S.M.A.R.T. Check, Drive Sector Not Found Error, Other Issues

I am having the same problem I have seen posted here repeatedly in the recent past witht he S.M.A.R.T. Check software on my computer and the 30 pop-ups appearing stating "A write command during the test has failed to complete. This may be due to a media or read/write error. The system generates an exception error when using a reference to an invalid system memory address." A screen with S.M.A.R.T. came up and indicated I had 7 issues with my computer and wanted me to buy software to fix it. Know it is a scam but cannot find a way to get rid of it. Also getting various messages about "Drive sector not found." "The device cannot find enough free resources it can use." and "hard drive controller failure" that pop up in the right hand corner tray from time to time. Most all my desktop icons have disappeared but my programs still seem to be there when I look in the start menu except I cannot find IE.

I saw that I need to download OTL and did that using Firefox as a browser. I pasted what you said into the Custom Scans/Fixes box as you said and hit Run Scan. Several times it said it was Not Responding and stopped - now it appears to be scanning endlessly. How long should the scan take? I have not yet received any notepad windows or log files. Now it has stopped and says "Not Responding" What shall I do now?

It finally finished and here is what was in the log:
OTL logfile created on: 5/9/2012 2:19:46 PM - Run 1
OTL by OldTimer - Version 3.2.42.1 Folder = C:\Users\oliverj\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.75 Gb Total Physical Memory | 1.57 Gb Available Physical Memory | 56.97% Memory free
5.70 Gb Paging File | 4.50 Gb Available in Paging File | 78.87% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 287.21 Gb Total Space | 179.96 Gb Free Space | 62.66% Space Free | Partition Type: NTFS
Drive D: | 10.88 Gb Total Space | 1.82 Gb Free Space | 16.71% Space Free | Partition Type: NTFS

Computer Name: OLIVERJ-PC | User Name: oliverj | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/05/09 14:17:52 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\oliverj\Downloads\OTL.com
PRC - [2012/05/09 12:07:30 | 000,223,744 | -H-- | M] () -- C:\ProgramData\N0p5oBoePesV6x.exe
PRC - [2012/04/04 15:56:40 | 000,654,408 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012/04/04 15:56:38 | 000,462,408 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012/03/29 03:44:56 | 000,313,160 | -H-- | M] (Smilebox, Inc.) -- C:\Users\oliverj\AppData\Roaming\Smilebox\SmileboxTray.exe
PRC - [2012/01/03 09:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/12/12 12:03:40 | 000,290,832 | ---- | M] (Verizon) -- C:\Program Files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
PRC - [2011/08/25 17:53:00 | 000,013,672 | ---- | M] (Intuit Inc.) -- C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
PRC - [2011/08/16 19:04:05 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011/06/15 15:16:48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2011/04/27 15:39:26 | 000,208,944 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
PRC - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2011/03/03 20:52:00 | 003,410,576 | R--- | M] (Carbonite, Inc. (www.carbonite.com)) -- C:\Program Files\Carbonite\Carbonite Backup\CarboniteService.exe
PRC - [2011/03/03 20:52:00 | 000,948,880 | R--- | M] (Carbonite, Inc.) -- C:\Program Files\Carbonite\Carbonite Backup\CarboniteUI.exe
PRC - [2010/11/02 21:22:02 | 000,113,168 | ---- | M] (DEVGURU Co., LTD) -- C:\Windows\System32\ptumlcmsvc.exe
PRC - [2010/10/18 09:37:35 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
PRC - [2010/07/02 14:24:07 | 000,095,744 | ---- | M] (j2 Global Communications, Inc.) -- C:\Program Files\eFax Messenger 4.4\J2GDllCmd.exe
PRC - [2009/11/01 22:30:00 | 002,508,104 | ---- | M] (CANON INC.) -- C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
PRC - [2009/09/28 17:56:18 | 000,140,640 | ---- | M] (CANON INC.) -- C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
PRC - [2009/04/11 02:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008/10/06 12:54:52 | 000,365,952 | ---- | M] () -- C:\Program Files\SMINST\BLService.exe
PRC - [2006/12/22 07:29:56 | 000,067,752 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Photoshop Elements 5.0\apdproxy.exe
PRC - [2006/11/02 05:44:50 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\attrib.exe


========== Modules (No Company Name) ==========

MOD - [2012/05/09 12:07:30 | 000,223,744 | -H-- | M] () -- C:\ProgramData\N0p5oBoePesV6x.exe
MOD - [2011/09/27 08:23:00 | 000,087,912 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/09/27 08:22:40 | 001,242,472 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2011/08/16 19:04:04 | 001,846,232 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011/08/08 12:37:25 | 006,271,648 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll
MOD - [2008/09/23 20:21:22 | 000,066,856 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\common\MCEMediaStatus.dll
MOD - [2007/08/14 16:59:54 | 006,365,184 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtGui4.dll
MOD - [2007/07/12 16:55:52 | 000,131,072 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
MOD - [2007/07/12 16:55:28 | 001,581,056 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtCore4.dll


========== Win32 Services (SafeList) ==========

SRV - [2012/04/04 15:56:40 | 000,654,408 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/01/03 09:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/12/12 12:03:40 | 000,290,832 | ---- | M] (Verizon) [Auto | Running] -- C:\Program Files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe -- (IHA_MessageCenter)
SRV - [2011/08/25 17:53:00 | 000,013,672 | ---- | M] (Intuit Inc.) [Auto | Running] -- C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe -- (IntuitUpdateServiceV4)
SRV - [2011/04/27 15:39:26 | 000,208,944 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe -- (NisSrv)
SRV - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2011/03/03 20:52:00 | 003,410,576 | R--- | M] (Carbonite, Inc. (www.carbonite.com)) [Auto | Running] -- C:\Program Files\Carbonite\Carbonite Backup\CarboniteService.exe -- (CarboniteService)
SRV - [2010/11/02 21:22:02 | 000,113,168 | ---- | M] (DEVGURU Co., LTD) [Auto | Running] -- C:\Windows\System32\ptumlcmsvc.exe -- (ptumlcmsvc)
SRV - [2008/10/06 12:54:52 | 000,365,952 | ---- | M] () [Auto | Running] -- C:\Program Files\SMINST\BLService.exe -- (Recovery Service for Windows)
SRV - [2008/01/20 22:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2006/12/22 07:31:50 | 000,108,712 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor5.0)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - [2012/04/04 15:56:40 | 000,022,344 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011/04/27 15:25:24 | 000,065,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2011/04/18 13:18:50 | 000,043,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon)
DRV - [2010/11/02 11:07:04 | 000,168,208 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PTUMLVsp.sys -- (PTUMLVsp)
DRV - [2010/11/02 11:07:02 | 000,168,848 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PTUMLNVsp.sys -- (PTUMLNVsp)
DRV - [2010/11/02 11:07:02 | 000,074,768 | ---- | M] (DEVGURU Co., LTD.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PTUMLNET.sys -- (PTUMLNET)
DRV - [2010/11/02 11:07:02 | 000,060,432 | ---- | M] (DEVGURU Co., LTD.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PTUMLRMNET.sys -- (PTUMLRMNET)
DRV - [2010/11/02 11:07:00 | 000,168,208 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PTUMLMdm.sys -- (PTUMLMdm)
DRV - [2010/11/02 11:07:00 | 000,168,208 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PTUMLCVsp.sys -- (PTUMLCVsp)
DRV - [2010/11/02 11:07:00 | 000,059,664 | ---- | M] (DEVGURU Co., LTD.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PTUMLBUS.sys -- (PTUMLBUS)
DRV - [2010/08/12 13:07:50 | 000,292,712 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvmfdx32.sys -- (NVNET)
DRV - [2010/08/12 13:07:50 | 000,292,712 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvmfdx32.sys -- (NVENETFD)
DRV - [2009/12/18 12:13:02 | 000,020,480 | ---- | M] (Novatel Wireless Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NwUsbCdFil.sys -- (NWUSBCDFIL)
DRV - [2009/12/18 12:13:00 | 000,230,912 | ---- | M] (Novatel Wireless Inc) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NWADIenum.sys -- (NWADI)
DRV - [2009/12/18 12:12:58 | 000,174,720 | ---- | M] (Novatel Wireless Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nwusbser2.sys -- (NWUSBPort2)
DRV - [2009/12/18 12:12:58 | 000,174,720 | ---- | M] (Novatel Wireless Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nwusbser.sys -- (NWUSBPort)
DRV - [2009/12/18 12:12:58 | 000,174,720 | ---- | M] (Novatel Wireless Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nwusbmdm.sys -- (NWUSBModem)
DRV - [2009/07/23 21:01:00 | 009,791,072 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2008/10/03 04:39:28 | 000,222,208 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CHDRT32.sys -- (CnxtHdAudService)
DRV - [2008/05/09 15:17:32 | 000,043,040 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2008/04/27 14:07:44 | 000,909,824 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2008/04/24 18:51:46 | 000,014,848 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvsmu.sys -- (nvsmu)
DRV - [2008/01/20 22:23:20 | 002,225,664 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw3v32.sys -- (NETw3v32) Intel(R)
DRV - [2007/10/17 19:36:54 | 000,008,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2007/06/18 20:12:04 | 000,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV - [2006/07/31 20:44:00 | 000,580,992 | ---- | M] (Omnivision Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ov550i.sys -- (APL531)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=Pavilion&pf=cnnb
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.myheritage.com
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0FA204D4-5326-43C7-A4D2-EDFB78E6EA59}: "URL" = http://www.ask.com/web?q={searchterms}&l=dis&o=ushpl
IE - HKLM\..\SearchScopes\{60A4E56C-445B-47E9-8637-F329433B1DB3}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&FORM=HPNTDF
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\..\SearchScopes\{BE28C22E-F666-424d-B5FD-125C4AFEE34E}: "URL" = http://search.myheritage.com?orig=ds&q={searchTerms}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=Pavilion&pf=cnnb
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKCU\..\SearchScopes\{0FA204D4-5326-43C7-A4D2-EDFB78E6EA59}: "URL" = http://www.ask.com/web?q={searchterms}&l=dis&o=ushpl
IE - HKCU\..\SearchScopes\{60A4E56C-445B-47E9-8637-F329433B1DB3}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=HPNTDF&pc=HPNTDF&src=IE-SearchBox
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ADFA_en
IE - HKCU\..\SearchScopes\{BE28C22E-F666-424d-B5FD-125C4AFEE34E}: "URL" = http://search.myheritage.com?orig=ds&q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "about:home"
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/11/10 19:15:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2011/06/27 16:32:02 | 000,000,000 | -H-D | M] (No name found) -- C:\Users\oliverj\AppData\Roaming\Mozilla\Extensions
[2011/11/03 12:30:02 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/07/04 13:49:41 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2011/11/03 12:30:02 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}
[2010/07/18 12:50:35 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2011/08/16 19:04:05 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2010/01/01 04:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml

O1 HOSTS File: ([2006/09/18 17:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Microsoft Live Search Toolbar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files\MSN\Toolbar\3.0.0541.0\msneshellx.dll (Microsoft Corp.)
O3 - HKLM\..\Toolbar: (Microsoft Live Search Toolbar) - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files\MSN\Toolbar\3.0.0541.0\msneshellx.dll (Microsoft Corp.)
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O4 - HKLM..\Run: [Adobe Photo Downloader] C:\Program Files\Adobe\Photoshop Elements 5.0\apdproxy.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4 - HKLM..\Run: [Carbonite Backup] C:\Program Files\Carbonite\Carbonite Backup\CarboniteUI.exe (Carbonite, Inc.)
O4 - HKLM..\Run: [Family Tree Builder Update] C:\Users\oliverj\Documents\Genealogy\MyHeritage\Bin\FTBCheckUpdates.exe (MyHeritage)
O4 - HKLM..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe (Hewlett-Packard)
O4 - HKLM..\Run: [IJNetworkScanUtility] C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe (CANON INC.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" File not found
O4 - HKLM..\Run: [UpdateLBPShortCut] C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdateP2GoShortCut] C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePDIRShortCut] C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePSTShortCut] C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [eFax 4.4] C:\Program Files\eFax Messenger 4.4\J2GDllCmd.exe (j2 Global Communications, Inc.)
O4 - HKCU..\Run: [fYpjKfIOkACTVe.exe] C:\ProgramData\fYpjKfIOkACTVe.exe ()
O4 - HKCU..\Run: [SmileboxTray] C:\Users\oliverj\AppData\Roaming\Smilebox\SmileboxTray.exe (Smilebox, Inc.)
O4 - Startup: C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DING!.lnk = C:\Program Files\Southwest Airlines\Ding\Ding.exe (Southwest Airlines)
O4 - Startup: C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\eFax 4.4.lnk = C:\Program Files\eFax Messenger 4.4\J2GTray.exe (j2 Global Communications, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Main present
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html File not found
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: intuit.com ([ttlc] https in Trusted sites)
O15 - HKCU\..Trusted Domains: localhost ([]* in Local intranet)
O15 - HKCU\..Trusted Ranges: Range1 ([http] in Local intranet)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {BEA7310D-06C4-4339-A784-DC3804819809} http://www.cvsphoto.com/upload/activex/v3_0_0_7/PhotoCenter_ActiveX_Control.cab (Photo Upload Plugin Class)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444552440000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Reg Error: Key error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 71.242.0.12
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{021A8D73-48CA-42C2-B9CE-F5D0E0D8304F}: DhcpNameServer = 192.168.56.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A52AB1DC-829C-4359-8ED7-DCD28E3C0213}: DhcpNameServer = 66.174.71.33 69.78.96.14
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DDF98CC1-69F4-40C7-8CAF-19515CF0FFFA}: DhcpNameServer = 192.168.1.1 71.242.0.12
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\oliverj\Pictures\Exoneration & Anime Club Pics\Anime Club wideshot.jpg
O24 - Desktop BackupWallPaper: C:\Users\oliverj\Pictures\Exoneration & Anime Club Pics\Anime Club wideshot.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 17:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{8b4776e4-7574-11df-9d84-001f167bf600}\Shell - "" = AutoRun
O33 - MountPoints2\{8b4776e4-7574-11df-9d84-001f167bf600}\Shell\AutoRun\command - "" = F:\VZAccess_Manager.exe /z detect
O33 - MountPoints2\{8b477704-7574-11df-9d84-001f167bf600}\Shell - "" = AutoRun
O33 - MountPoints2\{8b477704-7574-11df-9d84-001f167bf600}\Shell\AutoRun\command - "" = H:\VZAccess_Manager.exe /z detect
O33 - MountPoints2\{c2c2be4b-1dfc-11e0-82dd-001f167bf600}\Shell\AutoRun\command - "" = F:\RDEapp.exe
O33 - MountPoints2\H\Shell - "" = AutoRun
O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\VZAccess_Manager.exe /z detect
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

MsConfig - StartUpReg: AppleSyncNotifier - hkey= - key= - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe (Apple Inc.)
MsConfig - State: "startup" - 2
MsConfig - State: "services" - 2
MsConfig - State: "bootini" - 2

SafeBootMin: AppMgmt - Service
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: MsMpSvc - c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe (Microsoft Corporation)
SafeBootMin: NTDS - File not found
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

SafeBootNet: AppMgmt - Service
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - Service
SafeBootNet: MsMpSvc - c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe (Microsoft Corporation)
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: NTDS - File not found
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootNet: WudfPf - Driver
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files\Common Files\LightScribe\LSRunOnce.exe"
ActiveX: {166B1BCA-3F9C-11CF-8075-444553540000} - Macromedia Shockwave Director 10.1
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} -
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 11.0
ActiveX: {2A202491-F00D-11cf-87CC-0020AFEECF20} - Macromedia Shockwave Director 10.1
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3C3901C5-3455-3E0A-A214-0B093A5070A6} - .NET Framework
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} -
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.7
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Web Folders
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\system32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\system32\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP

Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3codecp - C:\Windows\System32\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.I420 - msh263.drv File not found

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2012/05/09 12:07:50 | 000,000,000 | -H-D | C] -- C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Data Recovery
[2012/04/28 18:56:38 | 000,000,000 | -H-D | C] -- C:\Users\oliverj\Documents\Articles - Success in Business or Life
[2012/04/28 18:53:08 | 000,000,000 | -H-D | C] -- C:\Users\oliverj\Documents\Articles-Women
[2012/04/28 18:50:04 | 000,000,000 | -H-D | C] -- C:\Users\oliverj\Documents\Articles-Race
[2012/04/28 17:53:23 | 000,000,000 | -H-D | C] -- C:\Users\oliverj\Documents\Relationships
[2012/04/28 17:15:30 | 000,000,000 | -H-D | C] -- C:\Users\oliverj\Documents\DC Travel and Info
[2012/04/28 16:52:10 | 000,000,000 | -H-D | C] -- C:\Users\oliverj\Documents\Elder Care
[2012/04/28 16:37:26 | 000,000,000 | -H-D | C] -- C:\Users\oliverj\Documents\Weight Loss
[2012/04/28 16:06:31 | 000,000,000 | -H-D | C] -- C:\Users\oliverj\Documents\Financial Articles
[2012/04/28 15:51:46 | 000,000,000 | -H-D | C] -- C:\Users\oliverj\Documents\Medical Articles
[2012/04/28 15:43:09 | 000,000,000 | -H-D | C] -- C:\Users\oliverj\Documents\Jan Travel Data
[2012/04/28 15:42:32 | 000,000,000 | -H-D | C] -- C:\Users\oliverj\Documents\New Folder (2)
[2012/04/21 11:12:48 | 000,000,000 | -H-D | C] -- C:\Users\oliverj\Documents\Restaurants
[2012/04/19 13:32:52 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012/04/19 13:32:45 | 001,799,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2012/04/19 13:32:41 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012/04/19 13:32:40 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012/04/19 13:32:39 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012/04/19 13:32:36 | 001,427,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2012/04/17 22:20:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TurboTax 2011
[2012/04/15 03:00:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012/04/15 03:00:22 | 000,107,368 | ---- | C] (GEAR Software Inc.) -- C:\Windows\System32\GEARAspi.dll
[2012/04/15 02:58:08 | 000,000,000 | ---D | C] -- C:\Program Files\iPod

========== Files - Modified Within 30 Days ==========

[2012/05/09 14:15:51 | 000,609,506 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/05/09 14:15:51 | 000,106,014 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/05/09 14:09:16 | 000,000,246 | -H-- | M] () -- C:\ProgramData\hpqp.ini
[2012/05/09 14:07:58 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/05/09 14:07:58 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/05/09 14:07:51 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/05/09 14:07:48 | 2951,106,560 | -HS- | M] () -- C:\hiberfil.sys
[2012/05/09 14:00:04 | 112,597,968 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012/05/09 12:52:03 | 000,000,906 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/05/09 12:46:11 | 000,000,631 | -H-- | M] () -- C:\Users\oliverj\Application Data\Microsoft\Internet Explorer\Quick Launch\Data_Recovery.lnk
[2012/05/09 12:46:11 | 000,000,607 | -H-- | M] () -- C:\Users\oliverj\Desktop\Data_Recovery.lnk
[2012/05/09 12:11:21 | 000,002,633 | -H-- | M] () -- C:\Users\oliverj\Desktop\Microsoft Office Outlook 2007.lnk
[2012/05/09 12:11:09 | 000,000,256 | -H-- | M] () -- C:\ProgramData\N0p5oBoePesV6x
[2012/05/09 12:07:57 | 000,000,144 | -H-- | M] () -- C:\ProgramData\-N0p5oBoePesV6xr
[2012/05/09 12:07:57 | 000,000,000 | -H-- | M] () -- C:\ProgramData\-N0p5oBoePesV6x
[2012/05/09 12:07:30 | 000,223,744 | -H-- | M] () -- C:\ProgramData\N0p5oBoePesV6x.exe
[2012/05/09 11:52:51 | 000,302,592 | -H-- | M] () -- C:\ProgramData\fYpjKfIOkACTVe.exe
[2012/05/09 11:16:14 | 000,119,161 | -H-- | M] () -- C:\ProgramData\nvModes.dat
[2012/05/09 11:16:14 | 000,119,161 | -H-- | M] () -- C:\ProgramData\nvModes.001
[2012/05/05 22:50:12 | 000,007,808 | -H-- | M] () -- C:\Users\oliverj\AppData\Local\d3d9caps.dat
[2012/04/21 00:51:28 | 000,002,585 | -H-- | M] () -- C:\Users\oliverj\Desktop\Microsoft Office Excel 2007.lnk
[2012/04/18 12:38:38 | 000,000,451 | ---- | M] () -- C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
[2012/04/13 18:48:32 | 000,002,627 | -H-- | M] () -- C:\Users\oliverj\Desktop\Microsoft Office Word 2007.lnk

========== Files Created - No Company Name ==========

[2012/05/09 14:00:08 | 2951,106,560 | -HS- | C] () -- C:\hiberfil.sys
[2012/05/09 14:00:04 | 112,597,968 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2012/05/09 12:52:03 | 000,000,906 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/05/09 12:46:11 | 000,000,631 | -H-- | C] () -- C:\Users\oliverj\Application Data\Microsoft\Internet Explorer\Quick Launch\Data_Recovery.lnk
[2012/05/09 12:46:11 | 000,000,607 | -H-- | C] () -- C:\Users\oliverj\Desktop\Data_Recovery.lnk
[2012/05/09 12:07:57 | 000,000,144 | -H-- | C] () -- C:\ProgramData\-N0p5oBoePesV6xr
[2012/05/09 12:07:57 | 000,000,000 | -H-- | C] () -- C:\ProgramData\-N0p5oBoePesV6x
[2012/05/09 12:07:31 | 000,000,256 | -H-- | C] () -- C:\ProgramData\N0p5oBoePesV6x
[2012/05/09 12:07:30 | 000,223,744 | -H-- | C] () -- C:\ProgramData\N0p5oBoePesV6x.exe
[2012/05/09 11:56:41 | 000,302,592 | -H-- | C] () -- C:\ProgramData\fYpjKfIOkACTVe.exe
[2012/04/17 22:21:27 | 000,000,451 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
[2011/07/20 13:42:21 | 000,148,896 | ---- | C] () -- C:\Windows\hpoins19.dat
[2011/07/20 13:05:05 | 000,026,952 | ---- | C] () -- C:\Windows\hpomdl19.dat
[2011/05/19 11:30:56 | 000,001,940 | -H-- | C] () -- C:\Users\oliverj\AppData\Local\{96C87F53-AC72-4604-A9CC-186A49F17F3C}.ini
[2011/04/18 13:53:05 | 000,027,240 | -H-- | C] () -- C:\Users\oliverj\AppData\Roaming\Personal Address Book.ADR
[2011/02/16 11:33:57 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/07/21 17:40:35 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2010/07/21 17:40:35 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2010/05/30 12:16:04 | 000,000,209 | ---- | C] () -- C:\Windows\ODBCINST.INI

========== Custom Scans ==========

< %APPDATA%\Microsoft\*.* >

< %systemroot%\system32\config\systemprofile\*.dat /x >

< %USERPROFILE%\Desktop\*.exe >
[2007/01/12 13:14:05 | 032,217,208 | -H-- | M] (Avery Dennison Corporation ) -- C:\Users\oliverj\Desktop\ClicknDesign3D-EnglishUS.exe
[2006/09/08 14:15:26 | 022,083,376 | -H-- | M] (Apple Computer, Inc.) -- C:\Users\oliverj\Desktop\QuickTimeInstaller.exe
[2011/04/18 11:25:26 | 365,798,736 | -H-- | M] (Microsoft Corporation) -- C:\Users\oliverj\Desktop\X12-30283.exe

< %PROGRAMFILES%\Common Files\*.* >

< %systemroot%\winn32\*.* >

< %USERPROFILE%\My Documents\*.exe >

< %USERPROFILE%\*.exe >

< %PROGRAMFILES%\Mozilla Firefox\*.exe >
[2011/08/16 19:04:05 | 000,125,912 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\crashreporter.exe
[2011/08/16 19:04:05 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
[2011/08/16 19:04:02 | 000,016,856 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
[2011/08/16 19:04:02 | 000,269,272 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\updater.exe

< %ProgramFiles%\TinyProxy. >

< %systemroot%\system32\*.* /lockedfiles >
[2012/05/09 14:07:58 | 000,003,216 | -H-- | M] () Unable to obtain MD5 -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/05/09 14:07:58 | 000,003,216 | -H-- | M] () Unable to obtain MD5 -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.* /lockedfiles >

< %PROGRAMFILES%\*. >
[2009/10/09 22:05:56 | 000,000,000 | ---D | M] -- C:\Program Files\7-Zip
[2008/10/25 19:55:37 | 000,000,000 | ---D | M] -- C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[2011/07/08 00:08:07 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe
[2011/07/14 00:34:13 | 000,000,000 | ---D | M] -- C:\Program Files\Apple Software Update
[2009/04/21 11:34:43 | 000,000,000 | ---D | M] -- C:\Program Files\Atheros
[2008/10/25 20:13:01 | 000,000,000 | ---D | M] -- C:\Program Files\AWS
[2011/11/10 19:03:04 | 000,000,000 | ---D | M] -- C:\Program Files\Bonjour
[2010/11/02 12:04:23 | 000,000,000 | ---D | M] -- C:\Program Files\Canon
[2010/11/02 11:37:16 | 000,000,000 | -H-D | M] -- C:\Program Files\CanonBJ
[2011/06/21 12:04:50 | 000,000,000 | ---D | M] -- C:\Program Files\Carbonite
[2009/04/21 11:33:39 | 000,000,000 | ---D | M] -- C:\Program Files\Cisco
[2012/03/11 16:01:41 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files
[2009/04/21 11:39:58 | 000,000,000 | ---D | M] -- C:\Program Files\CONEXANT
[2010/07/02 20:10:08 | 000,000,000 | ---D | M] -- C:\Program Files\Costco
[2009/07/04 11:19:06 | 000,000,000 | ---D | M] -- C:\Program Files\Coupons
[2011/02/16 11:44:27 | 000,000,000 | ---D | M] -- C:\Program Files\CyberLink
[2010/08/30 11:04:36 | 000,000,000 | ---D | M] -- C:\Program Files\eFax Messenger 4.4
[2010/08/23 00:23:56 | 000,000,000 | ---D | M] -- C:\Program Files\Family Toolbar
[2011/08/08 16:38:21 | 000,000,000 | ---D | M] -- C:\Program Files\Google
[2009/04/21 12:08:39 | 000,000,000 | ---D | M] -- C:\Program Files\Hewlett-Packard
[2008/10/25 18:50:51 | 000,000,000 | ---D | M] -- C:\Program Files\Hewlett-Packard Company
[2011/07/20 14:43:59 | 000,000,000 | ---D | M] -- C:\Program Files\HP
[2010/08/23 00:24:37 | 000,000,000 | ---D | M] -- C:\Program Files\HP Games
[2010/05/30 12:32:51 | 000,000,000 | -H-D | M] -- C:\Program Files\InstallShield Installation Information
[2012/04/19 14:00:06 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer
[2012/04/15 02:58:08 | 000,000,000 | ---D | M] -- C:\Program Files\iPod
[2012/04/15 03:00:21 | 000,000,000 | ---D | M] -- C:\Program Files\iTunes
[2011/11/03 12:33:22 | 000,000,000 | ---D | M] -- C:\Program Files\Java
[2008/10/25 20:12:01 | 000,000,000 | ---D | M] -- C:\Program Files\JunoPreloader
[2009/05/29 23:33:25 | 000,000,000 | ---D | M] -- C:\Program Files\LaCie
[2012/05/09 12:54:00 | 000,000,000 | ---D | M] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/06/03 04:07:28 | 000,000,000 | ---D | M] -- C:\Program Files\MFInstall
[2011/04/18 10:23:09 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Easy Assist
[2006/11/02 08:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Games
[2011/04/18 12:20:39 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Office
[2012/03/22 00:50:57 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Security Client
[2012/03/03 22:25:13 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Silverlight
[2011/04/18 12:20:34 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Visual Studio
[2011/02/16 09:34:27 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Works
[2012/04/17 22:04:18 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft.NET
[2010/08/12 23:33:07 | 000,000,000 | ---D | M] -- C:\Program Files\Movie Maker
[2011/08/16 19:04:07 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox
[2006/11/02 08:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\MSBuild
[2008/10/25 20:12:17 | 000,000,000 | ---D | M] -- C:\Program Files\MSN
[2009/12/15 12:02:40 | 000,000,000 | ---D | M] -- C:\Program Files\MSXML 4.0
[2009/04/21 12:16:54 | 000,000,000 | ---D | M] -- C:\Program Files\muvee Technologies
[2011/10/11 21:59:45 | 000,000,000 | ---D | M] -- C:\Program Files\MyPublisher
[2009/04/21 11:38:52 | 000,000,000 | ---D | M] -- C:\Program Files\NetWaiting
[2008/10/25 20:12:44 | 000,000,000 | ---D | M] -- C:\Program Files\NetZeroPreloader
[2010/06/27 01:47:12 | 000,000,000 | ---D | M] -- C:\Program Files\Novatel Wireless
[2011/02/16 10:52:59 | 000,000,000 | ---D | M] -- C:\Program Files\NVIDIA Corporation
[2009/05/28 21:45:33 | 000,000,000 | R--D | M] -- C:\Program Files\Online Services
[2010/05/30 12:33:58 | 000,000,000 | ---D | M] -- C:\Program Files\OVT
[2011/05/12 23:02:23 | 000,000,000 | ---D | M] -- C:\Program Files\PANTECH
[2009/05/29 23:33:39 | 000,000,000 | ---D | M] -- C:\Program Files\pdf995
[2011/11/10 19:15:36 | 000,000,000 | ---D | M] -- C:\Program Files\QuickTime
[2006/11/02 08:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\Reference Assemblies
[2012/04/15 02:16:22 | 000,000,000 | ---D | M] -- C:\Program Files\Safari
[2011/02/16 11:10:22 | 000,000,000 | R--D | M] -- C:\Program Files\Skype
[2009/05/28 22:08:27 | 000,000,000 | ---D | M] -- C:\Program Files\SMINST
[2009/05/29 23:33:59 | 000,000,000 | ---D | M] -- C:\Program Files\Southwest Airlines
[2009/04/21 11:37:29 | 000,000,000 | ---D | M] -- C:\Program Files\Synaptics
[2012/04/17 22:13:27 | 000,000,000 | ---D | M] -- C:\Program Files\TurboTax
[2006/11/02 09:01:55 | 000,000,000 | -H-D | M] -- C:\Program Files\Uninstall Information
[2011/07/08 10:47:22 | 000,000,000 | ---D | M] -- C:\Program Files\Verizon
[2010/07/21 20:01:55 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Calendar
[2010/07/21 20:01:54 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Collaboration
[2010/07/21 20:01:53 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Defender
[2010/07/21 20:01:54 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Journal
[2011/02/16 10:48:39 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Live
[2012/03/22 00:48:55 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Mail
[2011/02/16 10:55:32 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Player
[2006/11/02 08:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\Windows NT
[2010/07/21 20:01:54 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Photo Gallery
[2011/02/16 10:56:07 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Portable Devices
[2010/07/21 20:01:54 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Sidebar
[2009/10/09 22:12:04 | 000,000,000 | ---D | M] -- C:\Program Files\WinZip

< MD5 for: AGP440.SYS >
[2008/01/20 22:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\drivers\AGP440.sys
[2008/01/20 22:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys
[2008/01/20 22:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys
[2008/01/20 22:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys
[2008/01/20 22:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys
[2006/11/02 05:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009/04/11 02:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\drivers\atapi.sys
[2009/04/11 02:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys
[2009/04/11 02:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys
[2008/01/20 22:23:00 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys
[2008/01/20 22:23:00 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys
[2006/11/02 05:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
[2008/10/25 19:12:44 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=9C0E70031905ADBF94EDB9EA14AF943B -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_7f3e4ed9\atapi.sys
[2008/10/25 19:12:44 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=9C0E70031905ADBF94EDB9EA14AF943B -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.22193_none_dd6376773aedb5e4\atapi.sys
[2008/10/25 19:12:44 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E26DDFE464B464DAF1C739122978D1D6 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b7393fc6\atapi.sys
[2008/10/25 19:12:44 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E26DDFE464B464DAF1C739122978D1D6 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.20847_none_dbb74a7b3d9afbc1\atapi.sys

< MD5 for: DISK.SYS >
[2009/04/11 02:32:31 | 000,053,736 | ---- | M] (Microsoft Corporation) MD5=5D4AEFC3386920236A548271F8F1AF6A -- C:\Windows\System32\drivers\disk.sys
[2009/04/11 02:32:31 | 000,053,736 | ---- | M] (Microsoft Corporation) MD5=5D4AEFC3386920236A548271F8F1AF6A -- C:\Windows\System32\DriverStore\FileRepository\disk.inf_5c850fad\disk.sys
[2009/04/11 02:32:31 | 000,053,736 | ---- | M] (Microsoft Corporation) MD5=5D4AEFC3386920236A548271F8F1AF6A -- C:\Windows\winsxs\x86_disk.inf_31bf3856ad364e35_6.0.6002.18005_none_fbb1faf0714e4ea6\disk.sys
[2008/01/20 22:23:20 | 000,055,352 | ---- | M] (Microsoft Corporation) MD5=64109E623ABD6955C8FB110B592E68B7 -- C:\Windows\System32\DriverStore\FileRepository\disk.inf_90722180\disk.sys
[2008/01/20 22:23:20 | 000,055,352 | ---- | M] (Microsoft Corporation) MD5=64109E623ABD6955C8FB110B592E68B7 -- C:\Windows\winsxs\x86_disk.inf_31bf3856ad364e35_6.0.6001.18000_none_f9c681e4742c835a\disk.sys
[2006/11/02 05:49:51 | 000,052,840 | ---- | M] (Microsoft Corporation) MD5=841AF4C4D41D3E3B2F244E976B0F7963 -- C:\Windows\System32\DriverStore\FileRepository\disk.inf_e0b0b355\disk.sys

< MD5 for: NETLOGON.DLL >
[2009/04/11 02:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\System32\netlogon.dll
[2009/04/11 02:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll
[2008/01/20 22:24:05 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll

< MD5 for: NVSTOR.SYS >
[2006/11/02 05:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys
[2008/01/20 22:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\drivers\nvstor.sys
[2008/01/20 22:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvstor.sys
[2008/01/20 22:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2012-04-19 17:34:12

< hklm\software\clients\startmenuinternet|command /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2011/08/16 19:04:02 | 000,712,976 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2011/08/16 19:04:02 | 000,712,976 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2011/08/16 19:04:02 | 000,712,976 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2011/08/16 19:04:05 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2011/08/16 19:04:05 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2011/08/16 19:04:05 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\system32\ie4uinit.exe" -hide [2012/01/31 16:27:25 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\system32\ie4uinit.exe" -show [2012/01/31 16:27:25 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\system32\ie4uinit.exe" -reinstall [2012/01/31 16:27:25 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2012/01/31 16:27:26 | 000,748,336 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2012/01/31 16:27:26 | 000,748,336 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Safari.exe\InstallInfo\\ReinstallCommand: "C:\Program Files\Safari\Safari.exe" /reinstall [2012/03/22 15:21:58 | 002,388,336 | ---- | M] (Apple Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Safari.exe\InstallInfo\\HideIconsCommand: "C:\Program Files\Safari\Safari.exe" /hideicons [2012/03/22 15:21:58 | 002,388,336 | ---- | M] (Apple Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Safari.exe\InstallInfo\\ShowIconsCommand: "C:\Program Files\Safari\Safari.exe" /showicons [2012/03/22 15:21:58 | 002,388,336 | ---- | M] (Apple Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Safari.exe\shell\open\command\\: "C:\Program Files\Safari\Safari.exe" [2012/03/22 15:21:58 | 002,388,336 | ---- | M] (Apple Inc.)

< hklm\software\clients\startmenuinternet|command /64 /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2011/08/16 19:04:02 | 000,712,976 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2011/08/16 19:04:02 | 000,712,976 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2011/08/16 19:04:02 | 000,712,976 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2011/08/16 19:04:05 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2011/08/16 19:04:05 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2011/08/16 19:04:05 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\system32\ie4uinit.exe" -hide [2012/01/31 16:27:25 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\system32\ie4uinit.exe" -show [2012/01/31 16:27:25 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\system32\ie4uinit.exe" -reinstall [2012/01/31 16:27:25 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2012/01/31 16:27:26 | 000,748,336 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2012/01/31 16:27:26 | 000,748,336 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Safari.exe\InstallInfo\\ReinstallCommand: "C:\Program Files\Safari\Safari.exe" /reinstall [2012/03/22 15:21:58 | 002,388,336 | ---- | M] (Apple Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Safari.exe\InstallInfo\\HideIconsCommand: "C:\Program Files\Safari\Safari.exe" /hideicons [2012/03/22 15:21:58 | 002,388,336 | ---- | M] (Apple Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Safari.exe\InstallInfo\\ShowIconsCommand: "C:\Program Files\Safari\Safari.exe" /showicons [2012/03/22 15:21:58 | 002,388,336 | ---- | M] (Apple Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Safari.exe\shell\open\command\\: "C:\Program Files\Safari\Safari.exe" [2012/03/22 15:21:58 | 002,388,336 | ---- | M] (Apple Inc.)

< End of report >

And here is what was in the Extras Notepad:
OTL Extras logfile created on: 5/9/2012 2:19:46 PM - Run 1
OTL by OldTimer - Version 3.2.42.1 Folder = C:\Users\oliverj\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.75 Gb Total Physical Memory | 1.57 Gb Available Physical Memory | 56.97% Memory free
5.70 Gb Paging File | 4.50 Gb Available in Paging File | 78.87% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 287.21 Gb Total Space | 179.96 Gb Free Space | 62.66% Space Free | Partition Type: NTFS
Drive D: | 10.88 Gb Total Space | 1.82 Gb Free Space | 16.71% Space Free | Partition Type: NTFS

Computer Name: OLIVERJ-PC | User Name: oliverj | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 1
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{26CF4994-0142-4A44-8BC9-779E7566E9A6}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{2C1537E7-A1B1-4508-B167-DCB387BDC2DB}" = lport=50000 | protocol=17 | dir=in | name=iha_messagecenter |
"{6098BB22-A734-41A8-882D-DE404C349D78}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{683C8D20-B20B-4DE8-A75A-E4E520996DB1}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{893391B6-93E4-4A45-949A-50AECBE5E93F}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{C0DC3A86-11B0-47C8-A3EE-21E5B762A1B3}" = rport=80 | protocol=6 | dir=out | app=c:\program files\common files\intuit\update service v4\intuitupdateservice.exe |
"{EBEFD20D-FFEC-477C-A2B9-074F5698A709}" = rport=80 | protocol=6 | dir=out | app=c:\program files\common files\intuit\update service v4\intuitupdater.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0C17CFF9-363D-43C1-8687-3003A49ED391}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{116E4D05-1782-4CEC-B486-8C0E36EF5903}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{1FF9B5FA-F576-4093-AFC7-0A218C7D27C9}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{251E0EA3-1991-4BF8-BF35-9E3AE3C4E574}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{31DAF008-CB65-4351-A0CF-DAC4C2A83A0F}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{4902CBA3-3773-4B14-B6C8-7E215919B83C}" = dir=in | app=c:\program files\cyberlink\powerdirector\pdr.exe |
"{799B0536-7BDA-4613-BCA5-9797FDE45C35}" = dir=in | app=c:\program files\hp\quickplay\qp.exe |
"{8A0B214F-DA1A-445B-8846-138277308327}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{8B210330-D3E9-49AC-93FA-44F80B263B18}" = dir=in | app=c:\program files\hp\quickplay\qpservice.exe |
"{8F35FE14-AC17-440E-BEF2-291CBAA1382E}" = protocol=6 | dir=in | app=c:\program files\parrot audio suite\psm\wifiwizard.exe |
"{91EE8E90-4722-409A-9DA7-8F7CBBC038FB}" = protocol=6 | dir=in | app=c:\program files\parrot audio suite\psm\parrot sound manager.exe |
"{B8B75C85-6B75-4BE0-9627-088056C5F844}" = protocol=17 | dir=in | app=c:\program files\parrot audio suite\psm\parrot sound manager.exe |
"{CBEA999E-2E5A-4294-97DD-C82331225D72}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{DC3B5079-2B31-4264-973F-016B5583AE28}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{E07B4A05-C998-45EB-A117-4D974744A6FF}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{F8573C2C-712D-4AA4-934A-89207B4387B2}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{FAC07754-D60B-4822-87F6-15F1DA260B34}" = protocol=17 | dir=in | app=c:\program files\parrot audio suite\psm\wifiwizard.exe |
"TCP Query User{C644F13A-DA04-407E-B04D-D1C95F38693E}C:\users\oliverj\appdata\roaming\spotify\spotify.exe" = protocol=6 | dir=in | app=c:\users\oliverj\appdata\roaming\spotify\spotify.exe |
"UDP Query User{FC0F888B-ADE9-4707-84DC-205611F4C055}C:\users\oliverj\appdata\roaming\spotify\spotify.exe" = protocol=17 | dir=in | app=c:\users\oliverj\appdata\roaming\spotify\spotify.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{0054A0F6-00C9-4498-B821-B5C9578F433E}" = HP Help and Support
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"{05BFB060-4F22-4710-B0A2-2801A1B606C5}" = Microsoft Antimalware
"{082702D5-5DD8-4600-BCE5-48B15174687F}" = HP Doc Viewer
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0D2E9DCB-9938-475E-B4DD-8851738852FF}" = AIO_Scan
"{0E7DBD52-B097-4F2B-A7C7-F105B0D20FDB}" = LightScribe System Software 1.14.17.1
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX870_series" = Canon MX870 series MP Drivers
"{154A4184-1A3D-4BF9-A5AE-4FA1660445F3}" = HP Total Care Advisor
"{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
"{1746EA69-DCB6-4408-B5A5-E75F55439CDF}" = Scan
"{179C56A4-F57F-4561-8BBF-F911D26EB435}" = WebReg
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{228C6B46-64E2-404E-898A-EF0830603EF4}" = HPNetworkAssistant
"{23B8A91D-680B-462B-87AD-3D70F7341731}" = iTunes
"{254C37AA-6B72-4300-84F6-98A82419187E}" = ActiveCheck component for HP Active Support Library
"{25569723-DC5A-4467-A639-79535BF01B71}" = Adobe Help Center 2.1
"{26A24AE4-039D-4CA4-87B4-2F83216013FF}" = Java(TM) 6 Update 29
"{27F00C63-449B-2FAB-CBE8-24AB80E17449}" = Acrobat.com
"{2902F983-B4C1-44BA-B85D-5C6D52E2C441}" = Windows Live Mesh ActiveX Control for Remote Connections
"{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}" = HP Update
"{326957C7-83FD-4550-A59A-849B7B4297DE}" = Microsoft Easy Assist v2
"{34D2AB40-150D-475D-AE32-BD23FB5EE355}" = HP Quick Launch Buttons 6.40 H2
"{352310C3-E46B-42D3-8F32-54721FDD72D9}" = NetZero Preloader
"{3877C901-7B90-4727-A639-B6ED2DD59D43}" = ESU for Microsoft Vista
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3D3E663D-4E7E-4577-A560-7ECDDD45548A}" = PVSonyDll
"{3F92ABBB-6BBF-11D5-B229-002078017FBF}" = NetWaiting
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{415B2719-AD3A-4944-B404-C472DB6085B3}" = Cisco EAP-FAST Module
"{45D707E9-F3C4-11D9-A373-0050BAE317E1}" = HP DVD Play 3.7
"{49F2B650-2D7B-4F59-B33D-346F63776BD3}" = DocProc
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{54B6DC7D-8C5B-4DFB-BC15-C010A3326B2B}" = Microsoft Security Client
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{57A5AEC1-97FC-474D-92C4-908FCC2253D4}" = HP Customer Experience Enhancements
"{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}" = Segoe UI
"{61AD15B2-50DB-4686-A739-14FE180D4429}" = Windows Live ID Sign-in Assistant
"{6423EF83-6E1D-4D22-A36F-689CD19FD4D2}" = Juno Preloader
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{669C7BD8-DAA2-49B6-966C-F1E2AAE6B17E}" = Cisco PEAP Module
"{669D4A35-146B-4314-89F1-1AC3D7B88367}" = HPAsset component for HP Active Support Library
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{67D3F1A0-A1F2-49b7-B9EE-011277B170CD}" = HPProductAssistant
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6A370610-3778-44AF-9AAC-69B2FD1A3356}" = Microsoft Live Search Toolbar
"{6B566EFE-DC1D-471F-93DD-84832663F140}" = OVT Scanner X86
"{6D172D0A-B9F1-4046-AFAB-8599288545BF}" = Safari
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{710BF966-43C8-4216-A8EC-BC4E169FF7C1}" = MobileMe Control Panel
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{788B97E8-D825-419A-8558-1C0B344C5371}" = Costco Photo Organizer
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7A7DC702-DEDE-42A8-8722-B3BA724D546F}" = Fax
"{7B15D70E-9449-4CFB-B9BC-798465B2BD5C}" = Norton Internet Security
"{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime
"{83770D14-21B9-44B3-8689-F7B523F94560}" = Cisco LEAP Module
"{84031A18-BA9A-4156-A74F-E05B52DDFCE2}" = DING!
"{846DDADA-0239-4B67-A6B1-33658863793B}" = HPTCSSetup
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{87E2B986-07E8-477a-93DC-AF0B6758B192}" = DocProcQFolder
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_SMALLBUSINESSR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_SMALLBUSINESSR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_SMALLBUSINESSR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_SMALLBUSINESSR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_SMALLBUSINESSR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_SMALLBUSINESSR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_SMALLBUSINESSR_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_SMALLBUSINESSR_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_SMALLBUSINESSR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_SMALLBUSINESSR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90280409-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional with FrontPage
"{91120000-00CA-0000-0000-0000000FF1CE}" = Microsoft Office Small Business 2007
"{91120000-00CA-0000-0000-0000000FF1CE}_SMALLBUSINESSR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95D08F4E-DFC2-4ce3-ACB7-8C8E206217E9}" = MarketResearch
"{978C25EE-5777-46e4-8988-732C297CBDBD}" = Status
"{9ADABDDE-9644-461B-9E73-83FA3EFCAB50}" = HP Wireless Assistant
"{9B1FD9CE-0776-4f0b-A6F5-C6AB7B650CDF}" = Destinations
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A36CD345-625C-4d6c-B3E2-76E1248CB451}" = SolutionCenter
"{A3B7C670-4A1E-4EE2-950E-C875BC1965D0}" = Copy
"{A7B609FB-83D8-4FC3-8477-1BC65ECFE85B}" = Adobe Photoshop Elements 5.0
"{A80FA752-C491-4ED9-ABF0-4278563160B2}" = 32 Bit HP CIO Components Installer
"{a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb" = Internet Explorer (Enable DEP)
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC2BA148-EE9C-4F1A-AFCE-F38C2C71D29B}" = Mobile Broadband Generic Drivers
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.2)
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{AD72CFB4-C2BF-424E-9DF0-C7BAD1F30A11}" = Adobe Shockwave Player
"{AFF7E080-1974-45BF-9310-10DE1A1F5ED0}" = Adobe AIR
"{B6D0B141-B2BE-4DD0-B08F-B9186F3E36B3}" = HP User Guides 0118
"{BE2DDF55-4C42-44CC-A56E-C8E4A65CB2FF}" = IHA_MessageCenter
"{BE77A81F-B315-4666-9BF3-AE70C0ADB057}" = BufferChm
"{C3A32068-8AB1-4327-BB16-BED9C6219DC7}" = Atheros Driver Installation Program
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"{C6D442EC-14C6-4E5B-8378-305BAE7EDBBF}" = TurboTax 2011 wmdiper
"{C716522C-3731-4667-8579-40B098294500}" = Toolbox
"{C916D86C-AB76-49c7-B0E4-A946E0FD9BC2}" = HP Photosmart, Officejet, PSC and Deskjet All-In-One Driver Software 8.0.B
"{CAF5B770-082F-40C4-853D-3973BB81BDAA}" = TurboTax 2011 WinPerTaxSupport
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240B8}" = WinZip 12.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE7E3BE0-2DD3-4416-A690-F9E4A99A8CFF}" = HP Active Support Library
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{DC24971E-1946-445D-8A82-CE685433FA7D}" = Realtek USB 2.0 Card Reader
"{DD35C328-F115-BEDA-6EEE-E00C5AACCCBC}" = muvee Reveal
"{DF6DA606-904D-4C18-823F-A4CFC3035E53}" = eFax Messenger
"{E06F04B9-45E6-4AC0-8083-85F7515F40F7}" = UnloadSupport
"{E09575B2-498D-4C8B-A9D2-623F78574F29}" = AIO_CDB_Software
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E463E171-4082-4744-A466-F7CBE8502789}" = TurboTax 2011 WinPerReleaseEngine
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.1
"{EB21A812-671B-4D08-B974-2A347F0D8F70}" = HP Photosmart Essential
"{EB75DE50-5754-4F6F-875D-126EDF8E4CB3}" = HPSSupply
"{EB879750-CCBD-4013-BFD5-0294D4DA5BD0}" = Apple Application Support
"{EE556A3E-EB37-4392-9637-BAA8EC2F47FA}" = TurboTax 2011 wrapper
"{EF086D4F-728E-4B41-BF99-99185FF782F5}" = CyberView CS - Memor-ease 1.2b (build 20091002)
"{EFC04D3F-A152-47E7-8517-EE0F6201AFEF}" = Apple Mobile Device Support
"{F95AC24D-E515-4057-BEB0-FDDFA55F74BB}" = PANTECH UML290
"{FAD3D68B-2F9C-459B-AA79-C04B9090FD72}" = TurboTax 2011 WinPerFedFormset
"{FDB5E0F3-86EA-4379-8A2F-1BC2436543E9}" = iCloud
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FF075778-6E50-47ed-991D-3B07FD4E3250}" = TrayApp
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"7-Zip" = 7-Zip 4.65
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"ActiveTouchMeetingClient" = WebEx
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop Elements 5" = Adobe Photoshop Elements 5.0
"Canon MX870 series User Registration" = Canon MX870 series User Registration
"Canon_IJ_Network_Scan_UTILITY" = Canon IJ Network Scan Utility
"Canon_IJ_Network_UTILITY" = Canon IJ Network Tool
"CanonMyPrinter" = Canon Utilities My Printer
"CanonSolutionMenu" = Canon Utilities Solution Menu
"Carbonite Backup" = Carbonite
"CNXT_AUDIO_HDA" = Conexant HD Audio
"CNXT_MODEM_HDAUDIO_HERMOSA_HSF" = HDAUDIO Soft Data Fax Modem with SmartCP
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"Coupon Printer for Windows4.0" = Coupon Printer for Windows
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"Easy-WebPrint EX" = Canon Easy-WebPrint EX
"Family Tree Builder" = MyHeritage Family Tree Builder
"HP Imaging Device Functions" = HP Imaging Device Functions 8.0
"HP Solution Center & Imaging Support Tools" = HP Solution Center 8.0
"HPExtendedCapabilities" = HP Customer Participation Program 8.0
"HPOCR" = HP OCR Software 8.0
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.61.0.1400
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft Security Client" = Microsoft Security Essentials
"Mobile Broadband Generic Drivers" = Mobile Broadband Generic Drivers
"Mozilla Firefox 6.0 (x86 en-US)" = Mozilla Firefox 6.0 (x86 en-US)
"MP Navigator EX 3.1" = Canon MP Navigator EX 3.1
"NVIDIA Drivers" = NVIDIA Drivers
"OVT Scanner" = Uninstall OVT Scanner
"SMALLBUSINESSR" = Microsoft Office Small Business 2007
"Speed Dial Utility" = Canon Speed Dial Utility
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"TurboTax 2011" = TurboTax 2011
"WildTangent hp Master Uninstall" = My HP Games
"WinLiveSuite" = Windows Live Essentials

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Smilebox" = Smilebox
"Spotify" = Spotify

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 5/9/2012 11:16:09 AM | Computer Name = oliverj-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 39431748

Error - 5/9/2012 11:16:09 AM | Computer Name = oliverj-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 39431748

Error - 5/9/2012 11:16:10 AM | Computer Name = oliverj-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 5/9/2012 11:16:10 AM | Computer Name = oliverj-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 39432840

Error - 5/9/2012 11:16:10 AM | Computer Name = oliverj-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 39432840

Error - 5/9/2012 11:16:13 AM | Computer Name = oliverj-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 5/9/2012 11:16:13 AM | Computer Name = oliverj-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 39435726

Error - 5/9/2012 11:16:13 AM | Computer Name = oliverj-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 39435726

Error - 5/9/2012 12:31:12 PM | Computer Name = oliverj-PC | Source = WinMgmt | ID = 10
Description =

Error - 5/9/2012 12:44:22 PM | Computer Name = oliverj-PC | Source = WinMgmt | ID = 10
Description =

[ Media Center Events ]
Error - 9/17/2010 9:15:33 PM | Computer Name = oliverj-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.

Error - 11/1/2010 9:10:37 PM | Computer Name = oliverj-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.

[ OSession Events ]
Error - 10/28/2011 12:21:31 PM | Computer Name = oliverj-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6562.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 222797
seconds with 13020 seconds of active time. This session ended with a crash.

Error - 11/4/2011 9:42:21 PM | Computer Name = oliverj-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6562.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 73601
seconds with 9840 seconds of active time. This session ended with a crash.

Error - 11/7/2011 3:56:39 PM | Computer Name = oliverj-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6562.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 236326
seconds with 16020 seconds of active time. This session ended with a crash.

Error - 12/1/2011 5:28:54 AM | Computer Name = oliverj-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6607.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 960357
seconds with 36960 seconds of active time. This session ended with a crash.

Error - 12/11/2011 12:25:50 PM | Computer Name = oliverj-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6607.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 413676
seconds with 29400 seconds of active time. This session ended with a crash.

Error - 12/21/2011 2:35:58 PM | Computer Name = oliverj-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6607.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 89728
seconds with 12060 seconds of active time. This session ended with a crash.

Error - 1/9/2012 10:51:00 PM | Computer Name = oliverj-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6607.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 5
seconds with 0 seconds of active time. This session ended with a crash.

Error - 2/28/2012 3:55:46 PM | Computer Name = oliverj-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6607.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 347577
seconds with 27060 seconds of active time. This session ended with a crash.

Error - 3/4/2012 2:23:34 AM | Computer Name = oliverj-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6607.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 4001
seconds with 1500 seconds of active time. This session ended with a crash.

Error - 3/4/2012 2:32:55 AM | Computer Name = oliverj-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6607.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 544
seconds with 480 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 5/9/2012 1:00:48 PM | Computer Name = oliverj-PC | Source = Service Control Manager | ID = 7022
Description =

Error - 5/9/2012 1:33:43 PM | Computer Name = oliverj-PC | Source = Microsoft Antimalware | ID = 3002
Description = %%860 Real-Time Protection feature has encountered an error and failed.

Feature:
%%835 Error Code: 0x80004005 Error description: Unspecified error Reason: %%842

Error - 5/9/2012 1:34:30 PM | Computer Name = oliverj-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 5/9/2012 1:42:19 PM | Computer Name = oliverj-PC | Source = Microsoft Antimalware | ID = 3002
Description = %%860 Real-Time Protection feature has encountered an error and failed.

Feature:
%%835 Error Code: 0x80004005 Error description: Unspecified error Reason: %%842

Error - 5/9/2012 1:42:20 PM | Computer Name = oliverj-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 5/9/2012 1:50:55 PM | Computer Name = oliverj-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 5/9/2012 1:50:58 PM | Computer Name = oliverj-PC | Source = Microsoft Antimalware | ID = 3002
Description = %%860 Real-Time Protection feature has encountered an error and failed.

Feature:
%%835 Error Code: 0x80004005 Error description: Unspecified error Reason: %%842

Error - 5/9/2012 2:08:16 PM | Computer Name = oliverj-PC | Source = Microsoft Antimalware | ID = 3002
Description = %%860 Real-Time Protection feature has encountered an error and failed.

Feature:
%%835 Error Code: 0x80004005 Error description: Unspecified error Reason: %%842

Error - 5/9/2012 2:08:29 PM | Computer Name = oliverj-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 5/9/2012 2:16:23 PM | Computer Name = oliverj-PC | Source = Service Control Manager | ID = 7022
Description =


< End of report >

Hello and welcome to GeekPolice.Net My name is Dave. I will be helping you out with your particular problem on your computer.

1. I will be working on your Malware issues. This may or may not solve other issues you have with your machine.
2. The fixes are specific to your problem and should only be used for this issue on this machine.
3. If you don't know or understand something, please don't hesitate to ask.
4. Please DO NOT run any other tools or scans while I am helping you.
5. It is important that you reply to this thread. Do not start a new topic.
6. Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
7. Absence of symptoms does not mean that everything is clear.

If you can't access the internet with your infected computer you will have to download and transfer any programs to the computer you're using now and transfer them to the infected computer with a CD-RW or a USB storage device. I prefer a CD because a storage device can get infected. If you use a storage device hold the shift key down while inserting the USB storage device for about 10 secs. You will also have to transfer the logs you receive back to the good computer using the same method until we can get the computer back on-line.
*****************************************************************

• Please download Unhide by Grinler from here and save it to your desktop.
  
• Double click unhide.exe to run the tool.
  
• It will take some time to go through all your files, so please be patient.
  
• If this tool doesn´t fix the problem, please let me know.
  

**********************************************************
Please download Malwarebytes Anti-Malware from here.
Double Click mbam-setup.exe to install the application.

• Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes Anti-Malware, then click Finish.
  
• If an update is found, it will download and install the latest version.
  
• Once the program has loaded, select "Perform Full Scan", then click Scan.
  
• The scan may take some time to finish,so please be patient.
  
• When the scan is complete, click OK, then Show Results to view the results.
  
• Make sure that everything is checked, and click Remove Selected.
  
• When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note)
  
• Please save the log to a location you will remember.
  
• The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  
• Copy and paste the entire report in your next reply.
  

Extra Note:

If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately.
*******************************************************

• Download TDSSKiller and save it to your Desktop.
  
• Extract its contents to your desktop.
  
• Once extracted, open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  
  
  
  
• If an infected file is detected, the default action will be Cure, click on Continue.
  
  
  
  
• If a suspicious file is detected, the default action will be Skip, click on Continue.
  
  
  
  
• It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  
  
  
  
• Click the Report button and copy/paste the contents of it into your next reply
  

Note:It will also create a log in the C:\ directory..

Shall I do the first one first and then later download the other things? Also, I already have Malware - should I download from the link you gave? And I forgot to mention I have Vista as an operating system.

So download Unhide first and wait for it to download and run before attempting any of the others?

Downloaded and ran Unhide and it restored all my icons to my desktop. Downloaded Malware but window still keeps popping up saying "The database is outdated by 34 days. Would you like to update now?" And each time I semmingly do - it still says that. What is up with that?

Malware still running though I no longer see the Data Recovery tab from the S.M.A.R.T. thing in my tray. I will tell you that Microsoft Security Essentials Alert came up (I ran it earlier) and says that it found the following virus: Trojan:Win32/FakeSysdef It keeps popping up and wanting to restart to "complete the cleanup," it says, but I don't want to do that until the Malware scan is completed. How long is MAM going to keep scanning - been going on for 1 hour 37 minutes?

oliverj wrote:

Malware still running though I no longer see the Data Recovery tab from the S.M.A.R.T. thing in my tray. I will tell you that Microsoft Security Essentials Alert came up (I ran it earlier) and says that it found the following virus: Trojan:Win32/FakeSysdef It keeps popping up and wanting to restart to "complete the cleanup," it says, but I don't want to do that until the Malware scan is completed. How long is MAM going to keep scanning - been going on for 1 hour 37 minutes?

The next time MSE pops up let it clean the computer and restart. You can run MBAM afterward.

Thanks! Finished MBAM scan and it found 2 things and supposedly removed them and I restarted for both it and the MSE which supposedly removed the trojan virus mentioned above. Half my desktop icons (though the programs are in my start up menu) and my screen saver are gone but the offending item seems to be gone. I guess I just have to restore those myself? Do I need to still install and run the TDSSKiller?

Here is the log from the MBAM scan when it finished:
Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.04.04.08

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
oliverj :: OLIVERJ-PC [administrator]

Protection: Enabled

5/9/2012 3:50:00 PM
mbam-log-2012-05-09 (15-50-00).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 466154
Time elapsed: 2 hour(s), 50 minute(s), 2 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 2
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowMyComputer (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowSearch (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and repaired successfully.

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

I guess I just have to restore those myself? Do I need to still install and run the TDSSKiller?

Yes please.

SUPERAntiSpyware

If you already have SUPERAntiSpyware be sure to check for updates before scanning!

Download SuperAntispyware Free Edition (SAS)
* Double-click the icon on your desktop to run the installer.
* When asked to Update the program definitions, click Yes
* If you encounter any problems while downloading the updates, manually download and unzip them from here
* Next click the Preferences button.

•Under Start-Up Options uncheck Start SUPERAntiSpyware when Windows starts
* Click the Scanning Control tab.
* Under Scanner Options make sure only the following are checked:

•Close browsers before scanning
•Scan for tracking cookies
•Terminate memory threats before quarantining
•Please leave the others unchecked

•Click the Close button to leave the control center screen.

* On the main screen click Scan your computer
* On the left check the box for the drive you are scanning.
* On the right choose Perform Complete Scan
* Click Next to start the scan. Please be patient while it scans your computer.
* After the scan is complete a summary box will appear. Click OK
* Make sure everything in the white box has a check next to it, then click Next
* It will quarantine what it found and if it asks if you want to reboot, click Yes

•To retrieve the removal information please do the following:
•After reboot, double-click the SUPERAntiSpyware icon on your desktop.
•Click Preferences. Click the Statistics/Logs tab.

•Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.

•It will open in your default text editor (preferably Notepad).
•Save the notepad file to your desktop by clicking (in notepad) File > Save As...

* Save the log somewhere you can easily find it. (normally the desktop)
* Click close and close again to exit the program.
*Copy and Paste the log in your post.

TDSSKiller and then install the SAS and run it?

Report from running TDSSKiller:
20:59:55.0087 1220 TDSS rootkit removing tool 2.7.34.0 May 2 2012 09:59:18
20:59:55.0633 1220 ============================================================
20:59:55.0633 1220 Current date / time: 2012/05/09 20:59:55.0633
20:59:55.0633 1220 SystemInfo:
20:59:55.0633 1220
20:59:55.0633 1220 OS Version: 6.0.6002 ServicePack: 2.0
20:59:55.0633 1220 Product type: Workstation
20:59:55.0633 1220 ComputerName: OLIVERJ-PC
20:59:55.0633 1220 UserName: oliverj
20:59:55.0633 1220 Windows directory: C:\Windows
20:59:55.0633 1220 System windows directory: C:\Windows
20:59:55.0633 1220 Processor architecture: Intel x86
20:59:55.0633 1220 Number of processors: 2
20:59:55.0633 1220 Page size: 0x1000
20:59:55.0633 1220 Boot type: Normal boot
20:59:55.0633 1220 ============================================================
21:00:06.0506 1220 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:00:07.0535 1220 Drive \Device\Harddisk1\DR2 - Size: 0x3D500000 (0.96 Gb), SectorSize: 0x200, Cylinders: 0x7D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:00:07.0535 1220 Drive \Device\Harddisk1\DR2 - Size: 0x3D500000 (0.96 Gb), SectorSize: 0x200, Cylinders: 0x7D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:00:07.0535 1220 ============================================================
21:00:07.0535 1220 \Device\Harddisk0\DR0:
21:00:07.0551 1220 MBR partitions:
21:00:07.0551 1220 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x23E6BFC1
21:00:07.0551 1220 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x23E6C000, BlocksNum 0x15C1000
21:00:07.0551 1220 \Device\Harddisk1\DR2:
21:00:07.0551 1220 MBR partitions:
21:00:07.0551 1220 \Device\Harddisk1\DR2\Partition0: MBR, Type 0x6, StartLBA 0x20, BlocksNum 0x1EA7E0
21:00:07.0551 1220 \Device\Harddisk1\DR2:
21:00:07.0551 1220 MBR partitions:
21:00:07.0551 1220 \Device\Harddisk1\DR2\Partition0: MBR, Type 0x6, StartLBA 0x20, BlocksNum 0x1EA7E0
21:00:07.0551 1220 ============================================================
21:00:07.0567 1220 C: <-> \Device\Harddisk0\DR0\Partition0
21:00:07.0676 1220 D: <-> \Device\Harddisk0\DR0\Partition1
21:00:07.0676 1220 ============================================================
21:00:07.0676 1220 Initialize success
21:00:07.0676 1220 ============================================================
21:02:21.0630 0896 ============================================================
21:02:21.0630 0896 Scan started
21:02:21.0630 0896 Mode: Manual;
21:02:21.0630 0896 ============================================================
21:02:23.0268 0896 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
21:02:23.0361 0896 ACPI - ok
21:02:23.0502 0896 AdobeActiveFileMonitor5.0 (63ab43534cbf5d7f3eb81dfdc8161490) C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
21:02:23.0705 0896 AdobeActiveFileMonitor5.0 - ok
21:02:23.0845 0896 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
21:02:23.0861 0896 AdobeARMservice - ok
21:02:23.0954 0896 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
21:02:24.0048 0896 adp94xx - ok
21:02:24.0110 0896 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
21:02:24.0188 0896 adpahci - ok
21:02:24.0235 0896 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
21:02:24.0422 0896 adpu160m - ok
21:02:24.0453 0896 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
21:02:24.0609 0896 adpu320 - ok
21:02:24.0672 0896 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
21:02:24.0765 0896 AeLookupSvc - ok
21:02:24.0860 0896 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
21:02:24.0969 0896 AFD - ok
21:02:25.0016 0896 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
21:02:25.0141 0896 agp440 - ok
21:02:25.0172 0896 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
21:02:25.0312 0896 aic78xx - ok
21:02:25.0328 0896 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
21:02:25.0468 0896 ALG - ok
21:02:25.0484 0896 aliide (3d76fda1a10acc3dc84728f55c29b6d4) C:\Windows\system32\drivers\aliide.sys
21:02:25.0531 0896 aliide - ok
21:02:25.0578 0896 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
21:02:25.0702 0896 amdagp - ok
21:02:25.0718 0896 amdide (5b92e7839f5a1fbc1b39de67758ad6f8) C:\Windows\system32\drivers\amdide.sys
21:02:25.0765 0896 amdide - ok
21:02:25.0812 0896 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
21:02:25.0905 0896 AmdK7 - ok
21:02:25.0936 0896 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
21:02:26.0014 0896 AmdK8 - ok
21:02:26.0170 0896 APL531 (1fc8a7e5c3aed31f00940c6ab2fd9b49) C:\Windows\system32\Drivers\ov550i.sys
21:02:26.0280 0896 APL531 - ok
21:02:26.0358 0896 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
21:02:26.0436 0896 Appinfo - ok
21:02:26.0529 0896 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:02:26.0545 0896 Apple Mobile Device - ok
21:02:26.0576 0896 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
21:02:26.0685 0896 arc - ok
21:02:26.0732 0896 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
21:02:26.0841 0896 arcsas - ok
21:02:26.0872 0896 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
21:02:26.0935 0896 AsyncMac - ok
21:02:26.0982 0896 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
21:02:26.0997 0896 atapi - ok
21:02:27.0153 0896 athr (600efe56f37adbd65a0fb076b50d1b8d) C:\Windows\system32\DRIVERS\athr.sys
21:02:27.0278 0896 athr - ok
21:02:27.0387 0896 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
21:02:27.0512 0896 AudioEndpointBuilder - ok
21:02:27.0528 0896 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
21:02:27.0543 0896 Audiosrv - ok
21:02:27.0590 0896 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
21:02:27.0637 0896 Beep - ok
21:02:27.0746 0896 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
21:02:27.0855 0896 BFE - ok
21:02:27.0996 0896 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
21:02:28.0167 0896 BITS - ok
21:02:28.0230 0896 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
21:02:28.0354 0896 blbdrive - ok
21:02:28.0495 0896 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
21:02:28.0510 0896 Bonjour Service - ok
21:02:28.0557 0896 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
21:02:28.0713 0896 bowser - ok
21:02:28.0744 0896 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
21:02:28.0807 0896 BrFiltLo - ok
21:02:28.0838 0896 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
21:02:28.0885 0896 BrFiltUp - ok
21:02:28.0947 0896 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
21:02:28.0947 0896 Browser - ok
21:02:29.0010 0896 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
21:02:29.0134 0896 Brserid - ok
21:02:29.0166 0896 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
21:02:29.0306 0896 BrSerWdm - ok
21:02:29.0322 0896 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
21:02:29.0384 0896 BrUsbMdm - ok
21:02:29.0415 0896 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
21:02:29.0462 0896 BrUsbSer - ok
21:02:29.0509 0896 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
21:02:29.0602 0896 BTHMODEM - ok
21:02:30.0103 0896 CarboniteService (e581146b4e24601d3b3c60e960de4e3b) C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe
21:02:30.0212 0896 CarboniteService - ok
21:02:30.0352 0896 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
21:02:30.0352 0896 cdfs - ok
21:02:30.0415 0896 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
21:02:30.0415 0896 cdrom - ok
21:02:30.0477 0896 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
21:02:30.0571 0896 CertPropSvc - ok
21:02:30.0617 0896 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
21:02:30.0695 0896 circlass - ok
21:02:30.0789 0896 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
21:02:30.0899 0896 CLFS - ok
21:02:30.0993 0896 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:02:31.0133 0896 clr_optimization_v2.0.50727_32 - ok
21:02:31.0305 0896 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:02:31.0320 0896 clr_optimization_v4.0.30319_32 - ok
21:02:31.0398 0896 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
21:02:31.0445 0896 CmBatt - ok
21:02:31.0476 0896 cmdide (d36372a6ea6805efbe8884d10772313f) C:\Windows\system32\drivers\cmdide.sys
21:02:31.0539 0896 cmdide - ok
21:02:31.0601 0896 CnxtHdAudService (dda0cb141150fef87419926790cd26c8) C:\Windows\system32\drivers\CHDRT32.sys
21:02:31.0695 0896 CnxtHdAudService - ok
21:02:31.0757 0896 Com4QLBEx (7795f8cebc284a426b53f541e538695f) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
21:02:31.0773 0896 Com4QLBEx - ok
21:02:31.0788 0896 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
21:02:31.0835 0896 Compbatt - ok
21:02:31.0851 0896 COMSysApp - ok
21:02:31.0898 0896 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
21:02:31.0976 0896 crcdisk - ok
21:02:32.0007 0896 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
21:02:32.0100 0896 Crusoe - ok
21:02:32.0194 0896 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
21:02:32.0210 0896 CryptSvc - ok
21:02:32.0334 0896 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
21:02:32.0350 0896 DcomLaunch - ok
21:02:32.0397 0896 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
21:02:32.0568 0896 DfsC - ok
21:02:32.0818 0896 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
21:02:33.0380 0896 DFSR - ok
21:02:33.0520 0896 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
21:02:33.0520 0896 Dhcp - ok
21:02:33.0567 0896 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
21:02:33.0567 0896 disk - ok
21:02:33.0629 0896 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
21:02:33.0660 0896 Dnscache - ok
21:02:33.0707 0896 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
21:02:33.0723 0896 dot3svc - ok
21:02:33.0770 0896 dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
21:02:33.0801 0896 dot4 - ok
21:02:33.0832 0896 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
21:02:33.0848 0896 Dot4Print - ok
21:02:33.0879 0896 Dot4Scan (a84d8a9006b1ae515cc7b6b3586c295a) C:\Windows\system32\DRIVERS\Dot4Scan.sys
21:02:33.0894 0896 Dot4Scan - ok
21:02:33.0941 0896 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
21:02:33.0957 0896 dot4usb - ok
21:02:34.0004 0896 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
21:02:34.0004 0896 DPS - ok
21:02:34.0035 0896 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
21:02:34.0050 0896 drmkaud - ok
21:02:34.0128 0896 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
21:02:34.0160 0896 DXGKrnl - ok
21:02:34.0206 0896 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
21:02:34.0253 0896 E1G60 - ok
21:02:34.0284 0896 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
21:02:34.0300 0896 EapHost - ok
21:02:34.0378 0896 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
21:02:34.0409 0896 Ecache - ok
21:02:34.0487 0896 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
21:02:34.0581 0896 ehRecvr - ok
21:02:34.0612 0896 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
21:02:34.0643 0896 ehSched - ok
21:02:34.0659 0896 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
21:02:34.0659 0896 ehstart - ok
21:02:34.0721 0896 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
21:02:34.0768 0896 elxstor - ok
21:02:34.0830 0896 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
21:02:34.0846 0896 EMDMgmt - ok
21:02:34.0877 0896 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
21:02:34.0893 0896 ErrDev - ok
21:02:34.0940 0896 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
21:02:34.0986 0896 EventSystem - ok
21:02:35.0033 0896 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
21:02:35.0064 0896 exfat - ok
21:02:35.0111 0896 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
21:02:35.0111 0896 fastfat - ok
21:02:35.0142 0896 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
21:02:35.0174 0896 fdc - ok
21:02:35.0205 0896 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
21:02:35.0220 0896 fdPHost - ok
21:02:35.0236 0896 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
21:02:35.0252 0896 FDResPub - ok
21:02:35.0283 0896 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
21:02:35.0330 0896 FileInfo - ok
21:02:35.0345 0896 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
21:02:35.0361 0896 Filetrace - ok
21:02:35.0408 0896 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
21:02:35.0423 0896 flpydisk - ok
21:02:35.0470 0896 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
21:02:35.0517 0896 FltMgr - ok
21:02:35.0642 0896 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
21:02:35.0688 0896 FontCache - ok
21:02:35.0751 0896 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:02:35.0766 0896 FontCache3.0.0.0 - ok
21:02:35.0798 0896 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
21:02:35.0813 0896 Fs_Rec - ok
21:02:35.0844 0896 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
21:02:35.0876 0896 gagp30kx - ok
21:02:35.0938 0896 GameConsoleService (617dc2877015270914ca3c03873560d5) C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
21:02:36.0063 0896 GameConsoleService - ok
21:02:36.0110 0896 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:02:36.0156 0896 GEARAspiWDM - ok
21:02:36.0234 0896 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
21:02:36.0328 0896 gpsvc - ok
21:02:36.0390 0896 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
21:02:36.0422 0896 HdAudAddService - ok
21:02:36.0500 0896 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
21:02:36.0546 0896 HDAudBus - ok
21:02:36.0562 0896 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
21:02:36.0593 0896 HidBth - ok
21:02:36.0609 0896 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
21:02:36.0624 0896 HidIr - ok
21:02:36.0687 0896 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
21:02:36.0702 0896 hidserv - ok
21:02:36.0734 0896 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
21:02:36.0765 0896 HidUsb - ok
21:02:36.0796 0896 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
21:02:36.0827 0896 hkmsvc - ok
21:02:36.0921 0896 HP Health Check Service (a19b0bb5a7eb6df2dd4a0711d36955ee) c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
21:02:36.0936 0896 HP Health Check Service - ok
21:02:36.0968 0896 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
21:02:36.0983 0896 HpCISSs - ok
21:02:37.0155 0896 hpqcxs08 (fcb563b0a23643e5f80b6ff1e60f610f) C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
21:02:37.0404 0896 hpqcxs08 - ok
21:02:37.0436 0896 hpqddsvc (25e443e27165c652723a92d9bdfd4649) C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
21:02:37.0654 0896 hpqddsvc - ok
21:02:37.0701 0896 HpqKbFiltr (35956140e686d53bf676cf0c778880fc) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
21:02:37.0716 0896 HpqKbFiltr - ok
21:02:37.0748 0896 hpqwmiex (1665c7121a026df10c903db9bc5e9d43) C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
21:02:37.0763 0896 hpqwmiex - ok
21:02:37.0872 0896 HSF_DPV (cc267848cb3508e72762be65734e764d) C:\Windows\system32\DRIVERS\HSX_DPV.sys
21:02:37.0919 0896 HSF_DPV - ok
21:02:37.0950 0896 HSXHWAZL (a2882945cc4b6e3e4e9e825590438888) C:\Windows\system32\DRIVERS\HSXHWAZL.sys
21:02:37.0982 0896 HSXHWAZL - ok
21:02:38.0091 0896 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
21:02:38.0153 0896 HTTP - ok
21:02:38.0184 0896 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
21:02:38.0200 0896 i2omp - ok
21:02:38.0247 0896 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
21:02:38.0294 0896 i8042prt - ok
21:02:38.0325 0896 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
21:02:38.0372 0896 iaStorV - ok
21:02:38.0450 0896 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
21:02:38.0512 0896 IDriverT - ok
21:02:38.0668 0896 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:02:38.0808 0896 idsvc - ok
21:02:38.0886 0896 IHA_MessageCenter (c135bff15563592b8ea070ea109967f7) C:\Program Files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
21:02:38.0964 0896 IHA_MessageCenter - ok
21:02:39.0043 0896 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
21:02:39.0075 0896 iirsp - ok
21:02:39.0137 0896 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
21:02:39.0184 0896 IKEEXT - ok
21:02:39.0199 0896 intelide (dd512a049bd7b4bce8a83554c5eff2c1) C:\Windows\system32\drivers\intelide.sys
21:02:39.0215 0896 intelide - ok
21:02:39.0246 0896 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
21:02:39.0277 0896 intelppm - ok
21:02:39.0371 0896 IntuitUpdateServiceV4 (1663a135865f0ba6e853353e98e67f2a) C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
21:02:39.0387 0896 IntuitUpdateServiceV4 - ok
21:02:39.0402 0896 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
21:02:39.0433 0896 IPBusEnum - ok
21:02:39.0465 0896 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:02:39.0496 0896 IpFilterDriver - ok
21:02:39.0543 0896 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
21:02:39.0574 0896 iphlpsvc - ok
21:02:39.0574 0896 IpInIp - ok
21:02:39.0621 0896 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
21:02:39.0667 0896 IPMIDRV - ok
21:02:39.0714 0896 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
21:02:39.0730 0896 IPNAT - ok
21:02:39.0839 0896 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe
21:02:39.0870 0896 iPod Service - ok
21:02:39.0886 0896 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
21:02:39.0901 0896 IRENUM - ok
21:02:39.0933 0896 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
21:02:39.0948 0896 isapnp - ok
21:02:40.0011 0896 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
21:02:40.0042 0896 iScsiPrt - ok
21:02:40.0042 0896 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
21:02:40.0073 0896 iteatapi - ok
21:02:40.0089 0896 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
21:02:40.0120 0896 iteraid - ok
21:02:40.0135 0896 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
21:02:40.0151 0896 kbdclass - ok
21:02:40.0167 0896 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys
21:02:40.0182 0896 kbdhid - ok
21:02:40.0260 0896 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
21:02:40.0291 0896 KeyIso - ok
21:02:40.0354 0896 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
21:02:40.0416 0896 KSecDD - ok
21:02:40.0463 0896 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
21:02:40.0479 0896 KtmRm - ok
21:02:40.0557 0896 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
21:02:40.0588 0896 LanmanServer - ok
21:02:40.0635 0896 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
21:02:40.0666 0896 LanmanWorkstation - ok
21:02:40.0759 0896 LightScribeService (abf90fc5a127f481219b873c1b8dfc1c) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
21:02:40.0869 0896 LightScribeService - ok
21:02:40.0884 0896 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
21:02:40.0915 0896 lltdio - ok
21:02:40.0962 0896 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
21:02:41.0009 0896 lltdsvc - ok
21:02:41.0025 0896 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
21:02:41.0056 0896 lmhosts - ok
21:02:41.0071 0896 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
21:02:41.0134 0896 LSI_FC - ok
21:02:41.0134 0896 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
21:02:41.0181 0896 LSI_SAS - ok
21:02:41.0181 0896 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
21:02:41.0227 0896 LSI_SCSI - ok
21:02:41.0243 0896 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
21:02:41.0290 0896 luafv - ok
21:02:41.0321 0896 MBAMProtector (fb097bbc1a18f044bd17bd2fccf97865) C:\Windows\system32\drivers\mbam.sys
21:02:41.0352 0896 MBAMProtector - ok
21:02:41.0446 0896 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
21:02:41.0461 0896 MBAMService - ok
21:02:41.0493 0896 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
21:02:41.0524 0896 Mcx2Svc - ok
21:02:41.0586 0896 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
21:02:41.0602 0896 mdmxsdk - ok
21:02:41.0633 0896 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
21:02:41.0664 0896 megasas - ok
21:02:41.0711 0896 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
21:02:41.0758 0896 MegaSR - ok
21:02:41.0773 0896 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
21:02:41.0805 0896 MMCSS - ok
21:02:41.0805 0896 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
21:02:41.0836 0896 Modem - ok
21:02:41.0867 0896 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
21:02:41.0898 0896 monitor - ok
21:02:41.0914 0896 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
21:02:41.0945 0896 mouclass - ok
21:02:41.0961 0896 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
21:02:42.0023 0896 mouhid - ok
21:02:42.0039 0896 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
21:02:42.0070 0896 MountMgr - ok
21:02:42.0132 0896 MpFilter (d993bea500e7382dc4e760bf4f35efcb) C:\Windows\system32\DRIVERS\MpFilter.sys
21:02:42.0163 0896 MpFilter - ok
21:02:42.0210 0896 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
21:02:42.0257 0896 mpio - ok
21:02:42.0366 0896 MpKsldd2b65d0 (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CC82D644-CAB7-4FD7-A03C-0CA6EE7A4FED}\MpKsldd2b65d0.sys
21:02:42.0366 0896 MpKsldd2b65d0 - ok
21:02:42.0382 0896 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
21:02:42.0397 0896 mpsdrv - ok
21:02:42.0475 0896 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
21:02:42.0507 0896 MpsSvc - ok
21:02:42.0538 0896 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
21:02:42.0553 0896 Mraid35x - ok
21:02:42.0569 0896 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
21:02:42.0600 0896 MRxDAV - ok
21:02:42.0631 0896 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:02:42.0678 0896 mrxsmb - ok
21:02:42.0741 0896 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:02:42.0772 0896 mrxsmb10 - ok
21:02:42.0787 0896 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:02:42.0834 0896 mrxsmb20 - ok
21:02:42.0881 0896 msahci (aa305cff241da187bd5077de4a2a043d) C:\Windows\system32\drivers\msahci.sys
21:02:42.0897 0896 msahci - ok
21:02:42.0959 0896 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
21:02:42.0975 0896 msdsm - ok
21:02:43.0037 0896 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
21:02:43.0099 0896 MSDTC - ok
21:02:43.0131 0896 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
21:02:43.0193 0896 Msfs - ok
21:02:43.0255 0896 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
21:02:43.0271 0896 msisadrv - ok
21:02:43.0333 0896 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
21:02:43.0365 0896 MSiSCSI - ok
21:02:43.0365 0896 msiserver - ok
21:02:43.0427 0896 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
21:02:43.0474 0896 MSKSSRV - ok
21:02:43.0567 0896 MsMpSvc (24516bf4e12a46cb67302e2cdcb8cddf) c:\Program Files\Microsoft Security Client\MsMpEng.exe
21:02:43.0567 0896 MsMpSvc - ok
21:02:43.0583 0896 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
21:02:43.0599 0896 MSPCLOCK - ok
21:02:43.0645 0896 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
21:02:43.0661 0896 MSPQM - ok
21:02:43.0739 0896 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
21:02:43.0817 0896 MsRPC - ok
21:02:43.0833 0896 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
21:02:43.0864 0896 mssmbios - ok
21:02:43.0895 0896 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
21:02:43.0911 0896 MSTEE - ok
21:02:43.0942 0896 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
21:02:43.0973 0896 Mup - ok
21:02:44.0035 0896 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
21:02:44.0051 0896 napagent - ok
21:02:44.0160 0896 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
21:02:44.0191 0896 NativeWifiP - ok
21:02:44.0269 0896 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
21:02:44.0316 0896 NDIS - ok
21:02:44.0332 0896 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
21:02:44.0363 0896 NdisTapi - ok
21:02:44.0379 0896 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
21:02:44.0394 0896 Ndisuio - ok
21:02:44.0457 0896 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
21:02:44.0488 0896 NdisWan - ok
21:02:44.0519 0896 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
21:02:44.0550 0896 NDProxy - ok
21:02:44.0581 0896 Net Driver HPZ12 (a081cb6fb9a12668f233eb5414be3a0e) C:\Windows\system32\HPZinw12.dll
21:02:44.0613 0896 Net Driver HPZ12 - ok
21:02:44.0628 0896 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
21:02:44.0659 0896 NetBIOS - ok
21:02:44.0722 0896 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
21:02:44.0769 0896 netbt - ok
21:02:44.0800 0896 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
21:02:44.0800 0896 Netlogon - ok
21:02:44.0847 0896 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
21:02:44.0909 0896 Netman - ok
21:02:44.0925 0896 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
21:02:44.0940 0896 netprofm - ok
21:02:45.0003 0896 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:02:45.0018 0896 NetTcpPortSharing - ok
21:02:45.0283 0896 NETw3v32 (35d5458d9a1b26b2005abffbf4c1c5e7) C:\Windows\system32\DRIVERS\NETw3v32.sys
21:02:45.0361 0896 NETw3v32 - ok
21:02:45.0486 0896 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
21:02:45.0502 0896 nfrd960 - ok
21:02:45.0564 0896 NisDrv (b52f26bade7d7e4a79706e3fd91834cd) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
21:02:45.0611 0896 NisDrv - ok
21:02:45.0689 0896 NisSrv (290c0d4c4889398797f8df3be00b9698) c:\Program Files\Microsoft Security Client\NisSrv.exe
21:02:45.0751 0896 NisSrv - ok
21:02:45.0783 0896 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
21:02:45.0814 0896 NlaSvc - ok
21:02:45.0861 0896 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
21:02:45.0892 0896 Npfs - ok
21:02:45.0923 0896 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
21:02:45.0939 0896 nsi - ok
21:02:45.0970 0896 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
21:02:45.0985 0896 nsiproxy - ok
21:02:46.0157 0896 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
21:02:46.0360 0896 Ntfs - ok
21:02:46.0422 0896 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
21:02:46.0438 0896 ntrigdigi - ok
21:02:46.0531 0896 NuidFltr (cf7e041663119e09d2e118521ada9300) C:\Windows\system32\DRIVERS\NuidFltr.sys
21:02:46.0547 0896 NuidFltr - ok
21:02:46.0578 0896 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
21:02:46.0578 0896 Null - ok
21:02:46.0687 0896 NVENETFD (1efec38a852ab35883bfff3427b92b3f) C:\Windows\system32\DRIVERS\nvmfdx32.sys
21:02:46.0734 0896 NVENETFD - ok
21:02:46.0765 0896 NVHDA (b0dd52428bf564f5fc5ee331060be2a6) C:\Windows\system32\drivers\nvhda32v.sys
21:02:46.0797 0896 NVHDA - ok
21:02:47.0670 0896 nvlddmkm (9dac05d828e56801fd6ce5fdfced64af) C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:02:47.0795 0896 nvlddmkm - ok
21:02:47.0998 0896 NVNET (1efec38a852ab35883bfff3427b92b3f) C:\Windows\system32\DRIVERS\nvmfdx32.sys
21:02:47.0998 0896 NVNET - ok
21:02:48.0185 0896 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
21:02:48.0232 0896 nvraid - ok
21:02:48.0263 0896 nvsmu (0fb6bf3ab170fc5bd403d25e134eafde) C:\Windows\system32\DRIVERS\nvsmu.sys
21:02:48.0279 0896 nvsmu - ok
21:02:48.0294 0896 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
21:02:48.0325 0896 nvstor - ok
21:02:48.0372 0896 nvsvc (51e7f2c26b6ece61c5241f1f731eab2b) C:\Windows\system32\nvvsvc.exe
21:02:48.0372 0896 nvsvc - ok
21:02:48.0403 0896 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
21:02:48.0419 0896 nv_agp - ok
21:02:48.0497 0896 NWADI (fc2a8aaa0f3321f41231ede0af1968ae) C:\Windows\system32\DRIVERS\NWADIenum.sys
21:02:48.0528 0896 NWADI - ok
21:02:48.0528 0896 NwlnkFlt - ok
21:02:48.0528 0896 NwlnkFwd - ok
21:02:48.0559 0896 NWUSBCDFIL (224131778c92aee8c13afac5fbff19ca) C:\Windows\system32\DRIVERS\NwUsbCdFil.sys
21:02:48.0591 0896 NWUSBCDFIL - ok
21:02:48.0637 0896 NWUSBModem (b7112f30d7eff4b5052eba879f46228f) C:\Windows\system32\DRIVERS\nwusbmdm.sys
21:02:48.0700 0896 NWUSBModem - ok
21:02:48.0762 0896 NWUSBPort (b7112f30d7eff4b5052eba879f46228f) C:\Windows\system32\DRIVERS\nwusbser.sys
21:02:48.0793 0896 NWUSBPort - ok
21:02:48.0840 0896 NWUSBPort2 (b7112f30d7eff4b5052eba879f46228f) C:\Windows\system32\DRIVERS\nwusbser2.sys
21:02:48.0903 0896 NWUSBPort2 - ok
21:02:49.0090 0896 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:02:49.0215 0896 odserv - ok
21:02:49.0277 0896 ohci1394 (790e27c3db53410b40ff9ef2fd10a1d9) C:\Windows\system32\DRIVERS\ohci1394.sys
21:02:49.0308 0896 ohci1394 - ok
21:02:49.0371 0896 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:02:49.0449 0896 ose - ok
21:02:49.0558 0896 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
21:02:49.0636 0896 p2pimsvc - ok
21:02:49.0636 0896 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
21:02:49.0651 0896 p2psvc - ok
21:02:49.0683 0896 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
21:02:49.0745 0896 Parport - ok
21:02:49.0776 0896 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
21:02:49.0807 0896 partmgr - ok
21:02:49.0839 0896 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
21:02:49.0854 0896 Parvdm - ok
21:02:49.0885 0896 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
21:02:49.0917 0896 PcaSvc - ok
21:02:49.0948 0896 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
21:02:49.0995 0896 pci - ok
21:02:50.0010 0896 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
21:02:50.0026 0896 pciide - ok
21:02:50.0073 0896 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
21:02:50.0104 0896 pcmcia - ok
21:02:50.0197 0896 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
21:02:50.0260 0896 PEAUTH - ok
21:02:50.0400 0896 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
21:02:50.0525 0896 pla - ok
21:02:50.0790 0896 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
21:02:52.0272 0896 PlugPlay - ok
21:02:52.0335 0896 Pml Driver HPZ12 (65bc271f337637731d3c71455ae1f476) C:\Windows\system32\HPZipm12.dll
21:02:52.0366 0896 Pml Driver HPZ12 - ok
21:02:52.0444 0896 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
21:02:52.0444 0896 PNRPAutoReg - ok
21:02:52.0459 0896 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
21:02:52.0475 0896 PNRPsvc - ok
21:02:52.0537 0896 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
21:02:52.0615 0896 PolicyAgent - ok
21:02:52.0725 0896 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
21:02:52.0771 0896 PptpMiniport - ok
21:02:52.0787 0896 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\DRIVERS\processr.sys
21:02:52.0818 0896 Processor - ok
21:02:52.0865 0896 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
21:02:52.0912 0896 ProfSvc - ok
21:02:52.0943 0896 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
21:02:52.0943 0896 ProtectedStorage - ok
21:02:53.0021 0896 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
21:02:53.0021 0896 PSched - ok
21:02:53.0161 0896 PTUMLBUS (211ee0b7767e877eb25627a2b3721e77) C:\Windows\system32\DRIVERS\PTUMLBUS.sys
21:02:53.0208 0896 PTUMLBUS - ok
21:02:53.0286 0896 ptumlcmsvc (96b8d343794a5b9ce946f5c60b5c89ba) C:\Windows\system32\ptumlcmsvc.exe
21:02:53.0364 0896 ptumlcmsvc - ok
21:02:53.0442 0896 PTUMLCVsp (c316753c506df72b9c8fe45ba02b70c2) C:\Windows\system32\DRIVERS\PTUMLCVsp.sys
21:02:53.0505 0896 PTUMLCVsp - ok
21:02:53.0629 0896 PTUMLMdm (6d0a3cda26ddb71804202b620bba2be8) C:\Windows\system32\DRIVERS\PTUMLMdm.sys
21:02:53.0692 0896 PTUMLMdm - ok
21:02:53.0739 0896 PTUMLNET (319af7047e41e55578af8a943e8349c8) C:\Windows\system32\DRIVERS\PTUMLNET.sys
21:02:53.0785 0896 PTUMLNET - ok
21:02:53.0863 0896 PTUMLNVsp (7be6e346d2410ce3d367acbeedadae43) C:\Windows\system32\DRIVERS\PTUMLNVsp.sys
21:02:53.0926 0896 PTUMLNVsp - ok
21:02:53.0973 0896 PTUMLRMNET (b5be44271dff2fcd735ff128f9db7537) C:\Windows\system32\DRIVERS\PTUMLRMNET.sys
21:02:54.0019 0896 PTUMLRMNET - ok
21:02:54.0207 0896 PTUMLVsp (2921e65aee2b3e3ffdb7911a0c6c579f) C:\Windows\system32\DRIVERS\PTUMLVsp.sys
21:02:54.0269 0896 PTUMLVsp - ok
21:02:54.0300 0896 PxHelp20 (86724469cd077901706854974cd13c3e) C:\Windows\system32\Drivers\PxHelp20.sys
21:02:54.0316 0896 PxHelp20 - ok
21:02:54.0472 0896 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
21:02:54.0581 0896 ql2300 - ok
21:02:54.0643 0896 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
21:02:54.0690 0896 ql40xx - ok
21:02:54.0846 0896 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
21:02:54.0909 0896 QWAVE - ok
21:02:54.0909 0896 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
21:02:54.0940 0896 QWAVEdrv - ok
21:02:54.0971 0896 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
21:02:54.0987 0896 RasAcd - ok
21:02:55.0033 0896 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
21:02:55.0065 0896 RasAuto - ok
21:02:55.0127 0896 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:02:55.0174 0896 Rasl2tp - ok
21:02:55.0501 0896 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
21:02:55.0501 0896 RasMan - ok
21:02:55.0548 0896 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
21:02:55.0579 0896 RasPppoe - ok
21:02:55.0767 0896 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
21:02:55.0813 0896 RasSstp - ok
21:02:55.0907 0896 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
21:02:56.0016 0896 rdbss - ok
21:02:56.0032 0896 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:02:56.0047 0896 RDPCDD - ok
21:02:56.0094 0896 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
21:02:56.0157 0896 rdpdr - ok
21:02:56.0157 0896 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
21:02:56.0172 0896 RDPENCDD - ok
21:02:56.0391 0896 RDPWD (79c6df8477250f5c54f7c5ae1d6b814e) C:\Windows\system32\drivers\RDPWD.sys
21:02:56.0484 0896 RDPWD - ok
21:02:56.0827 0896 Recovery Service for Windows (0d362785bef9bdf5a6e1f4628d06716d) C:\Program Files\SMINST\BLService.exe
21:02:56.0843 0896 Recovery Service for Windows - ok
21:02:56.0890 0896 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
21:02:56.0921 0896 RemoteAccess - ok
21:02:56.0968 0896 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
21:02:57.0015 0896 RemoteRegistry - ok
21:02:57.0108 0896 RichVideo (805ae1f90c64758d19aaa001cf8cba12) C:\Program Files\CyberLink\Shared files\RichVideo.exe
21:02:57.0202 0896 RichVideo - ok
21:02:57.0233 0896 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
21:02:57.0264 0896 RpcLocator - ok
21:02:57.0358 0896 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
21:02:57.0358 0896 RpcSs - ok
21:02:57.0420 0896 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
21:02:57.0451 0896 rspndr - ok
21:02:57.0498 0896 RTSTOR (08c3394391ab0aff65d75ae65d4207e1) C:\Windows\system32\drivers\RTSTOR.SYS
21:02:57.0545 0896 RTSTOR - ok
21:02:57.0576 0896 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
21:02:57.0592 0896 SamSs - ok
21:02:57.0592 0896 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
21:02:57.0654 0896 sbp2port - ok
21:02:57.0717 0896 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
21:02:57.0748 0896 SCardSvr - ok
21:02:57.0841 0896 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
21:02:57.0857 0896 Schedule - ok
21:02:57.0919 0896 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
21:02:57.0919 0896 SCPolicySvc - ok
21:02:58.0013 0896 sdbus (126ea89bcc413ee45e3004fb0764888f) C:\Windows\system32\DRIVERS\sdbus.sys
21:02:58.0029 0896 sdbus - ok
21:02:58.0075 0896 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
21:02:58.0107 0896 SDRSVC - ok
21:02:58.0122 0896 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
21:02:58.0153 0896 secdrv - ok
21:02:58.0169 0896 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
21:02:58.0200 0896 seclogon - ok
21:02:58.0216 0896 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
21:02:58.0247 0896 SENS - ok
21:02:58.0341 0896 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
21:02:58.0356 0896 Serenum - ok
21:02:58.0387 0896 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
21:02:58.0434 0896 Serial - ok
21:02:58.0450 0896 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
21:02:58.0465 0896 sermouse - ok
21:02:58.0528 0896 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
21:02:58.0559 0896 SessionEnv - ok
21:02:58.0575 0896 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
21:02:58.0590 0896 sffdisk - ok
21:02:58.0637 0896 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
21:02:58.0653 0896 sffp_mmc - ok
21:02:58.0684 0896 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
21:02:58.0699 0896 sffp_sd - ok
21:02:58.0731 0896 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
21:02:58.0746 0896 sfloppy - ok
21:02:58.0824 0896 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
21:02:58.0887 0896 SharedAccess - ok
21:02:58.0980 0896 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
21:02:58.0996 0896 ShellHWDetection - ok
21:02:59.0027 0896 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
21:02:59.0058 0896 sisagp - ok
21:02:59.0074 0896 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
21:02:59.0089 0896 SiSRaid2 - ok
21:02:59.0121 0896 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
21:02:59.0152 0896 SiSRaid4 - ok
21:02:59.0495 0896 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
21:02:59.0698 0896 slsvc - ok
21:03:00.0291 0896 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
21:03:00.0307 0896 SLUINotify - ok
21:03:00.0448 0896 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
21:03:00.0494 0896 Smb - ok
21:03:00.0510 0896 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
21:03:00.0541 0896 SNMPTRAP - ok
21:03:00.0588 0896 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
21:03:00.0650 0896 spldr - ok
21:03:00.0697 0896 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
21:03:00.0728 0896 Spooler - ok
21:03:01.0118 0896 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
21:03:01.0134 0896 srv - ok
21:03:01.0196 0896 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
21:03:01.0212 0896 srv2 - ok
21:03:01.0259 0896 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
21:03:01.0290 0896 srvnet - ok
21:03:01.0337 0896 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
21:03:01.0368 0896 SSDPSRV - ok
21:03:01.0415 0896 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
21:03:01.0446 0896 SstpSvc - ok
21:03:01.0586 0896 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
21:03:01.0649 0896 stisvc - ok
21:03:01.0680 0896 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
21:03:01.0696 0896 swenum - ok
21:03:01.0852 0896 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
21:03:01.0930 0896 swprv - ok
21:03:02.0008 0896 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
21:03:02.0023 0896 Symc8xx - ok
21:03:02.0054 0896 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
21:03:02.0086 0896 Sym_hi - ok
21:03:02.0086 0896 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
21:03:02.0117 0896 Sym_u3 - ok
21:03:02.0179 0896 SynTP (00b19f27858f56181edb58b71a7c67a0) C:\Windows\system32\DRIVERS\SynTP.sys
21:03:02.0210 0896 SynTP - ok
21:03:02.0413 0896 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
21:03:02.0460 0896 SysMain - ok
21:03:02.0491 0896 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
21:03:02.0538 0896 TabletInputService - ok
21:03:02.0600 0896 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
21:03:02.0600 0896 TapiSrv - ok
21:03:02.0616 0896 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
21:03:02.0632 0896 TBS - ok
21:03:02.0725 0896 Tcpip (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\drivers\tcpip.sys
21:03:02.0772 0896 Tcpip - ok
21:03:02.0788 0896 Tcpip6 (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\DRIVERS\tcpip.sys
21:03:02.0788 0896 Tcpip6 - ok
21:03:02.0819 0896 tcpipreg (2c2d4cff5e09c73908f9b5af49a51365) C:\Windows\system32\drivers\tcpipreg.sys
21:03:02.0850 0896 tcpipreg - ok
21:03:02.0881 0896 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
21:03:02.0897 0896 TDPIPE - ok
21:03:02.0912 0896 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
21:03:02.0944 0896 TDTCP - ok
21:03:03.0053 0896 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
21:03:03.0115 0896 tdx - ok
21:03:03.0162 0896 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
21:03:03.0193 0896 TermDD - ok
21:03:03.0256 0896 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
21:03:03.0302 0896 TermService - ok
21:03:03.0349 0896 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
21:03:03.0349 0896 Themes - ok
21:03:03.0365 0896 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
21:03:03.0365 0896 THREADORDER - ok
21:03:03.0412 0896 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
21:03:03.0443 0896 TrkWks - ok
21:03:03.0521 0896 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
21:03:03.0521 0896 TrustedInstaller - ok
21:03:03.0599 0896 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:03:03.0630 0896 tssecsrv - ok
21:03:03.0646 0896 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
21:03:03.0661 0896 tunmp - ok
21:03:03.0692 0896 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
21:03:03.0724 0896 tunnel - ok
21:03:03.0770 0896 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
21:03:03.0802 0896 uagp35 - ok
21:03:03.0880 0896 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
21:03:03.0911 0896 udfs - ok
21:03:03.0942 0896 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
21:03:03.0973 0896 UI0Detect - ok
21:03:04.0004 0896 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
21:03:04.0036 0896 uliagpkx - ok
21:03:04.0129 0896 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
21:03:04.0238 0896 uliahci - ok
21:03:04.0254 0896 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
21:03:04.0270 0896 UlSata - ok
21:03:04.0285 0896 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
21:03:04.0301 0896 ulsata2 - ok
21:03:04.0332 0896 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
21:03:04.0349 0896 umbus - ok
21:03:04.0349 0896 unvaooms - ok
21:03:04.0442 0896 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
21:03:04.0442 0896 upnphost - ok
21:03:04.0520 0896 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
21:03:04.0520 0896 USBAAPL - ok
21:03:04.0551 0896 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
21:03:04.0598 0896 usbccgp - ok
21:03:04.0614 0896 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
21:03:04.0692 0896 usbcir - ok
21:03:04.0723 0896 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
21:03:04.0754 0896 usbehci - ok
21:03:04.0863 0896 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
21:03:04.0895 0896 usbhub - ok
21:03:04.0926 0896 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
21:03:04.0941 0896 usbohci - ok
21:03:04.0973 0896 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
21:03:05.0019 0896 usbprint - ok
21:03:05.0097 0896 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
21:03:05.0113 0896 usbscan - ok
21:03:05.0160 0896 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:03:05.0160 0896 USBSTOR - ok
21:03:05.0191 0896 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
21:03:05.0222 0896 usbuhci - ok
21:03:05.0316 0896 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
21:03:05.0331 0896 usbvideo - ok
21:03:05.0378 0896 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
21:03:05.0409 0896 UxSms - ok
21:03:05.0472 0896 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
21:03:05.0519 0896 vds - ok
21:03:05.0550 0896 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
21:03:05.0581 0896 vga - ok
21:03:05.0597 0896 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
21:03:05.0628 0896 VgaSave - ok
21:03:05.0643 0896 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
21:03:05.0675 0896 viaagp - ok
21:03:05.0753 0896 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
21:03:05.0784 0896 ViaC7 - ok
21:03:05.0831 0896 viaide (ea1aa6e3abb3c194feba12a46de8cf2c) C:\Windows\system32\drivers\viaide.sys
21:03:05.0846 0896 viaide - ok
21:03:05.0862 0896 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
21:03:05.0893 0896 volmgr - ok
21:03:06.0002 0896 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
21:03:06.0049 0896 volmgrx - ok
21:03:06.0096 0896 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
21:03:06.0096 0896 volsnap - ok
21:03:06.0127 0896 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
21:03:06.0189 0896 vsmraid - ok
21:03:06.0377 0896 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
21:03:06.0455 0896 VSS - ok
21:03:06.0533 0896 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
21:03:06.0564 0896 W32Time - ok
21:03:06.0813 0896 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
21:03:06.0829 0896 WacomPen - ok
21:03:06.0954 0896 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
21:03:06.0985 0896 Wanarp - ok
21:03:07.0001 0896 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
21:03:07.0001 0896 Wanarpv6 - ok
21:03:07.0047 0896 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
21:03:07.0125 0896 wcncsvc - ok
21:03:07.0157 0896 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
21:03:07.0188 0896 WcsPlugInService - ok
21:03:07.0219 0896 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
21:03:07.0235 0896 Wd - ok
21:03:07.0297 0896 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
21:03:07.0328 0896 Wdf01000 - ok
21:03:07.0359 0896 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
21:03:07.0391 0896 WdiServiceHost - ok
21:03:07.0391 0896 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
21:03:07.0406 0896 WdiSystemHost - ok
21:03:07.0484 0896 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
21:03:07.0547 0896 WebClient - ok
21:03:07.0593 0896 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
21:03:07.0625 0896 Wecsvc - ok
21:03:07.0671 0896 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
21:03:07.0703 0896 wercplsupport - ok
21:03:07.0749 0896 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
21:03:07.0796 0896 WerSvc - ok
21:03:07.0937 0896 winachsf (0acd399f5db3df1b58903cf4949ab5a8) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
21:03:08.0030 0896 winachsf - ok
21:03:08.0124 0896 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
21:03:08.0171 0896 WinDefend - ok
21:03:08.0186 0896 WinHttpAutoProxySvc - ok
21:03:08.0342 0896 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
21:03:08.0373 0896 Winmgmt - ok
21:03:08.0685 0896 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
21:03:08.0826 0896 WinRM - ok
21:03:08.0935 0896 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
21:03:09.0013 0896 Wlansvc - ok
21:03:09.0263 0896 wlidsvc (0a70f4022ec2e14c159efc4f69aa2477) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:03:09.0325 0896 wlidsvc - ok
21:03:09.0528 0896 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
21:03:09.0543 0896 WmiAcpi - ok
21:03:09.0653 0896 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
21:03:09.0699 0896 wmiApSrv - ok
21:03:09.0949 0896 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
21:03:09.0949 0896 WMPNetworkSvc - ok
21:03:10.0027 0896 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
21:03:10.0058 0896 WPCSvc - ok
21:03:10.0105 0896 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
21:03:10.0136 0896 WPDBusEnum - ok
21:03:10.0230 0896 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
21:03:10.0261 0896 WpdUsb - ok
21:03:10.0542 0896 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:03:10.0573 0896 WPFFontCache_v0400 - ok
21:03:10.0604 0896 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
21:03:10.0635 0896 ws2ifsl - ok
21:03:10.0682 0896 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
21:03:10.0682 0896 wscsvc - ok
21:03:10.0682 0896 WSearch - ok
21:03:10.0994 0896 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
21:03:11.0150 0896 wuauserv - ok
21:03:11.0353 0896 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:03:11.0353 0896 WUDFRd - ok
21:03:11.0415 0896 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
21:03:11.0447 0896 wudfsvc - ok
21:03:11.0462 0896 XAudio (dab33cfa9dd24251aaa389ff36b64d4b) C:\Windows\system32\DRIVERS\xaudio.sys
21:03:11.0478 0896 XAudio - ok
21:03:11.0540 0896 XAudioService (cd5f291a1161f15896d1a4d63daff5df) C:\Windows\system32\DRIVERS\xaudio.exe
21:03:11.0618 0896 XAudioService - ok
21:03:11.0649 0896 yukonwlh (7d1f3b131d503ef43ee594b5a2b9b427) C:\Windows\system32\DRIVERS\yk60x86.sys
21:03:11.0681 0896 yukonwlh - ok
21:03:11.0727 0896 MBR (0x1B8) (588ae8f0c685c02ba11f30d9cd7e61a0) \Device\Harddisk0\DR0
21:03:11.0759 0896 \Device\Harddisk0\DR0 - ok
21:03:11.0774 0896 MBR (0x1B8) (e5fa06aca0d60ba9c870d0ef3d9898c9) \Device\Harddisk1\DR2
21:03:16.0737 0896 \Device\Harddisk1\DR2 - ok
21:03:16.0768 0896 MBR (0x1B8) (e5fa06aca0d60ba9c870d0ef3d9898c9) \Device\Harddisk1\DR2
21:03:30.0211 0896 \Device\Harddisk1\DR2 - ok
21:03:30.0242 0896 Boot (0x1200) (2ddd46b3bc27da850d313adef65fe693) \Device\Harddisk0\DR0\Partition0
21:03:30.0273 0896 \Device\Harddisk0\DR0\Partition0 - ok
21:03:30.0320 0896 Boot (0x1200) (665832b6975cd37db42330d900873418) \Device\Harddisk0\DR0\Partition1
21:03:30.0320 0896 \Device\Harddisk0\DR0\Partition1 - ok
21:03:30.0336 0896 Boot (0x1200) (f199bb597ce2880089ff4972d1a50dd1) \Device\Harddisk1\DR2\Partition0
21:03:30.0351 0896 \Device\Harddisk1\DR2\Partition0 - ok
21:03:30.0382 0896 Boot (0x1200) (f199bb597ce2880089ff4972d1a50dd1) \Device\Harddisk1\DR2\Partition0
21:03:30.0382 0896 \Device\Harddisk1\DR2\Partition0 - ok
21:03:30.0382 0896 ============================================================
21:03:30.0382 0896 Scan finished
21:03:30.0382 0896 ============================================================
21:03:30.0445 3920 Detected object count: 0
21:03:30.0445 3920 Actual detected object count: 0

Ok. Let's see what's left over.

Download Combofix from any of the links below, and save it to your DESKTOP.

Link 1
Link 2
Link 3

To prevent your anti-virus application interfering with ComboFix we need to disable it. See here for a tutorial regarding how to do so if you are unsure.

• Close any open windows and double click ComboFix.exe to run it.
  
  You will see the following image:
  

Click I Agree to start the program.

ComboFix will then extract the necessary files and you will see this:



As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. This will not occur in Windows Vista and 7

It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.

If you did not have it installed, you will see the prompt below. Choose YES.



Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.

**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:



Click on Yes, to continue scanning for malware.

When finished, it will produce a report for you. Please post the contents of the log (C:\ComboFix.txt).

Leave your computer alone while ComboFix is running. ComboFix will restart your computer if malware is found; allow it to do so.

Note: Please Do NOT mouseclick combofix's window while its running because it may cause it to stall.

Log from SAS scan:
SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 05/09/2012 at 09:55 PM

Application Version : 5.0.1148

Core Rules Database Version : 8577
Trace Rules Database Version: 6389

Scan type : Quick Scan
Total Scan Time : 00:35:33

Operating System Information
Windows Vista Home Premium 32-bit, Service Pack 2 (Build 6.00.6002)
UAC On - Limited User (Administrator User)

Memory items scanned : 727
Memory threats detected : 0
Registry items scanned : 27618
Registry threats detected : 0
File items scanned : 12560
File threats detected : 286

Adware.Tracking Cookie
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\JS0ZYED4.txt [ /ads.m4internet.com ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\HOU6DTXR.txt [ /doubleclick.net ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\OFFS33ZO.txt [ /www.howardcountymd.gov ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\PRM9A9CD.txt [ /interclick.com ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\VX44UAUH.txt [ /imrworldwide.com ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\4BZXX4CP.txt [ /adbrite.com ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\8Z9J2115.txt [ /specificclick.net ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\UTZZGYPO.txt [ /questionmarket.com ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\UTDCWQ4T.txt [ /media6degrees.com ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\YM4N7US3.txt [ /tribalfusion.com ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\VA8OABV3.txt [ /ads.as4x.tmcs.net ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\2NOT25JV.txt [ /zedo.com ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\EJRVHQJT.txt [ /ad.yieldmanager.com ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\1YL1CH96.txt [ /mediaplex.com ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\1OZDPVCB.txt [ /adserver.newbay-media.com ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\J8H91MLU.txt [ /ru4.com ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\QO29SKR1.txt [ /adlegend.com ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\4AFFIFQK.txt [ /lfstmedia.com ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\F6YBTMJG.txt [ /advertising.com ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\K3CQ0X68.txt [ /rotator.adjuggler.com ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\3A9TLZ4B.txt [ /accounts.google.com ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\7Y5WK9SS.txt [ /fastclick.net ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\1O0XFES9.txt [ /247realmedia.com ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\42DLLD4J.txt [ /apmebf.com ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\EB6APIZ0.txt [ /lucidmedia.com ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\V2DNG6VL.txt [ /invitemedia.com ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\12IQ8TA5.txt [ /2o7.net ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\A45WYIVF.txt [ /at.atwola.com ]
C:\Users\oliverj\AppData\Roaming\Microsoft\Windows\Cookies\FRPR1O24.txt [ /atdmt.com ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\MAGXNR68.txt [ Cookie:oliverj@pro-market.net/ ]
segment-pixel.invitemedia.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\RO3GBUXO.txt [ Cookie:oliverj@casalemedia.com/ ]
.interclick.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.media.adfrontiers.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\AAUG9AT2.txt [ Cookie:oliverj@getclicky.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\KP90GTU8.txt [ Cookie:oliverj@adserver.adtechus.com/ ]
www.googleadservices.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\HF5NEWQ2.txt [ Cookie:oliverj@triseptsolutions.122.2o7.net/ ]
.media2.legacy.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\B887V12H.txt [ Cookie:oliverj@statse.webtrendslive.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\oliverj@richmedia.yahoo[2].txt [ Cookie:oliverj@richmedia.yahoo.com/ ]
.collective-media.net [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\B6M8HHHV.txt [ Cookie:oliverj@adserv1.mannixmarketing.com/ ]
.lfstmedia.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\BPDQNRHX.txt [ Cookie:oliverj@interclick.com/ ]
.imrworldwide.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\SWVVVZD6.txt [ Cookie:oliverj@liveperson.net/hc/55181593 ]
.imrworldwide.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.a1.interclick.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\YDQ7W1NS.txt [ Cookie:oliverj@adbrite.com/ ]
.lfstmedia.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\9IU950FU.txt [ Cookie:oliverj@collective-media.net/ ]
.a1.interclick.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.a1.interclick.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.a1.interclick.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.a1.interclick.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.legolas-media.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.legolas-media.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\682E6VTW.txt [ Cookie:oliverj@specificclick.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\HSBX3NSH.txt [ Cookie:oliverj@stats.talkingpointsmemo.com/ ]
.pointroll.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.mediabrandsww.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\4WQB2Z37.txt [ Cookie:oliverj@evite.112.2o7.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\A4H8G829.txt [ Cookie:oliverj@questionmarket.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\EGZ8LT1W.txt [ Cookie:oliverj@media6degrees.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\UO2KFGVG.txt [ Cookie:oliverj@serving-sys.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\I3RA1MXQ.txt [ Cookie:oliverj@tribalfusion.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\D8P39OIH.txt [ Cookie:oliverj@legolas-media.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\44AARONJ.txt [ Cookie:oliverj@thewrap.rotator.hadj7.adjuggler.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\45J842PR.txt [ Cookie:oliverj@ads.pointroll.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\YGYH86S8.txt [ Cookie:oliverj@msnbc.112.2o7.net/ ]
adserver.newbay-media.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\K7BC5O7F.txt [ Cookie:oliverj@www.burstbeacon.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\C7BCI6YL.txt [ Cookie:oliverj@conversion.buddymedia.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\1R094OBV.txt [ Cookie:oliverj@ads.saymedia.com/ ]
.invitemedia.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
wstat.wibiya.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\XN5WUHS1.txt [ Cookie:oliverj@zedo.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\U53DF36K.txt [ Cookie:oliverj@revsci.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\PI3SJZET.txt [ Cookie:oliverj@mediaplex.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\oliverj@halfpricedc1.mediawebconnect[1].txt [ Cookie:oliverj@halfpricedc1.mediawebconnect.com/ ]
.pointroll.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\82OH076Z.txt [ Cookie:oliverj@insightexpressai.com/ ]
.media.adfrontiers.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.clickfuse.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\KI41MQB0.txt [ Cookie:oliverj@clickfuse.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\OPN1EPMV.txt [ Cookie:oliverj@ar.atwola.com/ ]
.media6degrees.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.realmedia.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.realmedia.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.trafficmp.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.realmedia.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.trafficmp.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.trafficmp.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.trafficmp.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
network.realmedia.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\WOX4327D.txt [ Cookie:oliverj@atwola.com/ ]
statse.webtrendslive.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\0QTAWSA1.txt [ Cookie:oliverj@paypal.112.2o7.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\Z6RSOKAO.txt [ Cookie:oliverj@lfstmedia.com/ ]
accounts.google.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\Y7UORQ6E.txt [ Cookie:oliverj@advertising.com/ ]
.apmebf.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\MR2JWWUI.txt [ Cookie:oliverj@rotator.adjuggler.com/ ]
.fastclick.net [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\UAX8K59K.txt [ Cookie:oliverj@liveperson.net/ ]
.collective-media.net [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\9W3F5T17.txt [ Cookie:oliverj@fastclick.net/ ]
.collective-media.net [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\B6HAOO07.txt [ Cookie:oliverj@sales.liveperson.net/ ]
.ru4.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\OTXMA5VE.txt [ Cookie:oliverj@lucidmedia.com/ ]
.at.atwola.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\K9638C3O.txt [ Cookie:oliverj@invitemedia.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\1C1Z9OZG.txt [ Cookie:oliverj@pointroll.com/ ]
.media6degrees.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.tribalfusion.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\E4CA3JDO.txt [ Cookie:oliverj@perf.overture.com/ ]
.adxpose.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\FRI2AENL.txt [ Cookie:oliverj@dc.tremormedia.com/ ]
.serving-sys.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\EN4LT44L.txt [ Cookie:oliverj@static.getclicky.com/ ]
ad.yieldmanager.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\4TUNEL20.txt [ Cookie:oliverj@adsonar.com/adserving ]
ad.yieldmanager.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\Y0MTZ9BE.txt [ Cookie:oliverj@bizrate.com/ ]
.invitemedia.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\RC3ELY0F.txt [ Cookie:oliverj@buddymedia.com/ ]
.statcounter.com [ C:\USERS\OLIVERJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P0R1RJHK.DEFAULT\COOKIES.SQLITE ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\BFXTNB7N.txt [ Cookie:oliverj@amazon-adsystem.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\FANXXB2G.txt [ Cookie:oliverj@timeinc.122.2o7.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\7X3NRV0S.txt [ Cookie:oliverj@traveladvertising.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\F7YRN9SE.txt [ Cookie:oliverj@adxpose.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\2EZ903GE.txt [ Cookie:oliverj@adtrack.zgraph.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\ST78T3V2.txt [ Cookie:oliverj@burstnet.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\FZYQGV7H.txt [ Cookie:oliverj@googleads.g.doubleclick.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\7MDGXVO6.txt [ Cookie:oliverj@www.homemediamagazine.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\oliverj@www.mediawebconnect[1].txt [ Cookie:oliverj@www.mediawebconnect.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\MR8UG7NE.txt [ Cookie:oliverj@google.com/accounts/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\IZKU0RGH.txt [ Cookie:oliverj@networldmedia.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\6MY67KTQ.txt [ Cookie:oliverj@ad.yieldmanager.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\IV5H3P7L.txt [ Cookie:oliverj@liveperson.net/hc/57386690 ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\DGA8Z5VO.txt [ Cookie:oliverj@kontera.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\Q7IYMNR2.txt [ Cookie:oliverj@marriottinternational.122.2o7.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\KI3QDX33.txt [ Cookie:oliverj@pfizer.122.2o7.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\oliverj@gocalifornia.about[1].txt [ Cookie:oliverj@gocalifornia.about.com/6/ad/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\7FQTTR5E.txt [ Cookie:oliverj@dmtracker.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\78EMQQUM.txt [ Cookie:oliverj@postnewsweekmedia.112.2o7.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\MDPU4SIP.txt [ Cookie:oliverj@accounts.google.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\MPZRZRHQ.txt [ Cookie:oliverj@videos.mediaite.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\OG9CI179.txt [ Cookie:oliverj@bs.serving-sys.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\V2KH2YK6.txt [ Cookie:oliverj@2o7.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\QS6AZV4E.txt [ Cookie:oliverj@hotwire.db.advertising.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\AOO6M76W.txt [ Cookie:oliverj@adultadd.info/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\157EFXWH.txt [ Cookie:oliverj@media2.legacy.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\OU8CBWEJ.txt [ Cookie:oliverj@usatoday1.112.2o7.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\R1LKGFI1.txt [ Cookie:oliverj@bonniercorp.122.2o7.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\YZ29D0SS.txt [ Cookie:oliverj@overture.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\KCMIT2NT.txt [ Cookie:oliverj@ad.mlnadvertising.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\H1FQZRBP.txt [ Cookie:oliverj@drnorthrup.122.2o7.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\VI4934LY.txt [ Cookie:oliverj@toplist.cz/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\XSXC8MXM.txt [ Cookie:oliverj@liveperson.net/hc/14892969 ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\6XGHOVI6.txt [ Cookie:oliverj@collector.thermstats.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\99F2RW9K.txt [ Cookie:oliverj@s08.flagcounter.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\21WBMFPH.txt [ Cookie:oliverj@adviva.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\328OWIGL.txt [ Cookie:oliverj@homesteadtechnologies.122.2o7.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\H50PEI9U.txt [ Cookie:oliverj@eyewonder.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\KL1VZ480.txt [ Cookie:oliverj@csm.rotator.hadj7.adjuggler.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\JTSV5GDW.txt [ Cookie:oliverj@mtvn.112.2o7.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\SOSX1ALY.txt [ Cookie:oliverj@www.urbandaddy.com/myaccount/unsubscribe/article_id/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\EMWHJN4Z.txt [ Cookie:oliverj@tracker.pegsanalytics.com/dcsw45xai2q8so8pt6lo33aoy_1q2h ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\U2E0W0DU.txt [ Cookie:oliverj@delish.com/recipefinder/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\GQRGQVPZ.txt [ Cookie:oliverj@kanoodle.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\J0I1VI9D.txt [ Cookie:oliverj@adlegend.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\KH4LVM1J.txt [ Cookie:oliverj@pubads.g.doubleclick.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\ORUCVTYK.txt [ Cookie:oliverj@www.googleadservices.com/pagead/conversion/1070529794/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\OVDYSY90.txt [ Cookie:oliverj@eventbrite.122.2o7.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\SU8Q5KDH.txt [ Cookie:oliverj@virginamerica.112.2o7.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\QW3ZI79J.txt [ Cookie:oliverj@a.intentmedia.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\6038GFK1.txt [ Cookie:oliverj@fls.doubleclick.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\J3U9MYEQ.txt [ Cookie:oliverj@tracking.waterfrontmedia.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\2LCEEW5U.txt [ Cookie:oliverj@accounts.google.com/o ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\177E7RCO.txt [ Cookie:oliverj@www.mediaite.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\7X4NBN47.txt [ Cookie:oliverj@gs.serving-sys.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\DZC4EOFV.txt [ Cookie:oliverj@homemediamagazine.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\HKHWSW00.txt [ Cookie:oliverj@adinterax.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\6OPO93MY.txt [ Cookie:oliverj@hivehealthmedia.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\3P7F79B9.txt [ Cookie:oliverj@ecnext.122.2o7.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\6K10VG6W.txt [ Cookie:oliverj@accounts.youtube.com/accounts ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\UG2S5FCY.txt [ Cookie:oliverj@ewscripps.112.2o7.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\BI1X9XDZ.txt [ Cookie:oliverj@tracker.pegsanalytics.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\MTU5NTLG.txt [ Cookie:oliverj@liveperson.net/hc/18262047 ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\0JHHCSTE.txt [ Cookie:oliverj@liveperson.net/hc/62360195 ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\MIXQA0EQ.txt [ Cookie:oliverj@preferredhotelgroup.122.2o7.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\oliverj@halfpricedc.mediawebconnect[2].txt [ Cookie:oliverj@halfpricedc.mediawebconnect.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\BH3EI4VE.txt [ Cookie:oliverj@media.adfrontiers.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\I8DZZ9QU.txt [ Cookie:oliverj@click.jve.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\M3BRWE2A.txt [ Cookie:oliverj@adserve.ink-publishing.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\LB01FPGJ.txt [ Cookie:oliverj@jetsetter.db.advertising.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\V5PSDF6C.txt [ Cookie:oliverj@google.com/accounts/recovery/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\3TZRRLAX.txt [ Cookie:oliverj@www.howardcountymd.gov/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\O2VKH8Y9.txt [ Cookie:oliverj@www.googleadservices.com/pagead/conversion/1037994180/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\CPXTJ0QZ.txt [ Cookie:oliverj@track.brighteroption.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\oliverj@mediawebconnect[2].txt [ Cookie:oliverj@mediawebconnect.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\71EN6U0T.txt [ Cookie:oliverj@liveperson.net/hc/36005843 ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\KN12Z2Y0.txt [ Cookie:oliverj@accounts.youtube.com/accounts/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\U254B26U.txt [ Cookie:oliverj@accounts.google.com/accounts/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\oliverj@www.marriott[1].txt [ Cookie:oliverj@www.marriott.com/profile/myAccount/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\851FWGYZ.txt [ Cookie:oliverj@network.realmedia.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\RH0LMQUT.txt [ Cookie:oliverj@atdmt.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\BEB16YMP.txt [ Cookie:oliverj@epicurious.com/js/cn-fe-stats/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\oliverj@www.accountonline[1].txt [ Cookie:oliverj@www.accountonline.com/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\DR15W6LK.txt [ Cookie:oliverj@www.googleadservices.com/pagead/conversion/1033019088/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\PQBUFIGE.txt [ Cookie:oliverj@verizon.com/vztracker/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\oliverj@turbotax.intuit[2].txt [ Cookie:oliverj@turbotax.intuit.com/commerce/account/secure/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\2GU0NCU4.txt [ Cookie:oliverj@chitika.net/ ]
C:\USERS\OLIVERJ\AppData\Roaming\Microsoft\Windows\Cookies\Low\S6A06B08.txt [ Cookie:oliverj@stats.paypal.com/ ]
C:\USERS\OLIVERJ\Cookies\OFFS33ZO.txt [ Cookie:oliverj@www.howardcountymd.gov/ ]
C:\USERS\OLIVERJ\Cookies\PRM9A9CD.txt [ Cookie:oliverj@interclick.com/ ]
C:\USERS\OLIVERJ\Cookies\4BZXX4CP.txt [ Cookie:oliverj@adbrite.com/ ]
C:\USERS\OLIVERJ\Cookies\8Z9J2115.txt [ Cookie:oliverj@specificclick.net/ ]
C:\USERS\OLIVERJ\Cookies\UTZZGYPO.txt [ Cookie:oliverj@questionmarket.com/ ]
C:\USERS\OLIVERJ\Cookies\UTDCWQ4T.txt [ Cookie:oliverj@media6degrees.com/ ]
C:\USERS\OLIVERJ\Cookies\YM4N7US3.txt [ Cookie:oliverj@tribalfusion.com/ ]
C:\USERS\OLIVERJ\Cookies\2NOT25JV.txt [ Cookie:oliverj@zedo.com/ ]
C:\USERS\OLIVERJ\Cookies\EJRVHQJT.txt [ Cookie:oliverj@ad.yieldmanager.com/ ]
C:\USERS\OLIVERJ\Cookies\1YL1CH96.txt [ Cookie:oliverj@mediaplex.com/ ]
C:\USERS\OLIVERJ\Cookies\1OZDPVCB.txt [ Cookie:oliverj@adserver.newbay-media.com/ ]
C:\USERS\OLIVERJ\Cookies\QO29SKR1.txt [ Cookie:oliverj@adlegend.com/ ]
C:\USERS\OLIVERJ\Cookies\4AFFIFQK.txt [ Cookie:oliverj@lfstmedia.com/ ]
C:\USERS\OLIVERJ\Cookies\F6YBTMJG.txt [ Cookie:oliverj@advertising.com/ ]
C:\USERS\OLIVERJ\Cookies\K3CQ0X68.txt [ Cookie:oliverj@rotator.adjuggler.com/ ]
C:\USERS\OLIVERJ\Cookies\3A9TLZ4B.txt [ Cookie:oliverj@accounts.google.com/ ]
C:\USERS\OLIVERJ\Cookies\7Y5WK9SS.txt [ Cookie:oliverj@fastclick.net/ ]
C:\USERS\OLIVERJ\Cookies\EB6APIZ0.txt [ Cookie:oliverj@lucidmedia.com/ ]
C:\USERS\OLIVERJ\Cookies\V2DNG6VL.txt [ Cookie:oliverj@invitemedia.com/ ]
C:\USERS\OLIVERJ\Cookies\12IQ8TA5.txt [ Cookie:oliverj@2o7.net/ ]
C:\USERS\OLIVERJ\Cookies\FRPR1O24.txt [ Cookie:oliverj@atdmt.com/ ]

Here is the Combofix Log:
ComboFix 12-05-09.01 - oliverj 05/09/2012 23:50:52.1.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.2814.1691 [GMT -4:00]
Running from: c:\users\oliverj\Downloads\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6}
SP: Microsoft Security Essentials *Disabled/Updated* {2C040BB5-2B06-7275-5A21-2B969A740B4B}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\Install.exe
c:\programdata\N0p5oBoePesV6x
.
.
((((((((((((((((((((((((( Files Created from 2012-04-10 to 2012-05-10 )))))))))))))))))))))))))))))))
.
.
2012-05-10 04:06 . 2012-05-10 04:06 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-05-10 03:39 . 2012-05-10 03:39 29904 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{CC82D644-CAB7-4FD7-A03C-0CA6EE7A4FED}\MpKslf2946a88.sys
2012-05-10 03:35 . 2012-05-10 03:35 56200 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{CC82D644-CAB7-4FD7-A03C-0CA6EE7A4FED}\offreg.dll
2012-05-10 01:12 . 2012-05-10 01:12 -------- d-----w- c:\users\oliverj\AppData\Roaming\SUPERAntiSpyware.com
2012-05-10 01:11 . 2012-05-10 01:12 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-05-10 01:11 . 2012-05-10 01:11 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2012-05-10 00:33 . 2012-04-13 07:36 6734704 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{CC82D644-CAB7-4FD7-A03C-0CA6EE7A4FED}\mpengine.dll
2012-05-09 23:01 . 2012-04-03 08:16 3602816 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-05-09 23:01 . 2012-04-03 08:16 3550080 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-05-09 23:01 . 2012-04-02 13:36 2044928 ----a-w- c:\windows\system32\win32k.sys
2012-05-09 23:01 . 2012-03-30 12:39 914304 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-05-09 23:01 . 2012-03-29 13:39 31232 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2012-05-09 23:00 . 2012-02-01 15:11 1218048 ----a-w- c:\program files\Windows Journal\NBDoc.DLL
2012-05-09 23:00 . 2012-02-01 15:10 1404928 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\InkObj.dll
2012-05-09 23:00 . 2012-02-01 15:10 964608 ----a-w- c:\program files\Windows Journal\JNWDRV.dll
2012-05-09 23:00 . 2012-02-01 15:10 983040 ----a-w- c:\program files\Windows Journal\JNTFiltr.dll
2012-05-09 23:00 . 2012-02-01 15:10 936960 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2012-05-09 23:00 . 2012-02-01 13:58 47104 ----a-w- c:\program files\Windows Journal\PDIALOG.exe
2012-05-09 22:59 . 2012-03-01 14:46 219648 ----a-w- c:\windows\system32\d3d10_1core.dll
2012-05-09 22:59 . 2012-02-29 13:41 1069056 ----a-w- c:\windows\system32\DWrite.dll
2012-05-09 22:59 . 2012-02-29 14:08 1172480 ----a-w- c:\windows\system32\d3d10warp.dll
2012-05-09 22:59 . 2012-02-29 13:44 683008 ----a-w- c:\windows\system32\d2d1.dll
2012-05-09 22:59 . 2012-03-01 14:46 160768 ----a-w- c:\windows\system32\d3d10_1.dll
2012-05-09 22:59 . 2012-03-20 23:28 53120 ----a-w- c:\windows\system32\drivers\partmgr.sys
2012-05-09 22:42 . 2012-05-09 22:42 -------- d-----w- c:\users\oliverj\Malware
2012-04-19 17:29 . 2012-02-29 15:11 5120 ----a-w- c:\windows\system32\wmi.dll
2012-04-19 17:29 . 2012-02-29 15:11 172032 ----a-w- c:\windows\system32\wintrust.dll
2012-04-19 17:29 . 2012-02-29 15:09 157696 ----a-w- c:\windows\system32\imagehlp.dll
2012-04-19 17:29 . 2012-02-29 13:32 12800 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-04-15 07:00 . 2009-05-18 17:17 26600 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2012-04-15 07:00 . 2008-04-17 16:12 107368 ----a-w- c:\windows\system32\GEARAspi.dll
2012-04-15 06:58 . 2012-04-15 06:58 -------- d-----w- c:\program files\iPod
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-04-13 07:36 . 2012-03-23 19:21 6734704 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-04-04 19:56 . 2011-07-04 17:51 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-03-21 00:44 . 2012-03-21 00:44 74112 ----a-w- c:\windows\system32\drivers\NisDrvWFP.sys
2012-03-21 00:44 . 2012-03-21 00:44 171064 ----a-w- c:\windows\system32\drivers\MpFilter.sys
2012-03-01 18:34 . 2012-03-22 04:49 6552120 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{167A55C2-F560-4853-9CB8-5328975DCDDF}\mpengine.dll
2012-02-15 15:01 . 2012-02-15 15:01 4547944 ----a-w- c:\windows\system32\usbaaplrc.dll
2012-02-15 15:01 . 2012-02-15 15:01 43520 ----a-w- c:\windows\system32\drivers\usbaapl.sys
2011-08-16 23:04 . 2011-06-27 20:31 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Green]
@="{95A27763-F62A-4114-9072-E81D87DE3B68}"
[HKEY_CLASSES_ROOT\CLSID\{95A27763-F62A-4114-9072-E81D87DE3B68}]
2011-03-04 00:52 762000 ----a-r- c:\program files\Carbonite\Carbonite Backup\CarboniteNSE.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Partial]
@="{E300CD91-100F-4E67-9AF3-1384A6124015}"
[HKEY_CLASSES_ROOT\CLSID\{E300CD91-100F-4E67-9AF3-1384A6124015}]
2011-03-04 00:52 762000 ----a-r- c:\program files\Carbonite\Carbonite Backup\CarboniteNSE.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Yellow]
@="{5E529433-B50E-4bef-A63B-16A6B71B071A}"
[HKEY_CLASSES_ROOT\CLSID\{5E529433-B50E-4bef-A63B-16A6B71B071A}]
2011-03-04 00:52 762000 ----a-r- c:\program files\Carbonite\Carbonite Backup\CarboniteNSE.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SmileboxTray"="c:\users\oliverj\AppData\Roaming\Smilebox\SmileboxTray.exe" [2012-03-29 313160]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2008-06-09 2363392]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"eFax 4.4"="c:\program files\eFax Messenger 4.4\J2GDllCmd.exe" [2010-07-02 95744]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"UpdatePSTShortCut"="c:\program files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" [2008-10-07 210216]
"UpdatePDIRShortCut"="c:\program files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" [2008-06-14 210216]
"UpdateP2GoShortCut"="c:\program files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2008-06-14 210216]
"UpdateLBPShortCut"="c:\program files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" [2008-06-14 210216]
"UCam_Menu"="c:\program files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" [2008-06-13 210216]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-04-17 1049896]
"QPService"="c:\program files\HP\QuickPlay\QPService.exe" [2008-09-24 468264]
"QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2008-08-01 202032]
"IJNetworkScanUtility"="c:\program files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe" [2009-09-28 140640]
"CanonSolutionMenu"="c:\program files\Canon\SolutionMenu\CNSLMAIN.exe" [2009-09-04 767312]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2009-11-02 2508104]
"Adobe Photo Downloader"="c:\program files\Adobe\Photoshop Elements 5.0\apdproxy.exe" [2006-12-22 67752]
"Carbonite Backup"="c:\program files\Carbonite\Carbonite Backup\CarboniteUI.exe" [2011-03-04 948880]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"Family Tree Builder Update"="c:\users\oliverj\Documents\Genealogy\MyHeritage\Bin\FTBCheckUpdates.exe" [2011-12-21 229376]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-21 59240]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2011-10-24 421888]
"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2011-11-02 59240]
"HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2008-10-09 75008]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2006-12-11 49152]
"hpWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2008-04-15 488752]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-04-04 462408]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-03-27 421736]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-03-26 931200]
.
c:\users\oliverj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
DING!.lnk - c:\program files\Southwest Airlines\Ding\Ding.exe [2009-5-29 462848]
eFax 4.4.lnk - c:\program files\eFax Messenger 4.4\J2GTray.exe [2010-7-2 656896]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2007-1-2 210520]
Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2011-05-04 17:54 551296 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier]
2011-11-02 12:51 59240 ----a-w- c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiVirusOverride"=dword:00000001
.
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [2011-08-11 116608]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - MPKSLF2946A88
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-06-09 17:14 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com/
mStart Page = hxxp://search.myheritage.com
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
Trusted Zone: intuit.com\ttlc
TCP: DhcpNameServer = 192.168.1.1 71.242.0.12
FF - ProfilePath - c:\users\oliverj\AppData\Roaming\Mozilla\Firefox\Profiles\p0r1rjhk.default\
FF - prefs.js: browser.startup.homepage - about:home
.
- - - - ORPHANS REMOVED - - - -
.
WebBrowser-{FD2FD708-1F6F-4B68-B141-C5778F0C19BB} - (no file)
HKLM-Run-SunJavaUpdateSched - c:\program files\Java\jre6\bin\jusched.exe
AddRemove-OVT Scanner - c:\windows\omniuns.exe USB\Vid_05a9&PID_1550 OVT Scanner
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-05-10 00:11
Windows 6.0.6002 Service Pack 2 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Completion time: 2012-05-10 00:24:11
ComboFix-quarantined-files.txt 2012-05-10 04:24
.
Pre-Run: 190,765,539,328 bytes free
Post-Run: 191,622,914,048 bytes free
.
- - End Of File - - 2EEA3A4C1DD98F87A68F6261D59ABD8B

How's your computer running now?

I'd like to scan your machine with ESET OnlineScan

•Hold down Control and click on the following link to open ESET OnlineScan in a new window.
ESET OnlineScan
•Click the button.
•For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

• Click on to download the ESET Smart Installer. Save it to your desktop.
  
• Double click on the icon on your desktop.
  

•Check
•Click the button.
•Accept any security warnings from your browser.
•Check
•Push the Start button.
•ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
•When the scan completes, push
•Push , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
•Push the button.
•Push
A log file will be saved here: C:\Program Files\ESET\ESET Online Scanner\log.txt

It is running great - better than before I got the spyware (must have had other things on it). Should I run the Eset application anyway?

oliverj wrote:

It is running great - better than before I got the spyware (must have had other things on it). Should I run the Eset application anyway?

Yes, please. It always finds something left over.