Author Topic: vista blue screen, crashes (Read 31637 times)

debwins · « **on:** March 24, 2012, 08:01:11 PM »

Malwarebytes Anti-Malware 1.60.1.1000
www.malwarebytes.org

Database version: v2012.03.24.03

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Tammy :: TAMMY-PC [administrator]

3/24/2012 6:30:40 PM
mbam-log-2012-03-24 (18-30-40).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 225078
Time elapsed: 17 minute(s), 20 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 03/24/2012 at 09:18 PM

Application Version : 5.0.1146

Core Rules Database Version : 8377
Trace Rules Database Version: 6189

Scan type : Complete Scan
Total Scan Time : 01:14:55

Operating System Information
Windows Vista Home Premium 32-bit, Service Pack 2 (Build 6.00.6002)
UAC On - Limited User (Administrator User)

Memory items scanned : 620
Memory threats detected : 0
Registry items scanned : 34471
Registry threats detected : 0
File items scanned : 58192
File threats detected : 9

Adware.Tracking Cookie
   C:\USERS\TAMMY\AppData\Roaming\Microsoft\Windows\Cookies\Low\OBK6S21U.txt [ Cookie:[email protected]/ ]
   C:\USERS\TAMMY\AppData\Roaming\Microsoft\Windows\Cookies\Low\JIQEAX2W.txt [ Cookie:[email protected]/ ]
   C:\USERS\TAMMY\AppData\Roaming\Microsoft\Windows\Cookies\Low\AC8R0ICC.txt [ Cookie:[email protected]/ ]
   C:\USERS\TAMMY\AppData\Roaming\Microsoft\Windows\Cookies\Low\HFOFSIO9.txt [ Cookie:[email protected]/ ]
   C:\USERS\TAMMY\AppData\Roaming\Microsoft\Windows\Cookies\Low\E8HXRL1V.txt [ Cookie:[email protected]/ ]
   C:\USERS\TAMMY\AppData\Roaming\Microsoft\Windows\Cookies\Low\QAZTPKQV.txt [ Cookie:[email protected]/ ]
   C:\USERS\TAMMY\AppData\Roaming\Microsoft\Windows\Cookies\Low\5DYSCY5X.txt [ Cookie:[email protected]/ ]
   C:\USERS\TAMMY\AppData\Roaming\Microsoft\Windows\Cookies\Low\F6S0RWE9.txt [ Cookie:[email protected]/adserving ]
   s0.2mdn.net [ C:\USERS\TAMMY\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\HLQ5AWKY ]
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft® Windows Vista™ Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 2/14/2009 12:58:32 PM
System Uptime: 3/24/2012 5:59:07 PM (2 hours ago)
.
Motherboard: eMachines | | MCP61PM-GM
Processor: AMD Athlon(tm) Dual Core Processor 4050e | Socket AM2

| 2100/201mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 288 GiB total, 153.826 GiB free.
E: is Removable
F: is Removable
G: is Removable
H: is CDROM (CDFS)
I: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
.
==== Installed Programs ======================
.
Update for Microsoft Office 2007 (KB2508958)
3ivx D4 4.5.1 Decoder (remove only)
Adobe Flash Player 10 Plugin
Adobe Flash Player 11 ActiveX
Adobe Reader 8.1.2
Adobe Shockwave Player 11.5
Agere Systems PCI-SV92PP Soft Modem
AnalogX AutoTune
Apple Application Support
Apple Mobile Device Support
Apple Software Update
ArcSoft Magic-i 3
ArcSoft VideoImpression 2
ArcSoft WebCam Companion 2
ASIO4ALL
Audacity 1.3.12 (Unicode)
AVG 2012
Bandoo
BFlix Toolbar
BigFix
Bing Bar Platform
Bing Rewards Client Installer
Bonjour
Canon MP280 series MP Drivers
CCleaner
Chuzzle Deluxe
Cisco Connect
CommentsBar_-_Social_Comments Toolbar
Compatibility Pack for the 2007 Office system
Crossrider Web Apps
CyberLink LabelPrint
CyberLink Power2Go
Deluge 1.1.4
Digital Media Reader
Download Updater (AOL LLC)
Drumaxx
EA Download Manager
eMachines Games
eMachines Recovery Management
Facebook Video Calling 1.1.1.1
FL Studio 9
Free Realms
GameHouse
GearDrvs
Google Earth Plug-in
Google Update Helper
GTK2-Runtime
Hardwood Euchre
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Microsoft .NET Framework 4 Client Profile (KB2461678)
HP Button Manager
HP Webcam User's Guide
IL Download Manager
iLivid
Insider Tales - The Stolen Venus
iTunes
Java Auto Updater
Java(TM) 6 Update 31
Kies mini
kSolo Recorder
Logitech Print Service
Logitech QuickCam Software
Logitech® Camera Driver
LSI PCI-SV92PP Soft Modem
Malwarebytes Anti-Malware version 1.60.1.1000
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft Default Manager
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Suite Activation Assistant
Microsoft Office Word MUI (English) 2007
Microsoft Office Word Viewer 2003
Microsoft Search Enhancement Pack
Microsoft Silverlight
Microsoft VC9 runtime libraries
Microsoft Visual C++ 2005 ATL Update kb973923 - x86

8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86

9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Works
Microsoft WSE 3.0 Runtime
Microsoft Zoo Tycoon
Move Media Player
MyDefrag v4.3.1
MyRingToneServer
NVIDIA Drivers
OpenAL
Planet Horse Demo 1.0
PoiZone
PVSonyDll
QuickTime
Realtek High Definition Audio Driver
Safari
Sakura
SAMSUNG USB Driver for Mobile Phones
Sawer
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Security Update for Microsoft .NET Framework 4 Client Profile

(KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile

(KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile

(KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile

(KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile

(KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile

(KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile

(KB2656351)
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit

Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764)

32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912)

32-Bit Edition
Skype Click to Call
Skype™ 5.8
Softonic-Eng7 Toolbar
SUPERAntiSpyware
The Sims 2 Open For Business
The Sims 2 Pets
The Sims™ 2 Apartment Life
The Sims™ 2 Bon Voyage
The Sims™ 2 Deluxe
The Sims™ 2 Kitchen & Bath Interior Design Stuff
The Sims™ 2 University Life Collection
The Sims™ 3
Toxic Biohazard
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft Office 2007 Help for Common Features

(KB963673)
Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition
Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Windows Live ID Sign-in Assistant
WinZip 14.5
.
==== Event Viewer Messages From Past Week ========
.
3/24/2012 5:32:37 PM, Error: Service Control Manager [7016] - The

NVIDIA Display Driver Service service has reported an invalid current

state 32.
3/24/2012 5:27:31 PM, Error: Service Control Manager [7032] - The

Service Control Manager tried to take a corrective action (Restart the

service) after the unexpected termination of the Windows Search

service, but this action failed with the following error: An instance of

the service is already running.
3/24/2012 5:27:31 PM, Error: Service Control Manager [7031] - The

Windows Search service terminated unexpectedly. It has done this 1

time(s). The following corrective action will be taken in 30000

milliseconds: Restart the service.
3/24/2012 5:27:31 PM, Error: Service Control Manager [7024] - The

Windows Search service terminated with service-specific error

2147749155 (0x80040D23).
3/24/2012 3:53:50 PM, Error: Service Control Manager [7026] - The

following boot-start or system-start driver(s) failed to load: Avgldx86

Avgmfx86 spldr Wanarpv6
3/24/2012 3:53:50 PM, Error: Service Control Manager [7001] - The

Computer Browser service depends on the Server service which failed

to start because of the following error: The dependency service or

group failed to start.
3/24/2012 3:53:29 PM, Error: Microsoft-Windows-DistributedCOM

[10005] - DCOM got error "1084" attempting to start the service

WSearch with arguments "" in order to run the server: {7D096C5F-

AC08-4F1F-BEB7-5C22C517CE39}
3/24/2012 3:53:18 PM, Error: Microsoft-Windows-DistributedCOM

[10005] - DCOM got error "1084" attempting to start the service

WSearch with arguments "" in order to run the server: {9E175B6D-

F52A-11D8-B9A5-505054503030}
3/24/2012 3:53:11 PM, Error: Microsoft-Windows-DistributedCOM

[10005] - DCOM got error "1068" attempting to start the service

fdPHost with arguments "" in order to run the server: {145B4335-FE2A

-4927-A040-7C35AD3180EF}
3/24/2012 3:53:06 PM, Error: Microsoft-Windows-DistributedCOM

[10005] - DCOM got error "1084" attempting to start the service

EventSystem with arguments "" in order to run the server: {1BE1F766-

5536-11D1-B726-00C04FB926AF}
3/24/2012 3:52:50 PM, Error: Microsoft-Windows-DistributedCOM

[10005] - DCOM got error "1084" attempting to start the service

ShellHWDetection with arguments "" in order to run the server:

{DD522ACC-F821-461A-A407-50B198B896DC}
3/24/2012 3:52:33 PM, Error: EventLog [6008] - The previous system

shutdown at 12:30:47 AM on 3/22/2012 was unexpected.
3/22/2012 12:24:59 AM, Error: EventLog [6008] - The previous

system shutdown at 11:40:35 PM on 3/21/2012 was unexpected.
3/21/2012 11:25:43 PM, Error: EventLog [6008] - The previous system

shutdown at 8:00:37 PM on 3/21/2012 was unexpected.
3/20/2012 3:44:29 PM, Error: EventLog [6008] - The previous system

shutdown at 3:42:10 PM on 3/20/2012 was unexpected.
3/20/2012 3:42:10 PM, Error: EventLog [6008] - The previous system

shutdown at 3:39:29 PM on 3/20/2012 was unexpected.
3/20/2012 3:32:55 PM, Error: Service Control Manager [7011] - A

timeout (30000 milliseconds) was reached while waiting for a

transaction response from the stisvc service.
3/20/2012 3:31:31 PM, Error: Service Control Manager [7011] - A

timeout (30000 milliseconds) was reached while waiting for a

transaction response from the Netman service.
3/19/2012 8:34:34 AM, Error: EventLog [6008] - The previous system

shutdown at 8:32:43 AM on 3/19/2012 was unexpected.
3/19/2012 4:21:40 PM, Error: EventLog [6008] - The previous system

shutdown at 4:19:26 PM on 3/19/2012 was unexpected.
3/19/2012 3:53:10 PM, Error: nvstor32 [5] - A parity error was

detected on \Device\RaidPort0.
3/18/2012 4:41:30 PM, Error: EventLog [6008] - The previous system

shutdown at 3:47:58 PM on 3/18/2012 was unexpected.
3/18/2012 3:45:26 PM, Error: EventLog [6008] - The previous system

shutdown at 3:43:04 PM on 3/18/2012 was unexpected.
3/18/2012 12:40:09 AM, Error: EventLog [6008] - The previous

system shutdown at 11:58:06 PM on 3/17/2012 was unexpected.
3/18/2012 1:28:40 PM, Error: EventLog [6008] - The previous system

shutdown at 1:26:41 PM on 3/18/2012 was unexpected.
3/17/2012 3:19:44 AM, Error: Service Control Manager [7016] - The

MgiSvr service has reported an invalid current state 32.
3/17/2012 12:33:00 AM, Error: EventLog [6008] - The previous

system shutdown at 3:43:42 PM on 3/16/2012 was unexpected.
3/17/2012 11:58:54 PM, Error: Service Control Manager [7011] - A

timeout (30000 milliseconds) was reached while waiting for a

transaction response from the AudioEndpointBuilder service.
3/17/2012 1:16:46 AM, Error: Service Control Manager [7022] - The

Background Intelligent Transfer Service service hung on starting.
3/17/2012 1:16:46 AM, Error: Service Control Manager [7009] - A

timeout was reached (30000 milliseconds) while waiting for the

Microsoft .NET Framework NGEN v4.0.30319_X86 service to connect.
.
==== End Of File ===========================
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 9.0.8112.16421
Run by Tammy at 19:29:07 on 2012-03-24
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.2942.1393 [GMT -4:00]
.
AV: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\PROGRA~1\AVG\AVG2012\avgrsx.exe
C:\Program Files\AVG\AVG2012\avgcsrvx.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
C:\Windows\system32\agrsmsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\AVG\AVG2012\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\EMACHINES\eMachines Recovery Management\Service\ETService.exe
C:\Program Files\AVG\AVG2012\avgnsx.exe
C:\Program Files\AVG\AVG2012\avgemcx.exe
C:\Program Files\ArcSoft\Magic-i 3\uMgiSvr.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Bandoo\Bandoo.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Windows\System32\LVCOMSX.EXE
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\AVG\AVG2012\avgui.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil11e_ActiveX.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.aol.com/?mtmhp=acm50mtmhpunauthgreeting
uSearch Bar = Preserve
mStart Page = hxxp://search.entru.com/?s=21982
uInternet Settings,ProxyOverride = *.local
mURLSearchHooks: CommentsBar - Social Comments Toolbar: {3192b808-ec27-4332-b6c6-97f82692cad5} - c:\program files\commentsbar_-_social_comments\tbCom0.dll
mURLSearchHooks: Softonic-Eng7 Toolbar: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - c:\program files\softonic-eng7\tbSoft.dll
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: CommentsBar - Social Comments Toolbar: {3192b808-ec27-4332-b6c6-97f82692cad5} - c:\program files\commentsbar_-_social_comments\tbCom0.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg2012\avgssie.dll
BHO: Softonic-Eng7 Toolbar: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - c:\program files\softonic-eng7\tbSoft.dll
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SEPsearchhelperie.dll
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: BFlix Toolbar: {a6bf16ab-42a1-4bc5-965d-5e407e449aaa} - c:\program files\bflixtoolbar\vmntemplateX.dll
BHO: CrossRider: {a876e312-7d08-401a-b7a6-fafc5dc2f292} - c:\program files\crossriderwebapps\Crossrider.dll
BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - No File
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: BandooIEPlugin Class: {eb5cee80-030a-4ed8-8e20-454e9c68380f} - c:\program files\bandoo\plugins\ie\ieplugin.dll
TB: {a3704fa3-dbf6-46b5-b95e-0677dfd39577} - No File
TB: CommentsBar - Social Comments Toolbar: {3192b808-ec27-4332-b6c6-97f82692cad5} - c:\program files\commentsbar_-_social_comments\tbCom0.dll
TB: Softonic-Eng7 Toolbar: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - c:\program files\softonic-eng7\tbSoft.dll
TB: {8dcb7100-df86-4384-8842-8fa844297b3f} - No File
TB: BFlix Toolbar: {a6bf16ab-42a1-4bc5-965d-5e407e449aaa} - c:\program files\bflixtoolbar\vmntemplateX.dll
TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
uRun: [LogitechSoftwareUpdate] "c:\program files\logitech\video\ManifestEngine.exe" boot
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /minimized /regrun
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
mRun: [Malwarebytes Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [AVG_TRAY] "c:\program files\avg\avg2012\avgtray.exe"
mRun: [LogitechVideoRepair] c:\program files\logitech\video\ISStart.exe
mRun: [LogitechVideoTray] c:\program files\logitech\video\LogiTray.exe
mRun: [LVCOMSX] c:\windows\system32\LVCOMSX.EXE
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRunOnce: [AvgUninstallURL] cmd.exe /c start http://www.avg.com/ww.special-uninstallation-feedback-appf?lic=NFVZOVgtTlNWVkwtTzRCW
lEtUUlNQ0wtUVREQ0gtNElKTUg"&"inst=NzctMTEwNjc0NzYxNi1CQSsxLUtWMys3LVhMKzEtVDEtVUNBTEwrMS1VQ0FMTDIrMi1UQjkrMi1GTCs5LVhP
MzYrMS1GOU03Qys1LUY5TTEwQisxLUY5TTIrMS1 GTDEwKzEtTElDKzItRERUKzQ4MDI5LUxTRCsyLU REMTBGKzEtU1QxMEZBUFArMS1GMTBNMTJBTisx
LUYxME0xMkErMS1GMTBNMTJBQisxLVUxMCsxLUY xME0xMkFUQk4rMS1GMTBNMTJCKzEtU1QxMEZPSS sx"&"prod=90"&"ver=10.0.1411
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBC} - c:\program files\java\jre6\bin\ssv.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos-beta/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer = 192.168.1.254
TCP: Interfaces\{ABF127C2-0520-4364-BA2A-AAB26DA78954} : DhcpNameServer = 192.168.1.254
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg2012\avgpp.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
AppInit_DLLs: c:\progra~1\google\google~1\googledesktopnetwork3.dll c:\progra~1\bandoo\bndhook.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [2011-7-11 23120]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2011-9-13 32592]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2011-10-7 230608]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2011-8-8 40016]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2011-7-11 295248]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2011-8-11 116608]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2012\AVGIDSAgent.exe [2011-10-12 4433248]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg2012\avgwdsvc.exe [2011-8-2 192776]
R2 ETService;Empowering Technology Service;c:\program files\emachines\emachines recovery management\service\ETService.exe [2009-2-14 24576]
R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-20 21504]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [2011-7-11 134736]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [2011-7-11 24272]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [2011-10-4 16720]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 gupdate1ca88d63856a6cc;Google Update Service (gupdate1ca88d63856a6cc);c:\program files\google\update\GoogleUpdate.exe [2009-12-29 133104]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-2-29 158856]
S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [2011-5-8 20032]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2009-12-29 133104]
S3 motccgp;Motorola USB Composite Device Driver;c:\windows\system32\drivers\motccgp.sys [2008-8-21 18688]
S3 motccgpfl;MotCcgpFlService;c:\windows\system32\drivers\motccgpfl.sys [2008-8-21 8320]
S3 motport;Motorola USB Diagnostic Port;c:\windows\system32\drivers\motport.sys [2007-6-18 23680]
S3 mr97310c;CIF Dual-Mode Camera;c:\windows\system32\drivers\mr97310c.sys [2008-3-27 116992]
S3 SWDUMon;SWDUMon;c:\windows\system32\drivers\SWDUMon.sys [2011-12-4 12984]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== Created Last 30 ================
.
2012-03-24 20:17:24   --------   d-----w-   c:\users\tammy\appdata\roaming\SUPERAntiSpyware.com
2012-03-24 20:16:39   --------   d-----w-   c:\programdata\SUPERAntiSpyware.com
2012-03-24 20:16:39   --------   d-----w-   c:\program files\SUPERAntiSpyware
2012-03-17 05:28:28   2044416   ----a-w-   c:\windows\system32\win32k.sys
2012-03-17 05:28:27   683008   ----a-w-   c:\windows\system32\d2d1.dll
2012-03-17 05:28:27   219648   ----a-w-   c:\windows\system32\d3d10_1core.dll
2012-03-17 05:28:27   160768   ----a-w-   c:\windows\system32\d3d10_1.dll
2012-03-17 05:28:27   1172480   ----a-w-   c:\windows\system32\d3d10warp.dll
2012-03-17 05:28:27   1068544   ----a-w-   c:\windows\system32\DWrite.dll
2012-03-17 05:28:26   2409784   ----a-w-   c:\program files\windows mail\OESpamFilter.dat
2012-03-17 05:28:06   613376   ----a-w-   c:\windows\system32\rdpencom.dll
2012-03-17 05:28:06   180736   ----a-w-   c:\windows\system32\drivers\rdpwd.sys
2012-03-13 00:25:22   73216   ----a-w-   c:\windows\system32\spool\prtprocs\w32x86\CNMPPAA.DLL
2012-03-13 00:25:22   27648   ----a-w-   c:\windows\system32\spool\prtprocs\w32x86\CNMPDAA.DLL
2012-03-13 00:24:31   290816   ----a-w-   c:\windows\system32\CNMLMAA.DLL
2012-03-13 00:22:15   307200   ----a-w-   c:\windows\system32\CNC280L.dll
2012-03-13 00:22:15   15872   ----a-w-   c:\windows\system32\CNHMCA.dll
2012-03-13 00:22:15   1335296   ----a-w-   c:\windows\system32\CNC280C.dll
2012-03-13 00:22:15   114688   ----a-w-   c:\windows\system32\CNC280I.dll
2012-03-13 00:22:15   106496   ----a-w-   c:\windows\system32\CNC280U.dll
2012-03-08 23:09:21   2180096   ----a-w-   c:\windows\system32\drivers\lvsvf2.sys
2012-03-08 23:09:21   204800   ----a-w-   c:\windows\system32\LVUI2.dll
2012-03-08 23:09:21   1317152   ----a-w-   c:\windows\system32\drivers\lvcm.sys
2012-03-08 23:09:20   372736   ----a-w-   c:\windows\system32\LVUI2RC.dll
2012-03-08 23:09:20   22016   ----a-w-   c:\windows\system32\drivers\LVUSBSta.sys
2012-03-08 23:09:20   204800   ----a-w-   c:\windows\system32\lvcodec2.dll
2012-03-08 23:09:20   106496   ----a-w-   c:\windows\system32\lvcoinst.dll
2012-03-08 22:55:15   53248   ----a-r-   c:\windows\system32\InstMed.exe
2012-03-08 22:51:15   192512   ----a-w-   c:\program files\common files\installshield\professional\runtime\09\01\intel32\iuser.dll
2012-03-08 22:51:14   69715   ----a-w-   c:\program files\common files\installshield\professional\runtime\09\01\intel32\ctor.dll
2012-03-08 22:51:14   266240   ----a-w-   c:\program files\common files\installshield\professional\runtime\09\01\intel32\iscript.dll
2012-03-08 22:51:13   729088   ----a-w-   c:\program files\common files\installshield\professional\runtime\09\01\intel32\iKernel.dll
2012-03-08 22:51:12   188548   ----a-w-   c:\program files\common files\installshield\professional\runtime\09\01\intel32\iGdi.dll
2012-03-08 22:51:10   311428   ----a-w-   c:\program files\common files\installshield\professional\runtime\09\01\intel32\setup.dll
2012-03-08 22:42:59   --------   d-----w-   c:\program files\common files\Logitech
2012-03-08 22:42:10   306688   ----a-w-   c:\windows\IsUninst.exe
2012-03-07 13:12:19   --------   d-----w-   c:\users\tammy\appdata\local\Logitech-LS
2012-03-06 21:16:01   462848   ----a-w-   c:\windows\system32\LCamCpl.dll
2012-03-06 21:16:01   29795   ----a-w-   c:\windows\system32\ITIG726.acm
2012-03-06 21:16:01   282624   ----a-w-   c:\windows\system32\camcpl.cpl
2012-03-06 21:16:01   215552   ----a-w-   c:\windows\system32\Lvkrn12n.dll
2012-03-06 21:16:00   86016   ----a-w-   c:\windows\system32\vatee.ax
2012-03-06 21:16:00   628736   ----a-w-   c:\windows\system32\ltocx12n.ocx
2012-03-06 21:16:00   192512   ----a-w-   c:\windows\system32\ltscr12n.ocx
2012-03-06 21:15:59   90112   ----a-w-   c:\windows\system32\LQCUI2.dll
2012-03-06 21:15:59   856064   ----a-w-   c:\windows\system32\Ltwvc12n.dll
2012-03-06 21:15:59   78336   ----a-w-   c:\windows\system32\lffax12n.dll
2012-03-06 21:15:59   466944   ----a-w-   c:\windows\system32\QCUI2.dll
2012-03-06 21:15:59   406016   ----a-w-   c:\windows\system32\ltkrn12n.dll
2012-03-06 21:15:59   328704   ----a-w-   c:\windows\system32\LFCMP12n.DLL
2012-03-06 21:15:59   30720   ----a-w-   c:\windows\system32\lfbmp12n.dll
2012-03-06 21:15:59   259072   ----a-w-   c:\windows\system32\LTDIS12n.dll
2012-03-06 21:15:59   207872   ----a-w-   c:\windows\system32\ltefx12n.dll
2012-03-06 21:15:59   164864   ----a-w-   c:\windows\system32\ltimg12n.dll
2012-03-06 21:15:59   141312   ----a-w-   c:\windows\system32\lftif12n.dll
2012-03-06 21:15:59   131072   ----a-w-   c:\windows\system32\ltfil12n.DLL
2012-03-06 21:14:01   5632   ----a-w-   c:\program files\common files\installshield\professional\runtime\09\01\intel32\DotNetInstaller.exe
2012-03-06 20:51:38   --------   d-----w-   c:\users\tammy\appdata\roaming\FotoWire
2012-03-06 20:51:36   --------   d-----w-   c:\program files\common files\FotoWire
2012-03-06 20:50:27   89088   ----a-w-   c:\windows\system32\atl71.dll
2012-03-06 20:50:27   65536   ----a-w-   c:\windows\system32\MFC71DEU.DLL
2012-03-06 20:50:27   61440   ----a-w-   c:\windows\system32\MFC71ITA.DLL
2012-03-06 20:50:27   61440   ----a-w-   c:\windows\system32\MFC71ESP.DLL
2012-03-06 20:50:27   57344   ----a-w-   c:\windows\system32\MFC71ENU.DLL
2012-03-06 20:50:27   49152   ----a-w-   c:\windows\system32\MFC71KOR.DLL
2012-03-06 20:50:27   49152   ----a-w-   c:\windows\system32\MFC71JPN.DLL
2012-03-06 20:50:27   45056   ----a-w-   c:\windows\system32\MFC71CHT.DLL
2012-03-06 20:50:27   40960   ----a-w-   c:\windows\system32\MFC71CHS.DLL
2012-03-06 20:49:14   81920   ------w-   c:\windows\bwUnin-6.1.4.68-8876480L.exe
.
==================== Find3M ====================
.
2012-03-24 22:57:33   472808   ----a-w-   c:\windows\system32\deployJava1.dll
.
============= FINISH: 19:29:52.30 ===============
Malwarebytes Anti-Malware 1.60.1.1000
www.malwarebytes.org

Database version: v2012.03.24.03

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Tammy :: TAMMY-PC [administrator]

3/24/2012 6:30:40 PM
mbam-log-2012-03-24 (18-30-40).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 225078
Time elapsed: 17 minute(s), 20 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

SuperDave · « **Reply #1 on:** March 25, 2012, 11:47:00 AM »

Hello and welcome to Computer Hope Forum. My name is Dave. I will be helping you out with your particular problem on your computer.

1. I will be working on your Malware issues. This may or may not solve other issues you have with your machine.
2. The fixes are specific to your problem and should only be used for this issue on this machine.
3. If you don't know or understand something, please don't hesitate to ask.
4. Please DO NOT run any other tools or scans while I am helping you.
5. It is important that you reply to this thread. Do not start a new topic.
6. Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
7. Absence of symptoms does not mean that everything is clear.

If you can't access the internet with your infected computer you will have to download and transfer any programs to the computer you're using now and transfer them to the infected computer with a CD-RW or a USB storage device. I prefer a CD because a storage device can get infected. If you use a storage device hold the shift key down while inserting the USB storage device for about 10 secs. You will also have to transfer the logs you receive back to the good computer using the same method until we can get the computer back on-line.
*************************************************************************
Download BlueScreenView to your desktop.
BlueScreenView
unzip downloaded file and double click on BlueScreenView.exe to run the program.
when scanning is done, go to EDIT - Select All
Go to FILE - SAVE Selected Items, and save the report as BSOD.txt
Open BSOD.txt in Notepad, copy all of the content, and paste it into your next reply.
***************************************************
* Open OTL
* Copy and Paste the following text in the codebox into the Custom Scans/Fixes window.

Code: [Select]

:OTL
TB: BFlix Toolbar: {a6bf16ab-42a1-4bc5-965d-5e407e449aaa} - c:\program files\bflixtoolbar\vmntemplateX.dll
TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
BHO: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - No File
TB: {a3704fa3-dbf6-46b5-b95e-0677dfd39577} - No File
TB: {8dcb7100-df86-4384-8842-8fa844297b3f} - No File
TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
:COMMANDS
[resethosts]
[purity]
[start explorer]

* Click Run Fix
* OTLI2 may ask to reboot the machine. Please do so if asked.
* Click OK
* A report will open. Copy and Paste that report in your next reply.

debwins · « **Reply #2 on:** March 25, 2012, 01:32:09 PM »

Sorry for what ever reason I'm not sure if I downloaded it. When I open it it reads bluescreenview.zip - Winrar (evalation copy

debwins · « **Reply #3 on:** March 25, 2012, 01:35:22 PM »

In the blue screen view C:\windows\minidump there is nothing there.

SuperDave · « **Reply #4 on:** March 26, 2012, 01:23:09 PM »

Quote

In the blue screen view C:\windows\minidump there is nothing there.

Ok, let's continue with the cleaning.
Did you run the OTL script?

Download Combofix from any of the links below, and save it to your desktop.

Link 1
Link 2
Link 3

To prevent your anti-virus application interfering with ComboFix we need to disable it. See here for a tutorial regarding how to do so if you are unsure.

Close any open windows and double click ComboFix.exe to run it.

You will see the following image:

Click I Agree to start the program.

ComboFix will then extract the necessary files and you will see this:

As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. This will not occur in Windows Vista and 7

It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.

If you did not have it installed, you will see the prompt below. Choose YES.

Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.

**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

Click on Yes, to continue scanning for malware.

When finished, it will produce a report for you. Please post the contents of the log (C:\ComboFix.txt).

Leave your computer alone while ComboFix is running. ComboFix will restart your computer if malware is found; allow it to do so.

Note: Please Do NOT mouseclick combofix's window while its running because it may cause it to stall.

debwins · « **Reply #5 on:** March 27, 2012, 09:35:53 AM »

Not sure what otl script is but I did do the combo fix and here are the results. ComboFix 12-03-27.02 - Tammy 03/27/2012 11:18:40.2.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.2942.1765 [GMT -4:00]
Running from: c:\users\Tammy\Downloads\ComboFix.exe
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\bflixtoolbar
c:\program files\bflixtoolbar\chrome\content\lib\about.xml
c:\program files\bflixtoolbar\chrome\content\lib\dtxpanel.xul
c:\program files\bflixtoolbar\chrome\content\lib\dtxpaneltransparent.xul
c:\program files\bflixtoolbar\chrome\content\lib\dtxpanelwin.xul
c:\program files\bflixtoolbar\chrome\content\lib\dtxprefwin.xul
c:\program files\bflixtoolbar\chrome\content\lib\dtxtransparentwin.xul
c:\program files\bflixtoolbar\chrome\content\lib\dtxwin.xul
c:\program files\bflixtoolbar\chrome\content\lib\emailnotifierproviders.xml
c:\program files\bflixtoolbar\chrome\content\lib\external.js
c:\program files\bflixtoolbar\chrome\content\lib\neterror.xhtml
c:\program files\bflixtoolbar\chrome\content\lib\rsspreview.html
c:\program files\bflixtoolbar\chrome\content\lib\rsswin.xml
c:\program files\bflixtoolbar\chrome\content\lib\rsswin.xsl
c:\program files\bflixtoolbar\chrome\content\lib\vmncode.js
c:\program files\bflixtoolbar\chrome\content\lib\wmpstreamer.html
c:\program files\bflixtoolbar\chrome\content\modules\datastore.jsm
c:\program files\bflixtoolbar\chrome\content\modules\nsDragAndDrop.js
c:\program files\bflixtoolbar\chrome\content\neterror.xhtml
c:\program files\bflixtoolbar\chrome\content\newtab\images\btn_search.gif
c:\program files\bflixtoolbar\chrome\content\newtab\images\bullet.gif
c:\program files\bflixtoolbar\chrome\content\newtab\images\field_bg.gif
c:\program files\bflixtoolbar\chrome\content\newtab\images\powered_by_yahoo.gif
c:\program files\bflixtoolbar\chrome\content\newtab\newtab.html
c:\program files\bflixtoolbar\chrome\content\newtab\newtab_mystart.html
c:\program files\bflixtoolbar\chrome\content\newtab\newtab_yahoo.html
c:\program files\bflixtoolbar\chrome\content\preferences.xml
c:\program files\bflixtoolbar\chrome\content\template.xml
c:\program files\bflixtoolbar\chrome\content\toolbar.htm
c:\program files\bflixtoolbar\chrome\content\toolbar.xul
c:\program files\bflixtoolbar\chrome\content\vmncode.js
c:\program files\bflixtoolbar\chrome\content\vmnrsswin.xml
c:\program files\bflixtoolbar\chrome\data\dynamicElements\vmntoolbar.xsl
c:\program files\bflixtoolbar\chrome\data\product.xml
c:\program files\bflixtoolbar\chrome\data\rss\rss.xml
c:\program files\bflixtoolbar\chrome\data\search\engines.xml
c:\program files\bflixtoolbar\chrome\data\search\search.xsl
c:\program files\bflixtoolbar\chrome\data\weather\icons.xml
c:\program files\bflixtoolbar\chrome\skin\1x1_png
c:\program files\bflixtoolbar\chrome\skin\1x1_white_png
c:\program files\bflixtoolbar\chrome\skin\about.gif
c:\program files\bflixtoolbar\chrome\skin\about_logo.png
c:\program files\bflixtoolbar\chrome\skin\arcade_png
c:\program files\bflixtoolbar\chrome\skin\babylon_logo.png
c:\program files\bflixtoolbar\chrome\skin\bflix_logo_png
c:\program files\bflixtoolbar\chrome\skin\blank_png
c:\program files\bflixtoolbar\chrome\skin\bluelite.gif
c:\program files\bflixtoolbar\chrome\skin\bluesky.gif
c:\program files\bflixtoolbar\chrome\skin\btn-search-over.png
c:\program files\bflixtoolbar\chrome\skin\btn-search.png
c:\program files\bflixtoolbar\chrome\skin\btn-settings-over.png
c:\program files\bflixtoolbar\chrome\skin\btn-settings.png
c:\program files\bflixtoolbar\chrome\skin\btn-widgets-over.png
c:\program files\bflixtoolbar\chrome\skin\btn-widgets.png
c:\program files\bflixtoolbar\chrome\skin\btn_settings.png
c:\program files\bflixtoolbar\chrome\skin\ca.png
c:\program files\bflixtoolbar\chrome\skin\dictionary.png
c:\program files\bflixtoolbar\chrome\skin\divider.png
c:\program files\bflixtoolbar\chrome\skin\downloadcom.png
c:\program files\bflixtoolbar\chrome\skin\dtxlogo.png
c:\program files\bflixtoolbar\chrome\skin\email.png
c:\program files\bflixtoolbar\chrome\skin\email_on.png
c:\program files\bflixtoolbar\chrome\skin\facebook.png
c:\program files\bflixtoolbar\chrome\skin\facebook_png
c:\program files\bflixtoolbar\chrome\skin\games.png
c:\program files\bflixtoolbar\chrome\skin\Games_png
c:\program files\bflixtoolbar\chrome\skin\graphna.png
c:\program files\bflixtoolbar\chrome\skin\graphred0.png
c:\program files\bflixtoolbar\chrome\skin\graphred0_5.png
c:\program files\bflixtoolbar\chrome\skin\graphred1.png
c:\program files\bflixtoolbar\chrome\skin\graphred1_5.png
c:\program files\bflixtoolbar\chrome\skin\graphred2.png
c:\program files\bflixtoolbar\chrome\skin\graphred2_5.png
c:\program files\bflixtoolbar\chrome\skin\graphred3.png
c:\program files\bflixtoolbar\chrome\skin\graphred3_5.png
c:\program files\bflixtoolbar\chrome\skin\graphred4.png
c:\program files\bflixtoolbar\chrome\skin\graphred4_5.png
c:\program files\bflixtoolbar\chrome\skin\graphred5.png
c:\program files\bflixtoolbar\chrome\skin\graphredna.png
c:\program files\bflixtoolbar\chrome\skin\grey.gif
c:\program files\bflixtoolbar\chrome\skin\ico-shield.png
c:\program files\bflixtoolbar\chrome\skin\images.png
c:\program files\bflixtoolbar\chrome\skin\lfg_smll_png
c:\program files\bflixtoolbar\chrome\skin\lib\add.png
c:\program files\bflixtoolbar\chrome\skin\lib\alexabutton.css
c:\program files\bflixtoolbar\chrome\skin\lib\aol.png
c:\program files\bflixtoolbar\chrome\skin\lib\arrow-dn.gif
c:\program files\bflixtoolbar\chrome\skin\lib\arrow-right-disabled.gif
c:\program files\bflixtoolbar\chrome\skin\lib\arrow-right.gif
c:\program files\bflixtoolbar\chrome\skin\lib\arrow-up.gif
c:\program files\bflixtoolbar\chrome\skin\lib\bg-btn-divider.png
c:\program files\bflixtoolbar\chrome\skin\lib\bg-btn-end.png
c:\program files\bflixtoolbar\chrome\skin\lib\bg-btn-mdl.png
c:\program files\bflixtoolbar\chrome\skin\lib\bg-btn-mdl_ff.png
c:\program files\bflixtoolbar\chrome\skin\lib\bg-btn-start.png
c:\program files\bflixtoolbar\chrome\skin\lib\bg-btnover-divider.png
c:\program files\bflixtoolbar\chrome\skin\lib\bg-btnover-end.png
c:\program files\bflixtoolbar\chrome\skin\lib\bg-btnover-mdl.png
c:\program files\bflixtoolbar\chrome\skin\lib\bg-btnover-mdl_ff.png
c:\program files\bflixtoolbar\chrome\skin\lib\bg-btnover-start.png
c:\program files\bflixtoolbar\chrome\skin\lib\blank.gif
c:\program files\bflixtoolbar\chrome\skin\lib\btn-widgets-over.png
c:\program files\bflixtoolbar\chrome\skin\lib\btn-widgets.png
c:\program files\bflixtoolbar\chrome\skin\lib\btn_slider.png
c:\program files\bflixtoolbar\chrome\skin\lib\btnback-down-vista.png
c:\program files\bflixtoolbar\chrome\skin\lib\btnback-vista.png
c:\program files\bflixtoolbar\chrome\skin\lib\btnleft-down-vista.png
c:\program files\bflixtoolbar\chrome\skin\lib\btnleft-vista.png
c:\program files\bflixtoolbar\chrome\skin\lib\btnright-down-vista.png
c:\program files\bflixtoolbar\chrome\skin\lib\btnright-vista.png
c:\program files\bflixtoolbar\chrome\skin\lib\button-splitter-down-vista.png
c:\program files\bflixtoolbar\chrome\skin\lib\button-splitter-vista.png
c:\program files\bflixtoolbar\chrome\skin\lib\button-splitter.png
c:\program files\bflixtoolbar\chrome\skin\lib\checkmark.png
c:\program files\bflixtoolbar\chrome\skin\lib\chevron.png
c:\program files\bflixtoolbar\chrome\skin\lib\collapse.png
c:\program files\bflixtoolbar\chrome\skin\lib\comcast.png
c:\program files\bflixtoolbar\chrome\skin\lib\debugbar\debug.html
c:\program files\bflixtoolbar\chrome\skin\lib\dtx-test.css
c:\program files\bflixtoolbar\chrome\skin\lib\dtx.css
c:\program files\bflixtoolbar\chrome\skin\lib\edit-back-hot.png
c:\program files\bflixtoolbar\chrome\skin\lib\edit-back.png
c:\program files\bflixtoolbar\chrome\skin\lib\embarq.png
c:\program files\bflixtoolbar\chrome\skin\lib\expand.png
c:\program files\bflixtoolbar\chrome\skin\lib\fast.png
c:\program files\bflixtoolbar\chrome\skin\lib\found.png
c:\program files\bflixtoolbar\chrome\skin\lib\gmail.png
c:\program files\bflixtoolbar\chrome\skin\lib\gripper.png
c:\program files\bflixtoolbar\chrome\skin\lib\highlight.png
c:\program files\bflixtoolbar\chrome\skin\lib\highlight_blue.png
c:\program files\bflixtoolbar\chrome\skin\lib\highlight_cyan.png
c:\program files\bflixtoolbar\chrome\skin\lib\highlight_lime.png
c:\program files\bflixtoolbar\chrome\skin\lib\highlight_magenta.png
c:\program files\bflixtoolbar\chrome\skin\lib\highlight_yellow.png
c:\program files\bflixtoolbar\chrome\skin\lib\hotmail.png
c:\program files\bflixtoolbar\chrome\skin\lib\ico-check.png
c:\program files\bflixtoolbar\chrome\skin\lib\imap.png
c:\program files\bflixtoolbar\chrome\skin\lib\lastsearch-thumb-back.gif
c:\program files\bflixtoolbar\chrome\skin\lib\launchers.css
c:\program files\bflixtoolbar\chrome\skin\lib\loadingMid.gif
c:\program files\bflixtoolbar\chrome\skin\lib\lock.png
c:\program files\bflixtoolbar\chrome\skin\lib\logo-separator.png
c:\program files\bflixtoolbar\chrome\skin\lib\mailcom.png
c:\program files\bflixtoolbar\chrome\skin\lib\menu_bg-basic.png
c:\program files\bflixtoolbar\chrome\skin\lib\menu_separator_bar.png
c:\program files\bflixtoolbar\chrome\skin\lib\menu_separator_white.png
c:\program files\bflixtoolbar\chrome\skin\lib\menuitem-splitter.png
c:\program files\bflixtoolbar\chrome\skin\lib\menuitemback-down-vista.png
c:\program files\bflixtoolbar\chrome\skin\lib\menuitemback-vista.png
c:\program files\bflixtoolbar\chrome\skin\lib\menuitemleft-down-vista.png
c:\program files\bflixtoolbar\chrome\skin\lib\menuitemleft-vista.png
c:\program files\bflixtoolbar\chrome\skin\lib\menuitemleft.png
c:\program files\bflixtoolbar\chrome\skin\lib\menuitemright-down-vista.png
c:\program files\bflixtoolbar\chrome\skin\lib\menuitemright-vista.png
c:\program files\bflixtoolbar\chrome\skin\lib\minus.gif
c:\program files\bflixtoolbar\chrome\skin\lib\modify.png
c:\program files\bflixtoolbar\chrome\skin\lib\move.gif
c:\program files\bflixtoolbar\chrome\skin\lib\movetarget.png
c:\program files\bflixtoolbar\chrome\skin\lib\newsitem.gif
c:\program files\bflixtoolbar\chrome\skin\lib\panels\css\panels.css
c:\program files\bflixtoolbar\chrome\skin\lib\panels\css\popupAbout.css
c:\program files\bflixtoolbar\chrome\skin\lib\panels\css\popupGames.css
c:\program files\bflixtoolbar\chrome\skin\lib\panels\css\popupRSS.css
c:\program files\bflixtoolbar\chrome\skin\lib\panels\css\popupWidgets.css
c:\program files\bflixtoolbar\chrome\skin\lib\panels\default\css\dialog.css
c:\program files\bflixtoolbar\chrome\skin\lib\panels\default\images\bg.gif
c:\program files\bflixtoolbar\chrome\skin\lib\panels\default\images\btn-search.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\default\images\btn-wide-close-over.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\default\images\btn-wide-close.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\default\images\default.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\default\images\tab-off-l.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\default\images\tab-off-r.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\default\images\tab-on-l.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\default\images\tab-on-r.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\default\images\transparent.gif
c:\program files\bflixtoolbar\chrome\skin\lib\panels\default\images\ttlbar-left.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\default\images\ttlbar-mdl.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\default\images\ttlbar-right.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\default\images\win-btm-left.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\default\images\win-btm-mdl.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\default\images\win-btm-right-resize.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\default\images\win-btm-right.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\default\images\win-left.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\default\images\win-right.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\default\main.html
c:\program files\bflixtoolbar\chrome\skin\lib\panels\default\scripts\defscript.js
c:\program files\bflixtoolbar\chrome\skin\lib\panels\footer.htm
c:\program files\bflixtoolbar\chrome\skin\lib\panels\gamecategory.xsl
c:\program files\bflixtoolbar\chrome\skin\lib\panels\gameData.js
c:\program files\bflixtoolbar\chrome\skin\lib\panels\gameList.xsl
c:\program files\bflixtoolbar\chrome\skin\lib\panels\games.xsl
c:\program files\bflixtoolbar\chrome\skin\lib\panels\gametype.xsl
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\arrow-dn.gif
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\arrow-sml-drop.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\arrow-sml.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\arrow-up.gif
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\arrowr-bluew5.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\bg-aboutbox.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\bg-btnover.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\bg-pnl520x390.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\btn-addtoolbar-left-over.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\btn-addtoolbar-left.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\btn-addtoolbar-right.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\btn-back.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\btn-close-grey.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\btn-close-greyover.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\btn-drag.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\btn-mdl-over.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\btn-mdl.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\btn-moredetails.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\btn-next-over.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\btn-next.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\btn-play-left-over.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\btn-play-left.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\btn-previous-over.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\btn-previous.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\btn-right-over.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\btn-search-pnlbtm-over.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\btn-search-pnlbtm.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\btn-try-left-over.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\btn-try-left.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\bullet-orange.gif
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\gamethumb-on.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\gamethumb2-over.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\ico-calendar.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\ico-dollar.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\ico-download.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\ico-joystick24.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\ico-news24.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\ico-play.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\ico-tags.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\icon-Add.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\icon-download.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\icon-Info.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\icon-play.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\icon-shop.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\menul-bgon.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\menul-bgover.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\panel-botm-noscroll.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\scroll-bg-206.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\scroll-bg.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\scroll-topwin.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\scrollb-disable.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\scrollb-down.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\scrollb-over.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\scrollb.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\scrollt-disable.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\scrollt-down.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\scrollt-over.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\scrollt.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\searchbox-pnlbtm.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\star_x_grey.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\star_x_orange.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\TRUSTe_about.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\view-detailed-on.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\view-detailed-over.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\view-thumb-on.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\view-thumb-over.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\widgets-square-16px.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\widgets-square-24px.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\images\widgets.png
c:\program files\bflixtoolbar\chrome\skin\lib\panels\initHTML.html
c:\program files\bflixtoolbar\chrome\skin\lib\panels\popupGames.html
c:\program files\bflixtoolbar\chrome\skin\lib\panels\popupHTML.html
c:\program files\bflixtoolbar\chrome\skin\lib\panels\popupRSS.html
c:\program files\bflixtoolbar\chrome\skin\lib\panels\popupWidgets.html
c:\program files\bflixtoolbar\chrome\skin\lib\panels\scroll.png
c:\program files\bflixtoolbar\chrome\skin\lib\plus.gif
c:\program files\bflixtoolbar\chrome\skin\lib\pop.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\css\manager.css
c:\program files\bflixtoolbar\chrome\skin\lib\radio\css\slider.css
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\bg-pnl.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\btn-close-grey.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\btn-close-greyover.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\collapsed_button.gif
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\expanded_button.gif
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\ico-playstation-down.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\ico-playstation-over.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\ico-playstation.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\ico-radio.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\music-note.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\radio-btn-pause-on.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\radio-btn-pause.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\radio-btn-play-on.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\radio-btn-play.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\radio-eq-bg.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\radio-eq-buffer.gif
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\radio-eq-busy.gif
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\radio-eq-off.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\radio-eq-on.gif
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\radio-eq-warning.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\radio-options-design-on.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\radio-options-design.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\radio-options-on.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\radio-options.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\radio-volume-0.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\radio-volume-1.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\radio-volume-2.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\radio-volume-3.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\radio-volume-mute.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\scrollbar-handle.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\scrollbar-track.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\slider.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\slideron.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\images\track.png
c:\program files\bflixtoolbar\chrome\skin\lib\radio\managerpanel.html
c:\program files\bflixtoolbar\chrome\skin\lib\radio\volumeslider.html
c:\program files\bflixtoolbar\chrome\skin\lib\rank0.png
c:\program files\bflixtoolbar\chrome\skin\lib\rank0_5.png
c:\program files\bflixtoolbar\chrome\skin\lib\rank1.png
c:\program files\bflixtoolbar\chrome\skin\lib\rank1_5.png
c:\program files\bflixtoolbar\chrome\skin\lib\rank2.png
c:\program files\bflixtoolbar\chrome\skin\lib\rank2_5.png
c:\program files\bflixtoolbar\chrome\skin\lib\rank3.png
c:\program files\bflixtoolbar\chrome\skin\lib\rank3_5.png
c:\program files\bflixtoolbar\chrome\skin\lib\rank4.png
c:\program files\bflixtoolbar\chrome\skin\lib\rank4_5.png
c:\program files\bflixtoolbar\chrome\skin\lib\rank5.png
c:\program files\bflixtoolbar\chrome\skin\lib\rankna.png
c:\program files\bflixtoolbar\chrome\skin\lib\reload.png
c:\program files\bflixtoolbar\chrome\skin\lib\remove.png
c:\program files\bflixtoolbar\chrome\skin\lib\rename.gif
c:\program files\bflixtoolbar\chrome\skin\lib\resize-box.gif
c:\program files\bflixtoolbar\chrome\skin\lib\rss.png
c:\program files\bflixtoolbar\chrome\skin\lib\rsschannelback.png
c:\program files\bflixtoolbar\chrome\skin\lib\RSSLogo.png
c:\program files\bflixtoolbar\chrome\skin\lib\rsstabdivider.gif
c:\program files\bflixtoolbar\chrome\skin\lib\scroll-left.png
c:\program files\bflixtoolbar\chrome\skin\lib\scroll-right.png
c:\program files\bflixtoolbar\chrome\skin\lib\search-go.png
c:\program files\bflixtoolbar\chrome\skin\lib\search.png
c:\program files\bflixtoolbar\chrome\skin\lib\separator.png
c:\program files\bflixtoolbar\chrome\skin\lib\text-ellipsis.xml
c:\program files\bflixtoolbar\chrome\skin\lib\throbber.gif
c:\program files\bflixtoolbar\chrome\skin\lib\toolbarsplitter.gif
c:\program files\bflixtoolbar\chrome\skin\lib\transparent_1px.gif
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\border_02.png
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\border_03.png
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\border_04.png
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\border_06.png
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\border_07.png
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\border_08.png
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\border_09.png
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\border_10.png
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\border_11.png
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\border_12.png
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\border_13.png
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\border_14.png
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\border_15.png
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\border_16.png
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\border_18.png
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\border_19.png
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\border_20.png
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\border_21.png
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\btn-close-grey.png
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\btn-close-greyover.png
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\close-hot.png
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\close-normal.png
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\loadingMid.gif
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\proxy.html
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\template.html
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\template.xml
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\templateFF.html
c:\program files\bflixtoolbar\chrome\skin\lib\uwa\throbber.gif
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton.css
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\icons\cond999.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\icons\icons.xml
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\icons\na-s.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\icons\na-t.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\icons\na.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\icons\weather.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\add.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\arrowr-bluew5.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\bg-pnl.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\bg-pnl520x350.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\bg-pnl520x350blue-whitebg.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\bg-pnl520x350blue.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\box-check.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\box-uncheck.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\btn-close-grey.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\btn-close-greyover.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\btn-delete.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\btn-search-pnlbtm-over.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\btn-search-pnlbtm.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\btnarrow-next-off.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\btnarrow-next.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\btnarrow-previous-off.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\btnarrow-previous.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\ico-check.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\ico-hotandhumid-s.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\ico-hotandhumid.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\options-weather.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\over-blue.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\over-orange.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\powered-by-weatherbug.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\powered-by-weatherbug2.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\radio-checked.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\radio-unchecked.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\searchbox-pnlbtm.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\images\weather-contour.png
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\popupWeather.css
c:\program files\bflixtoolbar\chrome\skin\lib\weatherbutton\panels\popupWeather.html
c:\program files\bflixtoolbar\chrome\skin\lib\websiteinspector-highrisk-user.gif
c:\program files\bflixtoolbar\chrome\skin\lib\websiteinspector-highrisk.gif
c:\program files\bflixtoolbar\chrome\skin\lib\websiteinspector-lowrisk.gif
c:\program files\bflixtoolbar\chrome\skin\lib\websiteinspector-norating.gif
c:\program files\bflixtoolbar\chrome\skin\lib\websiteinspector-verified-user.gif
c:\program files\bflixtoolbar\chrome\skin\lib\websiteinspector-verified.gif
c:\program files\bflixtoolbar\chrome\skin\lib\websiteinspector-verifying.gif
c:\program files\bflixtoolbar\chrome\skin\lib\yahoo.png
c:\program files\bflixtoolbar\chrome\skin\lichen.gif
c:\program files\bflixtoolbar\chrome\skin\Linked_in_png
c:\program files\bflixtoolbar\chrome\skin\logo-about.png
c:\program files\bflixtoolbar\chrome\skin\logo-over.png
c:\program files\bflixtoolbar\chrome\skin\logo-separator.png
c:\program files\bflixtoolbar\chrome\skin\logo.png
c:\program files\bflixtoolbar\chrome\skin\mail.png
c:\program files\bflixtoolbar\chrome\skin\menuseparatorback.gif
c:\program files\bflixtoolbar\chrome\skin\modify-save.png
c:\program files\bflixtoolbar\chrome\skin\modify.png
c:\program files\bflixtoolbar\chrome\skin\modifyhot.png
c:\program files\bflixtoolbar\chrome\skin\music.png
c:\program files\bflixtoolbar\chrome\skin\music_png
c:\program files\bflixtoolbar\chrome\skin\Myspace_png
c:\program files\bflixtoolbar\chrome\skin\namespacetoolbar.css
c:\program files\bflixtoolbar\chrome\skin\news.png
c:\program files\bflixtoolbar\chrome\skin\options-main.png
c:\program files\bflixtoolbar\chrome\skin\options-search.png
c:\program files\bflixtoolbar\chrome\skin\options\options-main.png
c:\program files\bflixtoolbar\chrome\skin\options\options-search.png
c:\program files\bflixtoolbar\chrome\skin\options\options-weather.gif
c:\program files\bflixtoolbar\chrome\skin\options\options-weather.png
c:\program files\bflixtoolbar\chrome\skin\options\options-widgets.png
c:\program files\bflixtoolbar\chrome\skin\orange.gif
c:\program files\bflixtoolbar\chrome\skin\p_yahoo.png
c:\program files\bflixtoolbar\chrome\skin\pixsy.png
c:\program files\bflixtoolbar\chrome\skin\ppcbully.png
c:\program files\bflixtoolbar\chrome\skin\protect-id.png
c:\program files\bflixtoolbar\chrome\skin\relatedlinks.png
c:\program files\bflixtoolbar\chrome\skin\rss-collapse.png
c:\program files\bflixtoolbar\chrome\skin\rss-delete.png
c:\program files\bflixtoolbar\chrome\skin\rss-expand.png
c:\program files\bflixtoolbar\chrome\skin\rss-feed.png
c:\program files\bflixtoolbar\chrome\skin\rss-folder-remove.png
c:\program files\bflixtoolbar\chrome\skin\rss-folder-rename.png
c:\program files\bflixtoolbar\chrome\skin\rss-folder.png
c:\program files\bflixtoolbar\chrome\skin\rss-found.png
c:\program files\bflixtoolbar\chrome\skin\rss-reload.png
c:\program files\bflixtoolbar\chrome\skin\rss-subscribe.png
c:\program files\bflixtoolbar\chrome\skin\rss.png
c:\program files\bflixtoolbar\chrome\skin\rssback.gif
c:\program files\bflixtoolbar\chrome\skin\rsstopback.gif
c:\program files\bflixtoolbar\chrome\skin\search-over.png
c:\program files\bflixtoolbar\chrome\skin\search.png
c:\program files\bflixtoolbar\chrome\skin\searchbar\searchbar-background-left.png
c:\program files\bflixtoolbar\chrome\skin\searchbar\searchbar-background-middle.png
c:\program files\bflixtoolbar\chrome\skin\searchbar\searchbar-background-right.png
c:\program files\bflixtoolbar\chrome\skin\settings.png
c:\program files\bflixtoolbar\chrome\skin\shopping.png
c:\program files\bflixtoolbar\chrome\skin\siteinfo.png
c:\program files\bflixtoolbar\chrome\skin\skin-bluelite.png
c:\program files\bflixtoolbar\chrome\skin\skin-bluesky.png
c:\program files\bflixtoolbar\chrome\skin\skin-grey.png
c:\program files\bflixtoolbar\chrome\skin\skin-lichen.png
c:\program files\bflixtoolbar\chrome\skin\skin-orange.png
c:\program files\bflixtoolbar\chrome\skin\skin-yellow.png
c:\program files\bflixtoolbar\chrome\skin\skin.xml
c:\program files\bflixtoolbar\chrome\skin\technorati.png
c:\program files\bflixtoolbar\chrome\skin\throbber.gif
c:\program files\bflixtoolbar\chrome\skin\toolbarsplitter.png
c:\program files\bflixtoolbar\chrome\skin\translate.png
c:\program files\bflixtoolbar\chrome\skin\TRUSTe_about.png
c:\program files\bflixtoolbar\chrome\skin\tv_png
c:\program files\bflixtoolbar\chrome\skin\twitter_png
c:\program files\bflixtoolbar\chrome\skin\vmn.css
c:\program files\bflixtoolbar\chrome\skin\vmn.png
c:\program files\bflixtoolbar\chrome\skin\Weather_png
c:\program files\bflixtoolbar\chrome\skin\web.png
c:\program files\bflixtoolbar\chrome\skin\websearch.png
c:\program files\bflixtoolbar\chrome\skin\wikipedia.png
c:\program files\bflixtoolbar\chrome\skin\yahoosearch.png
c:\program files\bflixtoolbar\chrome\skin\yellow.gif
c:\program files\bflixtoolbar\chrome\skin\youtube.png
c:\program files\bflixtoolbar\chrome\skin\zoom.png
c:\program files\bflixtoolbar\components\windowmediator.js
c:\program files\bflixtoolbar\install.ico
c:\program files\bflixtoolbar\manifest.xml
c:\program files\bflixtoolbar\partner.xml
c:\program files\bflixtoolbar\uninstall.exe
c:\program files\bflixtoolbar\vmntemplate.dll
c:\program files\bflixtoolbar\vmntemplateX.dll
c:\windows\bwUnin-6.1.4.68-8876480L.exe
c:\windows\system32\muzapp.exe
c:\windows\system32\system32
c:\windows\system32\system32\3DAudio.ax
c:\windows\system32\system32\avrt.dll
c:\windows\system32\system32\cis-2.4.dll
c:\windows\system32\system32\issacapi_bs-2.3.dll
c:\windows\system32\system32\issacapi_pe-2.3.dll
c:\windows\system32\system32\issacapi_se-2.3.dll
c:\windows\system32\system32\MACXMLProto.dll
c:\windows\system32\system32\MaDRM.dll
c:\windows\system32\system32\MaJGUILib.dll
c:\windows\system32\system32\MAMACExtract.dll
c:\windows\system32\system32\MASetupCleaner.exe
c:\windows\system32\system32\MaXMLProto.dll
c:\windows\system32\system32\mfplat.dll
c:\windows\system32\system32\MK_Lyric.dll
c:\windows\system32\system32\MSCLib.dll
c:\windows\system32\system32\MSFLib.dll
c:\windows\system32\system32\MSLUR71.dll
c:\windows\system32\system32\msvcp60.dll
c:\windows\system32\system32\MTTELECHIP.dll
c:\windows\system32\system32\MTXSYNCICON.dll
c:\windows\system32\system32\muzaf1.dll
c:\windows\system32\system32\muzapp.dll
c:\windows\system32\system32\muzapp.exe
c:\windows\system32\system32\muzdecode.ax
c:\windows\system32\system32\muzeffect.ax
c:\windows\system32\system32\muzmp4sp.ax
c:\windows\system32\system32\muzmpgsp.ax
c:\windows\system32\system32\muzoggsp.ax
c:\windows\system32\system32\muzwmts.dll
c:\windows\system32\system32\psapi.dll
.
.
((((((((((((((((((((((((( Files Created from 2012-02-27 to 2012-03-27 )))))))))))))))))))))))))))))))
.
.
2012-03-27 15:30 . 2012-03-27 15:30   --------   d-----w-   c:\users\Tammy\AppData\Local\temp
2012-03-27 15:10 . 2012-03-27 15:10   9310   ----a-w-   c:\programdata\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\TEXTBOX.JS
2012-03-25 19:04 . 2012-03-25 19:50   --------   d-----w-   c:\program files\NirSoft
2012-03-25 18:20 . 2012-03-25 18:20   --------   d-----w-   c:\program files\Trend Micro
2012-03-24 20:17 . 2012-03-24 20:17   --------   d-----w-   c:\users\Tammy\AppData\Roaming\SUPERAntiSpyware.com
2012-03-24 20:16 . 2012-03-24 20:17   --------   d-----w-   c:\program files\SUPERAntiSpyware
2012-03-24 20:16 . 2012-03-24 20:16   --------   d-----w-   c:\programdata\SUPERAntiSpyware.com
2012-03-17 05:28 . 2012-02-02 15:16   2044416   ----a-w-   c:\windows\system32\win32k.sys
2012-03-17 05:28 . 2012-02-14 15:45   219648   ----a-w-   c:\windows\system32\d3d10_1core.dll
2012-03-17 05:28 . 2012-02-14 15:45   160768   ----a-w-   c:\windows\system32\d3d10_1.dll
2012-03-17 05:28 . 2012-02-13 14:12   1172480   ----a-w-   c:\windows\system32\d3d10warp.dll
2012-03-17 05:28 . 2012-02-13 13:47   683008   ----a-w-   c:\windows\system32\d2d1.dll
2012-03-17 05:28 . 2012-02-13 13:44   1068544   ----a-w-   c:\windows\system32\DWrite.dll
2012-03-17 05:28 . 2012-01-31 10:59   2409784   ----a-w-   c:\program files\Windows Mail\OESpamFilter.dat
2012-03-17 05:28 . 2012-01-09 15:54   613376   ----a-w-   c:\windows\system32\rdpencom.dll
2012-03-17 05:28 . 2012-01-09 13:58   180736   ----a-w-   c:\windows\system32\drivers\rdpwd.sys
2012-03-13 00:25 . 2012-03-13 00:25   --------   d--h--w-   c:\windows\system32\CanonIJ Uninstaller Information
2012-03-13 00:25 . 2012-03-13 00:25   --------   d--h--w-   c:\programdata\CanonBJ
2012-03-13 00:25 . 2010-08-25 09:00   73216   ----a-w-   c:\windows\system32\Spool\prtprocs\w32x86\CNMPPAA.DLL
2012-03-13 00:25 . 2010-08-25 09:00   27648   ----a-w-   c:\windows\system32\Spool\prtprocs\w32x86\CNMPDAA.DLL
2012-03-13 00:24 . 2010-08-25 09:00   290816   ----a-w-   c:\windows\system32\CNMLMAA.DLL
2012-03-13 00:22 . 2010-03-18 23:25   307200   ----a-w-   c:\windows\system32\CNC280L.dll
2012-03-13 00:22 . 2010-03-18 21:12   1335296   ----a-w-   c:\windows\system32\CNC280C.dll
2012-03-13 00:22 . 2010-03-18 21:12   114688   ----a-w-   c:\windows\system32\CNC280I.dll
2012-03-13 00:22 . 2010-03-18 21:11   106496   ----a-w-   c:\windows\system32\CNC280U.dll
2012-03-13 00:22 . 2008-08-25 22:02   15872   ----a-w-   c:\windows\system32\CNHMCA.dll
2012-03-10 02:53 . 2012-03-10 02:53   --------   d-----w-   c:\program files\Common Files\Skype
2012-03-08 23:09 . 2005-05-27 09:32   1317152   ----a-w-   c:\windows\system32\drivers\lvcm.sys
2012-03-08 23:09 . 2005-05-27 09:29   204800   ----a-w-   c:\windows\system32\LVUI2.dll
2012-03-08 23:09 . 2005-05-27 09:23   2180096   ----a-w-   c:\windows\system32\drivers\lvsvf2.sys
2012-03-08 23:09 . 2005-05-27 09:36   372736   ----a-w-   c:\windows\system32\LVUI2RC.dll
2012-03-08 23:09 . 2005-05-27 09:31   22016   ----a-w-   c:\windows\system32\drivers\LVUSBSta.sys
2012-03-08 23:09 . 2005-05-27 09:26   204800   ----a-w-   c:\windows\system32\lvcodec2.dll
2012-03-08 23:09 . 2005-05-27 09:19   106496   ----a-w-   c:\windows\system32\lvcoinst.dll
2012-03-08 22:55 . 2005-07-19 21:31   53248   ----a-r-   c:\windows\system32\InstMed.exe
2012-03-08 22:51 . 2003-11-10 22:12   192512   ----a-w-   c:\program files\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iuser.dll
2012-03-08 22:51 . 2003-11-10 22:13   69715   ----a-w-   c:\program files\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\ctor.dll
2012-03-08 22:51 . 2003-11-10 22:12   266240   ----a-w-   c:\program files\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iscript.dll
2012-03-08 22:51 . 2003-11-10 22:14   729088   ----a-w-   c:\program files\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iKernel.dll
2012-03-08 22:51 . 2012-03-08 22:51   188548   ----a-w-   c:\program files\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iGdi.dll
2012-03-08 22:51 . 2012-03-08 22:51   311428   ----a-w-   c:\program files\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\setup.dll
2012-03-08 22:42 . 2012-03-08 22:42   --------   d-----w-   c:\program files\Common Files\Logitech
2012-03-08 22:42 . 1998-10-29 21:45   306688   ----a-w-   c:\windows\IsUninst.exe
2012-03-07 13:12 . 2012-03-07 13:12   --------   d-----w-   c:\users\Tammy\AppData\Local\Logitech-LS
2012-03-06 21:16 . 2005-06-08 19:13   282624   ----a-w-   c:\windows\system32\camcpl.cpl
2012-03-06 21:16 . 2005-06-08 19:12   462848   ----a-w-   c:\windows\system32\LCamCpl.dll
2012-03-06 21:16 . 2005-06-08 18:31   215552   ----a-w-   c:\windows\system32\Lvkrn12n.dll
2012-03-06 21:16 . 2003-06-10 00:39   29795   ----a-w-   c:\windows\system32\ITIG726.acm
2012-03-06 21:16 . 2005-06-08 18:31   628736   ----a-w-   c:\windows\system32\ltocx12n.ocx
2012-03-06 21:16 . 2005-06-08 18:31   192512   ----a-w-   c:\windows\system32\ltscr12n.ocx
2012-03-06 21:16 . 2005-06-08 14:45   86016   ----a-w-   c:\windows\system32\vatee.ax
2012-03-06 21:15 . 2005-06-08 18:41   466944   ----a-w-   c:\windows\system32\QCUI2.dll
2012-03-06 21:15 . 2005-06-08 18:38   90112   ----a-w-   c:\windows\system32\LQCUI2.dll
2012-03-06 21:15 . 2005-06-08 18:31   856064   ----a-w-   c:\windows\system32\Ltwvc12n.dll
2012-03-06 21:15 . 2005-06-08 18:31   406016   ----a-w-   c:\windows\system32\ltkrn12n.dll
2012-03-06 21:15 . 2005-06-08 18:31   259072   ----a-w-   c:\windows\system32\LTDIS12n.dll
2012-03-06 21:15 . 2005-06-08 18:31   207872   ----a-w-   c:\windows\system32\ltefx12n.dll
2012-03-06 21:15 . 2005-06-08 18:31   164864   ----a-w-   c:\windows\system32\ltimg12n.dll
2012-03-06 21:15 . 2005-06-08 18:31   131072   ----a-w-   c:\windows\system32\ltfil12n.DLL
2012-03-06 21:15 . 2005-06-08 18:31   141312   ----a-w-   c:\windows\system32\lftif12n.dll
2012-03-06 21:15 . 2005-06-08 18:31   78336   ----a-w-   c:\windows\system32\lffax12n.dll
2012-03-06 21:15 . 2005-06-08 18:31   328704   ----a-w-   c:\windows\system32\LFCMP12n.DLL
2012-03-06 21:15 . 2005-06-08 18:31   30720   ----a-w-   c:\windows\system32\lfbmp12n.dll
2012-03-06 21:14 . 2003-11-10 22:11   5632   ----a-w-   c:\program files\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\DotNetInstaller.exe
2012-03-06 20:51 . 2012-03-06 20:51   --------   d-----w-   c:\users\Tammy\AppData\Roaming\FotoWire
2012-03-06 20:51 . 2012-03-06 20:51   --------   d-----w-   c:\program files\Common Files\FotoWire
2012-03-06 20:50 . 2003-03-19 01:44   57344   ----a-w-   c:\windows\system32\MFC71ENU.DLL
2012-03-06 20:50 . 2003-03-19 01:44   49152   ----a-w-   c:\windows\system32\MFC71KOR.DLL
2012-03-06 20:50 . 2003-03-19 01:44   61440   ----a-w-   c:\windows\system32\MFC71ITA.DLL
2012-03-06 20:50 . 2003-03-19 01:44   61440   ----a-w-   c:\windows\system32\MFC71ESP.DLL
2012-03-06 20:50 . 2003-03-19 01:44   45056   ----a-w-   c:\windows\system32\MFC71CHT.DLL
2012-03-06 20:50 . 2003-03-19 01:44   40960   ----a-w-   c:\windows\system32\MFC71CHS.DLL
2012-03-06 20:50 . 2003-03-19 01:44   65536   ----a-w-   c:\windows\system32\MFC71DEU.DLL
2012-03-06 20:50 . 2003-03-19 01:44   49152   ----a-w-   c:\windows\system32\MFC71JPN.DLL
2012-03-06 20:50 . 2003-03-19 00:05   89088   ----a-w-   c:\windows\system32\atl71.dll
2012-03-06 20:49 . 2012-03-24 22:15   --------   d-----w-   c:\program files\Logitech
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-03-24 22:57 . 2011-12-05 17:10   472808   ----a-w-   c:\windows\system32\deployJava1.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3192b808-ec27-4332-b6c6-97f82692cad5}]
2010-03-17 19:45   2355224   ----a-w-   c:\program files\CommentsBar_-_Social_Comments\tbCom0.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]
2009-09-23 15:50   2261016   ----a-w-   c:\program files\Softonic-Eng7\tbSoft.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{3192b808-ec27-4332-b6c6-97f82692cad5}"= "c:\program files\CommentsBar_-_Social_Comments\tbCom0.dll" [2010-03-17 2355224]
"{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}"= "c:\program files\Softonic-Eng7\tbSoft.dll" [2009-09-23 2261016]
.
[HKEY_CLASSES_ROOT\clsid\{3192b808-ec27-4332-b6c6-97f82692cad5}]
.
[HKEY_CLASSES_ROOT\clsid\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{3192B808-EC27-4332-B6C6-97F82692CAD5}"= "c:\program files\CommentsBar_-_Social_Comments\tbCom0.dll" [2010-03-17 2355224]
"{414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3}"= "c:\program files\Softonic-Eng7\tbSoft.dll" [2009-09-23 2261016]
.
[HKEY_CLASSES_ROOT\clsid\{3192b808-ec27-4332-b6c6-97f82692cad5}]
.
[HKEY_CLASSES_ROOT\clsid\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"LogitechSoftwareUpdate"="c:\program files\Logitech\Video\ManifestEngine.exe" [2005-06-08 196608]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2012-02-29 17148552]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2012-01-13 981680]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-09-27 13949544]
.
c:\users\danielle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
LimeWire On Startup.lnk - c:\program files\LimeWire\LimeWire.exe [N/A]
.
c:\users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
LimeWire On Startup.lnk - c:\program files\LimeWire\LimeWire.exe [N/A]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2011-05-04 17:54   551296   ----a-w-   c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\Bandoo\BndHook.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux6"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^BigFix.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\BigFix.lnk
backup=c:\windows\pss\BigFix.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Button Manager.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\HP Button Manager.lnk
backup=c:\windows\pss\HP Button Manager.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Magic-i.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Magic-i.lnk
backup=c:\windows\pss\Magic-i.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^Users^Tammy^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^IMVU.lnk]
path=c:\users\Tammy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\IMVU.lnk
backup=c:\windows\pss\IMVU.lnk.Startup
backupExtension=.Startup
.
[HKLM\~\startupfolder\C:^Users^Tammy^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 Screen Clipper and Launcher.lnk]
path=c:\users\Tammy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
backup=c:\windows\pss\OneNote 2007 Screen Clipper and Launcher.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2008-01-12 05:16   39792   ----a-w-   c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcSoft Connection Service]
2010-03-18 15:19   207360   ----a-w-   c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core]
2009-03-28 21:11   3325952   ----a-w-   c:\program files\Electronic Arts\EADM\Core.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray.exe]
2008-01-21 02:25   125952   ----a-w-   c:\windows\ehome\ehtray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
2011-10-08 21:16   137536   ----atw-   c:\users\Tammy\AppData\Local\Facebook\Update\FacebookUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2010-12-13 21:16   421160   ----a-w-   c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoRepair]
2005-06-08 19:24   458752   ----a-w-   c:\program files\Logitech\Video\ISStart.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoTray]
2005-06-08 19:14   217088   ----a-w-   c:\program files\Logitech\Video\LogiTray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LVCOMSX]
2005-07-19 21:32   221184   ----a-w-   c:\windows\System32\LVCOMSX.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Microsoft Default Manager]
2010-05-10 18:12   439568   ----a-w-   c:\program files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
2009-09-27 21:47   92776   ----a-w-   c:\windows\System32\nvmctray.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P2Go_Menu]
2008-06-14 02:11   210216   ------w-   c:\program files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2010-11-29 21:38   421888   ----a-w-   c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
2008-07-23 18:25   6183456   ----a-w-   c:\windows\RtHDVCpl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2012-02-29 12:55   17148552   ----a-r-   c:\program files\Skype\Phone\Skype.exe
.
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [2011-08-11 116608]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation   REG_MULTI_SZ     FontCache
.
Contents of the 'Scheduled Tasks' folder
.
2012-03-25 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-430488695-2980144448-114892399-1000Core.job
- c:\users\Tammy\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-10-08 21:16]
.
2012-03-27 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-430488695-2980144448-114892399-1000UA.job
- c:\users\Tammy\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-10-08 21:16]
.
2012-03-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-12-29 22:28]
.
2012-03-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-12-29 22:28]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.aol.com/?mtmhp=acm50mtmhpunauthgreeting
mStart Page = hxxp://search.entru.com/?s=21982
uInternet Settings,ProxyOverride = *.local
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
TCP: DhcpNameServer = 192.168.1.254
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-10 - (no file)
Toolbar-Locked - (no file)
MSConfigStartUp-Aim6 - c:\program files\AIM6\aim6.exe
MSConfigStartUp-Google Desktop Search - c:\program files\Google\Google Desktop Search\GoogleDesktop.exe
MSConfigStartUp-Google Update - c:\users\Tammy\AppData\Local\Google\Update\GoogleUpdate.exe
MSConfigStartUp-SunJavaUpdateSched - c:\program files\Java\jre6\bin\jusched.exe
AddRemove-bflixtoolbar - c:\program files\bflixtoolbar\uninstall.exe
AddRemove-LSI Soft Modem - c:\windows\agrsmdel
AddRemove-03_Swallowtail - c:\users\Tammy\AppData\Local\Temp\SAMSUNG\USB Drivers\-r\03_Swallowtail\Uninstall.exe
AddRemove-04_semseyite - c:\users\Tammy\AppData\Local\Temp\SAMSUNG\USB Drivers\-r\04_semseyite\Uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-03-27 11:30
Windows 6.0.6002 Service Pack 2 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5 977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,6a,9c,dd,8e,25,45,a5,4b,bc,5d,87,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839 E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,6a,9c,dd,8e,25,45,a5,4b,bc,5d,87,\
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Completion time: 2012-03-27 11:32:28
ComboFix-quarantined-files.txt 2012-03-27 15:32
.
Pre-Run: 206,620,495,872 bytes free
Post-Run: 206,598,287,360 bytes free
.
- - End Of File - - DDB6D06F8E3ADDC9DAEFD2D0AADA2407

SuperDave · « **Reply #6 on:** March 27, 2012, 10:54:25 AM »

P2P - I see you have P2P software installed on your machine. (LimeWire)We are not here to pass judgment on file-sharing as a concept. However, we will warn you that engaging in this activity and having this kind of software installed on your machine will always make you more susceptible to re-infections. It is certainly contributing to your current situation.

Please note: Even if you are using a "safe" P2P program, it is only the program that is safe. You will be sharing files from uncertified sources, and these are often infected. The bad guys use P2P filesharing as a major conduit to spread their wares.

I would strongly recommend that you uninstall them, however that choice is up to you. If you choose to remove these programs, you can do so via Control Panel >> Add or Remove Programs.
****************************************************
Please download: HiJackThis to your Desktop.

Double Click the HijackThis icon, located on your Desktop.
By Default, it will install to: C:\Program Files\Trend Micro\HijackThis
Accept the license agreement.
Open HijackThis and select Do a system scan only

Place a check mark next to the following entries: (if there)

Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com

Important: Close all open windows except for HijackThis and then click Fix checked.

Once completed, exit HijackThis.

***************************************************
SysProt Antirootkit

Download
SysProt Antirootkit from the link below (you will find it at the bottom
of the page under attachments, or you can get it from one of the
mirrors).

http://sites.google.com/site/sysprotantirootkit/

Unzip it into a folder on your desktop.

Double click Sysprot.exe to start the program.
Click on the Log tab.
In the Write to log box select the following items.

Process << Selected
Kernel Modules << Selected
SSDT << Selected
Kernel Hooks << Selected
IRP Hooks << NOT Selected
Ports << NOT Selected
Hidden Files << Selected

At the bottom of the page

Hidden Objects Only << Selected

Click on the Create Log button on the bottom right.
After a few seconds a new window should appear.
Select Scan Root Drive. Click on the Start button.
When it is complete a new window will appear to indicate that the scan is finished.
The log will be saved automatically in the same folder Sysprot.exe was extracted to. Open the text file and copy/paste the log here.

*****************************************************
Download Security Check by screen317 from one of the following links and save it to your desktop.

Link 1
Link 2

* Double-click Security Check.bat
* Follow the on-screen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt
* Post the contents of that document in your next reply.

Note: If a security program requests permission from dig.exe to access the Internet, allow it to do so.

debwins · « **Reply #7 on:** March 27, 2012, 11:28:43 AM »

Thank-You so much for your help. I went to control panel and programs and looked for P2P and limewire but I could not find either one of these programs to uninstall. Could they be under another name? Also I will do the all of the other information that you have given me and again I really appreciate this. The kids must have installed the P2P and limewire; please tell me what to look for. Thank-You

debwins · « **Reply #8 on:** March 27, 2012, 11:50:21 AM »

SysProt AntiRootkit v1.0.1.0
by swatkat

******************************************************************************************
******************************************************************************************

No Hidden Processes found

******************************************************************************************
******************************************************************************************
Kernel Modules:
Module Name: \SystemRoot\System32\Drivers\dump_diskdump.sys
Service Name: ---
Module Base: 8EBD9000
Module End: 8EBE3000
Hidden: Yes

Module Name: \SystemRoot\System32\Drivers\dump_nvstor32.sys
Service Name: ---
Module Base: 8A3C5000
Module End: 8A3E9000
Hidden: Yes

Module Name: \??\C:\Windows\system32\Drivers\PROCEXP113.SYS
Service Name: ---
Module Base: 9E7F7000
Module End: 9E7F9000
Hidden: Yes

Module Name: \??\C:\Users\Tammy\AppData\Local\Temp\catchme.sys
Service Name: catchme
Module Base: 9E600000
Module End: 9E608000
Hidden: Yes

******************************************************************************************
******************************************************************************************
SSDT:
Function Name: ZwNotifyChangeKey
Address: E049C004
Driver Base: E049B000
Driver End: E049E000
Driver Name: \SystemRoot\system32\DRIVERS\avgidsshimx.sys

Function Name: ZwNotifyChangeMultipleKeys
Address: E049C0D4
Driver Base: E049B000
Driver End: E049E000
Driver Name: \SystemRoot\system32\DRIVERS\avgidsshimx.sys

Function Name: ZwOpenProcess
Address: E049BD76
Driver Base: E049B000
Driver End: E049E000
Driver Name: \SystemRoot\system32\DRIVERS\avgidsshimx.sys

Function Name: ZwTerminateProcess
Address: E049BE1E
Driver Base: E049B000
Driver End: E049E000
Driver Name: \SystemRoot\system32\DRIVERS\avgidsshimx.sys

Function Name: ZwTerminateThread
Address: E049BEBA
Driver Base: E049B000
Driver End: E049E000
Driver Name: \SystemRoot\system32\DRIVERS\avgidsshimx.sys

Function Name: ZwWriteVirtualMemory
Address: E049BF56
Driver Base: E049B000
Driver End: E049E000
Driver Name: \SystemRoot\system32\DRIVERS\avgidsshimx.sys

******************************************************************************************
******************************************************************************************
No Kernel Hooks found

******************************************************************************************
******************************************************************************************
No hidden files/folders found

debwins · « **Reply #9 on:** March 27, 2012, 11:53:43 AM »

Results of screen317's Security Check version 0.99.32
Windows Vista Service Pack 2 x86 (UAC is enabled)
Internet Explorer 9
``````````````````````````````
Antivirus/Firewall Check:
Windows Firewall Enabled!
AVG 2012
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:
SUPERAntiSpyware
HijackThis 2.0.2
CCleaner
Java(TM) 6 Update 31
Adobe Flash Player 10.3.183.5 Flash Player out of Date!
Adobe Reader 8 Adobe Reader out of date!
````````````````````````````````
Process Check:
objlist.exe by Laurent
AVG avgwdsvc.exe
AVG avgtray.exe
AVG avgrsx.exe
AVG avgnsx.exe
AVG avgemc.exe
``````````End of Log````````````

SuperDave · « **Reply #10 on:** March 27, 2012, 07:45:12 PM »

Quote

went to control panel and programs and looked for P2P and limewire but I could not find either one of these programs to uninstall.

I saw it here:
c:\users\danielle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
LimeWire On Startup.lnk - c:\program files\LimeWire\LimeWire.exe
If you can't find it in Programs and Features you could look in your C drive under program files.

I'd like to scan your machine with ESET OnlineScan

•Hold down Control and click on the following link to open ESET OnlineScan in a new window.
ESET OnlineScan
•Click the

button.
•For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

Click on to download the ESET Smart Installer. Save it to your desktop.
Double click on the icon on your desktop.

•Check

•Click the

button.
•Accept any security warnings from your browser.
•Check

•Push the Start button.
•ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
•When the scan completes, push

•Push

, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
•Push the

button.
•Push

A log file will be saved here: C:\Program Files\ESET\ESET Online Scanner\log.txt

debwins · « **Reply #11 on:** March 29, 2012, 10:08:41 AM »

I ran the Eset scan and if came up with 2 threats, but I can't find the file to post it. I ran another scan and there weren't any threats.

SuperDave · « **Reply #12 on:** March 29, 2012, 01:27:02 PM »

Quote from: debwins on March 29, 2012, 10:08:41 AM

I ran the Eset scan and if came up with 2 threats, but I can't find the file to post it. I ran another scan and there weren't any threats.

Ok. How's your computer running? Any other issues before we clean up?

debwins · « **Reply #13 on:** March 30, 2012, 09:39:46 AM »

So far computer hasn't crashed

but still running slow and when I take programs off of start up they keep coming back, I have unchecked them many times and applied and restarted, but they come back. Also I click on normal start up but it returns to selective start up. Again your help is greatly appreciated. Thanks

SuperDave · « **Reply #14 on:** March 30, 2012, 11:27:02 AM »

Quote

when I take programs off of start up they keep coming back, I have unchecked them many times and applied and restarted, but they come back.

I'm not sure I understand this. Are you talking about startup. If so, you could try running StartUpLite. It will allow you to pick which programs you want in startup.

StartupLite

Download StartupLite by MalwareBytes to your Desktop.
Doubleclick StartupLite.exe to launch the program.
Ensure the Disable box is checked.
Click Continue.
A pop up message will tell you the unecessary startup items in your list have been disabled and ask you to restart your computer.
Re-start your computer.

Computer Hope Forum

News:

Author Topic: vista blue screen, crashes (Read 31637 times)

debwins

vista blue screen, crashes

SuperDave

Re: vista blue screen, crashes

debwins

Re: vista blue screen, crashes

debwins

Re: vista blue screen, crashes

SuperDave

Re: vista blue screen, crashes

debwins

Re: vista blue screen, crashes

SuperDave

Re: vista blue screen, crashes

debwins

Re: vista blue screen, crashes

debwins

Re: vista blue screen, crashes

debwins

Re: vista blue screen, crashes

SuperDave

Re: vista blue screen, crashes

debwins

Re: vista blue screen, crashes

SuperDave

Re: vista blue screen, crashes

debwins

Re: vista blue screen, crashes

SuperDave

Re: vista blue screen, crashes