« previous next »
Pages: [1]

Author Topic: Deleted Files!  (Read 1267 times)

Offline ministermelton

  • Newbie
  • *
  • Posts: 5
  • Karma: +0/-0
    • View Profile
Deleted Files!
« on: September 01, 2008, 09:29:17 PM »
[font=\"Times New Roman\"][color=\"#000080\"]How do I recover lost word files from the recycle bin that I've emptied? Thank You for your help. Minister Melton[/color][/font]
Logged

Offline guestolo

  • Site Donator
  • Administrator
  • Hero Member
  • *****
  • Posts: 16034
  • Karma: +1/-0
    • View Profile
    • http://
Deleted Files!
« Reply #1 on: September 01, 2008, 11:32:46 PM »
If you have access to a USB thumbdrive or similiar
Download and save to the flashdrive Recuva
http://www.pendriveapps.com/2007/03/08/rec...-recovery-tool/
It can also be installed to your harddrive, but you may want to choose that option after you recover the files

Take note when installing
When asked to Choose Install location, choose your thumbdrive,
this will help to prevent overwriting any files you may need

UNCHECK the option to install the Yahoo toolbar and other options

If you installed to a thumbdrive, open it and you should then see a Recuva folder
Inside double click on Recuva.exe to run it

Select type of files searching for
Or choose All files
You can search everywhere on the computer
In your case, since you deleted files from Recycle bin, choose that option
Start the scan, the files will probably be renamed
As eg.. if you named it minister.doc
it may appear as Dc8.doc

If files are found, you may want to Recover back to the flash drive to ensure you don't overwrite a spot on the disk
If you don't have a flash drive, you can install to your harddrive and recover to drive
But don't do much else till you recover the files, less chance to overwrite the files
Logged

Do you want to post your own logs from FRST?

Follow the instructions posted http://www.thetechguide.com/forum/index.php/topic/22942-please-read-how-to-post-logs-from-frst/\'>Click Here

Offline ministermelton

  • Newbie
  • *
  • Posts: 5
  • Karma: +0/-0
    • View Profile
Deleted Files!
« Reply #2 on: September 02, 2008, 07:08:03 PM »
Thanks I will try it.
Logged

Offline ministermelton

  • Newbie
  • *
  • Posts: 5
  • Karma: +0/-0
    • View Profile
Deleted Files!
« Reply #3 on: September 03, 2008, 10:06:15 PM »
guestolo; Thanks for your help. I could only retrive one file. This all started when I saved all of my poetry in a folder My poems, on a disc they were word documents then I deleted the folder.  When I opened the disc to retrive the word docs they all showed little boxes and not words. I put that file on my desktop and I tried to retrive My poems from the Recycle Bin but the folder didn't show up only one word doc did. Can you please tell me how to get the words to appear and not the little boxes? I would appreciate it greatly.
All of my rhymes and poetry are contained in that folder HELP.  Minister Melton
Logged

Offline guestolo

  • Site Donator
  • Administrator
  • Hero Member
  • *****
  • Posts: 16034
  • Karma: +1/-0
    • View Profile
    • http://
Deleted Files!
« Reply #4 on: September 05, 2008, 08:15:29 AM »
Which version of Word are you trying to use?
What operating system are you using?

Are you using the same version of Word to open the files as you used to create them?

Will any of the files open in Wordpad?
Right click a file and select Open With...
Choose Wordpad from the group

Have you tried opening the files on disc on another machine with Office installed?

Can you also try the following
Copy and Paste the files from Disc to your Harddrive
Eg.. Put the folder on your Desktop
Then try and repair a file within Word
here's instructions
http://www.devdos.com/vb/repair%20corrupt%...ment%20free.htm
« Last Edit: September 05, 2008, 08:22:40 AM by guestolo »
Logged

Do you want to post your own logs from FRST?

Follow the instructions posted http://www.thetechguide.com/forum/index.php/topic/22942-please-read-how-to-post-logs-from-frst/\'>Click Here

Offline ministermelton

  • Newbie
  • *
  • Posts: 5
  • Karma: +0/-0
    • View Profile
Deleted Files!
« Reply #5 on: September 10, 2008, 09:59:24 PM »
Here is my log THANKS FOR ALL OF YOUR HELP!  P.S.  I tried everything on your reply none of it worked.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:25:25 PM, on 9/10/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\svchost.exe
D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
D:\Program Files\Alwil Software\Avast4\ashServ.exe
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
D:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
D:\Program Files\Bonjour\mDNSResponder.exe
D:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
D:\WINDOWS\System32\nvsvc32.exe
D:\WINDOWS\System32\svchost.exe
D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
D:\Program Files\Alwil Software\Avast4\ashWebSv.exe
D:\WINDOWS\Explorer.EXE
D:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\Internet Explorer\iexplore.exe
D:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: P2P Energy Toolbar - {2bae58c2-79f9-45d1-a286-81f911301c3a} - D:\Program Files\P2P_Energy\tbP2P_.dll
O2 - BHO: P2P Energy Toolbar - {2bae58c2-79f9-45d1-a286-81f911301c3a} - D:\Program Files\P2P_Energy\tbP2P_.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: AskBar BHO - {5A074B21-F830-49de-A31B-5BB9D7F6B407} - D:\Program Files\AskBar\bar\bin\askBar.dll
O3 - Toolbar: Ask Toolbar - {5A074B29-F830-49de-A31B-5BB9D7F6B407} - D:\Program Files\AskBar\bar\bin\askBar.dll
O3 - Toolbar: P2P Energy Toolbar - {2bae58c2-79f9-45d1-a286-81f911301c3a} - D:\Program Files\P2P_Energy\tbP2P_.dll
O4 - HKLM\..\Run: [avast!] D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE D:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: &Save Image to Folder - res://D:\Program Files\AskBar\bar\bin\askBar.dll/saveimagetofolder.html
O8 - Extra context menu item: &Save Image to MyStuff - res://D:\Program Files\AskBar\bar\bin\askBar.dll/saveimages.html
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.Email Removed.com/mail/w2/resources/MSNPUpld.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O21 - SSODL: ServiceAlrt - {ccee3275-6c6d-4131-8689-fd4bfc320e3d} - D:\WINDOWS\Installer\{ccee3275-6c6d-4131-8689-fd4bfc320e3d}\ServiceAlrt.dll (file missing)
O21 - SSODL: alofkmn - {56F9E124-FA02-4455-A1E7-ED3FD97A81B4} - D:\WINDOWS\alofkmn.dll (file missing)
O23 - Service: Apple Mobile Device - Apple, Inc. - D:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - D:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - D:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Bonjour Service - Apple Inc. - D:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: iPod Service - Apple Inc. - D:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LVCOMSer - Logitech Inc. - D:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - D:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - D:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\System32\nvsvc32.exe

--
End of file - 5127 bytes
Logged

Offline guestolo

  • Site Donator
  • Administrator
  • Hero Member
  • *****
  • Posts: 16034
  • Karma: +1/-0
    • View Profile
    • http://
Deleted Files!
« Reply #6 on: September 13, 2008, 09:58:21 PM »
Sorry for the delay, can you do the following please
Random's System Information Tool (RSIT)

Download [color=\"blue\"]random's system information tool (RSIT)[/color] by [color=\"#6600cc\"]random/random[/color] from >>[color=\"red\"]here[/color]<< and save it to your desktop.
  • Double click on RSIT.exe to launch program.
  • Click Continue at the disclaimer screen.
  • Your firewall may alert you that RSIT is requesting Internet access. Please allow it.
  • Once it has finished, two logs will open:  log.txt[color=\"red\"]<-- this will be maximized[/color] and info.txt[color=\"red\"]<-- this will be minimized[/color].
Post both those logs please
Logged

Do you want to post your own logs from FRST?

Follow the instructions posted http://www.thetechguide.com/forum/index.php/topic/22942-please-read-how-to-post-logs-from-frst/\'>Click Here

Offline ministermelton

  • Newbie
  • *
  • Posts: 5
  • Karma: +0/-0
    • View Profile
Deleted Files!
« Reply #7 on: September 17, 2008, 03:46:34 AM »
guestolo thanks again here are the logsinfo.txt logfile of random's system information tool 1.02 2008-09-17 02:09:04

======Uninstall list======

-->D:\Program Files\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL
-->D:\WINDOWS\UNNeroVision.exe /UNINSTALL
-->D:\WINDOWS\UNNMIX.exe /UNINSTALL
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 D:\WINDOWS\INF\PCHealth.inf
Addax-->D:\Program Files\Addax\uninstall.exe
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)-->MsiExec.exe /X{6846389C-BAC0-4374-808E-B120F86AF5D7}
Adobe Flash Player ActiveX-->D:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 8.1.2-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A81200000003}
Adobe Shockwave Player 11-->D:\WINDOWS\system32\adobe\SHOCKW~1\UNWISE.EXE D:\WINDOWS\system32\Adobe\SHOCKW~1\Install.log
Adobe® Photoshop® Album Starter Edition 3.2-->MsiExec.exe /I{A654A805-41D9-40C7-AA46-4AF04F044D61}
Apple Mobile Device Support-->MsiExec.exe /I{44734179-8A79-4DEE-BB08-73037F065543}
Apple Software Update-->MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}
ASIO4ALL-->D:\Program Files\ASIO4ALL v2\uninstall.exe
Ask Toolbar for Internet Explorer-->"D:\Program Files\AskBar\unins000.exe"
avast! Antivirus-->D:\Program Files\Alwil Software\Avast4\aswRunDll.exe "D:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
Bonjour-->MsiExec.exe /I{47BF1BD6-DCAC-468F-A0AD-E5DECC2211C3}
Cakewalk.Pro.Audio.9.03-TcC-->D:\audio\cw9\UNWISE.EXE D:\audio\cw9\INSTALL.LOG
Collab-->C:\Program Files\Image-Line\Collab\uninstall.exe
Disk Investigator 1.4-->D:\Program Files\Disk Investigator\uninst.exe
DVD Decoder Pak for Windows XP-->MsiExec.exe /X{92C5DB3D-9D6F-4324-BB11-57825F4C2635}
Easy CD & DVD Creator 6-->MsiExec.exe /I{644F9DBE-CEDB-45AF-ACB8-E26692B74F62}
FL Studio 8-->D:\Program Files\Image-Line\FL Studio 8\uninstall.exe
FruityLoops v3.56 Full-->D:\PROGRA~1\FRUITY~1.56\UNWISE.EXE D:\PROGRA~1\FRUITY~1.56\INSTALL.LOG
HijackThis 2.0.2-->"D:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hotfix for Windows Internet Explorer 7 (KB947864)-->"D:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Hotfix for Windows Media Format 11 SDK (KB929399)-->"D:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
Hotfix for Windows Media Player 11 (KB939683)-->"D:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB952287)-->"D:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
IL Download Manager-->D:\Program Files\Image-Line\Downloader\uninstall.exe
iTunes-->MsiExec.exe /I{585776BC-4BD6-4BD2-A19A-1D6CB44A403B}
Java(tm) 6 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020}
Java(tm) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Logitech Desktop Messenger-->RunDll32 D:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\00\Intel32\Ctor.dll,LaunchSetup "D:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\Setup.exe" -l0x9 UNINSTALL
Logitech QuickCam Driver Package-->"D:\Program Files\Common Files\LogiShrd\LogiDriverStore\lvdrivers\11.50.1145\LgDrvInst.exe" -remove -instdir"D:\Program Files\Common Files\LogiShrd\LogiDriverStore\lvdrivers\" -enumdelay=2000 -enabledifx -forcedelete -usbhubsfirst -forceremove -cumulativeremove -promptuninstall -arpregkey"lvdrivers_11.50" /clone_wait /hide_progress
Logitech QuickCam-->MsiExec.exe /X{945AC98B-3DC8-45BE-BAE0-22CEEE37A103}
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft Compression Client Pack 1.0 for Windows XP-->"D:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"D:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"D:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office Word Viewer 2003-->MsiExec.exe /I{90850409-6000-11D3-8CFE-0150048383C9}
Microsoft Office XP Media Content-->MsiExec.exe /I{90300409-6000-11D3-8CFE-0050048383C9}
Microsoft Office XP Small Business-->MsiExec.exe /I{91130409-6000-11D3-8CFE-0050048383C9}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"D:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mozilla Firefox (2.0.0.16)-->D:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
Nero PhotoShow Express-->"D:\Program Files\Ahead\Ahead\data\Xtras\Uninstall.exe"
Nero Suite-->D:\Program Files\Common Files\Ahead\Uninstall\Setup.exe /uninstall
Norton PC Checkup-->D:\Program Files\Norton PC Checkup\uninstall.exe
NVIDIA Display Driver-->D:\WINDOWS\System32\nvudisp.exe Uninstall D:\WINDOWS\System32\nvdisp.nvu,NVIDIA Display Driver
P2P_Energy Toolbar-->D:\PROGRA~1\P2P_EN~1\UNWISE.EXE D:\PROGRA~1\P2P_EN~1\INSTALL.LOG
Pinnacle VideoSpin-->MsiExec.exe /X{4EDB1CA5-983F-4FC3-A8E3-E34981E05A60}
PoiZone-->D:\Program Files\Image-Line\PoiZone\uninstall.exe
QuickTime-->MsiExec.exe /I{1838C5A2-AB32-4145-85C1-BB9B8DFA24CD}
Reason 4.0-->"D:\Program Files\Propellerhead\Reason\Uninstall Reason\unins000.exe"
Recuva (remove only)-->"C:\Program Files\Recuva\uninst.exe"
Rhapsody Player Engine-->MsiExec.exe /I{2DFF31F9-7893-4922-AF66-C9A1EB4EBB31}
Rhapsody-->D:\PROGRA~1\Rhapsody\Unwise32.exe /A D:\PROGRA~1\Rhapsody\install.log
Sansa Updater-->D:\Program Files\InstallShield Installation Information\{E2D7E05E-C8C7-45F4-8D89-D6696075E0B7}\setup.exe -runfromtemp -l0x0009 -removeonly
Santa Cruz-->RunDll32 D:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "D:\Program Files\InstallShield Installation Information\{A4D58580-EA01-11D3-9318-008048B86EFE}\setup.exe"
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for Windows Internet Explorer 7 (KB938127)-->"D:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB942615)-->"D:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB944533)-->"D:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB950759)-->"D:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB953838)-->"D:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Security Update for Windows Media Player 11 (KB936782)-->"D:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Security Update for Windows Media Player 11 (KB954154)-->"D:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Security Update for Windows XP (KB923789)-->D:\WINDOWS\system32\MacroMed\Flash\genuinst.exe D:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
Security Update for Windows XP (KB938464)-->"D:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Security Update for Windows XP (KB941569)-->"D:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Security Update for Windows XP (KB946648)-->"D:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950760)-->"D:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950762)-->"D:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950974)-->"D:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951066)-->"D:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951376)-->"D:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951376-v2)-->"D:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951698)-->"D:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951748)-->"D:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Security Update for Windows XP (KB952954)-->"D:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Security Update for Windows XP (KB953839)-->"D:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Spelling Dictionaries Support For Adobe Reader 8-->MsiExec.exe /I{AC76BA86-7AD7-5464-3428-800000000003}
Spybot - Search & Destroy-->"D:\Program Files\Spybot - Search & Destroy\unins000.exe"
sQusi Tracking Plus-->MsiExec.exe /X{A1575410-DF46-44B2-B02C-E3A6A2175796}
Toxic Biohazard-->D:\Program Files\Image-Line\Toxic Biohazard\uninstall.exe
Update for Windows XP (KB951072-v2)-->"D:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Update for Windows XP (KB951978)-->"D:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Windows Live installer-->MsiExec.exe /X{A7E4ECCA-4A8E-4258-8EC8-2DCCF5B11320}
Windows Media Format 11 runtime-->"D:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"D:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"D:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Windows Media Player 11-->"D:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows Resource Kit Tools - SubInAcl.exe-->MsiExec.exe /X{D3EE034D-5B92-4A55-AA02-2E6D0A6A96EE}
Windows XP Service Pack 3-->"D:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
WinRAR archiver-->D:\Program Files\WinRAR\uninstall.exe
WM Converter 2.0-->D:\Program Files\WM Converter\Uninstal.exe

======Hosts File======

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com

======Security center information======

AV: avast! antivirus 4.8.1229 [VPS 080916-0]

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;D:\Program Files\Common Files\Roxio Shared\DLLShared;D:\Program Files\QuickTime\QTSystem\;D:\Program Files\Pinnacle\Shared Files\;D:\Program Files\Pinnacle\Shared Files\Filter\
"windir"=%SystemRoot%
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 2 Stepping 4, GenuineIntel
"PROCESSOR_REVISION"=0204
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"FP_NO_HOST_CHECK"=NO
"PS5ROOT"=D:\Program Files\Roxio\Easy CD Creator 6\PhotoSuite\
"CLASSPATH"=.;D:\Program Files\Java\jre1.6.0_03\lib\ext\QTJava.zip
"QTJAVA"=D:\Program Files\Java\jre1.6.0_03\lib\ext\QTJava.zip

-----------------EOF-----------------
Logfile of random's system information tool 1.02 (written by random/random)
Run by Allen Melton at 2008-09-17 02:08:46
Microsoft Windows XP Professional Service Pack 3
System drive D: has 41 GB (53%) free of 76 GB
Total RAM: 511 MB (20% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2:09:00 AM, on 9/17/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\svchost.exe
D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
D:\Program Files\Alwil Software\Avast4\ashServ.exe
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
D:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
D:\WINDOWS\Explorer.EXE
D:\Program Files\Bonjour\mDNSResponder.exe
D:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
D:\WINDOWS\System32\nvsvc32.exe
D:\WINDOWS\System32\svchost.exe
D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
D:\Program Files\Alwil Software\Avast4\ashWebSv.exe
D:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
D:\Program Files\Addax\Addax.exe
D:\Program Files\Java\jre1.6.0_03\bin\javaw.exe
D:\Program Files\Internet Explorer\iexplore.exe
D:\Documents and Settings\Allen Melton\Local Settings\Temporary Internet Files\Content.IE5\V5UXC2FO\RSIT[1].exe
D:\Program Files\Trend Micro\HijackThis\Allen Melton.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: P2P Energy Toolbar - {2bae58c2-79f9-45d1-a286-81f911301c3a} - D:\Program Files\P2P_Energy\tbP2P_.dll
O2 - BHO: P2P Energy Toolbar - {2bae58c2-79f9-45d1-a286-81f911301c3a} - D:\Program Files\P2P_Energy\tbP2P_.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: AskBar BHO - {5A074B21-F830-49de-A31B-5BB9D7F6B407} - D:\Program Files\AskBar\bar\bin\askBar.dll
O3 - Toolbar: Ask Toolbar - {5A074B29-F830-49de-A31B-5BB9D7F6B407} - D:\Program Files\AskBar\bar\bin\askBar.dll
O3 - Toolbar: P2P Energy Toolbar - {2bae58c2-79f9-45d1-a286-81f911301c3a} - D:\Program Files\P2P_Energy\tbP2P_.dll
O4 - HKLM\..\Run: [avast!] D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE D:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: &Save Image to Folder - res://D:\Program Files\AskBar\bar\bin\askBar.dll/saveimagetofolder.html
O8 - Extra context menu item: &Save Image to MyStuff - res://D:\Program Files\AskBar\bar\bin\askBar.dll/saveimages.html
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.Email Removed.com/mail/w2/resources/MSNPUpld.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O21 - SSODL: ServiceAlrt - {ccee3275-6c6d-4131-8689-fd4bfc320e3d} - D:\WINDOWS\Installer\{ccee3275-6c6d-4131-8689-fd4bfc320e3d}\ServiceAlrt.dll (file missing)
O21 - SSODL: alofkmn - {56F9E124-FA02-4455-A1E7-ED3FD97A81B4} - D:\WINDOWS\alofkmn.dll (file missing)
O23 - Service: Apple Mobile Device - Apple, Inc. - D:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - D:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - D:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Bonjour Service - Apple Inc. - D:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: iPod Service - Apple Inc. - D:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LVCOMSer - Logitech Inc. - D:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - D:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - D:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\System32\nvsvc32.exe

--
End of file - 5325 bytes

======Scheduled tasks folder======

D:\WINDOWS\tasks\AppleSoftwareUpdate.job
D:\WINDOWS\tasks\At1.job
D:\WINDOWS\tasks\ParetoLogic Registration.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2bae58c2-79f9-45d1-a286-81f911301c3a}]
P2P Energy Toolbar - D:\Program Files\P2P_Energy\tbP2P_.dll [2008-06-24 1569304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - D:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-01-28 1554256]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5A074B21-F830-49de-A31B-5BB9D7F6B407}]
AskBar BHO - D:\Program Files\AskBar\bar\bin\askBar.dll [2008-02-27 238544]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
SITEguard
{5A074B29-F830-49de-A31B-5BB9D7F6B407} - Ask Toolbar - D:\Program Files\AskBar\bar\bin\askBar.dll [2008-02-27 238544]
{2bae58c2-79f9-45d1-a286-81f911301c3a} - P2P Energy Toolbar - D:\Program Files\P2P_Energy\tbP2P_.dll [2008-06-24 1569304]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast!"=D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2008-07-19 78008]
"NvCplDaemon"=D:\WINDOWS\system32\NvCpl.dll [2003-10-06 5058560]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=D:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Photo Downloader]
D:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe [2007-03-09 63712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
D:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
D:\Program Files\iTunes\iTunesHelper.exe [2008-03-30 267048]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCommunicationsManager]
D:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe [2007-10-25 563984]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
D:\Program Files\Logitech\QuickCam\Quickcam.exe [2007-10-25 2178832]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
D:\Program Files\Messenger\msmsgs.exe [2008-04-13 1695232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
D:\WINDOWS\system32\NvCpl.dll [2003-10-06 5058560]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
nwiz.exe /install []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PhotoShow Deluxe Media Manager]
D:\PROGRA~1\Ahead\Ahead\data\xtras\mssysmgr.exe [2004-05-12 196608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
D:\Program Files\QuickTime\qttask.exe [2008-03-28 413696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxioDragToDisc]
D:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe [2003-01-13 757760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2008-01-28 2097488]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TraySantaCruz]
D:\WINDOWS\system32\tbctray.exe [2002-04-03 290816]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\D:^Documents and Settings^All Users^Start Menu^Programs^Startup^Logitech Desktop Messenger.lnk]
D:\PROGRA~1\Logitech\DESKTO~1\8876480\Program\LOGITE~1.EXE [2008-03-24 66864]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\D:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microsoft Office.lnk]
D:\PROGRA~1\MICROS~2\Office10\OSA.EXE [2001-02-13 83360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\D:^Documents and Settings^All Users^Start Menu^Programs^Startup^sQusi Tracking Plus.lnk]
D:\Program Files\sQusi\sQusi Tracking Plus\sQusiLaunch.exe  []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - D:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
ServiceAlrt - {ccee3275-6c6d-4131-8689-fd4bfc320e3d} - D:\WINDOWS\Installer\{ccee3275-6c6d-4131-8689-fd4bfc320e3d}\ServiceAlrt.dll []
alofkmn - {56F9E124-FA02-4455-A1E7-ED3FD97A81B4} - D:\WINDOWS\alofkmn.dll []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\Program Files\Messenger\msmsgs.exe"="D:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\Program Files\Limewire\LimeWire.exe"="D:\Program Files\Limewire\LimeWire.exe:*:Enabled:LimeWire"
"D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
"D:\Program Files\Bonjour\mDNSResponder.exe"="D:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"D:\Program Files\iTunes\iTunes.exe"="D:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"D:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe"="D:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe:*:Enabled:Render Manager"
"D:\Program Files\Pinnacle\VideoSpin\Programs\PMSRegisterFile.exe"="D:\Program Files\Pinnacle\VideoSpin\Programs\PMSRegisterFile.exe:*:Enabled:PMSRegisterFile"
"D:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe"="D:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe:*:Enabled:umi"
"D:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe"="D:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe:*:Enabled:Pinnacle VideoSpin"
"D:\Program Files\Java\jre1.6.0_03\bin\javaw.exe"="D:\Program Files\Java\jre1.6.0_03\bin\javaw.exe:*:Enabled:Java(tm) Platform SE binary"
"D:\Program Files\Rhapsody\rhapsody.exe"="D:\Program Files\Rhapsody\rhapsody.exe:*:Enabled:Rhapsody Media Player"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{3db93a4e-8120-11dd-a61b-00c0a88b957c}]
shell\AutoRun\command - RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\lsass.exe
shell\open\command - RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\lsass.exe


======File associations======

.reg - open - "regedit.exe" "%1"

======List of files/folders created in the last 1 months======

2008-09-17 02:08:46 ----D---- D:\rsit
2008-09-17 00:12:50 ----D---- D:\WINDOWS\A5W_DATA
2008-09-17 00:12:50 ----A---- D:\WINDOWS\A5W.INI
2008-09-10 00:18:56 ----D---- D:\Program Files\Common Files\ODBC
2008-09-10 00:18:33 ----HDC---- D:\WINDOWS\$NtUninstallKB938464$
2008-09-10 00:17:54 ----HDC---- D:\WINDOWS\$NtUninstallKB954154_WM11$
2008-09-01 14:53:54 ----D---- D:\Documents and Settings\All Users\Application Data\Downloaded Installations
2008-09-01 08:39:15 ----D---- D:\Program Files\Disk Investigator
2008-09-01 02:23:48 ----RHD---- D:\MSOCache
2008-09-01 02:17:16 ----A---- D:\WINDOWS\system32\msxml4a.dll
2008-09-01 02:17:12 ----D---- D:\Program Files\File Recover
2008-08-25 10:27:18 ----HDC---- D:\WINDOWS\$NtUninstallKB951978$
2008-08-24 22:13:21 ----D---- D:\WINDOWS\Prefetch
2008-08-24 21:18:54 ----HDC---- D:\WINDOWS\$NtUninstallKB952954$
2008-08-24 21:18:43 ----HDC---- D:\WINDOWS\$NtUninstallKB952287$
2008-08-24 21:18:32 ----HDC---- D:\WINDOWS\$NtUninstallKB951748$
2008-08-24 21:18:21 ----HDC---- D:\WINDOWS\$NtUninstallKB951698$
2008-08-24 21:18:11 ----HDC---- D:\WINDOWS\$NtUninstallKB951376-v2$
2008-08-24 21:18:01 ----HDC---- D:\WINDOWS\$NtUninstallKB951376$
2008-08-24 21:17:47 ----HDC---- D:\WINDOWS\$NtUninstallKB951066$
2008-08-24 21:17:36 ----HDC---- D:\WINDOWS\$NtUninstallKB950974$
2008-08-24 21:17:25 ----HDC---- D:\WINDOWS\$NtUninstallKB950762$
2008-08-24 21:17:10 ----HDC---- D:\WINDOWS\$NtUninstallKB946648$
2008-08-24 21:11:04 ----A---- D:\WINDOWS\setuplog.txt
2008-08-24 21:08:33 ----D---- D:\WINDOWS\system32\scripting
2008-08-24 21:08:29 ----D---- D:\WINDOWS\l2schemas
2008-08-24 21:08:28 ----D---- D:\WINDOWS\system32\en
2008-08-23 15:27:11 ----N---- D:\WINDOWS\system32\wmphoto.dll
2008-08-23 15:27:01 ----N---- D:\WINDOWS\system32\wlanapi.dll
2008-08-23 15:26:52 ----N---- D:\WINDOWS\system32\windowscodecsext.dll
2008-08-23 15:26:51 ----N---- D:\WINDOWS\system32\windowscodecs.dll
2008-08-23 15:26:22 ----N---- D:\WINDOWS\system32\tspkg.dll
2008-08-23 15:26:22 ----N---- D:\WINDOWS\system32\tsgqec.dll
2008-08-23 15:25:49 ----N---- D:\WINDOWS\system32\setupn.exe
2008-08-23 15:25:42 ----N---- D:\WINDOWS\system32\rhttpaa.dll
2008-08-23 15:25:37 ----N---- D:\WINDOWS\system32\rasqec.dll
2008-08-23 15:25:33 ----N---- D:\WINDOWS\system32\qutil.dll
2008-08-23 15:25:30 ----N---- D:\WINDOWS\system32\qcliprov.dll
2008-08-23 15:25:29 ----N---- D:\WINDOWS\system32\qagentrt.dll
2008-08-23 15:25:29 ----N---- D:\WINDOWS\system32\qagent.dll
2008-08-23 15:25:26 ----N---- D:\WINDOWS\system32\photometadatahandler.dll
2008-08-23 15:25:21 ----N---- D:\WINDOWS\system32\onex.dll
2008-08-23 15:25:01 ----N---- D:\WINDOWS\system32\napstat.exe
2008-08-23 15:25:01 ----N---- D:\WINDOWS\system32\napmontr.dll
2008-08-23 15:25:01 ----N---- D:\WINDOWS\system32\napipsec.dll
2008-08-23 15:24:59 ----N---- D:\WINDOWS\system32\msxml6r.dll
2008-08-23 15:24:58 ----N---- D:\WINDOWS\system32\msxml6.dll
2008-08-23 15:24:54 ----N---- D:\WINDOWS\system32\msshavmsg.dll
2008-08-23 15:24:54 ----N---- D:\WINDOWS\system32\mssha.dll
2008-08-23 15:24:17 ----N---- D:\WINDOWS\system32\mmcperf.exe
2008-08-23 15:24:16 ----N---- D:\WINDOWS\system32\mmcfxcommon.dll
2008-08-23 15:24:16 ----N---- D:\WINDOWS\system32\mmcex.dll
2008-08-23 15:24:15 ----N---- D:\WINDOWS\system32\microsoft.managementconsole.dll
2008-08-23 15:23:46 ----N---- D:\WINDOWS\system32\l2gpstore.dll
2008-08-23 15:23:45 ----N---- D:\WINDOWS\system32\kmsvc.dll
2008-08-23 15:23:44 ----N---- D:\WINDOWS\system32\kbdpash.dll
2008-08-23 15:23:44 ----N---- D:\WINDOWS\system32\kbdnepr.dll
2008-08-23 15:23:44 ----N---- D:\WINDOWS\system32\kbdiultn.dll
2008-08-23 15:23:44 ----N---- D:\WINDOWS\system32\kbdbhc.dll
2008-08-23 15:23:23 ----N---- D:\WINDOWS\system32\smtpapi.dll
2008-08-23 15:23:22 ----N---- D:\WINDOWS\system32\rwnh.dll
2008-08-23 15:22:56 ----A---- D:\WINDOWS\005806_.tmp
2008-08-23 15:22:51 ----N---- D:\WINDOWS\system32\eapsvc.dll
2008-08-23 15:22:51 ----N---- D:\WINDOWS\system32\eapqec.dll
2008-08-23 15:22:51 ----N---- D:\WINDOWS\system32\eappprxy.dll
2008-08-23 15:22:51 ----N---- D:\WINDOWS\system32\eapphost.dll
2008-08-23 15:22:51 ----N---- D:\WINDOWS\system32\eappgnui.dll
2008-08-23 15:22:51 ----N---- D:\WINDOWS\system32\eappcfg.dll
2008-08-23 15:22:50 ----N---- D:\WINDOWS\system32\eapp3hst.dll
2008-08-23 15:22:50 ----N---- D:\WINDOWS\system32\eapolqec.dll
2008-08-23 15:22:45 ----N---- D:\WINDOWS\system32\dot3ui.dll
2008-08-23 15:22:44 ----N---- D:\WINDOWS\system32\dot3svc.dll
2008-08-23 15:22:44 ----N---- D:\WINDOWS\system32\dot3msm.dll
2008-08-23 15:22:44 ----N---- D:\WINDOWS\system32\dot3gpclnt.dll
2008-08-23 15:22:44 ----N---- D:\WINDOWS\system32\dot3dlg.dll
2008-08-23 15:22:44 ----N---- D:\WINDOWS\system32\dot3cfg.dll
2008-08-23 15:22:44 ----N---- D:\WINDOWS\system32\dot3api.dll
2008-08-23 15:22:42 ----N---- D:\WINDOWS\system32\dimsroam.dll
2008-08-23 15:22:42 ----N---- D:\WINDOWS\system32\dimsntfy.dll
2008-08-23 15:22:40 ----N---- D:\WINDOWS\system32\dhcpqec.dll
2008-08-23 15:22:33 ----N---- D:\WINDOWS\system32\credssp.dll
2008-08-23 15:22:20 ----N---- D:\WINDOWS\system32\bitsprx4.dll
2008-08-23 15:22:19 ----N---- D:\WINDOWS\system32\azroles.dll
2008-08-23 15:22:02 ----N---- D:\WINDOWS\system32\aaclient.dll
2008-08-21 17:16:09 ----A---- D:\WINDOWS\system32\voltoCDX.dll
2008-08-21 17:16:09 ----A---- D:\WINDOWS\system32\SmartMenuXP.dll
2008-08-21 17:16:09 ----A---- D:\WINDOWS\system32\MP3EncX.dll
2008-08-21 17:16:09 ----A---- D:\WINDOWS\system32\DVDProX2.dll
2008-08-21 17:16:07 ----A---- D:\WINDOWS\system32\VB5DB.DLL
2008-08-21 16:49:13 ----D---- D:\WINDOWS\system32\SoftwareDistribution
2008-08-20 11:27:19 ----D---- D:\Program Files\Common Files\Symantec Shared

======List of files/folders modified in the last 1 months======

2008-09-17 00:16:35 ----D---- D:\WINDOWS\Temp
2008-09-17 00:16:31 ----D---- D:\WINDOWS
2008-09-17 00:05:04 ----A---- D:\WINDOWS\NeroDigital.ini
2008-09-16 20:52:09 ----D---- D:\Program Files\Mozilla Firefox
2008-09-15 18:00:00 ----A---- D:\WINDOWS\SchedLgU.Txt
2008-09-15 03:38:46 ----D---- D:\WINDOWS\system32\CatRoot2
2008-09-12 16:12:05 ----HD---- D:\WINDOWS\inf
2008-09-11 19:04:33 ----D---- D:\Program Files\WM Converter
2008-09-10 00:19:35 ----SHD---- D:\WINDOWS\Installer
2008-09-10 00:18:56 ----D---- D:\Program Files\Common Files
2008-09-10 00:18:34 ----D---- D:\WINDOWS\WinSxS
2008-09-10 00:18:33 ----D---- D:\WINDOWS\system32
2008-09-10 00:18:05 ----A---- D:\WINDOWS\imsins.BAK
2008-09-06 20:26:12 ----D---- D:\Program Files\Common Files\Services
2008-09-04 18:20:04 ----A---- D:\WINDOWS\win.ini
2008-09-04 18:20:04 ----A---- D:\WINDOWS\system.ini
2008-09-01 18:02:15 ----D---- D:\WINDOWS\Help
2008-09-01 18:00:24 ----D---- D:\Documents and Settings\Allen Melton\Application Data\Help
2008-09-01 14:56:14 ----SD---- D:\WINDOWS\Tasks
2008-09-01 14:02:02 ----AD---- D:\Documents and Settings\All Users\Application Data\TEMP
2008-09-01 08:39:15 ----RD---- D:\Program Files
2008-09-01 02:47:14 ----D---- D:\WINDOWS\system32\CatRoot
2008-09-01 02:24:27 ----D---- D:\Program Files\Common Files\Microsoft Shared
2008-09-01 02:24:26 ----D---- D:\Program Files\Microsoft Office
2008-08-26 13:28:12 ----A---- D:\WINDOWS\system32\MRT.exe
2008-08-25 10:27:22 ----RSHDC---- D:\WINDOWS\system32\dllcache
2008-08-25 10:26:05 ----AC---- D:\WINDOWS\OEWABLog.txt
2008-08-25 10:21:29 ----HD---- D:\WINDOWS\$hf_mig$
2008-08-25 10:20:44 ----AC---- D:\WINDOWS\system32\PerfStringBackup.INI
2008-08-24 22:12:29 ----D---- D:\WINDOWS\system32\Setup
2008-08-24 22:12:29 ----D---- D:\WINDOWS\ime
2008-08-24 22:12:29 ----D---- D:\WINDOWS\AppPatch
2008-08-24 22:12:28 ----D---- D:\WINDOWS\system32\wbem
2008-08-24 22:12:27 ----RSD---- D:\WINDOWS\Fonts
2008-08-24 22:12:18 ----D---- D:\WINDOWS\system32\drivers
2008-08-24 21:22:46 ----D---- D:\WINDOWS\security
2008-08-24 21:17:12 ----D---- D:\Program Files\Messenger
2008-08-24 21:09:26 ----D---- D:\WINDOWS\ServicePackFiles
2008-08-24 21:09:03 ----D---- D:\WINDOWS\system32\inetsrv
2008-08-24 21:09:02 ----D---- D:\WINDOWS\network diagnostic
2008-08-24 21:08:35 ----D---- D:\WINDOWS\system32\usmt
2008-08-24 21:08:35 ----D---- D:\WINDOWS\system32\en-US
2008-08-24 21:08:27 ----D---- D:\WINDOWS\system32\bits
2008-08-24 21:08:27 ----D---- D:\WINDOWS\peernet
2008-08-24 21:08:27 ----D---- D:\Program Files\Movie Maker
2008-08-24 21:02:51 ----D---- D:\WINDOWS\system32\Restore
2008-08-24 21:02:50 ----D---- D:\WINDOWS\system32\npp
2008-08-24 21:02:49 ----D---- D:\WINDOWS\msagent
2008-08-24 21:02:46 ----D---- D:\WINDOWS\srchasst
2008-08-24 21:02:44 ----D---- D:\Program Files\NetMeeting
2008-08-24 21:02:42 ----D---- D:\WINDOWS\system32\Com
2008-08-24 21:02:39 ----D---- D:\Program Files\Windows Media Player
2008-08-24 21:02:38 ----D---- D:\Program Files\Windows NT
2008-08-24 21:02:38 ----D---- D:\Program Files\Outlook Express
2008-08-24 21:02:33 ----D---- D:\Program Files\Common Files\System
2008-08-24 21:02:02 ----D---- D:\WINDOWS\system32\oobe
2008-08-24 21:01:59 ----D---- D:\WINDOWS\system
2008-08-24 20:56:50 ----D---- D:\WINDOWS\system32\ReinstallBackups
2008-08-24 20:56:28 ----HDC---- D:\WINDOWS\$NtServicePackUninstall$
2008-08-24 20:50:04 ----D---- D:\WINDOWS\EHome
2008-08-23 15:28:34 ----AC---- D:\WINDOWS\cdplayer.ini
2008-08-23 08:49:09 ----D---- D:\WINDOWS\Debug
2008-08-22 00:45:05 ----D---- D:\Documents and Settings
2008-08-21 17:16:06 ----HD---- D:\Program Files\InstallShield Installation Information
2008-08-20 08:26:43 ----SD---- D:\WINDOWS\Downloaded Program Files
2008-08-19 17:31:24 ----D---- D:\WINDOWS\Minidump

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; D:\WINDOWS\system32\drivers\Aavmker4.sys [2008-07-19 26944]
R1 aswSP;avast! Self Protection; D:\WINDOWS\system32\drivers\aswSP.sys [2008-07-19 78416]
R1 aswTdi;avast! Network Shield Support; D:\WINDOWS\system32\drivers\aswTdi.sys [2008-07-19 42912]
R1 Cdr4_xp;Cdr4_xp; D:\WINDOWS\system32\drivers\Cdr4_xp.sys [2003-01-13 64208]
R1 Cdralw2k;Cdralw2k; D:\WINDOWS\system32\drivers\Cdralw2k.sys [2003-01-13 24839]
R1 cdudf_xp;cdudf_xp; D:\WINDOWS\system32\drivers\cdudf_xp.sys [2003-01-13 249344]
R1 intelppm;Intel Processor Driver; D:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-13 36352]
R1 kbdhid;Keyboard HID Driver; D:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14592]
R1 pwd_2k;pwd_2k; D:\WINDOWS\system32\drivers\pwd_2k.sys [2003-01-13 118422]
R1 UdfReadr_xp;UdfReadr_xp; D:\WINDOWS\system32\drivers\UdfReadr_xp.sys [2003-01-13 206464]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; D:\WINDOWS\System32\drivers\ws2ifsl.sys [2002-06-25 12032]
R2 aswFsBlk;aswFsBlk; D:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2008-07-19 20560]
R2 aswMon2;avast! Standard Shield Support; D:\WINDOWS\system32\drivers\aswMon2.sys [2008-07-19 94416]
R2 Fallback;Fallback; D:\WINDOWS\System32\DRIVERS\HSF_FALL.sys [2001-08-17 289887]
R2 Fsks;Fsks; D:\WINDOWS\System32\DRIVERS\HSF_FSKS.sys [2001-08-17 115807]
R2 K56;K56; D:\WINDOWS\System32\DRIVERS\HSF_K56K.sys [2001-08-17 391199]
R2 MCSTRM;MCSTRM; D:\WINDOWS\system32\drivers\MCSTRM.sys [2007-12-28 8413]
R2 mdmxsdk;mdmxsdk; D:\WINDOWS\System32\DRIVERS\mdmxsdk.sys [2004-08-03 11868]
R2 SoftFax;SoftFax; D:\WINDOWS\System32\DRIVERS\HSF_FAXX.sys [2001-08-17 199711]
R2 SpeakerPhone;SpeakerPhone; D:\WINDOWS\System32\DRIVERS\HSF_SPKP.sys [2001-08-17 73279]
R2 Tones;Tones; D:\WINDOWS\System32\DRIVERS\HSF_TONE.sys [2001-08-17 50751]
R2 V124;V124; D:\WINDOWS\System32\DRIVERS\HSF_V124.sys [2001-08-17 488383]
R3 aswRdr;aswRdr; D:\WINDOWS\system32\drivers\aswRdr.sys [2008-07-19 23152]
R3 dvd_2K;dvd_2K; D:\WINDOWS\system32\drivers\dvd_2K.sys [2003-01-13 21654]
R3 GEARAspiWDM;GEARAspiWDM; D:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2008-01-29 16168]
R3 hidusb;Microsoft HID Class Driver; D:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 HSF_DP;HSF_DP; D:\WINDOWS\System32\DRIVERS\HSFDPSP2.sys [2004-08-03 1041536]
R3 HSFHWBS2;HSFHWBS2; D:\WINDOWS\System32\DRIVERS\HSFBS2S2.sys [2004-08-03 220032]
R3 LVPr2Mon;Logitech LVPr2Mon Driver; D:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys [2007-10-11 25624]
R3 MODEMCSA;Unimodem Streaming Filter Device; D:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
R3 mouhid;Mouse HID Driver; D:\WINDOWS\System32\DRIVERS\mouhid.sys [2002-06-25 12160]
R3 nv;nv; D:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2003-10-06 1550043]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; D:\WINDOWS\System32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 tbcspud;Santa Cruz Driver; D:\WINDOWS\system32\drivers\tbcspud.sys [2002-04-03 144768]
R3 tbcwdm;Santa Cruz WDM Driver; D:\WINDOWS\system32\drivers\tbcwdm.sys [2002-04-03 545088]
R3 usbccgp;Microsoft USB Generic Parent Driver; D:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbhub;Microsoft USB Standard Hub Driver; D:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; D:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 winachsf;winachsf; D:\WINDOWS\System32\DRIVERS\HSFCXTS2.sys [2004-08-03 685056]
S3 basic2;basic2; D:\WINDOWS\System32\DRIVERS\HSF_BSC2.sys [2001-08-17 67167]
S3 CCDECODE;Closed Caption Decoder; D:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 hsf_msft;hsf_msft; D:\WINDOWS\System32\DRIVERS\HSF_MSFT.sys [2001-08-17 542879]
S3 LVcKap;Logitech AEC Driver; D:\WINDOWS\system32\DRIVERS\LVcKap.sys [2007-10-19 2109976]
S3 LVMVDrv;Logitech Machine Vision Engine Loader; D:\WINDOWS\system32\DRIVERS\LVMVDrv.sys [2007-10-11 2142488]
S3 LVUSBSta;Logitech USB Monitor Filter; D:\WINDOWS\system32\drivers\LVUSBSta.sys [2007-10-11 41752]
S3 mmc_2K;mmc_2K; D:\WINDOWS\system32\drivers\mmc_2K.sys [2003-01-13 22758]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; D:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; D:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; D:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 Pcouffin;Low level access layer for CD devices; D:\WINDOWS\System32\Drivers\Pcouffin.sys []
S3 pepifilter;Volume Adapter; D:\WINDOWS\system32\DRIVERS\lv302af.sys [2007-10-11 13848]
S3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); D:\WINDOWS\system32\DRIVERS\LV302V32.SYS [2007-10-11 1279000]
S3 Rksample;Rksample; D:\WINDOWS\System32\DRIVERS\HSF_SAMP.sys [2001-08-17 57471]
S3 SLIP;BDA Slip De-Framer; D:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; D:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 TVICHW32;TVICHW32; \??\D:\WINDOWS\system32\DRIVERS\TVICHW32.SYS []
S3 usbaudio;USB Audio Driver (WDM); D:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 USBSTOR;USB Mass Storage Driver; D:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 vtdg46xx;vtdg46xx; \??\D:\PROGRA~1\TURTLE~1\SANTAC~1\CONTRO~1\vtdg46xx.sys []
S3 WpdUsb;WpdUsb; D:\WINDOWS\System32\Drivers\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;World Standard Teletext Codec; D:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; D:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; D:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-02-18 110592]
R2 aswUpdSv;avast! iAVS4 Control Service; D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2008-07-19 16056]
R2 avast! Antivirus;avast! Antivirus; D:\Program Files\Alwil Software\Avast4\ashServ.exe [2008-07-19 147640]
R2 Bonjour Service;Bonjour Service; D:\Program Files\Bonjour\mDNSResponder.exe [2007-07-24 229376]
R2 LVCOMSer;LVCOMSer; D:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe [2007-10-19 186904]
R2 LVPrcSrv;Process Monitor; D:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2007-10-19 141848]
R2 MDM;Machine Debug Manager; D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe [2003-06-20 322120]
R2 NVSvc;NVIDIA Display Driver Service; D:\WINDOWS\System32\nvsvc32.exe [2003-10-06 81920]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; D:\WINDOWS\system32\svchost.exe [2008-04-13 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2008-07-19 250040]
R3 avast! Web Scanner;avast! Web Scanner; D:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2008-07-23 348344]
S2 LVSrvLauncher;LVSrvLauncher; D:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe [2007-10-19 141848]
S3 aspnet_state;ASP.NET State Service; D:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; D:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 iPod Service;iPod Service; D:\Program Files\iPod\bin\iPodService.exe [2008-03-30 504104]
S3 ose;Office Source Engine; D:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WLSetupSvc;Windows Live Setup Service; D:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; D:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]

-----------------EOF-----------------
Thank You for helping me! Minister Melton
Logged

Offline guestolo

  • Site Donator
  • Administrator
  • Hero Member
  • *****
  • Posts: 16034
  • Karma: +1/-0
    • View Profile
    • http://
Deleted Files!
« Reply #8 on: September 20, 2008, 10:12:39 AM »
Sorry for the delay
Can you do the following please

Close down all browser windows, Access your Add and Remove Programs and uninstall
Ask Toolbar for Internet Explorer

If you didn't purposely install
P2P_Energy Toolbar
Remove it also

Remain in Add and Remove programs
Uninstall the following, with all browser windows closed
Javaâ„¢ 6 Update 2
Javaâ„¢ 6 Update 3

Reboot your computer
Back in Windows
 
[color=\"blue\"]Updating Java:[/color]
  • Download the latest version of  Java Runtime Environment (JRE) 6.
  • Scroll down to where it says "Java Runtime Environment (JRE) 6 Update 7".
  • Click the "Download" button to the right.
  • In the Window that opens, select Windows,>>Check the "agree" box and click Continue.
  • Click on the link to download Windows Offline Installation and save to your desktop.

  • Then from your desktop double-click on jre-6u7-windows-i586-p.exe that you downloaded to install the newest version.
After successful install, you can delete the installer from desktop

NEXT:
It appears you have a flash drive infection. Please download Flash_Disinfector by sUBs and save it to your desktop:

NOTE: In the event you already have Flash_Disinfector, this is a newer version that I need you to download.

    * Plug in your USB flash drive.
    * Double-click Flash_Disinfector.exe to run it.
    * Follow any prompts that may appear.
    * Your desktop will vanish for a while, and then reappear. This is normal.
    * Wait until the program has finished scanning, then please exit the program. If you use more than 1 flash drive, run the tool with each plugged in.

NEXT:
download Malwarebytes' Anti-Malware from Here or Here
Save the installer to desktop

Double Click mbam-setup.exe to install the application.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Full Scan", then click Scan.
       
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
       
  • Make sure that everything is checked, and click Remove Selected.
        * When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
       
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply
Extra Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediately.

Post back all the following please

1. Post the log from MBAM
2. Run RSIT.exe again, posting both logs

NOTE: It may take more than one reply to post all the info
Logged

Do you want to post your own logs from FRST?

Follow the instructions posted http://www.thetechguide.com/forum/index.php/topic/22942-please-read-how-to-post-logs-from-frst/\'>Click Here

Pages: [1]
« previous next »