1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Hearing adverts in the background and google redirects to spam sites

Discussion in 'Virus & Other Malware Removal' started by croutonsoup, Nov 7, 2011.

Thread Status:
Not open for further replies.
  1. croutonsoup

    croutonsoup Thread Starter

    Joined:
    Nov 7, 2011
    Messages:
    17
    Hi guys I think I have malware on my computer! I hear commercials and I get redirected to spam sites on search pages!

    I couldn't get a hijackthis log file but I have OTL log file if that is ok?

    Help would be greatly appreciated!


    OTL logfile created on: 11/7/2011 8:38:22 PM - Run 1
    OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\hp\Desktop
    64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.7601.17514)
    Locale: 00000409 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

    2.75 Gb Total Physical Memory | 0.98 Gb Available Physical Memory | 35.57% Memory free
    5.49 Gb Paging File | 3.23 Gb Available in Paging File | 58.81% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
    Drive C: | 284.44 Gb Total Space | 207.97 Gb Free Space | 73.12% Space Free | Partition Type: NTFS
    Drive D: | 13.36 Gb Total Space | 2.21 Gb Free Space | 16.58% Space Free | Partition Type: NTFS

    Computer Name: HP-PC | User Name: hp | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

    ========== Processes (SafeList) ==========

    PRC - [2011/11/07 20:36:09 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\hp\Desktop\OTL.exe
    PRC - [2011/10/26 08:10:47 | 001,036,344 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    PRC - [2011/10/24 20:29:34 | 002,398,512 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2012\avgfws.exe
    PRC - [2011/10/24 20:29:16 | 002,415,456 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2012\avgtray.exe
    PRC - [2011/09/22 00:35:57 | 000,117,648 | R--- | M] (Symantec Corporation) -- C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccSvcHst.exe
    PRC - [2011/08/24 18:29:31 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    PRC - [2011/08/02 06:09:08 | 000,192,776 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
    PRC - [2011/01/25 16:40:22 | 000,092,216 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
    PRC - [2010/03/05 15:32:28 | 001,135,912 | ---- | M] () -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
    PRC - [2010/02/07 19:07:29 | 000,285,296 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
    PRC - [2010/01/15 12:49:20 | 000,255,536 | ---- | M] (McAfee, Inc.) -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe
    PRC - [2009/12/21 05:45:56 | 000,039,424 | ---- | M] (Nullsoft) -- C:\Program Files (x86)\Winamp\winampa.exe
    PRC - [2009/07/25 01:24:02 | 000,427,304 | ---- | M] (CyberLink Corp.) -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe
    PRC - [2009/07/24 03:45:52 | 000,128,296 | ---- | M] (CyberLink Corp.) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
    PRC - [2009/07/23 18:37:16 | 000,206,120 | ---- | M] (CyberLink) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe


    ========== Modules (No Company Name) ==========

    MOD - [2011/10/27 13:49:08 | 001,051,136 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\1049a76b3de293df726d380932215c91\System.Management.ni.dll
    MOD - [2011/10/27 13:38:20 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\07cdef1a740151932dcf161f3306bd9c\PresentationFramework.Aero.ni.dll
    MOD - [2011/10/27 13:38:01 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\b2622080e047040fa044dd21a04ff10d\System.Runtime.Remoting.ni.dll
    MOD - [2011/10/27 13:37:59 | 006,611,456 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\f8196c3588c2229e84516af4b6a0ee60\System.Data.ni.dll
    MOD - [2011/10/27 13:37:49 | 014,339,072 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\70e2ca33ffa52c743285dc5b4910a229\PresentationFramework.ni.dll
    MOD - [2011/10/27 13:37:34 | 012,433,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\6e592e424a204aafeadbe22b6b31b9db\System.Windows.Forms.ni.dll
    MOD - [2011/10/27 13:37:27 | 001,587,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\3b2cfd85528a27eb71dc41d8067359a1\System.Drawing.ni.dll
    MOD - [2011/10/27 13:37:25 | 000,185,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\93df5ea9646ad11a21517e4ab1d803d9\UIAutomationTypes.ni.dll
    MOD - [2011/10/27 13:37:24 | 012,234,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\7c94a121334aeca7553c7f01290740f0\PresentationCore.ni.dll
    MOD - [2011/10/27 13:37:11 | 003,347,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\d7a64c28cf0c90e6c48af4f7d6f9ed41\WindowsBase.ni.dll
    MOD - [2011/10/27 13:37:05 | 005,453,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\130ad4d9719e566ca933ac7158a04203\System.Xml.ni.dll
    MOD - [2011/10/27 13:37:01 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\2d5bcbeb9475ef62189f605bcca1cec6\System.Configuration.ni.dll
    MOD - [2011/10/27 13:37:00 | 007,963,648 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\abab08afa60a6f06bdde0fcc9649c379\System.ni.dll
    MOD - [2011/10/27 13:36:54 | 011,490,304 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\a1a82db68b3badc7c27ea1f6579d22c5\mscorlib.ni.dll
    MOD - [2011/10/26 08:10:46 | 000,420,920 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\15.0.874.106\ppgooglenaclpluginchrome.dll
    MOD - [2011/10/26 08:10:45 | 003,702,840 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\15.0.874.106\pdf.dll
    MOD - [2011/10/26 08:09:09 | 000,122,952 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\15.0.874.106\avutil-51.dll
    MOD - [2011/10/26 08:09:07 | 000,222,280 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\15.0.874.106\avformat-53.dll
    MOD - [2011/10/26 08:09:06 | 001,745,992 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\15.0.874.106\avcodec-53.dll
    MOD - [2011/10/26 05:14:43 | 008,587,936 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\15.0.874.106\gcswf32.dll
    MOD - [2011/08/27 11:46:26 | 000,928,256 | ---- | M] () -- C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\qv8i0ays.default\extensions\[email protected]\platform\WINNT_x86-msvc\components\lpxpcom.dll
    MOD - [2011/08/24 18:29:32 | 001,014,232 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\js3250.dll
    MOD - [2011/08/11 20:17:45 | 006,277,280 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
    MOD - [2011/07/24 20:08:56 | 000,123,448 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\HP.ActiveSupportLibrary\2.0.0.1__01a974bc1760f423\HP.ActiveSupportLibrary.dll
    MOD - [2010/11/05 01:58:05 | 002,927,616 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
    MOD - [2010/03/05 15:32:36 | 000,095,528 | ---- | M] () -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
    MOD - [2010/03/05 15:32:28 | 001,135,912 | ---- | M] () -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
    MOD - [2009/11/03 15:51:42 | 000,067,872 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
    MOD - [2009/07/25 01:24:16 | 000,275,848 | ---- | M] () -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLCapEngine.dll
    MOD - [2009/07/25 01:24:16 | 000,124,288 | ---- | M] () -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLSchMgr.dll
    MOD - [2009/07/25 01:24:14 | 000,349,480 | ---- | M] () -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLTinyDB.dll
    MOD - [2009/07/23 18:37:14 | 000,931,112 | ---- | M] () -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll
    MOD - [2009/07/16 00:51:04 | 000,061,440 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\PCAlerts\PCAlertsPillar.dll
    MOD - [2009/07/16 00:51:02 | 000,131,072 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECLibrary.dll
    MOD - [2009/07/16 00:50:58 | 000,040,960 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingServer.dll
    MOD - [2009/07/16 00:50:56 | 000,036,864 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingClients.dll
    MOD - [2009/07/16 00:50:56 | 000,007,680 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\RemotingClient.dll
    MOD - [2009/07/16 00:50:54 | 000,005,632 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingInterface.dll
    MOD - [2009/07/16 00:50:52 | 000,018,944 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingMessages.dll
    MOD - [2009/07/16 00:50:44 | 000,028,672 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.Logging.dll
    MOD - [2009/06/17 18:40:16 | 007,745,536 | ---- | M] () -- C:\Program Files (x86)\Common Files\LightScribe\QtGui4.dll
    MOD - [2009/06/17 18:40:16 | 002,121,728 | ---- | M] () -- C:\Program Files (x86)\Common Files\LightScribe\QtCore4.dll
    MOD - [2009/06/17 18:40:16 | 000,135,168 | ---- | M] () -- C:\Program Files (x86)\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll


    ========== Win32 Services (SafeList) ==========

    SRV:64bit: - [2009/07/22 01:33:32 | 000,240,128 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\stacsv64.exe -- (STacSV)
    SRV:64bit: - [2009/07/14 01:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
    SRV:64bit: - [2009/07/08 20:49:02 | 000,030,520 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\Windows\SysNative\hpservice.exe -- (hpsrv)
    SRV:64bit: - [2009/07/02 18:16:06 | 000,203,264 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
    SRV:64bit: - [2009/03/02 21:42:58 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe -- (AESTFilters)
    SRV - [2011/10/24 20:29:34 | 002,398,512 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2012\avgfws.exe -- (avgfws)
    SRV - [2011/10/12 06:25:22 | 004,433,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [On_Demand | Stopped] -- C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe -- (AVGIDSAgent)
    SRV - [2011/09/22 00:35:57 | 000,117,648 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccSvcHst.exe -- (Norton Internet Security)
    SRV - [2011/08/02 06:09:08 | 000,192,776 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe -- (avgwd)
    SRV - [2011/01/25 16:40:22 | 000,092,216 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe -- (HPDrvMntSvc.exe)
    SRV - [2010/09/30 21:44:46 | 000,246,520 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe -- (GameConsoleService)
    SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
    SRV - [2010/01/15 12:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService)
    SRV - [2009/06/10 21:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
    SRV - [2009/02/22 19:00:00 | 000,129,584 | ---- | M] (EasyBits Sofware AS) [Auto | Running] -- C:\Windows\SysWOW64\ezsvc7.dll -- (ezSharedSvc)


    ========== Driver Services (SafeList) ==========

    DRV:64bit: - [2011/10/11 00:58:53 | 000,561,800 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NISx64\1008030.006\cchpx64.sys -- (ccHP)
    DRV:64bit: - [2011/10/07 06:23:46 | 000,283,728 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgldx64.sys -- (Avgldx64)
    DRV:64bit: - [2011/09/22 00:35:58 | 000,279,160 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NISx64\1008030.006\symtdi.sys -- (SYMTDI)
    DRV:64bit: - [2011/09/13 06:30:08 | 000,037,456 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgrkx64.sys -- (Avgrkx64)
    DRV:64bit: - [2011/08/08 06:08:58 | 000,046,672 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgmfx64.sys -- (Avgmfx64)
    DRV:64bit: - [2011/07/11 01:14:36 | 000,375,376 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtdia.sys -- (Avgtdia)
    DRV:64bit: - [2011/07/11 01:14:08 | 000,029,776 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
    DRV:64bit: - [2011/07/11 01:14:06 | 000,120,400 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
    DRV:64bit: - [2011/07/11 01:14:06 | 000,026,704 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AVGIDSEH.sys -- (AVGIDSEH)
    DRV:64bit: - [2011/05/23 01:03:28 | 000,048,992 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgfwd6a.sys -- (Avgfwfd)
    DRV:64bit: - [2011/03/11 06:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
    DRV:64bit: - [2011/03/11 06:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
    DRV:64bit: - [2010/11/20 13:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
    DRV:64bit: - [2010/11/20 11:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
    DRV:64bit: - [2010/11/20 09:37:42 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
    DRV:64bit: - [2010/01/28 12:34:32 | 000,117,248 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ewusbmdm.sys -- (hwdatacard)
    DRV:64bit: - [2009/11/18 12:04:44 | 000,172,592 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS -- (SymEvent)
    DRV:64bit: - [2009/09/22 02:47:14 | 001,484,800 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
    DRV:64bit: - [2009/08/22 07:25:17 | 000,476,720 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NISx64\1008030.006\srtsp64.sys -- (SRTSP)
    DRV:64bit: - [2009/08/22 07:25:17 | 000,402,992 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\NISx64\1008030.006\SymEFA64.sys -- (SymEFA)
    DRV:64bit: - [2009/08/22 07:25:17 | 000,334,384 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NISx64\1008030.006\BHDrvx64.sys -- (BHDrvx64)
    DRV:64bit: - [2009/08/22 07:25:17 | 000,032,304 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NISx64\1008030.006\srtspx64.sys -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
    DRV:64bit: - [2009/08/22 07:25:17 | 000,031,280 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\SymIMV.sys -- (SymIM)
    DRV:64bit: - [2009/07/22 01:33:32 | 000,487,936 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA)
    DRV:64bit: - [2009/07/14 23:16:34 | 000,273,456 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
    DRV:64bit: - [2009/07/14 01:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
    DRV:64bit: - [2009/07/14 01:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
    DRV:64bit: - [2009/07/14 01:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
    DRV:64bit: - [2009/07/08 20:49:08 | 000,030,008 | ---- | M] (Hewlett-Packard) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\hpdskflt.sys -- (hpdskflt)
    DRV:64bit: - [2009/07/08 20:48:50 | 000,041,272 | ---- | M] (Hewlett-Packard) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Accelerometer.sys -- (Accelerometer)
    DRV:64bit: - [2009/07/02 18:51:30 | 006,036,480 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
    DRV:64bit: - [2009/06/29 18:17:00 | 000,070,656 | ---- | M] (ENE TECHNOLOGY INC.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\enecir.sys -- (enecir)
    DRV:64bit: - [2009/06/24 19:00:18 | 000,216,576 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
    DRV:64bit: - [2009/06/10 21:01:11 | 001,485,312 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTDPV6.SYS -- (SrvHsfV92)
    DRV:64bit: - [2009/06/10 21:01:11 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS -- (SrvHsfWinac)
    DRV:64bit: - [2009/06/10 21:01:11 | 000,292,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTAZL6.SYS -- (SrvHsfHDA)
    DRV:64bit: - [2009/06/10 21:01:06 | 001,146,880 | ---- | M] (LSI Corp) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AgereSoftModem)
    DRV:64bit: - [2009/06/10 20:37:05 | 006,108,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
    DRV:64bit: - [2009/06/10 20:35:33 | 000,389,120 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
    DRV:64bit: - [2009/06/10 20:35:28 | 005,434,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netw5v64.sys -- (netw5v64) Intel(R)
    DRV:64bit: - [2009/06/10 20:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
    DRV:64bit: - [2009/06/10 20:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
    DRV:64bit: - [2009/06/10 20:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
    DRV:64bit: - [2009/06/10 20:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
    DRV:64bit: - [2009/06/05 10:20:26 | 000,114,192 | ---- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
    DRV:64bit: - [2009/05/23 06:52:30 | 000,215,040 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
    DRV:64bit: - [2009/05/18 14:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
    DRV:64bit: - [2009/05/05 05:30:28 | 000,016,440 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AtiPcie.sys -- (AtiPcie) AMD PCI Express (3GIO)
    DRV:64bit: - [2009/04/29 15:48:32 | 000,018,432 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
    DRV:64bit: - [2009/03/09 13:49:08 | 000,036,408 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
    DRV - [2011/08/04 19:13:22 | 000,481,912 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl)
    DRV - [2011/08/04 19:13:22 | 000,136,824 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
    DRV - [2009/10/28 22:37:21 | 000,466,992 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20100116.002\IDSviA64.sys -- (IDSVia64)
    DRV - [2009/07/14 01:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


    ========== Standard Registry (SafeList) ==========


    ========== Internet Explorer ==========

    IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_GB&c=94&bd=Pavilion&pf=cnnb
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_GB&c=94&bd=Pavilion&pf=cnnb
    IE - HKLM\..\URLSearchHook: {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files (x86)\BS_Player\tbBS_P.dll (Conduit Ltd.)

    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
    IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
    IE - HKCU\..\URLSearchHook: {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files (x86)\BS_Player\tbBS_P.dll (Conduit Ltd.)
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

    ========== FireFox ==========

    FF - prefs.js..browser.search.defaultthis.engineName: "BS Player Customized Web Search"
    FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=3&q={searchTerms}"
    FF - prefs.js..browser.startup.homepage: "google.co.uk"
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
    FF - prefs.js..extensions.enabledItems: [email protected]:1.75.0
    FF - prefs.js..extensions.enabledItems: {317B5128-0B0B-49b2-B2DB-1E7560E16C74}:2.7.1
    FF - prefs.js..extensions.enabledItems: {3e0e7d2a-070f-4a47-b019-91fe5385ba79}:3.1.2
    FF - prefs.js..extensions.enabledItems: {1E73965B-8B48-48be-9C8D-68B920ABC1C4}:12.0.0.1865
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}:6.0.29

    FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
    FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
    FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
    FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
    FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
    FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
    FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
    FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
    FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
    FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
    FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\hp\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{7BA52691-1876-45ce-9EE6-54BCB3B04BBC}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\coFFPlgn\ [2011/10/11 05:23:31 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files (x86)\AVG\AVG2012\Firefox4\ [2011/11/05 22:46:09 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.17\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011/08/24 18:29:36 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.17\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011/11/07 00:10:32 | 000,000,000 | ---D | M]

    [2010/02/15 19:23:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\hp\AppData\Roaming\Mozilla\Extensions
    [2011/11/07 19:41:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\qv8i0ays.default\extensions
    [2011/05/30 15:14:35 | 000,000,000 | ---D | M] (SeoQuake) -- C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\qv8i0ays.default\extensions\{317B5128-0B0B-49b2-B2DB-1E7560E16C74}
    [2011/08/11 20:13:59 | 000,000,000 | ---D | M] (AddThis) -- C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\qv8i0ays.default\extensions\{3e0e7d2a-070f-4a47-b019-91fe5385ba79}
    [2011/08/27 11:46:26 | 000,000,000 | ---D | M] (LastPass) -- C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\qv8i0ays.default\extensions\[email protected]
    [2010/12/15 14:48:16 | 000,000,921 | ---- | M] () -- C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\qv8i0ays.default\searchplugins\conduit.xml
    [2011/11/07 19:31:10 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
    [2011/05/02 20:40:54 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
    [2011/11/06 15:45:21 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}
    [2011/11/05 22:46:09 | 000,000,000 | ---D | M] (AVG Safe Search) -- C:\PROGRAM FILES (X86)\AVG\AVG2012\FIREFOX4
    [2011/10/11 05:23:31 | 000,000,000 | ---D | M] (Norton Toolbar) -- C:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NORTON\COFFPLGN
    [2011/11/07 19:31:09 | 000,000,000 | ---D | M] (Norton IPS) -- C:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NORTON\IPSFFPLGN
    [2011/11/06 15:45:03 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
    [2011/08/24 18:29:33 | 000,001,538 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazon-en-GB.xml
    [2011/08/24 18:29:33 | 000,000,947 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\chambers-en-GB.xml
    [2011/08/24 18:29:33 | 000,000,769 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-en-GB.xml
    [2011/08/24 18:29:33 | 000,001,135 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-en-GB.xml

    ========== Chrome ==========

    CHR - default_search_provider: Google (Enabled)
    CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:eek:riginalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
    CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
    CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\15.0.874.106\gcswf32.dll
    CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
    CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll
    CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll
    CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll
    CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll
    CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll
    CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll
    CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll
    CHR - plugin: Java Deployment Toolkit 6.0.230.5 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
    CHR - plugin: Java(TM) Platform SE 6 U20 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
    CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll
    CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
    CHR - plugin: DivX Web Player (Enabled) = C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
    CHR - plugin: Microsoft Office Live Plug-in for Firefox (Enabled) = C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll
    CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
    CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\15.0.874.106\ppGoogleNaClPluginChrome.dll
    CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\15.0.874.106\pdf.dll
    CHR - plugin: AVG Internet Security (Enabled) = C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.1857_0\plugins/avgnpss.dll
    CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
    CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll
    CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
    CHR - plugin: Unity Player (Enabled) = C:\Users\hp\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
    CHR - plugin: Default Plug-in (Enabled) = default_plugin
    CHR - Extension: AVG Safe Search = C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.1857_0\

    O1 HOSTS File: ([2011/11/06 14:14:40 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
    O1 - Hosts: 127.0.0.1 localhost
    O2:64bit: - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssiea.dll (AVG Technologies CZ, s.r.o.)
    O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
    O2:64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg64.dll (Google Inc.)
    O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll File not found
    O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
    O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
    O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll (AVG Technologies CZ, s.r.o.)
    O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\CoIEPlg.dll (Symantec Corporation)
    O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\IPSBHO.dll (Symantec Corporation)
    O2 - BHO: (AOL Toolbar BHO) - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files (x86)\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
    O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
    O2 - BHO: (BS Player Toolbar) - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files (x86)\BS_Player\tbBS_P.dll (Conduit Ltd.)
    O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
    O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
    O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\CoIEPlg.dll (Symantec Corporation)
    O3 - HKLM\..\Toolbar: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files (x86)\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
    O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
    O3 - HKLM\..\Toolbar: (BS Player Toolbar) - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files (x86)\BS_Player\tbBS_P.dll (Conduit Ltd.)
    O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
    O3 - HKCU\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\CoIEPlg.dll (Symantec Corporation)
    O3 - HKCU\..\Toolbar\WebBrowser: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files (x86)\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
    O3 - HKCU\..\Toolbar\WebBrowser: (BS Player Toolbar) - {FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5} - C:\Program Files (x86)\BS_Player\tbBS_P.dll (Conduit Ltd.)
    O4:64bit: - HKLM..\Run: [SmartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe ()
    O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
    O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files (x86)\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.)
    O4 - HKLM..\Run: [DivXUpdate] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe ()
    O4 - HKLM..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe (EasyBits Software AS)
    O4 - HKLM..\Run: [HPCam_Menu] c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
    O4 - HKLM..\Run: [NortonOnlineBackupReminder] C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe (Symantec Corporation)
    O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
    O4 - HKLM..\Run: [UpdatePRCShortCut] C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
    O4 - HKLM..\Run: [WinampAgent] C:\Program Files (x86)\Winamp\winampa.exe (Nullsoft)
    O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideFastUserSwitching = 0
    O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Recovery present
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableChangePassword = 0
    O8:64bit: - Extra context menu item: &AOL Toolbar Search - C:\ProgramData\AOL\ieToolbar\resources\en-GB\local\search.html ()
    O8:64bit: - Extra context menu item: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll (Google Inc.)
    O8 - Extra context menu item: &AOL Toolbar Search - C:\ProgramData\AOL\ieToolbar\resources\en-GB\local\search.html ()
    O8 - Extra context menu item: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll (Google Inc.)
    O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
    O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
    O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
    O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D3E1F0C9-5E24-4DE7-A5F9-49A1EAD07B4F}: DhcpNameServer = 192.168.1.1
    O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
    O18:64bit: - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgppa.dll (AVG Technologies CZ, s.r.o.)
    O18:64bit: - Protocol\Handler\livecall - No CLSID value found
    O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
    O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
    O18:64bit: - Protocol\Handler\msnim - No CLSID value found
    O18:64bit: - Protocol\Handler\symres - No CLSID value found
    O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
    O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.)
    O18 - Protocol\Handler\symres {AA1061FE-6C41-421f-9344-69640C9732AB} - C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\CoIEPlg.dll (Symantec Corporation)
    O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
    O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
    O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
    O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
    O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
    O28 - HKLM ShellExecuteHooks: {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll (EasyBits Software Corp.)
    O28 - HKLM ShellExecuteHooks: UPB:{B5A7F190-DDA6-4420-B3BA-52453494E6CD} - No CLSID value found.
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2011/05/02 17:46:52 | 000,000,000 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
    O34 - HKLM BootExecute: (autocheck autochk *)
    O34 - HKLM BootExecute: (C:\PROGRA~2\AVG\AVG2012\avgrsa.exe /sync /restart)
    O35:64bit: - HKLM\..comfile [open] -- "%1" %*
    O35:64bit: - HKLM\..exefile [open] -- "%1" %*
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
    O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
    O37 - HKLM\...com [@ = ComFile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*

    ========== Files/Folders - Created Within 30 Days ==========

    [2011/11/07 20:36:13 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\hp\Desktop\OTL.exe
    [2011/11/07 20:18:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Trend Micro
    [2011/11/07 20:18:27 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
    [2011/11/07 19:49:05 | 000,607,260 | R--- | C] (Swearware) -- C:\Users\hp\Desktop\dds.com
    [2011/11/07 15:56:20 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{50A67704-C0CA-4526-BAA5-03453075B9D7}
    [2011/11/07 15:56:08 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{D494883A-4C87-4F13-BEAD-C31FFFAC8044}
    [2011/11/07 03:55:40 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{D7917095-1C21-460F-AB7E-714F583BDE1D}
    [2011/11/07 03:55:28 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{98579692-AD9D-4262-9090-5D1D457A8A14}
    [2011/11/06 15:45:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
    [2011/11/06 15:45:19 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
    [2011/11/06 15:45:19 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
    [2011/11/06 15:45:19 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
    [2011/11/06 14:47:26 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{0CB90B00-D65B-4615-928A-37C334A921C4}
    [2011/11/06 14:46:39 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{746F82BD-05F3-4D88-9792-FC0BA2CDE8DF}
    [2011/11/06 14:46:07 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
    [2011/11/06 12:57:52 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
    [2011/11/06 12:57:52 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
    [2011/11/06 12:57:52 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
    [2011/11/06 12:56:42 | 000,000,000 | ---D | C] -- C:\ComboFix
    [2011/11/06 12:53:58 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
    [2011/11/06 12:48:14 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{F41B4BC5-6994-4A93-9989-F3D46F7A3377}
    [2011/11/06 12:43:20 | 000,000,000 | ---D | C] -- C:\Qoobox
    [2011/11/06 11:35:21 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{D864DA7C-248C-404A-83B0-F56CEE887CE5}
    [2011/11/06 11:31:43 | 000,012,872 | ---- | C] (SurfRight B.V.) -- C:\Windows\SysNative\bootdelete.exe
    [2011/11/06 11:23:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Hitman Pro
    [2011/11/05 23:35:26 | 000,000,000 | ---D | C] -- C:\$AVG
    [2011/11/05 22:46:40 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Roaming\AVG2012
    [2011/11/05 22:46:28 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
    [2011/11/05 22:46:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2012
    [2011/11/05 22:46:06 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\AVG
    [2011/11/05 22:44:52 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG2012
    [2011/11/05 22:44:52 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\AVG
    [2011/11/05 22:43:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVG
    [2011/11/05 22:40:16 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
    [2011/11/05 21:01:19 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{2F2F9BA8-831C-480F-9166-BBFAD2741EE9}
    [2011/11/05 21:01:06 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{F77C5EA6-0E13-409D-A8EF-AC178587E741}
    [2011/11/05 07:53:16 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{6990D3B6-C6CB-40F3-926E-15994684C187}
    [2011/11/05 07:53:04 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{242C7B05-E014-43DC-8E47-F0FE63280B5B}
    [2011/11/04 19:52:37 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{6349EC4B-365F-4DC9-AA4A-E86C2C676EAB}
    [2011/11/04 19:52:25 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{E7083E2F-BC58-4D97-914F-FACB3E3A2907}
    [2011/11/03 22:59:35 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{2E3ABDFF-4FF5-4600-9FDF-EDF6C59B31F6}
    [2011/11/03 22:59:24 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{4A289739-6430-478A-A4F6-C99DBE511CA8}
    [2011/11/03 10:58:58 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{17E97C06-829E-4D35-BD8E-51E3CBE4A061}
    [2011/11/03 10:58:47 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{EE221A0C-4AB7-4E3F-A135-ABF33B5ECA23}
    [2011/11/02 22:58:21 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{1D09EA33-E7C7-4966-93A9-601502BCE0D4}
    [2011/11/02 10:57:54 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{E3AA6C22-6F4A-4F1D-8025-3C1B5D583327}
    [2011/11/02 10:57:42 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{21AC90A9-FDFF-4BAD-B946-FD625D582B99}
    [2011/11/01 22:42:58 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{80859490-C630-4EBA-BD9B-85ADD741F01E}
    [2011/11/01 22:42:47 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{1DC7BA06-C6A8-42CC-B63F-983485AEE562}
    [2011/11/01 10:42:21 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{4E58AD2E-87A5-4400-A6B2-E1FCAC11F85E}
    [2011/11/01 10:42:09 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{64DD348A-A584-417D-875B-138387828544}
    [2011/10/31 22:41:42 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{F6DC4DA1-86A0-48D6-97E4-5A4280E83C51}
    [2011/10/31 10:41:16 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{F0043209-CBAB-41C0-9D09-55D90DB8E6BA}
    [2011/10/31 10:41:05 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{22069ACB-7F66-4CA7-95F1-53F8AC28812D}
    [2011/10/30 22:40:38 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{C9A8A57C-A145-4A86-9767-CB8E0E1734F1}
    [2011/10/30 22:40:26 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{2AAB4D47-E448-4FB4-A6BD-7EF171FD05AA}
    [2011/10/29 18:53:46 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{73903D24-F158-499B-B8CF-E5953B4352ED}
    [2011/10/29 06:53:21 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{CB4EBEDE-2C3C-4321-A5BB-E8F646C4A362}
    [2011/10/29 06:53:10 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{B957D254-EEAE-4658-9516-F9C580252F9B}
    [2011/10/28 18:11:14 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{96CA8485-E046-481D-ABC2-1E820423FE43}
    [2011/10/28 18:11:02 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{7417B91B-2B33-41EC-95EF-BB2D5409F310}
    [2011/10/28 06:10:37 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{0A3D98A8-0C7C-4B17-8058-CD465BD89322}
    [2011/10/28 06:10:25 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{1A1C5391-4E4D-437C-B628-8051F6B2F711}
    [2011/10/27 18:09:59 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{5DB6C9A9-41D3-4959-8D66-040955122EAB}
    [2011/10/27 18:09:47 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{53DAA90C-CD4F-48F2-9DF2-B6FBC82D69F2}
    [2011/10/27 06:09:20 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{FE504AB0-A11D-4D39-B568-9F4EC2575DD7}
    [2011/10/27 06:09:08 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{2D9885B8-EEE2-41E2-83F0-57F28E9BB6BD}
    [2011/10/26 18:08:41 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{AECFF393-0AB1-4CC6-8D5D-1095570FCC47}
    [2011/10/26 18:08:29 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{F09DCE8F-7D21-452B-88D8-045EA7131BCE}
    [2011/10/26 06:08:03 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{6CC08EC8-ACB3-43D4-8781-4F49328DA671}
    [2011/10/26 06:07:51 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{35A857E5-6169-4F16-88BE-0E36D572C765}
    [2011/10/25 18:07:24 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{9B420434-8840-4D8C-B123-436C2BE615F4}
    [2011/10/25 18:07:13 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{C968781A-81B6-404A-987C-ED9775EFA3A1}
    [2011/10/25 06:06:42 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{04C6007C-A94A-4F73-B550-F59B44806BC8}
    [2011/10/25 06:06:28 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{3A475E3E-B507-4144-B433-9D9A88970867}
    [2011/10/24 04:39:35 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{E1437002-A5D2-45CE-A09A-164AE1270224}
    [2011/10/24 04:39:21 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{C34B5789-BCC7-48F5-AA13-61A661F2C461}
    [2011/10/23 05:32:05 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{0CC14A31-DCAE-447C-8EF8-AD1C6997A02F}
    [2011/10/23 05:31:50 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{7B862A30-949D-4AC3-8A7D-955ABBD8C8CF}
    [2011/10/22 05:27:12 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{5ED85C2F-0646-4E80-9AD1-D3E5E4F50BAE}
    [2011/10/22 05:26:59 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{12F33D4A-EE48-4A3D-BED8-08105DE93365}
    [2011/10/21 13:21:17 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{97A54B3F-17D4-402A-9443-F677D2390592}
    [2011/10/21 13:21:05 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{92CE1E33-C314-4B1C-B9DF-397E98B7B974}
    [2011/10/21 01:20:39 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{3DC659C9-8E3B-4900-84D9-C3931FC6E391}
    [2011/10/21 01:20:28 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{470BC5FD-AAEF-47F3-A025-16EA3FF48749}
    [2011/10/20 13:19:55 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{58A2774C-A44B-4252-BF81-FFA64AA1EF67}
    [2011/10/20 13:19:43 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{A11661A7-BB27-4132-87EE-28A2863FF6D5}
    [2011/10/20 01:19:16 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{676E9225-7BE7-47B8-B701-1343EA2EBD95}
    [2011/10/20 01:19:05 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{D9C0D14A-175D-4508-BF76-C9E8D3301541}
    [2011/10/19 13:18:38 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{1AB28BC9-1DF5-454B-8508-D8E9235B0078}
    [2011/10/19 13:18:27 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{7CEB7D76-54C7-4337-A003-52661487994C}
    [2011/10/19 01:17:51 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{E60A9DE6-129D-4CE6-968D-83C43524E110}
    [2011/10/19 01:17:36 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{7DB1951C-26B9-4394-A6A5-C0E63062FF99}
    [2011/10/18 06:04:46 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{867CC2EE-AC0F-4D73-AD9D-298A8CAE256E}
    [2011/10/18 06:04:34 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{EBF10A69-1324-4034-AA61-F5BE6CE22B36}
    [2011/10/17 18:02:43 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{7E99F836-CECB-4D4C-8CBA-391016EACD16}
    [2011/10/17 06:02:18 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{9A067649-0E62-4AC4-9673-5A33A618E826}
    [2011/10/17 06:02:06 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{49D14E28-3A2F-402C-9B31-6D89DED2A7BA}
    [2011/10/16 18:01:38 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{EA211649-9BF7-47F1-AFC9-738399065488}
    [2011/10/16 06:01:11 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{CAF72D7E-7591-449A-B9EB-C6B24D178CA0}
    [2011/10/16 06:00:59 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{D4F502C5-A100-4D4D-8E15-F8A95A747948}
    [2011/10/15 19:20:19 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{2A03746D-D344-4FAE-B000-E8B0997FBB9B}
    [2011/10/15 19:10:04 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
    [2011/10/15 19:07:57 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
    [2011/10/15 19:07:08 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SPReview
    [2011/10/15 19:03:23 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\EventProviders
    [2011/10/15 18:38:03 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{FF62807E-FC6F-4D19-8C03-0BCA2DA328F6}
    [2011/10/15 18:37:47 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{2953F7C5-E420-4337-915A-4122BA521A75}
    [2011/10/15 14:38:56 | 000,000,000 | ---D | C] -- C:\Config.Msi
    [2011/10/15 14:38:07 | 000,000,000 | ---D | C] -- C:\47d06cce294eea48762a80acbf9c8800
    [2011/10/15 07:25:55 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{30D6EFF3-2074-4FB3-BE74-BA31A19C7003}
    [2011/10/15 07:25:43 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{ECD8D541-2EDB-47C6-9554-0B99FF4BFAE0}
    [2011/10/15 02:03:46 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{C28498B8-CE9F-44ED-A291-A7802011BABE}
    [2011/10/15 02:03:16 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{B8223F99-2741-4BB8-8CEF-AB40FEE61CCC}
    [2011/10/14 05:32:42 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{01C2A569-C17D-434F-99B0-EC0631A42D4C}
    [2011/10/14 05:32:30 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{6940FDA6-601D-4A44-9EBA-EB2131BA6618}
    [2011/10/13 16:22:35 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{A1719DFA-5967-4B52-B2DB-3FFB2EA84494}
    [2011/10/13 16:22:23 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{E527AEEF-3710-455E-8DBE-D898F7B73D62}
    [2011/10/13 05:15:09 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{06CBA908-673B-4496-B23C-5530CC82E27A}
    [2011/10/13 05:14:56 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{99E491F8-A142-4450-9147-0AE8C2309C7D}
    [2011/10/12 10:33:40 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{BFFA73FE-3D94-4B07-A8E6-781F3A326BF3}
    [2011/10/12 10:32:30 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{883AFAD5-0F2F-4206-BC68-EB90D76EDA99}
    [2011/10/12 00:54:46 | 000,702,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
    [2011/10/12 00:54:45 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
    [2011/10/12 00:54:45 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
    [2011/10/12 00:54:44 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
    [2011/10/12 00:54:44 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
    [2011/10/12 00:54:43 | 000,134,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
    [2011/10/12 00:54:43 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
    [2011/10/12 00:54:20 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisdecd.dll
    [2011/10/12 00:54:20 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll
    [2011/10/12 00:54:20 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSNP.ax
    [2011/10/12 00:54:20 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisrndr.ax
    [2011/10/12 00:54:20 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisrndr.ax
    [2011/10/12 00:54:19 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSNP.ax
    [2011/10/12 00:54:19 | 000,104,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Mpeg2Data.ax
    [2011/10/12 00:54:19 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSDvbNP.ax
    [2011/10/12 00:54:19 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Mpeg2Data.ax
    [2011/10/12 00:54:19 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSDvbNP.ax
    [2011/10/12 00:54:14 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
    [2011/10/12 00:54:14 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleacc.dll
    [2011/10/11 05:23:48 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{986511E4-08F7-486D-91A8-BF256D776E28}
    [2011/10/11 05:23:34 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{EF7757B8-A48C-4E5C-95E2-E9EA5B4A6062}
    [2011/10/10 05:16:09 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{FFB883C7-F181-4DB6-A420-B771675E3143}
    [2011/10/10 05:15:54 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{C3271309-E018-491F-8B67-45E05E8FF1C6}
    [2011/10/09 05:15:13 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{394C64C7-1600-479B-9FC4-10F1E44E926E}
    [2011/10/09 05:14:56 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\{1DA09200-43C0-4DFA-B740-5F60CD49473A}
    [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

    ========== Files - Modified Within 30 Days ==========

    [2011/11/07 20:36:09 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\hp\Desktop\OTL.exe
    [2011/11/07 20:18:27 | 000,002,961 | ---- | M] () -- C:\Users\hp\Desktop\HiJackThis.lnk
    [2011/11/07 20:09:12 | 000,855,207 | ---- | M] () -- C:\Users\hp\AppData\Local\census.cache
    [2011/11/07 20:08:35 | 000,130,409 | ---- | M] () -- C:\Users\hp\AppData\Local\ars.cache
    [2011/11/07 19:58:28 | 000,000,036 | ---- | M] () -- C:\Users\hp\AppData\Local\housecall.guid.cache
    [2011/11/07 19:55:01 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
    [2011/11/07 19:49:07 | 000,607,260 | R--- | M] (Swearware) -- C:\Users\hp\Desktop\dds.com
    [2011/11/07 19:45:22 | 000,080,384 | ---- | M] () -- C:\Users\hp\Desktop\MBRCheck.exe
    [2011/11/07 19:38:36 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    [2011/11/07 19:38:36 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    [2011/11/07 19:35:51 | 000,726,316 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
    [2011/11/07 19:35:51 | 000,628,460 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
    [2011/11/07 19:35:51 | 000,110,612 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
    [2011/11/07 19:31:04 | 000,065,536 | ---- | M] () -- C:\Windows\SysNative\Ikeext.etl
    [2011/11/07 19:30:53 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
    [2011/11/07 19:30:24 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
    [2011/11/07 19:30:15 | 2211,602,432 | -HS- | M] () -- C:\hiberfil.sys
    [2011/11/07 13:23:37 | 109,004,897 | ---- | M] () -- C:\Windows\SysNative\drivers\AVG\incavi.avm
    [2011/11/07 05:22:24 | 000,032,952 | ---- | M] () -- C:\Windows\SysNative\drivers\AVG\iavichjg.avm
    [2011/11/06 19:00:21 | 001,841,162 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1008030.006\Cat.DB
    [2011/11/06 15:45:03 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
    [2011/11/06 15:45:03 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
    [2011/11/06 15:45:03 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
    [2011/11/06 15:45:03 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
    [2011/11/06 14:14:40 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
    [2011/11/06 11:31:43 | 000,012,872 | ---- | M] (SurfRight B.V.) -- C:\Windows\SysNative\bootdelete.exe
    [2011/11/06 11:25:06 | 000,025,160 | ---- | M] () -- C:\Windows\SysNative\drivers\hitmanpro35.sys
    [2011/11/06 04:55:00 | 000,000,172 | ---- | M] () -- C:\Users\hp\Desktop\www.google.co.url
    [2011/11/05 22:46:09 | 000,000,965 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2012.lnk
    [2011/11/05 22:46:06 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\drivers\AVG\incavi.avm
    [2011/11/05 22:46:06 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\drivers\AVG\iavifw.avm
    [2011/11/05 22:46:06 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\drivers\AVG\iavichjw.avm
    [2011/11/05 22:06:17 | 000,000,440 | ---- | M] () -- C:\ProgramData\1kAlMiG2Kb7FzP
    [2011/11/05 22:05:14 | 000,000,312 | ---- | M] () -- C:\ProgramData\~1kAlMiG2Kb7FzP
    [2011/11/05 22:05:14 | 000,000,216 | ---- | M] () -- C:\ProgramData\~1kAlMiG2Kb7FzPr
    [2011/11/05 22:05:09 | 000,000,681 | ---- | M] () -- C:\Users\hp\Application Data\Microsoft\Internet Explorer\Quick Launch\System Restore.lnk
    [2011/11/05 21:10:00 | 000,001,137 | ---- | M] () -- C:\Users\hp\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
    [2011/11/01 22:23:44 | 000,067,037 | ---- | M] () -- C:\Users\hp\Desktop\Staff_Rota_2011nov2.pdf
    [2011/11/01 15:02:54 | 000,663,412 | ---- | M] () -- C:\Windows\SysNative\drivers\AVG\iavifw.avm
    [2011/11/01 04:47:41 | 000,000,322 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForhp.job
    [2011/10/31 21:03:04 | 000,000,396 | ---- | M] () -- C:\Windows\tasks\Norton Security Scan for hp.job
    [2011/10/26 22:42:02 | 000,437,512 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
    [2011/10/26 17:05:52 | 000,070,173 | ---- | M] () -- C:\Users\hp\Desktop\Staff_Rota_2011nov.pdf
    [2011/10/26 11:27:32 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msclmd.dll
    [2011/10/26 11:27:31 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msclmd.dll
    [2011/10/18 19:18:11 | 000,070,799 | ---- | M] () -- C:\Users\hp\Desktop\Staff_Rota_2011oct3.pdf
    [2011/10/11 21:16:59 | 000,073,803 | ---- | M] () -- C:\Users\hp\Desktop\Staff_Rota_2011oct2.pdf
    [2011/10/11 00:58:53 | 000,561,800 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1008030.006\cchpx64.sys
    [2011/10/11 00:58:52 | 000,000,172 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1008030.006\isolate.ini
    [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

    ========== Files Created - No Company Name ==========

    [2011/11/07 20:18:27 | 000,002,961 | ---- | C] () -- C:\Users\hp\Desktop\HiJackThis.lnk
    [2011/11/07 20:09:12 | 000,855,207 | ---- | C] () -- C:\Users\hp\AppData\Local\census.cache
    [2011/11/07 20:08:35 | 000,130,409 | ---- | C] () -- C:\Users\hp\AppData\Local\ars.cache
    [2011/11/07 19:58:28 | 000,000,036 | ---- | C] () -- C:\Users\hp\AppData\Local\housecall.guid.cache
    [2011/11/07 19:45:25 | 000,080,384 | ---- | C] () -- C:\Users\hp\Desktop\MBRCheck.exe
    [2011/11/07 13:23:37 | 109,004,897 | ---- | C] () -- C:\Windows\SysNative\drivers\AVG\incavi.avm
    [2011/11/07 05:22:24 | 000,032,952 | ---- | C] () -- C:\Windows\SysNative\drivers\AVG\iavichjg.avm
    [2011/11/06 13:24:34 | 000,001,754 | ---- | C] () -- C:\Users\Public\Desktop\Browser Choice.lnk
    [2011/11/06 12:57:52 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
    [2011/11/06 12:57:52 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
    [2011/11/06 12:57:52 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
    [2011/11/06 12:57:52 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
    [2011/11/06 12:57:52 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
    [2011/11/06 11:25:06 | 000,025,160 | ---- | C] () -- C:\Windows\SysNative\drivers\hitmanpro35.sys
    [2011/11/05 22:46:09 | 000,000,965 | ---- | C] () -- C:\Users\Public\Desktop\AVG 2012.lnk
    [2011/11/05 22:46:06 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\drivers\AVG\incavi.avm
    [2011/11/05 22:46:06 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\drivers\AVG\iavifw.avm
    [2011/11/05 22:46:06 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\drivers\AVG\iavichjw.avm
    [2011/11/05 22:33:15 | 000,001,866 | ---- | C] () -- C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
    [2011/11/05 22:33:15 | 000,001,192 | ---- | C] () -- C:\Users\Public\Desktop\My LastPass Vault.lnk
    [2011/11/05 22:33:15 | 000,001,099 | ---- | C] () -- C:\Users\Public\Desktop\GIMP 2.lnk
    [2011/11/05 22:33:15 | 000,000,931 | ---- | C] () -- C:\Users\Public\Desktop\Market Samurai.lnk
    [2011/11/05 22:33:07 | 000,001,864 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
    [2011/11/05 22:33:07 | 000,000,840 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Update Agent.lnk
    [2011/11/05 22:33:03 | 000,002,557 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office PowerPoint Viewer 2007.lnk
    [2011/11/05 22:33:03 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
    [2011/11/05 22:33:03 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
    [2011/11/05 22:33:03 | 000,002,236 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visit eBay.co.uk.lnk
    [2011/11/05 22:33:03 | 000,002,040 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Advisor.lnk
    [2011/11/05 22:33:03 | 000,001,958 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Magic Desktop.lnk
    [2011/11/05 22:33:03 | 000,001,547 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
    [2011/11/05 22:33:03 | 000,001,352 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
    [2011/11/05 22:33:03 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
    [2011/11/05 22:33:03 | 000,001,330 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
    [2011/11/05 22:33:03 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
    [2011/11/05 22:33:03 | 000,001,246 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
    [2011/11/05 22:33:03 | 000,001,210 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
    [2011/11/05 22:33:03 | 000,001,147 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works Task Launcher.lnk
    [2011/11/05 22:33:03 | 000,001,009 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat.com.lnk
    [2011/11/05 22:33:03 | 000,000,959 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
    [2011/11/05 22:33:03 | 000,000,943 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Market Samurai.lnk
    [2011/11/05 22:05:14 | 000,000,312 | ---- | C] () -- C:\ProgramData\~1kAlMiG2Kb7FzP
    [2011/11/05 22:05:14 | 000,000,216 | ---- | C] () -- C:\ProgramData\~1kAlMiG2Kb7FzPr
    [2011/11/05 22:05:09 | 000,000,681 | ---- | C] () -- C:\Users\hp\Application Data\Microsoft\Internet Explorer\Quick Launch\System Restore.lnk
    [2011/11/05 22:05:06 | 000,000,440 | ---- | C] () -- C:\ProgramData\1kAlMiG2Kb7FzP
    [2011/11/01 22:23:44 | 000,067,037 | ---- | C] () -- C:\Users\hp\Desktop\Staff_Rota_2011nov2.pdf
    [2011/11/01 15:02:54 | 000,663,412 | ---- | C] () -- C:\Windows\SysNative\drivers\AVG\iavifw.avm
    [2011/10/26 17:05:51 | 000,070,173 | ---- | C] () -- C:\Users\hp\Desktop\Staff_Rota_2011nov.pdf
    [2011/10/18 19:18:11 | 000,070,799 | ---- | C] () -- C:\Users\hp\Desktop\Staff_Rota_2011oct3.pdf
    [2011/10/15 19:09:41 | 000,001,458 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
    [2011/10/15 19:09:24 | 000,002,486 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
    [2011/10/11 21:16:58 | 000,073,803 | ---- | C] () -- C:\Users\hp\Desktop\Staff_Rota_2011oct2.pdf
    [2011/06/15 13:23:43 | 000,000,152 | ---- | C] () -- C:\ProgramData\~38985464r
    [2011/06/15 13:23:43 | 000,000,128 | ---- | C] () -- C:\ProgramData\~38985464
    [2011/06/15 13:23:36 | 000,000,336 | ---- | C] () -- C:\ProgramData\38985464
    [2011/05/02 16:07:06 | 000,000,160 | ---- | C] () -- C:\ProgramData\~41737992r
    [2011/05/02 16:07:06 | 000,000,136 | ---- | C] () -- C:\ProgramData\~41737992
    [2011/05/02 16:06:56 | 000,000,392 | ---- | C] () -- C:\ProgramData\41737992
    [2010/10/20 11:26:25 | 000,015,373 | ---- | C] () -- C:\Users\hp\AppData\Local\tmpIMG_7920_2_navi.JPG
    [2010/10/20 11:26:24 | 001,964,584 | ---- | C] () -- C:\Users\hp\AppData\Local\tmpIMG_7920_2.JPG
    [2010/10/09 19:52:49 | 000,638,170 | ---- | C] () -- C:\Users\hp\AppData\Local\tmpP1050280.1
    [2010/10/09 19:52:46 | 000,632,849 | ---- | C] () -- C:\Users\hp\AppData\Local\tmpP1050280.JPG
    [2010/10/09 19:52:45 | 003,296,042 | ---- | C] () -- C:\Users\hp\AppData\Local\tmpP1050280.0
    [2010/09/26 21:26:41 | 001,322,878 | ---- | C] () -- C:\Users\hp\AppData\Local\tmp029.0
    [2010/09/26 21:26:41 | 000,680,221 | ---- | C] () -- C:\Users\hp\AppData\Local\tmp029.JPG
    [2010/09/26 21:23:53 | 000,504,460 | ---- | C] () -- C:\Users\hp\AppData\Local\tmp017.2
    [2010/09/26 21:23:51 | 000,506,319 | ---- | C] () -- C:\Users\hp\AppData\Local\tmp017.1
    [2010/09/26 21:23:48 | 001,014,876 | ---- | C] () -- C:\Users\hp\AppData\Local\tmp017.0
    [2010/09/26 21:23:48 | 000,508,112 | ---- | C] () -- C:\Users\hp\AppData\Local\tmp017.JPG
    [2010/06/09 17:28:51 | 000,578,184 | ---- | C] () -- C:\Users\hp\AppData\Local\tmp169.JPG
    [2010/06/09 17:27:28 | 000,484,924 | ---- | C] () -- C:\Users\hp\AppData\Local\tmp157.JPG
    [2010/06/09 17:27:27 | 000,809,034 | ---- | C] () -- C:\Users\hp\AppData\Local\tmp157.0
    [2010/06/09 17:22:27 | 001,247,794 | ---- | C] () -- C:\Users\hp\AppData\Local\tmp169.0
    [2010/06/09 17:10:19 | 001,061,946 | ---- | C] () -- C:\Users\hp\AppData\Local\tmp015.0
    [2010/06/09 17:10:19 | 000,461,021 | ---- | C] () -- C:\Users\hp\AppData\Local\tmp015.JPG
    [2010/06/09 17:03:23 | 000,997,538 | ---- | C] () -- C:\Users\hp\AppData\Local\tmp021.0
    [2010/06/09 17:03:23 | 000,430,688 | ---- | C] () -- C:\Users\hp\AppData\Local\tmp021.JPG
    [2010/06/09 16:52:38 | 001,228,593 | ---- | C] () -- C:\Users\hp\AppData\Local\tmp166.0
    [2010/06/09 16:52:38 | 000,615,658 | ---- | C] () -- C:\Users\hp\AppData\Local\tmp166.JPG
    [2010/06/09 16:45:02 | 000,557,311 | ---- | C] () -- C:\Users\hp\AppData\Local\tmp571.JPG
    [2010/06/09 16:45:01 | 001,147,384 | ---- | C] () -- C:\Users\hp\AppData\Local\tmp571.0
    [2010/02/15 20:02:27 | 000,002,560 | ---- | C] () -- C:\Windows\_MSRSTRT.EXE
    [2010/01/06 11:32:06 | 000,000,000 | ---- | C] () -- C:\Users\hp\AppData\Roaming\wklnhst.dat
    [2010/01/05 19:36:34 | 000,071,259 | ---- | C] () -- C:\Windows\Huawei ModemsUninstall.exe
    [2009/11/13 16:24:38 | 000,000,056 | ---- | C] () -- C:\Windows\SysWow64\ezsidmv.dat
    [2009/08/15 08:04:33 | 000,009,868 | ---- | C] () -- C:\Windows\SysWow64\ezdigsgn.dat
    [2009/08/15 05:55:21 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
    [2009/07/16 00:50:42 | 000,013,312 | ---- | C] () -- C:\Windows\LPRES.DLL
    [2009/07/14 05:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
    [2009/07/14 02:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
    [2009/07/14 02:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
    [2009/07/14 00:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
    [2009/07/13 23:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
    [2009/07/13 21:59:36 | 001,498,564 | ---- | C] () -- C:\Windows\SysWow64\igkrng400.bin
    [2009/07/13 21:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
    [2009/06/10 21:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat

    < End of report >
     
  2. croutonsoup

    croutonsoup Thread Starter

    Joined:
    Nov 7, 2011
    Messages:
    17
    OTL Extras logfile created on: 11/7/2011 8:38:22 PM - Run 1
    OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\hp\Desktop
    64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.7601.17514)
    Locale: 00000409 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

    2.75 Gb Total Physical Memory | 0.98 Gb Available Physical Memory | 35.57% Memory free
    5.49 Gb Paging File | 3.23 Gb Available in Paging File | 58.81% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
    Drive C: | 284.44 Gb Total Space | 207.97 Gb Free Space | 73.12% Space Free | Partition Type: NTFS
    Drive D: | 13.36 Gb Total Space | 2.21 Gb Free Space | 16.58% Space Free | Partition Type: NTFS

    Computer Name: HP-PC | User Name: hp | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

    ========== Extra Registry (SafeList) ==========


    ========== File Associations ==========

    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
    .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
    .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

    [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
    .html [@ = htmlfile] -- Reg Error: Key error. File not found

    ========== Shell Spawning ==========

    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
    batfile [open] -- "%1" %*
    cmdfile [open] -- "%1" %*
    comfile [open] -- "%1" %*
    exefile [open] -- "%1" %*
    helpfile [open] -- Reg Error: Key error.
    htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
    inffile [install] -- %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection DefaultInstall 132 %1 (Microsoft Corporation)
    InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
    InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
    piffile [open] -- "%1" %*
    regfile [merge] -- Reg Error: Key error.
    scrfile [config] -- "%1"
    scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
    scrfile [open] -- "%1" /S
    txtfile [edit] -- Reg Error: Key error.
    Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
    Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
    Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
    Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
    Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft)
    Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Folder [explore] -- Reg Error: Value error.
    Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
    batfile [open] -- "%1" %*
    cmdfile [open] -- "%1" %*
    comfile [open] -- "%1" %*
    cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
    exefile [open] -- "%1" %*
    helpfile [open] -- Reg Error: Key error.
    piffile [open] -- "%1" %*
    regfile [merge] -- Reg Error: Key error.
    scrfile [config] -- "%1"
    scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
    scrfile [open] -- "%1" /S
    txtfile [edit] -- Reg Error: Key error.
    Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
    Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
    Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
    Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
    Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft)
    Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Folder [explore] -- Reg Error: Value error.
    Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

    ========== Security Center Settings ==========

    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
    "cval" = 1
    "FirewallDisableNotify" = 0
    "AntiVirusDisableNotify" = 0
    "UpdatesDisableNotify" = 0

    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
    "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
    "AntiVirusOverride" = 0
    "AntiSpywareOverride" = 0
    "FirewallOverride" = 0

    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
    "FirewallDisableNotify" = 0
    "AntiVirusDisableNotify" = 0
    "UpdatesDisableNotify" = 0

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

    ========== System Restore Settings ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
    "DisableSR" = 0

    ========== Firewall Settings ==========

    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
    "DisableNotifications" = 0
    "EnableFirewall" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
    "DisableNotifications" = 0
    "EnableFirewall" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
    "DisableNotifications" = 0
    "EnableFirewall" = 0

    ========== Authorized Applications List ==========

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


    ========== HKEY_LOCAL_MACHINE Uninstall List ==========

    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
    "{0B7465E2-1A7E-4D21-8670-94D9C11449B8}" = AVG 2012
    "{180C8888-50F1-426B-A9DC-AB83A1989C65}" = Windows Live Language Selector
    "{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
    "{42B40185-E134-43FD-9381-69F92B317417}" = AVG 2012
    "{6C47240C-016E-03B5-D13E-AECAED09F2E3}" = ATI Catalyst Install Manager
    "{85A42FF0-F0D0-44A3-B226-C124D6E8B1D5}" = HP 3D DriveGuard
    "{88E60521-1E4E-4785-B9F1-1798A4BD0C30}" = HP MediaSmart SmartMenu
    "{8F473675-D702-45F9-8EBC-342B40C17BF5}" = Apple Mobile Device Support
    "{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
    "{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
    "{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
    "{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
    "{9545E9DB-6F4C-4404-BF25-E221BE8B44C5}" = iTunes
    "{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}" = Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175
    "{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
    "{ADEB3402-CFBD-00E2-0EE6-F6A3F1AFACF0}" = ccc-utility64
    "{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
    "{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
    "{E4F5E48E-7155-4CF9-88CD-7F377EC9AC54}" = Bonjour
    "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
    "AVG" = AVG 2012
    "FFE7D41DF3C645075BB149E21988B63996C34187" = ENE CIR Receiver Driver
    "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
    "SynTPDeinstKey" = Synaptics Pointing Device Driver

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
    "{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = HP MediaSmart Webcam
    "{09CC0D0E-061D-3C7B-3881-D2EB53A8AAFC}" = CCC Help Polish
    "{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
    "{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
    "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
    "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    "{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
    "{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite
    "{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
    "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
    "{24D753CA-6AE9-4E30-8F5F-EFC93E08BF3D}" = Skype¬ô 4.0
    "{254C37AA-6B72-4300-84F6-98A82419187E}" = ActiveCheck component for HP Active Support Library
    "{26606D8F-3133-DBE2-8AF5-AB28F300860A}" = CCC Help Chinese Standard
    "{266D0EEA-E5A6-4A08-A0EE-5391D4EA44A7}" = Catalyst Control Center - Branding
    "{26A24AE4-039D-4CA4-87B4-2F83216029FF}" = Java(TM) 6 Update 29
    "{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
    "{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
    "{2DC94AFD-A6E2-4AB4-9132-4A3F8E07B386}" = Apple Application Support
    "{3023EBDA-BF1B-4831-B347-E5018555F26E}" = HP MediaSmart Movie Themes
    "{33C17B75-EA9C-0687-9CED-03D92637B042}" = CCC Help Hungarian
    "{34D2AB40-150D-475D-AE32-BD23FB5EE355}" = HP Quick Launch Buttons
    "{3FBDB7B8-7472-E895-2E5D-99D190B2D1B6}" = Catalyst Control Center InstallProxy
    "{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
    "{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}" = PowerRecover
    "{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
    "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
    "{5271C0D4-24E4-4C3D-A782-C012033FD3CF}" = AMD USB Filter Driver
    "{546937C5-0529-333E-0D5E-FE3C53108806}" = CCC Help Japanese
    "{54CC7901-804D-4155-B353-21F0CC9112AB}" = HP Wireless Assistant
    "{55C70B62-5EF1-D527-7CAB-E50D8B3B4990}" = Catalyst Control Center Graphics Full New
    "{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
    "{577ED77E-25D9-1A76-4EF0-773B9C173758}" = CCC Help Portuguese
    "{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
    "{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3
    "{5B295588-59C1-4386-9F85-BB4BEDCB0D22}" = HP Customer Experience Enhancements
    "{5DB4EA68-A509-D408-585C-C9D045FADF72}" = Catalyst Control Center Graphics Previews Vista
    "{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
    "{669D4A35-146B-4314-89F1-1AC3D7B88367}" = HPAsset component for HP Active Support Library
    "{67626E09-5366-4480-8F1E-93FADF50CA15}" = HP MediaSmart Live TV
    "{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
    "{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
    "{6D335F78-1F4F-7826-56DD-4F350EA6EADD}" = CCC Help Greek
    "{6EF04EAE-0354-9919-E757-F1203E6F422B}" = CCC Help Italian
    "{7028B245-30A2-BD8C-31B9-6008216FBDC2}" = CCC Help French
    "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
    "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    "{779D3256-84D0-936F-18F9-A154DC85B4B4}" = Catalyst Control Center Localization All
    "{7F4DA5B8-6884-47F2-AEBA-D9111E420C63}" = CCC Help Danish
    "{7F9A8D27-A1B9-164F-FCB1-0B64C88629CF}" = CCC Help Norwegian
    "{803263F7-8CAC-DC6D-3288-8128865A7472}" = CCC Help German
    "{82A213BD-B6AA-4281-A2D3-59D51893CC56}" = HP MediaSmart Software Notebook Demo
    "{82EF29B1-9B60-4142-A155-0599216DD053}" = LightScribe System Software
    "{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
    "{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
    "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8136 8168 8169 Ethernet Driver
    "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
    "{8CC47AA0-5774-61FC-6A59-7E1C936DB753}" = ccc-core-static
    "{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
    "{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
    "{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
    "{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
    "{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
    "{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
    "{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
    "{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
    "{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
    "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
    "{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
    "{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
    "{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
    "{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
    "{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-002A-0409-1000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
    "{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
    "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
    "{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
    "{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
    "{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
    "{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
    "{90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
    "{90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
    "{90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0116-0409-1000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
    "{90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
    "{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
    "{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
    "{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
    "{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
    "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    "{9A28867B-109A-5BBF-85C0-FC1BAA98CA1C}" = CCC Help Russian
    "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    "{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
    "{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
    "{A899DA1F-D626-401C-8651-F2921E3B4CB3}" = 3Connect
    "{A8BCC9E4-9036-3029-F2BC-AA73A62DA73D}" = CCC Help Turkish
    "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
    "{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
    "{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
    "{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
    "{AC76BA86-7AD7-FFFF-7B44-A91000000001}" = Adobe Reader 9.1 MUI
    "{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}" = HP MediaSmart Music/Photo/Video
    "{B51605BF-6326-4553-AE96-6D7F1813D5F5}" = HP User Guides 0154
    "{B53E61D7-7C80-40DF-82D2-CF5390D6D20A}" = HP Advisor
    "{B5C746E6-D961-445C-3768-5B6FAF6A1A31}" = CCC Help Spanish
    "{C0769946-2CF1-9E8D-009B-5C413B3F01D1}" = CCC Help Czech
    "{C3A32068-8AB1-4327-BB16-BED9C6219DC7}" = Atheros Driver Installation Program
    "{C4F7EEE5-3D99-8552-7483-B2F412838B2A}" = Catalyst Control Center Graphics Previews Common
    "{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}" = Activate Norton Online Backup
    "{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
    "{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
    "{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
    "{CD95F661-A5C4-44F5-A6AA-ECDD91C240BC}" = WinZip 14.0
    "{CE915DFF-C4CA-D46B-D31F-719B5A1308A1}" = Market Samurai
    "{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
    "{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
    "{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas
    "{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
    "{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
    "{D46D081B-F60E-467E-A7C4-117B70D76731}" = HP Update
    "{D4C41D27-A2D5-94C6-1D08-3D470A12EAF0}" = CCC Help Swedish
    "{D9D6A848-1BFD-592B-5F9D-0BA8692FDF0B}" = CCC Help Finnish
    "{DCCAD079-F92C-44DA-B258-624FC6517A5A}" = HP MediaSmart DVD
    "{DCD91C2F-3A86-B328-59A0-5EED6190D983}" = Catalyst Control Center Graphics Full Existing
    "{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
    "{DDEDAF6C-488E-4CDA-8276-1CCF5F3C5C32}" = Command & Conquer 3
    "{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
    "{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio
    "{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant
    "{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}" = HP MediaSmart Internet TV
    "{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
    "{E5F5CAA5-84ED-DE41-40D0-8926FE7E5F4D}" = Catalyst Control Center Graphics Light
    "{E6CE345D-BF83-1242-9E4D-3D60A5036D87}" = CCC Help English
    "{E92D47A1-D27D-430A-8368-0BAFD956507D}" = HP Support Assistant
    "{EC155897-712F-5637-A5DA-6C7CE7CB5521}" = CCC Help Korean
    "{F0580F64-44A1-C607-9364-887912B74F4D}" = CCC Help Thai
    "{F1D7AC58-554A-4A58-B784-B61558B1449A}" = QLBCASL
    "{F3B912F5-EB57-45AA-B3D1-EB532BCF6EF8}" = HP Setup
    "{F3F9A4E5-CD9F-4657-CF99-5CE3F7729909}" = Catalyst Control Center Core Implementation
    "{F5B1D41A-05B9-98E2-C350-E69D4A444CB4}" = CCC Help Chinese Traditional
    "{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}" = Visual Studio 2008 x64 Redistributables
    "{FCF0F615-6E70-B949-028F-88D32C55C2BC}" = CCC Help Dutch
    "{FDB3B167-F4FA-461D-976F-286304A57B2A}" = Adobe AIR
    "{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
    "Adobe AIR" = Adobe AIR
    "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
    "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
    "Adobe Shockwave Player" = Adobe Shockwave Player 11.5
    "AOL Toolbar" = AOL Toolbar 5.0
    "Audacity_is1" = Audacity 1.2.6
    "BitLord" = BitLord 1.1
    "BS_Player Toolbar" = BS Player Toolbar
    "BSPlayerf" = BS.Player FREE
    "conduitEngine" = Conduit Engine
    "DivX Setup.divx.com" = DivX Setup
    "EasyBits Magic Desktop" = Magic Desktop
    "ENTERPRISE" = Microsoft Office Enterprise 2007
    "Google Chrome" = Google Chrome
    "HOMESTUDENTR" = Microsoft Office Home and Student 2007
    "Huawei Modems" = Huawei modem
    "InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = HP MediaSmart Webcam
    "InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite
    "InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}" = HP MediaSmart Movie Themes
    "InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
    "InstallShield_{67626E09-5366-4480-8F1E-93FADF50CA15}" = HP MediaSmart Live TV
    "InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}" = HP MediaSmart Music/Photo/Video
    "InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
    "InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
    "InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}" = HP MediaSmart DVD
    "InstallShield_{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}" = HP MediaSmart Internet TV
    "jZip" = jZip
    "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware version 1.51.2.1300
    "MarketSamurai.6E37012E1CBD7F47B14488FCC715944F3EBDCEDC.1" = Market Samurai
    "McAfee Security Scan" = McAfee Security Scan Plus
    "MechWarrior4 Vengeance" = MechWarrior Vengeance
    "Mozilla Firefox (3.6.17)" = Mozilla Firefox (3.6.17)
    "NIS" = Norton Internet Security
    "NSS" = Norton Security Scan
    "SecondLifeViewer2" = SecondLifeViewer2 (remove only)
    "WildTangent hp Master Uninstall" = HP Games
    "Winamp" = Winamp
    "WinGimp-2.0_is1" = GIMP 2.6.11
    "WinLiveSuite" = Windows Live Essentials
    "WTA-b46bfc2c-c18f-4133-98d5-b0d6761f77b2" = Snowboard SuperJam
    "Yahoo! Companion" = Yahoo! Toolbar

    ========== HKEY_CURRENT_USER Uninstall List ==========

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "LastPass" = LastPass (uninstall only)
    "UnityWebPlayer" = Unity Web Player
    "Winamp Detect" = Winamp Application Detect

    ========== Last 10 Event Log Errors ==========

    Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!

    < End of report >
     
As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1025883

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice