Help:Windows encounter critical error then restart

I just recently installed Windows Security Essential this morning...now it says that windows encounter critical error and restart continually. I've tried to turn off the automatic restart it still does it...safe mode it restarts the computer doesn't stay on longer than a minute....

Hello and welcome to GeekPolice.Net My name is Dave. I will be helping you out with your particular problem on your computer.

1. I will be working on your Malware issues. This may or may not solve other issues you have with your machine.
2. The fixes are specific to your problem and should only be used for this issue on this machine.
3. If you don't know or understand something, please don't hesitate to ask.
4. Please DO NOT run any other tools or scans while I am helping you.
5. It is important that you reply to this thread. Do not start a new topic.
6. Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
7. Absence of symptoms does not mean that everything is clear.

If you can't access the internet with your infected computer you will have to download and transfer any programs to the computer you're using now and transfer them to the infected computer with a CD-RW or a USB storage device. I prefer a CD because a storage device can get infected. If you use a storage device hold the shift key down while inserting the USB storage device for about 10 secs. You will also have to transfer the logs you receive back to the good computer using the same method until we can get the computer back on-line.
*****************************************************************
We are going to be using a Windows Recovery Environment to help disinfect the system so it may boot again.

Download the OTLPE Standard REATOGO Windows Recovery Environment.

• Place a blank CD-R disc in to your CD burning drive.
  
• Download OTLPEStd.exe and double-click on it to burn to a CD using an ISO Burner. One can be found here.
  
• Reboot your system using the boot CD you just created.
  
• Note : If you do not know how to set your computer to boot from CD follow the steps here
  
• Your system should now display a REATOGO-X-PE desktop.
  
• Double-click on the OTLPE icon.
  
• When asked "Do you wish to load the remote registry", select Yes
  
• When asked "Do you wish to load remote user profile(s) for scanning", select Yes
  
• Ensure the box "Automatically Load All Remaining Users" is checked and press OK
  
• OTL should now start. Change the following settings
  
• Change Drivers to Non-Microsoft
  
• Press Run Scan to start the scan.
  
• When finished, the file will be saved in drive C:\_OTL\MovedFiles
  
• Copy this file to your USB drive if you do not have internet connection on this system
  
• Please post the contents of the OTL.txt file in your reply.
  

Hi Dave this is what I have....
OTL logfile created on: 7/18/2012 9:27:43 PM - Run
OTLPE by OldTimer - Version 3.1.48.0 Folder = F:\Programs\OTLPE
Windows 7 Professional Service Pack 1 (Version = 6.1.7601) - Type = System
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 44.00% Memory free
4.00 Gb Paging File | 2.00 Gb Available in Paging File | 60.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 178.40 Gb Total Space | 1.98 Gb Free Space | 1.11% Space Free | Partition Type: NTFS
Drive F: | 284.12 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive J: | 2.74 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: KLASSIK | User Name: Kay Jay
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet002

========== Win32 Services (SafeList) ==========

SRV - [2012/07/15 01:05:23 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/07/10 14:15:01 | 004,419,392 | ---- | M] () [Auto] -- C:\program files\common files\akamai/netsession_win_4f7fccd.dll -- (Akamai)
SRV - [2012/07/09 13:05:36 | 000,935,008 | ---- | M] () [Auto] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe -- (vToolbarUpdater11.2.0)
SRV - [2012/07/03 13:46:44 | 000,655,944 | ---- | M] (Malwarebytes Corporation) [Disabled] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/05/18 01:23:36 | 002,938,880 | ---- | M] (PACE Anti-Piracy, Inc.) [Auto] -- C:\Program Files\Common Files\PACE\Services\LicenseServices\LDSvc.exe -- (PaceLicenseDServices)
SRV - [2012/04/30 09:44:38 | 005,106,744 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto] -- C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2012/03/26 17:03:40 | 000,214,952 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2012/03/26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2012/02/29 08:50:48 | 000,158,856 | R--- | M] (Skype Technologies) [Auto] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/02/14 04:53:38 | 000,193,288 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto] -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe -- (avgwd)
SRV - [2012/01/18 02:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) [Auto] -- C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe -- (UMVPFSrv)
SRV - [2012/01/03 09:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/01/02 21:16:56 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2011/10/15 03:01:57 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2011/10/01 09:30:42 | 000,219,496 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa)
SRV - [2011/10/01 09:30:36 | 000,508,776 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist)
SRV - [2011/07/06 05:30:00 | 002,304,912 | ---- | M] (WIBU-SYSTEMS AG) [Auto] -- C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe -- (CodeMeter.exe)
SRV - [2010/11/22 18:50:26 | 000,066,560 | ---- | M] (Nalpeiron Ltd.) [Auto] -- C:\Windows\System32\nlssrv32.exe -- (nlsX86cc)
SRV - [2010/06/24 00:40:36 | 000,077,824 | ---- | M] (Avid Technology, Inc..) [Auto] -- C:\Program Files\Digidesign\Drivers\MMERefresh.exe -- (DigiRefresh)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009/07/13 21:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009/07/13 21:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/13 21:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/13 21:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" =



IE - HKU\S-1-5-21-364620381-1232982536-1241758495-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKU\S-1-5-21-364620381-1232982536-1241758495-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKU\S-1-5-21-364620381-1232982536-1241758495-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKU\S-1-5-21-364620381-1232982536-1241758495-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 3F 32 3A B2 A6 87 CC 01 [binary data]
IE - HKU\S-1-5-21-364620381-1232982536-1241758495-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\System32\Macromed\Flash\NPSWF32_11_3_300_265.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\System32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\11.2.0\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@checkpoint.com/FFApi: File not found
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\Program Files\Microsoft Office\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files\Microsoft Office\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/wpi,version=1.4: C:\Program Files\Microsoft\Web Platform Installer\\npwpidetector.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\ADOBE\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Kay Jay\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Kay Jay\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG2012\Firefox4\ [2012/05/29 08:03:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\11.1.0.12\ [2012/07/09 13:05:47 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012/02/08 20:46:16 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{F53C93F1-07D5-430c-86D4-C9531B27DFAF}: C:\Program Files\AVG\AVG2012\Firefox\DoNotTrack\ [2012/05/15 10:49:26 | 000,000,000 | ---D | M]

[2012/07/16 22:59:04 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012/03/08 17:23:10 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}
[2012/03/08 17:21:58 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2012/07/09 13:05:32 | 000,003,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml
[2012/06/21 18:40:46 | 000,002,352 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2011/09/28 20:26:50 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml.old

O1 HOSTS File: ([2012/07/18 18:22:33 | 000,001,179 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [DigidesignMMERefresh] C:\Program Files\Digidesign\Drivers\MMERefresh.exe (Avid Technology, Inc..)
O4 - HKLM..\Run: [HF_G_Jul] C:\Program Files\AVG Secure Search\HF_G_Jul.exe ()
O4 - HKLM..\Run: [M-Audio Taskbar Icon] C:\Windows\System32\M-AudioTaskBarIcon.exe (Avid Technology, Inc.)
O4 - HKLM..\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe (Simply Super Software)
O4 - HKLM..\Run: [vProt] C:\Program Files\AVG Secure Search\vprot.exe ()
O4 - HKU\S-1-5-21-364620381-1232982536-1241758495-1000..\Run: [ooVoo.exe] C:\Program Files\ooVoo\ooVoo.exe (ooVoo LLC)
O4 - HKU\S-1-5-21-364620381-1232982536-1241758495-1000..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-364620381-1232982536-1241758495-1000..\Run: [SansaDispatch] C:\Users\Kay Jay\AppData\Roaming\SanDisk\Sansa Updater\SansaDispatch.exe (SanDisk Corporation)
O4 - HKU\S-1-5-21-364620381-1232982536-1241758495-1000..\Run: [Spotify Web Helper] C:\Users\Kay Jay\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe ()
O4 - HKU\S-1-5-21-364620381-1232982536-1241758495-1000..\Run: [uTorrent] File not found
O4 - Startup: C:\Users\Kay Jay\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Kay Jay\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - File not found
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - File not found
O13 - gopher Prefix: missing
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 8.8.4.4 8.8.8.8 12.231.192.200
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\11.2.0\ViProtocol.dll ()
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 17:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 07:06:41 | 000,000,053 | R--- | M] () - F:\AUTORUN.INF -- [ CDFS ]
O32 - AutoRun File - [2005/11/26 09:07:06 | 000,005,345 | R--- | M] () - J:\autorun.apm -- [ CDFS ]
O32 - AutoRun File - [2005/11/26 09:07:06 | 001,089,536 | R--- | M] (Indigo Rose Corporation) - J:\autorun.exe -- [ CDFS ]
O32 - AutoRun File - [2005/11/26 09:07:06 | 000,019,790 | R--- | M] () - J:\autorun.ico -- [ CDFS ]
O32 - AutoRun File - [2005/11/26 09:07:06 | 000,000,047 | R--- | M] () - J:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{dc5e646d-f3ad-11e0-9e8f-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{dc5e646d-f3ad-11e0-9e8f-806e6f6e6963}\Shell\AutoRun\command - "" = F:\reatogoMenu.exe -- [2005/07/16 17:36:50 | 000,240,128 | R--- | M] ()
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2012\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG2012\avgrsx.exe (AVG Technologies CZ, s.r.o.)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKU\S-1-5-21-364620381-1232982536-1241758495-1000\...com [@ = comfile] -- Reg Error: Key error. File not found
O37 - HKU\S-1-5-21-364620381-1232982536-1241758495-1000\...exe [@ = exefile] -- Reg Error: Key error. File not found

========== Files/Folders - Created Within 30 Days ==========

[2012/07/18 19:33:30 | 000,043,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\guvmfgys.sys
[2012/07/18 19:33:04 | 000,000,000 | --SD | C] -- C:\commy
[2012/07/18 19:09:53 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2012/07/18 19:09:53 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2012/07/18 19:09:53 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2012/07/18 18:22:52 | 000,043,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\amjjvmtl.sys
[2012/07/18 18:10:05 | 000,000,000 | ---D | C] -- C:\Users\Kay Jay\Documents\Simply Super Software
[2012/07/18 18:10:05 | 000,000,000 | ---D | C] -- C:\Users\Kay Jay\AppData\Roaming\Simply Super Software
[2012/07/18 18:09:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trojan Remover
[2012/07/18 18:08:56 | 000,000,000 | ---D | C] -- C:\Program Files\Trojan Remover
[2012/07/18 18:08:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Simply Super Software
[2012/07/18 17:52:07 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/07/18 17:42:26 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2012/07/18 17:40:08 | 004,582,182 | R--- | C] (Swearware) -- C:\Users\Kay Jay\Desktop\commy.exe
[2012/07/18 16:20:21 | 000,043,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\lhgksncr.sys
[2012/07/18 16:11:08 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2012/07/18 16:11:08 | 000,000,000 | ---D | C] -- C:\Users\Kay Jay\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
[2012/07/18 15:45:30 | 000,040,776 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2012/07/18 14:42:51 | 000,000,000 | ---D | C] -- C:\Windows\System32\AVG
[2012/07/18 09:50:48 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2012/07/18 09:38:11 | 000,000,000 | ---D | C] -- C:\Users\Kay Jay\AppData\Local\ElevatedDiagnostics
[2012/07/18 08:58:29 | 000,000,000 | ---D | C] -- C:\New folder
[2012/07/16 22:59:55 | 000,000,000 | ---D | C] -- C:\Program Files\Ask.com
[2012/07/15 01:24:06 | 000,000,000 | -HSD | C] -- C:\Windows\System32\%APPDATA%
[2012/07/12 03:06:55 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012/07/12 03:06:53 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012/07/12 03:06:52 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2012/07/12 03:06:52 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012/07/12 03:06:51 | 001,800,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2012/07/12 03:06:51 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2012/07/12 03:06:50 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2012/07/12 03:06:50 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012/07/12 03:02:17 | 002,345,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2012/07/11 05:09:59 | 000,219,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2012/07/11 05:09:56 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml3r.dll
[2012/07/11 05:09:53 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdosys.dll
[2012/07/09 14:37:38 | 000,000,000 | ---D | C] -- C:\Users\Kay Jay\Documents\Native Instruments
[2012/07/08 10:50:25 | 000,000,000 | ---D | C] -- C:\Users\Kay Jay\Documents\Any Video Converter
[2012/07/04 10:51:21 | 000,000,000 | ---D | C] -- C:\Users\Kay Jay\AppData\Local\{5AE91369-00BF-4A2A-8D0F-952ABAC3842A}
[2012/07/04 10:51:06 | 000,000,000 | ---D | C] -- C:\Users\Kay Jay\AppData\Local\{40FFF4D9-F5F1-479F-8D18-BDAAE9146916}
[2012/07/04 10:48:15 | 000,000,000 | ---D | C] -- C:\Users\Kay Jay\Documents\MAGIX downloads
[2012/07/04 10:48:15 | 000,000,000 | ---D | C] -- C:\Users\Kay Jay\Documents\MAGIX
[2012/07/04 10:18:16 | 000,000,000 | ---D | C] -- C:\Program Files\OApps
[2012/07/04 10:18:15 | 000,000,000 | ---D | C] -- C:\Program Files\TorrentSearch
[2012/07/04 10:17:58 | 000,000,000 | ---D | C] -- C:\Program Files\intellidownload
[2012/07/04 09:47:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012/07/04 09:47:16 | 000,107,368 | ---- | C] (GEAR Software Inc.) -- C:\Windows\System32\GEARAspi.dll
[2012/07/04 09:45:30 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012/07/04 09:45:29 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2012/06/27 16:04:46 | 000,000,000 | ---D | C] -- C:\Users\Kay Jay\AppData\Roaming\Digidesign
[2012/06/27 15:58:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\M-Audio
[2012/06/27 15:58:28 | 000,000,000 | ---D | C] -- C:\Program Files\M-Audio
[2012/06/27 15:41:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digidesign
[2012/06/21 18:40:27 | 000,000,000 | ---D | C] -- C:\Users\Kay Jay\AppData\Roaming\Babylon
[2012/06/21 18:40:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
[2012/06/21 18:39:56 | 000,000,000 | ---D | C] -- C:\Program Files\Brand Affinity Technologies
[2012/06/21 17:42:35 | 000,045,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2012/06/21 17:42:34 | 002,422,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2012/06/21 17:41:46 | 000,035,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2012/06/21 17:41:45 | 000,577,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2012/06/21 17:41:45 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2012/06/21 17:40:49 | 000,171,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2012/06/21 17:40:49 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2012/06/20 20:05:18 | 000,000,000 | -HSD | C] -- C:\found.002
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Users\Kay Jay\Documents\*.tmp files -> C:\Users\Kay Jay\Documents\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/07/18 21:19:24 | 000,014,976 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/07/18 21:19:24 | 000,014,976 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/07/18 21:08:24 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/07/18 21:08:13 | 1603,084,288 | -HS- | M] () -- C:\hiberfil.sys
[2012/07/18 19:33:30 | 000,043,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\guvmfgys.sys
[2012/07/18 18:40:23 | 000,040,776 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2012/07/18 18:22:52 | 000,043,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\amjjvmtl.sys
[2012/07/18 18:22:33 | 000,001,179 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2012/07/18 18:09:56 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trojan Remover
[2012/07/18 18:09:53 | 000,001,067 | ---- | M] () -- C:\Users\Public\Desktop\Trojan Remover.lnk
[2012/07/18 17:44:44 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/07/18 17:44:38 | 000,006,144 | ---- | M] () -- C:\Windows\System32\umstartup.etl
[2012/07/18 17:42:49 | 064,143,544 | ---- | M] () -- C:\Windows\System32\drivers\AVG\incavi.avm
[2012/07/18 17:40:22 | 004,582,182 | R--- | M] (Swearware) -- C:\Users\Kay Jay\Desktop\commy.exe
[2012/07/18 17:38:05 | 000,000,916 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-364620381-1232982536-1241758495-1000UA.job
[2012/07/18 17:21:52 | 000,002,243 | ---- | M] () -- C:\Windows\epplauncher.mif
[2012/07/18 16:20:21 | 000,043,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\lhgksncr.sys
[2012/07/18 16:11:08 | 000,002,975 | ---- | M] () -- C:\Users\Kay Jay\Desktop\HiJackThis.lnk
[2012/07/18 09:51:17 | 000,739,296 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/07/18 09:51:17 | 000,151,320 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/07/18 09:38:01 | 000,000,864 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-364620381-1232982536-1241758495-1000Core.job
[2012/07/18 09:24:54 | 000,003,660 | ---- | M] () -- C:\Users\Kay Jay\Desktop\backup.reg
[2012/07/17 20:03:33 | 409,468,980 | ---- | M] () -- C:\Users\Kay Jay\Documents\Intro.reason
[2012/07/17 20:03:27 | 036,338,524 | ---- | M] () -- C:\Users\Kay Jay\Documents\Intro & Words.wav
[2012/07/17 19:54:16 | 001,048,628 | ---- | M] () -- C:\Users\Kay Jay\Documents\First dub.reason
[2012/07/17 19:36:06 | 000,001,030 | ---- | M] () -- C:\Windows\System32\CM-Backup2-1988839-12Jul17-19-36-06.wbb
[2012/07/16 23:22:58 | 000,024,194 | ---- | M] () -- C:\Users\Kay Jay\Documents\cc_20120716_232253.reg
[2012/07/16 20:57:05 | 029,282,524 | ---- | M] () -- C:\Users\Kay Jay\Documents\Words.wav
[2012/07/16 19:08:25 | 000,001,030 | ---- | M] () -- C:\Windows\System32\CM-Backup2-1988839-12Jul16-19-08-25.wbb
[2012/07/15 19:16:47 | 000,001,091 | ---- | M] () -- C:\Users\Kay Jay\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Malwarebytes Anti-Malware.lnk
[2012/07/15 19:16:47 | 000,001,067 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/07/15 19:16:47 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/07/15 01:05:22 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012/07/15 01:05:22 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012/07/13 18:39:43 | 035,280,124 | ---- | M] () -- C:\Users\Kay Jay\Documents\Intro (Vocals).wav
[2012/07/13 18:38:17 | 035,280,124 | ---- | M] () -- C:\Users\Kay Jay\Documents\Intro.wav
[2012/07/12 22:27:03 | 022,282,292 | ---- | M] () -- C:\Users\Kay Jay\Documents\viacom blues.reason
[2012/07/12 20:30:22 | 000,001,030 | ---- | M] () -- C:\Windows\System32\CM-Backup2-1988839-12Jul12-20-30-22.wbb
[2012/07/12 13:36:20 | 000,002,369 | ---- | M] () -- C:\Users\Kay Jay\Desktop\Google Chrome.lnk
[2012/07/12 03:27:59 | 003,891,112 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012/07/11 20:07:26 | 046,661,684 | ---- | M] () -- C:\Users\Kay Jay\Documents\Sweet.reason
[2012/07/11 19:20:51 | 000,001,030 | ---- | M] () -- C:\Windows\System32\CM-Backup2-1988839-12Jul11-19-20-51.wbb
[2012/07/09 13:44:14 | 001,572,916 | ---- | M] () -- C:\Users\Kay Jay\Documents\bang.reason
[2012/07/09 13:39:45 | 001,572,916 | ---- | M] () -- C:\Users\Kay Jay\Documents\last.reason
[2012/07/09 13:19:04 | 000,001,030 | ---- | M] () -- C:\Windows\System32\CM-Backup2-1988839-12Jul09-13-19-03.wbb
[2012/07/06 22:57:59 | 000,001,030 | ---- | M] () -- C:\Windows\System32\CM-Backup2-1988839-12Jul06-22-57-59.wbb
[2012/07/05 17:28:33 | 000,001,030 | ---- | M] () -- C:\Windows\System32\CM-Backup2-1988839-12Jul05-17-28-33.wbb
[2012/07/04 17:11:47 | 045,158,524 | ---- | M] () -- C:\Users\Kay Jay\Documents\Sweet by Kristi J.wav
[2012/07/04 12:14:38 | 000,000,930 | ---- | M] () -- C:\Users\Public\Desktop\calibre - E-book management.lnk
[2012/07/04 12:14:38 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management
[2012/07/04 10:45:19 | 000,001,050 | ---- | M] () -- C:\Users\Kay Jay\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2012/07/04 10:44:46 | 000,001,022 | ---- | M] () -- C:\Users\Kay Jay\Desktop\Dropbox.lnk
[2012/07/04 09:47:25 | 000,001,753 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/07/04 09:47:25 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012/07/03 19:00:55 | 000,001,030 | ---- | M] () -- C:\Windows\System32\CM-Backup2-1988839-12Jul03-19-00-55.wbb
[2012/07/03 13:46:44 | 000,022,344 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2012/07/02 18:57:47 | 000,001,030 | ---- | M] () -- C:\Windows\System32\CM-Backup2-1988839-12Jul02-18-57-47.wbb
[2012/06/27 15:58:36 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\M-Audio
[2012/06/27 15:42:35 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digidesign
[2012/06/27 15:41:48 | 000,001,969 | ---- | M] () -- C:\Users\Kay Jay\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Pro Tools SE.lnk
[2012/06/27 15:41:47 | 000,001,945 | ---- | M] () -- C:\Users\Public\Desktop\Pro Tools SE.lnk
[2012/06/21 18:41:14 | 000,000,376 | ---- | M] () -- C:\user.js
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Users\Kay Jay\Documents\*.tmp files -> C:\Users\Kay Jay\Documents\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/07/18 19:09:53 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/07/18 19:09:53 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/07/18 19:09:53 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/07/18 19:09:53 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/07/18 19:09:53 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/07/18 18:09:52 | 000,001,067 | ---- | C] () -- C:\Users\Public\Desktop\Trojan Remover.lnk
[2012/07/18 16:11:08 | 000,002,975 | ---- | C] () -- C:\Users\Kay Jay\Desktop\HiJackThis.lnk
[2012/07/18 09:52:50 | 000,002,243 | ---- | C] () -- C:\Windows\epplauncher.mif
[2012/07/18 09:24:54 | 000,003,660 | ---- | C] () -- C:\Users\Kay Jay\Desktop\backup.reg
[2012/07/17 20:02:58 | 036,338,524 | ---- | C] () -- C:\Users\Kay Jay\Documents\Intro & Words.wav
[2012/07/17 19:53:44 | 001,048,628 | ---- | C] () -- C:\Users\Kay Jay\Documents\First dub.reason
[2012/07/17 19:36:06 | 000,001,030 | ---- | C] () -- C:\Windows\System32\CM-Backup2-1988839-12Jul17-19-36-06.wbb
[2012/07/16 23:22:56 | 000,024,194 | ---- | C] () -- C:\Users\Kay Jay\Documents\cc_20120716_232253.reg
[2012/07/16 20:56:32 | 029,282,524 | ---- | C] () -- C:\Users\Kay Jay\Documents\Words.wav
[2012/07/16 19:08:25 | 000,001,030 | ---- | C] () -- C:\Windows\System32\CM-Backup2-1988839-12Jul16-19-08-25.wbb
[2012/07/13 18:39:16 | 035,280,124 | ---- | C] () -- C:\Users\Kay Jay\Documents\Intro (Vocals).wav
[2012/07/13 18:37:46 | 035,280,124 | ---- | C] () -- C:\Users\Kay Jay\Documents\Intro.wav
[2012/07/12 22:26:54 | 022,282,292 | ---- | C] () -- C:\Users\Kay Jay\Documents\viacom blues.reason
[2012/07/12 22:05:08 | 409,468,980 | ---- | C] () -- C:\Users\Kay Jay\Documents\Intro.reason
[2012/07/12 20:30:22 | 000,001,030 | ---- | C] () -- C:\Windows\System32\CM-Backup2-1988839-12Jul12-20-30-22.wbb
[2012/07/11 19:20:51 | 000,001,030 | ---- | C] () -- C:\Windows\System32\CM-Backup2-1988839-12Jul11-19-20-51.wbb
[2012/07/09 13:19:03 | 000,001,030 | ---- | C] () -- C:\Windows\System32\CM-Backup2-1988839-12Jul09-13-19-03.wbb
[2012/07/06 23:45:03 | 001,572,916 | ---- | C] () -- C:\Users\Kay Jay\Documents\last.reason
[2012/07/06 22:57:59 | 000,001,030 | ---- | C] () -- C:\Windows\System32\CM-Backup2-1988839-12Jul06-22-57-59.wbb
[2012/07/05 19:53:21 | 001,572,916 | ---- | C] () -- C:\Users\Kay Jay\Documents\bang.reason
[2012/07/05 17:28:33 | 000,001,030 | ---- | C] () -- C:\Windows\System32\CM-Backup2-1988839-12Jul05-17-28-33.wbb
[2012/07/04 17:10:54 | 045,158,524 | ---- | C] () -- C:\Users\Kay Jay\Documents\Sweet by Kristi J.wav
[2012/07/04 15:31:40 | 046,661,684 | ---- | C] () -- C:\Users\Kay Jay\Documents\Sweet.reason
[2012/07/04 10:42:30 | 000,001,050 | ---- | C] () -- C:\Users\Kay Jay\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2012/07/04 09:47:25 | 000,001,753 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/07/03 19:00:55 | 000,001,030 | ---- | C] () -- C:\Windows\System32\CM-Backup2-1988839-12Jul03-19-00-55.wbb
[2012/07/02 18:57:47 | 000,001,030 | ---- | C] () -- C:\Windows\System32\CM-Backup2-1988839-12Jul02-18-57-47.wbb
[2012/06/27 15:41:48 | 000,001,969 | ---- | C] () -- C:\Users\Kay Jay\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Pro Tools SE.lnk
[2012/06/27 15:41:47 | 000,001,945 | ---- | C] () -- C:\Users\Public\Desktop\Pro Tools SE.lnk
[2012/05/24 13:38:41 | 000,217,088 | ---- | C] () -- C:\Windows\System32\qtmlClient.dll
[2012/05/16 11:14:32 | 000,021,144 | ---- | C] () -- C:\Windows\System32\drivers\iLokDrvr.sys
[2012/02/15 15:28:20 | 000,331,263 | ---- | C] () -- C:\Windows\LOOP.exe
[2012/01/18 02:44:00 | 010,920,984 | ---- | C] () -- C:\Windows\System32\LogiDPP.dll
[2012/01/18 02:44:00 | 000,336,408 | ---- | C] () -- C:\Windows\System32\DevManagerCore.dll
[2012/01/18 02:44:00 | 000,104,472 | ---- | C] () -- C:\Windows\System32\LogiDPPApp.exe
[2011/11/05 14:45:49 | 000,007,609 | ---- | C] () -- C:\Users\Kay Jay\AppData\Local\Resmon.ResmonCfg
[2011/11/02 13:24:01 | 000,000,132 | ---- | C] () -- C:\Users\Kay Jay\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2011/10/22 11:51:07 | 000,001,456 | ---- | C] () -- C:\Users\Kay Jay\AppData\Local\Adobe Save for Web 12.0 Prefs
[2011/10/15 19:09:10 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2011/10/12 08:19:50 | 000,087,552 | ---- | C] () -- C:\Windows\System32\cpwmon2k.dll
[2011/10/10 20:39:58 | 000,140,288 | ---- | C] () -- C:\Windows\System32\igfxtvcx.dll
[2011/08/12 12:20:14 | 000,015,896 | ---- | C] () -- C:\Windows\System32\drivers\iKeyLFT2.dll
[2011/07/26 06:48:54 | 000,028,418 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini
[2009/09/23 19:16:08 | 002,050,952 | ---- | C] () -- C:\Windows\System32\igkrng400.bin
[2009/07/14 00:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 00:33:53 | 003,891,112 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/07/13 22:05:48 | 000,739,296 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009/07/13 22:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009/07/13 22:05:48 | 000,151,320 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009/07/13 22:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009/07/13 22:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009/07/13 22:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009/07/13 19:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/13 19:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/13 19:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/06/10 17:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2007/04/27 10:43:58 | 000,120,200 | ---- | C] () -- C:\Windows\System32\DLLDEV32i.dll

========== LOP Check ==========

[2011/10/19 15:12:07 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\AnvSoft
[2012/07/13 19:04:08 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\Audacity
[2011/10/12 00:08:44 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\AVG
[2011/10/10 21:23:39 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\AVG2012
[2012/06/21 18:40:27 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\Babylon
[2012/07/04 11:53:48 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\calibre
[2011/11/02 22:22:09 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2012/04/02 19:17:26 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\CheckPoint
[2011/10/21 17:51:21 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\com.adobe.DC3Module.AdobeADC
[2011/10/23 07:45:41 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\com.adobe.dmp.contentviewer
[2011/10/20 17:56:59 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2011/10/23 23:05:09 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\com.adobe.WidgetBrowser.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1
[2012/02/17 20:01:55 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\ConverterLite
[2011/10/26 19:23:17 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\Cycling '74
[2012/07/16 18:43:44 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\Digidesign
[2012/07/18 21:26:50 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\Dropbox
[2012/03/03 15:53:58 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\e-academy Inc
[2011/11/02 10:28:43 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\Image-Line
[2011/10/13 07:59:27 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\Leadertech
[2011/12/19 23:13:22 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\Line 6
[2011/10/13 08:57:25 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\MAGIX
[2011/10/10 19:54:17 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\ooVoo Details
[2011/10/10 20:09:59 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\OpenCandy
[2012/05/24 14:12:54 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\PACE Anti-Piracy
[2012/02/15 15:17:05 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\Propellerhead Software
[2011/11/16 14:16:37 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\Publish Providers
[2012/06/05 13:41:12 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\SanDisk
[2012/02/10 18:50:29 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\Scratch DJ Academy MIX!
[2012/07/18 18:10:05 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\Simply Super Software
[2012/01/04 02:31:31 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\SoftGrid Client
[2012/04/01 08:26:36 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\Sony
[2012/01/13 22:26:58 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\Sony Creative Software Inc
[2012/07/11 18:59:33 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\Spotify
[2011/10/21 17:05:24 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2011/10/11 21:06:00 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\TP
[2012/03/10 13:49:48 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\TweetAdder3
[2011/10/13 09:22:04 | 000,000,000 | ---D | M] -- C:\Users\Kay Jay\AppData\Roaming\WinZip
[2012/02/08 20:31:25 | 000,000,000 | ---D | M] -- C:\ProgramData\100
[2009/07/14 00:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Application Data
[2012/07/09 13:05:47 | 000,000,000 | ---D | M] -- C:\ProgramData\AVG Secure Search
[2011/11/25 13:44:30 | 000,000,000 | ---D | M] -- C:\ProgramData\AVG2012
[2012/06/21 18:40:27 | 000,000,000 | ---D | M] -- C:\ProgramData\Babylon
[2012/04/02 19:11:38 | 000,000,000 | ---D | M] -- C:\ProgramData\CheckPoint
[2012/07/18 15:02:20 | 000,000,000 | -H-D | M] -- C:\ProgramData\Common Files
[2009/07/14 00:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Desktop
[2009/07/14 00:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Documents
[2009/07/14 00:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Favorites
[2012/02/18 20:18:28 | 000,000,000 | ---D | M] -- C:\ProgramData\Graboid Inc
[2012/02/08 20:33:27 | 000,000,000 | ---D | M] -- C:\ProgramData\InstallMate
[2011/12/19 23:03:50 | 000,000,000 | ---D | M] -- C:\ProgramData\Line 6
[2012/01/03 02:52:58 | 000,000,000 | ---D | M] -- C:\ProgramData\MAGIX
[2012/07/17 22:52:00 | 000,000,000 | ---D | M] -- C:\ProgramData\MFAData
[2012/01/31 19:04:28 | 000,000,000 | ---D | M] -- C:\ProgramData\Native Instruments
[2012/05/24 20:11:53 | 000,000,000 | ---D | M] -- C:\ProgramData\PACE
[2012/05/24 14:12:54 | 000,000,000 | ---D | M] -- C:\ProgramData\PACE Anti-Piracy
[2012/04/02 18:52:12 | 000,000,000 | ---D | M] -- C:\ProgramData\Package Cache
[2012/02/15 15:17:06 | 000,000,000 | ---D | M] -- C:\ProgramData\Propellerhead Software
[2011/11/04 13:50:34 | 000,000,000 | ---D | M] -- C:\ProgramData\regid.1986-12.com.adobe
[2011/10/16 20:35:12 | 000,000,000 | ---D | M] -- C:\ProgramData\Samsung
[2012/07/18 18:08:56 | 000,000,000 | ---D | M] -- C:\ProgramData\Simply Super Software
[2011/11/16 14:16:52 | 000,000,000 | ---D | M] -- C:\ProgramData\Sony
[2009/07/14 00:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Start Menu
[2012/07/18 21:32:36 | 000,000,000 | ---D | M] -- C:\ProgramData\TEMP
[2009/07/14 00:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Templates
[2011/10/11 21:09:44 | 000,000,000 | ---D | M] -- C:\ProgramData\Virtualized Applications
[2011/11/10 12:41:27 | 000,000,000 | ---D | M] -- C:\ProgramData\VirtualizedApplications
[2012/05/25 17:35:49 | 000,000,000 | ---D | M] -- C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2012/01/31 19:04:46 | 000,000,000 | -H-D | M] -- C:\ProgramData\{95B4F0ED-951F-4D36-B068-5EC1C4C19C14}
[2012/01/31 19:17:31 | 000,000,000 | -H-D | M] -- C:\ProgramData\{A9158F4E-7914-4019-808A-D4D4993E9958}
[2012/06/03 08:48:43 | 000,032,630 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 995 bytes -> C:\ProgramData\Microsoft:xJLcsO9b4rQkTcngUw
@Alternate Data Stream - 968 bytes -> C:\Users\Kay Jay\AppData\Local:tIX6Y3gVdqoEXaAk1TiTVGNtc3t
@Alternate Data Stream - 298 bytes -> C:\Windows\System32\drivers\lhgksncr.sys:changelist
@Alternate Data Stream - 298 bytes -> C:\Windows\System32\drivers\guvmfgys.sys:changelist
@Alternate Data Stream - 298 bytes -> C:\Windows\System32\drivers\amjjvmtl.sys:changelist
@Alternate Data Stream - 152 bytes -> C:\ProgramData\TEMP:0B4227B4
@Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:0B4227B4
@Alternate Data Stream - 134 bytes -> C:\ProgramData\TEMP:CB0AACC9
@Alternate Data Stream - 1264 bytes -> C:\ProgramData\Microsoft:7RNiT2NcOSO9GcF2TtJGDvz
@Alternate Data Stream - 1229 bytes -> C:\ProgramData\Microsoft:ZIpQFy1MbmBJBnYw9BshXG5
@Alternate Data Stream - 1119 bytes -> C:\ProgramData\Microsoft:3CNOYUhPf3Ch9etrqqoOURt
@Alternate Data Stream - 1014 bytes -> C:\Users\Kay Jay\AppData\Local\Temp:BfGJloRkvwooiTUEMGZP4KpdQcrGk
< End of report >

You only have 1% free space on your C drive. Windows requires at least 15% or more to function properly. Reboot your computer using the disk and uninstall any programs which you are no longer using or need. Next, save all important data such as videos, pictures, music and any other files that will free up some disk space to DVD's. You can use RW's DVD which you can erase and use over again or transfer those files to another harddrive. You can also run diskcleanup while you're there

Click Start> Computer> right click the C Drive and choose Properties> enter
Click Disk Cleanup from there.



Click OK on the Disk Cleanup Screen.
Click Yes on the Confirmation screen.



This runs the Disk Cleanup utility along with other selections if you have chosen any. (if you had a lot System Restore points, you will see a significant change in the free space in C drive)