.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft® Windows Vista™ Home Premium
Boot Device: \Device\HarddiskVolume3
Install Date: 8/12/08 6:51:27 PM
System Uptime: 10/25/13 11:43:58 AM (1 hours ago)
.
Motherboard: Dell Inc. | | 0YP944
Processor: Intel(R) Core(TM)2 Duo CPU T5750 @ 2.00GHz | Microprocessor | 2000/166mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 223 GiB total, 90.465 GiB free.
D: is FIXED (NTFS) - 10 GiB total, 3.984 GiB free.
E: is CDROM (CDFS)
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
.
==== Installed Programs ======================
.
Update for Microsoft Office 2007 (KB2508958)
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader X (10.1.
Advanced Audio FX Engine
Akamai NetSession Interface
Alarm Clock version 1.0
AM-DeadLink 4.6
America's Boating Course v3.2
Anti-Twin (Installation 4/29/13)
Apple Application Support
Apple Mobile Device Support
Apple Software Update
AVS Media Player 4.1.9.95
AVS Screen Capture version 2.0.1
AVS Update Manager 1.0
AVS Video Converter 8
AVS Video Editor 6
AVS Video Recorder 2.4
AVS4YOU Software Navigator 1.4
Awesome Duplicate Photo Finder v. 1.0.1
Belarc Advisor 8.3
Bitdefender 60-Second Virus Scanner
BoatU.S. Simulator Project
Bonjour
Broadcom Gigabit NetLink Controller
Browser Address Error Redirector
Canon Easy-WebPrint EX
Canon iP2700 series Printer Driver
Canon My Printer
Carbonite
CCleaner
Chessmaster 10th Edition
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
CloneSpy 2.62
Coastal Explorer Express
CrystalDiskInfo 5.6.2
Dell Dock
Dell Driver Download Manager
Dell Getting Started Guide
Dell System Detect
Dell Touchpad
Dell Webcam Central
Dell Wireless WLAN Card Utility
Device Doctor v2.1
DiskCheckup v3.1
DriverUpdate
EDocs
Elevated Installer
EPSON Printer Software
EPSON Scan
FreeSizer v.1.0.0
FreeUndelete 2.1.36867.1
Garmin City Navigator North America NT 2014.10 Update
Garmin Communicator Plugin
Garmin Express
Garmin Express Tray
Garmin MapInstall
Garmin Update Service
Garmin USB Drivers
Google Chrome
Google Update Helper
HD Tune 2.55
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Integrated Webcam Driver (1.06.03.0309)
Intel(R) Graphics Media Accelerator Driver
Intel(R) Matrix Storage Manager
Intel(R) TV Wizard
Internet Explorer (Enable DEP)
ITECIR Driver
iTuner
iTunes
Java 7 Update 45
Java Auto Updater
Juno Internet
K-Lite Mega Codec Pack 9.4.2
KeyScrambler
MediaDirect
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Application Error Reporting
Microsoft Fix it Center
Microsoft Money Plus
Microsoft Money Shared Libraries
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Converter Pack
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Web Apps Browser Plugin
Microsoft Office Word MUI (English) 2007
Microsoft PowerPoint Viewer
Microsoft Security Client
Microsoft Security Essentials
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Works 6-9 Converter
Moffsoft FreeCalc
Mozilla Firefox 24.0 (x86 en-US)
Mozilla Maintenance Service
My Dell
Navionics World
NirSoft Wireless Network Watcher
Nitro Reader 3
Packed Chess Free
Picasa 3
PrimoPDF -- brought to you by Nitro PDF Software
Prism Video File Converter
QuickSet
QuickTime
Revo Uninstaller 1.95
RoboForm 7-9-2-5 (All Users)
Roxio Creator Audio
Roxio Creator Copy
Roxio Creator Data
Roxio Creator DE
Roxio Creator Tools
Roxio Express Labeler 3
Roxio Update Manager
Search Protect by conduit
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2832407)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2861188)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Security Update for Microsoft .NET Framework 4 Extended (KB2736428)
Security Update for Microsoft .NET Framework 4 Extended (KB2742595)
Security Update for Microsoft .NET Framework 4 Extended (KB2858302v2)
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687309) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2827329) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2827330) 32-Bit Edition
Should I Remove It
SketchUp 8
Skype™ 6.9
SMPlayer 0.8.6.0
SoftPerfect WiFi Guard version 1.0.2
SpeedBit Video Downloader
SpellForce 2 - Shadow Wars
Spybot - Search & Destroy
System Requirements Lab for Intel
TouchFreeze
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2836939)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VC80CRTRedist - 8.0.50727.6195
VLC media player 2.0.6
vReveal 3
What's my computer doing 1.xx
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0)
WinZip 17.5
Xfire (remove only)
Xfire 2.0
Xfire Codec (remove only)
ZoneAlarm LTD Toolbar
.
==== End Of File ===========================
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 9.0.8112.16514 BrowserJavaVersion: 10.45.2
Run by Wayne at 12:40:06 on 2013-10-25
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.2.1033.18.3573.1853 [GMT -4:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Spybot - Search and Destroy *Enabled/Updated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\system32\SLsvc.exe
C:\Program Files\Dell\DellDock\DockLogin.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\WLTRYSVC.EXE
C:\Windows\System32\bcmwltry.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
C:\Program Files\DriverUpdate\DriverUpdate.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
C:\Program Files\Packed Bytes\Packed Chess Free\PackedChessFreeServer.exe
C:\ProgramData\Rpcnet\Bin\rpcld.exe
C:\Windows\System32\rpcnet.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\System32\WLTRAY.EXE
C:\Windows\System32\igfxpers.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Program Files\Carbonite\Carbonite Backup\CarboniteUI.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Windows\System32\alg.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
C:\Users\Wayne\AppData\Local\Akamai\netsession_win.exe
C:\Program Files\Bitdefender\60-Second Virus Scanner\pdiface.exe
C:\Program Files\TouchFreeze\TouchFreeze.exe
C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\WinZip\WZQKPICK32.EXE
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Program Files\Bitdefender\60-Second Virus Scanner\pdscan.exe
C:\Users\Wayne\AppData\Local\Akamai\netsession_win.exe
C:\Program Files\Juno\exec.exe
C:\Program Files\Juno\exec.exe
C:\Windows\system32\vssvc.exe
c:\Program Files\Microsoft Security Client\MpCmdRun.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k swprv
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.ca/ig/dell?hl=en&clie ... bd=5080813
uWindow Title = Internet Explorer provided by Dell
uSearch Bar = hxxp://my.juno.com/s/search?r=minisearch
uSearch Page = hxxp://my.juno.com/s/search?r=minisearch
uDefault_Page_URL = hxxp://www.google.ca/ig/dell?hl=en&clie ... bd=5080813
mSearch Page = hxxp://my.juno.com/s/search?r=minisearch
mDefault_Search_URL = hxxp://my.juno.com/s/search?r=minisearch
uSearchURL,(Default) = hxxp://my.juno.com/s/search?r=minisearch
mSearchAssistant = hxxp://my.juno.com/s/search?r=minisearch
BHO: KeyScramblerBHO Class: {2B9F5787-88A5-4945-90E7-C4B18563BC5E} - c:\program files\keyscrambler\KeyScramblerIE.dll
BHO: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - c:\program files\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll
BHO: Canon Easy-WebPrint EX BHO: {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - c:\program files\canon\easy-webprint ex\ewpexbho.dll
BHO: SearchPredictObj Class: {389943B0-C3A2-4E69-82CB-8596A84CB3DC} - c:\program files\searchpredict\SearchPredict.dll
BHO: Pop-up Blocker: {52706EF7-D7A2-49AD-A615-E903858CF284} - c:\program files\juno\qsacc\X1IEBHO.dll
BHO: RoboForm Toolbar Helper: {724d43a9-0d85-11d4-9908-00400523e39a} - c:\program files\siber systems\ai roboform\roboform.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: SBCONVERT Class: {92A9ACF4-9333-43AE-9698-DB283326F87F} - c:\program files\speedbit video downloader\toolbar\tbcore3.dll
BHO: CBrowserHelperObject Object: {CA6319C0-31B7-401E-A518-A07C3DB8F777} - c:\program files\dell\bae\BAE.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
BHO: Juno Toolbar Helper: {FE3098B1-04A3-41fd-8CA9-BEA39CB14C87} - c:\program files\juno\UCReg.dll
BHO: GrabberObj Class: {FF7C3CF0-4B15-11D1-ABED-709549C10000} - c:\program files\speedbit video downloader\toolbar\Grabber.dll
TB: &RoboForm Toolbar: {724D43A0-0D85-11D4-9908-00400523E39A} - c:\program files\siber systems\ai roboform\roboform.dll
TB: &RoboForm Toolbar: {724d43a0-0d85-11d4-9908-00400523e39a} - c:\program files\siber systems\ai roboform\roboform.dll
TB: SpeedBit Video Downloader: {0329E7D6-6F54-462D-93F6-F5C3118BADF2} - c:\program files\speedbit video downloader\toolbar\tbcore3.dll
TB: Canon Easy-WebPrint EX: {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - c:\program files\canon\easy-webprint ex\ewpexhlp.dll
EB: Canon Easy-WebPrint EX: {21347690-EC41-4F9A-8887-1F4AEE672439} - c:\program files\canon\easy-webprint ex\ewpexhlp.dll
uRun: [Akamai NetSession Interface] "c:\users\wayne\appdata\local\akamai\netsession_win.exe"
uRun: [pdiface] c:\program files\bitdefender\60-second virus scanner\pdiface.exe -noshow
uRun: [Speech Recognition] "c:\windows\speech\common\sapisvr.exe" -SpeechUX -Startup
uRun: [DellSystemDetect] c:\users\wayne\appdata\roaming\microsoft\windows\start menu\programs\dell\Dell System Detect.appref-ms
uRun: [TouchFreeze] c:\program files\touchfreeze\TouchFreeze.exe
uRun: [RoboForm] "c:\program files\siber systems\ai roboform\RoboTaskBarIcon.exe"
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
mRun: [IAAnotif] "c:\program files\intel\intel matrix storage manager\Iaanotif.exe"
mRun: [Broadcom Wireless Manager UI] c:\windows\system32\WLTRAY.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey
mRun: [Apoint] c:\program files\delltpad\Apoint.exe
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [Carbonite Backup] c:\program files\carbonite\carbonite backup\CarboniteUI.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [SysTrayApp] c:\program files\idt\wdm\sttray.exe
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [SDTray] "c:\program files\spybot - search & destroy 2\SDTray.exe"
dRun: [SearchProtect] \SearchProtect\bin\cltmng.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\winzip~1.lnk - c:\program files\winzip\WZQKPICK32.EXE
mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Clear Fields - c:\program files\siber systems\ai roboform\RoboFormComClearFields.html
IE: Customize Menu - c:\program files\siber systems\ai roboform\RoboFormComCustomizeIEMenu.html
IE: Display All Images with Full Quality - "res://c:\program files\juno\qsacc\appres.dll/228"
IE: Display Image with Full Quality - "res://c:\program files\juno\qsacc\appres.dll/227"
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: Fill Forms - c:\program files\siber systems\ai roboform\RoboFormComFillForms.html
IE: Reset Fields - c:\program files\siber systems\ai roboform\RoboFormComResetFields.html
IE: RoboForm Editor - c:\program files\siber systems\ai roboform\RoboFormComEditIdent.html
IE: RoboForm Options - c:\program files\siber systems\ai roboform\RoboFormComOptions.html
IE: Save Forms - c:\program files\siber systems\ai roboform\RoboFormComSavePass.html
IE: Set Fields - c:\program files\siber systems\ai roboform\RoboFormComSetFields.html
IE: Show RoboForm Toolbar - c:\program files\siber systems\ai roboform\RoboFormComShowToolbar.html
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {320AF880-6646-11D3-ABEE-C5DBF3571F46} - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - c:\program files\siber systems\ai roboform\roboform.dll
IE: {320AF880-6646-11D3-ABEE-C5DBF3571F49} - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - c:\program files\siber systems\ai roboform\roboform.dll
IE: {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - {B745F984-EF2E-40D6-A9AC-D8CED7230E61} - c:\program files\keyscrambler\KeyScramblerIE.dll
IE: {724d43aa-0d85-11d4-9908-00400523e39a} - {724d43aa-0d85-11d4-9908-00400523e39a} - c:\program files\siber systems\ai roboform\roboform.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
Trusted Zone: dell.com
Trusted Zone: juno.com
TCP: NameServer = 192.168.5.1 64.134.255.2 64.134.255.10
TCP: Interfaces\{70161D38-6DF1-4D89-8138-BC825099A03E} : DHCPNameServer = 69.26.64.253 69.26.64.254
TCP: Interfaces\{75065DA0-02FA-40D3-9637-5711D6973863} : NameServer = 208.67.222.222,208.67.220.220
TCP: Interfaces\{75065DA0-02FA-40D3-9637-5711D6973863} : DHCPNameServer = 192.168.5.1 64.134.255.2 64.134.255.10
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - c:\program files\belarc\advisor\system\BAVoilaX.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
Notify: igfxcui - igfxdev.dll
Notify: SDWinLogon - SDWinLogon.dll
SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} -
LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\30.0.1599.101\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\wayne\appdata\roaming\mozilla\firefox\profiles\x0bzg93y.default\
FF - prefs.js: browser.search.defaulturl - hxxp://home.speedbit.com/search.aspx?s=C7Ra206&q=
FF - prefs.js: browser.search.selectedEngine - SpeedBit Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - prefs.js: keyword.URL - hxxp://www.basicseek.com/?tmp=nemo_resu ... &keywords=
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\progra~1\micros~2\office14\NPSPWRAP.DLL
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll
FF - plugin: c:\program files\divx\divx plus web player\npdivx32.dll
FF - plugin: c:\program files\google\picasa3\npPicasa3.dll
FF - plugin: c:\program files\google\update\1.3.21.165\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.20913.0\npctrlui.dll
FF - plugin: c:\program files\nitro\reader 3\npdf.dll
FF - plugin: c:\program files\nitro\reader 3\npnitroie.dll
FF - plugin: c:\program files\nitro\reader 3\npnitromozilla.dll
FF - plugin: c:\users\wayne\appdata\roaming\mozilla\firefox\profiles\x0bzg93y.default\extensions\{195a3098-0bd5-4e90-ae22-ba1c540afd1e}\plugins\npGarmin.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_9_900_117.dll
FF - ExtSQL: 2013-09-30 01:00; donottrackplus@abine.com; c:\users\wayne\appdata\roaming\mozilla\firefox\profiles\x0bzg93y.default\extensions\donottrackplus@abine.com
FF - ExtSQL: 2013-10-13 18:12; 2.0@disconnect.me; c:\users\wayne\appdata\roaming\mozilla\firefox\profiles\x0bzg93y.default\extensions\2.0@disconnect.me.xpi
.
---- FIREFOX POLICIES ----
FF - user.js: extentions.y2layers.installId - fd45bfb8-b4a7-4a51-ad1e-c127044fa8ee
FF - user.js: extentions.y2layers.defaultEnableAppsList - twittube,buzzdock,YontooNewOffers
.
FF - user.js: extensions.autoDisableScopes - 14
.
============= SERVICES / DRIVERS ===============
.
R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2013-6-18 211560]
R2 DockLoginService;Dock Login Service;c:\program files\dell\delldock\DockLogin.exe [2008-4-28 161048]
R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-20 21504]
R2 Garmin Core Update Service;Garmin Core Update Service;c:\program files\garmin\core update service\Garmin.Cartography.MapUpdate.CoreService.exe [2013-3-12 185688]
R2 NitroReaderDriverReadSpool3;NitroPDFReaderDriverCreatorReadSpool3;c:\program files\nitro\reader 3\NitroPDFReaderDriverService3.exe [2013-2-13 196624]
R2 PackedChessFreeServer;Packed Chess Free Server;c:\program files\packed bytes\packed chess free\PackedChessFreeServer.exe [2012-3-6 25600]
R2 pdserv;Bitdefender 60-Second Virus Scanner Service;c:\program files\bitdefender\60-second virus scanner\pdscan.exe \svc --> c:\program files\bitdefender\60-second virus scanner\pdscan.exe \svc [?]
R2 rpcld;Remote Procedure Call (RPC) LD;c:\programdata\rpcnet\bin\rpcld.exe --> c:\programdata\rpcnet\bin\rpcld.exe [?]
R2 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files\spybot - search & destroy 2\SDFSSvc.exe [2013-10-24 3921880]
R2 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files\spybot - search & destroy 2\SDUpdSvc.exe [2013-10-24 1042272]
R2 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files\spybot - search & destroy 2\SDWSCSvc.exe [2013-10-24 171416]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys [2008-9-22 112128]
R3 k57nd60x;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\k57nd60x.sys [2008-8-13 203264]
R3 KeyScrambler;KeyScrambler;c:\windows\system32\drivers\keyscrambler.sys [2012-1-4 173880]
R3 OA001Ufd;Creative Camera OA001 Upper Filter Driver;c:\windows\system32\drivers\OA001Ufd.sys [2009-3-6 133632]
R3 OA001Vid;Creative Camera OA001 Function Driver;c:\windows\system32\drivers\OA001Vid.sys [2009-3-8 280096]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 CltMngSvc;Search Protect by Conduit Updater;c:\program files\searchprotect\bin\cltmngsvc.exe --> c:\program files\searchprotect\bin\CltMngSvc.exe [?]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-9-5 171680]
S3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\drivers\dc3d.sys [2011-8-10 45288]
S3 MatSvc;Microsoft Automated Troubleshooting Service;c:\program files\microsoft fix it center\Matsvc.exe [2011-6-13 267568]
S3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\drivers\NisDrvWFP.sys [2013-6-18 107392]
S3 NisSrv;Microsoft Network Inspection;c:\program files\microsoft security client\NisSrv.exe [2013-8-12 295376]
S3 SWDUMon;SWDUMon;c:\windows\system32\drivers\SWDUMon.sys [2012-10-31 13464]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2013-7-20 754856]
S3 XFDriver;XFDriver;c:\program files\xfire2\XFDriver.sys [2013-8-19 16648]
.
=============== Created Last 30 ================
.
2013-10-25 03:35:46 -------- d-----w- c:\program files\Spybot - Search & Destroy 2
2013-10-25 03:09:53 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-10-25 00:34:51 -------- d-----w- c:\program files\HD Tune
2013-10-24 19:04:18 7796464 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{1de7dfc2-443c-4c62-9bde-a4838a4d6034}\mpengine.dll
2013-10-24 16:23:23 -------- d-----w- c:\program files\CrystalDiskInfo
2013-10-23 17:57:46 7796464 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll
2013-10-20 03:22:32 -------- d-----w- c:\users\wayne\appdata\local\WinZip
2013-10-20 01:43:39 -------- d-----w- c:\users\wayne\appdata\roaming\Systweak
2013-10-19 04:39:21 -------- d-----w- c:\windows\system32\ShellExtBridge
2013-10-19 04:39:14 -------- d-----w- c:\program files\Moo0
2013-10-19 00:08:54 -------- d-----w- c:\program files\DiskCheckup
2013-10-18 16:43:03 -------- d-----w- c:\program files\MP3Gain
2013-10-18 14:47:43 718712 ------w- c:\programdata\microsoft\microsoft antimalware\definition updates\nisbackup\gapaengine.dll
2013-10-18 14:47:42 719224 ------w- c:\programdata\microsoft\microsoft antimalware\definition updates\{c9f2d784-8174-4c78-909d-3aa51b8260cd}\gapaengine.dll
2013-10-17 20:02:24 0 ----a-w- c:\windows\system32\OLDEF6E.tmp
2013-10-17 20:02:16 0 ----a-w- c:\windows\system32\OLDD079.tmp
2013-10-17 20:02:08 0 ----a-w- c:\windows\system32\OLDB201.tmp
2013-10-17 20:02:02 0 ----a-w- c:\windows\system32\OLD982A.tmp
2013-10-17 20:01:53 0 ----a-w- c:\windows\system32\OLD7761.tmp
2013-10-17 20:01:43 0 ----a-w- c:\windows\system32\OLD4F51.tmp
2013-10-17 20:01:42 -------- d-----w- c:\windows\system32\SRSLabs
2013-10-17 19:25:52 -------- d-----r- c:\program files\Skype
2013-10-17 03:10:23 257144 ----a-w- c:\windows\system32\drivers\Apfiltr.sys
2013-10-14 21:35:17 -------- d-----w- c:\users\wayne\appdata\local\fontconfig
2013-10-14 21:33:39 -------- d-----w- c:\users\wayne\.smplayer
2013-10-14 21:31:43 -------- d-----w- c:\program files\SMPlayer
2013-10-11 13:24:04 0 ----a-w- c:\windows\system32\SET368F.tmp
2013-10-11 13:24:04 0 ----a-w- c:\windows\system32\SET342C.tmp
2013-10-11 13:24:00 0 ----a-w- c:\windows\system32\SET26EB.tmp
2013-10-11 13:24:00 0 ----a-w- c:\windows\system32\SET2504.tmp
2013-10-11 12:50:23 532480 ----a-w- c:\windows\system32\comctl32.dll
2013-10-10 13:29:16 527064 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2013-10-10 13:26:59 293376 ----a-w- c:\windows\system32\atmfd.dll
2013-10-10 13:26:58 34304 ----a-w- c:\windows\system32\atmlib.dll
2013-10-10 13:26:53 35328 ----a-w- c:\windows\system32\drivers\usbscan.sys
2013-10-10 13:26:53 25472 ----a-w- c:\windows\system32\drivers\hidparse.sys
2013-10-05 22:56:23 -------- d-----w- c:\program files\TouchFreeze
2013-09-30 00:41:05 -------- d-----w- c:\programdata\PC-Doctor for Windows
2013-09-30 00:41:04 -------- d-----w- c:\programdata\PCDr
2013-09-30 00:41:04 -------- d-----w- c:\program files\Dell Support Center
2013-09-30 00:40:39 -------- d-----w- c:\program files\My Dell
2013-09-30 00:32:48 -------- d-----w- c:\users\wayne\appdata\roaming\PCDr
.
==================== Find3M ====================
.
2013-10-25 15:46:21 13464 ----a-w- c:\windows\system32\drivers\SWDUMon.sys
2013-10-25 15:45:44 17408 ----a-w- c:\windows\system32\rpcnetp.exe
2013-10-25 15:45:40 69792 ----a-w- c:\windows\system32\rpcnet.dll
2013-10-09 15:56:26 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-10-09 15:56:26 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-09-25 14:09:31 69792 ------w- c:\windows\system32\rpcnet.exe
2013-09-25 14:07:07 17408 ----a-w- c:\windows\system32\rpcnetp.dll
2013-09-22 10:22:59 1800704 ----a-w- c:\windows\system32\jscript9.dll
2013-09-22 10:14:39 1427968 ----a-w- c:\windows\system32\inetcpl.cpl
2013-09-22 10:13:22 1129472 ----a-w- c:\windows\system32\wininet.dll
2013-09-22 10:08:41 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2013-09-22 10:06:58 420864 ----a-w- c:\windows\system32\vbscript.dll
2013-09-22 10:03:18 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2013-08-29 07:36:04 2050048 ----a-w- c:\windows\system32\win32k.sys
2013-08-27 02:47:50 219648 ----a-w- c:\windows\system32\d3d10_1core.dll
2013-08-27 02:47:50 189952 ----a-w- c:\windows\system32\d3d10core.dll
2013-08-27 02:47:50 160768 ----a-w- c:\windows\system32\d3d10_1.dll
2013-08-27 02:47:50 1029120 ----a-w- c:\windows\system32\d3d10.dll
2013-08-27 01:52:08 1172480 ----a-w- c:\windows\system32\d3d10warp.dll
2013-08-27 01:50:40 486400 ----a-w- c:\windows\system32\d3d10level9.dll
2013-08-27 01:32:20 683008 ----a-w- c:\windows\system32\d2d1.dll
2013-08-27 01:28:36 1069056 ----a-w- c:\windows\system32\DWrite.dll
2013-08-27 01:28:35 798208 ----a-w- c:\windows\system32\FntCache.dll
2013-08-02 04:09:35 1548288 ----a-w- c:\windows\system32\WMVDECOD.DLL
2013-08-01 12:33:33 53894 ----a-w- c:\programdata\1375360384.bdinstall.bin
2013-08-01 12:01:27 53894 ----a-w- c:\programdata\1375358461.bdinstall.bin
2013-08-01 11:31:11 53894 ----a-w- c:\programdata\1375356644.bdinstall.bin
2013-08-01 11:00:55 53894 ----a-w- c:\programdata\1375354824.bdinstall.bin
2013-08-01 10:30:32 53894 ----a-w- c:\programdata\1375353008.bdinstall.bin
2013-08-01 10:00:18 53894 ----a-w- c:\programdata\1375351183.bdinstall.bin
2013-08-01 09:29:53 53893 ----a-w- c:\programdata\1375349363.bdinstall.bin
2013-08-01 08:59:33 53893 ----a-w- c:\programdata\1375347532.bdinstall.bin
2013-08-01 08:29:02 53893 ----a-w- c:\programdata\1375345716.bdinstall.bin
2013-08-01 07:58:38 53894 ----a-w- c:\programdata\1375343880.bdinstall.bin
2013-08-01 07:28:09 53894 ----a-w- c:\programdata\1375342061.bdinstall.bin
2013-08-01 06:57:48 53894 ----a-w- c:\programdata\1375340238.bdinstall.bin
2013-08-01 06:27:26 53894 ----a-w- c:\programdata\1375338421.bdinstall.bin
2013-08-01 05:57:08 53893 ----a-w- c:\programdata\1375336599.bdinstall.bin
2013-08-01 05:26:48 53894 ----a-w- c:\programdata\1375334778.bdinstall.bin
2013-08-01 04:56:27 53894 ----a-w- c:\programdata\1375332963.bdinstall.bin
2013-08-01 04:26:12 53894 ----a-w- c:\programdata\1375331144.bdinstall.bin
2013-08-01 03:55:54 53893 ----a-w- c:\programdata\1375329329.bdinstall.bin
2013-08-01 03:25:39 53894 ----a-w- c:\programdata\1375327512.bdinstall.bin
2013-08-01 03:16:32 638400 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2013-08-01 02:55:21 53893 ----a-w- c:\programdata\1375325684.bdinstall.bin
2013-08-01 02:49:15 37376 ----a-w- c:\windows\system32\cdd.dll
2013-08-01 02:24:53 53894 ----a-w- c:\programdata\1375323863.bdinstall.bin
2013-08-01 01:54:33 53893 ----a-w- c:\programdata\1375322046.bdinstall.bin
2013-08-01 01:24:14 53894 ----a-w- c:\programdata\1375320228.bdinstall.bin
2013-08-01 00:53:57 53894 ----a-w- c:\programdata\1375318413.bdinstall.bin
2013-08-01 00:23:42 53892 ----a-w- c:\programdata\1375316598.bdinstall.bin
2013-07-31 23:53:28 53894 ----a-w- c:\programdata\1375314782.bdinstall.bin
2013-07-31 23:23:12 53894 ----a-w- c:\programdata\1375312968.bdinstall.bin
2013-07-31 22:52:57 53894 ----a-w- c:\programdata\1375311131.bdinstall.bin
2013-07-31 22:22:20 53894 ----a-w- c:\programdata\1375309315.bdinstall.bin
2013-07-31 21:52:04 53894 ----a-w- c:\programdata\1375307500.bdinstall.bin
2013-07-31 21:21:51 53894 ----a-w- c:\programdata\1375305685.bdinstall.bin
2013-07-31 20:51:36 53894 ----a-w- c:\programdata\1375303865.bdinstall.bin
2013-07-31 20:21:14 53893 ----a-w- c:\programdata\1375302050.bdinstall.bin
2013-07-31 19:50:59 53892 ----a-w- c:\programdata\1375300233.bdinstall.bin
2013-07-31 19:20:43 53894 ----a-w- c:\programdata\1375298412.bdinstall.bin
2013-07-31 18:50:22 53893 ----a-w- c:\programdata\1375296597.bdinstall.bin
2013-07-31 18:20:07 53893 ----a-w- c:\programdata\1375294783.bdinstall.bin
2013-07-31 17:49:54 53893 ----a-w- c:\programdata\1375292968.bdinstall.bin
2013-07-31 17:19:44 54051 ----a-w- c:\programdata\1375291149.bdinstall.bin
2013-07-31 16:49:16 54208 ----a-w- c:\programdata\1375289329.bdinstall.bin
2013-07-31 04:23:41 53899 ----a-w- c:\programdata\1375244579.bdinstall.bin
2013-07-31 03:53:09 53899 ----a-w- c:\programdata\1375242758.bdinstall.bin
2013-07-31 03:22:45 53894 ----a-w- c:\programdata\1375240938.bdinstall.bin
2013-07-31 02:52:28 53894 ----a-w- c:\programdata\1375239115.bdinstall.bin
2013-07-31 02:22:07 53894 ----a-w- c:\programdata\1375237301.bdinstall.bin
2013-07-31 01:51:52 53894 ----a-w- c:\programdata\1375235488.bdinstall.bin
2013-07-31 01:21:39 53894 ----a-w- c:\programdata\1375233675.bdinstall.bin
2013-07-31 00:51:26 53894 ----a-w- c:\programdata\1375231856.bdinstall.bin
2013-07-31 00:21:06 53894 ----a-w- c:\programdata\1375230043.bdinstall.bin
2013-07-30 23:50:53 53894 ----a-w- c:\programdata\1375228229.bdinstall.bin
2013-07-30 23:20:43 53894 ----a-w- c:\programdata\1375226416.bdinstall.bin
2013-07-30 22:50:29 53894 ----a-w- c:\programdata\1375224601.bdinstall.bin
2013-07-30 22:20:13 53894 ----a-w- c:\programdata\1375222779.bdinstall.bin
2013-07-30 21:49:49 53893 ----a-w- c:\programdata\1375220964.bdinstall.bin
2013-07-30 21:19:35 53894 ----a-w- c:\programdata\1375219147.bdinstall.bin
2013-07-30 20:49:19 53894 ----a-w- c:\programdata\1375217331.bdinstall.bin
2013-07-30 20:19:02 53893 ----a-w- c:\programdata\1375215516.bdinstall.bin
2013-07-30 19:48:47 53894 ----a-w- c:\programdata\1375213702.bdinstall.bin
2013-07-30 19:18:33 53893 ----a-w- c:\programdata\1375211889.bdinstall.bin
2013-07-30 18:48:20 53894 ----a-w- c:\programdata\1375210070.bdinstall.bin
2013-07-30 18:18:00 53894 ----a-w- c:\programdata\1375208254.bdinstall.bin
2013-07-30 17:47:42 53894 ----a-w- c:\programdata\1375206434.bdinstall.bin
2013-07-30 17:17:24 53894 ----a-w- c:\programdata\1375204608.bdinstall.bin
2013-07-30 16:46:58 53894 ----a-w- c:\programdata\1375202783.bdinstall.bin
2013-07-30 16:16:35 54051 ----a-w- c:\programdata\1375200969.bdinstall.bin
2013-07-30 15:46:20 54208 ----a-w- c:\programdata\1375199148.bdinstall.bin
2013-07-30 03:14:57 53899 ----a-w- c:\programdata\1375154069.bdinstall.bin
2013-07-30 02:44:39 53899 ----a-w- c:\programdata\1375152254.bdinstall.bin
2013-07-30 02:14:24 53899 ----a-w- c:\programdata\1375150435.bdinstall.bin
2013-07-30 01:44:05 53898 ----a-w- c:\programdata\1375148620.bdinstall.bin
2013-07-30 01:13:42 53898 ----a-w- c:\programdata\1375146785.bdinstall.bin
2013-07-30 00:43:07 53898 ----a-w- c:\programdata\1375144963.bdinstall.bin
2013-07-30 00:12:53 53897 ----a-w- c:\programdata\1375143149.bdinstall.bin
2013-07-29 23:42:39 53898 ----a-w- c:\programdata\1375141335.bdinstall.bin
.
============= FINISH: 12:40:58.64 ===============
Spybot Rootkit Scan:
// info: Rootkit removal help file
// copyright: (c) 2008-2013 Safer-Networking Ltd. All rights reserved.
:: RootAlyzer Results
File:"Executable ADS","D:\Windows\System32\autochk.exe:BAK:$DATA"
File:"","D:\Recycler\S-1-5-21-842925246-2025429265-682008880-1013\com4"
File:"Invisible to Win32","D:\Recycler\S-1-5-21-842925246-2025429265-682008880-1013\com4\hidefiles\11111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111\11111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111\11111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111"
File:"Unknown ADS","C:\Users\Wayne\Documents\Photography\Video\Kimberley-VanIsl.avi:TOC.WMV:$DATA"
File:"Unknown ADS","C:\Users\Wayne\Documents\Photography\Video\VideoTape 2010\VideoTape 2010 2012_08_17_17_35_31.avi:TOC.WMV:$DATA"
File:"Unknown ADS","C:\Users\Wayne\Documents\Photography\Video\Sony Cam Download 2009 Mar\Sony Cam Download 2009 Mar 2009_03_03_14_52_06.avi:TOC.WMV:$DATA"
File:"No admin in ACL","C:\ProgramData\Rpcnet"
File:"No admin in ACL","C:\ProgramData\Microsoft\OFFICE\DATA"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\2008Invoice.ntd"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\2008StmtPrvw.ntd"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\backup1.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\billstmt.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\blklnd.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\blkprt.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\bluedrop.gif"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\blulnd.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\bluprt.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\c3line.gif"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\cstmlist.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\deltmpl.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\graybar1.gif"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\graybar2.gif"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\graybox.gif"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\grayline.gif"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\graytwo.gif"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\GREENDRP.GIF"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\gridsize.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\grnline.gif"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\handle.gif"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\harmp.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\harprd.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\harsrv.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\hline.gif"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\land.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\learn.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\logo"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\logoblnk"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\logosave"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\logosavt"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\modcols.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\modfonts.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\modlines.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\modtmpl.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\moneyhlp.css"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\moneyprt.css"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\moveelem.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\new3line.gif"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\newsl1.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\newsl2.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\newsl3.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\newsl4.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\newsl5.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\newsl6.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\newsl7.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\newsp1.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\newsp2.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\newsp3.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\newsp4.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\newsp5.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\newsp6.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\newsp7.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\newtmpl.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\newtmpl1.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\opentmpl.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\pickelem.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\picklogo.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\portrait.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\repeatingHori-house.gif"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\repeatingHori-paperClip.gif"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\repeatingHori-shopCart.gif"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\repeatingHori-teddyBear.gif"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\repeatingHori-wrench.gif"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\repeatingVert-house.gif"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\repeatingVert-paperClip.gif"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\repeatingVert-shopCart.gif"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\repeatingVert-teddyBears.gif"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\repeatingVert-wrench.gif"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\rszeelem.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\savetmpl.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\srtmpl1.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\srtmpl10.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\srtmpl11.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\srtmpl2.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\srtmpl3.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\srtmpl4.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\srtmpl5.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\srtmpl6.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\srtmpl7.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\srtmpl8.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\srtmpl9.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\tbhelp.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\tbhlp.js"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\tmpl1.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\tmpl2.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\tmpl3.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\tmpl4.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\tmpl5.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\tmpl6.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\tmpl7.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\tmpl8.htm"
File:"No admin in ACL","C:\ProgramData\Microsoft\Money\17.0\Invoice\zoom.htm"
RegyKey:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Microsoft\Security Center\Svc\","Vol"