The first step I took was to launch spybot. I did a scan, and it discovered Fraud.DefenseCenter, Smitfraud-c.generic, Fraud.WindowsRecovery, Microsoft.Windows.ActiveDesktop.
I removed those, restarted in safe mode where I did a second scan, this one turned up no problems, so I booted normally. Everything appeared to be fine, but after a few hours, the script errors returned as well as the ads playing in the background. I tried running mbam, but that turned up nothing. At this point I feel like spybot maybe did a partial clean, and I hope this doesn't make it more difficult for a professional to diagnose and fix. Apologies in advance if that's the case!
OTL logfile created on: 30/04/2011 4:31:55 PM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Adam\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy
1,014.00 Mb Total Physical Memory | 112.00 Mb Available Physical Memory | 11.00% Memory free
2.00 Gb Paging File | 1.00 Gb Available in Paging File | 32.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 136.37 Gb Total Space | 4.52 Gb Free Space | 3.31% Space Free | Partition Type: NTFS
Drive D: | 5.88 Gb Total Space | 0.18 Gb Free Space | 3.12% Space Free | Partition Type: NTFS
Drive F: | 5.46 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive I: | 1.90 Gb Total Space | 0.05 Gb Free Space | 2.60% Space Free | Partition Type: FAT
Computer Name: ADAM-LAPTOP | User Name: Adam | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011/04/30 16:29:14 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Adam\Downloads\OTL.exe
PRC - [2011/04/14 09:25:41 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011/01/25 18:42:10 | 000,083,440 | -H-- | M] (Google) -- C:\Users\Adam\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
PRC - [2010/10/28 15:35:24 | 002,010,408 | ---- | M] (NesterSoft Inc.) -- C:\Program Files\TimeLeft3\TimeLeft.exe
PRC - [2009/05/30 14:55:48 | 000,032,768 | ---- | M] (Logitech) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
PRC - [2009/04/10 23:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/03/05 14:07:20 | 002,260,480 | RHS- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2009/01/26 13:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
PRC - [2008/01/19 00:33:14 | 000,275,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mcbuilder.exe
PRC - [2007/09/19 12:01:12 | 000,077,824 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
PRC - [2007/09/03 03:39:22 | 004,702,208 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2007/03/29 11:39:20 | 000,427,576 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
PRC - [2007/03/29 11:39:18 | 000,411,192 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
PRC - [2006/11/14 20:33:10 | 000,040,960 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
PRC - [2006/10/04 21:10:12 | 000,009,216 | ---- | M] (Agere Systems) -- C:\Windows\System32\agrsmsvc.exe
PRC - [2006/08/23 17:39:48 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
PRC - [2006/05/25 18:30:16 | 000,114,688 | ---- | M] (TOSHIBA Corporation) -- C:\Windows\System32\TODDSrv.exe
PRC - [2005/07/15 14:48:33 | 000,479,232 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Gmail Notifier\gnotify.exe
========== Modules (SafeList) ==========
MOD - [2011/04/30 16:29:14 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Adam\Downloads\OTL.exe
MOD - [2010/08/31 08:43:52 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
MOD - [2009/05/30 14:55:48 | 000,024,613 | ---- | M] (BackWeb) -- C:\Users\Adam\AppData\Local\Temp\IadHide5.dll
========== Win32 Services (SafeList) ==========
SRV - [2010/12/27 12:16:45 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010/04/02 22:34:12 | 000,073,728 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe -- (Sony SCSI Helper Service)
SRV - [2009/07/20 12:28:10 | 000,121,360 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2009/02/17 09:59:00 | 002,794,234 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\System32\GameMon.des -- (npggsvc)
SRV - [2009/01/26 13:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Running] -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)
SRV - [2008/01/19 00:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/09/19 12:01:12 | 000,077,824 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe -- (TNaviSrv)
SRV - [2007/03/29 11:39:20 | 000,427,576 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe -- (TosCoSrv)
SRV - [2006/11/14 20:33:10 | 000,040,960 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe -- (CFSvcs)
SRV - [2006/10/04 21:10:12 | 000,009,216 | ---- | M] (Agere Systems) [Auto | Running] -- C:\Windows\System32\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2006/08/23 17:39:48 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
SRV - [2006/05/25 18:30:16 | 000,114,688 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Windows\System32\TODDSrv.exe -- (TODDSrv)
========== Driver Services (SafeList) ==========
DRV - [2009/06/17 09:56:32 | 000,028,560 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LUsbFilt.sys -- (LUsbFilt)
DRV - [2009/06/17 09:56:16 | 000,037,392 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2009/06/17 09:56:06 | 000,035,472 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2008/11/10 10:26:00 | 000,135,680 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2008/07/29 03:05:04 | 000,919,552 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2007/12/04 15:10:30 | 000,016,640 | ---- | M] (PalmSource, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PalmUSBD.sys -- (PalmUSBD)
DRV - [2007/11/09 03:00:52 | 000,023,640 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\TVALZ_O.SYS -- (TVALZ)
DRV - [2007/09/19 11:59:12 | 000,285,184 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\tos_sps32.sys -- (tos_sps32)
DRV - [2007/04/24 07:33:44 | 000,108,680 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s125mdm.sys -- (s125mdm)
DRV - [2007/04/24 07:33:42 | 000,015,112 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s125mdfl.sys -- (s125mdfl)
DRV - [2007/04/24 07:33:34 | 000,083,336 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s125bus.sys -- (s125bus) Sony Ericsson Device 125 driver (WDM)
DRV - [2007/04/16 11:19:10 | 000,011,776 | ---- | M] (Chicony Electronics Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\UVCFTR_S.SYS -- (UVCFTR)
DRV - [2007/01/23 22:44:06 | 000,290,304 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tifm21.sys -- (tifm21)
DRV - [2006/11/28 00:11:00 | 001,161,888 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2006/10/18 11:50:04 | 000,016,128 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tdcmdpst.sys -- (tdcmdpst)
DRV - [2006/08/29 17:35:58 | 000,140,800 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2006/07/28 16:25:26 | 000,019,456 | ---- | M] (COMPAL ELECTRONIC INC.) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\LPCFilter.sys -- (LPCFilter)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "about:myworld|http://messaging.sprintpcs.com/textmessaging/composeconfirm|about:blank"
FF - prefs.js..extensions.enabledItems: [email protected]:0.1
FF - prefs.js..extensions.enabledItems: {b01bf10c-302a-11da-b67b-000d60ca027b}:2.5
FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/12/25 12:14:21 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Flock 2.0.3\extensions\\Components: C:\Program Files\Flock\components [2009/07/31 07:46:51 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Flock 2.0.3\extensions\\Plugins: C:\Program Files\Flock\plugins [2009/07/31 07:46:51 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/04/29 19:58:00 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/04/29 19:57:57 | 000,000,000 | ---D | M]
[2009/07/27 12:09:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Adam\AppData\Roaming\Mozilla\Extensions
[2009/07/27 12:09:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Adam\AppData\Roaming\Mozilla\Extensions\{a463f10c-3994-11da-9945-000d60ca027b}
[2011/04/29 19:58:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\suxza59x.default\extensions
[2010/07/29 19:05:26 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\suxza59x.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/04/27 13:29:20 | 000,000,000 | ---D | M] (ReloadEvery) -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\suxza59x.default\extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}
[2011/04/27 13:29:21 | 000,000,000 | ---D | M] (All-in-One Gestures) -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\suxza59x.default\extensions\{8b86149f-01fb-4842-9dd8-4d7eb02fd055}
[2011/04/18 18:05:52 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\suxza59x.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2009/11/09 20:38:18 | 000,000,000 | ---D | M] (Microsoft Choice Guard) -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\suxza59x.default\extensions\ChoiceGuard@Microsoft
[2011/04/29 19:57:59 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/03/31 13:09:01 | 000,000,000 | ---D | M] (Skype extension for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2009/07/31 07:46:51 | 000,000,000 | ---D | M] (Flock Migrator) -- C:\PROGRAM FILES\FLOCK\EXTENSIONS\[email protected]
[2011/04/14 09:26:02 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
[2009/05/19 23:49:50 | 000,083,376 | ---- | M] (NHN USA Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npijjiautoinstallpluginff.dll
[2009/05/27 14:41:50 | 000,069,632 | ---- | M] (NHN USA Inc. ) -- C:\Program Files\Mozilla Firefox\plugins\npijjiFFPlugin1.dll
[2010/01/01 01:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\bing.xml
O1 HOSTS File: ([2011/04/27 04:52:23 | 000,432,997 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 14904 more lines...
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - No CLSID value found.
O4 - HKLM..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Program Files\Google\Gmail Notifier\gnotify.exe (Google Inc.)
O4 - HKLM..\Run: [00TCrdMain] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [TPwrMain] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Logitech)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - Startup: C:\Users\Adam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TimeLeft.lnk = C:\Program Files\TimeLeft3\TimeLeft.exe (NesterSoft Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DriveConfiguration = [Binary data over 100 bytes]
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LegacyDrive = [Binary data over 100 bytes]
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O9 - Extra Button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files\PokerStars.NET\PokerStarsUpdate.exe (PokerStars)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_03)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} http://games.pogo.co...aploader_v6.cab (PopCapLoader Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 64.59.160.13 64.59.160.15 64.59.161.68
O18 - Protocol\Handler\bw+0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw+0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw-0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw00 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw00s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw-0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw10 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw10s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw20 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw20s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw30 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw30s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw40 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw40s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw50 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw50s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw60 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw60s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw70 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw70s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw80 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw80s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw90 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw90s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwa0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwa0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwb0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwb0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwc0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwc0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwd0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwd0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwe0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwe0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwf0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwf0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwg0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwg0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwh0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwh0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwi0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwi0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwj0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwj0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwk0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwk0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwl0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwl0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwm0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwm0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwn0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwn0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwo0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwo0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwp0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwp0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwq0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwq0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwr0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwr0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bws0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bws0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwt0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwt0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwu0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwu0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwv0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwv0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bww0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bww0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwx0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwx0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwy0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwy0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwz0 {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwz0s {04e8c0a0-006c-4a71-8a8c-510c97638cde} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\offline-8876480 {04E8C0A0-006C-4A71-8A8C-510C97638CDE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\growth50_ericandika\wallpaperjs7.jpg
O24 - Desktop BackupWallPaper: C:\growth50_ericandika\wallpaperjs7.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 14:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2007/02/12 12:53:42 | 000,000,277 | R--- | M] () - F:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{03b5d74a-60b6-11de-9c17-001b384b0bb7}\Shell\AutoRun\command - "" = F:\setupSNK.exe
O33 - MountPoints2\{6515f9a1-1473-11e0-b2b7-001b384b0bb7}\Shell\AutoRun\command - "" = F:\Setup_FlipShare.exe
O33 - MountPoints2\{6515f9a1-1473-11e0-b2b7-001b384b0bb7}\Shell\Setup FlipShare\command - "" = F:\Setup_FlipShare.exe
O33 - MountPoints2\{b6958ac9-b107-11dc-85e2-ddff11558527}\Shell - "" = AutoRun
O33 - MountPoints2\{b6958ac9-b107-11dc-85e2-ddff11558527}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -- [2007/02/12 18:33:37 | 001,110,016 | R--- | M] ()
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\LaunchU3.exe -- [2007/02/12 18:33:37 | 001,110,016 | R--- | M] ()
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011/04/30 13:37:23 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{68F7D664-282E-4E62-A38C-A831BF3904F3}
[2011/04/30 01:37:05 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{B67A44C7-4E8F-474D-BE66-A2009FF2AFD8}
[2011/04/29 13:36:45 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{A9A42DC5-EAA0-41AD-B0C6-416E806B42BB}
[2011/04/29 01:36:30 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{681B09B3-EBB0-4ABB-B947-31E9A666FA83}
[2011/04/28 13:35:47 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{43FA3542-0BE7-4000-858F-079290754900}
[2011/04/28 01:35:22 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{F6996846-FED1-4E71-88D7-15F8B783A922}
[2011/04/27 13:34:29 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{3581759A-03EE-494E-93C2-006807BA1272}
[2011/04/27 13:17:01 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Roaming\Malwarebytes
[2011/04/27 13:16:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/04/27 13:16:47 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/04/27 13:16:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/04/27 13:16:33 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/04/27 01:33:58 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{4EF930C2-5BC4-410F-B29A-7B5EDABDD525}
[2011/04/26 13:33:03 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{5F16AC2B-1EB1-4758-BE65-9CF23C38AF47}
[2011/04/26 01:32:36 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{CC70D114-8053-4F01-AAF7-F8EFC3CBE4DA}
[2011/04/25 13:30:50 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{692A92D9-BB13-42D1-A94A-66C1A96E116C}
[2011/04/25 01:30:33 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{8C8FDE5D-0810-4E73-B3BA-718F6C507AAF}
[2011/04/24 13:28:33 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{E5880382-41BF-42F7-BAC3-CAF920C8F00A}
[2011/04/24 01:28:16 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{2E1D25FC-5A60-4AD7-97BC-77E3484900A4}
[2011/04/23 13:27:33 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{3808DDA2-3D22-4F30-BECA-018C124317A4}
[2011/04/23 01:27:07 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{9E80DF43-1E3C-4C53-8DC3-FAAD4E19187A}
[2011/04/22 13:25:23 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{C6671FA0-94EB-4BF8-8A18-BDD73E622463}
[2011/04/22 01:24:26 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{C9250F9D-CAF2-4761-9A86-DD535FF319BA}
[2011/04/21 13:24:03 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{2B1DEE31-75D9-46FE-B829-F732CEBE7F1C}
[2011/04/21 01:23:46 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{D97C9D17-4DDD-4A7D-9CEF-843813E83111}
[2011/04/20 13:23:33 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{748AC6AC-1265-4B82-B416-81D9E56E1FAD}
[2011/04/20 01:23:21 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{037CB64C-3F21-4354-A471-1E17F4AF25BF}
[2011/04/19 13:23:13 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{682E1EFA-5EC6-4C22-9672-D3F6BA0226A2}
[2011/04/19 01:22:59 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{FEA340E3-5C44-42F6-A3D6-8D0727E7B301}
[2011/04/18 13:22:25 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{7F786463-40D8-4BB6-9093-3F3F89D2E393}
[2011/04/18 01:22:13 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{311D2721-FE02-4F74-8B47-11239E6ECE92}
[2011/04/17 13:20:32 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{D78E2D9A-E774-4EB3-B15E-48D2E949A4EE}
[2011/04/17 01:20:05 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{E9DC7949-D7C2-4173-BE0C-E458E5714EB8}
[2011/04/16 13:19:29 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{A1710FEE-DE5E-4F89-AE65-3CFCA60105AA}
[2011/04/16 01:19:08 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{504844DA-E5A6-41E4-9302-CC7CA28A7741}
[2011/04/15 13:18:22 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{423D33B6-CF05-4D0F-9D21-DC823969B219}
[2011/04/15 01:18:01 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{FFFDC2E6-AF88-4A5D-B1B7-40D71A08DF72}
[2011/04/14 13:17:38 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{CF2412C0-2610-4B5A-8102-6F95D039E44C}
[2011/04/14 01:17:20 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{C1E65D11-4AC0-440A-A41A-1C3780F549FE}
[2011/04/13 13:16:35 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{1F89B12F-60E9-423B-B881-DC951811226C}
[2011/04/13 01:16:19 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{642A75CF-F98D-4801-AA69-0E12BC6F5908}
[2011/04/12 13:16:04 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{A8055CC9-E9A1-4213-AC31-678DA724F220}
[2011/04/12 01:15:51 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{B790C3C7-EF7E-440F-8FE9-5176D3F3BE6D}
[2011/04/11 13:15:18 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{CEDD27B2-19C5-454E-BDC8-6C4840FC6AEF}
[2011/04/11 01:15:03 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{A7986D5C-4368-4B72-A78D-347252EAF223}
[2011/04/10 13:14:19 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{38F6FB5C-1EBE-4F31-9D1A-2EC37CB6D481}
[2011/04/10 01:13:57 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{1EFF2D6A-07A9-47D2-86B7-562723D6B9D0}
[2011/04/08 03:24:54 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{55AA7175-CE97-4992-8FA9-CAF826CDEF84}
[2011/04/07 15:23:57 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{7FF1453F-4E25-4557-A38C-EC5B10D59C5D}
[2011/04/07 03:23:41 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{3A494DBF-2B27-4FD4-BFDB-7BE6AD2A4A36}
[2011/04/06 15:22:56 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{277ED265-0871-4610-BFF1-29555B38EC89}
[2011/04/06 03:22:38 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{42AFD8A6-6F71-4DC8-A458-D1DE07774AF4}
[2011/04/05 15:21:23 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{E548A3D3-E0B0-45C5-8903-62560B49FE62}
[2011/04/05 03:21:11 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{8085E76C-BD3A-4D04-86BB-BF20F50AD726}
[2011/04/04 15:19:53 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{09E26A77-2F95-472E-A7D9-9952B3EFD05F}
[2011/04/04 03:19:33 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{F3A7EC76-4D74-4708-A303-33A2EDCF7E13}
[2011/04/03 15:18:22 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{8C111C48-7F29-42D4-9519-D6400B80FA8A}
[2011/04/02 23:50:42 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{3D3FA591-038B-4BDF-BBB4-F1539A77E5BD}
[2011/04/02 11:50:28 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{C20DA07B-9789-4AF2-9DE1-110BDD829C53}
[2011/04/01 23:50:15 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{1996082E-D5C3-40ED-AF8C-122540E1C2B1}
[2011/04/01 11:50:06 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{B3D0C41A-4EE9-4B28-B4A2-0E4B324747A2}
[2011/03/31 23:49:57 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\{05DCE654-E95E-44CC-A4AF-06863B314832}
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2011/04/30 16:16:55 | 000,000,954 | ---- | M] () -- C:\Users\Adam\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/04/30 16:16:00 | 000,000,904 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1387571108-3550130873-3805901542-1000UA.job
[2011/04/30 16:15:13 | 000,003,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/04/30 16:15:13 | 000,003,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/04/30 16:15:08 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/04/30 16:14:28 | 1063,706,624 | -HS- | M] () -- C:\hiberfil.sys
[2011/04/30 16:04:57 | 000,008,798 | ---- | M] () -- C:\Windows\System32\icrav03.rat
[2011/04/30 16:04:57 | 000,001,988 | ---- | M] () -- C:\Windows\System32\ticrf.rat
[2011/04/30 16:04:26 | 000,072,822 | ---- | M] () -- C:\Windows\System32\ieuinit.inf
[2011/04/30 15:54:23 | 000,612,100 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/04/30 15:54:23 | 000,109,516 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/04/30 07:29:00 | 000,000,416 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{EF3EA9D4-624A-4B29-B7BC-F7606C72233D}.job
[2011/04/30 01:16:04 | 000,000,852 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1387571108-3550130873-3805901542-1000Core.job
[2011/04/29 19:58:06 | 000,000,881 | ---- | M] () -- C:\Users\Adam\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/04/29 19:58:05 | 000,000,857 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011/04/27 13:16:49 | 000,000,917 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/04/27 05:48:32 | 000,000,731 | ---- | M] () -- C:\Users\Adam\Application Data\Microsoft\Internet Explorer\Quick Launch\calc.exe - Shortcut.lnk
[2011/04/27 05:47:29 | 000,000,811 | ---- | M] () -- C:\Users\Adam\Application Data\Microsoft\Internet Explorer\Quick Launch\winamp.exe - Shortcut.lnk
[2011/04/27 05:47:10 | 000,000,851 | ---- | M] () -- C:\Users\Adam\Application Data\Microsoft\Internet Explorer\Quick Launch\notepad++.exe - Shortcut.lnk
[2011/04/27 05:15:07 | 000,000,895 | ---- | M] () -- C:\Users\Adam\Application Data\Microsoft\Internet Explorer\Quick Launch\Midgard Chronicles.lnk
[2011/04/27 04:52:23 | 000,432,997 | R--- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2011/04/23 03:32:47 | 000,400,864 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/04/13 01:32:29 | 000,000,679 | ---- | M] () -- C:\Users\Adam\Desktop\afkfeed.au3 - Shortcut.lnk
[2011/04/10 16:11:41 | 000,000,451 | ---- | M] () -- C:\Users\Adam\SciTE.session
[2011/04/05 00:02:34 | 000,598,322 | ---- | M] () -- C:\Users\Adam\Desktop\50thchevyoriginal.jpg
[2011/04/04 18:26:38 | 014,734,944 | ---- | M] () -- C:\Users\Adam\Desktop\50thchevy.psd
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011/04/30 16:16:55 | 000,000,954 | ---- | C] () -- C:\Users\Adam\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/04/30 16:04:26 | 000,072,822 | ---- | C] () -- C:\Windows\System32\ieuinit.inf
[2011/04/29 19:58:05 | 000,000,869 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2011/04/29 19:58:05 | 000,000,857 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011/04/27 13:16:49 | 000,000,917 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/04/27 05:48:32 | 000,000,731 | ---- | C] () -- C:\Users\Adam\Application Data\Microsoft\Internet Explorer\Quick Launch\calc.exe - Shortcut.lnk
[2011/04/27 05:47:29 | 000,000,811 | ---- | C] () -- C:\Users\Adam\Application Data\Microsoft\Internet Explorer\Quick Launch\winamp.exe - Shortcut.lnk
[2011/04/27 05:47:10 | 000,000,851 | ---- | C] () -- C:\Users\Adam\Application Data\Microsoft\Internet Explorer\Quick Launch\notepad++.exe - Shortcut.lnk
[2011/04/27 05:22:03 | 1063,706,624 | -HS- | C] () -- C:\hiberfil.sys
[2011/04/27 05:15:07 | 000,000,895 | ---- | C] () -- C:\Users\Adam\Application Data\Microsoft\Internet Explorer\Quick Launch\Midgard Chronicles.lnk
[2011/04/27 05:14:34 | 000,000,881 | ---- | C] () -- C:\Users\Adam\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/04/13 01:32:29 | 000,000,679 | ---- | C] () -- C:\Users\Adam\Desktop\afkfeed.au3 - Shortcut.lnk
[2011/04/05 00:02:23 | 000,598,322 | ---- | C] () -- C:\Users\Adam\Desktop\50thchevyoriginal.jpg
[2011/01/05 02:52:55 | 000,087,552 | ---- | C] () -- C:\Windows\System32\cpwmon2k.dll
[2010/12/25 11:56:29 | 000,166,587 | ---- | C] () -- C:\Windows\hpoins36.dat
[2010/09/24 09:59:33 | 000,191,952 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat
[2010/09/10 12:56:06 | 000,009,728 | ---- | C] () -- C:\Windows\System32\BASSMOD.dll
[2009/11/30 12:33:46 | 000,041,872 | ---- | C] () -- C:\Windows\System32\xfcodec.dll
[2009/09/16 23:42:36 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/09/16 23:42:36 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2009/07/08 15:52:12 | 000,163,161 | ---- | C] () -- C:\Windows\hpoins29.dat
[2009/07/08 15:52:12 | 000,000,799 | ---- | C] () -- C:\Windows\hpomdl29.dat
[2009/07/07 22:01:58 | 000,031,007 | ---- | C] () -- C:\Users\Adam\AppData\Roaming\UserTile.png
[2009/06/24 02:40:36 | 000,000,652 | ---- | C] () -- C:\Windows\hpomdl36.dat
[2009/05/30 14:55:52 | 000,118,784 | R--- | C] () -- C:\Windows\bwUnin-7.2.0.137-8876480SL.exe
[2009/05/27 19:39:02 | 000,000,262 | ---- | C] () -- C:\Windows\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
[2009/05/22 16:45:28 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2009/03/07 04:01:19 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2009/02/24 16:06:24 | 000,016,384 | ---- | C] () -- C:\Windows\System32\msdrve.dll
[2009/02/24 16:06:24 | 000,010,816 | ---- | C] () -- C:\Windows\vmoptver.dll
[2008/11/22 21:34:14 | 000,030,976 | ---- | C] () -- C:\Windows\rascntrl.dll
[2008/11/22 21:34:14 | 000,023,104 | ---- | C] () -- C:\Windows\System32\svcprmpt.dll
[2008/06/22 09:07:15 | 000,043,727 | ---- | C] () -- C:\ProgramData\LUUnInstall.LiveUpdate
[2008/03/18 03:41:56 | 000,000,094 | ---- | C] () -- C:\Windows\family.ini
[2008/01/02 16:04:31 | 000,000,680 | ---- | C] () -- C:\Users\Adam\AppData\Local\d3d9caps.dat
[2007/12/23 07:53:08 | 000,204,800 | ---- | C] () -- C:\Windows\System32\IVIresizeW7.dll
[2007/12/23 07:53:08 | 000,200,704 | ---- | C] () -- C:\Windows\System32\IVIresizeA6.dll
[2007/12/23 07:53:08 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeP6.dll
[2007/12/23 07:53:08 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeM6.dll
[2007/12/23 07:53:08 | 000,188,416 | ---- | C] () -- C:\Windows\System32\IVIresizePX.dll
[2007/12/23 07:53:08 | 000,020,480 | ---- | C] () -- C:\Windows\System32\IVIresize.dll
[2007/12/22 22:15:09 | 000,034,816 | ---- | C] () -- C:\Users\Adam\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/12/22 18:32:25 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2007/12/22 08:10:48 | 000,128,113 | ---- | C] () -- C:\Windows\System32\csellang.ini
[2007/12/22 08:10:48 | 000,045,056 | ---- | C] () -- C:\Windows\System32\csellang.dll
[2007/12/22 08:10:48 | 000,010,150 | ---- | C] () -- C:\Windows\System32\tosmreg.ini
[2007/12/22 08:10:48 | 000,007,671 | ---- | C] () -- C:\Windows\System32\cseltbl.ini
[2007/09/26 22:35:32 | 001,238,832 | ---- | C] () -- C:\Windows\System32\igmedkrn.dll
[2007/09/26 22:35:32 | 000,249,856 | ---- | C] () -- C:\Windows\System32\igfxTMM.dll
[2007/09/26 22:35:32 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1329.dll
[2007/09/26 22:35:32 | 000,104,636 | ---- | C] () -- C:\Windows\System32\igmedcompkrn.dll
[2007/09/26 21:25:07 | 000,000,000 | ---- | C] () -- C:\Windows\NDSTray.INI
[2007/09/26 21:18:10 | 000,036,864 | ---- | C] () -- C:\Windows\System32\HWS_Ctrl.dll
[2007/09/26 20:46:32 | 000,000,176 | ---- | C] () -- C:\Windows\System32\drivers\RTHDAEQ3.dat
[2007/09/26 20:46:32 | 000,000,176 | ---- | C] () -- C:\Windows\System32\drivers\RTHDAEQ2.dat
[2007/09/26 20:46:32 | 000,000,016 | ---- | C] () -- C:\Windows\System32\drivers\RtkHDAud.dat
[2006/11/02 05:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 05:47:37 | 000,400,864 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 05:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 03:33:01 | 000,612,100 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 03:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 03:33:01 | 000,109,516 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 03:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 03:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 01:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 01:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 00:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 00:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2005/11/23 14:55:42 | 000,024,576 | ---- | C] () -- C:\Windows\System32\SPCtl.dll
========== LOP Check ==========
[2010/09/08 16:20:26 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\.minecraft
[2011/04/30 15:37:43 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Azureus
[2009/03/14 15:49:53 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\com.raptr.Raptr.848BBC53270CAC248E8FA0F339176201CDEB525F.1
[2009/07/27 12:09:21 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Flock
[2008/03/18 03:41:56 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\HotSync
[2009/03/25 14:52:47 | 000,000,000 | -H-D | M] -- C:\Users\Adam\AppData\Roaming\ijjigame
[2010/10/20 14:47:36 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\ImgBurn
[2009/07/31 23:55:18 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\NesterSoft
[2010/11/07 15:37:41 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\NoNameScript
[2011/02/14 17:49:34 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Notepad++
[2008/03/12 11:41:21 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Opera
[2009/07/07 22:01:56 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\PeerNetworking
[2009/03/14 15:48:51 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Raptr
[2007/12/27 15:36:04 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Toshiba
[2009/07/19 11:38:53 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\uTorrent
[2011/04/30 16:09:29 | 000,032,570 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011/04/30 07:29:00 | 000,000,416 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{EF3EA9D4-624A-4B29-B7BC-F7606C72233D}.job
========== Purity Check ==========
< End of report >
Sign In
Create Account
