OTL logfile created on: 5/16/2011 17:32:44 - Run 1
OTL by OldTimer - Version 3.2.22.3     Folder = C:\Users\Greg\Downloads
 Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 67.00% Memory free
6.00 Gb Paging File | 5.00 Gb Available in Paging File | 81.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 134.63 Gb Total Space | 59.97 Gb Free Space | 44.55% Space Free | Partition Type: NTFS
Drive D: | 12.46 Gb Total Space | 12.30 Gb Free Space | 98.72% Space Free | Partition Type: NTFS
 
Computer Name: GREG-PC | User Name: Greg | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2011/05/16 15:34:29 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Greg\Downloads\OTL.exe
PRC - [2011/04/28 03:42:50 | 000,140,952 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.3.21.53\GoogleCrashHandler.exe
PRC - [2011/04/19 22:56:48 | 000,234,792 | ---- | M] (CyberLink Corp.) -- C:\Program Files\CyberLink\PowerDVD11\PDVD11Serv.exe
PRC - [2011/04/19 22:56:47 | 000,083,240 | ---- | M] () -- C:\Program Files\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe
PRC - [2011/04/16 19:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton 360\Engine\5.1.0.29\ccsvchst.exe
PRC - [2011/03/31 08:37:11 | 000,312,616 | ---- | M] (CyberLink) -- C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSServer.exe
PRC - [2011/03/31 08:37:06 | 000,070,952 | ---- | M] (CyberLink) -- C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe
PRC - [2011/03/28 20:03:32 | 002,219,008 | ---- | M] (Dimitri Roozendaal) -- C:\Program Files\SliderDock\SliderDock.exe
PRC - [2011/02/04 12:51:18 | 000,066,560 | ---- | M] (Nalpeiron Ltd.) -- C:\Windows\System32\nlssrv32.exe
PRC - [2011/01/12 15:40:18 | 000,196,928 | ---- | M] (Nitro PDF Software) -- C:\Program Files\Nitro PDF\Professional\NitroPDFDriverService.exe
PRC - [2010/11/20 07:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2010/11/20 07:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/11/20 07:16:54 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe
PRC - [2010/10/27 03:37:42 | 015,302,656 | ---- | M] (esySoft) -- C:\Program Files\esyPlanner2\esyPlanner.exe
PRC - [2010/07/04 14:51:26 | 000,017,408 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerAssistant.exe
PRC - [2010/03/10 15:26:48 | 000,189,728 | ---- | M] (Protexis Inc.) -- c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
PRC - [2009/02/28 12:39:04 | 000,516,096 | ---- | M] (Gadwin Systems, Inc) -- C:\Program Files\Gadwin Systems\PrintScreenPro\PrintScreenPro.exe
PRC - [2007/09/02 14:58:52 | 000,495,616 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.exe
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - [2011/05/16 15:34:29 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Greg\Downloads\OTL.exe
MOD - [2010/11/20 06:55:09 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2011/04/19 22:56:47 | 000,083,240 | ---- | M] () [Auto | Running] -- C:\Program Files\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe -- (CLHNServiceForPowerDVD)
SRV - [2011/04/16 19:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) [Unknown | Running] -- C:\Program Files\Norton 360\Engine\5.1.0.29\ccSvcHst.exe -- (N360)
SRV - [2011/03/31 08:37:11 | 000,312,616 | ---- | M] (CyberLink) [Auto | Running] -- C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSServer.exe -- (CyberLink PowerDVD 11.0 Service)
SRV - [2011/03/31 08:37:06 | 000,070,952 | ---- | M] (CyberLink) [Auto | Running] -- C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe -- (CyberLink PowerDVD 11.0 Monitor Service)
SRV - [2011/03/20 00:24:17 | 001,343,400 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2011/02/04 12:51:18 | 000,066,560 | ---- | M] (Nalpeiron Ltd.) [Auto | Running] -- C:\Windows\System32\nlssrv32.exe -- (nlsX86cc)
SRV - [2011/01/12 15:40:18 | 000,196,928 | ---- | M] (Nitro PDF Software) [Auto | Running] -- C:\Program Files\Nitro PDF\Professional\NitroPDFDriverService.exe -- (NitroDriverReadSpool)
SRV - [2010/03/10 15:26:48 | 000,189,728 | ---- | M] (Protexis Inc.) [Auto | Running] -- c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
SRV - [2010/02/19 14:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009/07/13 20:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/13 20:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/13 20:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2011/05/16 08:07:12 | 000,126,584 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2011/05/16 08:05:57 | 001,393,144 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20110516.002\NAVEX15.SYS -- (NAVEX15)
DRV - [2011/05/16 08:05:57 | 000,374,392 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2011/05/16 08:05:57 | 000,105,592 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2011/05/16 08:05:57 | 000,086,136 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20110516.002\NAVENG.SYS -- (NAVENG)
DRV - [2011/04/30 01:44:12 | 000,802,936 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20110430.001\BHDrvx86.sys -- (BHDrvx86)
DRV - [2011/04/19 22:56:48 | 000,071,664 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Running] -- C:\Program Files\CyberLink\PowerDVD11\Kernel\DMP\ntk_PowerDVD.sys -- (ntk_PowerDVD)
DRV - [2011/04/12 04:16:53 | 000,077,296 | ---- | M] (CyberLink Corp.) [2011/04/30 21:49:06] [Kernel | Auto | Running] -- C:\Program Files\CyberLink\PowerDVD11\Common\NavFilter\000.fcl -- ({329F96B6-DF1E-4328-BFDA-39EA953C1312})
DRV - [2011/03/30 22:00:09 | 000,516,216 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\Drivers\N360\0501000.01D\SRTSP.SYS -- (SRTSP)
DRV - [2011/03/30 22:00:09 | 000,050,168 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\system32\drivers\N360\0501000.01D\SRTSPX.SYS -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV - [2011/03/21 19:39:49 | 000,296,568 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\N360\0501000.01D\SYMNETS.SYS -- (SymNetS)
DRV - [2011/03/14 21:31:23 | 000,744,568 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\system32\drivers\N360\0501000.01D\SYMEFA.SYS -- (SymEFA)
DRV - [2011/03/14 13:58:33 | 000,353,912 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20110513.001\IDSvix86.sys -- (IDSVix86)
DRV - [2011/01/27 01:47:10 | 000,340,088 | ---- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\N360\0501000.01D\SYMDS.SYS -- (SymDS)
DRV - [2010/11/20 07:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\vmbus.sys -- (vmbus)
DRV - [2010/11/20 07:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010/11/20 07:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\storvsc.sys -- (storvsc)
DRV - [2010/11/20 05:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 05:21:14 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010/11/20 04:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010/11/20 04:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010/11/15 20:45:33 | 000,136,312 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\system32\drivers\N360\0501000.01D\Ironx86.SYS -- (SymIRON)
DRV - [2009/07/13 18:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2009/02/24 18:42:14 | 000,116,736 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mcdbus.sys -- (mcdbus)
DRV - [2009/02/10 18:23:02 | 000,082,320 | ---- | M] (EZB Systems, Inc.) [File_System | System | Running] -- C:\Program Files\UltraISO\drivers\ISODrive.sys -- (ISODrive)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://getii.com/unview
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://prodigy.msn.com/?rd=1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = A4 05 05 A2 19 E7 CB 01  [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultengine: "Search-Results"
FF - prefs.js..browser.search.defaultenginename: "Search-Results"
FF - prefs.js..browser.search.order.1: "Search-Results"
FF - prefs.js..browser.search.selectedEngine: "Search-Results"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.com/ig"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.9.1.14019
FF - prefs.js..extensions.enabledItems: {dc572301-7619-498c-a57d-39143191b318}:0.3.8.5
FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:2.0
FF - prefs.js..extensions.enabledItems: {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}:5.5
FF - prefs.js..extensions.enabledItems: {000a9d1c-beef-4f90-9363-039d445309b8}:0.5.36.0
FF - prefs.js..keyword.URL: "http://websearch.search-results.com/redirect?client=ff&src=kw&tb=GET-SRS&o=16705&locale=en_US&apn_uid=C0532EA7-8359-4A23-97B7-FB82645EAC62&apn_ptnrs=2R&apn_sauid=48287D55-E094-4E27-9AFE-D2F78BE1B1BA&apn_dtid=get004YYMX&q="
 
FF - HKLM\software\mozilla\Firefox\Extensions\\{000a9d1c-beef-4f90-9363-039d445309b8}: C:\Program Files\Google\Google Gears\Firefox\ [2011/03/20 17:37:25 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\IPSFFPlgn\ [2011/05/16 15:03:37 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\coFFPlgn\ [2011/05/16 08:06:11 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox 4.0 Beta 9\components [2011/04/19 21:30:15 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox 4.0 Beta 9\plugins
 
[2011/03/20 00:10:03 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Greg\AppData\Roaming\Mozilla\Extensions
[2011/05/10 22:59:27 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Greg\AppData\Roaming\Mozilla\Firefox\Profiles\nwk9cnt2.default\extensions
[2011/05/10 22:59:27 | 000,000,000 | ---D | M] (Open With Photoshop) -- C:\Users\Greg\AppData\Roaming\Mozilla\Firefox\Profiles\nwk9cnt2.default\extensions\{f3f219f9-cbce-467e-b8fe-6e076d29665c}
[2011/03/20 23:35:16 | 000,003,295 | ---- | M] () -- C:\Users\Greg\AppData\Roaming\Mozilla\Firefox\Profiles\nwk9cnt2.default\searchplugins\search-results.xml
File not found (No name found) -- 
[2011/03/28 16:46:51 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES\MOZILLA FIREFOX 4.0 BETA 9\EXTENSIONS\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011/03/29 08:19:42 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES\MOZILLA FIREFOX 4.0 BETA 9\EXTENSIONS\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011/05/16 08:06:11 | 000,000,000 | ---D | M] (Norton Toolbar) -- C:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\COFFPLGN
[2011/05/16 15:03:37 | 000,000,000 | ---D | M] (Symantec IPS) -- C:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\IPSFFPLGN
() (No name found) -- C:\USERS\GREG\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\NWK9CNT2.DEFAULT\EXTENSIONS\{64161300-E22B-11DB-8314-0800200C9A66}.XPI
() (No name found) -- C:\USERS\GREG\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\NWK9CNT2.DEFAULT\EXTENSIONS\{DC572301-7619-498C-A57D-39143191B318}.XPI
 
O1 HOSTS File: ([2010/04/30 14:56:09 | 000,001,798 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1				activate.adobe.com
O1 - Hosts: 127.0.0.1				practivate.adobe.com
O1 - Hosts: 127.0.0.1				ereg.adobe.com
O1 - Hosts: 127.0.0.1				activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1				wip3.adobe.com
O1 - Hosts: 127.0.0.1				3dns-3.adobe.com
O1 - Hosts: 127.0.0.1				3dns-2.adobe.com
O1 - Hosts: 127.0.0.1				adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1				adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1				adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1				ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1				activate-sea.adobe.com
O1 - Hosts: 127.0.0.1				wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1				activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1                               adobe.activate.com
O1 - Hosts: 127.0.0.1                               adobeereg.com                        
O1 - Hosts: 127.0.0.1                               www.adobeereg.com                    
O1 - Hosts: 127.0.0.1                               wwis-dubc1-vip60.adobe.com           
O1 - Hosts: 127.0.0.1                               125.252.224.90                       
O1 - Hosts: 127.0.0.1                               125.252.224.91
O1 - Hosts: 127.0.0.1                               hl2rcv.adobe.com
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton 360\Engine\5.1.0.29\coieplg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton 360\Engine\5.1.0.29\ips\ipsbho.dll (Symantec Corporation)
O2 - BHO: (Google Gears Helper) - {E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\5.1.0.29\coieplg.dll (Symantec Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [RemoteControl11] C:\Program Files\CyberLink\PowerDVD11\PDVD11Serv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [UnlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe ()
O4 - HKCU..\Run: [ares] C:\Program Files\Ares\Ares.exe (Ares Development Group)
O4 - HKCU..\Run: [esyPlanner.exe] C:\Program Files\esyPlanner2\esyPlanner.exe (esySoft)
O4 - HKCU..\Run: [Gadwin PrintScreen Pro] C:\Program Files\Gadwin Systems\PrintScreenPro\PrintScreenPro.exe (Gadwin Systems, Inc)
O4 - HKCU..\Run: [RocketDock] C:\Program Files\RocketDock\RocketDock.exe ()
O4 - HKCU..\Run: [SliderDock] C:\Program Files\SliderDock\SliderDock.exe (Dimitri Roozendaal)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O9 - Extra 'Tools' menuitem : &Gears Settings - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll (Google Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 200.79.231.5 200.79.231.6
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O22 - SharedTaskScheduler: {1984DD45-52CF-49cd-AB77-18F378FEA264} - FencesShellExt - C:\Program Files\Stardock\Fences\FencesMenu.dll (Stardock)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 16:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\G\Shell - "" = AutoRun
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2011/05/16 16:53:49 | 000,000,000 | ---D | C] -- C:\Users\Greg\Desktop\Anti_V stuff
[2011/05/16 16:22:45 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Roaming\Malwarebytes
[2011/05/16 16:22:29 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/05/16 16:22:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/05/16 16:22:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/05/16 16:22:25 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/05/16 16:22:25 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/05/16 14:59:33 | 006,663,680 | ---- | C] (Hazar & Co.) -- C:\Users\Greg\Documents\RemoveWAT.exe
[2011/05/16 12:58:59 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\{C92A6B78-D6DC-4D2B-A62C-4A6853F2FCD4}
[2011/05/16 08:06:59 | 000,744,568 | ---- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0501000.01D\symefa.sys
[2011/05/16 08:06:59 | 000,340,088 | ---- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0501000.01D\symds.sys
[2011/05/16 08:06:59 | 000,296,568 | ---- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0501000.01D\symnets.sys
[2011/05/16 08:06:59 | 000,050,168 | ---- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0501000.01D\srtspx.sys
[2011/05/16 08:06:58 | 000,516,216 | ---- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0501000.01D\srtsp.sys
[2011/05/16 08:06:58 | 000,136,312 | R--- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0501000.01D\ironx86.sys
[2011/05/16 08:06:11 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\N360\0501000.01D
[2011/05/16 00:33:43 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2011/05/15 23:50:40 | 000,126,584 | ---- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\SYMEVENT.SYS
[2011/05/15 23:50:40 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
[2011/05/15 23:50:40 | 000,000,000 | ---D | C] -- C:\Program Files\Symantec
[2011/05/15 23:48:57 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\N360
[2011/05/15 23:48:37 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton 360
[2011/05/15 23:48:37 | 000,000,000 | ---D | C] -- C:\Program Files\Norton 360
[2011/05/15 23:47:12 | 000,000,000 | ---D | C] -- C:\Program Files\NortonInstaller
[2011/05/15 18:41:58 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\{7A852F09-64B8-40FB-B229-0D3B7896095F}
[2011/05/15 02:27:56 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\{8A97FDC2-28F2-4C4A-806D-7FBB1ED7D73C}
[2011/05/14 20:53:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Buzan's iMindMap V4.1
[2011/05/14 19:13:02 | 000,000,000 | ---D | C] -- C:\Users\Greg\Documents\My iMindMap Files
[2011/05/14 19:12:11 | 000,000,000 | ---D | C] -- C:\ProgramData\BOL
[2011/05/14 19:12:11 | 000,000,000 | ---D | C] -- C:\Users\Greg\.imindmap
[2011/05/14 19:03:02 | 000,000,000 | ---D | C] -- C:\Program Files\Buzan Online
[2011/05/14 11:58:23 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\{36451172-6815-465E-9CD8-56A85D980BBE}
[2011/05/14 06:00:33 | 000,000,000 | ---D | C] -- C:\Users\Greg\Desktop\O3 med stuff
[2011/05/14 05:50:45 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\Bump Technologies, Inc
[2011/05/14 05:49:59 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Roaming\Bump Technologies, Inc
[2011/05/14 05:46:38 | 000,000,000 | ---D | C] -- C:\Windows\System32\directx
[2011/05/14 05:46:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BumpTop
[2011/05/14 05:46:13 | 000,000,000 | ---D | C] -- C:\Program Files\BumpTop
[2011/05/14 04:50:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Downloader
[2011/05/14 04:50:37 | 000,000,000 | ---D | C] -- C:\Program Files\YouTube Downloader
[2011/05/14 01:53:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Alien Skin
[2011/05/13 21:23:07 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
[2011/05/13 21:23:07 | 000,000,000 | ---D | C] -- C:\Program Files\Unlocker
[2011/05/13 20:45:16 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\{C180CEFB-3E6E-42F2-B533-86A8E5C5A6D1}
[2011/05/13 19:46:08 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\{D6A0EAF0-68B7-48C1-B175-A87E3FF46686}
[2011/05/12 13:00:37 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\{C1A2217E-8234-42E4-B666-B0A90A5D0176}
[2011/05/12 00:39:11 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\{30E0C390-0533-4D1B-A346-F91E2BEAAE50}
[2011/05/11 12:05:51 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\{184F5EDE-EB38-43A5-9F58-0B808A07C231}
[2011/05/10 23:53:43 | 000,000,000 | ---D | C] -- C:\Program Files\FITS Liberator
[2011/05/10 23:51:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Typefacer
[2011/05/10 23:51:09 | 000,000,000 | ---D | C] -- C:\Cybia
[2011/05/10 19:49:39 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\SliderDock
[2011/05/10 19:49:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SliderDock
[2011/05/10 19:49:23 | 000,000,000 | ---D | C] -- C:\Program Files\SliderDock
[2011/05/10 17:23:21 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Roaming\XWindows Dock
[2011/05/10 17:23:15 | 000,000,000 | ---D | C] -- C:\Program Files\XWindows Dock
[2011/05/10 14:41:14 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\{7C4F3554-83B6-44FE-A2FF-8932D8110755}
[2011/05/09 14:38:44 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\{300549EA-39B1-4829-93DE-819160857A54}
[2011/05/08 17:23:32 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\CyberLink
[2011/05/08 16:34:41 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Roaming\Real
[2011/05/08 16:34:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Convert X to DVD
[2011/05/08 16:34:06 | 000,000,000 | ---D | C] -- C:\Program Files\Convert X to DVD
[2011/05/08 16:07:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO
[2011/05/08 16:06:52 | 000,626,688 | ---- | C] (On2.com) -- C:\Windows\System32\vp7vfw.dll
[2011/05/08 16:06:49 | 000,000,000 | ---D | C] -- C:\Program Files\VSO
[2011/05/08 15:45:25 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\{0746549B-9E80-472E-A401-14768B969C43}
[2011/05/08 00:37:01 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\{2B63AA5B-2EA8-4E11-8007-B8EF5FF01319}
[2011/05/07 07:16:16 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\{D99AAAD5-DDE9-49D1-BFDD-4984406C5F62}
[2011/05/06 09:32:52 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\{5EC782D1-B35F-4A83-A07F-DCF8C6E4DB52}
[2011/05/06 07:56:25 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\texturemate.com
[2011/05/06 07:54:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\abrMate
[2011/05/06 07:54:57 | 000,000,000 | ---D | C] -- C:\Program Files\abrMate
[2011/05/06 01:14:19 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\{D09257C2-62F1-4E59-BA86-965C43FC83C5}
[2011/05/05 14:40:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2011/05/05 14:38:24 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011/05/05 14:38:22 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011/05/05 14:32:57 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2011/05/05 08:30:16 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\{3502343C-291F-493B-8EF0-797DE79F998E}
[2011/05/04 13:58:16 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\{99E8455F-E920-4F4C-9DFC-2F3BE067EC60}
[2011/05/04 03:06:20 | 000,000,000 | ---D | C] -- C:\Windows\System32\SPReview
[2011/05/04 03:05:37 | 000,000,000 | ---D | C] -- C:\Windows\System32\EventProviders
[2011/05/04 01:40:49 | 000,093,696 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\System32\fms.dll
[2011/04/30 22:56:01 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2011/04/30 21:52:34 | 000,000,000 | ---D | C] -- C:\Users\Greg\Documents\CyberLink
[2011/04/30 21:51:54 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Roaming\CyberLink
[2011/04/30 21:50:53 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\CyberLink
[2011/04/30 21:49:33 | 000,000,000 | ---D | C] -- C:\ProgramData\PDVD
[2011/04/30 21:49:02 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 11
[2011/04/30 21:48:50 | 000,000,000 | ---D | C] -- C:\ProgramData\CyberLink
[2011/04/30 21:48:49 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\MediaServer
[2011/04/30 21:46:04 | 000,000,000 | ---D | C] -- C:\Program Files\CyberLink
[2011/04/30 21:43:37 | 000,000,000 | ---D | C] -- C:\ProgramData\install_clap
[2011/04/26 19:38:06 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2011/04/26 14:37:29 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\Symantec
[2011/04/26 10:30:15 | 000,000,000 | ---D | C] -- C:\ProgramData\ALM
[2011/04/26 02:35:18 | 000,066,560 | ---- | C] (Nalpeiron Ltd.) -- C:\Windows\System32\nlssrv32.exe
[2011/04/24 21:25:07 | 000,000,000 | ---D | C] -- C:\Users\Greg\Documents\AA My Graphic Designs
[2011/04/24 10:56:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TreePad X Enterprise
[2011/04/24 10:56:28 | 000,000,000 | ---D | C] -- C:\Program Files\TreePadXSU
[2011/04/24 02:23:27 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Roaming\ChaosPro
[2011/04/24 02:22:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ChaosPro 4.0
[2011/04/24 02:22:12 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Roaming\ChaosPro 4.0
[2011/04/24 02:22:12 | 000,000,000 | ---D | C] -- C:\Program Files\ChaosPro 4.0
[2011/04/23 04:02:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\INCENDIA
[2011/04/23 04:01:49 | 000,000,000 | ---D | C] -- C:\Users\Greg\Documents\INCENDIA
[2011/04/23 04:01:49 | 000,000,000 | ---D | C] -- C:\Program Files\INCENDIA
[2011/04/22 22:08:50 | 000,000,000 | ---D | C] -- C:\Users\Greg\Documents\Saved PH.SH
[2011/04/22 16:24:18 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Roaming\Fractice
[2011/04/22 15:21:05 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Roaming\PersonalBrain
[2011/04/22 15:21:05 | 000,000,000 | ---D | C] -- C:\ProgramData\PersonalBrain
[2011/04/22 10:37:30 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Local\Cybia
[2011/04/21 22:40:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Works
[2011/04/21 22:31:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Plugin Site
[2011/04/21 22:31:18 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Roaming\ThePluginSite
[2011/04/21 22:31:18 | 000,000,000 | ---D | C] -- C:\Program Files\ThePluginSite
[2011/04/21 13:45:39 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Roaming\Adobe Mini Bridge CS5
[2011/04/21 09:08:07 | 000,000,000 | ---D | C] -- C:\Users\Greg\Documents\Ultra Fractal 5
[2011/04/21 09:08:07 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Roaming\Ultra Fractal 5
[2011/04/21 09:08:07 | 000,000,000 | ---D | C] -- C:\Program Files\Ultra Fractal 5
[2011/04/18 11:04:25 | 000,000,000 | ---D | C] -- C:\Program Files\Alien Skin
[2011/04/18 09:18:36 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Roaming\OtakuSoftware
[2011/04/18 09:18:14 | 000,000,000 | ---D | C] -- C:\Program Files\DeskSpace
[2011/04/18 00:18:11 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Roaming\onOne Software
[2011/04/17 19:25:29 | 000,227,840 | ---- | C] (Iterated Systems, Inc.) -- C:\Windows\System32\Deco_32.dll
[2011/04/17 19:25:07 | 000,000,000 | ---D | C] -- C:\ProgramData\onOne Software
[2011/04/17 18:15:03 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Roaming\Mask Pro 4.0
[2011/04/17 17:59:16 | 000,000,000 | ---D | C] -- C:\Program Files\onOne Software
[2011/04/17 17:59:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\onOne Software
[2011/04/17 17:43:11 | 000,000,000 | ---D | C] -- C:\Users\Greg\AppData\Roaming\Tific
[2011/04/17 09:17:03 | 000,923,136 | ---- | C] (AccuSoft Corporation) -- C:\Windows\Gear32sd.dll
[2011/04/17 09:02:07 | 000,000,000 | ---D | C] -- C:\Windows\System32\appmgmt
[2011/03/25 14:24:45 | 000,047,360 | ---- | C] (VSO Software) -- C:\Users\Greg\AppData\Roaming\pcouffin.sys
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2011/05/16 17:37:00 | 000,000,904 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3374795609-4084869356-3756736625-1001UA.job
[2011/05/16 17:24:01 | 000,001,417 | ---- | M] () -- C:\Users\Greg\Desktop\LSPFix - Shortcut.lnk
[2011/05/16 17:14:11 | 000,001,382 | ---- | M] () -- C:\Users\Greg\Desktop\OTL - Shortcut.lnk
[2011/05/16 17:09:00 | 000,000,310 | ---- | M] () -- C:\Windows\tasks\GlaryInitialize.job
[2011/05/16 17:08:56 | 000,000,878 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/05/16 17:08:24 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/05/16 17:08:19 | 2608,631,808 | -HS- | M] () -- C:\hiberfil.sys
[2011/05/16 16:48:00 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/05/16 15:01:54 | 001,197,970 | ---- | M] () -- C:\Windows\System32\drivers\N360\0501000.01D\Cat.DB
[2011/05/16 08:07:13 | 000,007,468 | ---- | M] () -- C:\Windows\System32\drivers\SYMEVENT.CAT
[2011/05/16 08:07:12 | 000,126,584 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\SYMEVENT.SYS
[2011/05/16 08:07:12 | 000,000,806 | ---- | M] () -- C:\Windows\System32\drivers\SYMEVENT.INF
[2011/05/16 00:37:00 | 000,000,852 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3374795609-4084869356-3756736625-1001Core.job
[2011/05/15 23:50:22 | 000,002,442 | ---- | M] () -- C:\Users\Public\Desktop\Norton 360.lnk
[2011/05/15 23:35:43 | 000,010,336 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/05/15 23:35:42 | 000,010,336 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/05/15 22:00:00 | 000,000,374 | ---- | M] () -- C:\Windows\tasks\At2.job
[2011/05/15 22:00:00 | 000,000,374 | ---- | M] () -- C:\Windows\tasks\At1.job
[2011/05/14 20:58:20 | 000,002,175 | ---- | M] () -- C:\Users\Public\Desktop\Buzan's iMindMap V4.lnk
[2011/05/14 05:46:29 | 000,000,956 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BumpTop.lnk
[2011/05/13 20:41:50 | 003,781,736 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/05/13 19:47:29 | 000,122,137 | ---- | M] () -- C:\Users\Greg\Documents\logo1.psd
[2011/05/13 12:12:16 | 000,658,342 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/05/13 12:12:16 | 000,119,408 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/05/11 00:10:19 | 000,003,008 | ---- | M] () -- C:\Windows\Pasteboard.ini
[2011/05/10 19:49:28 | 000,001,052 | ---- | M] () -- C:\Users\Greg\Application Data\Microsoft\Internet Explorer\Quick Launch\SliderDock.lnk
[2011/05/08 20:07:42 | 028,872,725 | ---- | M] () -- C:\Users\Greg\Desktop\Photoshop_CS5_Top_100_Simplified_Tips_and_Tricks.pdf
[2011/05/08 17:44:14 | 001,037,309 | ---- | M] () -- C:\Users\Greg\Desktop\3-PhotoshopCS5NewFeatures.pdf
[2011/05/08 17:18:01 | 000,000,156 | ---- | M] () -- C:\Users\Greg\AppData\Roaming\burnaware.ini
[2011/05/08 17:06:40 | 000,001,057 | ---- | M] () -- C:\Users\Greg\AppData\Roaming\vso_ts_preview.xml
[2011/05/08 16:36:00 | 000,001,217 | ---- | M] () -- C:\Users\Greg\Application Data\Microsoft\Internet Explorer\Quick Launch\ConvertXtoDVD 4.lnk
[2011/05/08 16:07:15 | 000,087,608 | ---- | M] () -- C:\Users\Greg\AppData\Roaming\inst.exe
[2011/05/08 16:07:15 | 000,047,360 | ---- | M] (VSO Software) -- C:\Users\Greg\AppData\Roaming\pcouffin.sys
[2011/05/08 16:07:15 | 000,007,887 | ---- | M] () -- C:\Users\Greg\AppData\Roaming\pcouffin.cat
[2011/05/08 16:07:15 | 000,001,144 | ---- | M] () -- C:\Users\Greg\AppData\Roaming\pcouffin.inf
[2011/05/04 16:18:59 | 000,092,340 | ---- | M] () -- C:\Users\Greg\Desktop\Ozone_Calculation_Reference_Data_Oxygen_Flow_Gas.pdf
[2011/04/30 21:24:28 | 000,000,056 | -H-- | M] () -- C:\Windows\System32\ezsidmv.dat
[2011/04/30 17:52:01 | 000,200,912 | -H-- | M] () -- C:\Windows\System32\mlfcache.dat
[2011/04/28 23:05:32 | 000,000,172 | ---- | M] () -- C:\Windows\System32\drivers\N360\0501000.01D\isolate.ini
[2011/04/26 03:22:28 | 000,000,011 | ---- | M] () -- C:\Windows\3DShadow.INI
[2011/04/20 14:42:16 | 000,166,134 | ---- | M] () -- C:\Users\Greg\Desktop\light spectrum.bmp
[2011/04/19 21:30:25 | 000,002,105 | ---- | M] () -- C:\Users\Greg\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox 4.0 Beta 9.lnk
[2011/04/17 17:59:16 | 000,000,120 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Register Mask Pro 3.0.lnk
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2011/05/16 17:24:01 | 000,001,417 | ---- | C] () -- C:\Users\Greg\Desktop\LSPFix - Shortcut.lnk
[2011/05/16 17:14:11 | 000,001,382 | ---- | C] () -- C:\Users\Greg\Desktop\OTL - Shortcut.lnk
[2011/05/16 15:01:31 | 001,197,970 | ---- | C] () -- C:\Windows\System32\drivers\N360\0501000.01D\Cat.DB
[2011/05/16 08:06:59 | 000,007,458 | ---- | C] () -- C:\Windows\System32\drivers\N360\0501000.01D\symnet.cat
[2011/05/16 08:06:59 | 000,007,456 | ---- | C] () -- C:\Windows\System32\drivers\N360\0501000.01D\symefa.cat
[2011/05/16 08:06:59 | 000,003,373 | ---- | C] () -- C:\Windows\System32\drivers\N360\0501000.01D\symefa.inf
[2011/05/16 08:06:59 | 000,002,792 | ---- | C] () -- C:\Windows\System32\drivers\N360\0501000.01D\symds.inf
[2011/05/16 08:06:59 | 000,001,446 | ---- | C] () -- C:\Windows\System32\drivers\N360\0501000.01D\symnet.inf
[2011/05/16 08:06:58 | 000,007,528 | R--- | C] () -- C:\Windows\System32\drivers\N360\0501000.01D\iron.cat
[2011/05/16 08:06:58 | 000,007,454 | ---- | C] () -- C:\Windows\System32\drivers\N360\0501000.01D\srtspx.cat
[2011/05/16 08:06:58 | 000,007,450 | ---- | C] () -- C:\Windows\System32\drivers\N360\0501000.01D\srtsp.cat
[2011/05/16 08:06:58 | 000,001,389 | ---- | C] () -- C:\Windows\System32\drivers\N360\0501000.01D\srtspx.inf
[2011/05/16 08:06:58 | 000,001,383 | ---- | C] () -- C:\Windows\System32\drivers\N360\0501000.01D\srtsp.inf
[2011/05/16 08:06:58 | 000,000,742 | R--- | C] () -- C:\Windows\System32\drivers\N360\0501000.01D\iron.inf
[2011/05/16 08:06:17 | 000,000,000 | ---- | C] () -- C:\Windows\System32\drivers\N360\0501000.01D\symds.cat
[2011/05/16 08:06:11 | 000,000,172 | ---- | C] () -- C:\Windows\System32\drivers\N360\0501000.01D\isolate.ini
[2011/05/16 00:32:45 | 000,000,904 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3374795609-4084869356-3756736625-1001UA.job
[2011/05/16 00:32:44 | 000,000,852 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3374795609-4084869356-3756736625-1001Core.job
[2011/05/15 23:50:41 | 000,007,468 | ---- | C] () -- C:\Windows\System32\drivers\SYMEVENT.CAT
[2011/05/15 23:50:41 | 000,000,806 | ---- | C] () -- C:\Windows\System32\drivers\SYMEVENT.INF
[2011/05/15 23:50:22 | 000,002,442 | ---- | C] () -- C:\Users\Public\Desktop\Norton 360.lnk
[2011/05/14 20:58:20 | 000,002,175 | ---- | C] () -- C:\Users\Public\Desktop\Buzan's iMindMap V4.lnk
[2011/05/14 18:58:07 | 000,000,374 | ---- | C] () -- C:\Windows\tasks\At2.job
[2011/05/14 18:56:50 | 000,000,374 | ---- | C] () -- C:\Windows\tasks\At1.job
[2011/05/14 05:46:29 | 000,000,956 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BumpTop.lnk
[2011/05/13 19:47:29 | 000,122,137 | ---- | C] () -- C:\Users\Greg\Documents\logo1.psd
[2011/05/10 23:57:41 | 000,003,008 | ---- | C] () -- C:\Windows\Pasteboard.ini
[2011/05/10 19:49:28 | 000,001,052 | ---- | C] () -- C:\Users\Greg\Application Data\Microsoft\Internet Explorer\Quick Launch\SliderDock.lnk
[2011/05/08 20:07:36 | 028,872,725 | ---- | C] () -- C:\Users\Greg\Desktop\Photoshop_CS5_Top_100_Simplified_Tips_and_Tricks.pdf
[2011/05/08 17:44:13 | 001,037,309 | ---- | C] () -- C:\Users\Greg\Desktop\3-PhotoshopCS5NewFeatures.pdf
[2011/05/08 16:07:11 | 000,001,217 | ---- | C] () -- C:\Users\Greg\Application Data\Microsoft\Internet Explorer\Quick Launch\ConvertXtoDVD 4.lnk
[2011/05/04 16:18:58 | 000,092,340 | ---- | C] () -- C:\Users\Greg\Desktop\Ozone_Calculation_Reference_Data_Oxygen_Flow_Gas.pdf
[2011/05/04 01:44:34 | 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe
[2011/05/04 01:43:25 | 000,146,852 | ---- | C] () -- C:\Windows\System32\systemsf.ebd
[2011/05/04 01:40:23 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2011/05/04 01:40:17 | 000,010,429 | ---- | C] () -- C:\Windows\System32\ScavengeSpace.xml
[2011/05/04 01:40:01 | 000,105,559 | ---- | C] () -- C:\Windows\System32\RacRules.xml
[2011/04/30 21:24:28 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2011/04/30 17:52:01 | 000,200,912 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat
[2011/04/26 03:22:28 | 000,000,011 | ---- | C] () -- C:\Windows\3DShadow.INI
[2011/04/21 09:08:08 | 000,001,924 | ---- | C] () -- C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ultra Fractal 5.03.lnk
[2011/04/20 14:42:16 | 000,166,134 | ---- | C] () -- C:\Users\Greg\Desktop\light spectrum.bmp
[2011/04/17 17:59:16 | 000,000,120 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Register Mask Pro 3.0.lnk
[2011/04/17 09:17:03 | 000,890,953 | ---- | C] () -- C:\Windows\Txtis.ini
[2011/04/14 20:00:29 | 000,044,544 | ---- | C] () -- C:\Windows\AWuninstall.exe
[2011/04/09 22:07:23 | 001,278,086 | ---- | C] () -- C:\Windows\XSitePro2 Uninstaller.exe
[2011/04/08 11:48:12 | 000,000,032 | RHS- | C] () -- C:\Users\Greg\AppData\Local\t56.dat
[2011/03/25 14:28:06 | 000,001,057 | ---- | C] () -- C:\Users\Greg\AppData\Roaming\vso_ts_preview.xml
[2011/03/25 14:24:45 | 000,087,608 | ---- | C] () -- C:\Users\Greg\AppData\Roaming\inst.exe
[2011/03/25 14:24:45 | 000,007,887 | ---- | C] () -- C:\Users\Greg\AppData\Roaming\pcouffin.cat
[2011/03/25 14:24:45 | 000,001,144 | ---- | C] () -- C:\Users\Greg\AppData\Roaming\pcouffin.inf
[2011/03/25 11:05:04 | 000,000,156 | ---- | C] () -- C:\Users\Greg\AppData\Roaming\burnaware.ini
[2011/03/24 11:17:21 | 000,007,168 | ---- | C] () -- C:\Users\Greg\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/09/23 20:16:08 | 002,050,952 | ---- | C] () -- C:\Windows\System32\igkrng400.bin
[2009/09/16 19:27:58 | 000,508,224 | ---- | C] () -- C:\Windows\System32\ICCProfiles.dll
[2009/07/13 23:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/13 23:33:53 | 003,781,736 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/07/13 21:05:48 | 000,658,342 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009/07/13 21:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009/07/13 21:05:48 | 000,119,408 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009/07/13 21:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009/07/13 21:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009/07/13 21:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009/07/13 18:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/13 18:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/13 18:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/06/10 16:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2007/04/27 11:43:58 | 000,120,200 | ---- | C] () -- C:\Windows\System32\DLLDEV32i.dll
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2011/05/14 01:47:20 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\Alien Skin
[2011/04/14 22:48:53 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\ATViewer
[2011/04/08 11:48:11 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\Axure
[2011/05/14 20:47:56 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\Azureus
[2011/05/14 05:49:59 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\Bump Technologies, Inc
[2011/04/24 02:23:27 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\ChaosPro
[2011/04/25 09:22:22 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\ChaosPro 4.0
[2011/03/24 17:51:34 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2011/03/20 13:24:26 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\Downloaded Installations
[2011/03/27 23:35:29 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\Efficient Calendar Free
[2011/04/02 08:31:41 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\EssentialPIM
[2011/03/28 09:36:25 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\EssentialPIM Pro
[2011/04/22 16:24:18 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\Fractice
[2011/04/12 13:30:53 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\FrostWire
[2011/03/26 08:13:33 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\GlarySoft
[2011/03/20 18:00:28 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\ImTOO
[2011/04/14 22:48:54 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\IrfanView
[2011/03/20 12:58:15 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\MAGIX
[2011/04/17 18:17:50 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\Mask Pro 4.0
[2011/04/23 11:02:38 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\mehdiplugins
[2011/03/27 20:33:27 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\MSD_Soft
[2011/04/30 14:05:49 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\Nitro PDF
[2011/04/27 16:15:21 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\onOne Software
[2011/04/18 09:18:36 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\OtakuSoftware
[2011/04/26 20:09:17 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\PersonalBrain
[2011/03/20 01:20:57 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\Quark
[2011/03/21 23:37:49 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\robertnyman.gmdesk.D5F5507284D8257BC26108689093DFA1D0D2BABB.1
[2011/03/20 01:20:14 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\Scribus
[2011/04/08 20:14:05 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2011/03/20 01:17:13 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\Stardock
[2011/04/21 22:31:18 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\ThePluginSite
[2011/04/17 17:43:11 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\Tific
[2011/04/21 09:13:17 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\Ultra Fractal 5
[2011/05/08 17:06:41 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\Vso
[2011/04/07 12:26:21 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\Windows Live Writer
[2011/03/30 13:54:16 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\Wings3D
[2011/03/27 22:55:21 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\WinPIM
[2011/05/13 00:20:54 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\XWindows Dock
[2011/05/15 22:00:00 | 000,000,374 | ---- | M] () -- C:\Windows\Tasks\At1.job
[2011/05/15 22:00:00 | 000,000,374 | ---- | M] () -- C:\Windows\Tasks\At2.job
[2011/05/16 17:09:00 | 000,000,310 | ---- | M] () -- C:\Windows\Tasks\GlaryInitialize.job
[2009/07/13 23:53:46 | 000,018,628 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
 
[color=#E56717]========== Purity Check ==========[/color]
 
 

< End of report >