Jump to content

homeshopper

Members
 View Profile  See their activity

  • Posts

    6

  • Joined

  • Last visited

 Content Type 

Everything posted by homeshopper

  1. homeshopper
    I have now sent a request to support Thanks for the help Best Regards
  2. homeshopper
    also get hijacked by http://lp.allfree-apps.net/pdfcreator/?o=43&campid=20173&creaid=43&reqid=415126226
  3. homeshopper
    Webpage error details User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET CLR 1.1.4322; .NET4.0C; .NET4.0E; WWTClient2) Timestamp: Sat, 8 Mar 2014 18:52:11 UTC Message: Script error Line: 0 Char: 0 Code: 0 URI: http://static.fastfreeconverter.com/apps/tv-classic/tv-classic-noboot-fg.js
  4. homeshopper
    Malwarebytes Anti-Malware (PRO) 1.75.0.1300 www.malwarebytes.org Database version: v2014.03.08.03 Windows XP Service Pack 3 x86 NTFS Internet Explorer 8.0.6001.18702 Ian :: DINOSAUR1 [administrator] Protection: Enabled 08/03/2014 18:15:59 mbam-log-2014-03-08 (18-15-59).txt Scan type: Quick scan Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 233333 Time elapsed: 21 minute(s), 49 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) (end)
  5. homeshopper
    . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2012-11-20.01) . Microsoft Windows XP Professional Boot Device: \Device\HarddiskVolume1 Install Date: 02/03/2014 22:15:20 System Uptime: 08/03/2014 12:55:51 (3 hours ago) . Motherboard: DIXONSXP | | DIXONSXP Processor: Intel® Celeron® M CPU 430 @ 1.73GHz | U2E1 | 1733/mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 68 GiB total, 32.173 GiB free. D: is FIXED (NTFS) - 6 GiB total, 5.622 GiB free. E: is CDROM () F: is CDROM (UDF) H: is Removable . ==== Disabled Device Manager Items ============= . ==== System Restore Points =================== . RP138: 08/03/2014 12:48:37 - Software Distribution Service 3.0 . ==== Image File Execution Options ============= . IFEO: acrord32.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe" IFEO: bootrace.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe" IFEO: convert.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe" IFEO: driverrestore.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe" IFEO: fufaxcnt.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe" IFEO: gmpoint.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe" IFEO: licensecheck.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe" IFEO: localhelp.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe" IFEO: localreadme.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe" IFEO: pmsb.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe" IFEO: prestopm.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe" IFEO: setup.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe" IFEO: Your Image File Name Here without a path - ntsd -d . ==== Hosts File Hijack ====================== . Hosts: 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com Hosts: 0.0.0.0 media.opencandy.com Hosts: 0.0.0.0 cdn.opencandy.com Hosts: 0.0.0.0 tracking.opencandy.com Hosts: 0.0.0.0 api.opencandy.com Hosts: 0.0.0.0 installer.betterinstaller.com Hosts: 0.0.0.0 installer.filebulldog.com Hosts: 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net Hosts: 0.0.0.0 inno.bisrv.com Hosts: 0.0.0.0 nsis.bisrv.com Hosts: 0.0.0.0 cdn.file2desktop.com Hosts: 0.0.0.0 cdn.goateastcach.us Hosts: 0.0.0.0 cdn.guttastatdk.us Hosts: 0.0.0.0 cdn.inskinmedia.com Hosts: 0.0.0.0 cdn.insta.oibundles2.com Hosts: 0.0.0.0 cdn.insta.playbryte.com Hosts: 0.0.0.0 cdn.llogetfastcach.us Hosts: 0.0.0.0 cdn.montiera.com Hosts: 0.0.0.0 cdn.msdwnld.com Hosts: 0.0.0.0 cdn.mypcbackup.com Hosts: 0.0.0.0 cdn.ppdownload.com Hosts: 0.0.0.0 cdn.riceateastcach.us Hosts: 0.0.0.0 cdn.shyapotato.us Hosts: 0.0.0.0 cdn.solimba.com Hosts: 0.0.0.0 cdn.tuto4pc.com Hosts: 0.0.0.0 cdn.appround.biz Hosts: 0.0.0.0 cdn.bigspeedpro.com Hosts: 0.0.0.0 cdn.bispd.com Hosts: 0.0.0.0 cdn.bisrv.com Hosts: 0.0.0.0 cdn.cdndp.com Hosts: 0.0.0.0 cdn.download.sweetpacks.com Hosts: 0.0.0.0 cdn.dpdownload.com Hosts: 0.0.0.0 cdn.visualbee.net . ==== Installed Programs ====================== . Adobe Flash Player 11 ActiveX Adobe Reader 8.1.0 Amazon Kindle AVG 2013 AVG PC TuneUp 2014 AVG PC TuneUp 2014 (en-US) Belarc Advisor 8.1 Belkin Desktop PCI Card Driver BitZipper 2013 BootRacer Browser Repair Tool 1.0.39 CaptureWizPro 4.50 ColorPic Crystal Reports Basic for Visual Studio 2008 Diagram Designer Ditto Driver Restore DriverUpdate Effective File Search 6.8.1 EPSON BX305 Series Manual EPSON BX305 Series Network Guide EPSON BX305 Series Printer Uninstall Epson Easy Photo Print 2 Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) Epson FAX Utility Epson PC-FAX Driver EPSON Scan EpsonNet Print EpsonNet Setup 3.3 eReg FastCGI 1.5 (x86) RTW Free FLV Converter GIGABYTE Gigabyte Wireless Adapter Google Chrome Google Drive Google Update Helper Handy Start Menu version 1.92 Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946040) Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946308) Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946344) Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947540) Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789) Hotfix for Microsoft Visual Studio Team System 2008 Team Suite - ENU (KB971091) Hotfix for Microsoft Visual Studio Team System 2008 Team Suite - ENU (KB973674) iCopy IIS 7.5 Express Intel® Graphics Media Accelerator Driver Intel® PROSet/Wireless Software JRuler Pro 3.1 Logitech SetPoint 6.61 Malwarebytes Anti-Malware version 1.75.0.1300 mCore mDriver mDrWiFi mHelp Microsoft .NET Compact Framework 2.0 SP2 Microsoft .NET Compact Framework 3.5 Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Security Update (KB2833941) Microsoft .NET Framework 2.0 Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 4 Client Profile Microsoft .NET Framework 4 Extended Microsoft Application Error Reporting Microsoft ASP.NET Web Pages Microsoft Choice Guard Microsoft Device Emulator version 3.0 - ENU Microsoft Document Explorer 2008 Microsoft Kernel-Mode Driver Framework Feature Pack 1.9 Microsoft Office 2003 Web Components Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office Shared MUI (English) 2007 Microsoft Office Shared Setup Metadata MUI (English) 2007 Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3) Microsoft Office Visual Web Developer 2007 Microsoft Office Visual Web Developer MUI (English) 2007 Microsoft Silverlight Microsoft SQL Server 2000 Sample Database Scripts Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft SQL Server 2008 Microsoft SQL Server 2008 Analysis Services Microsoft SQL Server 2008 BI Development Studio Microsoft SQL Server 2008 Books Online (October 2009) Microsoft SQL Server 2008 Browser Microsoft SQL Server 2008 Client Tools Microsoft SQL Server 2008 Common Files Microsoft SQL Server 2008 Database Engine Services Microsoft SQL Server 2008 Database Engine Shared Microsoft SQL Server 2008 Full text search Microsoft SQL Server 2008 Integration Services Microsoft SQL Server 2008 Management Studio Microsoft SQL Server 2008 Policies Microsoft SQL Server 2008 R2 Management Objects Microsoft SQL Server 2008 R2 Native Client Microsoft SQL Server 2008 Reporting Services Microsoft SQL Server 2008 RsFx Driver Microsoft SQL Server 2008 Setup Support Files (English) Microsoft SQL Server Compact 3.5 Design Tools ENU Microsoft SQL Server Compact 3.5 ENU Microsoft SQL Server Compact 3.5 for Devices ENU Microsoft SQL Server Compact 3.5 SP1 Query Tools English Microsoft SQL Server Compact 4.0 ENU Microsoft SQL Server Compact 4.0 Web Tools ENU Microsoft SQL Server Database Publishing Wizard 1.2 Microsoft SQL Server Native Client Microsoft SQL Server Setup Support Files (English) Microsoft SQL Server System CLR Types Microsoft SQL Server VSS Writer Microsoft Sync Framework Runtime v1.0 (x86) Microsoft Sync Services for ADO.NET v2.0 (x86) Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual Studio 2005 Tools for Office Runtime Microsoft Visual Studio 2008 Performance Collection Tools - ENU Microsoft Visual Studio 2008 Shell (integrated mode) - ENU Microsoft Visual Studio Team System 2008 Team Suite - ENU Microsoft Visual Studio Tools for Applications 2.0 - ENU Microsoft Visual Studio Web Authoring Component Microsoft Web Deploy 2.0 Microsoft Web Platform Installer 3.0 Microsoft WebMatrix Microsoft Windows SDK for Visual Studio 2008 .NET Framework Tools Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries Microsoft Windows SDK for Visual Studio 2008 SDK Reference Assemblies and IntelliSense Microsoft Windows SDK for Visual Studio 2008 Tools Microsoft Windows SDK for Visual Studio 2008 Win32 Tools Microsoft WorldWide Telescope mIWA mLogView mMHouse Motorola SM56 Speakerphone Modem mPfMgr mPfWiz mProSafe mSCfg MSVCRT MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) MSXML 6 Service Pack 2 (KB973686) mWlsSafe MyEpson Portal mZConfig Nero 12 Nero Audio Pack 1 Nero BackItUp Nero BackItUp Help (CHM) Nero Backup Drivers Nero Blu-ray Player Nero Blu-ray Player Help (CHM) Nero Burning ROM Nero Burning ROM Help (CHM) Nero ControlCenter Nero ControlCenter Help (CHM) Nero Core Components Nero Disc Menus Basic Nero Effects Basic Nero Express Nero Express Help (CHM) Nero Kwik Media Nero Kwik Media Help (CHM) Nero Kwik Themes Basic Nero PiP Effects Basic Nero Recode Nero Recode Help (CHM) Nero RescueAgent Nero RescueAgent Help (CHM) Nero SharedVideoCodecs Nero Update Nero Video Nero Video Help (CHM) neroxml Notepad++ OpenOffice.org 3.4.1 OpenWith (Enhanced) Pegasus Mail Pegasus Mail HTML Renderer 2.4.7.2 Philips SPM 7800 Prerequisite installer Presto! PageManager 9.00.11 SE Programming Microsoft SQL Server 2005 Programming Microsoft SQL Server 2008 Ralink RT2870 Wireless LAN Card REALTEK GbE & FE Ethernet PCI NIC Driver Realtek High Definition Audio Driver Right Click Enhancer 4.1.4 Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428) Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595) Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642) Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2861188) Security Update for Microsoft .NET Framework 4 Client Profile (KB2898855v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2901110v2) Security Update for Microsoft .NET Framework 4 Extended (KB2487367) Security Update for Microsoft .NET Framework 4 Extended (KB2736428) Security Update for Microsoft .NET Framework 4 Extended (KB2742595) Security Update for Microsoft .NET Framework 4 Extended (KB2858302v2) Security Update for Microsoft .NET Framework 4 Extended (KB2901110v2) Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2817641) 32-Bit Edition Security Update for Windows Internet Explorer 8 (KB2510531) Security Update for Windows Internet Explorer 8 (KB2618444) Security Update for Windows Internet Explorer 8 (KB2744842) Security Update for Windows Internet Explorer 8 (KB2862772) Security Update for Windows Internet Explorer 8 (KB2909210) Security Update for Windows Internet Explorer 8 (KB2909921) Security Update for Windows Internet Explorer 8 (KB982381) Security Update for Windows XP (KB2510581) Security Update for Windows XP (KB2909212) Security Update for Windows XP (KB2909921) Security Update for Windows XP (KB923789) Security Update for Windows XP (KB975713) Segoe UI Soft Organizer version 3.33 Sql Server Customer Experience Improvement Program Stellarium 0.12.2RC1 TabExplorer Unchecky v0.2.9 UndeleteMyFiles Pro Update for 2007 Microsoft Office System (KB967642) Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) Update for Microsoft .NET Framework 4 Extended (KB2468871) Update for Microsoft .NET Framework 4 Extended (KB2533523) Update for Microsoft .NET Framework 4 Extended (KB2600217) Update for Microsoft .NET Framework 4 Extended (KB2836939v3) Update for Microsoft Office 2007 Help for Common Features (KB963673) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition Update for Microsoft Office Script Editor Help (KB963671) Update for Microsoft Visual Studio Team System 2008 Team Suite - ENU (KB972221) Update for Windows Internet Explorer 8 (KB2598845) Update for Windows Internet Explorer 8 (KB2632503) Update for Windows XP (KB2934207) Update for Windows XP (KB951978) USB2.0 Graphics Card (Trigger) 8.1.1.0530.0146 Visual C++ 2008 IA64 Runtime - (v9.0.30729) Visual C++ 2008 IA64 Runtime - v9.0.30729.01 Visual C++ 2008 x64 Runtime - (v9.0.30729) Visual C++ 2008 x64 Runtime - v9.0.30729.01 Visual C++ 2008 x86 Runtime - (v9.0.30729) Visual C++ 2008 x86 Runtime - v9.0.30729.01 Visual Studio 2005 Tools for Office Second Edition Runtime Visual Studio Tools for the Office system 3.0 Runtime WebFldrs XP Welcome App (Start-up experience) Windows Internet Explorer 8 Windows Live Communications Platform Windows Live Essentials Windows Live ID Sign-in Assistant Windows Live Photo Gallery Windows Live Sync Windows Live Upload Tool Windows Management Framework Core Windows Media Format 11 runtime Windows Media Format SDK Hotfix - KB891122 Windows Media Player 11 Windows Mobile 5.0 SDK R2 for Pocket PC Windows Mobile 5.0 SDK R2 for Smartphone Zoftar ISO Burner 1.2.5 . ==== Event Viewer Messages From Past Week ======== . 03/03/2014 17:57:13, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Application Layer Gateway Service service to connect. 03/03/2014 17:57:13, error: Service Control Manager [7000] - The Application Layer Gateway Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. 03/03/2014 17:31:47, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft XML Core Services 6.0 Service Pack 2 (KB954459). 03/03/2014 17:09:42, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Microsoft .NET Framework version 1.1. 03/03/2014 16:48:01, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x8007f0f4: Security Update for Windows Media Player 9 for Windows XP SP2 (KB979402). 03/03/2014 13:26:01, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Ralink UPnP Media Server service to connect. 03/03/2014 13:26:00, error: Service Control Manager [7001] - The Message Queuing Triggers service depends on the Message Queuing service which failed to start because of the following error: The dependency service or group failed to start. 03/03/2014 13:26:00, error: Service Control Manager [7001] - The Message Queuing service depends on the Distributed Transaction Coordinator service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it. 03/03/2014 12:18:19, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service upnphost with arguments "" in order to run the server: {204810B9-73B2-11D4-BF42-00B0D0118B56} 03/03/2014 12:18:15, error: ipnathlp [32003] - The Network Address Translator (NAT) was unable to request an operation of the kernel-mode translation module. This may indicate misconfiguration, insufficient resources, or an internal error. The data is the error code. 03/03/2014 12:05:51, error: ipnathlp [30013] - The DHCP allocator has disabled itself on IP address 192.168.123.1, since the IP address is outside the 192.168.0.0/255.255.255.0 scope from which addresses are being allocated to DHCP clients. To enable the DHCP allocator on this IP address, please change the scope to include the IP address, or change the IP address to fall within the scope. 03/03/2014 12:05:27, error: Service Control Manager [7006] - The ScRegSetValueExW call failed for Type with the following error: Access is denied. 03/03/2014 10:41:07, error: Tcpip [4199] - The system detected an address conflict for IP address 192.168.0.1 with the system having network hardware address 7C:4C:A5:9F:98:38. Network operations on this system may be disrupted as a result. 03/03/2014 10:13:12, error: Dhcp [1002] - The IP address lease 192.168.0.2 for the Network Card with network address 0019DB02C6E3 has been denied by the DHCP server 0.0.0.0 (The DHCP Server sent a DHCPNACK message). 03/03/2014 08:51:52, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the avgwd service. 03/03/2014 08:34:18, error: Service Control Manager [7000] - The AVG Theme Extension service failed to start due to the following error: The executable program that this service is configured to run in does not implement the service. 03/03/2014 07:47:34, error: Removable Storage Service [111] - RSM could not load media in drive Drive 0 of library Generic Storage Device USB Device. . ==== End Of File =========================== DDS (Ver_2012-11-20.01) - NTFS_x86 Internet Explorer: 8.0.6001.18702 Run by Ian at 15:11:42 on 2014-03-08 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2038.197 [GMT 0:00] . AV: AVG Premium Security 2013 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF} FW: AVG Premium Security 2013 *Enabled* . ============== Running Processes ================ . C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Google\Update\1.3.22.5\GoogleCrashHandler.exe C:\Program Files\Logitech\SetPointP\SetPoint.exe C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\USBStorage\USBDetector.exe C:\WINDOWS\system32\mct5001.exe C:\WINDOWS\system32\mctudll.exe C:\WINDOWS\system32\spool\drivers\w32x86\3\WrtMon.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe C:\WINDOWS\system32\spool\drivers\w32x86\3\WrtProc.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\system32\igfxsrvc.exe C:\Program Files\Google\Drive\googledrivesync.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIGJE.EXE C:\Program Files\Ditto\Ditto.exe C:\Documents and Settings\Ian\Local Settings\Application Data\ChemTable Software\Handy Start Menu\HandyStartMenu.exe C:\Program Files\GIGABYTE\Common\GNConfig.exe C:\Program Files\TabExplorer\TabExplorer.exe C:\Program Files\Windows Desktop Search\WindowsSearch.exe C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE C:\Program Files\CaptureWiz\Pro\CaptureWiz.exe C:\Program Files\OpenOffice.org 3\program\soffice.exe C:\Program Files\OpenOffice.org 3\program\soffice.bin C:\Documents and Settings\Ian\Local Settings\Application Data\ChemTable Software\Handy Start Menu\StartMenuService.exe C:\Program Files\Google\Drive\googledrivesync.exe C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe C:\Prey\platform\windows\cronsvc.exe C:\WINDOWS\system32\inetsrv\inetinfo.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files\Microsoft SQL Server\100\DTS\Binn\MsDtsSrvr.exe C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\sqlservr.exe C:\Program Files\Microsoft SQL Server\MSAS10.MSSQLSERVER\OLAP\bin\msmdsrv.exe C:\Program Files\EPSON\MyEpson Portal\mepService.exe C:\Program Files\Nero\Update\NASvc.exe C:\Program Files\Ralink\Common\RaRegistry.exe C:\Program Files\Microsoft SQL Server\MSRS10.MSSQLSERVER\Reporting Services\ReportServer\bin\ReportingServicesService.exe C:\WINDOWS\System32\snmp.exe C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SQLAGENT.EXE C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe C:\Program Files\Unchecky\bin\unchecky_svc.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Program Files\Unchecky\bin\unchecky_bg.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\Program Files\EPSON\MyEpson Portal\mep.exe C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesApp32.exe C:\WINDOWS\System32\alg.exe C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe C:\Program Files\Notepad++\notepad++.exe C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\devenv.exe C:\Documents and Settings\Ian\My Documents\Google Drive\DriveExtra\camsProjects\_BISolutions\sqlCamsCSplusDev\Chapter18WinClient\bin\Debug\Chapter18WinClient.vshost.exe C:\WINDOWS\system32\taskmgr.exe C:\Program Files\Common Files\Microsoft Shared\DevServer\9.0\WebDev.WebServer.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\system32\svchost.exe -k netsvcs C:\WINDOWS\system32\svchost.exe -k NetworkService C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\System32\svchost.exe -k HTTPFilter . ============== Pseudo HJT Report =============== . BHO: Adobe PDF Reader Link Helper: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: Easy Photo Print: {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - c:\program files\epson software\easy photo print\EPTBL.dll BHO: FreeFLVConverter: {DC7CE5D0-3608-4FD0-8853-D5822E02135D} - c:\program files\free flv converter\FreeFLVConverter.dll BHO: Microsoft Web Test Recorder 9.0 Helper: {E31CE47F-C268-41ba-897B-B415E613947D} - c:\program files\microsoft visual studio 9.0\common7\ide\privateassemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO90.dll TB: Easy Photo Print: {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - c:\program files\epson software\easy photo print\EPTBL.dll EB: Web Test Recorder 9.0: {3C7ADADE-D1E8-45d2-BDCD-7F8D8B99B2A2} - uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe uRun: [GoogleDriveSync] "c:\program files\google\drive\googledrivesync.exe" /autostart uRun: [scan Buttons] c:\program files\newsoft\presto! pagemanager 9 for ep\PMSB.EXE uRun: [Epson Stylus Office BX305(Network)] c:\windows\system32\spool\drivers\w32x86\3\e_fatigje.exe /fu "c:\windows\temp\E_S1E9.tmp" /EF "HKCU" uRun: [Driver Restore] c:\program files\driver restore\driver restore\DriverRestore.exe /applicationMode:systemTray /showWelcome:false uRun: [Ditto] c:\program files\ditto\Ditto.exe uRun: [Handy Start Menu] "c:\documents and settings\ian\local settings\application data\chemtable software\handy start menu\HandyStartMenu.exe" /Enable uRun: [TabExplorer] "c:\program files\tabexplorer\TabExplorerStarter.exe" /systemstartup mRun: [MsmqIntCert] regsvr32 /s mqrt.dll mRun: [gmPoint] c:\program files\philips spm 7800\gmPoint.exe mRun: [gmOpen] c:\program files\philips spm 7800\gmOpen.exe mRun: [EvtMgr6] c:\program files\logitech\setpointp\SetPoint.exe /launchGaming mRun: [AVG_UI] "c:\program files\avg\avg2013\avgui.exe" /TRAYONLY mRun: [igfxTray] c:\windows\system32\igfxtray.exe mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe mRun: [Persistence] c:\windows\system32\igfxpers.exe mRun: [uSBDetector] c:\usbstorage\USBDetector.exe mRun: [MCT5001] c:\windows\system32\mct5001.exe mRun: [mctudll] c:\windows\system32\mctudll.exe mRun: [intelZeroConfig] "c:\program files\intel\wireless\bin\ZCfgSvc.exe" mRun: [intelWireless] "c:\program files\intel\wireless\bin\ifrmewrk.exe" /tf Intel PROSet/Wireless mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe" mRun: [WrtMon.exe] c:\windows\system32\spool\drivers\w32x86\3\WrtMon.exe mRun: [PMSpeed] c:\program files\newsoft\presto! pagemanager 9 for ep\PMSpeed.EXE mRun: [FUFAXSTM] "c:\program files\epson software\fax utility\FUFAXSTM.exe" mRun: [RTHDCPL] RTHDCPL.EXE mRun: [sMSERIAL] c:\program files\motorola\smserial\sm56hlpr.exe dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE mExplorerRun: [bootRacer] "c:\program files\bootracer\Bootrace.exe" /2 StartupFolder: c:\docume~1\ian\startm~1\programs\startup\captur~1.lnk - c:\program files\capturewiz\pro\CaptureWiz.exe StartupFolder: c:\docume~1\ian\startm~1\programs\startup\openof~1.lnk - c:\program files\openoffice.org 3\program\quickstart.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\gigaby~1.lnk - c:\program files\gigabyte\common\GNConfig.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\ralink~1.lnk - c:\program files\ralink\common\RaUI.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\window~1.lnk - c:\program files\windows desktop search\WindowsSearch.exe uPolicies-Explorer: NoDriveTypeAutoRun = dword:145 mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1 mPolicies-Explorer: NoDriveTypeAutoRun = dword:145 IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe TCP: NameServer = 192.168.0.1 TCP: Interfaces\{D8635840-C351-4098-A70D-08A00E429848} : DHCPNameServer = 192.168.0.1 Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - c:\program files\belarc\advisor\system\BAVoilaX.dll Notify: igfxcui - igfxdev.dll Notify: LBTWlgn - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll SEH: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\33.0.1750.146\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome IFEO: acrord32.exe - "c:\program files\avg\avg pc tuneup\TUAutoReactivator32.exe" IFEO: bootrace.exe - "c:\program files\avg\avg pc tuneup\TUAutoReactivator32.exe" IFEO: convert.exe - "c:\program files\avg\avg pc tuneup\TUAutoReactivator32.exe" IFEO: driverrestore.exe - "c:\program files\avg\avg pc tuneup\TUAutoReactivator32.exe" IFEO: fufaxcnt.exe - "c:\program files\avg\avg pc tuneup\TUAutoReactivator32.exe" . Note: multiple IFEO entries found. Please refer to Attach.txt Hosts: 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com Hosts: 0.0.0.0 media.opencandy.com Hosts: 0.0.0.0 cdn.opencandy.com Hosts: 0.0.0.0 tracking.opencandy.com Hosts: 0.0.0.0 api.opencandy.com . Note: multiple HOSTS entries found. Please refer to Attach.txt . ============= SERVICES / DRIVERS =============== . R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2013-7-20 60216] R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [2013-7-20 246072] R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2013-7-1 96568] R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2013-10-23 39224] R0 NBVol;Nero Backup Volume Filter Driver;c:\windows\system32\drivers\NBVol.sys [2014-3-4 57272] R0 NBVolUp;Nero Backup Volume Upper Filter Driver;c:\windows\system32\drivers\NBVolUp.sys [2014-3-4 13240] R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2013-11-25 208184] R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2013-10-23 22328] R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2013-7-20 171320] R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2013-3-21 182072] R2 avgfws;AVG Firewall;c:\program files\avg\avg2013\avgfws.exe [2013-10-23 1432080] R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2013\avgidsagent.exe [2013-7-4 4939312] R2 avgwd;AVG WatchDog;c:\program files\avg\avg2013\avgwdsvc.exe [2013-11-20 283136] R2 CronService;Cron Service for Prey;c:\prey\platform\windows\cronsvc.exe [2013-5-8 23552] R2 LBeepKE;Logitech Beep Suppression Driver;c:\windows\system32\drivers\LBeepKE.sys [2014-3-3 10136] R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2014-3-3 418376] R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2014-3-3 701512] R2 MsDtsServer100;SQL Server Integration Services 10.0;c:\program files\microsoft sql server\100\dts\binn\MsDtsSrvr.exe [2008-7-10 218136] R2 MyEpson Portal Service;MyEpson Portal Service;c:\program files\epson\myepson portal\mepService.exe [2011-9-16 703584] R2 NAUpdate;Nero Update;c:\program files\nero\update\NASvc.exe [2012-7-13 769432] R2 RalinkRegistryWriter;RalinkRegistryWriter;c:\program files\ralink\common\RaRegistry.exe [2014-3-3 372736] R2 ReportServer;SQL Server Reporting Services (MSSQLSERVER);c:\program files\microsoft sql server\msrs10.mssqlserver\reporting services\reportserver\bin\ReportingServicesService.exe [2008-7-10 1106968] R2 Scutum50;Scutum50 NDIS Protocol Driver;c:\windows\system32\drivers\Scutum50.sys [2014-3-3 19072] R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files\avg\avg pc tuneup\TuneUpUtilitiesService32.exe [2013-12-18 1741624] R2 Unchecky;Unchecky;c:\program files\unchecky\bin\unchecky_svc.exe [2014-3-4 107624] R3 Avgfwdx;Avgfwdx;c:\windows\system32\drivers\avgfwdx.sys [2012-1-12 30944] R3 gmhidlow;HID Mouse Lower Filter;c:\windows\system32\drivers\gmhidlow.sys [2014-3-3 12160] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2014-3-3 22856] R3 TrgExGrp;TrgExGrp;c:\windows\system32\drivers\TrgExGrp.sys [2014-3-3 12672] R3 TrgMrGrp;TrgMrGrp;c:\windows\system32\drivers\TrgMrGrp.sys [2014-3-3 9344] R3 trgusb;USB 2.0 Graphics Card;c:\windows\system32\drivers\trgusb.sys [2014-3-3 52224] R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\avg\avg pc tuneup\TuneUpUtilitiesDriver32.sys [2013-9-18 12320] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 MsDepSvc;Web Deployment Agent Service;c:\program files\iis\microsoft web deploy\MsDepSvc.exe [2011-4-1 67400] S2 RaMediaServer;Ralink UPnP Media Server;c:\program files\ralink\common\RaMediaServer.exe [2014-3-3 625728] S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2014-3-3 1691480] S3 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwdx.sys [2012-1-12 30944] S3 SWDUMon;SWDUMon;c:\windows\system32\drivers\SWDUMon.sys [2014-3-3 13464] S3 VSPerfDrv90;Performance Tools Driver 9.0;c:\program files\microsoft visual studio 9.0\team tools\performance tools\VSPerfDrv90.sys [2007-9-4 55664] S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [2008-5-6 11520] S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2006-2-28 14336] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2013-7-20 754856] S4 BootRacerServ;BootRacerServ;c:\program files\bootracer\BootRacerServ.exe [2013-8-19 67888] S4 FreeFLVConverterUpdt;FreeFLVConverterUpdt;c:\program files\free flv converter\FreeFLVConverterUpdt.exe [2014-2-25 252928] S4 MSSQLFDLauncher;SQL Full-text Filter Daemon Launcher (MSSQLSERVER);c:\program files\microsoft sql server\mssql10.mssqlserver\mssql\binn\fdlauncher.exe [2008-7-10 31256] S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\microsoft sql server\100\shared\sqladhlp.exe [2008-7-10 47128] S4 RsFx0102;RsFx0102 Driver;c:\windows\system32\drivers\RsFx0102.sys [2008-7-10 242712] . =============== Created Last 30 ================ . 2014-03-06 16:37:36 -------- d-----w- c:\documents and settings\ian\application data\OpenOffice.org 2014-03-06 15:17:39 13312 -c----w- c:\windows\system32\dllcache\xp_eos.exe 2014-03-06 15:17:39 13312 ------w- c:\windows\system32\xp_eos.exe 2014-03-06 14:51:53 -------- d-----w- c:\program files\Business Objects 2014-03-06 14:10:38 -------- d-----w- c:\program files\Microsoft Device Emulator 2014-03-06 14:06:55 -------- d-----w- c:\program files\Windows Mobile 5.0 SDK R2 2014-03-06 14:02:55 -------- d-----w- c:\program files\Microsoft Synchronization Services 2014-03-06 13:41:58 -------- d-----w- c:\documents and settings\all users\application data\PreEmptive Solutions 2014-03-06 13:26:37 -------- d-----w- c:\program files\HTML Help Workshop 2014-03-06 13:26:37 -------- d-----w- c:\program files\CE Remote Tools 2014-03-06 13:15:46 -------- d-----w- c:\program files\Microsoft Web Designer Tools 2014-03-06 13:13:00 97296 ----a-w- c:\program files\common files\microsoft shared\help 9\microsoft document explorer 2008\install.res.1036.dll 2014-03-06 13:13:00 96272 ----a-w- c:\program files\common files\microsoft shared\help 9\microsoft document explorer 2008\install.res.3082.dll 2014-03-06 13:13:00 96272 ----a-w- c:\program files\common files\microsoft shared\help 9\microsoft document explorer 2008\install.res.1031.dll 2014-03-06 13:13:00 95248 ----a-w- c:\program files\common files\microsoft shared\help 9\microsoft document explorer 2008\install.res.1040.dll 2014-03-06 13:13:00 91152 ----a-w- c:\program files\common files\microsoft shared\help 9\microsoft document explorer 2008\install.res.1033.dll 2014-03-06 13:13:00 81424 ----a-w- c:\program files\common files\microsoft shared\help 9\microsoft document explorer 2008\install.res.1041.dll 2014-03-06 13:13:00 79888 ----a-w- c:\program files\common files\microsoft shared\help 9\microsoft document explorer 2008\install.res.1042.dll 2014-03-06 13:13:00 76304 ----a-w- c:\program files\common files\microsoft shared\help 9\microsoft document explorer 2008\install.res.1028.dll 2014-03-06 13:13:00 75792 ----a-w- c:\program files\common files\microsoft shared\help 9\microsoft document explorer 2008\install.res.2052.dll 2014-03-06 13:13:00 562688 ----a-w- c:\program files\common files\microsoft shared\help 9\microsoft document explorer 2008\install.exe 2014-03-06 08:39:28 -------- d-----w- c:\documents and settings\ian\local settings\application data\Microsoft_Corporation 2014-03-06 08:14:37 50200 ----a-w- c:\windows\system32\perf-ReportServer-rsctr.dll 2014-03-06 08:08:54 397664 ----a-w- c:\documents and settings\all users\application data\microsoft\vstahost\ssis_scriptcomponent\9.0\1033\ResourceCache.dll 2014-03-06 08:08:11 397664 ----a-w- c:\documents and settings\all users\application data\microsoft\vstahost\ssis_scripttask\9.0\1033\ResourceCache.dll 2014-03-06 08:04:57 50200 ----a-w- c:\windows\system32\perf-SQLSERVERAGENT-sqlagtctr10.0.1600.22.dll 2014-03-06 08:04:30 79896 ----a-w- c:\windows\system32\perf-MSSQLSERVER-sqlctr10.0.1600.22.dll 2014-03-06 07:57:29 18368 ----a-w- c:\documents and settings\all users\application data\microsoft\vsa\9.0\1033\ResourceCache.dll 2014-03-06 07:57:22 2093312 ----a-w- c:\documents and settings\all users\application data\microsoft\visualstudio\9.0\1033\ResourceCache.dll 2014-03-06 07:46:27 -------- d-----w- c:\program files\common files\Merge Modules 2014-03-06 07:30:56 416 ----a-w- c:\documents and settings\all users\application data\microsoft\msdn\9.0\1033\ResourceCache.dll 2014-03-06 07:22:15 -------- d-----w- c:\program files\Microsoft Analysis Services 2014-03-06 07:17:17 -------- d-----w- c:\windows\system32\RsFx 2014-03-05 17:08:34 -------- d-----w- c:\documents and settings\ian\local settings\application data\Microsoft Help 2014-03-05 10:11:14 -------- d-----w- c:\documents and settings\ian\local settings\application data\Identities 2014-03-05 10:11:07 -------- d-----w- c:\documents and settings\ian\application data\Windows Desktop Search 2014-03-05 10:10:20 -------- d-----w- c:\program files\Windows Desktop Search 2014-03-05 10:09:02 98304 -c----w- c:\windows\system32\dllcache\nlhtml.dll 2014-03-05 10:09:02 29696 -c----w- c:\windows\system32\dllcache\mimefilt.dll 2014-03-05 10:09:02 192000 -c----w- c:\windows\system32\dllcache\offfilt.dll 2014-03-05 09:46:11 -------- d-----w- c:\windows\system32\winrm 2014-03-05 09:46:11 -------- d-----w- c:\windows\system32\GroupPolicy 2014-03-05 09:46:01 -------- dc-h--w- c:\windows\$968930Uinstall_KB968930$ 2014-03-05 09:28:59 -------- d-----w- c:\program files\Microsoft WebMatrix 2014-03-05 09:09:01 -------- d-----w- c:\program files\Microsoft SQL Server 2014-03-05 09:05:25 -------- d-----w- c:\program files\IIS 2014-03-05 09:01:21 -------- d-----w- c:\program files\IIS Express 2014-03-05 08:42:35 -------- d-----w- c:\program files\Microsoft ASP.NET 2014-03-05 07:59:54 -------- d-----w- c:\documents and settings\ian\local settings\application data\ApplicationHistory 2014-03-05 07:53:22 -------- d-----w- c:\program files\MSXML 4.0 2014-03-05 07:27:06 -------- d-----w- c:\documents and settings\ian\application data\iWesoft 2014-03-05 07:27:03 -------- d-----w- c:\documents and settings\ian\local settings\application data\iWesoft 2014-03-04 21:04:00 -------- d-----w- c:\documents and settings\ian\local settings\application data\Nero_AG 2014-03-04 21:03:36 13240 ----a-w- c:\windows\system32\drivers\NBVolUp.sys 2014-03-04 21:03:29 57272 ----a-w- c:\windows\system32\drivers\NBVol.sys 2014-03-04 19:55:18 -------- d-----w- c:\program files\Nero 2014-03-04 19:54:51 -------- d-----w- c:\documents and settings\all users\application data\Nero 2014-03-04 17:05:42 -------- d-----w- c:\program files\Soft Organizer 2014-03-04 16:55:04 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2014-03-04 16:53:25 248672 ----a-w- c:\windows\system32\d3dx11_43.dll 2014-03-04 16:52:35 470880 ----a-w- c:\windows\system32\d3dx10_43.dll 2014-03-04 16:52:15 1998168 ----a-w- c:\windows\system32\D3DX9_43.dll 2014-03-04 16:51:54 1868128 ----a-w- c:\windows\system32\d3dcsx_43.dll 2014-03-04 16:51:28 2106216 ----a-w- c:\windows\system32\D3DCompiler_43.dll 2014-03-04 16:51:05 -------- d-----w- c:\windows\Logs 2014-03-04 16:43:24 -------- d-----w- c:\documents and settings\all users\application data\BootRacer 2014-03-04 16:00:21 -------- d-----w- c:\documents and settings\ian\application data\Ditto 2014-03-04 15:59:47 -------- d-----w- c:\program files\Ditto 2014-03-04 15:47:50 -------- d-----w- c:\program files\Microsoft Research 2014-03-04 15:45:09 -------- d-----w- c:\program files\RBSoft 2014-03-04 15:37:00 323624 ----a-w- c:\windows\system32\wiaaut.dll 2014-03-04 15:36:31 -------- d-----w- c:\program files\iCopy 2014-03-04 15:30:06 -------- d-----w- c:\program files\MeeSoft 2014-03-04 15:26:11 29 ----a-w- c:\windows\system32\TempWmicBatchFile.bat 2014-03-04 15:23:07 -------- d-----w- c:\program files\Stellarium 2014-03-04 15:22:16 -------- d-----w- C:\Prey 2014-03-04 15:18:53 -------- d-----w- c:\windows\system32\URTTEMP 2014-03-04 15:18:32 -------- d-----w- c:\documents and settings\ian\application data\ChemTable Software 2014-03-04 15:18:29 -------- d-----w- c:\documents and settings\ian\local settings\application data\ChemTable Software 2014-03-04 15:15:40 726528 ----a-w- c:\windows\system32\SETE1.tmp 2014-03-04 15:09:28 -------- d-----w- c:\program files\Anvisoft 2014-03-04 15:08:09 -------- d-----w- c:\program files\Frieger 2014-03-04 15:07:33 -------- d-----w- c:\program files\UndeleteMyFiles 2014-03-04 15:05:11 -------- d-----w- c:\program files\Unchecky 2014-03-04 15:02:38 -------- d-----w- c:\program files\BootRacer 2014-03-04 14:55:26 -------- d-----w- c:\program files\Microsoft 2014-03-04 14:55:03 -------- d-----w- c:\program files\Windows Live SkyDrive 2014-03-04 14:53:58 3426072 ----a-w- c:\windows\system32\d3dx9_32.dll 2014-03-04 14:53:35 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition 2014-03-04 14:50:50 74520 ----a-w- c:\program files\common files\windows live\.cache\225a9d381cf37b9\DSETUP.dll 2014-03-04 14:50:50 484632 ----a-w- c:\program files\common files\windows live\.cache\225a9d381cf37b9\DXSETUP.exe 2014-03-04 14:50:50 1670936 ----a-w- c:\program files\common files\windows live\.cache\225a9d381cf37b9\dsetup32.dll 2014-03-04 14:50:25 1013800 ----a-w- c:\program files\common files\windows live\.cache\13e65b981cf37b9\WindowsXP-KB954708-x86-ENU.exe 2014-03-04 14:49:14 -------- d-----w- c:\program files\common files\Windows Live 2014-03-04 14:28:26 16128 -c--a-w- c:\windows\system32\dllcache\modemcsa.sys 2014-03-04 14:28:26 16128 ----a-w- c:\windows\system32\drivers\MODEMCSA.sys 2014-03-04 14:08:11 -------- d-----w- c:\documents and settings\all users\application data\UAB 2014-03-04 14:07:47 -------- d-----w- c:\documents and settings\ian\local settings\application data\PC_Drivers_Headquarters 2014-03-04 14:01:27 -------- d-sh--w- c:\documents and settings\ian\IECompatCache 2014-03-04 14:00:27 -------- d-----w- c:\documents and settings\all users\application data\Driver Restore 2014-03-04 13:59:50 -------- d-sh--w- c:\documents and settings\ian\PrivacIE 2014-03-04 13:57:24 -------- d-----w- c:\program files\Driver Restore 2014-03-04 13:51:03 -------- d-sh--w- c:\documents and settings\ian\IETldCache 2014-03-04 13:31:31 522240 -c----w- c:\windows\system32\dllcache\jsdbgui.dll 2014-03-04 13:30:09 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll 2014-03-04 13:29:11 -------- d-----w- c:\windows\ie8updates 2014-03-04 13:28:54 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll 2014-03-04 13:28:53 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll 2014-03-04 13:28:52 630272 -c----w- c:\windows\system32\dllcache\msfeeds.dll 2014-03-04 13:28:52 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll 2014-03-04 13:28:52 2006016 -c----w- c:\windows\system32\dllcache\iertutil.dll 2014-03-04 13:28:51 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll 2014-03-04 13:28:51 11113472 -c----w- c:\windows\system32\dllcache\ieframe.dll 2014-03-04 13:25:28 -------- dc-h--w- c:\windows\ie8 2014-03-04 13:11:38 984832 ----a-w- c:\windows\system32\drivers\smserial.sys 2014-03-04 13:11:38 196608 ------w- c:\windows\system32\sm56co6a.dll 2014-03-04 12:10:32 -------- d-----w- c:\windows\system32\MRT 2014-03-04 09:56:10 -------- d-sh--w- c:\documents and settings\ian\UserData 2014-03-04 09:19:36 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll 2014-03-04 09:17:39 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll 2014-03-04 09:14:14 25088 -c----w- c:\windows\system32\dllcache\hidparse.sys 2014-03-04 09:14:14 14976 -c----w- c:\windows\system32\dllcache\usbscan.sys 2014-03-04 09:11:34 105472 -c----w- c:\windows\system32\dllcache\mup.sys 2014-03-04 09:11:02 12928 -c----w- c:\windows\system32\dllcache\usb8023x.sys 2014-03-04 09:11:02 12928 -c----w- c:\windows\system32\dllcache\usb8023.sys 2014-03-04 09:10:43 60160 -c----w- c:\windows\system32\dllcache\usbaudio.sys 2014-03-04 09:10:43 46848 -c----w- c:\windows\system32\dllcache\irbus.sys 2014-03-04 09:10:42 123008 -c----w- c:\windows\system32\dllcache\usbvideo.sys 2014-03-04 09:08:54 536576 -c----w- c:\windows\system32\dllcache\msado15.dll 2014-03-04 09:08:17 139784 -c----w- c:\windows\system32\dllcache\rdpwd.sys 2014-03-04 09:07:53 5376 -c----w- c:\windows\system32\dllcache\usbd.sys 2014-03-04 09:07:53 32384 -c----w- c:\windows\system32\dllcache\usbccgp.sys 2014-03-04 09:07:53 30336 -c----w- c:\windows\system32\dllcache\usbehci.sys 2014-03-04 09:07:53 144128 -c----w- c:\windows\system32\dllcache\usbport.sys 2014-03-04 09:05:39 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys 2014-03-04 09:05:34 3072 -c----w- c:\windows\system32\dllcache\iacenc.dll 2014-03-04 09:05:34 3072 ------w- c:\windows\system32\iacenc.dll 2014-03-04 09:05:31 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys 2014-03-04 08:59:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe 2014-03-04 08:52:21 214256 ----a-w- c:\windows\system32\muweb.dll 2014-03-04 08:52:20 275696 ----a-w- c:\windows\system32\mucltui.dll 2014-03-04 08:52:20 17136 ----a-w- c:\windows\system32\mucltui.dll.mui 2014-03-03 19:11:01 79872 -c----w- c:\windows\system32\dllcache\msxml6r.dll 2014-03-03 19:11:00 1371648 -c----w- c:\windows\system32\dllcache\msxml6.dll 2014-03-03 18:55:43 4255 ------w- c:\windows\system32\drivers\adv01nt5.dll 2014-03-03 18:49:59 19569 ----a-w- c:\windows\003046_.tmp 2014-03-03 17:38:05 -------- d-----w- c:\windows\ServicePackFiles 2014-03-03 17:10:46 -------- d-----w- c:\program files\OpenOffice.org 3 2014-03-03 16:20:19 -------- d-----w- c:\windows\system32\XPSViewer 2014-03-03 16:17:56 89088 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll 2014-03-03 16:17:09 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll 2014-03-03 16:17:09 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe 2014-03-03 16:17:09 597504 ------w- c:\windows\system32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe 2014-03-03 16:17:09 117760 ------w- c:\windows\system32\prntvpt.dll 2014-03-03 16:17:08 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll 2014-03-03 16:17:08 575488 ------w- c:\windows\system32\xpsshhdr.dll 2014-03-03 16:17:07 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll 2014-03-03 16:17:07 1676288 ------w- c:\windows\system32\xpssvcs.dll 2014-03-03 16:02:16 -------- d-----w- c:\program files\MSXML 6.0 2014-03-03 15:55:57 -------- d-----w- c:\program files\Windows Media Connect 2 2014-03-03 15:44:59 47616 ----a-w- c:\program files\windows media player\msoobci.dll 2014-03-03 15:44:57 1669120 ----a-w- c:\program files\windows media player\wmsetsdk.exe 2014-03-03 15:43:33 -------- d-----w- c:\windows\RegisteredPackages 2014-03-03 15:07:15 -------- d-----w- c:\documents and settings\ian\application data\Malwarebytes 2014-03-03 15:06:37 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes 2014-03-03 15:06:32 22856 ----a-w- c:\windows\system32\drivers\mbam.sys 2014-03-03 15:06:32 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2014-03-03 15:03:40 -------- d-----w- c:\documents and settings\ian\local settings\application data\Apple Computer 2014-03-03 14:54:08 -------- d-----w- c:\documents and settings\ian\local settings\application data\Amazon 2014-03-03 14:53:41 -------- d-----w- c:\documents and settings\ian\local settings\application data\Downloaded Installations 2014-03-03 14:53:17 -------- d-----w- c:\program files\Amazon 2014-03-03 14:52:47 -------- d-----w- c:\program files\JRulerPro 2014-03-03 14:50:37 -------- d-----w- c:\program files\Motorola 2014-03-03 14:49:35 -------- d-----w- c:\documents and settings\ian\application data\PixelMetrics 2014-03-03 14:47:48 6272 ----a-w- c:\windows\system32\drivers\splitter.sys 2014-03-03 14:47:45 83072 ----a-w- c:\windows\system32\drivers\wdmaud.sys 2014-03-03 14:47:41 52864 ----a-w- c:\windows\system32\drivers\dmusic.sys 2014-03-03 14:47:31 56576 ----a-w- c:\windows\system32\drivers\swmidi.sys 2014-03-03 14:47:26 142592 ----a-w- c:\windows\system32\drivers\aec.sys 2014-03-03 14:47:21 172416 ----a-w- c:\windows\system32\drivers\kmixer.sys 2014-03-03 14:47:15 2944 ----a-w- c:\windows\system32\drivers\drmkaud.sys 2014-03-03 14:47:13 -------- d-----w- c:\program files\Windows Media Adapter v615 2014-03-03 14:47:13 -------- d-----w- C:\PixelMetrics Logs 2014-03-03 14:47:10 60800 ----a-w- c:\windows\system32\drivers\sysaudio.sys 2014-03-03 14:47:05 7552 ----a-w- c:\windows\system32\drivers\mskssrv.sys 2014-03-03 14:47:03 4992 ----a-w- c:\windows\system32\drivers\mspqm.sys 2014-03-03 14:46:59 5376 ----a-w- c:\windows\system32\drivers\mspclock.sys 2014-03-03 14:46:07 -------- d-----w- c:\program files\CaptureWiz 2014-03-03 14:45:59 -------- d-----w- c:\windows\system32\RTCOM 2014-03-03 14:45:41 4096 ----a-w- c:\windows\system32\ksuser.dll 2014-03-03 14:45:38 60160 ----a-w- c:\windows\system32\drivers\drmk.sys 2014-03-03 14:45:36 129536 ----a-w- c:\windows\system32\ksproxy.ax 2014-03-03 14:44:56 134118 ----a-w- c:\windows\ColorPic Uninstaller.exe 2014-03-03 14:44:49 -------- d-----w- c:\program files\ColorPic 4.1 2014-03-03 14:44:13 359016 ----a-w- c:\windows\vncutil.exe 2014-03-03 14:44:11 891976 ----a-w- c:\windows\system32\RTSndMgr.CPL 2014-03-03 14:44:11 84584 ----a-w- c:\windows\SOUNDMAN.EXE 2014-03-03 14:44:09 1523416 ----a-w- c:\windows\RtlUpd.exe 2014-03-03 14:44:08 9721960 ----a-w- c:\windows\RTLCPL.EXE 2014-03-03 14:44:05 5589720 ----a-w- c:\windows\system32\drivers\RtkHDAud.sys 2014-03-03 14:44:04 86232 ----a-w- c:\windows\system32\RtkCoInstIIXP.dll 2014-03-03 14:44:04 11368 ----a-w- c:\windows\system32\RtkCoLDRXP.dll 2014-03-03 14:44:03 129640 ----a-w- c:\windows\RtkAudioService.exe 2014-03-03 14:44:01 20145368 ----a-w- c:\windows\RTHDCPL.EXE 2014-03-03 14:28:43 456704 -c----w- c:\windows\system32\dllcache\smtpsvc.dll 2014-03-03 14:20:07 272128 -c----w- c:\windows\system32\dllcache\bthport.sys 2014-03-03 14:20:03 272128 ------w- c:\windows\system32\drivers\bthport.sys 2014-03-03 14:13:02 357888 -c----w- c:\windows\system32\dllcache\srv.sys 2014-03-03 14:12:24 -------- d-----w- c:\documents and settings\ian\local settings\application data\BitZipper 2014-03-03 14:12:05 -------- d-----w- c:\program files\BitZipper 2014-03-03 14:11:11 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys 2014-03-03 14:10:40 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll 2014-03-03 14:10:37 421376 ----a-r- c:\documents and settings\ian\application data\microsoft\installer\{f0e345d6-ae5c-4f49-af3a-0349f729c130}\StartMenuIcon.exe 2014-03-03 14:10:37 421376 ----a-r- c:\documents and settings\ian\application data\microsoft\installer\{f0e345d6-ae5c-4f49-af3a-0349f729c130}\DesktopIcon.exe 2014-03-03 14:10:31 268288 -c----w- c:\windows\system32\dllcache\httpext.dll 2014-03-03 14:10:25 -------- d-----w- c:\program files\TabExplorer 2014-03-03 14:06:50 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll 2014-03-03 14:06:49 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll 2014-03-03 14:06:36 65536 ----a-w- c:\windows\system32\EEBUtil.dll 2014-03-03 14:06:36 55808 ----a-w- c:\windows\system32\EEBSDKIF.dll 2014-03-03 14:06:36 135168 ----a-w- c:\windows\system32\EEBAPI.dll 2014-03-03 14:06:36 110592 ----a-w- c:\windows\system32\EEBDSCVR.dll 2014-03-03 14:06:35 77824 ----a-w- c:\windows\system32\EBAPI.dll 2014-03-03 14:05:54 284160 -c----w- c:\windows\system32\dllcache\pdh.dll 2014-03-03 14:05:52 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll 2014-03-03 14:05:51 110592 -c----w- c:\windows\system32\dllcache\services.exe 2014-03-03 14:05:50 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll 2014-03-03 14:05:48 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe 2014-03-03 14:05:46 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll 2014-03-03 14:05:44 730112 -c----w- c:\windows\system32\dllcache\lsasrv.dll 2014-03-03 14:05:42 718336 -c----w- c:\windows\system32\dllcache\ntdll.dll 2014-03-03 14:05:42 617472 -c----w- c:\windows\system32\dllcache\advapi32.dll 2014-03-03 14:05:37 2149888 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe 2014-03-03 14:05:34 2193536 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe 2014-03-03 14:05:28 2028544 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe 2014-03-03 14:04:56 8192 ----a-w- c:\windows\system32\E_DCINST.DLL 2014-03-03 14:04:51 93696 ----a-w- c:\windows\system32\E_FLBGJE.DLL 2014-03-03 14:04:51 63488 ----a-w- c:\windows\system32\E_FD4BGJE.DLL 2014-03-03 13:59:46 -------- d-----w- c:\documents and settings\ian\application data\convert 2014-03-03 13:59:24 -------- d-----w- c:\program files\File Type Helper 2014-03-03 13:59:10 -------- d-----w- c:\program files\Free FLV Converter 2014-03-03 13:58:48 -------- d-----w- c:\documents and settings\all users\application data\UDL 2014-03-03 13:57:52 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys 2014-03-03 13:50:55 293376 ------w- c:\windows\system32\browserchoice.exe 2014-03-03 13:47:40 -------- d-----w- c:\program files\Epson Software 2014-03-03 13:47:00 474892 ----a-w- c:\windows\system32\ensppmon.dll 2014-03-03 13:47:00 457611 ----a-w- c:\windows\system32\ensppui.dll 2014-03-03 13:47:00 249344 ----a-w- c:\windows\system32\enspres.dll 2014-03-03 13:47:00 249344 ----a-w- c:\windows\system32\enpres.dll 2014-03-03 13:46:59 457611 ----a-w- c:\windows\system32\enppui.dll 2014-03-03 13:46:58 474892 ----a-w- c:\windows\system32\enppmon.dll 2014-03-03 13:46:14 -------- d-----w- c:\program files\common files\EPSON 2014-03-03 13:44:11 -------- d-----w- c:\documents and settings\ian\application data\.oit 2014-03-03 13:43:30 -------- d-----w- c:\documents and settings\ian\local settings\application data\NewSoft 2014-03-03 13:43:13 -------- d-----w- c:\program files\EpsonNet 2014-03-03 13:40:43 337920 -c----w- c:\windows\system32\dllcache\netapi32.dll 2014-03-03 13:38:57 -------- d-----w- c:\documents and settings\all users\application data\EPSON 2014-03-03 13:38:26 -------- d-----w- c:\program files\common files\NewSoft 2014-03-03 13:38:17 15872 ----a-w- c:\windows\system32\escdev.dll 2014-03-03 13:38:17 128392 ----a-w- c:\windows\system32\esdevapp.exe 2014-03-03 13:38:15 342016 ----a-w- c:\windows\system32\eswiaud.dll 2014-03-03 13:38:07 7168 ----a-w- c:\windows\system32\xpsp4res.dll 2014-03-03 13:37:56 218112 -c----w- c:\windows\system32\dllcache\wordpad.exe 2014-03-03 13:35:12 -------- d-----w- c:\program files\epson 2014-03-03 13:34:20 -------- d-----w- c:\windows\system32\color 2014-03-03 13:34:20 -------- d-----w- c:\program files\NewSoft 2014-03-03 13:33:20 -------- d-----w- c:\program files\IDT 2014-03-03 13:31:15 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe 2014-03-03 13:20:53 -------- d-----w- c:\windows\system32\PreInstall 2014-03-03 13:03:10 200704 ----a-w- c:\windows\system32\ssleay32.dll 2014-03-03 13:03:10 1085440 ----a-w- c:\windows\system32\libeay32.dll 2014-03-03 13:00:48 -------- d-----w- c:\program files\GIGABYTE 2014-03-03 13:00:48 -------- d-----w- c:\documents and settings\all users\application data\Gigabyte Driver 2014-03-03 12:25:03 480608 ----a-w- c:\windows\system32\DiagFunc.dll 2014-03-03 12:25:03 34080 ----a-w- c:\windows\system32\CTAAEI.dll 2014-03-03 12:25:03 2178112 ----a-w- c:\windows\system32\Scutum.dll 2014-03-03 12:25:03 19072 ----a-w- c:\windows\system32\drivers\Scutum50.sys 2014-03-03 12:25:03 185696 ----a-w- c:\windows\system32\W32N55.dll 2014-03-03 12:25:03 1608768 ----a-w- c:\windows\system32\RaCertMgr.dll 2014-03-03 12:25:03 143466 ----a-w- c:\windows\system32\RalinkGina.dll 2014-03-03 12:23:25 -------- d-----w- c:\documents and settings\all users\application data\Ralink Driver 2014-03-03 12:23:20 -------- d-----w- c:\program files\Ralink 2014-03-03 11:42:50 -------- d-----w- c:\documents and settings\ian\local settings\application data\Adobe 2014-03-03 11:36:09 -------- d-----w- c:\windows\OPTIONS 2014-03-03 11:16:15 -------- d-----w- c:\program files\Realtek 2014-03-03 11:01:57 -------- d-----w- c:\documents and settings\ian\application data\Intel 2014-03-03 11:01:44 21393 ----a-w- c:\windows\system32\drivers\AegisP.sys 2014-03-03 11:01:44 21393 ----a-w- c:\windows\AegisP.sys 2014-03-03 10:57:43 -------- d-----w- c:\program files\efs 2014-03-03 10:23:24 -------- d-----w- c:\documents and settings\ian\application data\Pegasus Mail 2014-03-03 10:08:59 -------- d-----w- c:\program files\Generic Provider 2014-03-03 10:00:33 172032 ----a-w- c:\windows\system32\igfxres.dll 2014-03-03 09:12:25 -------- d-----w- c:\windows\system32\SoftwareDistribution 2014-03-03 09:12:24 22040 ----a-w- c:\windows\system32\wucltui.dll.mui 2014-03-03 09:12:23 17944 ----a-w- c:\windows\system32\wuaueng.dll.mui 2014-03-03 09:12:23 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui 2014-03-03 09:12:22 15384 ----a-w- c:\windows\system32\wuapi.dll.mui 2014-03-03 09:10:45 5183 ----a-w- c:\windows\system32\drivers\usbu2a.sys 2014-03-03 09:10:43 -------- d-----w- C:\USBStorage 2014-03-03 09:10:32 306688 ----a-w- c:\windows\IsUninst.exe 2014-03-03 08:48:51 -------- d-----w- c:\documents and settings\ian\local settings\application data\Google 2014-03-03 08:40:40 -------- d-----w- c:\program files\Belkin 2014-03-03 08:36:19 13464 ----a-w- c:\windows\system32\drivers\SWDUMon.sys 2014-03-03 08:36:17 -------- d-----w- c:\documents and settings\ian\local settings\application data\SlimWare Utilities Inc 2014-03-03 08:36:10 -------- d-----w- c:\program files\DriverUpdate 2014-03-03 08:34:18 35640 ----a-w- c:\windows\system32\uxtuneup.dll 2014-03-03 08:32:35 36152 ----a-w- c:\windows\system32\TURegOpt.exe 2014-03-03 08:32:18 -------- d-----w- c:\documents and settings\ian\application data\AVG 2014-03-03 08:27:24 -------- d-----w- c:\documents and settings\all users\application data\AVG 2014-03-03 08:27:06 -------- d-sh--w- c:\documents and settings\all users\application data\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} 2014-03-03 08:25:57 -------- d-----w- c:\documents and settings\ian\application data\AVG2013 2014-03-03 08:25:09 -------- d-----w- c:\documents and settings\ian\application data\TuneUp Software 2014-03-03 08:24:33 -------- d-sh--w- c:\documents and settings\all users\application data\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F} 2014-03-03 08:24:31 -------- d--h--w- C:\$AVG 2014-03-03 08:24:31 -------- d-----w- c:\documents and settings\all users\application data\AVG2013 2014-03-03 08:24:02 -------- d-----w- c:\program files\AVG 2014-03-03 08:17:44 53248 ----a-r- c:\documents and settings\ian\application data\microsoft\installer\{3ee9bcae-e9a9-45e5-9b1c-83a4d357e05c}\ARPPRODUCTICON.exe 2014-03-03 08:17:09 21504 ----a-w- c:\windows\system32\drivers\hidserv.dll 2014-03-03 08:16:47 16400 ----a-w- c:\windows\system32\drivers\LNonPnP.sys 2014-03-03 08:16:44 16928 ------w- c:\windows\system32\spmsgXP_2k3.dll 2014-03-03 08:16:42 26144 ----a-w- c:\windows\system32\spupdsvc.exe 2014-03-03 08:16:19 10136 ----a-w- c:\windows\system32\drivers\LBeepKE.sys 2014-03-03 08:15:16 -------- d-----w- c:\documents and settings\ian\application data\Logishrd 2014-03-03 08:14:57 12160 ----a-w- c:\windows\system32\drivers\gmhidlow.sys 2014-03-03 08:14:57 -------- d-----w- c:\program files\Philips SPM 7800 2014-03-03 08:14:46 692224 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iKernel.dll 2014-03-03 08:14:46 57344 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\ctor.dll 2014-03-03 08:14:46 5632 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\DotNetInstaller.exe 2014-03-03 08:14:46 32768 ----a-w- c:\program files\common files\installshield\professional\runtime\Objectps.dll 2014-03-03 08:14:46 282756 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\setup.dll 2014-03-03 08:14:46 237568 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iscript.dll 2014-03-03 08:14:46 163972 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iGdi.dll 2014-03-03 08:14:46 155648 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iuser.dll 2014-03-03 07:54:56 -------- d--h--w- c:\documents and settings\all users\application data\Common Files 2014-03-03 07:54:56 -------- d-----w- c:\documents and settings\ian\local settings\application data\MFAData 2014-03-03 07:54:56 -------- d-----w- c:\documents and settings\ian\local settings\application data\Avg2013 2014-03-03 07:54:56 -------- d-----w- c:\documents and settings\all users\application data\MFAData 2014-03-03 07:51:04 -------- d-----w- c:\program files\Zoftar ISO Burner 2014-03-03 07:49:44 3840 ----a-w- c:\windows\system32\drivers\BANTExt.sys 2014-03-03 07:49:44 -------- d-----w- c:\program files\Belarc 2014-03-03 07:34:10 -------- d-----w- c:\windows\system32\ReinstallBackups 2014-03-03 07:34:09 53248 ----a-w- c:\windows\system32\CSVer.dll 2014-03-03 07:28:40 -------- d-----w- c:\windows\system32\NtmsData 2014-03-03 06:56:26 -------- d-----w- c:\windows\IIS Temporary Compressed Files 2014-03-03 06:56:11 -------- d-----w- c:\windows\system32\Cache 2014-03-03 06:53:59 -------- d-----w- c:\documents and settings\ian\local settings\application data\Western Digital 2014-03-03 06:43:50 -------- d-s---w- c:\windows\system32\Microsoft . ==================== Find3M ==================== . 2014-02-05 23:26:52 920064 ----a-w- c:\windows\system32\wininet.dll 2014-02-05 23:26:43 43520 ------w- c:\windows\system32\licmgr10.dll 2014-02-05 23:26:42 1469440 ------w- c:\windows\system32\inetcpl.cpl 2014-02-05 23:26:37 18944 ------w- c:\windows\system32\corpol.dll 2014-02-05 22:24:05 385024 ------w- c:\windows\system32\html.iec 2014-01-04 03:13:05 420864 ----a-w- c:\windows\system32\vbscript.dll 2014-01-02 16:48:09 73728 ----a-w- c:\windows\system32\RtNicProp32.dll 2014-01-02 16:48:09 130432 ----a-w- c:\windows\system32\drivers\Rtnicxp.sys . ============= FINISH: 15:13:33.84 ===============
  6. homeshopper
    internet explorer gets hijacked by tv-classic-noboot-fg.js
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.