Blue Screens on XP Part 4
Dear Broni and others,
I still don't have permission to reply on the other thread. So here is my Combo Fix log, in 2 parts:
ComboFix 16-08-10.01 - Jennifer Klausner 08/14/2016 14:39:30.3.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3582.2459 [GMT -4:00]
Running from: C:\ComboFix.exe
AV: Ad-Aware Antivirus *Disabled/Outdated* {22CB8761-914A-11CF-B705-00AA0062CBB7}
FW: Ad-Aware Firewall *Disabled* {9211320F-6C40-4035-BBDE-3C96ED504F33}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Jennifer Klausner\Local Settings\Application Data[j0004]-[p04].bmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0001.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0002.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0003.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0004.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0015.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0039.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0051.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0072.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0089.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0101.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0118.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0157.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0163.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0197.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0262.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0306.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0341.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0490.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0494.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0579.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0613.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0673.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0763.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0777.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0789.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0802.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0808.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0854.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0889.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0918.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0959.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0961.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL0969.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL1034.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL1095.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL1112.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL1205.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL1209.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL1270.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL1299.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL1326.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL1380.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL1395.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL1422.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL1427.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL1447.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL1474.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL1512.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL1514.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL1531.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL1772.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL1780.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL1801.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL1984.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2076.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2114.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2144.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2164.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2165.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2205.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2257.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2369.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2388.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2389.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2518.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2545.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2553.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2638.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2645.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2687.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2714.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2746.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2761.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2808.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2812.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2840.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2842.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2843.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2938.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2939.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL2983.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL3021.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL3094.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL3176.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL3182.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL3307.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL3323.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL3337.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL3345.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL3437.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL3447.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL3483.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL3523.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL3532.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL3583.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL3615.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL3639.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL3698.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL3767.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL3814.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL3902.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL3909.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL3927.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL3980.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL4004.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL4051.tmp
c:\documents and settings\Jennifer Klausner\My Documents\~WRL4080.tmp
c:\program files\Shared
C:\Windows-KB890830-V5.31.exe
C:\Windows-KB890830-V5.38.exe
c:\windows\system32\drivers\1028_DELL_XPS_Dell DXP051 .MRK
c:\windows\system32\drivers\DELL_XPS_Dell DXP051 .MRK
.
.
((((((((((((((((((((((((( Files Created from 2016-07-14 to 2016-08-14 )))))))))))))))))))))))))))))))
.
.
2016-08-14 17:47 . 2016-08-14 17:47 -------- d-----w- c:\documents and settings\Jennifer Klausner\Local Settings\Application Data\MFAData
2016-08-14 17:46 . 2016-08-14 17:47 -------- d-----w- c:\documents and settings\Jennifer Klausner\Local Settings\Application Data\AvgSetupLog
2016-08-13 03:42 . 2016-08-13 03:42 24688 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2016-08-13 03:39 . 2016-08-13 03:39 -------- d-----w- c:\documents and settings\All Users\Application Data\RogueKiller
2016-08-13 03:32 . 2016-08-13 03:33 21070920 ----a-w- C:\RogueKiller.exe
2016-08-12 15:39 . 2016-08-12 15:39 1610560 ----a-w- C:\JRT.exe
2016-08-12 15:21 . 2016-08-12 15:22 -------- d-----w- C:\AdwCleaner
2016-08-12 15:20 . 2016-08-12 15:20 3712064 ----a-w- C:\adwcleaner_5.201.exe
2016-08-12 05:03 . 2016-08-14 18:06 170200 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2016-08-12 05:02 . 2016-03-10 18:09 123264 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2016-08-12 05:02 . 2016-03-10 18:08 24448 ----a-w- c:\windows\system32\drivers\mbam.sys
2016-08-12 05:02 . 2016-08-12 05:02 -------- d-----w- c:\program files\Malwarebytes Anti-Malware
2016-08-12 05:00 . 2016-08-12 05:01 22851472 ----a-w- C:\mbam-setup-2.2.1.1043.exe
2016-08-09 16:06 . 2016-08-09 16:06 -------- d-----w- c:\program files\Dell Support Center
2016-08-09 06:34 . 2016-08-09 06:55 -------- d-----w- C:\FRST
2016-08-08 03:56 . 2016-08-08 03:56 -------- d-----w- c:\windows\system32\wbem\Repository
2016-08-07 20:39 . 2016-08-07 20:39 -------- d-----w- C:\found.000
2016-07-19 21:59 . 2016-07-19 21:59 -------- d-----w- c:\program files\Common Files\Lavasoft
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2016-07-16 14:33 . 2012-03-31 13:18 796352 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2016-07-16 14:33 . 2011-05-18 21:42 142528 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-10-12 07:57 . 2011-10-12 07:57 995328 ----a-w- c:\program files\WOT-20110704-en-US.msi
2010-06-17 02:30 . 2010-06-17 02:30 272384 ----a-w- c:\program files\TFC.exe
2010-05-11 21:55 . 2010-05-05 11:21 3686521 ----a-r- c:\program files\ComboFix.exe
2008-01-19 04:36 . 2008-01-19 04:35 12727648 -c--a-w- c:\program files\winzip111.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2016-08-01 21:23 211264 ----a-w- c:\documents and settings\Jennifer Klausner\Application Data\Dropbox\bin\DropboxExt.38.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2016-08-01 21:23 211264 ----a-w- c:\documents and settings\Jennifer Klausner\Application Data\Dropbox\bin\DropboxExt.38.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt3]
@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]
2016-08-01 21:23 211264 ----a-w- c:\documents and settings\Jennifer Klausner\Application Data\Dropbox\bin\DropboxExt.38.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt4]
@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]
2016-08-01 21:23 211264 ----a-w- c:\documents and settings\Jennifer Klausner\Application Data\Dropbox\bin\DropboxExt.38.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt5]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2016-08-01 21:23 211264 ----a-w- c:\documents and settings\Jennifer Klausner\Application Data\Dropbox\bin\DropboxExt.38.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt6]
@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]
2016-08-01 21:23 211264 ----a-w- c:\documents and settings\Jennifer Klausner\Application Data\Dropbox\bin\DropboxExt.38.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt7]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2016-08-01 21:23 211264 ----a-w- c:\documents and settings\Jennifer Klausner\Application Data\Dropbox\bin\DropboxExt.38.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt8]
@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]
2016-08-01 21:23 211264 ----a-w- c:\documents and settings\Jennifer Klausner\Application Data\Dropbox\bin\DropboxExt.38.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-06-24 68856]
"DellSupport"="c:\program files\DellSupport\DSAgnt.exe" [2007-03-15 460784]
"ISUSPM"="c:\program files\Common Files\InstallShield\UpdateService\isuspm.exe" [2007-08-30 205480]
"Spotify Web Helper"="c:\documents and settings\Jennifer Klausner\Application Data\Spotify\SpotifyWebHelper.exe" [2016-01-23 2346096]
"Akamai NetSession Interface"="c:\documents and settings\Jennifer Klausner\Local Settings\Application Data\Akamai\netsession_win.exe" [2015-09-11 4691384]
"AmazonMP3DownloaderHelper"="c:\documents and settings\Jennifer Klausner\Local Settings\Application Data\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe" [2013-05-22 400704]
"Dropbox Update"="c:\documents and settings\Jennifer Klausner\Local Settings\Application Data\Dropbox\Update\DropboxUpdate.exe" [2015-06-13 134512]
"Spotify"="c:\documents and settings\Jennifer Klausner\Application Data\Spotify\Spotify.exe" [2016-01-23 8316528]
"AOL Fast Start"="c:\program files\AOL Desktop 9.8.0\AOL.EXE" [2015-09-08 73584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-06-16 7323648]
"CTHelper"="CTHELPER.EXE" [2006-12-12 19456]
"CTxfiHlp"="CTXFIHLP.EXE" [2006-12-12 20480]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2006-07-06 151552]
"DMXLauncher"="c:\program files\Dell\Media Experience\DMXLauncher.exe" [2006-05-03 98304]
"CTDVDDET"="c:\program files\Creative\Sound Blaster X-Fi\DVDAudio\CTDVDDET.EXE" [2003-06-18 45056]
"VolPanel"="c:\program files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanel.exe" [2005-10-14 122880]
"AudioDrvEmulator"="c:\program files\Creative\Shared Files\Module Loader\DLLML.exe" [2005-11-04 49152]
"UpdReg"="c:\windows\UpdReg.EXE" [2000-05-11 90112]
"ISUSPM Startup"="c:\program files\Common Files\InstallShield\UpdateService\isuspm.exe" [2007-08-30 205480]
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2008-10-24 79136]
"DLA"="c:\windows\System32\DLA\DLACTRLW.EXE" [2005-09-08 122940]
"AOLDialer"="c:\program files\Common Files\AOL\ACS\AOLDial.exe" [2014-02-06 70760]
"HostManager"="c:\program files\Common Files\AOL\1169873283\ee\AOLSoftware.exe" [2010-03-08 41800]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2015-03-20 60712]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-10-15 49152]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2012-04-19 421888]
"PMX Daemon"="ICO.EXE" [2006-06-09 47104]
"Corel Photo Downloader"="c:\program files\Corel\Corel Photo Album 6\MediaDetect.exe" [2006-02-09 106496]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"SMART Floating Tools"="c:\program files\SMART Technologies\Education Software\FloatingTools.exe" [2013-08-22 9221424]
"SMARTNotification"="c:\program files\SMART Technologies\Education Software\SMARTNotification.exe" [2013-08-23 208688]
"SMART Tray Tools"="c:\program files\SMART Technologies\Education Software\SMARTTrayIcon.exe" [2013-08-23 754992]
"sbsdk-server"="c:\program files\SMART Technologies\Education Software\sbsdk-server\NodeLauncher.exe" [2013-08-22 62768]
"SMART Ink"="c:\program files\SMART Technologies\Education Software\SMARTInk.exe" [2014-02-11 147248]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2015-09-12 157456]
"AvgUi"="c:\program files\AVG\Framework\Common\avguirnx.exe" [2016-07-20 186640]
"AdAwareTray"="c:\program files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.12.945.9202\AdAwareTray.exe" [2016-07-19 8063200]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-06-24 68856]
"AOL Fast Start"="c:\progra~1\AOL9~1.1\AOL.EXE" [2008-06-03 50528]
.
c:\documents and settings\Jennifer Klausner\Start Menu\Programs\Startup\
Dropbox.lnk - c:\documents and settings\Jennifer Klausner\Application Data\Dropbox\bin\Dropbox.exe /systemstartup [2016-8-8 23546672]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Digital Line Detect.lnk - c:\program files\Digital Line Detect\DLG.exe [2006-6-2 24576]
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2007-10-14 214360]
LUMIX Simple Viewer.lnk - c:\program files\Panasonic\LUMIXSimpleViewer\PhLeAutoRun.exe [2009-8-22 57344]
Service Manager.lnk - c:\program files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe /n [2005-5-3 81920]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LavasoftAdAwareService11]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe"=
"c:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe"=
"c:\\Program Files\\America Online 9.0\\waol.exe"=
"c:\\Program Files\\AIM\\aim.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Common Files\\AOL\\1169873283\\ee\\aolsoftware.exe"=
"c:\\Program Files\\AOL 9.1\\waol.exe"=
"c:\\Program Files\\Common Files\\AOL\\TopSpeed\\3.0\\aoltpsd3.exe"=
"c:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe"=
"c:\\Program Files\\Common Files\\AOL\\System Information\\sinf.exe"=
"c:\\Program Files\\AIM7\\aim.exe"=
"c:\\Program Files\\AOL Desktop 9.6\\waol.exe"=
"c:\\Program Files\\Spotify\\spotify.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Documents and Settings\\Jennifer Klausner\\Application Data\\Dropbox\\bin\\Dropbox.exe"=
"c:\\Documents and Settings\\Jennifer Klausner\\Local Settings\\Application Data\\Akamai\\netsession_win.exe"=
"c:\\Program Files\\SMART Technologies\\Education Software\\UCGui.exe"=
"c:\\Program Files\\SMART Technologies\\Education Software\\UCService.exe"=
"c:\\Program Files\\SMART Technologies\\Education Software\\SMARTSNMPAgent.exe"=
"c:\\Program Files\\AOL Desktop 9.7\\waol.exe"=
"c:\\Program Files\\AOL Desktop 9.7\\aolbrowser.exe"=
"c:\\Documents and Settings\\Jennifer Klausner\\Application Data\\Spotify\\Spotify.exe"=
"c:\\Spotify.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\AOL Desktop 9.8.0\\waol.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009
"12001:UDP"= 12001:UDP:SMART WebServer Handshake Multicast Port
"1116:TCP"= 1116:TCP:Akamai NetSession Interface
"5000:UDP"= 5000:UDP:Akamai NetSession Interface
.
R2 avgsvc;AVG Service;c:\program files\AVG\Framework\Common\avgsvcx.exe [7/20/2016 2:03 PM 906512]
R2 LavasoftAdAwareService11;Ad-Aware Service 11;c:\program files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.12.945.9202\AdAwareService.exe [7/18/2016 8:22 PM 664040]
S0 Lbd;Lbd;c:\windows\system32\DRIVERS\Lbd.sys --> c:\windows\system32\DRIVERS\Lbd.sys [?]
S2 SMART Display Controller;SMART Display Controller;c:\program files\SMART Technologies\Education Software\UCService.exe [8/22/2013 8:15 PM 810800]
S3 Lavasoft Kernexplorer;Lavasoft helper driver;\??\c:\program files\Lavasoft\Ad-Aware\KernExplorer.sys --> c:\program files\Lavasoft\Ad-Aware\KernExplorer.sys [?]
S3 vmwvusb;VMware View Generic USB Driver;c:\windows\system32\Drivers\vmwvusb.sys --> c:\windows\system32\Drivers\vmwvusb.sys [?]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - AVGSVC
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Contents of the 'Scheduled Tasks' folder
.
2016-08-14 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-31 14:33]
.
2016-08-12 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2015-08-27 04:26]
.
2016-08-14 c:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2952040898-4172286553-4130697486-1008Core.job
- c:\documents and settings\Jennifer Klausner\Local Settings\Application Data\Dropbox\Update\DropboxUpdate.exe [2015-06-13 02:15]
.
2016-08-14 c:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2952040898-4172286553-4130697486-1008UA.job
- c:\documents and settings\Jennifer Klausner\Local Settings\Application Data\Dropbox\Update\DropboxUpdate.exe [2015-06-13 02:15]
.
2016-08-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-03 21:05]
.
2016-08-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-03 21:05]
.
2016-08-14 c:\windows\Tasks\Microsoft Windows XP End of Service Notification Logon.job
- c:\windows\system32\xp_eos.exe [2014-03-09 01:59]
.
2016-04-09 c:\windows\Tasks\Microsoft Windows XP End of Service Notification Monthly.job
- c:\windows\system32\xp_eos.exe [2014-03-09 01:59]
.
2016-08-11 c:\windows\Tasks\PCDDataUploadTask.job
- c:\program files\Dell\SupportAssist\uaclauncher.exe [2016-08-09 17:39]
.
2016-08-13 c:\windows\Tasks\SystemToolsDailyTest.job
- c:\program files\Dell\SupportAssist\uaclauncher.exe [2016-08-09 17:39]
.
.
Thanks, Jennifer