OTL logfile created on: 7/30/2011 6:59:46 AM - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Users\Pamela\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19088)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
1.99 Gb Total Physical Memory | 0.64 Gb Available Physical Memory | 32.25% Memory free
4.22 Gb Paging File | 2.23 Gb Available in Paging File | 52.86% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 222.78 Gb Total Space | 42.11 Gb Free Space | 18.90% Space Free | Partition Type: NTFS
Drive D: | 10.00 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: NTFS
Computer Name: MORENOFAMILY | User Name: Pamela | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011/07/30 06:58:10 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Pamela\Desktop\OTL.exe
PRC - [2011/07/25 13:44:00 | 001,209,664 | ---- | M] (PC-Doctor, Inc.) -- C:\Program Files\Dell Support Center\pcdrcui.exe
PRC - [2011/06/07 13:48:34 | 001,843,000 | ---- | M] (Orbitdownloader.com) -- C:\Program Files\Orbitdownloader\orbitdm.exe
PRC - [2011/06/06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/04/18 17:40:08 | 002,334,560 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgtray.exe
PRC - [2011/04/18 17:39:42 | 007,398,752 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
PRC - [2011/04/14 05:36:42 | 001,080,672 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgnsx.exe
PRC - [2011/04/08 11:17:40 | 000,176,848 | ---- | M] (iWin Inc.) -- C:\Program Files\iWin Games\iWinTrusted.exe
PRC - [2011/03/28 03:00:52 | 000,351,072 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgcsrvx.exe
PRC - [2011/03/16 16:05:20 | 001,025,888 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgemcx.exe
PRC - [2011/03/16 16:05:14 | 000,656,736 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgchsvx.exe
PRC - [2011/02/10 07:55:18 | 001,148,256 | ---- | M] () -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
PRC - [2011/02/08 05:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe
PRC - [2011/02/08 05:33:20 | 000,658,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgrsx.exe
PRC - [2010/11/01 16:00:00 | 000,612,168 | R--- | M] (WinZip Computing, S.L.) -- C:\Program Files\WinZip\WZQKPICK.EXE
PRC - [2010/10/29 14:49:28 | 000,505,064 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jucheck.exe
PRC - [2010/01/15 08:49:20 | 000,255,536 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
PRC - [2009/07/20 12:30:50 | 000,813,584 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\SetPoint.exe
PRC - [2009/07/10 12:42:32 | 000,055,824 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
PRC - [2009/04/11 02:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008/11/09 16:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
PRC - [2008/05/10 08:15:28 | 000,282,624 | ---- | M] (Eastman Kodak Company) -- C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
PRC - [2008/04/22 18:09:04 | 000,126,976 | ---- | M] () -- C:\Windows\System32\UAService7.exe
PRC - [2008/03/18 20:31:20 | 004,742,184 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
PRC - [2008/01/29 17:38:31 | 000,583,048 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
PRC - [2008/01/17 08:22:20 | 004,907,008 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2007/12/05 07:17:24 | 000,077,824 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTSrv.exe
PRC - [2007/06/06 13:48:44 | 000,986,208 | ---- | M] (AT&T Knowledge Ventures, L.P.) -- C:\Program Files\AT&T\Self Support Tool\ATTTray.exe
PRC - [2007/01/04 17:38:08 | 000,024,652 | ---- | M] (Viewpoint Corporation) -- C:\Program Files\Viewpoint\Common\ViewpointService.exe
PRC - [2003/03/20 13:53:36 | 000,626,688 | ---- | M] () -- C:\Program Files\Samsung\Digimax Viewer 2.0\STImgBrowser.exe
========== Modules (SafeList) ==========
MOD - [2011/07/30 06:58:10 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Pamela\Desktop\OTL.exe
MOD - [2011/06/05 08:44:50 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.5592_none_d09196c24426e2d4\msvcr80.dll
MOD - [2010/08/31 11:43:52 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
MOD - [2009/07/20 12:29:06 | 000,045,584 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\lgscroll.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [Auto | Stopped] -- -- (sprtsvc_dellsupportcenter) SupportSoft Sprocket Service (dellsupportcenter)
SRV - File not found [Disabled | Stopped] -- -- (LiveUpdate)
SRV - File not found [Auto | Stopped] -- -- (LiveUpdate Notice Ex)
SRV - File not found [Auto | Stopped] -- -- (FastUserSwitchingCompatibility)
SRV - File not found [Auto | Stopped] -- -- (Automatic LiveUpdate Scheduler)
SRV - [2011/06/06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/05/30 11:33:54 | 001,025,352 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service)
SRV - [2011/04/18 17:39:42 | 007,398,752 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2011/04/08 11:17:40 | 000,176,848 | ---- | M] (iWin Inc.) [Auto | Running] -- C:\Program Files\iWin Games\iWinTrusted.exe -- (iWinTrusted)
SRV - [2011/02/08 05:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd)
SRV - [2010/12/18 13:09:02 | 000,403,240 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2010/01/15 08:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService)
SRV - [2009/07/20 12:28:10 | 000,121,360 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2008/11/09 16:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
SRV - [2008/05/17 13:39:33 | 000,016,680 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) [On_Demand | Stopped] -- C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe -- (GoToAssist)
SRV - [2008/04/22 18:09:04 | 000,126,976 | ---- | M] () [Auto | Running] -- C:\Windows\System32\UAService7.exe -- (UserAccess7) SecuROM User Access Service (V7)
SRV - [2008/01/29 17:38:31 | 000,583,048 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe -- (LiveUpdate Notice Service)
SRV - [2008/01/19 03:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/12/05 07:17:24 | 000,077,824 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\AERTSrv.exe -- (AERTFilters)
SRV - [2007/03/19 13:44:44 | 000,070,656 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\DellSupport\brkrsvc.exe -- (DSBrokerService)
SRV - [2007/01/04 17:38:08 | 000,024,652 | ---- | M] (Viewpoint Corporation) [Auto | Running] -- C:\Program Files\Viewpoint\Common\ViewpointService.exe -- (Viewpoint Manager Service)
========== Driver Services (SafeList) ==========
DRV - [2011/04/14 21:28:18 | 000,134,480 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV - [2011/04/05 00:59:56 | 000,297,168 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2011/03/16 16:03:20 | 000,032,592 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86)
DRV - [2011/03/01 14:25:18 | 000,034,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2011/02/22 08:12:38 | 000,022,992 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH)
DRV - [2011/02/10 07:53:30 | 000,028,624 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSShim.sys -- (AVGIDSShim)
DRV - [2011/02/10 07:53:28 | 000,024,144 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV - [2011/01/07 06:41:46 | 000,248,656 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2010/11/09 06:49:26 | 000,015,656 | ---- | M] (Windows ® 2003 DDK 3790 provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rtport.sys -- (rtport)
DRV - [2010/08/26 05:16:02 | 000,010,112 | ---- | M] (support.com, Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssmirrdr.sys -- (ssmirrdr)
DRV - [2009/09/30 21:22:08 | 000,049,904 | R--- | M] (Avanquest Software) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BVRPMPR5.SYS -- (BVRPMPR5)
DRV - [2009/06/17 12:56:32 | 000,028,560 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\LUsbFilt.sys -- (LUsbFilt)
DRV - [2009/06/17 12:56:16 | 000,037,392 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2009/06/17 12:56:06 | 000,035,472 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2007/04/29 04:42:24 | 000,228,224 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\e1e6032.sys -- (e1express) Intel®
DRV - [2007/02/25 13:10:48 | 000,005,376 | --S- | M] (Gteko Ltd.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\dsunidrv.sys -- (dsunidrv)
DRV - [2007/01/19 13:53:43 | 000,018,304 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Motive\MRESP50.sys -- (MRESP50)
DRV - [2007/01/19 13:53:42 | 000,019,712 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Motive\MREMP50.sys -- (MREMP50)
DRV - [2006/11/02 03:36:43 | 002,028,032 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
DRV - [2006/10/18 14:08:18 | 000,258,048 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSXHWBS2.sys -- (HSXHWBS2)
DRV - [2006/10/05 18:07:28 | 000,004,736 | ---- | M] (Gteko Ltd.) [Kernel | On_Demand | Stopped] -- C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys -- (DSproct)
DRV - [2006/08/04 20:39:10 | 000,008,192 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2004/04/13 21:20:08 | 000,015,781 | R--- | M] (Meetinghouse Data Communications) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\mdc8021x.sys -- (MDC8021X) AEGIS Protocol (IEEE 802.1x)
DRV - [2001/01/03 16:26:24 | 000,106,320 | ---- | M] (STMicroelectronics ) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\stv680.sys -- (STV680)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =
IE - HKLM\..\URLSearchHook: {7b13ec3e-999a-4b70-b9cb-2617b8323822} - C:\Program Files\Zynga\prxtbZyng.dll (Conduit Ltd.)
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?fr=fp-yie9
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = E0 E5 9F 17 DE A9 CB 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.gamestop....roduct_ID=78140
IE - HKCU\..\URLSearchHook: {7b13ec3e-999a-4b70-b9cb-2617b8323822} - C:\Program Files\Zynga\prxtbZyng.dll (Conduit Ltd.)
IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "AVG Secure Search"
FF - prefs.js..browser.search.defaultthis.engineName: "Google Powered Search"
FF - prefs.js..browser.search.defaulturl: "http://www.bing.com/...FORM=VE3D01&q="
FF - prefs.js..browser.search.selectedEngine: "AVG Secure Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.youtube.com/"
FF - prefs.js..extensions.enabledItems: {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A}:2.0.0.66311
FF - prefs.js..extensions.enabledItems: gamebox@toolbar:1.0.0
FF - prefs.js..extensions.enabledItems: {35379F86-8CCB-4724-AE33-4278DE266C70}:1.0.4
FF - prefs.js..extensions.enabledItems: {c2f863cd-0429-48c7-bb54-db756a951760}:5.96.10.6044
FF - prefs.js..extensions.enabledItems: {5e5ab302-7f65-44cd-8211-c1d4caaccea3}:2.7.2.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {98e34367-8df7-42b4-837b-20b892ff0849}:1.7
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: [email protected]:1.10.01
FF - prefs.js..extensions.enabledItems: avg@igeared:7.004.022.004
FF - prefs.js..extensions.enabledItems: [email protected]:1.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: {1E73965B-8B48-48be-9C8D-68B920ABC1C4}:10.0.0.1374
FF - prefs.js..extensions.enabledItems: [email protected]:1.2.1.90
FF - prefs.js..keyword.URL: "http://search.avg.co...s&lng=en-US&q="
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/MycameraPlugin: C:\Program Files\Canon\ZoomBrowser EX\Program\NPCIG.dll (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpWinExt,version=5.0: C:\Program Files\MSN Toolbar\Platform\5.0.1423.0\npwinext.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/VirtualEarth3D,version=4.0: C:\Program Files\Virtual Earth 3D\ [2010/09/26 21:05:27 | 000,000,000 | ---D | M]
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@oberon-media.com/ONCAdapter: C:\Program Files\Common Files\Oberon Media\NCAdapter\1.0.0.7\npapicomadapter.dll (Oberon-Media )
FF - HKLM\Software\MozillaPlugins\@real.com/RhapsodyPlayerEngine,version=1.0: C:\Program Files\Real\RhapsodyPlayerEngine\nprhapengine.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files\Viewpoint\Viewpoint Media Player\npViewpoint.dll File not found
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\[email protected]/YahooActiveXPluginBridge;version=1.0.0.1: C:\Program Files\Mozilla Firefox\plugins\npyaxmpb.dll (Yahoo! Inc.)
FF - HKCU\Software\MozillaPlugins\@octoshape.com/Octoshape Streaming Services,version=1.0: C:\Users\Pamela\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1002170-0-npoctoshape.dll (Octoshape ApS)
FF - HKCU\Software\MozillaPlugins\@real.com/RhapsodyPlayerEngine: C:\Users\Pamela\AppData\Roaming\nprhapengine.dll File not found
FF - HKCU\Software\MozillaPlugins\@yahoo.com/BrowserPlus,version=2.4.17: C:\Users\Pamela\AppData\Local\Yahoo!\BrowserPlus\2.4.17\Plugins\npybrowserplus_2.4.17.dll (Yahoo! Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\MSN Toolbar\Platform\5.0.1423.0\Firefox [2010/04/26 10:35:44 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{27182e60-b5f3-411c-b545-b44205977502}: C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension\ [2010/06/11 03:14:32 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared [2011/07/18 16:51:32 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG10\Firefox4\ [2011/07/12 10:02:49 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{A5DCA3F5-ED5A-4ed3-9671-DBB0C68FA469}: C:\Program Files\WebEnhancements\WebEnhancements.xpi
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{98e34367-8df7-42b4-837b-20b892ff0849}: C:\ProgramData\iWin Games\firefox [2010/02/07 12:15:18 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/04/03 11:35:31 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/07/02 09:03:55 | 000,000,000 | ---D | M]
[2010/01/17 12:42:22 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Pamela\AppData\Roaming\Mozilla\Extensions
[2009/07/08 18:56:39 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Pamela\AppData\Roaming\Mozilla\Extensions\[email protected]
[2011/06/24 11:20:11 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Pamela\AppData\Roaming\Mozilla\Firefox\Profiles\5jt7ftcm.default\extensions
[2010/08/31 14:46:58 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Pamela\AppData\Roaming\Mozilla\Firefox\Profiles\5jt7ftcm.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/04/03 11:39:08 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Users\Pamela\AppData\Roaming\Mozilla\Firefox\Profiles\5jt7ftcm.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2011/04/03 11:39:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Pamela\AppData\Roaming\Mozilla\Firefox\Profiles\5jt7ftcm.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}-trash
[2010/09/01 20:47:44 | 000,000,000 | ---D | M] (XfireXO Toolbar) -- C:\Users\Pamela\AppData\Roaming\Mozilla\Firefox\Profiles\5jt7ftcm.default\extensions\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}
[2010/08/31 14:46:58 | 000,000,000 | ---D | M] (AIM Toolbar) -- C:\Users\Pamela\AppData\Roaming\Mozilla\Firefox\Profiles\5jt7ftcm.default\extensions\{c2f863cd-0429-48c7-bb54-db756a951760}
[2010/11/25 09:35:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Pamela\AppData\Roaming\Mozilla\Firefox\Profiles\5jt7ftcm.default\extensions\ChoiceGuard@Microsoft
[2010/07/08 21:32:42 | 000,000,000 | ---D | M] (GameBox) -- C:\Users\Pamela\AppData\Roaming\Mozilla\Firefox\Profiles\5jt7ftcm.default\extensions\gamebox@toolbar
[2011/05/27 22:50:24 | 000,000,000 | ---D | M] (Oberon GamesBar) -- C:\Users\Pamela\AppData\Roaming\Mozilla\Firefox\Profiles\5jt7ftcm.default\extensions\[email protected]
[2010/10/29 05:47:03 | 000,000,000 | ---D | M] (Yontoo Layers) -- C:\Users\Pamela\AppData\Roaming\Mozilla\Firefox\Profiles\5jt7ftcm.default\extensions\[email protected]
[2010/12/05 16:00:10 | 000,000,000 | ---D | M] (Search Toolbar) -- C:\Users\Pamela\AppData\Roaming\Mozilla\Firefox\Profiles\5jt7ftcm.default\extensions\[email protected]
[2010/07/08 21:26:58 | 000,002,343 | ---- | M] () -- C:\Users\Pamela\AppData\Roaming\Mozilla\Firefox\Profiles\5jt7ftcm.default\searchplugins\aol-search.xml
[2010/12/05 16:00:12 | 000,001,919 | ---- | M] () -- C:\Users\Pamela\AppData\Roaming\Mozilla\Firefox\Profiles\5jt7ftcm.default\searchplugins\bing-zugo.xml
[2010/10/06 15:38:26 | 000,001,820 | ---- | M] () -- C:\Users\Pamela\AppData\Roaming\Mozilla\Firefox\Profiles\5jt7ftcm.default\searchplugins\bing.xml
[2010/08/31 20:45:30 | 000,000,903 | ---- | M] () -- C:\Users\Pamela\AppData\Roaming\Mozilla\Firefox\Profiles\5jt7ftcm.default\searchplugins\conduit.xml
[2010/11/18 21:58:05 | 000,010,059 | ---- | M] () -- C:\Users\Pamela\AppData\Roaming\Mozilla\Firefox\Profiles\5jt7ftcm.default\searchplugins\mywebsearch.xml
[2010/07/08 21:33:02 | 000,001,594 | ---- | M] () -- C:\Users\Pamela\AppData\Roaming\Mozilla\Firefox\Profiles\5jt7ftcm.default\searchplugins\web-search.xml
[2011/06/04 12:00:54 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2008/10/07 15:10:39 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2010/09/27 12:23:06 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010/11/27 08:18:36 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011/02/12 13:50:43 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011/03/19 21:37:52 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2009/06/04 18:53:17 | 000,000,000 | ---D | M] (BearShare MediaBar) -- C:\Program Files\Mozilla Firefox\extensions\{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A}
[2011/07/12 10:02:49 | 000,000,000 | ---D | M] (AVG Safe Search) -- C:\PROGRAM FILES\AVG\AVG10\FIREFOX4
[2011/07/18 16:51:32 | 000,000,000 | ---D | M] ("urn:mozilla:install-manifest" em:id="avg@igeared" em:name="AVG Security Toolbar" em:version="7.005.030.004" em:displayname="AVG Security Toolbar" em:iconURL="chrome://tavgp/skin/logo.ico" em:creator="AVG Technologies" em:description="AVG Security Toolbar" em:homepageURL="http://www.avg.com" >) -- C:\PROGRAM FILES\AVG\AVG10\TOOLBAR\FIREFOX\AVG@IGEARED
[2011/06/24 11:20:13 | 000,000,000 | ---D | M] (OneClick YouTube Downloader) -- C:\PROGRAM FILES\ORBITDOWNLOADER\ADDONS\ONECLICKYOUTUBEDOWNLOADER
[2010/02/07 12:15:18 | 000,000,000 | ---D | M] (iWinGames Plugin) -- C:\PROGRAMDATA\IWIN GAMES\FIREFOX
[2010/07/08 21:34:57 | 000,094,208 | ---- | M] (AT&T Corporation) -- C:\Program Files\mozilla firefox\components\blsfflock.dll
[2008/06/20 10:40:33 | 000,024,683 | ---- | M] (Ask.com) -- C:\Program Files\mozilla firefox\plugins\NPAskSBr.dll
[2008/06/18 02:43:04 | 000,086,016 | ---- | M] (Coupons, Inc.) -- C:\Program Files\mozilla firefox\plugins\npCouponPrinter.dll
[2011/02/02 21:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2007/03/09 19:16:44 | 000,189,496 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\mozilla firefox\plugins\npyaxmpb.dll
[2010/11/18 19:12:17 | 000,001,919 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing-zugo.xml
[2011/05/26 22:10:15 | 000,002,064 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bingober532217378.xml
[2011/05/27 17:05:35 | 000,002,064 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bingober600341003.xml
[2011/05/27 22:50:26 | 000,002,064 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bingober621033084.xml
O1 HOSTS File: ([2010/11/26 11:35:25 | 000,000,098 | ---- | M]) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Octh Class) - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll (Orbitdownloader.com)
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn6\yt.dll (Yahoo! Inc.)
O2 - BHO: (Ask Search Assistant BHO) - {0579B4B1-0293-4d73-B02D-5EBB0BA0F0A2} - C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL (Ask.com)
O2 - BHO: (eBay Toolbar Helper) - {22D8E815-4A5E-4DFB-845E-AAB64207F5BD} - C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll (eBay Inc.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (UrlHelper Class) - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - C:\Program Files\BearShare Applications\BearShare\BearShareIEHelper.dll ()
O2 - BHO: (Zynga Toolbar) - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - C:\Program Files\Zynga\prxtbZyng.dll (Conduit Ltd.)
O2 - BHO: (IEHlprObj Class) - {8CA5ED52-F3FB-4414-A105-2E3491156990} - C:\Program Files\iWin Games\iWinGamesHookIE.dll (iWin Inc.)
O2 - BHO: (Search Toolbar) - {9D425283-D487-4337-BAB6-AB8354A81457} - C:\Program Files\Search Toolbar\SearchToolbar.dll ()
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O2 - BHO: (Freecause Toolbar BHO) - {AAAC503B-6F0F-4F48-8055-289B8A5EF5C0} - C:\Program Files\Causes\Toolbar.dll ()
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll (Google Inc.)
O2 - BHO: (AIM Toolbar Loader) - {b0cda128-b425-4eef-a174-61a11ac5dbf8} - C:\Program Files\AIM Toolbar\aimtb.dll (AOL Inc.)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll (Dell Inc.)
O2 - BHO: (Ask Toolbar BHO) - {F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL (Ask.com)
O2 - BHO: (Yontoo Layers) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo Layers Client\YontooIEClient.dll (Yontoo Technology, Inc.)
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn6\YTSingleInstance.dll (Yahoo! Inc)
O3 - HKLM\..\Toolbar: (Causes) - {5D51B4F2-CC28-4488-9AB3-BE7E40EB3293} - C:\Program Files\Causes\Toolbar.dll ()
O3 - HKLM\..\Toolbar: (AIM Toolbar) - {61539ecd-cc67-4437-a03c-9aaccbd14326} - C:\Program Files\AIM Toolbar\aimtb.dll (AOL Inc.)
O3 - HKLM\..\Toolbar: (Zynga Toolbar) - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - C:\Program Files\Zynga\prxtbZyng.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (eBay Toolbar) - {92085AD4-F48A-450D-BD93-B28CC7DF67CE} - C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll (eBay Inc.)
O3 - HKLM\..\Toolbar: (Search Toolbar) - {9D425283-D487-4337-BAB6-AB8354A81457} - C:\Program Files\Search Toolbar\SearchToolbar.dll ()
O3 - HKLM\..\Toolbar: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files\Orbitdownloader\GrabPro.dll ()
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll (BearShare)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn6\yt.dll (Yahoo! Inc.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL (Ask.com)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Causes) - {5D51B4F2-CC28-4488-9AB3-BE7E40EB3293} - C:\Program Files\Causes\Toolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (AIM Toolbar) - {61539ECD-CC67-4437-A03C-9AACCBD14326} - C:\Program Files\AIM Toolbar\aimtb.dll (AOL Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Zynga Toolbar) - {7B13EC3E-999A-4B70-B9CB-2617B8323822} - C:\Program Files\Zynga\prxtbZyng.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Search Toolbar) - {9D425283-D487-4337-BAB6-AB8354A81457} - C:\Program Files\Search Toolbar\SearchToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files\Orbitdownloader\GrabPro.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll (BearShare)
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [dellsupportcenter] File not found
O4 - HKLM..\Run: [ECenter] C:\DELL\E-Center\EULALauncher.exe ( )
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SBC_McciTrayApp] C:\Program Files\AT&T\Self Support Tool\ATTTray.exe (AT&T Knowledge Ventures, L.P.)
O4 - Startup: C:\Users\Pamela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2010/09/13 07:56:33 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Users\Pamela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Yahoo! Widgets.lnk = C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe (Yahoo! Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\control panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\control panel present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\restrictions present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = FF 00 00 00 [binary data]
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O8 - Extra context menu item: &Download by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: &Grab video by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: Do&wnload selected by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: Down&load all by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} file:///C:/Program%20Files/Burger%20Rush/Images/stg_drm.ocx (SpinTop DRM Control)
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} http://ak.exe.imgfar...etup1.0.1.1.cab (Reg Error: Key error.)
O16 - DPF: {74C861A1-D548-4916-BC8A-FDE92EDFF62C} http://mediaplayer.w...ler/install.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} file:///C:/Program%20Files/Burger%20Rush/Images/armhelper.ocx (ArmHelper Control)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file:///C:/Windows/Java/classes/xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.1
O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Pamela\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Pamela\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 17:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{4c4ce606-ddbd-11dd-88c6-001aa09b6294}\Shell\AutoRun\command - "" = K:\DPF_V211.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync) - C:\Program Files\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKCU\...exe [@ = exefile] -- Reg Error: Key error. File not found
========== Files/Folders - Created Within 30 Days ==========
[2011/07/30 06:58:56 | 000,579,584 | ---- | C] (OldTimer Tools) -- C:\Users\Pamela\Desktop\OTL.exe
[2011/07/28 15:46:22 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee Security Scan
[2011/07/28 15:46:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
[2011/07/28 15:46:14 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee Security Scan
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2011/07/30 07:05:00 | 000,000,506 | ---- | M] () -- C:\Windows\tasks\SystemToolsDailyTest.job
[2011/07/30 06:58:10 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Pamela\Desktop\OTL.exe
[2011/07/30 06:45:00 | 000,000,912 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1691801920-2505483858-3063123462-1002UA.job
[2011/07/30 06:38:49 | 000,001,644 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Orbit.lnk
[2011/07/30 06:36:45 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/07/30 06:36:40 | 000,000,416 | ---- | M] () -- C:\Windows\tasks\PCConfidential.job
[2011/07/30 06:36:40 | 000,000,416 | ---- | M] () -- C:\Windows\tasks\EasyShare Registration RunOnce Task.job
[2011/07/30 06:36:40 | 000,000,364 | ---- | M] () -- C:\Windows\tasks\ErrorFix Startup.job
[2011/07/30 06:36:40 | 000,000,236 | ---- | M] () -- C:\Windows\tasks\SpeedOptimizer Startup.job
[2011/07/30 06:36:21 | 000,003,696 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/07/30 06:36:21 | 000,003,696 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/07/30 06:36:13 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/07/30 06:33:38 | 126,233,448 | ---- | M] () -- C:\Windows\System32\drivers\AVG\incavi.avm
[2011/07/30 06:27:07 | 000,000,382 | ---- | M] () -- C:\Windows\tasks\DriverCure.job
[2011/07/30 06:11:00 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/07/29 22:33:51 | 000,345,101 | ---- | M] () -- C:\Users\Pamela\Desktop\Look Insurance!.jpg
[2011/07/29 19:44:59 | 000,000,860 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1691801920-2505483858-3063123462-1002Core.job
[2011/07/28 15:46:14 | 000,001,719 | ---- | M] () -- C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
[2011/07/28 15:46:14 | 000,001,717 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2011/07/24 10:52:59 | 000,000,402 | ---- | M] () -- C:\Windows\tasks\EasyShare Registration Task.job
[2011/07/24 03:40:00 | 000,000,456 | ---- | M] () -- C:\Windows\tasks\Driver Robot.job
[2011/07/24 03:13:00 | 000,000,354 | ---- | M] () -- C:\Windows\tasks\Driver Fetch.job
[2011/07/19 10:35:30 | 005,226,088 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/07/19 10:35:30 | 001,710,926 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/07/14 03:23:58 | 000,366,048 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/07/13 09:13:13 | 000,000,300 | ---- | M] () -- C:\Users\Pamela\Desktop\Bay City Public Schools - Moodle Login to the site.url
[2011/07/12 10:02:50 | 000,000,748 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2011.lnk
[2011/07/02 09:03:06 | 000,000,564 | ---- | M] () -- C:\Windows\tasks\PCDoctorBackgroundMonitorTask.job
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011/07/29 22:34:00 | 000,345,101 | ---- | C] () -- C:\Users\Pamela\Desktop\Look Insurance!.jpg
[2011/07/28 15:46:14 | 000,001,719 | ---- | C] () -- C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
[2011/07/28 15:46:14 | 000,001,717 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2011/07/13 09:13:13 | 000,000,300 | ---- | C] () -- C:\Users\Pamela\Desktop\Bay City Public Schools - Moodle Login to the site.url
[2011/05/27 22:46:54 | 000,000,436 | ---- | C] () -- C:\Program Files\0527201122465488.bat
[2011/04/09 18:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2011/03/24 20:09:57 | 000,000,074 | ---- | C] () -- C:\Windows\ImportClient.INI
[2011/03/18 20:41:13 | 000,000,739 | ---- | C] () -- C:\Windows\STImgBrowser.INI
[2010/09/13 15:46:03 | 000,000,626 | ---- | C] () -- C:\Windows\MORENOFAMILY0204.ini
[2010/09/06 11:35:42 | 000,000,730 | ---- | C] () -- C:\ProgramData\.wtav
[2010/09/05 13:32:09 | 000,001,923 | ---- | C] () -- C:\Windows\lsrslt.ini
[2010/08/29 21:16:23 | 000,000,236 | ---- | C] () -- C:\Program Files\Common Files\dx.reg
[2010/08/29 21:16:20 | 000,874,502 | ---- | C] () -- C:\Windows\System32\kernel32new.dll
[2010/08/29 21:16:20 | 000,716,153 | ---- | C] () -- C:\Windows\System32\unins000.exe
[2010/08/29 21:16:20 | 000,681,478 | ---- | C] () -- C:\Windows\System32\msvcrtnew.dll
[2010/08/29 21:16:20 | 000,004,804 | ---- | C] () -- C:\Windows\System32\unins000.dat
[2010/08/28 01:54:48 | 000,000,324 | ---- | C] () -- C:\Windows\game.ini
[2010/07/10 08:56:39 | 000,000,760 | ---- | C] () -- C:\Users\Pamela\AppData\Roaming\setup_ldm.iss
[2010/07/08 21:53:08 | 000,088,576 | RHS- | C] () -- C:\Users\Pamela\AppData\Roaming\C_G18030R.dll
[2010/01/17 09:37:32 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2009/09/17 06:52:36 | 000,531,280 | ---- | C] () -- C:\Windows\System32\msennoij.dll
[2009/09/17 06:52:24 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2009/09/17 06:52:23 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/08/03 16:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2009/08/03 16:07:42 | 000,230,768 | ---- | C] () -- C:\Windows\System32\OGAEXEC.exe
[2009/02/24 20:31:32 | 000,008,082 | ---- | C] () -- C:\ProgramData\LUUnInstall.LiveUpdate
[2008/12/28 13:19:21 | 000,002,560 | ---- | C] () -- C:\Windows\_MSRSTRT.EXE
[2008/11/13 08:34:23 | 000,000,021 | ---- | C] () -- C:\Windows\atid.ini
[2008/09/29 03:00:46 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2008/06/08 18:54:56 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2008/05/17 13:50:13 | 001,238,832 | ---- | C] () -- C:\Windows\System32\igmedkrn.dll
[2008/05/17 13:50:13 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1322.dll
[2008/05/17 13:50:13 | 000,104,636 | ---- | C] () -- C:\Windows\System32\igmedcompkrn.dll
[2008/04/24 16:58:43 | 000,004,096 | ---- | C] () -- C:\Windows\d3dx.dat
[2008/04/22 18:09:04 | 000,126,976 | ---- | C] () -- C:\Windows\System32\UAService7.exe
[2008/04/22 18:09:04 | 000,090,112 | ---- | C] () -- C:\Windows\System32\CmdLineExt.dll
[2008/03/30 15:43:49 | 000,000,286 | ---- | C] () -- C:\Windows\EReg213.dat
[2008/03/29 13:15:39 | 000,000,300 | ---- | C] () -- C:\Windows\SIERRA.INI
[2008/03/21 22:46:17 | 000,000,056 | ---- | C] () -- C:\Windows\popcinfo.dat
[2008/03/09 09:38:35 | 000,000,267 | ---- | C] () -- C:\Windows\PowerReg.dat
[2008/02/11 19:55:18 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1437.dll
[2008/02/11 19:34:48 | 002,215,364 | ---- | C] () -- C:\Windows\System32\igklg400.bin
[2008/02/11 19:34:48 | 001,971,732 | ---- | C] () -- C:\Windows\System32\igklg450.bin
[2008/02/11 19:34:48 | 000,029,932 | ---- | C] () -- C:\Windows\System32\igmedcompkrn.bin
[2008/02/07 17:33:26 | 000,061,440 | ---- | C] () -- C:\Windows\uninstall.exe
[2008/01/23 21:47:43 | 000,125,358 | ---- | C] () -- C:\Program Files\SBC Self Support Tool
[2008/01/22 10:38:54 | 000,000,044 | ---- | C] () -- C:\Windows\fantasy2.ini
[2008/01/22 10:38:53 | 000,000,053 | ---- | C] () -- C:\Windows\photoprn.ini
[2008/01/22 10:38:53 | 000,000,029 | ---- | C] () -- C:\Windows\videoimp.ini
[2008/01/22 10:38:53 | 000,000,008 | ---- | C] () -- C:\Windows\pstudio.ini
[2008/01/22 10:38:38 | 000,010,240 | ---- | C] () -- C:\Windows\System32\vidx16.dll
[2008/01/21 16:42:20 | 000,040,960 | ---- | C] () -- C:\Windows\System32\wh2robo.dll
[2008/01/16 22:14:44 | 000,000,117 | ---- | C] () -- C:\Windows\ulead32.ini
[2008/01/16 21:51:14 | 000,000,002 | ---- | C] () -- C:\Windows\PhotoSuite.ini
[2008/01/16 21:51:06 | 000,122,880 | ---- | C] () -- C:\Windows\System32\JPEGLIB.DLL
[2008/01/16 21:51:06 | 000,122,880 | ---- | C] () -- C:\Windows\System32\EnrouteStitch.dll
[2008/01/16 21:51:05 | 000,332,800 | ---- | C] () -- C:\Windows\System32\FPXLIB.DLL
[2008/01/13 20:02:40 | 000,007,688 | ---- | C] () -- C:\Users\Pamela\AppData\Roaming\wklnhst.dat
[2008/01/13 19:39:47 | 000,006,550 | ---- | C] () -- C:\Windows\jautoexp.dat
[2008/01/02 17:57:36 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1409.dll
[2007/10/25 06:10:04 | 000,204,800 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1255.dll
[2007/10/25 06:10:02 | 000,876,544 | ---- | C] () -- C:\Windows\System32\TEACico2.dll
[2006/11/10 09:26:12 | 000,000,000 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2006/11/07 15:25:58 | 000,000,000 | ---- | C] () -- C:\Windows\System32\px.ini
[2006/11/02 08:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 08:47:37 | 000,366,048 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 08:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 06:33:01 | 005,226,088 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 06:33:01 | 001,710,926 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 06:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 06:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 06:25:44 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2006/11/02 06:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 04:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 04:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 03:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 03:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006/09/17 00:36:50 | 000,520,192 | ---- | C] () -- C:\Windows\System32\CddbPlaylist2Roxio.dll
[2006/09/17 00:36:50 | 000,204,800 | ---- | C] () -- C:\Windows\System32\CddbFileTaggerRoxio.dll
========== LOP Check ==========
[2009/05/13 10:22:17 | 000,000,000 | -HSD | M] -- C:\Users\Pamela\AppData\Roaming\.#
[2011/06/03 19:22:43 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\1morebee
[2010/09/12 17:26:07 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\8F2BA8D839EDE1A4A1ECC6DC0D793614
[2008/04/09 18:09:44 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\acccore
[2008/04/06 10:08:05 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Amazon
[2011/05/27 17:06:51 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Anarchy
[2008/05/22 16:41:05 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\ArcadeTown
[2010/09/03 22:07:54 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Azureus
[2009/06/14 22:07:39 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\blinkx
[2010/02/09 21:05:57 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Blitware
[2009/12/19 10:14:16 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\DriverCure
[2008/10/25 13:52:35 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\eBay
[2008/06/14 11:41:16 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Eyeblaster
[2010/07/12 11:32:39 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Farm Mania 2
[2009/02/01 16:47:59 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\FlashGet
[2010/08/29 12:57:02 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\FUEL Demo
[2008/09/16 14:58:16 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Gaijin Ent
[2008/10/07 16:26:23 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\GameHouse
[2011/05/27 23:59:52 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Gamelab
[2010/10/10 09:41:16 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Gamers Digital
[2010/07/09 12:13:21 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\GamesCafe
[2009/07/29 22:52:36 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\GrabPro
[2009/12/10 16:54:16 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\GraveyardShift
[2011/05/01 17:07:02 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\gtk-2.0
[2008/05/24 09:57:17 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Home Sweet Home
[2008/11/20 17:09:57 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Home Sweet Home 2
[2009/12/12 10:58:51 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Home Sweet Home Christmas
[2010/08/30 17:31:29 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\HTML Executable
[2010/08/27 17:38:52 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\ImgBurn
[2009/01/13 20:12:20 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\iWin
[2008/04/21 19:39:42 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\iWinArcade
[2008/03/29 14:24:20 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Leadertech
[2009/07/08 19:18:15 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\LimeWire
[2008/06/14 12:09:18 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Ludia
[2010/01/15 17:18:10 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Merscom
[2008/06/08 21:06:43 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\My Games
[2008/09/15 16:38:39 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Oberon Games
[2011/05/26 22:10:47 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Oberon Media
[2009/05/24 19:05:22 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Octoshape
[2010/01/02 11:40:02 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\OpenCandy
[2011/07/30 06:39:08 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Orbit
[2010/12/30 10:32:20 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\PCDr
[2009/12/29 16:07:40 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\PlayFirst
[2009/07/18 20:51:08 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Pogo Games
[2011/06/24 11:20:30 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\ProgSense
[2010/10/27 16:27:02 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Quest3D
[2010/09/05 10:07:35 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Raptr
[2010/10/27 16:26:59 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Roaming
[2008/03/27 16:38:46 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Sandlot Games
[2009/07/25 23:42:59 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Shape games
[2008/12/25 14:41:16 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Skinux
[2010/11/13 18:22:21 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Sony
[2008/05/24 08:24:21 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\SpinTop
[2010/09/12 17:03:54 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\supportdotcom
[2008/04/22 17:28:24 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Teggo
[2008/01/13 20:02:49 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Template
[2011/07/27 13:51:23 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\TuneUpMedia
[2010/08/31 18:11:35 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\uTorrent
[2008/04/24 17:03:47 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Valusoft
[2008/06/14 13:31:04 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\ViquaSoft
[2008/01/21 16:44:07 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Watchtower
[2011/03/05 10:06:13 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\Windows Live Writer
[2008/01/13 21:16:21 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\WSI
[2009/07/17 13:44:28 | 000,000,000 | ---D | M] -- C:\Users\Pamela\AppData\Roaming\YoudaGames
[2011/07/24 03:13:00 | 000,000,354 | ---- | M] () -- C:\Windows\Tasks\Driver Fetch.job
[2011/07/24 03:40:00 | 000,000,456 | ---- | M] () -- C:\Windows\Tasks\Driver Robot.job
[2011/07/30 06:27:07 | 000,000,382 | ---- | M] () -- C:\Windows\Tasks\DriverCure.job
[2011/07/30 06:36:40 | 000,000,416 | ---- | M] () -- C:\Windows\Tasks\EasyShare Registration RunOnce Task.job
[2011/07/24 10:52:59 | 000,000,402 | ---- | M] () -- C:\Windows\Tasks\EasyShare Registration Task.job
[2011/07/30 06:36:40 | 000,000,364 | ---- | M] () -- C:\Windows\Tasks\ErrorFix Startup.job
[2011/07/30 06:36:40 | 000,000,416 | ---- | M] () -- C:\Windows\Tasks\PCConfidential.job
[2011/07/02 09:03:06 | 000,000,564 | ---- | M] () -- C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job
[2011/07/30 06:35:02 | 000,032,606 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011/07/30 06:36:40 | 000,000,236 | ---- | M] () -- C:\Windows\Tasks\SpeedOptimizer Startup.job
[2011/07/30 07:05:00 | 000,000,506 | ---- | M] () -- C:\Windows\Tasks\SystemToolsDailyTest.job
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 99 bytes -> C:\ProgramData\TEMP:EE49CE4E
@Alternate Data Stream - 99 bytes -> C:\ProgramData\TEMP:7F4C2C65
@Alternate Data Stream - 99 bytes -> C:\ProgramData\TEMP:47417312
@Alternate Data Stream - 98 bytes -> C:\ProgramData\TEMP:65756BF8
@Alternate Data Stream - 97 bytes -> C:\ProgramData\TEMP:2E301D62
@Alternate Data Stream - 371 bytes -> C:\ProgramData\TEMP:995B275C
@Alternate Data Stream - 338 bytes -> C:\ProgramData\TEMP:D81A09B0
@Alternate Data Stream - 292 bytes -> C:\ProgramData\TEMP:141BCC26
@Alternate Data Stream - 173 bytes -> C:\ProgramData\TEMP:C39E55C5
@Alternate Data Stream - 153 bytes -> C:\ProgramData\TEMP:C640E10C
@Alternate Data Stream - 147 bytes -> C:\ProgramData\TEMP:E54FA796
@Alternate Data Stream - 146 bytes -> C:\ProgramData\TEMP:62BF0372
@Alternate Data Stream - 146 bytes -> C:\ProgramData\TEMP:0651F96C
@Alternate Data Stream - 145 bytes -> C:\ProgramData\TEMP:E85475C7
@Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:AD7C9EE0
@Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:AA341DB1
@Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:54916E75
@Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:1B262C29
@Alternate Data Stream - 142 bytes -> C:\ProgramData\TEMP:E9900C74
@Alternate Data Stream - 142 bytes -> C:\ProgramData\TEMP:74B502CB
@Alternate Data Stream - 141 bytes -> C:\ProgramData\TEMP:769DE8D6
@Alternate Data Stream - 141 bytes -> C:\ProgramData\TEMP:6E11933F
@Alternate Data Stream - 139 bytes -> C:\ProgramData\TEMP:90E3641D
@Alternate Data Stream - 138 bytes -> C:\ProgramData\TEMP:EB277F6C
@Alternate Data Stream - 138 bytes -> C:\ProgramData\TEMP:D99A9131
@Alternate Data Stream - 138 bytes -> C:\ProgramData\TEMP:698B483C
@Alternate Data Stream - 138 bytes -> C:\ProgramData\TEMP:30C46519
@Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:CD060F93
@Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:C04C48D4
@Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:8BB2EE92
@Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:644C73AD
@Alternate Data Stream - 136 bytes -> C:\ProgramData\TEMP:05816AFA
@Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:D3306355
@Alternate Data Stream - 134 bytes -> C:\ProgramData\TEMP:D30CE047
@Alternate Data Stream - 134 bytes -> C:\ProgramData\TEMP:06892154
@Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:EF71CAB5
@Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:29058F8B
@Alternate Data Stream - 132 bytes -> C:\ProgramData\TEMP:7CAB0377
@Alternate Data Stream - 132 bytes -> C:\ProgramData\TEMP:4C49306C
@Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:81BA5807
@Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:7C6F2A64
@Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:1098AED4
@Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:C4870D32
@Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:6493C4DC
@Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:3BF63E4A
@Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:9485E512
@Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:6FD36C4B
@Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:5F280981
@Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:51431C60
@Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:162E02F7
@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:B0FAC520
@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:96EE29A3
@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:3BFA9622
@Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:CAE777AD
@Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:4F636E25
@Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:4A6AD8EC
@Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:30719F30
@Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:44688298
@Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:2C15EF07
@Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:05773093
@Alternate Data Stream - 124 bytes -> C:\ProgramData\TEMP:27790C06
@Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:9BCC8D9F
@Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:99B66030
@Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:5F1019FF
@Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:1FBE3CEB
@Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:3064D21D
@Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:1505883A
@Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:04ED07B4
@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:DFC5A2B2
@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:771E6DA1
@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:6B86037F
@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:406E1738
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:F42CF153
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:A9662AE0
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:3D58ADDB
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:3776019F
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:1F05E220
@Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:EC381680
@Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:E80EB80C
@Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:E27E39D4
@Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:5BB923A2
@Alternate Data Stream - 117 bytes -> C:\ProgramData\TEMP:C70C5141
@Alternate Data Stream - 116 bytes -> C:\ProgramData\TEMP:4001342B
@Alternate Data Stream - 116 bytes -> C:\ProgramData\TEMP:3447AB86
@Alternate Data Stream - 116 bytes -> C:\ProgramData\TEMP:30ECA2C2
@Alternate Data Stream - 115 bytes -> C:\ProgramData\TEMP:2BE0D46D
@Alternate Data Stream - 115 bytes -> C:\ProgramData\TEMP:1CE87230
@Alternate Data Stream - 114 bytes -> C:\ProgramData\TEMP:DD24DCF8
@Alternate Data Stream - 113 bytes -> C:\ProgramData\TEMP:F0762150
@Alternate Data Stream - 113 bytes -> C:\ProgramData\TEMP:96F4AB89
@Alternate Data Stream - 113 bytes -> C:\ProgramData\TEMP:49CABE45
@Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:7CA7BD5D
@Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:1F3CCB4F
@Alternate Data Stream - 111 bytes -> C:\ProgramData\TEMP:9E2BD6A9
@Alternate Data Stream - 111 bytes -> C:\ProgramData\TEMP:27A6A257
@Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:29BCDA07
@Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:0551F1FA
@Alternate Data Stream - 108 bytes -> C:\ProgramData\TEMP:E862007A
@Alternate Data Stream - 107 bytes -> C:\ProgramData\TEMP:D02FBAEC
@Alternate Data Stream - 107 bytes -> C:\ProgramData\TEMP:B2CF23E9
@Alternate Data Stream - 104 bytes -> C:\ProgramData\TEMP:F50F1555
@Alternate Data Stream - 103 bytes -> C:\ProgramData\TEMP:A0C7D68A
@Alternate Data Stream - 103 bytes -> C:\ProgramData\TEMP:126591AF
@Alternate Data Stream - 102 bytes -> C:\ProgramData\TEMP:354E094D
@Alternate Data Stream - 101 bytes -> C:\ProgramData\TEMP:CDF2594B
@Alternate Data Stream - 101 bytes -> C:\ProgramData\TEMP:A6602B96
@Alternate Data Stream - 101 bytes -> C:\ProgramData\TEMP:2A2493EF
@Alternate Data Stream - 100 bytes -> C:\ProgramData\TEMP:538B96B5
@Alternate Data Stream - 100 bytes -> C:\ProgramData\TEMP:1CB8D545
< End of report >