Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Can't run .exe files

Started by betctru , Jul 26 2011 09:46 AM

Page 5 of 8
3
4
5
6
7

This topic is locked

#61
betctru

Posted 11 September 2011 - 03:54 PM

Member

Topic Starter
Member
63 posts

OK, will do. Not a problem playing with the computer.

Have a good evening!

Betsy

#62
betctru

Posted 11 September 2011 - 09:42 PM

Member

Topic Starter
Member
63 posts

Ran Auslogics Disk Defragmenter; it kept stopping with 18% defragmentation remaining. It also said I had 12 junk files an 90 registry errors.

Also, a recurring problem from before; sometime back, I installed Trend Micro's RUBotted; it's now in my system tray and I can't uninstall it--can't find it to uninstall.

Finally, one of the things that wouldn't install was software related, I believe, to my video card. Now, upon bootup, a folder opens C:\Program Files\ATI

It contains the following folders : Bin, Config, Images and Reports.

While this isn't a big deal, I have to close it each time the system reboots.

Haven't found anything else so far misbehaving....

EDIT: When I try to use Media Center, I get a dialog box with the following message:

Application has generated an exception that could not be handled.
Process ID=0x590 (1424), Thread ID=0x2654 (9812)
Click OK to terminate the application.
Click CANCEL to debug the application.

Betsy

Edited by betctru, 12 September 2011 - 11:03 AM.

#63
Essexboy

Posted 12 September 2011 - 11:23 AM

GeekU Moderator

Retired Staff
69,964 posts

That error is probably generated by dotnet - so lets get at it then

There is a new little programme out that claims to be able to fix this, so if you are game lets give it a whirl. If not we could do it the long winded way

For the Rubotted tray run this OTL fix and I will clear that and a new log will show me where the ATI is starting from so that I can stop that

Rubotted first

Warning This fix is only relevant for this system and no other, using on another computer may cause problems

Run OTL

Under the Custom Scans/Fixes box at the bottom, paste in the following

:OTL
O4 - HKLM..\Run: [TMRUBottedTray] C:\Program Files\Trend Micro\RUBotted\TMRUBottedTray.exe (Trend Micro Inc.)

:Files
ipconfig /flushdns /c
C:\Program Files\Trend Micro

:Commands
[purity]
[resethosts]
[emptytemp]
[EMPTYFLASH]
[CREATERESTOREPOINT]
[Reboot]
Then click the Run Fix button at the top
Let the program run unhindered, reboot the PC when it is done
Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

Now Dotnet

Please download UVK to your desktop and install

Repairs

Run UVK and select Repair system then select More fixes

Posted Image

Run the following tasks

Install .NET framework..

#64
betctru

Posted 12 September 2011 - 12:03 PM

Member

Topic Starter
Member
63 posts

Running OTL now...it's been running about twenty minutes "Killing Processes"--how long should it take?

Betsy

#65
Essexboy

Posted 12 September 2011 - 12:15 PM

GeekU Moderator

Retired Staff
69,964 posts

Not that long - mayhap Rubotted is playing games

Stop OTL and I will change the fix slightly

Warning This fix is only relevant for this system and no other, using on another computer may cause problems

Run OTL

Under the Custom Scans/Fixes box at the bottom, paste in the following

:OTL
O4 - HKLM..\Run: [TMRUBottedTray] C:\Program Files\Trend Micro\RUBotted\TMRUBottedTray.exe (Trend Micro Inc.)

:Files
ipconfig /flushdns /c
C:\Program Files\Trend Micro

:Commands
[purity]
[resethosts]
[EMPTYFLASH]
[CREATERESTOREPOINT]
[Reboot]
Then click the Run Fix button at the top
Let the program run unhindered, reboot the PC when it is done
Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

#66
betctru

Posted 12 September 2011 - 12:22 PM

Member

Topic Starter
Member
63 posts

Can't stop OTL using Task Manager...should I reboot...

#67
Essexboy

Posted 12 September 2011 - 12:25 PM

GeekU Moderator

Retired Staff
69,964 posts

Aye do that please

#68
betctru

Posted 12 September 2011 - 02:30 PM

Member

Topic Starter
Member
63 posts

Results of the OTL Quick Scan

OTL logfile created on: 9/12/2011 3:59:50 PM - Run 5
OTL by OldTimer - Version 3.2.28.0 Folder = C:\Documents and Settings\Betsy True\Desktop
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1022.09 Mb Total Physical Memory | 177.69 Mb Available Physical Memory | 17.38% Memory free
2.40 Gb Paging File | 1.06 Gb Available in Paging File | 44.25% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 144.21 Gb Total Space | 59.21 Gb Free Space | 41.05% Space Free | Partition Type: NTFS

Computer Name: DELLA | User Name: Betsy True | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/09/12 15:11:43 | 000,647,216 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
PRC - [2011/09/12 14:51:29 | 000,581,632 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Betsy True\Desktop\OTL.com
PRC - [2011/09/11 10:30:56 | 000,313,624 | ---- | M] (Speedbit Ltd.) -- C:\Program Files\SpeedBit Video Accelerator\VideoAcceleratorService.exe
PRC - [2011/09/11 10:30:56 | 000,153,888 | ---- | M] (Speedbit Ltd.) -- C:\Program Files\SpeedBit Video Accelerator\VideoAcceleratorEngine.exe
PRC - [2011/09/11 10:23:12 | 000,273,528 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe
PRC - [2011/09/11 10:02:25 | 000,161,664 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2011/09/09 22:43:15 | 000,366,024 | ---- | M] (IncrediMail, Ltd.) -- C:\Program Files\IncrediMail\bin\IncMail.exe
PRC - [2011/09/09 22:43:14 | 000,263,624 | ---- | M] (IncrediMail, Ltd.) -- C:\Program Files\IncrediMail\bin\ImApp.exe
PRC - [2011/08/02 15:50:00 | 000,610,120 | R--- | M] (WinZip Computing, S.L.) -- C:\Program Files\WinZip\WZQKPICK.EXE
PRC - [2011/07/27 07:06:44 | 000,267,488 | ---- | M] () -- C:\Program Files\StartNow Toolbar\ToolbarUpdaterService.exe
PRC - [2011/07/14 20:54:57 | 000,136,584 | ---- | M] (LogMeIn, Inc.) -- C:\Program Files\LogMeIn\x86\ramaint.exe
PRC - [2011/07/14 20:54:13 | 000,374,152 | ---- | M] (LogMeIn, Inc.) -- C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
PRC - [2011/07/06 19:52:38 | 000,449,584 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2011/07/06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011/06/30 12:14:14 | 002,212,352 | ---- | M] () -- C:\Program Files\Printer Pro Desktop\PrinterProDesktop.exe
PRC - [2011/05/25 16:07:14 | 024,176,560 | ---- | M] (Dropbox, Inc.) -- C:\Documents and Settings\Betsy True\Application Data\Dropbox\bin\Dropbox.exe
PRC - [2011/03/14 12:56:34 | 002,071,904 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe
PRC - [2010/11/24 10:14:33 | 002,331,544 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgfws9.exe
PRC - [2010/11/24 10:14:33 | 000,725,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2010/11/08 13:04:20 | 000,390,528 | ---- | M] (LogMeIn, Inc.) -- C:\Program Files\LogMeIn\x86\LogMeIn.exe
PRC - [2010/09/20 08:30:02 | 000,621,920 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2010/09/17 16:40:06 | 000,063,048 | ---- | M] (LogMeIn, Inc.) -- C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
PRC - [2010/07/27 13:49:04 | 000,405,384 | ---- | M] (Chaos Software Group, Inc.) -- C:\Program Files\Chaos Software\Intellect\alarm.exe
PRC - [2010/07/23 09:35:44 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe
PRC - [2010/06/22 11:08:09 | 000,515,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2010/06/22 11:08:04 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2010/06/22 11:07:58 | 005,897,808 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe
PRC - [2010/06/22 11:07:58 | 000,596,560 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
PRC - [2010/06/22 11:07:52 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2010/06/22 11:07:51 | 000,842,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgam.exe
PRC - [2009/07/08 03:53:36 | 000,472,112 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files\Pure Networks\Network Magic\nmapp.exe
PRC - [2009/07/07 15:48:44 | 000,647,216 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe
PRC - [2009/07/01 08:44:56 | 001,273,856 | ---- | M] (Nuance Communications, Inc.) -- C:\Program Files\Nuance\PDF Professional 6\PdfPro6Hook.exe
PRC - [2009/06/30 16:49:06 | 000,134,944 | ---- | M] (Nuance Communications, Inc.) -- C:\Program Files\Nuance\PDF Professional 6\PDFProFiltSrv.exe
PRC - [2008/08/08 18:30:44 | 000,016,712 | R--- | M] () -- C:\Program Files\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe
PRC - [2008/04/14 05:42:32 | 000,420,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntvdm.exe
PRC - [2008/04/14 05:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008/03/18 20:31:20 | 004,742,184 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\Yahoo! Widget Engine\YahooWidgets.exe
PRC - [2007/12/24 11:07:38 | 000,067,128 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
PRC - [2007/07/24 12:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
PRC - [2007/01/04 17:38:08 | 000,024,652 | ---- | M] (Viewpoint Corporation) -- C:\Program Files\Viewpoint\Common\ViewpointService.exe
PRC - [2006/10/03 18:42:38 | 000,747,104 | ---- | M] (Audible, Inc.) -- C:\Program Files\Audible\Bin\ADHelper.exe
PRC - [2006/08/25 16:47:54 | 000,724,992 | ---- | M] () -- C:\Program Files\NETGEAR\PS121v2\PS121v2.exe
PRC - [2006/02/24 15:00:14 | 000,135,168 | ---- | M] () -- C:\Program Files\ScreenThemes\scthemes.exe
PRC - [2005/12/12 12:58:24 | 000,102,400 | ---- | M] () -- C:\Program Files\Ilium Software\ListPro\ListProAlarms.exe
PRC - [2005/04/25 09:49:52 | 000,086,142 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
PRC - [2004/06/09 14:27:34 | 000,471,040 | ---- | M] (PalmSource, Inc) -- C:\Program Files\palmOne\Hotsync.exe
PRC - [2003/12/04 16:21:00 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
PRC - [2003/09/17 11:43:36 | 000,057,344 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Sound Blaster Live! 24-bit\Surround Mixer\CTSysVol.exe
PRC - [2002/06/11 11:03:12 | 000,303,104 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposts08.exe
PRC - [2002/06/11 10:45:10 | 000,286,720 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
PRC - [2002/06/11 10:32:22 | 000,147,456 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe
PRC - [2002/06/11 10:31:50 | 000,323,646 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe
PRC - [2002/04/11 04:19:36 | 000,077,824 | ---- | M] () -- C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
PRC - [2002/04/11 04:19:34 | 000,069,632 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
PRC - [1999/04/22 20:49:30 | 000,126,976 | ---- | M] (Vision X Software, Inc.) -- C:\DigiDay\dd_clock.exe

========== Modules (No Company Name) ==========

MOD - [2011/09/09 22:43:18 | 000,107,896 | ---- | M] () -- C:\Program Files\IncrediMail\bin\PMC.dll
MOD - [2011/09/09 22:43:18 | 000,071,112 | ---- | M] () -- C:\Program Files\IncrediMail\bin\wlessfp1.dll
MOD - [2011/09/09 22:43:16 | 000,267,720 | ---- | M] () -- C:\Program Files\IncrediMail\bin\ImLookExU.dll
MOD - [2011/09/09 22:43:15 | 000,132,552 | ---- | M] () -- C:\Program Files\IncrediMail\bin\ImComUtlU.dll
MOD - [2011/09/09 22:43:15 | 000,079,304 | ---- | M] () -- C:\Program Files\IncrediMail\bin\ImAppRU.dll
MOD - [2011/07/27 07:06:44 | 000,267,488 | ---- | M] () -- C:\Program Files\StartNow Toolbar\ToolbarUpdaterService.exe
MOD - [2011/06/30 12:14:14 | 002,212,352 | ---- | M] () -- C:\Program Files\Printer Pro Desktop\PrinterProDesktop.exe
MOD - [2011/06/24 22:56:36 | 000,087,328 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/06/24 22:56:14 | 001,241,888 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2011/02/04 17:48:30 | 000,291,840 | ---- | M] () -- C:\WINDOWS\system32\sbe.dll
MOD - [2010/02/05 14:27:45 | 001,291,776 | ---- | M] () -- C:\WINDOWS\system32\quartz.dll
MOD - [2009/10/26 10:28:45 | 000,077,824 | ---- | M] () -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\boost_log-vc71-mt-1_32.dll
MOD - [2009/10/26 10:28:45 | 000,057,344 | ---- | M] () -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\boost_thread-vc71-mt-1_32.dll
MOD - [2009/07/13 18:37:04 | 000,152,112 | ---- | M] () -- C:\Program Files\Common Files\Pure Networks Shared\Platform\CAntiVirusCOM.dll
MOD - [2009/07/13 18:37:04 | 000,098,304 | ---- | M] () -- C:\Program Files\Common Files\Pure Networks Shared\Platform\CFirewallCOM.dll
MOD - [2008/08/08 18:30:44 | 000,016,712 | R--- | M] () -- C:\Program Files\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe
MOD - [2008/04/14 05:42:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2008/04/14 05:41:52 | 000,059,904 | ---- | M] () -- C:\WINDOWS\system32\devenum.dll
MOD - [2008/03/18 20:21:48 | 000,094,208 | ---- | M] () -- C:\Program Files\Yahoo!\Yahoo! Widget Engine\jsd.dll
MOD - [2008/03/18 20:21:20 | 000,512,000 | ---- | M] () -- C:\Program Files\Yahoo!\Yahoo! Widget Engine\js32.dll
MOD - [2008/01/08 18:50:10 | 000,349,147 | ---- | M] () -- C:\Program Files\Yahoo!\Yahoo! Widget Engine\sqlite3.dll
MOD - [2007/12/24 11:07:35 | 000,061,496 | ---- | M] () -- C:\Program Files\Logitech\Desktop Messenger\8876480\8.1.1.50-8876480SL\Program\clntutil.dll
MOD - [2006/08/25 16:47:54 | 000,724,992 | ---- | M] () -- C:\Program Files\NETGEAR\PS121v2\PS121v2.exe
MOD - [2006/08/24 11:18:44 | 000,192,512 | ---- | M] () -- C:\Program Files\NETGEAR\PS121v2\Utility.dll
MOD - [2006/02/24 15:00:14 | 000,135,168 | ---- | M] () -- C:\Program Files\ScreenThemes\scthemes.exe
MOD - [2005/12/12 12:58:24 | 000,102,400 | ---- | M] () -- C:\Program Files\Ilium Software\ListPro\ListProAlarms.exe
MOD - [2004/06/10 17:51:00 | 000,060,928 | ---- | M] () -- C:\WINDOWS\system32\P17.dll
MOD - [2003/04/08 11:13:18 | 000,049,152 | ---- | M] () -- C:\WINDOWS\system32\PRTSERV.dll
MOD - [2002/06/11 11:20:34 | 000,192,512 | ---- | M] () -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpodvd08.dll
MOD - [2002/04/18 01:22:36 | 000,118,784 | ---- | M] () -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqcxm08.dll
MOD - [2002/04/11 04:19:42 | 000,024,576 | ---- | M] () -- C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnfps.dll
MOD - [2002/04/11 04:19:36 | 000,077,824 | ---- | M] () -- C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe

========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (getPlusHelper) getPlus®
SRV - [2011/09/12 15:11:43 | 000,647,216 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe -- (nmservice)
SRV - [2011/09/11 10:30:56 | 000,313,624 | ---- | M] (Speedbit Ltd.) [Auto | Running] -- C:\Program Files\SpeedBit Video Accelerator\VideoAcceleratorService.exe -- (VideoAcceleratorService)
SRV - [2011/09/11 10:02:25 | 000,161,664 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2011/07/27 07:06:44 | 000,267,488 | ---- | M] () [Auto | Running] -- C:\Program Files\StartNow Toolbar\ToolbarUpdaterService.exe -- (Updater Service for StartNow Toolbar)
SRV - [2011/07/26 10:16:02 | 001,025,352 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service)
SRV - [2011/07/14 20:54:57 | 000,136,584 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files\LogMeIn\x86\RaMaint.exe -- (LMIMaint)
SRV - [2011/07/14 20:54:13 | 000,374,152 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe -- (LMIGuardianSvc)
SRV - [2011/07/06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2010/11/24 10:14:33 | 002,331,544 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgfws9.exe -- (avgfws9)
SRV - [2010/11/08 13:04:20 | 000,390,528 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files\LogMeIn\x86\LogMeIn.exe -- (LogMeIn)
SRV - [2010/09/13 11:48:12 | 000,025,704 | R--- | M] (Amazon.com) [Auto | Stopped] -- C:\Program Files\Amazon\Amazon Unbox Video\ADVWindowsClientService.exe -- (ADVService)
SRV - [2010/07/23 09:35:44 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgemc.exe -- (avg9emc)
SRV - [2010/06/22 11:08:04 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2010/06/22 11:07:58 | 005,897,808 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2009/09/16 18:01:16 | 000,020,480 | ---- | M] (Intuit) [Disabled | Stopped] -- C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe -- (QBCFMonitorService)
SRV - [2009/06/30 16:49:06 | 000,134,944 | ---- | M] (Nuance Communications, Inc.) [Auto | Running] -- C:\Program Files\Nuance\PDF Professional 6\PDFProFiltSrv.exe -- (PDFProFiltSrv)
SRV - [2007/07/24 12:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Auto | Running] -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
SRV - [2007/01/04 17:38:08 | 000,024,652 | ---- | M] (Viewpoint Corporation) [Auto | Running] -- C:\Program Files\Viewpoint\Common\ViewpointService.exe -- (Viewpoint Manager Service)
SRV - [2006/11/09 15:30:14 | 000,065,536 | ---- | M] (Intuit Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe -- (QBFCService)
SRV - [2006/09/25 09:18:10 | 000,069,120 | ---- | M] (element5) [On_Demand | Stopped] -- C:\Program Files\Common Files\element5 Shared\Service\Licence Manager ESD.exe -- (License Management Service ESD)
SRV - [2005/09/04 07:14:08 | 000,068,096 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe -- (Macromedia Licensing Service)
SRV - [2005/08/02 17:18:49 | 000,086,016 | ---- | M] (CACE Technologies) [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental)
SRV - [2005/04/25 09:49:52 | 000,086,142 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe -- (IAANTMon) Intel®
SRV - [2003/12/04 16:21:00 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
SRV - [2002/03/15 16:37:46 | 000,081,920 | R--- | M] (HP) [On_Demand | Stopped] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)

========== Driver Services (SafeList) ==========

DRV - [2011/07/14 20:54:19 | 000,083,360 | ---- | M] (LogMeIn, Inc.) [File_System | Disabled | Stopped] -- C:\WINDOWS\System32\LMIRfsClientNP.dll -- (LMIRfsClientNP)
DRV - [2011/07/06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011/05/05 11:41:13 | 000,243,152 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2010/09/17 16:40:06 | 000,047,640 | ---- | M] (LogMeIn, Inc.) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\LMIRfsDriver.sys -- (LMIRfsDriver)
DRV - [2010/09/17 16:40:06 | 000,012,856 | ---- | M] (LogMeIn, Inc.) [Kernel | Auto | Running] -- C:\Program Files\LogMeIn\x86\rainfo.sys -- (LMIInfo)
DRV - [2010/06/22 11:08:00 | 000,122,448 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSDriver.sys -- (AVGIDSDriverxpx)
DRV - [2010/06/22 11:08:00 | 000,030,288 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSFilter.sys -- (AVGIDSFilterxpx)
DRV - [2010/06/22 11:08:00 | 000,026,192 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSShim.sys -- (AVGIDSShimxpx)
DRV - [2010/06/22 11:08:00 | 000,025,168 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\AVGIDSxx.sys -- (AVGIDSErHrxpx)
DRV - [2010/06/22 11:07:54 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2010/06/01 10:16:08 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2010/03/12 19:22:11 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\System32\Drivers\avgrkx86.sys -- (AvgRkx86)
DRV - [2009/10/26 10:28:45 | 000,030,104 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\avgfwdx.sys -- (Avgfwfd)
DRV - [2009/10/26 10:28:45 | 000,030,104 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgfwdx.sys -- (Avgfwdx)
DRV - [2009/07/07 15:48:44 | 000,026,672 | ---- | M] (Cisco Systems, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\purendis.sys -- (purendis)
DRV - [2009/07/07 15:48:44 | 000,025,392 | ---- | M] (Cisco Systems, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\pnarp.sys -- (pnarp)
DRV - [2008/04/14 00:23:10 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
DRV - [2008/03/02 04:28:00 | 000,206,608 | ---- | M] (Trend Micro Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\TMPassthru.sys -- (TMPassthruMP)
DRV - [2008/03/02 04:28:00 | 000,206,608 | ---- | M] (Trend Micro Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\TMPassthru.sys -- (TMPassthru)
DRV - [2007/08/20 18:05:27 | 000,016,694 | ---- | M] (PalmSource, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PalmUSBD.sys -- (PalmUSBD)
DRV - [2007/04/02 15:33:04 | 000,217,600 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\MobiCap.sys -- (MobiCap)
DRV - [2006/11/29 01:46:24 | 000,028,224 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\APLMp50.sys -- (APLMp50)
DRV - [2006/08/17 16:04:18 | 000,010,752 | ---- | M] (SerComm) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NETGEARUHOST.sys -- (NETGEARUHOST)
DRV - [2006/08/17 16:04:12 | 000,037,120 | ---- | M] (SerComm) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NETGEARUHUB.sys -- (NETGEARUHUB)
DRV - [2006/05/18 09:48:50 | 000,047,249 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ftdibus.sys -- (FTDIBUS)
DRV - [2005/10/20 17:48:03 | 000,047,616 | ---- | M] (Aladdin Knowledge Systems) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\Haspnt.sys -- (Haspnt)
DRV - [2005/08/02 17:10:13 | 000,032,512 | ---- | M] (CACE Technologies) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF)
DRV - [2005/07/28 08:18:40 | 000,685,056 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hardlock.sys -- (Hardlock)
DRV - [2005/07/20 18:08:28 | 000,100,096 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\aksusb.sys -- (aksusb)
DRV - [2005/07/20 18:08:26 | 000,327,808 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\akshasp.sys -- (akshasp)
DRV - [2005/06/17 11:20:20 | 000,119,424 | ---- | M] (Prolific Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ser2pl.sys -- (Ser2pl)
DRV - [2005/04/15 03:14:58 | 001,130,496 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2004/11/02 16:12:14 | 000,019,456 | ---- | M] (Intel Corporation ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\iqvw32.sys -- (NAL)
DRV - [2004/10/07 21:16:04 | 000,035,840 | ---- | M] (Oak Technology Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\AFS2K.SYS -- (AFS2K)
DRV - [2004/06/09 18:16:00 | 000,840,960 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\P17.sys -- (P17)
DRV - [2003/11/17 22:59:20 | 000,212,224 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWBS2.sys -- (HSFHWBS2)
DRV - [2003/11/17 22:58:02 | 000,680,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2003/11/17 22:56:26 | 001,042,432 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DP.sys -- (HSF_DP)
DRV - [2003/09/22 14:48:00 | 000,130,192 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctsfm2k.sys -- (ctsfm2k)
DRV - [2003/09/22 14:47:00 | 000,178,672 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv)
DRV - [2003/09/19 17:45:48 | 000,021,248 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
DRV - [2003/04/29 05:00:56 | 000,014,336 | R--- | M] (Linksys Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\BEFCM3XP.sys -- (BEFCMV3XP)
DRV - [2002/11/08 20:45:06 | 000,017,217 | ---- | M] (Dell Computer Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\omci.sys -- (omci)
DRV - [2002/05/28 11:37:26 | 000,018,458 | R--- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Adpusbst.sys -- (ADPUSBMS)
DRV - [2002/05/28 11:37:25 | 000,027,472 | R--- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Adpusbld.sys -- (ADPUSBLD)
DRV - [2002/02/07 03:41:24 | 000,033,991 | R--- | M] (Viking Sewing Machines AB) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RWSE.sys -- (RWSE)
DRV - [1997/12/22 21:02:46 | 000,023,936 | ---- | M] (Adaptec) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\aspi32.sys -- (Aspi32)
DRV - [1997/11/26 06:32:18 | 000,041,984 | ---- | M] (Husqvarna Sewing Machines AB) [Kernel | Auto | Stopped] -- C:\WINDOWS\System32\drivers\SEMLPT.SYS -- (SemLPT)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.c...rch/search.html
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomSearch = http://us.rd.yahoo.c...rch/search.html
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = http://search.msn.com/spbasic.htm
IE - HKLM\..\URLSearchHook: {03402f96-3dc7-4285-bc50-9e81fefafe43} - C:\Program Files\AIM Toolbar\aimtb.dll (AOL Inc.)

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Yahoo! Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo....=utf-8&fr=b1ie7
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?...l_date=20110911
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.kindleboards.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: ""
FF - prefs.js..browser.search.defaultthis.engineName: "PageRage Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.condui...={searchTerms}"
FF - prefs.js..browser.search.selectedEngine: "Bing"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.msn.com/?..._date=20110911"
FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:9.0.0.872
FF - prefs.js..extensions.enabledItems: avg@igeared:6.103.018.001
FF - prefs.js..extensions.enabledItems: [email protected]:4.0.3
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {8bdea9d6-6f62-45eb-8ee9-8a81af0d2f94}:3.5.0.12
FF - prefs.js..extensions.enabledItems: [email protected]:4.0.1
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:14.0.1
FF - prefs.js..extensions.enabledItems: {4be68a18-deba-49e0-9e09-ee7796f3b62a}:2.5.1.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.3.8.20110620112826
FF - prefs.js..extensions.enabledItems: {c2f863cd-0429-48c7-bb54-db756a951760}:5.96.10.6984
FF - prefs.js..extensions.enabledItems: [email protected]:1.10.01
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: [email protected]:3.3.3.2
FF - prefs.js..keyword.URL: "http://www.bing.com/...te=20110911&q="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@garmin.com/GpsControl: C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.0.60818.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@movenetworks.com/Quantum Media Player: File not found
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=13: C:\Program Files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll (Google)
FF - HKLM\Software\MozillaPlugins\@real.com/npmozax: C:\PROGRA~1\Mozilla Firefox\plugins\ [2011/09/11 12:06:12 | 000,000,000 | ---D | M]
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.666: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/npracplug;version=1.0.0.0: C:\Program Files\Real\RealArcade\Plugins\Mozilla\npracplug.dll (RealNetworks)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.666: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.666: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.666: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.666: c:\program files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@real.com/RhapsodyPlayerEngine,version=1.1: C:\Program Files\Real\RhapsodyPlayerEngine\nprhapengine.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@realarcade.com/RAClient: C:\Documents and Settings\All Users\Application Data\RealArcade\npraclient.dll (RealNetworks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files\Viewpoint\Viewpoint Media Player\npViewpoint.dll ()
FF - HKLM\Software\MozillaPlugins\@winzip.com/Winzip Courier: C:\Program Files\WinZip Courier\npwzwmc.dll (WinZip Computing, S.L.)
FF - HKLM\Software\MozillaPlugins\@zylom.com/ZylomGamesPlayer: C:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll (Zylom)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\[email protected]/YahooActiveXPluginBridge;version=1.0.0.1: C:\Program Files\Mozilla Firefox\plugins\npyaxmpb.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\ZEON/PDF,version=2.0: C:\Program Files\Nuance\PDF Professional 6\bin\nppdf.dll (Zeon Corporation)
FF - HKCU\Software\MozillaPlugins\@movenetworks.com/Quantum Media Player: File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\paypalfirefoxplugin@orbiscom: C:\Program Files\PayPal\PayPal Plug-In [2008/01/03 09:08:08 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010/11/24 10:15:40 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared [2011/05/09 17:17:02 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011/09/11 10:24:26 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{74c841e3-b59f-479e-8d7a-e26a942a87c8}: C:\Program Files\WinZip Courier\FFExt [2011/09/11 11:11:32 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.15\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/09/11 12:06:12 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.15\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/09/11 12:06:12 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0\extensions\\Components: C:\Program Files\Mozilla Firefox 4.0 Beta 8\components [2011/09/11 12:04:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox 4.0 Beta 8\plugins

[2010/01/09 14:12:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Betsy True\Application Data\Mozilla\Extensions
[2011/09/11 22:27:54 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Betsy True\Application Data\Mozilla\Firefox\Profiles\nuj11eia.default\extensions
[2010/07/15 23:56:01 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Betsy True\Application Data\Mozilla\Firefox\Profiles\nuj11eia.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/09/11 18:09:35 | 000,000,000 | ---D | M] (StartNow Toolbar) -- C:\Documents and Settings\Betsy True\Application Data\Mozilla\Firefox\Profiles\nuj11eia.default\extensions\{5911488E-9D1E-40ec-8CBB-06B231CC153F}
[2011/06/24 15:05:48 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Betsy True\Application Data\Mozilla\Firefox\Profiles\nuj11eia.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2011/09/06 14:28:55 | 000,000,000 | ---D | M] (Swag Bucks Community Toolbar) -- C:\Documents and Settings\Betsy True\Application Data\Mozilla\Firefox\Profiles\nuj11eia.default\extensions\{8bdea9d6-6f62-45eb-8ee9-8a81af0d2f94}
[2011/06/29 18:23:08 | 000,000,000 | ---D | M] ("AOL Messaging Toolbar") -- C:\Documents and Settings\Betsy True\Application Data\Mozilla\Firefox\Profiles\nuj11eia.default\extensions\{c2f863cd-0429-48c7-bb54-db756a951760}
[2011/09/06 14:28:54 | 000,000,000 | ---D | M] ("Xmarks") -- C:\Documents and Settings\Betsy True\Application Data\Mozilla\Firefox\Profiles\nuj11eia.default\extensions\[email protected]
[2010/01/09 14:14:15 | 000,000,000 | ---D | M] (Friendbar) -- C:\Documents and Settings\Betsy True\Application Data\Mozilla\Firefox\Profiles\nuj11eia.default\extensions\[email protected]
[2011/09/11 18:09:25 | 000,001,945 | ---- | M] () -- C:\Documents and Settings\Betsy True\Application Data\Mozilla\Firefox\Profiles\nuj11eia.default\searchplugins\bing-zugo.xml
[2010/10/06 08:24:10 | 000,001,820 | ---- | M] () -- C:\Documents and Settings\Betsy True\Application Data\Mozilla\Firefox\Profiles\nuj11eia.default\searchplugins\bing.xml
[2010/01/09 14:14:23 | 000,001,432 | ---- | M] () -- C:\Documents and Settings\Betsy True\Application Data\Mozilla\Firefox\Profiles\nuj11eia.default\searchplugins\google-search-for-friendbar-toolbar.xml
[2011/09/09 22:45:40 | 000,002,030 | ---- | M] () -- C:\Documents and Settings\Betsy True\Application Data\Mozilla\Firefox\Profiles\nuj11eia.default\searchplugins\MyStart Search.xml
[2010/01/09 14:14:22 | 000,001,192 | ---- | M] () -- C:\Documents and Settings\Betsy True\Application Data\Mozilla\Firefox\Profiles\nuj11eia.default\searchplugins\twitter-search.xml
[2011/09/10 07:24:28 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/04/20 09:59:35 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/11/13 18:22:55 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011/09/10 07:24:29 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2007/04/23 08:09:43 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\Access Privileges Test
[2009/04/01 21:10:21 | 000,000,000 | ---D | M] (RealArcade V3 Plugin) -- C:\Program Files\Mozilla Firefox\extensions\[email protected]
[2011/09/11 10:24:26 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT
[2008/01/04 18:21:46 | 000,019,104 | ---- | M] (WebEx Communications, Inc) -- C:\Program Files\mozilla firefox\plugins\atgpcdec.dll
[2008/01/04 18:21:46 | 000,105,632 | ---- | M] (WebEx Communications, Inc) -- C:\Program Files\mozilla firefox\plugins\atgpcext.dll
[2008/01/04 18:21:43 | 000,057,504 | ---- | M] (WebEx Communications, Inc) -- C:\Program Files\mozilla firefox\plugins\npatgpc.dll
[2003/10/02 14:44:00 | 000,142,848 | ---- | M] (Coupons, Inc.) -- C:\Program Files\mozilla firefox\plugins\npcpbrk7.dll
[2011/05/04 04:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2008/04/28 16:13:00 | 000,114,688 | ---- | M] () -- C:\Program Files\mozilla firefox\plugins\npmozax.dll
[2009/03/30 17:13:54 | 000,098,304 | ---- | M] (RealNetworks) -- C:\Program Files\mozilla firefox\plugins\npraclient.dll
[2005/04/27 16:10:49 | 000,102,400 | ---- | M] (RealNetworks) -- C:\Program Files\mozilla firefox\plugins\npracplug.dll
[2008/01/08 22:37:18 | 000,159,744 | ---- | M] (CNN) -- C:\Program Files\mozilla firefox\plugins\NPTURNMED.dll
[2007/04/16 13:07:12 | 000,180,293 | ---- | M] () -- C:\Program Files\mozilla firefox\plugins\npViewpoint.dll
[2007/03/09 19:16:44 | 000,189,496 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\mozilla firefox\plugins\npyaxmpb.dll
[2009/03/03 10:51:42 | 000,098,304 | ---- | M] (Zylom) -- C:\Program Files\mozilla firefox\plugins\npzylomgamesplayer.dll

O1 HOSTS File: ([2011/09/06 15:23:43 | 000,000,098 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Yahoo! Toolbar Helper) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngin0.dll (Conduit Ltd.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {465E08E7-F005-4389-980F-1D8764B3486C} - No CLSID value found.
O2 - BHO: (PlusIEEventHelper Class) - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files\Nuance\PDF Professional 6\bin\PlusIEContextMenu.dll (Zeon Corporation)
O2 - BHO: (DriveLetterAccess) - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll (Sonic Solutions)
O2 - BHO: (StartNow Toolbar Helper) - {6E13D095-45C3-4271-9475-F3B48227DD9F} - C:\Program Files\StartNow Toolbar\Toolbar32.dll ()
O2 - BHO: (Swag Bucks Toolbar) - {8bdea9d6-6f62-45eb-8ee9-8a81af0d2f94} - C:\Program Files\Swag_Bucks\prxtbSwa2.dll (Conduit Ltd.)
O2 - BHO: (PageRage Toolbar) - {9565115d-c7d6-46d3-bd63-b67b481a4368} - C:\Program Files\PageRage\prxtbPag0.dll (Conduit Ltd.)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (WinZip Courier BHO) - {A8FB70FA-0FDF-4601-9DC4-BFA1B357204F} - C:\Program Files\WinZip Courier\wzwmcie.dll (WinZip Computing, S.L.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll (Google Inc.)
O2 - BHO: (AIM Toolbar Loader) - {b0cda128-b425-4eef-a174-61a11ac5dbf8} - C:\Program Files\AIM Toolbar\aimtb.dll (AOL Inc.)
O2 - BHO: (IncrediMail MediaBar 2 Toolbar) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - C:\Program Files\IncrediMail_MediaBar_2\prxtbIncr.dll (Conduit Ltd.)
O2 - BHO: (ZeonIEEventHelper Class) - {DA986D7D-CCAF-47B2-84FE-BFA1549BEBF9} - C:\Program Files\Nuance\PDF Professional 6\bin\ZeonIEFavClient.dll (Zeon Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (OToolbarHelper Class) - {EAD3A971-6A23-4246-8691-C9244E858967} - C:\Program Files\PayPal\PayPal Plug-In\PayPalHelper.dll ()
O2 - BHO: (Yontoo Layers) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo Layers Client\YontooIEClient.dll (Yontoo Technology, Inc.)
O3 - HKLM\..\Toolbar: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngin0.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (StartNow Toolbar) - {5911488E-9D1E-40ec-8CBB-06B231CC153F} - C:\Program Files\StartNow Toolbar\Toolbar32.dll ()
O3 - HKLM\..\Toolbar: (AIM Toolbar) - {61539ecd-cc67-4437-a03c-9aaccbd14326} - C:\Program Files\AIM Toolbar\aimtb.dll (AOL Inc.)
O3 - HKLM\..\Toolbar: (Swag Bucks Toolbar) - {8bdea9d6-6f62-45eb-8ee9-8a81af0d2f94} - C:\Program Files\Swag_Bucks\prxtbSwa2.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (PageRage Toolbar) - {9565115d-c7d6-46d3-bd63-b67b481a4368} - C:\Program Files\PageRage\prxtbPag0.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (IncrediMail MediaBar 2 Toolbar) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - C:\Program Files\IncrediMail_MediaBar_2\prxtbIncr.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (PayPal Plug-In) - {DC0F2F93-27FA-4f84-ACAA-9416F90B9511} - C:\Program Files\PayPal\PayPal Plug-In\OToolbar.dll ()
O3 - HKLM\..\Toolbar: (Nuance PDF) - {E3286BF1-E654-42FF-B4A6-5E111731DF6B} - C:\Program Files\Nuance\PDF Professional 6\bin\ZeonIEFavClient.dll (Zeon Corporation)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (AIM Toolbar) - {61539ECD-CC67-4437-A03C-9AACCBD14326} - C:\Program Files\AIM Toolbar\aimtb.dll (AOL Inc.)
O3: - HKCU\..\Toolbar\WebBrowser - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Swag Bucks Toolbar) - {8BDEA9D6-6F62-45EB-8EE9-8A81AF0D2F94} - C:\Program Files\Swag_Bucks\prxtbSwa2.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (PageRage Toolbar) - {9565115D-C7D6-46D3-BD63-B67B481A4368} - C:\Program Files\PageRage\prxtbPag0.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (IncrediMail MediaBar 2 Toolbar) - {D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0} - C:\Program Files\IncrediMail_MediaBar_2\prxtbIncr.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation)
O4 - HKLM..\Run: [Corel File Shell Monitor] C:\Program Files\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe ()
O4 - HKLM..\Run: [CTSysVol] C:\Program Files\Creative\Sound Blaster Live! 24-bit\Surround Mixer\CTSysVol.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [LogMeIn GUI] C:\Program Files\LogMeIn\x86\LogMeInSystray.exe (LogMeIn, Inc.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [nmapp] C:\Program Files\Pure Networks\Network Magic\nmapp.exe (Cisco Systems, Inc.)
O4 - HKLM..\Run: [nmctxth] C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe (Cisco Systems, Inc.)
O4 - HKLM..\Run: [Nuance PDF Professional 6-reminder] C:\Program Files\Nuance\PDF Professional 6\Ereg\Ereg.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [P17Helper] C:\WINDOWS\System32\P17.dll ()
O4 - HKLM..\Run: [PDF6 Registry Controller] C:\Program Files\Nuance\PDF Professional 6\RegistryController.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [PDFHook] C:\Program Files\Nuance\PDF Professional 6\PdfPro6Hook.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [PS121v2] C:\Program Files\NETGEAR\PS121v2\PS121v2.exe ()
O4 - HKLM..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe (Hewlett-Packard)
O4 - HKLM..\Run: [StartNowToolbarHelper] "C:\Program Files\StartNow Toolbar\ToolbarHelper.exe" File not found
O4 - HKLM..\Run: [TkBellExe] C:\program files\real\realplayer\update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [UpdReg] C:\WINDOWS\Updreg.EXE (Creative Technology Ltd.)
O4 - HKCU..\Run: [alarm.exe] C:\Program Files\Chaos Software\Intellect\alarm.exe (Chaos Software Group, Inc.)
O4 - HKCU..\Run: [EasyDeskTicker] C:\Program Files\EasyDeskTicker\easydeskticker.exe ()
O4 - HKCU..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe (IncrediMail, Ltd.)
O4 - HKCU..\Run: [Livestation] C:\Program Files\Livestation\Livestation.exe -startup File not found
O4 - HKCU..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background File not found
O4 - HKCU..\Run: [Philips Intelligent Agent] "C:\Program Files\Philips\Intelligent Agent\Philips Intelligent Agent.exe" /SILENT File not found
O4 - HKCU..\Run: [PrinterProDesktop] C:\Program Files\Printer Pro Desktop\PrinterProDesktop.exe ()
O4 - HKCU..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_1_0 -reboot 1 File not found
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Amazon Unbox.lnk = C:\Program Files\Amazon\Amazon Unbox Video\ADVWindowsClientSystemTray.exe (Amazon.com)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Audible Download Manager.lnk = C:\Program Files\Audible\Bin\ADHelper.exe (Audible, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HotSync Manager.lnk = C:\Program Files\palmOne\Hotsync.exe (PalmSource, Inc)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\hp psc 2000 Series.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe (Hewlett-Packard Co.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Logitech Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\officejet 6100.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe (Hewlett-Packard Co.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\QuickBooks Update Agent.lnk = C:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe (Intuit Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE (WinZip Computing, S.L.)
O4 - Startup: C:\Documents and Settings\Betsy True\Start Menu\Programs\Startup\!ntellect.lnk = C:\Program Files\Chaos Software\Intellect\Intellect.exe (Chaos Software Group, Inc.)
O4 - Startup: C:\Documents and Settings\Betsy True\Start Menu\Programs\Startup\Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Documents and Settings\Betsy True\Start Menu\Programs\Startup\DigiDay Clock.lnk = C:\DigiDay\dd_clock.exe (Vision X Software, Inc.)
O4 - Startup: C:\Documents and Settings\Betsy True\Start Menu\Programs\Startup\DigiDay Reminder.lnk = C:\DigiDay\dd_rem.exe ()
O4 - Startup: C:\Documents and Settings\Betsy True\Start Menu\Programs\Startup\Dropbox.lnk = C:\Documents and Settings\Betsy True\Application Data\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O4 - Startup: C:\Documents and Settings\Betsy True\Start Menu\Programs\Startup\ListProAlarms.lnk = C:\Program Files\Ilium Software\ListPro\ListProAlarms.exe ()
O4 - Startup: C:\Documents and Settings\Betsy True\Start Menu\Programs\Startup\ScreenThemes.lnk = C:\Program Files\ScreenThemes\scthemes.exe ()
O4 - Startup: C:\Documents and Settings\Betsy True\Start Menu\Programs\Startup\Yahoo! Widgets.lnk = C:\Program Files\Yahoo!\Yahoo! Widget Engine\YahooWidgets.exe (Yahoo! Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme ()
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Append the content of the link to existing PDF file - C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll (Zeon Corporation)
O8 - Extra context menu item: Append the content of the selected links to existing PDF file - C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll (Zeon Corporation)
O8 - Extra context menu item: Append to existing PDF file - C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll (Zeon Corporation)
O8 - Extra context menu item: Create PDF file - C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll (Zeon Corporation)
O8 - Extra context menu item: Create PDF file from the content of the link - C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll (Zeon Corporation)
O8 - Extra context menu item: Create PDF files from the selected links - C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll (Zeon Corporation)
O8 - Extra context menu item: Open with Nuance PDF Converter 6.0 - C:\Program Files\Nuance\PDF Professional 6\cnvres_eng.dll ()
O8 - Extra context menu item: Open with PDF Professional 6 - C:\Program Files\Nuance\PDF Professional 6\Bin\PlusIEContextMenu.dll (Zeon Corporation)
O8 - Extra context menu item: Subscribe with RSSRadio - c:\program files\dorada software\rssradio\subscribe.htm ()
O9 - Extra Button: Movies Extractor Scout - {02659636-B21B-4665-97E2-38733FDDEE53} - C:\Program Files\Bytescout Movies Extractor Scout\flashextract.exe ()
O9 - Extra Button: Bytescout SWF To Video Scout - {282D81E2-F254-4F7B-A533-0B7435EF7BBF} - C:\Program Files\Bytescout SWF To Video Scout\flashextract.exe (Bytescout)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\SpeedBit Video Accelerator\sblsp.dll (Speedbit Ltd.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\SpeedBit Video Accelerator\sblsp.dll (Speedbit Ltd.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Program Files\SpeedBit Video Accelerator\sblsp.dll (Speedbit Ltd.)
O15 - HKCU\..Trusted Domains: turbotax.com ([]https in Trusted sites)
O16 - DPF: {00000161-9980-0010-8000-00AA00389B71} http://codecs.micros.../i386/msaud.cab (Reg Error: Key error.)
O16 - DPF: {01010E00-5E80-11D8-9E86-0007E96C65AE} http://symantec.atgn...oad/tgctlsi.cab (SupportSoft SmartIssue)
O16 - DPF: {01118F00-3E00-11D2-8470-0060089874ED} http://symantec.atgn...wnload/ssrc.cab (SupportSoft RemoteControl Class)
O16 - DPF: {01119400-3E00-11D2-8470-0060089874ED} http://symantec.atgn...d/sprtctlln.cab (SupportSoft Listener Control)
O16 - DPF: {04E214E5-63AF-4236-83C6-A7ADCBF9BD02} http://housecall60.t...all/xscan60.cab (HouseCall Control)
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.micr.../OGAControl.cab (Office Genuine Advantage Validation Tool)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://active.macrom...tor/cabs/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft....k/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {2AF5BD25-90C5-4EEC-88C5-B44DC2905D8B} http://dlm.tools.aka...vex-2.2.1.0.cab (DownloadManager Control)
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} http://security.syma...bin/AvSniff.cab (Symantec AntiVirus scanner)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\Yinsthelper.dll (Installation Support)
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} http://cdn.scan.onec...lscbase5483.cab (Windows Live Safety Center Base Module)
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} http://security.syma...n/bin/cabsa.cab (Symantec RuFSI Utility Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.micros...b?1219884559546 (MUWebControl Class)
O16 - DPF: {6E5A37BF-FD42-463A-877C-4EB7002E68AE} http://housecall65.t...ivex/hcImpl.cab (Housecall ActiveX 6.5)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.7.0)
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} http://acs.pandasoft...free/asinst.cab (ActiveScan Installer Class)
O16 - DPF: {C7DB51B4-BCF7-4923-8874-7F1A0DC92277} http://office.micros...ntent/opuc4.cab (Office Update Installation Engine)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.7.0)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.7.0)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.ma...ent/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (Reg Error: Value error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.105.28.11 68.105.29.11 68.105.28.12
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F6F03AEF-DCBD-42B0-A41E-82D98324842B}: DhcpNameServer = 68.105.28.11 68.105.29.11 68.105.28.12
O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\pure-go {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files\Common Files\Pure Networks Shared\Platform\puresp4.dll (Cisco Systems, Inc.)
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL) - File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avgrsstarter: DllName - (avgrsstx.dll) - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - Winlogon\Notify\LMIinit: DllName - (LMIinit.dll) - C:\WINDOWS\System32\LMIinit.dll (LogMeIn, Inc.)
O24 - Desktop WallPaper: C:\Program Files\ScreenThemes\data\Betsy True\ScreenThemes.bmp
O24 - Desktop BackupWallPaper: C:\Program Files\ScreenThemes\data\Betsy True\ScreenThemes.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/12/01 23:24:00 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/09/12 14:51:19 | 000,581,632 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Betsy True\Desktop\OTL.com
[2011/09/11 20:37:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Betsy True\Application Data\Windows Search
[2011/09/11 18:12:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Betsy True\Application Data\Auslogics
[2011/09/11 18:12:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Auslogics
[2011/09/11 18:12:09 | 000,000,000 | ---D | C] -- C:\Program Files\Auslogics
[2011/09/11 18:09:25 | 000,000,000 | ---D | C] -- C:\Program Files\StartNow Toolbar
[2011/09/11 17:34:06 | 000,446,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Betsy True\Desktop\TFC.exe
[2011/09/11 13:05:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Betsy True\Tracing
[2011/09/11 12:14:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\iTunes
[2011/09/11 12:12:19 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011/09/11 12:05:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\QuickTime
[2011/09/11 12:02:53 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2011/09/11 11:11:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\WinZipEC
[2011/09/11 11:11:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinZip Courier
[2011/09/11 11:11:30 | 000,000,000 | ---D | C] -- C:\Program Files\WinZip Courier
[2011/09/11 11:07:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinZip
[2011/09/11 10:41:16 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2011/09/11 10:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2011/09/11 10:30:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Speedbit
[2011/09/11 10:30:54 | 000,000,000 | ---D | C] -- C:\Program Files\SpeedBit Video Accelerator
[2011/09/11 10:24:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared
[2011/09/11 10:12:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Betsy True\Start Menu\Programs\Amazon
[2011/09/11 08:29:33 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2011/09/11 08:28:31 | 000,000,000 | ---D | C] -- C:\ATI
[2011/09/11 08:27:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\AIM
[2011/09/11 08:26:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Software Update Utility
[2011/09/11 07:42:49 | 000,000,000 | ---D | C] -- C:\Program Files\FileHippo.com
[2011/09/10 17:22:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Betsy True\Application Data\SumatraPDF
[2011/09/10 13:31:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office Live Add-in
[2011/09/10 13:31:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Live
[2011/09/10 13:30:16 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft
[2011/09/10 13:29:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\microsoft
[2011/09/10 13:29:33 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live SkyDrive
[2011/09/10 13:28:23 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2011/09/10 13:26:48 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2011/09/10 13:19:14 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live
[2011/09/10 13:12:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\WindowsPowerShell
[2011/09/10 13:12:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\winrm
[2011/09/10 13:12:14 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$968930Uinstall_KB968930$
[2011/09/10 12:57:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Adobe
[2011/09/10 12:53:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Betsy True\Application Data\Windows Desktop Search
[2011/09/10 12:52:41 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Desktop Search
[2011/09/09 23:25:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Silverlight
[2011/09/09 18:36:23 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Betsy True\PrivacIE
[2011/09/09 18:18:14 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Betsy True\IETldCache
[2011/09/09 18:01:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2011/09/09 17:57:38 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2011/09/09 15:25:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot_bak
[2011/09/09 09:35:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Betsy True\Desktop\Geeks2Go downloads
[2011/09/06 15:23:33 | 000,000,000 | ---D | C] -- C:\_OTL
[2008/03/31 15:54:57 | 000,774,144 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files\RngInterstitial.dll
[2005/08/17 02:54:50 | 000,065,536 | ---- | C] ( ) -- C:\WINDOWS\System32\A3d.dll

========== Files - Modified Within 30 Days ==========

[2011/09/12 15:47:00 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/09/12 15:46:09 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/09/12 15:07:35 | 000,000,868 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2011/09/12 15:07:25 | 008,405,015 | ---- | M] () -- C:\WINDOWS\TempFile
[2011/09/12 15:05:28 | 000,000,288 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-2444962988-477438111-2672112748-1006.job
[2011/09/12 15:04:55 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/09/12 15:04:48 | 1071,812,608 | -HS- | M] () -- C:\hiberfil.sys
[2011/09/12 15:00:46 | 000,001,125 | ---- | M] () -- C:\WINDOWS\DD_CLOCK.INI
[2011/09/12 14:51:29 | 000,581,632 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Betsy True\Desktop\OTL.com
[2011/09/12 14:46:16 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Betsy True\Local Settings\Application Data\prvlcl.dat
[2011/09/12 13:00:00 | 000,000,574 | ---- | M] () -- C:\WINDOWS\tasks\Norton Internet Security - Run Full System Scan - Betsy True.job
[2011/09/12 10:57:00 | 000,000,400 | ---- | M] () -- C:\WINDOWS\tasks\FRU Task #Hewlett-Packard#hp psc 2200 series#1125673024.job
[2011/09/12 08:20:57 | 085,843,202 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2011/09/11 23:56:39 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011/09/11 22:28:42 | 000,000,296 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-2444962988-477438111-2672112748-1006.job
[2011/09/11 18:12:13 | 000,000,899 | ---- | M] () -- C:\Documents and Settings\Betsy True\Desktop\Auslogics Disk Defrag.lnk
[2011/09/11 17:34:09 | 000,446,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Betsy True\Desktop\TFC.exe
[2011/09/11 11:07:51 | 000,001,660 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\WinZip Quick Pick.lnk
[2011/09/11 10:46:24 | 000,000,800 | ---- | M] () -- C:\Documents and Settings\Betsy True\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2011/09/11 10:41:50 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2011/09/11 10:41:50 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2011/09/11 10:38:14 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2011/09/11 10:35:24 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/09/11 10:23:18 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\WINDOWS\System32\pncrt.dll
[2011/09/11 08:27:52 | 000,001,116 | -H-- | M] () -- C:\IPH.PH
[2011/09/11 08:27:04 | 000,001,592 | ---- | M] () -- C:\Documents and Settings\Betsy True\Application Data\Microsoft\Internet Explorer\Quick Launch\AIM.lnk
[2011/09/11 07:42:52 | 000,001,632 | ---- | M] () -- C:\Documents and Settings\Betsy True\Desktop\Update Checker.lnk
[2011/09/10 17:57:29 | 000,391,184 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/09/10 13:55:10 | 000,001,478 | ---- | M] () -- C:\Documents and Settings\Betsy True\Application Data\Microsoft\Internet Explorer\Quick Launch\Media Center.lnk
[2011/09/10 13:06:12 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2011/09/10 12:53:04 | 000,001,787 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Windows Search.lnk
[2011/09/10 12:52:55 | 000,583,378 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/09/10 12:52:55 | 000,129,428 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/09/10 12:06:10 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/09/09 23:22:05 | 000,000,045 | ---- | M] () -- C:\WINDOWS\System32\mapisvc.inf
[2011/09/09 22:46:21 | 000,001,736 | ---- | M] () -- C:\Documents and Settings\Betsy True\Application Data\Microsoft\Internet Explorer\Quick Launch\IncrediMail 2.0.lnk
[2011/09/09 18:18:20 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\Betsy True\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/09/07 12:54:43 | 000,660,945 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\iavifw.avm
[2011/09/06 16:46:37 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/09/06 15:23:43 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2011/09/06 15:14:51 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat

========== Files Created - No Company Name ==========

[2011/09/11 18:12:13 | 000,000,899 | ---- | C] () -- C:\Documents and Settings\Betsy True\Desktop\Auslogics Disk Defrag.lnk
[2011/09/11 13:08:53 | 000,000,288 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-2444962988-477438111-2672112748-1006.job
[2011/09/11 11:07:51 | 000,001,660 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\WinZip Quick Pick.lnk
[2011/09/11 10:46:24 | 000,000,800 | ---- | C] () -- C:\Documents and Settings\Betsy True\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2011/09/11 10:46:24 | 000,000,788 | ---- | C] () -- C:\Documents and Settings\Betsy True\Start Menu\Programs\Windows Media Player.lnk
[2011/09/11 10:38:14 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2011/09/11 08:00:20 | 000,001,804 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader X.lnk
[2011/09/11 07:42:51 | 000,001,632 | ---- | C] () -- C:\Documents and Settings\Betsy True\Desktop\Update Checker.lnk
[2011/09/10 13:55:09 | 000,001,478 | ---- | C] () -- C:\Documents and Settings\Betsy True\Application Data\Microsoft\Internet Explorer\Quick Launch\Media Center.lnk
[2011/09/10 13:03:28 | 000,001,466 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Media Center.lnk
[2011/09/10 12:53:04 | 000,001,787 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Windows Search.lnk
[2011/09/10 12:53:03 | 000,001,803 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Search.lnk
[2011/09/10 12:49:52 | 000,225,262 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msimain.sdb
[2011/09/06 15:28:09 | 1071,812,608 | -HS- | C] () -- C:\hiberfil.sys
[2011/07/26 11:50:03 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/01/16 11:51:27 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Betsy True\Local Settings\Application Data\prvlcl.dat
[2010/01/07 16:20:27 | 008,892,928 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\atscie.msi
[2010/01/06 13:32:15 | 000,000,036 | ---- | C] () -- C:\Documents and Settings\Betsy True\Local Settings\Application Data\housecall.guid.cache
[2010/01/06 08:18:53 | 000,000,011 | ---- | C] () -- C:\WINDOWS\SA2005.ini
[2009/10/05 10:55:35 | 000,000,133 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\Microsoft.SqlServer.Compact.351.32.bc
[2009/06/08 09:44:34 | 000,000,036 | -H-- | C] () -- C:\WINDOWS\System32\f9t.dat
[2009/04/14 16:58:44 | 000,002,281 | ---- | C] () -- C:\WINDOWS\ips.INI
[2008/09/29 16:43:24 | 000,082,868 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2008/06/25 10:30:27 | 000,000,088 | RHS- | C] () -- C:\Documents and Settings\All Users\Application Data\8735126C49.sys
[2008/06/25 10:30:26 | 000,003,350 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\KGyGaAvL.sys
[2008/05/26 21:59:42 | 000,018,904 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschematrivial.bin
[2008/05/26 21:59:40 | 000,106,605 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschema.bin
[2008/05/17 21:19:35 | 000,000,075 | ---- | C] () -- C:\WINDOWS\FileNamesinQueue.ini
[2008/02/04 18:23:10 | 000,693,792 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL
[2008/01/04 18:22:03 | 000,051,304 | ---- | C] () -- C:\WINDOWS\System32\drivers\atnt40k.sys
[2008/01/01 14:43:44 | 000,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2008/01/01 14:43:33 | 001,559,040 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2008/01/01 14:43:33 | 000,282,624 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008/01/01 14:43:32 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2007/12/24 11:11:42 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ezsid.dat
[2007/11/07 21:22:18 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\zshp1018.exe
[2007/11/07 21:22:18 | 000,106,496 | R--- | C] () -- C:\WINDOWS\System32\vshp1018.dll
[2007/10/09 21:41:54 | 000,000,040 | ---- | C] () -- C:\Documents and Settings\Betsy True\Application Data\favSellers.awt
[2007/09/27 10:51:02 | 000,020,698 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2007/09/27 10:48:48 | 000,030,628 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2007/09/27 10:48:28 | 000,031,698 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2007/07/30 08:34:19 | 000,023,254 | ---- | C] () -- C:\Documents and Settings\Betsy True\Application Data\closedList.awt
[2007/07/30 08:34:19 | 000,000,005 | ---- | C] () -- C:\Documents and Settings\Betsy True\Application Data\openList.awt
[2007/06/26 20:02:37 | 000,002,304 | ---- | C] () -- C:\WINDOWS\System32\Machnm32.sys
[2007/06/12 20:29:06 | 000,000,162 | ---- | C] () -- C:\WINDOWS\System32\ftdiun2k.ini
[2007/05/03 13:54:38 | 000,008,704 | ---- | C] () -- C:\WINDOWS\System32\CNMVS4O.DLL
[2007/04/16 23:38:25 | 001,936,528 | ---- | C] () -- C:\WINDOWS\System32\ltmm15.dll
[2007/03/21 15:29:24 | 000,400,782 | ---- | C] () -- C:\Documents and Settings\Betsy True\Application Data\fontlst2.opf
[2007/03/09 03:12:32 | 000,027,648 | -HS- | C] () -- C:\WINDOWS\System32\AVSredirect.dll
[2007/03/06 05:14:48 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2007/01/07 01:03:48 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\PRTSERV.dll
[2006/11/01 08:57:54 | 000,011,776 | ---- | C] () -- C:\WINDOWS\System32\ZPORT4AS.dll
[2006/10/28 10:21:16 | 000,001,024 | ---- | C] () -- C:\Documents and Settings\Betsy True\Application Data\WavCodec.wff
[2006/10/24 08:33:01 | 000,000,779 | ---- | C] () -- C:\WINDOWS\GUEmap.INI
[2006/10/23 08:39:08 | 000,057,344 | ---- | C] () -- C:\WINDOWS\TADSUINS.EXE
[2006/09/25 09:39:11 | 000,000,074 | -H-- | C] () -- C:\WINDOWS\sysdws.dat
[2006/07/26 08:43:07 | 000,000,072 | ---- | C] () -- C:\WINDOWS\mOceanSync.ini
[2006/06/09 21:22:23 | 000,000,023 | ---- | C] () -- C:\WINDOWS\ZDPLUSSEARCH.INI
[2006/06/02 18:15:44 | 000,294,912 | ---- | C] () -- C:\WINDOWS\System32\LDecVorbis.dll
[2006/05/24 13:37:27 | 000,045,568 | RHS- | C] () -- C:\WINDOWS\System32\cygz.dll
[2006/05/24 10:40:42 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\ftdiunin.exe
[2006/05/14 10:32:12 | 000,016,384 | ---- | C] () -- C:\WINDOWS\System32\FileOps.exe
[2006/05/05 08:51:18 | 001,895,026 | ---- | C] () -- C:\WINDOWS\System32\nowutils.dll
[2006/05/04 12:28:24 | 000,039,424 | ---- | C] () -- C:\WINDOWS\System32\hpi_scsi.dll
[2006/05/04 12:28:21 | 000,004,176 | ---- | C] () -- C:\WINDOWS\System32\Hpi_icon.dll
[2006/04/21 12:37:41 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2006/04/21 12:37:41 | 000,015,840 | ---- | C] () -- C:\WINDOWS\System32\Machnm1.exe
[2006/04/10 13:56:16 | 000,000,099 | ---- | C] () -- C:\WINDOWS\Quicken.ini
[2006/02/24 04:41:59 | 000,438,272 | ---- | C] () -- C:\WINDOWS\System32\OpenQuicktimeLib.dll
[2006/02/24 04:41:59 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\libfaac.dll
[2006/02/23 12:36:20 | 001,798,144 | ---- | C] () -- C:\WINDOWS\System32\ltmm_n.dll
[2006/02/23 12:36:20 | 000,262,144 | ---- | C] () -- C:\WINDOWS\System32\LMOggSpl.dll
[2006/02/23 12:36:20 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\LMOggMux.dll
[2006/01/29 12:47:04 | 000,000,002 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2006/01/26 08:51:56 | 000,110,080 | ---- | C] () -- C:\WINDOWS\System32\nlame.dll
[2006/01/22 23:55:18 | 000,000,139 | ---- | C] () -- C:\WINDOWS\LODERUNN.INI
[2005/12/28 09:53:53 | 000,000,293 | ---- | C] () -- C:\WINDOWS\SerMagic.ini
[2005/11/21 11:34:25 | 000,022,635 | ---- | C] () -- C:\Documents and Settings\Betsy True\Application Data\Comma Separated Values (Windows).ADR
[2005/11/15 00:08:44 | 000,037,027 | ---- | C] () -- C:\WINDOWS\atmoUn.exe
[2005/11/11 22:28:45 | 000,001,782 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2005/11/03 20:33:31 | 000,000,004 | ---- | C] () -- C:\WINDOWS\uccspecb.sys
[2005/10/24 12:13:58 | 000,066,560 | RHS- | C] () -- C:\WINDOWS\MOTA113.exe
[2005/10/22 21:19:41 | 000,000,054 | ---- | C] () -- C:\WINDOWS\CmdFile.INI
[2005/10/20 19:32:02 | 000,647,168 | ---- | C] () -- C:\WINDOWS\System32\pqdvdb.dll
[2005/10/20 17:47:29 | 000,000,383 | ---- | C] () -- C:\WINDOWS\System32\haspdos.sys
[2005/10/20 17:47:28 | 000,164,864 | ---- | C] () -- C:\WINDOWS\System32\UNWISE.EXE
[2005/10/20 17:47:28 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\hdduinst.exe
[2005/10/13 22:27:00 | 000,422,400 | RHS- | C] () -- C:\WINDOWS\x2.64.exe
[2005/10/12 21:20:39 | 000,000,848 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys
[2005/10/07 10:47:46 | 000,035,808 | ---- | C] () -- C:\WINDOWS\overlay.bin
[2005/10/01 21:08:00 | 000,004,096 | ---- | C] () -- C:\WINDOWS\d3dx.dat
[2005/10/01 20:47:16 | 000,000,040 | ---- | C] () -- C:\WINDOWS\popcinfo.dat
[2005/09/30 10:07:45 | 000,132,608 | ---- | C] () -- C:\Documents and Settings\Betsy True\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2005/09/25 08:05:31 | 000,000,534 | ---- | C] () -- C:\WINDOWS\scthemes.ini
[2005/09/09 09:32:30 | 000,001,125 | ---- | C] () -- C:\WINDOWS\DD_CLOCK.INI
[2005/09/08 16:08:42 | 000,000,011 | ---- | C] () -- C:\WINDOWS\SA2005HH.ini
[2005/09/08 13:46:17 | 000,000,041 | ---- | C] () -- C:\WINDOWS\loc2.INI
[2005/09/08 13:46:12 | 000,000,041 | ---- | C] () -- C:\WINDOWS\FindServ.INI
[2005/09/02 11:05:00 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\Isb.dll
[2005/09/02 10:56:59 | 000,000,014 | ---- | C] () -- C:\WINDOWS\pagesuit.ini
[2005/09/02 10:47:00 | 000,027,801 | ---- | C] () -- C:\WINDOWS\hpoins01.dat
[2005/09/02 10:47:00 | 000,007,765 | ---- | C] () -- C:\WINDOWS\hpomdl01.dat
[2005/08/29 23:48:36 | 000,000,004 | ---- | C] () -- C:\WINDOWS\RM_RESULT.DAT
[2005/08/29 23:48:28 | 000,000,170 | ---- | C] () -- C:\WINDOWS\GetServer.ini
[2005/08/29 20:29:54 | 000,000,000 | ---- | C] () -- C:\WINDOWS\QuickInstall.INI
[2005/08/29 17:19:24 | 000,552,960 | R--- | C] () -- C:\WINDOWS\System32\hpotscl.dll
[2005/08/24 21:30:36 | 000,149,504 | ---- | C] () -- C:\WINDOWS\UNWISE.EXE
[2005/08/24 21:28:48 | 000,002,879 | ---- | C] () -- C:\WINDOWS\cdPlayer.ini
[2005/08/24 18:36:01 | 000,107,132 | ---- | C] () -- C:\WINDOWS\UninstallFirefox.exe
[2005/08/24 18:35:56 | 000,005,173 | ---- | C] () -- C:\WINDOWS\mozver.dat
[2005/08/24 09:11:45 | 003,785,550 | -H-- | C] () -- C:\Documents and Settings\Betsy True\Local Settings\Application Data\BackupIconCache.db
[2005/08/24 09:11:45 | 000,000,133 | ---- | C] () -- C:\Documents and Settings\Betsy True\Local Settings\Application Data\fusioncache.dat
[2005/08/17 03:34:46 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2005/08/17 03:23:27 | 000,000,335 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2005/08/17 03:20:02 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2005/08/17 03:17:41 | 001,048,576 | ---- | C] () -- C:\WINDOWS\System32\SFMAN.DAT
[2005/08/17 03:17:41 | 000,000,231 | ---- | C] () -- C:\WINDOWS\AC3API.INI
[2005/08/17 03:17:32 | 000,003,278 | ---- | C] () -- C:\WINDOWS\System32\LudaP17.ini
[2005/08/17 03:17:32 | 000,000,029 | ---- | C] () -- C:\WINDOWS\System32\ctzapxx.ini
[2005/08/17 03:17:26 | 000,000,072 | ---- | C] () -- C:\WINDOWS\SBWIN.INI
[2005/08/17 02:55:18 | 000,000,430 | ---- | C] () -- C:\WINDOWS\System32\dlbuplc.ini
[2005/08/17 02:54:52 | 000,060,928 | ---- | C] () -- C:\WINDOWS\System32\P17.dll
[2005/08/17 02:54:52 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\P17CPI.dll
[2005/08/17 02:54:40 | 000,049,152 | ---- | C] () -- C:\WINDOWS\setpwrcg.exe
[2005/08/17 02:54:36 | 000,087,540 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2005/08/17 02:54:08 | 000,000,375 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2005/08/05 14:01:54 | 000,239,104 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2005/08/02 17:24:01 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll
[2005/05/13 18:12:00 | 000,217,073 | RHS- | C] () -- C:\WINDOWS\meta4.exe
[2005/05/04 20:58:54 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2005/05/03 11:44:44 | 000,025,157 | ---- | C] () -- C:\WINDOWS\RMAgentOutput.dll
[2005/05/03 11:43:44 | 000,126,976 | ---- | C] () -- C:\WINDOWS\dllTSCLIBMT.dll
[2005/03/22 18:38:24 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2005/03/22 18:38:24 | 000,004,627 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2005/03/03 16:16:42 | 000,000,256 | ---- | C] () -- C:\WINDOWS\aucfg.ini
[2005/02/28 14:16:22 | 000,240,128 | RHS- | C] () -- C:\WINDOWS\System32\x.264.exe
[2004/11/18 16:43:03 | 004,902,912 | ---- | C] () -- C:\WINDOWS\System32\qt-mt332.dll
[2004/10/01 17:33:46 | 000,000,679 | ---- | C] () -- C:\WINDOWS\TSC.ini
[2004/08/19 17:20:39 | 000,000,890 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2004/08/19 17:12:27 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2004/08/19 17:03:04 | 000,034,380 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2004/08/19 16:57:50 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2004/08/19 16:57:07 | 000,391,184 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2004/08/19 16:49:47 | 000,583,378 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004/08/19 16:49:47 | 000,129,428 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004/08/19 16:49:43 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2004/08/19 16:49:36 | 000,001,024 | ---- | C] () -- C:\WINDOWS\System32\pglyx2x.dll
[2004/08/19 16:49:36 | 000,001,024 | ---- | C] () -- C:\WINDOWS\System32\grcauth2.dll
[2004/08/19 16:49:36 | 000,001,024 | ---- | C] () -- C:\WINDOWS\System32\grcauth1.dll
[2004/08/19 16:49:36 | 000,001,024 | ---- | C] () -- C:\WINDOWS\System32\clauth2.dll
[2004/08/19 16:49:36 | 000,001,024 | ---- | C] () -- C:\WINDOWS\System32\clauth1.dll
[2004/08/19 16:49:36 | 000,000,339 | ---- | C] () -- C:\WINDOWS\System32\wgv7azl.dll
[2004/08/19 16:49:36 | 000,000,100 | ---- | C] () -- C:\WINDOWS\System32\prsgrc.dll
[2004/08/19 16:49:36 | 000,000,072 | ---- | C] () -- C:\WINDOWS\System32\ssprs.dll
[2004/08/19 16:49:36 | 000,000,016 | -H-- | C] () -- C:\WINDOWS\System32\uh8zwc0.dll
[2004/08/19 16:49:36 | 000,000,016 | -H-- | C] () -- C:\WINDOWS\System32\itb7ycx.dll
[2004/08/10 07:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004/08/10 07:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004/08/10 07:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004/08/10 07:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004/08/10 07:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004/08/10 07:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004/08/10 07:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004/06/30 15:04:46 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\SDelete.dll
[2004/03/07 13:51:00 | 000,024,924 | ---- | C] () -- C:\WINDOWS\System32\openports.dll
[2003/01/07 16:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2002/07/04 15:05:34 | 000,000,269 | ---- | C] () -- C:\WINDOWS\tmupdate.ini
[2001/12/14 13:34:46 | 000,164,864 | ---- | C] () -- C:\WINDOWS\patchw32.dll
[1999/07/23 14:46:48 | 000,000,116 | ---- | C] () -- C:\WINDOWS\AuHCcup1.ini
[1999/07/23 11:53:20 | 000,129,536 | ---- | C] () -- C:\WINDOWS\AuHCcup1.dll
[1996/10/14 02:38:00 | 000,001,266 | ---- | C] () -- C:\WINDOWS\System32\syswltag.bin
[1899/12/31 20:30:49 | 000,000,111 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[1617/11/08 20:57:57 | 000,003,120 | ---- | C] () -- C:\WINDOWS\JEQDOI.ini

========== LOP Check ==========

[2009/04/22 21:08:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\acccore
[2006/12/23 01:53:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ACD Systems
[2010/05/07 07:39:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AIM
[2010/05/07 07:39:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AIM Toolbar
[2009/05/03 21:15:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alawar Stargaze
[2009/08/23 06:11:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Amazon
[2009/01/28 21:29:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ashtons Family Resort
[2011/09/09 19:41:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar
[2009/10/26 10:28:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\avg9
[2009/04/23 13:25:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\billeo
[2007/05/03 13:54:35 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
[2007/04/18 16:57:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Chaos Software
[2011/03/14 12:58:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\COMMON FILES
[2008/08/06 08:21:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DataViz
[2009/08/28 23:34:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations
[2006/09/25 09:18:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\element5
[2006/09/25 15:00:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\espionServerData
[2009/08/22 16:15:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Flood Light Games
[2009/06/12 22:53:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\GARMIN
[2007/08/23 07:40:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Grisoft
[2005/10/13 17:09:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\HotSync
[2008/05/21 10:52:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IM
[2008/05/21 10:46:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IncrediMail
[2011/09/12 06:55:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LogMeIn
[2006/10/28 08:13:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
[2009/07/22 01:18:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nuance
[2010/12/26 13:06:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Photo Notifier and Animation Creator
[2008/12/18 19:04:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PlayFirst
[2009/07/22 07:06:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ScanSoft
[2006/01/28 08:35:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ScanSoft(2)
[2011/09/11 10:31:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Speedbit
[2006/10/30 14:04:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SupportSoft
[2010/05/18 15:14:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Tarma Installer
[2011/09/12 15:06:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2009/08/27 17:28:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\The Journal
[2006/10/22 21:28:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ulead Systems
[2009/01/11 15:48:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\VertusTech
[2009/06/13 08:14:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2011/09/10 07:42:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WholeSecurity
[2011/09/11 11:11:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WinZip
[2011/09/11 11:11:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WinZipEC
[2006/05/16 13:35:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\zeon
[2009/05/03 22:35:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Zylom
[2010/04/02 13:39:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2009/09/18 10:53:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2009/04/24 11:07:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2009/06/08 09:48:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{A8FB99CB-780B-4CA6-A91A-964EDA9D25C0}
[2009/06/08 09:50:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{B0AFCE64-DF3F-4824-8985-B21DB0EEE07B}
[2009/04/22 21:15:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\acccore
[2006/11/30 00:03:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\ACD Systems
[2010/07/14 10:54:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Amazon
[2009/01/28 21:59:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Ashtons Family Resort
[2011/09/11 18:12:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Auslogics
[2010/07/29 18:00:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\AVG9
[2006/11/26 00:51:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Beep Industries
[2008/01/01 13:57:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Bytescout SWF To Video Scout
[2011/09/12 15:07:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Chaos Software
[2006/11/10 08:04:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\CNN
[2010/07/15 13:59:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2009/05/15 17:15:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\com.nyt.timesreader.78C54164786ADE80CB31E1C5D95607D0938C987A.1
[2011/09/12 15:07:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Dropbox
[2011/09/12 15:08:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\EasyDeskTicker
[2006/07/19 16:09:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\eFax Messenger
[2010/10/18 11:58:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\EurekaLog
[2008/03/31 16:05:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Eyeblaster
[2009/08/22 16:15:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Flood Light Games
[2009/01/29 23:55:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Friday's games
[2008/04/08 08:17:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\funkitron
[2009/08/22 20:55:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\GameHousev1001
[2010/05/27 11:14:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\GARMIN
[2009/06/06 23:47:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\GetRightToGo
[2007/12/14 21:14:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Helios
[2005/10/13 17:09:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\HotSync
[2009/04/08 17:31:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\HouseCall 6.6
[2008/03/31 22:05:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Jane s Hotel Family Hero
[2005/08/25 18:38:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Leadertech
[2008/12/11 22:48:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Livestation
[2008/04/25 01:12:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Mobipocket
[2008/01/01 12:46:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Movies Extractor Scout
[2008/08/15 16:56:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Musicmatch
[2010/01/22 15:59:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\MyPublisher
[2006/12/25 08:47:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\NCH Swift Sound
[2006/05/12 08:06:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Now Software
[2009/11/27 16:43:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Nuance
[2008/03/20 07:16:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\OfficeUpdate12
[2010/12/31 19:33:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Opera
[2008/05/17 13:32:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\OverDrive
[2007/12/18 14:07:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\PDM
[2008/12/18 19:04:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\PlayFirst
[2008/12/17 17:38:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Pogo Games
[2010/09/02 17:57:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\PriceGong
[2006/03/31 16:22:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Qumana
[2006/10/28 08:13:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\RecordPad
[2005/11/10 08:53:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\RSSRadio
[2006/05/16 13:41:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\ScanSoft
[2009/07/14 18:08:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Stamps.com Internet Postage
[2011/09/10 17:22:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\SumatraPDF
[2008/01/05 18:28:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Super-Cow
[2009/04/29 06:57:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\TweetDeckFast.F9107117265DB7542C1A806C8DB837742CE14C21.1
[2006/10/22 21:28:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Ulead Systems
[2009/05/03 22:37:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\URSE Games
[2009/10/23 09:42:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Viewpoint
[2005/10/01 21:32:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Wildfire
[2011/09/10 12:53:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Windows Desktop Search
[2011/09/11 20:37:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Windows Search
[2009/06/01 22:20:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\YoudaGames
[2006/05/16 13:35:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Zeon
[2006/01/28 08:35:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Betsy True\Application Data\Zeon(2)
[2011/09/12 10:57:00 | 000,000,400 | ---- | M] () -- C:\WINDOWS\Tasks\FRU Task #Hewlett-Packard#hp psc 2200 series#1125673024.job

========== Purity Check ==========

========== Files - Unicode (All) ==========
[2010/01/31 11:52:08 | 000,000,036 | ---- | M] ()(C:\WINDOWS\System32\?È) -- C:\WINDOWS\System32\縀È
[2010/01/31 11:52:08 | 000,000,036 | ---- | C] ()(C:\WINDOWS\System32\?È) -- C:\WINDOWS\System32\縀È
[2010/01/30 13:15:38 | 000,000,036 | ---- | M] ()(C:\WINDOWS\System32\??) -- C:\WINDOWS\System32\麠Ȇ
[2010/01/30 13:15:38 | 000,000,036 | ---- | C] ()(C:\WINDOWS\System32\??) -- C:\WINDOWS\System32\麠Ȇ
[2010/01/29 12:49:22 | 000,000,036 | ---- | M] ()(C:\WINDOWS\System32\??) -- C:\WINDOWS\System32\ȵ
[2010/01/29 12:49:22 | 000,000,036 | ---- | C] ()(C:\WINDOWS\System32\??) -- C:\WINDOWS\System32\ȵ
[2010/01/18 13:05:19 | 000,000,036 | ---- | M] ()(C:\WINDOWS\System32\?À) -- C:\WINDOWS\System32\┈À
[2010/01/18 13:05:19 | 000,000,036 | ---- | C] ()(C:\WINDOWS\System32\?À) -- C:\WINDOWS\System32\┈À
[2010/01/07 13:36:45 | 000,000,036 | ---- | M] ()(C:\WINDOWS\System32\??) -- C:\WINDOWS\System32\㓐•
[2010/01/07 13:36:45 | 000,000,036 | ---- | C] ()(C:\WINDOWS\System32\??) -- C:\WINDOWS\System32\㓐•
[2009/12/29 15:31:57 | 000,000,036 | ---- | M] ()(C:\WINDOWS\System32\?Å) -- C:\WINDOWS\System32\᜘Å
[2009/12/29 15:31:57 | 000,000,036 | ---- | C] ()(C:\WINDOWS\System32\?Å) -- C:\WINDOWS\System32\᜘Å
[2009/12/23 12:38:01 | 000,000,036 | ---- | M] ()(C:\WINDOWS\System32\??) -- C:\WINDOWS\System32\䋨˜
[2009/12/23 12:38:01 | 000,000,036 | ---- | C] ()(C:\WINDOWS\System32\??) -- C:\WINDOWS\System32\䋨˜
[2009/12/16 17:15:14 | 000,000,036 | ---- | M] ()(C:\WINDOWS\System32\?Ï) -- C:\WINDOWS\System32\您Ï
[2009/12/16 17:15:14 | 000,000,036 | ---- | C] ()(C:\WINDOWS\System32\?Ï) -- C:\WINDOWS\System32\您Ï
[2009/12/11 21:04:41 | 000,000,036 | ---- | M] ()(C:\WINDOWS\System32\?¿) -- C:\WINDOWS\System32\硨¿
[2009/12/11 21:04:41 | 000,000,036 | ---- | C] ()(C:\WINDOWS\System32\?¿) -- C:\WINDOWS\System32\硨¿
[2009/12/09 13:07:58 | 000,000,036 | ---- | M] ()(C:\WINDOWS\System32\?£) -- C:\WINDOWS\System32\钘£
[2009/12/09 13:07:58 | 000,000,036 | ---- | C] ()(C:\WINDOWS\System32\?£) -- C:\WINDOWS\System32\钘£
[2009/12/08 13:11:33 | 000,000,036 | ---- | M] ()(C:\WINDOWS\System32\??) -- C:\WINDOWS\System32\葀ɞ
[2009/12/08 13:11:33 | 000,000,036 | ---- | C] ()(C:\WINDOWS\System32\??) -- C:\WINDOWS\System32\葀ɞ
[2009/11/19 11:38:57 | 000,000,036 | ---- | M] ()(C:\WINDOWS\System32\??) -- C:\WINDOWS\System32\짰›
[2009/11/19 11:38:57 | 000,000,036 | ---- | C] ()(C:\WINDOWS\System32\??) -- C:\WINDOWS\System32\짰›
[2009/10/29 16:08:22 | 000,000,036 | ---- | M] ()(C:\WINDOWS\System32\?£) -- C:\WINDOWS\System32\⋘£
[2009/10/29 16:08:22 | 000,000,036 | ---- | C] ()(C:\WINDOWS\System32\?£) -- C:\WINDOWS\System32\⋘£

========== Alternate Data Streams ==========

@Alternate Data Stream - 241 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8E55808C
@Alternate Data Stream - 229 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:527B6DAD
@Alternate Data Stream - 181 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2C321309
@Alternate Data Stream - 175 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0C1D7085
@Alternate Data Stream - 156 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:52562F72
@Alternate Data Stream - 142 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:182D85B1

< End of report >

#69
Essexboy

Posted 12 September 2011 - 02:59 PM

GeekU Moderator

Retired Staff
69,964 posts

OK that is annoying I can't see it -- Hmm research time

What other problems are apparent now ?

#70
Essexboy

Posted 12 September 2011 - 03:22 PM

GeekU Moderator

Retired Staff
69,964 posts

Betsy could you check in add/remove (control panel) if there is an entry for the ati catalyst centre or something similar

#71
betctru

Posted 12 September 2011 - 04:16 PM

Member

Topic Starter
Member
63 posts

There are two programs for ATI:

ATI Control Panel
ATI Display Driver

Trying to use one of my old programs (Pro-File) from the Windows Start menu invokes another program (TurboTax), too, but when I cancel the other program's popup, Pro-File seems to work fine.

I had been having an intermittent problem with the system clock resetting to 12/31/1899, but that was very intermittent...and hasn't happened since we started working, but sometimes there would be long gaps between occurrences, so I don't know if that is fixed.

Or if it had anything to do with anything.

Some problems I'd been having before seem to be resolved--I was having trouble using the CD/DVD players, both seem to be working now.

Betsy

#72
betctru

Posted 13 September 2011 - 06:17 AM

Member

Topic Starter
Member
63 posts

This morning, upon start up, there was a Microsoft Error Reporting dialog box.

It says

Some unexpected errors have happened to software you recently used. You were not asked to send ...blah, blah, blah...

The errors reported, ten times over three days, were all "NDP1.1-KB2416447-X86, Queue Servicing Report." I'm guessing this is related to dotNet?

Also, a couple of times, upon reboot, I've gotten a new error (standard Microsoft error report box):

ToolbarUpdateService.exe has encounted a problem and needs to close. We are sorry for the inconvenience. If you were in the middle of something, etc.
Debug/Send Error Report/Don't Send

I really appreciate all the help straightening this mess out, Essexboy!

Betsy

Edited by betctru, 13 September 2011 - 11:19 AM.

#73
Essexboy

Posted 13 September 2011 - 11:02 AM

GeekU Moderator

Retired Staff
69,964 posts

OK isn't this fun

You are correct the error is related to dotnet grrr..

To be honest you do have a lot of toolbars, and the one I think is causing the problem is StartNow Toolbar, would you be averse to uninstalling that ?

What we need to do now to cure the dotnet error is to uninstall all versions of dotnet on your computer and then run the dotnet cleanup tool

Download and extract the following tool to your desktop but do not run it yet DotNet Cleanup

Go to add/remove programmes and uninstall all Microsoft.net frameworks.
Whilst you are there you can uninstall ATI Control Panel that should stop the folder opening at start, and it is not really required

Once you have uninstalled all the net frameworks run the DotNet cleanup utility and select all the versions that it offers you

Now the fingers crossed bit - Download Dotnet framework 3.5 and install

On completion if I could have a progress and system behaviour report please

#74
betctru

Posted 13 September 2011 - 12:06 PM

Member

Topic Starter
Member
63 posts

Will do. I'm not at all adverse to having most of my toolbars uninstalled.

Especially StartNow--I'm not even sure what that is or when it got installed? I usually try to tell programs not to install that stuff, but some of it seems to do it anyway or doesn't ask.

Working on the rest of your last posts' instructions now.

Betsy

Edited to add:

In Add/Remove Programs, I've also found an AMD Catalyst Install Manager in addition to the two ATI programs I mentioned earlier.

Edited by betctru, 13 September 2011 - 12:23 PM.