OTL logfile created on: 3/9/2012 10:32:32 AM - Run 5
OTL by OldTimer - Version 3.2.35.1     Folder = C:\Users\Melinda\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: Australia | Language: ENA | Date Format: d/MM/yyyy
 
3.86 Gb Total Physical Memory | 2.36 Gb Available Physical Memory | 61.22% Memory free
7.71 Gb Paging File | 6.06 Gb Available in Paging File | 78.67% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 452.38 Gb Total Space | 382.24 Gb Free Space | 84.49% Space Free | Partition Type: NTFS
Drive D: | 13.08 Gb Total Space | 1.73 Gb Free Space | 13.23% Space Free | Partition Type: NTFS
Drive G: | 21.46 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
 
Computer Name: MELINDA-HP | User Name: Melinda | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - C:\Users\Melinda\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\10.0.6\ToolbarUpdater.exe ()
PRC - C:\Program Files (x86)\AVG Secure Search\vprot.exe ()
PRC - C:\Program Files (x86)\Optus Mobile Broadband\Optus Mobile Broadband.exe ()
PRC - C:\Program Files (x86)\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files (x86)\AVG\AVG2012\avgfws.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files (x86)\AVG\AVG PC Tuneup\BoostSpeed.exe (AVG)
PRC - C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Security Task Manager\SpyProtector.exe (Neuber Software - www.neuber.com)
PRC - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
PRC - C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe (Brother Industries, Ltd.)
PRC - C:\Program Files (x86)\Browny02\BrYNSvc.exe (Brother Industries, Ltd.)
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - C:\Program Files (x86)\AVG Secure Search\vprot.exe ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\6c51e152e7404188914c9fa4d8503ff9\System.Windows.Forms.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\ab87129c2b603f218e4aa5300c9b1bdd\System.Drawing.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\9866d1f6178e1cde25642f1ac293ff8d\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\e620323cacb5b6bfd93fd28d263440e4\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\faf4e8730ecbd07570111bb7c3b20565\System.ni.dll ()
MOD - C:\Program Files (x86)\Optus Mobile Broadband\Optus Mobile Broadband.exe ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\31fce331fded94dd06627603f6fe4562\Accessibility.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\a1a82db68b3badc7c27ea1f6579d22c5\mscorlib.ni.dll ()
MOD - C:\Program Files (x86)\AVG\AVG PC Tuneup\madExcept_.bpl ()
MOD - C:\Program Files (x86)\AVG\AVG PC Tuneup\madBasic_.bpl ()
MOD - C:\Program Files (x86)\AVG\AVG PC Tuneup\madDisAsm_.bpl ()
MOD - C:\Program Files (x86)\Optus Mobile Broadband\SMSPlugin.dll ()
MOD - C:\Program Files (x86)\Optus Mobile Broadband\atcomm.dll ()
MOD - C:\Program Files (x86)\Optus Mobile Broadband\DetectDev.dll ()
MOD - C:\Program Files (x86)\Optus Mobile Broadband\LocaleMgrPlugin.dll ()
MOD - C:\Program Files (x86)\Optus Mobile Broadband\FileManager.dll ()
MOD - C:\Program Files (x86)\Optus Mobile Broadband\DialUpPlugin.dll ()
MOD - C:\Program Files (x86)\Optus Mobile Broadband\XCodec.dll ()
MOD - C:\Program Files (x86)\Optus Mobile Broadband\DeviceOperate.dll ()
MOD - C:\Program Files (x86)\Optus Mobile Broadband\ConfigFilePlugin.dll ()
MOD - C:\Program Files (x86)\Optus Mobile Broadband\NotifyServicePlugin.dll ()
MOD - C:\Program Files (x86)\Optus Mobile Broadband\isaputrace.dll ()
MOD - C:\Program Files (x86)\Optus Mobile Broadband\NetInfoPlugin.dll ()
MOD - C:\Program Files (x86)\Optus Mobile Broadband\NDISAPI.dll ()
MOD - C:\Program Files (x86)\Optus Mobile Broadband\DeviceMgrUIPlugin.dll ()
MOD - C:\Program Files (x86)\Optus Mobile Broadband\DeviceMgrPlugin.dll ()
MOD - C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll ()
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV:[b]64bit:[/b] - (wlcrasvc) -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (HPClientSvc) -- C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe (Hewlett-Packard Company)
SRV:[b]64bit:[/b] - (AERTFilters) -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe (Andrea Electronics Corporation)
SRV:[b]64bit:[/b] - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (vToolbarUpdater) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\10.0.6\ToolbarUpdater.exe ()
SRV - (IconMan_R) -- C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (Realsil Microelectronics Inc.)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (avgfws) -- C:\Program Files (x86)\AVG\AVG2012\avgfws.exe (AVG Technologies CZ, s.r.o.)
SRV - (AVGIDSAgent) -- C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe (AVG Technologies CZ, s.r.o.)
SRV - (sftvsa) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
SRV - (sftlist) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
SRV - (avgwd) -- C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
SRV - (UNS) Intel(R) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
SRV - (LMS) Intel(R) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
SRV - (WAS) -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll (Microsoft Corporation)
SRV - (W3SVC) -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll (Microsoft Corporation)
SRV - (AppHostSvc) -- C:\Windows\SysWOW64\inetsrv\apphostsvc.dll (Microsoft Corporation)
SRV - (GameConsoleService) -- C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe (WildTangent, Inc.)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (ACDaemon) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
SRV - (BrYNSvc) -- C:\Program Files (x86)\Browny02\BrYNSvc.exe (Brother Industries, Ltd.)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV:[b]64bit:[/b] - (RSPCIESTOR) -- C:\Windows\SysNative\drivers\RtsPStor.sys (Realtek Semiconductor Corp.)
DRV:[b]64bit:[/b] - (mbamchameleon) -- C:\Windows\SysNative\drivers\mbamchameleon.sys ()
DRV:[b]64bit:[/b] - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (Avgldx64) -- C:\Windows\SysNative\drivers\avgldx64.sys (AVG Technologies CZ, s.r.o.)
DRV:[b]64bit:[/b] - (Sftvol) -- C:\Windows\SysNative\drivers\Sftvollh.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Sftplay) -- C:\Windows\SysNative\drivers\Sftplaylh.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Sftredir) -- C:\Windows\SysNative\drivers\Sftredirlh.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Sftfs) -- C:\Windows\SysNative\drivers\Sftfslh.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Avgrkx64) -- C:\Windows\SysNative\drivers\avgrkx64.sys (AVG Technologies CZ, s.r.o.)
DRV:[b]64bit:[/b] - (Avgmfx64) -- C:\Windows\SysNative\drivers\avgmfx64.sys (AVG Technologies CZ, s.r.o.)
DRV:[b]64bit:[/b] - (Avgtdia) -- C:\Windows\SysNative\drivers\avgtdia.sys (AVG Technologies CZ, s.r.o.)
DRV:[b]64bit:[/b] - (AVGIDSFilter) -- C:\Windows\SysNative\drivers\AVGIDSFilter.sys (AVG Technologies CZ, s.r.o. )
DRV:[b]64bit:[/b] - (AVGIDSDriver) -- C:\Windows\SysNative\drivers\AVGIDSDriver.sys (AVG Technologies CZ, s.r.o. )
DRV:[b]64bit:[/b] - (AVGIDSEH) -- C:\Windows\SysNative\drivers\AVGIDSEH.sys (AVG Technologies CZ, s.r.o. )
DRV:[b]64bit:[/b] - (RTL8192Ce) -- C:\Windows\SysNative\drivers\rtl8192ce.sys (Realtek Semiconductor Corporation                           )
DRV:[b]64bit:[/b] - (Avgfwfd) -- C:\Windows\SysNative\drivers\avgfwd6a.sys (AVG Technologies CZ, s.r.o.)
DRV:[b]64bit:[/b] - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:[b]64bit:[/b] - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:[b]64bit:[/b] - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek                                            )
DRV:[b]64bit:[/b] - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (MEIx64) Intel(R) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
DRV:[b]64bit:[/b] - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:[b]64bit:[/b] - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (huawei_enumerator) -- C:\Windows\SysNative\drivers\ew_jubusenum.sys (Huawei Technologies Co., Ltd.)
DRV:[b]64bit:[/b] - (ewusbnet) -- C:\Windows\SysNative\drivers\ewusbnet.sys (Huawei Technologies Co., Ltd.)
DRV:[b]64bit:[/b] - (hwdatacard) -- C:\Windows\SysNative\drivers\ewusbmdm.sys (Huawei Technologies Co., Ltd.)
DRV:[b]64bit:[/b] - (ew_hwusbdev) -- C:\Windows\SysNative\drivers\ew_hwusbdev.sys (Huawei Technologies Co., Ltd.)
DRV:[b]64bit:[/b] - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:[b]64bit:[/b] - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:[b]64bit:[/b] - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:[b]64bit:[/b] - (SrvHsfV92) -- C:\Windows\SysNative\drivers\VSTDPV6.SYS (Conexant Systems, Inc.)
DRV:[b]64bit:[/b] - (SrvHsfWinac) -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS (Conexant Systems, Inc.)
DRV:[b]64bit:[/b] - (SrvHsfHDA) -- C:\Windows\SysNative\drivers\VSTAZL6.SYS (Conexant Systems, Inc.)
DRV:[b]64bit:[/b] - (NVENETFD) -- C:\Windows\SysNative\drivers\nvm62x64.sys (NVIDIA Corporation)
DRV:[b]64bit:[/b] - (BCM43XX) -- C:\Windows\SysNative\drivers\BCMWL664.SYS (Broadcom Corporation)
DRV:[b]64bit:[/b] - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:[b]64bit:[/b] - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:[b]64bit:[/b] - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:[b]64bit:[/b] - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV - (DrvAgent64) -- C:\Windows\SysWOW64\drivers\DrvAgent64.SYS (Phoenix Technologies)
DRV - (dfg) -- C:\Windows\SysWOW64\drivers\dfg.sys (defrag Development Team)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.jp.msn.com/CQALL/13
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {ec29edf6-ad3c-4e1c-a087-d6cb81400c43}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: "URL" = http://eu.ask.com/web?q={searchterms}&l=dis&o=CPNTDF
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://au.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=CPNTDF
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}: "URL" = http://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.com/rover/1/5221-111072-7833-3/4?mpre=http://shop.ebay.com/?_nkw={searchTerms}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{ec29edf6-ad3c-4e1c-a087-d6cb81400c43}: "URL" = http://www.bing.com/search?q={searchTerms}&form=CPNTDF&pc=CPNTDF&src=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKLM\..\SearchScopes,DefaultScope = {ec29edf6-ad3c-4e1c-a087-d6cb81400c43}
IE - HKLM\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: "URL" = http://eu.ask.com/web?q={searchterms}&l=dis&o=CPNTDF
IE - HKLM\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://au.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=CPNTDF
IE - HKLM\..\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}: "URL" = http://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
IE - HKLM\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.com/rover/1/5221-111072-7833-3/4?mpre=http://shop.ebay.com/?_nkw={searchTerms}
IE - HKLM\..\SearchScopes\{ec29edf6-ad3c-4e1c-a087-d6cb81400c43}: "URL" = http://www.bing.com/search?q={searchTerms}&form=CPNTDF&pc=CPNTDF&src=IE-SearchBox
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com.au/
IE - HKCU\..\SearchScopes,DefaultScope = {9907022F-A16F-41DD-A63A-755908A97C5E}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}: "URL" = http://blekko.com/?source=c3348dd4&tbp=rbox&toolbarid=blekkotb&u=20120221189944DCBE51EF79251A9F9E&q={searchTerms}
IE - HKCU\..\SearchScopes\{9907022F-A16F-41DD-A63A-755908A97C5E}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files (x86)\AVG\AVG2012\Firefox4\ [2012/02/05 14:38:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\10.0.0.7\ [2012/02/24 13:58:55 | 000,000,000 | ---D | M]
 
[2011/12/28 19:44:29 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2011/12/03 16:38:05 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}
[2011/12/20 14:16:49 | 000,003,747 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\avg-secure-search.xml
 
O1 HOSTS File: ([2012/03/09 00:29:07 | 000,000,098 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: ::1       localhost
O2:[b]64bit:[/b] - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssiea.dll (AVG Technologies CZ, s.r.o.)
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\10.0.0.7\AVG Secure Search_toolbar.dll ()
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\10.0.0.7\AVG Secure Search_toolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found.
O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files (x86)\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [BrStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [ControlCenter3] C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [ROC_roc_dec12] C:\Program Files (x86)\AVG Secure Search\ROC_roc_dec12.exe ()
O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG Secure Search\vprot.exe ()
O4 - HKCU..\Run: [Spy Protector] C:\Program Files (x86)\Security Task Manager\SpyProtector.exe (Neuber Software - www.neuber.com)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 0
O8:[b]64bit:[/b] - Extra context menu item: &ieSpell Options - C:\Program Files (x86)\ieSpell\iespell.dll (Red Egg Software)
O8:[b]64bit:[/b] - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found
O8:[b]64bit:[/b] - Extra context menu item: Check &Spelling - C:\Program Files (x86)\ieSpell\iespell.dll (Red Egg Software)
O8:[b]64bit:[/b] - Extra context menu item: Lookup on Merriam Webster - C:\Program Files (x86)\ieSpell\Merriam Webster.HTM ()
O8:[b]64bit:[/b] - Extra context menu item: Lookup on Wikipedia - C:\Program Files (x86)\ieSpell\wikipedia.HTM ()
O8 - Extra context menu item: &ieSpell Options - C:\Program Files (x86)\ieSpell\iespell.dll (Red Egg Software)
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Check &Spelling - C:\Program Files (x86)\ieSpell\iespell.dll (Red Egg Software)
O8 - Extra context menu item: Lookup on Merriam Webster - C:\Program Files (x86)\ieSpell\Merriam Webster.HTM ()
O8 - Extra context menu item: Lookup on Wikipedia - C:\Program Files (x86)\ieSpell\wikipedia.HTM ()
O9 - Extra Button: ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files (x86)\ieSpell\iespell.dll (Red Egg Software)
O9 - Extra 'Tools' menuitem : ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files (x86)\ieSpell\iespell.dll (Red Egg Software)
O9 - Extra 'Tools' menuitem : ieSpell Options - {1606D6F9-9D3B-4aea-A025-ED5B2FD488E7} - C:\Program Files (x86)\ieSpell\iespell.dll (Red Egg Software)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab (Reg Error: Key error.)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} http://quickscan.bitdefender.com/qsax/qsax.cab (BitDefender QuickScan Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{808E4596-7271-40D6-A6BF-AD9AC7592073}: DhcpNameServer = 139.130.4.4 203.50.2.71
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8A544915-7F61-4BD1-8295-56A667F32833}: NameServer = 198.142.0.51 61.88.88.88
O18:[b]64bit:[/b] - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgppa.dll (AVG Technologies CZ, s.r.o.)
O18:[b]64bit:[/b] - Protocol\Handler\livecall - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\msnim - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\viprotocol - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml - No CLSID value found
O18 - Protocol\Handler\gopher - No CLSID value found
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\10.0.6\ViProtocol.dll ()
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/11/17 11:07:38 | 000,142,336 | R--- | M] () - G:\AutoRun.exe -- [ CDFS ]
O32 - AutoRun File - [2010/06/06 19:02:18 | 000,000,045 | R--- | M] () - G:\AUTORUN.INF -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (C:\PROGRA~2\AVG\AVG2012\avgrsa.exe /sync /restart)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = ComFile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012/03/09 09:53:47 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{C402E922-BA58-474C-9A11-5497398D2ABB}
[2012/03/09 09:53:36 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{F722EFDE-8244-4A62-9795-1BEABE5B2B69}
[2012/03/08 23:44:41 | 005,650,384 | ---- | C] (ZookaWare) -- C:\Users\Melinda\Desktop\RegZooka.exe
[2012/03/08 21:02:40 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{92426E5F-1124-47B0-A326-5A8730AC2AB6}
[2012/03/08 21:02:26 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{57E6E48F-CF5B-4245-949A-21B2CA120AB4}
[2012/03/08 18:53:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
[2012/03/08 09:01:58 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{257FD2D9-35E1-4D46-8E76-EA8C6671FB4A}
[2012/03/08 09:01:47 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{D668B82E-4CEF-4346-87E0-2401AF25A883}
[2012/03/08 09:00:09 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{0811BBBD-47E6-48F1-AF72-034BE9F2A316}
[2012/03/08 08:59:18 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{6A5495FF-F8FE-470D-9B60-C2A129DAF25A}
[2012/03/07 11:39:26 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{CDAF7103-32CF-42B4-965D-9BE02FAFF275}
[2012/03/07 11:39:15 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{55F7CAA0-B28D-4FE4-9CBE-6BC0CAC4C0D4}
[2012/03/06 23:38:47 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{E3470C59-9255-4619-8F80-F6FB9E2BDEE7}
[2012/03/06 23:38:29 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{365B430B-863D-4DB5-A857-D3AA46A05D55}
[2012/03/06 17:40:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MALWAREBYTES ANTI-MALWARE
[2012/03/06 11:38:02 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{FE666845-0C2A-4B8C-8433-77717CC80AC9}
[2012/03/06 11:37:51 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{D257974D-26E3-4509-B231-4D631906D321}
[2012/03/05 18:27:15 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{DD4CBA2F-0A2F-4A90-A313-844F8DDDED2D}
[2012/03/05 18:27:03 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{27B148E7-F144-4CBD-BB5A-9288CB325EBB}
[2012/03/05 14:28:16 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2012/03/05 14:18:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2012/03/05 14:12:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2012/03/05 13:37:53 | 000,000,000 | ---D | C] -- C:\Users\Melinda\Desktop\tdsskiller 1
[2012/03/05 12:16:46 | 000,584,704 | ---- | C] (OldTimer Tools) -- C:\Users\Melinda\Desktop\OTL.exe
[2012/03/05 10:37:47 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{4B6876B6-308B-40A2-847D-96D3E0E8C600}
[2012/03/04 14:42:34 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{77E2FB96-EA72-4573-A7C8-1BA89AA32086}
[2012/03/04 14:42:21 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{235D0258-4EFF-43C2-9331-9E837AE20543}
[2012/03/04 10:24:29 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{5ECD4915-7A2A-428A-B031-9D13B34F3573}
[2012/03/03 11:14:42 | 000,000,000 | ---D | C] -- C:\Users\Melinda\Desktop\equake3d
[2012/03/03 10:33:51 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{8C6355C3-F161-414D-9E86-8102414D0A0F}
[2012/03/03 10:33:39 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{C536FD0F-EF71-42FA-964F-E65B05FABC27}
[2012/03/02 22:33:12 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{179E95D5-86DD-412A-9C83-2F47485F27C4}
[2012/03/02 22:32:59 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{B1A16406-A391-489C-9FFE-B4B963DC8EC6}
[2012/03/02 10:32:32 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{E38677B8-16B8-4B65-B1E2-C61016F79045}
[2012/03/02 10:32:18 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{1AB1A71D-F7FF-4968-8397-58264C9E22D2}
[2012/03/01 11:10:26 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{E2F6CF50-0A88-4CC3-9251-0045AA001CB5}
[2012/03/01 11:10:10 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{5ED5BC0E-42FC-4BBC-94CA-4EE4B5F4220C}
[2012/02/29 20:23:35 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{646C1CD0-AD93-447D-A1AC-34B7550F1B04}
[2012/02/29 20:23:18 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{8EB176D6-BF9D-48FE-86FE-965CC94E8EDC}
[2012/02/29 19:13:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Panda Security
[2012/02/29 08:22:45 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{7A16235F-28DA-4ED1-B5A6-B447CBC943BE}
[2012/02/29 08:22:27 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{0FDFC69C-B7E1-424A-9C15-02D71884E8D5}
[2012/02/28 11:35:18 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{D6305987-BADE-4E41-8176-79D9CF8DAE17}
[2012/02/28 11:35:00 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{5BED19A1-A056-4B25-B521-11F38CCED2A3}
[2012/02/27 09:33:48 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{6B2C0377-6EB9-42C5-B43B-5138AFD4A8DC}
[2012/02/27 09:33:35 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{4B9863F2-A5B1-45A3-BB04-9FAE8B208777}
[2012/02/26 21:55:51 | 000,000,000 | ---D | C] -- C:\ProgramData\MusicStation
[2012/02/26 21:55:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MusicStation
[2012/02/26 21:55:40 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Synchronization Services
[2012/02/26 21:55:40 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2012/02/26 21:55:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Synchronization Services
[2012/02/26 15:11:18 | 001,640,400 | ---- | C] (Threat Expert Ltd.) -- C:\Windows\PCTBDCore.dll0255.old
[2012/02/26 15:11:18 | 000,149,456 | ---- | C] (PC Tools) -- C:\Windows\SGDetectionTool.dll0255.old
[2012/02/26 15:01:52 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2012/02/26 14:53:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spyware Doctor
[2012/02/26 14:52:46 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\blekkotb
[2012/02/26 14:34:44 | 000,000,000 | ---D | C] -- C:\ProgramData\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1}
[2012/02/26 14:10:17 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\PackageAware
[2012/02/26 13:49:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security Task Manager
[2012/02/26 13:49:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Security Task Manager
[2012/02/26 12:15:00 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{8A9022B6-35F2-4A14-A38E-A5171529D45E}
[2012/02/26 12:14:47 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{47F36EE9-811D-4B40-9A4D-7D08BC6C6ACD}
[2012/02/25 13:28:13 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{8F3CA914-3EB2-46D2-96B0-F84F1DD70849}
[2012/02/25 13:28:00 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{9FBD3079-0AD7-4756-AA69-AB25BAAE8969}
[2012/02/24 23:29:56 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{BD4A7EFF-55ED-46D9-A565-7200F4FC580D}
[2012/02/24 23:29:43 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{29BAA61E-873C-43DD-AEBD-4ACD7500DE70}
[2012/02/24 17:15:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free YouTube Downloader
[2012/02/24 17:15:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Free YouTube Downloader
[2012/02/24 17:06:52 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\TempDIR
[2012/02/24 09:11:04 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{18573A8F-A672-4253-ADF3-9863112B7F34}
[2012/02/24 09:10:52 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{D8925F3F-3B25-4751-8E9F-43614E409A6E}
[2012/02/23 19:32:27 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Roaming\RegZooka
[2012/02/23 13:57:17 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{699EA9CD-22FD-469E-B13B-9DE7AB676268}
[2012/02/23 13:57:04 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{00B4FF27-DF7A-4BDC-9043-64332043CB6C}
[2012/02/22 13:29:07 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{6D94C375-1761-40D5-9D45-8875CA506471}
[2012/02/22 13:28:54 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{4324BA1C-0CE9-45F8-8A7B-2AA9DE54629B}
[2012/02/22 13:10:54 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG Secure Search
[2012/02/22 13:10:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\AVG Secure Search
[2012/02/22 13:10:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVG Secure Search
[2012/02/21 19:45:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ieSpell
[2012/02/21 12:36:45 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{963E04B7-D5B8-4510-A9B7-25D4DC8777C6}
[2012/02/21 12:36:33 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{FBF94B8A-0762-408C-8D20-C5D4486E5668}
[2012/02/20 13:00:44 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{2F31F851-C3A9-42F6-8C02-5E534256C585}
[2012/02/20 13:00:31 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{CC6EBAAD-E13B-4CF5-89E9-19B49C15403F}
[2012/02/20 12:02:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
[2012/02/19 10:11:13 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{1850DD9B-5D9E-4C59-A522-4409E50BD7ED}
[2012/02/19 10:10:34 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{C591CD94-6404-49BC-976B-A9B0D7893255}
[2012/02/18 14:36:34 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{A6110E3E-48E2-4B13-907C-29F9D0B1AC9C}
[2012/02/18 14:36:20 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{447E2B99-A8B7-43DF-9DEC-7C947FB70AD0}
[2012/02/17 12:11:26 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{E38477BD-47FA-4013-AEF7-34950A36F875}
[2012/02/17 12:11:13 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{85598587-4617-44FF-9805-A2755E2E6FF3}
[2012/02/12 22:23:58 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RegZooka
[2012/02/12 22:23:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RegZooka
[2012/02/12 21:10:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC Tuneup
[2012/02/12 20:59:38 | 008,351,256 | ---- | C] (AVG                                                         ) -- C:\Users\Melinda\Desktop\avg_pct_stf_all_10_27.exe
[2012/02/12 19:47:22 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{CF68B384-58C8-4AF2-8F4F-B11A84844412}
[2012/02/12 19:47:10 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{CF8E12B8-CC50-4B0A-AD44-8FC2D308A089}
[2012/02/10 23:31:32 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{E2D88596-B333-48BF-921C-F68017EB3E31}
[2012/02/10 23:31:18 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{7789A5CD-2D6B-4AF3-BDDC-472E8AE0F612}
[2012/02/08 22:18:29 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{74284BDD-B4BF-4D60-8324-C6905ED65368}
[2012/02/08 22:18:17 | 000,000,000 | ---D | C] -- C:\Users\Melinda\AppData\Local\{8CD19904-9F8E-4774-8886-52432678B33F}
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012/03/09 09:56:01 | 000,000,900 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/03/09 09:51:19 | 000,032,064 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/03/09 09:51:19 | 000,032,064 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/03/09 09:44:46 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/03/09 09:43:57 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/03/09 09:43:40 | 3104,722,944 | -HS- | M] () -- C:\hiberfil.sys
[2012/03/09 00:29:07 | 000,000,098 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\Hosts
[2012/03/08 23:45:31 | 000,000,957 | ---- | M] () -- C:\Users\Melinda\Desktop\RegZooka.lnk
[2012/03/08 23:45:18 | 005,650,384 | ---- | M] (ZookaWare) -- C:\Users\Melinda\Desktop\RegZooka.exe
[2012/03/08 23:42:59 | 000,002,016 | -H-- | M] () -- C:\Users\Melinda\Documents\Default.rdp
[2012/03/08 23:42:33 | 091,119,021 | ---- | M] () -- C:\Windows\SysNative\drivers\AVG\incavi.avm
[2012/03/08 13:17:50 | 000,763,422 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/03/08 13:17:50 | 000,657,378 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/03/08 13:17:50 | 000,118,576 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/03/07 11:55:27 | 000,001,555 | ---- | M] () -- C:\Users\Melinda\Documents\Did you get this.eml
[2012/03/07 10:30:56 | 000,002,414 | ---- | M] () -- C:\Users\Melinda\Documents\Contacts.csv
[2012/03/06 10:26:27 | 000,622,359 | ---- | M] () -- C:\Windows\SysNative\drivers\AVG\iavifw.avm
[2012/03/05 13:36:58 | 002,044,252 | ---- | M] () -- C:\Users\Melinda\Desktop\tdsskiller 1.zip
[2012/03/05 12:16:47 | 000,584,704 | ---- | M] (OldTimer Tools) -- C:\Users\Melinda\Desktop\OTL.exe
[2012/03/03 13:14:24 | 000,540,162 | ---- | M] () -- C:\Users\Melinda\Desktop\MindSurgePop.pdf
[2012/02/29 22:26:58 | 000,001,029 | ---- | M] () -- C:\Users\Melinda\Desktop\Reliance 3G.lnk
[2012/02/27 18:17:45 | 000,029,472 | ---- | M] () -- C:\Users\Melinda\Documents\Veda.pdf
[2012/02/26 21:58:14 | 000,001,171 | ---- | M] () -- C:\Users\Melinda\Desktop\Optus Mobile Broadband.lnk
[2012/02/26 21:58:14 | 000,000,291 | ---- | M] () -- C:\Windows\SysWow64\MsiExec.config
[2012/02/26 21:55:57 | 000,000,243 | ---- | M] () -- C:\ProgramData\MusicStation.xml
[2012/02/26 21:55:52 | 000,000,903 | ---- | M] () -- C:\Users\Melinda\Application Data\Microsoft\Internet Explorer\Quick Launch\MusicStation.lnk
[2012/02/26 21:54:31 | 000,001,798 | ---- | M] () -- C:\Users\Melinda\Desktop\MusicStation - Shortcut.lnk
[2012/02/26 21:51:34 | 000,001,556 | ---- | M] () -- C:\Users\Melinda\Desktop\mbam - Shortcut.lnk
[2012/02/26 21:30:40 | 000,001,460 | ---- | M] () -- C:\Users\Melinda\Desktop\avgui - Shortcut.lnk
[2012/02/26 15:32:56 | 001,462,592 | ---- | M] () -- C:\Windows\SysNative\drivers\Cat.DB
[2012/02/26 13:53:33 | 000,650,538 | ---- | M] () -- C:\Users\Melinda\Desktop\SecurityTaskManager_Manual.pdf
[2012/02/25 19:43:43 | 000,001,542 | ---- | M] () -- C:\Users\Melinda\Desktop\TaskMan - Shortcut.lnk
[2012/02/25 18:59:19 | 002,086,240 | ---- | M] () -- C:\Users\Melinda\Desktop\SecurityTaskManager_Setup.exe
[2012/02/24 17:15:41 | 000,002,093 | ---- | M] () -- C:\Users\Melinda\Application Data\Microsoft\Internet Explorer\Quick Launch\Free YouTube Downloader.lnk
[2012/02/24 16:38:31 | 000,000,123 | ---- | M] () -- C:\Users\Melinda\Desktop\Microsoft Fix it.url
[2012/02/24 09:15:54 | 001,356,320 | ---- | M] () -- C:\Users\Melinda\Desktop\WordsofWisdomCalendar.pdf
[2012/02/24 09:15:17 | 001,191,491 | ---- | M] () -- C:\Users\Melinda\Desktop\GoodVibrations.pdf
[2012/02/24 09:14:50 | 000,727,340 | ---- | M] () -- C:\Users\Melinda\Desktop\ConsciousnessEvolution.pdf
[2012/02/22 13:39:33 | 000,324,377 | ---- | M] () -- C:\Users\Melinda\Desktop\3.Relationships.pdf
[2012/02/22 13:37:39 | 000,198,909 | ---- | M] () -- C:\Users\Melinda\Desktop\2.Power.pdf
[2012/02/22 13:37:10 | 000,211,354 | ---- | M] () -- C:\Users\Melinda\Desktop\1.Money.pdf
[2012/02/21 23:16:05 | 001,147,854 | ---- | M] () -- C:\Users\Melinda\Desktop\equake3d.zip
[2012/02/21 17:19:10 | 000,072,822 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2012/02/21 17:19:07 | 000,072,822 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2012/02/20 23:45:14 | 192,324,644 | ---- | M] () -- C:\Users\Melinda\Desktop\guyfinley-sevensteps.zip
[2012/02/20 23:15:09 | 000,394,379 | ---- | M] () -- C:\Users\Melinda\Desktop\ThePowerPart2[1].pdf
[2012/02/20 20:29:15 | 002,075,864 | ---- | M] () -- C:\Users\Melinda\Desktop\Read This[1].pdf
[2012/02/20 18:58:55 | 070,433,991 | ---- | M] () -- C:\Users\Melinda\Desktop\blue-sciatica.mp3
[2012/02/20 18:49:46 | 000,235,764 | ---- | M] () -- C:\Users\Melinda\Desktop\sleeplikeababyreport.pdf
[2012/02/20 18:40:21 | 009,186,449 | ---- | M] () -- C:\Users\Melinda\Desktop\Formerly Illegal Treatment Reverses Pain in Minutes.mp3
[2012/02/20 18:19:43 | 008,330,656 | ---- | M] () -- C:\Users\Melinda\Desktop\Prolozone Therapy, Powerful Cure for Pain.mp3
[2012/02/20 18:17:48 | 002,275,936 | ---- | M] () -- C:\Users\Melinda\Desktop\Turbulence-Training-Fat-Loss-Beginner-Programs.pdf
[2012/02/20 18:02:19 | 001,007,901 | ---- | M] () -- C:\Users\Melinda\Desktop\Foods that kill fat.pdf
[2012/02/20 18:01:44 | 001,220,548 | ---- | M] () -- C:\Users\Melinda\Desktop\Stretching_Tips.pdf
[2012/02/20 17:57:00 | 000,029,769 | ---- | M] () -- C:\Users\Melinda\Desktop\freepilatesdvd.htm
[2012/02/20 17:37:28 | 006,093,330 | ---- | M] () -- C:\Users\Melinda\Desktop\BeyondDietMainProduct.zip
[2012/02/18 23:40:04 | 000,000,340 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForMelinda.job
[2012/02/17 13:00:23 | 000,003,584 | ---- | M] () -- C:\Users\Melinda\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/02/17 11:33:45 | 000,274,320 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/02/17 11:25:11 | 000,771,342 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/02/12 21:10:06 | 000,001,136 | ---- | M] () -- C:\Users\Melinda\Application Data\Microsoft\Internet Explorer\Quick Launch\AVG PC Tuneup.lnk
[2012/02/12 21:10:06 | 000,001,112 | ---- | M] () -- C:\Users\Melinda\Desktop\AVG PC Tuneup.lnk
[2012/02/12 20:59:38 | 008,351,256 | ---- | M] (AVG                                                         ) -- C:\Users\Melinda\Desktop\avg_pct_stf_all_10_27.exe
[2012/02/10 23:58:52 | 000,452,069 | ---- | M] () -- C:\Users\Melinda\Desktop\MessagesFromTheFuture.pdf
[2012/02/08 23:06:46 | 000,003,780 | ---- | M] () -- C:\Users\Melinda\Documents\Resident Shield scan.csv
[2012/02/08 22:13:54 | 000,025,160 | ---- | M] () -- C:\Windows\SysNative\drivers\hitmanpro36.sys
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012/03/08 23:45:31 | 000,000,957 | ---- | C] () -- C:\Users\Melinda\Desktop\RegZooka.lnk
[2012/03/08 18:51:45 | 000,000,900 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/03/08 18:51:44 | 000,000,896 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/03/07 11:55:26 | 000,001,555 | ---- | C] () -- C:\Users\Melinda\Documents\Did you get this.eml
[2012/03/07 10:30:55 | 000,002,414 | ---- | C] () -- C:\Users\Melinda\Documents\Contacts.csv
[2012/03/05 13:36:42 | 002,044,252 | ---- | C] () -- C:\Users\Melinda\Desktop\tdsskiller 1.zip
[2012/03/03 13:13:29 | 000,540,162 | ---- | C] () -- C:\Users\Melinda\Desktop\MindSurgePop.pdf
[2012/02/29 22:26:58 | 000,001,029 | ---- | C] () -- C:\Users\Melinda\Desktop\Reliance 3G.lnk
[2012/02/27 18:17:45 | 000,029,472 | ---- | C] () -- C:\Users\Melinda\Documents\Veda.pdf
[2012/02/26 21:58:14 | 000,001,171 | ---- | C] () -- C:\Users\Melinda\Desktop\Optus Mobile Broadband.lnk
[2012/02/26 21:55:57 | 000,000,243 | ---- | C] () -- C:\ProgramData\MusicStation.xml
[2012/02/26 21:55:54 | 000,000,291 | ---- | C] () -- C:\Windows\SysWow64\MsiExec.config
[2012/02/26 21:55:52 | 000,000,903 | ---- | C] () -- C:\Users\Melinda\Application Data\Microsoft\Internet Explorer\Quick Launch\MusicStation.lnk
[2012/02/26 21:54:31 | 000,001,798 | ---- | C] () -- C:\Users\Melinda\Desktop\MusicStation - Shortcut.lnk
[2012/02/26 21:51:34 | 000,001,556 | ---- | C] () -- C:\Users\Melinda\Desktop\mbam - Shortcut.lnk
[2012/02/26 21:30:40 | 000,001,460 | ---- | C] () -- C:\Users\Melinda\Desktop\avgui - Shortcut.lnk
[2012/02/26 15:32:49 | 001,462,592 | ---- | C] () -- C:\Windows\SysNative\drivers\Cat.DB
[2012/02/26 15:11:18 | 000,767,952 | ---- | C] () -- C:\Windows\BDTSupport.dll0255.old
[2012/02/26 13:53:33 | 000,650,538 | ---- | C] () -- C:\Users\Melinda\Desktop\SecurityTaskManager_Manual.pdf
[2012/02/25 19:43:43 | 000,001,542 | ---- | C] () -- C:\Users\Melinda\Desktop\TaskMan - Shortcut.lnk
[2012/02/25 18:58:31 | 002,086,240 | ---- | C] () -- C:\Users\Melinda\Desktop\SecurityTaskManager_Setup.exe
[2012/02/24 17:15:41 | 000,002,093 | ---- | C] () -- C:\Users\Melinda\Application Data\Microsoft\Internet Explorer\Quick Launch\Free YouTube Downloader.lnk
[2012/02/24 16:38:31 | 000,000,123 | ---- | C] () -- C:\Users\Melinda\Desktop\Microsoft Fix it.url
[2012/02/24 09:15:40 | 001,356,320 | ---- | C] () -- C:\Users\Melinda\Desktop\WordsofWisdomCalendar.pdf
[2012/02/24 09:15:03 | 001,191,491 | ---- | C] () -- C:\Users\Melinda\Desktop\GoodVibrations.pdf
[2012/02/24 09:14:48 | 000,727,340 | ---- | C] () -- C:\Users\Melinda\Desktop\ConsciousnessEvolution.pdf
[2012/02/22 13:39:33 | 000,324,377 | ---- | C] () -- C:\Users\Melinda\Desktop\3.Relationships.pdf
[2012/02/22 13:37:39 | 000,198,909 | ---- | C] () -- C:\Users\Melinda\Desktop\2.Power.pdf
[2012/02/22 13:37:10 | 000,211,354 | ---- | C] () -- C:\Users\Melinda\Desktop\1.Money.pdf
[2012/02/21 23:15:59 | 001,147,854 | ---- | C] () -- C:\Users\Melinda\Desktop\equake3d.zip
[2012/02/21 17:19:10 | 000,072,822 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2012/02/21 17:19:07 | 000,072,822 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2012/02/20 23:45:14 | 192,324,644 | ---- | C] () -- C:\Users\Melinda\Desktop\guyfinley-sevensteps.zip
[2012/02/20 23:15:08 | 000,394,379 | ---- | C] () -- C:\Users\Melinda\Desktop\ThePowerPart2[1].pdf
[2012/02/20 20:29:15 | 002,075,864 | ---- | C] () -- C:\Users\Melinda\Desktop\Read This[1].pdf
[2012/02/20 18:58:55 | 070,433,991 | ---- | C] () -- C:\Users\Melinda\Desktop\blue-sciatica.mp3
[2012/02/20 18:49:46 | 000,235,764 | ---- | C] () -- C:\Users\Melinda\Desktop\sleeplikeababyreport.pdf
[2012/02/20 18:40:21 | 009,186,449 | ---- | C] () -- C:\Users\Melinda\Desktop\Formerly Illegal Treatment Reverses Pain in Minutes.mp3
[2012/02/20 18:19:43 | 008,330,656 | ---- | C] () -- C:\Users\Melinda\Desktop\Prolozone Therapy, Powerful Cure for Pain.mp3
[2012/02/20 18:17:48 | 002,275,936 | ---- | C] () -- C:\Users\Melinda\Desktop\Turbulence-Training-Fat-Loss-Beginner-Programs.pdf
[2012/02/20 18:02:19 | 001,007,901 | ---- | C] () -- C:\Users\Melinda\Desktop\Foods that kill fat.pdf
[2012/02/20 18:01:44 | 001,220,548 | ---- | C] () -- C:\Users\Melinda\Desktop\Stretching_Tips.pdf
[2012/02/20 17:57:00 | 000,029,769 | ---- | C] () -- C:\Users\Melinda\Desktop\freepilatesdvd.htm
[2012/02/20 17:37:28 | 006,093,330 | ---- | C] () -- C:\Users\Melinda\Desktop\BeyondDietMainProduct.zip
[2012/02/17 13:00:22 | 000,003,584 | ---- | C] () -- C:\Users\Melinda\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/02/12 21:10:06 | 000,001,136 | ---- | C] () -- C:\Users\Melinda\Application Data\Microsoft\Internet Explorer\Quick Launch\AVG PC Tuneup.lnk
[2012/02/12 21:10:06 | 000,001,112 | ---- | C] () -- C:\Users\Melinda\Desktop\AVG PC Tuneup.lnk
[2012/02/10 23:58:50 | 000,452,069 | ---- | C] () -- C:\Users\Melinda\Desktop\MessagesFromTheFuture.pdf
[2012/02/08 23:06:46 | 000,003,780 | ---- | C] () -- C:\Users\Melinda\Documents\Resident Shield scan.csv
[2012/02/03 23:36:54 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/02/03 23:36:54 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/02/03 23:36:54 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/02/03 23:36:54 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/02/03 23:36:54 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/01/01 19:20:00 | 000,000,000 | ---- | C] () -- C:\ProgramData\PKP_DLev.DAT
[2012/01/01 19:19:42 | 000,000,000 | ---- | C] () -- C:\ProgramData\PKP_DLet.DAT
[2011/12/27 21:08:35 | 000,007,610 | ---- | C] () -- C:\Users\Melinda\AppData\Local\Resmon.ResmonCfg
[2011/12/10 14:14:27 | 000,771,342 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011/12/10 11:06:33 | 000,001,854 | ---- | C] () -- C:\Users\Melinda\AppData\Roaming\GhostObjGAFix.xml
[2011/12/02 21:39:54 | 000,102,912 | ---- | C] () -- C:\Windows\SysWow64\EasyHook64.dll
[2011/12/02 21:39:54 | 000,084,480 | ---- | C] () -- C:\Windows\SysWow64\EasyHook32.dll
[2011/11/30 21:41:00 | 000,000,419 | ---- | C] () -- C:\Windows\BRWMARK.INI
[2011/11/30 17:44:26 | 000,000,268 | RH-- | C] () -- C:\Users\Melinda\AppData\Roaming\libiconv
[2011/11/30 17:44:26 | 000,000,268 | RH-- | C] () -- C:\Users\Melinda\AppData\Roaming\laserjet
[2011/11/30 17:44:26 | 000,000,268 | RH-- | C] () -- C:\Users\Melinda\AppData\Roaming\images
[2011/10/21 17:27:54 | 000,963,116 | ---- | C] () -- C:\Windows\SysWow64\igkrng600.bin
[2011/10/21 17:27:54 | 000,217,536 | ---- | C] () -- C:\Windows\SysWow64\igfcg600m.bin
[2011/10/21 17:22:54 | 000,056,832 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2011/10/21 17:03:04 | 013,903,872 | ---- | C] () -- C:\Windows\SysWow64\ig4icd32.dll
[2011/05/25 08:20:30 | 000,451,072 | ---- | C] () -- C:\Windows\SysWow64\ISSRemoveSP.exe
[2010/12/21 10:50:14 | 000,066,856 | ---- | C] () -- C:\Windows\SysWow64\SynTPEnhPS.dll
[2010/12/17 12:07:18 | 000,145,804 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng600.bin
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2011/12/31 11:05:15 | 000,000,000 | ---D | M] -- C:\Users\Melinda\AppData\Roaming\Acapela Group
[2012/01/04 12:29:41 | 000,000,000 | ---D | M] -- C:\Users\Melinda\AppData\Roaming\Auslogics
[2012/01/28 22:28:45 | 000,000,000 | ---D | M] -- C:\Users\Melinda\AppData\Roaming\AVG
[2012/01/27 16:11:19 | 000,000,000 | ---D | M] -- C:\Users\Melinda\AppData\Roaming\AVG Secure Search
[2012/02/05 14:39:12 | 000,000,000 | ---D | M] -- C:\Users\Melinda\AppData\Roaming\AVG2012
[2011/12/26 19:00:23 | 000,000,000 | ---D | M] -- C:\Users\Melinda\AppData\Roaming\FixCleaner
[2012/02/05 18:50:12 | 000,000,000 | ---D | M] -- C:\Users\Melinda\AppData\Roaming\ieSpell
[2012/01/01 19:20:00 | 000,000,000 | ---D | M] -- C:\Users\Melinda\AppData\Roaming\Nikon
[2011/12/10 15:58:48 | 000,000,000 | ---D | M] -- C:\Users\Melinda\AppData\Roaming\PC Cleaners
[2012/02/04 08:53:28 | 000,000,000 | ---D | M] -- C:\Users\Melinda\AppData\Roaming\Product_RM
[2012/02/04 09:08:42 | 000,000,000 | ---D | M] -- C:\Users\Melinda\AppData\Roaming\Registry Mechanic
[2012/02/23 19:32:27 | 000,000,000 | ---D | M] -- C:\Users\Melinda\AppData\Roaming\RegZooka
[2012/01/07 20:34:07 | 000,000,000 | ---D | M] -- C:\Users\Melinda\AppData\Roaming\Smart PDF Converter Pro
[2012/03/07 22:36:31 | 000,000,000 | ---D | M] -- C:\Users\Melinda\AppData\Roaming\SoftGrid Client
[2011/08/13 15:33:09 | 000,000,000 | ---D | M] -- C:\Users\Melinda\AppData\Roaming\Synaptics
[2012/01/09 20:10:06 | 000,000,000 | ---D | M] -- C:\Users\Melinda\AppData\Roaming\Systweak
[2011/12/31 11:28:13 | 000,000,000 | ---D | M] -- C:\Users\Melinda\AppData\Roaming\TP
[2011/08/13 15:35:04 | 000,000,000 | ---D | M] -- C:\Users\Melinda\AppData\Roaming\WildTangent
[2011/12/02 23:07:35 | 000,000,000 | ---D | M] -- C:\Users\Melinda\AppData\Roaming\Windows Live Writer
[2012/02/04 17:05:35 | 000,000,000 | ---D | M] -- C:\Users\Melinda\AppData\Roaming\ZumoDrive
[2012/02/01 13:40:15 | 000,032,636 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 764 bytes -> C:\Users\Melinda\Documents\Did you get this.eml:OECustomProperty
@Alternate Data Stream - 550 bytes -> C:\Users\Melinda\Documents\email AVG.eml:OECustomProperty
@Alternate Data Stream - 199 bytes -> C:\ProgramData\Temp:0B4227B4
@Alternate Data Stream - 127 bytes -> C:\ProgramData\Temp:430C6D84
@Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:DFC5A2B2
@Alternate Data Stream - 115 bytes -> C:\ProgramData\Temp:A8ADE5D8
@Alternate Data Stream - 112 bytes -> C:\ProgramData\Temp:D1B5B4F1

< End of report >