Description: Product: Microsoft Office Professional Edition 2003 -- Error 1706. Setup cannot find the required files. Check your connection to the network, or CD-ROM drive. For other potential solutions to this problem, see C:\Program Files\Microsoft Office\OFFICE11\1033\SETUP.CHM.(NULL)(NULL)(NULL)

Error: (05/08/2014 05:28:53 PM) (Source: MsiInstaller) (EventID: 1024) (User: JERRY-BBD10ECC6)
Description: Microsoft Office Professional Edition 2003Update for Outlook 2003 Junk E-mail Filter (KB2863822): OUTLFLTR1603(NULL)

Error: (05/08/2014 05:28:53 PM) (Source: MsiInstaller) (EventID: 11706) (User: JERRY-BBD10ECC6)
Description: Product: Microsoft Office Professional Edition 2003 -- Error 1706. Setup cannot find the required files. Check your connection to the network, or CD-ROM drive. For other potential solutions to this problem, see C:\Program Files\Microsoft Office\OFFICE11\1033\SETUP.CHM.(NULL)(NULL)(NULL)


==================== Memory info ===========================

Percentage of memory in use: 23%
Total physical RAM: 3319.04 MB
Available physical RAM: 2536.98 MB
Total Pagefile: 5202.89 MB
Available Pagefile: 4567.66 MB
Total Virtual: 2047.88 MB
Available Virtual: 1962.87 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:149.04 GB) (Free:107.36 GB) NTFS ==>[Drive with boot components (Windows XP)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 149 GB) (Disk ID: 42394238)
Partition 1: (Active) - (Size=149 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Share this post


Link to post
Share on other sites

1. Please, go through the Chrome startup settings: https://support.google.com/chrome/answer/95421?hl=en

Remove all Chrome extensions that you don't use: https://support.google.com/chrome/answer/113907?hl=en

 

2. Please, start Notepad.

Copy all text that is in the box:

FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2014-05-14]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA} [2014-05-14]
S3 KCFdcDevice0; No ImagePath
S0 Lbd; system32\DRIVERS\Lbd.sys [X]
S3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [30976 2014-05-01] ()
2014-05-12 15:29 - 2014-05-12 17:24 - 00000000 ____D () C:\Program Files\Optimizer Pro(2)
2014-05-12 15:25 - 2014-05-19 12:25 - 00000412 _____ () C:\WINDOWS\Tasks\At1.job
2014-05-01 16:20 - 2014-05-01 16:38 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\HitmanPro
2014-05-01 16:17 - 2014-05-01 16:17 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Licenses
2014-05-01 16:16 - 2014-05-01 16:16 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Simply Super Software
Task: C:\WINDOWS\Tasks\At1.job => C:\DOCUME~1\test\APPLIC~1\PRICEM~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
C:\DOCUME~1\test\APPLIC~1\PRICEM~1
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:373E1720
and paste in Notepad. Check that no files have been split on two lines.

Save the file as fixlist.txt on the desktop.

 

Start FRST, please.

Click the Fix button.

Wait until the tool has finished.

 

It creates a log file, called Fixlog.txt, on the desktop.

Please, paste the content of that file in your answer.

Share this post


Link to post
Share on other sites

Sorry to take so long getting back. I am only at this computer every few days.

 

The start settings and extensions look good, altho Trovi Search keeps reloading as an option - altho it doesn't hijack.

 

I ran FRST scan. The Fix button doesn't have anything to fix, or I may have misunderstood? Here is the log...

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:21-05-2014
Ran by test (administrator) on JERRY-BBD10ECC6 on 21-05-2014 15:13:44
Running from C:\Documents and Settings\test\My Documents\Downloads
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English(US)
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(IObit) C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(TomTom) C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare 7\Monitor.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(IObit) C:\Program Files\IObit\Advanced SystemCare 7\DelayLoad.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\system32\taskmgr.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Farbar) C:\Documents and Settings\test\My Documents\Downloads\FRST(1).exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [sunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [AdAwareTray] => "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5354.0\AdAwareTray.exe"
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [20145368 2014-05-16] (Realtek Semiconductor Corp.)
HKLM\...\Run: [] => [X]
HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 0
HKLM\...\Policies\Explorer: [NoResolveSearch] 1
HKU\.DEFAULT\...\Run: [AROReminder] => C:\Program Files\ARO 2011\aro.exe -rem
HKU\.DEFAULT\...\Run: [Advanced SystemCare 4] => "C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe"

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xAAEEF04EAF6FCF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
SearchScopes: HKLM - DefaultScope value is missing.
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)
BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Skype Plug-In - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM - ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} http://utilities.pcpitstop.com/Optimize3/pcpitstop2.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Documents and Settings\test\Application Data\Mozilla\Firefox\Profiles\0u54w5zp.default
FF Homepage: https://www.google.com/
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=16.0.3.51 - c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.3 - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.3 - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.3 - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.3.51 - c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPcol400.dll (Catalina Marketing Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpplugin.dll (RealPlayer)
FF Extension: Skype extension - C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1} [2014-05-14]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2014-05-14]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA} [2014-05-14]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Alwil Software\Avast5\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\Alwil Software\Avast5\WebRep\FF [2011-02-23]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-09-10]
FF HKLM\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []

Chrome:
=======
CHR HomePage: https://www.google.com/
CHR StartupUrls: "hxxp://www.google.com/", "https://www.google.com/"
CHR DefaultNewTabURL:
CHR Extension: (Google Docs) - C:\Documents and Settings\test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-01]
CHR Extension: (Google Drive) - C:\Documents and Settings\test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-01]
CHR Extension: (YouTube) - C:\Documents and Settings\test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-01]
CHR Extension: (Win7 Scrollbars) - C:\Documents and Settings\test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cifcnoebhbpdndjendfkpehpfbglgfkc [2014-05-01]
CHR Extension: (Google Search) - C:\Documents and Settings\test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-01]
CHR Extension: (Search by Image (by Google)) - C:\Documents and Settings\test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2014-05-01]
CHR Extension: (avast! Online Security) - C:\Documents and Settings\test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-05-01]
CHR Extension: (Google Wallet) - C:\Documents and Settings\test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-01]
CHR Extension: (Gmail) - C:\Documents and Settings\test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-01]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx [2014-04-28]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2010-11-22]

========================== Services (Whitelisted) =================

R2 AdvancedSystemCareService7; C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe [881952 2014-01-14] (IObit)
S3 AOL ACS; C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe [46640 2006-10-23] (AOL LLC)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [50344 2014-04-28] (AVAST Software)
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-04-14] (Oracle Corporation)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-12-03] (IObit)
S3 NetSvc; C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe [143360 2004-06-16] (Intel® Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
S2 LavasoftAdAwareService11; "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5354.0\AdAwareService.exe" [X]

==================== Drivers (Whitelisted) ====================

R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [20747 2014-03-14] (Meetinghouse Data Communications)
R1 AFS2K; C:\WINDOWS\system32\Drivers\AFS2K.sys [35840 2004-10-07] (Oak Technology Inc.)
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2014-05-16] (Creative)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-04-28] ()
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-04-28] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [54832 2014-05-15] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-04-28] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [777488 2014-05-15] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [411680 2014-05-15] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57672 2014-04-28] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [180632 2014-04-28] ()
S3 AX88772; C:\WINDOWS\System32\DRIVERS\ax88772.sys [19072 2007-07-26] (ASIX Electronics Corp.)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R3 E1000; C:\WINDOWS\System32\DRIVERS\e1000325.sys [171152 2008-08-20] (Intel Corporation)
S3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [30976 2014-05-01] ()
R3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [56352 2014-05-16] (HP)
R3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [22928 2014-05-16] (HP)
R3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [28000 2014-05-16] (HP)
R0 JRAID; C:\WINDOWS\System32\DRIVERS\jraid.sys [83296 2014-01-14] (JMicron Technology Corp.)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [107736 2014-05-16] (Malwarebytes Corporation)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2014-05-16] (Creative Technology Ltd.)
S3 motport; C:\WINDOWS\System32\DRIVERS\motport.sys [23680 2007-06-18] (Motorola)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [15808 2013-12-24] (IObit)
S3 Trufos; C:\WINDOWS\System32\DRIVERS\Trufos.sys [340624 2013-07-17] (BitDefender S.R.L.)
R3 wanatw; C:\WINDOWS\System32\DRIVERS\wanatw4.sys [33588 2003-01-10] (America Online, Inc.)
R3 WinDriver6; C:\WINDOWS\System32\drivers\windrvr6.sys [194362 2006-10-16] (Jungo)
S3 AtcL001; system32\DRIVERS\l151x86.sys [X]
S3 KCFdcDevice0; No ImagePath
S0 Lbd; system32\DRIVERS\Lbd.sys [X]
U5 P3; C:\Windows\System32\Drivers\P3.sys [42752 2008-04-14] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-21 15:08 - 2014-05-21 15:08 - 00001180 _____ () C:\Documents and Settings\test\Desktop\fixlist.txt
2014-05-19 13:17 - 2014-05-21 15:13 - 00000000 ____D () C:\FRST
2014-05-19 10:44 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\WINDOWS\system32\sqlite3.dll
2014-05-19 10:43 - 2014-05-19 10:46 - 00000000 ____D () C:\AdwCleaner
2014-05-19 10:17 - 2014-05-19 10:18 - 00004526 _____ () C:\INSTALLHELPER.LOG
2014-05-16 11:15 - 2014-05-16 11:15 - 00000000 ____D () C:\Program Files\Common Files\Lavasoft
2014-05-16 10:55 - 2014-05-16 10:55 - 00000181 _____ () C:\Documents and Settings\test\My Documents\Ad-Aware_Report_Quick_Manual_2014-05-16T10-46-34.203125.xml
2014-05-16 10:42 - 2014-05-16 10:42 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Lavasoft
2014-05-16 10:36 - 2014-05-16 10:36 - 00000000 ____D () C:\Documents and Settings\test\Application Data\LavasoftStatistics
2014-05-16 10:31 - 2014-05-21 15:02 - 00000280 _____ () C:\WINDOWS\Tasks\SmartDefrag3_Update.job
2014-05-16 10:30 - 2014-05-16 10:30 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Smart Defrag 3
2014-05-16 10:30 - 2014-03-10 18:17 - 00109856 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll
2014-05-16 10:30 - 2013-12-24 10:40 - 00015808 _____ (IObit) C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys
2014-05-16 10:28 - 2014-05-16 10:28 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Driver Booster
2014-05-16 10:27 - 2014-05-19 10:42 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Ad-Aware Antivirus
2014-05-16 10:26 - 2014-05-16 15:34 - 00035569 _____ () C:\WINDOWS\setupapi.log
2014-05-16 10:26 - 2014-05-16 10:26 - 00000000 ____D () C:\Program Files\Lavasoft
2014-05-16 10:25 - 2014-05-16 10:25 - 00017507 _____ () C:\WINDOWS\KB942288-v3.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00006729 _____ () C:\WINDOWS\iis6.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00006182 _____ () C:\WINDOWS\FaxSetup.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00002956 _____ () C:\WINDOWS\ocgen.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00002821 _____ () C:\WINDOWS\tsoc.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00002095 _____ () C:\WINDOWS\comsetup.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00001906 _____ () C:\WINDOWS\msmqinst.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00001374 _____ () C:\WINDOWS\imsins.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00001266 _____ () C:\WINDOWS\ntdtcsetup.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00001083 _____ () C:\WINDOWS\netfxocm.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00000425 _____ () C:\WINDOWS\MedCtrOC.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00000342 _____ () C:\WINDOWS\ocmsn.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00000311 _____ () C:\WINDOWS\tabletoc.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00000309 _____ () C:\WINDOWS\msgsocm.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB942288-v3$
2014-05-16 10:25 - 2014-05-16 10:25 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00000000 _____ () C:\WINDOWS\setupact.log
2014-05-16 10:07 - 2014-05-16 10:08 - 00000000 ____D () C:\Avenger
2014-05-16 09:06 - 2014-05-21 15:02 - 00032654 _____ () C:\WINDOWS\SchedLgU.Txt
2014-05-16 09:06 - 2014-05-21 15:02 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-05-16 09:06 - 2014-05-21 15:02 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2014-05-16 09:06 - 2014-05-16 09:06 - 00000000 _____ () C:\WINDOWS\Sti_Trace.log
2014-05-15 13:47 - 2014-05-21 15:02 - 00000878 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf706e2ef7f7f0.job
2014-05-15 13:47 - 2014-05-21 14:53 - 00000882 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf706e2f6a68d0.job
2014-05-15 09:22 - 2014-05-15 09:22 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Sun
2014-05-14 16:01 - 2014-05-14 16:01 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Java
2014-05-14 16:01 - 2014-04-14 20:13 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2014-05-14 16:01 - 2014-04-14 20:05 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2014-05-14 16:01 - 2014-04-14 20:05 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2014-05-14 16:01 - 2014-04-14 20:04 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2014-05-14 16:01 - 2014-04-14 19:47 - 00145408 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2014-05-14 15:57 - 2014-05-14 16:01 - 00003966 _____ () C:\WINDOWS\system32\jupdate-1.7.0_55-b14.log
2014-05-14 15:33 - 2014-05-14 15:33 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-05-14 15:01 - 2014-05-14 15:01 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Google
2014-05-14 14:59 - 2014-05-14 14:59 - 00000803 _____ () C:\Documents and Settings\test\Desktop\Internet Explorer.lnk
2014-05-12 17:29 - 2014-05-12 17:29 - 00000000 ____D () C:\Documents and Settings\Jerry Richardson\Application Data\IObit
2014-05-12 17:27 - 2014-05-12 17:27 - 00000000 ____D () C:\b352f5a442b9f53f13d073d5
2014-05-12 17:26 - 2014-05-12 17:26 - 00000000 ____D () C:\Documents and Settings\test\Desktop\Florence woman of year - raw
2014-05-12 17:14 - 2014-05-12 17:14 - 00000664 _____ () C:\WINDOWS\system32\d3d9caps.tmp
2014-05-12 15:29 - 2014-05-12 17:24 - 00000000 ____D () C:\Program Files\Optimizer Pro(2)
2014-05-12 15:25 - 2014-05-21 14:25 - 00000412 _____ () C:\WINDOWS\Tasks\At1.job
2014-05-12 15:18 - 2014-05-12 15:18 - 00000000 ____D () C:\Program Files\VideoLAN
2014-05-12 11:18 - 2014-05-21 15:02 - 00000272 _____ () C:\WINDOWS\Tasks\Driver Booster Scan.job
2014-05-12 10:53 - 2014-05-12 10:53 - 00000000 __SHD () C:\Documents and Settings\test\IECompatCache
2014-05-12 10:46 - 2014-05-12 10:46 - 00000000 __SHD () C:\Documents and Settings\test\PrivacIE
2014-05-08 17:08 - 2014-05-08 17:08 - 00000000 ____D () C:\Documents and Settings\test\Application Data\RealNetworks
2014-05-08 16:33 - 2014-05-08 16:33 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Mozilla
2014-05-08 14:02 - 2014-05-21 12:32 - 00000476 _____ () C:\WINDOWS\Tasks\Driver Support-RTMUpdater.job
2014-05-08 14:02 - 2014-05-08 14:02 - 00047136 _____ () C:\Documents and Settings\test\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2014-05-08 14:02 - 2014-05-08 14:02 - 00000478 _____ () C:\WINDOWS\Tasks\Driver Support-RTMScan.job
2014-05-08 14:02 - 2014-05-08 14:02 - 00000466 _____ () C:\WINDOWS\Tasks\Driver Support-RTMRules.job
2014-05-08 14:02 - 2014-05-08 14:02 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Driver Support
2014-05-08 14:01 - 2014-05-14 14:59 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Mozilla
2014-05-08 14:01 - 2014-05-08 14:01 - 00000000 ____D () C:\Program Files\Driver Support
2014-05-07 08:58 - 2014-05-07 08:58 - 35348480 _____ () C:\WINDOWS\system32\config\software.iodefrag.bak
2014-05-07 08:58 - 2014-05-07 08:58 - 05349376 _____ () C:\WINDOWS\system32\config\default.iodefrag.bak
2014-05-07 08:58 - 2014-05-07 08:58 - 00065536 _____ () C:\WINDOWS\system32\config\SECURITY.iodefrag.bak
2014-05-07 08:58 - 2014-05-07 08:58 - 00028672 _____ () C:\WINDOWS\system32\config\SAM.iodefrag.bak
2014-05-02 13:58 - 2014-05-02 13:58 - 00000000 ___HD () C:\WINDOWS\$hf_mig$
2014-05-01 16:55 - 2014-05-01 16:55 - 00000577 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\LMIR0001.tmp.bat
2014-05-01 16:55 - 2014-05-01 16:55 - 00000502 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\LMIR0001.tmp_r.bat
2014-05-01 16:41 - 2014-05-01 16:41 - 00030976 _____ () C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2014-05-01 16:39 - 2014-05-01 16:39 - 00036222 _____ () C:\WINDOWS\system32\.crusader
2014-05-01 16:20 - 2014-05-01 16:38 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\HitmanPro
2014-05-01 16:17 - 2014-05-01 16:17 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Licenses
2014-05-01 16:16 - 2014-05-01 16:16 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Simply Super Software
2014-05-01 14:50 - 2014-05-01 14:50 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla
2014-05-01 14:50 - 2014-05-01 14:50 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Mozilla
2014-05-01 14:02 - 2014-05-01 14:03 - 00000738 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Outlook Express.lnk
2014-05-01 14:02 - 2014-05-01 14:02 - 00000803 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Internet Explorer.lnk
2014-05-01 14:00 - 2014-05-01 14:00 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\IObit
2014-05-01 13:46 - 2014-05-02 09:08 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\LogMeIn Rescue Applet
2014-05-01 13:45 - 2014-05-01 13:45 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Google
2014-05-01 13:43 - 2014-05-12 17:27 - 00000000 ____D () C:\Documents and Settings\Administrator
2014-05-01 13:43 - 2014-05-01 18:15 - 00000178 ___SH () C:\Documents and Settings\Administrator\ntuser.ini
2014-05-01 13:43 - 2014-05-01 14:02 - 00000792 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Windows Media Player.lnk
2014-05-01 13:43 - 2014-05-01 14:02 - 00000000 ___RD () C:\Documents and Settings\Administrator\Start Menu\Programs\Accessories
2014-05-01 13:43 - 2013-10-17 12:07 - 00000000 __SHD () C:\Documents and Settings\Administrator\IETldCache
2014-05-01 13:43 - 2013-02-12 10:29 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Sun
2014-05-01 13:43 - 2010-11-01 17:27 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Macromedia
2014-05-01 13:43 - 2010-11-01 17:19 - 00001599 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Remote Assistance.lnk
2014-05-01 13:03 - 2014-05-15 13:47 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Google
2014-05-01 13:02 - 2014-05-01 13:02 - 00051712 ___SH () C:\Documents and Settings\test\My Documents\Thumbs.db
2014-05-01 13:01 - 2014-05-14 15:33 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Adobe
2014-05-01 12:58 - 2014-05-01 13:02 - 00005632 _____ () C:\Documents and Settings\test\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-01 12:52 - 2014-05-01 12:52 - 00000000 ____D () C:\Documents and Settings\test\My Documents\x delete
2014-05-01 12:52 - 2014-05-01 12:52 - 00000000 ____D () C:\Documents and Settings\test\My Documents\Updater5
2014-05-01 12:52 - 2011-09-29 13:28 - 00001506 _____ () C:\Documents and Settings\test\My Documents\Bio-station-Alpha.kml
2014-05-01 12:52 - 2011-07-06 14:17 - 177211566 _____ () C:\Documents and Settings\test\My Documents\ece316e18e75785dfb29f870f3436b74.mp4
2014-05-01 12:52 - 2011-07-01 13:42 - 00000085 _____ () C:\Documents and Settings\test\My Documents\harrington.ram
2014-05-01 12:52 - 2011-06-21 17:17 - 160585367 _____ () C:\Documents and Settings\test\My Documents\9f5a147a4a56b7494ccc332b3227d7c6.mp4
2014-05-01 12:49 - 2014-05-01 12:49 - 00000000 ____D () C:\Documents and Settings\test\My Documents\TomTom
2014-05-01 12:47 - 2014-05-01 12:49 - 00000000 ____D () C:\Documents and Settings\test\My Documents\Scuba trips
2014-05-01 12:41 - 2014-05-01 12:47 - 00000000 ___RD () C:\Documents and Settings\test\My Documents\pics and videos need sorting
2014-05-01 12:41 - 2014-05-01 12:41 - 00000000 ___RD () C:\Documents and Settings\test\My Documents\office files
2014-05-01 12:41 - 2014-05-01 12:41 - 00000000 ____D () C:\Documents and Settings\test\My Documents\My Smilebox Creations
2014-05-01 12:41 - 2014-05-01 12:41 - 00000000 ____D () C:\Documents and Settings\test\My Documents\Masons Folder
2014-05-01 12:29 - 2014-05-19 10:30 - 00000000 ___RD () C:\Documents and Settings\test\Desktop\Security & Tools Folder
2014-05-01 12:29 - 2014-05-15 18:49 - 00000000 ___RD () C:\Documents and Settings\test\Desktop\Photo & Video Tools
2014-05-01 12:29 - 2014-04-29 15:50 - 00001812 _____ () C:\Documents and Settings\test\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2014-05-01 12:29 - 2014-04-25 13:50 - 00000770 _____ () C:\Documents and Settings\test\Desktop\Video Performer.lnk
2014-05-01 12:29 - 2014-01-20 15:41 - 00000075 _____ () C:\Documents and Settings\test\Desktop\product-gear-ring.php.url
2014-05-01 12:29 - 2013-07-19 16:34 - 00000382 _____ () C:\Documents and Settings\test\Desktop\attpass.txt
2014-05-01 12:29 - 2013-07-16 14:47 - 00000396 _____ () C:\Documents and Settings\test\Desktop\Shortcut to Wireless Network Connection.lnk
2014-05-01 12:28 - 2014-05-01 12:29 - 00000000 ____D () C:\Documents and Settings\test\My Documents\Florence woman of year - raw
2014-05-01 12:12 - 2014-05-19 10:20 - 00000000 ____D () C:\Documents and Settings\test\Application Data\IObit
2014-05-01 12:00 - 2014-05-14 15:33 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Adobe
2014-05-01 12:00 - 2014-05-01 12:00 - 00000803 _____ () C:\Documents and Settings\test\Start Menu\Programs\Internet Explorer.lnk
2014-05-01 12:00 - 2014-05-01 12:00 - 00000738 _____ () C:\Documents and Settings\test\Start Menu\Programs\Outlook Express.lnk
2014-05-01 12:00 - 2014-05-01 12:00 - 00000000 ____D () C:\Documents and Settings\test\Application Data\AVAST Software
2014-05-01 11:59 - 2014-05-21 15:01 - 00000178 ___SH () C:\Documents and Settings\test\ntuser.ini
2014-05-01 11:59 - 2014-05-21 15:01 - 00000000 ____D () C:\Documents and Settings\test
2014-05-01 11:59 - 2014-05-01 12:00 - 00000792 _____ () C:\Documents and Settings\test\Start Menu\Programs\Windows Media Player.lnk
2014-05-01 11:59 - 2014-05-01 12:00 - 00000000 ___RD () C:\Documents and Settings\test\Start Menu\Programs\Accessories
2014-05-01 11:59 - 2014-05-01 11:59 - 00000000 ____D () C:\IObit
2014-05-01 11:59 - 2013-10-17 12:07 - 00000000 __SHD () C:\Documents and Settings\test\IETldCache
2014-05-01 11:59 - 2013-02-12 10:29 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Sun
2014-05-01 11:59 - 2010-11-01 17:27 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Macromedia
2014-05-01 11:59 - 2010-11-01 17:19 - 00001599 _____ () C:\Documents and Settings\test\Start Menu\Programs\Remote Assistance.lnk
2014-05-01 11:38 - 2014-05-21 15:03 - 01683333 _____ () C:\WINDOWS\WindowsUpdate.log
2014-05-01 10:32 - 2014-05-01 10:32 - 00000682 _____ () C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
2014-05-01 10:32 - 2014-05-01 10:32 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-01 10:32 - 2014-05-01 10:32 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\CCleaner
2014-04-29 16:19 - 2014-04-29 16:19 - 00000000 ____D () C:\Documents and Settings\LocalService\Start Menu\Programs\Accessories
2014-04-29 15:52 - 2014-04-29 16:23 - 00181064 _____ (Sysinternals) C:\WINDOWS\PSEXESVC.EXE
2014-04-29 15:51 - 2014-04-29 15:51 - 00000000 ____D () C:\RegBackup
2014-04-29 15:50 - 2014-04-29 15:50 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Tweaking.com
2014-04-29 15:46 - 2014-04-29 15:46 - 00000000 ____D () C:\Program Files\Tweaking.com
2014-04-29 14:04 - 2014-04-29 15:38 - 00000000 ____D () C:\Documents and Settings\abc
2014-04-29 13:35 - 2014-04-29 13:35 - 00000000 _____ () C:\WINDOWS\system32\앀ɗ㹨Ɋlotserviceruntime.log
2014-04-29 13:27 - 2014-04-29 13:27 - 00000000 __SHD () C:\WINDOWS\CSC
2014-04-29 12:14 - 2014-04-29 13:52 - 00000000 ____D () C:\WINDOWS\pss
2014-04-28 09:17 - 2014-04-28 09:17 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-04-28 09:17 - 2014-04-28 09:17 - 00024184 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys

==================== One Month Modified Files and Folders =======

2014-05-21 15:13 - 2014-05-19 13:17 - 00000000 ____D () C:\FRST
2014-05-21 15:11 - 2010-11-01 17:24 - 00000444 ____H () C:\WINDOWS\Tasks\User_Feed_Synchronization-{EC2759DA-ABCC-4E4B-9CFF-0762D0C18332}.job
2014-05-21 15:08 - 2014-05-21 15:08 - 00001180 _____ () C:\Documents and Settings\test\Desktop\fixlist.txt
2014-05-21 15:03 - 2014-05-01 11:38 - 01683333 _____ () C:\WINDOWS\WindowsUpdate.log
2014-05-21 15:02 - 2014-05-16 10:31 - 00000280 _____ () C:\WINDOWS\Tasks\SmartDefrag3_Update.job
2014-05-21 15:02 - 2014-05-16 09:06 - 00032654 _____ () C:\WINDOWS\SchedLgU.Txt
2014-05-21 15:02 - 2014-05-16 09:06 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-05-21 15:02 - 2014-05-16 09:06 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2014-05-21 15:02 - 2014-05-15 13:47 - 00000878 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf706e2ef7f7f0.job
2014-05-21 15:02 - 2014-05-12 11:18 - 00000272 _____ () C:\WINDOWS\Tasks\Driver Booster Scan.job
2014-05-21 15:02 - 2014-03-17 09:14 - 00000244 _____ () C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Logon.job
2014-05-21 15:02 - 2013-11-20 10:37 - 00000266 _____ () C:\WINDOWS\Tasks\ASC7_PerformanceMonitor.job
2014-05-21 15:02 - 2013-06-13 12:02 - 00000300 _____ () C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-329068152-813497703-1801674531-1003.job
2014-05-21 15:02 - 2012-07-02 15:26 - 00000366 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-05-21 15:02 - 2011-08-01 09:09 - 00000280 _____ () C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-18.job
2014-05-21 15:02 - 2011-07-01 13:46 - 00000300 _____ () C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-329068152-813497703-1801674531-1003.job
2014-05-21 15:02 - 2011-03-07 11:59 - 00000398 _____ () C:\WINDOWS\Tasks\AWC AutoSweep.job
2014-05-21 15:02 - 2010-11-01 17:25 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-05-21 15:02 - 2008-04-14 07:00 - 00001374 _____ () C:\WINDOWS\system32\wpa.dbl
2014-05-21 15:01 - 2014-05-01 11:59 - 00000178 ___SH () C:\Documents and Settings\test\ntuser.ini
2014-05-21 15:01 - 2014-05-01 11:59 - 00000000 ____D () C:\Documents and Settings\test
2014-05-21 14:53 - 2014-05-15 13:47 - 00000882 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf706e2f6a68d0.job
2014-05-21 14:43 - 2011-08-01 09:09 - 00000288 _____ () C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-18.job
2014-05-21 14:25 - 2014-05-12 15:25 - 00000412 _____ () C:\WINDOWS\Tasks\At1.job
2014-05-21 14:25 - 2012-03-30 16:28 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-05-21 14:05 - 2010-11-03 17:37 - 00000486 _____ () C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
2014-05-21 12:32 - 2014-05-08 14:02 - 00000476 _____ () C:\WINDOWS\Tasks\Driver Support-RTMUpdater.job
2014-05-21 12:00 - 2011-10-13 13:11 - 00000304 _____ () C:\WINDOWS\Tasks\SmartDefrag_Schedule.job
2014-05-21 12:00 - 2010-11-03 17:01 - 00000406 _____ () C:\WINDOWS\Tasks\SmartDefrag.job
2014-05-21 09:15 - 2013-11-20 10:22 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\ProductData
2014-05-20 10:49 - 2012-12-21 16:34 - 00000308 _____ () C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-329068152-813497703-1801674531-1003.job
2014-05-19 16:30 - 2011-07-01 13:46 - 00000308 _____ () C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-329068152-813497703-1801674531-1003.job
2014-05-19 16:00 - 2010-11-02 15:00 - 00000488 _____ () C:\hpfr5550.xml
2014-05-19 10:46 - 2014-05-19 10:43 - 00000000 ____D () C:\AdwCleaner
2014-05-19 10:42 - 2014-05-16 10:27 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Ad-Aware Antivirus
2014-05-19 10:42 - 2013-05-06 16:28 - 00000000 ____D () C:\WINDOWS\system32\appmgmt
2014-05-19 10:30 - 2014-05-01 12:29 - 00000000 ___RD () C:\Documents and Settings\test\Desktop\Security & Tools Folder
2014-05-19 10:20 - 2014-05-01 12:12 - 00000000 ____D () C:\Documents and Settings\test\Application Data\IObit
2014-05-19 10:20 - 2010-11-03 16:58 - 00000000 ____D () C:\Program Files\IObit
2014-05-19 10:18 - 2014-05-19 10:17 - 00004526 _____ () C:\INSTALLHELPER.LOG
2014-05-16 15:34 - 2014-05-16 10:26 - 00035569 _____ () C:\WINDOWS\setupapi.log
2014-05-16 11:15 - 2014-05-16 11:15 - 00000000 ____D () C:\Program Files\Common Files\Lavasoft
2014-05-16 10:55 - 2014-05-16 10:55 - 00000181 _____ () C:\Documents and Settings\test\My Documents\Ad-Aware_Report_Quick_Manual_2014-05-16T10-46-34.203125.xml
2014-05-16 10:42 - 2014-05-16 10:42 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Lavasoft
2014-05-16 10:40 - 2014-01-14 14:56 - 00000000 ____D () C:\Documents and Settings\NetworkService\Application Data\IObit
2014-05-16 10:36 - 2014-05-16 10:36 - 00000000 ____D () C:\Documents and Settings\test\Application Data\LavasoftStatistics
2014-05-16 10:32 - 2011-05-24 10:48 - 00606440 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\Drivers\RTL8192su.sys
2014-05-16 10:32 - 2010-11-02 13:55 - 00000000 ____D () C:\WINDOWS\system32\RTCOM
2014-05-16 10:32 - 2010-11-01 16:39 - 00000000 ____D () C:\WINDOWS\system32\ReinstallBackups
2014-05-16 10:31 - 2014-01-14 14:42 - 00087256 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoInstIIXP.dll
2014-05-16 10:31 - 2014-01-14 14:42 - 00026084 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2014-05-16 10:31 - 2011-01-07 17:58 - 01691480 _____ (Creative) C:\WINDOWS\system32\Drivers\Ambfilt.sys
2014-05-16 10:31 - 2011-01-07 17:58 - 01395800 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\Monfilt.sys
2014-05-16 10:31 - 2011-01-07 17:58 - 00359016 _____ (Realtek Semiconductor Crop.) C:\WINDOWS\vncutil.exe
2014-05-16 10:31 - 2011-01-07 17:58 - 00129640 _____ (Realtek Semiconductor) C:\WINDOWS\RtkAudioService.exe
2014-05-16 10:31 - 2005-09-23 19:56 - 05630168 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtkHDAud.sys
2014-05-16 10:31 - 2005-09-22 14:36 - 20145368 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
2014-05-16 10:31 - 2005-09-21 17:29 - 01523416 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlUpd.exe
2014-05-16 10:31 - 2005-09-21 16:32 - 02815592 _____ (RealTek Semicoductor Corp.) C:\WINDOWS\ALCWZRD.EXE
2014-05-16 10:31 - 2005-09-21 16:23 - 09721960 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RTLCPL.EXE
2014-05-16 10:31 - 2005-09-21 11:25 - 00285288 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\ALSNDMGR.CPL
2014-05-16 10:31 - 2005-09-21 11:24 - 00084584 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SOUNDMAN.EXE
2014-05-16 10:31 - 2005-09-15 18:26 - 00891976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSndMgr.CPL
2014-05-16 10:31 - 2005-09-07 11:40 - 02180712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\MicCal.exe
2014-05-16 10:31 - 2005-05-03 19:43 - 00064104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\ALCMTR.EXE
2014-05-16 10:30 - 2014-05-16 10:30 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Smart Defrag 3
2014-05-16 10:30 - 2010-11-02 13:04 - 00056352 _____ (HP) C:\WINDOWS\system32\Drivers\HPZid412.sys
2014-05-16 10:30 - 2010-11-02 13:04 - 00028000 _____ (HP) C:\WINDOWS\system32\Drivers\HPZius12.sys
2014-05-16 10:30 - 2010-11-02 13:04 - 00022928 _____ (HP) C:\WINDOWS\system32\Drivers\HPZipr12.sys
2014-05-16 10:28 - 2014-05-16 10:28 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Driver Booster
2014-05-16 10:26 - 2014-05-16 10:26 - 00000000 ____D () C:\Program Files\Lavasoft
2014-05-16 10:25 - 2014-05-16 10:25 - 00017507 _____ () C:\WINDOWS\KB942288-v3.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00006729 _____ () C:\WINDOWS\iis6.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00006182 _____ () C:\WINDOWS\FaxSetup.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00002956 _____ () C:\WINDOWS\ocgen.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00002821 _____ () C:\WINDOWS\tsoc.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00002095 _____ () C:\WINDOWS\comsetup.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00001906 _____ () C:\WINDOWS\msmqinst.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00001374 _____ () C:\WINDOWS\imsins.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00001266 _____ () C:\WINDOWS\ntdtcsetup.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00001083 _____ () C:\WINDOWS\netfxocm.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00000425 _____ () C:\WINDOWS\MedCtrOC.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00000342 _____ () C:\WINDOWS\ocmsn.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00000311 _____ () C:\WINDOWS\tabletoc.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00000309 _____ () C:\WINDOWS\msgsocm.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB942288-v3$
2014-05-16 10:25 - 2014-05-16 10:25 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-05-16 10:25 - 2014-05-16 10:25 - 00000000 _____ () C:\WINDOWS\setupact.log
2014-05-16 10:25 - 2010-11-01 11:02 - 00000000 ____D () C:\WINDOWS\system32\mui
2014-05-16 10:24 - 2010-11-03 16:57 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Lavasoft
2014-05-16 10:12 - 2014-01-14 14:19 - 00107736 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2014-05-16 10:08 - 2014-05-16 10:07 - 00000000 ____D () C:\Avenger
2014-05-16 10:08 - 2011-04-07 14:10 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\IObit
2014-05-16 09:06 - 2014-05-16 09:06 - 00000000 _____ () C:\WINDOWS\Sti_Trace.log
2014-05-15 18:49 - 2014-05-01 12:29 - 00000000 ___RD () C:\Documents and Settings\test\Desktop\Photo & Video Tools
2014-05-15 18:43 - 2013-10-14 17:26 - 35348480 _____ () C:\WINDOWS\system32\config\software.iobit
2014-05-15 18:43 - 2013-10-14 17:26 - 05349376 _____ () C:\WINDOWS\system32\config\default.iobit
2014-05-15 18:43 - 2013-10-14 17:26 - 00065536 _____ () C:\WINDOWS\system32\config\SECURITY.iobit
2014-05-15 18:43 - 2013-10-14 17:26 - 00028672 _____ () C:\WINDOWS\system32\config\SAM.iobit
2014-05-15 18:43 - 2010-11-01 17:25 - 00000000 __SHD () C:\Documents and Settings\LocalService
2014-05-15 18:43 - 2010-11-01 17:22 - 00000000 __SHD () C:\Documents and Settings\NetworkService
2014-05-15 13:48 - 2013-08-29 10:41 - 00001813 _____ () C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
2014-05-15 13:47 - 2014-05-01 13:03 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Google
2014-05-15 09:22 - 2014-05-15 09:22 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Sun
2014-05-15 09:17 - 2011-02-23 16:03 - 00777488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2014-05-15 09:17 - 2010-11-01 17:02 - 00411680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2014-05-15 09:17 - 2010-11-01 17:02 - 00054832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswrdr.sys
2014-05-14 16:01 - 2014-05-14 16:01 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Java
2014-05-14 16:01 - 2014-05-14 15:57 - 00003966 _____ () C:\WINDOWS\system32\jupdate-1.7.0_55-b14.log
2014-05-14 16:01 - 2012-03-02 15:14 - 00000000 ____D () C:\Program Files\Java
2014-05-14 15:50 - 2012-07-02 15:51 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-05-14 15:40 - 2012-03-30 16:28 - 00692400 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-05-14 15:40 - 2011-06-28 14:31 - 00070832 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-05-14 15:36 - 2012-12-03 16:25 - 00002347 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-14 15:36 - 2010-11-01 17:29 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-05-14 15:33 - 2014-05-14 15:33 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-05-14 15:33 - 2014-05-01 13:01 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Adobe
2014-05-14 15:33 - 2014-05-01 12:00 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Adobe
2014-05-14 15:33 - 2010-11-01 17:27 - 00000000 ____D () C:\Program Files\Common Files\Adobe AIR
2014-05-14 15:01 - 2014-05-14 15:01 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Google
2014-05-14 14:59 - 2014-05-14 14:59 - 00000803 _____ () C:\Documents and Settings\test\Desktop\Internet Explorer.lnk
2014-05-14 14:59 - 2014-05-08 14:01 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Mozilla
2014-05-12 17:29 - 2014-05-12 17:29 - 00000000 ____D () C:\Documents and Settings\Jerry Richardson\Application Data\IObit
2014-05-12 17:27 - 2014-05-12 17:27 - 00000000 ____D () C:\b352f5a442b9f53f13d073d5
2014-05-12 17:27 - 2014-05-01 13:43 - 00000000 ____D () C:\Documents and Settings\Administrator
2014-05-12 17:27 - 2010-11-01 17:16 - 00000000 ____D () C:\WINDOWS\Registration
2014-05-12 17:26 - 2014-05-12 17:26 - 00000000 ____D () C:\Documents and Settings\test\Desktop\Florence woman of year - raw
2014-05-12 17:24 - 2014-05-12 15:29 - 00000000 ____D () C:\Program Files\Optimizer Pro(2)
2014-05-12 17:19 - 2008-04-14 07:00 - 00000823 _____ () C:\WINDOWS\win.ini
2014-05-12 17:14 - 2014-05-12 17:14 - 00000664 _____ () C:\WINDOWS\system32\d3d9caps.tmp
2014-05-12 17:14 - 2010-11-01 17:13 - 00000664 _____ () C:\WINDOWS\system32\d3d9caps.dat
2014-05-12 15:34 - 2013-10-18 17:45 - 00131072 _____ () C:\WINDOWS\system32\config\WindowsPowerShell.evt
2014-05-12 15:18 - 2014-05-12 15:18 - 00000000 ____D () C:\Program Files\VideoLAN
2014-05-12 10:53 - 2014-05-12 10:53 - 00000000 __SHD () C:\Documents and Settings\test\IECompatCache
2014-05-12 10:46 - 2014-05-12 10:46 - 00000000 __SHD () C:\Documents and Settings\test\PrivacIE
2014-05-08 20:21 - 2011-03-07 11:59 - 00000410 _____ () C:\WINDOWS\Tasks\AWC Update.job
2014-05-08 17:28 - 2010-11-01 11:02 - 00000000 ____D () C:\WINDOWS\pchealth
2014-05-08 17:08 - 2014-05-08 17:08 - 00000000 ____D () C:\Documents and Settings\test\Application Data\RealNetworks
2014-05-08 16:33 - 2014-05-08 16:33 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Mozilla
2014-05-08 15:00 - 2014-03-17 09:13 - 00000238 _____ () C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job
2014-05-08 14:02 - 2014-05-08 14:02 - 00047136 _____ () C:\Documents and Settings\test\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2014-05-08 14:02 - 2014-05-08 14:02 - 00000478 _____ () C:\WINDOWS\Tasks\Driver Support-RTMScan.job
2014-05-08 14:02 - 2014-05-08 14:02 - 00000466 _____ () C:\WINDOWS\Tasks\Driver Support-RTMRules.job
2014-05-08 14:02 - 2014-05-08 14:02 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Driver Support
2014-05-08 14:01 - 2014-05-08 14:01 - 00000000 ____D () C:\Program Files\Driver Support
2014-05-07 08:59 - 2010-11-01 11:08 - 00065536 _____ () C:\WINDOWS\system32\config\SECURITY.iodefrag.old
2014-05-07 08:59 - 2010-11-01 11:07 - 35389440 _____ () C:\WINDOWS\system32\config\software.iodefrag.old
2014-05-07 08:58 - 2014-05-07 08:58 - 35348480 _____ () C:\WINDOWS\system32\config\software.iodefrag.bak
2014-05-07 08:58 - 2014-05-07 08:58 - 05349376 _____ () C:\WINDOWS\system32\config\default.iodefrag.bak
2014-05-07 08:58 - 2014-05-07 08:58 - 00065536 _____ () C:\WINDOWS\system32\config\SECURITY.iodefrag.bak
2014-05-07 08:58 - 2014-05-07 08:58 - 00028672 _____ () C:\WINDOWS\system32\config\SAM.iodefrag.bak
2014-05-06 17:35 - 2010-11-01 11:08 - 00262144 _____ () C:\WINDOWS\system32\config\SAM.iodefrag.old
2014-05-06 17:35 - 2010-11-01 11:07 - 05349376 _____ () C:\WINDOWS\system32\config\default.iodefrag.old
2014-05-02 13:58 - 2014-05-02 13:58 - 00000000 ___HD () C:\WINDOWS\$hf_mig$
2014-05-02 10:14 - 2010-11-01 17:26 - 00000000 ____D () C:\Documents and Settings\Jerry Richardson
2014-05-02 09:08 - 2014-05-01 13:46 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\LogMeIn Rescue Applet
2014-05-01 18:15 - 2014-05-01 13:43 - 00000178 ___SH () C:\Documents and Settings\Administrator\ntuser.ini
2014-05-01 16:55 - 2014-05-01 16:55 - 00000577 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\LMIR0001.tmp.bat
2014-05-01 16:55 - 2014-05-01 16:55 - 00000502 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\LMIR0001.tmp_r.bat
2014-05-01 16:51 - 2010-11-01 17:16 - 00000000 ____D () C:\WINDOWS\ie8updates
2014-05-01 16:41 - 2014-05-01 16:41 - 00030976 _____ () C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2014-05-01 16:40 - 2010-11-01 11:07 - 00000221 ___SH () C:\boot.ini
2014-05-01 16:39 - 2014-05-01 16:39 - 00036222 _____ () C:\WINDOWS\system32\.crusader
2014-05-01 16:38 - 2014-05-01 16:20 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\HitmanPro
2014-05-01 16:17 - 2014-05-01 16:17 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Licenses
2014-05-01 16:16 - 2014-05-01 16:16 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Simply Super Software
2014-05-01 15:29 - 2008-04-14 07:00 - 00000227 _____ () C:\WINDOWS\system.ini
2014-05-01 14:53 - 2010-11-03 16:50 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes
2014-05-01 14:50 - 2014-05-01 14:50 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla
2014-05-01 14:50 - 2014-05-01 14:50 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Mozilla
2014-05-01 14:03 - 2014-05-01 14:02 - 00000738 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Outlook Express.lnk
2014-05-01 14:02 - 2014-05-01 14:02 - 00000803 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Internet Explorer.lnk
2014-05-01 14:02 - 2014-05-01 13:43 - 00000792 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Windows Media Player.lnk
2014-05-01 14:02 - 2014-05-01 13:43 - 00000000 ___RD () C:\Documents and Settings\Administrator\Start Menu\Programs\Accessories
2014-05-01 14:00 - 2014-05-01 14:00 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\IObit
2014-05-01 13:45 - 2014-05-01 13:45 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Google
2014-05-01 13:02 - 2014-05-01 13:02 - 00051712 ___SH () C:\Documents and Settings\test\My Documents\Thumbs.db
2014-05-01 13:02 - 2014-05-01 12:58 - 00005632 _____ () C:\Documents and Settings\test\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-01 12:52 - 2014-05-01 12:52 - 00000000 ____D () C:\Documents and Settings\test\My Documents\x delete
2014-05-01 12:52 - 2014-05-01 12:52 - 00000000 ____D () C:\Documents and Settings\test\My Documents\Updater5
2014-05-01 12:49 - 2014-05-01 12:49 - 00000000 ____D () C:\Documents and Settings\test\My Documents\TomTom
2014-05-01 12:49 - 2014-05-01 12:47 - 00000000 ____D () C:\Documents and Settings\test\My Documents\Scuba trips
2014-05-01 12:47 - 2014-05-01 12:41 - 00000000 ___RD () C:\Documents and Settings\test\My Documents\pics and videos need sorting
2014-05-01 12:41 - 2014-05-01 12:41 - 00000000 ___RD () C:\Documents and Settings\test\My Documents\office files
2014-05-01 12:41 - 2014-05-01 12:41 - 00000000 ____D () C:\Documents and Settings\test\My Documents\My Smilebox Creations
2014-05-01 12:41 - 2014-05-01 12:41 - 00000000 ____D () C:\Documents and Settings\test\My Documents\Masons Folder
2014-05-01 12:29 - 2014-05-01 12:28 - 00000000 ____D () C:\Documents and Settings\test\My Documents\Florence woman of year - raw
2014-05-01 12:00 - 2014-05-01 12:00 - 00000803 _____ () C:\Documents and Settings\test\Start Menu\Programs\Internet Explorer.lnk
2014-05-01 12:00 - 2014-05-01 12:00 - 00000738 _____ () C:\Documents and Settings\test\Start Menu\Programs\Outlook Express.lnk
2014-05-01 12:00 - 2014-05-01 12:00 - 00000000 ____D () C:\Documents and Settings\test\Application Data\AVAST Software
2014-05-01 12:00 - 2014-05-01 11:59 - 00000792 _____ () C:\Documents and Settings\test\Start Menu\Programs\Windows Media Player.lnk
2014-05-01 12:00 - 2014-05-01 11:59 - 00000000 ___RD () C:\Documents and Settings\test\Start Menu\Programs\Accessories
2014-05-01 11:59 - 2014-05-01 11:59 - 00000000 ____D () C:\IObit
2014-05-01 10:32 - 2014-05-01 10:32 - 00000682 _____ () C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
2014-05-01 10:32 - 2014-05-01 10:32 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-01 10:32 - 2014-05-01 10:32 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\CCleaner
2014-04-30 03:13 - 2008-04-14 07:00 - 06022144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshtml.dll
2014-04-30 03:13 - 2008-04-14 07:00 - 06022144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-04-29 16:27 - 2010-11-01 11:08 - 00214472 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-04-29 16:23 - 2014-04-29 15:52 - 00181064 _____ (Sysinternals) C:\WINDOWS\PSEXESVC.EXE
2014-04-29 16:22 - 2010-11-01 11:11 - 00513832 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-04-29 16:19 - 2014-04-29 16:19 - 00000000 ____D () C:\Documents and Settings\LocalService\Start Menu\Programs\Accessories
2014-04-29 16:19 - 2010-11-01 17:19 - 00023392 _____ () C:\WINDOWS\system32\nscompat.tlb
2014-04-29 16:19 - 2010-11-01 17:19 - 00016832 _____ () C:\WINDOWS\system32\amcompat.tlb
2014-04-29 15:51 - 2014-04-29 15:51 - 00000000 ____D () C:\RegBackup
2014-04-29 15:51 - 2010-11-01 11:02 - 00000000 ____D () C:\WINDOWS\repair
2014-04-29 15:50 - 2014-05-01 12:29 - 00001812 _____ () C:\Documents and Settings\test\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2014-04-29 15:50 - 2014-04-29 15:50 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Tweaking.com
2014-04-29 15:46 - 2014-04-29 15:46 - 00000000 ____D () C:\Program Files\Tweaking.com
2014-04-29 15:38 - 2014-04-29 14:04 - 00000000 ____D () C:\Documents and Settings\abc
2014-04-29 13:52 - 2014-04-29 12:14 - 00000000 ____D () C:\WINDOWS\pss
2014-04-29 13:37 - 2013-08-26 15:31 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-04-29 13:35 - 2014-04-29 13:35 - 00000000 _____ () C:\WINDOWS\system32\앀ɗ㹨Ɋlotserviceruntime.log
2014-04-29 13:27 - 2014-04-29 13:27 - 00000000 __SHD () C:\WINDOWS\CSC
2014-04-29 13:20 - 2013-08-26 15:43 - 00458752 _____ () C:\WINDOWS\system32\config\SpybotSD.evt
2014-04-29 13:03 - 2012-05-30 15:41 - 00001323 _____ () C:\WINDOWS\wininit.ini
2014-04-28 09:17 - 2014-04-28 09:17 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-04-28 09:17 - 2014-04-28 09:17 - 00024184 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys
2014-04-28 09:17 - 2013-03-01 17:22 - 00180632 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-04-28 09:17 - 2013-03-01 17:22 - 00067824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswmonflt.sys
2014-04-28 09:17 - 2013-03-01 17:22 - 00049944 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-04-28 09:17 - 2011-02-23 16:03 - 00776976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys.1400163468437
2014-04-28 09:17 - 2010-11-01 17:02 - 00271264 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-04-28 09:17 - 2010-11-01 17:02 - 00057672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2014-04-28 09:17 - 2010-11-01 17:02 - 00054832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswrdr.sys.1400163468437
2014-04-25 13:50 - 2014-05-01 12:29 - 00000770 _____ () C:\Documents and Settings\test\Desktop\Video Performer.lnk
2014-04-23 09:17 - 2010-11-01 17:25 - 00000178 ___SH () C:\Documents and Settings\LocalService\ntuser.ini

Files to move or delete:
====================
C:\Windows\Tasks\At1.job


Some content of TEMP:
====================
C:\Documents and Settings\test\Local Settings\Temp\210f4088-0b95-4280-8112-3f8dd51aea03.exe
C:\Documents and Settings\test\Local Settings\Temp\BackupSetup.exe
C:\Documents and Settings\test\Local Settings\Temp\f.exe
C:\Documents and Settings\test\Local Settings\Temp\Quarantine.exe
C:\Documents and Settings\test\Local Settings\Temp\System.Data.SQLite.dll
C:\Documents and Settings\test\Local Settings\Temp\vcredist_x86.exe


==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe => MD5 is legit
C:\WINDOWS\system32\winlogon.exe => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit
C:\WINDOWS\system32\User32.dll => MD5 is legit
C:\WINDOWS\system32\userinit.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\volsnap.sys => MD5 is legit

==================== End Of Log ============================

Share this post


Link to post
Share on other sites

No need to apologize.

 

Please, move FRST from the Downloads folder to the desktop first since it's important that FRST and fixlist.txt are in the same location.

Share this post


Link to post
Share on other sites

No need to apologize.

 

Please, move FRST from the Downloads folder to the desktop first since it's important that FRST and fixlist.txt are in the same location.

OK, I downloaded FRST to desktop and ran again. Hope that's what you meant...

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:23-05-2014

Ran by test (administrator) on JERRY-BBD10ECC6 on 23-05-2014 13:23:13

Running from C:\Documents and Settings\test\Desktop

Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English(US)

Internet Explorer Version 8

Boot Mode: Normal

 

The only official download link for FRST:

Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/

Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/

Download link from any site other than Bleeping Computer is unpermitted or outdated.

See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

 

==================== Processes (Whitelisted) =================

 

(IObit) C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe

(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe

() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe

(TomTom) C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe

(IObit) C:\Program Files\IObit\Advanced SystemCare 7\Monitor.exe

(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe

(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(IObit) C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe

(Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe

(Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe

(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe

 

 

==================== Registry (Whitelisted) ==================

 

HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)

HKLM\...\Run: [sunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)

HKLM\...\Run: [AdAwareTray] => "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5354.0\AdAwareTray.exe"

HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [20145368 2014-05-16] (Realtek Semiconductor Corp.)

HKLM\...\Run: [] => [X]

HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 0

HKLM\...\Policies\Explorer: [NoResolveSearch] 1

HKU\.DEFAULT\...\Run: [AROReminder] => C:\Program Files\ARO 2011\aro.exe -rem

HKU\.DEFAULT\...\Run: [Advanced SystemCare 4] => "C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe"

 

==================== Internet (Whitelisted) ====================

 

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xAAEEF04EAF6FCF01

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us

SearchScopes: HKLM - DefaultScope value is missing.

BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)

BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)

BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)

BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

BHO: Skype Plug-In - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)

BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

Toolbar: HKLM - ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)

Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} http://utilities.pcpitstop.com/Optimize3/pcpitstop2.dll

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

 

FireFox:

========

FF ProfilePath: C:\Documents and Settings\test\Application Data\Mozilla\Firefox\Profiles\0u54w5zp.default

FF Homepage: https://www.google.com/

FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll ()

FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)

FF Plugin: @java.com/DTPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)

FF Plugin: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)

FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

FF Plugin: @real.com/nppl3260;version=16.0.3.51 - c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)

FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.3 - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)

FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.3 - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)

FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.3 - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)

FF Plugin: @real.com/nprpplugin;version=16.0.3.51 - c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)

FF Plugin: @realnetworks.com/npdlplugin;version=1 - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)

FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)

FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)

FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPcol400.dll (Catalina Marketing Corporation)

FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)

FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpplugin.dll (RealPlayer)

FF Extension: Skype extension - C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1} [2014-05-14]

FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2014-05-14]

FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA} [2014-05-14]

FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Alwil Software\Avast5\WebRep\FF

FF Extension: avast! Online Security - C:\Program Files\Alwil Software\Avast5\WebRep\FF [2011-02-23]

FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext

FF Extension: RealDownloader - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-09-10]

FF HKLM\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\

FF Extension: RealDownloader - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []

FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []

 

Chrome:

=======

CHR HomePage: https://www.google.com/

CHR StartupUrls: "hxxp://www.google.com/", "https://www.google.com/"

CHR Extension: (Google Docs) - C:\Documents and Settings\test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-01]

CHR Extension: (Google Drive) - C:\Documents and Settings\test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-01]

CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Documents and Settings\test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-23]

CHR Extension: (YouTube) - C:\Documents and Settings\test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-01]

CHR Extension: (Win7 Scrollbars) - C:\Documents and Settings\test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cifcnoebhbpdndjendfkpehpfbglgfkc [2014-05-01]

CHR Extension: (Google Search) - C:\Documents and Settings\test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-01]

CHR Extension: (Search by Image (by Google)) - C:\Documents and Settings\test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2014-05-01]

CHR Extension: (avast! Online Security) - C:\Documents and Settings\test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-05-01]

CHR Extension: (Google Wallet) - C:\Documents and Settings\test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-01]

CHR Extension: (Gmail) - C:\Documents and Settings\test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-01]

CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx [2014-04-28]

CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]

CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2010-11-22]

 

========================== Services (Whitelisted) =================

 

R2 AdvancedSystemCareService7; C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe [881952 2014-01-14] (IObit)

S3 AOL ACS; C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe [46640 2006-10-23] (AOL LLC)

R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [50344 2014-04-28] (AVAST Software)

R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-04-14] (Oracle Corporation)

S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-12-03] (IObit)

S3 NetSvc; C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe [143360 2004-06-16] (Intel® Corporation)

R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()

S2 LavasoftAdAwareService11; "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5354.0\AdAwareService.exe" [X]

 

==================== Drivers (Whitelisted) ====================

 

R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [20747 2014-03-14] (Meetinghouse Data Communications)

R1 AFS2K; C:\WINDOWS\system32\Drivers\AFS2K.sys [35840 2004-10-07] (Oak Technology Inc.)

S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2014-05-16] (Creative)

R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-04-28] ()

R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-04-28] (AVAST Software)

R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [54832 2014-05-15] (AVAST Software)

R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-04-28] ()

R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [777488 2014-05-15] (AVAST Software)

R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [411680 2014-05-15] (AVAST Software)

R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57672 2014-04-28] (AVAST Software)

R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [180632 2014-04-28] ()

S3 AX88772; C:\WINDOWS\System32\DRIVERS\ax88772.sys [19072 2007-07-26] (ASIX Electronics Corp.)

S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)

R3 E1000; C:\WINDOWS\System32\DRIVERS\e1000325.sys [171152 2008-08-20] (Intel Corporation)

S3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [30976 2014-05-01] ()

R3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [56352 2014-05-16] (HP)

R3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [22928 2014-05-16] (HP)

R3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [28000 2014-05-16] (HP)

R0 JRAID; C:\WINDOWS\System32\DRIVERS\jraid.sys [83296 2014-01-14] (JMicron Technology Corp.)

S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [107736 2014-05-16] (Malwarebytes Corporation)

S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2014-05-16] (Creative Technology Ltd.)

S3 motport; C:\WINDOWS\System32\DRIVERS\motport.sys [23680 2007-06-18] (Motorola)

S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)

R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [15808 2013-12-24] (IObit)

S3 Trufos; C:\WINDOWS\System32\DRIVERS\Trufos.sys [340624 2013-07-17] (BitDefender S.R.L.)

R3 wanatw; C:\WINDOWS\System32\DRIVERS\wanatw4.sys [33588 2003-01-10] (America Online, Inc.)

R3 WinDriver6; C:\WINDOWS\System32\drivers\windrvr6.sys [194362 2006-10-16] (Jungo)

S3 AtcL001; system32\DRIVERS\l151x86.sys [X]

S3 KCFdcDevice0; No ImagePath

S0 Lbd; system32\DRIVERS\Lbd.sys [X]

U5 P3; C:\Windows\System32\Drivers\P3.sys [42752 2008-04-14] (Microsoft Corporation)

 

==================== NetSvcs (Whitelisted) ===================

 

 

==================== One Month Created Files and Folders ========

 

2014-05-23 13:23 - 2014-05-23 13:23 - 00016736 _____ () C:\Documents and Settings\test\Desktop\FRST.txt

2014-05-23 13:19 - 2014-05-23 13:19 - 01056768 _____ (Farbar) C:\Documents and Settings\test\Desktop\FRST.exe

2014-05-21 15:08 - 2014-05-21 15:08 - 00001180 _____ () C:\Documents and Settings\test\Desktop\fixlist.txt

2014-05-19 13:17 - 2014-05-23 13:23 - 00000000 ____D () C:\FRST

2014-05-19 10:44 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\WINDOWS\system32\sqlite3.dll

2014-05-19 10:43 - 2014-05-19 10:46 - 00000000 ____D () C:\AdwCleaner

2014-05-19 10:17 - 2014-05-19 10:18 - 00004526 _____ () C:\INSTALLHELPER.LOG

2014-05-16 11:15 - 2014-05-16 11:15 - 00000000 ____D () C:\Program Files\Common Files\Lavasoft

2014-05-16 10:55 - 2014-05-16 10:55 - 00000181 _____ () C:\Documents and Settings\test\My Documents\Ad-Aware_Report_Quick_Manual_2014-05-16T10-46-34.203125.xml

2014-05-16 10:42 - 2014-05-16 10:42 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Lavasoft

2014-05-16 10:36 - 2014-05-16 10:36 - 00000000 ____D () C:\Documents and Settings\test\Application Data\LavasoftStatistics

2014-05-16 10:31 - 2014-05-23 09:30 - 00000280 _____ () C:\WINDOWS\Tasks\SmartDefrag3_Update.job

2014-05-16 10:30 - 2014-05-16 10:30 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Smart Defrag 3

2014-05-16 10:30 - 2014-03-10 18:17 - 00109856 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll

2014-05-16 10:30 - 2013-12-24 10:40 - 00015808 _____ (IObit) C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys

2014-05-16 10:28 - 2014-05-16 10:28 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Driver Booster

2014-05-16 10:27 - 2014-05-19 10:42 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Ad-Aware Antivirus

2014-05-16 10:26 - 2014-05-16 15:34 - 00035569 _____ () C:\WINDOWS\setupapi.log

2014-05-16 10:26 - 2014-05-16 10:26 - 00000000 ____D () C:\Program Files\Lavasoft

2014-05-16 10:25 - 2014-05-16 10:25 - 00017507 _____ () C:\WINDOWS\KB942288-v3.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00006729 _____ () C:\WINDOWS\iis6.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00006182 _____ () C:\WINDOWS\FaxSetup.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00002956 _____ () C:\WINDOWS\ocgen.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00002821 _____ () C:\WINDOWS\tsoc.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00002095 _____ () C:\WINDOWS\comsetup.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00001906 _____ () C:\WINDOWS\msmqinst.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00001374 _____ () C:\WINDOWS\imsins.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00001266 _____ () C:\WINDOWS\ntdtcsetup.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00001083 _____ () C:\WINDOWS\netfxocm.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00000425 _____ () C:\WINDOWS\MedCtrOC.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00000342 _____ () C:\WINDOWS\ocmsn.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00000311 _____ () C:\WINDOWS\tabletoc.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00000309 _____ () C:\WINDOWS\msgsocm.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB942288-v3$

2014-05-16 10:25 - 2014-05-16 10:25 - 00000000 _____ () C:\WINDOWS\setuperr.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00000000 _____ () C:\WINDOWS\setupact.log

2014-05-16 10:07 - 2014-05-16 10:08 - 00000000 ____D () C:\Avenger

2014-05-16 09:06 - 2014-05-23 13:16 - 00032574 _____ () C:\WINDOWS\SchedLgU.Txt

2014-05-16 09:06 - 2014-05-23 09:30 - 00000159 _____ () C:\WINDOWS\wiadebug.log

2014-05-16 09:06 - 2014-05-23 09:30 - 00000049 _____ () C:\WINDOWS\wiaservc.log

2014-05-16 09:06 - 2014-05-16 09:06 - 00000000 _____ () C:\WINDOWS\Sti_Trace.log

2014-05-15 13:47 - 2014-05-23 12:52 - 00000882 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf706e2f6a68d0.job

2014-05-15 13:47 - 2014-05-23 09:30 - 00000878 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf706e2ef7f7f0.job

2014-05-15 09:22 - 2014-05-15 09:22 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Sun

2014-05-14 16:01 - 2014-05-14 16:01 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Java

2014-05-14 16:01 - 2014-04-14 20:13 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll

2014-05-14 16:01 - 2014-04-14 20:05 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe

2014-05-14 16:01 - 2014-04-14 20:05 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe

2014-05-14 16:01 - 2014-04-14 20:04 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe

2014-05-14 16:01 - 2014-04-14 19:47 - 00145408 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl

2014-05-14 15:57 - 2014-05-14 16:01 - 00003966 _____ () C:\WINDOWS\system32\jupdate-1.7.0_55-b14.log

2014-05-14 15:33 - 2014-05-14 15:33 - 00000000 ____D () C:\Program Files\Mozilla Firefox

2014-05-14 15:01 - 2014-05-14 15:01 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Google

2014-05-14 14:59 - 2014-05-14 14:59 - 00000803 _____ () C:\Documents and Settings\test\Desktop\Internet Explorer.lnk

2014-05-12 17:29 - 2014-05-12 17:29 - 00000000 ____D () C:\Documents and Settings\Jerry Richardson\Application Data\IObit

2014-05-12 17:27 - 2014-05-12 17:27 - 00000000 ____D () C:\b352f5a442b9f53f13d073d5

2014-05-12 17:26 - 2014-05-12 17:26 - 00000000 ____D () C:\Documents and Settings\test\Desktop\Florence woman of year - raw

2014-05-12 17:14 - 2014-05-12 17:14 - 00000664 _____ () C:\WINDOWS\system32\d3d9caps.tmp

2014-05-12 15:29 - 2014-05-12 17:24 - 00000000 ____D () C:\Program Files\Optimizer Pro(2)

2014-05-12 15:25 - 2014-05-23 12:25 - 00000412 _____ () C:\WINDOWS\Tasks\At1.job

2014-05-12 15:18 - 2014-05-12 15:18 - 00000000 ____D () C:\Program Files\VideoLAN

2014-05-12 11:18 - 2014-05-23 09:31 - 00000272 _____ () C:\WINDOWS\Tasks\Driver Booster Scan.job

2014-05-12 10:53 - 2014-05-12 10:53 - 00000000 __SHD () C:\Documents and Settings\test\IECompatCache

2014-05-12 10:46 - 2014-05-12 10:46 - 00000000 __SHD () C:\Documents and Settings\test\PrivacIE

2014-05-08 17:08 - 2014-05-08 17:08 - 00000000 ____D () C:\Documents and Settings\test\Application Data\RealNetworks

2014-05-08 16:33 - 2014-05-08 16:33 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Mozilla

2014-05-08 14:02 - 2014-05-22 15:40 - 00000478 _____ () C:\WINDOWS\Tasks\Driver Support-RTMScan.job

2014-05-08 14:02 - 2014-05-21 12:32 - 00000476 _____ () C:\WINDOWS\Tasks\Driver Support-RTMUpdater.job

2014-05-08 14:02 - 2014-05-08 14:02 - 00047136 _____ () C:\Documents and Settings\test\Local Settings\Application Data\GDIPFONTCACHEV1.DAT

2014-05-08 14:02 - 2014-05-08 14:02 - 00000466 _____ () C:\WINDOWS\Tasks\Driver Support-RTMRules.job

2014-05-08 14:02 - 2014-05-08 14:02 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Driver Support

2014-05-08 14:01 - 2014-05-14 14:59 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Mozilla

2014-05-08 14:01 - 2014-05-08 14:01 - 00000000 ____D () C:\Program Files\Driver Support

2014-05-07 08:58 - 2014-05-07 08:58 - 35348480 _____ () C:\WINDOWS\system32\config\software.iodefrag.bak

2014-05-07 08:58 - 2014-05-07 08:58 - 05349376 _____ () C:\WINDOWS\system32\config\default.iodefrag.bak

2014-05-07 08:58 - 2014-05-07 08:58 - 00065536 _____ () C:\WINDOWS\system32\config\SECURITY.iodefrag.bak

2014-05-07 08:58 - 2014-05-07 08:58 - 00028672 _____ () C:\WINDOWS\system32\config\SAM.iodefrag.bak

2014-05-02 13:58 - 2014-05-02 13:58 - 00000000 ___HD () C:\WINDOWS\$hf_mig$

2014-05-01 16:55 - 2014-05-01 16:55 - 00000577 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\LMIR0001.tmp.bat

2014-05-01 16:55 - 2014-05-01 16:55 - 00000502 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\LMIR0001.tmp_r.bat

2014-05-01 16:41 - 2014-05-01 16:41 - 00030976 _____ () C:\WINDOWS\system32\Drivers\hitmanpro37.sys

2014-05-01 16:39 - 2014-05-01 16:39 - 00036222 _____ () C:\WINDOWS\system32\.crusader

2014-05-01 16:20 - 2014-05-01 16:38 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\HitmanPro

2014-05-01 16:17 - 2014-05-01 16:17 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Licenses

2014-05-01 16:16 - 2014-05-01 16:16 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Simply Super Software

2014-05-01 14:50 - 2014-05-01 14:50 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla

2014-05-01 14:50 - 2014-05-01 14:50 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Mozilla

2014-05-01 14:02 - 2014-05-01 14:03 - 00000738 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Outlook Express.lnk

2014-05-01 14:02 - 2014-05-01 14:02 - 00000803 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Internet Explorer.lnk

2014-05-01 14:00 - 2014-05-01 14:00 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\IObit

2014-05-01 13:46 - 2014-05-02 09:08 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\LogMeIn Rescue Applet

2014-05-01 13:45 - 2014-05-01 13:45 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Google

2014-05-01 13:43 - 2014-05-12 17:27 - 00000000 ____D () C:\Documents and Settings\Administrator

2014-05-01 13:43 - 2014-05-01 18:15 - 00000178 ___SH () C:\Documents and Settings\Administrator\ntuser.ini

2014-05-01 13:43 - 2014-05-01 14:02 - 00000792 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Windows Media Player.lnk

2014-05-01 13:43 - 2014-05-01 14:02 - 00000000 ___RD () C:\Documents and Settings\Administrator\Start Menu\Programs\Accessories

2014-05-01 13:43 - 2013-10-17 12:07 - 00000000 __SHD () C:\Documents and Settings\Administrator\IETldCache

2014-05-01 13:43 - 2013-02-12 10:29 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Sun

2014-05-01 13:43 - 2010-11-01 17:27 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Macromedia

2014-05-01 13:43 - 2010-11-01 17:19 - 00001599 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Remote Assistance.lnk

2014-05-01 13:03 - 2014-05-15 13:47 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Google

2014-05-01 13:02 - 2014-05-01 13:02 - 00051712 ___SH () C:\Documents and Settings\test\My Documents\Thumbs.db

2014-05-01 13:01 - 2014-05-14 15:33 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Adobe

2014-05-01 12:58 - 2014-05-01 13:02 - 00005632 _____ () C:\Documents and Settings\test\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

2014-05-01 12:52 - 2014-05-01 12:52 - 00000000 ____D () C:\Documents and Settings\test\My Documents\x delete

2014-05-01 12:52 - 2014-05-01 12:52 - 00000000 ____D () C:\Documents and Settings\test\My Documents\Updater5

2014-05-01 12:52 - 2011-09-29 13:28 - 00001506 _____ () C:\Documents and Settings\test\My Documents\Bio-station-Alpha.kml

2014-05-01 12:52 - 2011-07-06 14:17 - 177211566 _____ () C:\Documents and Settings\test\My Documents\ece316e18e75785dfb29f870f3436b74.mp4

2014-05-01 12:52 - 2011-07-01 13:42 - 00000085 _____ () C:\Documents and Settings\test\My Documents\harrington.ram

2014-05-01 12:52 - 2011-06-21 17:17 - 160585367 _____ () C:\Documents and Settings\test\My Documents\9f5a147a4a56b7494ccc332b3227d7c6.mp4

2014-05-01 12:49 - 2014-05-01 12:49 - 00000000 ____D () C:\Documents and Settings\test\My Documents\TomTom

2014-05-01 12:47 - 2014-05-01 12:49 - 00000000 ____D () C:\Documents and Settings\test\My Documents\Scuba trips

2014-05-01 12:41 - 2014-05-01 12:47 - 00000000 ___RD () C:\Documents and Settings\test\My Documents\pics and videos need sorting

2014-05-01 12:41 - 2014-05-01 12:41 - 00000000 ___RD () C:\Documents and Settings\test\My Documents\office files

2014-05-01 12:41 - 2014-05-01 12:41 - 00000000 ____D () C:\Documents and Settings\test\My Documents\My Smilebox Creations

2014-05-01 12:41 - 2014-05-01 12:41 - 00000000 ____D () C:\Documents and Settings\test\My Documents\Masons Folder

2014-05-01 12:29 - 2014-05-19 10:30 - 00000000 ___RD () C:\Documents and Settings\test\Desktop\Security & Tools Folder

2014-05-01 12:29 - 2014-05-15 18:49 - 00000000 ___RD () C:\Documents and Settings\test\Desktop\Photo & Video Tools

2014-05-01 12:29 - 2014-04-29 15:50 - 00001812 _____ () C:\Documents and Settings\test\Desktop\Tweaking.com - Windows Repair (All in One).lnk

2014-05-01 12:29 - 2014-04-25 13:50 - 00000770 _____ () C:\Documents and Settings\test\Desktop\Video Performer.lnk

2014-05-01 12:29 - 2014-01-20 15:41 - 00000075 _____ () C:\Documents and Settings\test\Desktop\product-gear-ring.php.url

2014-05-01 12:29 - 2013-07-19 16:34 - 00000382 _____ () C:\Documents and Settings\test\Desktop\attpass.txt

2014-05-01 12:29 - 2013-07-16 14:47 - 00000396 _____ () C:\Documents and Settings\test\Desktop\Shortcut to Wireless Network Connection.lnk

2014-05-01 12:28 - 2014-05-01 12:29 - 00000000 ____D () C:\Documents and Settings\test\My Documents\Florence woman of year - raw

2014-05-01 12:12 - 2014-05-19 10:20 - 00000000 ____D () C:\Documents and Settings\test\Application Data\IObit

2014-05-01 12:00 - 2014-05-14 15:33 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Adobe

2014-05-01 12:00 - 2014-05-01 12:00 - 00000803 _____ () C:\Documents and Settings\test\Start Menu\Programs\Internet Explorer.lnk

2014-05-01 12:00 - 2014-05-01 12:00 - 00000738 _____ () C:\Documents and Settings\test\Start Menu\Programs\Outlook Express.lnk

2014-05-01 12:00 - 2014-05-01 12:00 - 00000000 ____D () C:\Documents and Settings\test\Application Data\AVAST Software

2014-05-01 11:59 - 2014-05-22 17:27 - 00000178 ___SH () C:\Documents and Settings\test\ntuser.ini

2014-05-01 11:59 - 2014-05-22 17:27 - 00000000 ____D () C:\Documents and Settings\test

2014-05-01 11:59 - 2014-05-01 12:00 - 00000792 _____ () C:\Documents and Settings\test\Start Menu\Programs\Windows Media Player.lnk

2014-05-01 11:59 - 2014-05-01 12:00 - 00000000 ___RD () C:\Documents and Settings\test\Start Menu\Programs\Accessories

2014-05-01 11:59 - 2014-05-01 11:59 - 00000000 ____D () C:\IObit

2014-05-01 11:59 - 2013-10-17 12:07 - 00000000 __SHD () C:\Documents and Settings\test\IETldCache

2014-05-01 11:59 - 2013-02-12 10:29 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Sun

2014-05-01 11:59 - 2010-11-01 17:27 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Macromedia

2014-05-01 11:59 - 2010-11-01 17:19 - 00001599 _____ () C:\Documents and Settings\test\Start Menu\Programs\Remote Assistance.lnk

2014-05-01 11:38 - 2014-05-23 12:02 - 01750257 _____ () C:\WINDOWS\WindowsUpdate.log

2014-05-01 10:32 - 2014-05-01 10:32 - 00000682 _____ () C:\Documents and Settings\All Users\Desktop\CCleaner.lnk

2014-05-01 10:32 - 2014-05-01 10:32 - 00000000 ____D () C:\Program Files\CCleaner

2014-05-01 10:32 - 2014-05-01 10:32 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\CCleaner

2014-04-29 16:19 - 2014-04-29 16:19 - 00000000 ____D () C:\Documents and Settings\LocalService\Start Menu\Programs\Accessories

2014-04-29 15:52 - 2014-04-29 16:23 - 00181064 _____ (Sysinternals) C:\WINDOWS\PSEXESVC.EXE

2014-04-29 15:51 - 2014-04-29 15:51 - 00000000 ____D () C:\RegBackup

2014-04-29 15:50 - 2014-04-29 15:50 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Tweaking.com

2014-04-29 15:46 - 2014-04-29 15:46 - 00000000 ____D () C:\Program Files\Tweaking.com

2014-04-29 14:04 - 2014-04-29 15:38 - 00000000 ____D () C:\Documents and Settings\abc

2014-04-29 13:35 - 2014-04-29 13:35 - 00000000 _____ () C:\WINDOWS\system32\앀ɗ㹨Ɋlotserviceruntime.log

2014-04-29 13:27 - 2014-04-29 13:27 - 00000000 __SHD () C:\WINDOWS\CSC

2014-04-29 12:14 - 2014-04-29 13:52 - 00000000 ____D () C:\WINDOWS\pss

2014-04-28 09:17 - 2014-04-28 09:17 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr

2014-04-28 09:17 - 2014-04-28 09:17 - 00024184 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys

 

==================== One Month Modified Files and Folders =======

 

2014-05-23 13:23 - 2014-05-23 13:23 - 00016736 _____ () C:\Documents and Settings\test\Desktop\FRST.txt

2014-05-23 13:23 - 2014-05-19 13:17 - 00000000 ____D () C:\FRST

2014-05-23 13:21 - 2010-11-01 17:24 - 00000444 ____H () C:\WINDOWS\Tasks\User_Feed_Synchronization-{EC2759DA-ABCC-4E4B-9CFF-0762D0C18332}.job

2014-05-23 13:19 - 2014-05-23 13:19 - 01056768 _____ (Farbar) C:\Documents and Settings\test\Desktop\FRST.exe

2014-05-23 13:17 - 2010-11-02 15:00 - 00000488 _____ () C:\hpfr5550.xml

2014-05-23 13:16 - 2014-05-16 09:06 - 00032574 _____ () C:\WINDOWS\SchedLgU.Txt

2014-05-23 12:52 - 2014-05-15 13:47 - 00000882 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf706e2f6a68d0.job

2014-05-23 12:25 - 2014-05-12 15:25 - 00000412 _____ () C:\WINDOWS\Tasks\At1.job

2014-05-23 12:25 - 2012-03-30 16:28 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

2014-05-23 12:02 - 2014-05-01 11:38 - 01750257 _____ () C:\WINDOWS\WindowsUpdate.log

2014-05-23 12:00 - 2013-07-16 18:12 - 00000000 ____D () C:\WINDOWS\system32\MRT

2014-05-23 12:00 - 2011-10-13 13:11 - 00000304 _____ () C:\WINDOWS\Tasks\SmartDefrag_Schedule.job

2014-05-23 12:00 - 2010-11-03 17:01 - 00000406 _____ () C:\WINDOWS\Tasks\SmartDefrag.job

2014-05-23 12:00 - 2010-11-01 17:15 - 90547776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

2014-05-23 09:31 - 2014-05-12 11:18 - 00000272 _____ () C:\WINDOWS\Tasks\Driver Booster Scan.job

2014-05-23 09:31 - 2012-07-02 15:26 - 00000366 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job

2014-05-23 09:30 - 2014-05-16 10:31 - 00000280 _____ () C:\WINDOWS\Tasks\SmartDefrag3_Update.job

2014-05-23 09:30 - 2014-05-16 09:06 - 00000159 _____ () C:\WINDOWS\wiadebug.log

2014-05-23 09:30 - 2014-05-16 09:06 - 00000049 _____ () C:\WINDOWS\wiaservc.log

2014-05-23 09:30 - 2014-05-15 13:47 - 00000878 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf706e2ef7f7f0.job

2014-05-23 09:30 - 2014-03-17 09:14 - 00000244 _____ () C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Logon.job

2014-05-23 09:30 - 2013-11-20 10:37 - 00000266 _____ () C:\WINDOWS\Tasks\ASC7_PerformanceMonitor.job

2014-05-23 09:30 - 2013-06-13 12:02 - 00000300 _____ () C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-329068152-813497703-1801674531-1003.job

2014-05-23 09:30 - 2011-08-01 09:09 - 00000280 _____ () C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-18.job

2014-05-23 09:30 - 2011-07-01 13:46 - 00000300 _____ () C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-329068152-813497703-1801674531-1003.job

2014-05-23 09:30 - 2011-03-07 11:59 - 00000398 _____ () C:\WINDOWS\Tasks\AWC AutoSweep.job

2014-05-23 09:30 - 2010-11-01 17:25 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT

2014-05-23 09:30 - 2008-04-14 07:00 - 00001374 _____ () C:\WINDOWS\system32\wpa.dbl

2014-05-22 17:27 - 2014-05-01 11:59 - 00000178 ___SH () C:\Documents and Settings\test\ntuser.ini

2014-05-22 17:27 - 2014-05-01 11:59 - 00000000 ____D () C:\Documents and Settings\test

2014-05-22 15:40 - 2014-05-08 14:02 - 00000478 _____ () C:\WINDOWS\Tasks\Driver Support-RTMScan.job

2014-05-22 09:54 - 2013-08-29 10:41 - 00001813 _____ () C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk

2014-05-21 15:08 - 2014-05-21 15:08 - 00001180 _____ () C:\Documents and Settings\test\Desktop\fixlist.txt

2014-05-21 14:43 - 2011-08-01 09:09 - 00000288 _____ () C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-18.job

2014-05-21 14:05 - 2010-11-03 17:37 - 00000486 _____ () C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job

2014-05-21 12:32 - 2014-05-08 14:02 - 00000476 _____ () C:\WINDOWS\Tasks\Driver Support-RTMUpdater.job

2014-05-21 09:15 - 2013-11-20 10:22 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\ProductData

2014-05-20 10:49 - 2012-12-21 16:34 - 00000308 _____ () C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-329068152-813497703-1801674531-1003.job

2014-05-19 16:30 - 2011-07-01 13:46 - 00000308 _____ () C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-329068152-813497703-1801674531-1003.job

2014-05-19 10:46 - 2014-05-19 10:43 - 00000000 ____D () C:\AdwCleaner

2014-05-19 10:42 - 2014-05-16 10:27 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Ad-Aware Antivirus

2014-05-19 10:42 - 2013-05-06 16:28 - 00000000 ____D () C:\WINDOWS\system32\appmgmt

2014-05-19 10:30 - 2014-05-01 12:29 - 00000000 ___RD () C:\Documents and Settings\test\Desktop\Security & Tools Folder

2014-05-19 10:20 - 2014-05-01 12:12 - 00000000 ____D () C:\Documents and Settings\test\Application Data\IObit

2014-05-19 10:20 - 2010-11-03 16:58 - 00000000 ____D () C:\Program Files\IObit

2014-05-19 10:18 - 2014-05-19 10:17 - 00004526 _____ () C:\INSTALLHELPER.LOG

2014-05-16 15:34 - 2014-05-16 10:26 - 00035569 _____ () C:\WINDOWS\setupapi.log

2014-05-16 11:15 - 2014-05-16 11:15 - 00000000 ____D () C:\Program Files\Common Files\Lavasoft

2014-05-16 10:55 - 2014-05-16 10:55 - 00000181 _____ () C:\Documents and Settings\test\My Documents\Ad-Aware_Report_Quick_Manual_2014-05-16T10-46-34.203125.xml

2014-05-16 10:42 - 2014-05-16 10:42 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Lavasoft

2014-05-16 10:40 - 2014-01-14 14:56 - 00000000 ____D () C:\Documents and Settings\NetworkService\Application Data\IObit

2014-05-16 10:36 - 2014-05-16 10:36 - 00000000 ____D () C:\Documents and Settings\test\Application Data\LavasoftStatistics

2014-05-16 10:32 - 2011-05-24 10:48 - 00606440 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\Drivers\RTL8192su.sys

2014-05-16 10:32 - 2010-11-02 13:55 - 00000000 ____D () C:\WINDOWS\system32\RTCOM

2014-05-16 10:32 - 2010-11-01 16:39 - 00000000 ____D () C:\WINDOWS\system32\ReinstallBackups

2014-05-16 10:31 - 2014-01-14 14:42 - 00087256 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoInstIIXP.dll

2014-05-16 10:31 - 2014-01-14 14:42 - 00026084 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT

2014-05-16 10:31 - 2011-01-07 17:58 - 01691480 _____ (Creative) C:\WINDOWS\system32\Drivers\Ambfilt.sys

2014-05-16 10:31 - 2011-01-07 17:58 - 01395800 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\Monfilt.sys

2014-05-16 10:31 - 2011-01-07 17:58 - 00359016 _____ (Realtek Semiconductor Crop.) C:\WINDOWS\vncutil.exe

2014-05-16 10:31 - 2011-01-07 17:58 - 00129640 _____ (Realtek Semiconductor) C:\WINDOWS\RtkAudioService.exe

2014-05-16 10:31 - 2005-09-23 19:56 - 05630168 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtkHDAud.sys

2014-05-16 10:31 - 2005-09-22 14:36 - 20145368 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE

2014-05-16 10:31 - 2005-09-21 17:29 - 01523416 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlUpd.exe

2014-05-16 10:31 - 2005-09-21 16:32 - 02815592 _____ (RealTek Semicoductor Corp.) C:\WINDOWS\ALCWZRD.EXE

2014-05-16 10:31 - 2005-09-21 16:23 - 09721960 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RTLCPL.EXE

2014-05-16 10:31 - 2005-09-21 11:25 - 00285288 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\ALSNDMGR.CPL

2014-05-16 10:31 - 2005-09-21 11:24 - 00084584 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SOUNDMAN.EXE

2014-05-16 10:31 - 2005-09-15 18:26 - 00891976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSndMgr.CPL

2014-05-16 10:31 - 2005-09-07 11:40 - 02180712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\MicCal.exe

2014-05-16 10:31 - 2005-05-03 19:43 - 00064104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\ALCMTR.EXE

2014-05-16 10:30 - 2014-05-16 10:30 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Smart Defrag 3

2014-05-16 10:30 - 2010-11-02 13:04 - 00056352 _____ (HP) C:\WINDOWS\system32\Drivers\HPZid412.sys

2014-05-16 10:30 - 2010-11-02 13:04 - 00028000 _____ (HP) C:\WINDOWS\system32\Drivers\HPZius12.sys

2014-05-16 10:30 - 2010-11-02 13:04 - 00022928 _____ (HP) C:\WINDOWS\system32\Drivers\HPZipr12.sys

2014-05-16 10:28 - 2014-05-16 10:28 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Driver Booster

2014-05-16 10:26 - 2014-05-16 10:26 - 00000000 ____D () C:\Program Files\Lavasoft

2014-05-16 10:25 - 2014-05-16 10:25 - 00017507 _____ () C:\WINDOWS\KB942288-v3.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00006729 _____ () C:\WINDOWS\iis6.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00006182 _____ () C:\WINDOWS\FaxSetup.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00002956 _____ () C:\WINDOWS\ocgen.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00002821 _____ () C:\WINDOWS\tsoc.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00002095 _____ () C:\WINDOWS\comsetup.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00001906 _____ () C:\WINDOWS\msmqinst.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00001374 _____ () C:\WINDOWS\imsins.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00001266 _____ () C:\WINDOWS\ntdtcsetup.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00001083 _____ () C:\WINDOWS\netfxocm.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00000425 _____ () C:\WINDOWS\MedCtrOC.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00000342 _____ () C:\WINDOWS\ocmsn.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00000311 _____ () C:\WINDOWS\tabletoc.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00000309 _____ () C:\WINDOWS\msgsocm.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB942288-v3$

2014-05-16 10:25 - 2014-05-16 10:25 - 00000000 _____ () C:\WINDOWS\setuperr.log

2014-05-16 10:25 - 2014-05-16 10:25 - 00000000 _____ () C:\WINDOWS\setupact.log

2014-05-16 10:25 - 2010-11-01 11:02 - 00000000 ____D () C:\WINDOWS\system32\mui

2014-05-16 10:24 - 2010-11-03 16:57 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Lavasoft

2014-05-16 10:12 - 2014-01-14 14:19 - 00107736 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys

2014-05-16 10:08 - 2014-05-16 10:07 - 00000000 ____D () C:\Avenger

2014-05-16 10:08 - 2011-04-07 14:10 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\IObit

2014-05-16 09:06 - 2014-05-16 09:06 - 00000000 _____ () C:\WINDOWS\Sti_Trace.log

2014-05-15 18:49 - 2014-05-01 12:29 - 00000000 ___RD () C:\Documents and Settings\test\Desktop\Photo & Video Tools

2014-05-15 18:43 - 2013-10-14 17:26 - 35348480 _____ () C:\WINDOWS\system32\config\software.iobit

2014-05-15 18:43 - 2013-10-14 17:26 - 05349376 _____ () C:\WINDOWS\system32\config\default.iobit

2014-05-15 18:43 - 2013-10-14 17:26 - 00065536 _____ () C:\WINDOWS\system32\config\SECURITY.iobit

2014-05-15 18:43 - 2013-10-14 17:26 - 00028672 _____ () C:\WINDOWS\system32\config\SAM.iobit

2014-05-15 18:43 - 2010-11-01 17:25 - 00000000 __SHD () C:\Documents and Settings\LocalService

2014-05-15 18:43 - 2010-11-01 17:22 - 00000000 __SHD () C:\Documents and Settings\NetworkService

2014-05-15 13:47 - 2014-05-01 13:03 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Google

2014-05-15 09:22 - 2014-05-15 09:22 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Sun

2014-05-15 09:17 - 2011-02-23 16:03 - 00777488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys

2014-05-15 09:17 - 2010-11-01 17:02 - 00411680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys

2014-05-15 09:17 - 2010-11-01 17:02 - 00054832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswrdr.sys

2014-05-14 16:01 - 2014-05-14 16:01 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Java

2014-05-14 16:01 - 2014-05-14 15:57 - 00003966 _____ () C:\WINDOWS\system32\jupdate-1.7.0_55-b14.log

2014-05-14 16:01 - 2012-03-02 15:14 - 00000000 ____D () C:\Program Files\Java

2014-05-14 15:50 - 2012-07-02 15:51 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service

2014-05-14 15:40 - 2012-03-30 16:28 - 00692400 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe

2014-05-14 15:40 - 2011-06-28 14:31 - 00070832 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl

2014-05-14 15:36 - 2012-12-03 16:25 - 00002347 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader XI.lnk

2014-05-14 15:36 - 2010-11-01 17:29 - 00000000 ____D () C:\Program Files\Common Files\Adobe

2014-05-14 15:33 - 2014-05-14 15:33 - 00000000 ____D () C:\Program Files\Mozilla Firefox

2014-05-14 15:33 - 2014-05-01 13:01 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Adobe

2014-05-14 15:33 - 2014-05-01 12:00 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Adobe

2014-05-14 15:33 - 2010-11-01 17:27 - 00000000 ____D () C:\Program Files\Common Files\Adobe AIR

2014-05-14 15:01 - 2014-05-14 15:01 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Google

2014-05-14 14:59 - 2014-05-14 14:59 - 00000803 _____ () C:\Documents and Settings\test\Desktop\Internet Explorer.lnk

2014-05-14 14:59 - 2014-05-08 14:01 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Mozilla

2014-05-12 17:29 - 2014-05-12 17:29 - 00000000 ____D () C:\Documents and Settings\Jerry Richardson\Application Data\IObit

2014-05-12 17:27 - 2014-05-12 17:27 - 00000000 ____D () C:\b352f5a442b9f53f13d073d5

2014-05-12 17:27 - 2014-05-01 13:43 - 00000000 ____D () C:\Documents and Settings\Administrator

2014-05-12 17:27 - 2010-11-01 17:16 - 00000000 ____D () C:\WINDOWS\Registration

2014-05-12 17:26 - 2014-05-12 17:26 - 00000000 ____D () C:\Documents and Settings\test\Desktop\Florence woman of year - raw

2014-05-12 17:24 - 2014-05-12 15:29 - 00000000 ____D () C:\Program Files\Optimizer Pro(2)

2014-05-12 17:19 - 2008-04-14 07:00 - 00000823 _____ () C:\WINDOWS\win.ini

2014-05-12 17:14 - 2014-05-12 17:14 - 00000664 _____ () C:\WINDOWS\system32\d3d9caps.tmp

2014-05-12 17:14 - 2010-11-01 17:13 - 00000664 _____ () C:\WINDOWS\system32\d3d9caps.dat

2014-05-12 15:34 - 2013-10-18 17:45 - 00131072 _____ () C:\WINDOWS\system32\config\WindowsPowerShell.evt

2014-05-12 15:18 - 2014-05-12 15:18 - 00000000 ____D () C:\Program Files\VideoLAN

2014-05-12 10:53 - 2014-05-12 10:53 - 00000000 __SHD () C:\Documents and Settings\test\IECompatCache

2014-05-12 10:46 - 2014-05-12 10:46 - 00000000 __SHD () C:\Documents and Settings\test\PrivacIE

2014-05-08 20:21 - 2011-03-07 11:59 - 00000410 _____ () C:\WINDOWS\Tasks\AWC Update.job

2014-05-08 17:28 - 2010-11-01 11:02 - 00000000 ____D () C:\WINDOWS\pchealth

2014-05-08 17:08 - 2014-05-08 17:08 - 00000000 ____D () C:\Documents and Settings\test\Application Data\RealNetworks

2014-05-08 16:33 - 2014-05-08 16:33 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Mozilla

2014-05-08 15:00 - 2014-03-17 09:13 - 00000238 _____ () C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job

2014-05-08 14:02 - 2014-05-08 14:02 - 00047136 _____ () C:\Documents and Settings\test\Local Settings\Application Data\GDIPFONTCACHEV1.DAT

2014-05-08 14:02 - 2014-05-08 14:02 - 00000466 _____ () C:\WINDOWS\Tasks\Driver Support-RTMRules.job

2014-05-08 14:02 - 2014-05-08 14:02 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Driver Support

2014-05-08 14:01 - 2014-05-08 14:01 - 00000000 ____D () C:\Program Files\Driver Support

2014-05-07 08:59 - 2010-11-01 11:08 - 00065536 _____ () C:\WINDOWS\system32\config\SECURITY.iodefrag.old

2014-05-07 08:59 - 2010-11-01 11:07 - 35389440 _____ () C:\WINDOWS\system32\config\software.iodefrag.old

2014-05-07 08:58 - 2014-05-07 08:58 - 35348480 _____ () C:\WINDOWS\system32\config\software.iodefrag.bak

2014-05-07 08:58 - 2014-05-07 08:58 - 05349376 _____ () C:\WINDOWS\system32\config\default.iodefrag.bak

2014-05-07 08:58 - 2014-05-07 08:58 - 00065536 _____ () C:\WINDOWS\system32\config\SECURITY.iodefrag.bak

2014-05-07 08:58 - 2014-05-07 08:58 - 00028672 _____ () C:\WINDOWS\system32\config\SAM.iodefrag.bak

2014-05-06 17:35 - 2010-11-01 11:08 - 00262144 _____ () C:\WINDOWS\system32\config\SAM.iodefrag.old

2014-05-06 17:35 - 2010-11-01 11:07 - 05349376 _____ () C:\WINDOWS\system32\config\default.iodefrag.old

2014-05-02 13:58 - 2014-05-02 13:58 - 00000000 ___HD () C:\WINDOWS\$hf_mig$

2014-05-02 10:14 - 2010-11-01 17:26 - 00000000 ____D () C:\Documents and Settings\Jerry Richardson

2014-05-02 09:08 - 2014-05-01 13:46 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\LogMeIn Rescue Applet

2014-05-01 18:15 - 2014-05-01 13:43 - 00000178 ___SH () C:\Documents and Settings\Administrator\ntuser.ini

2014-05-01 16:55 - 2014-05-01 16:55 - 00000577 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\LMIR0001.tmp.bat

2014-05-01 16:55 - 2014-05-01 16:55 - 00000502 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\LMIR0001.tmp_r.bat

2014-05-01 16:51 - 2010-11-01 17:16 - 00000000 ____D () C:\WINDOWS\ie8updates

2014-05-01 16:41 - 2014-05-01 16:41 - 00030976 _____ () C:\WINDOWS\system32\Drivers\hitmanpro37.sys

2014-05-01 16:40 - 2010-11-01 11:07 - 00000221 ___SH () C:\boot.ini

2014-05-01 16:39 - 2014-05-01 16:39 - 00036222 _____ () C:\WINDOWS\system32\.crusader

2014-05-01 16:38 - 2014-05-01 16:20 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\HitmanPro

2014-05-01 16:17 - 2014-05-01 16:17 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Licenses

2014-05-01 16:16 - 2014-05-01 16:16 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Simply Super Software

2014-05-01 15:29 - 2008-04-14 07:00 - 00000227 _____ () C:\WINDOWS\system.ini

2014-05-01 14:53 - 2010-11-03 16:50 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes

2014-05-01 14:50 - 2014-05-01 14:50 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla

2014-05-01 14:50 - 2014-05-01 14:50 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Mozilla

2014-05-01 14:03 - 2014-05-01 14:02 - 00000738 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Outlook Express.lnk

2014-05-01 14:02 - 2014-05-01 14:02 - 00000803 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Internet Explorer.lnk

2014-05-01 14:02 - 2014-05-01 13:43 - 00000792 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Windows Media Player.lnk

2014-05-01 14:02 - 2014-05-01 13:43 - 00000000 ___RD () C:\Documents and Settings\Administrator\Start Menu\Programs\Accessories

2014-05-01 14:00 - 2014-05-01 14:00 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\IObit

2014-05-01 13:45 - 2014-05-01 13:45 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Google

2014-05-01 13:02 - 2014-05-01 13:02 - 00051712 ___SH () C:\Documents and Settings\test\My Documents\Thumbs.db

2014-05-01 13:02 - 2014-05-01 12:58 - 00005632 _____ () C:\Documents and Settings\test\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

2014-05-01 12:52 - 2014-05-01 12:52 - 00000000 ____D () C:\Documents and Settings\test\My Documents\x delete

2014-05-01 12:52 - 2014-05-01 12:52 - 00000000 ____D () C:\Documents and Settings\test\My Documents\Updater5

2014-05-01 12:49 - 2014-05-01 12:49 - 00000000 ____D () C:\Documents and Settings\test\My Documents\TomTom

2014-05-01 12:49 - 2014-05-01 12:47 - 00000000 ____D () C:\Documents and Settings\test\My Documents\Scuba trips

2014-05-01 12:47 - 2014-05-01 12:41 - 00000000 ___RD () C:\Documents and Settings\test\My Documents\pics and videos need sorting

2014-05-01 12:41 - 2014-05-01 12:41 - 00000000 ___RD () C:\Documents and Settings\test\My Documents\office files

2014-05-01 12:41 - 2014-05-01 12:41 - 00000000 ____D () C:\Documents and Settings\test\My Documents\My Smilebox Creations

2014-05-01 12:41 - 2014-05-01 12:41 - 00000000 ____D () C:\Documents and Settings\test\My Documents\Masons Folder

2014-05-01 12:29 - 2014-05-01 12:28 - 00000000 ____D () C:\Documents and Settings\test\My Documents\Florence woman of year - raw

2014-05-01 12:00 - 2014-05-01 12:00 - 00000803 _____ () C:\Documents and Settings\test\Start Menu\Programs\Internet Explorer.lnk

2014-05-01 12:00 - 2014-05-01 12:00 - 00000738 _____ () C:\Documents and Settings\test\Start Menu\Programs\Outlook Express.lnk

2014-05-01 12:00 - 2014-05-01 12:00 - 00000000 ____D () C:\Documents and Settings\test\Application Data\AVAST Software

2014-05-01 12:00 - 2014-05-01 11:59 - 00000792 _____ () C:\Documents and Settings\test\Start Menu\Programs\Windows Media Player.lnk

2014-05-01 12:00 - 2014-05-01 11:59 - 00000000 ___RD () C:\Documents and Settings\test\Start Menu\Programs\Accessories

2014-05-01 11:59 - 2014-05-01 11:59 - 00000000 ____D () C:\IObit

2014-05-01 10:32 - 2014-05-01 10:32 - 00000682 _____ () C:\Documents and Settings\All Users\Desktop\CCleaner.lnk

2014-05-01 10:32 - 2014-05-01 10:32 - 00000000 ____D () C:\Program Files\CCleaner

2014-05-01 10:32 - 2014-05-01 10:32 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\CCleaner

2014-04-30 03:13 - 2008-04-14 07:00 - 06022144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshtml.dll

2014-04-30 03:13 - 2008-04-14 07:00 - 06022144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2014-04-29 16:27 - 2010-11-01 11:08 - 00214472 _____ () C:\WINDOWS\system32\FNTCACHE.DAT

2014-04-29 16:23 - 2014-04-29 15:52 - 00181064 _____ (Sysinternals) C:\WINDOWS\PSEXESVC.EXE

2014-04-29 16:22 - 2010-11-01 11:11 - 00513832 _____ () C:\WINDOWS\system32\PerfStringBackup.INI

2014-04-29 16:19 - 2014-04-29 16:19 - 00000000 ____D () C:\Documents and Settings\LocalService\Start Menu\Programs\Accessories

2014-04-29 16:19 - 2010-11-01 17:19 - 00023392 _____ () C:\WINDOWS\system32\nscompat.tlb

2014-04-29 16:19 - 2010-11-01 17:19 - 00016832 _____ () C:\WINDOWS\system32\amcompat.tlb

2014-04-29 15:51 - 2014-04-29 15:51 - 00000000 ____D () C:\RegBackup

2014-04-29 15:51 - 2010-11-01 11:02 - 00000000 ____D () C:\WINDOWS\repair

2014-04-29 15:50 - 2014-05-01 12:29 - 00001812 _____ () C:\Documents and Settings\test\Desktop\Tweaking.com - Windows Repair (All in One).lnk

2014-04-29 15:50 - 2014-04-29 15:50 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Tweaking.com

2014-04-29 15:46 - 2014-04-29 15:46 - 00000000 ____D () C:\Program Files\Tweaking.com

2014-04-29 15:38 - 2014-04-29 14:04 - 00000000 ____D () C:\Documents and Settings\abc

2014-04-29 13:52 - 2014-04-29 12:14 - 00000000 ____D () C:\WINDOWS\pss

2014-04-29 13:37 - 2013-08-26 15:31 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2

2014-04-29 13:35 - 2014-04-29 13:35 - 00000000 _____ () C:\WINDOWS\system32\앀ɗ㹨Ɋlotserviceruntime.log

2014-04-29 13:27 - 2014-04-29 13:27 - 00000000 __SHD () C:\WINDOWS\CSC

2014-04-29 13:20 - 2013-08-26 15:43 - 00458752 _____ () C:\WINDOWS\system32\config\SpybotSD.evt

2014-04-29 13:03 - 2012-05-30 15:41 - 00001323 _____ () C:\WINDOWS\wininit.ini

2014-04-28 09:17 - 2014-04-28 09:17 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr

2014-04-28 09:17 - 2014-04-28 09:17 - 00024184 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys

2014-04-28 09:17 - 2013-03-01 17:22 - 00180632 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys

2014-04-28 09:17 - 2013-03-01 17:22 - 00067824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswmonflt.sys

2014-04-28 09:17 - 2013-03-01 17:22 - 00049944 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys

2014-04-28 09:17 - 2011-02-23 16:03 - 00776976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys.1400163468437

2014-04-28 09:17 - 2010-11-01 17:02 - 00271264 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe

2014-04-28 09:17 - 2010-11-01 17:02 - 00057672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys

2014-04-28 09:17 - 2010-11-01 17:02 - 00054832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswrdr.sys.1400163468437

2014-04-25 13:50 - 2014-05-01 12:29 - 00000770 _____ () C:\Documents and Settings\test\Desktop\Video Performer.lnk

2014-04-23 09:17 - 2010-11-01 17:25 - 00000178 ___SH () C:\Documents and Settings\LocalService\ntuser.ini

 

Files to move or delete:

====================

C:\Windows\Tasks\At1.job

 

 

Some content of TEMP:

====================

C:\Documents and Settings\test\Local Settings\Temp\210f4088-0b95-4280-8112-3f8dd51aea03.exe

C:\Documents and Settings\test\Local Settings\Temp\BackupSetup.exe

C:\Documents and Settings\test\Local Settings\Temp\f.exe

C:\Documents and Settings\test\Local Settings\Temp\Quarantine.exe

C:\Documents and Settings\test\Local Settings\Temp\System.Data.SQLite.dll

C:\Documents and Settings\test\Local Settings\Temp\vcredist_x86.exe

 

 

==================== Bamital & volsnap Check =================

 

C:\WINDOWS\explorer.exe => MD5 is legit

C:\WINDOWS\system32\winlogon.exe => MD5 is legit

C:\WINDOWS\system32\svchost.exe => MD5 is legit

C:\WINDOWS\system32\services.exe => MD5 is legit

C:\WINDOWS\system32\User32.dll => MD5 is legit

C:\WINDOWS\system32\userinit.exe => MD5 is legit

C:\WINDOWS\system32\rpcss.dll => MD5 is legit

C:\WINDOWS\system32\Drivers\volsnap.sys => MD5 is legit

 

==================== End Of Log ============================

Share this post


Link to post
Share on other sites

Good!

 

Please, follow item 2 in post #6.

Share this post


Link to post
Share on other sites

Did I do this right...?

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version:25-05-2014 02
Ran by test at 2014-05-27 14:44:55 Run:1
Running from C:\Documents and Settings\test\Desktop
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2014-05-14]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA} [2014-05-14]
S3 KCFdcDevice0; No ImagePath
S0 Lbd; system32\DRIVERS\Lbd.sys [X]
S3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [30976 2014-05-01] ()
2014-05-12 15:29 - 2014-05-12 17:24 - 00000000 ____D () C:\Program Files\Optimizer Pro(2)
2014-05-12 15:25 - 2014-05-19 12:25 - 00000412 _____ () C:\WINDOWS\Tasks\At1.job
2014-05-01 16:20 - 2014-05-01 16:38 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\HitmanPro
2014-05-01 16:17 - 2014-05-01 16:17 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Licenses
2014-05-01 16:16 - 2014-05-01 16:16 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Simply Super Software
Task: C:\WINDOWS\Tasks\At1.job => C:\DOCUME~1\test\APPLIC~1\PRICEM~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
C:\DOCUME~1\test\APPLIC~1\PRICEM~1
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:373E1720
*****************

C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} => Moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA} => Moved successfully.
KCFdcDevice0 => Service deleted successfully.
Lbd => Service deleted successfully.
hitmanpro37 => Service deleted successfully.
C:\Program Files\Optimizer Pro(2) => Moved successfully.
C:\WINDOWS\Tasks\At1.job => Moved successfully.
C:\Documents and Settings\All Users\Application Data\HitmanPro => Moved successfully.
C:\Documents and Settings\All Users\Application Data\Licenses => Moved successfully.
C:\Documents and Settings\All Users\Application Data\Simply Super Software => Moved successfully.
C:\WINDOWS\Tasks\At1.job not found.
"C:\DOCUME~1\test\APPLIC~1\PRICEM~1" => File/Directory not found.
C:\Documents and Settings\All Users\Application Data\TEMP => ":373E1720" ADS removed successfully.

==== End of Fixlog ====

Share this post


Link to post
Share on other sites

Good!

 

How is the computer doing now?

Do you still see Trovi search?

Share this post


Link to post
Share on other sites

Still got it on Chrome. I delete it from "Manage Search Engines" but when I close Chrome and reopen it, Trovi comes back.

Share this post


Link to post
Share on other sites

Please, right-click the icon or menu item, that you use to start Chrome, and select Properties.

On the Shortcut tab, check the field Target.

Does it end with chrome.exe or is there something after chrome.exe?

If there is something after, please remove everything after chrome.exe.

 

Do you have your Chrome settings synchronized?

Then it's possible that Chrome changes back the settings.

Share this post


Link to post
Share on other sites

The properties for the Chrome icon/shortcut show Target "C:\Program Files\Google\Chrome\Application\chrome.exe"

 

The other user was signed into Google Plus. I signed out of that, went to Chrome settings, removed Trvoi search, closed and started Chrome - and it came back again. Amazing huh?

 

One might think that almighty google would protect themselves better...?!

Share this post


Link to post
Share on other sites

It's possible to reset everything in Chrome, please read carefully what it does: https://support.google.com/chrome/answer/3296214?hl=en

 

About syncronization:

https://support.google.com/chrome/answer/165139?hl=en

https://support.google.com/chrome/answer/2591582?hl=en

 

Make sure that Avast is configured to detect PUP during scans. Scan the computer with Avast and Ad-Aware.

 

Run an online scan with Eset http://www.eset.com/onlinescan/

To shorten the scanning time disable your antivirus program while scanning.

 

Un-check "Remove found threats"

Check "Scan Archives"

 

Click "Advanced Settings"

Check:

Scan for potentially unwanted applications

Scan for potentially unsafe applications

Enable Anti-Stealth Technology

 

Click Start

 

When the scan is finished, click on "List of found threats" and then "Export to text file". Copy the content of the text file and paste its content in your answer.

Share this post


Link to post
Share on other sites

It seems to be fixed? I'll check again in a few days and come back to this if needed.

 

thanks!

Share this post


Link to post
Share on other sites

You're welcome :)

 

I'm glad it seems to be resolved.

Share this post


Link to post
Share on other sites

You're welcome :)

 

Time for final clean-up.

1. Please, turn off all programs, including browsers.
Double-click on AdwCleaner to start the program.

Click on the Uninstall button.

2. To uninstall FRST and DDS, please download OTC http://oldtimer.geekstogo.com/OTC.exe
Close all programs.
Start OTC program.
Click the CleanUp! button.
If you are asked to reboot, select Yes.
If any logs remain on the computer you can remove them.

3. It is very important to keep Windows and all programs updated. An old version of, for example, Flash contains vulnerabilities that makes it easy to infect the computer from a web page. To help you with keeping everything updated you can use the program Secunia Personal Software Inspector (PSI). http://www.bleepingcomputer.com/tutorials/detect-vulnerable-programs-with-secunia-psi/ describes how to install and use the program.

Share this post


Link to post
Share on other sites

Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. :)

 

If you're the topic starter, and need this topic reopened, please contact the staff member who was helping you with your issue.

 

Everyone else please begin a New Topic.

 

Thank you !

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.
Sign in to follow this