Internet security removal help

View previous topic View next topic Go down

Internet security removal help

Post by msfair on Tue Apr 19, 2011 1:51 am

OTL logfile created on: 4/18/2011 9:14:42 PM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\A\My Documents\Downloads
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,014.00 Mb Total Physical Memory | 231.00 Mb Available Physical Memory | 23.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 68.00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 142.05 Gb Total Space | 126.26 Gb Free Space | 88.88% Space Free | Partition Type: NTFS

Computer Name: ACER-330BB84976 | User Name: A | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/04/18 21:13:07 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\A\My Documents\Downloads\OTL.com
PRC - [2011/04/12 17:51:02 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
PRC - [2011/02/17 06:21:58 | 002,190,688 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgtray.exe
PRC - [2011/02/15 05:38:06 | 007,421,280 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
PRC - [2011/02/11 06:25:52 | 001,080,672 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgnsx.exe
PRC - [2011/02/10 07:55:18 | 001,148,256 | ---- | M] () -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
PRC - [2011/02/08 05:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe
PRC - [2011/02/08 05:33:20 | 000,658,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgrsx.exe
PRC - [2011/02/08 05:32:48 | 000,351,072 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgcsrvx.exe
PRC - [2011/02/08 05:32:46 | 000,656,736 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgchsvx.exe
PRC - [2010/11/30 13:20:36 | 000,997,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2010/11/11 12:26:42 | 000,226,984 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\MpCmdRun.exe
PRC - [2010/11/11 12:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2009/02/11 15:46:28 | 000,565,248 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer VCM\AcerVCM.exe
PRC - [2009/02/05 08:14:56 | 000,237,568 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer VCM\RS_Service.exe
PRC - [2008/12/30 00:09:54 | 000,875,016 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\LManager.exe
PRC - [2008/10/14 11:15:08 | 000,032,768 | ---- | M] () -- C:\WINDOWS\WebCam\M3000\M3000Mnt.exe
PRC - [2008/04/15 17:54:42 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2008/04/15 17:54:40 | 000,178,712 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2008/04/14 05:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (SafeList) ==========

MOD - [2011/04/18 21:13:07 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\A\My Documents\Downloads\OTL.com
MOD - [2010/08/23 09:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011/02/15 05:38:06 | 007,421,280 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2011/02/08 05:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd)
SRV - [2010/11/11 12:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2009/02/05 08:14:56 | 000,237,568 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer VCM\RS_Service.exe -- (RS_Service)
SRV - [2008/04/15 17:54:42 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R)


========== Driver Services (SafeList) ==========

DRV - [2011/04/18 03:36:47 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{6021BCAC-5330-47D0-8BD4-B2E2CDBCDBBF}\MpKsl872455cf.sys -- (MpKsl872455cf)
DRV - [2011/03/30 17:17:22 | 000,134,480 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV - [2011/03/01 14:25:18 | 000,034,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2011/02/22 08:13:02 | 000,022,992 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH)
DRV - [2011/02/10 07:54:00 | 000,296,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2011/02/10 07:53:54 | 000,027,216 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSShim.sys -- (AVGIDSShim)
DRV - [2011/02/10 07:53:52 | 000,024,144 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV - [2011/01/19 04:32:56 | 000,032,464 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86)
DRV - [2011/01/07 06:41:46 | 000,248,656 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2009/03/01 22:03:46 | 000,038,912 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\l1c51x86.sys -- (L1c)
DRV - [2009/02/25 20:17:52 | 001,344,224 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\athw.sys -- (AR5416)
DRV - [2009/02/24 01:49:44 | 005,032,448 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2009/01/02 18:33:54 | 000,145,408 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\M3000KNT.sys -- (M3000Srv)
DRV - [2008/08/05 05:10:12 | 001,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2006/11/02 06:27:36 | 000,020,112 | ---- | M] (Dritek System Inc.) [Kernel | System | Running] -- C:\Program Files\Launch Manager\DPortIO.sys -- (DritekPortIO)
DRV - [2006/01/04 00:41:48 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========


FF - HKLM\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG10\Firefox4\ [2011/04/15 12:03:35 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/04/14 13:59:08 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2011/04/14 14:12:25 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\A\Application Data\Mozilla\Extensions
[2011/04/14 13:59:08 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
File not found (No name found) --
[2011/04/15 12:03:35 | 000,000,000 | ---D | M] (AVG Safe Search) -- C:\PROGRAM FILES\AVG\AVG10\FIREFOX4
[2011/03/18 10:53:24 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
[2010/01/01 01:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\bing.xml

O1 HOSTS File: ([2008/04/14 05:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [AzMixerSel] C:\Program Files\Realtek\Audio\Drivers\AzMixerSel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [IMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [M3000Mnt] File not found
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [MSPY2002] C:\WINDOWS\System32\IME\PINTLGNT\ImScInst.exe ()
O4 - HKLM..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKCU..\Run: [dbccb5ce-1086-4c11-a934-e4714f69c46a] C:\Documents and Settings\All Users\Application Data\dbccb5ce-1086-4c11-a934-e4714f69c46a.dat ()
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Acer VCM.lnk = C:\Program Files\Acer\Acer VCM\AcerVCM.exe (Acer Incorporated)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} [You must be registered and logged in to see this link.] (MUWebControl Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Acer\Acer VCM\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Acer.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Acer.bmp
O32 - Unable to read "AutoRun" value or value not present!
O32 - AutoRun File - [2009/03/11 22:07:49 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync) - C:\Program Files\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/04/18 03:14:51 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011/04/18 03:09:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2011/04/18 03:09:46 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2011/04/18 03:09:29 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2011/04/18 03:08:43 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe
[2011/04/18 03:08:43 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll
[2011/04/18 03:08:43 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll
[2011/04/18 03:08:42 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll
[2011/04/18 03:08:41 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll
[2011/04/18 03:08:41 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll
[2011/04/18 03:08:40 | 000,000,000 | ---D | C] -- C:\2d7d058552dc05bf8a5a9d2bd5fa
[2011/04/17 10:40:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Local Settings\Application Data\Identities
[2011/04/17 00:19:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2011/04/17 00:17:03 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SWF Studio
[2011/04/17 00:17:02 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\A\Application Data\.#
[2011/04/16 22:56:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\My Documents\my work
[2011/04/15 19:09:18 | 000,274,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2011/04/15 19:09:18 | 000,016,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui
[2011/04/15 19:05:33 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\A\IETldCache
[2011/04/15 18:53:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2011/04/15 16:42:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2011/04/15 16:40:21 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2011/04/15 16:40:18 | 000,602,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2011/04/15 16:40:08 | 001,991,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2011/04/15 16:39:58 | 011,080,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2011/04/15 16:39:55 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2011/04/15 16:27:03 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2011/04/15 14:53:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie7updates
[2011/04/15 13:35:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2011/04/15 13:04:58 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2011/04/15 12:05:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Application Data\AVG10
[2011/04/15 12:03:59 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2011/04/15 12:03:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\AVG 2011
[2011/04/15 12:01:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVG10
[2011/04/15 12:01:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\AVG
[2011/04/15 12:01:07 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2011/04/15 11:56:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2011/04/15 03:17:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\PCHealth
[2011/04/14 20:33:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Application Data\Skype
[2011/04/14 17:45:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\My Documents\Downloads
[2011/04/14 14:52:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\SACore
[2011/04/14 14:12:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Local Settings\Application Data\Mozilla
[2011/04/14 14:12:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Application Data\Mozilla
[2011/04/14 14:08:56 | 000,222,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe
[2011/04/14 14:04:52 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2011/04/14 14:04:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2011/04/14 14:04:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Application Data\Malwarebytes
[2011/04/14 14:04:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\VideoLAN
[2011/04/14 14:03:34 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2011/04/14 14:03:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\GIMP
[2011/04/14 14:02:31 | 000,000,000 | ---D | C] -- C:\Program Files\GIMP-2.0
[2011/04/14 14:01:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Skype
[2011/04/14 14:01:45 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2011/04/14 14:01:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Skype
[2011/04/14 14:00:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR
[2011/04/14 14:00:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Start Menu\Programs\WinRAR
[2011/04/14 14:00:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Application Data\WinRAR
[2011/04/14 14:00:53 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2011/04/14 14:00:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Local Settings\Application Data\Adobe
[2011/04/14 14:00:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Start Menu\Programs\Google Chrome
[2011/04/14 13:59:05 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2011/04/14 13:55:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2011/04/14 13:54:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2011/04/08 13:15:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\3G
[2011/04/08 12:30:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Google
[2011/04/08 12:29:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Screensavers
[2011/04/08 12:28:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\BTW
[2011/04/08 12:25:45 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\kswdmcap.ax
[2011/04/08 12:25:45 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\vidcap.ax
[2011/04/08 12:25:44 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\kstvtune.ax
[2011/04/08 12:25:44 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\vfwwdm32.dll
[2011/04/08 12:25:41 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\ksxbar.ax
[2011/04/08 12:25:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\WebCam
[2011/04/08 12:25:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\M30Setup
[2011/04/08 12:25:37 | 000,000,000 | ---D | C] -- C:\Program Files\ALi
[2011/04/08 12:24:35 | 000,000,000 | --SD | C] -- C:\Documents and Settings\A\Application Data\Microsoft
[2011/04/08 12:24:35 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\A\Application Data
[2011/04/08 12:24:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\A\Favorites
[2011/04/08 12:24:35 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\A\Cookies
[2011/04/08 12:24:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Application Data\Super-Cow
[2011/04/08 12:24:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Local Settings\Application Data\Oberon Games
[2011/04/08 12:24:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Local Settings\Application Data\Microsoft Help
[2011/04/08 12:24:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Local Settings\Application Data\Microsoft
[2011/04/08 12:24:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Application Data\Macromedia
[2011/04/08 12:24:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Application Data\InstallShield
[2011/04/08 12:24:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Application Data\Identities
[2011/04/08 12:24:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Local Settings\Application Data\Grubby Games
[2011/04/08 12:24:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Local Settings\Application Data\Google
[2011/04/08 12:24:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Desktop
[2011/04/08 12:24:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Application Data\Adobe
[2011/04/08 12:24:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Application Data\Acer GameZone Console
[2011/04/08 12:24:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Application Data\Acer
[2011/04/08 12:24:34 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\A\SendTo
[2011/04/08 12:24:34 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\A\Recent
[2011/04/08 12:24:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\A\Start Menu\Programs\Startup
[2011/04/08 12:24:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\A\Start Menu
[2011/04/08 12:24:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\A\My Documents\My Pictures
[2011/04/08 12:24:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\A\My Documents\My Music
[2011/04/08 12:24:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\A\My Documents
[2011/04/08 12:24:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\A\Start Menu\Programs\Accessories
[2011/04/08 12:24:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\A\Templates
[2011/04/08 12:24:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\A\PrintHood
[2011/04/08 12:24:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\A\NetHood
[2011/04/08 12:24:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\A\Local Settings
[2011/04/08 12:24:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Start Menu\Programs\Acer GameZone
[2011/04/08 12:20:34 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsink.ax
[2011/04/08 12:20:27 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax
[2011/04/08 12:20:27 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax
[2011/04/08 12:20:26 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax
[2011/04/08 12:20:26 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vfwwdm32.dll
[2011/04/08 12:20:26 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax
[2011/04/08 12:20:26 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dshowext.ax
[2011/04/08 12:20:06 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2011/03/30 17:17:22 | 000,134,480 | ---- | C] (AVG Technologies CZ, s.r.o. ) -- C:\WINDOWS\System32\drivers\AVGIDSDriver.sys
[2009/03/11 05:53:14 | 000,049,152 | ---- | C] ( ) -- C:\WINDOWS\Interop.IWshRuntimeLibrary.dll
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/04/18 21:08:49 | 112,735,522 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2011/04/18 21:05:03 | 000,000,962 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-995690780-414440772-572454927-1005UA.job
[2011/04/18 05:53:57 | 001,842,863 | -H-- | M] () -- C:\Documents and Settings\All Users\Application Data\dbccb5ce-1086-4c11-a934-e4714f69c46a.dat
[2011/04/18 05:52:32 | 000,434,266 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/04/18 05:52:32 | 000,068,386 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/04/18 03:41:47 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2011/04/18 03:35:56 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/04/18 03:35:50 | 000,248,696 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/04/18 03:35:49 | 1063,198,720 | -HS- | M] () -- C:\hiberfil.sys
[2011/04/17 23:41:31 | 000,001,189 | ---- | M] () -- C:\Documents and Settings\A\My Documents\to hard.rtf
[2011/04/15 19:38:19 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011/04/15 19:05:45 | 000,000,819 | ---- | M] () -- C:\Documents and Settings\A\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/04/15 14:05:02 | 000,000,910 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-995690780-414440772-572454927-1005Core.job
[2011/04/15 13:36:52 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/04/15 12:03:40 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\AVG 2011.lnk
[2011/04/15 00:08:23 | 000,001,575 | ---- | M] () -- C:\Documents and Settings\A\Application Data\Microsoft\Internet Explorer\Quick Launch\Internet Protection.lnk
[2011/04/15 00:08:23 | 000,001,557 | ---- | M] () -- C:\Documents and Settings\A\Desktop\Internet Protection.lnk
[2011/04/14 14:12:17 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat
[2011/04/14 14:07:49 | 000,002,256 | ---- | M] () -- C:\Documents and Settings\A\Desktop\Google Chrome.lnk
[2011/04/14 14:07:49 | 000,002,234 | ---- | M] () -- C:\Documents and Settings\A\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2011/04/14 14:05:25 | 000,001,945 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2011/04/14 14:05:04 | 000,001,684 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Microsoft Security Essentials.lnk
[2011/04/14 14:04:21 | 000,000,723 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk
[2011/04/14 14:03:29 | 000,000,796 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\GIMP 2.lnk
[2011/04/14 14:01:47 | 000,001,878 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2011/04/14 14:00:56 | 000,000,708 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\WinRAR.lnk
[2011/04/14 13:59:10 | 000,000,746 | ---- | M] () -- C:\Documents and Settings\A\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/04/14 13:59:10 | 000,000,728 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2011/04/08 12:32:11 | 000,000,530 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Acer Store.lnk
[2011/04/08 12:28:18 | 000,002,573 | ---- | M] () -- C:\WINDOWS\CLEANUP.CMD
[2011/04/08 12:25:05 | 000,000,790 | ---- | M] () -- C:\Documents and Settings\A\Desktop\Windows Media Player.lnk
[2011/04/08 12:23:50 | 000,037,761 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2011/04/08 12:23:46 | 000,000,211 | RHS- | M] () -- C:\boot.ini
[2011/04/08 12:22:24 | 000,005,208 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2011/04/08 12:20:42 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2011/03/30 17:17:22 | 000,134,480 | ---- | M] (AVG Technologies CZ, s.r.o. ) -- C:\WINDOWS\System32\drivers\AVGIDSDriver.sys
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/04/18 21:08:49 | 112,735,522 | ---- | C] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2011/04/17 23:41:31 | 000,001,189 | ---- | C] () -- C:\Documents and Settings\A\My Documents\to hard.rtf
[2011/04/15 12:03:40 | 000,000,694 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\AVG 2011.lnk
[2011/04/15 00:08:23 | 000,001,575 | ---- | C] () -- C:\Documents and Settings\A\Application Data\Microsoft\Internet Explorer\Quick Launch\Internet Protection.lnk
[2011/04/15 00:08:22 | 001,842,863 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\dbccb5ce-1086-4c11-a934-e4714f69c46a.dat
[2011/04/15 00:08:22 | 000,001,557 | ---- | C] () -- C:\Documents and Settings\A\Desktop\Internet Protection.lnk
[2011/04/14 14:12:17 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2011/04/14 14:10:20 | 000,000,424 | -H-- | C] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2011/04/14 14:07:49 | 000,002,234 | ---- | C] () -- C:\Documents and Settings\A\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2011/04/14 14:05:27 | 000,001,684 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Microsoft Security Essentials.lnk
[2011/04/14 14:05:25 | 000,001,945 | ---- | C] () -- C:\WINDOWS\epplauncher.mif
[2011/04/14 14:05:04 | 000,001,684 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Security Essentials.lnk
[2011/04/14 14:04:21 | 000,000,723 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk
[2011/04/14 14:03:29 | 000,000,796 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\GIMP 2.lnk
[2011/04/14 14:01:47 | 000,001,878 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2011/04/14 14:00:56 | 000,000,708 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\WinRAR.lnk
[2011/04/14 14:00:18 | 000,000,962 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-995690780-414440772-572454927-1005UA.job
[2011/04/14 14:00:17 | 000,000,910 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-995690780-414440772-572454927-1005Core.job
[2011/04/14 14:00:09 | 000,002,256 | ---- | C] () -- C:\Documents and Settings\A\Desktop\Google Chrome.lnk
[2011/04/14 13:59:10 | 000,000,746 | ---- | C] () -- C:\Documents and Settings\A\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/04/14 13:59:10 | 000,000,728 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2011/04/14 13:59:09 | 000,000,734 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk
[2011/04/08 12:32:11 | 000,000,530 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Acer Store.lnk
[2011/04/08 12:25:38 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System\M3000Vex.dll
[2011/04/08 12:25:38 | 000,145,408 | ---- | C] () -- C:\WINDOWS\System32\drivers\M3000KNT.sys
[2011/04/08 12:25:38 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System\M3000Rmv.dll
[2011/04/08 12:25:38 | 000,015,190 | ---- | C] () -- C:\WINDOWS\M3000Twn.ini
[2011/04/08 12:25:38 | 000,013,448 | ---- | C] () -- C:\WINDOWS\M3000Twn.src
[2011/04/08 12:25:37 | 000,331,776 | ---- | C] () -- C:\WINDOWS\System\M3000Dex.dll
[2011/04/08 12:25:37 | 000,233,472 | ---- | C] () -- C:\WINDOWS\System32\M3000DIF.dll
[2011/04/08 12:25:05 | 000,000,790 | ---- | C] () -- C:\Documents and Settings\A\Desktop\Windows Media Player.lnk
[2011/04/08 12:24:39 | 000,000,819 | ---- | C] () -- C:\Documents and Settings\A\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/04/08 12:24:39 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\A\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2011/04/08 12:24:36 | 000,000,807 | ---- | C] () -- C:\Documents and Settings\A\Start Menu\Programs\Internet Explorer.lnk
[2011/04/08 12:24:35 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\A\Start Menu\Programs\Remote Assistance.lnk
[2011/04/08 12:24:35 | 000,000,796 | ---- | C] () -- C:\Documents and Settings\A\Start Menu\Programs\Windows Media Player.lnk
[2011/04/08 12:20:42 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2011/04/08 12:19:21 | 1063,198,720 | -HS- | C] () -- C:\hiberfil.sys
[2009/03/11 23:47:07 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2009/03/11 22:56:32 | 000,090,772 | ---- | C] () -- C:\WINDOWS\System32\drivers\RtConvEQ.DAT
[2009/03/11 22:56:32 | 000,000,536 | ---- | C] () -- C:\WINDOWS\System32\drivers\RtHdatEx.dat
[2009/03/11 22:56:32 | 000,000,520 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTEQEX2.dat
[2009/03/11 22:56:32 | 000,000,520 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTEQEX1.dat
[2009/03/11 22:56:32 | 000,000,520 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTEQEX0.dat
[2009/03/11 22:56:32 | 000,000,164 | ---- | C] () -- C:\WINDOWS\System32\drivers\SamSfPa.dat
[2009/03/11 22:56:32 | 000,000,016 | ---- | C] () -- C:\WINDOWS\System32\drivers\rtkhdaud.dat
[2009/03/11 22:55:36 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4926.dll
[2009/03/11 22:10:15 | 000,032,768 | ---- | C] () -- C:\WINDOWS\AMove.exe
[2009/03/11 22:10:15 | 000,006,782 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2009/03/11 22:09:26 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2009/03/11 22:06:10 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2009/03/11 22:05:25 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2009/03/11 14:03:29 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2009/03/11 14:02:48 | 000,248,696 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009/03/11 05:53:14 | 000,020,480 | ---- | C] () -- C:\WINDOWS\LauncheRyDiscCalc.exe
[2009/03/11 05:53:06 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2009/03/11 05:53:05 | 000,434,266 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2009/03/11 05:53:05 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2009/03/11 05:53:05 | 000,068,386 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2009/03/11 05:53:05 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2009/03/11 05:53:04 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2009/03/11 05:53:04 | 000,004,524 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2009/03/11 05:53:04 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2009/03/11 05:53:02 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2009/03/11 05:53:02 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2009/03/11 05:52:59 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2009/03/11 05:52:57 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin

========== Alternate Data Streams ==========

@Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:02C1CB6D

< End of report >



OTL Extras logfile created on: 4/18/2011 9:14:42 PM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\A\My Documents\Downloads
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,014.00 Mb Total Physical Memory | 231.00 Mb Available Physical Memory | 23.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 68.00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 142.05 Gb Total Space | 126.26 Gb Free Space | 88.88% Space Free | Partition Type: NTFS

Computer Name: ACER-330BB84976 | User Name: A | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*


Hi I followed the steps needed for internet security removal and as I tried to delete it using task manager it. continues to tell me that isass.exe and winlogon.exe is critical and that task manager can not delete it.
The internet security that shows up doesn't say 2010 it just says internet security. it continuously popping up and will not allow me to do anything please I just bought this netbook and very new to this I really need your help to get rid of this problem. I hope you can help me

msfair
Beginner
Beginner

Posts Posts : 2
Joined Joined : 2011-04-18
OS OS : windows 7
Points Points : 20594
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Internet security removal help

Post by Belahzur on Tue Apr 19, 2011 7:50 pm

Hello.

Please run OTL.exe.

  • Copy the commands with file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):


    :OTL
    O4 - HKCU..\Run: [dbccb5ce-1086-4c11-a934-e4714f69c46a] C:\Documents and Settings\All Users\Application Data\dbccb5ce-1086-4c11-a934-e4714f69c46a.dat ()
    [2011/04/18 05:53:57 | 001,842,863 | -H-- | M] () -- C:\Documents and Settings\All Users\Application Data\dbccb5ce-1086-4c11-a934-e4714f69c46a.dat



  • Return to OTL, right click in the "Custom Scans/Fixes" window (under the light green bar) and choose Paste.

  • Click the red Run Fix button.
  • A fix log in Notepad will appear. Copy the contents of the fix log to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.
  • Close OTL.exe
If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34916
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245069
# Likes # Likes : 1

View user profile

Back to top Go down

View previous topic View next topic Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum