Can't Uninstall AdAware 11, old Norton installed
I have installed the free version of AdAware 11 on Windows Xp SP-3 and it is creating problems probably because of other Norton antivrus software. But I have been going around in circles try to find a way to uninstall.
How Can I Uninstall AdAware. I seen a file extention proceedure to do from safe mode and tried but got all the way through change folder option settings to allow hidden files and then file extentions was supposed to be able to view so you could change file entention from ".txt" to ".zip"
But I think that proceedure needed a file sent from Lavasoft support to use for for uninstalls, it was posted on the forum back on Feb. 26th 2012.
Does anybody no what file to modify in AdAware 11 that will allow an Uninstall.?
Thank's,
dtr
-
Hi dtr,
Can't you uninstall in the usual way, I mean in Control Panel - Add and Remove Programs?
A topic from 2012 is definitely not for Ad-Aware 11.
Another possible solution is to do a system restore to a date before the installation of Ad-Aware:
Start menu - All programs - Accessories - System Tools - System Restore
0 -
I have tried the usual ways of Control Panel in Windows normal boot and in Safe Mode. I even tried Regedit MSI server in safe mode. I have Scaned for virus several times thinking it's that, but everytime I Scaned the scan would stall out about 3/4 through so I tried scaning after closing all AdAware processes using CTRL/Alt/Delete, and it would stall out later about 7/8 through then I uninstalled the Microsoft Office 2003 program because it stalled out on a Office 2003 installation file.
I'm trying to backout of the problem, It accurred after I installed Windows XP Sp-3 which required an upgrade of Internet Explorer 6 to a later version the allowed SP-3 upgrade. Then I had a Possible Spyware, Malware, Virus problem and Downloaded AdAware and then all programes started stalling out. I have been able to correct enough to semi operate but sure would like to uninstall AdAware to see if it's just a conflicting problem between Norton & AdAware.
Any Help would be Greatly Appreciated.
dtr
0 -
What happens when you try to uninstall Ad-Aware?
To investigate any conflicts, we can see if your issues stop when all drivers and services of Ad-Aware are inactivated and at the same see if there are any visible traces of an infection.
Please, download Farbar Recovery Scan Tool (FRST) and save it on the desktop: http://download.bleepingcomputer.com/farbar/FRST.exe
Start the program.
Read the disclaimer and click Yes to accept it.
Click Scan button.
When done, FRST will make two log files, called FRST.txt and Addition.txt, on the desktop.
Please, open the log files in Notepad, copy their contents and past them into your reply.0 -
It use to start uninstall from control panel and then stop, Now it's not even listed in control panel programs.
If I open my Firefox browser while AdAware is active then everything is very unresponsive, If I inactivate AdAware then Firefox wont even open.
So I need to download FarBar from my desktop computer & Save to a USB flash drive to install on problem Laptop.
Shuold I open run downloaded Farbar or just copy paste to USB.
Thank's,
dtr
0 -
Save the FRST program on the USB flash drive and move it to the other computer. Copy the FRST program from the USB flash drive to the desktop before you start it.
You're welcome
I'm back tomorrow.
0 -
I Saved & moved to desktop & opened & clicked Scan, Nothing happend. Tried to close, unresponsive. Tried Ctrl/Alt/Delete End Program, Not Responding.
dtr
0 -
Ok, Ran FSRT on Laptop in Safe Mode and transfered Results to Flash Drive.
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-12-2013
Ran by Glenn (administrator) on GLENNS610LAPTOP on 09-12-2013 20:12:05
Running from C:\Documents and Settings\Glenn\Desktop
Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English(US)
Internet Explorer Version 8
Boot Mode: Safe Mode (minimal)
==================== Processes (Whitelisted) ===================
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\ZCfgSvc.exe
(Farbar) C:\Documents and Settings\Glenn\Desktop\FRST(1).exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [soundMan] - C:\WINDOWS\SOUNDMAN.EXE [77824 2004-11-01] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AlcWzrd] - C:\WINDOWS\ALCWZRD.EXE [2748928 2004-11-28] (RealTek Semicoductor Corp.)
HKLM\...\Run: [Alcmtr] - C:\WINDOWS\ALCMTR.EXE [57344 2004-10-13] (Realtek Semiconductor Corp.)
HKLM\...\Run: [sMSERIAL] - C:\WINDOWS\sm56hlpr.exe [585728 2004-10-21] (Motorola Inc.)
HKLM\...\Run: [Keyboard Manager Utility] - C:\Program Files\Keyboard Manager\Manager Utility\KeyboardManager.exe [2924544 2004-12-27] (Quanta Computer Inc.)
HKLM\...\Run: [synTPLpr] - C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [102400 2004-08-16] (Synaptics, Inc.)
HKLM\...\Run: [synTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [684032 2004-08-16] (Synaptics, Inc.)
HKLM\...\Run: [HotKeysCmds] - C:\WINDOWS\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [intelWireless] - C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe [385024 2004-10-15] (Intel Corporation)
HKLM\...\Run: [EOUApp] - C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe [356352 2004-10-15] (Intel Corporation)
HKLM\...\Run: [MaxMenuMgr] - C:\Program Files\Seagate\SeagateManager\FreeAgent Status\stxmenumgr.exe [181544 2008-10-28] (Seagate LLC)
HKLM\...\Run: [HP Software Update] - C:\Program Files\HP\HP Software Update\hpwuschd2.exe [49208 2011-03-24] (Hewlett-Packard)
HKLM\...\Run: [] - [x]
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2012-02-20] (Apple Inc.)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2012-04-18] (Apple Inc.)
HKLM\...\Run: [sunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM\...\Run: [WinampAgent] - C:\Program Files\Winamp\winampa.exe [74752 2012-06-28] (Nullsoft, Inc.)
HKLM\...\Run: [NeroFilterCheck] - C:\WINDOWS\system32\NeroCheck.exe [155648 2001-07-09] (Ahead Software Gmbh)
HKLM\...\Run: [FromDocToPDF Search Scope Monitor] - C:\Program Files\FromDocToPDF_65\bar\1.bin\65SrchMn.exe [44784 2013-06-21] (MindSpark)
HKLM\...\Run: [FromDocToPDF_65 Browser Plugin Loader] - C:\Program Files\FromDocToPDF_65\bar\1.bin\65brmon.exe [30096 2013-06-21] (VER_COMPANY_NAME)
HKLM\...\Run: [updater] - C:\Documents and Settings\All Users\Application Data\Updater\updater.exe [297336 2013-09-25] (Updater)
HKLM\...\Run: [AdAwareTray] - C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\AdAwareTray.exe [2162008 2013-10-18] ()
HKLM\...\Run: [ccApp] - C:\Program Files\Common Files\Symantec Shared\ccApp.exe [70816 2003-08-14] (Symantec Corporation)
HKLM\...\Run: [AcctMgr] - C:\Program Files\Norton SystemWorks\Password Manager\AcctMgr.exe [578744 2003-09-12] (Symantec Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxsrvc.dll (Intel Corporation)
Winlogon\Notify\IntelWireless: C:\Program Files\Intel\Wireless\Bin\LgNotify.dll (Intel Corporation)
HKCU\...\Run: [MSMSGS] - C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKCU\...\Run: [HLBackupScheduler] - C:\Program Files\Backup Assistant Plus\Backup Assistant Plus Service.exe
HKCU\...\Run: [MotoCast] - C:\Program Files\Motorola Mobility\MotoCast\MotoLauncher.lnk [1704 2013-07-06] ()
HKCU\...\Run: [updater] - C:\Documents and Settings\All Users\Application Data\Updater\updater.exe [297336 2013-09-25] (Updater)
MountPoints2: {571ec648-05d5-11e2-849f-00c09f969d5d} - E:\.\EncryptionTool\MaxtorEncryption.exe
MountPoints2: {5b969694-0cdd-11e2-84a5-00c09f969d5d} - F:\setup.exe -a
MountPoints2: {78b57460-8749-11e2-84ad-0012f0096fae} - E:\setup.exe -a
MountPoints2: {a627d6fa-fa91-11e1-8497-00c09f969d5d} - E:\MotoCastSetup.exe -a
AppInit_DLLs: [ ] ()
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\QuickBooks Update Agent.lnk
ShortcutTarget: QuickBooks Update Agent.lnk -> C:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe (Intuit Inc.)
Startup: C:\Documents and Settings\Glenn\Start Menu\Programs\Startup\HotSync Manager.lnk
ShortcutTarget: HotSync Manager.lnk -> C:\Palm\HOTSYNC.EXE (Palm, Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.tb.ask.com/index.jhtml?n=77DE8857&p2=^Y6^xdm003^S05932^us&ptb=E6EFA4B5-CC78-49F9-950C-6D37B723A290&si=CIDLsob-9bcCFUpyQgodzj8AFQ
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultUrl = http://search.tb.ask.com/search/GGmain.jhtml?p2=^Y6^xdm003^S05932^us&si=CIDLsob-9bcCFUpyQgodzj8AFQ&ptb=E6EFA4B5-CC78-49F9-950C-6D37B723A290&ind=2013120622&n=77fdc86e&psa=&st=sb&searchfor={searchTerms}
URLSearchHook: HKCU - (No Name) - {4c60e5ab-5c68-4c59-abaa-885010b24b32} - C:\Program Files\FromDocToPDF_65\bar\1.bin\65SrcAs.dll (MindSpark)
SearchScopes: HKLM - DefaultScope {9a216821-0ec5-49a3-85ac-fb72ae79a1e8} URL = http://search.tb.ask.com/search/GGmain.jhtml?p2=^Y6^xdm003^S05932^us&si=CIDLsob-9bcCFUpyQgodzj8AFQ&ptb=E6EFA4B5-CC78-49F9-950C-6D37B723A290&ind=2013120622&n=77fdc86e&psa=&st=sb&searchfor={searchTerms}
SearchScopes: HKLM - {9a216821-0ec5-49a3-85ac-fb72ae79a1e8} URL = http://search.tb.ask.com/search/GGmain.jhtml?p2=^Y6^xdm003^S05932^us&si=CIDLsob-9bcCFUpyQgodzj8AFQ&ptb=E6EFA4B5-CC78-49F9-950C-6D37B723A290&ind=2013120622&n=77fdc86e&psa=&st=sb&searchfor={searchTerms}
SearchScopes: HKCU - DefaultScope {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = http://securedsearch2.lavasoft.com/results.php?pr=vmn&id=adawaretb&v=3_7&idate=2013-12-08&hsimp=yhs-lavasoft&ent=ch&q={searchTerms}
SearchScopes: HKCU - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = http://securedsearch2.lavasoft.com/results.php?pr=vmn&id=adawaretb&v=3_7&idate=2013-12-08&hsimp=yhs-lavasoft&ent=ch&q={searchTerms}
SearchScopes: HKCU - {9a216821-0ec5-49a3-85ac-fb72ae79a1e8} URL = http://search.tb.ask.com/search/GGmain.jhtml?p2=^Y6^xdm003^S05932^us&si=CIDLsob-9bcCFUpyQgodzj8AFQ&ptb=E6EFA4B5-CC78-49F9-950C-6D37B723A290&ind=2013120622&n=77fdc86e&psa=&st=sb&searchfor={searchTerms}
BHO: Tube Dimmer - {44ed99e2-16a6-4b89-80d6-5b21cf42e78b} - C:\Documents and Settings\All Users\Application Data\TubeDimmer\IE\common.dll (Creative Island Media, LLC)
BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Toolbar BHO - {a235e1e3-6296-4710-af39-104a7faa6c7c} - C:\Program Files\FromDocToPDF_65\bar\1.bin\65bar.dll (MindSpark)
BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NAVShExt.dll (Symantec Corporation)
BHO: PETN - {BF795AA1-59EC-46C7-831D-3FA20279A10E} - C:\Documents and Settings\Glenn\Local Settings\Application Data\TidyNetwork\petn.dll ()
BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Search Assistant BHO - {f236ca79-3123-4afb-9f74-e98117ad5625} - C:\Program Files\FromDocToPDF_65\bar\1.bin\65SrcAs.dll (MindSpark)
Toolbar: HKLM - FromDocToPDF - {c66a678d-5e6c-4af9-8f57-c6192f42cf74} - C:\Program Files\FromDocToPDF_65\bar\1.bin\65bar.dll (MindSpark)
Toolbar: HKLM - Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NAVShExt.dll (Symantec Corporation)
Toolbar: HKCU - &Address - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKCU - Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NAVShExt.dll (Symantec Corporation)
Toolbar: HKCU - FromDocToPDF - {C66A678D-5E6C-4AF9-8F57-C6192F42CF74} - C:\Program Files\FromDocToPDF_65\bar\1.bin\65bar.dll (MindSpark)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Documents and Settings\Glenn\Application Data\Mozilla\Firefox\Profiles\zppp8v06.default
FF DefaultSearchEngine: SecureSearch
FF SelectedSearchEngine: SecureSearch
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.9.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.9.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\adawaretb.xml
FF Extension: MyWordTool - C:\Documents and Settings\Glenn\Application Data\Mozilla\Firefox\Profiles\zppp8v06.default\Extensions\emily@wilford.biz
FF Extension: Tube Dimmer - C:\Documents and Settings\Glenn\Application Data\Mozilla\Firefox\Profiles\zppp8v06.default\Extensions\support@tubedimmerapp.com
FF Extension: TidyNetwork - C:\Documents and Settings\Glenn\Application Data\Mozilla\Firefox\Profiles\zppp8v06.default\Extensions\TidyNetwork@TidyNetwork
FF Extension: No Name - C:\Documents and Settings\Glenn\Application Data\Mozilla\Firefox\Profiles\zppp8v06.default\Extensions\{19EB90DC-A456-458b-8AAC-616D91AAFCE1}.xpi
FF Extension: MyWordTool - C:\Program Files\Mozilla Firefox\browser\extensions\emily@wilford.biz
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
========================== Services (Whitelisted) =================
S2 ccEvtMgr; C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe [255136 2003-08-14] (Symantec Corporation)
S3 ccPwdSvc; C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe [87200 2003-08-14] (Symantec Corporation)
S2 ccSetMgr; C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe [234656 2003-08-14] (Symantec Corporation)
S2 DeviceMonitorService; C:\Program Files\Motorola Media Link\Lite\NServiceEntry.exe [87992 2012-09-07] (Nero AG)
S2 FreeAgentGoNext Service; C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe [156968 2008-10-28] (Seagate Technology LLC)
S2 FromDocToPDF_65Service; C:\Program Files\FromDocToPDF_65\bar\1.bin\65barsvc.exe [42504 2013-06-21] (COMPANYVERS_NAME)
S2 LavasoftAdAwareService11; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\AdAwareService.exe [497744 2013-10-18] ()
S2 Motorola Device Manager; C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [120728 2012-10-02] ()
S2 navapsvc; C:\Program Files\Norton SystemWorks\Norton Antivirus\navapsvc.exe [158376 2003-08-17] (Symantec Corporation)
S2 NProtectService; C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE [81920 2003-09-10] (Symantec Corporation)
S2 OwnershipProtocol; C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe [98304 2004-10-15] (Intel Corporation)
S2 QBCFMonitorService; C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe [20480 2006-11-28] ( )
S2 S24EventMonitor; C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [360521 2004-10-15] (Intel Corporation )
S2 SAVScan; C:\Program Files\Norton SystemWorks\Norton Antivirus\SAVScan.exe [193816 2003-08-09] (Symantec Corporation)
S2 SBService; C:\Program Files\Common Files\Symantec Shared\Script Blocking\SBServ.exe [66784 2003-06-24] (Symantec Corporation)
S2 Speed Disk service; C:\Program Files\Norton SystemWorks\Norton Utilities\Speed Disk\NOPDB.exe [176193 2003-09-10] (Symantec Corporation)
S2 Symantec Core LC; C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe [585728 2013-12-08] (Symantec Corporation)
S2 JavaQuickStarterService; "C:\Program Files\Java\jre7\bin\jqs.exe" -service -config "C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf"
==================== Drivers (Whitelisted) ====================
S2 AegisP; C:\Windows\System32\DRIVERS\AegisP.sys [17119 2013-12-03] (Meetinghouse Data Communications)
S3 Bdfndisf; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfndisf.sys [116248 2013-07-17] (BitDefender LLC)
S1 bdftdif; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdftdif.sys [130640 2013-07-17] (BitDefender LLC)
S3 gzflt; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\gzflt.sys [154464 2013-07-17] (BitDefender LLC)
S3 IWCA; C:\Windows\System32\DRIVERS\iwca.sys [234496 2004-08-12] (Intel Corporation)
S3 NAVENG; C:\Program Files\Common Files\Symantec Shared\VirusDefs\20030814.007\NAVENG.SYS [67800 2003-08-13] (Symantec Corporation)
S3 NAVEX15; C:\Program Files\Common Files\Symantec Shared\VirusDefs\20030814.007\NAVEX15.SYS [531160 2003-08-13] (Symantec Corporation)
S3 NPDriver; C:\WINDOWS\system32\Drivers\NPDRIVER.SYS [258476 2003-09-10] (Symantec Corporation)
S3 PalmUSBD; C:\Windows\System32\drivers\PalmUSBD.sys [16509 2003-10-14] (Palm, Inc.)
R3 qkbfiltr; C:\Windows\System32\drivers\qkbfiltr.sys [29312 2004-09-23] (Quanta Computer, Inc.)
S3 qmofiltr; C:\Windows\System32\drivers\qmofiltr.sys [7552 2004-08-18] (Quanta Computer, Inc.)
S3 Rasirda; C:\Windows\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
S3 RTL8023xp; C:\Windows\System32\DRIVERS\Rtlnicxp.sys [70144 2004-08-08] (Realtek Semiconductor Corporation )
S3 rtl8139; C:\Windows\System32\DRIVERS\RTL8139.SYS [20992 2004-08-03] (Realtek Semiconductor Corporation)
S2 s24trans; C:\Windows\System32\DRIVERS\s24trans.sys [11354 2004-10-15] (Intel Corporation)
S1 SAVRT; C:\Program Files\Norton SystemWorks\Norton Antivirus\SAVRT.SYS [300736 2003-08-06] (Symantec Corporation)
S1 SAVRTPEL; C:\Program Files\Norton SystemWorks\Norton Antivirus\SAVRTPEL.SYS [35008 2003-08-06] (Symantec Corporation)
S3 SDdriver; C:\WINDOWS\system32\Drivers\sddriver.sys [90272 2003-09-10] (Symantec Corporation)
S3 SMCIRDA; C:\Windows\System32\DRIVERS\smcirda.sys [35913 2001-08-17] (SMC)
S3 SymEvent; C:\Program Files\Symantec\SYMEVENT.SYS [82136 2003-09-12] (Symantec Corporation)
S2 symlcbrd; C:\WINDOWS\system32\drivers\symlcbrd.sys [2397 2013-12-08] ()
S3 SYMREDRV; C:\WINDOWS\system32\Drivers\SYMREDRV.SYS [15176 2003-08-15] (Symantec Corporation)
S2 SYMTDI; C:\WINDOWS\system32\Drivers\SYMTDI.SYS [176963 2003-08-15] (Symantec Corporation)
S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [340624 2013-07-17] (BitDefender S.R.L.)
S3 w29n51; C:\Windows\System32\DRIVERS\w29n51.sys [3222784 2004-10-29] (Intel® Corporation)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
U5 QDFSDRV; C:\Windows\System32\Drivers\QDFSDRV.sys [13792 2003-09-07] (Symantec Corporation)
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
U1 WS2IFSL;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-12-09 20:12 - 2013-12-09 20:12 - 00017178 _____ C:\Documents and Settings\Glenn\Desktop\FRST.txt
2013-12-09 17:07 - 2013-12-09 17:07 - 00000000 ____D C:\FRST
2013-12-09 17:07 - 2013-12-09 17:06 - 01060641 _____ (Farbar) C:\Documents and Settings\Glenn\Desktop\FRST(1).exe
2013-12-08 21:05 - 2013-12-08 21:05 - 00002340 _____ C:\Documents and Settings\Glenn\10000000_.ppt
2013-12-08 20:02 - 2013-12-08 20:02 - 00000548 _____ C:\WINDOWS\Tasks\Norton AntiVirus - Scan my computer.job
2013-12-08 19:52 - 2013-12-08 19:54 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\Programs List on Laptop
2013-12-08 19:43 - 2013-12-08 19:43 - 00000000 ____D C:\WINDOWS\system32\System
2013-12-08 19:42 - 2013-12-08 19:42 - 00004368 _____ C:\WINDOWS\SYMEVENT.LOG
2013-12-08 19:40 - 2013-12-08 19:40 - 00000308 _____ C:\WINDOWS\Tasks\Symantec Drmc.job
2013-12-08 19:39 - 2013-12-08 19:43 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Norton SystemWorks
2013-12-08 19:39 - 2013-12-08 19:39 - 00002397 _____ C:\WINDOWS\system32\Drivers\symlcbrd.sys
2013-12-08 19:39 - 2013-12-08 19:39 - 00001563 _____ C:\Documents and Settings\All Users\Start Menu\Norton SystemWorks.lnk
2013-12-08 19:39 - 2013-12-08 19:39 - 00001563 _____ C:\Documents and Settings\All Users\Desktop\Norton SystemWorks.lnk
2013-12-08 19:39 - 2013-12-08 19:39 - 00000280 _____ C:\WINDOWS\Tasks\Norton SystemWorks One Button Checkup.job
2013-12-08 18:44 - 2013-12-08 18:45 - 00011936 _____ C:\WINDOWS\WINNT32.LOG
2013-12-08 18:44 - 2013-12-08 18:44 - 00000730 _____ C:\WINDOWS\UPGRADE.TXT
2013-12-08 18:44 - 2013-12-08 18:44 - 00000178 _____ C:\WINDOWS\DHCPUPG.LOG
2013-12-08 15:38 - 2013-12-08 15:38 - 00000000 ____D C:\NBRT
2013-12-08 06:43 - 2013-12-08 06:43 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\BitDefender
2013-12-08 06:31 - 2013-12-08 06:31 - 00000000 ____D C:\Documents and Settings\Glenn\Application Data\Lavasoft
2013-12-08 06:26 - 2013-07-17 18:09 - 00842368 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\bdsmtpp.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00179560 _____ (BitDefender) C:\WINDOWS\system32\BdFirewallSDK.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00161544 _____ (BitDefender) C:\WINDOWS\system32\httproxy.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00136824 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\bdpop3p.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00135288 _____ C:\WINDOWS\system32\bdfwcore.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00110568 _____ (BitDefender) C:\WINDOWS\system32\OEMbdpredir.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00086896 _____ (BitDefender) C:\WINDOWS\system32\bdpredir.dll
2013-12-08 06:21 - 2013-12-08 06:21 - 00001050 _____ C:\Documents and Settings\All Users\Desktop\Ad-Aware Antivirus.lnk
2013-12-08 06:21 - 2013-12-08 06:21 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Ad-Aware Antivirus
2013-12-08 06:15 - 2013-12-08 14:38 - 00000000 ____D C:\Program Files\Lavasoft
2013-12-08 06:11 - 2013-12-08 06:12 - 00008876 _____ C:\WINDOWS\KB942288-v3.log
2013-12-08 06:11 - 2013-12-08 06:11 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB942288-v3$
2013-12-08 06:11 - 2013-12-08 06:11 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Lavasoft
2013-12-07 20:32 - 2013-12-07 20:32 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2013-12-07 20:32 - 2013-12-07 20:32 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2013-12-07 20:23 - 2013-12-07 20:23 - 00000000 __SHD C:\Documents and Settings\Glenn\IECompatCache
2013-12-07 20:19 - 2013-12-07 20:19 - 00000000 __SHD C:\Documents and Settings\Glenn\PrivacIE
2013-12-07 10:22 - 2013-12-07 10:22 - 00000000 ____D C:\Documents and Settings\Glenn\Application Data\Help
2013-12-06 23:37 - 2013-12-06 23:37 - 00000187 _____ C:\WINDOWS\spupdsvc.log.1.log
2013-12-06 23:37 - 2013-12-06 23:37 - 00000090 _____ C:\WINDOWS\system32\spupdwxp.log
2013-12-06 23:19 - 2013-12-06 23:19 - 00000000 ____D C:\WINDOWS\system32\scripting
2013-12-06 23:19 - 2013-12-06 23:19 - 00000000 ____D C:\WINDOWS\system32\bits
2013-12-06 23:19 - 2013-12-06 23:19 - 00000000 ____D C:\WINDOWS\l2schemas
2013-12-06 23:19 - 2008-04-14 05:42 - 04274816 ____N (NVIDIA Corporation) C:\WINDOWS\system32\nv4_disp.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 01737856 ____N (Matrox Graphics Inc.) C:\WINDOWS\system32\mtxparhd.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 01306624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00397056 ____N (S3 Graphics, Inc.) C:\WINDOWS\system32\s3gnb.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00291328 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagentrt.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00290304 ____N (Microsoft Corporation) C:\WINDOWS\system32\rhttpaa.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00286792 ____N (Smart Link) C:\WINDOWS\system32\slextspk.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00193024 ____N (Microsoft Corporation) C:\WINDOWS\system32\napmontr.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00188508 ____N (Smart Link) C:\WINDOWS\system32\slgen.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00176640 ____N (Microsoft Corporation) C:\WINDOWS\system32\napstat.exe
2013-12-06 23:19 - 2008-04-14 05:42 - 00155136 ____N (Microsoft Corporation) C:\WINDOWS\system32\mssha.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00150528 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagent.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00144384 ____N (Microsoft Corporation) C:\WINDOWS\system32\onex.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00076800 ____N (Microsoft Corporation) C:\WINDOWS\system32\qutil.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00073832 ____N (Smart Link) C:\WINDOWS\system32\slcoinst.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00073796 ____N (Smart Link) C:\WINDOWS\system32\slserv.exe
2013-12-06 23:19 - 2008-04-14 05:42 - 00069120 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00062464 ____N (Microsoft Corporation) C:\WINDOWS\system32\qcliprov.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00061952 ____N (Microsoft Corporation) C:\WINDOWS\system32\rasqec.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00060416 ____N (Microsoft Corporation) C:\WINDOWS\system32\tzchange.exe
2013-12-06 23:19 - 2008-04-14 05:42 - 00053248 ____N (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00050688 ____N (Microsoft Corporation) C:\WINDOWS\system32\tspkg.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcperf.exe
2013-12-06 23:19 - 2008-04-14 05:42 - 00032866 ____N (Smart Link) C:\WINDOWS\system32\slrundll.exe
2013-12-06 23:19 - 2008-04-14 05:42 - 00032866 ____N (Smart Link) C:\WINDOWS\slrundll.exe
2013-12-06 23:19 - 2008-04-14 05:42 - 00032768 ____N (Microsoft Corporation) C:\WINDOWS\system32\setupn.exe
2013-12-06 23:19 - 2008-04-14 05:42 - 00030208 ____N (Microsoft Corporation) C:\WINDOWS\system32\napipsec.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00028672 ____N (Microsoft Corporation) C:\WINDOWS\system32\vidcap.ax
2013-12-06 23:19 - 2008-04-14 05:42 - 00028672 ____N (Microsoft Corporation) C:\WINDOWS\system32\verclsid.exe
2013-12-06 23:19 - 2008-04-14 05:42 - 00023040 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativmvxx.ax
2013-12-06 23:19 - 2008-04-14 05:42 - 00010752 ____N (Microsoft Corporation) C:\WINDOWS\system32\smtpapi.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00009728 ____N (Microsoft Corporation) C:\WINDOWS\system32\rwnh.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00009728 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativdaxx.ax
2013-12-06 23:19 - 2008-04-14 05:41 - 01888992 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ati3duag.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00870784 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ati3d1ag.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00650752 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00516768 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ativvaxx.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00397312 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcex.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00377984 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2dvaa.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00233472 ____N (Microsoft Corporation) C:\WINDOWS\system32\azroles.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00229376 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2cqag.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00201728 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2dvag.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00184832 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00184320 ____N (Microsoft Corporation) C:\WINDOWS\system32\microsoft.managementconsole.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00180224 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00136192 ____N (Microsoft Corporation) C:\WINDOWS\system32\aaclient.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00132096 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00126976 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00106496 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcfxcommon.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00094208 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00086016 ____N (Conexant) C:\WINDOWS\system32\mdmxsdk.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00081920 ____N (Microsoft Corporation) C:\WINDOWS\system32\ieencode.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00061440 ____N (Microsoft Corporation) C:\WINDOWS\system32\kmsvc.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00059392 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapqec.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00057856 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3cfg.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00056320 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00048640 ____N (Microsoft Corporation) C:\WINDOWS\system32\dhcpqec.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00040960 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3gpclnt.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsroam.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00037376 ____N (Microsoft Corporation) C:\WINDOWS\system32\l2gpstore.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapsvc.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00032768 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativtmxx.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00032285 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\hsfcisp2.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00030720 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapolqec.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00026112 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00019456 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsntfy.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00012800 ____N (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00009216 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3dlg.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00007168 ____N (Microsoft Corporation) C:\WINDOWS\system32\bitsprx4.dll
2013-12-06 23:19 - 2008-04-14 05:40 - 00294912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msaud32.acm
2013-12-06 23:19 - 2008-04-14 05:40 - 00102912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpcdll.dll
2013-12-06 23:19 - 2008-04-14 05:40 - 00086016 ____C (Sipro Lab Telecom Inc.) C:\WINDOWS\system32\dllcache\sl_anet.acm
2013-12-06 23:19 - 2008-04-14 05:39 - 00290816 ____C (Fraunhofer Institut Integrierte Schaltungen IIS) C:\WINDOWS\system32\dllcache\l3codeca.acm
2013-12-06 23:19 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdpash.dll
2013-12-06 23:19 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdnepr.dll
2013-12-06 23:19 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdiultn.dll
2013-12-06 23:19 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdbhc.dll
2013-12-06 23:19 - 2008-04-14 00:15 - 00046592 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irbus.sys
2013-12-06 23:19 - 2008-04-14 00:13 - 00009728 ____N (Microsoft Corporation) C:\WINDOWS\system32\comsdupd.exe
2013-12-06 23:19 - 2008-04-13 23:45 - 00076800 ____N (Microsoft Corporation) C:\WINDOWS\system32\msshavmsg.dll
2013-12-06 23:19 - 2008-04-13 23:09 - 00689152 ____N (Microsoft Corporation) C:\WINDOWS\system32\xpsp3res.dll
2013-12-06 23:19 - 2008-04-13 22:58 - 00184959 ____C C:\WINDOWS\system32\dllcache\compact.wmz
2013-12-06 23:19 - 2008-04-13 22:58 - 00066725 ____C C:\WINDOWS\system32\dllcache\revert.wmz
2013-12-06 23:19 - 2008-04-13 22:57 - 00079872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6r.dll
2013-12-06 23:19 - 2007-06-26 11:30 - 00572557 ____C C:\WINDOWS\system32\dllcache\rtuner.wmv
2013-12-06 23:19 - 2007-06-26 11:30 - 00457607 ____C C:\WINDOWS\system32\dllcache\mdlib.wmv
2013-12-06 23:19 - 2007-06-26 11:30 - 00381425 ____C C:\WINDOWS\system32\dllcache\copycd.wmv
2013-12-06 23:19 - 2007-06-26 11:30 - 00375519 ____C C:\WINDOWS\system32\dllcache\nuskin.wmv
2013-12-06 23:19 - 2007-06-26 11:30 - 00354468 ____C C:\WINDOWS\system32\dllcache\wmpaud1.wav
2013-12-06 23:19 - 2007-06-26 11:30 - 00343204 ____C C:\WINDOWS\system32\dllcache\wmpaud7.wav
2013-12-06 23:19 - 2007-06-26 11:30 - 00343204 ____C C:\WINDOWS\system32\dllcache\wmpaud6.wav
2013-12-06 23:19 - 2007-06-26 11:30 - 00300969 ____C C:\WINDOWS\system32\dllcache\viz.wmv
2013-12-06 23:19 - 2007-06-26 11:30 - 00172196 ____C C:\WINDOWS\system32\dllcache\wmpaud9.wav
2013-12-06 23:19 - 2007-06-26 11:30 - 00172196 ____C C:\WINDOWS\system32\dllcache\wmpaud8.wav
2013-12-06 23:19 - 2007-06-26 11:30 - 00172196 ____C C:\WINDOWS\system32\dllcache\wmpaud3.wav
2013-12-06 23:19 - 2007-06-26 11:30 - 00086196 ____C C:\WINDOWS\system32\dllcache\wmpaud5.wav
2013-12-06 23:19 - 2007-06-26 11:30 - 00086180 ____C C:\WINDOWS\system32\dllcache\wmpaud4.wav
2013-12-06 23:19 - 2007-06-26 11:30 - 00086180 ____C C:\WINDOWS\system32\dllcache\wmpaud2.wav
2013-12-06 23:19 - 2007-06-26 11:30 - 00022060 ____C C:\WINDOWS\system32\dllcache\npds.zip
2013-12-06 23:19 - 2007-06-26 11:30 - 00010457 ____C C:\WINDOWS\system32\dllcache\wmptour.hta
2013-12-06 23:19 - 2007-06-26 11:30 - 00009585 ____C C:\WINDOWS\system32\dllcache\controls.css
2013-12-06 23:19 - 2007-06-26 11:30 - 00008298 ____C C:\WINDOWS\system32\dllcache\contents.htm
2013-12-06 23:19 - 2007-06-26 11:30 - 00006878 ____C C:\WINDOWS\system32\dllcache\controls.js
2013-12-06 23:19 - 2007-06-26 11:30 - 00005971 ____C C:\WINDOWS\system32\dllcache\events.js
2013-12-06 23:19 - 2007-06-26 11:30 - 00003187 ____C C:\WINDOWS\system32\dllcache\tour.js
2013-12-06 23:19 - 2007-06-26 11:30 - 00001771 ____C C:\WINDOWS\system32\dllcache\wmptour.css
2013-12-06 23:19 - 2007-06-26 11:30 - 00001148 ____C C:\WINDOWS\system32\dllcache\snd.htm
2013-12-06 23:19 - 2007-06-26 11:30 - 00000420 ____C C:\WINDOWS\system32\dllcache\wmploc.js
2013-12-06 23:19 - 2007-06-26 11:29 - 00097117 ____C C:\WINDOWS\system32\dllcache\mplayer2.hlp
2013-12-06 23:19 - 2007-06-26 11:29 - 00001885 ____C C:\WINDOWS\system32\dllcache\mplayer2.cnt
2013-12-06 23:19 - 2007-06-26 11:28 - 00613334 ____C C:\WINDOWS\system32\dllcache\wmplayer.chm
2013-12-06 23:19 - 2007-06-26 11:28 - 00067374 ____C C:\WINDOWS\system32\dllcache\wmplayer.adm
2013-12-06 23:19 - 2007-06-26 11:26 - 00077307 ____C C:\WINDOWS\system32\dllcache\plyr_err.chm
2013-12-06 23:19 - 2007-06-26 11:26 - 00001477 ____C C:\WINDOWS\system32\dllcache\plylst6.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00001477 ____C C:\WINDOWS\system32\dllcache\plylst5.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00001474 ____C C:\WINDOWS\system32\dllcache\plylst3.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00001451 ____C C:\WINDOWS\system32\dllcache\plylst12.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00001448 ____C C:\WINDOWS\system32\dllcache\plylst4.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00001250 ____C C:\WINDOWS\system32\dllcache\plylst1.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00001049 ____C C:\WINDOWS\system32\dllcache\plylst2.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00001046 ____C C:\WINDOWS\system32\dllcache\plylst7.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00001036 ____C C:\WINDOWS\system32\dllcache\plylst8.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00000789 ____C C:\WINDOWS\system32\dllcache\plylst11.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00000787 ____C C:\WINDOWS\system32\dllcache\plylst10.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00000784 ____C C:\WINDOWS\system32\dllcache\plylst9.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00000783 ____C C:\WINDOWS\system32\dllcache\plylst13.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00000775 ____C C:\WINDOWS\system32\dllcache\plylst14.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00000733 ____C C:\WINDOWS\system32\dllcache\plylst15.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00000403 ____C C:\WINDOWS\system32\dllcache\npdrmv2.zip
2013-12-06 23:19 - 2007-04-02 23:21 - 00023195 ____C C:\WINDOWS\system32\dllcache\wmplay.chm
2013-12-06 23:15 - 2013-12-06 23:19 - 00000000 ____D C:\WINDOWS\ServicePackFiles
2013-12-06 23:14 - 2008-04-14 05:42 - 00294912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dlimport.exe
2013-12-06 23:11 - 2008-04-14 05:42 - 00003901 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\siint5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00025471 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\atv04nt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00021183 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\atv01nt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00017279 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\atv10nt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00015423 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\ch7xxnt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00014143 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\atv06nt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00011359 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\atv02nt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00004255 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv01nt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00003967 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv02nt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00003775 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv11nt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00003711 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv09nt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00003647 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv07nt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00003615 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv05nt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00003135 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv08nt5.dll
2013-12-06 23:11 - 2008-04-14 00:21 - 00101120 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2013-12-06 23:11 - 2008-04-14 00:16 - 00273024 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2013-12-06 23:11 - 2008-04-14 00:16 - 00059136 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2013-12-06 23:11 - 2008-04-14 00:16 - 00037888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthmodem.sys
2013-12-06 23:11 - 2008-04-14 00:16 - 00036480 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthprint.sys
2013-12-06 23:11 - 2008-04-14 00:16 - 00025600 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2013-12-06 23:11 - 2008-04-14 00:16 - 00018944 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthusb.sys
2013-12-06 23:11 - 2008-04-14 00:16 - 00017024 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2013-12-06 23:11 - 2008-04-14 00:15 - 00019200 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidir.sys
2013-12-06 23:11 - 2008-04-14 00:13 - 00012672 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mutohpen.sys
2013-12-06 23:11 - 2008-04-14 00:10 - 00010240 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sffp_mmc.sys
2013-12-06 23:11 - 2008-04-14 00:06 - 00046464 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\gagp30kx.sys
2013-12-06 23:11 - 2008-04-14 00:06 - 00044928 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agpcpq.sys
2013-12-06 23:11 - 2008-04-14 00:06 - 00044672 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uagp35.sys
2013-12-06 23:11 - 2008-04-14 00:06 - 00043008 ____N (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdagp.sys
2013-12-06 23:11 - 2008-04-14 00:06 - 00042752 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\alim1541.sys
2013-12-06 23:11 - 2008-04-14 00:06 - 00042368 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agp440.sys
2013-12-06 23:11 - 2008-04-14 00:06 - 00040960 ____N (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\Drivers\sisagp.sys
2013-12-06 23:11 - 2008-04-14 00:06 - 00005888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\smbali.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 01309184 ____N (Smart Link) C:\WINDOWS\system32\Drivers\mtlstrm.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 01041536 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfdpsp2.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 00685056 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfcxts2.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 00404990 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slntamr.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 00220032 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfbs2s2.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 00180360 ____N (Smart Link) C:\WINDOWS\system32\Drivers\ntmtlfax.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 00129535 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slnt7554.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 00126686 ____N (Smart Link) C:\WINDOWS\system32\Drivers\mtlmnt5.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 00095424 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slnthal.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 00013776 ____N (Smart Link) C:\WINDOWS\system32\Drivers\recagent.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 00013240 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slwdmsup.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 00011868 ____N (Conexant) C:\WINDOWS\system32\Drivers\mdmxsdk.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 01897408 ____N (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nv4_mini.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00701440 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati2mtag.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00452736 ____N (Matrox Graphics Inc.) C:\WINDOWS\system32\Drivers\mtxparhm.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00327040 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati2mtaa.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00166912 ____N (S3 Graphics, Inc.) C:\WINDOWS\system32\Drivers\s3gnbm.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00104960 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinrvxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00073216 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atintuxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00063663 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1rvxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00063488 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinxsxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00057856 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinbtxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00056623 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1btxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00052224 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinraxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00036463 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1tuxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00034735 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1xsxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00031744 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinxbxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00030671 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1raxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00029455 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1xbxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00028672 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinsnxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00026367 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1snxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00021343 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1ttxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00014336 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinpdxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00013824 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinttxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00013824 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinmdxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00012047 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1pdxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00011615 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1mdxx.sys
2013-12-06 23:11 - 2007-04-02 21:36 - 00129045 ____N C:\WINDOWS\system32\Drivers\cxthsfs2.cty
2013-12-06 23:11 - 2006-12-29 20:21 - 00064352 ____N C:\WINDOWS\system32\Drivers\ativmc20.cod
2013-12-06 23:11 - 2006-12-29 20:02 - 00067866 ____N C:\WINDOWS\system32\Drivers\netwlan5.img
2013-12-06 23:10 - 2008-04-14 05:42 - 00011325 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\vchnt5.dll
2013-12-06 23:10 - 2008-04-14 00:16 - 00121984 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2013-12-06 23:10 - 2008-04-14 00:13 - 00014208 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wacompen.sys
2013-12-06 23:10 - 2008-04-14 00:06 - 00042240 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\viaagp.sys
2013-12-06 23:10 - 2008-04-13 22:04 - 00025471 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\watv10nt.sys
2013-12-06 23:10 - 2008-04-13 22:04 - 00022271 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\watv06nt.sys
2013-12-06 23:10 - 2008-04-13 22:04 - 00011935 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\wadv11nt.sys
2013-12-06 23:10 - 2008-04-13 22:04 - 00011871 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\wadv09nt.sys
2013-12-06 23:10 - 2008-04-13 22:04 - 00011807 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\wadv07nt.sys
2013-12-06 23:10 - 2008-04-13 22:04 - 00011295 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\wadv08nt.sys
2013-12-06 23:08 - 2006-12-29 00:31 - 00019569 _____ C:\WINDOWS\003075_.tmp
2013-12-06 23:03 - 2013-12-06 23:08 - 00000000 __HDC C:\WINDOWS\$NtServicePackUninstall$
2013-12-06 22:59 - 2013-12-08 06:26 - 00044625 _____ C:\WINDOWS\setupapi.log
2013-12-06 22:50 - 2013-12-06 22:50 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Sp-3 update
2013-12-06 22:46 - 2013-12-06 22:46 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\Optimizer Pro
2013-12-06 22:41 - 2013-12-06 22:41 - 00000000 ____D C:\Program Files\7-Zip
2013-12-06 22:41 - 2013-12-06 22:41 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\7-Zip
2013-12-06 22:41 - 2013-12-06 22:41 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Updater
2013-12-06 22:41 - 2013-12-06 22:41 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\TubeDimmer
2013-12-06 22:41 - 2013-12-06 22:41 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\RHelpers
2013-12-06 22:41 - 2013-12-06 22:41 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Real
2013-12-06 22:40 - 2013-12-09 17:40 - 00000358 _____ C:\WINDOWS\Tasks\TidyNetwork Update.job
2013-12-06 22:40 - 2013-12-09 09:52 - 00000000 ____D C:\Documents and Settings\Glenn\Application Data\MyWordTool
2013-12-06 22:40 - 2013-12-06 22:40 - 00000000 ____D C:\Documents and Settings\Glenn\Start Menu\Programs\MyWordTool
2013-12-06 22:40 - 2013-12-06 22:40 - 00000000 ____D C:\Documents and Settings\Glenn\Local Settings\Application Data\TidyNetwork
2013-12-06 22:36 - 2013-12-06 22:36 - 00000000 __SHD C:\Documents and Settings\NetworkService\IETldCache
2013-12-06 22:35 - 2013-12-06 22:35 - 00000000 __SHD C:\Documents and Settings\Glenn\IETldCache
2013-12-06 22:31 - 2013-12-06 23:19 - 00124343 _____ C:\WINDOWS\updspapi.log
2013-12-06 22:31 - 2013-12-06 22:34 - 00065536 _____ C:\WINDOWS\system32\config\Internet.evt
2013-12-06 22:30 - 2013-12-06 22:31 - 00000000 __HDC C:\WINDOWS\ie8
2013-12-06 22:29 - 2013-12-06 22:32 - 00066792 _____ C:\WINDOWS\ie8.log
2013-12-06 22:26 - 2013-12-06 22:32 - 00031768 _____ C:\WINDOWS\ie8_main.log
2013-12-06 22:06 - 2013-12-06 22:06 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB884020$
2013-12-06 19:13 - 2013-12-06 19:13 - 00000000 ____D C:\Documents and Settings\Glenn\Local Settings\Application Data\IAC
2013-12-06 16:55 - 2013-12-06 23:26 - 00517660 _____ C:\WINDOWS\svcpack.log
2013-12-06 16:07 - 2013-12-06 16:38 - 00000100 _____ C:\Documents and Settings\Glenn\Desktop\Microsoft Fix it.url
2013-12-04 22:00 - 2013-12-06 15:12 - 00002329 _____ C:\Documents and Settings\All Users\Desktop\SeaTools for Windows.lnk
2013-12-04 21:53 - 2013-12-04 21:53 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Microsoft Malicious Software Detector
2013-12-04 21:46 - 2013-11-07 15:50 - 80340640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-12-04 13:48 - 2013-12-04 13:48 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Over Weight Isuzu Brake Job
2013-12-03 05:36 - 2004-11-09 00:31 - 00000013 _____ C:\WINDOWS\system32\Drivers\verfile.tic
2013-12-03 05:36 - 2004-10-15 09:20 - 01654784 _____ (Intel Corporation) C:\WINDOWS\system32\W29MLRES.DLL
2013-12-02 06:22 - 2013-12-02 06:27 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Wordpress dtrBlog Pics
2013-12-01 13:41 - 2013-12-01 13:50 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\DTRBlog Pics
2013-12-01 10:55 - 2013-12-01 10:56 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Pics Downloaded from Olympus Cam
2013-12-01 10:55 - 2013-12-01 10:55 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Pics downloaded from cool pix
2013-12-01 10:55 - 2013-12-01 10:55 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Ojitto Creek Property Google Satilite Images
2013-11-24 08:33 - 2013-11-24 08:33 - 00000000 ____D C:\Program Files\MSECache
2013-11-22 05:37 - 2013-11-22 05:37 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Kennedy Meadows 173ea.Pics From June 24 2012
2013-11-22 05:36 - 2013-11-22 05:36 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Laura & Dave Miron Band
2013-11-17 11:44 - 2013-11-17 11:44 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\NeroVision
2013-11-17 11:39 - 2013-11-17 11:39 - 00004296 _____ C:\Documents and Settings\Glenn\My Documents\Lauras Cheer Video.nrv
2013-11-16 02:53 - 2013-11-17 06:10 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-16 02:28 - 2013-11-16 02:29 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Lauras Cheerleed Video
2013-11-16 01:38 - 2013-11-16 02:33 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Phone Pics from 2013 Costilla,Co
==================== One Month Modified Files and Folders =======
2013-12-09 20:12 - 2013-12-09 20:12 - 00017178 _____ C:\Documents and Settings\Glenn\Desktop\FRST.txt
2013-12-09 20:08 - 2012-07-25 10:44 - 00327434 _____ C:\WINDOWS\WindowsUpdate.log
2013-12-09 18:34 - 2013-06-09 11:07 - 00000884 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-09 17:40 - 2013-12-06 22:40 - 00000358 _____ C:\WINDOWS\Tasks\TidyNetwork Update.job
2013-12-09 17:22 - 2012-09-23 17:30 - 00000000 ____D C:\Documents and Settings\Glenn\.gstreamer-0.10
2013-12-09 17:22 - 2012-09-23 17:24 - 00000000 ____D C:\Documents and Settings\Glenn\Application Data\MotoCast
2013-12-09 17:21 - 2012-09-22 19:23 - 00000412 _____ C:\WINDOWS\Tasks\Symantec NetDetect.job
2013-12-09 17:20 - 2012-07-25 03:14 - 00000159 _____ C:\WINDOWS\wiadebug.log
2013-12-09 17:20 - 2012-07-25 03:14 - 00000049 _____ C:\WINDOWS\wiaservc.log
2013-12-09 17:18 - 2013-06-09 11:07 - 00000880 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-09 17:18 - 2012-07-25 10:49 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-12-09 17:07 - 2013-12-09 17:07 - 00000000 ____D C:\FRST
2013-12-09 17:06 - 2013-12-09 17:07 - 01060641 _____ (Farbar) C:\Documents and Settings\Glenn\Desktop\FRST(1).exe
2013-12-09 16:19 - 2012-07-25 10:57 - 00000278 ___SH C:\Documents and Settings\Glenn\ntuser.ini
2013-12-09 10:44 - 2012-07-25 10:49 - 00032510 _____ C:\WINDOWS\SchedLgU.Txt
2013-12-09 09:52 - 2013-12-06 22:40 - 00000000 ____D C:\Documents and Settings\Glenn\Application Data\MyWordTool
2013-12-09 09:29 - 2012-07-25 03:10 - 00326704 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-12-09 07:16 - 2012-07-25 11:58 - 00071968 _____ C:\Documents and Settings\Glenn\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2013-12-09 07:14 - 2012-09-24 04:36 - 00000000 ____D C:\Program Files\Microsoft.NET
2013-12-09 07:14 - 2012-09-24 04:36 - 00000000 ____D C:\Program Files\Microsoft Office
2013-12-09 07:14 - 2012-07-25 03:11 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-12-09 07:13 - 2012-07-25 10:42 - 00000000 ____D C:\Program Files\Common Files\System
2013-12-09 07:12 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\Help
2013-12-09 07:12 - 2004-08-03 17:07 - 00000512 _____ C:\WINDOWS\win.ini
2013-12-08 21:05 - 2013-12-08 21:05 - 00002340 _____ C:\Documents and Settings\Glenn\10000000_.ppt
2013-12-08 21:05 - 2012-07-25 10:57 - 00000000 ____D C:\Documents and Settings\Glenn
2013-12-08 20:02 - 2013-12-08 20:02 - 00000548 _____ C:\WINDOWS\Tasks\Norton AntiVirus - Scan my computer.job
2013-12-08 20:01 - 2012-09-22 19:15 - 00000000 ____D C:\Documents and Settings\Glenn\Application Data\Symantec
2013-12-08 19:57 - 2012-09-22 19:15 - 00000000 ____D C:\Program Files\Norton SystemWorks
2013-12-08 19:54 - 2013-12-08 19:52 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\Programs List on Laptop
2013-12-08 19:47 - 2004-08-03 17:07 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2013-12-08 19:43 - 2013-12-08 19:43 - 00000000 ____D C:\WINDOWS\system32\System
2013-12-08 19:43 - 2013-12-08 19:39 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Norton SystemWorks
2013-12-08 19:43 - 2012-07-25 11:07 - 00000000 ____D C:\Program Files\Common Files\Symantec Shared
2013-12-08 19:43 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\system
2013-12-08 19:42 - 2013-12-08 19:42 - 00004368 _____ C:\WINDOWS\SYMEVENT.LOG
2013-12-08 19:42 - 2012-09-22 19:15 - 00000000 ____D C:\Program Files\Symantec
2013-12-08 19:41 - 2012-09-22 19:15 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Symantec
2013-12-08 19:40 - 2013-12-08 19:40 - 00000308 _____ C:\WINDOWS\Tasks\Symantec Drmc.job
2013-12-08 19:39 - 2013-12-08 19:39 - 00002397 _____ C:\WINDOWS\system32\Drivers\symlcbrd.sys
2013-12-08 19:39 - 2013-12-08 19:39 - 00001563 _____ C:\Documents and Settings\All Users\Start Menu\Norton SystemWorks.lnk
2013-12-08 19:39 - 2013-12-08 19:39 - 00001563 _____ C:\Documents and Settings\All Users\Desktop\Norton SystemWorks.lnk
2013-12-08 19:39 - 2013-12-08 19:39 - 00000280 _____ C:\WINDOWS\Tasks\Norton SystemWorks One Button Checkup.job
2013-12-08 18:45 - 2013-12-08 18:44 - 00011936 _____ C:\WINDOWS\WINNT32.LOG
2013-12-08 18:44 - 2013-12-08 18:44 - 00000730 _____ C:\WINDOWS\UPGRADE.TXT
2013-12-08 18:44 - 2013-12-08 18:44 - 00000178 _____ C:\WINDOWS\DHCPUPG.LOG
2013-12-08 18:44 - 2012-07-25 03:10 - 00171166 _____ C:\WINDOWS\setupact.log
2013-12-08 18:40 - 2012-07-25 11:25 - 00000792 _____ C:\WINDOWS\chipset.log
2013-12-08 15:38 - 2013-12-08 15:38 - 00000000 ____D C:\NBRT
2013-12-08 14:38 - 2013-12-08 06:15 - 00000000 ____D C:\Program Files\Lavasoft
2013-12-08 06:43 - 2013-12-08 06:43 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\BitDefender
2013-12-08 06:31 - 2013-12-08 06:31 - 00000000 ____D C:\Documents and Settings\Glenn\Application Data\Lavasoft
2013-12-08 06:26 - 2013-12-06 22:59 - 00044625 _____ C:\WINDOWS\setupapi.log
2013-12-08 06:21 - 2013-12-08 06:21 - 00001050 _____ C:\Documents and Settings\All Users\Desktop\Ad-Aware Antivirus.lnk
2013-12-08 06:21 - 2013-12-08 06:21 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Ad-Aware Antivirus
2013-12-08 06:12 - 2013-12-08 06:11 - 00008876 _____ C:\WINDOWS\KB942288-v3.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00094800 _____ C:\WINDOWS\iis6.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00061003 _____ C:\WINDOWS\FaxSetup.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00038089 _____ C:\WINDOWS\ocgen.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00032118 _____ C:\WINDOWS\comsetup.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00031813 _____ C:\WINDOWS\tsoc.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00025096 _____ C:\WINDOWS\msmqinst.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00017485 _____ C:\WINDOWS\ntdtcsetup.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00011128 _____ C:\WINDOWS\netfxocm.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00005430 _____ C:\WINDOWS\MedCtrOC.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00003896 _____ C:\WINDOWS\tabletoc.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00003440 _____ C:\WINDOWS\ocmsn.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00003187 _____ C:\WINDOWS\msgsocm.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00001374 _____ C:\WINDOWS\imsins.log
2013-12-08 06:12 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\system32\mui
2013-12-08 06:11 - 2013-12-08 06:11 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB942288-v3$
2013-12-08 06:11 - 2013-12-08 06:11 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Lavasoft
2013-12-07 20:32 - 2013-12-07 20:32 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2013-12-07 20:32 - 2013-12-07 20:32 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2013-12-07 20:32 - 2012-10-03 12:37 - 00000000 ____D C:\Documents and Settings\Glenn\Local Settings\Application Data\Adobe
2013-12-07 20:23 - 2013-12-07 20:23 - 00000000 __SHD C:\Documents and Settings\Glenn\IECompatCache
2013-12-07 20:19 - 2013-12-07 20:19 - 00000000 __SHD C:\Documents and Settings\Glenn\PrivacIE
2013-12-07 16:53 - 2013-06-09 10:46 - 00001692 _____ C:\Documents and Settings\Glenn\Desktop\BlueVoda Website Builder.lnk
2013-12-07 16:53 - 2013-06-09 10:46 - 00001683 _____ C:\Documents and Settings\Glenn\Desktop\Hosting.lnk
2013-12-07 16:53 - 2013-06-09 10:46 - 00000000 ____D C:\Program Files\BlueVoda Website Builder
2013-12-07 16:53 - 2013-06-09 10:46 - 00000000 ____D C:\Documents and Settings\Glenn\Start Menu\Programs\BlueVoda Website Builder
2013-12-07 16:09 - 2012-10-03 12:33 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Adobe
2013-12-07 14:59 - 2012-09-23 17:30 - 00000436 _____ C:\WINDOWS\Tasks\MotoCast Update.job
2013-12-07 14:57 - 2013-07-06 13:57 - 00000462 _____ C:\WINDOWS\Tasks\Motorola Device Manager Engine.job
2013-12-07 10:22 - 2013-12-07 10:22 - 00000000 ____D C:\Documents and Settings\Glenn\Application Data\Help
2013-12-06 23:40 - 2013-06-15 11:38 - 00078754 _____ C:\WINDOWS\spupdsvc.log
2013-12-06 23:40 - 2012-07-25 10:45 - 00316640 _____ C:\WINDOWS\WMSysPr9.prx
2013-12-06 23:40 - 2012-07-25 10:41 - 00050701 _____ C:\WINDOWS\wmsetup.log
2013-12-06 23:39 - 2012-07-25 03:11 - 00605412 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-12-06 23:38 - 2012-07-25 10:57 - 00000792 _____ C:\Documents and Settings\Glenn\Start Menu\Programs\Windows Media Player.lnk
2013-12-06 23:38 - 2012-07-25 10:57 - 00000738 _____ C:\Documents and Settings\Glenn\Start Menu\Programs\Outlook Express.lnk
2013-12-06 23:38 - 2012-07-25 10:41 - 00000359 _____ C:\WINDOWS\DtcInstall.log
2013-12-06 23:37 - 2013-12-06 23:37 - 00000187 _____ C:\WINDOWS\spupdsvc.log.1.log
2013-12-06 23:37 - 2013-12-06 23:37 - 00000090 _____ C:\WINDOWS\system32\spupdwxp.log
2013-12-06 23:35 - 2012-07-25 10:41 - 00000000 ____D C:\Program Files\Messenger
2013-12-06 23:26 - 2013-12-06 16:55 - 00517660 _____ C:\WINDOWS\svcpack.log
2013-12-06 23:26 - 2012-07-25 03:11 - 00002675 _____ C:\WINDOWS\imsins.BAK
2013-12-06 23:23 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\security
2013-12-06 23:20 - 2012-07-25 10:45 - 00001563 _____ C:\Documents and Settings\All Users\Start Menu\Set Program Access and Defaults.lnk
2013-12-06 23:20 - 2012-07-25 10:42 - 00001281 _____ C:\WINDOWS\sessmgr.setup.log
2013-12-06 23:20 - 2012-07-25 10:31 - 00000400 _____ C:\WINDOWS\cmsetacl.log
2013-12-06 23:20 - 2012-07-25 10:31 - 00000000 ___RD C:\Documents and Settings\All Users\Start Menu\Programs\Accessories
2013-12-06 23:19 - 2013-12-06 23:19 - 00000000 ____D C:\WINDOWS\system32\scripting
2013-12-06 23:19 - 2013-12-06 23:19 - 00000000 ____D C:\WINDOWS\system32\bits
2013-12-06 23:19 - 2013-12-06 23:19 - 00000000 ____D C:\WINDOWS\l2schemas
2013-12-06 23:19 - 2013-12-06 23:15 - 00000000 ____D C:\WINDOWS\ServicePackFiles
2013-12-06 23:19 - 2013-12-06 22:31 - 00124343 _____ C:\WINDOWS\updspapi.log
2013-12-06 23:19 - 2012-07-25 10:42 - 00000000 ____D C:\Program Files\Movie Maker
2013-12-06 23:19 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\system32\usmt
2013-12-06 23:19 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2013-12-06 23:19 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\PeerNet
2013-12-06 23:19 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\ime
2013-12-06 23:15 - 2012-07-25 10:42 - 00000000 ____D C:\WINDOWS\system32\Restore
2013-12-06 23:15 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\system32\npp
2013-12-06 23:15 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\mui
2013-12-06 23:14 - 2012-07-25 10:43 - 00000000 ____D C:\WINDOWS\srchasst
2013-12-06 23:14 - 2012-07-25 10:42 - 00000000 ____D C:\Program Files\Outlook Express
2013-12-06 23:14 - 2012-07-25 10:42 - 00000000 ____D C:\Program Files\NetMeeting
2013-12-06 23:14 - 2012-07-25 10:40 - 00000000 ____D C:\WINDOWS\system32\Com
2013-12-06 23:14 - 2012-07-25 10:40 - 00000000 ____D C:\Program Files\Windows NT
2013-12-06 23:14 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\msagent
2013-12-06 23:10 - 2004-08-03 17:07 - 00250048 __RSH C:\ntldr
2013-12-06 23:08 - 2013-12-06 23:03 - 00000000 __HDC C:\WINDOWS\$NtServicePackUninstall$
2013-12-06 23:08 - 2012-07-25 11:25 - 00000000 ____D C:\WINDOWS\system32\ReinstallBackups
2013-12-06 22:50 - 2013-12-06 22:50 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Sp-3 update
2013-12-06 22:46 - 2013-12-06 22:46 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\Optimizer Pro
2013-12-06 22:41 - 2013-12-06 22:41 - 00000000 ____D C:\Program Files\7-Zip
2013-12-06 22:41 - 2013-12-06 22:41 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\7-Zip
2013-12-06 22:41 - 2013-12-06 22:41 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Updater
2013-12-06 22:41 - 2013-12-06 22:41 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\TubeDimmer
2013-12-06 22:41 - 2013-12-06 22:41 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\RHelpers
2013-12-06 22:41 - 2013-12-06 22:41 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Real
2013-12-06 22:40 - 2013-12-06 22:40 - 00000000 ____D C:\Documents and Settings\Glenn\Start Menu\Programs\MyWordTool
2013-12-06 22:40 - 2013-12-06 22:40 - 00000000 ____D C:\Documents and Settings\Glenn\Local Settings\Application Data\TidyNetwork
2013-12-06 22:36 - 2013-12-06 22:36 - 00000000 __SHD C:\Documents and Settings\NetworkService\IETldCache
2013-12-06 22:36 - 2012-07-25 10:49 - 00000000 __SHD C:\Documents and Settings\NetworkService
2013-12-06 22:35 - 2013-12-06 22:35 - 00000000 __SHD C:\Documents and Settings\Glenn\IETldCache
2013-12-06 22:35 - 2012-07-25 10:57 - 00000803 _____ C:\Documents and Settings\Glenn\Start Menu\Programs\Internet Explorer.lnk
2013-12-06 22:35 - 2012-07-25 10:57 - 00000000 ___RD C:\Documents and Settings\Glenn\Start Menu\Programs\Accessories
2013-12-06 22:34 - 2013-12-06 22:31 - 00065536 _____ C:\WINDOWS\system32\config\Internet.evt
2013-12-06 22:32 - 2013-12-06 22:29 - 00066792 _____ C:\WINDOWS\ie8.log
2013-12-06 22:32 - 2013-12-06 22:26 - 00031768 _____ C:\WINDOWS\ie8_main.log
2013-12-06 22:31 - 2013-12-06 22:30 - 00000000 __HDC C:\WINDOWS\ie8
2013-12-06 22:31 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\Media
2013-12-06 22:21 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\Resources
2013-12-06 22:06 - 2013-12-06 22:06 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB884020$
2013-12-06 19:13 - 2013-12-06 19:13 - 00000000 ____D C:\Documents and Settings\Glenn\Local Settings\Application Data\IAC
2013-12-06 19:13 - 2013-06-21 12:28 - 00000000 ____D C:\Documents and Settings\Glenn\Application Data\FromDocToPDF_65
2013-12-06 16:38 - 2013-12-06 16:07 - 00000100 _____ C:\Documents and Settings\Glenn\Desktop\Microsoft Fix it.url
2013-12-06 16:09 - 2012-07-25 03:10 - 01408502 _____ C:\WINDOWS\setupapi.log.0.old
2013-12-06 15:12 - 2013-12-04 22:00 - 00002329 _____ C:\Documents and Settings\All Users\Desktop\SeaTools for Windows.lnk
2013-12-04 22:13 - 2012-07-25 11:55 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2013-12-04 22:00 - 2012-09-24 04:08 - 00000000 ____D C:\Program Files\Seagate
2013-12-04 22:00 - 2012-09-24 04:08 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Seagate
2013-12-04 21:53 - 2013-12-04 21:53 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Microsoft Malicious Software Detector
2013-12-04 21:35 - 2013-06-06 08:42 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard
2013-12-04 13:48 - 2013-12-04 13:48 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Over Weight Isuzu Brake Job
2013-12-04 01:59 - 2012-12-01 20:18 - 00002445 _____ C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Streets & Trips 2006.lnk
2013-12-04 01:57 - 2012-07-26 22:15 - 00000423 _____ C:\WINDOWS\Topo.INI
2013-12-03 14:57 - 2013-07-06 13:57 - 00000478 _____ C:\WINDOWS\Tasks\Motorola Device Manager Update.job
2013-12-03 05:38 - 2012-08-02 12:57 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Intel PROSet Wireless
2013-12-03 05:38 - 2012-08-02 12:56 - 00017119 _____ (Meetinghouse Data Communications) C:\WINDOWS\system32\Drivers\AegisP.sys
2013-12-03 05:38 - 2012-07-25 11:42 - 00000308 _____ C:\WINDOWS\system32\results.txt
2013-12-03 05:37 - 2012-07-25 11:41 - 00154192 _____ C:\WINDOWS\SetupWLD.log
2013-12-02 06:30 - 2012-11-13 14:21 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\For Sale Advertising Pics
2013-12-02 06:27 - 2013-12-02 06:22 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Wordpress dtrBlog Pics
2013-12-02 06:21 - 2012-09-24 04:10 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\DTR Logo
2013-12-01 19:51 - 2013-06-15 11:40 - 00829024 _____ C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
2013-12-01 19:38 - 2013-06-16 19:17 - 00000031 _____ C:\WINDOWS\bluevoda.ini
2013-12-01 18:43 - 2012-07-25 11:07 - 00001324 _____ C:\WINDOWS\system32\d3d9caps.dat
2013-12-01 13:50 - 2013-12-01 13:41 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\DTRBlog Pics
2013-12-01 13:44 - 2013-06-15 13:32 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\LogoDesignStudio Pro
2013-12-01 10:56 - 2013-12-01 10:55 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Pics Downloaded from Olympus Cam
2013-12-01 10:56 - 2013-06-23 07:48 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Ulazyu2 35ac. For Sale
2013-12-01 10:56 - 2013-06-15 18:12 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\www.rockymtland.com files
2013-12-01 10:55 - 2013-12-01 10:55 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Pics downloaded from cool pix
2013-12-01 10:55 - 2013-12-01 10:55 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Ojitto Creek Property Google Satilite Images
2013-11-30 16:57 - 2012-09-24 04:09 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\BlueVoda
2013-11-29 16:58 - 2013-06-15 09:54 - 00000116 _____ C:\WINDOWS\NeroDigital.ini
2013-11-24 08:33 - 2013-11-24 08:33 - 00000000 ____D C:\Program Files\MSECache
2013-11-22 05:37 - 2013-11-22 05:37 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Kennedy Meadows 173ea.Pics From June 24 2012
2013-11-22 05:36 - 2013-11-22 05:36 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Laura & Dave Miron Band
2013-11-21 13:02 - 2013-07-04 11:16 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\Rocky Mountain Land LLC
2013-11-21 12:36 - 2012-08-02 08:22 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-11-17 16:18 - 2012-09-24 04:10 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\Kinecta Documents to Send
2013-11-17 16:18 - 2012-09-24 04:10 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\Horse Stuff
2013-11-17 16:18 - 2012-09-24 04:10 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\GE Fleet Services Account Information
2013-11-17 16:18 - 2012-09-24 04:10 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\DTR Flyer Pics
2013-11-17 16:18 - 2012-09-24 04:10 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\DTR Business Licence
2013-11-17 16:18 - 2012-09-24 04:09 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\Colorado Property
2013-11-17 16:17 - 2012-09-24 04:23 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\Water Well Info
2013-11-17 16:17 - 2012-09-24 04:23 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\Sbdo County Code Violations
2013-11-17 16:17 - 2012-09-24 04:23 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\Ojito Creek Off Grid Home
2013-11-17 16:17 - 2012-09-24 04:09 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\Breakdown!_files
2013-11-17 12:30 - 2012-10-07 05:06 - 00000000 ____D C:\Documents and Settings\Glenn\Local Settings\Application Data\Backup Assistant Plus
2013-11-17 11:49 - 2013-06-15 09:54 - 00000145 _____ C:\Documents and Settings\Glenn\default.pls
2013-11-17 11:46 - 2013-06-15 09:54 - 00000000 ____D C:\Documents and Settings\Glenn\Application Data\Ahead
2013-11-17 11:44 - 2013-11-17 11:44 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\NeroVision
2013-11-17 11:39 - 2013-11-17 11:39 - 00004296 _____ C:\Documents and Settings\Glenn\My Documents\Lauras Cheer Video.nrv
2013-11-17 06:10 - 2013-11-16 02:53 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-16 04:53 - 2012-07-26 22:01 - 00000000 ____D C:\TOPO!
2013-11-16 02:33 - 2013-11-16 01:38 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Phone Pics from 2013 Costilla,Co
2013-11-16 02:29 - 2013-11-16 02:28 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Lauras Cheerleed Video
2013-11-12 17:17 - 2012-10-07 05:06 - 00000000 ____D C:\Documents and Settings\Glenn\Application Data\vlc
2013-11-09 20:57 - 2013-07-06 14:24 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Glenns Phone Pics to Edit
Some content of TEMP:
====================
C:\Documents and Settings\Glenn\Local Settings\Temp\d134208a-3464-4b40-a599-a33065047d35.exe
C:\Documents and Settings\Glenn\Local Settings\Temp\d7085b47-9c2d-438b-ada6-49fa369e444d.exe
C:\Documents and Settings\Glenn\Local Settings\Temp\fp_pl_pfs_installer.exe
C:\Documents and Settings\Glenn\Local Settings\Temp\jre-7u25-windows-i586-iftw.exe
C:\Documents and Settings\Glenn\Local Settings\Temp\jre-7u45-windows-i586-iftw.exe
C:\Documents and Settings\Glenn\Local Settings\Temp\jre-7u9-windows-i586-iftw.exe
C:\Documents and Settings\Glenn\Local Settings\Temp\lowproc.exe
C:\Documents and Settings\Glenn\Local Settings\Temp\MotoCastUpdate_2.0031.exe
C:\Documents and Settings\Glenn\Local Settings\Temp\MotoCast_Installer_1.1.53.exe
C:\Documents and Settings\Glenn\Local Settings\Temp\MotoCast_Installer_2.0023.exe
C:\Documents and Settings\Glenn\Local Settings\Temp\SHSetup.exe
C:\Documents and Settings\Glenn\Local Settings\Temp\sqlite-3.6.20-sqlitejdbc.dll
C:\Documents and Settings\Glenn\Local Settings\Temp\stubhelper.dll
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe
[2004-08-03 17:07] - [2008-04-14 05:42] - 0108544 ____A (Microsoft Corporation) 0e776ed5f7cc9f94299e70461b7b8185
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== End Of Log ============================Next: ================= Addition.txt =============================
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 09-12-2013
Ran by Glenn at 2013-12-09 20:14:51
Running from C:\Documents and Settings\Glenn\Desktop
Boot Mode: Safe Mode (minimal)
==========================================================
==================== Security Center ========================
AV: Ad-Aware Antivirus (Disabled - Up to date) {22CB8761-914A-11CF-B705-00AA0062CBB7}
FW: Ad-Aware Firewall (Disabled) {9211320F-6C40-4035-BBDE-3C96ED504F33}
==================== Installed Programs ======================
7-Zip 4.65
AdAwareInstaller (Version: 11.0.4555.0)
Adobe AIR (Version: 3.7.0.2090)
Adobe Flash Player 11 Plugin (Version: 11.9.900.152)
Adobe Reader X (10.1.8) (Version: 10.1.8)
AntimalwareEngine (Version: 2.6.0.0)
AntispamEngine (Version: 2.2.3.0)
Apple Application Support (Version: 2.1.7)
Apple Software Update (Version: 2.1.3.127)
Back Roads Explorer Data Pack (Version: 1.00.0000)
Backup Assistant Plus
BlueVoda Website Builder 14 (Version: 14)
CC_ccStart (Version: 2.0.0.635)
ccCommon (Version: 2.0.0.635)
Compatibility Pack for the 2007 Office system (Version: 12.0.6514.5001)
CutePDF Writer 2.9 (Version: 2.9)
ffdshow [rev 2527] [2008-12-19] (Version: 1.0)
FirewallEngine (Version: 1.6.0.0)
FontManagementSystem (Version: 4.3.0)
FromDocToPDF Internet Explorer Toolbar
GeoSetter 3.4.16
Google Earth (Version: 7.1.1.1888)
Google Update Helper (Version: 1.3.22.3)
HDS Utility
High Definition Audio Driver Package - KB835221 (Version: 20040219.000000)
HP Officejet Pro 8600 Basic Device Software (Version: 25.0.619.0)
HP Officejet Pro 8600 Help (Version: 140.0.2.2)
HP Update (Version: 5.003.000.004)
I.R.I.S. OCR (Version: 12.3.4.0)
Intel® Graphics Media Accelerator Driver for Mobile
Intel® PROSet/Wireless Software
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
JavaFX 2.0.3 (Version: 2.0.3)
Keyboard Manager Utility (Version: 1.04.0000)
LightScribe 1.4.44.1 (Version: 1.4.44.1)
LiveReg (Symantec Corporation) (Version: 2.4.1.2056)
LiveUpdate 1.90 (Symantec Corporation) (Version: 1.90.15.0)
Logo Design Studio Pro (Version: 1.5)
mCore (Version: 1.23.0000)
mDriver (Version: 1.23.0000)
mDrWiFi (Version: 1.23.0000)
mEoU.msi (Version: 1.23.0000)
mHelp (Version: 1.23.0000)
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Streets & Trips 2006 (Version: 13.00.09.0200)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
mIWA (Version: 1.23.0000)
mIWCA (Version: 1.23.0000)
mLogView (Version: 1.23.0000)
mMHouse (Version: 1.23.0000)
MotoCast (Version: 2.0.31)
Motorola Device Manager (Version: 2.2.35)
Motorola Device Software Update (Version: 1.0.41)
MOTOROLA MEDIA LINK (Version: 1.9.0002.0)
Motorola Mobile Drivers Installation 5.9.0 (Version: 5.9.0)
Motorola SM56 Data Fax Modem
Mozilla Firefox 25.0.1 (x86 en-US) (Version: 25.0.1)
Mozilla Maintenance Service (Version: 25.0.1)
mPfMgr (Version: 1.23.0000)
mPfWiz (Version: 1.23.0000)
mProSafe (Version: 9.00.0000)
MSRedist (Version: 1.0.0.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
MSXML 6.0 Parser (Version: 6.10.1129.0)
mWlsSafe (Version: 9.00.0000)
mXML (Version: 1.23.0000)
MyWordTool (HKCU Version: 1)
mZConfig (Version: 1.23.0000)
Nero Suite
Norton AntiVirus (Version: 10.00.00)
Norton AntiVirus Parent MSI (Version: 10.0.0)
Norton CleanSweep (Version: 1.0.0)
Norton Password Manager (Version: 1.00.00)
Norton SystemWorks 2004 (Symantec Corporation) (Version: 7.00.00)
Norton SystemWorks 2004 (Version: 7.00.00)
Norton Utilities (Version: 16.0.0)
NSW_DRM_COLLECTION (Version: 1.0.0)
office Convert Pdf to Jpg Jpeg Tiff Free 6.5
OnlineThreatsEngine (Version: 2.2.2.0)
Palm Desktop (Version: 4.1.0300)
Palm VersaMail (HKCU Version: 2.61.1100)
Palm VersaMail (Version: 2.61.1100)
QuickBooks Pro 2007 (Version: )
QuickTime (Version: 7.72.80.56)
REALTEK Gigabit and Fast Ethernet NIC Driver (Version: 1.60)
Realtek High Definition Audio Driver
Seagate Manager Installer (Version: 2.01.0048)
SeaTools for Windows (Version: 1.2.0.7)
SupportSoft Assisted Service (Version: 15)
Symantec Script Blocking Installer (Version: 1.0.0)
SymNet (Version: 4.7.1)
Synaptics Pointing Device Driver (Version: 7.11.8.1)
Texas Instruments PCIxx21/x515 drivers. (Version: 1.06.0000)
TidyNetwork
TIxx21/x515 (Version: 1.06.0000)
TOPO! (Version: 03.04.0000)
Tube Dimmer (Version: 2.6.43)
Updater (Version: 2.6.43)
WebFilteringEngine (Version: 2.2.1.0)
WebFldrs XP (Version: 9.50.7523)
Winamp (Version: 5.63 )
Winamp Detector Plug-in (HKCU Version: 1.0.0.1)
Windows Imaging Component (Version: 3.0.0.0)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format Runtime
Windows XP Service Pack 3 (Version: 20080414.031525)
==================== Restore Points =========================
22-11-2013 18:24:41 System Checkpoint
24-11-2013 04:57:32 System Checkpoint
24-11-2013 16:33:28 Installed Compatibility Pack for the 2007 Office system
25-11-2013 16:52:53 System Checkpoint
26-11-2013 17:05:52 System Checkpoint
27-11-2013 17:21:37 System Checkpoint
28-11-2013 18:42:28 System Checkpoint
29-11-2013 22:30:54 System Checkpoint
01-12-2013 04:28:37 System Checkpoint
02-12-2013 04:44:46 System Checkpoint
03-12-2013 15:41:19 System Checkpoint
04-12-2013 19:08:20 System Checkpoint
05-12-2013 06:00:30 Installed SeaTools for Windows
06-12-2013 07:16:21 System Checkpoint
07-12-2013 06:07:00 Installed Windows XP KB884020.
07-12-2013 06:31:22 Installed Windows Internet Explorer 8.
07-12-2013 07:08:39 Installed Windows XP Service Pack 3.
08-12-2013 09:02:33 System Checkpoint
08-12-2013 14:12:03 Installed Windows XP KB942288-v3.
08-12-2013 14:12:30 AA11
08-12-2013 23:20:48 AA11
10-12-2013 04:07:10 System Checkpoint
==================== Hosts content: ==========================
2004-08-03 17:07 - 2004-08-03 17:07 - 00000734 ____N C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\MotoCast Update.job => C:\Program Files\Motorola Mobility\MotoCast\LiveUpdate\MotoCastUpdate.exe
Task: C:\WINDOWS\Tasks\Motorola Device Manager Engine.job => C:\Program Files\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe
Task: C:\WINDOWS\Tasks\Motorola Device Manager Update.job => C:\Program Files\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe
Task: C:\WINDOWS\Tasks\Norton AntiVirus - Scan my computer.job => C:\PROGRA~1\NORTON~1\NORTON~1\Navw32.exe
Task: C:\WINDOWS\Tasks\Norton SystemWorks One Button Checkup.job => C:\Program Files\Norton SystemWorks\OBC.exe
Task: C:\WINDOWS\Tasks\Symantec Drmc.job => C:\Program Files\Common Files\Symantec Shared\SymDrmc.exe
Task: C:\WINDOWS\Tasks\Symantec NetDetect.job => C:\Program Files\Symantec\LiveUpdate\NDETECT.EXE
Task: C:\WINDOWS\Tasks\TidyNetwork Update.job => C:\Documents and Settings\Glenn\Local Settings\Application Data\TidyNetwork\petnupdate.exe
==================== Loaded Modules (whitelisted) =============
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Service => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SYMTDI => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="1"
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (12/09/2013 07:41:21 PM) (Source: Application Hang) (User: )
Description: Hanging application FRST(1).exe, version 3.3.8.1, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
Error: (12/09/2013 05:16:57 PM) (Source: Application Hang) (User: )
Description: Hanging application FRST(1).exe, version 3.3.8.1, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
Error: (12/09/2013 05:16:48 PM) (Source: Application Hang) (User: )
Description: Hanging application FRST(1).exe, version 3.3.8.1, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
Error: (12/09/2013 05:09:32 PM) (Source: Application Hang) (User: )
Description: Hanging application FRST(1).exe, version 3.3.8.1, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
Error: (12/09/2013 05:09:16 PM) (Source: Application Hang) (User: )
Description: Hanging application FRST(1).exe, version 3.3.8.1, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
Error: (12/09/2013 05:09:03 PM) (Source: Application Hang) (User: )
Description: Hanging application FRST(1).exe, version 3.3.8.1, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
Error: (12/09/2013 04:29:37 PM) (Source: Application Hang) (User: )
Description: Hanging application firefox.exe, version 25.0.1.5064, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
Error: (12/09/2013 10:10:36 AM) (Source: Application Hang) (User: )
Description: Hanging application Bu_.exe, version 0.0.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
Error: (12/09/2013 09:58:39 AM) (Source: Application Hang) (User: )
Description: Hanging application Au_.exe, version 0.0.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
Error: (12/08/2013 08:42:07 PM) (Source: Application Hang) (User: )
Description: Hanging application firefox.exe, version 25.0.1.5064, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
System errors:
=============
Error: (12/09/2013 08:12:14 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
AFD
bdftdif
Fips
intelppm
IPSec
MRxSmb
NetBIOS
NetBT
RasAcd
Rdbss
SAVRT
SAVRTPEL
Tcpip
Error: (12/09/2013 08:12:14 PM) (Source: Service Control Manager) (User: )
Description: The SAVScan service depends on the SAVRT service which failed to start because of the following error:
%%31
Error: (12/09/2013 08:12:14 PM) (Source: Service Control Manager) (User: )
Description: The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error:
%%31
Error: (12/09/2013 08:12:14 PM) (Source: Service Control Manager) (User: )
Description: The TCP/IP NetBIOS Helper service depends on the AFD service which failed to start because of the following error:
%%31
Error: (12/09/2013 08:12:14 PM) (Source: Service Control Manager) (User: )
Description: The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error:
%%31
Error: (12/09/2013 08:12:14 PM) (Source: Service Control Manager) (User: )
Description: The DHCP Client service depends on the SYMTDI service which failed to start because of the following error:
%%1068
Error: (12/09/2013 08:12:14 PM) (Source: Service Control Manager) (User: )
Description: The SYMTDI service depends on the TCP/IP Protocol Driver service which failed to start because of the following error:
%%31
Error: (12/09/2013 08:11:46 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}
Error: (12/09/2013 08:11:43 PM) (Source: DCOM) (User: GLENNS610LAPTOP)
Description: DCOM got error "%%1084" attempting to start the service netman with arguments ""
in order to run the server:
{BA126AE5-2166-11D1-B1D0-00805FC1270E}
Error: (12/09/2013 04:30:24 PM) (Source: Service Control Manager) (User: )
Description: The Ad-Aware Service 11 service terminated unexpectedly. It has done this 1 time(s).
Microsoft Office Sessions:
=========================
Error: (12/09/2013 07:41:21 PM) (Source: Application Hang)(User: )
Description: FRST(1).exe3.3.8.1hungapp0.0.0.000000000
Error: (12/09/2013 05:16:57 PM) (Source: Application Hang)(User: )
Description: FRST(1).exe3.3.8.1hungapp0.0.0.000000000
Error: (12/09/2013 05:16:48 PM) (Source: Application Hang)(User: )
Description: FRST(1).exe3.3.8.1hungapp0.0.0.000000000
Error: (12/09/2013 05:09:32 PM) (Source: Application Hang)(User: )
Description: FRST(1).exe3.3.8.1hungapp0.0.0.000000000
Error: (12/09/2013 05:09:16 PM) (Source: Application Hang)(User: )
Description: FRST(1).exe3.3.8.1hungapp0.0.0.000000000
Error: (12/09/2013 05:09:03 PM) (Source: Application Hang)(User: )
Description: FRST(1).exe3.3.8.1hungapp0.0.0.000000000
Error: (12/09/2013 04:29:37 PM) (Source: Application Hang)(User: )
Description: firefox.exe25.0.1.5064hungapp0.0.0.000000000
Error: (12/09/2013 10:10:36 AM) (Source: Application Hang)(User: )
Description: Bu_.exe0.0.0.0hungapp0.0.0.000000000
Error: (12/09/2013 09:58:39 AM) (Source: Application Hang)(User: )
Description: Au_.exe0.0.0.0hungapp0.0.0.000000000
Error: (12/08/2013 08:42:07 PM) (Source: Application Hang)(User: )
Description: firefox.exe25.0.1.5064hungapp0.0.0.000000000
==================== Memory info ===========================
Percentage of memory in use: 13%
Total physical RAM: 2038.42 MB
Available physical RAM: 1759.12 MB
Total Pagefile: 3934.84 MB
Available Pagefile: 3855.14 MB
Total Virtual: 2047.88 MB
Available Virtual: 1964.42 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:55.88 GB) (Free:17.15 GB) NTFS ==>[Drive with boot components (Windows XP)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 56 GB) (Disk ID: 9DC96E9E)
Partition 1: (Active) - (Size=56 GB) - (Type=07 NTFS)
==================== End Of Log ============================My first time looking at something like this, So maybe I can Learn something that will help me fix my desktop computer that seems to have a malware problem to,
Thank you,
dtr
0 -
1. Please, uninstall:
FromDocToPDF Internet Explorer Toolbar due to http://www.systemlookup.com/CLSID/76665-65bar_dll.html
TidyNetwork http://www.systemlookup.com/Startup/25875-tidynetwork009_exe.html
MyWordTool http://www.systemlookup.com/CLSID/80065-temp_dat.html
Tube Dimmer http://www.systemlookup.com/CLSID/78741-Dimmer_YouTube_bho_dll.html
Since the computer isn't protected by an antivirus program that is 10 years old, please also uninstall:
Norton AntiVirus (Version: 10.00.00)
Norton AntiVirus Parent MSI (Version: 10.0.0)Symantec Script Blocking Installer (Version: 1.0.0)
LiveReg (Symantec Corporation) (Version: 2.4.1.2056)
LiveUpdate 1.90 (Symantec Corporation) (Version: 1.90.15.0)and other Symantec/Norton programs that you don't use
Restart the computer.
2. Please, save AdwCleaner by Xplode on the desktop: http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner
Turn off all programs, including browsers.
Double-click on AdwCleaner to start the program.
Click on the Scan button.
Wait until the search has finished.
Click on the Report button.
A report will be displayed, copy its content and paste into your answer.
If the report isn't displayed, it exist as C:\AdwCleaner[R1].txt.0 -
Ok, I was concerned about some of those programs as well.
Keeping on track, I was running Norton 2003 system works when all this went down and upgraded to Norton 2004 and was planning to reinstall my Norton 360 5.0 when I decided instead to down load and try AdAware.
I am aware of the out of date Virus protection problem. "my bad"
But, I read an AdAware 11 review that stated it can be used as a second line of defence, is this to mean it can be installed and co-exist with Norton. Seems like I also remember reading a contradicting remark about a co existing problem. ??
hum! No problem uninstalling Doc to Pdf, TidyNetwork, MywordTool and TubeDimmer, and all the other Norton products, but can I uninstall from Safe Mode if Normal Mode won't work ??. And is AdwCleaner by Xplode a Lavasoft certified & recomended program to repair AdAware files ??.
Thank you so much, I look forward to your thoughts,
dtr
0 -
1. It's possible to install Ad-Aware in compatible mode and it can then be used as an on-demand scanner to get a second opinion. But with an old antivirus program, Ad-Aware will probably not discover that an antivirus program is already installed and you have to select it manually. I can see that Ad-Aware isn't installed in compatible mode at the moment.
2. Sorry, I don't know if the programs can be uninstalled in safe mode. If they can't and you can't run in normal mode, please run AdwCleaner.
AdwCleaner is a program that deletes malicious or unwanted toolbars and other types of add-ons in the browsers. It should delete FromDocToPDF, TidyNetwork, MyWordTool and Tube Dimmer, their uninstallation programs are bad and skip a lot of files and registry entries.
3. To uninstall Ad-Aware when normal mode isn't working:
Please do a clean boot by following the instruction on http://support.microsoft.com/kb/310353/en-us and try to uninstall Ad-Aware. In clean mode fewer services and programs are started, e.g. not antivirus programs, and they can't interfere with the uninstallation.
These Ad-Aware items should be uninstalled:
AdAwareInstaller (Version: 11.0.4555.0)
AntimalwareEngine (Version: 2.6.0.0)
AntispamEngine (Version: 2.2.3.0)FirewallEngine (Version: 1.6.0.0)
Please, restart the computer (hopefully in normal mode) and run FRST again. Post the new FRST.txt to see what's left of Ad-Aware and other programs (Addition.txt isn't needed).
4. Is Norton 360 version 5 the latest version?
It's important to always use the latest version of an antivirus program since every new version contains new and improved features to be able to detect and delete the latest types of malware.
0 -
Ok Got Adwcleaner Saved on desktop, but wouldn't complete scan in normal boot mode, So Rebooted in Safe Mode and
Scan Completed & found report, but not sure if there are any important files to uncheck before Cleaning & delete.
Adwcleaner Report:
# AdwCleaner v3.015 - Report created 11/12/2013 at 08:11:13
# Updated 10/12/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Glenn - GLENNS610LAPTOP
# Running from : C:\Documents and Settings\Glenn\Desktop\AdwCleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\Program Files\Mozilla Firefox\browser\searchplugins\adawaretb.xml
Folder Found : C:\Documents and Settings\Glenn\Application Data\Mozilla\Firefox\Profiles\zppp8v06.default\Extensions\tidynetwork@tidynetwork
Folder Found C:\Documents and Settings\All Users\Application Data\TubeDimmer
Folder Found C:\Documents and Settings\Glenn\Application Data\FromDocToPDF_65
Folder Found C:\Documents and Settings\Glenn\Local Settings\Application Data\iac
Folder Found C:\Documents and Settings\Glenn\Local Settings\Application Data\TidyNetwork
Folder Found C:\Documents and Settings\Glenn\My Documents\optimizer pro
Folder Found C:\Program Files\FromDocToPDF_65
Folder Found C:\WINDOWS\system32\TempDir
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\APN PIP
Key Found : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found : HKCU\Software\DynConIE
Key Found : HKCU\Software\FromDocToPDF_65
Key Found : HKCU\Software\Microsoft\Internet Explorer\MenuExt\&Search
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9A216821-0EC5-49A3-85AC-FB72AE79A1E8}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C66A678D-5E6C-4AF9-8F57-C6192F42CF74}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C66A678D-5E6C-4AF9-8F57-C6192F42CF74}
Key Found : HKCU\Software\PIP
Key Found : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Found : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B}
Key Found : HKLM\Software\FromDocToPDF_65
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9A216821-0EC5-49A3-85AC-FB72AE79A1E8}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\FromDocToPDF_65bar Uninstall Internet Explorer
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B}
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FromDocToPDF_65bar Uninstall Internet Explorer
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Toolbar Cleaner
Key Found : HKLM\Software\PIP
Value Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [updater]
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.6001.18702
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [searchMigratedDefaultName] - Ask Web Search
-\\ Mozilla Firefox v25.0.1 (en-US)
[ File : C:\Documents and Settings\Glenn\Application Data\Mozilla\Firefox\Profiles\zppp8v06.default\prefs.js ]
Line Found : user_pref("extensions.dynconff.cache.securedsearch2.lavasoft.com.content", "<package expire=\"3600\" es=\"914\" pcdids=\"_1520_1674_1164_1524_1146_1169_1348_1482_1493_1521\"><content id=\"MB_P1\">\r\n[...]
Line Found : user_pref("extensions.toolbar.mindspark._65Members_.initialized", true);
Line Found : user_pref("extensions.toolbar.mindspark._65Members_.installation.contextKey", "");
Line Found : user_pref("extensions.toolbar.mindspark._65Members_.installation.installDate", "2013062113");
Line Found : user_pref("extensions.toolbar.mindspark._65Members_.installation.partnerId", "^Y6^xdm003^S05932^us");
Line Found : user_pref("extensions.toolbar.mindspark._65Members_.installation.partnerSubId", "CIDLsob-9bcCFUpyQgodzj8AFQ");
Line Found : user_pref("extensions.toolbar.mindspark._65Members_.installation.success", true);
Line Found : user_pref("extensions.toolbar.mindspark._65Members_.installation.toolbarId", "E6EFA4B5-CC78-49F9-950C-6D37B723A290");
Line Found : user_pref("extensions.toolbar.mindspark._65Members_.lastActivePing", "1371846503656");
Line Found : user_pref("extensions.toolbar.mindspark._65Members_.options.defaultSearch", false);
Line Found : user_pref("extensions.toolbar.mindspark._65Members_.options.homePageEnabled", false);
Line Found : user_pref("extensions.toolbar.mindspark._65Members_.options.keywordEnabled", false);
Line Found : user_pref("extensions.toolbar.mindspark._65Members_.options.tabEnabled", false);
Line Found : user_pref("extensions.toolbar.mindspark._65Members_.weather.location", "91754");
Line Found : user_pref("extensions.toolbar.mindspark.lastInstalled", "fromdoctopdf@mindspark.com");
*************************
AdwCleaner[R0].txt - [6256 octets] - [11/12/2013 07:54:12]
AdwCleaner[R1].txt - [6176 octets] - [11/12/2013 08:11:13]
########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [6236 octets] ##########Please take a look and let me know if you think I need to Save any Important Files.
Thank You,
dtr
Answer to Norton 360 5.0 Question, 2 yrs. old.
0 -
I can't see any files etc. that you should keep.
Please, turn off all programs, including browsers.
Double-click on AdwCleaner to start the program.
Click on the Scan button.
Wait until the search has finished.
Click on the Clean button.
Click on OK.
Click on OK on any message that pops up.
The computer will be restarted.
A report will be displayed, copy its content and paste into your answer.
If the report isn't displayed, it exist as C:\AdwCleaner[s1].txt0 -
Ok , here is the Adwcleaner [s0].txt Report.
Looks like there's still some Files / Folders containing TubeDimmer, FromDoctoPDF & tidynetwork.
I havn't checked anything else yet but I noticed there is about 177 less [octets]
# AdwCleaner v3.015 - Report created 11/12/2013 at 15:55:41
# Updated 10/12/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Glenn - GLENNS610LAPTOP
# Running from : C:\Documents and Settings\Glenn\Desktop\AdwCleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Documents and Settings\All Users\Application Data\TubeDimmer
Folder Deleted : C:\Program Files\FromDocToPDF_65
Folder Deleted : C:\WINDOWS\system32\TempDir
Folder Deleted : C:\Documents and Settings\Glenn\Local Settings\Application Data\iac
Folder Deleted : C:\Documents and Settings\Glenn\Local Settings\Application Data\TidyNetwork
Folder Deleted : C:\Documents and Settings\Glenn\Application Data\FromDocToPDF_65
Folder Deleted : C:\Documents and Settings\Glenn\My Documents\optimizer pro
Folder Deleted : C:\Documents and Settings\Glenn\Application Data\Mozilla\Firefox\Profiles\zppp8v06.default\Extensions\tidynetwork@tidynetwork
File Deleted : C:\Program Files\Mozilla Firefox\browser\searchplugins\adawaretb.xml
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\MenuExt\&Search
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [updater]
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C66A678D-5E6C-4AF9-8F57-C6192F42CF74}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C66A678D-5E6C-4AF9-8F57-C6192F42CF74}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9A216821-0EC5-49A3-85AC-FB72AE79A1E8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9A216821-0EC5-49A3-85AC-FB72AE79A1E8}
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\DynConIE
Key Deleted : HKCU\Software\FromDocToPDF_65
Key Deleted : HKCU\Software\PIP
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKLM\Software\FromDocToPDF_65
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FromDocToPDF_65bar Uninstall Internet Explorer
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Toolbar Cleaner
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\FromDocToPDF_65bar Uninstall Internet Explorer
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.6001.18702
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [start Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [searchMigratedDefaultName]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [searchMigratedDefaultUrl]
-\\ Mozilla Firefox v25.0.1 (en-US)
[ File : C:\Documents and Settings\Glenn\Application Data\Mozilla\Firefox\Profiles\zppp8v06.default\prefs.js ]
Line Deleted : user_pref("extensions.dynconff.cache.securedsearch2.lavasoft.com.content", "<package expire=\"3600\" es=\"914\" pcdids=\"_1520_1674_1164_1524_1146_1169_1348_1482_1493_1521\"><content id=\"MB_P1\">\r\n[...]
Line Deleted : user_pref("extensions.toolbar.mindspark._65Members_.initialized", true);
Line Deleted : user_pref("extensions.toolbar.mindspark._65Members_.installation.contextKey", "");
Line Deleted : user_pref("extensions.toolbar.mindspark._65Members_.installation.installDate", "2013062113");
Line Deleted : user_pref("extensions.toolbar.mindspark._65Members_.installation.partnerId", "^Y6^xdm003^S05932^us");
Line Deleted : user_pref("extensions.toolbar.mindspark._65Members_.installation.partnerSubId", "CIDLsob-9bcCFUpyQgodzj8AFQ");
Line Deleted : user_pref("extensions.toolbar.mindspark._65Members_.installation.success", true);
Line Deleted : user_pref("extensions.toolbar.mindspark._65Members_.installation.toolbarId", "E6EFA4B5-CC78-49F9-950C-6D37B723A290");
Line Deleted : user_pref("extensions.toolbar.mindspark._65Members_.lastActivePing", "1371846503656");
Line Deleted : user_pref("extensions.toolbar.mindspark._65Members_.options.defaultSearch", false);
Line Deleted : user_pref("extensions.toolbar.mindspark._65Members_.options.homePageEnabled", false);
Line Deleted : user_pref("extensions.toolbar.mindspark._65Members_.options.keywordEnabled", false);
Line Deleted : user_pref("extensions.toolbar.mindspark._65Members_.options.tabEnabled", false);
Line Deleted : user_pref("extensions.toolbar.mindspark._65Members_.weather.location", "91754");
Line Deleted : user_pref("extensions.toolbar.mindspark.lastInstalled", "fromdoctopdf@mindspark.com");
*************************
AdwCleaner[R0].txt - [6256 octets] - [11/12/2013 07:54:12]
AdwCleaner[R1].txt - [6316 octets] - [11/12/2013 08:11:13]
AdwCleaner[s0].txt - [5999 octets] - [11/12/2013 15:55:41]
########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [6059 octets] ##########0 -
Good!
Looks like there's still some Files / Folders containing TubeDimmer, FromDoctoPDF & tidynetwork.
Do you mean that you can see such files or folders in the computer after AdwCleaner has cleaned?
Which files/folders do you see?
Please, continue with step 3 in post #11.
0 -
Oh, I mean I saved & printed the [R1] Adwcleaner Report generated after the Scan while in Safe Mode and compared it to
the [s0] Adwcleaner Repoet generated from the AutoReoot to Normal Mode.
I havn't had a chance to look around yet.
Thank's
dtr
0 -
Ok, Continued step 11 clean reboot Ok, went to control panel, could not find AdAware in programe list so I did find Mywordtool still there and Uninstalled succesfully. So decided to go to my computer and delete Adaware folders from programs, but could only find and delete > Antimaleware engine
> Antispam engine
> Firewall engine , Could not find > Adaware installer
Folders still left are > Adaware Antivirus
> Online Threats engine
> Web Filtering engine ?? Should I Delete these as well??
All In All Windows is starting to Respond a lot better and Reboot to desktop is alot quicker now.
I still need to Uninstall 10 year old Norton 2004 though, just not sure when or how many things and what order to do this.
So here's the 2nd. FRST.txt report after Resetting msconfig General Tab to Normal Boot and Rebooting.
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-12-2013
Ran by Glenn (administrator) on GLENNS610LAPTOP on 11-12-2013 18:43:20
Running from C:\Documents and Settings\Glenn\Desktop
Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English(US)
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\AdAwareService.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
(Intel Corporation ) C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\ZCfgSvc.exe
(Symantec Corporation) C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
(Symantec Corporation) C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
(Nero AG) C:\Program Files\Motorola Media Link\Lite\NServiceEntry.exe
(Seagate Technology LLC) C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
() C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
(Symantec Corporation) C:\Program Files\Norton SystemWorks\Norton AntiVirus\navapsvc.exe
(Symantec Corporation) C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe
( ) C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
() C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
(Symantec Corporation) C:\Program Files\Norton SystemWorks\Norton AntiVirus\SAVScan.exe
(Symantec Corporation) C:\Program Files\Norton SystemWorks\Norton Utilities\Speed Disk\NOPDB.exe
(Symantec Corporation) C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\SOUNDMAN.EXE
(Motorola Inc.) C:\WINDOWS\sm56hlpr.exe
(Quanta Computer Inc.) C:\Program Files\Keyboard Manager\Manager Utility\KeyboardManager.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe
(Seagate LLC) C:\Program Files\Seagate\SeagateManager\FreeAgent Status\stxmenumgr.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Nullsoft, Inc.) C:\Program Files\Winamp\winampa.exe
(Updater) C:\Documents and Settings\All Users\Application Data\Updater\updater.exe
() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\AdAwareTray.exe
(Symantec Corporation) C:\Program Files\Common Files\Symantec Shared\ccApp.exe
(Symantec Corporation) C:\Program Files\Norton SystemWorks\Password Manager\AcctMgr.exe
(Microsoft Corporation) C:\Program Files\Messenger\msmsgs.exe
(Motorola Mobility Inc.) C:\Program Files\Motorola Mobility\MotoCast\MotoCast.exe
(Palm, Inc.) C:\Palm\HOTSYNC.EXE
(WatchDog) C:\Documents and Settings\All Users\Application Data\RHelpers\ChromeHelper\ChromeHelper.exe
(WatchDog) C:\Documents and Settings\All Users\Application Data\RHelpers\FirefoxHelper\FirefoxHelper.exe
(WatchDog) C:\Documents and Settings\All Users\Application Data\RHelpers\IeHelper\IeHelper.exe
() C:\Program Files\Motorola Mobility\MotoCast\bin\MotoCast-thumbnailer.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Farbar) C:\Documents and Settings\Glenn\Desktop\FRST(1).exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [soundMan] - C:\WINDOWS\SOUNDMAN.EXE [77824 2004-11-01] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AlcWzrd] - C:\WINDOWS\ALCWZRD.EXE [2748928 2004-11-28] (RealTek Semicoductor Corp.)
HKLM\...\Run: [Alcmtr] - C:\WINDOWS\ALCMTR.EXE [57344 2004-10-13] (Realtek Semiconductor Corp.)
HKLM\...\Run: [sMSERIAL] - C:\WINDOWS\sm56hlpr.exe [585728 2004-10-21] (Motorola Inc.)
HKLM\...\Run: [Keyboard Manager Utility] - C:\Program Files\Keyboard Manager\Manager Utility\KeyboardManager.exe [2924544 2004-12-27] (Quanta Computer Inc.)
HKLM\...\Run: [synTPLpr] - C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [102400 2004-08-16] (Synaptics, Inc.)
HKLM\...\Run: [synTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [684032 2004-08-16] (Synaptics, Inc.)
HKLM\...\Run: [HotKeysCmds] - C:\WINDOWS\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [intelWireless] - C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe [385024 2004-10-15] (Intel Corporation)
HKLM\...\Run: [EOUApp] - C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe [356352 2004-10-15] (Intel Corporation)
HKLM\...\Run: [MaxMenuMgr] - C:\Program Files\Seagate\SeagateManager\FreeAgent Status\stxmenumgr.exe [181544 2008-10-28] (Seagate LLC)
HKLM\...\Run: [HP Software Update] - C:\Program Files\HP\HP Software Update\hpwuschd2.exe [49208 2011-03-24] (Hewlett-Packard)
HKLM\...\Run: [] - [x]
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2012-02-20] (Apple Inc.)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2012-04-18] (Apple Inc.)
HKLM\...\Run: [sunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM\...\Run: [WinampAgent] - C:\Program Files\Winamp\winampa.exe [74752 2012-06-28] (Nullsoft, Inc.)
HKLM\...\Run: [NeroFilterCheck] - C:\WINDOWS\system32\NeroCheck.exe [155648 2001-07-09] (Ahead Software Gmbh)
HKLM\...\Run: [updater] - C:\Documents and Settings\All Users\Application Data\Updater\updater.exe [297336 2013-09-25] (Updater)
HKLM\...\Run: [AdAwareTray] - C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\AdAwareTray.exe [2162008 2013-10-18] ()
HKLM\...\Run: [ccApp] - C:\Program Files\Common Files\Symantec Shared\ccApp.exe [70816 2003-08-14] (Symantec Corporation)
HKLM\...\Run: [AcctMgr] - C:\Program Files\Norton SystemWorks\Password Manager\AcctMgr.exe [578744 2003-09-12] (Symantec Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxsrvc.dll (Intel Corporation)
Winlogon\Notify\IntelWireless: C:\Program Files\Intel\Wireless\Bin\LgNotify.dll (Intel Corporation)
HKCU\...\Run: [MSMSGS] - C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKCU\...\Run: [HLBackupScheduler] - C:\Program Files\Backup Assistant Plus\Backup Assistant Plus Service.exe
HKCU\...\Run: [MotoCast] - C:\Program Files\Motorola Mobility\MotoCast\MotoLauncher.lnk [1704 2013-07-06] ()
HKCU\...\Run: [updater] - C:\Documents and Settings\All Users\Application Data\Updater\updater.exe [297336 2013-09-25] (Updater)
MountPoints2: {571ec648-05d5-11e2-849f-00c09f969d5d} - E:\.\EncryptionTool\MaxtorEncryption.exe
MountPoints2: {5b969694-0cdd-11e2-84a5-00c09f969d5d} - F:\setup.exe -a
MountPoints2: {78b57460-8749-11e2-84ad-0012f0096fae} - E:\setup.exe -a
MountPoints2: {a627d6fa-fa91-11e1-8497-00c09f969d5d} - E:\MotoCastSetup.exe -a
AppInit_DLLs: [ ] ()
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\QuickBooks Update Agent.lnk
ShortcutTarget: QuickBooks Update Agent.lnk -> C:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe (Intuit Inc.)
Startup: C:\Documents and Settings\Glenn\Start Menu\Programs\Startup\HotSync Manager.lnk
ShortcutTarget: HotSync Manager.lnk -> C:\Palm\HOTSYNC.EXE (Palm, Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NAVShExt.dll (Symantec Corporation)
BHO: PETN - {BF795AA1-59EC-46C7-831D-3FA20279A10E} - C:\Documents and Settings\Glenn\Local Settings\Application Data\TidyNetwork\petn.dll No File
BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NAVShExt.dll (Symantec Corporation)
Toolbar: HKCU - &Address - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKCU - Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NAVShExt.dll (Symantec Corporation)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Documents and Settings\Glenn\Application Data\Mozilla\Firefox\Profiles\zppp8v06.default
FF DefaultSearchEngine: SecureSearch
FF SelectedSearchEngine: SecureSearch
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.9.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.9.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: MyWordTool - C:\Documents and Settings\Glenn\Application Data\Mozilla\Firefox\Profiles\zppp8v06.default\Extensions\emily@wilford.biz
FF Extension: Tube Dimmer - C:\Documents and Settings\Glenn\Application Data\Mozilla\Firefox\Profiles\zppp8v06.default\Extensions\support@tubedimmerapp.com
FF Extension: No Name - C:\Documents and Settings\Glenn\Application Data\Mozilla\Firefox\Profiles\zppp8v06.default\Extensions\{19EB90DC-A456-458b-8AAC-616D91AAFCE1}.xpi
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
========================== Services (Whitelisted) =================
R2 ccEvtMgr; C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe [255136 2003-08-14] (Symantec Corporation)
S3 ccPwdSvc; C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe [87200 2003-08-14] (Symantec Corporation)
R2 ccSetMgr; C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe [234656 2003-08-14] (Symantec Corporation)
R2 DeviceMonitorService; C:\Program Files\Motorola Media Link\Lite\NServiceEntry.exe [87992 2012-09-07] (Nero AG)
R2 FreeAgentGoNext Service; C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe [156968 2008-10-28] (Seagate Technology LLC)
R2 LavasoftAdAwareService11; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\AdAwareService.exe [497744 2013-10-18] ()
R2 Motorola Device Manager; C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [120728 2012-10-02] ()
R2 navapsvc; C:\Program Files\Norton SystemWorks\Norton Antivirus\navapsvc.exe [158376 2003-08-17] (Symantec Corporation)
R2 NProtectService; C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE [81920 2003-09-10] (Symantec Corporation)
R2 OwnershipProtocol; C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe [98304 2004-10-15] (Intel Corporation)
R2 QBCFMonitorService; C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe [20480 2006-11-28] ( )
R2 S24EventMonitor; C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [360521 2004-10-15] (Intel Corporation )
R2 SAVScan; C:\Program Files\Norton SystemWorks\Norton Antivirus\SAVScan.exe [193816 2003-08-09] (Symantec Corporation)
S2 SBService; C:\Program Files\Common Files\Symantec Shared\Script Blocking\SBServ.exe [66784 2003-06-24] (Symantec Corporation)
R2 Speed Disk service; C:\Program Files\Norton SystemWorks\Norton Utilities\Speed Disk\NOPDB.exe [176193 2003-09-10] (Symantec Corporation)
R2 Symantec Core LC; C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe [585728 2013-12-08] (Symantec Corporation)
R2 JavaQuickStarterService; "C:\Program Files\Java\jre7\bin\jqs.exe" -service -config "C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf"
==================== Drivers (Whitelisted) ====================
R2 AegisP; C:\Windows\System32\DRIVERS\AegisP.sys [17119 2013-12-03] (Meetinghouse Data Communications)
R3 IWCA; C:\Windows\System32\DRIVERS\iwca.sys [234496 2004-08-12] (Intel Corporation)
R3 NAVENG; C:\Program Files\Common Files\Symantec Shared\VirusDefs\20030814.007\NAVENG.SYS [67800 2003-08-13] (Symantec Corporation)
R3 NAVEX15; C:\Program Files\Common Files\Symantec Shared\VirusDefs\20030814.007\NAVEX15.SYS [531160 2003-08-13] (Symantec Corporation)
R3 NPDriver; C:\WINDOWS\system32\Drivers\NPDRIVER.SYS [258476 2003-09-10] (Symantec Corporation)
S3 PalmUSBD; C:\Windows\System32\drivers\PalmUSBD.sys [16509 2003-10-14] (Palm, Inc.)
R3 qkbfiltr; C:\Windows\System32\drivers\qkbfiltr.sys [29312 2004-09-23] (Quanta Computer, Inc.)
S3 qmofiltr; C:\Windows\System32\drivers\qmofiltr.sys [7552 2004-08-18] (Quanta Computer, Inc.)
R3 Rasirda; C:\Windows\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
R3 RTL8023xp; C:\Windows\System32\DRIVERS\Rtlnicxp.sys [70144 2004-08-08] (Realtek Semiconductor Corporation )
S3 rtl8139; C:\Windows\System32\DRIVERS\RTL8139.SYS [20992 2004-08-03] (Realtek Semiconductor Corporation)
R2 s24trans; C:\Windows\System32\DRIVERS\s24trans.sys [11354 2004-10-15] (Intel Corporation)
R1 SAVRT; C:\Program Files\Norton SystemWorks\Norton Antivirus\SAVRT.SYS [300736 2003-08-06] (Symantec Corporation)
R1 SAVRTPEL; C:\Program Files\Norton SystemWorks\Norton Antivirus\SAVRTPEL.SYS [35008 2003-08-06] (Symantec Corporation)
S3 SDdriver; C:\WINDOWS\system32\Drivers\sddriver.sys [90272 2003-09-10] (Symantec Corporation)
R3 SMCIRDA; C:\Windows\System32\DRIVERS\smcirda.sys [35913 2001-08-17] (SMC)
R3 SymEvent; C:\Program Files\Symantec\SYMEVENT.SYS [82136 2003-09-12] (Symantec Corporation)
R2 symlcbrd; C:\WINDOWS\system32\drivers\symlcbrd.sys [2397 2013-12-08] ()
R3 SYMREDRV; C:\WINDOWS\system32\Drivers\SYMREDRV.SYS [15176 2003-08-15] (Symantec Corporation)
R2 SYMTDI; C:\WINDOWS\system32\Drivers\SYMTDI.SYS [176963 2003-08-15] (Symantec Corporation)
S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [340624 2013-07-17] (BitDefender S.R.L.)
R3 w29n51; C:\Windows\System32\DRIVERS\w29n51.sys [3222784 2004-10-29] (Intel® Corporation)
S3 Bdfndisf; \??\C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfndisf.sys [x]
S1 bdftdif; \??\C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdftdif.sys [x]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
S3 gzflt; \??\C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\gzflt.sys [x]
U5 QDFSDRV; C:\Windows\System32\Drivers\QDFSDRV.sys [13792 2003-09-07] (Symantec Corporation)
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
U1 WS2IFSL;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-12-11 18:43 - 2013-12-11 18:43 - 00017428 _____ C:\Documents and Settings\Glenn\Desktop\FRST.txt
2013-12-11 17:00 - 2013-12-11 17:02 - 00000000 ____D C:\WINDOWS\pss
2013-12-11 16:09 - 2013-12-11 16:09 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Adwcleaner Reports
2013-12-11 16:02 - 2013-12-11 16:02 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\TubeDimmer
2013-12-11 07:49 - 2013-12-11 15:56 - 00000000 ____D C:\AdwCleaner
2013-12-11 07:49 - 2013-12-11 07:43 - 01226802 _____ C:\Documents and Settings\Glenn\Desktop\AdwCleaner.exe
2013-12-09 20:17 - 2013-12-09 20:18 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Farbar Scan Results Laptop
2013-12-09 17:07 - 2013-12-09 17:07 - 00000000 ____D C:\FRST
2013-12-09 17:07 - 2013-12-09 17:06 - 01060641 _____ (Farbar) C:\Documents and Settings\Glenn\Desktop\FRST(1).exe
2013-12-08 21:05 - 2013-12-08 21:05 - 00002340 _____ C:\Documents and Settings\Glenn\10000000_.ppt
2013-12-08 20:02 - 2013-12-08 20:02 - 00000548 _____ C:\WINDOWS\Tasks\Norton AntiVirus - Scan my computer.job
2013-12-08 19:52 - 2013-12-08 19:54 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\Programs List on Laptop
2013-12-08 19:43 - 2013-12-08 19:43 - 00000000 ____D C:\WINDOWS\system32\System
2013-12-08 19:42 - 2013-12-08 19:42 - 00004368 _____ C:\WINDOWS\SYMEVENT.LOG
2013-12-08 19:40 - 2013-12-08 19:40 - 00000308 _____ C:\WINDOWS\Tasks\Symantec Drmc.job
2013-12-08 19:39 - 2013-12-08 19:43 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Norton SystemWorks
2013-12-08 19:39 - 2013-12-08 19:39 - 00002397 _____ C:\WINDOWS\system32\Drivers\symlcbrd.sys
2013-12-08 19:39 - 2013-12-08 19:39 - 00001563 _____ C:\Documents and Settings\All Users\Start Menu\Norton SystemWorks.lnk
2013-12-08 19:39 - 2013-12-08 19:39 - 00001563 _____ C:\Documents and Settings\All Users\Desktop\Norton SystemWorks.lnk
2013-12-08 19:39 - 2013-12-08 19:39 - 00000280 _____ C:\WINDOWS\Tasks\Norton SystemWorks One Button Checkup.job
2013-12-08 18:44 - 2013-12-08 18:45 - 00011936 _____ C:\WINDOWS\WINNT32.LOG
2013-12-08 18:44 - 2013-12-08 18:44 - 00000730 _____ C:\WINDOWS\UPGRADE.TXT
2013-12-08 18:44 - 2013-12-08 18:44 - 00000178 _____ C:\WINDOWS\DHCPUPG.LOG
2013-12-08 15:38 - 2013-12-08 15:38 - 00000000 ____D C:\NBRT
2013-12-08 06:43 - 2013-12-08 06:43 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\BitDefender
2013-12-08 06:31 - 2013-12-08 06:31 - 00000000 ____D C:\Documents and Settings\Glenn\Application Data\Lavasoft
2013-12-08 06:26 - 2013-07-17 18:09 - 00842368 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\bdsmtpp.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00179560 _____ (BitDefender) C:\WINDOWS\system32\BdFirewallSDK.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00161544 _____ (BitDefender) C:\WINDOWS\system32\httproxy.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00136824 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\bdpop3p.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00135288 _____ C:\WINDOWS\system32\bdfwcore.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00110568 _____ (BitDefender) C:\WINDOWS\system32\OEMbdpredir.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00086896 _____ (BitDefender) C:\WINDOWS\system32\bdpredir.dll
2013-12-08 06:21 - 2013-12-08 06:21 - 00001050 _____ C:\Documents and Settings\All Users\Desktop\Ad-Aware Antivirus.lnk
2013-12-08 06:21 - 2013-12-08 06:21 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Ad-Aware Antivirus
2013-12-08 06:15 - 2013-12-08 14:38 - 00000000 ____D C:\Program Files\Lavasoft
2013-12-08 06:11 - 2013-12-08 06:12 - 00008876 _____ C:\WINDOWS\KB942288-v3.log
2013-12-08 06:11 - 2013-12-08 06:11 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB942288-v3$
2013-12-08 06:11 - 2013-12-08 06:11 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Lavasoft
2013-12-07 20:32 - 2013-12-07 20:32 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2013-12-07 20:32 - 2013-12-07 20:32 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2013-12-07 20:23 - 2013-12-07 20:23 - 00000000 __SHD C:\Documents and Settings\Glenn\IECompatCache
2013-12-07 20:19 - 2013-12-07 20:19 - 00000000 __SHD C:\Documents and Settings\Glenn\PrivacIE
2013-12-07 10:22 - 2013-12-07 10:22 - 00000000 ____D C:\Documents and Settings\Glenn\Application Data\Help
2013-12-06 23:37 - 2013-12-06 23:37 - 00000187 _____ C:\WINDOWS\spupdsvc.log.1.log
2013-12-06 23:37 - 2013-12-06 23:37 - 00000090 _____ C:\WINDOWS\system32\spupdwxp.log
2013-12-06 23:19 - 2013-12-06 23:19 - 00000000 ____D C:\WINDOWS\system32\scripting
2013-12-06 23:19 - 2013-12-06 23:19 - 00000000 ____D C:\WINDOWS\system32\bits
2013-12-06 23:19 - 2013-12-06 23:19 - 00000000 ____D C:\WINDOWS\l2schemas
2013-12-06 23:19 - 2008-04-14 05:42 - 04274816 ____N (NVIDIA Corporation) C:\WINDOWS\system32\nv4_disp.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 01737856 ____N (Matrox Graphics Inc.) C:\WINDOWS\system32\mtxparhd.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 01306624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00397056 ____N (S3 Graphics, Inc.) C:\WINDOWS\system32\s3gnb.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00291328 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagentrt.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00290304 ____N (Microsoft Corporation) C:\WINDOWS\system32\rhttpaa.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00286792 ____N (Smart Link) C:\WINDOWS\system32\slextspk.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00193024 ____N (Microsoft Corporation) C:\WINDOWS\system32\napmontr.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00188508 ____N (Smart Link) C:\WINDOWS\system32\slgen.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00176640 ____N (Microsoft Corporation) C:\WINDOWS\system32\napstat.exe
2013-12-06 23:19 - 2008-04-14 05:42 - 00155136 ____N (Microsoft Corporation) C:\WINDOWS\system32\mssha.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00150528 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagent.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00144384 ____N (Microsoft Corporation) C:\WINDOWS\system32\onex.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00076800 ____N (Microsoft Corporation) C:\WINDOWS\system32\qutil.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00073832 ____N (Smart Link) C:\WINDOWS\system32\slcoinst.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00073796 ____N (Smart Link) C:\WINDOWS\system32\slserv.exe
2013-12-06 23:19 - 2008-04-14 05:42 - 00069120 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00062464 ____N (Microsoft Corporation) C:\WINDOWS\system32\qcliprov.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00061952 ____N (Microsoft Corporation) C:\WINDOWS\system32\rasqec.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00060416 ____N (Microsoft Corporation) C:\WINDOWS\system32\tzchange.exe
2013-12-06 23:19 - 2008-04-14 05:42 - 00053248 ____N (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00050688 ____N (Microsoft Corporation) C:\WINDOWS\system32\tspkg.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcperf.exe
2013-12-06 23:19 - 2008-04-14 05:42 - 00032866 ____N (Smart Link) C:\WINDOWS\system32\slrundll.exe
2013-12-06 23:19 - 2008-04-14 05:42 - 00032866 ____N (Smart Link) C:\WINDOWS\slrundll.exe
2013-12-06 23:19 - 2008-04-14 05:42 - 00032768 ____N (Microsoft Corporation) C:\WINDOWS\system32\setupn.exe
2013-12-06 23:19 - 2008-04-14 05:42 - 00030208 ____N (Microsoft Corporation) C:\WINDOWS\system32\napipsec.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00028672 ____N (Microsoft Corporation) C:\WINDOWS\system32\vidcap.ax
2013-12-06 23:19 - 2008-04-14 05:42 - 00028672 ____N (Microsoft Corporation) C:\WINDOWS\system32\verclsid.exe
2013-12-06 23:19 - 2008-04-14 05:42 - 00023040 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativmvxx.ax
2013-12-06 23:19 - 2008-04-14 05:42 - 00010752 ____N (Microsoft Corporation) C:\WINDOWS\system32\smtpapi.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00009728 ____N (Microsoft Corporation) C:\WINDOWS\system32\rwnh.dll
2013-12-06 23:19 - 2008-04-14 05:42 - 00009728 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativdaxx.ax
2013-12-06 23:19 - 2008-04-14 05:41 - 01888992 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ati3duag.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00870784 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ati3d1ag.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00650752 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00516768 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ativvaxx.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00397312 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcex.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00377984 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2dvaa.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00233472 ____N (Microsoft Corporation) C:\WINDOWS\system32\azroles.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00229376 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2cqag.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00201728 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2dvag.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00184832 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00184320 ____N (Microsoft Corporation) C:\WINDOWS\system32\microsoft.managementconsole.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00180224 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00136192 ____N (Microsoft Corporation) C:\WINDOWS\system32\aaclient.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00132096 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00126976 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00106496 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcfxcommon.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00094208 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00086016 ____N (Conexant) C:\WINDOWS\system32\mdmxsdk.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00081920 ____N (Microsoft Corporation) C:\WINDOWS\system32\ieencode.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00061440 ____N (Microsoft Corporation) C:\WINDOWS\system32\kmsvc.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00059392 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapqec.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00057856 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3cfg.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00056320 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00048640 ____N (Microsoft Corporation) C:\WINDOWS\system32\dhcpqec.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00040960 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3gpclnt.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsroam.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00037376 ____N (Microsoft Corporation) C:\WINDOWS\system32\l2gpstore.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapsvc.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00032768 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativtmxx.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00032285 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\hsfcisp2.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00030720 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapolqec.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00026112 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00019456 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsntfy.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00012800 ____N (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00009216 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3dlg.dll
2013-12-06 23:19 - 2008-04-14 05:41 - 00007168 ____N (Microsoft Corporation) C:\WINDOWS\system32\bitsprx4.dll
2013-12-06 23:19 - 2008-04-14 05:40 - 00294912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msaud32.acm
2013-12-06 23:19 - 2008-04-14 05:40 - 00102912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpcdll.dll
2013-12-06 23:19 - 2008-04-14 05:40 - 00086016 ____C (Sipro Lab Telecom Inc.) C:\WINDOWS\system32\dllcache\sl_anet.acm
2013-12-06 23:19 - 2008-04-14 05:39 - 00290816 ____C (Fraunhofer Institut Integrierte Schaltungen IIS) C:\WINDOWS\system32\dllcache\l3codeca.acm
2013-12-06 23:19 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdpash.dll
2013-12-06 23:19 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdnepr.dll
2013-12-06 23:19 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdiultn.dll
2013-12-06 23:19 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdbhc.dll
2013-12-06 23:19 - 2008-04-14 00:15 - 00046592 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irbus.sys
2013-12-06 23:19 - 2008-04-14 00:13 - 00009728 ____N (Microsoft Corporation) C:\WINDOWS\system32\comsdupd.exe
2013-12-06 23:19 - 2008-04-13 23:45 - 00076800 ____N (Microsoft Corporation) C:\WINDOWS\system32\msshavmsg.dll
2013-12-06 23:19 - 2008-04-13 23:09 - 00689152 ____N (Microsoft Corporation) C:\WINDOWS\system32\xpsp3res.dll
2013-12-06 23:19 - 2008-04-13 22:58 - 00184959 ____C C:\WINDOWS\system32\dllcache\compact.wmz
2013-12-06 23:19 - 2008-04-13 22:58 - 00066725 ____C C:\WINDOWS\system32\dllcache\revert.wmz
2013-12-06 23:19 - 2008-04-13 22:57 - 00079872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6r.dll
2013-12-06 23:19 - 2007-06-26 11:30 - 00572557 ____C C:\WINDOWS\system32\dllcache\rtuner.wmv
2013-12-06 23:19 - 2007-06-26 11:30 - 00457607 ____C C:\WINDOWS\system32\dllcache\mdlib.wmv
2013-12-06 23:19 - 2007-06-26 11:30 - 00381425 ____C C:\WINDOWS\system32\dllcache\copycd.wmv
2013-12-06 23:19 - 2007-06-26 11:30 - 00375519 ____C C:\WINDOWS\system32\dllcache\nuskin.wmv
2013-12-06 23:19 - 2007-06-26 11:30 - 00354468 ____C C:\WINDOWS\system32\dllcache\wmpaud1.wav
2013-12-06 23:19 - 2007-06-26 11:30 - 00343204 ____C C:\WINDOWS\system32\dllcache\wmpaud7.wav
2013-12-06 23:19 - 2007-06-26 11:30 - 00343204 ____C C:\WINDOWS\system32\dllcache\wmpaud6.wav
2013-12-06 23:19 - 2007-06-26 11:30 - 00300969 ____C C:\WINDOWS\system32\dllcache\viz.wmv
2013-12-06 23:19 - 2007-06-26 11:30 - 00172196 ____C C:\WINDOWS\system32\dllcache\wmpaud9.wav
2013-12-06 23:19 - 2007-06-26 11:30 - 00172196 ____C C:\WINDOWS\system32\dllcache\wmpaud8.wav
2013-12-06 23:19 - 2007-06-26 11:30 - 00172196 ____C C:\WINDOWS\system32\dllcache\wmpaud3.wav
2013-12-06 23:19 - 2007-06-26 11:30 - 00086196 ____C C:\WINDOWS\system32\dllcache\wmpaud5.wav
2013-12-06 23:19 - 2007-06-26 11:30 - 00086180 ____C C:\WINDOWS\system32\dllcache\wmpaud4.wav
2013-12-06 23:19 - 2007-06-26 11:30 - 00086180 ____C C:\WINDOWS\system32\dllcache\wmpaud2.wav
2013-12-06 23:19 - 2007-06-26 11:30 - 00022060 ____C C:\WINDOWS\system32\dllcache\npds.zip
2013-12-06 23:19 - 2007-06-26 11:30 - 00010457 ____C C:\WINDOWS\system32\dllcache\wmptour.hta
2013-12-06 23:19 - 2007-06-26 11:30 - 00009585 ____C C:\WINDOWS\system32\dllcache\controls.css
2013-12-06 23:19 - 2007-06-26 11:30 - 00008298 ____C C:\WINDOWS\system32\dllcache\contents.htm
2013-12-06 23:19 - 2007-06-26 11:30 - 00006878 ____C C:\WINDOWS\system32\dllcache\controls.js
2013-12-06 23:19 - 2007-06-26 11:30 - 00005971 ____C C:\WINDOWS\system32\dllcache\events.js
2013-12-06 23:19 - 2007-06-26 11:30 - 00003187 ____C C:\WINDOWS\system32\dllcache\tour.js
2013-12-06 23:19 - 2007-06-26 11:30 - 00001771 ____C C:\WINDOWS\system32\dllcache\wmptour.css
2013-12-06 23:19 - 2007-06-26 11:30 - 00001148 ____C C:\WINDOWS\system32\dllcache\snd.htm
2013-12-06 23:19 - 2007-06-26 11:30 - 00000420 ____C C:\WINDOWS\system32\dllcache\wmploc.js
2013-12-06 23:19 - 2007-06-26 11:29 - 00097117 ____C C:\WINDOWS\system32\dllcache\mplayer2.hlp
2013-12-06 23:19 - 2007-06-26 11:29 - 00001885 ____C C:\WINDOWS\system32\dllcache\mplayer2.cnt
2013-12-06 23:19 - 2007-06-26 11:28 - 00613334 ____C C:\WINDOWS\system32\dllcache\wmplayer.chm
2013-12-06 23:19 - 2007-06-26 11:28 - 00067374 ____C C:\WINDOWS\system32\dllcache\wmplayer.adm
2013-12-06 23:19 - 2007-06-26 11:26 - 00077307 ____C C:\WINDOWS\system32\dllcache\plyr_err.chm
2013-12-06 23:19 - 2007-06-26 11:26 - 00001477 ____C C:\WINDOWS\system32\dllcache\plylst6.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00001477 ____C C:\WINDOWS\system32\dllcache\plylst5.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00001474 ____C C:\WINDOWS\system32\dllcache\plylst3.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00001451 ____C C:\WINDOWS\system32\dllcache\plylst12.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00001448 ____C C:\WINDOWS\system32\dllcache\plylst4.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00001250 ____C C:\WINDOWS\system32\dllcache\plylst1.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00001049 ____C C:\WINDOWS\system32\dllcache\plylst2.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00001046 ____C C:\WINDOWS\system32\dllcache\plylst7.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00001036 ____C C:\WINDOWS\system32\dllcache\plylst8.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00000789 ____C C:\WINDOWS\system32\dllcache\plylst11.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00000787 ____C C:\WINDOWS\system32\dllcache\plylst10.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00000784 ____C C:\WINDOWS\system32\dllcache\plylst9.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00000783 ____C C:\WINDOWS\system32\dllcache\plylst13.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00000775 ____C C:\WINDOWS\system32\dllcache\plylst14.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00000733 ____C C:\WINDOWS\system32\dllcache\plylst15.wpl
2013-12-06 23:19 - 2007-06-26 11:26 - 00000403 ____C C:\WINDOWS\system32\dllcache\npdrmv2.zip
2013-12-06 23:19 - 2007-04-02 23:21 - 00023195 ____C C:\WINDOWS\system32\dllcache\wmplay.chm
2013-12-06 23:15 - 2013-12-06 23:19 - 00000000 ____D C:\WINDOWS\ServicePackFiles
2013-12-06 23:14 - 2008-04-14 05:42 - 00294912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dlimport.exe
2013-12-06 23:11 - 2008-04-14 05:42 - 00003901 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\siint5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00025471 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\atv04nt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00021183 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\atv01nt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00017279 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\atv10nt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00015423 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\ch7xxnt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00014143 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\atv06nt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00011359 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\atv02nt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00004255 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv01nt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00003967 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv02nt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00003775 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv11nt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00003711 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv09nt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00003647 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv07nt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00003615 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv05nt5.dll
2013-12-06 23:11 - 2008-04-14 05:41 - 00003135 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv08nt5.dll
2013-12-06 23:11 - 2008-04-14 00:21 - 00101120 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2013-12-06 23:11 - 2008-04-14 00:16 - 00273024 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2013-12-06 23:11 - 2008-04-14 00:16 - 00059136 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2013-12-06 23:11 - 2008-04-14 00:16 - 00037888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthmodem.sys
2013-12-06 23:11 - 2008-04-14 00:16 - 00036480 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthprint.sys
2013-12-06 23:11 - 2008-04-14 00:16 - 00025600 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2013-12-06 23:11 - 2008-04-14 00:16 - 00018944 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthusb.sys
2013-12-06 23:11 - 2008-04-14 00:16 - 00017024 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2013-12-06 23:11 - 2008-04-14 00:15 - 00019200 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidir.sys
2013-12-06 23:11 - 2008-04-14 00:13 - 00012672 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mutohpen.sys
2013-12-06 23:11 - 2008-04-14 00:10 - 00010240 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sffp_mmc.sys
2013-12-06 23:11 - 2008-04-14 00:06 - 00046464 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\gagp30kx.sys
2013-12-06 23:11 - 2008-04-14 00:06 - 00044928 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agpcpq.sys
2013-12-06 23:11 - 2008-04-14 00:06 - 00044672 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uagp35.sys
2013-12-06 23:11 - 2008-04-14 00:06 - 00043008 ____N (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdagp.sys
2013-12-06 23:11 - 2008-04-14 00:06 - 00042752 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\alim1541.sys
2013-12-06 23:11 - 2008-04-14 00:06 - 00042368 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agp440.sys
2013-12-06 23:11 - 2008-04-14 00:06 - 00040960 ____N (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\Drivers\sisagp.sys
2013-12-06 23:11 - 2008-04-14 00:06 - 00005888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\smbali.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 01309184 ____N (Smart Link) C:\WINDOWS\system32\Drivers\mtlstrm.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 01041536 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfdpsp2.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 00685056 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfcxts2.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 00404990 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slntamr.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 00220032 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfbs2s2.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 00180360 ____N (Smart Link) C:\WINDOWS\system32\Drivers\ntmtlfax.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 00129535 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slnt7554.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 00126686 ____N (Smart Link) C:\WINDOWS\system32\Drivers\mtlmnt5.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 00095424 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slnthal.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 00013776 ____N (Smart Link) C:\WINDOWS\system32\Drivers\recagent.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 00013240 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slwdmsup.sys
2013-12-06 23:11 - 2008-04-13 23:53 - 00011868 ____N (Conexant) C:\WINDOWS\system32\Drivers\mdmxsdk.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 01897408 ____N (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nv4_mini.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00701440 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati2mtag.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00452736 ____N (Matrox Graphics Inc.) C:\WINDOWS\system32\Drivers\mtxparhm.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00327040 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati2mtaa.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00166912 ____N (S3 Graphics, Inc.) C:\WINDOWS\system32\Drivers\s3gnbm.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00104960 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinrvxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00073216 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atintuxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00063663 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1rvxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00063488 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinxsxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00057856 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinbtxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00056623 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1btxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00052224 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinraxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00036463 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1tuxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00034735 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1xsxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00031744 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinxbxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00030671 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1raxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00029455 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1xbxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00028672 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinsnxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00026367 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1snxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00021343 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1ttxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00014336 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinpdxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00013824 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinttxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00013824 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinmdxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00012047 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1pdxx.sys
2013-12-06 23:11 - 2008-04-13 22:04 - 00011615 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1mdxx.sys
2013-12-06 23:11 - 2007-04-02 21:36 - 00129045 ____N C:\WINDOWS\system32\Drivers\cxthsfs2.cty
2013-12-06 23:11 - 2006-12-29 20:21 - 00064352 ____N C:\WINDOWS\system32\Drivers\ativmc20.cod
2013-12-06 23:11 - 2006-12-29 20:02 - 00067866 ____N C:\WINDOWS\system32\Drivers\netwlan5.img
2013-12-06 23:10 - 2008-04-14 05:42 - 00011325 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\vchnt5.dll
2013-12-06 23:10 - 2008-04-14 00:16 - 00121984 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2013-12-06 23:10 - 2008-04-14 00:13 - 00014208 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wacompen.sys
2013-12-06 23:10 - 2008-04-14 00:06 - 00042240 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\viaagp.sys
2013-12-06 23:10 - 2008-04-13 22:04 - 00025471 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\watv10nt.sys
2013-12-06 23:10 - 2008-04-13 22:04 - 00022271 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\watv06nt.sys
2013-12-06 23:10 - 2008-04-13 22:04 - 00011935 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\wadv11nt.sys
2013-12-06 23:10 - 2008-04-13 22:04 - 00011871 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\wadv09nt.sys
2013-12-06 23:10 - 2008-04-13 22:04 - 00011807 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\wadv07nt.sys
2013-12-06 23:10 - 2008-04-13 22:04 - 00011295 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\wadv08nt.sys
2013-12-06 23:08 - 2006-12-29 00:31 - 00019569 _____ C:\WINDOWS\003075_.tmp
2013-12-06 23:03 - 2013-12-06 23:08 - 00000000 __HDC C:\WINDOWS\$NtServicePackUninstall$
2013-12-06 22:59 - 2013-12-08 06:26 - 00044625 _____ C:\WINDOWS\setupapi.log
2013-12-06 22:50 - 2013-12-06 22:50 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Sp-3 update
2013-12-06 22:41 - 2013-12-06 22:41 - 00000000 ____D C:\Program Files\7-Zip
2013-12-06 22:41 - 2013-12-06 22:41 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\7-Zip
2013-12-06 22:41 - 2013-12-06 22:41 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Updater
2013-12-06 22:41 - 2013-12-06 22:41 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\RHelpers
2013-12-06 22:41 - 2013-12-06 22:41 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Real
2013-12-06 22:40 - 2013-12-11 18:40 - 00000358 _____ C:\WINDOWS\Tasks\TidyNetwork Update.job
2013-12-06 22:40 - 2013-12-11 17:19 - 00000000 ____D C:\Documents and Settings\Glenn\Application Data\MyWordTool
2013-12-06 22:36 - 2013-12-06 22:36 - 00000000 __SHD C:\Documents and Settings\NetworkService\IETldCache
2013-12-06 22:35 - 2013-12-06 22:35 - 00000000 __SHD C:\Documents and Settings\Glenn\IETldCache
2013-12-06 22:31 - 2013-12-06 23:19 - 00124343 _____ C:\WINDOWS\updspapi.log
2013-12-06 22:31 - 2013-12-06 22:34 - 00065536 _____ C:\WINDOWS\system32\config\Internet.evt
2013-12-06 22:30 - 2013-12-06 22:31 - 00000000 __HDC C:\WINDOWS\ie8
2013-12-06 22:29 - 2013-12-06 22:32 - 00066792 _____ C:\WINDOWS\ie8.log
2013-12-06 22:26 - 2013-12-06 22:32 - 00031768 _____ C:\WINDOWS\ie8_main.log
2013-12-06 22:06 - 2013-12-06 22:06 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB884020$
2013-12-06 16:55 - 2013-12-06 23:26 - 00517660 _____ C:\WINDOWS\svcpack.log
2013-12-06 16:07 - 2013-12-06 16:38 - 00000100 _____ C:\Documents and Settings\Glenn\Desktop\Microsoft Fix it.url
2013-12-04 22:00 - 2013-12-06 15:12 - 00002329 _____ C:\Documents and Settings\All Users\Desktop\SeaTools for Windows.lnk
2013-12-04 21:53 - 2013-12-04 21:53 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Microsoft Malicious Software Detector
2013-12-04 21:46 - 2013-11-07 15:50 - 80340640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-12-04 13:48 - 2013-12-04 13:48 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Over Weight Isuzu Brake Job
2013-12-03 05:36 - 2004-11-09 00:31 - 00000013 _____ C:\WINDOWS\system32\Drivers\verfile.tic
2013-12-03 05:36 - 2004-10-15 09:20 - 01654784 _____ (Intel Corporation) C:\WINDOWS\system32\W29MLRES.DLL
2013-12-02 06:22 - 2013-12-02 06:27 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Wordpress dtrBlog Pics
2013-12-01 13:41 - 2013-12-01 13:50 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\DTRBlog Pics
2013-12-01 10:55 - 2013-12-01 10:56 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Pics Downloaded from Olympus Cam
2013-12-01 10:55 - 2013-12-01 10:55 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Pics downloaded from cool pix
2013-12-01 10:55 - 2013-12-01 10:55 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Ojitto Creek Property Google Satilite Images
2013-11-24 08:33 - 2013-11-24 08:33 - 00000000 ____D C:\Program Files\MSECache
2013-11-22 05:37 - 2013-11-22 05:37 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Kennedy Meadows 173ea.Pics From June 24 2012
2013-11-22 05:36 - 2013-11-22 05:36 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Laura & Dave Miron Band
2013-11-17 11:44 - 2013-11-17 11:44 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\NeroVision
2013-11-17 11:39 - 2013-11-17 11:39 - 00004296 _____ C:\Documents and Settings\Glenn\My Documents\Lauras Cheer Video.nrv
2013-11-16 02:53 - 2013-11-17 06:10 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-16 02:28 - 2013-11-16 02:29 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Lauras Cheerleed Video
2013-11-16 01:38 - 2013-11-16 02:33 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Phone Pics from 2013 Costilla,Co
==================== One Month Modified Files and Folders =======
2013-12-11 18:43 - 2013-12-11 18:43 - 00017428 _____ C:\Documents and Settings\Glenn\Desktop\FRST.txt
2013-12-11 18:42 - 2012-09-23 17:30 - 00000000 ____D C:\Documents and Settings\Glenn\.gstreamer-0.10
2013-12-11 18:42 - 2012-09-23 17:24 - 00000000 ____D C:\Documents and Settings\Glenn\Application Data\MotoCast
2013-12-11 18:41 - 2013-06-09 11:07 - 00000880 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-11 18:41 - 2012-09-22 19:23 - 00000412 _____ C:\WINDOWS\Tasks\Symantec NetDetect.job
2013-12-11 18:41 - 2012-07-25 10:49 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-12-11 18:41 - 2012-07-25 03:14 - 00000159 _____ C:\WINDOWS\wiadebug.log
2013-12-11 18:41 - 2012-07-25 03:14 - 00000050 _____ C:\WINDOWS\wiaservc.log
2013-12-11 18:40 - 2013-12-06 22:40 - 00000358 _____ C:\WINDOWS\Tasks\TidyNetwork Update.job
2013-12-11 18:40 - 2012-07-25 10:57 - 00000278 ___SH C:\Documents and Settings\Glenn\ntuser.ini
2013-12-11 18:40 - 2012-07-25 10:49 - 00032460 _____ C:\WINDOWS\SchedLgU.Txt
2013-12-11 18:40 - 2012-07-25 10:44 - 00339616 _____ C:\WINDOWS\WindowsUpdate.log
2013-12-11 18:39 - 2012-07-25 03:09 - 00000211 ___SH C:\boot.ini
2013-12-11 18:39 - 2004-08-03 17:07 - 00000512 _____ C:\WINDOWS\win.ini
2013-12-11 18:39 - 2004-08-03 17:07 - 00000227 _____ C:\WINDOWS\system.ini
2013-12-11 18:34 - 2013-06-09 11:07 - 00000884 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-11 17:19 - 2013-12-06 22:40 - 00000000 ____D C:\Documents and Settings\Glenn\Application Data\MyWordTool
2013-12-11 17:02 - 2013-12-11 17:00 - 00000000 ____D C:\WINDOWS\pss
2013-12-11 16:09 - 2013-12-11 16:09 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Adwcleaner Reports
2013-12-11 16:06 - 2012-07-25 10:57 - 00000000 ____D C:\Documents and Settings\Glenn
2013-12-11 16:02 - 2013-12-11 16:02 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\TubeDimmer
2013-12-11 15:56 - 2013-12-11 07:49 - 00000000 ____D C:\AdwCleaner
2013-12-11 07:43 - 2013-12-11 07:49 - 01226802 _____ C:\Documents and Settings\Glenn\Desktop\AdwCleaner.exe
2013-12-11 07:43 - 2004-08-03 17:07 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2013-12-09 20:18 - 2013-12-09 20:17 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Farbar Scan Results Laptop
2013-12-09 17:07 - 2013-12-09 17:07 - 00000000 ____D C:\FRST
2013-12-09 17:06 - 2013-12-09 17:07 - 01060641 _____ (Farbar) C:\Documents and Settings\Glenn\Desktop\FRST(1).exe
2013-12-09 09:29 - 2012-07-25 03:10 - 00326704 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-12-09 07:16 - 2012-07-25 11:58 - 00071968 _____ C:\Documents and Settings\Glenn\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2013-12-09 07:14 - 2012-09-24 04:36 - 00000000 ____D C:\Program Files\Microsoft.NET
2013-12-09 07:14 - 2012-09-24 04:36 - 00000000 ____D C:\Program Files\Microsoft Office
2013-12-09 07:14 - 2012-07-25 03:11 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-12-09 07:13 - 2012-07-25 10:42 - 00000000 ____D C:\Program Files\Common Files\System
2013-12-09 07:12 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\Help
2013-12-08 21:05 - 2013-12-08 21:05 - 00002340 _____ C:\Documents and Settings\Glenn\10000000_.ppt
2013-12-08 20:02 - 2013-12-08 20:02 - 00000548 _____ C:\WINDOWS\Tasks\Norton AntiVirus - Scan my computer.job
2013-12-08 20:01 - 2012-09-22 19:15 - 00000000 ____D C:\Documents and Settings\Glenn\Application Data\Symantec
2013-12-08 19:57 - 2012-09-22 19:15 - 00000000 ____D C:\Program Files\Norton SystemWorks
2013-12-08 19:54 - 2013-12-08 19:52 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\Programs List on Laptop
2013-12-08 19:43 - 2013-12-08 19:43 - 00000000 ____D C:\WINDOWS\system32\System
2013-12-08 19:43 - 2013-12-08 19:39 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Norton SystemWorks
2013-12-08 19:43 - 2012-07-25 11:07 - 00000000 ____D C:\Program Files\Common Files\Symantec Shared
2013-12-08 19:43 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\system
2013-12-08 19:42 - 2013-12-08 19:42 - 00004368 _____ C:\WINDOWS\SYMEVENT.LOG
2013-12-08 19:42 - 2012-09-22 19:15 - 00000000 ____D C:\Program Files\Symantec
2013-12-08 19:41 - 2012-09-22 19:15 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Symantec
2013-12-08 19:40 - 2013-12-08 19:40 - 00000308 _____ C:\WINDOWS\Tasks\Symantec Drmc.job
2013-12-08 19:39 - 2013-12-08 19:39 - 00002397 _____ C:\WINDOWS\system32\Drivers\symlcbrd.sys
2013-12-08 19:39 - 2013-12-08 19:39 - 00001563 _____ C:\Documents and Settings\All Users\Start Menu\Norton SystemWorks.lnk
2013-12-08 19:39 - 2013-12-08 19:39 - 00001563 _____ C:\Documents and Settings\All Users\Desktop\Norton SystemWorks.lnk
2013-12-08 19:39 - 2013-12-08 19:39 - 00000280 _____ C:\WINDOWS\Tasks\Norton SystemWorks One Button Checkup.job
2013-12-08 18:45 - 2013-12-08 18:44 - 00011936 _____ C:\WINDOWS\WINNT32.LOG
2013-12-08 18:44 - 2013-12-08 18:44 - 00000730 _____ C:\WINDOWS\UPGRADE.TXT
2013-12-08 18:44 - 2013-12-08 18:44 - 00000178 _____ C:\WINDOWS\DHCPUPG.LOG
2013-12-08 18:44 - 2012-07-25 03:10 - 00171166 _____ C:\WINDOWS\setupact.log
2013-12-08 18:40 - 2012-07-25 11:25 - 00000792 _____ C:\WINDOWS\chipset.log
2013-12-08 15:38 - 2013-12-08 15:38 - 00000000 ____D C:\NBRT
2013-12-08 14:38 - 2013-12-08 06:15 - 00000000 ____D C:\Program Files\Lavasoft
2013-12-08 06:43 - 2013-12-08 06:43 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\BitDefender
2013-12-08 06:31 - 2013-12-08 06:31 - 00000000 ____D C:\Documents and Settings\Glenn\Application Data\Lavasoft
2013-12-08 06:26 - 2013-12-06 22:59 - 00044625 _____ C:\WINDOWS\setupapi.log
2013-12-08 06:21 - 2013-12-08 06:21 - 00001050 _____ C:\Documents and Settings\All Users\Desktop\Ad-Aware Antivirus.lnk
2013-12-08 06:21 - 2013-12-08 06:21 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Ad-Aware Antivirus
2013-12-08 06:12 - 2013-12-08 06:11 - 00008876 _____ C:\WINDOWS\KB942288-v3.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00094800 _____ C:\WINDOWS\iis6.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00061003 _____ C:\WINDOWS\FaxSetup.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00038089 _____ C:\WINDOWS\ocgen.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00032118 _____ C:\WINDOWS\comsetup.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00031813 _____ C:\WINDOWS\tsoc.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00025096 _____ C:\WINDOWS\msmqinst.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00017485 _____ C:\WINDOWS\ntdtcsetup.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00011128 _____ C:\WINDOWS\netfxocm.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00005430 _____ C:\WINDOWS\MedCtrOC.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00003896 _____ C:\WINDOWS\tabletoc.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00003440 _____ C:\WINDOWS\ocmsn.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00003187 _____ C:\WINDOWS\msgsocm.log
2013-12-08 06:12 - 2012-07-25 03:11 - 00001374 _____ C:\WINDOWS\imsins.log
2013-12-08 06:12 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\system32\mui
2013-12-08 06:11 - 2013-12-08 06:11 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB942288-v3$
2013-12-08 06:11 - 2013-12-08 06:11 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Lavasoft
2013-12-07 20:32 - 2013-12-07 20:32 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2013-12-07 20:32 - 2013-12-07 20:32 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2013-12-07 20:32 - 2012-10-03 12:37 - 00000000 ____D C:\Documents and Settings\Glenn\Local Settings\Application Data\Adobe
2013-12-07 20:23 - 2013-12-07 20:23 - 00000000 __SHD C:\Documents and Settings\Glenn\IECompatCache
2013-12-07 20:19 - 2013-12-07 20:19 - 00000000 __SHD C:\Documents and Settings\Glenn\PrivacIE
2013-12-07 16:53 - 2013-06-09 10:46 - 00001692 _____ C:\Documents and Settings\Glenn\Desktop\BlueVoda Website Builder.lnk
2013-12-07 16:53 - 2013-06-09 10:46 - 00001683 _____ C:\Documents and Settings\Glenn\Desktop\Hosting.lnk
2013-12-07 16:53 - 2013-06-09 10:46 - 00000000 ____D C:\Program Files\BlueVoda Website Builder
2013-12-07 16:53 - 2013-06-09 10:46 - 00000000 ____D C:\Documents and Settings\Glenn\Start Menu\Programs\BlueVoda Website Builder
2013-12-07 16:09 - 2012-10-03 12:33 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Adobe
2013-12-07 14:59 - 2012-09-23 17:30 - 00000436 _____ C:\WINDOWS\Tasks\MotoCast Update.job
2013-12-07 14:57 - 2013-07-06 13:57 - 00000462 _____ C:\WINDOWS\Tasks\Motorola Device Manager Engine.job
2013-12-07 10:22 - 2013-12-07 10:22 - 00000000 ____D C:\Documents and Settings\Glenn\Application Data\Help
2013-12-06 23:40 - 2013-06-15 11:38 - 00078754 _____ C:\WINDOWS\spupdsvc.log
2013-12-06 23:40 - 2012-07-25 10:45 - 00316640 _____ C:\WINDOWS\WMSysPr9.prx
2013-12-06 23:40 - 2012-07-25 10:41 - 00050701 _____ C:\WINDOWS\wmsetup.log
2013-12-06 23:39 - 2012-07-25 03:11 - 00605412 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-12-06 23:38 - 2012-07-25 10:57 - 00000792 _____ C:\Documents and Settings\Glenn\Start Menu\Programs\Windows Media Player.lnk
2013-12-06 23:38 - 2012-07-25 10:57 - 00000738 _____ C:\Documents and Settings\Glenn\Start Menu\Programs\Outlook Express.lnk
2013-12-06 23:38 - 2012-07-25 10:41 - 00000359 _____ C:\WINDOWS\DtcInstall.log
2013-12-06 23:37 - 2013-12-06 23:37 - 00000187 _____ C:\WINDOWS\spupdsvc.log.1.log
2013-12-06 23:37 - 2013-12-06 23:37 - 00000090 _____ C:\WINDOWS\system32\spupdwxp.log
2013-12-06 23:35 - 2012-07-25 10:41 - 00000000 ____D C:\Program Files\Messenger
2013-12-06 23:26 - 2013-12-06 16:55 - 00517660 _____ C:\WINDOWS\svcpack.log
2013-12-06 23:26 - 2012-07-25 03:11 - 00002675 _____ C:\WINDOWS\imsins.BAK
2013-12-06 23:23 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\security
2013-12-06 23:20 - 2012-07-25 10:45 - 00001563 _____ C:\Documents and Settings\All Users\Start Menu\Set Program Access and Defaults.lnk
2013-12-06 23:20 - 2012-07-25 10:42 - 00001281 _____ C:\WINDOWS\sessmgr.setup.log
2013-12-06 23:20 - 2012-07-25 10:31 - 00000400 _____ C:\WINDOWS\cmsetacl.log
2013-12-06 23:20 - 2012-07-25 10:31 - 00000000 ___RD C:\Documents and Settings\All Users\Start Menu\Programs\Accessories
2013-12-06 23:19 - 2013-12-06 23:19 - 00000000 ____D C:\WINDOWS\system32\scripting
2013-12-06 23:19 - 2013-12-06 23:19 - 00000000 ____D C:\WINDOWS\system32\bits
2013-12-06 23:19 - 2013-12-06 23:19 - 00000000 ____D C:\WINDOWS\l2schemas
2013-12-06 23:19 - 2013-12-06 23:15 - 00000000 ____D C:\WINDOWS\ServicePackFiles
2013-12-06 23:19 - 2013-12-06 22:31 - 00124343 _____ C:\WINDOWS\updspapi.log
2013-12-06 23:19 - 2012-07-25 10:42 - 00000000 ____D C:\Program Files\Movie Maker
2013-12-06 23:19 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\system32\usmt
2013-12-06 23:19 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2013-12-06 23:19 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\PeerNet
2013-12-06 23:19 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\ime
2013-12-06 23:15 - 2012-07-25 10:42 - 00000000 ____D C:\WINDOWS\system32\Restore
2013-12-06 23:15 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\system32\npp
2013-12-06 23:15 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\mui
2013-12-06 23:14 - 2012-07-25 10:43 - 00000000 ____D C:\WINDOWS\srchasst
2013-12-06 23:14 - 2012-07-25 10:42 - 00000000 ____D C:\Program Files\Outlook Express
2013-12-06 23:14 - 2012-07-25 10:42 - 00000000 ____D C:\Program Files\NetMeeting
2013-12-06 23:14 - 2012-07-25 10:40 - 00000000 ____D C:\WINDOWS\system32\Com
2013-12-06 23:14 - 2012-07-25 10:40 - 00000000 ____D C:\Program Files\Windows NT
2013-12-06 23:14 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\msagent
2013-12-06 23:10 - 2004-08-03 17:07 - 00250048 __RSH C:\ntldr
2013-12-06 23:08 - 2013-12-06 23:03 - 00000000 __HDC C:\WINDOWS\$NtServicePackUninstall$
2013-12-06 23:08 - 2012-07-25 11:25 - 00000000 ____D C:\WINDOWS\system32\ReinstallBackups
2013-12-06 22:50 - 2013-12-06 22:50 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Sp-3 update
2013-12-06 22:41 - 2013-12-06 22:41 - 00000000 ____D C:\Program Files\7-Zip
2013-12-06 22:41 - 2013-12-06 22:41 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\7-Zip
2013-12-06 22:41 - 2013-12-06 22:41 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Updater
2013-12-06 22:41 - 2013-12-06 22:41 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\RHelpers
2013-12-06 22:41 - 2013-12-06 22:41 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Real
2013-12-06 22:36 - 2013-12-06 22:36 - 00000000 __SHD C:\Documents and Settings\NetworkService\IETldCache
2013-12-06 22:36 - 2012-07-25 10:49 - 00000000 __SHD C:\Documents and Settings\NetworkService
2013-12-06 22:35 - 2013-12-06 22:35 - 00000000 __SHD C:\Documents and Settings\Glenn\IETldCache
2013-12-06 22:35 - 2012-07-25 10:57 - 00000803 _____ C:\Documents and Settings\Glenn\Start Menu\Programs\Internet Explorer.lnk
2013-12-06 22:35 - 2012-07-25 10:57 - 00000000 ___RD C:\Documents and Settings\Glenn\Start Menu\Programs\Accessories
2013-12-06 22:34 - 2013-12-06 22:31 - 00065536 _____ C:\WINDOWS\system32\config\Internet.evt
2013-12-06 22:32 - 2013-12-06 22:29 - 00066792 _____ C:\WINDOWS\ie8.log
2013-12-06 22:32 - 2013-12-06 22:26 - 00031768 _____ C:\WINDOWS\ie8_main.log
2013-12-06 22:31 - 2013-12-06 22:30 - 00000000 __HDC C:\WINDOWS\ie8
2013-12-06 22:31 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\Media
2013-12-06 22:21 - 2012-07-25 03:04 - 00000000 ____D C:\WINDOWS\Resources
2013-12-06 22:06 - 2013-12-06 22:06 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB884020$
2013-12-06 16:38 - 2013-12-06 16:07 - 00000100 _____ C:\Documents and Settings\Glenn\Desktop\Microsoft Fix it.url
2013-12-06 16:09 - 2012-07-25 03:10 - 01408502 _____ C:\WINDOWS\setupapi.log.0.old
2013-12-06 15:12 - 2013-12-04 22:00 - 00002329 _____ C:\Documents and Settings\All Users\Desktop\SeaTools for Windows.lnk
2013-12-04 22:13 - 2012-07-25 11:55 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2013-12-04 22:00 - 2012-09-24 04:08 - 00000000 ____D C:\Program Files\Seagate
2013-12-04 22:00 - 2012-09-24 04:08 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Seagate
2013-12-04 21:53 - 2013-12-04 21:53 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Microsoft Malicious Software Detector
2013-12-04 21:35 - 2013-06-06 08:42 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard
2013-12-04 13:48 - 2013-12-04 13:48 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Over Weight Isuzu Brake Job
2013-12-04 01:59 - 2012-12-01 20:18 - 00002445 _____ C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Streets & Trips 2006.lnk
2013-12-04 01:57 - 2012-07-26 22:15 - 00000423 _____ C:\WINDOWS\Topo.INI
2013-12-03 14:57 - 2013-07-06 13:57 - 00000478 _____ C:\WINDOWS\Tasks\Motorola Device Manager Update.job
2013-12-03 05:38 - 2012-08-02 12:57 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Intel PROSet Wireless
2013-12-03 05:38 - 2012-08-02 12:56 - 00017119 _____ (Meetinghouse Data Communications) C:\WINDOWS\system32\Drivers\AegisP.sys
2013-12-03 05:38 - 2012-07-25 11:42 - 00000308 _____ C:\WINDOWS\system32\results.txt
2013-12-03 05:37 - 2012-07-25 11:41 - 00154192 _____ C:\WINDOWS\SetupWLD.log
2013-12-02 06:30 - 2012-11-13 14:21 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\For Sale Advertising Pics
2013-12-02 06:27 - 2013-12-02 06:22 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Wordpress dtrBlog Pics
2013-12-02 06:21 - 2012-09-24 04:10 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\DTR Logo
2013-12-01 19:51 - 2013-06-15 11:40 - 00829024 _____ C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
2013-12-01 19:38 - 2013-06-16 19:17 - 00000031 _____ C:\WINDOWS\bluevoda.ini
2013-12-01 18:43 - 2012-07-25 11:07 - 00001324 _____ C:\WINDOWS\system32\d3d9caps.dat
2013-12-01 13:50 - 2013-12-01 13:41 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\DTRBlog Pics
2013-12-01 13:44 - 2013-06-15 13:32 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\LogoDesignStudio Pro
2013-12-01 10:56 - 2013-12-01 10:55 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Pics Downloaded from Olympus Cam
2013-12-01 10:56 - 2013-06-23 07:48 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Ulazyu2 35ac. For Sale
2013-12-01 10:56 - 2013-06-15 18:12 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\www.rockymtland.com files
2013-12-01 10:55 - 2013-12-01 10:55 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Pics downloaded from cool pix
2013-12-01 10:55 - 2013-12-01 10:55 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Ojitto Creek Property Google Satilite Images
2013-11-30 16:57 - 2012-09-24 04:09 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\BlueVoda
2013-11-29 16:58 - 2013-06-15 09:54 - 00000116 _____ C:\WINDOWS\NeroDigital.ini
2013-11-24 08:33 - 2013-11-24 08:33 - 00000000 ____D C:\Program Files\MSECache
2013-11-22 05:37 - 2013-11-22 05:37 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Kennedy Meadows 173ea.Pics From June 24 2012
2013-11-22 05:36 - 2013-11-22 05:36 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Laura & Dave Miron Band
2013-11-21 13:02 - 2013-07-04 11:16 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\Rocky Mountain Land LLC
2013-11-21 12:36 - 2012-08-02 08:22 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-11-17 16:18 - 2012-09-24 04:10 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\Kinecta Documents to Send
2013-11-17 16:18 - 2012-09-24 04:10 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\Horse Stuff
2013-11-17 16:18 - 2012-09-24 04:10 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\GE Fleet Services Account Information
2013-11-17 16:18 - 2012-09-24 04:10 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\DTR Flyer Pics
2013-11-17 16:18 - 2012-09-24 04:10 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\DTR Business Licence
2013-11-17 16:18 - 2012-09-24 04:09 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\Colorado Property
2013-11-17 16:17 - 2012-09-24 04:23 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\Water Well Info
2013-11-17 16:17 - 2012-09-24 04:23 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\Sbdo County Code Violations
2013-11-17 16:17 - 2012-09-24 04:23 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\Ojito Creek Off Grid Home
2013-11-17 16:17 - 2012-09-24 04:09 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\Breakdown!_files
2013-11-17 12:30 - 2012-10-07 05:06 - 00000000 ____D C:\Documents and Settings\Glenn\Local Settings\Application Data\Backup Assistant Plus
2013-11-17 11:49 - 2013-06-15 09:54 - 00000145 _____ C:\Documents and Settings\Glenn\default.pls
2013-11-17 11:46 - 2013-06-15 09:54 - 00000000 ____D C:\Documents and Settings\Glenn\Application Data\Ahead
2013-11-17 11:44 - 2013-11-17 11:44 - 00000000 ____D C:\Documents and Settings\Glenn\My Documents\NeroVision
2013-11-17 11:39 - 2013-11-17 11:39 - 00004296 _____ C:\Documents and Settings\Glenn\My Documents\Lauras Cheer Video.nrv
2013-11-17 06:10 - 2013-11-16 02:53 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-16 04:53 - 2012-07-26 22:01 - 00000000 ____D C:\TOPO!
2013-11-16 02:33 - 2013-11-16 01:38 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Phone Pics from 2013 Costilla,Co
2013-11-16 02:29 - 2013-11-16 02:28 - 00000000 ____D C:\Documents and Settings\Glenn\Desktop\Lauras Cheerleed Video
2013-11-12 17:17 - 2012-10-07 05:06 - 00000000 ____D C:\Documents and Settings\Glenn\Application Data\vlc
Some content of TEMP:
====================
C:\Documents and Settings\Glenn\Local Settings\Temp\d134208a-3464-4b40-a599-a33065047d35.exe
C:\Documents and Settings\Glenn\Local Settings\Temp\d7085b47-9c2d-438b-ada6-49fa369e444d.exe
C:\Documents and Settings\Glenn\Local Settings\Temp\fp_pl_pfs_installer.exe
C:\Documents and Settings\Glenn\Local Settings\Temp\jre-7u25-windows-i586-iftw.exe
C:\Documents and Settings\Glenn\Local Settings\Temp\jre-7u45-windows-i586-iftw.exe
C:\Documents and Settings\Glenn\Local Settings\Temp\jre-7u9-windows-i586-iftw.exe
C:\Documents and Settings\Glenn\Local Settings\Temp\lowproc.exe
C:\Documents and Settings\Glenn\Local Settings\Temp\MotoCastUpdate_2.0031.exe
C:\Documents and Settings\Glenn\Local Settings\Temp\MotoCast_Installer_1.1.53.exe
C:\Documents and Settings\Glenn\Local Settings\Temp\MotoCast_Installer_2.0023.exe
C:\Documents and Settings\Glenn\Local Settings\Temp\SHSetup.exe
C:\Documents and Settings\Glenn\Local Settings\Temp\sqlite-3.6.20-sqlitejdbc.dll
C:\Documents and Settings\Glenn\Local Settings\Temp\stubhelper.dll
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe
[2004-08-03 17:07] - [2008-04-14 05:42] - 0108544 ____A (Microsoft Corporation) 0e776ed5f7cc9f94299e70461b7b8185
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== End Of Log ============================Thank You,
dtr
0 -
I did run the Adwcleaner again and it sur looks alot better,
Only 1 page long. Not sure if I need these or should I Clean them ??
# AdwCleaner v3.015 - Report created 11/12/2013 at 19:18:31
# Updated 10/12/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Glenn - GLENNS610LAPTOP
# Running from : C:\Documents and Settings\Glenn\Desktop\AdwCleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Found C:\Documents and Settings\All Users\Application Data\TubeDimmer
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\DynConIE
Value Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [updater]
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.6001.18702
-\\ Mozilla Firefox v25.0.1 (en-US)
[ File : C:\Documents and Settings\Glenn\Application Data\Mozilla\Firefox\Profiles\zppp8v06.default\prefs.js ]
*************************
AdwCleaner[R0].txt - [6256 octets] - [11/12/2013 07:54:12]
AdwCleaner[R1].txt - [6316 octets] - [11/12/2013 08:11:13]
AdwCleaner[R2].txt - [984 octets] - [11/12/2013 19:18:31]
AdwCleaner[s0].txt - [6139 octets] - [11/12/2013 15:55:41]
########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [1103 octets] ##########Thank You,
dtr
0 -
Ok , I have been able to remove and cleanup most of the malicious spyware virus files and all of AdAware except for the Lavasoft folder is still containing AdAware Antivirus and refuses to be removed.
Also Noticed my 1394 LAN drivers are corruppted preventing an eithernet connection the file in question is called Bitdefender, Is this a file associated with AdAware ??
I can reinstall the drivers needed from manufactures utility Cd, but not sure if I should wait and finish cleaning things up or install over the top or delete corrupt drivers.
Just not sure these Bitdefender files still reside since I havn't yet been able to completely remove AdAware Antivirus program.
I would hate to screw up now, especialy since weve come so far!
I'll think it over,
Thank's good night
dtr
0 -
You're welcome, dtr
The computer will react as usual when it only has one antivirus program installed.
1. Please, start Notepad.
Copy all text that is in the box:HKLM\...\Run: [AdAwareTray] - C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\AdAwareTray.exe [2162008 2013-10-18] ()
and paste in Notepad. Check that no files have been split on two lines.
BHO: PETN - {BF795AA1-59EC-46C7-831D-3FA20279A10E} - C:\Documents and Settings\Glenn\Local Settings\Application Data\TidyNetwork\petn.dll No File
FF DefaultSearchEngine: SecureSearch
FF SelectedSearchEngine: SecureSearch
FF Extension: MyWordTool - C:\Documents and Settings\Glenn\Application Data\Mozilla\Firefox\Profiles\zppp8v06.default\Extensions\emily@wilford.biz
FF Extension: Tube Dimmer - C:\Documents and Settings\Glenn\Application Data\Mozilla\Firefox\Profiles\zppp8v06.default\Extensions\support@tubedimmerapp.com
R2 LavasoftAdAwareService11; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\AdAwareService.exe [497744 2013-10-18] ()
S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [340624 2013-07-17] (BitDefender S.R.L.)
S3 Bdfndisf; \??\C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfndisf.sys [x]
S1 bdftdif; \??\C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdftdif.sys [x]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
S3 gzflt; \??\C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\gzflt.sys [x]
2013-12-11 16:02 - 2013-12-11 16:02 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\TubeDimmer
2013-12-08 06:26 - 2013-07-17 18:09 - 00842368 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\bdsmtpp.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00179560 _____ (BitDefender) C:\WINDOWS\system32\BdFirewallSDK.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00161544 _____ (BitDefender) C:\WINDOWS\system32\httproxy.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00136824 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\bdpop3p.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00135288 _____ C:\WINDOWS\system32\bdfwcore.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00110568 _____ (BitDefender) C:\WINDOWS\system32\OEMbdpredir.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00086896 _____ (BitDefender) C:\WINDOWS\system32\bdpredir.dll
2013-12-08 06:21 - 2013-12-08 06:21 - 00001050 _____ C:\Documents and Settings\All Users\Desktop\Ad-Aware Antivirus.lnk
2013-12-08 06:21 - 2013-12-08 06:21 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Ad-Aware Antivirus
2013-12-06 22:40 - 2013-12-11 18:40 - 00000358 _____ C:\WINDOWS\Tasks\TidyNetwork Update.job
2013-12-06 22:40 - 2013-12-11 17:19 - 00000000 ____D C:\Documents and Settings\Glenn\Application Data\MyWordTool
Save the file as fixlist.txt on the desktop.
Start FRST, please.
Click the Fix button.
Wait until the tool has finished.
It creates a log file, called Fixlog.txt, on the flash drive.
Please, paste the content of that file in your answer.2. Let us see which Updater that AdwCleaner finds.
Upload this file to http://www.virustotal.com/ using the "Choose file" button (select reanalyze if asked) and post back the link to the scan report:
C:\Documents and Settings\All Users\Application Data\Updater\updater.exe
0 -
Thats OK, I got off track to.
So yes 1394 & LAN are different, I'm trying to refer to my network adapters in Hardware devise manager.
I had a connection problem with my ISP last night which spurred me to try opening my laptops browser for the first time since I have been cleaning and uninstalling.
So while I was on the phone with my ISP troubleshooting and refreshing the settings.
I was comparing the the network settings and properties between desktop & laptop, I happend to check the device manager settings and found the yellow exclamations in network adapter settings.
And it turns out the drivers are inffected with bitdefender files. I'd show you a snap shot but Devise Manager won't allow me to Copy,Paste or Save.
I tried right clicking & uninstalling the bad drivers listed and they came right back after rebooting, I tried installing & refreshing Network Adapter Drivers from my original manufactures utility Cd. Didn't work Bitdefender came right back.
Recap: Present Problems that still exist.
AdAware Antivirus 11.0.4555.0 " still can't uninstall " (all other related related files & folders gone)
Network Adapter drivers " attacked by bitdefender"
No upto date Antivirus protection. " just the old Norton 2004 still installed "
***********************Results from FSRT****************************
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 09-12-2013
Ran by Glenn at 2013-12-12 07:20:37 Run:1
Running from C:\Documents and Settings\Glenn\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
HKLM\...\Run: [AdAwareTray] - C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\AdAwareTray.exe [2162008 2013-10-18] ()
BHO: PETN - {BF795AA1-59EC-46C7-831D-3FA20279A10E} - C:\Documents and Settings\Glenn\Local Settings\Application Data\TidyNetwork\petn.dll No File
FF DefaultSearchEngine: SecureSearch
FF SelectedSearchEngine: SecureSearch
FF Extension: MyWordTool - C:\Documents and Settings\Glenn\Application Data\Mozilla\Firefox\Profiles\zppp8v06.default\Extensions\emily@wilford.biz
FF Extension: Tube Dimmer - C:\Documents and Settings\Glenn\Application Data\Mozilla\Firefox\Profiles\zppp8v06.default\Extensions\support@tubedimmerapp.com
R2 LavasoftAdAwareService11; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\AdAwareService.exe [497744 2013-10-18] ()
S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [340624 2013-07-17] (BitDefender S.R.L.)
S3 Bdfndisf; \??\C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfndisf.sys [x]
S1 bdftdif; \??\C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdftdif.sys [x]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
S3 gzflt; \??\C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\gzflt.sys [x]
2013-12-11 16:02 - 2013-12-11 16:02 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\TubeDimmer
2013-12-08 06:26 - 2013-07-17 18:09 - 00842368 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\bdsmtpp.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00179560 _____ (BitDefender) C:\WINDOWS\system32\BdFirewallSDK.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00161544 _____ (BitDefender) C:\WINDOWS\system32\httproxy.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00136824 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\bdpop3p.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00135288 _____ C:\WINDOWS\system32\bdfwcore.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00110568 _____ (BitDefender) C:\WINDOWS\system32\OEMbdpredir.dll
2013-12-08 06:26 - 2013-07-17 18:09 - 00086896 _____ (BitDefender) C:\WINDOWS\system32\bdpredir.dll
2013-12-08 06:21 - 2013-12-08 06:21 - 00001050 _____ C:\Documents and Settings\All Users\Desktop\Ad-Aware Antivirus.lnk
2013-12-08 06:21 - 2013-12-08 06:21 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Ad-Aware Antivirus
2013-12-06 22:40 - 2013-12-11 18:40 - 00000358 _____ C:\WINDOWS\Tasks\TidyNetwork Update.job
2013-12-06 22:40 - 2013-12-11 17:19 - 00000000 ____D C:\Documents and Settings\Glenn\Application Data\MyWordTool
*****************
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdAwareTray => Value deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BF795AA1-59EC-46C7-831D-3FA20279A10E} => Key deleted successfully.
HKCR\CLSID\{BF795AA1-59EC-46C7-831D-3FA20279A10E} => Key deleted successfully.
Firefox DefaultSearchEngine deleted successfully.
Firefox SelectedSearchEngine deleted successfully.
C:\Documents and Settings\Glenn\Application Data\Mozilla\Firefox\Profiles\zppp8v06.default\Extensions\emily@wilford.biz => Moved successfully.
C:\Documents and Settings\Glenn\Application Data\Mozilla\Firefox\Profiles\zppp8v06.default\Extensions\support@tubedimmerapp.com => Moved successfully.
LavasoftAdAwareService11 => Service deleted successfully.
Trufos => Service deleted successfully.
Bdfndisf => Service deleted successfully.
bdftdif => Service deleted successfully.
esgiguard => Service deleted successfully.
gzflt => Service deleted successfully.
C:\Documents and Settings\All Users\Application Data\TubeDimmer => Moved successfully.
C:\WINDOWS\system32\bdsmtpp.dll => Moved successfully.
C:\WINDOWS\system32\BdFirewallSDK.dll => Moved successfully.
C:\WINDOWS\system32\httproxy.dll => Moved successfully.
C:\WINDOWS\system32\bdpop3p.dll => Moved successfully.
C:\WINDOWS\system32\bdfwcore.dll => Moved successfully.
C:\WINDOWS\system32\OEMbdpredir.dll => Moved successfully.
C:\WINDOWS\system32\bdpredir.dll => Moved successfully.
C:\Documents and Settings\All Users\Desktop\Ad-Aware Antivirus.lnk => Moved successfully.
C:\Documents and Settings\All Users\Start Menu\Programs\Ad-Aware Antivirus => Moved successfully.
C:\WINDOWS\Tasks\TidyNetwork Update.job => Moved successfully.
C:\Documents and Settings\Glenn\Application Data\MyWordTool => Moved successfully.
The system needs a manual reboot.
==== End of Fixlog ====Question: I'm not understanding step 2 and havn't completed yet.
I'll post back those results when complete.
Thank,s
dtr
0 -
Ok , I have been able to remove and cleanup most of the malicious spyware virus files and all of AdAware except for the Lavasoft folder is still containing AdAware Antivirus and refuses to be removed.
Also Noticed my 1394 LAN drivers are corruppted preventing an eithernet connection the file in question is called Bitdefender, Is this a file associated with AdAware ??
I can reinstall the drivers needed from manufactures utility Cd, but not sure if I should wait and finish cleaning things up or install over the top or delete corrupt drivers.
Just not sure these Bitdefender files still reside since I havn't yet been able to completely remove AdAware Antivirus program.
I would hate to screw up now, especialy since weve come so far!
I'll think it over,
Thank's good night
dtr
Sorry, I didn't see that post before I wrote mine.
When removing files and registry items in this way, instead of uninstalling the program can often lead to different issues.
Yes, Ad-Aware includes files developed by Bitdefender. Note that 1394 is a Firewire connection and not an Ethernet connection.
Please, follow the instructions in http://www.lavasoftsupport.com/index.php?/topic/33662-solution-when-internet-connection-is-lost-after-uninstallation-of-ad-aware-110-in-xp/ to restore the internet connection.
0 -
Sorry.
You have to follow post #21 first, since that should get your internet connection back.
0 -
2. Please, go to http://www.virustotal.com/ .
Copy this path and file name:
C:\Documents and Settings\All Users\Application Data\Updater\updater.exe
Click on Choose file on the web page.
Paste the path and file name into the field for file name.
Click on Open.
Click on Scan it!.
If you get a question about reanalyze, please select that.
When the analyze is finished, copy the content of the address field in the browser and past it into your answer here.
Was this easier to understand and follow?
0 -
Yes, but can't use this Scan tool from the problem laptop, atill has no ISP connection because of Network Adapter Driver issues.
isn't www.Virustool a web based scan tool. ??
dtr
0 -
O I know, Copied File from laptop to handy dandy usb flash drive and uploaded to Web Based www.virustotal.com and Scaned.
File Scaned: C:\Documeents and Settings\All Users\Application Data\updater.exe
Ha Ha, very interesting,
What can we do about this??
dtr
0 -
Since AdwCleaner seems to have some difficulties in removing it, we'll try with FRST.
1. Please, start Notepad.
Copy all text that is in the box:
HKLM\...\Run: [Updater] - C:\Documents and Settings\All Users\Application Data\Updater\updater.exe [297336 2013-09-25] (Updater)
HKCU\...\Run: [Updater] - C:\Documents and Settings\All Users\Application Data\Updater\updater.exe [297336 2013-09-25] (Updater)
C:\Documents and Settings\All Users\Application Data\Updater\updater.exe
and paste in Notepad. Check that no files have been split on two lines.
Save the file as fixlist.txt on the desktop.
Start FRST, please.
Click the Fix button.
Wait until the tool has finished.
It creates a log file, called Fixlog.txt, on the flash drive.
Please, paste the content of that file in your answer.0 -
Thank You CeciliaB,
Followed post #21 and worked like a charm , Network Adapters fixed.
dtr
0 -
Ok, FSRT Results from Post#28
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 12-12-2013
Ran by Glenn at 2013-12-12 10:07:23 Run:2
Running from C:\Documents and Settings\Glenn\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
HKLM\...\Run: [updater] - C:\Documents and Settings\All Users\Application Data\Updater\updater.exe [297336 2013-09-25] (Updater)
HKCU\...\Run: [updater] - C:\Documents and Settings\All Users\Application Data\Updater\updater.exe [297336 2013-09-25] (Updater)
C:\Documents and Settings\All Users\Application Data\Updater\updater.exe
*****************
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Updater => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Updater => Value deleted successfully.
C:\Documents and Settings\All Users\Application Data\Updater\updater.exe => Moved successfully.
The system needs a manual reboot.
==== End of Fixlog ====I'm Lost , Can't Remember, Is this suppose to allow the Uninstall of AdAware Antivirus 11 ?????????????
dtr
0 -
Hello,
The AdAware Icons from the desktop and system tray are gone , but AdAware still exist in
C:\program files\lavasoft\Ad-Aware Antivirus 11.0.4555.0 37.0 MB
Can you tell me what the Uninstall file is called??
my only option of delete won't work due to a error message that says "Access Denied" AdAwareShellExtention.dll denied.
dtr
0 -
Hello, Ok yes My computer is back operating properly, Thank You. But I still have many c;\program\Lavasoft\AdAware Antivirus.dll files left in my windows explorer. They seam to be inactive and co far not causing any issues that I know of.
How ever, comfortable I am or not with third party .dll files left on my computer is very frustrating. It's obvious now that I'm stuck with them unless they start creating issues that would force me to Reformat the hard drive or find some other way to remove them,
as i have never heard of or am comfortable with reinstalling a program that won't allow you to uninstall from windows control panel or provide it's own Uninstall files.
Still undecided,
dtr
0
Please sign in to leave a comment.
Comments
34 comments