OTL logfile created on: 8/27/2012 9:27:58 AM - Run 3 OTL by OldTimer - Version 3.2.57.0 Folder = I:\ Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 1.94 Gb Total Physical Memory | 1.41 Gb Available Physical Memory | 72.62% Memory free 2.15 Gb Paging File | 1.45 Gb Available in Paging File | 67.37% Paging File free Paging file location(s): C:\pagefile.sys 372 744 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 74.53 Gb Total Space | 21.52 Gb Free Space | 28.88% Space Free | Partition Type: NTFS Drive G: | 232.83 Gb Total Space | 188.53 Gb Free Space | 80.98% Space Free | Partition Type: FAT32 Drive I: | 3.72 Gb Total Space | 0.17 Gb Free Space | 4.60% Space Free | Partition Type: FAT32 Computer Name: DBOX | User Name: Owner | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Quick Scan Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012/08/15 18:46:44 | 000,596,992 | ---- | M] (OldTimer Tools) -- I:\OTL.exe PRC - [2012/07/09 16:38:53 | 004,777,856 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe PRC - [2012/06/04 19:23:12 | 004,632,752 | R--- | M] (Carbonite, Inc. (www.carbonite.com)) -- C:\Program Files\Carbonite\Carbonite Backup\CarboniteService.exe PRC - [2012/06/04 19:23:12 | 001,061,552 | R--- | M] (Carbonite, Inc.) -- C:\Program Files\Carbonite\Carbonite Backup\CarboniteUI.exe PRC - [2012/03/08 20:29:07 | 000,026,112 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\realplay.exe PRC - [2011/12/19 08:05:58 | 000,279,976 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\Genieo\Application\Updater\bin\genupdater.exe PRC - [2011/12/19 08:05:40 | 000,561,576 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\Genieo\Application\TrayUi\bin\gentray.exe PRC - [2011/07/21 17:52:08 | 002,953,960 | ---- | M] (AG Entertainment Inc) -- C:\Documents and Settings\Owner\Local Settings\Application Data\Audiogalaxy\Audiogalaxy.exe PRC - [2010/11/04 22:09:22 | 000,980,368 | ---- | M] (The Eraser Project) -- C:\Program Files\Eraser\Eraser.exe PRC - [2009/12/21 12:53:44 | 000,315,392 | ---- | M] (Alcatel-Lucent) -- C:\Program Files\Common Files\Motive\McciServiceHost.exe PRC - [2008/11/09 13:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe PRC - [2008/06/24 11:34:50 | 000,041,824 | ---- | M] (AOL LLC) -- C:\Program Files\Common Files\AOL\1134524958\ee\aolsoftware.exe PRC - [2008/06/05 15:06:32 | 000,125,208 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\Common\YMailAdvisor.exe PRC - [2008/04/13 17:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2007/08/24 15:52:46 | 000,166,384 | ---- | M] (Sonic Solutions) -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe PRC - [2007/08/24 15:52:42 | 000,240,112 | ---- | M] (Sonic Solutions) -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatchTray10.exe PRC - [2007/08/24 15:52:02 | 000,018,928 | ---- | M] (Sonic Solutions) -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSHelpRunner10.exe PRC - [2007/08/14 03:44:38 | 000,113,136 | ---- | M] () -- C:\Program Files\Roxio\CinePlayer\DMXLauncher.exe PRC - [2007/04/23 23:13:30 | 000,528,441 | ---- | M] (Green Eclipse) -- C:\Program Files\StickyPad\StickyPad.exe PRC - [2007/02/06 07:30:54 | 000,176,128 | ---- | M] (S3 Graphics Co., Ltd.) -- C:\WINDOWS\system32\VTTrayp.exe PRC - [2006/11/03 00:17:27 | 000,010,800 | ---- | M] (AOL LLC) -- C:\Program Files\Common Files\AOL\Loader\aolload.exe PRC - [2006/10/23 05:50:35 | 000,046,640 | R--- | M] (AOL LLC) -- C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe PRC - [2006/09/21 16:36:18 | 000,053,248 | ---- | M] (S3 Graphics, Inc.) -- C:\WINDOWS\system32\VTTimer.exe PRC - [2006/08/03 05:12:36 | 000,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe PRC - [2005/09/20 19:10:04 | 000,238,080 | ---- | M] (Microsoft Corporation) -- C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\en-us\bin\WindowsSearch.exe PRC - [2005/09/20 19:08:44 | 000,113,664 | ---- | M] (Microsoft Corporation) -- C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\en-us\bin\WindowsSearchIndexer.exe PRC - [2004/09/22 12:30:50 | 000,065,536 | ---- | M] (New Boundary Technologies, Inc.) -- C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS PRC - [2004/06/08 07:13:24 | 001,564,672 | ---- | M] (Voyetra Turtle Beach, Inc.) -- C:\Program Files\Turtle Beach\Audio Advantage Micro\TBAA.exe PRC - [2004/03/11 22:18:54 | 000,135,168 | ---- | M] (Alcor Micro, Corp.) -- C:\Program Files\Digital Media Reader\shwiconEM.exe PRC - [2003/08/27 17:29:46 | 000,065,536 | ---- | M] (America Online, Inc.) -- C:\WINDOWS\wanmpsvc.exe PRC - [2002/04/17 11:49:16 | 000,077,824 | ---- | M] () -- C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe PRC - [2002/04/17 11:42:56 | 000,069,632 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2012/08/27 08:01:25 | 000,065,024 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10006.dll MOD - [2012/08/27 08:01:25 | 000,052,736 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10007.dll MOD - [2012/08/12 18:40:54 | 000,117,760 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL MOD - [2012/08/12 18:40:54 | 000,052,224 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll MOD - [2012/06/14 08:10:41 | 001,712,128 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\359fd69eb60e9844ffd497e92345178c\Microsoft.VisualBasic.ni.dll MOD - [2012/06/14 07:58:52 | 012,433,920 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\01abbadafaf265d9f4ac9bbb247acb98\System.Windows.Forms.ni.dll MOD - [2012/06/14 07:57:47 | 001,592,320 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\d86f2038209a4cf0d0f5b30f6375c9b2\System.Drawing.ni.dll MOD - [2012/05/12 18:56:55 | 002,295,296 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Core\38d07a5ac34b99d94fd14f42e779f625\System.Core.ni.dll MOD - [2012/05/12 18:42:52 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\3bba1b8b0b5ef0be238b011cc7a0575e\System.Xml.ni.dll MOD - [2012/05/12 18:40:47 | 007,953,408 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\e4b5afc4da43b1c576f9322f9f2e1bfe\System.ni.dll MOD - [2012/05/12 18:38:51 | 011,492,352 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\e337c89bc9f81b69d7237aa70e935900\mscorlib.ni.dll MOD - [2011/12/19 08:05:58 | 000,279,976 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\Genieo\Application\Updater\bin\genupdater.exe MOD - [2011/12/19 08:05:40 | 000,561,576 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\Genieo\Application\TrayUi\bin\gentray.exe MOD - [2011/06/14 11:19:04 | 000,780,288 | ---- | M] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\Audiogalaxy\tag.dll MOD - [2011/03/01 13:20:06 | 001,014,286 | ---- | M] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\Audiogalaxy\avcodec-52.dll MOD - [2011/03/01 13:20:06 | 000,208,910 | ---- | M] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\Audiogalaxy\avformat-52.dll MOD - [2011/03/01 13:20:06 | 000,082,958 | ---- | M] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\Audiogalaxy\avutil-50.dll MOD - [2011/01/18 16:28:42 | 000,558,133 | ---- | M] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\Audiogalaxy\sqlite3.dll MOD - [2010/11/17 14:16:56 | 000,067,872 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll MOD - [2009/05/30 11:11:42 | 000,059,904 | ---- | M] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\Audiogalaxy\zlib1.dll MOD - [2007/08/24 15:53:10 | 005,462,512 | ---- | M] () -- C:\Program Files\Common Files\Roxio Shared\10.0\DLLShared\roxipp52.dll MOD - [2007/08/14 03:44:38 | 000,113,136 | ---- | M] () -- C:\Program Files\Roxio\CinePlayer\DMXLauncher.exe MOD - [2002/04/17 11:49:22 | 000,024,576 | ---- | M] () -- C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnfps.dll MOD - [2002/04/17 11:49:16 | 000,077,824 | ---- | M] () -- C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt) SRV - [2012/06/29 14:25:08 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012/06/23 08:57:23 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012/06/04 19:23:12 | 004,632,752 | R--- | M] (Carbonite, Inc. (www.carbonite.com)) [Auto | Running] -- C:\Program Files\Carbonite\Carbonite Backup\CarboniteService.exe -- (CarboniteService) SRV - [2009/12/21 12:53:44 | 000,315,392 | ---- | M] (Alcatel-Lucent) [Auto | Running] -- C:\Program Files\Common Files\Motive\McciServiceHost.exe -- (McciServiceHost) SRV - [2008/11/09 13:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService) SRV - [2007/08/24 15:53:16 | 000,362,992 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- C:\Program Files\Roxio\Digital Home 10\RoxioUpnpService10.exe -- (Roxio Upnp Server 10) SRV - [2007/08/24 15:53:14 | 000,072,176 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- C:\Program Files\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe -- (Roxio UPnP Renderer 10) SRV - [2007/08/24 15:52:48 | 000,309,744 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe -- (RoxLiveShare10) SRV - [2007/08/24 15:52:46 | 000,166,384 | ---- | M] (Sonic Solutions) [Auto | Running] -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe -- (RoxWatch10) SRV - [2007/08/24 15:52:38 | 001,083,888 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe -- (RoxMediaDB10) SRV - [2006/10/23 05:50:35 | 000,046,640 | R--- | M] (AOL LLC) [Auto | Running] -- C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe -- (AOL ACS) SRV - [2004/09/22 12:30:50 | 000,065,536 | ---- | M] (New Boundary Technologies, Inc.) [Auto | Running] -- C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS -- (PrismXL) SRV - [2003/08/27 17:29:46 | 000,065,536 | ---- | M] (America Online, Inc.) [Auto | Running] -- C:\WINDOWS\wanmpsvc.exe -- (WANMiniportService) SRV - [2003/05/19 16:07:38 | 000,086,016 | ---- | M] (Yahoo! Inc.) [On_Demand | Stopped] -- C:\WINDOWS\system32\YPcservice.exe -- (YPCService) SRV - [2002/09/27 18:56:20 | 000,139,264 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- c:\Program Files\Intel\NCS\Sync\NetSvc.exe -- (NetSvc) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\sunkfiltp.sys -- (Sunkfiltp) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS -- (MRENDIS5) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS -- (MREMPR5) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\ComboFix\catchme.sys -- (catchme) DRV - [2012/03/08 20:29:24 | 000,008,552 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\asctrm.sys -- (ASCTRM) DRV - [2011/07/22 09:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV) DRV - [2011/07/12 14:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL) DRV - [2009/09/15 11:13:34 | 000,021,248 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Motive\MREMP50.sys -- (MREMP50) DRV - [2009/09/15 11:13:34 | 000,020,096 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Motive\MRESP50.sys -- (MRESP50) DRV - [2008/04/13 11:46:08 | 000,049,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mstape.sys -- (MSTAPE) DRV - [2008/04/13 11:46:07 | 000,013,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\avcstrm.sys -- (AVCSTRM) DRV - [2007/08/18 03:09:04 | 000,057,328 | ---- | M] (Sonic Solutions) [File_System | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\RxFilter.sys -- (RxFilter) DRV - [2007/03/28 20:36:00 | 000,009,216 | R--- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\videX32.sys -- (videX32) DRV - [2007/03/26 00:26:00 | 000,052,224 | R--- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\ViPrt.sys -- (ViPrt) DRV - [2007/03/26 00:26:00 | 000,016,896 | R--- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\ViBus.sys -- (ViBus) DRV - [2006/10/13 17:31:00 | 004,022,528 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) DRV - [2005/07/22 11:02:12 | 001,035,008 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV) DRV - [2005/07/22 11:01:10 | 000,231,168 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWBS2.sys -- (HSFHWBS2) DRV - [2005/07/22 11:01:00 | 000,717,952 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf) DRV - [2005/03/15 23:23:54 | 000,013,696 | R--- | M] (BIOSTAR Group) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\BIOS.sys -- (BIOS) DRV - [2004/10/07 18:16:04 | 000,035,840 | ---- | M] (Oak Technology Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\AFS2K.SYS -- (AFS2K) DRV - [2004/06/17 22:55:04 | 001,041,536 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HSF_DP.sys -- (HSF_DP) DRV - [2004/03/22 18:27:20 | 000,042,936 | ---- | M] (Alcor Micro Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Sunkfilt39.sys -- (SunkFilt39) DRV - [2004/03/22 18:01:38 | 000,040,564 | ---- | M] (Alcor Micro Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Sunkfilt.sys -- (SunkFilt) DRV - [2004/01/05 23:21:18 | 000,705,536 | R--- | M] (C-Media Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\cmuda2.sys -- (cmuda2) DRV - [2003/12/12 07:54:14 | 000,391,424 | ---- | M] (Sensaura Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS -- (ALCXSENS) DRV - [2003/11/25 22:58:10 | 000,006,912 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pcitest.sys -- (PciTest) DRV - [2003/01/10 14:13:04 | 000,033,588 | R--- | M] (America Online, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wanatw4.sys -- (wanatw) DRV - [2002/10/16 07:11:22 | 000,019,968 | ---- | M] (Intel Corporation ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\iqvw32.sys -- (NAL) DRV - [2002/07/21 16:47:27 | 000,175,042 | R--- | M] (Sunplus Technology Co. LTD.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CA506AV.SYS -- (AVC1100) DRV - [2002/07/21 16:47:27 | 000,014,273 | R--- | M] (Sunplus Technology Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ca506aaf.sys -- (ca506aaf) DRV - [2002/03/08 15:40:10 | 000,013,780 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc) DRV - [2001/08/17 06:49:32 | 000,019,968 | ---- | M] (Macronix International Co., Ltd. ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mxnic.sys -- (mxnic) DRV - [2001/08/17 05:12:02 | 000,063,208 | ---- | M] (Intel Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\dc21x4.sys -- (DC21x4) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 IE - HKLM\..\SearchScopes\{BA7F16AB-632C-4479-A0C3-4C89665A3665}: "URL" = http://search.aol.com/aolcom/search?query={searchTerms}&invocationType=msie70a IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://yahoo.genieo.com/ IE - HKCU\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - No CLSID value found IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll (Yahoo! Inc.) IE - HKCU\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\..\SearchScopes\{1024710D-043E-41DB-B9D4-A3156C78F413}: "URL" = http://www.flickr.com/search/?q={searchTerms} IE - HKCU\..\SearchScopes\{12A3E116-A5C1-47A5-9E7A-ED7249C0348F}: "URL" = http://rover.ebay.com/rover/1/711-43047-14818-1/4?satitle={searchTerms} IE - HKCU\..\SearchScopes\{1A943B02-2C44-43b4-8B00-A6A15C81B13C}: "URL" = http://www.diigo.com/search/g?cx=partner-pub-7625644023173335%3Agqffh9-8lvc&cof=FORID%3A9&ie=UTF-8&q={searchTerms}&sa=Search#932 IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGLL_en IE - HKCU\..\SearchScopes\{76E9350E-0392-9C19-F83A-99BC015260AF}: "URL" = http://www.bing.com/search?q={searchTerms}&pc=Z039&form=ZGAIDF IE - HKCU\..\SearchScopes\{A1B5ABB4-D3FE-430B-A074-4E70CAC83CB1}: "URL" = http://delicious.com/search?p={searchTerms} IE - HKCU\..\SearchScopes\{BF5CDBD7-EC78-41F8-A1B1-01829572104D}: "URL" = http://search.yahoo.com/search?p={searchterms}&ei=UTF-8&fr=w3i&type=W3i_DS,136,0_0,Search,20120417,0,0,0,0 IE - HKCU\..\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4}: "URL" = http://search.yahoo.com/search?p={searchTerms}&fr=chr-atty IE - HKCU\..\SearchScopes\{E6DB5236-80ED-432C-AA9E-CCD306D1FA6E}: "URL" = http://search.aol.com/aolcom/search?query={searchTerms}&invocationType=msie70a IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_262.dll () FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX,Inc.) FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Content Upload Plugin,version=1.0.0: C:\Program Files\DivX\DivX Content Uploader\npUpload.dll (DivX,Inc.) FF - HKLM\Software\MozillaPlugins\@ei.MyScrapNook_12.com/Plugin: C:\Program Files\MyScrapNook_12EI\Installr\1.bin\NP12EISB.dll File not found FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\progra~1\mcafee\msc\npmcsnffpl.dll File not found FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll File not found FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@Motive.com/NpMotive,version=1.0: C:\Program Files\Common Files\Motive\npMotive.dll (Alcatel-Lucent) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll () FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\PROGRA~1\Yahoo!\dslsetup\npyaxmpb.dll File not found FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files\McAfee\SiteAdvisor FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\crossriderapp498@crossrider.com: C:\Documents and Settings\Owner\Local Settings\Application Data\RewardsArcade\498\Firefox FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/08/21 20:36:15 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/06/23 08:57:31 | 000,000,000 | ---D | M] [2012/06/05 10:14:08 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Extensions [2012/08/24 10:55:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\1j3y4qql.default\extensions [2012/06/05 10:17:13 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\1j3y4qql.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2011/02/04 10:35:12 | 000,000,000 | ---D | M] (Search Toolbar) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\1j3y4qql.default\extensions\searchtoolbar@zugo.com [2011/02/04 10:35:13 | 000,001,919 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\1j3y4qql.default\searchplugins\bing-zugo.xml [2012/06/05 10:12:12 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2007/01/07 01:43:31 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2007/01/07 01:43:10 | 000,000,000 | ---D | M] (Mozilla Firefox distributed by RealNetworks) -- C:\Program Files\Mozilla Firefox\extensions\realplayer@partners.mozilla.com [2012/07/18 17:12:56 | 000,553,901 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\OWNER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1J3Y4QQL.DEFAULT\EXTENSIONS\{93DE131F-6442-F9F4-79A5-E330784FED5C}.XPI [2012/06/23 08:57:25 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2008/09/19 10:32:40 | 000,086,016 | ---- | M] (Coupons, Inc.) -- C:\Program Files\mozilla firefox\plugins\npCouponPrinter.dll [2009/01/21 20:58:26 | 000,024,684 | ---- | M] (MyWebSearch.com) -- C:\Program Files\mozilla firefox\plugins\NPMyWebS.dll [2008/06/02 22:35:57 | 000,000,397 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\aolsearch.png [2008/06/02 22:35:57 | 000,000,671 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\aolsearch.src [2012/06/01 08:39:16 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml [2012/06/01 08:39:16 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml [color=#E56717]========== Chrome ==========[/color] CHR - Extension: My Personal Homepage = C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\mdibpcceojcijhomkdgiffflkgngmapf\2.6.377_0\ O1 HOSTS File: ([2012/08/25 18:31:51 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll (Yahoo! Inc.) O2 - BHO: (My Personal Homepage) - {0538CF1C-8419-4800-ADBB-0C00C799FDA2} - C:\Documents and Settings\Owner\Application Data\Genieo\Application\IEPlugins\bin\IEWrapper.dll () O2 - BHO: (Yahoo! IE Services Button) - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll (Yahoo! Inc.) O2 - BHO: (BetterLinks) - {6921710F-6AC6-4113-8AE6-82A1660EBB09} - C:\Program Files\BetterLinks\BetterLinks.dll (MashLogic Inc.) O2 - BHO: (AOL Toolbar Launcher) - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC) O2 - BHO: (Diigo Toolbar Helper) - {84053DA7-03DE-4FB6-80AE-202C04691D8A} - C:\Program Files\Diigo\DiigoToolbar.4.0.2.dll (Diigo inc.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll (Google Inc.) O2 - BHO: (no name) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - No CLSID value found. O2 - BHO: (MSN Search Toolbar Helper) - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0001.1119\en-us\msntb.dll (Microsoft Corporation) O2 - BHO: (Reg Error: Value error.) - {EAEE5C74-6D0D-4aca-9232-0DA4A7B866BA} - C:\Program Files\PicLensIE\cooliris.dll File not found O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\YTSingleInstance.dll (Yahoo! Inc) O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - No CLSID value found. O3 - HKLM\..\Toolbar: (Diigo Toolbar) - {09197FFB-C236-4153-B268-31051E4F3B6C} - C:\Program Files\Diigo\DiigoToolbar.4.0.2.dll (Diigo inc.) O3 - HKLM\..\Toolbar: (MSN Search Toolbar) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0001.1119\en-us\msntb.dll (Microsoft Corporation) O3 - HKLM\..\Toolbar: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC) O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll (Yahoo! Inc.) O3 - HKCU\..\Toolbar\ShellBrowser: (MSN Search Toolbar) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0001.1119\en-us\msntb.dll (Microsoft Corporation) O3 - HKCU\..\Toolbar\WebBrowser: (MSN Search Toolbar) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0001.1119\en-us\msntb.dll (Microsoft Corporation) O3 - HKCU\..\Toolbar\WebBrowser: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC) O3 - HKCU\..\Toolbar\WebBrowser: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll (Yahoo! Inc.) O4 - HKLM..\Run: [AOLDialer] C:\Program Files\Common Files\AOL\ACS\AOLDial.exe (AOL LLC) O4 - HKLM..\Run: [Carbonite Backup] C:\Program Files\Carbonite\Carbonite Backup\CarboniteUI.exe (Carbonite, Inc.) O4 - HKLM..\Run: [DMXLauncher] C:\Program Files\Roxio\CinePlayer\DMXLauncher.exe () O4 - HKLM..\Run: [Eraser] C:\Program Files\Eraser\Eraser.exe (The Eraser Project) O4 - HKLM..\Run: [HostManager] C:\Program Files\Common Files\AOL\1134524958\ee\aolsoftware.exe (AOL LLC) O4 - HKLM..\Run: [LogonStudio] C:\Program Files\WinCustomize\LogonStudio\logonstudio.exe (Stardock and Luca Saggese) O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh) O4 - HKLM..\Run: [Pure Networks Port Magic] C:\Program Files\Pure Networks\Port Magic\PortAOL.exe (Pure Networks, Inc.) O4 - HKLM..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe (RealNetworks, Inc.) O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatchTray10.exe (Sonic Solutions) O4 - HKLM..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe (Hewlett-Packard) O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [SunKistEM] C:\Program Files\Digital Media Reader\shwiconEM.exe (Alcor Micro, Corp.) O4 - HKLM..\Run: [Turtle Beach Audio Advantage] C:\Program Files\Turtle Beach\Audio Advantage Micro\TBAA.exe (Voyetra Turtle Beach, Inc.) O4 - HKLM..\Run: [VTTimer] C:\WINDOWS\System32\VTTimer.exe (S3 Graphics, Inc.) O4 - HKLM..\Run: [VTTrayp] C:\WINDOWS\System32\VTTrayp.exe (S3 Graphics Co., Ltd.) O4 - HKLM..\Run: [YMailAdvisor] C:\Program Files\Yahoo!\Common\YMailAdvisor.exe (Yahoo! Inc.) O4 - HKCU..\Run: [Audiogalaxy] C:\Documents and Settings\Owner\Local Settings\Application Data\Audiogalaxy\Audiogalaxy.exe (AG Entertainment Inc) O4 - HKCU..\Run: [ContactKeeper Birthday reminder] C:\Program Files\ContactKeeper\ContactKeeper.exe (ContactKeeper) O4 - HKCU..\Run: [GenieoSystemTray] C:\Documents and Settings\Owner\Application Data\Genieo\Application\TrayUi\bin\gentray.exe () O4 - HKCU..\Run: [GenieoUpdaterService] C:\Documents and Settings\Owner\Application Data\Genieo\Application\Updater\bin\genupdater.exe () O4 - HKCU..\Run: [MoneyAgent] C:\Program Files\Microsoft Money\System\mnyexpr.exe (Microsoft Corp.) O4 - HKCU..\Run: [NBJ] C:\Program Files\Ahead\Nero BackItUp\NBJ.exe (Ahead Software AG) O4 - HKCU..\Run: [Sticky Pad] C:\Program Files\StickyPad\StickyPad.exe (Green Eclipse) O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com) O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Windows Desktop Search.lnk = C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\en-us\bin\WindowsSearch.exe (Microsoft Corporation) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8 - Extra context menu item: &AOL Toolbar Search - c:\Program Files\AOL\AOL Toolbar 5.0\resources\en-us\local\search.html () O8 - Extra context menu item: &MSN Search - C:\Program Files\MSN Toolbar Suite\TB\02.05.0001.1119\en-us\msntb.dll (Microsoft Corporation) O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_70C5B381380DB17F.dll/cmsidewiki.html File not found O9 - Extra Button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC) O9 - Extra Button: Launch Cooliris - {3437D640-C91A-458f-89F5-B9095EA4C28B} - C:\Program Files\PicLensIE\cooliris.dll File not found O9 - Extra Button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll (Yahoo! Inc.) O9 - Extra Button: Diigo - {B952F2E0-5F9F-4898-89A8-4FB770625E09} - C:\Program Files\Diigo\DiigoToolbar.4.0.2.dll (Diigo inc.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O15 - HKCU\..Trusted Domains: aol.com ([objects] * is out of zone range - 5) O15 - HKCU\..Trusted Domains: localhost ([]* in Local intranet) O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.microsoft.com/sites/production/ieawsdc32.cab (Microsoft Office Template and Media Control) O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/5/b/0/5b0d4654-aa20-495c-b89f-c1c34c691085/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool) O16 - DPF: {231B1C6E-F934-42A2-92B6-C2FEFEC24276} C:\Program Files\Yahoo!\common\yucconfig.dll (yucsetreg Class) O16 - DPF: {26B2A5DA-BFD6-422F-A89A-28A54C74B12B} http://www.costcophotocenter.com/upload/activex/v3_0_0_4/PhotoCenter_ActiveX_Control.cab (Photo Upload Plugin Class) O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\Yinsthelper.dll (Installation Support) O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx.com/player/DivXBrowserPlugin.cab (DivXBrowserPlugin Object) O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1343016986984 (MUWebControl Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://dl8-cdn-01.sun.com/s/ESD7/JSCDL/jdk/6u12-b04/jinstall-6u12-windows-i586-jc.cab?e=1237160653413&h=5a803cf1602c38ccefcdc931fb3ce942/&filename=jinstall-6u12-windows-i586-jc.cab (Java Plug-in 1.6.0_12) O16 - DPF: {A1662FB6-39BE-41BB-ACDC-0448FB1B5817} http://images3.pnimedia.com/ProductAssets/costcous/activex/v3_0_0_5/PhotoCenter_ActiveX_Control.cab (Photo Upload Plugin Class) O16 - DPF: {BEA7310D-06C4-4339-A784-DC3804819809} http://images3.pnimedia.com/ProductAssets/costcous/activex/v3_0_0_7/PhotoCenter_ActiveX_Control.cab (Photo Upload Plugin Class) O16 - DPF: {CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab (Java Plug-in 1.4.2) O16 - DPF: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab (Java Plug-in 1.6.0_12) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab (Java Plug-in 1.6.0_12) O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} http://www.adobe.com/products/acrobat/nos/gp.cab (get_atlcom Class) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444552440000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Reg Error: Key error.) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab (Shockwave Flash Object) O16 - DPF: {DE22A7AB-A739-4C58-AD52-21F9CD6306B7} http://download.microsoft.com/download/7/E/6/7E6A8567-DFE4-4624-87C3-163549BE2704/clearadj.cab (CTAdjust Class) O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} http://zone.msn.com/bingame/dim2/default/popcaploader_v6.cab (PopCapLoader Object) O16 - DPF: {E0FEE963-BB53-4215-81AD-B28C77384644} https://pattcw.att.motive.com/wizlet/DSLActivation/static/installer/ATTInternetInstaller.cab (WebBrowserType Class) O16 - DPF: {EFD1E13D-1CB3-4545-B754-CA410FE7734F} http://www.costcophotocenter.com/upload/activex/v3_0_0_2/PhotoCenter_ActiveX_Control.cab? (Photo Upload Plugin Class) O16 - DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} http://utilities.pcpitstop.com/optimize2/pcpitstop2.dll (PCPitstop Exam) O18 - Protocol\Handler\dssrequest - No CLSID value found O18 - Protocol\Handler\sacore - No CLSID value found O18 - Protocol\Filter\application/x-mfe-ipt - No CLSID value found O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com) O20 - Winlogon\Notify\igfxcui: DllName - (igfxsrvc.dll) - C:\WINDOWS\System32\igfxsrvc.dll (Intel Corporation) O24 - Desktop WallPaper: C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2004/08/26 18:04:39 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKCU\...com [@ = ComFile] -- Reg Error: Key error. File not found O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012/08/26 10:14:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\My Documents\ [2012/08/25 19:03:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Viewpoint [2012/08/25 19:02:58 | 000,000,000 | ---D | C] -- C:\Program Files\Viewpoint [2012/08/25 11:16:48 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2012/08/24 22:58:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\My Documents\Trever [2012/08/24 22:57:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\My Documents\esco cruise 8 24 12 [2012/08/24 14:44:17 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe [2012/08/24 14:44:17 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe [2012/08/24 14:44:17 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe [2012/08/24 14:44:17 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe [2012/08/24 14:41:42 | 000,000,000 | ---D | C] -- C:\Qoobox [2012/08/24 14:41:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt [2012/08/22 23:30:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\My Documents\ [2012/08/13 07:34:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\My Documents\FLAGS [2012/08/12 18:40:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Application Data\SUPERAntiSpyware.com [2012/08/12 18:39:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SUPERAntiSpyware [2012/08/12 18:39:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com [2012/08/12 18:39:46 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware [2012/08/11 10:41:38 | 00 [2012/08/04 17:27:54 | 0 [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2098/01/01 00:00:00 | 515,903,500 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\PICT0001.AVI [2012/08/27 08:47:00 | 000,000,830 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2012/08/27 08:42:10 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2012/08/27 08:00:30 | 000,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2012/08/27 07:59:07 | 000,000,024 | ---- | M] () -- C:\WINDOWS\LogonStudio.ini [2012/08/27 07:58:56 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2012/08/27 07:58:50 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2012/08/27 07:58:47 | 2078,789,632 | -HS- | M] () -- C:\hiberfil.sys [2012/08/26 17:59:15 | 000,876,548 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\ [2012/08/26 17:53:36 | 000,000,030 | ---- | M] () -- C:\WINDOWS\iedit.INI [2012/08/26 17:40:00 | 000,215,899 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\3 [2012/08/26 10:42:25 | 000,000,292 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\Shortcut to MiniToolBox.exe.lnk [2012/08/26 10:38:01 | 000,200,157 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\FotoSketcher - ED.jpg [2012/08/26 10:37:20 | 000,137,881 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\ [2012/08/26 08:42:56 | 000,018,432 | ---- | M] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012/08/26 08:38:27 | 000,141,139 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\ [2012/08/25 18:31:51 | 000,000,734 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts [2012/08/25 18:20:31 | 000,000,278 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\Shortcut to CIntRep.exe.lnk [2012/08/25 11:14:18 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Owner\ipconfig [2012/08/24 23:02:11 | 000,299,735 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\FotoSketcher - rick rod.jpg [2012/08/24 19:46:45 | 000,362,504 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\r [2012/08/24 14:59:27 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.bak [2012/08/24 14:43:15 | 000,000,283 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\Shortcut to ComboFix.exe.lnk [2012/08/24 14:10:37 [2012/08/24 10:54:06 | 000,000,289 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\Shortcut to adwcleaner.exe.lnk [2012/08/24 10:54:06 | 000,000,289 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\Shortcut to adwcleaner.exe.lnk [2012/08/24 10:31:43 | 000,490,971 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\FotoSketcher - 3 silver.jpg [2012/08/24 10:29:39 | 000,409,383 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\3 [2012/08/24 08:33:46 | 000,000,071 | ---- | M] () -- C:\WINDOWS\Pex.INI [2012/08/24 08:32:00 | 000,655,360 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\TASK LIST GURU FILE.stdl [2012/08/24 08:32:00 | 000,655,360 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\TASK LIST GURU FILE Backup.stdl-backup [2012/08/22 23:25:25 | 000,245,544 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\FotoSketcher - [2012/08/22 17:33:51 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2012/08/22 11:26:47 | 000,959,972 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\Coocuments and Settings\Owner\My Documents\FotoSketcher - 92.jpg [2012/08/21 11:20:04 | 000,151,067 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\ron blur.jpg [2012/08/21 10:39:50 | 000,232,715 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\FotoSketcher - brennon rogers.jpg [2012/08/20 19:57:01 | 000,377,023 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\Foto [2012/08/20 19:38:58 | 000,442,468 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\FotoSketche [2012/08/17 22:37:54 | 000,133,591 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\98 CLOSE UP.jpg [2012/08/17 20:00:13 | 000,135,168 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\ContactKeeper.mdb [2012/08/17 18:10:05 | 000,396,089 | ---- | M] () -- C:\Documents and Settings\All Users\Documents\red trulli.jpg [2012/08/17 08:40:33 | 000,158,252 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\Luis and Cody final.jpg [2012/08/17 08:38:51 | 000,163,942 | ---- | M] () -- C:\Documents and Settings\Owner\My Documen [2012/08/16 12:07:50 | 000,009,662 | ---- | M] () -- C:\WINDOWS\EPISME00.SWB [2012/08/16 09:58:41 | 000,381,626 | ---- | M] () -- C:\Documents and Settings\Owner\My Document [2012/08/14 18:56:22 | 000,491,217 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents [2012/08/14 18:44:45 | 000,447,790 | ---- | M] () -- C:\Documents and Settings\Owner\My Docum [2012/08/14 08:35:44 | 000,261,855 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\henry j.jpg [2012/08/14 08:32:58 | 000,319,195 | ---- | M] () -- C:\Documents and Settings\Owner\My Documer - [2012/08/13 18:52:24 | 000,085,989 | ---- | M] () -- C:\VETlog.dmp [2012/08/13 08:53:45 | 000,206,484 | ---- | M] () -- C:\Documents and Settings\Owner\My Docum [2012/08/12 18:39:59 | 000,001,694 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk [2012/08/12 15:48:11 | 000,000,375 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.ics [2012/08/11 19:37:49 | 000,033,123 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\2013 cal for 1620 template.gif [2012/08/11 10:53:08 | 000,264,391 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents [2012/08/10 16:10:55 | 000,131,454 | ---- | M] () -- C:\Documents and Settings\Owner\My Do [2012/08/04 08:22:22 | 000,170,759 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\g matlock.jpg [2012/08/04 07:56:51 | 000,025,088 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\DMX.bmk [2012/08/03 16:50:25 | 000,032,510 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\2013calendaR 125.gif [2012/08/03 09:52:58 | 000,001,815 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk [2012/08/03 09:43:32 | 000,046,198 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\16x20 costco template.jpg [2012/08/02 17:34:59 | 000,112,706 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\BW 2012 CALENDAR 70m 90.jpg [2012/07/31 23:34:18 | 000,562,622 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\DSC07123.JPG [2012/07/31 23:34:00 | 000,578,270 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\DSC07122.JPG [2012/07/31 23:33:44 | 000,423,727 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\DSC07121.JPG [2012/07/31 19:13:15 | 000,090,488 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents [2012/07/29 11:08:14 | 000,264,738 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\FotoSketcher g [2012/07/29 10:47:54 | 000,294,060 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\5 wins.jpg [2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012/08/26 17:54:59 | 000,876,548 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents [2012/08/26 11:40:24 | 000,706,521 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\1 [2012/08/26 10:42:25 | 000,000,292 | ---- | C] () -- C:\Documents and Settings\Owner\Desktop\Shortcut to MiniToolBox.exe.lnk [2012/08/26 10:38:01 | 000,200,157 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\FotoSketcher - ED.jpg [2012/08/26 10:37:19 | 000,137,881 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\ED.jpg [2012/08/26 10:08:22 | 000,915,828 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\04 W LOGO.jpg [2012/08/25 18:20:31 | 000,000,278 | ---- | C] () -- C:\Documents and Settings\Owner\Desktop\Shortcut to CIntRep.exe.lnk [2012/08/25 11:14:17 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Owner\ipconfig [2012/08/24 22:59:42 | 000,299,735 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents [2012/08/24 14:44:17 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe [2012/08/24 14:44:17 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2012/08/24 14:44:17 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2012/08/24 14:44:17 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2012/08/24 14:43:15 | 000,000,283 | ---- | C] () -- C:\Documents and Settings\Owner\Desktop\Shortcut to ComboFix.exe.lnk [2012/08/24 11:34:19 | 000,000,289 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\Shortcut to adwcleaner.exe.lnk [2012/08/24 10:54:06 | 000,000,289 | ---- | C] () -- C:\Documents and Settings\Owner\Desktop\Shortcut to adwcleaner.exe.lnk [2012/08/24 10:30:36 | 000,490,971 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\FotoSketcher - 3 silver.jpg [2012/08/24 10:29:38 | 000,409,383 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\3 [2012/08/22 17:36:58 | 2078,789,632 | -HS- | C] () -- C:\hiberfil.sys [2012/08/22 17:33:10 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2012/08/22 11:27:38 | 000,959,972 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\ [2012/08/20 19:37:29 | 000,442,468 | ---- | C] () -- C:\Documents and Settings\Owner\M [2012/08/18 10:03:54 | 000,065,366 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\DSC08069.jpg [2012/08/18 10:00:07 | 000,293,598 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\F [2012/08/16 14:41:25 | 000,108,579 | ---- | C] () -- C:\Documents and Settings\Owner\Desktop\dev..JPG [2012/08/16 09:54:19 | 000,389,470 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\0 30.jpg [2012/08/16 08:44:33 | 000,382,296 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\ [2012/08/14 19:00y Documents\FotoSketcher - thalia.jpg [2012/08/14 08:36:53 | 000,263,650 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents [2012/08/13 07:20:13 | 000,117,376 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\ [2012/08/08 09:18:13 | 000,001,857 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\MSN Installer.lnk [2012/08/07 11:04:24 | 002,587,659 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\ [2R 5 TIME.jpg [2012/07/29 19:39:52 | 000,268,901 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\FotoSketcher - winner mike.jpg [2012/07/29 11:11:43 | 000,179,g [2012/06/27 10:15:17 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2012/05/28 19:48:59 | 000,000,336 | ---- | C] () -- C:\Documents and Settings\Owner\cvdm.dat [2012/05/28 19:48:02 | 000,000,013 | ---- | C] () -- C:\Documents and Settings\Owner\cvdm.err [2012/05/28 11:49:14 | 000,991,704 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat [2012/02/15 17:22:03 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll [2012/01/20 19:22:41 | 000,000,214 | ---- | C] () -- C:\WINDOWS\WebStudio.INI [2011/12/15 08:24:59 | 000,004,158 | ---- | C] () -- C:\Documents and Settings\Owner\.recently-used.xbel [2011/04/23 19:40:23 | 000,000,275 | ---- | C] () -- C:\WINDOWS\ImageInc.ini [2011/02/05 01:50:29 | 002,136,358 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-357868212-2267230723-2855511169-1003-0.dat [2011/02/05 01:50:25 | 000,458,134 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat [2008/12/17 15:43:07 | 000,250,156 | ---- | C] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\rx_image.Cache [2008/06/16 21:06:25 | 000,025,088 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\DMX.bmk [2008/02/22 16:52:40 | 000,000,164 | -H-- | C] () -- C:\Documents and Settings\All Users\hpothb07.dat [2008/02/22 16:52:39 | 000,000,253 | -H-- | C] () -- C:\Documents and Settings\All Users\hpothb07.tif [2008/02/03 15:09:08 | 000,729,088 | ---- | C] () -- C:\Documents and Settings\Owner\first web page.ows [2007/04/03 18:38:06 | 000,000,023 | ---- | C] () -- C:\Documents and Settings\Owner\presets.ini [2007/02/06 18:16:51 | 000,000,494 | -H-- | C] () -- C:\Documents and Settings\Owner\IPH.BAK [2006/12/23 01:00:30 | 000,000,126 | ---- | C] () -- C:\Documents and Settings\Owner\default.pls [2006/02/17 08:27:04 | 000,006,148 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\wklnhst.dat [2005/10/11 13:16:31 | 000,001,382 | ---- | C] () -- C:\Documents and Settings\Owner\P [2005/09/04 21:19:22 | 000,000,007 | ---- | C] () -- C:\Documents and Settings\Owner\license.bin [2005/05/29 22:46:41 | 000,000,008 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\usb.dat.bin [2005/01/31 18:26:29 | 000,000,128 | ---- | C] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\fusioncache.dat [2004/11/30 22:25:13 | 000,018,432 | ---- | C] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [color=#E56717]========== LOP Check ==========[/color] [2012/06/07 08:17:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\.mono [2011/10/05 19:54:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Artweaver [2007/06/13 19:09:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BackToTheBeach [2012/07/02 11:04:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Carbonite [2008/01/16 13:29:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\fdrtools.com [2006/10/30 17:53:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Individual Software [2005/11/06 21:57:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MSN Search Toolbar [2008/04/19 18:13:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PCPitstop [2012/04/30 20:16:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PearlMountain [2012/04/30 15:29:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PearlMountainSoft [2005/02/27 17:09:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PopCap [2008/12/17 15:41:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SmartSound Software Inc [2008/02/03 14:53:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SongbirdVLC [2010/12/06 20:59:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Titanium [2005/07/25 12:10:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ulead Systems [2012/08/25 19:03:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint [2011/02/16 20:12:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521} [2012/06/07 08:17:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\.mono [2006/12/04 22:13:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\aignes [2005/08/14 19:00:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Alien Skin [2011/10/05 19:54:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Artweaver [2011/11/24 12:11:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Blender Foundation [2011/12/30 19:38:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\calibre [2011/08/13 17:37:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\DesktopReminder [2010/05/11 21:07:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\DeviceDoctorSoftware [2011/07/27 19:26:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Dextronet [2012/05/09 08:12:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\ElevatedDiagnostics [2008/01/16 13:29:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\fdrtools.com [2011/12/29 19:44:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Genieo [2009/04/30 19:45:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\gtk-2.0 [2005/03/07 21:20:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Individual Software [2012/06/25 20:43:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\jAlbum [2011/12/19 08:51:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\LibreOffice [2005/11/06 22:01:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\MSN Search Toolbar [2005/01/01 19:36:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\MSNInstaller [2012/04/30 15:29:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\PearlMountainSoft [2008/02/03 14:52:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Songbird [2012/01/23 22:34:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Spotify [2011/09/11 08:36:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\SpringPublisher [2012/06/18 12:50:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\stickies [2006/02/17 08:27:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Template [2011/07/09 10:04:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\TiltShift.E66C440A17F1D70FFD66FDB4568328647297CFDC.1 [2010/12/06 21:04:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Titanium [2009/10/08 07:04:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Ulead Systems [2010/11/17 07:58:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\VisionBoardBuilder [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\RemoteAccess\RouterManagers\IP /s >[/color] "ProtocolId" = 33 "GlobalInfo" = [Binary data over 100 bytes] "DLLPath" = %SystemRoot%\System32\iprtrmgr.dll -- [2008/04/13 17:11:55 | 000,177,152 | ---- | M] (Microsoft Corporation) [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 76 bytes -> C:\Documents and Settings\Owner\My Documents\ZEPH ON BASE.jpg:Roxio EMC Stream @Alternate Data Stream - 76 bytes -> C:\Documents and Settings\Owner\My Documents\red jag dm car show.JPG:Roxio EMC Stream @Alternate Data Stream - 76 bytes -> C:\Documents and Settings\Owner\My Documents\heat poster lightning.jpg:Roxio EMC Stream @Alternate Data Stream - 76 bytes -> C:\Documents and Settings\Owner\My Documents\final final casbah.tif:Roxio EMC Stream @Alternate Data Stream - 76 bytes -> C:\Documents and Settings\Owner\My Documents\dave work history.tif:Roxio EMC Stream @Alternate Data Stream - 76 bytes -> C:\Documents and Settings\Owner\My Documents\08 state board of equal.tif:Roxio EMC Stream < End of report >