I have run AVG, Malwarebyte, and Spy bot - search and distroy. all three of them have been running. And AVG is going nuts saying that I am covered in viruses.
Thank you for your time. I realize this time of year we are all very busy.
Here is my Data:
OTL logfile created on: 4/21/2011 5:06:45 PM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\DanielleK\Downloads
Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
3.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 48.00% Memory free
5.00 Gb Paging File | 4.00 Gb Available in Paging File | 69.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 286.78 Gb Total Space | 206.64 Gb Free Space | 72.05% Space Free | Partition Type: NTFS
Drive D: | 11.12 Gb Total Space | 1.86 Gb Free Space | 16.72% Space Free | Partition Type: NTFS
Drive E: | 973.88 Mb Total Space | 254.19 Mb Free Space | 26.10% Space Free | Partition Type: FAT
Computer Name: DANIELLEK-PC | User Name: DanielleK | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011/04/21 17:05:43 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\DanielleK\Downloads\OTL.exe
PRC - [2011/04/20 08:33:26 | 001,376,768 | ---- | M] (opx.bit) -- C:\ProgramData\KBDHELA232.exe
PRC - [2011/04/20 08:33:26 | 001,376,768 | ---- | M] (opx.bit) -- C:\ProgramData\apss32.exe
PRC - [2011/03/10 13:23:48 | 000,234,656 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashUtil10n_ActiveX.exe
PRC - [2011/01/07 02:22:54 | 002,747,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgtray.exe
PRC - [2011/01/07 02:22:44 | 001,084,256 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgnsx.exe
PRC - [2011/01/07 02:22:12 | 001,052,512 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgemcx.exe
PRC - [2011/01/06 16:23:20 | 000,737,872 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
PRC - [2011/01/06 16:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
PRC - [2010/12/05 17:26:40 | 000,654,176 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgrsx.exe
PRC - [2010/12/05 17:26:12 | 000,650,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgchsvx.exe
PRC - [2010/12/01 14:07:27 | 004,765,040 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\BitTorrent\BitTorrent.exe
PRC - [2010/10/22 05:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe
PRC - [2010/10/22 05:56:58 | 000,845,664 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgcsrvx.exe
PRC - [2010/10/14 18:27:38 | 000,092,216 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
PRC - [2010/10/14 18:26:04 | 000,311,352 | ---- | M] (Hewlett-Packard Development Company L.P.) -- C:\Program Files\Hewlett-Packard\Shared\hpCaslNotification.exe
PRC - [2010/07/07 08:20:24 | 001,008,128 | ---- | M] (W3i, LLC) -- C:\Program Files\W3i\InstallIQUpdater\InstallIQUpdater.exe
PRC - [2009/10/30 23:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/09/04 13:43:40 | 000,795,936 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2009/09/04 13:43:38 | 002,360,608 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
PRC - [2009/09/04 13:43:38 | 000,595,232 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
PRC - [2009/07/23 18:23:56 | 000,178,720 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
PRC - [2009/07/23 18:23:54 | 000,387,616 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
PRC - [2009/07/21 03:33:32 | 000,458,844 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\sttray.exe
PRC - [2009/07/21 03:33:32 | 000,221,266 | ---- | M] (IDT, Inc.) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_8e7d5b9d3a91d8c5\stacsv.exe
PRC - [2009/07/14 04:54:00 | 000,589,104 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\HP QuickSync\QuickSync.exe
PRC - [2009/07/14 04:54:00 | 000,135,168 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Hewlett-Packard\HP QuickSync\jre\bin\javaw.exe
PRC - [2009/07/13 19:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009/07/13 19:14:15 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2009/03/01 23:43:08 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_8e7d5b9d3a91d8c5\AEstSrv.exe
PRC - [2009/01/26 15:31:16 | 002,144,088 | RHS- | M] (Safer Networking Limited) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
PRC - [2000/06/29 02:45:10 | 000,052,224 | ---- | M] (Kenonic Controls Ltd.) -- C:\Windows\System32\Crypserv.exe
========== Modules (SafeList) ==========
MOD - [2011/04/21 17:05:43 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\DanielleK\Downloads\OTL.exe
MOD - [2010/08/20 23:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV - [2011/04/20 08:33:26 | 001,376,768 | ---- | M] (opx.bit) [Auto | Running] -- C:\ProgramData\KBDHELA232.exe -- (COMSysApp32)
SRV - [2011/01/06 16:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2010/10/22 05:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd)
SRV - [2010/10/14 18:27:38 | 000,092,216 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe -- (HPDrvMntSvc.exe)
SRV - [2010/10/12 11:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
SRV - [2010/03/18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon)
SRV - [2010/03/10 09:13:12 | 001,343,400 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2009/09/04 13:43:38 | 000,595,232 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins)
SRV - [2009/07/23 18:23:56 | 000,178,720 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe -- (nSvcIp)
SRV - [2009/07/23 18:23:54 | 000,387,616 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe -- (ForceWare Intelligent Application Manager (IAM)) ForceWare Intelligent Application Manager (IAM)
SRV - [2009/07/21 03:33:32 | 000,221,266 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_8e7d5b9d3a91d8c5\stacsv.exe -- (STacSV)
SRV - [2009/07/13 19:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/13 19:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/03/01 23:43:08 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_8e7d5b9d3a91d8c5\AEstSrv.exe -- (AESTFilters)
SRV - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Running] -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)
SRV - [2000/06/29 02:45:10 | 000,052,224 | ---- | M] (Kenonic Controls Ltd.) [Auto | Running] -- C:\Windows\System32\Crypserv.exe -- (Crypkey License)
========== Driver Services (SafeList) ==========
DRV - [2010/12/20 23:22:36 | 000,239,664 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2010/12/20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2010/12/08 05:12:38 | 000,251,728 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2010/11/12 14:19:38 | 000,299,984 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2010/09/13 16:27:54 | 000,025,680 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH)
DRV - [2010/09/07 04:48:56 | 000,034,384 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2010/09/07 04:48:50 | 000,026,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86)
DRV - [2010/08/19 21:42:38 | 000,123,472 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV - [2010/08/19 21:42:38 | 000,030,288 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV - [2010/08/19 21:42:36 | 000,021,072 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSShim.sys -- (AVGIDSShim)
DRV - [2009/07/23 00:01:00 | 009,791,072 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2009/07/21 03:33:32 | 000,409,088 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA)
DRV - [2009/07/16 21:13:30 | 000,171,008 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV - [2009/07/13 17:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2009/07/13 16:02:52 | 000,347,264 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvm62x32.sys -- (NVENETFD)
DRV - [2009/06/30 22:20:54 | 000,287,392 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvmf6232.sys -- (NVNET)
DRV - [2009/06/30 03:32:54 | 000,212,000 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\nvstor32.sys -- (nvstor32)
DRV - [2009/06/28 10:36:36 | 000,017,920 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvsmu.sys -- (nvsmu)
DRV - [2009/06/26 01:55:12 | 000,066,080 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2000/02/03 13:53:12 | 000,024,608 | ---- | M] () [Kernel | System | Running] -- C:\Windows\system32\ckldrv.sys -- (NetworkX)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...avilion&pf=cnnb
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...avilion&pf=cnnb
IE - HKLM\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files\BitTorrentBar\tbBitT.dll (Conduit Ltd.)
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...avilion&pf=cnnb
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = A7 9B AD 01 82 5A EC 4B AF 33 0E CC 34 A8 7C E4 [binary data]
IE - HKCU\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files\BitTorrentBar\tbBitT.dll (Conduit Ltd.)
IE - HKCU\..\URLSearchHook: {b80f591e-fe9a-46cf-a13e-180377240586} - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG10\Firefox\ [2010/12/31 19:09:33 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG10\Firefox4\ [2011/03/30 09:41:15 | 000,000,000 | ---D | M]
O1 HOSTS File: ([2011/04/21 14:44:12 | 000,432,840 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 127.0.0.1 123fporn.info
O1 - Hosts: 14894 more lines...
O2 - BHO: (no name) - {01AD9BA7-5A82-4BEC-AF33-0ECC34A87CE4} - C:\Windows\System32\api-ms-win-core-fibers-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (BitTorrentBar Toolbar) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files\BitTorrentBar\tbBitT.dll (Conduit Ltd.)
O2 - BHO: (Microsoft Live Search Toolbar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files\MSN\Toolbar\3.0.0560.0\msneshellx.dll (Microsoft Corp.)
O2 - BHO: (ShopAtHomeIEHelper Class) - {E8DAAA30-6CAA-4b58-9603-8E54238219E2} - File not found
O3 - HKLM\..\Toolbar: (Microsoft Live Search Toolbar) - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files\MSN\Toolbar\3.0.0560.0\msneshellx.dll (Microsoft Corp.)
O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (BitTorrentBar Toolbar) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files\BitTorrentBar\tbBitT.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (ShopAtHome.com Toolbar) - {98279C38-DE4B-4bcf-93C9-8EC26069D6F4} - File not found
O3 - HKCU\..\Toolbar\WebBrowser: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (BitTorrentBar Toolbar) - {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - C:\Program Files\BitTorrentBar\tbBitT.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (ShopAtHome.com Toolbar) - {98279C38-DE4B-4BCF-93C9-8EC26069D6F4} - File not found
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [HP] C:\Program Files\Hewlett-Packard\HP QuickSync\QuickSync.exe (Hewlett-Packard)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [SelectRebates] File not found
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM..\Run: [UpdatePRCShortCut] C:\Program Files\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKCU..\Run: [BitTorrent] C:\Program Files\BitTorrent\BitTorrent.exe (BitTorrent, Inc.)
O4 - HKCU..\Run: [InstallIQUpdater] C:\Program Files\W3i\InstallIQUpdater\InstallIQUpdater.exe (W3i, LLC)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: WallpaperStyle = 2
O8 - Extra context menu item: &ieSpell Options - C:\Program Files\ieSpell\iespell.dll (Red Egg Software)
O8 - Extra context menu item: Check &Spelling - C:\Program Files\ieSpell\iespell.dll (Red Egg Software)
O8 - Extra context menu item: Lookup on Merriam Webster - C:\Program Files\ieSpell\Merriam Webster.HTM ()
O8 - Extra context menu item: Lookup on Wikipedia - C:\Program Files\ieSpell\wikipedia.HTM ()
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files\ieSpell\iespell.dll (Red Egg Software)
O9 - Extra 'Tools' menuitem : ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files\ieSpell\iespell.dll (Red Egg Software)
O9 - Extra 'Tools' menuitem : ieSpell Options - {1606D6F9-9D3B-4aea-A025-ED5B2FD488E7} - C:\Program Files\ieSpell\iespell.dll (Red Egg Software)
O9 - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O13 - gopher Prefix: missing
O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.micros...n/ieawsdc32.cab (Microsoft Office Template and Media Control)
O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.aka...vex-2.2.5.0.cab (DLM Control)
O16 - DPF: {6218F7B5-0D3A-48BA-AE4C-49DCFA63D400} http://www.myheritag...EngineQuery.dll (CSEQueryObject Object)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebo...oUploader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 205.171.3.25
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O20 - AppInit_DLLs: (C:\ProgramData\api-ms-win-core-fibers-l1-1-032.dll) - C:\ProgramData\api-ms-win-core-fibers-l1-1-032.dll (Borland Software Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 15:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{223a4cf3-2f0f-11df-9156-00271348d010}\Shell - "" = AutoRun
O33 - MountPoints2\{223a4cf3-2f0f-11df-9156-00271348d010}\Shell\AutoRun\command - "" = E:\LaunchU3.exe -a
O33 - MountPoints2\E\Shell - "" = AutoRun
O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync) - C:\Program Files\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011/04/21 12:55:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy
[2011/04/21 12:55:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2011/04/21 12:55:05 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2011/04/21 12:02:03 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Local\{1A3018D0-06E4-4A48-9661-EED6DEE32CF5}
[2011/04/20 19:07:52 | 000,000,000 | ---D | C] -- C:\ProgramData\661972231
[2011/04/20 19:04:51 | 000,000,000 | -HSD | C] -- C:\ProgramData\SysWoW32
[2011/04/20 19:04:34 | 000,000,000 | ---D | C] -- C:\ProgramData\182523903
[2011/04/20 19:02:36 | 000,256,000 | ---- | C] (Borland Software Corporation) -- C:\ProgramData\api-ms-win-core-fibers-l1-1-032.dll
[2011/04/20 18:59:30 | 001,376,768 | ---- | C] (opx.bit) -- C:\ProgramData\KBDHELA232.exe
[2011/04/20 12:07:47 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Local\{9974F2A0-63CB-466F-A75A-12CDB392BD7F}
[2011/04/20 11:29:35 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Roaming\FreeFileViewer
[2011/04/20 11:28:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeFileViewer
[2011/04/20 11:23:46 | 001,376,768 | ---- | C] (opx.bit) -- C:\ProgramData\apss32.exe
[2011/04/20 11:23:20 | 000,181,248 | ---- | C] (opx.bit) -- C:\Windows\System32\apss32.exe
[2011/04/20 11:23:10 | 000,418,304 | ---- | C] (Borland Software Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-032.dll
[2011/04/20 09:34:06 | 000,000,000 | ---D | C] -- C:\Program Files\[bleep] NFO Viewer
[2011/04/18 21:20:42 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\Desktop\Quilting Program and Data
[2011/04/18 20:27:52 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\Desktop\QuiltAssistant
[2011/04/18 20:26:47 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QuiltAssistant
[2011/04/18 20:26:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuiltAssistant
[2011/04/18 20:26:47 | 000,000,000 | ---D | C] -- C:\Program Files\QuiltAssistant
[2011/04/18 09:46:57 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Local\{D0629004-5AA1-43C9-8B23-3B1049127303}
[2011/04/16 18:15:38 | 000,000,000 | -HSD | C] -- C:\ProgramData\0C3851F70202899C8D80B197D718C975
[2011/04/16 18:10:37 | 000,000,000 | ---D | C] -- C:\Program Files\File Type Assistant
[2011/04/16 18:08:26 | 000,000,000 | ---D | C] -- C:\Program Files\FreeFileViewer
[2011/04/16 15:45:55 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\Incomplete
[2011/04/16 15:44:37 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Roaming\LimeWire
[2011/04/16 15:43:36 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\360Share Pro
[2011/04/16 15:43:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360Share Pro
[2011/04/16 15:43:03 | 000,000,000 | ---D | C] -- C:\Program Files\360Share Pro
[2011/04/16 12:43:56 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Local\{ED94CEA9-2050-423F-AB0F-BD3B5F1E6B72}
[2011/04/13 13:38:31 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Local\{C5130170-9C6D-4FF8-9198-FB55DBB92722}
[2011/04/12 17:05:02 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Local\{2A77F047-66FF-4F0D-9B00-D3DAF1329470}
[2011/04/07 20:41:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WorldOfGoo
[2011/04/07 20:40:55 | 000,000,000 | ---D | C] -- C:\Program Files\WorldOfGoo
[2011/04/07 18:44:36 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Local\2DBoy
[2011/04/07 18:44:36 | 000,000,000 | ---D | C] -- C:\ProgramData\2DBoy
[2011/04/07 18:38:08 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\Desktop\Anti virus
[2011/04/07 18:37:51 | 000,000,000 | ---D | C] -- C:\Program Files\WildTangent Games
[2011/04/07 11:44:17 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Local\{E0CBEC2F-C81B-461A-A247-3D7AB1634C20}
[2011/04/06 00:01:19 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Local\{487F2F5F-A899-41A2-8FE4-BC1BD94109AF}
[2011/04/05 23:28:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StyleWriter
[2011/04/05 23:28:35 | 000,165,888 | ---- | C] (Kenonic Controls) -- C:\Windows\Ckconfig.exe
[2011/04/05 23:28:35 | 000,052,224 | ---- | C] (Kenonic Controls Ltd.) -- C:\Windows\System32\Crypserv.exe
[2011/04/05 23:28:24 | 000,000,000 | ---D | C] -- C:\SWWIN
[2011/04/05 11:26:14 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Local\{C400300B-19D6-42E8-8AF5-B44332EDD449}
[2011/04/03 11:37:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinDjView
[2011/04/03 11:37:51 | 000,000,000 | ---D | C] -- C:\Program Files\WinDjView
[2011/04/02 13:05:22 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Local\{C588F485-2EE0-4AE4-9420-F1D6BA4E9AD2}
[2011/04/01 12:49:53 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Roaming\Catalina Marketing Corp
[2011/04/01 12:49:50 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Catalina Marketing Corp
[2011/04/01 12:27:30 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Local\{1CC22B89-8155-4EB8-AE8F-255C90988FBF}
[2011/03/31 14:23:25 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\Desktop\Storybook
[2011/03/31 13:22:13 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Local\{812767E7-62A2-4CF2-8755-8481429BDB8C}
[2011/03/31 13:20:42 | 000,000,000 | R--D | C] -- C:\Users\DanielleK\Desktop\Programs I dont use
[2011/03/31 13:13:55 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\Desktop\Tatting
[2011/03/31 13:13:18 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\Desktop\NOVEL IDEAS
[2011/03/31 10:02:45 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Roaming\Malwarebytes
[2011/03/31 10:02:22 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/03/31 10:02:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/03/31 10:02:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/03/31 10:02:14 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/03/31 10:02:13 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/03/31 09:17:59 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\Documents\MSDS
[2011/03/31 09:16:59 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\Documents\Novels
[2011/03/31 09:13:40 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Local\{FD3DBFAD-0150-405A-9D94-3C3E371E5BDB}
[2011/03/30 22:19:20 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Local\{37031E00-05FB-45F7-BD6A-9A6853C2BAE1}
[2011/03/30 15:18:03 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\Documents\storybook
[2011/03/30 12:21:11 | 000,000,000 | -HSD | C] -- C:\Windows\System32\%APPDATA%
[2011/03/30 12:18:50 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\.storybook
[2011/03/30 12:18:12 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Storybook
[2011/03/30 12:18:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Storybook
[2011/03/28 13:49:31 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Roaming\Acapela Group
[2011/03/28 13:46:04 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Local\Downloaded Installations
[2011/03/25 10:10:12 | 000,000,000 | ---D | C] -- C:\Program Files\ieSpell
[2011/03/24 13:46:35 | 000,000,000 | ---D | C] -- C:\ProgramData\AVS4YOU
[2011/03/24 13:46:18 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Roaming\AVS4YOU
[2011/03/24 13:37:20 | 000,000,000 | ---D | C] -- C:\Users\DanielleK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU
[2011/03/24 13:35:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU
[2011/03/24 13:34:51 | 000,000,000 | ---D | C] -- C:\Program Files\AVS4YOU
[2011/03/24 13:33:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AVSMedia
[1 C:\Users\DanielleK\Desktop\*.tmp files -> C:\Users\DanielleK\Desktop\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2011/04/21 16:49:26 | 000,000,061 | ---- | M] () -- C:\ProgramData\6853779f
[2011/04/21 16:31:54 | 000,023,248 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/04/21 16:31:54 | 000,023,248 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/04/21 16:29:37 | 000,624,178 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/04/21 16:29:37 | 000,110,746 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/04/21 16:24:11 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/04/21 15:19:33 | 000,000,386 | ---- | M] () -- C:\Windows\tasks\Free File Viewer Update Checker.job
[2011/04/21 15:18:17 | 2212,999,168 | -HS- | M] () -- C:\hiberfil.sys
[2011/04/21 14:44:12 | 000,432,840 | R--- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2011/04/21 12:55:55 | 000,001,200 | ---- | M] () -- C:\Users\DanielleK\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk
[2011/04/21 10:02:08 | 112,998,864 | ---- | M] () -- C:\Windows\System32\drivers\AVG\incavi.avm
[2011/04/20 19:12:16 | 000,001,185 | ---- | M] () -- C:\ProgramData\1219038180
[2011/04/20 19:04:52 | 000,000,144 | -HS- | M] () -- C:\ProgramData\1753424072
[2011/04/20 19:04:34 | 000,203,776 | -HS- | M] () -- C:\ProgramData\unrar.exe
[2011/04/20 19:02:36 | 000,256,000 | ---- | M] (Borland Software Corporation) -- C:\ProgramData\api-ms-win-core-fibers-l1-1-032.dll
[2011/04/20 19:02:36 | 000,000,113 | ---- | M] () -- C:\Windows\System32\1115514863
[2011/04/20 11:28:38 | 000,001,021 | ---- | M] () -- C:\Users\DanielleK\Application Data\Microsoft\Internet Explorer\Quick Launch\FreeFileViewer.lnk
[2011/04/20 11:28:38 | 000,000,997 | ---- | M] () -- C:\Users\DanielleK\Desktop\FreeFileViewer.lnk
[2011/04/20 11:23:20 | 000,181,248 | ---- | M] (opx.bit) -- C:\Windows\System32\apss32.exe
[2011/04/20 11:23:10 | 000,418,304 | ---- | M] (Borland Software Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-032.dll
[2011/04/20 08:33:26 | 001,376,768 | ---- | M] (opx.bit) -- C:\ProgramData\KBDHELA232.exe
[2011/04/20 08:33:26 | 001,376,768 | ---- | M] (opx.bit) -- C:\ProgramData\apss32.exe
[2011/04/19 23:45:11 | 000,000,336 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForDanielleK.job
[2011/04/19 23:45:05 | 000,339,384 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/04/07 21:17:11 | 000,004,480 | ---- | M] () -- C:\Windows\System32\esnecil.ind
[2011/04/07 20:41:25 | 000,001,823 | ---- | M] () -- C:\Users\Public\Desktop\World of Goo.lnk
[2011/04/07 18:41:41 | 000,001,969 | ---- | M] () -- C:\WildTangent Games App - hp.lnk
[2011/04/07 18:41:39 | 000,002,452 | ---- | M] () -- C:\Users\Public\Desktop\WildTangent Games App - hp.lnk
[2011/04/07 18:39:04 | 000,002,484 | ---- | M] () -- C:\Users\DanielleK\Application Data\Microsoft\Internet Explorer\Quick Launch\WildTangent Games App - hp.lnk
[2011/04/05 23:53:41 | 000,000,014 | -HS- | M] () -- C:\Users\DanielleK\Desktop\SWWIN.ent
[2011/04/05 23:53:40 | 000,004,480 | ---- | M] () -- C:\Windows\System32\esnecil.nlp
[2011/04/05 23:53:40 | 000,000,014 | -HS- | M] () -- C:\Users\DanielleK\Desktop\SWWIN.rst
[2011/04/05 23:53:40 | 000,000,014 | -HS- | M] () -- C:\Users\DanielleK\Desktop\SWWIN.key
[2011/04/05 23:53:40 | 000,000,000 | -HS- | M] () -- C:\Users\DanielleK\Desktop\SWWIN.41s
[2011/04/05 23:28:40 | 000,000,025 | ---- | M] () -- C:\Windows\Crypkey.ini
[2011/03/31 14:23:26 | 000,001,860 | ---- | M] () -- C:\Users\DanielleK\Desktop\Storybook.lnk
[2011/03/30 21:37:40 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2011/03/30 21:37:40 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[1 C:\Users\DanielleK\Desktop\*.tmp files -> C:\Users\DanielleK\Desktop\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011/04/21 12:55:55 | 000,001,200 | ---- | C] () -- C:\Users\DanielleK\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk
[2011/04/20 19:04:51 | 000,001,185 | ---- | C] () -- C:\ProgramData\1219038180
[2011/04/20 19:04:34 | 000,203,776 | -HS- | C] () -- C:\ProgramData\unrar.exe
[2011/04/20 19:04:34 | 000,000,144 | -HS- | C] () -- C:\ProgramData\1753424072
[2011/04/20 11:29:04 | 000,000,386 | ---- | C] () -- C:\Windows\tasks\Free File Viewer Update Checker.job
[2011/04/20 11:28:38 | 000,001,021 | ---- | C] () -- C:\Users\DanielleK\Application Data\Microsoft\Internet Explorer\Quick Launch\FreeFileViewer.lnk
[2011/04/20 11:28:38 | 000,000,997 | ---- | C] () -- C:\Users\DanielleK\Desktop\FreeFileViewer.lnk
[2011/04/16 18:25:33 | 000,000,061 | ---- | C] () -- C:\ProgramData\6853779f
[2011/04/16 15:53:41 | 000,000,113 | ---- | C] () -- C:\Windows\System32\1115514863
[2011/04/07 20:41:25 | 000,001,823 | ---- | C] () -- C:\Users\Public\Desktop\World of Goo.lnk
[2011/04/07 18:41:41 | 000,001,969 | ---- | C] () -- C:\WildTangent Games App - hp.lnk
[2011/04/07 18:39:01 | 000,002,484 | ---- | C] () -- C:\Users\DanielleK\Application Data\Microsoft\Internet Explorer\Quick Launch\WildTangent Games App - hp.lnk
[2011/04/07 18:38:59 | 000,002,452 | ---- | C] () -- C:\Users\Public\Desktop\WildTangent Games App - hp.lnk
[2011/04/05 23:53:40 | 000,000,014 | -HS- | C] () -- C:\Users\DanielleK\Desktop\SWWIN.rst
[2011/04/05 23:53:40 | 000,000,014 | -HS- | C] () -- C:\Users\DanielleK\Desktop\SWWIN.key
[2011/04/05 23:53:40 | 000,000,014 | -HS- | C] () -- C:\Users\DanielleK\Desktop\SWWIN.ent
[2011/04/05 23:53:40 | 000,000,000 | -HS- | C] () -- C:\Users\DanielleK\Desktop\SWWIN.41s
[2011/04/05 23:44:27 | 000,004,480 | ---- | C] () -- C:\Windows\System32\esnecil.nlp
[2011/04/05 23:44:27 | 000,004,480 | ---- | C] () -- C:\Windows\System32\esnecil.ind
[2011/04/05 23:28:40 | 000,000,025 | ---- | C] () -- C:\Windows\Crypkey.ini
[2011/04/05 23:28:35 | 000,024,608 | ---- | C] () -- C:\Windows\System32\Ckldrv.sys
[2011/04/05 23:28:35 | 000,011,776 | ---- | C] () -- C:\Windows\Ckrfresh.exe
[2011/04/05 23:28:34 | 000,027,648 | R--- | C] () -- C:\Windows\Setup_ck.exe
[2011/04/05 23:28:34 | 000,018,432 | ---- | C] () -- C:\Windows\Setup_ck.dll
[2011/03/30 21:37:40 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2011/03/30 21:37:40 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2011/03/30 12:18:12 | 000,001,860 | ---- | C] () -- C:\Users\DanielleK\Desktop\Storybook.lnk
[2011/01/04 15:31:02 | 000,001,849 | ---- | C] () -- C:\Users\DanielleK\AppData\Roaming\GhostObjGAFix.xml
[2010/12/09 15:05:41 | 000,085,504 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2010/01/07 22:33:02 | 000,000,104 | ---- | C] () -- C:\Users\DanielleK\AppData\Roaming\wklnhst.dat
[2009/08/28 03:05:08 | 000,006,656 | ---- | C] () -- C:\Windows\System32\bcmwlrc.dll
[2009/08/28 02:56:18 | 000,006,136 | ---- | C] () -- C:\Windows\System32\drivers\nvphy.bin
[2009/08/03 16:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2009/08/03 16:07:42 | 000,230,768 | ---- | C] () -- C:\Windows\System32\OGAEXEC.exe
[2009/07/13 22:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/13 22:33:53 | 000,339,384 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/07/13 20:05:48 | 000,624,178 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009/07/13 20:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009/07/13 20:05:48 | 000,110,746 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009/07/13 20:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009/07/13 20:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009/07/13 20:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009/07/13 17:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/13 17:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/13 17:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/06/10 15:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
========== LOP Check ==========
[2011/03/28 13:49:31 | 000,000,000 | ---D | M] -- C:\Users\DanielleK\AppData\Roaming\Acapela Group
[2009/12/27 18:00:50 | 000,000,000 | ---D | M] -- C:\Users\DanielleK\AppData\Roaming\Alawar
[2010/12/02 11:00:53 | 000,000,000 | ---D | M] -- C:\Users\DanielleK\AppData\Roaming\AVG10
[2011/04/21 17:14:14 | 000,000,000 | ---D | M] -- C:\Users\DanielleK\AppData\Roaming\BitTorrent
[2011/04/01 12:49:53 | 000,000,000 | ---D | M] -- C:\Users\DanielleK\AppData\Roaming\Catalina Marketing Corp
[2010/01/08 12:55:33 | 000,000,000 | ---D | M] -- C:\Users\DanielleK\AppData\Roaming\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2010/01/25 22:17:04 | 000,000,000 | ---D | M] -- C:\Users\DanielleK\AppData\Roaming\DriverCure
[2011/04/20 19:46:00 | 000,000,000 | ---D | M] -- C:\Users\DanielleK\AppData\Roaming\FreeFileViewer
[2011/04/16 18:32:25 | 000,000,000 | ---D | M] -- C:\Users\DanielleK\AppData\Roaming\LimeWire
[2011/02/26 13:25:57 | 000,000,000 | ---D | M] -- C:\Users\DanielleK\AppData\Roaming\PhotoScape
[2010/01/22 18:48:21 | 000,000,000 | ---D | M] -- C:\Users\DanielleK\AppData\Roaming\Template
[2011/01/05 14:54:30 | 000,000,000 | ---D | M] -- C:\Users\DanielleK\AppData\Roaming\Windows Live Writer
[2011/04/21 15:19:33 | 000,000,386 | ---- | M] () -- C:\Windows\Tasks\Free File Viewer Update Checker.job
[2011/02/21 00:27:09 | 000,032,580 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Files - Unicode (All) ==========
[2011/04/07 21:17:11 | 000,000,000 | ---D | M](C:\Windows\System32\????) -- C:\Windows\System32\ಸ眢瞸
[2011/04/07 21:17:11 | 000,000,000 | ---D | C](C:\Windows\System32\????) -- C:\Windows\System32\ಸ眢瞸
< End of report >