zhar2
-
Posts
54 -
Joined
-
Last visited
-
Yes it does it will do a factory reset, if not not im quite liking this ubuntu. Though its restricting for my graphics orientated purposes. -
Well Kevin i am doing the ubuntu back up, seems to be running nicely but it will take time to back up documents from my user account and i need to back up other stuff like fonts
-
Images
-
Its so bizarre, here it's how it appears, well im trying to create an ubuntu image the one i did at work for some reason didnt work but i think its cos i had to use roxio which had trouble identifying .iso
-
All it seems from note pad i can navigate to my stuff and drive, can i granfer it straight from the notepad open facility?
-
I notice from notepad that my main drive has been renamed E and C is now thw one with only one 1.46 gb. Could that be the issue?
-
I really dont understand, everything had gone great.
-
Im sorry i mean, i tried exactly and you suggested
-
Hi I tried that s you id, exactly and nothing: Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 17-07-2013Ran by SYSTEM at 2013-07-17 07:12:33 Run:4Running from G:\Boot Mode: Recovery ============================================== ========================= Folder: C:\_OTL\MovedFiles ======================== 2013-07-16 14:06 - 2013-07-16 14:08 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_2306512013-07-16 14:09 - 2013-07-16 14:09 - 0017690 ____A () C:\_OTL\MovedFiles\07162013_230651.log2013-07-16 14:07 - 2013-07-16 14:08 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_230651\C_Program Files2013-07-16 14:08 - 2013-07-16 14:08 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_230651\C_Windows2012-09-08 05:01 - 2013-07-16 14:08 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares2013-07-16 14:08 - 2013-07-16 14:08 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ask & Record Toolbar2013-07-16 14:08 - 2013-07-16 14:08 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Java2012-02-18 15:07 - 2013-07-16 14:08 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan2012-02-02 07:55 - 2012-02-02 07:55 - 3209216 ____A (Ares Development Group) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\Ares.exe2007-04-23 17:11 - 2007-04-23 17:11 - 0200704 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\AsyncEx.ax2004-12-01 09:41 - 2004-12-01 09:41 - 0095800 ____A (Un4seen Developments) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\bass.dll2009-01-27 10:26 - 2009-01-27 10:26 - 0398336 ____A (Ares Development Group) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\chatServer.exe2012-09-08 05:01 - 2013-07-16 14:08 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data2012-09-08 05:01 - 2012-09-08 05:01 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\lang2007-06-19 13:39 - 2007-06-19 13:39 - 0173056 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\libfaad2.dll2004-12-10 03:51 - 2004-12-10 03:51 - 0061952 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\MP3Source.ax2012-09-08 05:02 - 2012-09-08 05:02 - 0072895 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\Uninstall.exe2003-12-15 18:44 - 2003-12-15 18:44 - 0000877 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\Blocked.txt.sample2008-12-18 17:52 - 2008-12-18 17:52 - 0000243 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\Blocked_Keywords.txt2005-07-18 06:44 - 2005-07-18 06:44 - 0000231 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\ChanListFilter.txt2007-02-20 06:25 - 2007-02-20 06:25 - 0000000 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\ChatConf.txt2009-01-27 06:55 - 2009-01-27 06:55 - 0006306 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\ChatLang_en.txt2009-01-27 06:56 - 2009-01-27 06:56 - 0007211 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\ChatLang_es.txt2012-02-02 07:19 - 2012-02-02 07:19 - 0004806 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\ChatroomIPs.dat2007-05-07 16:32 - 2007-05-07 16:32 - 0018054 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\flvplayer.swf2012-09-08 05:01 - 2013-07-16 14:08 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI2012-02-02 07:11 - 2012-02-02 07:11 - 0000275 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\Homepage.url2008-12-15 07:24 - 2008-12-15 07:24 - 0000710 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\motd.txt2009-01-19 04:10 - 2009-01-19 04:10 - 0026750 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\no-avatar.bmp2004-07-23 02:06 - 2004-07-23 02:06 - 0000149 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\P2PFilter.txt2012-09-08 05:01 - 2012-09-08 05:01 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Bloody2012-09-08 05:01 - 2012-09-08 05:02 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Borravino2012-09-08 05:02 - 2012-09-08 05:02 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Esmeralda2012-09-08 05:01 - 2012-09-08 05:01 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\General2012-09-08 05:02 - 2012-09-08 05:02 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Mac2012-09-08 05:01 - 2012-09-08 05:01 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\OsThemes2012-09-08 05:02 - 2012-09-08 05:02 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Win72008-04-28 00:42 - 2008-04-28 00:42 - 0003078 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Bloody\buttonsbitmap.bmp2007-01-19 03:51 - 2007-01-19 03:51 - 0012342 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Bloody\chat.bmp2005-02-11 14:43 - 2005-02-11 14:43 - 0050230 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Bloody\emotic.bmp2005-02-11 14:42 - 2005-02-11 14:42 - 0036918 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Bloody\libbig.bmp2008-04-28 02:04 - 2008-04-28 02:04 - 0001146 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Bloody\listviewbitmap.bmp2008-04-28 03:17 - 2008-04-28 03:17 - 0051846 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Bloody\logo.bmp2008-04-28 05:45 - 2008-04-28 05:45 - 0041454 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Bloody\mainbitmap.bmp2005-02-11 14:42 - 2005-02-11 14:42 - 0025654 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Bloody\mimesmall.bmp2008-04-28 03:39 - 2008-04-28 03:39 - 0051310 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Bloody\mplayer.bmp2005-02-17 04:25 - 2005-02-17 04:25 - 0032822 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Bloody\mshareset.bmp2008-11-14 10:53 - 2008-11-14 10:53 - 0006953 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Bloody\prefs.txt2005-02-17 04:25 - 2005-02-17 04:25 - 0005830 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Bloody\searchpnl.bmp2008-04-28 02:54 - 2008-04-28 02:54 - 0006966 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Bloody\searchstars.bmp2008-04-28 01:42 - 2008-04-28 01:42 - 0004954 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Bloody\smalltabsbitmap.bmp2008-04-28 05:45 - 2008-04-28 05:45 - 0011574 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Bloody\tabsBitmap.bmp2007-05-02 10:39 - 2007-05-02 10:39 - 0028854 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Bloody\tabssmall.bmp2008-04-28 03:50 - 2008-04-28 03:50 - 0001846 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Bloody\trackbar.bmp2008-04-28 02:39 - 2008-04-28 02:39 - 0009270 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Bloody\transfer.bmp2008-03-09 11:50 - 2008-03-09 11:50 - 0003080 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Borravino\buttonsbitmap.bmp2007-01-19 05:51 - 2007-01-19 05:51 - 0012342 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Borravino\chat.bmp2005-02-11 16:43 - 2005-02-11 16:43 - 0050230 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Borravino\emotic.bmp2005-02-11 16:42 - 2005-02-11 16:42 - 0036918 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Borravino\libbig.bmp2008-07-12 05:55 - 2008-07-12 05:55 - 0001148 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Borravino\listviewbitmap.bmp2007-12-26 12:22 - 2007-12-26 12:22 - 0051848 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Borravino\logo.bmp2007-12-26 12:14 - 2007-12-26 12:14 - 0041456 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Borravino\mainbitmap.bmp2005-02-11 16:42 - 2005-02-11 16:42 - 0025654 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Borravino\mimesmall.bmp2007-12-26 12:21 - 2007-12-26 12:21 - 0051312 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Borravino\mplayer.bmp2005-02-17 06:25 - 2005-02-17 06:25 - 0032822 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Borravino\mshareset.bmp2008-11-14 10:54 - 2008-11-14 10:54 - 0006973 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Borravino\prefs.txt2008-03-09 05:38 - 2008-03-09 05:38 - 0005832 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Borravino\searchpnl.bmp2005-02-19 07:38 - 2005-02-19 07:38 - 0009270 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Borravino\searchstars.bmp2008-07-12 05:48 - 2008-07-12 05:48 - 0004956 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Borravino\smalltabsbitmap.bmp2008-03-09 11:21 - 2008-03-09 11:21 - 0011576 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Borravino\tabsBitmap.bmp2008-03-09 05:36 - 2008-03-09 05:36 - 0028856 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Borravino\tabssmall.bmp2007-12-26 12:23 - 2007-12-26 12:23 - 0001848 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Borravino\trackbar.bmp2007-01-03 13:17 - 2007-01-03 13:17 - 0009270 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Borravino\transfer.bmp2008-03-09 04:43 - 2008-03-09 04:43 - 0003080 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Esmeralda\buttonsbitmap.bmp2007-01-19 05:51 - 2007-01-19 05:51 - 0012342 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Esmeralda\chat.bmp2005-02-11 16:43 - 2005-02-11 16:43 - 0050230 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Esmeralda\emotic.bmp2005-02-11 16:42 - 2005-02-11 16:42 - 0036918 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Esmeralda\libbig.bmp2008-03-09 04:47 - 2008-03-09 04:47 - 0001148 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Esmeralda\listviewbitmap.bmp2007-12-26 12:28 - 2007-12-26 12:28 - 0051848 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Esmeralda\logo.bmp2007-12-26 12:36 - 2007-12-26 12:36 - 0041456 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Esmeralda\mainbitmap.bmp2005-02-11 16:42 - 2005-02-11 16:42 - 0025654 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Esmeralda\mimesmall.bmp2007-12-26 12:27 - 2007-12-26 12:27 - 0051312 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Esmeralda\mplayer.bmp2005-02-17 06:25 - 2005-02-17 06:25 - 0032822 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Esmeralda\mshareset.bmp2008-11-14 10:54 - 2008-11-14 10:54 - 0007048 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Esmeralda\prefs.txt2008-03-09 02:53 - 2008-03-09 02:53 - 0005832 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Esmeralda\searchpnl.bmp2005-02-19 07:38 - 2005-02-19 07:38 - 0009270 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Esmeralda\searchstars.bmp2008-03-09 04:49 - 2008-03-09 04:49 - 0004956 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Esmeralda\smalltabsbitmap.bmp2007-12-26 12:27 - 2007-12-26 12:27 - 0011576 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Esmeralda\tabsBitmap.bmp2008-03-09 04:37 - 2008-03-09 04:37 - 0028856 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Esmeralda\tabssmall.bmp2007-12-26 12:27 - 2007-12-26 12:27 - 0001848 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Esmeralda\trackbar.bmp2008-03-09 03:01 - 2008-03-09 03:01 - 0009272 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Esmeralda\transfer.bmp2007-01-03 08:54 - 2007-01-03 08:54 - 0003078 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\General\buttonsbitmap.bmp2007-01-19 09:51 - 2007-01-19 09:51 - 0012342 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\General\chat.bmp2005-02-11 20:43 - 2005-02-11 20:43 - 0050230 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\General\emotic.bmp2005-02-11 20:42 - 2005-02-11 20:42 - 0036918 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\General\libbig.bmp2007-01-01 17:03 - 2007-01-01 17:03 - 0001146 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\General\listviewbitmap.bmp2004-02-26 11:09 - 2004-02-26 11:09 - 0051846 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\General\logo.bmp2007-03-03 06:47 - 2007-03-03 06:47 - 0041454 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\General\mainbitmap.bmp2005-02-11 20:42 - 2005-02-11 20:42 - 0025654 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\General\mimesmall.bmp2007-03-03 06:18 - 2007-03-03 06:18 - 0051310 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\General\mplayer.bmp2005-02-17 10:25 - 2005-02-17 10:25 - 0032822 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\General\mshareset.bmp2007-03-05 10:16 - 2007-03-05 10:16 - 0006966 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\General\prefs.txt2005-02-17 10:25 - 2005-02-17 10:25 - 0005830 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\General\searchpnl.bmp2005-02-19 11:38 - 2005-02-19 11:38 - 0009270 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\General\searchstars.bmp2006-12-30 16:21 - 2006-12-30 16:21 - 0004954 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\General\smalltabsbitmap.bmp2007-03-02 13:59 - 2007-03-02 13:59 - 0011574 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\General\tabsBitmap.bmp2007-05-02 16:39 - 2007-05-02 16:39 - 0028854 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\General\tabssmall.bmp2007-03-02 13:49 - 2007-03-02 13:49 - 0001846 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\General\trackbar.bmp2007-01-03 17:17 - 2007-01-03 17:17 - 0009270 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\General\transfer.bmp2009-09-09 15:31 - 2009-09-09 15:31 - 0003078 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Mac\buttonsbitmap.bmp2009-10-31 07:22 - 2009-10-31 07:22 - 0012342 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Mac\chat.bmp2009-10-31 08:34 - 2009-10-31 08:34 - 0050230 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Mac\emotic.bmp2009-10-31 07:13 - 2009-10-31 07:13 - 0027702 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Mac\libbig.bmp2009-09-09 16:12 - 2009-09-09 16:12 - 0001146 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Mac\listviewbitmap.bmp2009-09-10 17:36 - 2009-09-10 17:36 - 0051846 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Mac\logo.bmp2009-09-09 21:14 - 2009-09-09 21:14 - 0041454 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Mac\mainbitmap.bmp2009-10-31 06:37 - 2009-10-31 06:37 - 0019254 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Mac\mimesmall.bmp2009-09-10 17:09 - 2009-09-10 17:09 - 0051310 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Mac\mplayer.bmp2009-10-31 08:54 - 2009-10-31 08:54 - 0024630 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Mac\mshareset.bmp2009-10-31 08:19 - 2009-10-31 08:19 - 0006942 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Mac\prefs.txt2009-10-31 02:39 - 2009-10-31 02:39 - 0005830 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Mac\searchpnl.bmp2009-10-31 02:27 - 2009-10-31 02:27 - 0009270 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Mac\searchstars.bmp2009-10-31 07:25 - 2009-10-31 07:25 - 0004954 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Mac\smalltabsbitmap.bmp2009-09-09 21:15 - 2009-09-09 21:15 - 0011574 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Mac\tabsBitmap.bmp2009-10-31 08:44 - 2009-10-31 08:44 - 0028854 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Mac\tabssmall.bmp2009-10-31 06:51 - 2009-10-31 06:51 - 0001846 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Mac\trackbar.bmp2009-10-31 02:20 - 2009-10-31 02:20 - 0009270 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Mac\transfer.bmp2007-01-19 09:51 - 2007-01-19 09:51 - 0012342 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\OsThemes\chat.bmp2005-02-11 20:43 - 2005-02-11 20:43 - 0050230 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\OsThemes\emotic.bmp2005-02-11 20:42 - 2005-02-11 20:42 - 0036918 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\OsThemes\libbig.bmp2004-02-26 11:09 - 2004-02-26 11:09 - 0051846 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\OsThemes\logo.bmp2005-02-11 20:42 - 2005-02-11 20:42 - 0025654 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\OsThemes\mimesmall.bmp2005-02-17 10:25 - 2005-02-17 10:25 - 0032822 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\OsThemes\mshareset.bmp2007-02-25 10:49 - 2007-02-25 10:49 - 0007034 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\OsThemes\prefs.txt2005-02-17 10:25 - 2005-02-17 10:25 - 0005830 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\OsThemes\searchpnl.bmp2005-02-19 11:38 - 2005-02-19 11:38 - 0009270 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\OsThemes\searchstars.bmp2007-02-25 08:07 - 2007-02-25 08:07 - 0004954 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\OsThemes\smalltabsbitmap.bmp2007-05-03 04:45 - 2007-05-03 04:45 - 0046134 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\OsThemes\tabsbig.bmp2007-05-02 16:39 - 2007-05-02 16:39 - 0028854 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\OsThemes\tabssmall.bmp2007-01-03 17:17 - 2007-01-03 17:17 - 0009270 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\OsThemes\transfer.bmp2010-02-09 13:52 - 2010-02-09 13:52 - 0003078 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Win7\buttonsbitmap.bmp2010-02-13 14:00 - 2010-02-13 14:00 - 0012342 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Win7\chat.bmp2010-02-13 13:19 - 2010-02-13 13:19 - 0050230 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Win7\emotic.bmp2010-02-13 19:10 - 2010-02-13 19:10 - 0027702 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Win7\libbig.bmp2009-12-13 17:38 - 2009-12-13 17:38 - 0001146 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Win7\listviewbitmap.bmp2010-02-13 18:57 - 2010-02-13 18:57 - 0090054 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Win7\logo.bmp2010-02-08 07:19 - 2010-02-08 07:19 - 0041454 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Win7\mainbitmap.bmp2010-02-13 18:03 - 2010-02-13 18:03 - 0019254 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Win7\mimesmall.bmp2010-02-09 12:59 - 2010-02-09 12:59 - 0051310 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Win7\mplayer.bmp2010-02-13 16:09 - 2010-02-13 16:09 - 0024630 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Win7\mshareset.bmp2010-02-13 19:08 - 2010-02-13 19:08 - 0007257 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Win7\prefs.txt2010-02-13 08:48 - 2010-02-13 08:48 - 0005830 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Win7\searchpnl.bmp2010-02-10 12:26 - 2010-02-10 12:26 - 0009270 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Win7\searchstars.bmp2010-02-10 15:32 - 2010-02-10 15:32 - 0004954 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Win7\smalltabsbitmap.bmp2010-02-10 12:49 - 2010-02-10 12:49 - 0011574 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Win7\tabsBitmap.bmp2010-02-13 17:42 - 2010-02-13 17:42 - 0028854 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Win7\tabssmall.bmp2010-02-13 10:28 - 2010-02-13 10:28 - 0001846 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Win7\trackbar.bmp2010-02-13 17:39 - 2010-02-13 17:39 - 0009270 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\data\GUI\Win7\transfer.bmp2009-01-21 03:31 - 2009-01-21 03:31 - 0022052 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\lang\Arabic.txt2009-01-21 03:32 - 2009-01-21 03:32 - 0014498 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\lang\Chinese.txt2009-01-21 03:32 - 2009-01-21 03:32 - 0017070 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\lang\Czech.txt2009-01-21 03:31 - 2009-01-21 03:31 - 0014980 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\lang\Danish.txt2009-01-21 03:32 - 2009-01-21 03:32 - 0015742 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\lang\Dutch.txt2009-01-21 03:31 - 2009-01-21 03:31 - 0015915 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\lang\Finnish.txt2009-01-21 03:32 - 2009-01-21 03:32 - 0017661 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\lang\French.txt2009-01-21 03:33 - 2009-01-21 03:33 - 0021286 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\lang\German.txt2009-01-21 03:33 - 2009-01-21 03:33 - 0016342 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\lang\Italian.txt2009-01-21 03:32 - 2009-01-21 03:32 - 0020104 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\lang\Japanese.txt2009-01-21 03:33 - 2009-01-21 03:33 - 0025133 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\lang\Kirghiz.txt2009-01-21 03:32 - 2009-01-21 03:32 - 0015698 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\lang\Polish.txt2009-01-21 03:32 - 2009-01-21 03:32 - 0017117 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\lang\Portuguese.txt2009-01-21 03:33 - 2009-01-21 03:33 - 0021309 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\lang\Russian.txt2009-01-21 03:32 - 2009-01-21 03:32 - 0016875 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\lang\Slovak.txt2009-01-21 03:32 - 2009-01-21 03:32 - 0016898 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\lang\Spanish.txt2009-01-21 03:33 - 2009-01-21 03:33 - 0015525 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\lang\Swedish.txt2009-01-21 03:32 - 2009-01-21 03:32 - 0015390 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ares\lang\Turkish.txt2009-03-09 16:58 - 2009-03-09 16:29 - 0156672 ____A (Applian Technologies, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Ask & Record Toolbar\FLVSrvc.exe2013-07-16 14:08 - 2013-07-16 14:08 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Java\jre72013-07-16 14:08 - 2013-07-16 14:08 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Java\jre7\bin2013-07-16 14:08 - 2013-07-16 14:08 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Java\jre7\bin\plugin22013-07-16 09:54 - 2013-07-16 09:54 - 0159144 ____A (Oracle Corporation) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\Java\jre7\bin\plugin2\npjp2.dll2013-02-15 02:35 - 2013-07-16 14:08 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.3182012-02-18 15:07 - 2013-02-15 02:35 - 0279178 ____A (McAfee, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\uninstall.exe2013-02-05 08:33 - 2013-02-05 08:33 - 0486024 ____A (McAfee, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\AVScanComponent.dll2010-08-22 18:58 - 2013-02-15 02:35 - 0000426 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\AVScanner.ini2013-02-28 01:04 - 2013-02-28 01:04 - 0074829 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\avvclean.dat2013-02-28 01:04 - 2013-02-28 01:04 - 0008685 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\avvnames.dat2013-02-28 01:04 - 2013-02-28 01:04 - 0995877 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\avvscan.dat2012-08-08 02:39 - 2012-08-08 02:39 - 0005908 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\config.dat2012-08-17 03:54 - 2013-02-15 02:36 - 0000342 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\ftconfig.ini2010-06-23 05:13 - 2010-06-23 05:13 - 0025214 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\McAfee.ico2013-02-05 07:47 - 2013-02-05 07:47 - 0094112 ____A (McAfee, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll2011-06-14 06:29 - 2012-08-31 10:28 - 0412448 ____A (McAfee, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\mcbrwsr2.dll2013-02-05 07:48 - 2013-02-05 07:48 - 0235216 ____A (McAfee, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe2011-11-17 00:44 - 2011-11-17 00:44 - 0000480 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\MCCompHostConfig.ini2013-02-15 02:36 - 2013-02-05 08:35 - 0264008 ____A (McAfee, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\McInstallerRes.dll2013-02-15 02:36 - 2013-02-05 08:35 - 0153280 ____A (McAfee, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\McInstallerRes_LD.dll2013-02-15 02:36 - 2013-02-05 08:35 - 0571472 ____A (McAfee, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\McInstallerStartup.dll2012-08-08 02:39 - 2012-08-08 02:39 - 3207552 ____A (McAfee, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\mcscan32.dll2011-02-07 13:42 - 2011-02-07 13:42 - 0477560 ____A (McAfee, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\mcuicnt.exe2013-02-05 07:48 - 2013-02-05 07:48 - 0367544 ____A (McAfee, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\McUpdater.dll2013-02-05 07:48 - 2013-02-05 07:48 - 0052376 ____A (McAfee, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\npMcAfeeMSS.dll2013-02-15 02:36 - 2013-07-11 14:08 - 0251904 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\sacore.db2011-09-20 07:39 - 2011-09-20 07:39 - 1058112 ____A (McAfee, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\sacore.dll2013-02-15 02:35 - 2013-02-15 02:35 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\sacoredata2011-09-20 07:39 - 2011-09-20 07:39 - 0161088 ____A (McAfee, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\sa_cache_sqlite.dll2011-09-20 07:39 - 2011-09-20 07:39 - 0144704 ____A (McAfee, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\sa_http_win32.dll2011-09-20 07:39 - 2011-09-20 07:39 - 0144704 ____A (McAfee, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\sa_mbl.dll2011-09-20 07:39 - 2011-09-20 07:39 - 0128320 ____A (McAfee, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\sa_store_sqlite.dll2013-02-05 07:48 - 2013-02-05 07:48 - 0495800 ____A (McAfee, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\SecurityScanner.dll2013-02-05 08:34 - 2013-02-05 08:34 - 0203744 ____A (McAfee, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\SecurityScanner_LD.dll2009-02-06 10:03 - 2009-02-06 10:03 - 0007842 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\signlic.txt2011-09-20 07:39 - 2011-09-20 07:39 - 0480576 ____A (McAfee, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\sqlite3.dll2013-02-05 07:48 - 2013-02-05 07:48 - 0272248 ____A (McAfee, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe2013-02-15 02:36 - 2013-02-15 02:34 - 0000623 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\uninstaller.ini2013-02-05 08:34 - 2013-02-05 08:34 - 0481856 ____A (McAfee, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\WebInfoScanner.dll2013-02-05 08:34 - 2013-02-05 08:34 - 0487048 ____A (McAfee, Inc.) C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\WMIScanner.dll2009-09-04 23:30 - 2009-09-04 23:30 - 0000038 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\sacoredata\uds_filetypes.txt2009-09-04 23:30 - 2009-09-04 23:30 - 0000137 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\sacoredata\uds_hosting.txt2009-11-03 01:43 - 2009-11-03 01:43 - 0025680 ____A () C:\_OTL\MovedFiles\07162013_230651\C_Program Files\McAfee Security Scan\3.0.318\sacoredata\uds_tlds.txt2013-07-16 14:08 - 2013-07-16 14:08 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_230651\C_Windows\System322013-07-16 14:08 - 2013-07-16 14:08 - 0000000 ____D () C:\_OTL\MovedFiles\07162013_230651\C_Windows\System32\drivers2010-05-03 05:27 - 2010-03-29 01:06 - 0218592 ____A (PC Tools) C:\_OTL\MovedFiles\07162013_230651\C_Windows\System32\drivers\PCTCore.sys ====== End of Folder: ====== ==== End of Fixlog ====
-
Couldnt help myself, no that failed too. I will post the log on the am, according to it all was succesful.
-
I will try this after work, im exausted lol, havent had much sleep trying to sort my pc, but thank you so much for your help and patience, i will do as you say asap.
-
I really dont understand why system restore has always been such a let down and its so annoying that windows tools are always not upto the task but anyhow thats a rant, i am relieved to known that atleast i can save up all my stuff using the ubuntu method (i hope, is there anywhere when i can ask assistance for that just incase i get stuck?). I will have to re install all though but thats just something that has to be done. I hope i can somehow boot it up tho.
-
Nope still dosent
-
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 17-07-2013 Ran by SYSTEM at 2013-07-17 00:41:46 Run:2 Running from G:\ Boot Mode: Recovery ============================================== Software hive was renamed to software.old Software hive was successfully restored from backup. System hive was renamed to system.old System hive was successfully restored from backup. ==== End of Fixlog ====
-
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 17-07-2013 Ran by SYSTEM on 17-07-2013 00:16:41 Running from G:\ Windows Vista Home Premium Service Pack 1 (X86) OS Language: English(US) Internet Explorer Version 9 Boot Mode: Recovery The current controlset is ControlSet001 ATTENTION!:=====> FRST is updated to run from normal or Safe mode to produce a full FRST.txt log and Addition.txt log. ==================== Registry (Whitelisted) ================== HKLM\...\Run: [bCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation) HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-08-27] (Apple Inc.) HKLM\...\Run: [AppleSyncNotifier] - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2011-11-01] (Apple Inc.) HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2012-04-18] (Apple Inc.) HKLM\...\Run: [DivXUpdate] - C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1259376 2011-07-28] () HKLM\...\Run: [HTC Sync Loader] - C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe [634880 2012-04-01] () HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [421776 2012-09-09] (Apple Inc.) HKLM\...\Run: [Zune Launcher] - C:\Program Files\Zune\ZuneLauncher.exe [159456 2011-08-05] (Microsoft Corporation) HKLM\...\Run: [bambooCore] - C:\Program Files\Bamboo Dock\BambooCore.exe [646744 2012-10-16] () HKLM\...\Run: [TkBellExe] - C:\Program Files\Real\RealPlayer\update\realsched.exe [295512 2013-04-10] (RealNetworks, Inc.) HKLM\...\Run: [AVP] - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe [356376 2013-07-14] (Kaspersky Lab ZAO) HKLM\...\Run: [sunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-11] (Oracle Corporation) HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [919008 2012-07-27] (Adobe Systems Incorporated) HKLM\...\RunOnce: [OTL] - "C:\Users\felipe\Desktop\OTL.exe" [602112 2013-07-16] (OldTimer Tools) HKU\DORIS\...\Run: [QuickTime Task] - "C:\Program Files\QuickTime\QTTask.exe" -atboottime [ 2012-04-18] (Apple Inc.) HKU\DORIS\...\Policies\system: [LogonHoursAction] 2 HKU\DORIS\...\Policies\system: [DontDisplayLogonHoursWarnings] 1 HKU\felipe\...\Policies\system: [LogonHoursAction] 2 HKU\felipe\...\Policies\system: [DontDisplayLogonHoursWarnings] 1 HKU\postgres\...\Run: [AdobeBridge] - [x] HKU\postgres\...\Run: [Messenger (Yahoo!)] - "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet [ 2009-03-18] (Yahoo! Inc.) HKU\postgres\...\Run: [igndlm.exe] - C:\Program Files\Download Manager\DLM.exe /windowsstart /startifwork [ 2009-05-14] (IGN Entertainment) Startup: C:\Users\felipe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> (No File) ========================== Services (Whitelisted) ================= S2 AVP; C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe [356376 2013-07-14] (Kaspersky Lab ZAO) S4 bufssvr; C:\Program Files\BUFFALO\SLManagerEasy\Bufssvr.exe [90112 2010-03-11] (BUFFALO INC.) S4 CGVPNCliSrvc; C:\Program Files\S.A.D\CyberGhost VPN\CGVPNCliService.exe [2404488 2010-07-27] (mobile concepts GmbH) S4 CVCompressionService; C:\Program Files\CVision\PdfCompressor 5.0\Service\CVCompressionService.exe [576512 2011-07-12] (CVISION Technologies) S2 DAZContentManagementService; C:\Program Files\DAZ 3D\Content Management Service\ContentManagementServer.exe [18432 2011-05-05] () S4 EnterpriseDBApachePHP; C:\Program Files\PostgreSQL\EnterpriseDB-ApachePhp\apache\bin\httpd.exe [18432 2009-07-13] (Apache Software Foundation) S2 gupdate1c985fe7e348d8a; C:\Program Files\Google\Update\GoogleUpdate.exe [133104 2009-02-03] (Google Inc.) S4 mi-raysat_3dsMax2009_32; C:\Program Files\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_32server.exe [65536 2008-03-09] () S2 mpich2_smpd; C:\Program Files\MPICH2\bin\smpd.exe [483328 2010-10-22] (Argonne National Lab) S2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [43010392 2009-03-29] (Microsoft Corporation) S4 MSSQLServerADHelper100; C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [47128 2009-07-22] (Microsoft Corporation) S2 PassThru Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [87040 2012-03-23] () S4 PdfCompressorFtpService; C:\Program Files\CVision\PdfCompressor 5.0\ftpsvc.exe [162816 2011-07-12] (CVISION Technologies Inc.) S4 rcp_service; C:\Program Files\ReaConverter 5.5 Pro\rcp_scheduler.exe [558592 2007-11-30] (ReaSoft) S2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-03-05] () S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [366936 2009-03-29] (Microsoft Corporation) S4 WinTabService; C:\Windows\System32\Drivers\WTSRV.EXE [53248 2007-05-31] (Tablet Driver) S2 WSWNA3100; C:\Program Files\NETGEAR\WNA3100\WifiSvc.exe [285152 2010-08-26] () S2 WTabletServiceCon; C:\Program Files\Tablet\Pen\WTabletServiceCon.exe [528256 2012-12-11] (Wacom Technology, Corp.) S2 postgresql-8.4; C:/Program Files/PostgreSQL/8.4/bin/pg_ctl.exe runservice -N "postgresql-8.4" -D "C:/Program Files/PostgreSQL/8.4/data" -w [x] ==================== Drivers (Whitelisted) ==================== S3 appliand; C:\Windows\System32\DRIVERS\appliand.sys [28256 2011-06-25] (Applian Technologies Inc.) S3 appliandMP; C:\Windows\System32\DRIVERS\appliand.sys [28256 2011-06-25] (Applian Technologies Inc.) S3 AVerBDA3x; C:\Windows\System32\DRIVERS\AVerBDA3x.sys [1183744 2007-08-28] (AVerMedia TECHNOLOGIES, Inc.) S3 BCMH43XX; C:\Windows\System32\DRIVERS\bcmwlhigh6.sys [699896 2009-11-06] (Broadcom Corporation) S3 hidkmdf; C:\Windows\System32\DRIVERS\hidkmdf.sys [11680 2012-12-03] (Windows ® Win 7 DDK provider) S3 htcnprot; C:\Windows\System32\DRIVERS\htcnprot.sys [23040 2010-06-23] (Windows ® Win 7 DDK provider) S3 irsir; C:\Windows\System32\DRIVERS\irsir.sys [20992 2008-01-20] (Microsoft Corporation) S0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [136024 2012-06-19] (Kaspersky Lab ZAO) S1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [594528 2013-07-14] (Kaspersky Lab ZAO) S1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [24408 2012-08-02] (Kaspersky Lab ZAO) S3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [25944 2013-07-14] (Kaspersky Lab) S3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [25944 2013-07-14] (Kaspersky Lab) S1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [44000 2013-07-14] (Kaspersky Lab ZAO) S1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [145040 2013-07-14] (Kaspersky Lab ZAO) S3 netr28u; C:\Windows\System32\DRIVERS\netr28u.sys [599040 2008-01-31] (Ralink Technology Corp.) S3 PAC207; C:\Windows\System32\DRIVERS\PFC027.SYS [618112 2008-02-13] (PixArt Imaging Inc.) S3 PTSimBus; C:\Windows\System32\DRIVERS\PTSimBus.sys [18944 2007-06-07] (PenTablet Driver) S3 PTSimHid; C:\Windows\System32\DRIVERS\PTSimHid.sys [10752 2007-04-23] (PenTablet Driver) S4 RsFx0103; C:\Windows\System32\DRIVERS\RsFx0103.sys [239336 2009-03-29] (Microsoft Corporation) S3 RTL85n86; C:\Windows\System32\DRIVERS\RTL85n86.sys [354816 2007-03-12] (Realtek) S1 RtlProt; C:\Windows\System32\DRIVERS\rtlprot.sys [25896 2007-04-23] (Windows ® Codename Longhorn DDK provider) S0 SCMNdisP; C:\Windows\System32\DRIVERS\scmndisp.sys [21728 2007-01-19] (Windows ® Codename Longhorn DDK provider) S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [25216 2010-02-25] (The OpenVPN Project) S3 TClass2k; C:\Windows\System32\DRIVERS\TClass2k.sys [18432 2007-04-23] (Tablet Driver) S3 UCTblHid; C:\Windows\System32\DRIVERS\UCTblHid.sys [14848 2008-09-08] (Tablet Driver) S3 usbbus; C:\Windows\System32\DRIVERS\lgusbbus.sys [12416 2007-07-11] (LG Electronics Inc.) S3 UsbDiag; C:\Windows\System32\DRIVERS\lgusbdiag.sys [19840 2007-07-11] (LG Electronics Inc.) S3 USBModem; C:\Windows\System32\DRIVERS\lgusbmodem.sys [21632 2007-07-11] (LG Electronics Inc.) S3 usbUDisc; C:\Windows\System32\DRIVERS\USBDrv.sys [7040 2011-08-02] (Scott) S3 VSPerfDrv100; C:\Program Files\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\VSPerfDrv100.sys [54144 2011-01-18] (Microsoft Corporation) S3 WacHidRouter; C:\Windows\System32\DRIVERS\wachidrouter.sys [70048 2012-12-03] (Wacom Technology) S3 wacomrouterfilter; C:\Windows\System32\DRIVERS\wacomrouterfilter.sys [13728 2012-11-15] (Wacom Technology) S2 WIBUKEY; C:\Windows\System32\DRIVERS\WibuKey.sys [72704 2006-11-21] (WIBU-SYSTEMS AG) S3 catchme; \??\C:\ComboFix\catchme.sys [x] S2 srservice; S2 wuaserv; ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-07-16 14:06 - 2013-07-16 14:06 - 00000000 ____D C:\_OTL 2013-07-16 13:59 - 2013-07-16 13:59 - 00054167 _____ C:\Users\felipe\.recently-used.xbel 2013-07-16 12:49 - 2013-07-16 12:49 - 00121214 _____ C:\Users\felipe\Desktop\Extras.Txt 2013-07-16 12:47 - 2013-07-16 12:57 - 00342858 _____ C:\Users\felipe\Desktop\OTL.Txt 2013-07-16 12:47 - 2013-07-16 12:47 - 00342874 _____ C:\Users\felipe\Desktop\OTL-0.Txt 2013-07-16 12:23 - 2013-07-16 12:23 - 00602112 _____ (OldTimer Tools) C:\Users\felipe\Desktop\OTL.exe 2013-07-16 10:09 - 2013-07-16 10:09 - 00001897 _____ C:\Users\Public\Desktop\Adobe Reader X.lnk 2013-07-16 09:55 - 2013-07-16 09:54 - 00263592 _____ (Oracle Corporation) C:\Windows\System32\javaws.exe 2013-07-16 09:54 - 2013-07-16 09:54 - 00175016 _____ (Oracle Corporation) C:\Windows\System32\javaw.exe 2013-07-16 09:54 - 2013-07-16 09:54 - 00175016 _____ (Oracle Corporation) C:\Windows\System32\java.exe 2013-07-16 09:54 - 2013-07-16 09:54 - 00094632 _____ (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge.dll 2013-07-16 09:48 - 2013-07-16 09:48 - 00903080 _____ (Oracle Corporation) C:\Users\felipe\Downloads\jxpiinstall.exe 2013-07-16 09:20 - 2013-07-16 09:20 - 00000000 ____D C:\_OTM 2013-07-16 09:16 - 2013-07-16 09:16 - 00522240 _____ (OldTimer Tools) C:\Users\felipe\Desktop\OTM.exe 2013-07-15 21:36 - 2013-07-15 21:36 - 00891022 _____ C:\Users\felipe\Desktop\SecurityCheck.exe 2013-07-15 21:34 - 2013-07-15 21:34 - 00000248 _____ C:\Users\felipe\Desktop\ESET SCAN.txt 2013-07-15 16:16 - 2013-07-15 16:16 - 00026007 _____ C:\Users\felipe\Desktop\lll2.txt 2013-07-15 16:16 - 2013-07-15 16:16 - 00026007 _____ C:\ComboFix.txt 2013-07-15 16:00 - 2013-07-15 16:00 - 00000540 _____ C:\Windows\PFRO.log 2013-07-15 14:52 - 2013-07-15 14:52 - 00027590 _____ C:\Users\felipe\Desktop\lll.txt 2013-07-15 14:07 - 2013-07-15 14:07 - 05089088 ____R (Swearware) C:\Users\felipe\Desktop\ComboFix.exe 2013-07-15 13:48 - 2013-07-15 13:48 - 03741671 _____ C:\Users\felipe\Desktop\1st_Rev_values_only.xlsx 2013-07-15 10:48 - 2013-07-15 10:48 - 00003462 _____ C:\Users\felipe\Desktop\roguekill.txt 2013-07-15 10:48 - 2013-07-15 10:48 - 00002097 _____ C:\Users\felipe\Desktop\RKreport[0]_S_07152013_194819.txt 2013-07-15 10:47 - 2013-07-15 10:47 - 00053224 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\termdd.sys.bak 2013-07-15 10:47 - 2013-07-15 10:47 - 00035944 _____ (Integrated Technology Express, Inc.) C:\Windows\System32\Drivers\iteraid.sys.bak 2013-07-15 10:47 - 2013-07-15 10:47 - 00029184 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\hidbth.sys.bak 2013-07-15 10:47 - 2013-07-15 10:47 - 00022528 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\msfs.sys.bak 2013-07-15 10:47 - 2013-07-15 10:47 - 00019000 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\i2omgmt.sys.bak 2013-07-15 10:47 - 2013-07-15 10:47 - 00015872 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mouhid.sys.bak 2013-07-15 10:47 - 2013-07-15 10:47 - 00006144 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\RDPENCDD.sys.bak 2013-07-15 10:47 - 2013-07-15 10:47 - 00006016 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mstee.sys.bak 2013-07-15 10:47 - 2013-07-15 10:47 - 00004608 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\null.sys.bak 2013-07-15 10:46 - 2013-07-15 10:46 - 00273408 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\afd.sys.bak 2013-07-15 10:46 - 2013-07-15 10:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\bowser.sys.bak 2013-07-15 10:46 - 2013-07-15 10:46 - 00013312 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dxapi.sys.bak 2013-07-15 10:40 - 2013-07-15 10:40 - 00004686 _____ C:\Users\felipe\Desktop\RKreport[0]_D_07152013_194006.txt 2013-07-15 10:39 - 2013-07-15 10:39 - 00004449 _____ C:\Users\felipe\Desktop\RKreport[0]_S_07152013_193905.txt 2013-07-15 10:38 - 2013-07-15 10:47 - 00015360 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\TUNMP.SYS.bak 2013-07-15 10:38 - 2013-07-15 10:47 - 00010752 _____ (PenTablet Driver) C:\Windows\System32\Drivers\PTSimHid.sys.bak 2013-07-15 10:37 - 2013-07-15 10:46 - 00017976 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\amdide.sys.bak 2013-07-15 10:35 - 2013-07-15 10:48 - 00000000 ____D C:\Users\felipe\Desktop\RK_Quarantine 2013-07-15 10:21 - 2013-07-15 10:21 - 00051272 _____ C:\Users\felipe\Downloads\FRST.txt 2013-07-15 10:17 - 2013-07-15 10:21 - 00055609 _____ C:\Users\felipe\Desktop\Addition.txt 2013-07-15 09:58 - 2013-07-15 14:03 - 00000000 ____D C:\FRST 2013-07-15 09:54 - 2013-07-15 09:54 - 01218214 _____ (Farbar) C:\Users\felipe\Downloads\FRST.exe 2013-07-14 21:50 - 2013-07-14 21:49 - 00000993 _____ C:\Users\Public\Desktop\Kaspersky Anti-Virus 2013.lnk 2013-07-14 21:43 - 2013-07-16 13:47 - 00000000 ____D C:\ProgramData\Kaspersky Lab 2013-07-14 21:43 - 2013-07-14 21:43 - 00000000 ____D C:\Program Files\Kaspersky Lab 2013-07-14 21:29 - 2013-07-14 22:05 - 00594528 _____ (Kaspersky Lab ZAO) C:\Windows\System32\Drivers\klif.sys 2013-07-14 21:29 - 2013-07-14 22:05 - 00074848 _____ (Kaspersky Lab ZAO) C:\Windows\System32\Drivers\klflt.sys 2013-07-14 15:54 - 2013-07-14 16:01 - 124713128 _____ C:\Users\felipe\Downloads\drweb-cureit.exe 2013-07-14 14:40 - 2013-07-14 14:40 - 00688992 ____R (Swearware) C:\Users\felipe\Downloads\dds.com 2013-07-14 14:00 - 2013-07-14 14:00 - 00915456 _____ C:\Users\felipe\Downloads\RogueKiller.exe 2013-07-14 06:49 - 2013-07-14 06:49 - 02347384 _____ (ESET) C:\Users\felipe\Downloads\esetsmartinstaller_enu.exe 2013-07-14 06:49 - 2013-07-14 06:49 - 00000000 ____D C:\Program Files\ESET 2013-07-14 06:27 - 2013-07-14 06:27 - 00000000 ____D C:\Windows\System32\MRT 2013-07-14 05:48 - 2013-07-14 05:49 - 00035118 _____ C:\AdwCleaner[s1].txt 2013-07-14 05:47 - 2013-07-14 05:47 - 00034786 _____ C:\AdwCleaner[R2].txt 2013-07-14 05:40 - 2013-07-14 05:42 - 00034725 _____ C:\AdwCleaner[R1].txt 2013-07-14 05:21 - 2013-07-14 05:21 - 00662345 _____ C:\Users\felipe\Downloads\AdwCleaner.exe 2013-07-14 05:20 - 2013-07-14 05:20 - 02240864 _____ (Kaspersky Lab ZAO) C:\Users\felipe\Downloads\tdsskiller.exe 2013-07-14 05:12 - 2013-07-14 05:12 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files 2013-07-13 02:01 - 2013-07-15 11:06 - 00000022 _____ C:\Users\felipe\Downloads\avenger.zip 2013-07-13 01:45 - 2013-07-13 01:57 - 154504888 _____ (Kaspersky Lab) C:\Users\felipe\Downloads\kav13.0.1.4190en-gb_3571.exe 2013-07-13 01:38 - 2013-07-13 01:38 - 04464544 _____ (AVG Technologies) C:\Users\felipe\Downloads\avg_free_stb_all_2013_3345_free.exe 2013-07-12 10:06 - 2013-05-28 17:56 - 12333568 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2013-07-12 10:06 - 2013-05-28 17:50 - 01800704 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll 2013-07-12 10:06 - 2013-05-28 17:48 - 09738752 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2013-07-12 10:06 - 2013-05-28 17:41 - 01427968 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl 2013-07-12 10:06 - 2013-05-28 17:41 - 01129472 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll 2013-07-12 10:06 - 2013-05-28 17:41 - 01104384 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2013-07-12 10:06 - 2013-05-28 17:40 - 00231936 _____ (Microsoft Corporation) C:\Windows\System32\url.dll 2013-07-12 10:06 - 2013-05-28 17:38 - 00065024 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll 2013-07-12 10:06 - 2013-05-28 17:37 - 00142848 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe 2013-07-12 10:06 - 2013-05-28 17:36 - 00420864 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll 2013-07-12 10:06 - 2013-05-28 17:35 - 00717824 _____ (Microsoft Corporation) C:\Windows\System32\jscript.dll 2013-07-12 10:06 - 2013-05-28 17:35 - 00607744 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll 2013-07-12 10:06 - 2013-05-28 17:33 - 02382848 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2013-07-12 10:06 - 2013-05-28 17:33 - 01796096 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2013-07-12 10:06 - 2013-05-28 17:33 - 00073216 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll 2013-07-12 10:06 - 2013-05-28 17:29 - 00176640 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll 2013-07-11 13:57 - 2013-07-11 13:57 - 07297056 _____ C:\Users\felipe\Downloads\ACCESSIBILITY2.svg 2013-07-11 10:08 - 2013-06-03 17:50 - 02049024 _____ (Microsoft Corporation) C:\Windows\System32\win32k.sys 2013-07-11 10:07 - 2013-05-31 20:06 - 00505344 _____ (Microsoft Corporation) C:\Windows\System32\qedit.dll 2013-07-11 10:07 - 2013-05-07 19:14 - 01548288 _____ (Microsoft Corporation) C:\Windows\System32\WMVDECOD.DLL 2013-07-11 10:07 - 2013-04-17 03:28 - 01029120 _____ (Microsoft Corporation) C:\Windows\System32\d3d10.dll 2013-07-11 10:07 - 2013-04-17 03:28 - 00219648 _____ (Microsoft Corporation) C:\Windows\System32\d3d10_1core.dll 2013-07-11 10:07 - 2013-04-17 03:28 - 00189952 _____ (Microsoft Corporation) C:\Windows\System32\d3d10core.dll 2013-07-11 10:07 - 2013-04-17 03:28 - 00160768 _____ (Microsoft Corporation) C:\Windows\System32\d3d10_1.dll 2013-07-11 10:07 - 2013-04-17 02:34 - 01172480 _____ (Microsoft Corporation) C:\Windows\System32\d3d10warp.dll 2013-07-11 10:07 - 2013-04-17 02:33 - 00486400 _____ (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll 2013-07-11 10:07 - 2013-04-17 02:14 - 00683008 _____ (Microsoft Corporation) C:\Windows\System32\d2d1.dll 2013-07-11 10:07 - 2013-04-17 02:10 - 01069056 _____ (Microsoft Corporation) C:\Windows\System32\DWrite.dll 2013-07-11 10:07 - 2013-04-17 02:10 - 00798208 _____ (Microsoft Corporation) C:\Windows\System32\FntCache.dll 2013-06-26 11:03 - 2013-06-27 10:48 - 00000000 ____D C:\Program Files\Mozilla Firefox 2013-06-23 11:10 - 2013-06-23 11:35 - 00212866 _____ C:\Users\felipe\Desktop\stats bind.xlsx 2013-06-17 12:39 - 2013-06-17 12:39 - 00808382 _____ C:\Users\felipe\Downloads\Ledger_7569(1).xlsx ==================== One Month Modified Files and Folders ======= 2013-07-16 14:11 - 2006-11-02 04:47 - 00003216 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 2013-07-16 14:11 - 2006-11-02 04:47 - 00003216 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 2013-07-16 14:09 - 2009-01-10 10:17 - 32020454 _____ C:\Windows\WindowsUpdate.log 2013-07-16 14:08 - 2009-07-07 05:52 - 00000000 ____D C:\Program Files\Ask & Record Toolbar 2013-07-16 14:06 - 2013-07-16 14:06 - 00000000 ____D C:\_OTL 2013-07-16 13:59 - 2013-07-16 13:59 - 00054167 _____ C:\Users\felipe\.recently-used.xbel 2013-07-16 13:59 - 2009-01-10 10:20 - 00000000 ____D C:\users\felipe 2013-07-16 13:47 - 2013-07-14 21:43 - 00000000 ____D C:\ProgramData\Kaspersky Lab 2013-07-16 13:05 - 2010-07-25 11:01 - 00000000 ____D C:\Users\felipe\AppData\Roaming\Dropbox 2013-07-16 12:58 - 2009-01-10 10:20 - 00000000 ___RD C:\Users\felipe\Desktop 2013-07-16 12:57 - 2013-07-16 12:47 - 00342858 _____ C:\Users\felipe\Desktop\OTL.Txt 2013-07-16 12:49 - 2013-07-16 12:49 - 00121214 _____ C:\Users\felipe\Desktop\Extras.Txt 2013-07-16 12:47 - 2013-07-16 12:47 - 00342874 _____ C:\Users\felipe\Desktop\OTL-0.Txt 2013-07-16 12:23 - 2013-07-16 12:23 - 00602112 _____ (OldTimer Tools) C:\Users\felipe\Desktop\OTL.exe 2013-07-16 12:23 - 2013-02-03 04:58 - 00000000 ____D C:\Users\felipe\Desktop\planet 2013-07-16 12:22 - 2010-05-04 02:29 - 00000000 ____D C:\Users\felipe\AppData\Local\CrashDumps 2013-07-16 10:11 - 2009-01-10 10:21 - 00000000 ____D C:\Users\felipe\AppData\Local\Adobe 2013-07-16 10:09 - 2013-07-16 10:09 - 00001897 _____ C:\Users\Public\Desktop\Adobe Reader X.lnk 2013-07-16 10:09 - 2009-01-10 10:21 - 00000000 ____D C:\ProgramData\Adobe 2013-07-16 10:09 - 2009-01-10 10:21 - 00000000 ____D C:\Program Files\Common Files\Adobe 2013-07-16 10:09 - 2009-01-10 10:21 - 00000000 ____D C:\Program Files\Adobe 2013-07-16 10:09 - 2006-11-02 03:18 - 00000000 __RHD C:\Users\Public\Desktop 2013-07-16 09:54 - 2013-07-16 09:55 - 00263592 _____ (Oracle Corporation) C:\Windows\System32\javaws.exe 2013-07-16 09:54 - 2013-07-16 09:54 - 00175016 _____ (Oracle Corporation) C:\Windows\System32\javaw.exe 2013-07-16 09:54 - 2013-07-16 09:54 - 00175016 _____ (Oracle Corporation) C:\Windows\System32\java.exe 2013-07-16 09:54 - 2013-07-16 09:54 - 00094632 _____ (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge.dll 2013-07-16 09:54 - 2013-04-12 10:05 - 00867240 _____ (Oracle Corporation) C:\Windows\System32\npDeployJava1.dll 2013-07-16 09:54 - 2010-07-24 12:57 - 00789416 _____ (Oracle Corporation) C:\Windows\System32\deployJava1.dll 2013-07-16 09:54 - 2009-03-04 10:14 - 00000000 ____D C:\Program Files\Java 2013-07-16 09:48 - 2013-07-16 09:48 - 00903080 _____ (Oracle Corporation) C:\Users\felipe\Downloads\jxpiinstall.exe 2013-07-16 09:47 - 2009-03-04 10:14 - 00000000 ____D C:\Program Files\Common Files\Java 2013-07-16 09:37 - 2010-07-25 11:02 - 00000000 ___RD C:\Users\felipe\Documents\My Dropbox 2013-07-16 09:32 - 2012-07-21 11:16 - 00000000 ____D C:\Users\felipe\AppData\Local\Htc 2013-07-16 09:20 - 2013-07-16 09:20 - 00000000 ____D C:\_OTM 2013-07-16 09:16 - 2013-07-16 09:16 - 00522240 _____ (OldTimer Tools) C:\Users\felipe\Desktop\OTM.exe 2013-07-16 09:16 - 2013-04-14 09:12 - 00000000 ____D C:\Users\felipe\Desktop\New Folder (5) 2013-07-15 21:36 - 2013-07-15 21:36 - 00891022 _____ C:\Users\felipe\Desktop\SecurityCheck.exe 2013-07-15 21:34 - 2013-07-15 21:34 - 00000248 _____ C:\Users\felipe\Desktop\ESET SCAN.txt 2013-07-15 16:20 - 2012-07-26 15:41 - 00000000 ____D C:\Users\felipe\AppData\Local\Apps\2.0 2013-07-15 16:16 - 2013-07-15 16:16 - 00026007 _____ C:\Users\felipe\Desktop\lll2.txt 2013-07-15 16:16 - 2013-07-15 16:16 - 00026007 _____ C:\ComboFix.txt 2013-07-15 16:16 - 2012-07-07 08:26 - 00000000 ____D C:\Qoobox 2013-07-15 16:02 - 2006-11-02 02:23 - 00000215 _____ C:\Windows\system.ini 2013-07-15 16:00 - 2013-07-15 16:00 - 00000540 _____ C:\Windows\PFRO.log 2013-07-15 14:52 - 2013-07-15 14:52 - 00027590 _____ C:\Users\felipe\Desktop\lll.txt 2013-07-15 14:07 - 2013-07-15 14:07 - 05089088 ____R (Swearware) C:\Users\felipe\Desktop\ComboFix.exe 2013-07-15 14:03 - 2013-07-15 09:58 - 00000000 ____D C:\FRST 2013-07-15 13:48 - 2013-07-15 13:48 - 03741671 _____ C:\Users\felipe\Desktop\1st_Rev_values_only.xlsx 2013-07-15 12:06 - 2011-02-26 11:47 - 00000000 ____D C:\Users\felipe\Desktop\New Folder (3) 2013-07-15 11:53 - 2011-01-14 14:15 - 00000000 ____D C:\Users\felipe\Desktop\New Folder 2013-07-15 11:06 - 2013-07-13 02:01 - 00000022 _____ C:\Users\felipe\Downloads\avenger.zip 2013-07-15 10:48 - 2013-07-15 10:48 - 00003462 _____ C:\Users\felipe\Desktop\roguekill.txt 2013-07-15 10:48 - 2013-07-15 10:48 - 00002097 _____ C:\Users\felipe\Desktop\RKreport[0]_S_07152013_194819.txt 2013-07-15 10:48 - 2013-07-15 10:35 - 00000000 ____D C:\Users\felipe\Desktop\RK_Quarantine 2013-07-15 10:47 - 2013-07-15 10:47 - 00053224 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\termdd.sys.bak 2013-07-15 10:47 - 2013-07-15 10:47 - 00035944 _____ (Integrated Technology Express, Inc.) C:\Windows\System32\Drivers\iteraid.sys.bak 2013-07-15 10:47 - 2013-07-15 10:47 - 00029184 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\hidbth.sys.bak 2013-07-15 10:47 - 2013-07-15 10:47 - 00022528 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\msfs.sys.bak 2013-07-15 10:47 - 2013-07-15 10:47 - 00019000 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\i2omgmt.sys.bak 2013-07-15 10:47 - 2013-07-15 10:47 - 00015872 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mouhid.sys.bak 2013-07-15 10:47 - 2013-07-15 10:47 - 00006144 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\RDPENCDD.sys.bak 2013-07-15 10:47 - 2013-07-15 10:47 - 00006016 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mstee.sys.bak 2013-07-15 10:47 - 2013-07-15 10:47 - 00004608 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\null.sys.bak 2013-07-15 10:47 - 2013-07-15 10:38 - 00015360 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\TUNMP.SYS.bak 2013-07-15 10:47 - 2013-07-15 10:38 - 00010752 _____ (PenTablet Driver) C:\Windows\System32\Drivers\PTSimHid.sys.bak 2013-07-15 10:46 - 2013-07-15 10:46 - 00273408 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\afd.sys.bak 2013-07-15 10:46 - 2013-07-15 10:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\bowser.sys.bak 2013-07-15 10:46 - 2013-07-15 10:46 - 00013312 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dxapi.sys.bak 2013-07-15 10:46 - 2013-07-15 10:37 - 00017976 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\amdide.sys.bak 2013-07-15 10:40 - 2013-07-15 10:40 - 00004686 _____ C:\Users\felipe\Desktop\RKreport[0]_D_07152013_194006.txt 2013-07-15 10:39 - 2013-07-15 10:39 - 00004449 _____ C:\Users\felipe\Desktop\RKreport[0]_S_07152013_193905.txt 2013-07-15 10:21 - 2013-07-15 10:21 - 00051272 _____ C:\Users\felipe\Downloads\FRST.txt 2013-07-15 10:21 - 2013-07-15 10:17 - 00055609 _____ C:\Users\felipe\Desktop\Addition.txt 2013-07-15 10:08 - 2010-06-03 12:55 - 00115200 _____ C:\Users\felipe\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-07-15 09:54 - 2013-07-15 09:54 - 01218214 _____ (Farbar) C:\Users\felipe\Downloads\FRST.exe 2013-07-15 00:39 - 2010-08-01 09:01 - 00001356 _____ C:\Users\felipe\AppData\Local\d3d9caps.dat 2013-07-14 22:05 - 2013-07-14 21:29 - 00594528 _____ (Kaspersky Lab ZAO) C:\Windows\System32\Drivers\klif.sys 2013-07-14 22:05 - 2013-07-14 21:29 - 00074848 _____ (Kaspersky Lab ZAO) C:\Windows\System32\Drivers\klflt.sys 2013-07-14 22:05 - 2012-08-13 07:49 - 00145040 _____ (Kaspersky Lab ZAO) C:\Windows\System32\Drivers\kneps.sys 2013-07-14 22:05 - 2012-07-25 05:53 - 00025944 _____ (Kaspersky Lab) C:\Windows\System32\Drivers\klmouflt.sys 2013-07-14 22:05 - 2012-06-08 02:38 - 00044000 _____ (Kaspersky Lab ZAO) C:\Windows\System32\Drivers\kltdi.sys 2013-07-14 22:05 - 2012-05-25 10:38 - 00025944 _____ (Kaspersky Lab) C:\Windows\System32\Drivers\klkbdflt.sys 2013-07-14 21:49 - 2013-07-14 21:50 - 00000993 _____ C:\Users\Public\Desktop\Kaspersky Anti-Virus 2013.lnk 2013-07-14 21:43 - 2013-07-14 21:43 - 00000000 ____D C:\Program Files\Kaspersky Lab 2013-07-14 21:26 - 2010-04-28 16:08 - 00000000 ____D C:\ProgramData\Norton 2013-07-14 21:18 - 2009-01-10 11:34 - 00000000 ____D C:\Program Files\Common Files\Symantec Shared 2013-07-14 19:39 - 2012-05-21 08:57 - 00000000 ____D C:\ProgramData\YTD YouTube Downloader & Converter 2013-07-14 19:39 - 2009-02-26 14:10 - 00000000 ____D C:\Program Files\Vuze 2013-07-14 16:01 - 2013-07-14 15:54 - 124713128 _____ C:\Users\felipe\Downloads\drweb-cureit.exe 2013-07-14 14:40 - 2013-07-14 14:40 - 00688992 ____R (Swearware) C:\Users\felipe\Downloads\dds.com 2013-07-14 14:00 - 2013-07-14 14:00 - 00915456 _____ C:\Users\felipe\Downloads\RogueKiller.exe 2013-07-14 09:27 - 2011-05-12 10:36 - 00001940 _____ C:\Users\felipe\AppData\Local\{96C87F53-AC72-4604-A9CC-186A49F17F3C}.ini 2013-07-14 06:49 - 2013-07-14 06:49 - 02347384 _____ (ESET) C:\Users\felipe\Downloads\esetsmartinstaller_enu.exe 2013-07-14 06:49 - 2013-07-14 06:49 - 00000000 ____D C:\Program Files\ESET 2013-07-14 06:27 - 2013-07-14 06:27 - 00000000 ____D C:\Windows\System32\MRT 2013-07-14 05:49 - 2013-07-14 05:48 - 00035118 _____ C:\AdwCleaner[s1].txt 2013-07-14 05:47 - 2013-07-14 05:47 - 00034786 _____ C:\AdwCleaner[R2].txt 2013-07-14 05:42 - 2013-07-14 05:40 - 00034725 _____ C:\AdwCleaner[R1].txt 2013-07-14 05:21 - 2013-07-14 05:21 - 00662345 _____ C:\Users\felipe\Downloads\AdwCleaner.exe 2013-07-14 05:20 - 2013-07-14 05:20 - 02240864 _____ (Kaspersky Lab ZAO) C:\Users\felipe\Downloads\tdsskiller.exe 2013-07-14 05:12 - 2013-07-14 05:12 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files 2013-07-14 04:40 - 2006-11-02 04:37 - 00000000 ____D C:\Windows\DigitalLocker 2013-07-13 06:57 - 2010-07-15 06:58 - 00001976 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2013-07-13 06:20 - 2006-11-02 03:18 - 00000000 ____D C:\Windows\Microsoft.NET 2013-07-13 03:23 - 2010-09-25 01:43 - 00000000 ____D C:\Users\felipe\AppData\Roaming\Skype 2013-07-13 01:57 - 2013-07-13 01:45 - 154504888 _____ (Kaspersky Lab) C:\Users\felipe\Downloads\kav13.0.1.4190en-gb_3571.exe 2013-07-13 01:38 - 2013-07-13 01:38 - 04464544 _____ (AVG Technologies) C:\Users\felipe\Downloads\avg_free_stb_all_2013_3345_free.exe 2013-07-13 01:00 - 2006-11-02 04:47 - 02354864 _____ C:\Windows\System32\FNTCACHE.DAT 2013-07-12 16:06 - 2006-11-02 04:37 - 00000000 ____D C:\Windows\System32\XPSViewer 2013-07-12 10:38 - 2006-11-02 02:33 - 00858256 _____ C:\Windows\System32\PerfStringBackup.INI 2013-07-12 10:34 - 2008-06-17 04:07 - 00000000 ____D C:\ProgramData\Microsoft Help 2013-07-12 10:26 - 2012-10-11 13:43 - 00000127 _____ C:\Windows\System32\MRT.INI 2013-07-12 09:37 - 2006-11-02 04:37 - 00000000 ____D C:\Program Files\Windows Journal 2013-07-11 14:00 - 2009-01-11 03:14 - 00000000 ____D C:\Users\felipe\.gimp-2.6 2013-07-11 13:57 - 2013-07-11 13:57 - 07297056 _____ C:\Users\felipe\Downloads\ACCESSIBILITY2.svg 2013-07-11 13:56 - 2013-06-13 12:04 - 12153372 _____ C:\Users\felipe\Downloads\ACCESSIBILITY.svg 2013-07-11 11:01 - 2011-01-22 07:05 - 00037726 _____ C:\Windows\setupact.log 2013-07-11 10:41 - 2009-01-10 11:54 - 00000000 ____D C:\Users\felipe\AppData\Roaming\Mozilla 2013-07-10 13:00 - 2010-01-07 03:05 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2013-07-09 14:15 - 2011-01-02 10:24 - 00000000 ____D C:\Users\felipe\Desktop\Files gotha 2013-07-04 15:01 - 2009-01-19 08:12 - 00000000 ____D C:\Users\felipe\AppData\Roaming\gtk-2.0 2013-06-28 09:38 - 2012-06-25 15:49 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service 2013-06-27 10:48 - 2013-06-26 11:03 - 00000000 ____D C:\Program Files\Mozilla Firefox 2013-06-23 15:37 - 2006-11-02 02:24 - 75733144 _____ (Microsoft Corporation) C:\Windows\System32\mrt.exe 2013-06-23 11:35 - 2013-06-23 11:10 - 00212866 _____ C:\Users\felipe\Desktop\stats bind.xlsx 2013-06-21 16:41 - 2010-06-10 13:43 - 00000000 ____D C:\Users\felipe\AppData\Roaming\vlc 2013-06-17 12:39 - 2013-06-17 12:39 - 00808382 _____ C:\Users\felipe\Downloads\Ledger_7569(1).xlsx ==================== Known DLLs (Whitelisted) ============ ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe => MD5 is legit C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit ==================== EXE ASSOCIATION ===================== HKLM\...\.exe: exefile => OK HKLM\...\exefile\DefaultIcon: %1 => OK HKLM\...\exefile\open\command: "%1" %* => OK ==================== Restore Points ========================= ==================== Memory info =========================== Percentage of memory in use: 13% Total physical RAM: 3325.45 MB Available physical RAM: 2885.53 MB Total Pagefile: 3214.86 MB Available Pagefile: 3031.32 MB Total Virtual: 2047.88 MB Available Virtual: 1958.85 MB ==================== Drives ================================ Drive c: (Vista) (Fixed) (Total:455.02 GB) (Free:126.7 GB) NTFS ==>[system with boot components (obtained from reading drive)] Drive d: (DATA) (Fixed) (Total:465.76 GB) (Free:430.66 GB) NTFS Drive f: (Bamboo CD) (CDROM) (Total:0.06 GB) (Free:0 GB) CDFS Drive g: () (Fixed) (Total:0.12 GB) (Free:0.1 GB) FAT Drive x: (Recovery) (Fixed) (Total:9.28 GB) (Free:4.62 GB) NTFS Drive y: (System) (Fixed) (Total:1.46 GB) (Free:1.42 GB) NTFS ==>[system with boot components (obtained from reading drive)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 466 GB) (Disk ID: DD555DE6) Partition 1: (Not Active) - (Size=9 GB) - (Type=27) Partition 2: (Active) - (Size=1 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=455 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or Vista) (Size: 466 GB) (Disk ID: F004AD94) Partition 1: (Not Active) - (Size=466 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (MBR Code: Windows XP) (Size: 124 MB) (Disk ID: 380F3206) Partition 1: (Not Active) - (Size=123 MB) - (Type=06) LastRegBack: 2013-07-16 09:38 ==================== End Of Log ============================
