[Inactive] Trying to run scans, but keep getting locked out....

Printable View

Show 40 post(s) from this thread on one page

June 11th, 2013, 08:19 PM
Broni

Windows logo is your Start button.
What happens when you click on it?

If nothing....

Hold CTRL and ALT keys, press DEL key.
Does it bring Task Manager window up?
June 12th, 2013, 04:42 PM
rollie

No, nothing. In fact the bottom tray and Windows logo are completely gone now. It's just a pink screen because that was the background color I selected when I put a screen saver picture on the desktop. When I did move the cursor over the Windows logo, it just spun.
June 12th, 2013, 07:08 PM
Broni

Let's go with instructions from my post #26.
June 12th, 2013, 09:36 PM
rollie

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-06-2013 04
Ran by Janette (administrator) on 12-06-2013 18:30:12
Running from E:\
Windows Vista (TM) Home Premium Service Pack 2 (X86) OS Language: English(US)
Internet Explorer Version 9
Boot Mode: Safe Mode (with Networking)

==================== Processes (Whitelisted) ===================

(Lenovo Group Limited) C:\PROGRA~1\ThinkPad\UTILIT~1\PWMUIAux.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_7_700_202.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_7_700_202.exe
(Microsoft Corporation) \\?\C:\Windows\system32\wbem\WMIADAP.EXE

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [TVT Scheduler Proxy] C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe [487424 2008-03-04] (Lenovo Group Limited)
HKLM\...\Run: [TpShocks] TpShocks.exe [x]
HKLM\...\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [1725736 2010-04-23] (Synaptics Incorporated)
HKLM\...\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe [1282048 2007-07-09] (Analog Devices, Inc.)
HKLM\...\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey [x]
HKLM\...\Run: [LPManager] C:\PROGRA~1\Lenovo\LENOVO~1\LPMGR.exe [124256 2007-07-13] (Lenovo Group Limited)
HKLM\...\Run: [IaNvSrv] C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe [33304 2007-10-23] (Intel Corporation)
HKLM\...\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM\...\Run: [EZEJMNAP] C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe [256576 2009-12-01] (Lenovo Group Ltd.)
HKLM\...\Run: [EEventManager] C:\Program Files\EPSON\Creativity Suite\Event Manager\EEventManager.exe [102400 2006-10-12] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [DiskeeperSystray] "C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe" [217176 2006-11-15] (Diskeeper Corporation)
HKLM\...\Run: [cssauth] "C:\Program Files\Lenovo\Client Security Solution\cssauth.exe" silent [2630968 2007-08-09] (Lenovo Group Limited)
HKLM\...\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59280 2012-10-11] (Apple Inc.)
HKLM\...\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [ACWLIcon] C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe [124200 2007-07-05] (Lenovo)
HKLM\...\Run: [ACTray] C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe [419112 2007-07-05] (Lenovo)
HKLM\...\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Elements 4.0\apdproxy.exe" [57344 2005-09-16] (Adobe Systems Incorporated)
HKLM\...\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime [421888 2012-10-25] (Apple Inc.)
HKCU\...\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe [125952 2008-01-19] (Microsoft Corporation)
HKCU\...\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-19] (Microsoft Corporation)
HKCU\...\RunOnce: [FRST] "C:\Users\Janette\Desktop\FRST.exe" [1358933 2013-06-10] (Farbar)
HKCU\...\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\FlashUtil32_11_7_700_202_Plugin.exe -update plugin [813448 2013-05-14] (Adobe Systems Incorporated)
Startup: C:\ProgramData\Start Menu\Programs\Startup\Digital Line Detect.lnk
ShortcutTarget: Digital Line Detect.lnk -> C:\Program Files\Digital Line Detect\DLG.exe (Avanquest Software )
Startup: C:\ProgramData\Start Menu\Programs\Startup\ExifLauncher2.lnk
ShortcutTarget: ExifLauncher2.lnk -> C:\Program Files\FinePixViewer\QuickDCF2.exe (FUJIFILM Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir...ie&ar=iesearch
HKLM SearchScopes: DefaultScope {56256A51-B582-467e-B8D4-7786EDA79AE0} URL =
SearchScopes: HKLM - {8EA3020D-938C-4106-9E80-31B3115264CE} URL = http://search.live.com/results.aspx?q={searchTerms}&entrypoint={referrer:source?}&FORM=LENIE
HKCU SearchScopes: DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://isearch.avg.com/search?cid={C96D4DF8-59CE-4206-B7C5-D03F29772532}&mid=28de95e7bab447d0bac8d157716ebc84-3d0a17156c5f9c0cb85bd1076241fe91f64e4dc1&lang=en&ds=ft011&pr=sa&d=2012-07-12 09:52:45&v=11.1.0.12&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {45DA25B3-EC74-4933-8E1F-4FF592449C30} URL = http://search.yahoo.com/search?fr=mcafee&p={SearchTerms}
SearchScopes: HKCU - {8EA3020D-938C-4106-9E80-31B3115264CE} URL = http://search.live.com/results.aspx?q={searchTerms}&entrypoint={referrer:source?}&FORM=LENIE
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://isearch.avg.com/search?cid={C96D4DF8-59CE-4206-B7C5-D03F29772532}&mid=28de95e7bab447d0bac8d157716ebc84-3d0a17156c5f9c0cb85bd1076241fe91f64e4dc1&lang=en&ds=ft011&pr=sa&d=2012-07-12 09:52:45&v=11.1.0.12&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {DECA3892-BA8F-44b8-A993-A466AD694AE4} URL = http://search.yahoo.com/search?fr=mcafee&p={searchTerms}
BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: CPwmIEBrowserHelper Object - {F040E541-A427-4CF7-85D8-75E3E0F476C5} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll (Lenovo Group Limited)
BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [147456] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Janette\AppData\Roaming\Mozilla\Firefox\Profiles\61h3obro.default-1370213703050
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_202.dll ()
FF Plugin: @java.com/DTPlugin,version=10.5.1 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @real.com/RhapsodyPlayerEngine,version=1.0 - C:\Program Files\Real\RhapsodyPlayerEngine\nprhapengine.dll (RealNetworks, Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "hxxp://www.google.com"
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\27.0.1453.94\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\27.0.1453.94\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\27.0.1453.94\pdf.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft\u00AE Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (Windows Genuine Advantage) - C:\Program Files\Mozilla Firefox\plugins\npLegitCheckPlugin.dll (Microsoft Corporation)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL No File
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (AmazonMP3DownloaderPlugin) - C:\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101752.dll (Amazon.com, Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U33) - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (McAfee Security Scanner +) - C:\Program Files\McAfee Security Scan\3.0.318\npMcAfeeMss.dll No File
CHR Plugin: (McAfee SiteAdvisor) - C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll No File
CHR Plugin: (RealNetworks Rhapsody Player Engine) - C:\Program Files\Real\RhapsodyPlayerEngine\nprhapengine.dll (RealNetworks, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_202.dll ()
CHR Plugin: (Java Deployment Toolkit 7.0.50.255) - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (McAfee SecurityCenter) - c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Docs) - C:\Users\Janette\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0
CHR Extension: (Google Drive) - C:\Users\Janette\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0
CHR Extension: (YouTube) - C:\Users\Janette\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0
CHR Extension: (Google Search) - C:\Users\Janette\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0
CHR Extension: (SiteAdvisor) - C:\Users\Janette\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.61.113.2_0
CHR Extension: (Gmail) - C:\Users\Janette\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

========================== Services (Whitelisted) =================

S2 AdobeActiveFileMonitor4.0; C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe [102400 2005-10-03] ()
S2 Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [116040 2008-09-10] (Apple Inc.)
S2 DDNIService; C:\Program Files\DDNI\DIBS\DDNIService.exe [166376 2008-04-07] (Digital Delivery Networks, Inc.)
S2 Diskeeper; C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe [634988 2006-11-15] (Diskeeper Corporation)
S2 LENOVO.MICMUTE; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [101736 2011-07-12] (Lenovo Group Limited)
S2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [127336 2011-07-12] (Lenovo Group Limited)
S2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [398184 2012-12-14] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [682344 2012-12-14] (Malwarebytes Corporation)
S3 MSSQL$MSSMLBIZ; c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
S2 psqlWGE; C:\Program Files\Pervasive Software\PSQL\bin\w3dbsmgr.exe [435496 2009-04-06] (Pervasive Software Inc.)
S2 PwmEWSvc; C:\Program Files\ThinkPad\Utilities\PWMEWSVC.EXE [1665120 2012-05-16] (Lenovo Group Limited)
S2 Seagate-Replica-Service; C:\Program Files\Seagate Replica\bin\Seagate-Replica-Service.exe [1818624 2009-04-10] ()
S2 Seagate-Replica-SysMon; C:\Program Files\Seagate Replica\bin\Seagate-Replica-SysMon.exe [78288 2009-04-10] ()
S2 SUService; c:\program files\lenovo\system update\suservice.exe [28672 2011-07-26] (Lenovo Group Limited)
S2 TPHKLOAD; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [131432 2011-07-12] (Lenovo Group Limited)
S2 TSSCoreService; C:\Program Files\Lenovo\Client Security Solution\tvttcsd.exe [722232 2007-08-09] (IBM)
S2 TVT Backup Protection Service; C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe [569344 2007-01-08] ()
S2 TVT Scheduler; c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe [1122304 2008-04-06] (Lenovo Group Limited)
S3 GameConsoleService;
S2 helpsvc; %WINDIR%\PCHealth\HelpCtr\Binaries\pchsvc.dll [x]

==================== Drivers (Whitelisted) ====================

S3 Eplpdx02; C:\Windows\system32\Drivers\EPLPDX02.SYS [70084 2001-08-09] (MK Systems CO., LTD.)
R3 LenovoRd; C:\Windows\System32\Drivers\LenovoRd.sys [81280 2007-06-07] (Lenovo)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [21104 2012-12-14] (Malwarebytes Corporation)
S1 MOBKFilter; C:\Windows\System32\DRIVERS\MOBK.sys [54776 2010-04-13] (Mozy, Inc.)
R3 NuidFltr; C:\Windows\System32\DRIVERS\NuidFltr.sys [14736 2009-05-09] (Microsoft Corporation)
U3 TrueSight; c:\windows\system32\drivers\TrueSight.sys [14080 2012-07-12] ()
S3 TvtDrv; C:\Program Files\Common Files\Lenovo\InvAgent\TvtDrv.sys [3712 2007-01-08] ()

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2013-06-12 13:30 - 2013-06-12 13:30 - 00000000 ____D C:\O
2013-06-12 12:57 - 2013-06-12 12:57 - 00000000 ____D C:\N
2013-06-12 12:31 - 2013-06-12 12:31 - 00000000 ____D C:\M
2013-06-12 12:26 - 2013-06-12 12:26 - 00000000 ____D C:\L
2013-06-11 19:05 - 2013-06-11 19:05 - 00000000 ____D C:\K
2013-06-11 16:41 - 2013-06-11 16:41 - 00000000 ____D C:\J
2013-06-11 08:34 - 2013-06-11 08:34 - 00000000 ____D C:\I
2013-06-10 20:57 - 2013-06-10 20:57 - 00018944 ____A C:\Users\Janette\Documents\IME Janette Notes June 10 2013.wps
2013-06-10 20:23 - 2013-06-10 20:23 - 00000000 ____D C:\H
2013-06-10 19:57 - 2013-06-10 19:57 - 00000000 ____D C:\G
2013-06-10 19:54 - 2013-06-10 19:54 - 01358933 ____A (Farbar) C:\Users\Janette\Desktop\FRST.exe
2013-06-10 19:37 - 2013-06-10 19:37 - 01358933 ____A (Farbar) C:\Users\Janette\Downloads\FRST(2).exe
2013-06-10 19:36 - 2013-06-10 19:36 - 01358933 ____A (Farbar) C:\Users\Janette\Downloads\FRST(1).exe
2013-06-10 18:23 - 2013-06-10 18:23 - 00002044 ____A C:\Users\Janette\Downloads\fixlist.txt
2013-06-09 22:48 - 2013-06-09 22:48 - 00000556 ____A C:\Users\Janette\Desktop\Addition - Shortcut.lnk
2013-06-09 22:48 - 2013-06-09 22:48 - 00000532 ____A C:\Users\Janette\Desktop\FRST - Shortcut (2).lnk
2013-06-09 22:47 - 2013-06-09 22:47 - 00004096 ____A C:\conf.dat
2013-06-09 22:47 - 2013-06-09 22:47 - 00000532 ____A C:\Users\Janette\Desktop\FRST - Shortcut.lnk
2013-06-09 22:39 - 2013-06-09 22:39 - 00060343 ____A C:\Users\Janette\Downloads\FRST.txt
2013-06-09 22:38 - 2013-06-09 22:39 - 00023701 ____A C:\Users\Janette\Downloads\Addition.txt
2013-06-09 22:37 - 2013-06-09 22:37 - 01358931 ____A (Farbar) C:\Users\Janette\Downloads\FRST.exe
2013-06-09 21:21 - 2013-06-09 21:21 - 00000000 ____D C:\F
2013-06-09 21:20 - 2013-06-09 21:20 - 00000064 ____A C:\Windows\System32\TPAPSLOG.LOG
2013-06-05 12:11 - 2013-06-05 12:11 - 00049935 ____A C:\ComboFix.txt
2013-06-05 11:58 - 2011-06-25 23:45 - 00256000 ____A C:\Windows\PEV.exe
2013-06-05 11:58 - 2010-11-07 10:20 - 00208896 ____A C:\Windows\MBR.exe
2013-06-05 11:58 - 2009-04-19 21:56 - 00060416 ____A (NirSoft) C:\Windows\NIRCMD.exe
2013-06-05 11:58 - 2000-08-30 17:00 - 00518144 ____A (SteelWerX) C:\Windows\SWREG.exe
2013-06-05 11:58 - 2000-08-30 17:00 - 00406528 ____A (SteelWerX) C:\Windows\SWSC.exe
2013-06-05 11:58 - 2000-08-30 17:00 - 00098816 ____A C:\Windows\sed.exe
2013-06-05 11:58 - 2000-08-30 17:00 - 00080412 ____A C:\Windows\grep.exe
2013-06-05 11:58 - 2000-08-30 17:00 - 00068096 ____A C:\Windows\zip.exe
2013-06-05 11:42 - 2013-06-05 11:57 - 00001257 ____A C:\Users\Janette\Desktop\usersJanettedownloadsComboFix.exe - Shortcut.lnk
2013-06-05 10:14 - 2013-06-05 10:14 - 00000000 ____D C:\E
2013-06-05 09:23 - 2013-06-05 12:11 - 00000000 ____D C:\Qoobox
2013-06-05 09:22 - 2013-06-05 11:57 - 05077652 ____R (Swearware) C:\Users\Janette\Downloads\ComboFix.exe
2013-06-05 07:12 - 2013-06-05 07:12 - 00000000 ____D C:\D
2013-06-05 05:12 - 2013-06-05 05:12 - 00000116 ____A C:\tvttemp.txt
2013-06-05 05:11 - 2013-06-09 22:38 - 00000000 ____D C:\users\Administrator
2013-06-05 05:11 - 2013-06-05 05:11 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Lenovo
2013-06-04 19:51 - 2013-06-04 19:51 - 00000000 ____D C:\Users\Janette\Documents\mbar-1.06.0.1003
2013-06-04 18:42 - 2013-06-04 18:42 - 02708759 ____A C:\Users\Janette\Desktop\debug.log
2013-06-04 18:19 - 2013-06-04 19:41 - 00000000 ____D C:\Users\Janette\Desktop\RK_Quarantine
2013-06-04 08:04 - 2013-06-04 08:05 - 00017139 ____A C:\Users\Janette\Desktop\dds.txt
2013-06-04 08:04 - 2013-06-04 08:05 - 00013829 ____A C:\Users\Janette\Desktop\attach.txt
2013-06-03 15:27 - 2013-06-03 15:27 - 00000000 ____D C:\ProgramData\AVAST Software
2013-06-03 15:27 - 2013-06-03 15:27 - 00000000 ____D C:\Program Files\AVAST Software
2013-05-31 19:20 - 2013-06-10 16:34 - 00115200 ____A C:\Users\Janette\Documents\8.5x11 blank template.pub
2013-05-24 20:20 - 2013-06-05 01:03 - 00000000 ____D C:\Users\Janette\Documents\Tacoma film Festival
2013-05-24 20:20 - 2013-06-05 01:03 - 00000000 ____D C:\Users\Janette\Documents\Cartoons
2013-05-15 03:16 - 2013-05-05 12:25 - 12324864 ____N (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-05-15 03:16 - 2013-05-05 12:12 - 02382848 ____N (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-05-15 03:02 - 2013-04-04 14:57 - 00420864 ____N (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-05-15 03:02 - 2013-04-04 14:54 - 00073216 ____N (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-05-15 03:01 - 2013-04-04 15:11 - 01800704 ____N (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-05-15 03:01 - 2013-04-04 15:09 - 09738752 ____N (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-05-15 03:01 - 2013-04-04 15:02 - 01427968 ____N (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-05-15 03:01 - 2013-04-04 15:02 - 01129472 ____N (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-05-15 03:01 - 2013-04-04 15:02 - 01104384 ____N (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-05-15 03:01 - 2013-04-04 15:01 - 00231936 ____N (Microsoft Corporation) C:\Windows\System32\url.dll
2013-05-15 03:01 - 2013-04-04 14:59 - 00065024 ____N (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-05-15 03:01 - 2013-04-04 14:58 - 00717824 ____N (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-05-15 03:01 - 2013-04-04 14:58 - 00142848 ____N (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-05-15 03:01 - 2013-04-04 14:56 - 00607744 ____N (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-05-15 03:01 - 2013-04-04 14:55 - 01796096 ____N (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-05-15 03:01 - 2013-04-04 14:50 - 00176640 ____N (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-05-15 01:25 - 2013-04-15 07:20 - 00638328 ____N (Microsoft Corporation) C:\Windows\System32\Drivers\dxgkrnl.sys
2013-05-15 01:25 - 2013-04-13 03:56 - 00037376 ____N (Microsoft Corporation) C:\Windows\System32\cdd.dll
2013-05-15 01:24 - 2013-04-08 18:36 - 02049024 ____N (Microsoft Corporation) C:\Windows\System32\win32k.sys
2013-05-14 16:37 - 2013-05-14 17:57 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
2013-05-13 09:24 - 2013-05-13 09:24 - 03097600 ____N C:\Users\Janette\Documents\Out of the stall frame comp.pub

==================== One Month Modified Files and Folders ========

2013-06-12 18:24 - 2008-02-05 10:40 - 00002032 ____A C:\Users\Janette\AppData\Local\d3d9caps.dat
2013-06-12 13:30 - 2013-06-12 13:30 - 00000000 ____D C:\O
2013-06-12 13:30 - 2006-11-02 05:47 - 00003696 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-06-12 13:29 - 2008-02-01 02:31 - 00000000 ____D C:\SWSHARE
2013-06-12 13:29 - 2006-11-02 06:01 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-06-12 13:29 - 2006-11-02 05:47 - 00003696 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-06-12 12:57 - 2013-06-12 12:57 - 00000000 ____D C:\N
2013-06-12 12:31 - 2013-06-12 12:31 - 00000000 ____D C:\M
2013-06-12 12:26 - 2013-06-12 12:26 - 00000000 ____D C:\L
2013-06-11 19:05 - 2013-06-11 19:05 - 00000000 ____D C:\K
2013-06-11 16:41 - 2013-06-11 16:41 - 00000000 ____D C:\J
2013-06-11 08:34 - 2013-06-11 08:34 - 00000000 ____D C:\I
2013-06-10 21:36 - 2012-07-12 21:14 - 00000000 ____D C:\FRST
2013-06-10 21:05 - 2006-11-02 03:33 - 00841748 ____A C:\Windows\System32\PerfStringBackup.INI
2013-06-10 20:57 - 2013-06-10 20:57 - 00018944 ____A C:\Users\Janette\Documents\IME Janette Notes June 10 2013.wps
2013-06-10 20:23 - 2013-06-10 20:23 - 00000000 ____D C:\H
2013-06-10 19:57 - 2013-06-10 19:57 - 00000000 ____D C:\G
2013-06-10 19:56 - 2012-02-09 14:09 - 00123070 ____A C:\Windows\PFRO.log
2013-06-10 19:54 - 2013-06-10 19:54 - 01358933 ____A (Farbar) C:\Users\Janette\Desktop\FRST.exe
2013-06-10 19:54 - 2006-11-02 06:01 - 00032612 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2013-06-10 19:37 - 2013-06-10 19:37 - 01358933 ____A (Farbar) C:\Users\Janette\Downloads\FRST(2).exe
2013-06-10 19:36 - 2013-06-10 19:36 - 01358933 ____A (Farbar) C:\Users\Janette\Downloads\FRST(1).exe
2013-06-10 19:17 - 2013-04-23 16:00 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-06-10 18:23 - 2013-06-10 18:23 - 00002044 ____A C:\Users\Janette\Downloads\fixlist.txt
2013-06-10 16:34 - 2013-05-31 19:20 - 00115200 ____A C:\Users\Janette\Documents\8.5x11 blank template.pub
2013-06-09 22:48 - 2013-06-09 22:48 - 00000556 ____A C:\Users\Janette\Desktop\Addition - Shortcut.lnk
2013-06-09 22:48 - 2013-06-09 22:48 - 00000532 ____A C:\Users\Janette\Desktop\FRST - Shortcut (2).lnk
2013-06-09 22:47 - 2013-06-09 22:47 - 00004096 ____A C:\conf.dat
2013-06-09 22:47 - 2013-06-09 22:47 - 00000532 ____A C:\Users\Janette\Desktop\FRST - Shortcut.lnk
2013-06-09 22:39 - 2013-06-09 22:39 - 00060343 ____A C:\Users\Janette\Downloads\FRST.txt
2013-06-09 22:39 - 2013-06-09 22:38 - 00023701 ____A C:\Users\Janette\Downloads\Addition.txt
2013-06-09 22:38 - 2013-06-05 05:11 - 00000000 ____D C:\users\Administrator
2013-06-09 22:37 - 2013-06-09 22:37 - 01358931 ____A (Farbar) C:\Users\Janette\Downloads\FRST.exe
2013-06-09 21:21 - 2013-06-09 21:21 - 00000000 ____D C:\F
2013-06-09 21:20 - 2013-06-09 21:20 - 00000064 ____A C:\Windows\System32\TPAPSLOG.LOG
2013-06-05 12:11 - 2013-06-05 12:11 - 00049935 ____A C:\ComboFix.txt
2013-06-05 12:11 - 2013-06-05 09:23 - 00000000 ____D C:\Qoobox
2013-06-05 11:59 - 2006-11-02 04:18 - 00000000 ___RD C:\users\Public
2013-06-05 11:57 - 2013-06-05 11:42 - 00001257 ____A C:\Users\Janette\Desktop\usersJanettedownloadsComboFix.exe - Shortcut.lnk
2013-06-05 11:57 - 2013-06-05 09:22 - 05077652 ____R (Swearware) C:\Users\Janette\Downloads\ComboFix.exe
2013-06-05 10:14 - 2013-06-05 10:14 - 00000000 ____D C:\E
2013-06-05 07:12 - 2013-06-05 07:12 - 00000000 ____D C:\D
2013-06-05 05:15 - 2006-11-02 05:47 - 03882520 ____A C:\Windows\System32\FNTCACHE.DAT
2013-06-05 05:12 - 2013-06-05 05:12 - 00000116 ____A C:\tvttemp.txt
2013-06-05 05:11 - 2013-06-05 05:11 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Lenovo
2013-06-05 05:06 - 2006-11-02 05:37 - 00000000 ____D C:\Windows\System32\XPSViewer
2013-06-05 05:06 - 2006-11-02 05:37 - 00000000 ____D C:\Windows\System32\restore
2013-06-05 05:06 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\tapi
2013-06-05 05:06 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\zh-TW
2013-06-05 05:06 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\zh-HK
2013-06-05 05:06 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\zh-CN
2013-06-05 05:06 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\uk-UA
2013-06-05 05:06 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\tr-TR
2013-06-05 05:06 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\th-TH
2013-06-05 05:06 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\sv-SE
2013-06-05 05:06 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\sr-Latn-CS
2013-06-05 05:06 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\SLUI
2013-06-05 05:06 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\sl-SI
2013-06-05 05:06 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\sk-SK
2013-06-05 05:06 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\ru-RU
2013-06-05 05:06 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\ras
2013-06-05 05:06 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\pt-PT
2013-06-05 05:06 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\pt-BR
2013-06-05 05:06 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\pl-PL
2013-06-05 05:06 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\nl-NL
2013-06-05 05:06 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\nb-NO
2013-06-05 05:05 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\Msdtc
2013-06-05 05:05 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\lv-LV
2013-06-05 05:05 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\lt-LT
2013-06-05 05:05 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\ko-KR
2013-06-05 05:05 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\ja-JP
2013-06-05 05:05 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\it-IT
2013-06-05 05:05 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\icsxml
2013-06-05 05:05 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\hu-HU
2013-06-05 05:05 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\hr-HR
2013-06-05 05:05 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\he-IL
2013-06-05 05:05 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\fr-FR
2013-06-05 05:05 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\fi-FI
2013-06-05 05:05 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\et-EE
2013-06-05 05:05 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\el-GR
2013-06-05 05:04 - 2008-02-01 02:43 - 00000000 ____D C:\Windows\System32\DLA
2013-06-05 05:04 - 2008-02-01 02:34 - 00000000 ___HD C:\Windows\System32\(null)
2013-06-05 05:04 - 2006-11-02 05:37 - 00000000 ____D C:\Windows\ShellNew
2013-06-05 05:04 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\de-DE
2013-06-05 05:04 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\com
2013-06-05 05:04 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\bg-BG
2013-06-05 05:04 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\ar-SA
2013-06-05 05:03 - 2006-11-09 18:04 - 00000000 ____D C:\Windows\Panther
2013-06-05 05:03 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\registration
2013-06-05 05:03 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\MSAgent
2013-06-05 05:03 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\L2Schemas
2013-06-05 05:03 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\Help
2013-06-05 05:02 - 2008-02-05 13:56 - 00000000 ___HD C:\Users\Janette\Documents\Stiles Collection Misc. Forms and Business Cards
2013-06-05 05:02 - 2008-02-05 12:16 - 00000000 ____D C:\Users\Janette\AppData\Roaming\Thunderbird
2013-06-05 05:02 - 2008-02-05 10:40 - 00000000 ____D C:\users\Janette
2013-06-05 05:02 - 2008-02-01 01:28 - 00000000 ____D C:\WAUUPGRD
2013-06-05 05:02 - 2006-11-09 12:54 - 00000000 ____D C:\SWTOOLS
2013-06-05 05:02 - 2006-11-02 04:18 - 00000000 __RHD C:\users\Default
2013-06-05 05:02 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\Cursors
2013-06-05 05:01 - 2008-02-06 12:39 - 00000000 ___HD C:\ProgramData\SiteAdvisor
2013-06-05 05:01 - 2008-02-05 16:35 - 00000000 ____D C:\Program Files\Yahoo SiteBuilder
2013-06-05 05:01 - 2008-02-01 03:26 - 00000000 ____D C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
2013-06-05 05:01 - 2008-02-01 03:20 - 00000000 ____D C:\Program Files\Sonic Icons for Lenovo
2013-06-05 05:01 - 2008-02-01 02:42 - 00000000 ___HD C:\ProgramData\Sonic
2013-06-05 05:01 - 2008-02-01 02:42 - 00000000 ____D C:\Program Files\Roxio
2013-06-05 05:01 - 2006-11-02 05:37 - 00000000 ____D C:\Program Files\Windows Defender
2013-06-05 05:01 - 2006-11-02 05:37 - 00000000 ____D C:\Program Files\Windows Collaboration
2013-06-05 05:00 - 2008-02-06 12:10 - 00000000 ____D C:\Program Files\Microsoft CAPICOM 2.1.0.2
2013-06-05 05:00 - 2008-02-01 03:24 - 00000000 ____D C:\Program Files\Microsoft Works
2013-06-05 05:00 - 2008-02-01 02:43 - 00000000 ____D C:\Program Files\Common Files\SureThing Shared
2013-06-05 05:00 - 2008-02-01 02:42 - 00000000 ____D C:\Program Files\Common Files\Sonic Shared
2013-06-05 05:00 - 2008-02-01 02:39 - 00000000 ____D C:\Program Files\Lenovo Registration
2013-06-05 05:00 - 2008-02-01 02:23 - 00000000 ____D C:\Program Files\Common Files\snp2uvc
2013-06-05 05:00 - 2008-02-01 02:19 - 00000000 ____D C:\Program Files\Digital Line Detect
2013-06-05 05:00 - 2008-02-01 02:14 - 00000000 ____D C:\Program Files\Lenovo
2013-06-05 05:00 - 2006-11-02 05:37 - 00000000 ____D C:\Program Files\Movie Maker
2013-06-05 05:00 - 2006-11-02 04:18 - 00000000 ____D C:\Program Files\Common Files\Services
2013-06-05 04:59 - 2008-02-01 03:24 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2013-06-05 04:59 - 2008-02-01 02:42 - 00000000 ____D C:\Program Files\Common Files\PX Storage Engine
2013-06-05 04:59 - 2008-02-01 02:34 - 00000000 ____D C:\Program Files\Common Files\Lenovo
2013-06-05 04:43 - 2009-07-09 13:57 - 00000000 ____D C:\Windows\System32\vi-VN
2013-06-05 04:43 - 2009-07-09 13:57 - 00000000 ____D C:\Windows\System32\eu-ES
2013-06-05 04:43 - 2009-07-09 13:29 - 00000000 ____D C:\Windows\System32\EventProviders
2013-06-05 04:43 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\ro-RO
2013-06-05 04:43 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\ias
2013-06-05 04:42 - 2012-07-11 10:45 - 00000000 ____D C:\Windows\System32\config\RCCBakup
2013-06-05 04:42 - 2006-11-02 04:18 - 00000000 ___HD C:\Windows\System32\config\Journal
2013-06-05 04:41 - 2012-07-10 15:26 - 00000000 ____D C:\Windows\pss
2013-06-05 04:41 - 2011-06-17 20:11 - 00000000 ____D C:\Windows\PeachInst
2013-06-05 04:41 - 2009-10-15 09:15 - 00000000 ____D C:\Windows\SQL9_KB970892_ENU
2013-06-05 04:41 - 2009-07-09 13:57 - 00000000 ____D C:\Windows\System32\ca-ES
2013-06-05 04:41 - 2009-02-12 08:41 - 00000000 ____D C:\Windows\SQL9_KB960089_ENU
2013-06-05 04:41 - 2008-07-09 03:01 - 00000000 ____D C:\Windows\SQL9_KB948109_ENU
2013-06-05 04:41 - 2006-11-02 04:18 - 00000000 ___RD C:\Windows\Offline Web Pages
2013-06-05 04:41 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\AdvancedInstallers
2013-06-05 04:41 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\rescache
2013-06-05 04:41 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-06-05 04:34 - 2010-06-24 19:16 - 00000000 ____D C:\Windows\hpoj6000e609
2013-06-05 04:34 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\IME
2013-06-05 04:33 - 2006-11-02 05:37 - 00000000 ____D C:\Windows\DigitalLocker
2013-06-05 04:29 - 2008-09-12 13:26 - 00000000 ____D C:\Users\Janette\{f606a019-4024-4ff7-8989-d0a2c7e4ed9f}
2013-06-05 04:29 - 2006-11-02 05:37 - 00000000 ___RD C:\Users\Public\Recorded TV
2013-06-05 04:25 - 2012-07-19 09:10 - 00000000 ___HD C:\Users\Janette\Downloads\Rebit
2013-06-05 04:25 - 2011-03-01 09:07 - 00000000 ___HD C:\Users\Janette\Downloads\__MACOSX
2013-06-05 04:24 - 2013-04-10 12:56 - 00000000 ____D C:\Users\Janette\Documents\Out of the stall comps and stuff
2013-06-05 04:24 - 2013-03-21 13:21 - 00000000 ____D C:\Users\Janette\Documents\Ocean Shores entries
2013-06-05 04:24 - 2013-03-03 09:56 - 00000000 ____D C:\Users\Janette\Documents\Puyallup Fair projects
June 12th, 2013, 09:37 PM
rollie

2013-06-05 04:24 - 2013-02-11 20:00 - 00000000 ____D C:\Users\Janette\Documents\Neighborhood Crap
2013-06-05 04:24 - 2013-01-20 12:17 - 00000000 ____D C:\Users\Janette\Documents\Rollie Photos only used in video January 2013
2013-06-05 04:24 - 2013-01-15 19:32 - 00000000 ____D C:\Users\Janette\Documents\Rollie
2013-06-05 04:24 - 2013-01-11 21:34 - 00000000 ____D C:\Users\Janette\Documents\Proctor Arts Fest 2013
2013-06-05 04:24 - 2012-12-08 16:17 - 00000000 ____D C:\Users\Janette\Documents\TAC Awards Projects
2013-06-05 04:24 - 2010-05-24 19:00 - 00000000 ___HD C:\Users\Janette\Documents\Stiles, Phyllis info and legal
2013-06-05 04:24 - 2009-02-05 15:40 - 00000000 ___HD C:\Users\Janette\Documents\Rollie's Radios
2013-06-05 04:24 - 2008-02-10 13:48 - 00000000 ___RD C:\Users\Janette\Documents\Stiles Collection Catalog of Art
2013-06-05 04:24 - 2008-02-09 14:32 - 00000000 ___HD C:\Users\Janette\Documents\Stiles Collection Work Sheets
2013-06-05 04:24 - 2008-02-09 14:31 - 00000000 ___HD C:\Users\Janette\Documents\Stiles Collection Paintings 2013
2013-06-05 04:23 - 2013-01-30 12:09 - 00000000 ____D C:\Users\Janette\Documents\Artwork New in 2013
2013-06-05 04:23 - 2013-01-10 15:09 - 00000000 ____D C:\Users\Janette\Documents\Light painting photos coverted
2013-06-05 04:23 - 2013-01-07 20:36 - 00000000 ____D C:\Users\Janette\Documents\Mandala project 2013
2013-06-05 04:23 - 2012-11-21 12:58 - 00000000 ____D C:\Users\Janette\Documents\Artwork for GLOBAL COLORS Video
2013-06-05 04:23 - 2012-11-04 11:42 - 00000000 ____D C:\Users\Janette\Documents\Facebook
2013-06-05 04:23 - 2012-08-03 20:07 - 00000000 ____D C:\Users\Janette\Documents\Joe's e-mails
2013-06-05 04:23 - 2011-12-13 14:17 - 00000000 ___HD C:\Users\Janette\Documents\BookSmartData
2013-06-05 04:23 - 2010-12-29 12:12 - 00000000 ___HD C:\Users\Janette\Documents\HCG info
2013-06-05 04:23 - 2010-10-08 15:52 - 00000000 ____D C:\Users\Janette\Documents\Joe Misc and Medical
2013-06-05 04:23 - 2009-07-08 15:50 - 00000000 ___HD C:\Users\Janette\Documents\Janette Correspondence and self portraits
2013-06-05 04:22 - 2013-04-23 15:52 - 00000000 ____D C:\Users\Janette\Documents\Art Show Photos
2013-06-05 04:22 - 2012-07-18 12:35 - 00000000 ____D C:\Users\Janette\Documents\Artists Resume and Statement
2013-06-05 04:22 - 2009-05-21 10:11 - 00000000 ___HD C:\Users\Janette\Documents\Anne Bray Correspondence
2013-06-05 04:21 - 2012-07-12 21:22 - 00000000 ____D C:\Users\Janette\AppData\Roaming\PwrMgr
2013-06-05 04:21 - 2011-10-22 18:41 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\PeaceCraft2
2013-06-05 04:21 - 2011-10-22 17:36 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\Peace Craft
2013-06-05 04:21 - 2011-10-03 20:28 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\Realore_Whiterra Roads Of Rome 3
2013-06-05 04:21 - 2011-06-13 10:10 - 00000000 ____D C:\Users\Janette\Citrix
2013-06-05 04:21 - 2010-12-21 21:32 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\Realore_Whiterra Roads Of Rome 2
2013-06-05 04:21 - 2010-11-06 17:31 - 00000000 ____D C:\Users\Janette\AppData\Roaming\Realore_Whiterra Roads Of Rome
2013-06-05 04:21 - 2009-06-16 20:03 - 00000000 ____D C:\Users\Janette\AppData\Roaming\SystemRequirementsLab
2013-06-05 04:21 - 2008-12-20 12:37 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\Real
2013-06-05 04:21 - 2008-12-01 15:31 - 00000000 ___HD C:\Users\Janette\Documents\Address Labels
2013-06-05 04:21 - 2008-06-06 19:31 - 00000000 ____D C:\Users\Janette\AppData\Roaming\SpinTop
2013-06-05 04:16 - 2012-07-21 14:39 - 00000000 ____D C:\Users\Janette\AppData\Roaming\DriverCure
2013-06-05 04:16 - 2010-09-05 15:02 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\Enlightenus2SE_BFG
2013-06-05 04:16 - 2010-07-02 09:35 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\HpUpdate
2013-06-05 04:16 - 2010-01-17 19:09 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\Enlightenus
2013-06-05 04:16 - 2009-12-30 20:46 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\GhostFleet
2013-06-05 04:16 - 2009-03-15 19:04 - 00000000 ____D C:\Users\Janette\AppData\Roaming\Lost in the City
2013-06-05 04:16 - 2009-02-15 21:47 - 00000000 ____D C:\Users\Janette\AppData\Roaming\Coyotes Tale
2013-06-05 04:16 - 2009-01-18 19:19 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\Ancient Quest of Saqqarah__bfg
2013-06-05 04:16 - 2008-08-03 19:30 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\ForgottenRiddles2
2013-06-05 04:16 - 2008-06-15 18:30 - 00000000 ____D C:\Users\Janette\AppData\Roaming\GameHouse
2013-06-05 04:16 - 2008-02-09 14:44 - 00000000 ____D C:\Users\Janette\AppData\Roaming\FUJIFILM
2013-06-05 04:14 - 2008-02-05 10:45 - 00000000 ___HD C:\Users\Janette\AppData\Local\Roxio
2013-06-05 04:13 - 2011-12-13 14:17 - 00000000 ____D C:\Users\Janette\.blurb
2013-06-05 04:13 - 2011-05-23 13:48 - 00000000 ___HD C:\Users\Janette\AppData\Local\Help
2013-06-05 04:13 - 2010-03-26 15:54 - 00000000 ___HD C:\Users\Janette\AppData\Local\Brain Games Mahjongg Files
2013-06-05 04:13 - 2008-11-14 22:28 - 00000000 ___HD C:\Users\Janette\AppData\Local\Game Mill Files
2013-06-05 04:13 - 2008-02-16 13:12 - 00000000 ____D C:\Users\Janette\AppData\Local\Microsoft Help
2013-06-05 04:10 - 2011-09-04 12:05 - 00000000 ___HD C:\ProgramData\regid.1986-12.com.adobe
2013-06-05 04:10 - 2010-06-24 19:20 - 00000000 ___HD C:\ProgramData\WEBREG
2013-06-05 04:10 - 2009-12-27 14:00 - 00000000 ___HD C:\ProgramData\The Mirror Mysteries
2013-06-05 04:10 - 2009-06-20 13:08 - 00000000 __HDC C:\ProgramData\{66E2F539-12B6-4870-A500-7689CDE75C5E}
2013-06-05 04:10 - 2008-02-09 13:31 - 00000000 ___HD C:\ProgramData\QuickTime
2013-06-05 04:09 - 2009-02-10 16:01 - 00000000 ___HD C:\ProgramData\MysteryChronicles
2013-06-05 04:09 - 2008-07-30 15:48 - 00000000 ___HD C:\ProgramData\MonteCristo
2013-06-05 04:09 - 2008-06-15 18:43 - 00000000 ____D C:\ProgramData\n7-89-o9-3r-4t-r9
2013-06-05 04:09 - 2008-02-01 03:22 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-06-05 04:08 - 2008-02-05 11:09 - 00000000 ____D C:\ProgramData\McAfee
2013-06-05 04:07 - 2010-07-02 09:33 - 00000000 ____D C:\ProgramData\HP Product Assistant
2013-06-05 04:07 - 2009-06-20 13:03 - 00000000 ___HD C:\ProgramData\DriverScanner
2013-06-05 04:07 - 2008-07-27 18:43 - 00000000 ___HD C:\ProgramData\Arcade Lab
2013-06-05 04:06 - 2012-07-31 21:06 - 00000000 ____D C:\Program Files\Seagate Replica
2013-06-05 04:06 - 2009-10-31 03:09 - 00000000 ____D C:\Program Files\Windows Portable Devices
2013-06-05 04:06 - 2009-06-16 20:04 - 00000000 ____D C:\Program Files\SystemRequirementsLab
2013-06-05 04:06 - 2008-09-13 12:02 - 00000000 ____D C:\Program Files\SmartAudioConverter
2013-06-05 04:06 - 2008-02-05 10:40 - 00000000 ____D C:\Program Files\Windows Live Toolbar
2013-06-05 04:06 - 2006-11-02 05:37 - 00000000 ____D C:\Program Files\Windows Calendar
2013-06-05 04:05 - 2013-04-18 20:52 - 00000000 ____D C:\Program Files\QuickTime
2013-06-05 04:05 - 2012-05-02 11:24 - 00000000 ____D C:\Program Files\Roads of Rome III
2013-06-05 04:05 - 2008-12-20 12:37 - 00000000 ____D C:\Program Files\Rhapsody
2013-06-05 04:04 - 2013-04-12 09:59 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-06-05 04:03 - 2011-03-07 14:48 - 00000000 ____D C:\Program Files\Mandala Painter 3
2013-06-05 04:03 - 2006-11-02 05:42 - 00000000 ____D C:\Windows\WindowsMobile
2013-06-05 04:02 - 2012-07-11 14:36 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-06-05 04:02 - 2011-02-24 04:03 - 00000000 ____D C:\Windows\System32\WindowsPowerShell
2013-06-05 04:02 - 2006-11-02 05:42 - 00000000 ____D C:\Windows\System32\winrm
2013-06-05 04:02 - 2006-11-02 05:42 - 00000000 ____D C:\Windows\System32\WCN
2013-06-05 04:02 - 2006-11-02 04:18 - 00000000 ___HD C:\Windows\System32\winevt
2013-06-05 04:02 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\Web
2013-06-05 04:01 - 2006-11-02 05:42 - 00000000 ____D C:\Windows\System32\slmgr
2013-06-05 04:01 - 2006-11-02 05:42 - 00000000 ____D C:\Windows\System32\Printing_Admin_Scripts
2013-06-05 04:01 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\SMI
2013-06-05 04:01 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\RemInst
2013-06-05 04:00 - 2008-02-01 02:27 - 00000000 ____D C:\Windows\System32\Lang
2013-06-05 04:00 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\networklist
2013-06-05 04:00 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\MUI
2013-06-05 04:00 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\LogFiles
2013-06-05 04:00 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\licensing
2013-06-05 03:59 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\IME
2013-06-05 03:58 - 2012-07-14 15:41 - 00000000 ____D C:\Program Files\Free Download Manager
2013-06-05 03:58 - 2011-02-23 19:34 - 00000000 ____D C:\Program Files\FinePixViewer
2013-06-05 03:58 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\DriverStore
2013-06-05 03:57 - 2012-11-14 15:02 - 00000000 ____D C:\Program Files\ConvertHelper
2013-06-05 03:57 - 2011-06-17 21:03 - 00000000 ____D C:\Program Files\Common Files\Peach
2013-06-05 03:56 - 2011-09-04 11:05 - 00000000 ____D C:\Program Files\Common Files\Adobe AIR
2013-06-05 03:54 - 2012-03-26 19:02 - 00000000 ____D C:\Program Files\Adobe Download Assistant
2013-06-05 03:54 - 2012-02-28 14:59 - 00000000 ____D C:\Program Files\bfgclient
2013-06-05 03:54 - 2012-02-14 16:14 - 00000000 ____D C:\Program Files\Bonjour
2013-06-05 03:52 - 2008-02-08 16:55 - 00000000 ____D C:\EPSONREG
2013-06-05 03:52 - 2008-02-01 02:35 - 00000000 ____D C:\Icons
2013-06-05 03:50 - 2006-11-02 04:18 - 00000000 ___HD C:\Windows\System32\wfp
2013-06-05 03:50 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\System32\spool
2013-06-05 03:48 - 2012-07-21 12:33 - 00000000 ____D C:\Windows\Sun
2013-06-05 03:48 - 2008-07-11 13:06 - 00000000 ____D C:\Windows\System32\Adobe
2013-06-05 03:48 - 2006-11-02 05:42 - 00000000 ___HD C:\Windows\System32\Branding
2013-06-05 03:43 - 2008-02-01 03:24 - 00000000 ____D C:\Windows\PCHEALTH
2013-06-05 03:43 - 2006-11-02 05:37 - 00000000 ____D C:\Windows\Performance
2013-06-05 03:43 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\security
2013-06-05 03:43 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\schemas
2013-06-05 03:43 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\Resources
2013-06-05 03:43 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\Provisioning
2013-06-05 03:43 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\PLA
2013-06-05 03:43 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\nap
2013-06-05 03:41 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\LiveKernelReports
2013-06-05 03:39 - 2010-07-02 09:35 - 00000000 ____D C:\Windows\Hewlett-Packard
2013-06-05 03:38 - 2008-02-01 02:58 - 00000000 ____D C:\Windows\Downloaded Installations
2013-06-05 03:38 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\Branding
2013-06-05 03:37 - 2012-07-25 09:25 - 00000000 ____D C:\Users\Janette\Yahoo SiteBuilder
2013-06-05 03:37 - 2012-04-03 20:20 - 00000000 ____D C:\Users\Public\Documents\Downloaded Installers
2013-06-05 03:37 - 2010-01-18 20:59 - 00000000 ___HD C:\Users\Public\Documents\bigfish
2013-06-05 03:37 - 2009-05-16 15:02 - 00000000 ___HD C:\Users\Public\Documents\Slapdash Games
2013-06-05 03:35 - 2012-07-25 09:12 - 00000000 ____D C:\Users\Janette\sitebuilder
2013-06-05 03:35 - 2012-04-13 16:56 - 00000000 ___HD C:\Users\Janette\Downloads\Driver Tool
2013-06-05 03:34 - 2012-07-21 14:39 - 00000000 ____D C:\Users\Janette\AppData\Roaming\SpeedyPC Software
2013-06-05 03:34 - 2011-12-28 16:23 - 00000000 ___HD C:\Users\Janette\Documents\Amazon MP3
2013-06-05 03:34 - 2011-10-22 19:56 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\YoudaGames
2013-06-05 03:34 - 2011-09-04 12:11 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\PDAppFlex
2013-06-05 03:34 - 2011-06-19 19:27 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\WendigoStudios
2013-06-05 03:34 - 2011-06-17 21:13 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\Peachtree
2013-06-05 03:34 - 2011-05-16 12:48 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\POV-Ray
2013-06-05 03:34 - 2010-09-16 14:04 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\Vogat Interactive
2013-06-05 03:34 - 2010-07-31 16:16 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\Vast Studios
2013-06-05 03:34 - 2010-06-18 07:12 - 00000000 ____D C:\Users\Janette\AppData\Roaming\Update
2013-06-05 03:34 - 2010-01-29 19:44 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\SevenSails
2013-06-05 03:34 - 2010-01-01 12:56 - 00000000 ____D C:\Users\Janette\AppData\Roaming\Skunk Studios
2013-06-05 03:34 - 2009-12-22 16:44 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\Scholastic
2013-06-05 03:34 - 2009-06-20 13:03 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\Uniblue
2013-06-05 03:34 - 2009-02-28 19:17 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\SerpentOfIsis
2013-06-05 03:34 - 2008-06-23 20:44 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\WildTangent
2013-06-05 03:34 - 2008-06-23 19:24 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\VeniceMysteryData
2013-06-05 03:34 - 2008-06-07 11:53 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\PlayFirst
2013-06-05 03:34 - 2008-02-05 12:07 - 00000000 ____D C:\Users\Janette\AppData\Roaming\Talkback
2013-06-05 03:33 - 2012-04-15 10:38 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\PCDr
2013-06-05 03:33 - 2009-11-30 19:45 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\Orneon
2013-06-05 03:33 - 2009-11-20 16:29 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\MysteryStudio
2013-06-05 03:33 - 2009-06-22 18:18 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\NCH Swift Sound
2013-06-05 03:05 - 2010-12-03 23:47 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\FastStone
2013-06-05 03:05 - 2010-09-18 12:13 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\Freeze Tag
2013-06-05 03:05 - 2010-01-20 11:40 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\Flood Light Games
2013-06-05 03:05 - 2009-10-11 17:49 - 00000000 ____D C:\Users\Janette\AppData\Roaming\ERS G-Studio
2013-06-05 03:05 - 2009-01-18 15:18 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\Meridian93
2013-06-05 03:05 - 2008-11-22 20:12 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\iWinArcade
2013-06-05 03:05 - 2008-11-05 13:40 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\InterVideo
2013-06-05 03:05 - 2008-08-30 14:36 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\Google
2013-06-05 03:05 - 2008-06-17 19:33 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\iWin
2013-06-05 03:05 - 2008-02-23 12:04 - 00000000 ____D C:\Users\Janette\AppData\Roaming\Macromedia
2013-06-05 03:05 - 2008-02-08 17:08 - 00000000 ____D C:\Users\Janette\AppData\Roaming\EPSON
2013-06-05 03:05 - 2008-02-08 16:49 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\InstallShield
2013-06-05 03:05 - 2008-02-05 11:16 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\Leadertech
2013-06-05 03:05 - 2008-02-05 10:45 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\Lenovo
2013-06-05 03:04 - 2012-12-02 18:05 - 00000000 ____D C:\Users\Janette\AppData\Local\Xenocode
2013-06-05 03:04 - 2012-02-09 16:08 - 00000000 ____D C:\Users\Janette\AppData\Local\VS Revo Group
2013-06-05 03:04 - 2011-09-04 14:31 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2013-06-05 03:04 - 2011-09-04 11:06 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
2013-06-05 03:04 - 2011-06-19 19:18 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\Elephant Games
2013-06-05 03:04 - 2010-10-09 15:11 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\Artifex Mundi
2013-06-05 03:04 - 2010-03-19 18:21 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\AzuazGames
2013-06-05 03:04 - 2010-01-26 20:12 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\BigFishGames
2013-06-05 03:04 - 2009-10-17 16:09 - 00000000 ____D C:\Users\Janette\AppData\Roaming\Awem
2013-06-05 03:04 - 2009-07-01 14:08 - 00000000 ____D C:\Users\Janette\AppData\Roaming\Downloaded Installations
2013-06-05 03:04 - 2009-06-22 16:03 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\Amazon
2013-06-05 03:04 - 2009-02-14 10:26 - 00000000 ____D C:\Users\Janette\AppData\Roaming\CatmoonGames
2013-06-05 03:04 - 2008-10-09 09:32 - 00000000 ____D C:\Users\Janette\AppData\Roaming\Canneverbe_Limited
2013-06-05 03:04 - 2008-09-13 12:34 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\Apple Computer
2013-06-05 03:04 - 2008-08-12 12:21 - 00000000 ____D C:\Users\Janette\AppData\Roaming\Big Fish Games
2013-06-05 03:04 - 2008-06-18 19:02 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\AlwaysNeat
2013-06-05 03:04 - 2008-06-14 12:56 - 00000000 ___HD C:\Users\Janette\AppData\Roaming\cerasus.media
2013-06-05 03:04 - 2008-02-05 10:45 - 00000000 ____D C:\Users\Janette\AppData\Roaming\Adobe
2013-06-05 03:04 - 2008-02-05 10:40 - 00000000 ____D C:\Users\Janette\AppData\Local\VirtualStore
2013-06-05 03:03 - 2008-02-05 12:16 - 00000000 ___HD C:\Users\Janette\AppData\Local\Thunderbird
2013-06-05 03:02 - 2009-05-16 15:02 - 00000000 ___HD C:\Users\Janette\AppData\Local\Slapdash Games
2013-06-05 03:02 - 2009-03-20 19:37 - 00000000 ___HD C:\Users\Janette\AppData\Local\Ph03nixNewMedia
2013-06-05 03:01 - 2012-12-02 18:13 - 00000000 ____D C:\Users\Janette\AppData\Local\Badger I.T
2013-06-05 03:01 - 2012-07-11 21:38 - 00000000 ____D C:\Users\Janette\AppData\Local\Lenovo
2013-06-05 03:01 - 2012-06-28 10:15 - 00000000 ___HD C:\Users\Janette\AppData\Local\Macromedia
2013-06-05 03:01 - 2012-02-08 12:18 - 00000000 ____D C:\Users\Janette\AppData\Local\BVRP Software
2013-06-05 03:01 - 2011-09-04 11:05 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-06-05 03:01 - 2011-09-04 11:05 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-06-05 03:01 - 2011-07-07 11:15 - 00000000 ___HD C:\Users\Janette\AppData\Local\IsolatedStorage
2013-06-05 03:01 - 2008-09-13 12:34 - 00000000 ___HD C:\Users\Janette\AppData\Local\Apple Computer
2013-06-05 03:01 - 2008-09-13 12:32 - 00000000 ___HD C:\Users\Janette\AppData\Local\Apple
2013-06-05 03:01 - 2008-08-29 19:52 - 00000000 ___HD C:\Users\Janette\AppData\Local\Google
2013-06-05 03:01 - 2008-06-06 19:31 - 00000000 ____D C:\Users\Janette\AppData\Local\JollyBear
2013-06-05 03:01 - 2008-05-09 19:49 - 00000000 ____D C:\Users\Janette\AppData\Local\Microsoft Games
2013-06-05 03:01 - 2008-02-05 13:59 - 00000000 ____D C:\Users\Janette\AppData\Local\Adobe
2013-06-05 02:55 - 2011-04-06 13:21 - 00000000 ___HD C:\ProgramData\WindowsSearch
2013-06-05 02:55 - 2008-08-09 21:47 - 00000000 ___HD C:\ProgramData\Zylom
2013-06-05 02:55 - 2008-06-23 20:44 - 00000000 ____D C:\ProgramData\WildTangent
2013-06-05 02:55 - 2008-02-07 14:47 - 00000000 ___HD C:\ProgramData\Xerox
2013-06-05 02:53 - 2012-07-21 14:38 - 00000000 ____D C:\ProgramData\SpeedyPC Software
2013-06-05 02:53 - 2010-03-30 09:40 - 00000000 ___HD C:\ProgramData\Sun
2013-06-05 02:53 - 2009-11-23 14:50 - 00000000 ____D C:\ProgramData\PCDr
2013-06-05 02:53 - 2009-07-06 20:03 - 00000000 ___HD C:\ProgramData\Trymedia
2013-06-05 02:53 - 2009-05-16 15:02 - 00000000 ___HD C:\ProgramData\Slapdash Games
2013-06-05 02:53 - 2009-01-07 16:24 - 00000000 ___HD C:\ProgramData\SpecialBit
2013-06-05 02:53 - 2008-12-24 14:07 - 00000000 ___HD C:\ProgramData\PlayPond
2013-06-05 02:53 - 2008-06-10 15:17 - 00000000 ___HD C:\ProgramData\VirtualFarm
2013-06-05 02:53 - 2008-06-09 20:23 - 00000000 ___HD C:\ProgramData\Playrix Entertainment
2013-06-05 02:53 - 2008-06-07 11:53 - 00000000 ___HD C:\ProgramData\PlayFirst
2013-06-05 02:53 - 2008-06-06 20:41 - 00000000 ____D C:\ProgramData\SpinTopV1005
2013-06-05 02:53 - 2008-02-01 03:15 - 00000000 ___HD C:\ProgramData\Symantec
2013-06-05 02:49 - 2012-04-13 19:55 - 00000000 ____D C:\ProgramData\Norton
2013-06-05 02:49 - 2010-09-07 19:56 - 00000000 ___HD C:\ProgramData\MumboJumbo
2013-06-05 02:49 - 2010-01-22 04:24 - 00000000 ___HD C:\ProgramData\Office Genuine Advantage
2013-06-05 02:49 - 2009-06-22 18:18 - 00000000 ___HD C:\ProgramData\NCH Swift Sound
2013-06-05 02:49 - 2009-06-20 13:23 - 00000000 ____D C:\ProgramData\PC Drivers HeadQuarters
2013-06-05 02:48 - 2009-01-18 15:19 - 00000000 ___HD C:\ProgramData\Meridian93
2013-06-05 02:48 - 2008-06-22 13:51 - 00000000 ___HD C:\ProgramData\Media Art
2013-06-05 02:46 - 2012-04-13 16:55 - 00000000 ____D C:\ProgramData\Driver Tool
2013-06-05 02:46 - 2011-06-19 19:18 - 00000000 ___HD C:\ProgramData\Elephant Games
2013-06-05 02:46 - 2010-06-30 19:24 - 00000000 ___HD C:\ProgramData\Google
2013-06-05 02:46 - 2010-06-24 18:38 - 00000000 ____D C:\ProgramData\HP
2013-06-05 02:46 - 2010-01-20 11:40 - 00000000 ___HD C:\ProgramData\Flood Light Games
2013-06-05 02:46 - 2009-12-30 20:46 - 00000000 ___HD C:\ProgramData\GhostFleet
2013-06-05 02:46 - 2008-11-22 20:12 - 00000000 ____D C:\ProgramData\iWin Games
2013-06-05 02:46 - 2008-06-24 20:34 - 00000000 ____D C:\ProgramData\HipSoft
2013-06-05 02:46 - 2008-06-06 19:31 - 00000000 ___HD C:\ProgramData\JollyBear
2013-06-05 02:46 - 2008-02-01 02:39 - 00000000 ____D C:\ProgramData\Lenovo
2013-06-05 02:45 - 2012-04-14 10:25 - 00000000 ___HD C:\ProgramData\DDNI
2013-06-05 02:45 - 2012-04-12 09:17 - 00000000 ____D C:\ProgramData\Driver Manager
2013-06-05 02:45 - 2011-09-21 15:24 - 00000000 ____D C:\ProgramData\Cateia Games
2013-06-05 02:45 - 2010-12-20 15:55 - 00000000 ____D C:\ProgramData\Big Fish Games
2013-06-05 02:45 - 2009-04-01 14:35 - 00000000 ___HD C:\ProgramData\Black Blob Studios
2013-06-05 02:45 - 2008-06-14 12:56 - 00000000 ___HD C:\ProgramData\cerasus.media
2013-06-05 02:44 - 2013-04-18 20:52 - 00000000 ____D C:\ProgramData\Apple Computer
2013-06-05 02:44 - 2011-06-17 21:04 - 00000000 ___HD C:\ProgramData\Aatrix Software
2013-06-05 02:44 - 2009-01-17 18:44 - 00000000 ___HD C:\ProgramData\Awem
2013-06-05 02:44 - 2008-12-28 10:47 - 00000000 ___HD C:\ProgramData\Alawar Stargaze
2013-06-05 02:44 - 2008-09-13 12:31 - 00000000 ____D C:\ProgramData\Apple
2013-06-05 02:44 - 2008-02-01 02:36 - 00000000 ____D C:\ProgramData\Adobe
2013-06-05 02:43 - 2012-12-29 16:47 - 00000000 ____D C:\Program Files\ValuSoft
2013-06-05 02:43 - 2012-02-09 16:08 - 00000000 ____D C:\Program Files\VS Revo Group
2013-06-05 02:43 - 2008-02-01 02:35 - 00000000 ____D C:\Program Files\ThinkVantage
2013-06-05 02:43 - 2006-11-02 04:18 - 00000000 ____D C:\Program Files\Windows NT
2013-06-05 02:42 - 2012-04-13 09:09 - 00000000 ____D C:\Program Files\Seagate
2013-06-05 02:42 - 2008-12-20 16:28 - 00000000 ____D C:\Program Files\SanDisk
2013-06-05 02:42 - 2008-09-12 13:29 - 00000000 ____D C:\Program Files\Sun
2013-06-05 02:42 - 2008-02-01 02:20 - 00000000 ____D C:\Program Files\Synaptics
2013-06-05 02:42 - 2008-02-01 02:16 - 00000000 ____D C:\Program Files\ThinkPad
2013-06-05 02:41 - 2011-06-17 20:27 - 00000000 ____D C:\Program Files\Sage Software
2013-06-05 02:41 - 2008-12-20 12:38 - 00000000 ____D C:\Program Files\Real
2013-06-05 02:41 - 2006-11-02 05:37 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-06-05 02:40 - 2011-06-17 20:28 - 00000000 ____D C:\Program Files\Pervasive Software
2013-06-05 02:40 - 2009-06-22 18:18 - 00000000 ____D C:\Program Files\NCH Software
2013-06-05 02:40 - 2008-02-01 03:26 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2013-06-05 02:40 - 2008-02-01 03:24 - 00000000 ____D C:\Program Files\Microsoft.NET
2013-06-05 02:40 - 2008-02-01 03:24 - 00000000 ____D C:\Program Files\Microsoft Visual Studio
2013-06-05 02:40 - 2006-11-02 05:37 - 00000000 ____D C:\Program Files\MSBuild
2013-06-05 02:39 - 2008-02-01 03:28 - 00000000 ____D C:\Program Files\Microsoft Small Business
2013-06-05 02:39 - 2008-02-01 03:22 - 00000000 ____D C:\Program Files\Microsoft Office
2013-06-05 02:37 - 2006-11-02 05:37 - 00000000 ____D C:\Program Files\Microsoft Games
2013-06-05 02:36 - 2008-02-01 02:32 - 00000000 ____D C:\Program Files\Lenovo Group Limited
2013-06-05 02:32 - 2010-06-24 18:47 - 00000000 ____D C:\Program Files\HP
2013-06-05 02:32 - 2008-02-01 03:14 - 00000000 ____D C:\Program Files\Intel
2013-06-05 02:32 - 2008-02-01 03:01 - 00000000 ____D C:\Program Files\Google
2013-06-05 02:31 - 2012-07-13 22:55 - 00000000 ____D C:\Program Files\ESET
2013-06-05 02:29 - 2012-04-14 10:25 - 00000000 ____D C:\Program Files\DDNI
2013-06-05 02:29 - 2008-02-01 02:14 - 00000000 ____D C:\Program Files\DIFX
2013-06-05 02:28 - 2008-02-01 03:15 - 00000000 ____D C:\Program Files\Common Files\Symantec Shared
2013-06-05 02:28 - 2008-02-01 02:42 - 00000000 ____D C:\Program Files\Common Files\Roxio Shared
2013-06-05 02:28 - 2008-02-01 02:18 - 00000000 ____D C:\Program Files\CONEXANT
2013-06-05 02:28 - 2006-11-02 04:18 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2013-06-05 02:27 - 2008-12-20 12:50 - 00000000 ____D C:\Program Files\Common Files\Real
2013-06-05 02:27 - 2006-11-02 04:18 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-06-05 02:25 - 2010-05-19 17:21 - 00000000 ____D C:\Program Files\Common Files\Canon
2013-06-05 02:25 - 2008-09-13 12:31 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-06-05 02:25 - 2008-02-01 02:46 - 00000000 ____D C:\Program Files\Common Files\Java
2013-06-05 02:25 - 2008-02-01 02:44 - 00000000 ____D C:\Program Files\Common Files\InterVideo
2013-06-05 02:24 - 2008-02-01 02:36 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-06-05 02:22 - 2012-12-02 18:00 - 00000000 ____D C:\Program Files\BadgerIT
2013-06-05 02:22 - 2008-02-01 02:26 - 00000000 ____D C:\Program Files\Analog Devices
2013-06-05 02:21 - 2008-02-01 02:36 - 00000000 ____D C:\Program Files\Adobe
2013-06-05 02:17 - 2012-08-18 16:32 - 00000000 ____D C:\BigFishGamesCache
2013-06-05 02:17 - 2008-02-08 17:04 - 00000000 ____D C:\EPSON
2013-06-05 02:17 - 2008-02-01 02:27 - 00000000 ____D C:\Intel
2013-06-05 01:03 - 2013-05-24 20:20 - 00000000 ____D C:\Users\Janette\Documents\Tacoma film Festival
2013-06-05 01:03 - 2013-05-24 20:20 - 00000000 ____D C:\Users\Janette\Documents\Cartoons
2013-06-04 21:02 - 2006-11-02 03:22 - 61865984 ____A C:\Windows\System32\config\software_previous
2013-06-04 21:02 - 2006-11-02 03:22 - 24641536 ____A C:\Windows\System32\config\system_previous
2013-06-04 21:02 - 2006-11-02 03:22 - 00061440 ____A C:\Windows\System32\config\sam_previous
2013-06-04 21:02 - 2006-11-02 03:22 - 00028672 ____A C:\Windows\System32\config\security_previous
2013-06-04 20:58 - 2008-02-01 01:57 - 01356986 ____A C:\Windows\WindowsUpdate.log
2013-06-04 19:51 - 2013-06-04 19:51 - 00000000 ____D C:\Users\Janette\Documents\mbar-1.06.0.1003
2013-06-04 19:41 - 2013-06-04 18:19 - 00000000 ____D C:\Users\Janette\Desktop\RK_Quarantine
2013-06-04 18:42 - 2013-06-04 18:42 - 02708759 ____A C:\Users\Janette\Desktop\debug.log
2013-06-04 08:05 - 2013-06-04 08:04 - 00017139 ____A C:\Users\Janette\Desktop\dds.txt
2013-06-04 08:05 - 2013-06-04 08:04 - 00013829 ____A C:\Users\Janette\Desktop\attach.txt
2013-06-03 19:53 - 2006-11-02 03:22 - 01048576 ____A C:\Windows\System32\config\default_previous
2013-06-03 19:52 - 2006-11-02 03:22 - 45613056 ____A C:\Windows\System32\config\components_previous
2013-06-03 15:27 - 2013-06-03 15:27 - 00000000 ____D C:\ProgramData\AVAST Software
2013-06-03 15:27 - 2013-06-03 15:27 - 00000000 ____D C:\Program Files\AVAST Software
2013-06-02 15:16 - 2010-06-24 18:40 - 00005191 ____A C:\ProgramData\hpzinstall.log
2013-05-30 20:07 - 2012-02-10 18:38 - 00000091 ____A C:\Windows\win.ini
2013-05-25 21:33 - 2012-07-14 14:00 - 00154704 ____A C:\Windows\System32\GDIPFONTCACHEV1.DAT
2013-05-15 03:04 - 2006-11-02 03:24 - 72607752 ____N (Microsoft Corporation) C:\Windows\System32\mrt.exe
2013-05-14 19:19 - 2013-02-20 11:24 - 00000000 ____D C:\Users\Janette\Documents\Light Space Time contests
2013-05-14 19:17 - 2012-09-04 19:30 - 00692104 ____N (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2013-05-14 19:17 - 2012-09-04 19:30 - 00071048 ____N (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2013-05-14 17:57 - 2013-05-14 16:37 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
2013-05-13 09:24 - 2013-05-13 09:24 - 03097600 ____N C:\Users\Janette\Documents\Out of the stall frame comp.pub

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2013-06-12 13:53

==================== End Of Log ============================
June 12th, 2013, 09:42 PM
Broni
Unfortunately I don't see anything what would prevent your computer from booting correctly.

Do you remember when was the last time it booted fine in safe mode?

You will need a USB flash drive.

Download GETxPUD.exe to the desktop of your clean computer
- Run GETxPUD.exe
- A new folder will appear on the desktop.
- Open the GETxPUD folder and click on the get&burn.bat
- The program will download xpud_0.9.2.iso, and upon finished will open BurnCDCC ready to burn the image.
- Click on Start and follow the prompts to burn the image to a CD.
- Next download rst.sh to your USB flash drive
- Remove the USB & CD and insert it in the sick computer
- Boot the Sick computer with the CD you just burned
- The computer must be set to boot from the CD
- Gently tap F12 and choose to boot from the CD
- Follow the prompts
- A Welcome to xPUD screen will appear
- Press File
- Expand mnt
- sda1,2...usually corresponds to your HDD
- sdb1 is likely your USB
- Click on the folder that represents your USB drive (sdb1 ?)
- Confirm that you see rst.sh that you downloaded there
- Press Tool at the top
- Choose Open Terminal
- Type bash rst.sh
- Press Enter
- After it has finished a report will be located on your USB drive named enum.log
- Remove the USB drive and insert it back in your working computer and navigate to enum.log
  
  Please note - all text entries are case sensitive
Copy and paste the enum.log for my review
June 12th, 2013, 10:01 PM
rollie

It's been booting fine in safe mode, but the last time it booted normally was Monday, June 3rd, the day after I uninstalled/reinstalled Firefox. I'm going ahead with the procedure in the above post. It will take awhile as I have to use my husband's PC which I never use, so there will be a small learning curve.
June 12th, 2013, 10:02 PM
Broni

No problem :)
June 12th, 2013, 10:32 PM
rollie

Now I'm on Husbands' PC but I can't download to his desktop, because it's only set up to go to the Downloads file. When the download asks where I want to save the file, it's just the one choice. I went to the Properties window of Desktop, but couldn't figure out what to do....
June 12th, 2013, 10:36 PM
Broni

Download to "Downloads" folder. Cut and paste to to the Desktop.
June 12th, 2013, 11:30 PM
rollie

Okay, did everything in Post #36 and seemed to work. Here is the enum.log:

59.0M Jun 13 2013 /mnt/sda2/Windows/System32/config/SOFTWARE
23.5M Jun 13 2013 /mnt/sda2/Windows/System32/config/SYSTEM
June 12th, 2013, 11:41 PM
Broni

This is not correct log but it doesn't matter.
I was looking for some restore points but I looked at your another log and there are no restore points listed.

Unfortunately at this point I'm running out of options.

One last thing we can try...

While in safe mode....

Go Start>Run (Start Search in Vista/7), type in:
msconfig
Click OK (hit Enter in Vista/7).

Click on Startup tab.
Click Disable all
IMPORTANT! In case of laptop, make sure, you do NOT disable any keyboard, or touchpad entries.

Click Services tab.
Put checkmark in Hide all Microsoft services
Click Disable all.

Click OK.

Try to boot in normal mode.
June 13th, 2013, 12:24 AM
rollie

Booted in Normal Mode--the screen saver picture, icons and bottom tray are back! However, cannot click on anything. I can move the mouse but can't click on an icon and open it. Also, the FRST.exe run window popped up, but could neither Run nor Cancel it.
June 13th, 2013, 12:27 AM
Broni

Turn the computer off. Wait one minute and try again.
June 13th, 2013, 12:51 AM
rollie

Turned it off, waited one minute and restarted. No change. It's locked up except for the mouse.

Show 40 post(s) from this thread on one page