Jump to content

tv-classic-noboot-fg.js


Recommended Posts

Hello homeshopper and :welcome:! My name is Borislav and I will be glad to help you solve your malware problem.

Please note:

  • If you are a paying customer, you have the privilege to contact the help desk at Consumer Support. If you choose this option to get help, please let me know.
  • I recommend you to keep the instructions I will be giving you so that they are available to you at any time. You can save them in a text file or print them.
  • Make sure you read all of the instructions and fixes thoroughly before continuing with them.
  • Follow my instructions strictly and don’t hesitate to stop and ask me if you have any questions.
  • Post your log files, don't attach them. Every log file should be copy/pasted in your next reply.
  • Do not perform any kind of scanning and fixing without my instructions. If you want to proceed on your own, please let me know.
Please follow the instructions here and then post your log files in a new reply in this thread:

http://forums.malwarebytes.org/index.php?showtopic=9573

Link to post
Share on other sites

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 02/03/2014 22:15:20
System Uptime: 08/03/2014 12:55:51 (3 hours ago)
.
Motherboard: DIXONSXP |  | DIXONSXP
Processor: Intel® Celeron® M CPU        430  @ 1.73GHz | U2E1 | 1733/mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 68 GiB total, 32.173 GiB free.
D: is FIXED (NTFS) - 6 GiB total, 5.622 GiB free.
E: is CDROM ()
F: is CDROM (UDF)
H: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP138: 08/03/2014 12:48:37 - Software Distribution Service 3.0
.
==== Image File Execution Options =============
.
IFEO: acrord32.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO: bootrace.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO: convert.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO: driverrestore.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO: fufaxcnt.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO: gmpoint.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO: licensecheck.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO: localhelp.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO: localreadme.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO: pmsb.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO: prestopm.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO: setup.exe - "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO: Your Image File Name Here without a path - ntsd -d
.
==== Hosts File Hijack ======================
.
Hosts: 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
Hosts: 0.0.0.0 media.opencandy.com
Hosts: 0.0.0.0 cdn.opencandy.com
Hosts: 0.0.0.0 tracking.opencandy.com
Hosts: 0.0.0.0 api.opencandy.com
Hosts: 0.0.0.0 installer.betterinstaller.com
Hosts: 0.0.0.0 installer.filebulldog.com
Hosts: 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
Hosts: 0.0.0.0 inno.bisrv.com
Hosts: 0.0.0.0 nsis.bisrv.com
Hosts: 0.0.0.0 cdn.file2desktop.com
Hosts: 0.0.0.0 cdn.goateastcach.us
Hosts: 0.0.0.0 cdn.guttastatdk.us
Hosts: 0.0.0.0 cdn.inskinmedia.com
Hosts: 0.0.0.0 cdn.insta.oibundles2.com
Hosts: 0.0.0.0 cdn.insta.playbryte.com
Hosts: 0.0.0.0 cdn.llogetfastcach.us
Hosts: 0.0.0.0 cdn.montiera.com
Hosts: 0.0.0.0 cdn.msdwnld.com
Hosts: 0.0.0.0 cdn.mypcbackup.com
Hosts: 0.0.0.0 cdn.ppdownload.com
Hosts: 0.0.0.0 cdn.riceateastcach.us
Hosts: 0.0.0.0 cdn.shyapotato.us
Hosts: 0.0.0.0 cdn.solimba.com
Hosts: 0.0.0.0 cdn.tuto4pc.com
Hosts: 0.0.0.0 cdn.appround.biz
Hosts: 0.0.0.0 cdn.bigspeedpro.com
Hosts: 0.0.0.0 cdn.bispd.com
Hosts: 0.0.0.0 cdn.bisrv.com
Hosts: 0.0.0.0 cdn.cdndp.com
Hosts: 0.0.0.0 cdn.download.sweetpacks.com
Hosts: 0.0.0.0 cdn.dpdownload.com
Hosts: 0.0.0.0 cdn.visualbee.net
.
==== Installed Programs ======================
.
Adobe Flash Player 11 ActiveX
Adobe Reader 8.1.0
Amazon Kindle
AVG 2013
AVG PC TuneUp 2014
AVG PC TuneUp 2014 (en-US)
Belarc Advisor 8.1
Belkin Desktop PCI Card Driver
BitZipper 2013
BootRacer
Browser Repair Tool 1.0.39
CaptureWizPro 4.50
ColorPic
Crystal Reports Basic for Visual Studio 2008
Diagram Designer
Ditto
Driver Restore
DriverUpdate
Effective File Search 6.8.1
EPSON BX305 Series Manual
EPSON BX305 Series Network Guide
EPSON BX305 Series Printer Uninstall
Epson Easy Photo Print 2
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser)
Epson FAX Utility
Epson PC-FAX Driver
EPSON Scan
EpsonNet Print
EpsonNet Setup 3.3
eReg
FastCGI 1.5 (x86) RTW
Free FLV Converter
GIGABYTE Gigabyte Wireless Adapter
Google Chrome
Google Drive
Google Update Helper
Handy Start Menu version 1.92
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946040)
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946308)
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946344)
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947540)
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789)
Hotfix for Microsoft Visual Studio Team System 2008 Team Suite - ENU (KB971091)
Hotfix for Microsoft Visual Studio Team System 2008 Team Suite - ENU (KB973674)
iCopy
IIS 7.5 Express
Intel® Graphics Media Accelerator Driver
Intel® PROSet/Wireless Software
JRuler Pro 3.1
Logitech SetPoint 6.61
Malwarebytes Anti-Malware version 1.75.0.1300
mCore
mDriver
mDrWiFi
mHelp
Microsoft .NET Compact Framework 2.0 SP2
Microsoft .NET Compact Framework 3.5
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2833941)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Application Error Reporting
Microsoft ASP.NET Web Pages
Microsoft Choice Guard
Microsoft Device Emulator version 3.0 - ENU
Microsoft Document Explorer 2008
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft Office 2003 Web Components
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3)
Microsoft Office Visual Web Developer 2007
Microsoft Office Visual Web Developer MUI (English) 2007
Microsoft Silverlight
Microsoft SQL Server 2000 Sample Database Scripts
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft SQL Server 2008
Microsoft SQL Server 2008 Analysis Services
Microsoft SQL Server 2008 BI Development Studio
Microsoft SQL Server 2008 Books Online (October 2009)
Microsoft SQL Server 2008 Browser
Microsoft SQL Server 2008 Client Tools
Microsoft SQL Server 2008 Common Files
Microsoft SQL Server 2008 Database Engine Services
Microsoft SQL Server 2008 Database Engine Shared
Microsoft SQL Server 2008 Full text search
Microsoft SQL Server 2008 Integration Services
Microsoft SQL Server 2008 Management Studio
Microsoft SQL Server 2008 Policies
Microsoft SQL Server 2008 R2 Management Objects
Microsoft SQL Server 2008 R2 Native Client
Microsoft SQL Server 2008 Reporting Services
Microsoft SQL Server 2008 RsFx Driver
Microsoft SQL Server 2008 Setup Support Files (English)
Microsoft SQL Server Compact 3.5 Design Tools ENU
Microsoft SQL Server Compact 3.5 ENU
Microsoft SQL Server Compact 3.5 for Devices ENU
Microsoft SQL Server Compact 3.5 SP1 Query Tools English
Microsoft SQL Server Compact 4.0 ENU
Microsoft SQL Server Compact 4.0 Web Tools ENU
Microsoft SQL Server Database Publishing Wizard 1.2
Microsoft SQL Server Native Client
Microsoft SQL Server Setup Support Files (English)
Microsoft SQL Server System CLR Types
Microsoft SQL Server VSS Writer
Microsoft Sync Framework Runtime v1.0 (x86)
Microsoft Sync Services for ADO.NET v2.0 (x86)
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
Microsoft Visual Studio 2005 Tools for Office Runtime
Microsoft Visual Studio 2008 Performance Collection Tools - ENU
Microsoft Visual Studio 2008 Shell (integrated mode) - ENU
Microsoft Visual Studio Team System 2008 Team Suite - ENU
Microsoft Visual Studio Tools for Applications 2.0 - ENU
Microsoft Visual Studio Web Authoring Component
Microsoft Web Deploy 2.0
Microsoft Web Platform Installer 3.0
Microsoft WebMatrix
Microsoft Windows SDK for Visual Studio 2008 .NET Framework Tools
Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries
Microsoft Windows SDK for Visual Studio 2008 SDK Reference Assemblies and IntelliSense
Microsoft Windows SDK for Visual Studio 2008 Tools
Microsoft Windows SDK for Visual Studio 2008 Win32 Tools
Microsoft WorldWide Telescope
mIWA
mLogView
mMHouse
Motorola SM56 Speakerphone Modem
mPfMgr
mPfWiz
mProSafe
mSCfg
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 6 Service Pack 2 (KB973686)
mWlsSafe
MyEpson Portal
mZConfig
Nero 12
Nero Audio Pack 1
Nero BackItUp
Nero BackItUp Help (CHM)
Nero Backup Drivers
Nero Blu-ray Player
Nero Blu-ray Player Help (CHM)
Nero Burning ROM
Nero Burning ROM Help (CHM)
Nero ControlCenter
Nero ControlCenter Help (CHM)
Nero Core Components
Nero Disc Menus Basic
Nero Effects Basic
Nero Express
Nero Express Help (CHM)
Nero Kwik Media
Nero Kwik Media Help (CHM)
Nero Kwik Themes Basic
Nero PiP Effects Basic
Nero Recode
Nero Recode Help (CHM)
Nero RescueAgent
Nero RescueAgent Help (CHM)
Nero SharedVideoCodecs
Nero Update
Nero Video
Nero Video Help (CHM)
neroxml
Notepad++
OpenOffice.org 3.4.1
OpenWith (Enhanced)
Pegasus Mail
Pegasus Mail HTML Renderer 2.4.7.2
Philips SPM 7800
Prerequisite installer
Presto! PageManager 9.00.11 SE
Programming Microsoft SQL Server 2005
Programming Microsoft SQL Server 2008
Ralink RT2870 Wireless LAN Card
REALTEK GbE & FE Ethernet PCI NIC Driver
Realtek High Definition Audio Driver
Right Click Enhancer 4.1.4
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2861188)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2898855v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2901110v2)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2736428)
Security Update for Microsoft .NET Framework 4 Extended (KB2742595)
Security Update for Microsoft .NET Framework 4 Extended (KB2858302v2)
Security Update for Microsoft .NET Framework 4 Extended (KB2901110v2)
Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2817641) 32-Bit Edition
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2618444)
Security Update for Windows Internet Explorer 8 (KB2744842)
Security Update for Windows Internet Explorer 8 (KB2862772)
Security Update for Windows Internet Explorer 8 (KB2909210)
Security Update for Windows Internet Explorer 8 (KB2909921)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows XP (KB2510581)
Security Update for Windows XP (KB2909212)
Security Update for Windows XP (KB2909921)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB975713)
Segoe UI
Soft Organizer version 3.33
Sql Server Customer Experience Improvement Program
Stellarium 0.12.2RC1
TabExplorer
Unchecky v0.2.9
UndeleteMyFiles Pro
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Visual Studio Team System 2008 Team Suite - ENU (KB972221)
Update for Windows Internet Explorer 8 (KB2598845)
Update for Windows Internet Explorer 8 (KB2632503)
Update for Windows XP (KB2934207)
Update for Windows XP (KB951978)
USB2.0 Graphics Card (Trigger) 8.1.1.0530.0146
Visual C++ 2008 IA64 Runtime - (v9.0.30729)
Visual C++ 2008 IA64 Runtime - v9.0.30729.01
Visual C++ 2008 x64 Runtime - (v9.0.30729)
Visual C++ 2008 x64 Runtime - v9.0.30729.01
Visual C++ 2008 x86 Runtime - (v9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01
Visual Studio 2005 Tools for Office Second Edition Runtime
Visual Studio Tools for the Office system 3.0 Runtime
WebFldrs XP
Welcome App (Start-up experience)
Windows Internet Explorer 8
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Photo Gallery
Windows Live Sync
Windows Live Upload Tool
Windows Management Framework Core
Windows Media Format 11 runtime
Windows Media Format SDK Hotfix - KB891122
Windows Media Player 11
Windows Mobile 5.0 SDK R2 for Pocket PC
Windows Mobile 5.0 SDK R2 for Smartphone
Zoftar ISO Burner 1.2.5
.
==== Event Viewer Messages From Past Week ========
.
03/03/2014 17:57:13, error: Service Control Manager [7009]  - Timeout (30000 milliseconds) waiting for the Application Layer Gateway Service service to connect.
03/03/2014 17:57:13, error: Service Control Manager [7000]  - The Application Layer Gateway Service service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
03/03/2014 17:31:47, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft XML Core Services 6.0 Service Pack 2 (KB954459).
03/03/2014 17:09:42, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x80070643: Microsoft .NET Framework version 1.1.
03/03/2014 16:48:01, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x8007f0f4: Security Update for Windows Media Player 9 for Windows XP SP2 (KB979402).
03/03/2014 13:26:01, error: Service Control Manager [7009]  - Timeout (30000 milliseconds) waiting for the Ralink UPnP Media Server service to connect.
03/03/2014 13:26:00, error: Service Control Manager [7001]  - The Message Queuing Triggers service depends on the Message Queuing service which failed to start because of the following error:  The dependency service or group failed to start.
03/03/2014 13:26:00, error: Service Control Manager [7001]  - The Message Queuing service depends on the Distributed Transaction Coordinator service which failed to start because of the following error:  The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
03/03/2014 12:18:19, error: DCOM [10005]  - DCOM got error "%1058" attempting to start the service upnphost with arguments "" in order to run the server: {204810B9-73B2-11D4-BF42-00B0D0118B56}
03/03/2014 12:18:15, error: ipnathlp [32003]  - The Network Address Translator (NAT) was unable to request an operation of the kernel-mode translation module. This may indicate misconfiguration, insufficient resources, or an internal error. The data is the error code.
03/03/2014 12:05:51, error: ipnathlp [30013]  - The DHCP allocator has disabled itself on IP address 192.168.123.1, since the IP address is outside the 192.168.0.0/255.255.255.0 scope from which addresses are being allocated to DHCP clients. To enable the DHCP allocator on this IP address, please change the scope to include the IP address, or change the IP address to fall within the scope.
03/03/2014 12:05:27, error: Service Control Manager [7006]  - The ScRegSetValueExW call failed for Type with the following error:  Access is denied.
03/03/2014 10:41:07, error: Tcpip [4199]  - The system detected an address conflict for IP address 192.168.0.1 with the system having network hardware address 7C:4C:A5:9F:98:38. Network operations on this system may be disrupted as a result.
03/03/2014 10:13:12, error: Dhcp [1002]  - The IP address lease 192.168.0.2 for the Network Card with network address 0019DB02C6E3 has been denied by the DHCP server 0.0.0.0 (The DHCP Server sent a DHCPNACK message).
03/03/2014 08:51:52, error: Service Control Manager [7011]  - Timeout (30000 milliseconds) waiting for a transaction response from the avgwd service.
03/03/2014 08:34:18, error: Service Control Manager [7000]  - The AVG Theme Extension service failed to start due to the following error:  The executable program that this service is configured to run in does not implement the service.
03/03/2014 07:47:34, error: Removable Storage Service [111]  - RSM could not load media in drive Drive 0 of library Generic Storage Device USB Device.
.
==== End Of File ===========================
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702
Run by Ian at 15:11:42 on 2014-03-08
Microsoft Windows XP Professional  5.1.2600.3.1252.1.1033.18.2038.197 [GMT 0:00]
.
AV: AVG Premium Security 2013 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FW: AVG Premium Security 2013 *Enabled*
.
============== Running Processes ================
.
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Google\Update\1.3.22.5\GoogleCrashHandler.exe
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\USBStorage\USBDetector.exe
C:\WINDOWS\system32\mct5001.exe
C:\WINDOWS\system32\mctudll.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\WrtMon.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\WrtProc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Google\Drive\googledrivesync.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIGJE.EXE
C:\Program Files\Ditto\Ditto.exe
C:\Documents and Settings\Ian\Local Settings\Application Data\ChemTable Software\Handy Start Menu\HandyStartMenu.exe
C:\Program Files\GIGABYTE\Common\GNConfig.exe
C:\Program Files\TabExplorer\TabExplorer.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Program Files\CaptureWiz\Pro\CaptureWiz.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Documents and Settings\Ian\Local Settings\Application Data\ChemTable Software\Handy Start Menu\StartMenuService.exe
C:\Program Files\Google\Drive\googledrivesync.exe
C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
C:\Prey\platform\windows\cronsvc.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Microsoft SQL Server\100\DTS\Binn\MsDtsSrvr.exe
C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\sqlservr.exe
C:\Program Files\Microsoft SQL Server\MSAS10.MSSQLSERVER\OLAP\bin\msmdsrv.exe
C:\Program Files\EPSON\MyEpson Portal\mepService.exe
C:\Program Files\Nero\Update\NASvc.exe
C:\Program Files\Ralink\Common\RaRegistry.exe
C:\Program Files\Microsoft SQL Server\MSRS10.MSSQLSERVER\Reporting Services\ReportServer\bin\ReportingServicesService.exe
C:\WINDOWS\System32\snmp.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SQLAGENT.EXE
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
C:\Program Files\Unchecky\bin\unchecky_svc.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Unchecky\bin\unchecky_bg.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\EPSON\MyEpson Portal\mep.exe
C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesApp32.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe
C:\Program Files\Notepad++\notepad++.exe
C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\devenv.exe
C:\Documents and Settings\Ian\My Documents\Google Drive\DriveExtra\camsProjects\_BISolutions\sqlCamsCSplusDev\Chapter18WinClient\bin\Debug\Chapter18WinClient.vshost.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Common Files\Microsoft Shared\DevServer\9.0\WebDev.WebServer.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
.
============== Pseudo HJT Report ===============
.

BHO: Adobe PDF Reader Link Helper: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Easy Photo Print: {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - c:\program files\epson software\easy photo print\EPTBL.dll
BHO: FreeFLVConverter: {DC7CE5D0-3608-4FD0-8853-D5822E02135D} - c:\program files\free flv converter\FreeFLVConverter.dll
BHO: Microsoft Web Test Recorder 9.0 Helper: {E31CE47F-C268-41ba-897B-B415E613947D} - c:\program files\microsoft visual studio 9.0\common7\ide\privateassemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO90.dll
TB: Easy Photo Print: {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - c:\program files\epson software\easy photo print\EPTBL.dll
EB: Web Test Recorder 9.0: {3C7ADADE-D1E8-45d2-BDCD-7F8D8B99B2A2} -
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
uRun: [GoogleDriveSync] "c:\program files\google\drive\googledrivesync.exe" /autostart
uRun: [scan Buttons] c:\program files\newsoft\presto! pagemanager 9 for ep\PMSB.EXE                                                                                                                                                                                                          
uRun: [Epson Stylus Office BX305(Network)] c:\windows\system32\spool\drivers\w32x86\3\e_fatigje.exe /fu "c:\windows\temp\E_S1E9.tmp" /EF "HKCU"
uRun: [Driver Restore] c:\program files\driver restore\driver restore\DriverRestore.exe /applicationMode:systemTray /showWelcome:false                                                                                                                                                         
uRun: [Ditto] c:\program files\ditto\Ditto.exe
uRun: [Handy Start Menu] "c:\documents and settings\ian\local settings\application data\chemtable software\handy start menu\HandyStartMenu.exe" /Enable
uRun: [TabExplorer] "c:\program files\tabexplorer\TabExplorerStarter.exe" /systemstartup
mRun: [MsmqIntCert] regsvr32 /s mqrt.dll
mRun: [gmPoint] c:\program files\philips spm 7800\gmPoint.exe                                                                                                                                                                                                                           
mRun: [gmOpen] c:\program files\philips spm 7800\gmOpen.exe                                                                                                                                                                                                                            
mRun: [EvtMgr6] c:\program files\logitech\setpointp\SetPoint.exe /launchGaming
mRun: [AVG_UI] "c:\program files\avg\avg2013\avgui.exe" /TRAYONLY
mRun: [igfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [uSBDetector] c:\usbstorage\USBDetector.exe
mRun: [MCT5001] c:\windows\system32\mct5001.exe
mRun: [mctudll] c:\windows\system32\mctudll.exe
mRun: [intelZeroConfig] "c:\program files\intel\wireless\bin\ZCfgSvc.exe"                                                                                                                                                                                                                       
mRun: [intelWireless] "c:\program files\intel\wireless\bin\ifrmewrk.exe" /tf Intel PROSet/Wireless                                                                                                                                                                                            
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"                                                                                                                                                                                                                
mRun: [WrtMon.exe] c:\windows\system32\spool\drivers\w32x86\3\WrtMon.exe
mRun: [PMSpeed] c:\program files\newsoft\presto! pagemanager 9 for ep\PMSpeed.EXE                                                                                                                                                                                                       
mRun: [FUFAXSTM] "c:\program files\epson software\fax utility\FUFAXSTM.exe"                                                                                                                                                                                                              
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [sMSERIAL] c:\program files\motorola\smserial\sm56hlpr.exe
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
mExplorerRun: [bootRacer] "c:\program files\bootracer\Bootrace.exe" /2
StartupFolder: c:\docume~1\ian\startm~1\programs\startup\captur~1.lnk - c:\program files\capturewiz\pro\CaptureWiz.exe
StartupFolder: c:\docume~1\ian\startm~1\programs\startup\openof~1.lnk - c:\program files\openoffice.org 3\program\quickstart.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\gigaby~1.lnk - c:\program files\gigabyte\common\GNConfig.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\ralink~1.lnk - c:\program files\ralink\common\RaUI.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\window~1.lnk - c:\program files\windows desktop search\WindowsSearch.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe

TCP: NameServer = 192.168.0.1
TCP: Interfaces\{D8635840-C351-4098-A70D-08A00E429848} : DHCPNameServer = 192.168.0.1
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - c:\program files\belarc\advisor\system\BAVoilaX.dll
Notify: igfxcui - igfxdev.dll
Notify: LBTWlgn - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\33.0.1750.146\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
IFEO: acrord32.exe - "c:\program files\avg\avg pc tuneup\TUAutoReactivator32.exe"
IFEO: bootrace.exe - "c:\program files\avg\avg pc tuneup\TUAutoReactivator32.exe"
IFEO: convert.exe - "c:\program files\avg\avg pc tuneup\TUAutoReactivator32.exe"
IFEO: driverrestore.exe - "c:\program files\avg\avg pc tuneup\TUAutoReactivator32.exe"
IFEO: fufaxcnt.exe - "c:\program files\avg\avg pc tuneup\TUAutoReactivator32.exe"
.
Note: multiple IFEO entries found. Please refer to Attach.txt
Hosts: 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
Hosts: 0.0.0.0 media.opencandy.com
Hosts: 0.0.0.0 cdn.opencandy.com
Hosts: 0.0.0.0 tracking.opencandy.com
Hosts: 0.0.0.0 api.opencandy.com
.
Note: multiple HOSTS entries found. Please refer to Attach.txt
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2013-7-20 60216]
R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [2013-7-20 246072]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2013-7-1 96568]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2013-10-23 39224]
R0 NBVol;Nero Backup Volume Filter Driver;c:\windows\system32\drivers\NBVol.sys [2014-3-4 57272]
R0 NBVolUp;Nero Backup Volume Upper Filter Driver;c:\windows\system32\drivers\NBVolUp.sys [2014-3-4 13240]
R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2013-11-25 208184]
R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2013-10-23 22328]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2013-7-20 171320]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2013-3-21 182072]
R2 avgfws;AVG Firewall;c:\program files\avg\avg2013\avgfws.exe [2013-10-23 1432080]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2013\avgidsagent.exe [2013-7-4 4939312]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg2013\avgwdsvc.exe [2013-11-20 283136]
R2 CronService;Cron Service for Prey;c:\prey\platform\windows\cronsvc.exe [2013-5-8 23552]
R2 LBeepKE;Logitech Beep Suppression Driver;c:\windows\system32\drivers\LBeepKE.sys [2014-3-3 10136]
R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2014-3-3 418376]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2014-3-3 701512]
R2 MsDtsServer100;SQL Server Integration Services 10.0;c:\program files\microsoft sql server\100\dts\binn\MsDtsSrvr.exe [2008-7-10 218136]
R2 MyEpson Portal Service;MyEpson Portal Service;c:\program files\epson\myepson portal\mepService.exe [2011-9-16 703584]
R2 NAUpdate;Nero Update;c:\program files\nero\update\NASvc.exe [2012-7-13 769432]
R2 RalinkRegistryWriter;RalinkRegistryWriter;c:\program files\ralink\common\RaRegistry.exe [2014-3-3 372736]
R2 ReportServer;SQL Server Reporting Services (MSSQLSERVER);c:\program files\microsoft sql server\msrs10.mssqlserver\reporting services\reportserver\bin\ReportingServicesService.exe [2008-7-10 1106968]
R2 Scutum50;Scutum50 NDIS Protocol Driver;c:\windows\system32\drivers\Scutum50.sys [2014-3-3 19072]
R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files\avg\avg pc tuneup\TuneUpUtilitiesService32.exe [2013-12-18 1741624]
R2 Unchecky;Unchecky;c:\program files\unchecky\bin\unchecky_svc.exe [2014-3-4 107624]
R3 Avgfwdx;Avgfwdx;c:\windows\system32\drivers\avgfwdx.sys [2012-1-12 30944]
R3 gmhidlow;HID Mouse Lower Filter;c:\windows\system32\drivers\gmhidlow.sys [2014-3-3 12160]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2014-3-3 22856]
R3 TrgExGrp;TrgExGrp;c:\windows\system32\drivers\TrgExGrp.sys [2014-3-3 12672]
R3 TrgMrGrp;TrgMrGrp;c:\windows\system32\drivers\TrgMrGrp.sys [2014-3-3 9344]
R3 trgusb;USB 2.0 Graphics Card;c:\windows\system32\drivers\trgusb.sys [2014-3-3 52224]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\avg\avg pc tuneup\TuneUpUtilitiesDriver32.sys [2013-9-18 12320]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 MsDepSvc;Web Deployment Agent Service;c:\program files\iis\microsoft web deploy\MsDepSvc.exe [2011-4-1 67400]
S2 RaMediaServer;Ralink UPnP Media Server;c:\program files\ralink\common\RaMediaServer.exe [2014-3-3 625728]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2014-3-3 1691480]
S3 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwdx.sys [2012-1-12 30944]
S3 SWDUMon;SWDUMon;c:\windows\system32\drivers\SWDUMon.sys [2014-3-3 13464]
S3 VSPerfDrv90;Performance Tools Driver 9.0;c:\program files\microsoft visual studio 9.0\team tools\performance tools\VSPerfDrv90.sys [2007-9-4 55664]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [2008-5-6 11520]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2006-2-28 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2013-7-20 754856]
S4 BootRacerServ;BootRacerServ;c:\program files\bootracer\BootRacerServ.exe [2013-8-19 67888]
S4 FreeFLVConverterUpdt;FreeFLVConverterUpdt;c:\program files\free flv converter\FreeFLVConverterUpdt.exe [2014-2-25 252928]
S4 MSSQLFDLauncher;SQL Full-text Filter Daemon Launcher (MSSQLSERVER);c:\program files\microsoft sql server\mssql10.mssqlserver\mssql\binn\fdlauncher.exe [2008-7-10 31256]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\microsoft sql server\100\shared\sqladhlp.exe [2008-7-10 47128]
S4 RsFx0102;RsFx0102 Driver;c:\windows\system32\drivers\RsFx0102.sys [2008-7-10 242712]
.
=============== Created Last 30 ================
.
2014-03-06 16:37:36 -------- d-----w- c:\documents and settings\ian\application data\OpenOffice.org
2014-03-06 15:17:39 13312 -c----w- c:\windows\system32\dllcache\xp_eos.exe
2014-03-06 15:17:39 13312 ------w- c:\windows\system32\xp_eos.exe
2014-03-06 14:51:53 -------- d-----w- c:\program files\Business Objects
2014-03-06 14:10:38 -------- d-----w- c:\program files\Microsoft Device Emulator
2014-03-06 14:06:55 -------- d-----w- c:\program files\Windows Mobile 5.0 SDK R2
2014-03-06 14:02:55 -------- d-----w- c:\program files\Microsoft Synchronization Services
2014-03-06 13:41:58 -------- d-----w- c:\documents and settings\all users\application data\PreEmptive Solutions
2014-03-06 13:26:37 -------- d-----w- c:\program files\HTML Help Workshop
2014-03-06 13:26:37 -------- d-----w- c:\program files\CE Remote Tools
2014-03-06 13:15:46 -------- d-----w- c:\program files\Microsoft Web Designer Tools
2014-03-06 13:13:00 97296 ----a-w- c:\program files\common files\microsoft shared\help 9\microsoft document explorer 2008\install.res.1036.dll
2014-03-06 13:13:00 96272 ----a-w- c:\program files\common files\microsoft shared\help 9\microsoft document explorer 2008\install.res.3082.dll
2014-03-06 13:13:00 96272 ----a-w- c:\program files\common files\microsoft shared\help 9\microsoft document explorer 2008\install.res.1031.dll
2014-03-06 13:13:00 95248 ----a-w- c:\program files\common files\microsoft shared\help 9\microsoft document explorer 2008\install.res.1040.dll
2014-03-06 13:13:00 91152 ----a-w- c:\program files\common files\microsoft shared\help 9\microsoft document explorer 2008\install.res.1033.dll
2014-03-06 13:13:00 81424 ----a-w- c:\program files\common files\microsoft shared\help 9\microsoft document explorer 2008\install.res.1041.dll
2014-03-06 13:13:00 79888 ----a-w- c:\program files\common files\microsoft shared\help 9\microsoft document explorer 2008\install.res.1042.dll
2014-03-06 13:13:00 76304 ----a-w- c:\program files\common files\microsoft shared\help 9\microsoft document explorer 2008\install.res.1028.dll
2014-03-06 13:13:00 75792 ----a-w- c:\program files\common files\microsoft shared\help 9\microsoft document explorer 2008\install.res.2052.dll
2014-03-06 13:13:00 562688 ----a-w- c:\program files\common files\microsoft shared\help 9\microsoft document explorer 2008\install.exe
2014-03-06 08:39:28 -------- d-----w- c:\documents and settings\ian\local settings\application data\Microsoft_Corporation
2014-03-06 08:14:37 50200 ----a-w- c:\windows\system32\perf-ReportServer-rsctr.dll
2014-03-06 08:08:54 397664 ----a-w- c:\documents and settings\all users\application data\microsoft\vstahost\ssis_scriptcomponent\9.0\1033\ResourceCache.dll
2014-03-06 08:08:11 397664 ----a-w- c:\documents and settings\all users\application data\microsoft\vstahost\ssis_scripttask\9.0\1033\ResourceCache.dll
2014-03-06 08:04:57 50200 ----a-w- c:\windows\system32\perf-SQLSERVERAGENT-sqlagtctr10.0.1600.22.dll
2014-03-06 08:04:30 79896 ----a-w- c:\windows\system32\perf-MSSQLSERVER-sqlctr10.0.1600.22.dll
2014-03-06 07:57:29 18368 ----a-w- c:\documents and settings\all users\application data\microsoft\vsa\9.0\1033\ResourceCache.dll
2014-03-06 07:57:22 2093312 ----a-w- c:\documents and settings\all users\application data\microsoft\visualstudio\9.0\1033\ResourceCache.dll
2014-03-06 07:46:27 -------- d-----w- c:\program files\common files\Merge Modules
2014-03-06 07:30:56 416 ----a-w- c:\documents and settings\all users\application data\microsoft\msdn\9.0\1033\ResourceCache.dll
2014-03-06 07:22:15 -------- d-----w- c:\program files\Microsoft Analysis Services
2014-03-06 07:17:17 -------- d-----w- c:\windows\system32\RsFx
2014-03-05 17:08:34 -------- d-----w- c:\documents and settings\ian\local settings\application data\Microsoft Help
2014-03-05 10:11:14 -------- d-----w- c:\documents and settings\ian\local settings\application data\Identities
2014-03-05 10:11:07 -------- d-----w- c:\documents and settings\ian\application data\Windows Desktop Search
2014-03-05 10:10:20 -------- d-----w- c:\program files\Windows Desktop Search
2014-03-05 10:09:02 98304 -c----w- c:\windows\system32\dllcache\nlhtml.dll
2014-03-05 10:09:02 29696 -c----w- c:\windows\system32\dllcache\mimefilt.dll
2014-03-05 10:09:02 192000 -c----w- c:\windows\system32\dllcache\offfilt.dll
2014-03-05 09:46:11 -------- d-----w- c:\windows\system32\winrm
2014-03-05 09:46:11 -------- d-----w- c:\windows\system32\GroupPolicy
2014-03-05 09:46:01 -------- dc-h--w- c:\windows\$968930Uinstall_KB968930$
2014-03-05 09:28:59 -------- d-----w- c:\program files\Microsoft WebMatrix
2014-03-05 09:09:01 -------- d-----w- c:\program files\Microsoft SQL Server
2014-03-05 09:05:25 -------- d-----w- c:\program files\IIS
2014-03-05 09:01:21 -------- d-----w- c:\program files\IIS Express
2014-03-05 08:42:35 -------- d-----w- c:\program files\Microsoft ASP.NET
2014-03-05 07:59:54 -------- d-----w- c:\documents and settings\ian\local settings\application data\ApplicationHistory
2014-03-05 07:53:22 -------- d-----w- c:\program files\MSXML 4.0
2014-03-05 07:27:06 -------- d-----w- c:\documents and settings\ian\application data\iWesoft
2014-03-05 07:27:03 -------- d-----w- c:\documents and settings\ian\local settings\application data\iWesoft
2014-03-04 21:04:00 -------- d-----w- c:\documents and settings\ian\local settings\application data\Nero_AG
2014-03-04 21:03:36 13240 ----a-w- c:\windows\system32\drivers\NBVolUp.sys
2014-03-04 21:03:29 57272 ----a-w- c:\windows\system32\drivers\NBVol.sys
2014-03-04 19:55:18 -------- d-----w- c:\program files\Nero
2014-03-04 19:54:51 -------- d-----w- c:\documents and settings\all users\application data\Nero
2014-03-04 17:05:42 -------- d-----w- c:\program files\Soft Organizer
2014-03-04 16:55:04 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-03-04 16:53:25 248672 ----a-w- c:\windows\system32\d3dx11_43.dll
2014-03-04 16:52:35 470880 ----a-w- c:\windows\system32\d3dx10_43.dll
2014-03-04 16:52:15 1998168 ----a-w- c:\windows\system32\D3DX9_43.dll
2014-03-04 16:51:54 1868128 ----a-w- c:\windows\system32\d3dcsx_43.dll
2014-03-04 16:51:28 2106216 ----a-w- c:\windows\system32\D3DCompiler_43.dll
2014-03-04 16:51:05 -------- d-----w- c:\windows\Logs
2014-03-04 16:43:24 -------- d-----w- c:\documents and settings\all users\application data\BootRacer
2014-03-04 16:00:21 -------- d-----w- c:\documents and settings\ian\application data\Ditto
2014-03-04 15:59:47 -------- d-----w- c:\program files\Ditto
2014-03-04 15:47:50 -------- d-----w- c:\program files\Microsoft Research
2014-03-04 15:45:09 -------- d-----w- c:\program files\RBSoft
2014-03-04 15:37:00 323624 ----a-w- c:\windows\system32\wiaaut.dll
2014-03-04 15:36:31 -------- d-----w- c:\program files\iCopy
2014-03-04 15:30:06 -------- d-----w- c:\program files\MeeSoft
2014-03-04 15:26:11 29 ----a-w- c:\windows\system32\TempWmicBatchFile.bat
2014-03-04 15:23:07 -------- d-----w- c:\program files\Stellarium
2014-03-04 15:22:16 -------- d-----w- C:\Prey
2014-03-04 15:18:53 -------- d-----w- c:\windows\system32\URTTEMP
2014-03-04 15:18:32 -------- d-----w- c:\documents and settings\ian\application data\ChemTable Software
2014-03-04 15:18:29 -------- d-----w- c:\documents and settings\ian\local settings\application data\ChemTable Software
2014-03-04 15:15:40 726528 ----a-w- c:\windows\system32\SETE1.tmp
2014-03-04 15:09:28 -------- d-----w- c:\program files\Anvisoft
2014-03-04 15:08:09 -------- d-----w- c:\program files\Frieger
2014-03-04 15:07:33 -------- d-----w- c:\program files\UndeleteMyFiles
2014-03-04 15:05:11 -------- d-----w- c:\program files\Unchecky
2014-03-04 15:02:38 -------- d-----w- c:\program files\BootRacer
2014-03-04 14:55:26 -------- d-----w- c:\program files\Microsoft
2014-03-04 14:55:03 -------- d-----w- c:\program files\Windows Live SkyDrive
2014-03-04 14:53:58 3426072 ----a-w- c:\windows\system32\d3dx9_32.dll
2014-03-04 14:53:35 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2014-03-04 14:50:50 74520 ----a-w- c:\program files\common files\windows live\.cache\225a9d381cf37b9\DSETUP.dll
2014-03-04 14:50:50 484632 ----a-w- c:\program files\common files\windows live\.cache\225a9d381cf37b9\DXSETUP.exe
2014-03-04 14:50:50 1670936 ----a-w- c:\program files\common files\windows live\.cache\225a9d381cf37b9\dsetup32.dll
2014-03-04 14:50:25 1013800 ----a-w- c:\program files\common files\windows live\.cache\13e65b981cf37b9\WindowsXP-KB954708-x86-ENU.exe
2014-03-04 14:49:14 -------- d-----w- c:\program files\common files\Windows Live
2014-03-04 14:28:26 16128 -c--a-w- c:\windows\system32\dllcache\modemcsa.sys
2014-03-04 14:28:26 16128 ----a-w- c:\windows\system32\drivers\MODEMCSA.sys
2014-03-04 14:08:11 -------- d-----w- c:\documents and settings\all users\application data\UAB
2014-03-04 14:07:47 -------- d-----w- c:\documents and settings\ian\local settings\application data\PC_Drivers_Headquarters
2014-03-04 14:01:27 -------- d-sh--w- c:\documents and settings\ian\IECompatCache
2014-03-04 14:00:27 -------- d-----w- c:\documents and settings\all users\application data\Driver Restore
2014-03-04 13:59:50 -------- d-sh--w- c:\documents and settings\ian\PrivacIE
2014-03-04 13:57:24 -------- d-----w- c:\program files\Driver Restore
2014-03-04 13:51:03 -------- d-sh--w- c:\documents and settings\ian\IETldCache
2014-03-04 13:31:31 522240 -c----w- c:\windows\system32\dllcache\jsdbgui.dll
2014-03-04 13:30:09 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll
2014-03-04 13:29:11 -------- d-----w- c:\windows\ie8updates
2014-03-04 13:28:54 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2014-03-04 13:28:53 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2014-03-04 13:28:52 630272 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2014-03-04 13:28:52 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2014-03-04 13:28:52 2006016 -c----w- c:\windows\system32\dllcache\iertutil.dll
2014-03-04 13:28:51 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2014-03-04 13:28:51 11113472 -c----w- c:\windows\system32\dllcache\ieframe.dll
2014-03-04 13:25:28 -------- dc-h--w- c:\windows\ie8
2014-03-04 13:11:38 984832 ----a-w- c:\windows\system32\drivers\smserial.sys
2014-03-04 13:11:38 196608 ------w- c:\windows\system32\sm56co6a.dll
2014-03-04 12:10:32 -------- d-----w- c:\windows\system32\MRT
2014-03-04 09:56:10 -------- d-sh--w- c:\documents and settings\ian\UserData
2014-03-04 09:19:36 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2014-03-04 09:17:39 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2014-03-04 09:14:14 25088 -c----w- c:\windows\system32\dllcache\hidparse.sys
2014-03-04 09:14:14 14976 -c----w- c:\windows\system32\dllcache\usbscan.sys
2014-03-04 09:11:34 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2014-03-04 09:11:02 12928 -c----w- c:\windows\system32\dllcache\usb8023x.sys
2014-03-04 09:11:02 12928 -c----w- c:\windows\system32\dllcache\usb8023.sys
2014-03-04 09:10:43 60160 -c----w- c:\windows\system32\dllcache\usbaudio.sys
2014-03-04 09:10:43 46848 -c----w- c:\windows\system32\dllcache\irbus.sys
2014-03-04 09:10:42 123008 -c----w- c:\windows\system32\dllcache\usbvideo.sys
2014-03-04 09:08:54 536576 -c----w- c:\windows\system32\dllcache\msado15.dll
2014-03-04 09:08:17 139784 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2014-03-04 09:07:53 5376 -c----w- c:\windows\system32\dllcache\usbd.sys
2014-03-04 09:07:53 32384 -c----w- c:\windows\system32\dllcache\usbccgp.sys
2014-03-04 09:07:53 30336 -c----w- c:\windows\system32\dllcache\usbehci.sys
2014-03-04 09:07:53 144128 -c----w- c:\windows\system32\dllcache\usbport.sys
2014-03-04 09:05:39 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
2014-03-04 09:05:34 3072 -c----w- c:\windows\system32\dllcache\iacenc.dll
2014-03-04 09:05:34 3072 ------w- c:\windows\system32\iacenc.dll
2014-03-04 09:05:31 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2014-03-04 08:59:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2014-03-04 08:52:21 214256 ----a-w- c:\windows\system32\muweb.dll
2014-03-04 08:52:20 275696 ----a-w- c:\windows\system32\mucltui.dll
2014-03-04 08:52:20 17136 ----a-w- c:\windows\system32\mucltui.dll.mui
2014-03-03 19:11:01 79872 -c----w- c:\windows\system32\dllcache\msxml6r.dll
2014-03-03 19:11:00 1371648 -c----w- c:\windows\system32\dllcache\msxml6.dll
2014-03-03 18:55:43 4255 ------w- c:\windows\system32\drivers\adv01nt5.dll
2014-03-03 18:49:59 19569 ----a-w- c:\windows\003046_.tmp
2014-03-03 17:38:05 -------- d-----w- c:\windows\ServicePackFiles
2014-03-03 17:10:46 -------- d-----w- c:\program files\OpenOffice.org 3
2014-03-03 16:20:19 -------- d-----w- c:\windows\system32\XPSViewer
2014-03-03 16:17:56 89088 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
2014-03-03 16:17:09 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2014-03-03 16:17:09 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2014-03-03 16:17:09 597504 ------w- c:\windows\system32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2014-03-03 16:17:09 117760 ------w- c:\windows\system32\prntvpt.dll
2014-03-03 16:17:08 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2014-03-03 16:17:08 575488 ------w- c:\windows\system32\xpsshhdr.dll
2014-03-03 16:17:07 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2014-03-03 16:17:07 1676288 ------w- c:\windows\system32\xpssvcs.dll
2014-03-03 16:02:16 -------- d-----w- c:\program files\MSXML 6.0
2014-03-03 15:55:57 -------- d-----w- c:\program files\Windows Media Connect 2
2014-03-03 15:44:59 47616 ----a-w- c:\program files\windows media player\msoobci.dll
2014-03-03 15:44:57 1669120 ----a-w- c:\program files\windows media player\wmsetsdk.exe
2014-03-03 15:43:33 -------- d-----w- c:\windows\RegisteredPackages
2014-03-03 15:07:15 -------- d-----w- c:\documents and settings\ian\application data\Malwarebytes
2014-03-03 15:06:37 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
2014-03-03 15:06:32 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-03-03 15:06:32 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2014-03-03 15:03:40 -------- d-----w- c:\documents and settings\ian\local settings\application data\Apple Computer
2014-03-03 14:54:08 -------- d-----w- c:\documents and settings\ian\local settings\application data\Amazon
2014-03-03 14:53:41 -------- d-----w- c:\documents and settings\ian\local settings\application data\Downloaded Installations
2014-03-03 14:53:17 -------- d-----w- c:\program files\Amazon
2014-03-03 14:52:47 -------- d-----w- c:\program files\JRulerPro
2014-03-03 14:50:37 -------- d-----w- c:\program files\Motorola
2014-03-03 14:49:35 -------- d-----w- c:\documents and settings\ian\application data\PixelMetrics
2014-03-03 14:47:48 6272 ----a-w- c:\windows\system32\drivers\splitter.sys
2014-03-03 14:47:45 83072 ----a-w- c:\windows\system32\drivers\wdmaud.sys
2014-03-03 14:47:41 52864 ----a-w- c:\windows\system32\drivers\dmusic.sys
2014-03-03 14:47:31 56576 ----a-w- c:\windows\system32\drivers\swmidi.sys
2014-03-03 14:47:26 142592 ----a-w- c:\windows\system32\drivers\aec.sys
2014-03-03 14:47:21 172416 ----a-w- c:\windows\system32\drivers\kmixer.sys
2014-03-03 14:47:15 2944 ----a-w- c:\windows\system32\drivers\drmkaud.sys
2014-03-03 14:47:13 -------- d-----w- c:\program files\Windows Media Adapter v615
2014-03-03 14:47:13 -------- d-----w- C:\PixelMetrics Logs
2014-03-03 14:47:10 60800 ----a-w- c:\windows\system32\drivers\sysaudio.sys
2014-03-03 14:47:05 7552 ----a-w- c:\windows\system32\drivers\mskssrv.sys
2014-03-03 14:47:03 4992 ----a-w- c:\windows\system32\drivers\mspqm.sys
2014-03-03 14:46:59 5376 ----a-w- c:\windows\system32\drivers\mspclock.sys
2014-03-03 14:46:07 -------- d-----w- c:\program files\CaptureWiz
2014-03-03 14:45:59 -------- d-----w- c:\windows\system32\RTCOM
2014-03-03 14:45:41 4096 ----a-w- c:\windows\system32\ksuser.dll
2014-03-03 14:45:38 60160 ----a-w- c:\windows\system32\drivers\drmk.sys
2014-03-03 14:45:36 129536 ----a-w- c:\windows\system32\ksproxy.ax
2014-03-03 14:44:56 134118 ----a-w- c:\windows\ColorPic Uninstaller.exe
2014-03-03 14:44:49 -------- d-----w- c:\program files\ColorPic 4.1
2014-03-03 14:44:13 359016 ----a-w- c:\windows\vncutil.exe
2014-03-03 14:44:11 891976 ----a-w- c:\windows\system32\RTSndMgr.CPL
2014-03-03 14:44:11 84584 ----a-w- c:\windows\SOUNDMAN.EXE
2014-03-03 14:44:09 1523416 ----a-w- c:\windows\RtlUpd.exe
2014-03-03 14:44:08 9721960 ----a-w- c:\windows\RTLCPL.EXE
2014-03-03 14:44:05 5589720 ----a-w- c:\windows\system32\drivers\RtkHDAud.sys
2014-03-03 14:44:04 86232 ----a-w- c:\windows\system32\RtkCoInstIIXP.dll
2014-03-03 14:44:04 11368 ----a-w- c:\windows\system32\RtkCoLDRXP.dll
2014-03-03 14:44:03 129640 ----a-w- c:\windows\RtkAudioService.exe
2014-03-03 14:44:01 20145368 ----a-w- c:\windows\RTHDCPL.EXE
2014-03-03 14:28:43 456704 -c----w- c:\windows\system32\dllcache\smtpsvc.dll
2014-03-03 14:20:07 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2014-03-03 14:20:03 272128 ------w- c:\windows\system32\drivers\bthport.sys
2014-03-03 14:13:02 357888 -c----w- c:\windows\system32\dllcache\srv.sys
2014-03-03 14:12:24 -------- d-----w- c:\documents and settings\ian\local settings\application data\BitZipper
2014-03-03 14:12:05 -------- d-----w- c:\program files\BitZipper
2014-03-03 14:11:11 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2014-03-03 14:10:40 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2014-03-03 14:10:37 421376 ----a-r- c:\documents and settings\ian\application data\microsoft\installer\{f0e345d6-ae5c-4f49-af3a-0349f729c130}\StartMenuIcon.exe
2014-03-03 14:10:37 421376 ----a-r- c:\documents and settings\ian\application data\microsoft\installer\{f0e345d6-ae5c-4f49-af3a-0349f729c130}\DesktopIcon.exe
2014-03-03 14:10:31 268288 -c----w- c:\windows\system32\dllcache\httpext.dll
2014-03-03 14:10:25 -------- d-----w- c:\program files\TabExplorer
2014-03-03 14:06:50 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2014-03-03 14:06:49 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2014-03-03 14:06:36 65536 ----a-w- c:\windows\system32\EEBUtil.dll
2014-03-03 14:06:36 55808 ----a-w- c:\windows\system32\EEBSDKIF.dll
2014-03-03 14:06:36 135168 ----a-w- c:\windows\system32\EEBAPI.dll
2014-03-03 14:06:36 110592 ----a-w- c:\windows\system32\EEBDSCVR.dll
2014-03-03 14:06:35 77824 ----a-w- c:\windows\system32\EBAPI.dll
2014-03-03 14:05:54 284160 -c----w- c:\windows\system32\dllcache\pdh.dll
2014-03-03 14:05:52 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll
2014-03-03 14:05:51 110592 -c----w- c:\windows\system32\dllcache\services.exe
2014-03-03 14:05:50 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2014-03-03 14:05:48 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2014-03-03 14:05:46 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2014-03-03 14:05:44 730112 -c----w- c:\windows\system32\dllcache\lsasrv.dll
2014-03-03 14:05:42 718336 -c----w- c:\windows\system32\dllcache\ntdll.dll
2014-03-03 14:05:42 617472 -c----w- c:\windows\system32\dllcache\advapi32.dll
2014-03-03 14:05:37 2149888 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2014-03-03 14:05:34 2193536 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2014-03-03 14:05:28 2028544 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2014-03-03 14:04:56 8192 ----a-w- c:\windows\system32\E_DCINST.DLL
2014-03-03 14:04:51 93696 ----a-w- c:\windows\system32\E_FLBGJE.DLL
2014-03-03 14:04:51 63488 ----a-w- c:\windows\system32\E_FD4BGJE.DLL
2014-03-03 13:59:46 -------- d-----w- c:\documents and settings\ian\application data\convert
2014-03-03 13:59:24 -------- d-----w- c:\program files\File Type Helper
2014-03-03 13:59:10 -------- d-----w- c:\program files\Free FLV Converter
2014-03-03 13:58:48 -------- d-----w- c:\documents and settings\all users\application data\UDL
2014-03-03 13:57:52 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2014-03-03 13:50:55 293376 ------w- c:\windows\system32\browserchoice.exe
2014-03-03 13:47:40 -------- d-----w- c:\program files\Epson Software
2014-03-03 13:47:00 474892 ----a-w- c:\windows\system32\ensppmon.dll
2014-03-03 13:47:00 457611 ----a-w- c:\windows\system32\ensppui.dll
2014-03-03 13:47:00 249344 ----a-w- c:\windows\system32\enspres.dll
2014-03-03 13:47:00 249344 ----a-w- c:\windows\system32\enpres.dll
2014-03-03 13:46:59 457611 ----a-w- c:\windows\system32\enppui.dll
2014-03-03 13:46:58 474892 ----a-w- c:\windows\system32\enppmon.dll
2014-03-03 13:46:14 -------- d-----w- c:\program files\common files\EPSON
2014-03-03 13:44:11 -------- d-----w- c:\documents and settings\ian\application data\.oit
2014-03-03 13:43:30 -------- d-----w- c:\documents and settings\ian\local settings\application data\NewSoft
2014-03-03 13:43:13 -------- d-----w- c:\program files\EpsonNet
2014-03-03 13:40:43 337920 -c----w- c:\windows\system32\dllcache\netapi32.dll
2014-03-03 13:38:57 -------- d-----w- c:\documents and settings\all users\application data\EPSON
2014-03-03 13:38:26 -------- d-----w- c:\program files\common files\NewSoft
2014-03-03 13:38:17 15872 ----a-w- c:\windows\system32\escdev.dll
2014-03-03 13:38:17 128392 ----a-w- c:\windows\system32\esdevapp.exe
2014-03-03 13:38:15 342016 ----a-w- c:\windows\system32\eswiaud.dll
2014-03-03 13:38:07 7168 ----a-w- c:\windows\system32\xpsp4res.dll
2014-03-03 13:37:56 218112 -c----w- c:\windows\system32\dllcache\wordpad.exe
2014-03-03 13:35:12 -------- d-----w- c:\program files\epson
2014-03-03 13:34:20 -------- d-----w- c:\windows\system32\color
2014-03-03 13:34:20 -------- d-----w- c:\program files\NewSoft
2014-03-03 13:33:20 -------- d-----w- c:\program files\IDT
2014-03-03 13:31:15 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2014-03-03 13:20:53 -------- d-----w- c:\windows\system32\PreInstall
2014-03-03 13:03:10 200704 ----a-w- c:\windows\system32\ssleay32.dll
2014-03-03 13:03:10 1085440 ----a-w- c:\windows\system32\libeay32.dll
2014-03-03 13:00:48 -------- d-----w- c:\program files\GIGABYTE
2014-03-03 13:00:48 -------- d-----w- c:\documents and settings\all users\application data\Gigabyte Driver
2014-03-03 12:25:03 480608 ----a-w- c:\windows\system32\DiagFunc.dll
2014-03-03 12:25:03 34080 ----a-w- c:\windows\system32\CTAAEI.dll
2014-03-03 12:25:03 2178112 ----a-w- c:\windows\system32\Scutum.dll
2014-03-03 12:25:03 19072 ----a-w- c:\windows\system32\drivers\Scutum50.sys
2014-03-03 12:25:03 185696 ----a-w- c:\windows\system32\W32N55.dll
2014-03-03 12:25:03 1608768 ----a-w- c:\windows\system32\RaCertMgr.dll
2014-03-03 12:25:03 143466 ----a-w- c:\windows\system32\RalinkGina.dll
2014-03-03 12:23:25 -------- d-----w- c:\documents and settings\all users\application data\Ralink Driver
2014-03-03 12:23:20 -------- d-----w- c:\program files\Ralink
2014-03-03 11:42:50 -------- d-----w- c:\documents and settings\ian\local settings\application data\Adobe
2014-03-03 11:36:09 -------- d-----w- c:\windows\OPTIONS
2014-03-03 11:16:15 -------- d-----w- c:\program files\Realtek
2014-03-03 11:01:57 -------- d-----w- c:\documents and settings\ian\application data\Intel
2014-03-03 11:01:44 21393 ----a-w- c:\windows\system32\drivers\AegisP.sys
2014-03-03 11:01:44 21393 ----a-w- c:\windows\AegisP.sys
2014-03-03 10:57:43 -------- d-----w- c:\program files\efs
2014-03-03 10:23:24 -------- d-----w- c:\documents and settings\ian\application data\Pegasus Mail
2014-03-03 10:08:59 -------- d-----w- c:\program files\Generic Provider
2014-03-03 10:00:33 172032 ----a-w- c:\windows\system32\igfxres.dll
2014-03-03 09:12:25 -------- d-----w- c:\windows\system32\SoftwareDistribution
2014-03-03 09:12:24 22040 ----a-w- c:\windows\system32\wucltui.dll.mui
2014-03-03 09:12:23 17944 ----a-w- c:\windows\system32\wuaueng.dll.mui
2014-03-03 09:12:23 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2014-03-03 09:12:22 15384 ----a-w- c:\windows\system32\wuapi.dll.mui
2014-03-03 09:10:45 5183 ----a-w- c:\windows\system32\drivers\usbu2a.sys
2014-03-03 09:10:43 -------- d-----w- C:\USBStorage
2014-03-03 09:10:32 306688 ----a-w- c:\windows\IsUninst.exe
2014-03-03 08:48:51 -------- d-----w- c:\documents and settings\ian\local settings\application data\Google
2014-03-03 08:40:40 -------- d-----w- c:\program files\Belkin
2014-03-03 08:36:19 13464 ----a-w- c:\windows\system32\drivers\SWDUMon.sys
2014-03-03 08:36:17 -------- d-----w- c:\documents and settings\ian\local settings\application data\SlimWare Utilities Inc
2014-03-03 08:36:10 -------- d-----w- c:\program files\DriverUpdate
2014-03-03 08:34:18 35640 ----a-w- c:\windows\system32\uxtuneup.dll
2014-03-03 08:32:35 36152 ----a-w- c:\windows\system32\TURegOpt.exe
2014-03-03 08:32:18 -------- d-----w- c:\documents and settings\ian\application data\AVG
2014-03-03 08:27:24 -------- d-----w- c:\documents and settings\all users\application data\AVG
2014-03-03 08:27:06 -------- d-sh--w- c:\documents and settings\all users\application data\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-03-03 08:25:57 -------- d-----w- c:\documents and settings\ian\application data\AVG2013
2014-03-03 08:25:09 -------- d-----w- c:\documents and settings\ian\application data\TuneUp Software
2014-03-03 08:24:33 -------- d-sh--w- c:\documents and settings\all users\application data\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}
2014-03-03 08:24:31 -------- d--h--w- C:\$AVG
2014-03-03 08:24:31 -------- d-----w- c:\documents and settings\all users\application data\AVG2013
2014-03-03 08:24:02 -------- d-----w- c:\program files\AVG
2014-03-03 08:17:44 53248 ----a-r- c:\documents and settings\ian\application data\microsoft\installer\{3ee9bcae-e9a9-45e5-9b1c-83a4d357e05c}\ARPPRODUCTICON.exe
2014-03-03 08:17:09 21504 ----a-w- c:\windows\system32\drivers\hidserv.dll
2014-03-03 08:16:47 16400 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2014-03-03 08:16:44 16928 ------w- c:\windows\system32\spmsgXP_2k3.dll
2014-03-03 08:16:42 26144 ----a-w- c:\windows\system32\spupdsvc.exe
2014-03-03 08:16:19 10136 ----a-w- c:\windows\system32\drivers\LBeepKE.sys
2014-03-03 08:15:16 -------- d-----w- c:\documents and settings\ian\application data\Logishrd
2014-03-03 08:14:57 12160 ----a-w- c:\windows\system32\drivers\gmhidlow.sys
2014-03-03 08:14:57 -------- d-----w- c:\program files\Philips SPM 7800
2014-03-03 08:14:46 692224 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iKernel.dll
2014-03-03 08:14:46 57344 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\ctor.dll
2014-03-03 08:14:46 5632 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\DotNetInstaller.exe
2014-03-03 08:14:46 32768 ----a-w- c:\program files\common files\installshield\professional\runtime\Objectps.dll
2014-03-03 08:14:46 282756 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\setup.dll
2014-03-03 08:14:46 237568 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iscript.dll
2014-03-03 08:14:46 163972 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iGdi.dll
2014-03-03 08:14:46 155648 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iuser.dll
2014-03-03 07:54:56 -------- d--h--w- c:\documents and settings\all users\application data\Common Files
2014-03-03 07:54:56 -------- d-----w- c:\documents and settings\ian\local settings\application data\MFAData
2014-03-03 07:54:56 -------- d-----w- c:\documents and settings\ian\local settings\application data\Avg2013
2014-03-03 07:54:56 -------- d-----w- c:\documents and settings\all users\application data\MFAData
2014-03-03 07:51:04 -------- d-----w- c:\program files\Zoftar ISO Burner
2014-03-03 07:49:44 3840 ----a-w- c:\windows\system32\drivers\BANTExt.sys
2014-03-03 07:49:44 -------- d-----w- c:\program files\Belarc
2014-03-03 07:34:10 -------- d-----w- c:\windows\system32\ReinstallBackups
2014-03-03 07:34:09 53248 ----a-w- c:\windows\system32\CSVer.dll
2014-03-03 07:28:40 -------- d-----w- c:\windows\system32\NtmsData
2014-03-03 06:56:26 -------- d-----w- c:\windows\IIS Temporary Compressed Files
2014-03-03 06:56:11 -------- d-----w- c:\windows\system32\Cache
2014-03-03 06:53:59 -------- d-----w- c:\documents and settings\ian\local settings\application data\Western Digital
2014-03-03 06:43:50 -------- d-s---w- c:\windows\system32\Microsoft
.
==================== Find3M  ====================
.
2014-02-05 23:26:52 920064 ----a-w- c:\windows\system32\wininet.dll
2014-02-05 23:26:43 43520 ------w- c:\windows\system32\licmgr10.dll
2014-02-05 23:26:42 1469440 ------w- c:\windows\system32\inetcpl.cpl
2014-02-05 23:26:37 18944 ------w- c:\windows\system32\corpol.dll
2014-02-05 22:24:05 385024 ------w- c:\windows\system32\html.iec
2014-01-04 03:13:05 420864 ----a-w- c:\windows\system32\vbscript.dll
2014-01-02 16:48:09 73728 ----a-w- c:\windows\system32\RtNicProp32.dll
2014-01-02 16:48:09 130432 ----a-w- c:\windows\system32\drivers\Rtnicxp.sys
.
============= FINISH: 15:13:33.84 ===============
 

Link to post
Share on other sites

  • Launch Malwarebytes' Anti-Malware
  • Go to Update tab and select Check for Updates. If an update is found, it will download and install the latest version.
  • Go to Scanner tab and select Perform Quick Scan, then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.
Extra Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer,please do so immediately.
Link to post
Share on other sites

Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org

Database version: v2014.03.08.03

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Ian :: DINOSAUR1 [administrator]

Protection: Enabled

08/03/2014 18:15:59
mbam-log-2014-03-08 (18-15-59).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 233333
Time elapsed: 21 minute(s), 49 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

Link to post
Share on other sites

Webpage error details
User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET CLR 1.1.4322; .NET4.0C; .NET4.0E; WWTClient2)
Timestamp: Sat, 8 Mar 2014 18:52:11 UTC
Message: Script error
Line: 0
Char: 0
Code: 0
URI: http://static.fastfreeconverter.com/apps/tv-classic/tv-classic-noboot-fg.js
 

Link to post
Share on other sites

  • 2 weeks later...
Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.