Jump to content

Weird cmd promt and no desktop icons plz help


Recommended Posts

my computer starts and desktop comes up with a blank background and a cmd promt that says C:\My Documents and Settings \139d2e78.exe is not a recognized operable program or batch file. pops up. Am i infected or something plz help here are my hijack logs.

Logfile of Trend Micro HijackThis v2.0.5

Scan saved at 7:34:23 PM, on 5/21/2013

Platform: Windows XP SP1 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\SUPERAntiSpyware\SASCORE.EXE

C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe

C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe

C:\WINDOWS\system32\HPZipm12.exe

C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\System32\WgaTray.exe

C:\WINDOWS\explorer.exe

C:\WINDOWS\system32\igfxtray.exe

C:\WINDOWS\System32\wpabaln.exe

E:\HijackThis(1).exe

R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (file missing)

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (file missing)

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (file missing)

O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx

O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe

O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe

O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')

O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'Default user')

O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)

O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {14C1B87C-3342-445F-9B5E-365FF330A3AC} (Hewlett-Packard Online Support Services) - http://h50203.www5.hp.com/HPISWeb/Customer/cabs/HPISDataManager.CAB

O16 - DPF: {238F6F83-B8B4-11CF-8771-00A024541EE3} (Citrix ICA Client) - http://www.sentara.com/cabs/wficat4.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1368919924796

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1143171231243

O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab

O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab

O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx

O17 - HKLM\System\CCS\Services\Tcpip\..\{03495829-3D7D-4A1C-B308-3EFBC7B8335C}: NameServer = 4.2.2.1,4.2.2.2

O17 - HKLM\System\CS1\Services\Tcpip\..\{03495829-3D7D-4A1C-B308-3EFBC7B8335C}: NameServer = 4.2.2.1,4.2.2.2

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (file missing)

O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL

O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll

O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE

O23 - Service: Adobe Active File Monitor V4 (AdobeActiveFileMonitor4.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program Files\HPQ\shared\hpqwmi.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Program Files\Java\jre6\bin\jqs.exe (file missing)

O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe

O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

O23 - Service: PEVSystemStart - Unknown owner - C:\ComboFix\pev.3XE (file missing)

O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe

O23 - Service: Skype Updater (SkypeUpdate) - Unknown owner - C:\Program Files\Skype\Updater\Updater.exe (file missing)

O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

--

End of file - 7458 bytes

Link to post
Share on other sites

Please download Farbar Recovery Scan Tool and save it to a folder. (32bit version)

  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

MrC

Link to post
Share on other sites

FRST LOG

------------------------------

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 21-05-2013 02

Ran by Shirley (administrator) on 21-05-2013 23:17:52

Running from C:\Documents and Settings\Shirley\Desktop

Microsoft Windows XP Service Pack 2 (X86) OS Language: English(US)

Internet Explorer Version 6

Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe

(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE

() C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe

(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe

(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

(HP) C:\WINDOWS\system32\HPZipm12.exe

(Analog Devices, Inc.) C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe

(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe

(Intel Corporation) C:\WINDOWS\system32\igfxtray.exe

(Farbar) C:\Documents and Settings\Shirley\Desktop\FRST.exe

==================== Registry (Whitelisted) ==================

HKLM Group Policy restriction on software: %HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\Cache%OLK* <====== ATTENTION

HKLM\...\Winlogon: [system]

Winlogon\Notify\!SASWinLogon: C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [X]

Winlogon\Notify\igfxcui: igfxsrvc.dll (Intel Corporation)

Winlogon\Notify\WgaLogon: WgaLogon.dll (Microsoft Corporation)

HKCU\...\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe [204288 2006-10-18] (Microsoft Corporation)

HKCU\...\Winlogon: [shell] cmd.exe [388608 2004-08-04] (Microsoft Corporation) <==== ATTENTION

MountPoints2: E - E:\LaunchU3.exe -a

MountPoints2: {81775c24-00df-11dc-bfe9-00150013af73} - E:\LaunchU3.exe -a

HKU\Administrator.CHURCH-251CAFC4\...\Run: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [ 2011-12-08] (SUPERAntiSpyware.com)

HKU\Default User\...\Run: [DWQueuedReporting] "c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t [ 2007-02-26] (Microsoft Corporation)

HKU\Default User\...\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe [ 2004-08-03] (Microsoft Corporation)

SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)

HKLM SearchScopes: DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}

SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}

SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000031&src=crm&q={searchTerms}&locale=en_US&apn_ptnrs=TV&apn_dtid=OSJ000YYUS&apn_uid=20271D75-15A3-4C92-BF6A-8D732A184CC3&apn_sauid=1AF1D280-7E50-4C15-8406-E69197572B53

BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)

BHO: No Name - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No File

BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll No File

BHO: Skype Plug-In - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll No File

BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll No File

BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll No File

Toolbar: HKCU -No Name - {A057A204-BACC-4D26-9990-79A187E2698E} - No File

Toolbar: HKCU -No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File

Toolbar: HKCU -No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File

PDF: {14C1B87C-3342-445F-9B5E-365FF330A3AC} http://h50203.www5.hp.com/HPISWeb/Customer/cabs/HPISDataManager.CAB

PDF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

PDF: {238F6F83-B8B4-11CF-8771-00A024541EE3} http://www.sentara.com/cabs/wficat4.cab

PDF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} http://office.microsoft.com/officeupdate/content/opuc3.cab

PDF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1143171231243

PDF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab

PDF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab

PDF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab

PDF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx

PDF: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab

PDF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll No File

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL No File

ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [113024 2011-07-18] (SuperAdBlocker.com)

Tcpip\..\Interfaces\{03495829-3D7D-4A1C-B308-3EFBC7B8335C}: [NameServer]4.2.2.1,4.2.2.2

========================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [116608 2011-08-11] (SUPERAntiSpyware.com)

R2 AdobeActiveFileMonitor4.0; C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe [102400 2005-09-09] ()

R2 Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [132424 2009-03-26] (Apple Inc.)

S3 hpqwmi; C:\Program Files\HPQ\shared\hpqwmi.exe [98304 2005-03-04] (Hewlett-Packard Development Company, L.P.)

R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)

R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)

R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [20456 2013-01-27] (Microsoft Corporation)

R2 SoundMAX Agent Service (default); C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [45056 2002-09-20] (Analog Devices, Inc.)

S3 AppMgmt; %SystemRoot%\System32\appmgmts.dll [x]

S2 JavaQuickStarterService; "C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf" [x]

S2 PEVSystemStart; "C:\ComboFix\pev.3XE" EXEC /i "C:\ComboFix\REGT.3XE" /S "C:\ComboFix\CregB.dat" [x]

S2 SkypeUpdate; "C:\Program Files\Skype\Updater\Updater.exe" [x]

==================== Drivers (Whitelisted) ====================

R3 BCM43XX; C:\Windows\System32\DRIVERS\bcmwl5.sys [371712 2005-05-10] (Broadcom Corporation)

S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2004-08-03] (Microsoft Corporation)

R1 eabfiltr; C:\WINDOWS\system32\drivers\EABFiltr.sys [7432 2004-04-14] (Hewlett-Packard Company)

S3 eabusb; C:\WINDOWS\system32\drivers\eabusb.sys [5220 2003-06-06] (Hewlett-Packard Company)

S3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [51120 2005-07-28] (HP)

S3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16496 2005-07-28] (HP)

S3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21568 2005-10-22] (HP)

R3 ialm; C:\Windows\System32\DRIVERS\ialmnt5.sys [804572 2005-02-08] (Intel Corporation)

R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)

S3 MidiSyn; C:\Windows\System32\drivers\MidiSyn.sys [235100 2002-09-20] (Analog Devices Inc)

S0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [195296 2013-01-20] (Microsoft Corporation)

S3 NABTSFEC; C:\Windows\System32\DRIVERS\NABTSFEC.sys [85376 2004-08-03] (Microsoft Corporation)

S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2004-08-03] (Microsoft Corporation)

S3 NuVision; C:\Windows\System32\DRIVERS\NUVision.sys [260144 2005-07-08] (Hauppauge Computer Works)

S3 PLCNDIS5; C:\WINDOWS\system32\PLCNDIS5.SYS [17018 2002-09-09] (Intellon, Inc.)

R3 RTL8023xp; C:\Windows\System32\DRIVERS\Rtlnicxp.sys [74496 2005-03-04] (Realtek Semiconductor Corporation )

R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)

R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)

S3 Secdrv; C:\Windows\System32\DRIVERS\secdrv.sys [27440 2002-09-03] ()

R3 senfilt; C:\Windows\System32\drivers\senfilt.sys [381056 2004-04-26] (Sensaura)

S3 SLIP; C:\Windows\System32\DRIVERS\SLIP.sys [11136 2004-08-03] (Microsoft Corporation)

S3 streamip; C:\Windows\System32\DRIVERS\StreamIP.sys [15360 2004-08-03] (Microsoft Corporation)

S3 w29n51; C:\Windows\System32\DRIVERS\w29n51.sys [2210048 2007-07-26] (Intel® Corporation)

S3 WSTCODEC; C:\Windows\System32\DRIVERS\WSTCODEC.SYS [19328 2004-08-03] (Microsoft Corporation)

S4 Abiosdsk; No ImagePath

S4 abp480n5; No ImagePath

S4 adpu160m; No ImagePath

S4 Aha154x; No ImagePath

S4 aic78u2; No ImagePath

S4 aic78xx; No ImagePath

S4 AliIde; No ImagePath

S4 amsint; No ImagePath

S4 asc; No ImagePath

S4 asc3350p; No ImagePath

S4 asc3550; No ImagePath

S4 Atdisk; No ImagePath

S3 catchme; \??\C:\DOCUME~1\ADMINI~1.CHU\LOCALS~1\Temp\catchme.sys [x]

S4 cd20xrnt; No ImagePath

S1 Changer; No ImagePath

S4 CmdIde; No ImagePath

S4 Cpqarray; No ImagePath

U4 dac2w2k; No ImagePath

S4 dac960nt; No ImagePath

S4 dpti2o; No ImagePath

S4 hpn; No ImagePath

S1 i2omgmt; No ImagePath

S4 i2omp; No ImagePath

S4 ini910u; No ImagePath

S1 lbrtfdc; No ImagePath

S3 LVRS; system32\DRIVERS\lvrs.sys [x]

S3 LVUVC; system32\DRIVERS\lvuvc.sys [x]

S3 mcdbus; system32\DRIVERS\mcdbus.sys [x]

S4 mraid35x; No ImagePath

S3 PCAMPR5; \??\C:\WINDOWS\system32\PCAMPR5.SYS [x]

S1 PCIDump; No ImagePath

S2 pciinfo; \??\C:\DOCUME~1\Shirley\LOCALS~1\Temp\HPISPz\hpdom\pciinfo.sys [x]

S3 PDCOMP; No ImagePath

S3 PDFRAME; No ImagePath

S3 PDRELI; No ImagePath

S3 PDRFRAME; No ImagePath

S4 perc2; No ImagePath

S4 perc2hib; No ImagePath

S4 ql1080; No ImagePath

S4 Ql10wnt; No ImagePath

S4 ql12160; No ImagePath

S4 ql1240; No ImagePath

S4 ql1280; No ImagePath

S3 RimUsb; System32\Drivers\RimUsb.sys [x]

S3 rtl8139; system32\DRIVERS\RTL8139.SYS [x]

S3 SCPSp50; System32\Drivers\SCPSp50.sys [x]

S4 Simbad; No ImagePath

S4 Sparrow; No ImagePath

S4 symc810; No ImagePath

S4 symc8xx; No ImagePath

S4 sym_hi; No ImagePath

S4 sym_u3; No ImagePath

U3 TlntSvr;

S4 TosIde; No ImagePath

S4 ultra; No ImagePath

S4 ViaIde; No ImagePath

S3 WDICA; No ImagePath

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2013-05-21 23:17 - 2013-05-21 23:17 - 00000000 ____D C:\FRST

2013-05-21 23:17 - 2013-05-21 23:16 - 01318319 ____A (Farbar) C:\Documents and Settings\Shirley\Desktop\FRST.exe

2013-05-21 23:14 - 2013-05-21 23:14 - 00001792 ____A C:\Documents and Settings\Shirley\Desktop\RKreport[2]_S_05212013_02d2314.txt

2013-05-21 23:13 - 2013-05-21 21:53 - 00816128 ____A C:\Documents and Settings\Shirley\Desktop\RogueKiller.exe

2013-05-21 23:10 - 2013-05-21 23:10 - 00001755 ____A C:\Documents and Settings\Shirley\Desktop\RKreport[1]_S_05212013_02d2310.txt

2013-05-21 23:09 - 2013-05-21 23:13 - 00000000 ____D C:\Documents and Settings\Shirley\Desktop\RK_Quarantine

2013-05-21 22:13 - 2004-08-04 00:56 - 00380416 ____N (Microsoft Corporation) C:\Windows\System32\irprops.cpl

2013-05-21 22:12 - 2004-08-04 00:56 - 00162304 ____N (Microsoft Corporation) C:\Windows\System32\wuaucpl.cpl

2013-05-21 22:07 - 2004-07-17 11:40 - 00019528 ____A C:\Windows\002423_.tmp

2013-05-21 22:05 - 2013-05-21 22:06 - 00000000 __HDC C:\Windows\$NtServicePackUninstall$

2013-05-21 18:45 - 2013-05-21 18:45 - 00000000 __SHD C:\found.000

2013-05-21 18:35 - 2005-02-08 06:31 - 00163840 ___RA (Intel Corporation) C:\Windows\System32\igfxres.dll

2013-05-21 15:30 - 2002-09-03 13:11 - 00041600 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\weitekp9.dll

2013-05-21 15:30 - 2002-09-03 13:11 - 00031232 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\weitekp9.sys

2013-05-21 15:29 - 2004-08-03 22:32 - 00571392 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\tintlgnt.ime

2013-05-21 15:29 - 2004-08-03 22:31 - 00482304 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\pintlgnt.ime

2013-05-21 15:29 - 2002-09-03 13:10 - 00048256 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\w32.dll

2013-05-21 15:29 - 2002-09-03 13:07 - 00014336 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\tsprof.exe

2013-05-21 15:29 - 2002-09-03 13:06 - 00021896 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\tdipx.sys

2013-05-21 15:29 - 2002-09-03 13:06 - 00019464 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\tdspx.sys

2013-05-21 15:29 - 2002-09-03 13:06 - 00013192 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\tdasync.sys

2013-05-21 15:29 - 2002-09-03 13:04 - 00101376 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\srusbusd.dll

2013-05-21 15:29 - 2002-09-03 13:03 - 00010240 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\snmpstup.dll

2013-05-21 15:29 - 2002-09-03 13:02 - 00038912 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\sm9aw.dll

2013-05-21 15:29 - 2002-09-03 13:02 - 00031744 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\smb6w.dll

2013-05-21 15:29 - 2002-09-03 13:02 - 00031744 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\sma3w.dll

2013-05-21 15:29 - 2002-09-03 13:02 - 00029184 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\sm8cw.dll

2013-05-21 15:29 - 2002-09-03 13:02 - 00026624 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\sm93w.dll

2013-05-21 15:29 - 2002-09-03 13:02 - 00026624 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\sm92w.dll

2013-05-21 15:29 - 2002-09-03 13:02 - 00026112 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\sm90w.dll

2013-05-21 15:29 - 2002-09-03 13:02 - 00026112 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\sm8dw.dll

2013-05-21 15:29 - 2002-09-03 13:02 - 00015872 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\smierrsm.dll

2013-05-21 15:29 - 2002-09-03 13:02 - 00005632 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\smimsgif.dll

2013-05-21 15:29 - 2002-09-03 13:02 - 00005632 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\smierrsy.dll

2013-05-21 15:29 - 2002-09-03 13:01 - 00030208 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\sm87w.dll

2013-05-21 15:29 - 2002-09-03 13:01 - 00030208 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\sm81w.dll

2013-05-21 15:29 - 2002-09-03 13:01 - 00026112 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\sm8aw.dll

2013-05-21 15:29 - 2002-09-03 13:01 - 00026112 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\sm89w.dll

2013-05-21 15:29 - 2002-09-03 13:01 - 00025088 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\sm59w.dll

2013-05-21 15:29 - 2002-09-03 12:59 - 00018944 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\simptcp.dll

2013-05-21 15:29 - 2002-09-03 12:57 - 00079872 ___AC (Ricoh Co., Ltd.) C:\Windows\System32\dllcache\rwia330.dll

2013-05-21 15:29 - 2002-09-03 12:57 - 00079872 ___AC (Ricoh Co., Ltd.) C:\Windows\System32\dllcache\rwia001.dll

2013-05-21 15:29 - 2002-09-03 12:57 - 00026624 ___AC (Ricoh Co., Ltd.) C:\Windows\System32\dllcache\rw330ext.dll

2013-05-21 15:29 - 2002-09-03 12:57 - 00024576 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\rw001ext.dll

2013-05-21 15:29 - 2002-09-03 12:56 - 00014848 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\register.exe

2013-05-21 15:29 - 2002-09-03 12:53 - 00016384 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\quser.exe

2013-05-21 15:29 - 2002-09-03 12:53 - 00009728 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\query.exe

2013-05-21 15:29 - 2002-09-03 12:52 - 00131584 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\pmxviceo.dll

2013-05-21 15:29 - 2002-09-03 12:52 - 00011264 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\pmxmcro.dll

2013-05-21 15:29 - 2002-09-03 12:52 - 00006144 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\pmxgl.dll

2013-05-21 15:29 - 2002-09-03 12:46 - 00111104 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mtstocom.exe

2013-05-21 15:29 - 2002-09-03 12:41 - 00092416 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mga.sys

2013-05-21 15:29 - 2002-09-03 12:41 - 00092032 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mga.dll

2013-05-21 15:29 - 2002-09-03 12:26 - 00455168 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\tintsetp.exe

2013-05-21 15:29 - 2002-09-03 12:26 - 00070144 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\pintlphr.exe

2013-05-21 15:29 - 2002-09-03 12:26 - 00067584 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\pmigrate.dll

2013-05-21 15:29 - 2002-09-03 12:26 - 00044032 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\tintlphr.exe

2013-05-21 15:29 - 2002-09-03 12:26 - 00010240 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\tmigrate.dll

2013-05-21 15:29 - 2001-08-17 22:36 - 00205824 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\EXCH_seo.dll

2013-05-21 15:29 - 2001-08-17 22:36 - 00065536 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\EXCH_mailmsg.dll

2013-05-21 15:29 - 2001-08-17 22:36 - 00057856 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\EXCH_scripto.dll

2013-05-21 15:29 - 2001-08-17 22:36 - 00038912 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\EXCH_ntfsdrv.dll

2013-05-21 15:29 - 2001-08-17 22:36 - 00026112 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\EXCH_seos.dll

2013-05-21 15:29 - 2001-08-17 22:36 - 00023040 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\EXCH_regtrace.exe

2013-05-21 15:29 - 2001-08-17 22:36 - 00012288 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\EXCH_smtpctrs.dll

2013-05-21 15:29 - 2001-08-17 22:36 - 00009728 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\EXCH_smtpapi.dll

2013-05-21 15:29 - 2001-08-17 22:36 - 00009216 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\EXCH_rwnh.dll

2013-05-21 15:29 - 2001-08-17 22:36 - 00007168 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\EXCH_snprfdll.dll

2013-05-21 15:28 - 2004-08-03 22:31 - 00480256 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\cintsetp.exe

2013-05-21 15:28 - 2004-08-03 22:31 - 00198656 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\cintime.dll

2013-05-21 15:28 - 2002-09-03 12:37 - 00018432 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\jupiw.dll

2013-05-21 15:28 - 2002-09-03 12:33 - 00132608 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\fxsclntr.dll

2013-05-21 15:28 - 2002-09-03 12:33 - 00111104 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\fxscfgwz.dll

2013-05-21 15:28 - 2002-09-03 12:33 - 00031744 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\fxsroute.dll

2013-05-21 15:28 - 2002-09-03 12:33 - 00014848 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\flattemp.exe

2013-05-21 15:28 - 2002-09-03 12:33 - 00011264 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\fxssend.exe

2013-05-21 15:28 - 2002-09-03 12:32 - 00057856 ___AC (SEIKO EPSON CORP.) C:\Windows\System32\dllcache\esuimgd.dll

2013-05-21 15:28 - 2002-09-03 12:32 - 00045056 ___AC (SEIKO EPSON CORP.) C:\Windows\System32\dllcache\esunid.dll

2013-05-21 15:28 - 2002-09-03 12:32 - 00031744 ___AC (SEIKO EPSON CORP.) C:\Windows\System32\dllcache\esucmd.dll

2013-05-21 15:28 - 2002-09-03 12:32 - 00025856 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\et4000.sys

2013-05-21 15:28 - 2002-09-03 12:29 - 00018944 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\cprofile.exe

2013-05-21 15:28 - 2002-09-03 12:28 - 00054528 ___AC (Philips Semiconductors GmbH) C:\Windows\System32\dllcache\cap7146.sys

2013-05-21 15:28 - 2002-09-03 12:28 - 00015872 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\chgport.exe

2013-05-21 15:28 - 2002-09-03 12:28 - 00014336 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\chgusr.exe

2013-05-21 15:28 - 2002-09-03 12:28 - 00013312 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\chglogon.exe

2013-05-21 15:28 - 2002-09-03 12:28 - 00009728 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\change.exe

2013-05-21 15:28 - 2002-09-03 12:25 - 00059392 ___AC C:\Windows\System32\dllcache\imscinst.exe

2013-05-21 15:28 - 2002-09-03 12:24 - 10096640 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\hwxcht.dll

2013-05-21 15:28 - 2002-09-03 12:24 - 00173568 ___AC C:\Windows\System32\dllcache\chtskf.dll

2013-05-21 15:28 - 2002-09-03 12:24 - 00097792 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\chtmbx.dll

2013-05-21 15:28 - 2002-09-03 12:24 - 00056320 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\chtskdic.dll

2013-05-21 15:28 - 2002-09-03 12:24 - 00021504 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\cintlgnt.ime

2013-05-21 15:28 - 2001-08-17 22:36 - 00043520 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\EXCH_fcachdll.dll

2013-05-21 15:27 - 2001-08-17 22:36 - 02134528 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\EXCH_smtpsnap.dll

2013-05-21 15:27 - 2001-08-17 22:36 - 00312832 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\EXCH_aqueue.dll

2013-05-21 15:27 - 2001-08-17 22:36 - 00175104 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\EXCH_smtpadm.dll

2013-05-21 15:27 - 2001-08-17 22:36 - 00045056 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\EXCH_aqadmin.dll

2013-05-21 15:27 - 2001-08-17 22:36 - 00005632 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\EXCH_adsiisex.dll

2013-05-21 15:25 - 2013-05-21 15:25 - 00000749 __RAH C:\Windows\WindowsShell.Manifest

2013-05-21 15:25 - 2013-05-21 15:25 - 00000749 __RAH C:\Windows\System32\wuaucpl.cpl.manifest

2013-05-21 15:25 - 2013-05-21 15:25 - 00000749 __RAH C:\Windows\System32\sapi.cpl.manifest

2013-05-21 15:25 - 2013-05-21 15:25 - 00000749 __RAH C:\Windows\System32\ncpa.cpl.manifest

2013-05-21 15:25 - 2013-05-21 15:25 - 00000488 __RAH C:\Windows\System32\logonui.exe.manifest

2013-05-21 15:25 - 2004-08-04 00:56 - 00678400 ____A (Microsoft Corporation) C:\Windows\System32\inetcomm.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00382464 ____A (Microsoft Corporation) C:\Windows\System32\qmgr.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00274944 ____A (Microsoft Corporation) C:\Windows\System32\mstask.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00274432 ____A (Microsoft Corporation) C:\Windows\System32\inetcfg.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00252928 ____A (Microsoft Corporation) C:\Windows\System32\msoeacct.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00239104 ____A (Microsoft Corporation) C:\Windows\System32\srrstr.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00190976 ____A (Microsoft Corporation) C:\Windows\System32\schedsvc.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00188416 ____A (Microsoft Corporation) C:\Windows\System32\msh261.drv

2013-05-21 15:25 - 2004-08-04 00:56 - 00170496 ____A (Microsoft Corporation) C:\Windows\System32\srsvc.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00105984 ____A (Microsoft Corporation) C:\Windows\System32\msoert2.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00081920 ____A (Microsoft Corporation) C:\Windows\System32\isign32.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00081920 ____A (Microsoft Corporation) C:\Windows\System32\ils.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00073728 ____A (Microsoft Corporation) C:\Windows\System32\icwdial.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00069632 ____A (Microsoft Corporation) C:\Windows\System32\msconf.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00067584 ____A (Microsoft Corporation) C:\Windows\System32\srclient.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00065536 ____A (Microsoft Corporation) C:\Windows\System32\icwphbk.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00048128 ____A (Microsoft Corporation) C:\Windows\System32\inetres.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00045568 ____A (Microsoft Corporation) C:\Windows\System32\safrslv.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00043520 ____A (Microsoft Corporation) C:\Windows\System32\safrcdlg.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00043520 ____A (Microsoft Corporation) C:\Windows\System32\racpldlg.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00034560 ____A (Microsoft Corporation) C:\Windows\System32\mnmdd.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00032768 ____A (Microsoft Corporation) C:\Windows\System32\mnmsrvc.exe

2013-05-21 15:25 - 2004-08-04 00:56 - 00032768 ____A (Intel Corporation) C:\Windows\System32\isrdbg32.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00029696 ____A (Microsoft Corporation) C:\Windows\System32\safrdm.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00028672 ____A (Microsoft Corporation) C:\Windows\System32\nmmkcert.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00018944 ____A (Microsoft Corporation) C:\Windows\System32\qmgrprxy.dll

2013-05-21 15:25 - 2004-08-04 00:56 - 00012288 ____A (Microsoft Corporation) C:\Windows\System32\mstinit.exe

2013-05-21 15:25 - 2004-08-03 23:06 - 00073472 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\sr.sys

2013-05-21 15:25 - 2002-09-03 13:07 - 00040960 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\trialoc.dll

2013-05-21 15:25 - 2002-09-03 12:35 - 00016384 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\isignup.exe

2013-05-21 15:25 - 2002-09-03 12:34 - 00073728 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\icwtutor.exe

2013-05-21 15:25 - 2002-09-03 12:34 - 00061440 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\icwres.dll

2013-05-21 15:23 - 2004-08-04 01:01 - 00139400 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpwd.sys

2013-05-21 15:23 - 2004-08-04 01:01 - 00087176 ____A (Microsoft Corporation) C:\Windows\System32\rdpwsx.dll

2013-05-21 15:23 - 2004-08-04 01:01 - 00021896 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tdtcp.sys

2013-05-21 15:23 - 2004-08-04 01:01 - 00012040 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tdpipe.sys

2013-05-21 15:23 - 2004-08-04 00:56 - 01251840 ____A (Microsoft Corporation) C:\Windows\System32\comsvcs.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 01134592 ____A (Microsoft Corporation) C:\Windows\System32\wuaueng.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00949248 ____A (Microsoft Corporation) C:\Windows\System32\msdtctm.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00628224 ____A (Microsoft Corporation) C:\Windows\System32\catsrvut.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00540160 ____A (Microsoft Corporation) C:\Windows\System32\comuid.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00538624 ____A (Microsoft Corporation) C:\Windows\System32\spider.exe

2013-05-21 15:23 - 2004-08-04 00:56 - 00501248 ____A (Microsoft Corporation) C:\Windows\System32\clbcatq.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00425472 ____A (Microsoft Corporation) C:\Windows\System32\msdtcprx.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00345088 ____A (Hilgraeve, Inc.) C:\Windows\System32\hypertrm.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00343040 ____A (Microsoft Corporation) C:\Windows\System32\mspaint.exe

2013-05-21 15:23 - 2004-08-04 00:56 - 00295424 ____A (Microsoft Corporation) C:\Windows\System32\termsrv.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00229888 ____A (Microsoft Corporation) C:\Windows\System32\catsrv.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00185344 ____A (Microsoft Corporation) C:\Windows\System32\cmprops.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00183808 ____A (Microsoft Corporation) C:\Windows\System32\accwiz.exe

2013-05-21 15:23 - 2004-08-04 00:56 - 00161280 ____A (Microsoft Corporation) C:\Windows\System32\msdtcuiu.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00147968 ____A (Microsoft Corporation) C:\Windows\System32\rdchost.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00140800 ____A (Microsoft Corporation) C:\Windows\System32\sessmgr.exe

2013-05-21 15:23 - 2004-08-04 00:56 - 00131584 ____A (Microsoft Corporation) C:\Windows\System32\sndrec32.exe

2013-05-21 15:23 - 2004-08-04 00:56 - 00123392 ____A (Microsoft Corporation) C:\Windows\System32\mplay32.exe

2013-05-21 15:23 - 2004-08-04 00:56 - 00111104 ____A (Microsoft Corporation) C:\Windows\System32\wuauclt.exe

2013-05-21 15:23 - 2004-08-04 00:56 - 00110080 ____A (Microsoft Corporation) C:\Windows\System32\clbcatex.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\clipbrd.exe

2013-05-21 15:23 - 2004-08-04 00:56 - 00093696 ____A (Microsoft Corporation) C:\Windows\System32\tscfgwmi.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00090112 ____A (Microsoft Corporation) C:\Windows\System32\mtxoci.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\catsrvps.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00068608 ____A (Microsoft Corporation) C:\Windows\System32\access.cpl

2013-05-21 15:23 - 2004-08-04 00:56 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\rdshost.exe

2013-05-21 15:23 - 2004-08-04 00:56 - 00062464 ____A (Microsoft Corporation) C:\Windows\System32\rdpclip.exe

2013-05-21 15:23 - 2004-08-04 00:56 - 00062464 ____A (Microsoft Corporation) C:\Windows\System32\colbact.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00060416 ____A (Microsoft Corporation) C:\Windows\System32\remotepg.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00058880 ____A (Microsoft Corporation) C:\Windows\System32\msdtclog.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00058880 ____A (Microsoft Corporation) C:\Windows\System32\licwmi.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00056320 ____A (Microsoft Corporation) C:\Windows\System32\servdeps.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00038912 ____A (Microsoft Corporation) C:\Windows\System32\cfgbkend.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00020480 ____A (Microsoft Corporation) C:\Windows\System32\qprocess.exe

2013-05-21 15:23 - 2004-08-04 00:56 - 00019968 ____A (Microsoft Corporation) C:\Windows\System32\rdpsnd.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00017408 ____A (Microsoft Corporation) C:\Windows\System32\mmfutil.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\rdsaddin.exe

2013-05-21 15:23 - 2004-08-04 00:56 - 00011776 ____A (Microsoft Corporation) C:\Windows\System32\xolehlp.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00011264 ____A (Microsoft Corporation) C:\Windows\System32\icaapi.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00006656 ____A (Microsoft Corporation) C:\Windows\System32\wuauserv.dll

2013-05-21 15:23 - 2004-08-04 00:56 - 00006144 ____A (Microsoft Corporation) C:\Windows\System32\msdtc.exe

2013-05-21 15:23 - 2004-08-03 23:01 - 00196864 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpdr.sys

2013-05-21 15:23 - 2004-08-03 22:59 - 00655360 ____A (Microsoft Corporation) C:\Windows\System32\mstscax.dll

2013-05-21 15:23 - 2004-08-03 22:59 - 00407552 ____A (Microsoft Corporation) C:\Windows\System32\mstsc.exe

2013-05-21 15:23 - 2004-08-03 22:59 - 00044544 ____A (Microsoft Corporation) C:\Windows\System32\tscupgrd.exe

2013-05-21 15:22 - 2004-08-03 23:07 - 00052864 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dmusic.sys

2013-05-21 15:22 - 2004-08-03 23:07 - 00006400 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\splitter.sys

2013-05-21 15:22 - 2004-08-03 22:59 - 00057472 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\redbook.sys

2013-05-21 15:21 - 2004-08-04 00:56 - 00130048 ____A (Microsoft Corporation) C:\Windows\System32\ksproxy.ax

2013-05-21 15:21 - 2004-08-04 00:56 - 00004096 ____A (Microsoft Corporation) C:\Windows\System32\ksuser.dll

2013-05-21 15:20 - 2004-08-04 01:01 - 00040840 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\termdd.sys

2013-05-21 15:19 - 2004-08-04 00:56 - 00074752 ____A (Microsoft Corporation) C:\Windows\System32\storprop.dll

2013-05-21 15:19 - 2004-08-03 23:00 - 00011264 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\irenum.sys

2013-05-21 15:19 - 2002-09-03 13:16 - 00007046 ___RA C:\Windows\SETC5.tmp

2013-05-21 15:19 - 2002-09-03 13:16 - 00007046 ___AC C:\Windows\System32\dllcache\OEMBIOS.CAT

2013-05-21 15:19 - 2002-09-03 13:04 - 00024661 ___AC (Perle Systems Ltd.) C:\Windows\System32\dllcache\spxcoins.dll

2013-05-21 15:19 - 2002-09-03 13:04 - 00024661 ____A (Perle Systems Ltd.) C:\Windows\System32\spxcoins.dll

2013-05-21 15:19 - 2002-09-03 12:50 - 01086182 ___RA C:\Windows\SET92.tmp

2013-05-21 15:19 - 2002-09-03 12:49 - 00797189 ___AC C:\Windows\System32\dllcache\NT5IIS.CAT

2013-05-21 15:19 - 2002-09-03 12:46 - 00037484 ___AC C:\Windows\System32\dllcache\MW770.CAT

2013-05-21 15:19 - 2002-09-03 12:45 - 00014031 ___AC C:\Windows\System32\dllcache\MSJDBC.CAT

2013-05-21 15:19 - 2002-09-03 12:40 - 00399645 ___AC C:\Windows\System32\dllcache\MAPIMIG.CAT

2013-05-21 15:19 - 2002-09-03 12:35 - 00013608 ___RA C:\Windows\SETA7.tmp

2013-05-21 15:19 - 2002-09-03 12:35 - 00013312 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\irclass.dll

2013-05-21 15:19 - 2002-09-03 12:35 - 00013312 ____A (Microsoft Corporation) C:\Windows\System32\irclass.dll

2013-05-21 15:19 - 2002-09-03 12:34 - 00013472 ___AC C:\Windows\System32\dllcache\HPCRDP.CAT

2013-05-21 15:19 - 2002-09-03 12:34 - 00008574 ___AC C:\Windows\System32\dllcache\IASNT4.CAT

2013-05-21 15:19 - 2002-09-03 12:32 - 00052311 ___AC C:\Windows\System32\dllcache\DX3.CAT

2013-05-21 15:19 - 2002-09-03 12:30 - 00056081 ___AC C:\Windows\System32\dllcache\DAJAVAC.CAT

2013-05-21 15:19 - 2002-09-03 12:28 - 00657548 ___AC C:\Windows\System32\dllcache\CLASSES.CAT

2013-05-21 15:17 - 2013-05-21 22:23 - 00516951 ____A C:\Windows\setupapi.log

2013-05-21 14:58 - 2013-05-21 15:03 - 00024120 ____A C:\Windows\ie8Uninst.log

2013-05-20 09:27 - 2013-05-20 09:27 - 00218058 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\sfc.bmp

2013-05-19 23:35 - 2013-05-19 23:40 - 00002818 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\unhide.txt

2013-05-19 23:35 - 2013-05-19 23:35 - 00398752 ____A (Bleeping Computer, LLC) C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\unhide.exe

2013-05-19 23:14 - 2013-05-19 23:17 - 00034634 ____A C:\Windows\ie8.log

2013-05-19 23:14 - 2004-08-04 00:56 - 03003392 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 01483264 ____A (Microsoft Corporation) C:\Windows\System32\shdocvw.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 01016832 ____A (Microsoft Corporation) C:\Windows\System32\browseui.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00530432 ____A (Microsoft Corporation) C:\Windows\System32\mstime.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00473600 ____A (Microsoft Corporation) C:\Windows\System32\shlwapi.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00450560 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00448512 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00358400 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl

2013-05-19 23:14 - 2004-08-04 00:56 - 00357888 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00323584 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00249344 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00216576 ____A (Microsoft Corporation) C:\Windows\System32\ieaksie.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00201728 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00146432 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00139264 ____A (Microsoft Corporation) C:\Windows\System32\ieakeng.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00099840 ____A (Microsoft Corporation) C:\Windows\System32\advpack.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00096256 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00096256 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00081920 ____A C:\Windows\System32\ieencode.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00061440 ____A (Microsoft Corporation) C:\Windows\System32\admparse.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00056832 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00039424 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00035840 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00035328 ____A (Microsoft Corporation) C:\Windows\System32\corpol.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00034304 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe

2013-05-19 23:14 - 2004-08-04 00:56 - 00029184 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe

2013-05-19 23:14 - 2004-08-04 00:56 - 00022016 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll

2013-05-19 23:14 - 2004-08-04 00:56 - 00015872 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll

2013-05-19 23:14 - 2004-08-03 22:19 - 01351168 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb

2013-05-19 23:14 - 2002-09-03 12:45 - 00146432 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\msls31.dll

2013-05-19 23:14 - 2002-09-03 12:45 - 00146432 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll

2013-05-19 23:14 - 2002-09-03 12:34 - 00221184 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ieakui.dll

2013-05-19 23:14 - 2002-09-03 12:34 - 00221184 ____A (Microsoft Corporation) C:\Windows\System32\ieakui.dll

2013-05-19 23:11 - 2013-05-19 23:17 - 00031204 ____A C:\Windows\ie8_main.log

2013-05-18 07:48 - 2013-05-18 07:48 - 00000104 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\Shortcut to Internet Explorer.lnk

2013-05-18 07:39 - 2013-05-21 23:06 - 00001396 ____A C:\Windows\System32\wpa.bak

2013-05-18 07:34 - 2013-05-21 22:23 - 00000352 ____A C:\Windows\spupdsvc.log.1.log

2013-05-18 07:24 - 2013-05-21 22:13 - 00000373 ____A C:\Windows\cmsetacl.log

2013-05-18 07:17 - 2004-07-17 11:40 - 00019528 ____A C:\Windows\002487_.tmp

2013-05-18 07:15 - 2013-05-21 22:05 - 00001178 ____A C:\Windows\medctroc.Log

2013-05-18 07:09 - 2013-05-21 22:18 - 00882602 ____A C:\Windows\svcpack.log

2013-05-17 22:34 - 2013-05-21 18:42 - 00002872 ____A C:\Windows\COM+.log

2013-05-17 20:28 - 2013-05-17 20:28 - 00000000 ____D C:\Documents and Settings\Shirley\Application Data\Malwarebytes

2013-05-17 20:16 - 2013-05-17 20:16 - 00000000 ____D C:\Intel

2013-05-17 20:01 - 2013-05-21 23:07 - 00003858 ____A C:\Windows\wmsetup.log

2013-05-17 20:01 - 2013-05-21 15:27 - 00524288 ____A C:\Windows\System32\config\userdifr

2013-05-17 20:01 - 2013-05-21 15:27 - 00001024 ____A C:\Windows\System32\config\userdifr.LOG

2013-05-17 20:01 - 2013-05-21 15:26 - 00299552 ____A C:\Windows\WMSysPrx.prx

2013-05-17 20:01 - 2013-05-21 15:26 - 00025065 ____A C:\Windows\System32\wmpscheme.xml

2013-05-17 20:01 - 2004-08-03 23:10 - 00085376 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\nabtsfec.sys

2013-05-17 20:01 - 2004-08-03 23:10 - 00019328 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\wstcodec.sys

2013-05-17 20:01 - 2004-08-03 23:10 - 00017024 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ccdecode.sys

2013-05-17 20:01 - 2004-08-03 22:58 - 00005504 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mstee.sys

2013-05-17 20:00 - 2013-05-21 15:26 - 00000558 ____A C:\Windows\Windows Update.log

2013-05-17 19:59 - 2002-09-03 13:13 - 00520192 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\wmpvis.dll

2013-05-17 19:59 - 2002-09-03 13:13 - 00319542 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\wmmres.dll

2013-05-17 19:59 - 2002-09-03 13:13 - 00163897 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\wmmutil.dll

2013-05-17 19:59 - 2002-09-03 13:13 - 00110648 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\wmmfilt.dll

2013-05-17 19:59 - 2002-09-03 12:45 - 00028160 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\msoobe.exe

2013-05-17 19:58 - 2013-05-21 22:23 - 00000694 ____A C:\Windows\DtcInstall.log

2013-05-17 19:58 - 2013-05-21 22:13 - 00002674 ____A C:\Windows\sessmgr.setup.log

2013-05-17 19:57 - 2002-09-03 13:05 - 00054272 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\stclient.dll

2013-05-17 19:57 - 2002-09-03 13:05 - 00054272 ____A (Microsoft Corporation) C:\Windows\System32\stclient.dll

2013-05-17 19:57 - 2002-09-03 12:46 - 00025088 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mtxlegih.dll

2013-05-17 19:57 - 2002-09-03 12:46 - 00025088 ____A (Microsoft Corporation) C:\Windows\System32\mtxlegih.dll

2013-05-17 19:57 - 2002-09-03 12:46 - 00020480 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mtxdm.dll

2013-05-17 19:57 - 2002-09-03 12:46 - 00020480 ____A (Microsoft Corporation) C:\Windows\System32\mtxdm.dll

2013-05-17 19:57 - 2002-09-03 12:46 - 00004096 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mtxex.dll

2013-05-17 19:57 - 2002-09-03 12:46 - 00004096 ____A (Microsoft Corporation) C:\Windows\System32\mtxex.dll

2013-05-17 19:57 - 2002-09-03 12:30 - 00005120 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\dcomcnfg.exe

2013-05-17 19:57 - 2002-09-03 12:30 - 00005120 ____A (Microsoft Corporation) C:\Windows\System32\dcomcnfg.exe

2013-05-17 19:57 - 2002-09-03 12:29 - 00147456 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\comsnap.dll

2013-05-17 19:57 - 2002-09-03 12:29 - 00147456 ____A (Microsoft Corporation) C:\Windows\System32\comsnap.dll

2013-05-17 19:57 - 2002-09-03 12:29 - 00082432 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\comrepl.dll

2013-05-17 19:57 - 2002-09-03 12:29 - 00082432 ____A (Microsoft Corporation) C:\Windows\System32\comrepl.dll

2013-05-17 19:57 - 2002-09-03 12:29 - 00025600 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\comaddin.dll

2013-05-17 19:57 - 2002-09-03 12:29 - 00025600 ____A (Microsoft Corporation) C:\Windows\System32\comaddin.dll

2013-05-17 19:57 - 2002-09-03 12:29 - 00005120 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\comrereg.exe

2013-05-17 19:53 - 2013-05-21 15:19 - 00001950 ____A C:\Windows\regopt.log

2013-05-17 19:53 - 2002-09-03 12:27 - 00022016 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\agt0408.dll

2013-05-17 19:53 - 2002-09-03 12:27 - 00019968 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\agt040e.dll

2013-05-17 19:53 - 2002-09-03 12:27 - 00019456 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\agt041f.dll

2013-05-17 19:53 - 2002-09-03 12:27 - 00019456 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\agt0419.dll

2013-05-17 19:53 - 2002-09-03 12:27 - 00019456 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\agt0415.dll

2013-05-17 19:53 - 2002-09-03 12:27 - 00019456 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\agt0405.dll

2013-05-17 19:52 - 2002-09-03 13:16 - 00007046 ___RA C:\Windows\SET1E4.tmp

2013-05-17 19:52 - 2002-09-03 13:15 - 00021281 ___AC C:\Windows\System32\dllcache\XMLDSOC.CAT

2013-05-17 19:52 - 2002-09-03 13:11 - 00390168 ___AC C:\Windows\System32\dllcache\WFC.CAT

2013-05-17 19:52 - 2002-09-03 13:06 - 00022151 ___AC C:\Windows\System32\dllcache\TCLASSES.CAT

2013-05-17 19:52 - 2002-09-03 12:50 - 01086182 ___RA C:\Windows\SET1BF.tmp

2013-05-17 19:52 - 2002-09-03 12:35 - 00013608 ___RA C:\Windows\SET1CE.tmp

2013-05-17 19:26 - 2013-05-17 19:26 - 00000000 ____D C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\SafeMSI

2013-05-17 19:25 - 2013-05-17 19:25 - 00011348 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\SafeMSI.zip

2013-05-17 15:48 - 2013-05-17 15:48 - 00000000 ____A C:\Windows\System32\config\software.tmp.LOG

2013-05-17 15:48 - 2013-05-17 15:48 - 00000000 ____A C:\Windows\System32\config\default.tmp.LOG

2013-05-17 15:47 - 2013-05-17 15:47 - 00000000 ____A C:\Windows\System32\config\system.tmp.LOG

2013-05-17 11:48 - 2013-05-19 23:34 - 00119008 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Local Settings\Application Data\GDIPFONTCACHEV1.DAT

2013-05-17 11:48 - 2013-05-17 11:48 - 00143072 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\JavaRa-2.1.zip

2013-05-17 11:48 - 2013-05-17 11:48 - 00000000 ____D C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\JavaRa-2.1

2013-05-16 17:47 - 2013-05-16 17:47 - 00000000 ____D C:\Program Files\ESET

2013-05-16 16:36 - 2013-05-16 16:36 - 00001598 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\RKreport[1]_S_05162013_02d1636.txt

2013-05-16 16:35 - 2013-05-16 16:36 - 00000000 ____D C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\RK_Quarantine

2013-05-16 16:35 - 2013-05-16 16:34 - 00816128 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\RogueKiller.exe

2013-05-16 14:28 - 2013-05-16 14:28 - 00000000 ____D C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Application Data\Macromedia

2013-05-16 14:28 - 2013-05-16 14:28 - 00000000 ____D C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Application Data\Adobe

2013-05-16 14:18 - 2013-05-16 14:18 - 00000000 __SHD C:\Documents and Settings\Administrator.CHURCH-251CAFC4\PrivacIE

2013-05-16 13:58 - 2013-05-16 13:58 - 00013078 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\combofix.txt

2013-05-16 13:56 - 2013-05-16 13:56 - 00013078 ____A C:\ComboFix.txt

2013-05-16 13:47 - 2013-05-16 13:47 - 00000000 RASHD C:\cmdcons

2013-05-16 13:47 - 2013-05-15 20:39 - 00000211 ___SH C:\Boot.bak

2013-05-16 13:47 - 2004-08-03 23:00 - 00260272 _RASH C:\cmldr

2013-05-16 01:04 - 2013-05-16 01:04 - 00025027 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\attach.txt

2013-05-16 01:04 - 2013-05-16 01:04 - 00009974 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\dds.txt

2013-05-16 00:32 - 2013-05-16 00:32 - 00001678 ____A C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk

2013-05-16 00:32 - 2013-05-16 00:32 - 00000000 ____D C:\Program Files\SUPERAntiSpyware

2013-05-16 00:32 - 2013-05-16 00:32 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com

2013-05-16 00:32 - 2013-05-16 00:32 - 00000000 ____D C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Application Data\SUPERAntiSpyware.com

2013-05-15 18:58 - 2013-05-15 18:58 - 00000784 ____A C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk

2013-05-15 18:58 - 2013-05-15 18:58 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware

2013-05-15 18:58 - 2013-05-15 18:58 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Malwarebytes

2013-05-15 18:58 - 2013-05-15 18:58 - 00000000 ____D C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Application Data\Malwarebytes

2013-05-15 18:58 - 2013-04-04 14:50 - 00022856 ____A (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys

2013-05-15 18:40 - 2013-05-21 22:32 - 00000384 ___AH C:\Windows\Tasks\Microsoft Antimalware Scheduled Scan.job

2013-05-15 18:38 - 2013-05-21 22:39 - 00000366 ___AH C:\Windows\Tasks\MpIdleTask.job

2013-05-15 18:34 - 2013-05-16 13:56 - 00000000 ____D C:\Qoobox

2013-05-15 18:34 - 2011-06-26 02:45 - 00256000 ____A C:\Windows\PEV.exe

2013-05-15 18:34 - 2010-11-07 13:20 - 00208896 ____A C:\Windows\MBR.exe

2013-05-15 18:34 - 2009-04-20 00:56 - 00060416 ____A (NirSoft) C:\Windows\NIRCMD.exe

2013-05-15 18:34 - 2000-08-30 20:00 - 00518144 ____A (SteelWerX) C:\Windows\SWREG.exe

2013-05-15 18:34 - 2000-08-30 20:00 - 00406528 ____A (SteelWerX) C:\Windows\SWSC.exe

2013-05-15 18:34 - 2000-08-30 20:00 - 00212480 ____A (SteelWerX) C:\Windows\SWXCACLS.exe

2013-05-15 18:34 - 2000-08-30 20:00 - 00098816 ____A C:\Windows\sed.exe

2013-05-15 18:34 - 2000-08-30 20:00 - 00080412 ____A C:\Windows\grep.exe

2013-05-15 18:34 - 2000-08-30 20:00 - 00068096 ____A C:\Windows\zip.exe

2013-05-15 18:33 - 2013-05-15 18:45 - 00000000 ____D C:\Windows\erdnt

2013-05-15 18:30 - 2013-05-15 18:30 - 00002534 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\Rkill.txt

2013-05-15 18:30 - 2013-05-15 18:30 - 00000000 __SHD C:\Documents and Settings\Administrator.CHURCH-251CAFC4\IETldCache

2013-05-15 18:28 - 2013-05-20 09:32 - 00000178 __ASH C:\Documents and Settings\Administrator.CHURCH-251CAFC4\ntuser.ini

2013-05-15 18:28 - 2013-05-20 09:22 - 00000062 __ASH C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Local Settings\desktop.ini

2013-05-15 18:28 - 2006-03-11 07:47 - 00000062 __ASH C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Application Data\desktop.ini

2013-05-15 13:21 - 2013-05-15 15:25 - 00000178 __ASH C:\Documents and Settings\Administrator\ntuser.ini

2013-05-15 13:21 - 2013-05-15 15:25 - 00000062 __ASH C:\Documents and Settings\Administrator\Local Settings\desktop.ini

2013-05-15 13:21 - 2006-03-11 07:47 - 00000062 __ASH C:\Documents and Settings\Administrator\Application Data\desktop.ini

2013-05-14 23:37 - 2013-05-14 23:37 - 00174383 ____A C:\Documents and Settings\Shirley\Local Settings\Application Data\2433f433

==================== One Month Modified Files and Folders ========

2013-05-21 23:17 - 2013-05-21 23:17 - 00000000 ____D C:\FRST

2013-05-21 23:17 - 2012-09-07 23:17 - 00000238 ____A C:\Windows\Tasks\Scheduled Update for Ask Toolbar.job

2013-05-21 23:16 - 2013-05-21 23:17 - 01318319 ____A (Farbar) C:\Documents and Settings\Shirley\Desktop\FRST.exe

2013-05-21 23:14 - 2013-05-21 23:14 - 00001792 ____A C:\Documents and Settings\Shirley\Desktop\RKreport[2]_S_05212013_02d2314.txt

2013-05-21 23:13 - 2013-05-21 23:09 - 00000000 ____D C:\Documents and Settings\Shirley\Desktop\RK_Quarantine

2013-05-21 23:10 - 2013-05-21 23:10 - 00001755 ____A C:\Documents and Settings\Shirley\Desktop\RKreport[1]_S_05212013_02d2310.txt

2013-05-21 23:07 - 2013-05-17 20:01 - 00003858 ____A C:\Windows\wmsetup.log

2013-05-21 23:07 - 2006-03-11 12:58 - 00316640 ___AC C:\Windows\WMSysPr9.prx

2013-05-21 23:06 - 2013-05-18 07:39 - 00001396 ____A C:\Windows\System32\wpa.bak

2013-05-21 23:06 - 2004-08-04 08:00 - 00001396 ____A C:\Windows\System32\wpa.dbl

2013-05-21 22:58 - 2006-03-11 13:04 - 00000278 ___SH C:\Documents and Settings\Shirley\ntuser.ini

2013-05-21 22:58 - 2006-03-11 13:04 - 00000062 __ASH C:\Documents and Settings\Shirley\Local Settings\desktop.ini

2013-05-21 22:58 - 2006-03-11 12:57 - 00524698 ____A C:\Windows\WindowsUpdate.log

2013-05-21 22:39 - 2013-05-15 18:38 - 00000366 ___AH C:\Windows\Tasks\MpIdleTask.job

2013-05-21 22:34 - 2012-09-17 10:18 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job

2013-05-21 22:32 - 2013-05-15 18:40 - 00000384 ___AH C:\Windows\Tasks\Microsoft Antimalware Scheduled Scan.job

2013-05-21 22:26 - 2006-03-11 07:49 - 00578824 ___AC C:\Windows\System32\PerfStringBackup.INI

2013-05-21 22:23 - 2013-05-21 15:17 - 00516951 ____A C:\Windows\setupapi.log

2013-05-21 22:23 - 2013-05-18 07:34 - 00000352 ____A C:\Windows\spupdsvc.log.1.log

2013-05-21 22:23 - 2013-05-17 19:58 - 00000694 ____A C:\Windows\DtcInstall.log

2013-05-21 22:23 - 2013-04-19 10:30 - 00066996 ____A C:\Windows\spupdsvc.log

2013-05-21 22:23 - 2012-03-13 20:41 - 00484982 ____A C:\Windows\FaxSetup.log

2013-05-21 22:23 - 2012-03-13 20:41 - 00269341 ____A C:\Windows\ocgen.log

2013-05-21 22:23 - 2012-03-13 20:41 - 00197606 ____A C:\Windows\tsoc.log

2013-05-21 22:23 - 2012-03-13 20:41 - 00195773 ____A C:\Windows\comsetup.log

2013-05-21 22:23 - 2012-03-13 20:41 - 00117572 ____A C:\Windows\ntdtcsetup.log

2013-05-21 22:23 - 2012-03-13 20:41 - 00072145 ____A C:\Windows\iis6.log

2013-05-21 22:23 - 2012-03-13 20:41 - 00028494 ____A C:\Windows\ocmsn.log

2013-05-21 22:23 - 2012-03-13 20:41 - 00025405 ____A C:\Windows\msgsocm.log

2013-05-21 22:23 - 2012-03-13 20:41 - 00004696 ____A C:\Windows\imsins.log

2013-05-21 22:22 - 2006-03-11 07:46 - 00429824 ____A C:\Windows\System32\FNTCACHE.DAT

2013-05-21 22:21 - 2008-08-05 22:26 - 00000090 ___AC C:\Windows\System32\spupdwxp.log

2013-05-21 22:21 - 2006-03-11 07:51 - 00000159 ____A C:\Windows\wiadebug.log

2013-05-21 22:21 - 2006-03-11 07:51 - 00000049 ____A C:\Windows\wiaservc.log

2013-05-21 22:20 - 2006-03-11 13:02 - 00000062 __ASH C:\Documents and Settings\NetworkService\Local Settings\desktop.ini

2013-05-21 22:20 - 2006-03-11 13:02 - 00000062 __ASH C:\Documents and Settings\LocalService\Local Settings\desktop.ini

2013-05-21 22:20 - 2006-03-11 13:02 - 00000006 ___AH C:\Windows\Tasks\SA.DAT

2013-05-21 22:18 - 2013-05-18 07:09 - 00882602 ____A C:\Windows\svcpack.log

2013-05-21 22:18 - 2012-03-13 20:41 - 00001374 ____A C:\Windows\imsins.BAK

2013-05-21 22:18 - 2006-03-11 13:02 - 00031966 ____A C:\Windows\SchedLgU.Txt

2013-05-21 22:13 - 2013-05-18 07:24 - 00000373 ____A C:\Windows\cmsetacl.log

2013-05-21 22:13 - 2013-05-17 19:58 - 00002674 ____A C:\Windows\sessmgr.setup.log

2013-05-21 22:13 - 2006-03-11 07:46 - 00000282 _RASH C:\boot.ini

2013-05-21 22:13 - 2006-03-11 07:39 - 00000000 ____D C:\Windows\ime

2013-05-21 22:13 - 2006-03-11 07:39 - 00000000 ____D C:\Windows\Help

2013-05-21 22:10 - 2006-03-11 12:56 - 00000000 ____D C:\Windows\System32\Restore

2013-05-21 22:10 - 2006-03-11 12:56 - 00000000 ____D C:\Windows\srchasst

2013-05-21 22:10 - 2006-03-11 12:56 - 00000000 ____D C:\Program Files\Outlook Express

2013-05-21 22:10 - 2006-03-11 12:56 - 00000000 ____D C:\Program Files\NetMeeting

2013-05-21 22:10 - 2006-03-11 12:56 - 00000000 ____D C:\Program Files\Movie Maker

2013-05-21 22:10 - 2006-03-11 12:56 - 00000000 ____D C:\Program Files\Common Files\System

2013-05-21 22:10 - 2006-03-11 12:54 - 00000000 ____D C:\Windows\System32\Com

2013-05-21 22:10 - 2006-03-11 12:54 - 00000000 ____D C:\Program Files\Windows NT

2013-05-21 22:10 - 2006-03-11 07:39 - 00000000 ____D C:\Windows\System32\usmt

2013-05-21 22:10 - 2006-03-11 07:39 - 00000000 ____D C:\Windows\System32\npp

2013-05-21 22:10 - 2006-03-11 07:39 - 00000000 ____D C:\Windows\system

2013-05-21 22:10 - 2006-03-11 07:39 - 00000000 ____D C:\Windows\msagent

2013-05-21 22:08 - 2006-03-11 07:39 - 00000000 ___RD C:\Windows\Web

2013-05-21 22:08 - 2002-09-03 12:50 - 00250032 _RASH C:\ntldr

2013-05-21 22:08 - 2002-09-03 12:49 - 00047564 _RASH C:\NTDETECT.COM

2013-05-21 22:07 - 2006-03-11 07:39 - 00000000 ____D C:\Windows\security

2013-05-21 22:06 - 2013-05-21 22:05 - 00000000 __HDC C:\Windows\$NtServicePackUninstall$

2013-05-21 22:05 - 2013-05-18 07:15 - 00001178 ____A C:\Windows\medctroc.Log

2013-05-21 21:53 - 2013-05-21 23:13 - 00816128 ____A C:\Documents and Settings\Shirley\Desktop\RogueKiller.exe

2013-05-21 19:06 - 2004-08-04 08:00 - 00000657 ____A C:\Windows\win.ini

2013-05-21 19:06 - 2004-08-04 08:00 - 00000227 ____A C:\Windows\system.ini

2013-05-21 18:45 - 2013-05-21 18:45 - 00000000 __SHD C:\found.000

2013-05-21 18:42 - 2013-05-17 22:34 - 00002872 ____A C:\Windows\COM+.log

2013-05-21 16:03 - 2006-03-11 12:55 - 00000000 ____D C:\Windows\Registration

2013-05-21 15:31 - 2012-03-13 20:41 - 00250987 ____A C:\Windows\setupact.log

2013-05-21 15:27 - 2013-05-17 20:01 - 00524288 ____A C:\Windows\System32\config\userdifr

2013-05-21 15:27 - 2013-05-17 20:01 - 00001024 ____A C:\Windows\System32\config\userdifr.LOG

2013-05-21 15:27 - 2006-03-11 07:46 - 00262144 ____A C:\Windows\System32\config\userdiff

2013-05-21 15:27 - 2006-03-11 07:46 - 00001024 ____A C:\Windows\System32\config\userdiff.LOG

2013-05-21 15:26 - 2013-05-17 20:01 - 00299552 ____A C:\Windows\WMSysPrx.prx

2013-05-21 15:26 - 2013-05-17 20:01 - 00025065 ____A C:\Windows\System32\wmpscheme.xml

2013-05-21 15:26 - 2013-05-17 20:00 - 00000558 ____A C:\Windows\Windows Update.log

2013-05-21 15:26 - 2013-01-07 23:03 - 00000798 ____A C:\Windows\setuperr.log

2013-05-21 15:26 - 2006-03-11 12:58 - 00023392 ____A C:\Windows\System32\nscompat.tlb

2013-05-21 15:26 - 2006-03-11 12:58 - 00016832 ____A C:\Windows\System32\amcompat.tlb

2013-05-21 15:26 - 2006-03-11 07:49 - 00004161 ___AC C:\Windows\ODBCINST.INI

2013-05-21 15:25 - 2013-05-21 15:25 - 00000749 __RAH C:\Windows\WindowsShell.Manifest

2013-05-21 15:25 - 2013-05-21 15:25 - 00000749 __RAH C:\Windows\System32\wuaucpl.cpl.manifest

2013-05-21 15:25 - 2013-05-21 15:25 - 00000749 __RAH C:\Windows\System32\sapi.cpl.manifest

2013-05-21 15:25 - 2013-05-21 15:25 - 00000749 __RAH C:\Windows\System32\ncpa.cpl.manifest

2013-05-21 15:25 - 2013-05-21 15:25 - 00000488 __RAH C:\Windows\System32\logonui.exe.manifest

2013-05-21 15:25 - 2006-03-11 12:57 - 00000749 _RAHC C:\Windows\System32\nwc.cpl.manifest

2013-05-21 15:25 - 2006-03-11 12:57 - 00000749 _RAHC C:\Windows\System32\cdplayer.exe.manifest

2013-05-21 15:25 - 2006-03-11 12:57 - 00000488 __RAH C:\Windows\System32\WindowsLogon.manifest

2013-05-21 15:24 - 2006-03-11 12:55 - 00023388 ___AC C:\Windows\System32\emptyregdb.dat

2013-05-21 15:19 - 2013-05-17 19:53 - 00001950 ____A C:\Windows\regopt.log

2013-05-21 15:19 - 2006-03-11 07:47 - 00000062 __ASH C:\Documents and Settings\Default User\Local Settings\desktop.ini

2013-05-21 15:19 - 2006-03-11 07:47 - 00000062 __ASH C:\Documents and Settings\Default User\Application Data\desktop.ini

2013-05-21 15:19 - 2006-03-11 07:47 - 00000062 __ASH C:\Documents and Settings\All Users\Application Data\desktop.ini

2013-05-21 15:03 - 2013-05-21 14:58 - 00024120 ____A C:\Windows\ie8Uninst.log

2013-05-21 15:03 - 2013-04-01 20:29 - 00049152 ____A C:\Windows\System32\config\security.sav

2013-05-21 15:03 - 2009-06-19 18:14 - 00000000 ____D C:\Windows\ie8updates

2013-05-21 14:58 - 2012-04-15 11:47 - 00060956 ____A C:\Windows\updspapi.log

2013-05-21 14:58 - 2012-03-06 22:30 - 00532748 ____A C:\Windows\setupapi.old

2013-05-21 11:16 - 2006-03-11 07:46 - 32243712 ____A C:\Windows\System32\config\software.sav

2013-05-21 11:16 - 2006-03-11 07:46 - 05505024 ____A C:\Windows\System32\config\system.sav

2013-05-21 11:16 - 2006-03-11 07:46 - 00524288 ____A C:\Windows\System32\config\default.sav

2013-05-21 11:15 - 2006-03-11 07:46 - 00001024 ____A C:\Windows\System32\config\TempKey.LOG

2013-05-21 11:12 - 2006-03-11 07:39 - 00000000 ____D C:\Windows\twain_32

2013-05-21 11:12 - 2006-03-11 07:39 - 00000000 ____D C:\Windows\System32\icsxml

2013-05-21 11:12 - 2006-03-11 07:39 - 00000000 ____D C:\Windows\Media

2013-05-21 11:11 - 2006-03-11 07:39 - 00000000 ____D C:\Windows\System32\ias

2013-05-21 11:11 - 2006-03-11 07:39 - 00000000 ____D C:\Windows\System32\1033

2013-05-21 11:09 - 2006-03-11 07:39 - 00000000 ____D C:\Windows\Driver Cache

2013-05-20 09:32 - 2013-05-15 18:28 - 00000178 __ASH C:\Documents and Settings\Administrator.CHURCH-251CAFC4\ntuser.ini

2013-05-20 09:27 - 2013-05-20 09:27 - 00218058 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\sfc.bmp

2013-05-20 09:22 - 2013-05-15 18:28 - 00000062 __ASH C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Local Settings\desktop.ini

2013-05-19 23:40 - 2013-05-19 23:35 - 00002818 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\unhide.txt

2013-05-19 23:35 - 2013-05-19 23:35 - 00398752 ____A (Bleeping Computer, LLC) C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\unhide.exe

2013-05-19 23:34 - 2013-05-17 11:48 - 00119008 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Local Settings\Application Data\GDIPFONTCACHEV1.DAT

2013-05-19 23:17 - 2013-05-19 23:14 - 00034634 ____A C:\Windows\ie8.log

2013-05-19 23:17 - 2013-05-19 23:11 - 00031204 ____A C:\Windows\ie8_main.log

2013-05-18 19:42 - 2006-03-11 13:36 - 00000000 ____D C:\Program Files\Java

2013-05-18 19:42 - 2006-03-11 13:36 - 00000000 ____D C:\Program Files\Common Files\Java

2013-05-18 07:48 - 2013-05-18 07:48 - 00000104 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\Shortcut to Internet Explorer.lnk

2013-05-18 07:23 - 2006-03-11 07:39 - 00000000 ____D C:\Windows\PeerNet

2013-05-17 20:28 - 2013-05-17 20:28 - 00000000 ____D C:\Documents and Settings\Shirley\Application Data\Malwarebytes

2013-05-17 20:24 - 2010-12-29 23:19 - 00119008 ___AC C:\Documents and Settings\Shirley\Local Settings\Application Data\GDIPFONTCACHEV1.DAT

2013-05-17 20:16 - 2013-05-17 20:16 - 00000000 ____D C:\Intel

2013-05-17 20:01 - 2006-03-11 07:39 - 00000000 ____D C:\Windows\java

2013-05-17 19:57 - 2006-03-11 12:54 - 00000000 ____D C:\Program Files\MSN

2013-05-17 19:26 - 2013-05-17 19:26 - 00000000 ____D C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\SafeMSI

2013-05-17 19:25 - 2013-05-17 19:25 - 00011348 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\SafeMSI.zip

2013-05-17 15:48 - 2013-05-17 15:48 - 00000000 ____A C:\Windows\System32\config\software.tmp.LOG

2013-05-17 15:48 - 2013-05-17 15:48 - 00000000 ____A C:\Windows\System32\config\default.tmp.LOG

2013-05-17 15:47 - 2013-05-17 15:47 - 00000000 ____A C:\Windows\System32\config\system.tmp.LOG

2013-05-17 11:48 - 2013-05-17 11:48 - 00143072 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\JavaRa-2.1.zip

2013-05-17 11:48 - 2013-05-17 11:48 - 00000000 ____D C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\JavaRa-2.1

2013-05-16 17:47 - 2013-05-16 17:47 - 00000000 ____D C:\Program Files\ESET

2013-05-16 16:36 - 2013-05-16 16:36 - 00001598 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\RKreport[1]_S_05162013_02d1636.txt

2013-05-16 16:36 - 2013-05-16 16:35 - 00000000 ____D C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\RK_Quarantine

2013-05-16 16:34 - 2013-05-16 16:35 - 00816128 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\RogueKiller.exe

2013-05-16 14:28 - 2013-05-16 14:28 - 00000000 ____D C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Application Data\Macromedia

2013-05-16 14:28 - 2013-05-16 14:28 - 00000000 ____D C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Application Data\Adobe

2013-05-16 14:18 - 2013-05-16 14:18 - 00000000 __SHD C:\Documents and Settings\Administrator.CHURCH-251CAFC4\PrivacIE

2013-05-16 13:58 - 2013-05-16 13:58 - 00013078 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\combofix.txt

2013-05-16 13:56 - 2013-05-16 13:56 - 00013078 ____A C:\ComboFix.txt

2013-05-16 13:56 - 2013-05-15 18:34 - 00000000 ____D C:\Qoobox

2013-05-16 13:47 - 2013-05-16 13:47 - 00000000 RASHD C:\cmdcons

2013-05-16 01:04 - 2013-05-16 01:04 - 00025027 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\attach.txt

2013-05-16 01:04 - 2013-05-16 01:04 - 00009974 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\dds.txt

2013-05-16 00:32 - 2013-05-16 00:32 - 00001678 ____A C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk

2013-05-16 00:32 - 2013-05-16 00:32 - 00000000 ____D C:\Program Files\SUPERAntiSpyware

2013-05-16 00:32 - 2013-05-16 00:32 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com

2013-05-16 00:32 - 2013-05-16 00:32 - 00000000 ____D C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Application Data\SUPERAntiSpyware.com

2013-05-15 20:39 - 2013-05-16 13:47 - 00000211 ___SH C:\Boot.bak

2013-05-15 20:39 - 2013-04-18 23:48 - 00000000 ____D C:\Windows\pss

2013-05-15 18:58 - 2013-05-15 18:58 - 00000784 ____A C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk

2013-05-15 18:58 - 2013-05-15 18:58 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware

2013-05-15 18:58 - 2013-05-15 18:58 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Malwarebytes

2013-05-15 18:58 - 2013-05-15 18:58 - 00000000 ____D C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Application Data\Malwarebytes

2013-05-15 18:45 - 2013-05-15 18:33 - 00000000 ____D C:\Windows\erdnt

2013-05-15 18:30 - 2013-05-15 18:30 - 00002534 ____A C:\Documents and Settings\Administrator.CHURCH-251CAFC4\Desktop\Rkill.txt

2013-05-15 18:30 - 2013-05-15 18:30 - 00000000 __SHD C:\Documents and Settings\Administrator.CHURCH-251CAFC4\IETldCache

2013-05-15 18:02 - 2006-03-11 07:46 - 07864320 ____A C:\Windows\System32\config\system.regresbak1

2013-05-15 17:57 - 2006-03-11 07:46 - 40087552 ____A C:\Windows\System32\config\software.regresbak1

2013-05-15 17:57 - 2006-03-11 07:46 - 00356352 ____A C:\Windows\System32\config\default.regresbak1

2013-05-15 17:57 - 2006-03-11 07:46 - 00049152 ____A C:\Windows\System32\config\security.regresbak1

2013-05-15 17:57 - 2006-03-11 07:46 - 00024576 ____A C:\Windows\System32\config\sam.regresbak1

2013-05-15 15:25 - 2013-05-15 13:21 - 00000178 __ASH C:\Documents and Settings\Administrator\ntuser.ini

2013-05-15 15:25 - 2013-05-15 13:21 - 00000062 __ASH C:\Documents and Settings\Administrator\Local Settings\desktop.ini

2013-05-14 23:37 - 2013-05-14 23:37 - 00174383 ____A C:\Documents and Settings\Shirley\Local Settings\Application Data\2433f433

2013-05-14 23:36 - 2012-09-07 23:17 - 00000000 ____D C:\Documents and Settings\Shirley\Local Settings\Application Data\AskToolbar

2013-05-02 23:28 - 2011-02-04 16:06 - 00000000 ____D C:\Documents and Settings\Shirley\Application Data\Skype

2013-05-02 23:28 - 2011-02-04 16:06 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Skype

2013-05-02 11:28 - 2012-03-06 19:35 - 00238872 ____N (Microsoft Corporation) C:\Windows\System32\MpSigStub.exe

2013-04-22 20:47 - 2013-04-19 10:30 - 00065536 ____A C:\Windows\System32\config\WindowsPowerShell.evt

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe

[2002-09-03 12:32] - [2004-08-04 00:56] - 1032192 ____A (Microsoft Corporation) a0732187050030ae399b241436565e64

C:\Windows\System32\winlogon.exe

[2002-09-03 13:12] - [2004-08-04 00:56] - 0502272 ____A (Microsoft Corporation) 01c3346c241652f43aed8e2149881bfe

C:\Windows\System32\svchost.exe

[2002-09-03 13:05] - [2004-08-04 00:56] - 0014336 ____A (Microsoft Corporation) 8f078ae4ed187aaabc0a305146de6716

C:\Windows\System32\services.exe

[2002-09-03 12:59] - [2004-08-04 00:56] - 0108032 ____A (Microsoft Corporation) c6ce6eec82f187615d1002bb3bb50ed4

C:\Windows\System32\User32.dll

[2002-09-03 13:08] - [2004-08-04 00:56] - 0577024 ____A (Microsoft Corporation) c72661f8552ace7c5c85e16a3cf505c4

C:\Windows\System32\userinit.exe

[2002-09-03 13:08] - [2004-08-04 00:56] - 0024576 ____A (Microsoft Corporation) 39b1ffb03c2296323832acbae50d2aff

C:\Windows\System32\Drivers\volsnap.sys

[2002-09-03 13:10] - [2004-08-03 23:00] - 0052352 ____A (Microsoft Corporation) ee4660083deba849ff6c485d944b379b

==================== End Of Log ============================

Link to post
Share on other sites

Addition LOG

-------------------------------

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 21-05-2013 02

Ran by Shirley at 2013-05-21 23:19:04 Run:

Running from C:\Documents and Settings\Shirley\Desktop

Boot Mode: Normal

==========================================================

==================== Installed Programs =======================

3D Windows XP Screen Saver

Acrobat.com (Version: 0.0.0)

Acrobat.com (Version: 1.1.377)

Adobe AIR (Version: 1.0.4990)

Adobe AIR (Version: 1.0.8.4990)

Adobe Flash Player 11 ActiveX (Version: 11.6.602.180)

Adobe Photoshop Elements 4.0 (Version: 4.0)

Adobe Reader 9.1 (Version: 9.1.0)

Adobe Shockwave Player (Version: 10.1.4.20)

Agere Systems AC'97 Modem

ALPS Touch Pad Driver

Apple Mobile Device Support (Version: 2.4.1.7)

Apple Software Update (Version: 2.1.1.116)

Ask Toolbar (Version: 1.15.15.0)

Ask Toolbar Updater (Version: 1.2.4.36191)

AVS DVD Player version 2.4

Broadcom 802.11 Wireless LAN Adapter

Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)

ESET Online Scanner v3

HP Wireless Assistant 1.01 B2 (Version: 1.01 B2)

Intel® Graphics Media Accelerator Driver for Mobile

InterVideo WinDVD (Version: 5.0-B11.649)

iTunes (Version: 8.1.1.10)

Java Auto Updater (Version: 2.0.7.1)

Java 6 Update 35 (Version: 6.0.350)

LWS Twitter (Version: 13.00.1216.0)

Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)

MasterCook Deluxe 9 (Version: 9.0.000)

MetaFrame Presentation Server Web Client for Win32

Microsoft .NET Framework 1.1 (Version: 1.1.4322)

Microsoft .NET Framework 1.1 Security Update (KB2698023)

Microsoft .NET Framework 1.1 Security Update (KB2742597)

Microsoft .NET Framework 1.1 Security Update (KB979906)

Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)

Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)

Microsoft .NET Framework 3.5 SP1

Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)

Microsoft Application Error Reporting (Version: 12.0.6012.5000)

Microsoft Choice Guard (Version: 2.0.48.0)

Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)

Microsoft Internationalized Domain Names Mitigation APIs

Microsoft National Language Support Downlevel APIs

Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)

Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)

Microsoft Office Outlook Connector (Version: 12.0.6423.1000)

Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0)

Microsoft Security Client (Version: 4.2.0223.1)

Microsoft Security Essentials (Version: 4.2.223.1)

Microsoft Silverlight (Version: 5.1.20125.0)

Microsoft User-Mode Driver Framework Feature Pack 1.0

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)

Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)

Move Networks Media Player for Internet Explorer

MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)

MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)

MSXML 6.0 Parser (KB933579) (Version: 6.10.1200.0)

muvee autoProducer 4.0 - SE (Version: 4.00.050)

NETGEAR WGX102 Configuration Utility (Version: 1.0.0.7)

Quick Launch Buttons 5.10 B5 (Version: 5.10 B5)

QuickTime (Version: 7.60.92.0)

REALTEK Gigabit and Fast Ethernet NIC Driver (Version: 1.71)

Skype Toolbars (Version: 5.0.4137)

Skype™ 5.10 (Version: 5.10.116)

SoundMAX (Version: 5.12.01.5240)

Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0)

SUPERAntiSpyware (Version: 5.0.1142)

Texas Instruments PCIxx21/x515 drivers. (Version: 1.10.0000)

TIxx21 (Version: 1.10.0000)

Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)

WebFldrs XP (Version: 9.50.7523)

Windows Genuine Advantage Notifications (KB905474) (Version: 1.7.0018.5)

Windows Genuine Advantage Validation Tool (KB892130)

Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)

Windows Internet Explorer 7 (Version: 20061107.210142)

Windows Media Connect

Windows Media Format 11 runtime

Windows Media Format Runtime

Windows Media Player 10

Windows Media Player 11

Windows Rights Management Client Backwards Compatibility SP2 (Version: 5.2.70)

Windows Rights Management Client with Service Pack 2 (Version: 5.2.70)

Windows XP Service Pack 2 (Version: 20040803.231319)

WinRAR archiver

WordWeb (Version: 2.0)

==================== Restore Points =========================

21-05-2013 22:35:55 System Checkpoint

22-05-2013 02:07:35 Installed Windows XP Service Pack 2.

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:

==================

Error: (05/21/2013 10:58:41 PM) (Source: Windows Product Activation) (User: )

Description: You have not activated Windows within the grace period. To activate Windows, contact a customer service representative by telephone.

Error: (05/21/2013 10:22:52 PM) (Source: WinMgmt) (User: )

Description: Failed to load MOF C:\997630BD73259E4EEFD7\I386\LICWMI.MOF while recovering repository file.

Error: (05/21/2013 10:22:51 PM) (Source: WinMgmt) (User: )

Description: Failed to load MOF C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.0\WINDOWS COMMUNICATION FOUNDATION\SERVICEMODEL.MOF while recovering repository file.

Error: (05/21/2013 10:22:49 PM) (Source: WinMgmt) (User: )

Description: Failed to load MOF C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V2.0.50727\CLR.MOF while recovering repository file.

Error: (05/21/2013 10:22:48 PM) (Source: WinMgmt) (User: )

Description: Failed to load MOF C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V2.0.50727\ASPNET.MOF while recovering repository file.

Error: (05/21/2013 10:22:48 PM) (Source: WinMgmt) (User: )

Description: Failed to load MOF C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V1.1.4322\ASPNET.MOF while recovering repository file.

Error: (05/21/2013 04:03:12 PM) (Source: Windows Product Activation) (User: )

Description: Due to hardware changes on this computer, you will need to reactivate your Windows product.

Error: (05/21/2013 03:26:16 PM) (Source: HELPSVC) (User: )

Description: Service could not be deleted

Error: (05/20/2013 09:24:31 AM) (Source: MPSampleSubmission) (User: )

Description: EventType mptelemetry, P1 0x8000ffff, P2 patchapplication, P3 am bde, P4 11.1.4406.0, P5 mpsigstub.exe, P6 4.2.223.0, P7 microsoft security essentials, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

Error: (05/20/2013 00:00:30 AM) (Source: MPSampleSubmission) (User: )

Description: EventType mptelemetry, P1 0x8000ffff, P2 patchapplication, P3 am bde, P4 11.1.4406.0, P5 mpsigstub.exe, P6 4.2.223.0, P7 microsoft security essentials, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

System errors:

=============

Error: (05/21/2013 10:52:12 PM) (Source: Microsoft Antimalware) (User: )

Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.149.1811.0

Update Source: %NT AUTHORITY51

Update Stage: 4.2.0223.00

Source Path: 4.2.0223.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\NETWORK SERVICE

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608

Error: (05/21/2013 10:52:12 PM) (Source: Microsoft Antimalware) (User: )

Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.149.1811.0

Update Source: %NT AUTHORITY51

Update Stage: 4.2.0223.00

Source Path: 4.2.0223.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\NETWORK SERVICE

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608

Error: (05/21/2013 10:52:11 PM) (Source: Microsoft Antimalware) (User: )

Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.149.1811.0

Update Source: %NT AUTHORITY59

Update Stage: 4.2.0223.00

Source Path: 4.2.0223.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\SYSTEM

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608

Error: (05/21/2013 10:23:14 PM) (Source: Service Control Manager) (User: )

Description: The following boot-start or system-start driver(s) failed to load:

MpFilter

Error: (05/21/2013 10:23:14 PM) (Source: Service Control Manager) (User: )

Description: The Portable Media Serial Number service terminated with the following error:

%%126

Error: (05/21/2013 10:23:14 PM) (Source: Service Control Manager) (User: )

Description: The HP Pci Information service failed to start due to the following error:

%%3

Error: (05/21/2013 10:23:14 PM) (Source: Service Control Manager) (User: )

Description: The Java Quick Starter service failed to start due to the following error:

%%2

Error: (05/21/2013 10:22:35 PM) (Source: Microsoft Antimalware) (User: )

Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.149.1811.0

Update Source: %NT AUTHORITY51

Update Stage: 4.2.0223.00

Source Path: 4.2.0223.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\NETWORK SERVICE

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608

Error: (05/21/2013 10:22:35 PM) (Source: Microsoft Antimalware) (User: )

Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.149.1811.0

Update Source: %NT AUTHORITY51

Update Stage: 4.2.0223.00

Source Path: 4.2.0223.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\NETWORK SERVICE

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608

Error: (05/21/2013 10:22:33 PM) (Source: Microsoft Antimalware) (User: )

Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.149.1811.0

Update Source: %NT AUTHORITY59

Update Stage: 4.2.0223.00

Source Path: 4.2.0223.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\SYSTEM

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608

Microsoft Office Sessions:

=========================

Error: (05/21/2013 10:58:41 PM) (Source: Windows Product Activation)(User: )

Description:

Error: (05/21/2013 10:22:52 PM) (Source: WinMgmt)(User: )

Description: C:\997630BD73259E4EEFD7\I386\LICWMI.MOF

Error: (05/21/2013 10:22:51 PM) (Source: WinMgmt)(User: )

Description: C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.0\WINDOWS COMMUNICATION FOUNDATION\SERVICEMODEL.MOF

Error: (05/21/2013 10:22:49 PM) (Source: WinMgmt)(User: )

Description: C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V2.0.50727\CLR.MOF

Error: (05/21/2013 10:22:48 PM) (Source: WinMgmt)(User: )

Description: C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V2.0.50727\ASPNET.MOF

Error: (05/21/2013 10:22:48 PM) (Source: WinMgmt)(User: )

Description: C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V1.1.4322\ASPNET.MOF

Error: (05/21/2013 04:03:12 PM) (Source: Windows Product Activation)(User: )

Description:

Error: (05/21/2013 03:26:16 PM) (Source: HELPSVC)(User: )

Description:

Error: (05/20/2013 09:24:31 AM) (Source: MPSampleSubmission)(User: )

Description: mptelemetry0x8000ffffpatchapplicationam bde11.1.4406.0mpsigstub.exe4.2.223.0microsoft security essentialsNILNILNIL

Error: (05/20/2013 00:00:30 AM) (Source: MPSampleSubmission)(User: )

Description: mptelemetry0x8000ffffpatchapplicationam bde11.1.4406.0mpsigstub.exe4.2.223.0microsoft security essentialsNILNILNIL

==================== Memory info ===========================

Percentage of memory in use: 25%

Total physical RAM: 2038.42 MB

Available physical RAM: 1508.63 MB

Total Pagefile: 3930.83 MB

Available Pagefile: 3459.85 MB

Total Virtual: 2047.88 MB

Available Virtual: 1971.05 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:55.88 GB) (Free:39.92 GB) NTFS ==>[Drive with boot components (Windows XP)]

Drive d: (VRMSP_EN) (CDROM) (Total:0.46 GB) (Free:0 GB) CDFS

Drive e: () (Removable) (Total:0.94 GB) (Free:0.37 GB) FAT

==================== MBR & Partition Table ==================

========================================================

Disk: 0 (MBR Code: Windows XP) (Size: 56 GB) (Disk ID: 94E494E4)

Partition 1: (Active) - (Size=56 GB) - (Type=07 NTFS)

========================================================

Disk: 1 (Size: 969 MB) (Disk ID: 91F72D24)

Partition 1: (Active) - (Size=961 MB) - (Type=06)

==================== End Of Log ============================

Link to post
Share on other sites

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.