Reply to thread

Message: <blockquote data-quote="lplp" data-source="post: 48551" data-attributes="member: 1395">OTL logfile created on: 4/12/2012 11:41:39 PM - Run 1OTL by OldTimer - Version 3.2.39.2     Folder = C:\Users\steve\Desktop64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstationInternet Explorer (Version = 9.0.8112.16421)Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 15.99 Gb Total Physical Memory | 11.96 Gb Available Physical Memory | 74.79% Memory free31.98 Gb Paging File | 27.89 Gb Available in Paging File | 87.22% Paging File freePaging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)Drive C: | 457.76 Gb Total Space | 210.29 Gb Free Space | 45.94% Space Free | Partition Type: NTFS Computer Name: I5-PC | User Name: steve | Logged in as Administrator.Boot Mode: Normal | Scan Mode: All users | Include 64bit ScansCompany Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\steve\Desktop\OTL.exe (OldTimer Tools)PRC - C:\Windows\SysWOW64\PnkBstrA.exe ()PRC - C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts)PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)PRC - C:\Program Files (x86)\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware.com)PRC - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)PRC - C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe (Apple Inc.)PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)PRC - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation)PRC - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)PRC - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)PRC - C:\Program Files (x86)\Logitech\G35\G35.exe (Logitech(c))PRC - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac (ArcSoft Inc.)PRC - C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe (Logitech Inc.)PRC - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)PRC - C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe (TeamViewer GmbH)PRC - C:\Users\steve\AppData\Roaming\QiGO\QiGODiscoveryAgent\QiGODiscoveryAgent.exe (QiGO)PRC - C:\Windows\SysWOW64\XSrvSetup.exe ()PRC - C:\Windows\SysWOW64\dxdiag.exe (Microsoft Corporation)PRC - C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)PRC - C:\Windows\SysWOW64\IoctlSvc.exe (Prolific Technology Inc.)  ========== Modules (No Company Name) ========== MOD - C:\Program Files (x86)\Origin\imageformats\qtiff4.dll ()MOD - C:\Program Files (x86)\Origin\QtWebKit4.dll ()MOD - C:\Program Files (x86)\Origin\QtXmlPatterns4.dll ()MOD - C:\Program Files (x86)\Origin\QtXml4.dll ()MOD - C:\Program Files (x86)\Origin\imageformats\qmng4.dll ()MOD - C:\Program Files (x86)\Origin\imageformats\qjpeg4.dll ()MOD - C:\Program Files (x86)\Origin\imageformats\qico4.dll ()MOD - C:\Program Files (x86)\Origin\imageformats\qgif4.dll ()MOD - C:\Program Files (x86)\Origin\QtGui4.dll ()MOD - C:\Program Files (x86)\Origin\QtCore4.dll ()MOD - C:\Program Files (x86)\Origin\QtNetwork4.dll ()MOD - C:\Program Files (x86)\Mozilla Firefox\mozjs.dll ()MOD - C:\Program Files (x86)\Google\Chrome\Application\18.0.1025.152\ppgooglenaclpluginchrome.dll ()MOD - C:\Program Files (x86)\Google\Chrome\Application\18.0.1025.152\pdf.dll ()MOD - C:\Program Files (x86)\Google\Chrome\Application\18.0.1025.152\avutil-51.dll ()MOD - C:\Program Files (x86)\Google\Chrome\Application\18.0.1025.152\avformat-53.dll ()MOD - C:\Program Files (x86)\Google\Chrome\Application\18.0.1025.152\avcodec-53.dll ()MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll ()MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll ()MOD - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll ()MOD - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF ()MOD - C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll ()MOD - C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll ()MOD - C:\Users\steve\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll ()  ========== Win32 Services (SafeList) ========== SRV:64bit: - (LBTServ) -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe (Logitech, Inc.)SRV:64bit: - (NisSrv) -- C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe (Microsoft Corporation)SRV:64bit: - (MsMpSvc) -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe (Microsoft Corporation)SRV:64bit: - (LVPrcS64) -- C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.)SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)SRV - (PnkBstrB) -- C:\Windows\SysWOW64\PnkBstrB.exe ()SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe ()SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)SRV - (nvUpdatusService) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation)SRV - (Stereo Service) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)SRV - (ACDaemon) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)SRV - (TeamViewer5) -- C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe (TeamViewer GmbH)SRV - (HPSLPSVC) -- C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL (Hewlett-Packard Co.)SRV - (JMB36X) -- C:\Windows\SysWOW64\XSrvSetup.exe ()SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)SRV - (PLFlash DeviceIoControl Service) -- C:\Windows\SysWOW64\IoctlSvc.exe (Prolific Technology Inc.)  ========== Driver Services (SafeList) ========== DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.)DRV:64bit: - (LUsbFilt) -- C:\Windows\SysNative\drivers\LUsbFilt.sys (Logitech, Inc.)DRV:64bit: - (LMouFilt) -- C:\Windows\SysNative\drivers\LMouFilt.Sys (Logitech, Inc.)DRV:64bit: - (LHidFilt) -- C:\Windows\SysNative\drivers\LHidFilt.Sys (Logitech, Inc.)DRV:64bit: - (L8042Kbd) -- C:\Windows\SysNative\drivers\L8042Kbd.sys (Logitech, Inc.)DRV:64bit: - (Point64) -- C:\Windows\SysNative\drivers\point64.sys (Microsoft Corporation)DRV:64bit: - (NuidFltr) -- C:\Windows\SysNative\drivers\nuidfltr.sys (Microsoft Corporation)DRV:64bit: - (NVHDA) -- C:\Windows\SysNative\drivers\nvhda64v.sys (NVIDIA Corporation)DRV:64bit: - (dc3d) -- C:\Windows\SysNative\drivers\dc3d.sys (Microsoft Corporation)DRV:64bit: - (NisDrv) -- C:\Windows\SysNative\drivers\NisDrvWFP.sys (Microsoft Corporation)DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)DRV:64bit: - (LADF_SBVM) -- C:\Windows\SysNative\drivers\ladfSBVMamd64.sys (Logitech)DRV:64bit: - (LADF_DHP2) -- C:\Windows\SysNative\drivers\ladfDHP2amd64.sys (Logitech)DRV:64bit: - (LVUVC64) Logitech Webcam Pro 9000(UVC) -- C:\Windows\SysNative\drivers\lvuvc64.sys (Logitech Inc.)DRV:64bit: - (LVRS64) -- C:\Windows\SysNative\drivers\lvrs64.sys (Logitech Inc.)DRV:64bit: - (LVPr2Mon) -- C:\Windows\SysNative\drivers\LVPr2M64.sys ()DRV:64bit: - (LVPr2M64) -- C:\Windows\SysNative\drivers\LVPr2M64.sys ()DRV:64bit: - (PxHlpa64) -- C:\Windows\SysNative\drivers\PxHlpa64.sys (Sonic Solutions)DRV:64bit: - (JRAID) -- C:\Windows\SysNative\drivers\jraid.sys (JMicron Technology Corp.)DRV:64bit: - (WmXlCore) -- C:\Windows\SysNative\drivers\WmXlCore.sys (Logitech Inc.)DRV:64bit: - (WmVirHid) -- C:\Windows\SysNative\drivers\WmVirHid.sys (Logitech Inc.)DRV:64bit: - (WmFilter) -- C:\Windows\SysNative\drivers\WmFilter.sys (Logitech Inc.)DRV:64bit: - (WmBEnum) -- C:\Windows\SysNative\drivers\WmBEnum.sys (Logitech Inc.)DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek                                            )DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.)DRV:64bit: - (grmnusb) -- C:\Windows\SysNative\drivers\grmnusb.sys (GARMIN Corp.)DRV:64bit: - (cpuz132) -- C:\Windows\SysNative\drivers\cpuz132_x64.sys (Windows (R) Codename Longhorn DDK provider)DRV:64bit: - (asusgsb) -- C:\Windows\SysNative\drivers\asusgsb.sys (ASUSTeK Computer Inc.)DRV:64bit: - (EIO_XP) -- C:\Windows\SysNative\drivers\EIO64_XP.sys (ASUSTeK Computer Inc.)DRV - (SASKUTIL) -- C:\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com)DRV - (SASDIFSV) -- C:\Program Files (x86)\SUPERAntiSpyware\SASDIFSV.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com)DRV - (SASENUM) -- C:\Program Files (x86)\SUPERAntiSpyware\SASENUM.SYS ( SUPERAdBlocker.com and SUPERAntiSpyware.com)DRV - (GVTDrv64) -- C:\Windows\GVTDrv64.sys ()DRV - (gdrv) -- C:\Windows\gdrv.sys (Windows (R) Server 2003 DDK provider)DRV - (etdrv) -- C:\Windows\etdrv.sys (Windows (R) Server 2003 DDK provider)DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)DRV - (AODDriver) -- C:\Program Files (x86)\GIGABYTE\ET6\amd64\AODDriver.sys ()  ========== Standard Registry (SafeList) ==========  ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRCIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htmIE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC  IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0   IE - HKU\S-1-5-21-2842271486-4027871970-1990135129-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [Binary data over 100 bytes]IE - HKU\S-1-5-21-2842271486-4027871970-1990135129-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blankIE - HKU\S-1-5-21-2842271486-4027871970-1990135129-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/IE - HKU\S-1-5-21-2842271486-4027871970-1990135129-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-usIE - HKU\S-1-5-21-2842271486-4027871970-1990135129-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 80 EE 36 6A 18 5E CA 01  [binary data]IE - HKU\S-1-5-21-2842271486-4027871970-1990135129-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}IE - HKU\S-1-5-21-2842271486-4027871970-1990135129-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRCIE - HKU\S-1-5-21-2842271486-4027871970-1990135129-1001\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&AF=110410&babsrc=SP_ss&mntrId=59c204a300000000000000241dd79ce3IE - HKU\S-1-5-21-2842271486-4027871970-1990135129-1001\..\SearchScopes\{19C5A942-F1C7-45BE-A1EB-9EAD485170E1}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}IE - HKU\S-1-5-21-2842271486-4027871970-1990135129-1001\..\SearchScopes\{9B0FE47C-BED4-44E4-8C07-D7F906B08B5A}: "URL" = http://www.ask.com/web?q={searchTerms}&qsrc=0&o=1690&l=dirIE - HKU\S-1-5-21-2842271486-4027871970-1990135129-1001\..\SearchScopes\{BF0212BE-AB43-4D91-BDE1-0C74CEF5B145}: "URL" = http://search.avg.com/route/?d=4ceb1f24&v=6.11.25.1&i=23&tp=chrome&q={searchTerms}&lng={language}&iy=&ychte=usIE - HKU\S-1-5-21-2842271486-4027871970-1990135129-1001\..\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}: "URL" = http://toolbar.ask.com/toolbarv/askRedirect?gct=&gc=1&q={searchTerms}&crm=1&toolbar=MP3R3IE - HKU\S-1-5-21-2842271486-4027871970-1990135129-1001\..\SearchScopes\{F9FAE696-9B1B-44A2-A503-83CBBFE4D10C}: "URL" = http://search.yahoo.com/search?p={searchTerms}&b={startPage?}&fr=ie8IE - HKU\S-1-5-21-2842271486-4027871970-1990135129-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0IE - HKU\S-1-5-21-2842271486-4027871970-1990135129-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local  ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "Search the web (Babylon)"FF - prefs.js..browser.search.order.1: "Search the web (Babylon)"FF - prefs.js..browser.search.selectedEngine: "Search the web (Babylon)"FF - prefs.js..browser.startup.homepage: "http://search.babylon.com/?AF=110410&babsrc=HP_ss&mntrId=59c204a300000000000000241dd79ce3"FF - prefs.js..keyword.URL: "http://search.babylon.com/?AF=110410&babsrc=adbartrp&mntrId=59c204a300000000000000241dd79ce3&q="FF - user.js - File not found FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not foundFF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.0: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll File not foundFF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.4: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.104.0: C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll File not foundFF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.116.0: C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll (ESN Social Software AB)FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.118.0: C:\Program Files (x86)\Battlelog Web Plugins\1.118.0\npesnlaunch.dll (ESN Social Software AB)FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.96.0: C:\Program Files (x86)\Battlelog Web Plugins\1.96.0\npesnlaunch.dll File not foundFF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files (x86)\AVG\AVG10\Firefox\FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files (x86)\AVG\AVG10\Toolbar\Firefox\avg@igearedFF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011/12/23 19:59:13 | 000,000,000 | ---D | M]FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/04/12 18:04:37 | 000,000,000 | ---D | M]FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012/02/06 16:29:03 | 000,000,000 | ---D | M]FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011/12/23 19:59:13 | 000,000,000 | ---D | M] [2009/10/24 23:14:41 | 000,000,000 | ---D | M] (No name found) -- C:\Users\steve\AppData\Roaming\Mozilla\Extensions[2011/10/02 18:31:48 | 000,000,000 | ---D | M] (No name found) -- C:\Users\steve\AppData\Roaming\Mozilla\Firefox\Profiles\bak\w5083rzp.profile 2\extensions[2011/10/02 18:31:45 | 000,000,000 | ---D | M] (FireShot) -- C:\Users\steve\AppData\Roaming\Mozilla\Firefox\Profiles\bak\w5083rzp.profile 2\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}[2011/10/02 18:31:45 | 000,000,000 | ---D | M] (Garmin Communicator) -- C:\Users\steve\AppData\Roaming\Mozilla\Firefox\Profiles\bak\w5083rzp.profile 2\extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}[2011/10/02 18:31:48 | 000,000,000 | ---D | M] ("Ask Toolbar for Firefox") -- C:\Users\steve\AppData\Roaming\Mozilla\Firefox\Profiles\bak\w5083rzp.profile 2\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}[2011/10/02 18:31:40 | 000,000,000 | ---D | M] (KidZui) -- C:\Users\steve\AppData\Roaming\Mozilla\Firefox\Profiles\bak\w5083rzp.profile 2\extensions\firefox@kidzui.com[2011/10/02 18:31:44 | 000,000,000 | ---D | M] (FlashCatch) -- C:\Users\steve\AppData\Roaming\Mozilla\Firefox\Profiles\bak\w5083rzp.profile 2\extensions\flashcatch-amo@flashcatch.com[2011/10/02 18:31:44 | 000,000,000 | ---D | M] (Flash Video Resources Downloader) -- C:\Users\steve\AppData\Roaming\Mozilla\Firefox\Profiles\bak\w5083rzp.profile 2\extensions\max@subfighter.com[2011/12/09 22:33:21 | 000,000,000 | ---D | M] (No name found) -- C:\Users\steve\AppData\Roaming\Mozilla\Firefox\Profiles\nejbf5ls.new\extensions[2011/11/12 11:17:02 | 000,000,000 | ---D | M] (FireShot) -- C:\Users\steve\AppData\Roaming\Mozilla\Firefox\Profiles\nejbf5ls.new\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}[2011/10/08 18:54:27 | 000,000,000 | ---D | M] (Garmin Communicator) -- C:\Users\steve\AppData\Roaming\Mozilla\Firefox\Profiles\nejbf5ls.new\extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}[2011/10/08 18:54:27 | 000,000,000 | ---D | M] ("Ask Toolbar for Firefox") -- C:\Users\steve\AppData\Roaming\Mozilla\Firefox\Profiles\nejbf5ls.new\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}[2011/10/08 18:54:27 | 000,000,000 | ---D | M] (KidZui) -- C:\Users\steve\AppData\Roaming\Mozilla\Firefox\Profiles\nejbf5ls.new\extensions\firefox@kidzui.com[2011/12/09 22:33:21 | 000,000,000 | ---D | M] (FlashCatch) -- C:\Users\steve\AppData\Roaming\Mozilla\Firefox\Profiles\nejbf5ls.new\extensions\flashcatch-amo@flashcatch.com[2011/10/08 18:54:27 | 000,000,000 | ---D | M] (Flash Video Resources Downloader) -- C:\Users\steve\AppData\Roaming\Mozilla\Firefox\Profiles\nejbf5ls.new\extensions\max@subfighter.com[2012/03/30 06:05:22 | 000,000,000 | ---D | M] (No name found) -- C:\Users\steve\AppData\Roaming\Mozilla\Firefox\Profiles\s859sw5f.default\extensions[2012/03/30 06:05:22 | 000,000,000 | ---D | M] ("I Want This") -- C:\Users\steve\AppData\Roaming\Mozilla\Firefox\Profiles\s859sw5f.default\extensions\crossriderapp2258@crossrider.com[2012/02/11 22:58:54 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions[2012/02/11 22:58:54 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions\ffxtlbr@babylon.com[2012/04/12 18:04:36 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll[2010/09/15 05:50:38 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll[2012/02/11 22:58:54 | 000,002,310 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml[2012/04/12 18:04:32 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml[2012/04/12 18:04:32 | 000,002,040 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml ========== Chrome  ========== CHR - default_search_provider: Google (Enabled)CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google<img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite117" alt=":eek:" title="Eek!    :eek:" loading="lazy" data-shortname=":eek:" />riginalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewerCHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\18.0.1025.152\ppGoogleNaClPluginChrome.dllCHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\18.0.1025.152\pdf.dllCHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\18.0.1025.152\gcswf32.dllCHR - plugin: Shockwave Flash (Disabled) = C:\Users\steve\AppData\Local\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dllCHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dllCHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dllCHR - plugin: Java Deployment Toolkit 6.0.220.4 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dllCHR - plugin: Java(TM) Platform SE 6 U22 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dllCHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dllCHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dllCHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dllCHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dllCHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dllCHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dllCHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dllCHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLLCHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLLCHR - plugin: ESN Launch Mozilla Plugin (Enabled) = C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dllCHR - plugin: ESN Launch Mozilla Plugin (Enabled) = C:\Program Files (x86)\Battlelog Web Plugins\1.118.0\npesnlaunch.dllCHR - plugin: ESN Sonar API (Enabled) = C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dllCHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dllCHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dllCHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dllCHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dllCHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dllCHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dllCHR - plugin: Windows Activation Technologies (Enabled) = C:\Windows\system32\Wat\npWatWeb.dllCHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dllCHR - Extension: CacheList = C:\Users\steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\amhhdbdhoghppijbjfdkiaconkmfbbpa\2.3.6_0\CHR - Extension: YouTube = C:\Users\steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\CHR - Extension: Google Search = C:\Users\steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\CHR - Extension: Apple Shooter = C:\Users\steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\ingecjekeggadjbbklelffkgeppklgnm\2.1_0\CHR - Extension: Image Properties Context Menu = C:\Users\steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\khagclindddokccfbmfmckaflngbmpon\0.7.5_0\CHR - Extension: Google Maps = C:\Users\steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh\5.2.3_0\CHR - Extension: Plants vs Zombies = C:\Users\steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmcegpfdgcoclcdfkjahiimlikdpnina\1.0.5_0\CHR - Extension: Gmail = C:\Users\steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2012/04/10 07:53:36 | 000,442,124 | R--- | M]) - C:\Windows\SysNative\drivers\etc\hostsO1 - Hosts: 127.0.0.1    www.007guard.comO1 - Hosts: 127.0.0.1    007guard.comO1 - Hosts: 127.0.0.1    008i.comO1 - Hosts: 127.0.0.1    www.008k.comO1 - Hosts: 127.0.0.1    008k.comO1 - Hosts: 127.0.0.1    www.00hq.comO1 - Hosts: 127.0.0.1    00hq.comO1 - Hosts: 127.0.0.1    010402.comO1 - Hosts: 127.0.0.1    www.032439.comO1 - Hosts: 127.0.0.1    032439.comO1 - Hosts: 127.0.0.1    www.0scan.comO1 - Hosts: 127.0.0.1    0scan.comO1 - Hosts: 127.0.0.1    1000gratisproben.comO1 - Hosts: 127.0.0.1    www.1000gratisproben.comO1 - Hosts: 127.0.0.1    1001namen.comO1 - Hosts: 127.0.0.1    www.1001namen.comO1 - Hosts: 127.0.0.1    100888290cs.comO1 - Hosts: 127.0.0.1    www.100888290cs.comO1 - Hosts: 127.0.0.1    www.100sexlinks.comO1 - Hosts: 127.0.0.1    100sexlinks.comO1 - Hosts: 127.0.0.1    10sek.comO1 - Hosts: 127.0.0.1    www.10sek.comO1 - Hosts: 127.0.0.1    www.1-2005-search.comO1 - Hosts: 127.0.0.1    1-2005-search.comO1 - Hosts: 127.0.0.1    www.123fporn.infoO1 - Hosts: 15190 more lines...O2:64bit: - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG10\avgssiea.dll File not foundO2 - BHO: (AskBar BHO) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll (Ask.com)O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG10\avgssie.dll File not foundO2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll File not foundO3 - HKLM\..\Toolbar: (Ask Toolbar) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll (Ask.com)O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll File not foundO3 - HKU\S-1-5-21-2842271486-4027871970-1990135129-1001\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll File not foundO4:64bit: - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)O4:64bit: - HKLM..\Run: [IntelliPoint] c:\Program Files\Microsoft IntelliPoint\ipoint.exe (Microsoft Corporation)O4:64bit: - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)O4:64bit: - HKLM..\Run: [Start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe (Logitech Inc.)O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)O4 - HKLM..\Run: [Logitech G35] C:\Program Files (x86)\Logitech\G35\G35.exe (Logitech(c))O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)O4 - HKU\S-1-5-21-2842271486-4027871970-1990135129-1001..\Run: [conhost] C:\Users\steve\AppData\Roaming\Microsoft\conhost.exe File not foundO4 - HKU\S-1-5-21-2842271486-4027871970-1990135129-1001..\Run: [EADM] C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts)O4 - HKU\S-1-5-21-2842271486-4027871970-1990135129-1001..\Run: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe (Apple Inc.)O4 - HKU\S-1-5-21-2842271486-4027871970-1990135129-1001..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)O4 - HKU\S-1-5-21-2842271486-4027871970-1990135129-1004..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not foundO4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not foundO4 - HKU\S-1-5-21-2842271486-4027871970-1990135129-1001..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil11e_Plugin.exe (Adobe Systems, Inc.)O4 - HKU\S-1-5-21-2842271486-4027871970-1990135129-1004..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not foundO4 - Startup: C:\Users\steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\NuvaTime.lnk.disabled ()O4 - Startup: C:\Users\steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk.disabled ()O4 - Startup: C:\Users\steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\QiGO Discovery Agent.lnk = C:\Users\steve\AppData\Roaming\Microsoft\Installer\{38739316-8A0C-4E60-8675-B5F6281B01FD}\_DD752229196EA0E7BC2D3D.exe ()O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3O7 - HKU\S-1-5-21-2842271486-4027871970-1990135129-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideSCAHealth = 1O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)O1364bit: - gopher Prefix: missingO13 - gopher Prefix: missingO16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)O16 - DPF: {0D6709DD-4ED8-40CA-B459-2757AEEF7BEE} http://download.gigabyte.com.tw/object/Dldrv.ocx (Dldrv2 Control)O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab (Facebook Photo Uploader 5 Control)O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_17)O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 71.252.0.12O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1D8BAD41-EF15-4C7A-834C-7F42EB7A7822}: DhcpNameServer = 192.168.1.1 71.252.0.12O18:64bit: - Protocol\Handler\avgsecuritytoolbar - No CLSID value foundO18:64bit: - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG10\avgppa.dll File not foundO18:64bit: - Protocol\Handler\ms-help - No CLSID value foundO18:64bit: - Protocol\Handler\skype4com - No CLSID value foundO18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll File not foundO18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG10\avgpp.dll File not foundO18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) -  File not foundO20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not foundO20:64bit: - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)O20 - Winlogon\Notify\LBTWlgn: DllName - (Reg Error: Value error.) - Reg Error: Value error. File not foundO21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files (x86)\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)O32 - HKLM CDRom: AutoRun - 1O34 - HKLM BootExecute: (autocheck autochk *)O35:64bit: - HKLM\..comfile [open] -- "%1" %*O35:64bit: - HKLM\..exefile [open] -- "%1" %*O35 - HKLM\..comfile [open] -- "%1" %*O35 - HKLM\..exefile [open] -- "%1" %*O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*O37 - HKLM\...com [@ = comfile] -- "%1" %*O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2012/04/12 23:32:04 | 000,593,920 | ---- | C] (OldTimer Tools) -- C:\Users\steve\Desktop\OTL.exe[2012/04/12 22:44:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation[2012/04/12 22:43:58 | 000,837,952 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\easyupdatusapiu64.dll[2012/04/12 22:43:24 | 000,000,000 | ---D | C] -- C:\Windows\LastGood[2012/04/12 22:42:51 | 000,174,184 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda64v.sys[2012/04/12 22:42:51 | 000,029,288 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdap64.dll[2012/04/12 22:42:50 | 024,796,992 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll[2012/04/12 22:42:50 | 024,742,720 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll[2012/04/12 22:42:50 | 018,871,616 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll[2012/04/12 22:42:50 | 017,248,576 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll[2012/04/12 22:42:50 | 015,693,120 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll[2012/04/12 22:42:50 | 007,581,504 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll[2012/04/12 22:42:50 | 005,578,560 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll[2012/04/12 22:42:50 | 002,542,912 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll[2012/04/12 22:42:50 | 002,401,088 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll[2012/04/12 22:42:50 | 002,232,128 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll[2012/04/12 22:42:50 | 002,099,520 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll[2012/04/12 22:42:50 | 000,068,928 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll[2012/04/12 22:42:50 | 000,061,248 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll[2012/04/12 22:13:14 | 000,000,000 | ---D | C] -- C:\Users\steve\AppData\Local\Origin[2012/04/12 22:12:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin[2012/04/12 22:12:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Origin[2012/04/12 19:13:38 | 000,000,000 | ---D | C] -- C:\Users\steve\Documents\Battlefield 3[2012/04/12 08:18:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 3[2012/04/11 23:00:20 | 007,041,856 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll[2012/04/11 23:00:20 | 001,451,840 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdagenco6420103.dll[2012/04/11 23:00:20 | 000,962,368 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvumdshimx.dll[2012/04/11 23:00:20 | 000,812,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll[2012/04/11 23:00:20 | 000,364,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdecodemft.dll[2012/04/11 23:00:20 | 000,301,376 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvdecodemft.dll[2012/04/11 23:00:20 | 000,260,416 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll[2012/04/11 23:00:20 | 000,215,360 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll[2012/04/09 20:57:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared[2012/04/09 20:54:58 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\NISx64[2012/04/09 20:54:58 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\NISx64\1301000.01C[2012/04/09 20:04:09 | 002,071,600 | ---- | C] (Kaspersky Lab ZAO) -- C:\iexplorer_1.exe[2012/04/09 08:22:40 | 000,000,000 | ---D | C] -- C:\Users\steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SMART HDD[2012/03/31 09:06:44 | 000,000,000 | ---D | C] -- C:\Users\steve\AppData\Roaming\AdobeLensProfileDownloader[2012/03/31 09:06:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe Lens Profile Downloader[2012/03/30 18:34:00 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe[2012/03/30 18:27:10 | 000,000,000 | ---D | C] -- C:\Users\steve\Desktop\Adobe[2012/03/29 21:56:04 | 000,000,000 | ---D | C] -- C:\Users\steve\Documents\BioWare[2012/03/17 10:00:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes[2012/03/17 10:00:04 | 000,000,000 | ---D | C] -- C:\Program Files\iPod[2012/03/17 10:00:03 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes[2012/03/17 10:00:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes[2012/03/16 19:55:55 | 000,000,000 | ---D | C] -- C:\Users\steve\Documents\Adobe[2012/03/14 07:31:44 | 005,559,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe[2012/03/14 07:31:44 | 003,968,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe[2012/03/14 07:31:43 | 003,913,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe[4 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ][3 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ][2 C:\Users\steve\Documents\*.tmp files -> C:\Users\steve\Documents\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2012/04/12 23:30:57 | 000,593,920 | ---- | M] (OldTimer Tools) -- C:\Users\steve\Desktop\OTL.exe[2012/04/12 23:27:00 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job[2012/04/12 22:22:54 | 000,189,248 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe[2012/04/12 22:22:43 | 000,189,248 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0[2012/04/12 22:22:43 | 000,075,136 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe[2012/04/12 22:12:26 | 000,000,987 | ---- | M] () -- C:\Users\Public\Desktop\Origin.lnk[2012/04/12 18:04:38 | 000,002,052 | ---- | M] () -- C:\Users\steve\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk[2012/04/12 08:18:05 | 000,001,178 | ---- | M] () -- C:\Users\Public\Desktop\Battlefield 3.lnk[2012/04/12 07:27:00 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job[2012/04/12 00:42:53 | 000,013,456 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0[2012/04/12 00:42:53 | 000,013,456 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0[2012/04/12 00:35:29 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat[2012/04/12 00:35:25 | 4288,274,430 | -HS- | M] () -- C:\hiberfil.sys[2012/04/10 07:53:36 | 000,442,124 | R--- | M] () -- C:\Windows\SysNative\drivers\etc\hosts[2012/04/10 07:49:59 | 000,001,087 | ---- | M] () -- C:\Users\steve\Desktop\SpywareBlaster.lnk[2012/04/10 07:47:06 | 000,002,348 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk[2012/04/09 22:00:17 | 000,001,117 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk[2012/04/09 20:57:29 | 002,018,317 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1301000.01C\Cat.DB[2012/04/09 20:04:09 | 002,071,600 | ---- | M] (Kaspersky Lab ZAO) -- C:\iexplorer_1.exe[2012/04/09 08:22:40 | 000,000,675 | ---- | M] () -- C:\Users\steve\Application Data\Microsoft\Internet Explorer\Quick Launch\SMART_HDD.lnk[2012/04/09 08:22:40 | 000,000,651 | ---- | M] () -- C:\Users\steve\Desktop\SMART_HDD.lnk[2012/04/08 23:36:32 | 000,283,304 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr[2012/04/04 15:56:40 | 000,024,904 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys[2012/03/31 09:06:29 | 000,001,085 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Lens Profile Downloader.lnk[2012/03/30 18:35:01 | 000,002,019 | ---- | M] () -- C:\Users\Public\Desktop\Lightroom 4 64-bit.lnk[2012/03/25 11:15:33 | 000,018,960 | ---- | M] (Logitech, Inc.) -- C:\Windows\SysNative\drivers\LNonPnP.sys[2012/03/17 10:02:34 | 000,002,515 | ---- | M] () -- C:\Users\steve\Application Data\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk[2012/03/17 10:02:34 | 000,002,491 | ---- | M] () -- C:\Users\Public\Desktop\Safari.lnk[2012/03/17 10:00:39 | 000,001,787 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk[2012/03/16 19:26:52 | 000,782,702 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI[2012/03/16 19:26:52 | 000,662,408 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat[2012/03/16 19:26:52 | 000,122,236 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat[2012/03/15 19:09:46 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl[2012/03/14 07:48:20 | 000,429,288 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT[4 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ][3 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ][2 C:\Users\steve\Documents\*.tmp files -> C:\Users\steve\Documents\*.tmp -> ] ========== Files Created - No Company Name ========== [2012/04/12 22:12:26 | 000,000,987 | ---- | C] () -- C:\Users\Public\Desktop\Origin.lnk[2012/04/12 08:18:05 | 000,001,178 | ---- | C] () -- C:\Users\Public\Desktop\Battlefield 3.lnk[2012/04/11 23:01:53 | 002,515,790 | ---- | C] () -- C:\Windows\SysNative\nvcoproc.bin[2012/04/09 21:25:44 | 000,002,741 | ---- | C] () -- C:\Users\Public\Desktop\Nero StartSmart Essentials.lnk[2012/04/09 21:25:44 | 000,002,515 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk[2012/04/09 21:25:44 | 000,002,491 | ---- | C] () -- C:\Users\Public\Desktop\Safari.lnk[2012/04/09 21:25:44 | 000,002,348 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk[2012/04/09 21:25:44 | 000,002,346 | ---- | C] () -- C:\Users\Public\Desktop\Media Impression.lnk[2012/04/09 21:25:44 | 000,002,225 | ---- | C] () -- C:\Users\Public\Desktop\Need For Speed World.lnk[2012/04/09 21:25:44 | 000,002,216 | ---- | C] () -- C:\Users\Public\Desktop\Google Earth.lnk[2012/04/09 21:25:44 | 000,002,214 | ---- | C] () -- C:\Users\Public\Desktop\PHOTOfunSTUDIO 6.0 BD Edition.lnk[2012/04/09 21:25:44 | 000,002,171 | ---- | C] () -- C:\Users\Public\Desktop\HP Photosmart Essential 3.5.lnk[2012/04/09 21:25:44 | 000,002,140 | ---- | C] () -- C:\Users\Public\Desktop\SILKYPIX Developer Studio 3.1 SE.lnk[2012/04/09 21:25:44 | 000,002,139 | ---- | C] () -- C:\Users\Public\Desktop\Panorama Maker 4.lnk[2012/04/09 21:25:44 | 000,002,041 | ---- | C] () -- C:\Users\Public\Desktop\LightScribe.lnk[2012/04/09 21:25:44 | 000,002,019 | ---- | C] () -- C:\Users\Public\Desktop\Lightroom 4 64-bit.lnk[2012/04/09 21:25:44 | 000,002,016 | ---- | C] () -- C:\Users\Public\Desktop\ET6.lnk[2012/04/09 21:25:44 | 000,001,947 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk[2012/04/09 21:25:44 | 000,001,849 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk[2012/04/09 21:25:44 | 000,001,837 | ---- | C] () -- C:\Users\Public\Desktop\Opera.lnk[2012/04/09 21:25:44 | 000,001,787 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk[2012/04/09 21:25:44 | 000,001,628 | ---- | C] () -- C:\Users\Public\Desktop\Logitech Webcam Software  .lnk[2012/04/09 21:25:44 | 000,001,319 | ---- | C] () -- C:\Users\Public\Desktop\HP Solution Center.lnk[2012/04/09 21:25:44 | 000,001,170 | ---- | C] () -- C:\Users\Public\Desktop\TeamViewer 5.lnk[2012/04/09 21:25:44 | 000,001,165 | ---- | C] () -- C:\Users\Public\Desktop\Shop for HP Supplies.lnk[2012/04/09 21:25:44 | 000,001,140 | ---- | C] () -- C:\Users\Public\Desktop\OpenOffice.org 3.1.lnk[2012/04/09 21:25:44 | 000,001,117 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk[2012/04/09 21:25:44 | 000,001,080 | ---- | C] () -- C:\Users\Public\Desktop\Game Booster.lnk[2012/04/09 21:25:44 | 000,001,039 | ---- | C] () -- C:\Users\Public\Desktop\Content Transfer.lnk[2012/04/09 21:25:44 | 000,001,037 | ---- | C] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk[2012/04/09 21:25:44 | 000,000,830 | ---- | C] () -- C:\Users\Public\Desktop\Easy Media Player.lnk[2012/04/09 21:25:44 | 000,000,187 | ---- | C] () -- C:\Users\Public\Desktop\Photo & Video Editor Super LoiLoScope Download.url[2012/04/09 21:25:43 | 000,002,484 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PHOTOfunSTUDIO 6.0 BD Edition.lnk.disabled[2012/04/09 21:25:43 | 000,002,417 | ---- | C] () -- C:\Users\Public\Desktop\Babylon.lnk[2012/04/09 21:25:43 | 000,002,103 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk[2012/04/09 21:25:43 | 000,002,023 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk[2012/04/09 21:25:43 | 000,001,864 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk.disabled[2012/04/09 21:25:43 | 000,001,547 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk[2012/04/09 21:25:43 | 000,001,352 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk[2012/04/09 21:25:43 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk[2012/04/09 21:25:43 | 000,001,246 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk[2012/04/09 21:25:43 | 000,001,210 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk[2012/04/09 21:25:43 | 000,001,182 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 5.lnk[2012/04/09 21:25:43 | 000,001,085 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Lens Profile Downloader.lnk[2012/04/09 21:25:42 | 000,002,503 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safari.lnk[2012/04/09 21:25:42 | 000,001,849 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk[2012/04/09 21:25:42 | 000,001,330 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk[2012/04/09 21:25:41 | 000,001,901 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk[2012/04/09 21:25:41 | 000,001,158 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk[2012/04/09 21:25:40 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk[2012/04/09 21:25:40 | 000,001,058 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. OCR Registration.lnk[2012/04/09 21:25:38 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk[2012/04/09 21:25:38 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk[2012/04/09 21:25:38 | 000,002,027 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop Lightroom 4 64-bit.lnk[2012/04/09 21:25:38 | 000,001,097 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Lens Profile Downloader.lnk[2012/04/09 20:57:19 | 002,018,317 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1301000.01C\Cat.DB[2012/04/09 08:22:40 | 000,000,675 | ---- | C] () -- C:\Users\steve\Application Data\Microsoft\Internet Explorer\Quick Launch\SMART_HDD.lnk[2012/04/09 08:22:40 | 000,000,651 | ---- | C] () -- C:\Users\steve\Desktop\SMART_HDD.lnk[2012/01/10 01:42:23 | 000,111,932 | ---- | C] () -- C:\Windows\SysWow64\EPPICPrinterDB.dat[2012/01/10 01:42:23 | 000,031,053 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern131.dat[2012/01/10 01:42:23 | 000,027,417 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern121.dat[2012/01/10 01:42:23 | 000,026,154 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern1.dat[2012/01/10 01:42:23 | 000,024,903 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern3.dat[2012/01/10 01:42:23 | 000,021,390 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern5.dat[2012/01/10 01:42:23 | 000,020,148 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern2.dat[2012/01/10 01:42:23 | 000,011,811 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern4.dat[2012/01/10 01:42:23 | 000,004,943 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern6.dat[2012/01/10 01:42:23 | 000,001,146 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_DU.dat[2012/01/10 01:42:23 | 000,001,139 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_PT.dat[2012/01/10 01:42:23 | 000,001,139 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_BP.dat[2012/01/10 01:42:23 | 000,001,136 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_ES.dat[2012/01/10 01:42:23 | 000,001,129 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_FR.dat[2012/01/10 01:42:23 | 000,001,129 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_CF.dat[2012/01/10 01:42:23 | 000,001,120 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_IT.dat[2012/01/10 01:42:23 | 000,001,107 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_GE.dat[2012/01/10 01:42:23 | 000,001,104 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_EN.dat[2012/01/10 01:42:23 | 000,000,097 | ---- | C] () -- C:\Windows\SysWow64\PICSDK.ini[2011/12/23 19:56:40 | 000,221,312 | ---- | C] () -- C:\Windows\hpoins19.dat[2011/12/23 19:56:40 | 000,013,898 | ---- | C] () -- C:\Windows\hpomdl19.dat[2011/12/21 08:53:14 | 000,000,000 | ---- | C] () -- C:\Users\steve\AppData\Local\{092E70C7-0F85-432B-8EA1-99778C692ABF}[2011/12/20 13:18:10 | 000,195,732 | ---- | C] () -- C:\Windows\SysWow64\mlfcache.dat[2011/10/17 05:10:50 | 000,000,000 | ---- | C] () -- C:\Users\steve\AppData\Local\{71BAC429-A9BB-45F7-9D77-6439834FC593}[2011/10/15 00:54:52 | 000,321,856 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe[2011/09/27 21:14:53 | 000,013,444 | ---- | C] () -- C:\Users\steve\AppData\Roaming\SJEE47.668SJ[2011/03/23 17:38:33 | 000,000,644 | ---- | C] () -- C:\Windows\EReg515.dat[2011/03/23 17:38:17 | 000,000,460 | ---- | C] () -- C:\Windows\Disney.ini[2011/02/24 20:02:31 | 000,000,056 | ---- | C] () -- C:\ProgramData\ezsidmv.dat[2011/01/12 22:43:29 | 000,776,426 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI[2011/01/12 21:02:17 | 000,000,272 | ---- | C] () -- C:\Windows\wininit.ini[2010/12/16 22:21:30 | 002,434,856 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_bc2.exe[2010/10/03 19:04:57 | 000,003,584 | ---- | C] () -- C:\Users\steve\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini[2010/06/09 20:38:16 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini[2010/05/14 17:56:06 | 010,830,680 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll[2010/05/14 17:56:06 | 000,102,744 | ---- | C] () -- C:\Windows\SysWow64\LogiDPPApp.exe[2010/05/14 17:55:58 | 000,290,648 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll ========== Alternate Data Streams ========== @Alternate Data Stream - 3437 bytes -> C:\Users\steve\Documents\JanuaryGardenSproutNewsletter.eml:OECustomProperty@Alternate Data Stream - 105 bytes -> C:\ProgramData\TEMP:5C321E34< End of report ></blockquote>

Verification

Top