Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Help with changing homepage

Started by fitc4208 , May 10 2013 01:28 PM

  • Please log in to reply

#1
fitc4208
Posted 10 May 2013 - 01:28 PM

fitc4208

    New Member

  • Member
  • Pip
  • 1 posts
Hello and thank you for your time. The computer in the office at work here has recently given us an error message every time we click on internet explorer. It says that Internet Explorer has stopped working. It will, however, go to yahoo.com. I deleted the cookies and temporary internet files and changed the homepage back to MSN but it would automatically send me to "http://search.condui...B-93CA61B625A5" when I would click on the Internet Explorer. I did some research and tried the Microsoft Windows "Fix It" button to remove all personal data & restart Internet Explorer. It was working for about 5 mins. before I got an error message stating that a corrupted source was requesting a change for the homepage. After that, it automatically started taking me to "http://search.condui...B-93CA61B625A5" again but at least it stopped telling me that the Internet Explorer has a stopped working and needs to close. I have tried uninstalling some recent programs & toolbars that my bosses child had installed after school while playing on the computer. I then found this forum and am now asking for help from your wonderful volunteers. Thank you in advance for your efforts.

OTL logfile created on: 5/10/2013 2:09:36 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Arris\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16540)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.75 Gb Total Physical Memory | 2.49 Gb Available Physical Memory | 66.45% Memory free
7.50 Gb Paging File | 6.10 Gb Available in Paging File | 81.36% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 297.99 Gb Total Space | 140.83 Gb Free Space | 47.26% Space Free | Partition Type: NTFS
Drive F: | 29.80 Gb Total Space | 29.68 Gb Free Space | 99.58% Space Free | Partition Type: FAT32

Computer Name: OFFICE | User Name: Arris | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/05/10 14:09:30 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Arris\Desktop\OTL.exe
PRC - [2013/04/11 09:28:08 | 002,730,784 | ---- | M] (Conduit) -- C:\Users\Arris\AppData\Roaming\SearchProtect\bin\cltmng.exe
PRC - [2013/04/09 03:57:09 | 001,312,720 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2013/03/06 07:36:52 | 000,093,984 | ---- | M] (Conduit) -- C:\Program Files (x86)\SearchProtect\bin\CltMngSvc.exe
PRC - [2013/01/11 06:06:05 | 000,308,368 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
PRC - [2012/12/18 09:28:08 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/07/07 11:41:54 | 000,057,344 | ---- | M] (Menusoft Systems Corporation) -- C:\DDWIN\DDSERVICE.exe
PRC - [2011/03/01 13:18:20 | 001,183,744 | ---- | M] (Menusoft Systems Corporation) -- C:\DDWIN\DDPRINT.EXE
PRC - [2010/03/10 14:26:48 | 000,189,728 | ---- | M] (Protexis Inc.) -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
PRC - [2009/03/30 16:00:54 | 000,221,184 | ---- | M] (Brother Industries, Ltd.) -- C:\Program Files (x86)\Brother\Brmfcmon\BrMfcMon.exe
PRC - [2000/01/26 00:00:00 | 000,165,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\AUTMGR32.EXE


========== Modules (No Company Name) ==========

MOD - [2013/04/09 03:57:07 | 000,390,096 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ppgooglenaclpluginchrome.dll
MOD - [2013/04/09 03:57:05 | 004,050,896 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\pdf.dll
MOD - [2013/04/09 03:56:15 | 000,598,480 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\libglesv2.dll
MOD - [2013/04/09 03:56:14 | 000,124,368 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\libegl.dll
MOD - [2013/04/09 03:56:13 | 001,606,096 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ffmpegsumo.dll
MOD - [2012/08/27 21:33:32 | 000,087,912 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2012/08/27 21:33:08 | 001,242,512 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2009/02/27 17:38:20 | 000,139,264 | R--- | M] () -- C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
MOD - [2001/05/17 15:26:22 | 000,049,152 | ---- | M] () -- C:\Windows\SysWOW64\TMUSBVB.DLL


========== Services (SafeList) ==========

SRV:64bit: - [2010/02/03 04:17:12 | 000,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009/07/13 20:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2008/07/15 17:09:48 | 000,111,616 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\SysNative\AEADISRV.EXE -- (AEADIFilters)
SRV - [2013/05/10 13:55:56 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/03/06 07:36:52 | 000,093,984 | ---- | M] (Conduit) [Auto | Running] -- C:\Program Files (x86)\SearchProtect\bin\CltMngSvc.exe -- (CltMngSvc)
SRV - [2012/12/18 09:28:08 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/11/10 14:06:22 | 000,147,888 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn\x64\ramaint.exe -- (LMIMaint)
SRV - [2012/11/10 14:06:04 | 000,375,728 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe -- (LMIGuardianSvc)
SRV - [2012/06/08 12:06:24 | 000,407,424 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe -- (LogMeIn)
SRV - [2011/07/07 11:41:54 | 000,057,344 | ---- | M] (Menusoft Systems Corporation) [Auto | Running] -- C:\DDWIN\DDSERVICE.exe -- (Digital Dining XML)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/10 14:26:48 | 000,189,728 | ---- | M] (Protexis Inc.) [Auto | Running] -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
SRV - [2009/09/08 11:51:24 | 001,037,824 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -- (HPSLPSVC)
SRV - [2009/06/10 16:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/11/10 14:06:04 | 000,088,008 | ---- | M] (LogMeIn, Inc.) [File_System | Disabled | Stopped] -- C:\Windows\SysNative\LMIRfsClientNP.dll -- (LMIRfsClientNP)
DRV:64bit: - [2012/08/21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/07/09 13:42:54 | 000,052,736 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012/06/08 12:06:24 | 000,072,216 | ---- | M] (LogMeIn, Inc.) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\LMIRfsDriver.sys -- (LMIRfsDriver)
DRV:64bit: - [2012/06/08 12:05:56 | 000,011,552 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lmimirr.sys -- (lmimirr)
DRV:64bit: - [2012/03/01 01:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2010/11/20 22:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 22:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 22:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010/02/05 14:34:06 | 000,028,728 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/02/05 14:34:04 | 000,070,712 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2010/02/03 04:55:20 | 006,366,720 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2010/02/03 04:55:20 | 006,366,720 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atipmdag.sys -- (amdkmdag)
DRV:64bit: - [2010/02/03 03:24:00 | 000,186,880 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2009/11/03 13:06:36 | 000,087,552 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BrSerIb.sys -- (BrSerIb)
DRV:64bit: - [2009/11/03 13:06:36 | 000,014,592 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BrUsbSib.sys -- (BrUsbSIb)
DRV:64bit: - [2009/10/12 13:42:24 | 000,763,904 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\netr28x.sys -- (netr28x)
DRV:64bit: - [2009/09/16 21:56:34 | 000,014,328 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hidkmdf.sys -- (hidkmdf)
DRV:64bit: - [2009/09/16 21:56:32 | 000,025,080 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NW1950.sys -- (NW1950)
DRV:64bit: - [2009/07/13 20:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 20:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 20:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/22 19:01:26 | 000,497,152 | ---- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ADIHdAud.sys -- (ADIHdAudAddService)
DRV:64bit: - [2009/06/17 10:08:24 | 000,017,992 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\OSDACPI.SYS -- (ACPIService)
DRV:64bit: - [2009/06/10 15:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 15:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 15:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 15:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/03/01 23:05:32 | 000,187,392 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV - [2012/06/08 12:06:24 | 000,015,928 | ---- | M] (LogMeIn, Inc.) [Kernel | Auto | Running] -- C:\Program Files (x86)\LogMeIn\x64\rainfo.sys -- (LMIInfo)
DRV - [2009/07/13 20:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {CDD67C56-0EF8-4018-A69C-46202FBCB9FB}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\..\SearchScopes\{b0441a0e-a49a-4e16-afc1-74ecced1921f}: "URL" = http://search.mywebs...r={searchTerms}
IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://start.sweetpa...7-7071BC1D8EC3}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.condui...0B-93CA61B625A5
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 50 6E 8F A2 AE 4D CE 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE10SR
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@nsroblox.roblox.com/launcher: C:\Program Files (x86)\Roblox\Versions\version-1a23fdbca04d4954\\NPRobloxProxy.dll ()
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Arris\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{C4CFC0DE-134F-4466-B2A2-FF7C59A8BFAD}: C:\PROGRAM FILES\UPDATER BY SWEETPACKS\FIREFOX
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{C4CFC0DE-134F-4466-B2A2-FF7C59A8BFAD}: C:\Program Files\Updater By SweetPacks\Firefox


========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.google.com/
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\21.0.1180.79\PepperFlash\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\gcswf32.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll
CHR - Extension: Dark Legends = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\acfbekphmapfjpdkfedomagjpccekhaa\2.0.0.0_0\
CHR - Extension: Combat Extreme = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\adihmhaojoceimpkdoddbagopfiaebmd\1.1.1_0\
CHR - Extension: SWAT 3 = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\afaobimikijkkkbhopegjeanlngmlfjd\2.4.1_0\
CHR - Extension: Angry Birds = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0\
CHR - Extension: Jade Rosseau: The Secret Revelations = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcgdeepddmchjbnceahdpgmfgpbifamf\0.2_0\
CHR - Extension: Private Joe - Dungeons = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\bddhcbcefccaggaloclldffhobmecjfj\1.4_0\
CHR - Extension: Where's My Perry? Guideline and Tips = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkahoacbgbkdlelbejfiemfcijohoeaj\1.0.0_0\
CHR - Extension: The Treasures Of Mystery Island = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\cakimmoclemogopdpkmnhnhlbdbhople\0.0.0.3_0\
CHR - Extension: TankiOnline = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnamgoimgnbgkabfjkikldbfdhhfhdo\1.0.6_0\
CHR - Extension: Gun Bros = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ciamkmigckbgfajcieiflmkedohjjohh\2.0.2_0\
CHR - Extension: Hidden Object Games from Big Fish Games = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\cimlkohpcpfkjdpcflnekhaecfhmcmnc\1.1_0\
CHR - Extension: Classic Games = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckmoikambnjgjnhaefiklkblfjoolnaf\11_0\
CHR - Extension: Monster Dash = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\cknghehebaconkajgiobncfleofebcog\2.2_0\
CHR - Extension: Crash Bandicoot Online = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\copoaaffjmndhhefnhlaehnhjkdjaecm\1_0\
CHR - Extension: Gun Blood = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpbkahmbgcfjocgliikbkfiieemcjkoj\1.0.0_0\
CHR - Extension: Trooper Assassin - Great RPG Game! = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpnglpdhgcifggakagnjbfooogkfmike\1.0_0\
CHR - Extension: Counter Strike CS Portable = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkbaopnghjggmdcmcoaloenaalokmili\1_0\
CHR - Extension: Minecraft Demo = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnjolkeokhkcdjhcjpddacedgfcdkcho\1.1_0\
CHR - Extension: Rush Team = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecdnoeebfjlplfkljdedokbcmebojbpb\1.0_0\
CHR - Extension: The Godfather: Five Families = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\edfkoljdeffeedleidebkmmamepgbnbl\1.2_0\
CHR - Extension: We-Care Reminder = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcnlcdpdncgchnamlmdhdhokahkaikhl\4.2.25.1_0\
CHR - Extension: Word Game = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffheaiejndglafjapaaopiddibnhnhjk\1.1_0\
CHR - Extension: Natalie Brooks: Mystery at Hillcrest High = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgjddnapejeoklgjhnpkdinmhpgfpghk\0.2_0\
CHR - Extension: Battle Panic = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\flbpmilonalfcfbajimnacnhgbgoojgl\1.1_0\
CHR - Extension: 3D Bowling = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gemohgpikgjbgmdfbfjdailocichgbjm\2.0_0\
CHR - Extension: BeGone: Guerra = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfknpfcillfkdnmhgcognjjblaejnknm\1.1_0\
CHR - Extension: Assassin's Creed 2600 = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbeeblbbjhelodgakgednnpcchkeifl\1.0.0_0\
CHR - Extension: Zombie Games = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gifblopecnlkmcgaoompadkknmbcpbol\1.0.0_0\
CHR - Extension: Motocross Nitro HD = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjgmplkadlfdjeheepcjikelcicjhnoc\1.0.2_0\
CHR - Extension: Crimson: Steam Pirates = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\glfbkgkceahodalogdpenjoekbacjfcj\1.0_0\
CHR - Extension: Games Pack = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gnphjebjcglfhdlfallohldhjkhepmie\6.7.6_0\
CHR - Extension: Games Pack = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gnphjebjcglfhdlfallohldhjkhepmie\6.7.6_0\~
CHR - Extension: Air Hockey = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gojagedhadegobocpaokaifiacjiolph\2.0.0_0\
CHR - Extension: Counter Strike = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbnpeifkgfblmnmihpaeniclpnkhpdkg\1.2_0\
CHR - Extension: Don't Starve = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\hiledapehlkhdehbhppgmekfalnlfajc\1.0.0.37_0\
CHR - Extension: Army Games = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjbbnlbhdabjolfhdenepjdkinafcopa\1.4_0\
CHR - Extension: Army Games = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjbbnlbhdabjolfhdenepjdkinafcopa\1.4_0\.bak
CHR - Extension: Pathuku = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkiilmogcdkeefnbemdagpmcediekadb\1.24.0.0_0\
CHR - Extension: Assassin's Creed 2 - Light = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\hocegonoebjokljiejnkjejlgdnhkglo\1.2_0\
CHR - Extension: The Walking Dead = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\hohiiopfdolnjdlkocccddkmlghhnadh\1.0.0_0\
CHR - Extension: Isoball 3 = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\iajlkcpgcnbhfhpdeooockfaincfkjjj\1.3.0_0\
CHR - Extension: Serious Sam: The First Encounter (DEMO) = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\icbfppfaccaljnjbfeooceefehpccbkh\0.1.0.8_0\
CHR - Extension: Gangnam Christmas Run! = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\iejonljecgflfjedbokcefgcidbecmgl\1.0.0.0_0\
CHR - Extension: World of Solitaire = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbnllnaaaohekjkcpfdllhhjijnidgn\1.0.1_0\
CHR - Extension: OrangeFPS on Roozz = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifnckhopllcmleegegheacblhehfifei\0.1.0.5_0\
CHR - Extension: Zombie Track Meat = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfhnfnjfdoplkgbkmibfkdjolnemfdk\1.0.1578.0_0\
CHR - Extension: Vgrabber v1 = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnidgldcbakaidffpjinopjbmobecifb\10.16.1.521_1\
CHR - Extension: RUZZLE LIKE = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\jokeedegnpekiomeodekdcfblhhepelg\1.1_0\
CHR - Extension: Break The Wall = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\klhfgnobmdkblmbdahcnpajbjnfmknpn\1.5_0\
CHR - Extension: Fieldrunners = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkpikhjbfbffdblahfidklcohlaeabak\1.0.0.5_0\
CHR - Extension: Counter Strike Online = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmebpghpgkhlphpidpcgnllbjiaoppce\1.1_0\
CHR - Extension: Ben 10 Cave Run Game = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\lohjfmmbfnolfbeomkdibidgeefdjbdd\1_0\
CHR - Extension: Dragons of Atlantis = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\manlnjcghdempjdpndlcmaaobbighhcf\1.6.1_0\
CHR - Extension: SAS Zombie Assault 3 = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcmhocndjikklglfkdoekbolomhocnja\1_0\
CHR - Extension: Contract Killer = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\meklndaflopgghbomkdpofehonfclipi\1.1.3_0\
CHR - Extension: getsav-in = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjildcbkilmkddbbpbjljljdmmlfeppl\5.0_0\
CHR - Extension: CS Portable = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnkfbfebopikmbphmahljchancjmmmpj\1.0.1_0\
CHR - Extension: WGT Golf Game = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpedbpkelbhcbkdaglillalioeeekbpb\45.0.0_0\
CHR - Extension: RPG Games = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpoedenhofhhlblnplajipdijchlfoee\1.3_0\
CHR - Extension: RPG Games = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpoedenhofhhlblnplajipdijchlfoee\1.3_0\.bak
CHR - Extension: Playtopus = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncogfefdmipecdllelajldgkjnjcadfi\
CHR - Extension: Sumon = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nddpmdmpdcbnnkjfplckngdkhhmmbjaf\1.0.0.3_0\
CHR - Extension: BeGone = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndfpieflbjbdpgklkeolbmbdkfdiicfk\1.7.2_0\
CHR - Extension: Curling = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhalnajmigjnpjpdbpkpgfhekbjmolhp\1.0.10_0\
CHR - Extension: SpongeBob Super Brawl 2 = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\oamplghgnmpdanednnobalpcpgeghpeo\2.3.1_0\
CHR - Extension: Zombie Games = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofkhbcllblkggaicdcjeibhhcjeeoimb\1.6_0\
CHR - Extension: Zombie Games = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofkhbcllblkggaicdcjeibhhcjeeoimb\1.6_0\.bak
CHR - Extension: SweetPacks Chrome Extension = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj\1.3.0.3_0\
CHR - Extension: OokiCookie = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohjmnhgnkikbajikhhbplekfmljhdhjm\4_0\
CHR - Extension: Bakugan Battle Brawlers = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\oicjjohfiieokdmonicionfccncncjjo\1.0.1_0\
CHR - Extension: Mini Ninjas = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\oijfbknbncemokdnlboeabbcfhobechi\1.0.0.16_0\
CHR - Extension: Zombie Outbreak = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\oohpkbfbmcpmjdnncbmobhbdmblcmoeg\1.2_0\
CHR - Extension: Skater Games = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmhndjicclacpeciiaeoelefdakfoblk\3.1_0\
CHR - Extension: The Secret of Margrave Manor = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\pngjkhgjdobhcfjfmjapkmckkmnelinp\0.2_0\
CHR - Extension: Dark Legends = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\acfbekphmapfjpdkfedomagjpccekhaa\2.0.0.0_0\
CHR - Extension: Combat Extreme = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\adihmhaojoceimpkdoddbagopfiaebmd\1.1.1_0\
CHR - Extension: SWAT 3 = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\afaobimikijkkkbhopegjeanlngmlfjd\2.4.1_0\
CHR - Extension: Angry Birds = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0\
CHR - Extension: Jade Rosseau: The Secret Revelations = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcgdeepddmchjbnceahdpgmfgpbifamf\0.2_0\
CHR - Extension: Private Joe - Dungeons = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\bddhcbcefccaggaloclldffhobmecjfj\1.4_0\
CHR - Extension: Where's My Perry? Guideline and Tips = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkahoacbgbkdlelbejfiemfcijohoeaj\1.0.0_0\
CHR - Extension: The Treasures Of Mystery Island = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\cakimmoclemogopdpkmnhnhlbdbhople\0.0.0.3_0\
CHR - Extension: TankiOnline = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnamgoimgnbgkabfjkikldbfdhhfhdo\1.0.6_0\
CHR - Extension: Gun Bros = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ciamkmigckbgfajcieiflmkedohjjohh\2.0.2_0\
CHR - Extension: Hidden Object Games from Big Fish Games = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\cimlkohpcpfkjdpcflnekhaecfhmcmnc\1.1_0\
CHR - Extension: Classic Games = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckmoikambnjgjnhaefiklkblfjoolnaf\11_0\
CHR - Extension: Monster Dash = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\cknghehebaconkajgiobncfleofebcog\2.2_0\
CHR - Extension: Crash Bandicoot Online = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\copoaaffjmndhhefnhlaehnhjkdjaecm\1_0\
CHR - Extension: Gun Blood = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpbkahmbgcfjocgliikbkfiieemcjkoj\1.0.0_0\
CHR - Extension: Trooper Assassin - Great RPG Game! = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpnglpdhgcifggakagnjbfooogkfmike\1.0_0\
CHR - Extension: Counter Strike CS Portable = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkbaopnghjggmdcmcoaloenaalokmili\1_0\
CHR - Extension: Minecraft Demo = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnjolkeokhkcdjhcjpddacedgfcdkcho\1.1_0\
CHR - Extension: Rush Team = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecdnoeebfjlplfkljdedokbcmebojbpb\1.0_0\
CHR - Extension: The Godfather: Five Families = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\edfkoljdeffeedleidebkmmamepgbnbl\1.2_0\
CHR - Extension: We-Care Reminder = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcnlcdpdncgchnamlmdhdhokahkaikhl\4.2.25.1_0\
CHR - Extension: Word Game = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffheaiejndglafjapaaopiddibnhnhjk\1.1_0\
CHR - Extension: Natalie Brooks: Mystery at Hillcrest High = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgjddnapejeoklgjhnpkdinmhpgfpghk\0.2_0\
CHR - Extension: Battle Panic = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\flbpmilonalfcfbajimnacnhgbgoojgl\1.1_0\
CHR - Extension: 3D Bowling = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gemohgpikgjbgmdfbfjdailocichgbjm\2.0_0\
CHR - Extension: BeGone: Guerra = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfknpfcillfkdnmhgcognjjblaejnknm\1.1_0\
CHR - Extension: Assassin's Creed 2600 = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbeeblbbjhelodgakgednnpcchkeifl\1.0.0_0\
CHR - Extension: Zombie Games = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gifblopecnlkmcgaoompadkknmbcpbol\1.0.0_0\
CHR - Extension: Motocross Nitro HD = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjgmplkadlfdjeheepcjikelcicjhnoc\1.0.2_0\
CHR - Extension: Crimson: Steam Pirates = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\glfbkgkceahodalogdpenjoekbacjfcj\1.0_0\
CHR - Extension: Games Pack = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gnphjebjcglfhdlfallohldhjkhepmie\6.7.6_0\
CHR - Extension: Games Pack = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gnphjebjcglfhdlfallohldhjkhepmie\6.7.6_0\~
CHR - Extension: Air Hockey = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gojagedhadegobocpaokaifiacjiolph\2.0.0_0\
CHR - Extension: Counter Strike = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbnpeifkgfblmnmihpaeniclpnkhpdkg\1.2_0\
CHR - Extension: Don't Starve = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\hiledapehlkhdehbhppgmekfalnlfajc\1.0.0.37_0\
CHR - Extension: Army Games = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjbbnlbhdabjolfhdenepjdkinafcopa\1.4_0\
CHR - Extension: Army Games = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjbbnlbhdabjolfhdenepjdkinafcopa\1.4_0\.bak
CHR - Extension: Pathuku = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkiilmogcdkeefnbemdagpmcediekadb\1.24.0.0_0\
CHR - Extension: Assassin's Creed 2 - Light = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\hocegonoebjokljiejnkjejlgdnhkglo\1.2_0\
CHR - Extension: The Walking Dead = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\hohiiopfdolnjdlkocccddkmlghhnadh\1.0.0_0\
CHR - Extension: Isoball 3 = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\iajlkcpgcnbhfhpdeooockfaincfkjjj\1.3.0_0\
CHR - Extension: Serious Sam: The First Encounter (DEMO) = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\icbfppfaccaljnjbfeooceefehpccbkh\0.1.0.8_0\
CHR - Extension: Gangnam Christmas Run! = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\iejonljecgflfjedbokcefgcidbecmgl\1.0.0.0_0\
CHR - Extension: World of Solitaire = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbnllnaaaohekjkcpfdllhhjijnidgn\1.0.1_0\
CHR - Extension: OrangeFPS on Roozz = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifnckhopllcmleegegheacblhehfifei\0.1.0.5_0\
CHR - Extension: Zombie Track Meat = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfhnfnjfdoplkgbkmibfkdjolnemfdk\1.0.1578.0_0\
CHR - Extension: Vgrabber v1 = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnidgldcbakaidffpjinopjbmobecifb\10.16.1.521_1\
CHR - Extension: RUZZLE LIKE = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\jokeedegnpekiomeodekdcfblhhepelg\1.1_0\
CHR - Extension: Break The Wall = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\klhfgnobmdkblmbdahcnpajbjnfmknpn\1.5_0\
CHR - Extension: Fieldrunners = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkpikhjbfbffdblahfidklcohlaeabak\1.0.0.5_0\
CHR - Extension: Counter Strike Online = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmebpghpgkhlphpidpcgnllbjiaoppce\1.1_0\
CHR - Extension: Ben 10 Cave Run Game = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\lohjfmmbfnolfbeomkdibidgeefdjbdd\1_0\
CHR - Extension: Dragons of Atlantis = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\manlnjcghdempjdpndlcmaaobbighhcf\1.6.1_0\
CHR - Extension: SAS Zombie Assault 3 = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcmhocndjikklglfkdoekbolomhocnja\1_0\
CHR - Extension: Contract Killer = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\meklndaflopgghbomkdpofehonfclipi\1.1.3_0\
CHR - Extension: getsav-in = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjildcbkilmkddbbpbjljljdmmlfeppl\5.0_0\
CHR - Extension: CS Portable = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnkfbfebopikmbphmahljchancjmmmpj\1.0.1_0\
CHR - Extension: WGT Golf Game = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpedbpkelbhcbkdaglillalioeeekbpb\45.0.0_0\
CHR - Extension: RPG Games = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpoedenhofhhlblnplajipdijchlfoee\1.3_0\
CHR - Extension: RPG Games = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpoedenhofhhlblnplajipdijchlfoee\1.3_0\.bak
CHR - Extension: Playtopus = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncogfefdmipecdllelajldgkjnjcadfi\
CHR - Extension: Sumon = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nddpmdmpdcbnnkjfplckngdkhhmmbjaf\1.0.0.3_0\
CHR - Extension: BeGone = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndfpieflbjbdpgklkeolbmbdkfdiicfk\1.7.2_0\
CHR - Extension: Curling = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhalnajmigjnpjpdbpkpgfhekbjmolhp\1.0.10_0\
CHR - Extension: SpongeBob Super Brawl 2 = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\oamplghgnmpdanednnobalpcpgeghpeo\2.3.1_0\
CHR - Extension: Zombie Games = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofkhbcllblkggaicdcjeibhhcjeeoimb\1.6_0\
CHR - Extension: Zombie Games = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofkhbcllblkggaicdcjeibhhcjeeoimb\1.6_0\.bak
CHR - Extension: SweetPacks Chrome Extension = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj\1.3.0.3_0\
CHR - Extension: OokiCookie = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohjmnhgnkikbajikhhbplekfmljhdhjm\4_0\
CHR - Extension: Bakugan Battle Brawlers = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\oicjjohfiieokdmonicionfccncncjjo\1.0.1_0\
CHR - Extension: Mini Ninjas = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\oijfbknbncemokdnlboeabbcfhobechi\1.0.0.16_0\
CHR - Extension: Zombie Outbreak = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\oohpkbfbmcpmjdnncbmobhbdmblcmoeg\1.2_0\
CHR - Extension: Skater Games = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmhndjicclacpeciiaeoelefdakfoblk\3.1_0\
CHR - Extension: The Secret of Margrave Manor = C:\Users\Arris\AppData\Local\Google\Chrome\User Data\Default\Extensions\pngjkhgjdobhcfjfmjapkmckkmnelinp\0.2_0\

O1 HOSTS File: ([2009/06/10 16:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O4:64bit: - HKLM..\Run: [LogMeIn GUI] C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe (LogMeIn, Inc.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [ControlCenter3] C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [QuickFinder Scheduler] c:\Program Files (x86)\Corel\WordPerfect Office X6\Programs\QFSCHD160.EXE (Corel Corporation)
O4 - HKLM..\Run: [SearchProtectAll] C:\Program Files (x86)\SearchProtect\bin\cltmng.exe (Conduit)
O4 - HKCU..\Run: [GoogleChromeAutoLaunch_A91D3A9F5E13A0168A12C348526D5958] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
O4 - HKCU..\Run: [SearchProtect] C:\Users\Arris\AppData\Roaming\SearchProtect\bin\cltmng.exe (Conduit)
O4 - Startup: C:\Users\Arris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Automation Manager.LNK = C:\Windows\SysWOW64\AUTMGR32.EXE (Microsoft Corporation)
O4 - Startup: C:\Users\Arris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DDStart.LNK = C:\DDWIN\DDSTART.EXE (Menusoft Systems Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O8:64bit: - Extra context menu item: Open with WordPerfect - c:\Program Files (x86)\Corel\WordPerfect Office X6\Programs\WPLauncher.hta ()
O8 - Extra context menu item: Open with WordPerfect - c:\Program Files (x86)\Corel\WordPerfect Office X6\Programs\WPLauncher.hta ()
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.micros...n/ieawsdc32.cab (Microsoft Office Template and Media Control)
O16 - DPF: {03C0000A-CF6D-4EF4-A2D6-376622318018} http://192.168.2.150...WatSearCtrl.cab (Speco Remote)
O16 - DPF: {46D8BEE7-0B27-4466-ABA2-A5F1E157971C} http://192.168.2.150:100/RemoteWeb.cab (Remote200 Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4ECBA454-1CC3-4D4E-9785-2C0A2CD7CAC1}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5561FBD7-6767-4B55-9F0C-3850619048F8}: DhcpNameServer = 192.168.2.1
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/08/04 18:13:52 | 000,000,110 | -H-- | M] () - F:\autorun.inf -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/05/10 14:09:26 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Arris\Desktop\OTL.exe
[2013/05/10 13:54:50 | 000,708,168 | ---- | C] (MindSpark) -- C:\Program Files (x86)\39Uninstall MapsGalaxy.dll
[2013/05/04 21:52:20 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2013/05/04 18:49:23 | 000,000,000 | -HSD | C] -- C:\Windows\SysWow64\AI_RecycleBin
[2013/05/04 18:49:21 | 000,000,000 | ---D | C] -- C:\ProgramData\W3i
[2013/05/04 18:49:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\W3i
[2013/05/04 18:49:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uninstall Helper
[2013/05/04 18:49:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-zip
[2013/05/04 18:49:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\7-zip
[2013/05/04 18:49:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\We-Care Reminder
[2013/05/04 18:49:10 | 000,000,000 | ---D | C] -- C:\ProgramData\WeCareReminder
[2013/05/04 18:49:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SearchDonkey
[2013/05/04 18:48:59 | 000,000,000 | ---D | C] -- C:\Users\Arris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Playtopus
[2013/05/04 18:48:53 | 000,000,000 | ---D | C] -- C:\Users\Arris\AppData\Local\Playtopus
[2013/05/04 18:48:49 | 000,000,000 | ---D | C] -- C:\Users\Arris\AppData\Local\getsav-in
[2013/05/04 18:48:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Yahoo!
[2013/05/04 18:47:52 | 000,000,000 | ---D | C] -- C:\Users\Arris\AppData\Local\IAC
[2013/05/04 18:44:20 | 000,000,000 | ---D | C] -- C:\ProgramData\APN
[2013/05/04 15:22:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2013/04/12 22:44:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SweetIM
[2013/04/12 22:43:10 | 004,636,944 | ---- | C] (SweetIM Technologies Ltd.) -- C:\Users\Arris\Desktop\bundlesweetimsetup.exe
[2013/04/12 22:41:40 | 000,000,000 | ---D | C] -- C:\Users\Arris\AppData\Local\Unity
[2013/04/12 22:38:22 | 000,000,000 | ---D | C] -- C:\Users\Arris\AppData\Local\Apps
[2013/04/12 22:38:21 | 000,000,000 | ---D | C] -- C:\Users\Arris\AppData\Local\Deployment

========== Files - Modified Within 30 Days ==========

[2013/05/10 14:09:30 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Arris\Desktop\OTL.exe
[2013/05/10 14:07:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/05/10 14:05:47 | 000,020,672 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/05/10 14:05:47 | 000,020,672 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/05/10 13:58:17 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/05/10 13:57:26 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/05/10 13:57:05 | 3019,300,864 | -HS- | M] () -- C:\hiberfil.sys
[2013/05/10 13:15:00 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/05/10 11:34:00 | 000,000,350 | ---- | M] () -- C:\Windows\tasks\Playtopus Updater.job
[2013/05/09 11:15:28 | 000,001,327 | ---- | M] () -- C:\Users\Arris\Desktop\ROBLOX Studio 2013.lnk
[2013/05/09 11:09:52 | 000,001,315 | ---- | M] () -- C:\Users\Arris\Desktop\ROBLOX Player.lnk
[2013/05/07 14:28:15 | 004,726,784 | ---- | M] () -- C:\Users\Arris\Documents\My Money.mny
[2013/05/06 15:03:20 | 000,000,857 | ---- | M] () -- C:\Users\Arris\Desktop\backoffice (2).lnk
[2013/05/04 18:49:14 | 000,000,958 | ---- | M] () -- C:\Users\Public\Desktop\7-zip.lnk
[2013/05/04 18:48:53 | 000,000,000 | ---- | M] () -- C:\END
[2013/05/04 18:45:55 | 000,708,168 | ---- | M] (MindSpark) -- C:\Program Files (x86)\39Uninstall MapsGalaxy.dll
[2013/05/04 18:45:55 | 000,186,744 | ---- | M] () -- C:\Program Files (x86)\39res.dll
[2013/05/03 20:13:27 | 000,003,021 | ---- | M] () -- C:\Users\Arris\Desktop\Microsoft Word 2010.lnk
[2013/04/30 03:26:04 | 000,726,316 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/04/30 03:26:04 | 000,623,940 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/04/30 03:26:04 | 000,106,316 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/04/30 03:02:21 | 000,025,185 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/04/30 03:02:21 | 000,025,185 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2013/04/25 11:02:46 | 000,001,040 | ---- | M] () -- C:\Users\Arris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Automation Manager.LNK
[2013/04/12 22:43:42 | 004,636,944 | ---- | M] (SweetIM Technologies Ltd.) -- C:\Users\Arris\Desktop\bundlesweetimsetup.exe
[2013/04/12 22:43:34 | 024,415,218 | ---- | M] () -- C:\Users\Arris\Desktop\surgeonsimulator2013_win.zip

========== Files Created - No Company Name ==========

[2013/05/10 13:54:50 | 000,186,744 | ---- | C] () -- C:\Program Files (x86)\39res.dll
[2013/05/09 11:15:28 | 000,001,327 | ---- | C] () -- C:\Users\Arris\Desktop\ROBLOX Studio 2013.lnk
[2013/05/06 15:03:20 | 000,000,857 | ---- | C] () -- C:\Users\Arris\Desktop\backoffice (2).lnk
[2013/05/04 18:49:14 | 000,000,958 | ---- | C] () -- C:\Users\Public\Desktop\7-zip.lnk
[2013/05/04 18:48:53 | 000,000,350 | ---- | C] () -- C:\Windows\tasks\Playtopus Updater.job
[2013/05/03 20:13:27 | 000,003,021 | ---- | C] () -- C:\Users\Arris\Desktop\Microsoft Word 2010.lnk
[2013/04/30 03:02:21 | 000,025,185 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/04/30 03:02:21 | 000,025,185 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2013/04/12 22:43:10 | 024,415,218 | ---- | C] () -- C:\Users\Arris\Desktop\surgeonsimulator2013_win.zip
[2013/03/15 19:21:56 | 001,198,281 | ---- | C] () -- C:\Windows\unins000.exe
[2013/03/15 19:21:56 | 000,082,975 | ---- | C] () -- C:\Windows\unins000.dat
[2012/11/13 13:56:24 | 000,000,256 | ---- | C] () -- C:\Windows\Brpfx04a.ini
[2012/11/13 13:56:24 | 000,000,093 | ---- | C] () -- C:\Windows\brpcfx.ini
[2012/11/13 13:54:05 | 000,000,426 | ---- | C] () -- C:\Windows\BRWMARK.INI
[2012/11/13 13:51:29 | 000,000,066 | ---- | C] () -- C:\Windows\Brfaxrx.ini
[2012/11/13 13:51:29 | 000,000,000 | ---- | C] () -- C:\Windows\brdfxspd.dat
[2012/11/13 13:51:21 | 000,045,056 | ---- | C] () -- C:\Windows\SysWow64\BRTCPCON.DLL
[2012/11/13 13:51:19 | 000,000,114 | ---- | C] () -- C:\Windows\SysWow64\BRLMW03A.INI
[2012/11/13 13:28:26 | 000,106,496 | ---- | C] () -- C:\Windows\SysWow64\BrMuSNMP.dll
[2012/11/13 13:24:01 | 000,031,767 | ---- | C] () -- C:\Windows\maxlink.ini
[2012/10/08 15:24:52 | 000,000,720 | ---- | C] () -- C:\Windows\SysWow64\CameraTitle.ini
[2012/08/04 19:40:57 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2012/08/04 19:04:44 | 000,205,343 | ---- | C] () -- C:\Windows\hpwins26.dat
[2012/08/04 19:04:44 | 000,000,370 | ---- | C] () -- C:\Windows\hpwmdl26.dat
[2012/08/04 18:31:02 | 000,155,648 | ---- | C] () -- C:\Windows\SysWow64\SSLEAY32.DLL
[2012/08/04 18:31:01 | 000,032,768 | ---- | C] () -- C:\Windows\SysWow64\SDKVERSION.DLL
[2012/08/04 18:30:59 | 000,270,336 | ---- | C] () -- C:\Windows\SysWow64\LOG4CPLUS.DLL
[2012/08/04 18:30:58 | 000,663,552 | ---- | C] () -- C:\Windows\SysWow64\LIBEAY32.DLL
[2012/08/04 18:30:57 | 000,045,056 | ---- | C] () -- C:\Windows\SysWow64\BOOST_THREAD.DLL
[2012/08/04 18:30:56 | 000,569,442 | ---- | C] () -- C:\Windows\SysWow64\BOOST_REGEX_VC6_MDI.DLL
[2012/08/04 18:30:55 | 000,049,152 | ---- | C] () -- C:\Windows\SysWow64\TMUSBVB.DLL
[2012/08/04 18:30:53 | 004,882,567 | ---- | C] () -- C:\Windows\SysWow64\SHOCKWAVE_INSTALLER_FULL.EXE
[2012/08/04 18:30:40 | 000,647,212 | ---- | C] () -- C:\Windows\SysWow64\S4DLL.DLL
[2012/08/04 18:30:32 | 000,032,256 | ---- | C] () -- C:\Windows\SysWow64\QSRSOCKB.DLL
[2012/08/04 18:30:27 | 000,030,720 | ---- | C] () -- C:\Windows\SysWow64\PKDCLVB.DLL
[2012/08/04 18:30:18 | 000,018,944 | ---- | C] ( ) -- C:\Windows\SysWow64\IMPLODE.DLL

========== ZeroAccess Check ==========

[2009/07/13 23:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/09 00:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 23:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 20:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 22:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 20:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/05/04 20:07:28 | 000,000,000 | ---D | M] -- C:\Users\Arris\AppData\Roaming\.minecraft
[2012/08/06 15:51:34 | 000,000,000 | ---D | M] -- C:\Users\Arris\AppData\Roaming\Nuance
[2013/03/15 19:26:16 | 000,000,000 | ---D | M] -- C:\Users\Arris\AppData\Roaming\SearchProtect

========== Purity Check ==========



< End of report >
  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Forum
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP