OTL logfile created on: 10/1/2011 9:08:15 PM - Run 5
OTL by OldTimer - Version 3.2.7.1     Folder = C:\Users\scott\Desktop
Windows Vista Home Premium Edition  (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18904)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 83.00% Memory free
4.00 Gb Paging File | 4.00 Gb Available in Paging File | 96.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 144.29 Gb Total Space | 13.55 Gb Free Space | 9.39% Space Free | Partition Type: NTFS
Drive D: | 144.04 Gb Total Space | 143.76 Gb Free Space | 99.81% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: SCOTT-PC
Current User Name: scott
Logged in as Administrator.
 
Current Boot Mode: SafeMode
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2010/07/06 18:14:09 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\scott\Desktop\OTL.scr
PRC - [2008/10/29 02:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - [2010/07/06 18:14:09 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\scott\Desktop\OTL.scr
MOD - [2006/11/02 05:44:49 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscript.ocx
MOD - [2006/11/02 05:38:57 | 001,648,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [Auto | Stopped] -- C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe -- (Automatic LiveUpdate Scheduler)
SRV - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2011/02/18 17:37:16 | 000,037,664 | ---- | M] (Apple Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/01/15 08:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService)
SRV - [2009/11/06 15:29:22 | 001,141,712 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Spyware Doctor\pctsSvc.exe -- (sdCoreService)
SRV - [2009/10/30 12:18:16 | 000,359,624 | ---- | M] (PC Tools) [Auto | Stopped] -- C:\Program Files\Spyware Doctor\pctsAuxs.exe -- (sdAuxService)
SRV - [2009/10/22 14:57:44 | 000,070,952 | ---- | M] () [Auto | Stopped] -- C:\Program Files\tbh\monitor\bin\tbhMonitor.exe -- (tbhMonitor.exe)
SRV - [2009/10/20 14:19:48 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental)
SRV - [2008/11/09 16:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Stopped] -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
SRV - [2007/12/25 23:41:17 | 001,252,232 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe -- (Symantec Core LC)
SRV - [2007/10/25 15:27:54 | 000,266,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Live\installer\WLSetupSvc.exe -- (WLSetupSvc)
SRV - [2007/10/18 11:31:54 | 000,098,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Live\Messenger\usnsvc.exe -- (usnjsvc)
SRV - [2007/09/12 22:27:24 | 002,999,664 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_2.EXE -- (LiveUpdate)
SRV - [2007/07/30 19:11:27 | 000,265,912 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/07/24 16:06:56 | 000,943,608 | ---- | M] ( ) [Auto | Stopped] -- C:\Program Files\Defender Pro\Defender Pro Drive Defragger\bin\DriveDefraggerService.exe -- (DefenderProDriveDefraggerService)
SRV - [2007/07/03 13:40:10 | 000,053,248 | ---- | M] (Acer Inc.) [Auto | Stopped] -- C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe -- (eRecoveryService)
SRV - [2007/06/21 21:33:20 | 000,269,448 | ---- | M] (CyberLink) [Auto | Stopped] -- C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe -- (Acer HomeMedia Connect Service)
SRV - [2007/04/16 21:48:12 | 000,028,672 | ---- | M] () [Auto | Stopped] -- C:\Acer\Empowering Technology\ePerformance\MemCheck.exe -- (AcerMemUsageCheckService)
SRV - [2006/11/21 00:44:32 | 000,107,624 | ---- | M] (Symantec Corporation) [Auto | Stopped] -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (CLTNetCnService)
SRV - [2006/11/21 00:44:32 | 000,107,624 | ---- | M] (Symantec Corporation) [Auto | Stopped] -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccSetMgr)
SRV - [2006/11/21 00:44:32 | 000,107,624 | ---- | M] (Symantec Corporation) [Auto | Stopped] -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccEvtMgr)
SRV - [2006/11/21 00:43:42 | 000,046,736 | ---- | M] (Symantec Corporation) [Auto | Stopped] -- c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe -- (SymAppCore)
SRV - [2006/11/21 00:42:52 | 000,049,296 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe -- (comHost)
SRV - [2006/11/21 00:42:12 | 000,080,552 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- c:\Program Files\Norton Internet Security\isPwdSvc.exe -- (ISPwdSvc)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\System32\DRIVERS\UimBus.sys -- (UimBus)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\System32\Drivers\Uim_IM.sys -- (Uim_IM)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{EEBD29B2-7D2A-4C69-AF0F-B7E554047A55}\MpKslf383e588.sys -- (MpKslf383e588)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{EC84C35E-1428-41F0-B961-3D98170E81D2}\MpKslbe6679db.sys -- (MpKslbe6679db)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{EC84C35E-1428-41F0-B961-3D98170E81D2}\MpKsl9c58f8d2.sys -- (MpKsl9c58f8d2)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{81607025-B6A1-4611-BA8D-850A743C3789}\MpKsl68cc15a2.sys -- (MpKsl68cc15a2)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4BC71E3C-FFC4-4285-B4BE-0BEC5E28BDF1}\MpKsl5f7d43ee.sys -- (MpKsl5f7d43ee)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F56AB796-A685-425A-A4F1-588ED3B356F7}\MpKsl4cd4e043.sys -- (MpKsl4cd4e043)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F56AB796-A685-425A-A4F1-588ED3B356F7}\MpKsl3c7ffe2c.sys -- (MpKsl3c7ffe2c)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{574771A2-4984-40B8-B0CC-4136D6F3873A}\MpKsl3b1e9176.sys -- (MpKsl3b1e9176)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{74A3EE7C-BF48-4569-B8EB-2E026574BDD6}\MpKsl1b4a8e8d.sys -- (MpKsl1b4a8e8d)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\CSNPD51a64.sys -- (CSNPD51a64)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\ComboFix\catchme.sys -- (catchme)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\blbdrive.sys -- (blbdrive)
DRV - [2011/04/18 13:18:50 | 000,165,648 | ---- | M] (Microsoft Corporation) [File_System | System | Stopped] -- C:\Windows\System32\drivers\MpFilter.sys -- (MpFilter)
DRV - [2011/04/18 13:18:50 | 000,043,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon)
DRV - [2009/11/09 12:20:12 | 000,207,792 | ---- | M] (PC Tools) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\PCTCore.sys -- (PCTCore)
DRV - [2009/10/20 14:19:44 | 000,050,704 | ---- | M] (CACE Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\npf.sys -- (NPF) WinPcap Packet Driver (NPF)
DRV - [2009/08/14 17:46:06 | 000,067,424 | ---- | M] (CyberDefender Corp.) [File_System | Auto | Stopped] -- C:\Windows\System32\drivers\CDAVFS.sys -- (CDAVFS)
DRV - [2009/05/09 01:14:20 | 000,014,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nuidfltr.sys -- (NuidFltr)
DRV - [2008/03/05 05:00:00 | 000,895,408 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20080324.005\NAVEX15.SYS -- (NAVEX15)
DRV - [2008/03/05 05:00:00 | 000,082,256 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20080324.005\NAVENG.SYS -- (NAVENG)
DRV - [2008/02/13 12:18:22 | 000,261,680 | ---- | M] (Symantec Corporation) [Kernel | System | Stopped] -- C:\ProgramData\Symantec\Definitions\SymcData\idsdefs\20080314.001\IDSvix86.sys -- (IDSvix86)
DRV - [2008/01/18 05:00:00 | 000,385,072 | ---- | M] (Symantec Corporation) [Kernel | System | Stopped] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2008/01/02 17:48:28 | 002,016,256 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\igdkmd32.sys -- (igfx)
DRV - [2008/01/02 17:48:28 | 002,016,256 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\igdkmd32.sys -- (ialm)
DRV - [2007/10/17 18:04:58 | 000,027,800 | ---- | M] (Colasoft Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\CSNPD51.sys -- (CSNPD51)
DRV - [2007/07/30 20:14:43 | 000,006,144 | ---- | M] (NewTech Infosystems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NTIDrvr.sys -- (NTIDrvr)
DRV - [2007/07/30 19:36:12 | 000,109,744 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2007/05/11 17:31:36 | 003,580,832 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lvuvc.sys -- (LVUVC) QuickCam for Notebooks Pro(UVC)
DRV - [2007/05/11 17:31:22 | 000,041,888 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2007/04/10 15:05:38 | 001,764,960 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007/03/21 15:58:56 | 000,304,920 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iastor.sys -- (iaStor)
DRV - [2007/02/01 20:37:36 | 000,982,272 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\smserial.sys -- (smserial)
DRV - [2006/12/12 11:16:06 | 000,022,528 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\emAudio.sys -- (emAudio)
DRV - [2006/12/07 21:12:02 | 000,076,584 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Acer\Empowering Technology\eRecovery\int15.sys -- (int15)
DRV - [2006/11/21 00:45:52 | 000,185,744 | ---- | M] (Symantec Corporation) [Kernel | System | Stopped] -- C:\Windows\System32\Drivers\SYMTDI.SYS -- (SYMTDI)
DRV - [2006/11/21 00:45:52 | 000,037,008 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SYMNDISV.SYS -- (SYMNDISV)
DRV - [2006/11/21 00:45:52 | 000,026,384 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SYMREDRV.SYS -- (SYMREDRV)
DRV - [2006/11/21 00:45:50 | 000,144,784 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SYMFW.SYS -- (SYMFW)
DRV - [2006/11/21 00:45:50 | 000,038,928 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SYMIDS.SYS -- (SYMIDS)
DRV - [2006/11/21 00:45:50 | 000,011,792 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SYMDNS.SYS -- (SYMDNS)
DRV - [2006/11/21 00:45:42 | 000,275,576 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\srtspl.sys -- (SRTSPL)
DRV - [2006/11/21 00:45:42 | 000,245,880 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\srtsp.sys -- (SRTSP)
DRV - [2006/11/21 00:45:42 | 000,024,184 | ---- | M] (Symantec Corporation) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\srtspx.sys -- (SRTSPX)
DRV - [2006/11/21 00:45:36 | 000,406,672 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)
DRV - [2006/11/02 05:51:45 | 000,900,712 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300)
DRV - [2006/11/02 05:51:38 | 000,420,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx)
DRV - [2006/11/02 05:51:34 | 000,316,520 | ---- | M] (Emulex) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor)
DRV - [2006/11/02 05:51:32 | 000,297,576 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci)
DRV - [2006/11/02 05:51:25 | 000,235,112 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci)
DRV - [2006/11/02 05:51:25 | 000,232,040 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV)
DRV - [2006/11/02 05:51:00 | 000,147,048 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320)
DRV - [2006/11/02 05:50:45 | 000,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2)
DRV - [2006/11/02 05:50:41 | 000,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid)
DRV - [2006/11/02 05:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx)
DRV - [2006/11/02 05:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata)
DRV - [2006/11/02 05:50:35 | 000,098,408 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m)
DRV - [2006/11/02 05:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid)
DRV - [2006/11/02 05:50:19 | 000,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960)
DRV - [2006/11/02 05:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp)
DRV - [2006/11/02 05:50:16 | 000,071,784 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4)
DRV - [2006/11/02 05:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor)
DRV - [2006/11/02 05:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx)
DRV - [2006/11/02 05:50:10 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas)
DRV - [2006/11/02 05:50:10 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2006/11/02 05:50:10 | 000,038,504 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2)
DRV - [2006/11/02 05:50:10 | 000,037,480 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs)
DRV - [2006/11/02 05:50:09 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arc.sys -- (arc)
DRV - [2006/11/02 05:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid)
DRV - [2006/11/02 05:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi)
DRV - [2006/11/02 05:50:05 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV - [2006/11/02 05:50:05 | 000,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx)
DRV - [2006/11/02 05:50:04 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC)
DRV - [2006/11/02 05:50:03 | 000,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3)
DRV - [2006/11/02 05:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x)
DRV - [2006/11/02 05:49:56 | 000,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi)
DRV - [2006/11/02 05:49:53 | 000,028,776 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasas.sys -- (megasas)
DRV - [2006/11/02 05:49:30 | 000,017,512 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viaide.sys -- (viaide)
DRV - [2006/11/02 05:49:28 | 000,016,488 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide)
DRV - [2006/11/02 05:49:20 | 000,014,952 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\aliide.sys -- (aliide)
DRV - [2006/11/02 04:58:52 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\MODEMCSA.sys -- (MODEMCSA)
DRV - [2006/11/02 04:57:10 | 000,066,048 | ---- | M] () [Kernel | System | Stopped] -- C:\Windows\System32\drivers\smb.sys -- (Smb) Message-oriented TCP/IP and TCP/IPv6 Protocol (SMB session)
DRV - [2006/11/02 04:57:06 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\irsir.sys -- (irsir)
DRV - [2006/11/02 04:55:22 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\umpass.sys -- (UMPass)
DRV - [2006/11/02 04:55:04 | 000,071,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\USBAUDIO.sys -- (usbaudio) USB Audio Driver (WDM)
DRV - [2006/11/02 04:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006/11/02 04:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer)
DRV - [2006/11/02 04:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp)
DRV - [2006/11/02 04:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo)
DRV - [2006/11/02 04:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm)
DRV - [2006/11/02 04:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm)
DRV - [2006/11/02 03:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi)
DRV - [2006/11/02 03:30:56 | 000,047,104 | ---- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2006/11/02 03:30:54 | 000,117,760 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel(R)
DRV - [2005/12/21 09:14:52 | 000,100,957 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\emDevice.sys -- (DCamUSBEMPIA)
DRV - [2005/12/21 09:14:52 | 000,005,245 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\emFilter.sys -- (FiltUSBEMPIA)
DRV - [2005/12/21 09:14:52 | 000,004,493 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\emScan.sys -- (ScanUSBEMPIA)
DRV - [2005/09/23 23:18:32 | 000,171,520 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MarvinBus.sys -- (MarvinBus)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/clipextractor/{5CAF01BC-966A-41F2-80A7-26C8F57618E5}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=fc8bd016000000000000001c250a7531&tlver=1.4.23.10&affID=19591
IE - HKLM\..\URLSearchHook: {03402f96-3dc7-4285-bc50-9e81fefafe43} - C:\Program Files\AIM Toolbar\aimtb.dll (AOL Inc.)
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Yahoo! Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultenginename: "AIM Search"
FF - prefs.js..browser.search.defaultthis.engineName: "Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT1460988&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.selectedEngine: "Web Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://search.conduit.com/?ctid=CT1460988&SearchSource=13"
FF - prefs.js..extensions.enabledItems: {038cb5c7-48ea-4af9-94e0-a1646542e62b}:2.7.2.0
FF - prefs.js..extensions.enabledItems: {c2f863cd-0429-48c7-bb54-db756a951760}:5.96.10.6044
FF - prefs.js..extensions.enabledItems: {4152e25e-6bba-49e4-9813-103a1d44c131}:2.7.2.0
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.3.20100310105313
FF - prefs.js..extensions.enabledItems: {2122962a-1424-fffe-19af-bba2ef3eff4a}:1.0
FF - prefs.js..extensions.enabledItems: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7}:2.5.6.0
FF - prefs.js..extensions.enabledItems: {000a9d1c-beef-4f90-9363-039d445309b8}:0.5.36.0
FF - prefs.js..extensions.enabledItems: {b31ba05d-959c-439f-a01e-552179220981}:2.7.1.3
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {5835466c-49af-4cbe-b102-a8c8b6313749}:1.0.6
FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.11.3.15590
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.1
FF - prefs.js..extensions.enabledItems: testpilot@labs.mozilla.com:1.0.4
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: {59c6f12b-f004-43e5-9997-08f2123119b6}:2.5.0.3
FF - prefs.js..keyword.URL: "http://search.babylon.com/?babsrc=SP_ss&mntrId=fc8bd016000000000000001c250a7531&tlver=1.4.23.10&instlRef=sst&affID=19591&q="
FF - prefs.js..network.proxy.type: 0
 
 
FF - HKLM\software\mozilla\Firefox\Extensions\\{000a9d1c-beef-4f90-9363-039d445309b8}: C:\Program Files\Google\Google Gears\Firefox\ [2010/06/18 00:50:13 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011/07/16 01:51:38 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/03/29 20:52:06 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/03/29 20:52:05 | 000,000,000 | ---D | M]
 
[2008/06/22 01:17:02 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\Mozilla\Extensions
[2011/10/01 17:16:28 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\Mozilla\Firefox\Profiles\t0gif04g.default\extensions
[2011/10/01 17:16:06 | 000,000,000 | ---D | M] (ToggleEN Community Toolbar) -- C:\Users\scott\AppData\Roaming\Mozilla\Firefox\Profiles\t0gif04g.default\extensions\{038cb5c7-48ea-4af9-94e0-a1646542e62b}
[2010/07/23 11:46:14 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\scott\AppData\Roaming\Mozilla\Firefox\Profiles\t0gif04g.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/04/04 18:36:01 | 000,000,000 | ---D | M] (YouTube Downloader for Facebook) -- C:\Users\scott\AppData\Roaming\Mozilla\Firefox\Profiles\t0gif04g.default\extensions\{2122962a-1424-fffe-19af-bba2ef3eff4a}
[2011/08/18 15:42:38 | 000,000,000 | ---D | M] (Xbox 360 modz Community Toolbar) -- C:\Users\scott\AppData\Roaming\Mozilla\Firefox\Profiles\t0gif04g.default\extensions\{4152e25e-6bba-49e4-9813-103a1d44c131}
[2011/10/01 17:16:17 | 000,000,000 | ---D | M] (ShopToWin2) -- C:\Users\scott\AppData\Roaming\Mozilla\Firefox\Profiles\t0gif04g.default\extensions\{5835466c-49af-4cbe-b102-a8c8b6313749}
[2011/03/10 20:45:55 | 000,000,000 | ---D | M] (ooVoo Toolbar) -- C:\Users\scott\AppData\Roaming\Mozilla\Firefox\Profiles\t0gif04g.default\extensions\{59c6f12b-f004-43e5-9997-08f2123119b6}
[2011/08/14 17:24:14 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\scott\AppData\Roaming\Mozilla\Firefox\Profiles\t0gif04g.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2011/10/01 17:16:26 | 000,000,000 | ---D | M] (myBabylon EnglishBB Community Toolbar) -- C:\Users\scott\AppData\Roaming\Mozilla\Firefox\Profiles\t0gif04g.default\extensions\{b2e293ee-fd7e-4c71-a714-5f4750d8d7b7}
[2011/08/14 17:24:21 | 000,000,000 | ---D | M] (Alexcruz00 Community Toolbar) -- C:\Users\scott\AppData\Roaming\Mozilla\Firefox\Profiles\t0gif04g.default\extensions\{b31ba05d-959c-439f-a01e-552179220981}
[2011/08/23 14:35:38 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\scott\AppData\Roaming\Mozilla\Firefox\Profiles\t0gif04g.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2011/10/01 17:17:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\scott\AppData\Roaming\Mozilla\Firefox\Profiles\t0gif04g.default\extensions\{c2f863cd-0429-48c7-bb54-db756a951760}
[2011/03/31 14:27:12 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\Mozilla\Firefox\Profiles\t0gif04g.default\extensions\engine@conduit.com
[2011/06/23 23:07:18 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\Mozilla\Firefox\Profiles\t0gif04g.default\extensions\ffxtlbr@babylon.com
[2011/09/05 21:58:43 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\Mozilla\Firefox\Profiles\t0gif04g.default\extensions\toolbar@ask.com
[2010/06/09 18:16:57 | 000,004,546 | ---- | M] () -- C:\Users\scott\AppData\Roaming\Mozilla\Firefox\Profiles\t0gif04g.default\searchplugins\aim-search-1.xml
[2010/02/21 00:26:52 | 000,004,546 | ---- | M] () -- C:\Users\scott\AppData\Roaming\Mozilla\Firefox\Profiles\t0gif04g.default\searchplugins\aim-search.xml
[2011/03/10 20:46:17 | 000,002,014 | ---- | M] () -- C:\Users\scott\AppData\Roaming\Mozilla\Firefox\Profiles\t0gif04g.default\searchplugins\bing-zugo.xml
[2011/07/07 16:42:12 | 000,000,879 | ---- | M] () -- C:\Users\scott\AppData\Roaming\Mozilla\Firefox\Profiles\t0gif04g.default\searchplugins\conduit.xml
[2011/03/29 20:52:09 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009/03/28 01:24:52 | 000,000,000 | ---D | M] (ToggleEN Toolbar) -- C:\Program Files\Mozilla Firefox\extensions\{038cb5c7-48ea-4af9-94e0-a1646542e62b}
[2010/07/09 15:03:08 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010/11/01 18:47:57 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011/03/16 17:21:54 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011/03/16 17:20:46 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2011/06/23 23:07:37 | 000,002,423 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml
[2010/01/01 04:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\bing.xml
 
Hosts file not found
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\NppBHO.dll (Symantec Corporation)
O2 - BHO: (CescrtHlpr Object) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.23.10\bh\BabylonToolbar.dll (Babylon BHO)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (ooVoo Toolbar) - {59c6f12b-f004-43e5-9997-08f2123119b6} - C:\Program Files\oovootoolbar\oovootoolbarX.dll ()
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No CLSID value found.
O2 - BHO: (no name) - {99E00A4C-D35E-11DD-BA95-9B6A56D89593} - No CLSID value found.
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
O2 - BHO: (AIM Toolbar Loader) - {b0cda128-b425-4eef-a174-61a11ac5dbf8} - C:\Program Files\AIM Toolbar\aimtb.dll (AOL Inc.)
O2 - BHO: (Windows Live Toolbar Helper) - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O2 - BHO: (MSN Toolbar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN\Toolbar\3.0.0988.2\msneshellx.dll (Microsoft Corp.)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O2 - BHO: (Google Gears Helper) - {E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll (Google Inc.)
O2 - BHO: (SMTTB2009 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\Clip Extractor Toolbar\tbcore3.dll ()
O3 - HKLM\..\Toolbar: (MSN Toolbar) - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - C:\Program Files\MSN\Toolbar\3.0.0988.2\msneshellx.dll (Microsoft Corp.)
O3 - HKLM\..\Toolbar: (Clip Extractor Toolbar) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\Clip Extractor Toolbar\tbcore3.dll ()
O3 - HKLM\..\Toolbar: (ooVoo Toolbar) - {59c6f12b-f004-43e5-9997-08f2123119b6} - C:\Program Files\oovootoolbar\oovootoolbarX.dll ()
O3 - HKLM\..\Toolbar: (AIM Toolbar) - {61539ecd-cc67-4437-a03c-9aaccbd14326} - C:\Program Files\AIM Toolbar\aimtb.dll (AOL Inc.)
O3 - HKLM\..\Toolbar: (Show Norton Toolbar) - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.23.10\BabylonToolbarTlbr.dll (Babylon Ltd.)
O3 - HKLM\..\Toolbar: (Windows Live Toolbar) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Clip Extractor Toolbar) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\Clip Extractor Toolbar\tbcore3.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Windows Live Toolbar) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [Acer Empowering Technology Monitor] C:\Acer\Empowering Technology\SysMonitor.exe ()
O4 - HKLM..\Run: [ApnUpdater] C:\Program Files\Ask.com\Updater\Updater.exe (Ask)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [booobFF3pmG5QJd8234A] C:\Windows\System32\nBBBrzPPNyx1.exe ()
O4 - HKLM..\Run: [ccApp] c:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [ISTray] C:\Program Files\Spyware Doctor\pctsTray.exe (PC Tools)
O4 - HKLM..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe (Microsoft® Corporation)
O4 - HKLM..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe (Microsoft® Corporation)
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [osCheck] c:\Program Files\Norton Internet Security\osCheck.exe (Symantec Corporation)
O4 - HKLM..\Run: [USB2Check] C:\Windows\System32\PCLECoInst.DLL (Pinnacle Systems)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [WorksFUD] C:\Program Files\Microsoft Works\wkfud.exe (Microsoft® Corporation)
O4 - HKCU..\Run: [AROReminder] C:\Program Files\Advanced Registry Optimizer\ARO.exe (Sammsoft)
O4 - HKCU..\Run: [CyberDefender Early Detection Center] C:\Users\scott\AppData\Local\CyberDefender Internet Security\AntiSpyware\cdas4549.exe (CyberDefender Corp.)
O4 - HKCU..\Run: [MediaGet2] C:\Users\scott\AppData\Local\MediaGet2\mediaget.exe (MediaGet LLC)
O4 - HKCU..\Run: [Octoshape Streaming Services] C:\Users\scott\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe (Octoshape ApS)
O4 - HKCU..\Run: [Weather] C:\Program Files\AWS\WeatherBug\Weather.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: &Windows Live Search - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Gears Settings - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll (Google Inc.)
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 -  File not found
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455}  (ExentInf Class)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_12-windows-i586.cab (Java Plug-in 1.5.0_12)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab (Java Plug-in 1.6.0_02)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Java Plug-in 1.6.0_03)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Java Plug-in 1.6.0_05)
O16 - DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab (Java Plug-in 1.6.0_06)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.87.74.166 68.87.68.166
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\Windows\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\Users\scott\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\scott\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 17:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 90 Days ==========[/color]
 
[2011/10/01 21:03:02 | 000,000,000 | ---D | C] -- C:\Users\scott\AppData\Roaming\tF44ppmH5sQJdE8
[2011/10/01 21:03:02 | 000,000,000 | ---D | C] -- C:\Users\scott\AppData\Roaming\RelBBtzP01v
[2011/10/01 20:43:06 | 000,000,000 | ---D | C] -- C:\Users\scott\AppData\Roaming\tEEKK8gRZ9
[2011/10/01 20:43:05 | 000,000,000 | ---D | C] -- C:\Users\scott\AppData\Roaming\ZivvDD2onF4pH5Q
[2011/10/01 20:15:12 | 000,000,000 | ---D | C] -- C:\Users\scott\AppData\Roaming\sRRZZqhhwkUVlBt
[2011/10/01 20:15:11 | 000,000,000 | ---D | C] -- C:\Users\scott\AppData\Roaming\RyyyS1iv3onFm5W
[2011/10/01 18:59:56 | 000,000,000 | ---D | C] -- C:\Users\scott\AppData\Roaming\tdEEL8gRZqhYw
[2011/10/01 18:59:56 | 000,000,000 | ---D | C] -- C:\Users\scott\AppData\Roaming\K8TCwUrlOBP1omW
[2011/10/01 18:56:11 | 000,000,000 | ---D | C] -- C:\Users\scott\AppData\Roaming\h00uucSS1ib3oG4
[2011/10/01 18:56:10 | 000,000,000 | ---D | C] -- C:\Users\scott\AppData\Roaming\xZZZqjYYwkIVlOt
[2011/10/01 17:41:35 | 000,000,000 | ---D | C] -- C:\Users\scott\AppData\Roaming\Malwarebytes
[2011/10/01 17:41:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/10/01 17:41:22 | 000,022,216 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/10/01 17:41:22 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/10/01 17:35:42 | 000,000,000 | ---D | C] -- C:\Users\scott\AppData\Roaming\ERRRL99hTXqUC
[2011/10/01 17:35:41 | 000,000,000 | ---D | C] -- C:\Users\scott\AppData\Roaming\IbFFF3pmG5aQ6dK
[2011/10/01 17:23:18 | 009,851,496 | ---- | C] (Malwarebytes Corporation                                    ) -- C:\Users\scott\Desktop\iexplore.exe
[2011/10/01 17:16:19 | 000,000,000 | ---D | C] -- C:\Users\scott\AppData\Roaming\DyyccA11ivDon4m
[2011/10/01 17:16:18 | 000,000,000 | ---D | C] -- C:\Users\scott\AppData\Roaming\y77d8ZhYYXkVlBz
[2011/10/01 15:23:54 | 000,000,000 | ---D | C] -- C:\Users\scott\AppData\Roaming\OVVVrllOBtxPyc1
[2011/10/01 15:23:54 | 000,000,000 | ---D | C] -- C:\Users\scott\AppData\Roaming\FJ777fEL8gTZqYw
[2011/10/01 15:23:42 | 000,000,000 | ---D | C] -- C:\Users\scott\AppData\Roaming\pfffRRZ9hTXwUCl
[2011/09/18 16:45:50 | 000,000,000 | ---D | C] -- C:\Users\scott\AppData\Local\PackageAware
[2011/09/04 19:10:20 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2011/09/01 21:18:38 | 000,000,000 | ---D | C] -- C:\Users\scott\Desktop\Desktop Icons
[2011/08/16 15:08:20 | 000,000,000 | ---D | C] -- C:\Users\scott\AppData\Local\Facebook
[2011/08/05 16:11:19 | 000,000,000 | ---D | C] -- C:\Users\scott\AppData\Roaming\MP3Rocket
[2011/08/05 16:11:12 | 000,000,000 | ---D | C] -- C:\Program Files\MP3 Rocket
[2011/07/16 01:53:51 | 000,000,000 | ---D | C] -- C:\Users\scott\AppData\Local\DDMSettings
[2011/07/16 01:50:56 | 000,000,000 | ---D | C] -- C:\Users\scott\AppData\Roaming\DivX
[2011/07/16 01:50:21 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PX Storage Engine
[2011/07/16 01:48:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DivX Shared
[2007/07/30 19:58:49 | 000,053,248 | ---- | C] ( ) -- C:\Windows\System32\Interop.Shell32.dll
 
[color=#E56717]========== Files - Modified Within 90 Days ==========[/color]
 
[2011/10/01 21:07:29 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/10/01 21:06:07 | 000,196,608 | ---- | M] () -- C:\Windows\System32\Ikeext.etl
[2011/10/01 21:06:06 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2011/10/01 21:06:05 | 003,670,016 | -HS- | M] () -- C:\Users\scott\ntuser.dat
[2011/10/01 21:06:02 | 001,554,152 | -H-- | M] () -- C:\Users\scott\AppData\Local\IconCache.db
[2011/10/01 21:04:00 | 000,000,868 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2011/10/01 21:03:26 | 000,015,086 | ---- | M] () -- C:\Users\scott\AppData\Roaming\tF44ppmH5sQJdE8Open Cloud AV.ico
[2011/10/01 21:03:26 | 000,001,714 | ---- | M] () -- C:\Users\scott\Desktop\Open Cloud AV.lnk
[2011/10/01 21:02:32 | 000,001,332 | ---- | M] () -- C:\Users\scott\Desktop\Clean Registry for Free!.lnk
[2011/10/01 21:02:18 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/10/01 21:02:13 | 000,003,200 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/10/01 21:02:13 | 000,003,200 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/10/01 21:02:10 | 000,000,000 | ---- | M] () -- C:\Windows\3042391979
[2011/10/01 20:43:06 | 000,015,086 | ---- | M] () -- C:\Users\scott\AppData\Roaming\tEEKK8gRZ9Open Cloud AV.ico
[2011/10/01 20:34:00 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/10/01 20:15:31 | 000,015,086 | ---- | M] () -- C:\Users\scott\AppData\Roaming\sRRZZqhhwkUVlBtOpen Cloud AV.ico
[2011/10/01 19:02:00 | 000,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3358501491-2779034593-4107227010-1000UA.job
[2011/10/01 18:59:57 | 000,015,086 | ---- | M] () -- C:\Users\scott\AppData\Roaming\tdEEL8gRZqhYwOpen Cloud AV.ico
[2011/10/01 18:56:17 | 000,015,086 | ---- | M] () -- C:\Users\scott\AppData\Roaming\h00uucSS1ib3oG4Open Cloud AV.ico
[2011/10/01 17:39:46 | 000,000,147 | ---- | M] () -- C:\Users\scott\Desktop\rk-proxy.reg
[2011/10/01 17:35:55 | 000,015,086 | ---- | M] () -- C:\Users\scott\AppData\Roaming\ERRRL99hTXqUCOpen Cloud AV.ico
[2011/10/01 17:24:44 | 009,851,496 | ---- | M] (Malwarebytes Corporation                                    ) -- C:\Users\scott\Desktop\iexplore.exe
[2011/10/01 17:16:19 | 000,015,086 | ---- | M] () -- C:\Users\scott\AppData\Roaming\DyyccA11ivDon4mOpen Cloud AV.ico
[2011/10/01 17:04:05 | 000,000,906 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3358501491-2779034593-4107227010-1000Core.job
[2011/10/01 17:04:05 | 000,000,856 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3358501491-2779034593-4107227010-1000Core.job
[2011/10/01 16:45:35 | 000,000,109 | ---- | M] () -- C:\Users\scott\Desktop\fixtm.reg
[2011/10/01 15:23:55 | 000,001,207 | ---- | M] () -- C:\Users\scott\AppData\Roaming\ldr.ini
[2011/10/01 15:23:54 | 000,015,086 | ---- | M] () -- C:\Users\scott\AppData\Roaming\OVVVrllOBtxPyc1Open Cloud AV.ico
[2011/10/01 15:23:42 | 002,400,256 | ---- | M] () -- C:\Windows\System32\nBBBrzPPNyx1.exe
[2011/10/01 15:13:02 | 000,000,928 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3358501491-2779034593-4107227010-1000UA.job
[2011/10/01 09:44:24 | 000,000,793 | ---- | M] () -- C:\Windows\System32\UltimateAIOFighter.properties
[2011/10/01 09:37:17 | 000,000,008 | ---- | M] () -- C:\Users\scott\AppData\Roaming\RSBuddy Login.ini
[2011/10/01 09:34:52 | 000,000,129 | ---- | M] () -- C:\Users\scott\jagex_runescape_preferences2.dat
[2011/10/01 09:34:52 | 000,000,046 | ---- | M] () -- C:\Users\scott\jagex_runescape_preferences.dat
[2011/10/01 09:33:59 | 001,082,893 | ---- | M] () -- C:\Windows\System32\RSBuddy.jar
[2011/09/29 20:48:16 | 000,000,402 | -H-- | M] () -- C:\Windows\tasks\Norton Security Scan for scott.job
[2011/09/24 13:01:09 | 000,000,098 | ---- | M] () -- C:\Users\scott\AppData\Roaming\RSBuddy_scoot707.ini
[2011/09/17 14:59:48 | 000,119,808 | ---- | M] () -- C:\Users\scott\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/09/17 12:58:29 | 220,142,258 | ---- | M] () -- C:\Users\scott\Documents\clip0387.avi
[2011/09/16 16:14:48 | 000,000,000 | ---- | M] () -- C:\Windows\System32\drivers\lvuvc.hs
[2011/09/09 16:07:37 | 000,720,952 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2011/09/09 16:07:37 | 000,621,314 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/09/09 16:07:37 | 000,104,662 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/09/06 20:48:56 | 000,002,337 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2011/09/04 19:18:31 | 000,001,772 | ---- | M] () -- C:\Users\scott\Desktop\Microsoft Security Essentials.lnk
[2011/09/04 19:10:52 | 000,001,945 | ---- | M] () -- C:\Windows\epplauncher.mif
[2011/08/31 17:00:50 | 000,022,216 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/08/05 16:11:31 | 000,001,731 | ---- | M] () -- C:\Users\scott\Desktop\MP3 Rocket 6.0.2.lnk
[2011/08/05 16:11:31 | 000,000,883 | ---- | M] () -- C:\Users\scott\Application Data\Microsoft\Internet Explorer\Quick Launch\MP3 Rocket 6.0.2.lnk
[2011/07/25 20:05:00 | 021,120,486 | ---- | M] () -- C:\Users\scott\Documents\clip0386.avi
[2011/07/21 23:16:47 | 041,390,646 | ---- | M] () -- C:\Users\scott\Documents\clip0385.avi
[2011/07/21 22:09:40 | 004,945,434 | ---- | M] () -- C:\Users\scott\Documents\clip0384.avi
[2011/07/21 04:06:57 | 898,991,102 | ---- | M] () -- C:\Users\scott\Documents\clip0383.avi
[2011/07/21 03:21:25 | 002,384,222 | ---- | M] () -- C:\Users\scott\Documents\clip0382.avi
[2011/07/21 03:21:03 | 000,055,588 | ---- | M] () -- C:\Users\scott\Documents\clip0381.avi
[2011/07/17 00:30:53 | 012,618,350 | ---- | M] () -- C:\Users\scott\Documents\clip0380.avi
[2011/07/14 06:14:48 | 2251,461,602 | ---- | M] () -- C:\Users\scott\Documents\clip0379.avi
[2011/07/13 21:56:25 | 2100,302,686 | ---- | M] () -- C:\Users\scott\Documents\clip0378.avi
[2011/07/13 19:04:43 | 596,008,258 | ---- | M] () -- C:\Users\scott\Documents\clip0377.avi
[2011/07/08 10:56:32 | 271,933,358 | ---- | M] () -- C:\Users\scott\Documents\clip0376.avi
[2011/07/08 09:35:28 | 065,280,270 | ---- | M] () -- C:\Users\scott\Documents\clip0375.avi
[2011/07/08 08:14:52 | 1176,634,340 | ---- | M] () -- C:\Users\scott\Documents\clip0374.avi
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2011/10/01 21:03:26 | 000,015,086 | ---- | C] () -- C:\Users\scott\AppData\Roaming\tF44ppmH5sQJdE8Open Cloud AV.ico
[2011/10/01 20:43:06 | 000,015,086 | ---- | C] () -- C:\Users\scott\AppData\Roaming\tEEKK8gRZ9Open Cloud AV.ico
[2011/10/01 20:15:39 | 000,001,714 | ---- | C] () -- C:\Users\scott\Desktop\Open Cloud AV.lnk
[2011/10/01 20:15:22 | 000,015,086 | ---- | C] () -- C:\Users\scott\AppData\Roaming\sRRZZqhhwkUVlBtOpen Cloud AV.ico
[2011/10/01 18:59:57 | 000,015,086 | ---- | C] () -- C:\Users\scott\AppData\Roaming\tdEEL8gRZqhYwOpen Cloud AV.ico
[2011/10/01 18:56:15 | 000,015,086 | ---- | C] () -- C:\Users\scott\AppData\Roaming\h00uucSS1ib3oG4Open Cloud AV.ico
[2011/10/01 17:39:46 | 000,000,147 | ---- | C] () -- C:\Users\scott\Desktop\rk-proxy.reg
[2011/10/01 17:35:44 | 000,015,086 | ---- | C] () -- C:\Users\scott\AppData\Roaming\ERRRL99hTXqUCOpen Cloud AV.ico
[2011/10/01 17:16:19 | 000,015,086 | ---- | C] () -- C:\Users\scott\AppData\Roaming\DyyccA11ivDon4mOpen Cloud AV.ico
[2011/10/01 16:45:36 | 000,000,109 | ---- | C] () -- C:\Users\scott\Desktop\fixtm.reg
[2011/10/01 15:23:54 | 000,015,086 | ---- | C] () -- C:\Users\scott\AppData\Roaming\OVVVrllOBtxPyc1Open Cloud AV.ico
[2011/10/01 15:23:54 | 000,001,207 | ---- | C] () -- C:\Users\scott\AppData\Roaming\ldr.ini
[2011/10/01 15:23:42 | 002,400,256 | ---- | C] () -- C:\Windows\System32\nBBBrzPPNyx1.exe
[2011/10/01 15:20:37 | 000,000,000 | ---- | C] () -- C:\Windows\3042391979
[2011/10/01 09:37:17 | 000,000,008 | ---- | C] () -- C:\Users\scott\AppData\Roaming\RSBuddy Login.ini
[2011/09/17 12:46:41 | 220,142,258 | ---- | C] () -- C:\Users\scott\Documents\clip0387.avi
[2011/09/08 18:14:36 | 000,000,793 | ---- | C] () -- C:\Windows\System32\UltimateAIOFighter.properties
[2011/09/06 17:19:42 | 001,082,893 | ---- | C] () -- C:\Windows\System32\RSBuddy.jar
[2011/09/04 19:18:31 | 000,001,772 | ---- | C] () -- C:\Users\scott\Desktop\Microsoft Security Essentials.lnk
[2011/09/04 19:10:52 | 000,001,945 | ---- | C] () -- C:\Windows\epplauncher.mif
[2011/09/02 14:29:50 | 000,001,332 | ---- | C] () -- C:\Users\scott\Desktop\Clean Registry for Free!.lnk
[2011/08/16 15:08:23 | 000,000,928 | ---- | C] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3358501491-2779034593-4107227010-1000UA.job
[2011/08/16 15:08:23 | 000,000,906 | ---- | C] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3358501491-2779034593-4107227010-1000Core.job
[2011/08/05 16:11:31 | 000,001,731 | ---- | C] () -- C:\Users\scott\Desktop\MP3 Rocket 6.0.2.lnk
[2011/08/05 16:11:31 | 000,000,883 | ---- | C] () -- C:\Users\scott\Application Data\Microsoft\Internet Explorer\Quick Launch\MP3 Rocket 6.0.2.lnk
[2011/07/25 20:00:24 | 021,120,486 | ---- | C] () -- C:\Users\scott\Documents\clip0386.avi
[2011/07/21 22:40:53 | 041,390,646 | ---- | C] () -- C:\Users\scott\Documents\clip0385.avi
[2011/07/21 22:04:54 | 004,945,434 | ---- | C] () -- C:\Users\scott\Documents\clip0384.avi
[2011/07/21 03:21:33 | 898,991,102 | ---- | C] () -- C:\Users\scott\Documents\clip0383.avi
[2011/07/21 03:21:10 | 002,384,222 | ---- | C] () -- C:\Users\scott\Documents\clip0382.avi
[2011/07/21 03:20:58 | 000,055,588 | ---- | C] () -- C:\Users\scott\Documents\clip0381.avi
[2011/07/17 00:26:10 | 012,618,350 | ---- | C] () -- C:\Users\scott\Documents\clip0380.avi
[2011/07/14 04:17:43 | 2251,461,602 | ---- | C] () -- C:\Users\scott\Documents\clip0379.avi
[2011/07/13 20:15:11 | 2100,302,686 | ---- | C] () -- C:\Users\scott\Documents\clip0378.avi
[2011/07/13 18:27:36 | 596,008,258 | ---- | C] () -- C:\Users\scott\Documents\clip0377.avi
[2011/07/08 10:24:50 | 271,933,358 | ---- | C] () -- C:\Users\scott\Documents\clip0376.avi
[2011/07/08 09:29:32 | 065,280,270 | ---- | C] () -- C:\Users\scott\Documents\clip0375.avi
[2011/07/08 06:55:59 | 1176,634,340 | ---- | C] () -- C:\Users\scott\Documents\clip0374.avi
[2010/02/26 12:53:06 | 001,970,176 | ---- | C] () -- C:\Windows\System32\d3dx9.dll
[2009/08/14 18:10:11 | 000,000,263 | ---- | C] () -- C:\Windows\System32\MRT.INI
[2009/08/14 17:47:40 | 000,000,055 | ---- | C] () -- C:\Windows\av_affiliate.ini
[2009/08/14 17:47:28 | 000,000,055 | ---- | C] () -- C:\Windows\as_affiliate.ini
[2008/01/02 17:57:36 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1409.dll
[2007/12/30 14:26:29 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2007/12/30 14:04:29 | 000,000,018 | ---- | C] () -- C:\Windows\Epson777.ini
[2007/09/14 06:02:06 | 000,000,044 | ---- | C] () -- C:\Windows\Acer(Normal).ini
[2007/09/14 06:02:06 | 000,000,042 | ---- | C] () -- C:\Windows\Acer(Wide).ini
[2007/07/30 20:58:15 | 000,001,024 | RH-- | C] () -- C:\Windows\System32\NTIBUN4.dll
[2007/07/30 19:58:46 | 000,331,776 | ---- | C] () -- C:\Windows\System32\ScrollBarLib.dll
[2007/07/30 18:50:39 | 000,000,701 | ---- | C] () -- C:\Windows\generic.ini
[2007/07/30 18:50:38 | 000,000,109 | ---- | C] () -- C:\Windows\Alaunch.ini
[2007/07/30 18:50:35 | 000,204,800 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1244.dll
[2007/05/11 16:12:54 | 000,057,126 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini
[2006/11/02 08:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 04:57:10 | 000,066,048 | ---- | C] () -- C:\Windows\System32\drivers\smb.sys
[2006/11/02 03:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2001/12/26 18:12:30 | 000,065,536 | ---- | C] () -- C:\Windows\System32\multiplex_vcd.dll
[2001/09/04 01:46:38 | 000,110,592 | ---- | C] () -- C:\Windows\System32\Hmpg12.dll
[2001/07/30 18:33:56 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC.dll
[2001/07/24 00:04:36 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC_MMX.dll
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2011/06/13 18:39:01 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\.minecraft
[2010/02/19 20:13:28 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\acccore
[2007/12/25 11:28:15 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\Acer
[2008/05/24 11:38:31 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\Atari
[2011/07/28 02:51:16 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\Audacity
[2008/12/11 16:31:22 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\Bin
[2010/02/15 13:41:27 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\Colasoft Packet Builder
[2010/01/17 18:30:17 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\Datel
[2010/07/08 15:43:27 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\Def
[2008/04/06 14:24:18 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\Defender Pro
[2010/01/05 18:08:51 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\DriverCure
[2011/10/01 17:16:19 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\DyyccA11ivDon4m
[2011/10/01 17:35:42 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\ERRRL99hTXqUC
[2007/12/25 09:55:22 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\eSobi
[2011/10/01 15:23:54 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\FJ777fEL8gTZqYw
[2011/08/05 16:06:40 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\FrostWire
[2007/12/30 13:39:42 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\FUJIFILM
[2010/05/06 16:08:01 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\GameTuts
[2008/05/19 17:13:43 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\GetRightToGo
[2011/08/07 21:44:55 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\godzHell
[2011/10/01 18:56:11 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\h00uucSS1ib3oG4
[2011/10/01 17:35:41 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\IbFFF3pmG5aQ6dK
[2010/11/03 20:57:11 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\IObit
[2011/10/01 18:59:56 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\K8TCwUrlOBP1omW
[2007/12/25 11:28:14 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\Leadertech
[2009/06/19 11:50:57 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\LimeWire
[2011/04/07 20:01:26 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\LolClient
[2010/12/29 23:54:27 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\ManyCam
[2011/06/23 23:06:16 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\Media Get LLC
[2011/09/14 16:53:42 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\MP3Rocket
[2010/04/17 20:34:43 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\Octoshape
[2010/09/04 20:06:15 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\ooVoo Details
[2011/10/01 15:23:54 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\OVVVrllOBtxPyc1
[2011/06/07 14:46:53 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\PeerNetworking
[2011/10/01 15:23:42 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\pfffRRZ9hTXwUCl
[2009/03/28 01:37:41 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\Publish Providers
[2011/10/01 21:03:02 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\RelBBtzP01v
[2011/10/01 20:15:11 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\RyyyS1iv3onFm5W
[2009/03/31 18:58:05 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\Sammsoft
[2010/03/13 00:27:22 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\Sony
[2011/10/01 20:15:12 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\sRRZZqhhwkUVlBt
[2011/10/01 18:59:56 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\tdEEL8gRZqhYw
[2011/10/01 20:43:06 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\tEEKK8gRZ9
[2007/12/30 14:11:48 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\Template
[2011/10/01 21:03:02 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\tF44ppmH5sQJdE8
[2009/08/14 18:23:11 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\VersionTracker Pro
[2010/07/26 14:25:38 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\WeatherBug
[2009/06/18 23:22:42 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\Windows Live Writer
[2010/02/15 19:57:34 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\Wireshark
[2011/10/01 18:56:10 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\xZZZqjYYwkIVlOt
[2011/10/01 17:16:18 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\y77d8ZhYYXkVlBz
[2011/10/01 20:43:05 | 000,000,000 | ---D | M] -- C:\Users\scott\AppData\Roaming\ZivvDD2onF4pH5Q
[2008/06/15 17:10:23 | 000,000,254 | ---- | M] () -- C:\Windows\Tasks\Check Updates for Windows Live Toolbar.job
[2011/10/01 17:04:05 | 000,000,906 | ---- | M] () -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3358501491-2779034593-4107227010-1000Core.job
[2011/10/01 15:13:02 | 000,000,928 | ---- | M] () -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3358501491-2779034593-4107227010-1000UA.job
[2011/10/01 21:06:07 | 000,032,562 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 784 bytes -> C:\Windows\3042391979:1422436426.exe
@Alternate Data Stream - 64 bytes -> C:\Users\scott\Documents\oovoo vid.avi:TOC.WMV
@Alternate Data Stream - 64 bytes -> C:\Users\scott\Documents\clip0371.avi:TOC.WMV
@Alternate Data Stream - 171 bytes -> C:\ProgramData\TEMP:DFC5A2B2
@Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:888AFB86
< End of report >