Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Babylon Search

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Re: Babylon Search

Unread postby aoibhe bree » July 18th, 2011, 3:17 pm

Babylon Search isn't coming up as my homepage any more, so I guess that's a good sign! :)

I did the OTL log, but only the first notepad window opened - not the Extras one. I ran it twice just in case, but no luck! OTL.txt below:

OTL logfile created on: 18/07/2011 20:12:27 - Run 3
OTL by OldTimer - Version 3.2.26.1 Folder = D:\Documents and Settings\Brian\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

766.48 Mb Total Physical Memory | 257.24 Mb Available Physical Memory | 33.56% Memory free
1.83 Gb Paging File | 1.26 Gb Available in Paging File | 69.29% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 22.23 Gb Total Space | 2.33 Gb Free Space | 10.47% Space Free | Partition Type: NTFS
Drive D: | 44.48 Gb Total Space | 23.04 Gb Free Space | 51.81% Space Free | Partition Type: NTFS

Computer Name: SN049829520014 | User Name: Brian | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - D:\Documents and Settings\Brian\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
PRC - C:\Program Files\Kodak\KODAK Share Button App\Listener.exe (Eastman Kodak Company)
PRC - C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
PRC - c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe (Microsoft Corporation)
PRC - C:\Program Files\eircom\eircom broadband usage meter\BroadbandUsageMeter.exe (Eircom.net)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe ()
PRC - C:\WINDOWS\etMon.exe (EMPIA Technology Corporation)
PRC - C:\WINDOWS\VMSnap23.exe ()
PRC - C:\WINDOWS\Domino.exe (Vimicro)
PRC - C:\WINDOWS\Runservice.exe ()
PRC - C:\Program Files\Canon\CAL\CALMAIN.exe (Canon Inc.)
PRC - C:\WINDOWS\system32\UAService7.exe ()
PRC - c:\APPS\Powercinema\Kernel\TV\CLSched.exe ()
PRC - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe ()
PRC - c:\APPS\Powercinema\Kernel\CLML_NTService\CLMLServer.exe (Cyberlink)
PRC - C:\APPS\Softex\OmniPass\OPXPApp.exe ()
PRC - C:\APPS\Softex\OmniPass\OmniServ.exe (Softex Inc.)
PRC - C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe ()
PRC - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe ()
PRC - C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindService.exe (Rocket Division Software)
PRC - C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe (America Online, Inc.)
PRC - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe (Ulead Systems, Inc.)
PRC - C:\Program Files\NetDrive\wdService.exe ()


========== Modules (SafeList) ==========

MOD - D:\Documents and Settings\Brian\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll (Microsoft Corporation)


========== Win32 Services (SafeList) ==========

SRV - (NMSAccessU) -- File not found
SRV - (NMIndexingService) -- File not found
SRV - (NBService) -- File not found
SRV - (HidServ) -- File not found
SRV - (AppMgmt) -- File not found
SRV - (MsMpSvc) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe (Microsoft Corporation)
SRV - (wampmysqld) -- c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe ()
SRV - (wampapache) -- c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe (Apache Software Foundation)
SRV - (Symantec Core LC) -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe ()
SRV - (ServiceLayer) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
SRV - (LicCtrlService) -- C:\WINDOWS\Runservice.exe ()
SRV - (CCALib8) -- C:\Program Files\Canon\CAL\CALMAIN.exe (Canon Inc.)
SRV - (MSCSPTISRV) -- C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe (Sony Corporation)
SRV - (SPTISRV) -- C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe (Sony Corporation)
SRV - (PACSPTISVR) -- C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe ()
SRV - (UserAccess7) SecuROM User Access Service (V7) -- C:\WINDOWS\system32\UAService7.exe ()
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation)
SRV - (CLSched) CyberLink Task Scheduler (CTS) -- c:\APPS\Powercinema\Kernel\TV\CLSched.exe ()
SRV - (CLCapSvc) CyberLink Background Capture Service (CBCS) -- c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe ()
SRV - (CyberLink Media Library Service) -- c:\APPS\Powercinema\Kernel\CLML_NTService\CLMLServer.exe (Cyberlink)
SRV - (omniserv) -- C:\APPS\Softex\OmniPass\OmniServ.exe (Softex Inc.)
SRV - (USBDeviceService) -- C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe ()
SRV - (BlueSoleil Hid Service) -- C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe ()
SRV - (StarWindService) -- C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindService.exe (Rocket Division Software)
SRV - (AOL ACS) -- C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe (America Online, Inc.)
SRV - (UleadBurningHelper) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe (Ulead Systems, Inc.)
SRV - (WebDriveService) -- C:\Program Files\NetDrive\wdService.exe ()


========== Driver Services (SafeList) ==========

DRV - (MpKsl4c999750) -- D:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{84669C46-ACCA-4B89-8414-10B4FADF4707}\MpKsl4c999750.sys (Microsoft Corporation)
DRV - (MpKsl70ce3301) -- D:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{84669C46-ACCA-4B89-8414-10B4FADF4707}\MpKsl70ce3301.sys (Microsoft Corporation)
DRV - (MpKsld7fbfcba) -- D:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{84669C46-ACCA-4B89-8414-10B4FADF4707}\MpKsld7fbfcba.sys (Microsoft Corporation)
DRV - (MpKsl034443e8) -- D:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{84669C46-ACCA-4B89-8414-10B4FADF4707}\MpKsl034443e8.sys (Microsoft Corporation)
DRV - (MpKsl486eb959) -- D:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{84669C46-ACCA-4B89-8414-10B4FADF4707}\MpKsl486eb959.sys (Microsoft Corporation)
DRV - (MBAMSwissArmy) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys (Malwarebytes Corporation)
DRV - (EraserUtilRebootDrv) -- C:\Program Files\Common Files\Symantec Shared\eengine\EraserUtilRebootDrv.sys (Symantec Corporation)
DRV - (eeCtrl) -- C:\Program Files\Common Files\Symantec Shared\eengine\eeCtrl.sys (Symantec Corporation)
DRV - (dtsoftbus01) -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys (DT Soft Ltd)
DRV - (ewusbnet) -- C:\WINDOWS\system32\drivers\ewusbnet.sys (Huawei Technologies Co., Ltd.)
DRV - (hwdatacard) -- C:\WINDOWS\system32\drivers\ewusbmdm.sys (Huawei Technologies Co., Ltd.)
DRV - (hwusbdev) -- C:\WINDOWS\system32\drivers\ewusbdev.sys (Huawei Technologies Co., Ltd.)
DRV - (sptd) -- C:\WINDOWS\System32\Drivers\sptd.sys ()
DRV - (vaxscsi) -- C:\WINDOWS\System32\Drivers\vaxscsi.sys ()
DRV - (DCamUSBET) -- C:\WINDOWS\system32\drivers\etDevice.sys (eMPIA Technology, Inc.)
DRV - (FiltUSBET) -- C:\WINDOWS\system32\drivers\etFilter.sys (eMPIA Technology Inc.)
DRV - (ScanUSBET) -- C:\WINDOWS\system32\drivers\etScan.sys (eMPIA Technology, Inc.)
DRV - (DSI_SiUSBXp_3_1) -- C:\WINDOWS\system32\drivers\DSI_SiUSBXp_3_1.sys (Silicon Laboratories)
DRV - (WinDriver6) -- C:\WINDOWS\system32\drivers\windrvr6.sys (Jungo)
DRV - (XilinxFirmwareEmbeddedLpLoader) -- C:\WINDOWS\system32\drivers\xusb_emb.sys (Xilinx, Inc.)
DRV - (XilinxFirmwareEmbeddedLoader) -- C:\WINDOWS\system32\drivers\xusb_xup.sys (Xilinx, Inc.)
DRV - (XilinxFirmwareLpLoader) -- C:\WINDOWS\system32\drivers\xusb_xlp.sys (Xilinx, Inc.)
DRV - (XilinxFirmwareLoader) -- C:\WINDOWS\system32\drivers\xusbdfwu.sys (Xilinx, Inc.)
DRV - (XilinxFirmwareXpressLoader) -- C:\WINDOWS\system32\drivers\xusb_xpr.sys (Xilinx, Inc.)
DRV - (ZSMC326) -- C:\WINDOWS\system32\drivers\usbvm323.sys (Vimicro Corporation)
DRV - (s116obex) -- C:\WINDOWS\system32\drivers\s116obex.sys (MCCI Corporation)
DRV - (s116mdm) -- C:\WINDOWS\system32\drivers\s116mdm.sys (MCCI Corporation)
DRV - (s116mdfl) -- C:\WINDOWS\system32\drivers\s116mdfl.sys (MCCI Corporation)
DRV - (nmwcd) -- C:\WINDOWS\system32\drivers\nmwcd.sys (Nokia)
DRV - (nmwcdcm) -- C:\WINDOWS\system32\drivers\nmwcdcm.sys (Nokia)
DRV - (nmwcdcj) -- C:\WINDOWS\system32\drivers\nmwcdcj.sys (Nokia)
DRV - (nmwcdc) -- C:\WINDOWS\system32\drivers\nmwcdc.sys (Nokia)
DRV - (w200obex) -- C:\WINDOWS\system32\drivers\w200obex.sys (MCCI)
DRV - (w200mgmt) Sony Ericsson W200 USB WMC Device Management Drivers (WDM) -- C:\WINDOWS\system32\drivers\w200mgmt.sys (MCCI)
DRV - (w200mdm) -- C:\WINDOWS\system32\drivers\w200mdm.sys (MCCI)
DRV - (w200mdfl) -- C:\WINDOWS\system32\drivers\w200mdfl.sys (MCCI)
DRV - (w200bus) Sony Ericsson W200 driver (WDM) -- C:\WINDOWS\system32\drivers\w200bus.sys (MCCI)
DRV - (DmodUsb) -- C:\WINDOWS\system32\drivers\dmodusb.sys (Windows (R) 2000 DDK provider)
DRV - (vmfilter323) -- C:\WINDOWS\system32\drivers\vmfilter323.sys (Vimicro Corporation)
DRV - (symlcbrd) -- C:\WINDOWS\system32\drivers\symlcbrd.sys (Symantec Corporation)
DRV - (se2Dunic) Sony Ericsson Device 045 USB Ethernet Emulation SEMC45 (WDM) -- C:\WINDOWS\system32\drivers\se2Dunic.sys (MCCI)
DRV - (SE2Dmgmt) Sony Ericsson Device 045 USB WMC Device Management Drivers (WDM) -- C:\WINDOWS\system32\drivers\SE2Dmgmt.sys (MCCI)
DRV - (SE2Dbus) Sony Ericsson Device 045 Driver driver (WDM) -- C:\WINDOWS\system32\drivers\SE2Dbus.sys (MCCI)
DRV - (se2Dnd5) Sony Ericsson Device 045 USB Ethernet Emulation SEMC45 (NDIS) -- C:\WINDOWS\system32\drivers\se2Dnd5.sys (MCCI)
DRV - (RTL8023xp) -- C:\WINDOWS\system32\drivers\Rtnicxp.sys (Realtek Semiconductor Corporation )
DRV - (w810mdm) -- C:\WINDOWS\system32\drivers\w810mdm.sys (MCCI)
DRV - (w810mdfl) -- C:\WINDOWS\system32\drivers\w810mdfl.sys (MCCI)
DRV - (w810bus) Sony Ericsson W810 Driver driver (WDM) -- C:\WINDOWS\system32\drivers\w810bus.sys (MCCI)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys (Realtek Semiconductor Corp.)
DRV - (ati2mtag) -- C:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.)
DRV - (BlueletSCOAudio) -- C:\WINDOWS\system32\drivers\BlueletSCOAudio.sys (IVT Corporation)
DRV - (BlueletAudio) -- C:\WINDOWS\system32\drivers\blueletaudio.sys (IVT Corporation)
DRV - (Btcsrusb) -- C:\WINDOWS\system32\drivers\btcusb.sys (IVT Corporation)
DRV - (BTHidEnum) -- C:\WINDOWS\system32\drivers\vbtenum.sys ()
DRV - (BTHidMgr) -- C:\WINDOWS\System32\Drivers\BTHidMgr.sys (IVT Corporation)
DRV - (BT) -- C:\WINDOWS\system32\drivers\BtNetDrv.sys (IVT Corporation)
DRV - (VcommMgr) -- C:\WINDOWS\system32\drivers\VcommMgr.sys (IVT Corporation)
DRV - (HdAudAddService) -- C:\WINDOWS\system32\drivers\Hdaudio.sys (Windows (R) Server 2003 DDK provider)
DRV - (BTNetFilter) -- C:\WINDOWS\system32\drivers\BTNetFilter.sys ()
DRV - (VComm) -- C:\WINDOWS\system32\drivers\VComm.sys (IVT Corporation)
DRV - (rtl8139) Realtek RTL8139(A/B/C) -- C:\WINDOWS\system32\drivers\RTL8139.sys (Realtek Semiconductor Corporation)
DRV - (giveio) -- C:\WINDOWS\giveio.sys ()
DRV - (RFNP32) -- C:\WINDOWS\System32\RFNP32.dll (River Front Software)
DRV - (wanatw) WAN Miniport (ATW) -- C:\WINDOWS\system32\drivers\wanatw4.sys (America Online, Inc.)
DRV - (WebDriveFSD) -- C:\Program Files\NetDrive\rffsd.sys ()
DRV - (Sentinel) -- C:\WINDOWS\System32\Drivers\SENTINEL.SYS (Rainbow Technologies, Inc.)
DRV - (Sntnlusb) -- C:\WINDOWS\system32\drivers\SNTNLUSB.SYS (Rainbow Technologies Inc.)


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ie/
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Content Upload Plugin,version=1.0.0: C:\Program Files\DivX\DivX Content Uploader\npUpload.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@garmin.com/GpsControl: C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@octaga.com/Octaga Player 2.2: C:\Program Files\Octaga\Octaga Player\npOctPlr.dll (Octaga AS)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2571: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.2.2629: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1739: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009/09/27 23:14:47 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2008/12/15 15:25:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.18\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/07/16 14:09:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.18\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/07/07 13:20:49 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Sunbird 0.3.1\extensions\\Components: C:\Program Files\Mozilla Sunbird\components [2010/01/25 14:11:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Sunbird 0.3.1\extensions\\Plugins: C:\Program Files\Mozilla Sunbird\plugins [2011/07/07 13:20:49 | 000,000,000 | ---D | M]

[2008/09/03 12:38:50 | 000,000,000 | ---D | M] (No name found) -- D:\Documents and Settings\Brian\Application Data\Mozilla\Extensions
[2008/09/03 12:38:50 | 000,000,000 | ---D | M] (No name found) -- D:\Documents and Settings\Brian\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2011/07/18 19:39:47 | 000,000,000 | ---D | M] (No name found) -- D:\Documents and Settings\Brian\Application Data\Mozilla\Firefox\Profiles\l1ycix1x.default\extensions
[2009/09/28 11:07:03 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- D:\Documents and Settings\Brian\Application Data\Mozilla\Firefox\Profiles\l1ycix1x.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/06/03 12:40:31 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- D:\Documents and Settings\Brian\Application Data\Mozilla\Firefox\Profiles\l1ycix1x.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2007/09/20 11:32:22 | 000,000,000 | ---D | M] ("British English Dictionary">) -- D:\Documents and Settings\Brian\Application Data\Mozilla\Firefox\Profiles\l1ycix1x.default\extensions\en-GB@dictionaries.addons.mozilla.org
[2007/04/10 16:24:20 | 000,000,000 | ---D | M] (No name found) -- D:\Documents and Settings\Brian\Application Data\Mozilla\Sunbird\Profiles\91zxcckf.default\extensions
[2011/07/18 19:39:47 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/06/21 22:06:03 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2007/05/18 20:21:25 | 000,000,000 | ---D | M] (Skype extension for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}
[2011/06/30 10:11:59 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2011/06/21 22:06:02 | 000,025,048 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2011/06/21 22:06:03 | 000,140,248 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2006/09/25 20:49:29 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\MsnChat40en-gb.dll
[2006/09/03 14:12:48 | 000,049,152 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\mozilla firefox\plugins\np32dsw.dll
[2004/11/13 04:36:20 | 000,005,120 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\mozilla firefox\plugins\NPAdbESD.dll
[2007/08/29 22:47:44 | 000,054,600 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\mozilla firefox\plugins\npbittorrent.dll
[2011/05/04 04:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2007/02/23 05:25:15 | 000,700,416 | ---- | M] (DivX,Inc.) -- C:\Program Files\mozilla firefox\plugins\npdivx32.dll
[2007/06/27 11:45:16 | 000,061,440 | ---- | M] (Joost Technologies B.V. ) -- C:\Program Files\mozilla firefox\plugins\npJoostPlugin.dll
[2007/06/01 14:25:00 | 000,284,248 | ---- | M] (Musicnotes, Inc.) -- C:\Program Files\mozilla firefox\plugins\npmusicn.dll
[2011/06/21 22:06:06 | 000,066,520 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2011/06/06 12:55:30 | 000,183,696 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll
[2007/01/16 11:26:45 | 000,053,248 | ---- | M] (Microsoft Corp.) -- C:\Program Files\mozilla firefox\plugins\NPPGWrap.dll
[2006/12/02 15:31:29 | 000,144,984 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nppl3260.dll
[2010/01/25 14:11:45 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin.dll
[2010/01/25 14:11:46 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll
[2010/01/25 14:11:46 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll
[2010/01/25 14:11:46 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll
[2010/01/25 14:11:47 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll
[2010/01/25 14:11:47 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll
[2010/01/25 14:11:47 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll
[2006/12/02 15:31:39 | 000,024,576 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprjplug.dll
[2006/12/02 15:31:22 | 000,081,920 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprpjplug.dll
[2007/08/10 16:03:02 | 005,993,192 | ---- | M] () -- C:\Program Files\mozilla firefox\plugins\NPSibelius.dll
[2007/08/10 16:03:04 | 006,275,816 | ---- | M] () -- C:\Program Files\mozilla firefox\plugins\ScorchPDFWrapper.dll
[2011/03/06 10:37:22 | 000,001,538 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-en-GB.xml
[2011/03/06 10:37:22 | 000,002,193 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\answers.xml
[2009/06/29 12:36:22 | 000,001,489 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg_igeared.xml
[2011/03/06 10:37:22 | 000,000,947 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\chambers-en-GB.xml
[2011/03/06 10:37:22 | 000,001,534 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
[2011/03/06 10:37:22 | 000,000,769 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-en-GB.xml
[2011/03/06 10:37:22 | 000,002,371 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2011/03/06 10:37:23 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia.xml
[2011/03/06 10:37:23 | 000,001,135 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-en-GB.xml

Hosts file not found
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKCU\..\Toolbar\ShellBrowser: (&Address) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Address) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Links) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [BigDogPath323Domino] C:\WINDOWS\Domino.exe (Vimicro)
O4 - HKLM..\Run: [BigDogPath323VMSnap] C:\WINDOWS\VMSnap23.exe ()
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation)
O4 - HKLM..\Run: [EPSON Stylus DX5000 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBVE.EXE (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [etMonitor] C:\WINDOWS\etMon.exe (EMPIA Technology Corporation)
O4 - HKLM..\Run: [IMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O4 - HKLM..\Run: [KodakShareButtonApp] C:\Program Files\Kodak\KODAK Share Button App\Listener.exe (Eastman Kodak Company)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] File not found
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] File not found
O4 - HKCU..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (Microsoft Corporation)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [Disk Cleaner] File not found
O4 - HKCU..\Run: [EPSON Stylus DX5000 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBVE.EXE (SEIKO EPSON CORPORATION)
O4 - HKCU..\Run: [EPSON Stylus SX400 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEGE.EXE (SEIKO EPSON CORPORATION)
O4 - HKCU..\Run: [EPSON Stylus SX400 Series (Copy 1)] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEGE.EXE (SEIKO EPSON CORPORATION)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - Startup: D:\Documents and Settings\All Users\Start Menu\Programs\Startup\Broadband Usage Meter.lnk = C:\WINDOWS\Installer\{EB52A893-E159-4B6C-B184-895EC889F03A}\_26C435046FEBEF1E7C0908.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Absolute Poker - {13C1DBF6-7535-495c-91F6-8C13714ED485} - File not found
O9 - Extra 'Tools' menuitem : Absolute Poker - {13C1DBF6-7535-495c-91F6-8C13714ED485} - File not found
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - File not found
O9 - Extra 'Tools' menuitem : PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - File not found
O9 - Extra Button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
O9 - Extra Button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - File not found
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - File not found
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\WINDOWS\system32\wshbth.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000025 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000027 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000028 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000029 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000030 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000031 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000032 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} file://C:\Program Files\Chessmaster Challenge\Images\stg_drm.ocx (SpinTop DRM Control)
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} http://messenger.zone.msn.com/binary/Me ... b31267.cab (MessengerStatsClient Class)
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zone.msn.com/binary/ms ... b56986.cab (Checkers Class)
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} http://messenger.zone.msn.com/binary/So ... b56986.cab (Solitaire Showdown Class)
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} http://messenger.zone.msn.com/EN-IE/a-U ... E_UNO1.cab (UnoCtrl Class)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupda ... 7285364312 (WUWebControl Class)
O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} http://launch.gamespyarcade.com/softwar ... launch.cab (Reg Error: Key error.)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} http://messenger.zone.msn.com/binary/ZI ... b47946.cab (ZoneIntro Class)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/Me ... b56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} file://C:\Program Files\Chessmaster Challenge\Images\armhelper.ocx (Reg Error: Key error.)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shoc ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (logonui.exe) - C:\WINDOWS\System32\logonui.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\crypt32chain: DllName - crypt32.dll - C:\WINDOWS\System32\crypt32.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cryptnet: DllName - cryptnet.dll - C:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cscdll: DllName - cscdll.dll - C:\WINDOWS\System32\cscdll.dll (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - %SystemRoot%\System32\dimsntfy.dll - C:\WINDOWS\system32\dimsntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\OPXPGina: DllName - C:\Apps\Softex\OmniPass\opxpgina.dll - C:\APPS\Softex\OmniPass\OPXPGina.dll ()
O20 - Winlogon\Notify\ScCertProp: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\Schedule: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\sclgntfy: DllName - sclgntfy.dll - C:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\SensLogn: DllName - WlNotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\termsrv: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\WgaLogon: DllName - WgaLogon.dll - C:\WINDOWS\System32\WgaLogon.dll (Microsoft Corporation)
O20 - Winlogon\Notify\wlballoon: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Component Categories cache daemon - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {b8ea5f37-7327-4923-9808-8fd3b6f0d529} - beers - Reg Error: Key error. File not found
O24 - Desktop Components:0 (My Current Home Page) - About:Home
O24 - Desktop WallPaper: D:\Documents and Settings\Brian\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: D:\Documents and Settings\Brian\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msapsspc.dll) - C:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (schannel.dll) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digest.dll) - C:\WINDOWS\System32\digest.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msnsspc.dll) - C:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\WINDOWS\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\WINDOWS\System32\wdigest.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{3a6f9ffa-7be1-11df-ba8b-0009dd601034}\Shell - "" = AutoRun
O33 - MountPoints2\{3a6f9ffa-7be1-11df-ba8b-0009dd601034}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{3a6f9ffa-7be1-11df-ba8b-0009dd601034}\Shell\AutoRun\command - "" = L:\AutoRun.exe
O33 - MountPoints2\{3a6f9ffd-7be1-11df-ba8b-0009dd601034}\Shell - "" = AutoRun
O33 - MountPoints2\{3a6f9ffd-7be1-11df-ba8b-0009dd601034}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{3a6f9ffd-7be1-11df-ba8b-0009dd601034}\Shell\AutoRun\command - "" = L:\AutoRun.exe
O33 - MountPoints2\{e8d7fefe-7c6b-11df-ba8c-0009dd601034}\Shell - "" = AutoRun
O33 - MountPoints2\{e8d7fefe-7c6b-11df-ba8c-0009dd601034}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e8d7fefe-7c6b-11df-ba8c-0009dd601034}\Shell\AutoRun\command - "" = L:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/07/18 20:05:21 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011/07/18 20:05:21 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/07/18 20:05:13 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011/07/18 20:05:12 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/07/18 20:04:27 | 009,466,208 | ---- | C] (Malwarebytes Corporation ) -- D:\Documents and Settings\Brian\Desktop\mbam-setup.exe
[2011/07/16 17:36:12 | 000,579,584 | ---- | C] (OldTimer Tools) -- D:\Documents and Settings\Brian\Desktop\OTL.exe
[2011/07/16 17:15:51 | 009,466,208 | ---- | C] (Malwarebytes Corporation ) -- D:\Documents and Settings\Brian\Desktop\mbam-setup-1.51.1.1800.exe
[2011/07/16 17:12:33 | 000,050,688 | ---- | C] (Atribune.org) -- D:\Documents and Settings\Brian\Desktop\ATF-Cleaner.exe
[2011/07/16 01:48:59 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Start Menu\Programs\Maxis
[2011/07/13 13:09:13 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office
[2011/07/13 13:07:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2011/07/13 13:06:42 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Microsoft
[2011/07/13 13:06:41 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2011/07/13 13:03:01 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Analysis Services
[2011/07/13 13:02:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2011/07/13 13:00:09 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2011/07/13 12:40:48 | 704,809,728 | ---- | C] (Microsoft Corporation) -- D:\Documents and Settings\Brian\Desktop\X17-22376.exe
[2011/07/10 16:04:47 | 000,000,000 | ---D | C] -- D:\Documents and Settings\LocalService\Application Data\McAfee
[2011/07/07 13:29:09 | 000,607,017 | R--- | C] (Swearware) -- D:\Documents and Settings\Brian\Desktop\dds.scr
[2011/07/07 13:21:33 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Brian\Local Settings\Application Data\Temp
[2011/07/07 13:18:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2011/07/07 13:18:11 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Application Data\McAfee
[2011/07/07 13:11:09 | 025,685,128 | ---- | C] (Microsoft Corporation) -- D:\Documents and Settings\Brian\Desktop\wordview_en-us.exe
[2011/06/30 10:11:57 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2011/06/30 10:11:57 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2011/06/30 10:11:57 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2011/06/28 21:14:25 | 000,000,000 | ---D | C] -- C:\Program Files\Rockstar Games
[2011/06/28 21:14:24 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Start Menu\Programs\Rockstar Games
[2011/06/19 17:03:27 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Brian\Desktop\em
[29 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/07/18 20:05:21 | 000,000,669 | ---- | M] () -- D:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/07/18 20:04:47 | 009,466,208 | ---- | M] (Malwarebytes Corporation ) -- D:\Documents and Settings\Brian\Desktop\mbam-setup.exe
[2011/07/18 19:23:21 | 000,000,104 | ---- | M] () -- D:\Documents and Settings\Brian\Desktop\Internet.lnk
[2011/07/18 19:00:00 | 000,000,254 | ---- | M] () -- C:\WINDOWS\tasks\RMSchedule.job
[2011/07/18 17:34:50 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2011/07/18 17:30:50 | 000,002,337 | ---- | M] () -- D:\Documents and Settings\All Users\Start Menu\Programs\Startup\Broadband Usage Meter.lnk
[2011/07/18 17:30:38 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/07/18 17:29:52 | 000,000,785 | -HS- | M] () -- C:\WINDOWS\System32\mmf.sys
[2011/07/18 17:29:36 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/07/18 17:29:35 | 803,786,752 | -HS- | M] () -- C:\hiberfil.sys
[2011/07/18 16:30:29 | 000,000,012 | ---- | M] () -- C:\WINDOWS\bthservsdp.dat
[2011/07/16 17:36:21 | 000,579,584 | ---- | M] (OldTimer Tools) -- D:\Documents and Settings\Brian\Desktop\OTL.exe
[2011/07/16 17:16:05 | 009,466,208 | ---- | M] (Malwarebytes Corporation ) -- D:\Documents and Settings\Brian\Desktop\mbam-setup-1.51.1.1800.exe
[2011/07/16 17:12:53 | 000,050,688 | ---- | M] (Atribune.org) -- D:\Documents and Settings\Brian\Desktop\ATF-Cleaner.exe
[2011/07/16 02:03:15 | 000,001,917 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011/07/14 07:22:31 | 000,395,960 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/07/13 12:56:11 | 704,809,728 | ---- | M] (Microsoft Corporation) -- D:\Documents and Settings\Brian\Desktop\X17-22376.exe
[2011/07/13 12:08:56 | 000,000,018 | ---- | M] () -- C:\WINDOWS\System32\package.lst
[2011/07/12 01:52:58 | 000,038,550 | ---- | M] () -- D:\Documents and Settings\Brian\Desktop\South-Park-Ginger-Kid.JPG
[2011/07/09 16:09:08 | 000,000,158 | ---- | M] () -- C:\WINDOWS\civ.ini
[2011/07/07 13:29:12 | 000,607,017 | R--- | M] (Swearware) -- D:\Documents and Settings\Brian\Desktop\dds.scr
[2011/07/07 13:20:50 | 000,001,615 | ---- | M] () -- D:\Documents and Settings\All Users\Desktop\Adobe Reader X.lnk
[2011/07/07 13:11:44 | 025,685,128 | ---- | M] (Microsoft Corporation) -- D:\Documents and Settings\Brian\Desktop\wordview_en-us.exe
[2011/07/07 13:10:52 | 000,287,048 | ---- | M] () -- D:\Documents and Settings\Brian\Desktop\SoftonicDownloader_for_microsoft-office-word-viewer.exe
[2011/07/06 19:52:42 | 000,041,272 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011/07/06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011/07/02 09:17:27 | 000,652,800 | ---- | M] () -- D:\Documents and Settings\Brian\Desktop\MicrosoftFixit50362.msi
[2011/06/30 18:40:04 | 000,079,872 | ---- | M] () -- D:\Documents and Settings\Brian\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/06/21 16:14:35 | 000,444,494 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/06/21 16:14:35 | 000,072,370 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[29 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/07/18 20:05:21 | 000,000,669 | ---- | C] () -- D:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/07/18 19:23:21 | 000,000,104 | ---- | C] () -- D:\Documents and Settings\Brian\Desktop\Internet.lnk
[2011/07/12 01:52:58 | 000,038,550 | ---- | C] () -- D:\Documents and Settings\Brian\Desktop\South-Park-Ginger-Kid.JPG
[2011/07/07 13:20:50 | 000,001,804 | ---- | C] () -- D:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader X.lnk
[2011/07/07 13:20:50 | 000,001,615 | ---- | C] () -- D:\Documents and Settings\All Users\Desktop\Adobe Reader X.lnk
[2011/07/07 13:12:33 | 000,002,038 | ---- | C] () -- D:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office Word Viewer 2003.lnk
[2011/07/07 13:10:47 | 000,287,048 | ---- | C] () -- D:\Documents and Settings\Brian\Desktop\SoftonicDownloader_for_microsoft-office-word-viewer.exe
[2011/07/02 09:17:22 | 000,652,800 | ---- | C] () -- D:\Documents and Settings\Brian\Desktop\MicrosoftFixit50362.msi
[2011/05/18 22:53:41 | 000,001,940 | ---- | C] () -- D:\Documents and Settings\Brian\Local Settings\Application Data\{96C87F53-AC72-4604-A9CC-186A49F17F3C}.ini
[2011/05/18 22:40:34 | 000,001,940 | ---- | C] () -- D:\Documents and Settings\LocalService\Local Settings\Application Data\{96C87F53-AC72-4604-A9CC-186A49F17F3C}.ini
[2011/05/16 17:23:45 | 000,000,000 | ---- | C] () -- C:\Program Files\ChromeSetup.exe.part
[2011/05/16 17:23:45 | 000,000,000 | ---- | C] () -- C:\Program Files\ChromeSetup.exe
[2010/09/27 16:23:44 | 000,002,600 | ---- | C] () -- C:\WINDOWS\lsrslt.ini
[2010/07/29 12:33:16 | 000,000,000 | ---- | C] () -- D:\Documents and Settings\Brian\Local Settings\Application Data\prvlcl.dat
[2009/06/05 12:37:36 | 000,000,025 | ---- | C] () -- C:\WINDOWS\CDE SX400DEFGIPS.ini
[2009/01/31 16:30:12 | 000,000,056 | ---- | C] () -- C:\WINDOWS\SpeedGear.INI
[2008/12/19 23:50:00 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI
[2008/11/19 20:07:35 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008/10/30 15:32:07 | 000,081,920 | ---- | C] () -- C:\WINDOWS\VMCap323.exe
[2008/10/30 15:32:06 | 000,212,992 | ---- | C] () -- C:\WINDOWS\VMSnap23.exe
[2008/10/30 15:32:04 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\setupfilter.exe
[2008/10/19 13:13:19 | 000,048,398 | ---- | C] () -- C:\WINDOWS\UninstVeetleTVPlayer.exe
[2008/06/18 17:09:29 | 000,000,092 | ---- | C] () -- C:\WINDOWS\FinalAlert2.ini
[2008/06/18 16:14:42 | 000,223,128 | ---- | C] () -- C:\WINDOWS\System32\drivers\vaxscsi.sys
[2008/03/19 22:02:47 | 000,005,248 | ---- | C] () -- C:\WINDOWS\giveio.sys
[2008/03/15 22:02:36 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2008/03/15 20:01:23 | 000,000,001 | -H-- | C] () -- C:\WINDOWS\System32\m3.dll
[2008/03/02 12:59:27 | 000,185,344 | ---- | C] () -- C:\WINDOWS\patchw32.dll
[2008/02/02 15:02:34 | 000,000,600 | ---- | C] () -- D:\Documents and Settings\Brian\Local Settings\Application Data\PUTTY.RND
[2008/02/02 15:01:25 | 000,000,032 | ---- | C] () -- D:\Documents and Settings\All Users\Application Data\ezsid.dat
[2007/12/06 19:01:17 | 000,012,496 | ---- | C] () -- C:\WINDOWS\MSPuzzle.dat
[2007/11/23 21:33:08 | 000,000,041 | ---- | C] () -- D:\Documents and Settings\All Users\Application Data\trfntw32.cfg
[2007/10/10 10:34:26 | 000,000,434 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2007/09/20 14:38:09 | 000,000,634 | ---- | C] () -- C:\WINDOWS\entpack.ini
[2007/08/29 11:46:27 | 000,001,032 | ---- | C] () -- D:\Documents and Settings\Brian\Application Data\NMM-MetaData.db
[2007/06/23 20:37:19 | 000,106,496 | ---- | C] () -- C:\WINDOWS\System32\PixText.dll
[2007/05/11 21:03:30 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mngui.INI
[2007/04/26 16:22:23 | 000,503,808 | ---- | C] () -- C:\WINDOWS\System32\RFHelper.dll
[2007/04/26 16:22:23 | 000,221,184 | ---- | C] () -- C:\WINDOWS\System32\rfwdres.dll
[2007/04/26 16:22:23 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\rfshext.dll
[2007/04/26 16:22:23 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\rfhres.dll
[2007/04/26 16:22:23 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\rfshres.dll
[2007/04/26 16:22:23 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\rfstrres.dll
[2007/03/29 23:00:40 | 000,203,264 | R--- | C] () -- C:\WINDOWS\System32\CddbCdda.dll
[2007/03/26 18:10:37 | 000,111,932 | ---- | C] () -- C:\WINDOWS\System32\EPPICPrinterDB.dat
[2007/03/26 18:10:37 | 000,001,120 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_IT.dat
[2007/03/26 18:10:37 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini
[2007/03/26 18:10:36 | 000,031,053 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern131.dat
[2007/03/26 18:10:36 | 000,027,417 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern121.dat
[2007/03/26 18:10:36 | 000,026,154 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern1.dat
[2007/03/26 18:10:36 | 000,024,903 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern3.dat
[2007/03/26 18:10:36 | 000,021,390 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern5.dat
[2007/03/26 18:10:36 | 000,020,148 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern2.dat
[2007/03/26 18:10:36 | 000,011,811 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern4.dat
[2007/03/26 18:10:36 | 000,004,943 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern6.dat
[2007/03/26 18:10:36 | 000,001,146 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_DU.dat
[2007/03/26 18:10:36 | 000,001,139 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_PT.dat
[2007/03/26 18:10:36 | 000,001,139 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_BP.dat
[2007/03/26 18:10:36 | 000,001,136 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_ES.dat
[2007/03/26 18:10:36 | 000,001,129 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_FR.dat
[2007/03/26 18:10:36 | 000,001,129 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_CF.dat
[2007/03/26 18:10:36 | 000,001,107 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_GE.dat
[2007/03/26 18:10:36 | 000,001,104 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_EN.dat
[2007/03/26 18:03:58 | 000,000,025 | ---- | C] () -- C:\WINDOWS\CDE DX5000EFDG.ini
[2007/03/18 15:56:46 | 000,459,215 | ---- | C] () -- C:\Program Files\HENCH.DAT
[2007/03/18 15:56:45 | 001,059,103 | ---- | C] () -- C:\Program Files\DIGISND.DAT
[2007/03/18 15:56:45 | 000,163,061 | ---- | C] () -- C:\Program Files\AUDIO.DAT
[2007/02/10 01:04:09 | 000,149,504 | ---- | C] () -- C:\WINDOWS\UNWISE.EXE
[2007/02/02 22:11:05 | 000,048,640 | ---- | C] () -- C:\WINDOWS\mmfs.dll
[2007/02/02 22:11:05 | 000,002,560 | ---- | C] () -- C:\WINDOWS\Runservice.exe
[2007/02/02 22:11:05 | 000,000,785 | -HS- | C] () -- C:\WINDOWS\System32\mmf.sys
[2007/01/28 19:12:00 | 000,002,060 | ---- | C] () -- D:\Documents and Settings\Brian\Application Data\wklnhst.dat
[2006/12/09 14:24:10 | 000,709,658 | ---- | C] () -- C:\Program Files\WOLF.1
[2006/12/09 14:24:10 | 000,017,303 | ---- | C] () -- C:\Program Files\DEICE.EXE
[2006/12/09 14:24:10 | 000,000,350 | ---- | C] () -- C:\Program Files\FILE_ID.DIZ
[2006/12/09 14:24:10 | 000,000,077 | ---- | C] () -- C:\Program Files\INSTALL.BAT
[2006/11/27 18:29:36 | 000,001,309 | ---- | C] () -- C:\WINDOWS\disney.ini
[2006/11/05 13:33:10 | 000,000,082 | ---- | C] () -- C:\WINDOWS\MPLAYER.INI
[2006/11/04 02:01:00 | 000,000,040 | -HS- | C] () -- D:\Documents and Settings\Brian\Application Data\.zreglib
[2006/10/06 19:17:13 | 000,001,753 | ---- | C] () -- D:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2006/09/13 11:31:36 | 000,000,113 | ---- | C] () -- C:\WINDOWS\System32\NemuAudio08.ini
[2006/09/03 13:04:16 | 000,002,988 | ---- | C] () -- C:\WINDOWS\mozver.dat
[2006/08/29 14:35:42 | 000,000,030 | ---- | C] () -- C:\WINDOWS\Iedit.INI
[2006/08/29 09:45:54 | 000,000,012 | ---- | C] () -- C:\WINDOWS\bthservsdp.dat
[2006/08/21 12:28:54 | 000,079,872 | ---- | C] () -- D:\Documents and Settings\Brian\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2006/08/20 23:17:16 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\UAService7.exe
[2006/08/14 14:03:13 | 000,000,158 | ---- | C] () -- C:\WINDOWS\civ.ini
[2006/08/13 13:32:10 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2006/08/12 23:33:30 | 000,000,471 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2006/08/12 21:36:48 | 000,000,128 | ---- | C] () -- D:\Documents and Settings\Brian\Local Settings\Application Data\fusioncache.dat
[2006/06/30 10:56:27 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2006/06/30 10:42:56 | 000,198,144 | ---- | C] () -- C:\WINDOWS\System32\_psisdecd.dll
[2006/06/30 10:38:09 | 000,000,514 | ---- | C] () -- C:\WINDOWS\System32\SETUPPC.INI
[2006/06/30 10:33:28 | 000,000,213 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2006/06/30 10:31:29 | 000,007,605 | ---- | C] () -- C:\WINDOWS\HDReg.ini
[2006/06/30 10:29:55 | 000,000,335 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2006/06/30 10:17:52 | 000,135,168 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2006/06/30 10:17:52 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2006/03/07 13:35:12 | 000,006,465 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2006/01/12 12:23:10 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2005/11/15 10:26:12 | 000,112,794 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2005/07/29 16:21:32 | 000,011,988 | ---- | C] () -- C:\WINDOWS\System32\drivers\vbtenum.sys
[2004/12/16 16:32:54 | 000,013,304 | ---- | C] () -- C:\WINDOWS\System32\drivers\BTNetFilter.sys
[2004/08/10 17:13:32 | 000,000,880 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2004/08/10 17:03:24 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2004/08/10 16:55:57 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2004/08/10 16:48:11 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2004/08/10 16:46:35 | 000,395,960 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2004/08/10 16:38:12 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004/08/10 16:38:09 | 000,444,494 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004/08/10 16:38:09 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004/08/10 16:38:09 | 000,072,370 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004/08/10 16:38:09 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004/08/10 16:38:08 | 000,004,613 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2004/08/10 16:38:06 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2004/08/10 16:38:05 | 001,659,648 | ---- | C] () -- C:\WINDOWS\System32\izeffxie.dat
[2004/08/10 16:38:05 | 000,633,600 | ---- | C] () -- C:\WINDOWS\System32\lwieqtel.dat
[2004/08/10 16:38:05 | 000,149,248 | ---- | C] () -- C:\WINDOWS\System32\yintyyjc.dat
[2004/08/10 16:38:05 | 000,149,248 | ---- | C] () -- C:\WINDOWS\System32\iggfambt.dat
[2004/08/10 16:38:05 | 000,145,152 | ---- | C] () -- C:\WINDOWS\System32\velhrwzd.dat
[2004/08/10 16:38:05 | 000,050,432 | ---- | C] () -- C:\WINDOWS\System32\khnutiau.dat
[2004/08/10 16:38:05 | 000,047,360 | ---- | C] () -- C:\WINDOWS\System32\cjgvpist.dat
[2004/08/10 16:38:05 | 000,039,680 | ---- | C] () -- C:\WINDOWS\System32\pyfrxnyk.dat
[2004/08/10 16:38:04 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2004/08/10 16:37:57 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004/08/10 16:37:57 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004/08/10 16:37:48 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004/08/10 16:37:40 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2002/01/12 19:29:21 | 000,001,024 | ---- | C] () -- C:\WINDOWS\System32\atsdrve.dll
[2001/07/06 10:18:48 | 000,307,200 | ---- | C] () -- C:\WINDOWS\System32\fxstudio.dll
[2001/06/28 12:37:28 | 000,307,200 | ---- | C] () -- C:\WINDOWS\System32\drumpad.dll
[2001/06/28 12:33:40 | 000,274,432 | ---- | C] () -- C:\WINDOWS\System32\Animation.dll
[2000/05/11 00:15:02 | 000,078,085 | ---- | C] () -- C:\WINDOWS\System32\Pattern.dat
[2000/03/29 01:58:40 | 000,280,576 | ---- | C] () -- C:\WINDOWS\System32\pxd_kom.dll
[2000/03/28 15:27:42 | 000,075,976 | ---- | C] () -- C:\WINDOWS\System32\BASSDEC.dll
[1997/06/14 03:56:08 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll

========== LOP Check ==========

[2006/08/29 09:33:15 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\Bluetooth
[2008/02/08 23:21:48 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\Channel4
[2011/03/22 08:51:36 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2008/11/07 14:21:06 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\Disk Cleaner
[2009/06/05 13:07:39 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\EPSON
[2007/07/24 18:35:02 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\Installations
[2007/07/23 00:39:17 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\Juniper Networks
[2010/08/07 20:24:05 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\Kontiki
[2011/06/10 19:17:16 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\MFAData
[2008/10/01 19:28:10 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\Musicnotes
[2008/11/28 11:04:08 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\MySQL
[2006/06/30 10:37:50 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\OD2
[2007/07/24 18:39:38 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\PC Suite
[2009/10/24 22:36:13 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\Sports Interactive
[2007/11/23 21:33:08 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\Sys
[2011/07/16 13:31:04 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\TEMP
[2009/11/14 18:48:32 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\UDL
[2006/06/30 10:40:12 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\Ulead Systems
[2006/06/30 10:31:57 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\VadeRetro
[2009/10/28 11:03:05 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\WinZip
[2011/02/21 16:43:17 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\{41054FB7-AE0F-4DCF-9073-74BC03EFC472}
[2010/01/25 14:23:33 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2009/04/10 23:46:37 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2008/12/23 00:32:04 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\Chessmaster Challenge
[2010/09/28 15:42:27 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\D397F1E860309AA91822402A6B670BB1
[2008/11/26 00:27:56 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\DAEMON Tools
[2011/02/19 12:29:03 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\DAEMON Tools Lite
[2010/11/05 21:03:32 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\Dev-Cpp
[2008/07/20 12:44:40 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\EPSON
[2006/11/05 13:33:10 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\FTW
[2009/08/14 11:41:20 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\GARMIN
[2011/07/15 20:12:22 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\GetRightToGo
[2008/03/15 17:57:47 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\hte
[2009/05/12 22:48:34 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\ImgBurn
[2007/06/16 08:11:57 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\IMVU
[2007/07/23 00:39:17 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\Juniper Networks
[2006/10/07 19:29:43 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\Kinsey87
[2006/08/29 11:56:39 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\Leadertech
[2006/09/17 16:34:42 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\Mp3tag
[2006/09/03 15:07:11 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\MSNInstaller
[2007/01/22 23:47:58 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\Nikon
[2007/08/29 11:46:27 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\Nokia
[2007/07/24 18:44:03 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\Nokia Multimedia Player
[2009/10/22 23:41:27 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\Notepad++
[2007/11/23 21:33:08 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\Octaga
[2006/08/12 23:15:10 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\OD2
[2007/07/24 18:38:34 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\PC Suite
[2007/03/28 22:54:24 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\SecondLife
[2007/03/31 19:33:27 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\Softplicity
[2008/12/23 00:29:55 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\SpinTop
[2011/03/16 16:29:56 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\Sports Interactive
[2007/05/11 21:00:38 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\Teleca
[2007/02/23 12:20:48 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\Template
[2008/03/02 12:59:27 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\ubi.com
[2006/08/12 23:24:02 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\Ulead Systems
[2006/09/05 18:24:39 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\VadeRetro
[2009/08/10 14:19:02 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Brian\Application Data\VoipCheapCom
[2011/07/18 17:34:50 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
[2011/07/18 19:00:00 | 000,000,254 | ---- | M] () -- C:\WINDOWS\Tasks\RMSchedule.job

========== Purity Check ==========



< End of report >
aoibhe bree
Regular Member
 
Posts: 15
Joined: June 5th, 2011, 9:38 am
Advertisement
Register to Remove

Re: Babylon Search

Unread postby diver79 » July 19th, 2011, 7:24 am

Hi Aoibhe,

Things are looking good, most of the infection has been removed, but there is some more work to be done before we can be sure the PC is clean.

Step 1 - Temp File Cleaner
  • Please download TFC and save it to your desktop.
  • Save any unsaved work. TFC will close all open application windows.
  • Double-click TFC.exe to run the program.
  • If prompted, click Yes to reboot.
  • NOTE: Save your work.TFC will automatically close any open programs, let it run uninterrupted. It shouldn't take longer than a couple of minutes, and may only take a few seconds. Only if needed will you be prompted to reboot.


Step 2 - Kaspersky Online Scan
You can use either Internet Explorer or Mozilla FireFox for this scan.

  • Hold down Control then click on the following link to open a new window to Kaspersky Online Scan
  • Read through the requirements and privacy statement and click on Accept button.
  • It will start downloading and installing the scanner and virus definitions. You will be prompted to install an application from Kaspersky. Click Run.
  • When the downloads have finished, click on Settings.
  • Make sure these boxes are checked (ticked). If they are not, please tick them and click on the Save button:
    • Spyware, Adware, Dialers, and other potentially dangerous programs
    • Archives
  • Click on My Computer under Scan. * This will take a while. Please be patient *.
  • Once the scan is complete, it will display the results. Click on View Scan Report.
  • You will see a list of infected items there. Click on Save Report As....
  • Save this report to a convenient place. Change the Files of type to Text file (.txt) before clicking on the Save button.
  • Please post this log in your next reply.

This online tutorial will help explain how to use the aforementioned online scan.
User avatar
diver79
Retired Graduate
 
Posts: 1004
Joined: January 3rd, 2010, 7:03 pm

Re: Babylon Search

Unread postby Cypher » July 22nd, 2011, 11:53 am

Due to a lack of response, this topic is now closed.

If you still require help, please open a new thread in the Infected? Virus, malware, adware, ransomware, oh my! forum, include a fresh FRST log, and wait for a new helper.
User avatar
Cypher
Admin/Teacher
Admin/Teacher
 
Posts: 14959
Joined: October 29th, 2008, 12:49 pm
Location: Land Of The Leprechauns

Previous

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 46 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware