Solved Redirected to Qbyrd and Ask.com

broni · 2011/01/24

OTL fix log is incorrect.
It looks like you didn't copy my whole script, especially a "colon" on front of "OTL" (1st line).
Please, redo.

Also....

Update Adobe Reader

You can download it from http://www.adobe.com/products/acrobat/readstep2.html
After installing the latest Adobe Reader, uninstall all previous versions.
Note. If you already have Adobe Photoshop® Album Starter Edition installed or do not wish to have it installed UNcheck the box which says Also Download Adobe Photoshop® Album Starter Edition.

Alternatively, you can uninstall Adobe Reader (33.5 MB), download and install Foxit PDF Reader(3.5MB) from HERE.
It's a much smaller file to download and uses a lot less resources than Adobe Reader.
Note: When installing FoxitReader, make sure to UN-check any pre-checked toolbar, or other garbage.

mrbiglive · 2011/01/24

I entered the codes correctly the first time but it gave me this error:

Access violation at address 005CC7ED in module "˜OTL.exeâ€™. Read of address 00000000.

When I hit "Run fix again, it ran (I guess without the :OTL) and it gave me that report.

---- I will install Adobe now.

broni · 2011/01/24

Disable your AV program and try to run OTL fix again.
Alternatively, run it in Safe Mode.

mrbiglive · 2011/01/25

It shows the same error message. I don't have a AV on and I tried running it in Safe Mode.

broni · 2011/01/25

Download fresh copy of OTL and try again.

mrbiglive · 2011/01/25

It worked. Here is the new OTL file
---

All processes killed
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
C:\Users\Kelvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Digsby.lnk moved successfully.
C:\Program Files (x86)\Digsby\digsby.exe moved successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{AEB6717E-7E19-11d0-97EE-00C04FD91972} deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AEB6717E-7E19-11d0-97EE-00C04FD91972}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{AEB6717E-7E19-11d0-97EE-00C04FD91972} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AEB6717E-7E19-11d0-97EE-00C04FD91972}\ not found.
C:\Users\Kelvin\AppData\Roaming\Digsby folder moved successfully.
C:\Users\Kelvin\AppData\Local\Digsby\temp folder moved successfully.
C:\Users\Kelvin\AppData\Local\Digsby\Logs folder moved successfully.
C:\Users\Kelvin\AppData\Local\Digsby\cache\msn folder moved successfully.
C:\Users\Kelvin\AppData\Local\Digsby\cache\mrbiglive_cache\facebook\1263861030 folder moved successfully.
C:\Users\Kelvin\AppData\Local\Digsby\cache\mrbiglive_cache\facebook folder moved successfully.
C:\Users\Kelvin\AppData\Local\Digsby\cache\mrbiglive_cache\digsbyblobs folder moved successfully.
C:\Users\Kelvin\AppData\Local\Digsby\cache\mrbiglive_cache folder moved successfully.
C:\Users\Kelvin\AppData\Local\Digsby\cache\comtypes_generated folder moved successfully.
C:\Users\Kelvin\AppData\Local\Digsby\cache\aim folder moved successfully.
C:\Users\Kelvin\AppData\Local\Digsby\cache folder moved successfully.
C:\Users\Kelvin\AppData\Local\Digsby folder moved successfully.
C:\ProgramData\Digsby folder moved successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digsby\support folder moved successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digsby folder moved successfully.
C:\Program Files (x86)\Digsby\res\win folder moved successfully.
C:\Program Files (x86)\Digsby\res\sounds\redmondish folder moved successfully.
C:\Program Files (x86)\Digsby\res\sounds\default folder moved successfully.
C:\Program Files (x86)\Digsby\res\sounds folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\Windows 7\variants\purple folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\Windows 7\variants\pink folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\Windows 7\variants\orange folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\Windows 7\variants\green folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\Windows 7\variants\darkpurple\icons folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\Windows 7\variants\darkpurple folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\Windows 7\variants\darkpink folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\Windows 7\variants\darkorange folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\Windows 7\variants\darkgreen folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\Windows 7\variants folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\Windows 7\statusicons folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\Windows 7\images folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\Windows 7\icons\Formatting folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\Windows 7\icons folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\Windows 7\fonts folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\Windows 7 folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\silverblue\Variants folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\silverblue folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\jeffrey\variants folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\jeffrey\statusicons folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\jeffrey\img folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\jeffrey folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\default\twittericons folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\default\statusicons folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\default\serviceicons folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\default\fonts folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\default\facebookicons folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\default\actions folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins\default folder moved successfully.
C:\Program Files (x86)\Digsby\res\skins folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Smooth Separate Lines.AdiumMessageStyle\Contents\Resources\Variants folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Smooth Separate Lines.AdiumMessageStyle\Contents\Resources\styles folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Smooth Separate Lines.AdiumMessageStyle\Contents\Resources\Outgoing folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Smooth Separate Lines.AdiumMessageStyle\Contents\Resources\Incoming folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Smooth Separate Lines.AdiumMessageStyle\Contents\Resources folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Smooth Separate Lines.AdiumMessageStyle\Contents folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Smooth Separate Lines.AdiumMessageStyle folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Smooth Operator.AdiumMessageStyle\Contents\Resources\Variants folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Smooth Operator.AdiumMessageStyle\Contents\Resources\Outgoing folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Smooth Operator.AdiumMessageStyle\Contents\Resources\Incoming folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Smooth Operator.AdiumMessageStyle\Contents\Resources\images folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Smooth Operator.AdiumMessageStyle\Contents\Resources folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Smooth Operator.AdiumMessageStyle\Contents folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Smooth Operator.AdiumMessageStyle folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Satin.AdiumMessageStyle\Contents\Resources\Variants folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Satin.AdiumMessageStyle\Contents\Resources\styles folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Satin.AdiumMessageStyle\Contents\Resources\Outgoing folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Satin.AdiumMessageStyle\Contents\Resources\Incoming folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Satin.AdiumMessageStyle\Contents\Resources\images\status\purple folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Satin.AdiumMessageStyle\Contents\Resources\images\status\orange folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Satin.AdiumMessageStyle\Contents\Resources\images\status\gray folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Satin.AdiumMessageStyle\Contents\Resources\images\status folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Satin.AdiumMessageStyle\Contents\Resources\images\sender\standard\red folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Satin.AdiumMessageStyle\Contents\Resources\images\sender\standard\green folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Satin.AdiumMessageStyle\Contents\Resources\images\sender\standard\blue folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Satin.AdiumMessageStyle\Contents\Resources\images\sender\standard folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Satin.AdiumMessageStyle\Contents\Resources\images\sender\flipped\red folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Satin.AdiumMessageStyle\Contents\Resources\images\sender\flipped\green folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Satin.AdiumMessageStyle\Contents\Resources\images\sender\flipped\blue folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Satin.AdiumMessageStyle\Contents\Resources\images\sender\flipped folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Satin.AdiumMessageStyle\Contents\Resources\images\sender folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Satin.AdiumMessageStyle\Contents\Resources\images\message folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Satin.AdiumMessageStyle\Contents\Resources\images folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Satin.AdiumMessageStyle\Contents\Resources folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Satin.AdiumMessageStyle\Contents folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Satin.AdiumMessageStyle folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\PurePlastics.AdiumMessageStyle\Contents\Resources\Variants folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\PurePlastics.AdiumMessageStyle\Contents\Resources\Outgoing folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\PurePlastics.AdiumMessageStyle\Contents\Resources\Incoming folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\PurePlastics.AdiumMessageStyle\Contents\Resources\images folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\PurePlastics.AdiumMessageStyle\Contents\Resources folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\PurePlastics.AdiumMessageStyle\Contents folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\PurePlastics.AdiumMessageStyle folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\Variants folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\styles\_headers folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\styles\normal folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\styles\alternative folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\styles folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\Outgoing folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\javascripts folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\Incoming folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\images\_headers folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\images\white folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\images\modern folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\images\glass-yellow folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\images\glass-red folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\images\glass-purple folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\images\glass-pink folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\images\glass-orange folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\images\glass-lime folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\images\glass-grey folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\images\glass-green folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\images\glass-graphite folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\images\glass-cyan folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\images\glass-blue folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\images\glass-aqua folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\images\glass folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources\images folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents\Resources folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle\Contents folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Modern Bubbling.AdiumMessageStyle folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\MiniBubble2.AdiumMessageStyle\Contents\Resources\Variants folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\MiniBubble2.AdiumMessageStyle\Contents\Resources\Outgoing folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\MiniBubble2.AdiumMessageStyle\Contents\Resources\Incoming folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\MiniBubble2.AdiumMessageStyle\Contents\Resources\images folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\MiniBubble2.AdiumMessageStyle\Contents\Resources folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\MiniBubble2.AdiumMessageStyle\Contents folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\MiniBubble2.AdiumMessageStyle folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\MiniBubble.AdiumMessageStyle\Contents\Resources\Variants folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\MiniBubble.AdiumMessageStyle\Contents\Resources\Outgoing folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\MiniBubble.AdiumMessageStyle\Contents\Resources\Incoming folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\MiniBubble.AdiumMessageStyle\Contents\Resources\images folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\MiniBubble.AdiumMessageStyle\Contents\Resources folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\MiniBubble.AdiumMessageStyle\Contents folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\MiniBubble.AdiumMessageStyle folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Metal Chat 2.AdiumMessageStyle\Contents\Resources\Variants folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Metal Chat 2.AdiumMessageStyle\Contents\Resources\Outgoing folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Metal Chat 2.AdiumMessageStyle\Contents\Resources\Incoming folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Metal Chat 2.AdiumMessageStyle\Contents\Resources\images\NewMsgButton folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Metal Chat 2.AdiumMessageStyle\Contents\Resources\images folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Metal Chat 2.AdiumMessageStyle\Contents\Resources folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Metal Chat 2.AdiumMessageStyle\Contents folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Metal Chat 2.AdiumMessageStyle folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\GoneDark.AdiumMessageStyle\Contents\Resources\Variants folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\GoneDark.AdiumMessageStyle\Contents\Resources\Outgoing folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\GoneDark.AdiumMessageStyle\Contents\Resources\Incoming folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\GoneDark.AdiumMessageStyle\Contents\Resources\images folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\GoneDark.AdiumMessageStyle\Contents\Resources folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\GoneDark.AdiumMessageStyle\Contents folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\GoneDark.AdiumMessageStyle folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Fiat.AdiumMessageStyle\Contents\Resources\Variants folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Fiat.AdiumMessageStyle\Contents\Resources\styles folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Fiat.AdiumMessageStyle\Contents\Resources\Outgoing folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Fiat.AdiumMessageStyle\Contents\Resources\Incoming folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Fiat.AdiumMessageStyle\Contents\Resources\images\red folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Fiat.AdiumMessageStyle\Contents\Resources\images\orange folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Fiat.AdiumMessageStyle\Contents\Resources\images\green folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Fiat.AdiumMessageStyle\Contents\Resources\images\gray folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Fiat.AdiumMessageStyle\Contents\Resources\images\dark folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Fiat.AdiumMessageStyle\Contents\Resources\images\blue folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Fiat.AdiumMessageStyle\Contents\Resources\images folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Fiat.AdiumMessageStyle\Contents\Resources folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Fiat.AdiumMessageStyle\Contents folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Fiat.AdiumMessageStyle folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Candybars.AdiumMessageStyle\Contents\Resources\Variants folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Candybars.AdiumMessageStyle\Contents\Resources\Outgoing folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Candybars.AdiumMessageStyle\Contents\Resources\javascripts folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Candybars.AdiumMessageStyle\Contents\Resources\Incoming folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Candybars.AdiumMessageStyle\Contents\Resources\images folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Candybars.AdiumMessageStyle\Contents\Resources folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Candybars.AdiumMessageStyle\Contents folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles\Candybars.AdiumMessageStyle folder moved successfully.
C:\Program Files (x86)\Digsby\res\MessageStyles folder moved successfully.
C:\Program Files (x86)\Digsby\res\mac folder moved successfully.
C:\Program Files (x86)\Digsby\res\html\servicedialog folder moved successfully.
C:\Program Files (x86)\Digsby\res\html\lightbox\js folder moved successfully.
C:\Program Files (x86)\Digsby\res\html\lightbox\images folder moved successfully.
C:\Program Files (x86)\Digsby\res\html\lightbox\css folder moved successfully.
C:\Program Files (x86)\Digsby\res\html\lightbox folder moved successfully.
C:\Program Files (x86)\Digsby\res\html\infobox folder moved successfully.
C:\Program Files (x86)\Digsby\res\html folder moved successfully.
C:\Program Files (x86)\Digsby\res\emoticons\Yahoo Messenger folder moved successfully.
C:\Program Files (x86)\Digsby\res\emoticons\Riceballs folder moved successfully.
C:\Program Files (x86)\Digsby\res\emoticons\MSN Messenger folder moved successfully.
C:\Program Files (x86)\Digsby\res\emoticons\iChat Complete folder moved successfully.
C:\Program Files (x86)\Digsby\res\emoticons\default folder moved successfully.
C:\Program Files (x86)\Digsby\res\emoticons folder moved successfully.
C:\Program Files (x86)\Digsby\res\AppDefaults\v folder moved successfully.
C:\Program Files (x86)\Digsby\res\AppDefaults\search folder moved successfully.
C:\Program Files (x86)\Digsby\res\AppDefaults\notifications folder moved successfully.
C:\Program Files (x86)\Digsby\res\AppDefaults\icons\Formatting folder moved successfully.
C:\Program Files (x86)\Digsby\res\AppDefaults\icons folder moved successfully.
C:\Program Files (x86)\Digsby\res\AppDefaults\ezlayouts folder moved successfully.
C:\Program Files (x86)\Digsby\res\AppDefaults folder moved successfully.
C:\Program Files (x86)\Digsby\res folder moved successfully.
C:\Program Files (x86)\Digsby\lib\ZSI\wstools folder moved successfully.
C:\Program Files (x86)\Digsby\lib\ZSI\twisted folder moved successfully.
C:\Program Files (x86)\Digsby\lib\ZSI\generate folder moved successfully.
C:\Program Files (x86)\Digsby\lib\ZSI folder moved successfully.
C:\Program Files (x86)\Digsby\lib\yahoo folder moved successfully.
C:\Program Files (x86)\Digsby\lib\xml\sax folder moved successfully.
C:\Program Files (x86)\Digsby\lib\xml\parsers folder moved successfully.
C:\Program Files (x86)\Digsby\lib\xml\etree folder moved successfully.
C:\Program Files (x86)\Digsby\lib\xml\dom folder moved successfully.
C:\Program Files (x86)\Digsby\lib\xml folder moved successfully.
C:\Program Files (x86)\Digsby\lib\wx\webview folder moved successfully.
C:\Program Files (x86)\Digsby\lib\wx\stc folder moved successfully.
C:\Program Files (x86)\Digsby\lib\wx\py folder moved successfully.
C:\Program Files (x86)\Digsby\lib\wx\lib\mixins folder moved successfully.
C:\Program Files (x86)\Digsby\lib\wx\lib folder moved successfully.
C:\Program Files (x86)\Digsby\lib\wx\html folder moved successfully.
C:\Program Files (x86)\Digsby\lib\wx\calendar folder moved successfully.
C:\Program Files (x86)\Digsby\lib\wx folder moved successfully.
C:\Program Files (x86)\Digsby\lib\webview folder moved successfully.
C:\Program Files (x86)\Digsby\lib\util\threads folder moved successfully.
C:\Program Files (x86)\Digsby\lib\util\primitives folder moved successfully.
C:\Program Files (x86)\Digsby\lib\util\observe folder moved successfully.
C:\Program Files (x86)\Digsby\lib\util\network folder moved successfully.
C:\Program Files (x86)\Digsby\lib\util\lego\lattice\frame folder moved successfully.
C:\Program Files (x86)\Digsby\lib\util\lego\lattice\blocks folder moved successfully.
C:\Program Files (x86)\Digsby\lib\util\lego\lattice folder moved successfully.
C:\Program Files (x86)\Digsby\lib\util\lego folder moved successfully.
C:\Program Files (x86)\Digsby\lib\util\httplib2 folder moved successfully.
C:\Program Files (x86)\Digsby\lib\util\ffi folder moved successfully.
C:\Program Files (x86)\Digsby\lib\util folder moved successfully.
C:\Program Files (x86)\Digsby\lib\tests\mock folder moved successfully.
C:\Program Files (x86)\Digsby\lib\tests folder moved successfully.
C:\Program Files (x86)\Digsby\lib\test folder moved successfully.
C:\Program Files (x86)\Digsby\lib\syck folder moved successfully.
C:\Program Files (x86)\Digsby\lib\src folder moved successfully.
C:\Program Files (x86)\Digsby\lib\sqlite3 folder moved successfully.
C:\Program Files (x86)\Digsby\lib\social folder moved successfully.
C:\Program Files (x86)\Digsby\lib\simplejson folder moved successfully.
C:\Program Files (x86)\Digsby\lib\services folder moved successfully.
C:\Program Files (x86)\Digsby\lib\rpc folder moved successfully.
C:\Program Files (x86)\Digsby\lib\pyxmpp\sasl folder moved successfully.
C:\Program Files (x86)\Digsby\lib\pyxmpp\jabber folder moved successfully.
C:\Program Files (x86)\Digsby\lib\pyxmpp folder moved successfully.
C:\Program Files (x86)\Digsby\lib\protocols folder moved successfully.
C:\Program Files (x86)\Digsby\lib\prefs folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugin_manager folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\twitter\res\img folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\twitter\res\images folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\twitter\res folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\twitter folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\stats_counters\stanzas folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\stats_counters folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\researchdriver\res folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\researchdriver folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\provider_yahoo folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\provider_windows_live folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\provider_twitter folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\provider_myspace folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\provider_linkedin folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\provider_jabber folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\provider_google\res folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\provider_google folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\provider_facebook folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\provider_aol folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\promotestatus folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\nowplaying folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\myspace\res folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\myspace folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\msim\res folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\msim\myspacegui folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\msim folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\linkedin\res folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\linkedin folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\feed_trends\tests folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\feed_trends\res folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\feed_trends folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\fbchat folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\facebook\res\facebookicons folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\facebook\res folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\facebook folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\digsby_updater\res folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\digsby_updater folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\digsby_status folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\digsby_service_providers\res folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\digsby_service_providers folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\digsby_service_editor folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\digsby_muc_invite folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\digsby_iq_version folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\digsby_inviter folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\digsby_geoip folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\digsby_email folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\digsby_branding folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\digsby_achievements\unittest folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\digsby_achievements folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\digsby_about\res folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\digsby_about folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\digsbyipcaction folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\component_ymail folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\component_yahooim\res folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\component_yahooim folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\component_gtalk folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins\component_gmail folder moved successfully.
C:\Program Files (x86)\Digsby\lib\plugins folder moved successfully.
C:\Program Files (x86)\Digsby\lib\platlib\win folder moved successfully.
C:\Program Files (x86)\Digsby\lib\platlib folder moved successfully.
C:\Program Files (x86)\Digsby\lib\PIL folder moved successfully.
C:\Program Files (x86)\Digsby\lib\peak\util folder moved successfully.
C:\Program Files (x86)\Digsby\lib\peak\events folder moved successfully.
C:\Program Files (x86)\Digsby\lib\peak folder moved successfully.
C:\Program Files (x86)\Digsby\lib\oscar\ssi folder moved successfully.
C:\Program Files (x86)\Digsby\lib\oscar\snac folder moved successfully.
C:\Program Files (x86)\Digsby\lib\oscar\rendezvous folder moved successfully.
C:\Program Files (x86)\Digsby\lib\oscar folder moved successfully.
C:\Program Files (x86)\Digsby\lib\oauth folder moved successfully.
C:\Program Files (x86)\Digsby\lib\multiprocessing\dummy folder moved successfully.
C:\Program Files (x86)\Digsby\lib\multiprocessing folder moved successfully.
C:\Program Files (x86)\Digsby\lib\msn\SOAP\xml folder moved successfully.
C:\Program Files (x86)\Digsby\lib\msn\SOAP\MSSOAPFault folder moved successfully.
C:\Program Files (x86)\Digsby\lib\msn\SOAP\MSNStorageService folder moved successfully.
C:\Program Files (x86)\Digsby\lib\msn\SOAP\MSNSpaceService folder moved successfully.
C:\Program Files (x86)\Digsby\lib\msn\SOAP\MSNSecurityTokenService folder moved successfully.
C:\Program Files (x86)\Digsby\lib\msn\SOAP\MSNRSIService folder moved successfully.
C:\Program Files (x86)\Digsby\lib\msn\SOAP\MSNOIMStoreService folder moved successfully.
C:\Program Files (x86)\Digsby\lib\msn\SOAP\MSNABSharingService folder moved successfully.
C:\Program Files (x86)\Digsby\lib\msn\SOAP folder moved successfully.
C:\Program Files (x86)\Digsby\lib\msn\p9 folder moved successfully.
C:\Program Files (x86)\Digsby\lib\msn\p8 folder moved successfully.
C:\Program Files (x86)\Digsby\lib\msn\P2P folder moved successfully.
C:\Program Files (x86)\Digsby\lib\msn\p21 folder moved successfully.
C:\Program Files (x86)\Digsby\lib\msn\p15 folder moved successfully.
C:\Program Files (x86)\Digsby\lib\msn\p14 folder moved successfully.
C:\Program Files (x86)\Digsby\lib\msn\p13 folder moved successfully.
C:\Program Files (x86)\Digsby\lib\msn\p12 folder moved successfully.
C:\Program Files (x86)\Digsby\lib\msn\p11 folder moved successfully.
C:\Program Files (x86)\Digsby\lib\msn\p10 folder moved successfully.
C:\Program Files (x86)\Digsby\lib\msn\p folder moved successfully.
C:\Program Files (x86)\Digsby\lib\msn folder moved successfully.
C:\Program Files (x86)\Digsby\lib\mail\hotmail folder moved successfully.
C:\Program Files (x86)\Digsby\lib\mail folder moved successfully.
C:\Program Files (x86)\Digsby\lib\M2Crypto\SSL folder moved successfully.
C:\Program Files (x86)\Digsby\lib\M2Crypto\PGP folder moved successfully.
C:\Program Files (x86)\Digsby\lib\M2Crypto folder moved successfully.
C:\Program Files (x86)\Digsby\lib\lxml\html folder moved successfully.
C:\Program Files (x86)\Digsby\lib\lxml folder moved successfully.
C:\Program Files (x86)\Digsby\lib\logging folder moved successfully.
C:\Program Files (x86)\Digsby\lib\libxmlmods folder moved successfully.
C:\Program Files (x86)\Digsby\lib\lib folder moved successfully.
C:\Program Files (x86)\Digsby\lib\jabber\objects\shared_status folder moved successfully.
C:\Program Files (x86)\Digsby\lib\jabber\objects\gmail folder moved successfully.
C:\Program Files (x86)\Digsby\lib\jabber\objects folder moved successfully.
C:\Program Files (x86)\Digsby\lib\jabber\jabber_util folder moved successfully.
C:\Program Files (x86)\Digsby\lib\jabber\filetransfer folder moved successfully.
C:\Program Files (x86)\Digsby\lib\jabber folder moved successfully.
C:\Program Files (x86)\Digsby\lib\imagehost\twitpic folder moved successfully.
C:\Program Files (x86)\Digsby\lib\imagehost\imgur folder moved successfully.
C:\Program Files (x86)\Digsby\lib\imagehost folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\vlist folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\video folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\vcard folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\uberwidgets\uberbook folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\uberwidgets\formattedinput2 folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\uberwidgets folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\toolbox\monitor folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\toolbox folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\toast folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\supportdigsby folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\skin folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\prototypes\menus folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\prototypes folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\protocols folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\pref folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\notifications folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\native\win folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\native\mac folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\native folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\model folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\lattice folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\input folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\infobox folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\imwin\styles folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\imwin folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\filetransfer folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\bugreporter folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\buddylist folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\browser\webkit folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\browser folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\app folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui\alphaborder folder moved successfully.
C:\Program Files (x86)\Digsby\lib\gui folder moved successfully.
C:\Program Files (x86)\Digsby\lib\encodings folder moved successfully.
C:\Program Files (x86)\Digsby\lib\email\test folder moved successfully.
C:\Program Files (x86)\Digsby\lib\email\mime folder moved successfully.
C:\Program Files (x86)\Digsby\lib\email folder moved successfully.
C:\Program Files (x86)\Digsby\lib\dns\rdtypes\IN folder moved successfully.
C:\Program Files (x86)\Digsby\lib\dns\rdtypes\ANY folder moved successfully.
C:\Program Files (x86)\Digsby\lib\dns\rdtypes folder moved successfully.
C:\Program Files (x86)\Digsby\lib\dns folder moved successfully.
C:\Program Files (x86)\Digsby\lib\distutils\command folder moved successfully.
C:\Program Files (x86)\Digsby\lib\distutils folder moved successfully.
C:\Program Files (x86)\Digsby\lib\digsby_chatlogs folder moved successfully.
C:\Program Files (x86)\Digsby\lib\digsby\widgets folder moved successfully.
C:\Program Files (x86)\Digsby\lib\digsby\objects folder moved successfully.
C:\Program Files (x86)\Digsby\lib\digsby\accounts folder moved successfully.
C:\Program Files (x86)\Digsby\lib\digsby folder moved successfully.
C:\Program Files (x86)\Digsby\lib\ctypes\macholib folder moved successfully.
C:\Program Files (x86)\Digsby\lib\ctypes folder moved successfully.
C:\Program Files (x86)\Digsby\lib\contacts folder moved successfully.
C:\Program Files (x86)\Digsby\lib\comtypes\tools folder moved successfully.
C:\Program Files (x86)\Digsby\lib\comtypes\gen folder moved successfully.
C:\Program Files (x86)\Digsby\lib\comtypes\client folder moved successfully.
C:\Program Files (x86)\Digsby\lib\comtypes folder moved successfully.
C:\Program Files (x86)\Digsby\lib\compiler folder moved successfully.
C:\Program Files (x86)\Digsby\lib\common\spelling folder moved successfully.
C:\Program Files (x86)\Digsby\lib\common\asynchttp folder moved successfully.
C:\Program Files (x86)\Digsby\lib\common folder moved successfully.
C:\Program Files (x86)\Digsby\lib\aspell\dict folder moved successfully.
C:\Program Files (x86)\Digsby\lib\aspell\data folder moved successfully.
C:\Program Files (x86)\Digsby\lib\aspell\bin folder moved successfully.
C:\Program Files (x86)\Digsby\lib\aspell folder moved successfully.
C:\Program Files (x86)\Digsby\lib folder moved successfully.
C:\Program Files (x86)\Digsby folder moved successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced Registry Optimizer folder moved successfully.
C:\Program Files (x86)\Advanced Registry Optimizer folder moved successfully.
C:\Users\Kelvin\AppData\Roaming\AVG10\cfgall folder moved successfully.
C:\Users\Kelvin\AppData\Roaming\AVG10 folder moved successfully.
C:\ProgramData\AVG10\scanlogs folder moved successfully.
C:\ProgramData\AVG10\lsdb\prev folder moved successfully.
C:\ProgramData\AVG10\lsdb folder moved successfully.
C:\ProgramData\AVG10\log\IDP\log folder moved successfully.
C:\ProgramData\AVG10\log\IDP folder moved successfully.
C:\ProgramData\AVG10\log folder moved successfully.
C:\ProgramData\AVG10\Chjw\e88cbe738cbe3c3e folder moved successfully.
C:\ProgramData\AVG10\Chjw folder moved successfully.
C:\ProgramData\AVG10\cfgall folder moved successfully.
C:\ProgramData\AVG10\Cfg folder moved successfully.
C:\ProgramData\AVG10 folder moved successfully.
C:\Program Files (x86)\AVG\AVG10\Firefox\Chrome folder moved successfully.
C:\Program Files (x86)\AVG\AVG10\Firefox folder moved successfully.
C:\Program Files (x86)\AVG\AVG10 folder moved successfully.
C:\Program Files (x86)\AVG folder moved successfully.
C:\ProgramData\ezsidmv.dat moved successfully.
C:\Users\Kelvin\Application Data\Microsoft\Internet Explorer\Quick Launch\Digsby.lnk moved successfully.
C:\Users\Kelvin\Desktop\Digsby.lnk moved successfully.
File C:\Users\Kelvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Digsby.lnk not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Kelvin
->Temp folder emptied: 8323132 bytes
->Temporary Internet Files folder emptied: 842013 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 75708195 bytes
->Flash cache emptied: 1335 bytes

User: Public
->Temp folder emptied: 0 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 2218 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 604073 bytes

Total Files Cleaned = 82.00 mb

[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Kelvin
->Flash cache emptied: 0 bytes

User: Public

User: UpdatusUser
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0.00 mb

OTL by OldTimer - Version 3.2.20.5 log created on 01262011_004604

Files\Folders moved on Reboot...
C:\Users\Kelvin\AppData\Local\Temp\CVHLauncher(20110125215725C0).log moved successfully.
C:\Users\Kelvin\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

Registry entries deleted on Reboot...

broni · 2011/01/25

Very good

Run OTL
Under the [color= "#0000FF"]Custom Scans/Fixes[/color] box at the bottom, paste in the following
Code:
:OTL

:Services

:Reg

:Files
C:\Program Files (x86)\Hotspot Shield\bin\openvpnas.exe 
C:\Users\Kelvin\Desktop\HSS-1.57-install-anchorfree-247-conduit3.exe

:Commands
[purity]
[emptytemp]
[emptyflash]
[Reboot]
Then click the [color= "#FF0000"]Run Fix[/color] button at the top

Let the program run unhindered, reboot the PC when it is done

You will get a log that shows the results of the fix. Please post it.
================================================================

Your computer is clean

1. We need to reset system restore to prevent your computer from being accidentally reinfected by using some old restore point(s). We'll create fresh, clean restore point, using following OTL script:

Run OTL

Under the Custom Scans/Fixes box at the bottom, paste in the following:
Code:
:OTL
:Commands
[purity]
[emptytemp]
[EMPTYFLASH]
[CLEARALLRESTOREPOINTS]
[Reboot]
Then click the Run Fix button at the top

Let the program run unhindered, reboot the PC when it is done

Post resulting log.

2. Now, we'll remove all tools, we used during our cleaning process

Clean up with OTL:

Double-click OTL.exe to start the program.

Close all other programs apart from OTL as this step will require a reboot

On the OTL main screen, press the CLEANUP button

Say Yes to the prompt and then allow the program to reboot your computer.

If you still have any tools or logs leftover on your computer you can go ahead and delete those off of your computer now.

3. Make sure, Windows Updates are current.

4. If any Trojan was listed among your infection(s), make sure, you change all of your on-line important passwords (bank account(s), secured web sites, etc.) immediately!

5. Download, and install WOT (Web OF Trust): http://www.mywot.com/. It'll warn you (in most cases) about dangerous web sites.

6. Run Malwarebytes "Quick scan" once in a while to assure safety of your computer.

7. Run Temporary File Cleaner (TFC) weekly.

8. Download and install Secunia Personal Software Inspector (PSI): http://secunia.com/vulnerability_scanning/personal/. The Secunia PSI is a FREE security tool designed to detect vulnerable and out-dated programs and plug-ins which expose your PC to attacks. Run it weekly.

9. (optional) If you want to keep all your programs up to date, download and install FileHippo Update Checker.
The Update Checker will scan your computer for installed software, check the versions and then send this information to FileHippo.com to see if there are any newer releases.

10. Run defrag at your convenience.

11. Read How did I get infected?, With steps so it does not happen again!: http://www.bleepingcomputer.com/forums/topic2520.html

12. Please, let me know, how your computer is doing.

mrbiglive · 2011/01/25

Here's the new OTL
---
All processes killed
========== OTL ==========
========== SERVICES/DRIVERS ==========
========== REGISTRY ==========
========== FILES ==========
C:\Program Files (x86)\Hotspot Shield\bin\openvpnas.exe moved successfully.
C:\Users\Kelvin\Desktop\HSS-1.57-install-anchorfree-247-conduit3.exe moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Kelvin
->Temp folder emptied: 2279410 bytes
->Temporary Internet Files folder emptied: 44074 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 35578723 bytes
->Flash cache emptied: 594 bytes

User: Public
->Temp folder emptied: 0 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 2218 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 36.00 mb

[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Kelvin
->Flash cache emptied: 0 bytes

User: Public

User: UpdatusUser
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0.00 mb

OTL by OldTimer - Version 3.2.20.5 log created on 01262011_011442

Files\Folders moved on Reboot...
C:\Users\Kelvin\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

Registry entries deleted on Reboot...

mrbiglive · 2011/01/25

OTL again
---

All processes killed
========== OTL ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Kelvin
->Temp folder emptied: 698380 bytes
->Temporary Internet Files folder emptied: 33190 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 22722067 bytes
->Flash cache emptied: 439 bytes

User: Public
->Temp folder emptied: 0 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1414 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 22.00 mb

[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Kelvin
->Flash cache emptied: 0 bytes

User: Public

User: UpdatusUser
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0.00 mb

Error creating restore point.

OTL by OldTimer - Version 3.2.20.5 log created on 01262011_011930

Files\Folders moved on Reboot...
C:\Users\Kelvin\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

Registry entries deleted on Reboot...

broni · 2011/01/25

Error creating restore point.
Click to expand...

You'll have to reset system restore manually: http://www.howtogeek.com/howto/windows-vista/disable-system-restore-in-windows-vista/

mrbiglive · 2011/01/25

I'm still having the problem. When I tried to go to a youtube site, it still brings me to this page:

http://www.qbyrd.com/web?q=http://youtube.com/watch?v=ZDWskc_f-jI&o=15529&l=dis&hss=srch

Is hotspotshield dangerous?

broni · 2011/01/25

HotspotShield seems to be causing redirection.

Did you reset system restore?

Regarding redirection....
Which browser is affected?

mrbiglive · 2011/01/25

I tried IE and it seems to work fine (no redirection).

Then I try to remove Hotspot Shield... Back to Firefox... Redirection happens again. It's either to Ask.com or Qbyrd

broni · 2011/01/25

Close Firefox. Go Start>All Programs>Mozilla Firefox, click on Mozilla Firefox (safe mode). Same issue?

mrbiglive · 2011/01/25

Yes, same issue.

Will this help? http://webcache.googleusercontent.c...nly&cd=5&hl=en&ct=clnk&gl=sg&client=firefox-a

broni · 2011/01/25

If you still have OTL, please run "Quick scan" (no custom code) and post its log.
If it's gone, download fresh copy.

mrbiglive · 2011/01/25

here is OTL (part 1)
--
OTL logfile created on: 1/26/2011 2:36:31 AM - Run 1
OTL by OldTimer - Version 3.2.20.5 Folder = C:\Users\Kelvin\Downloads
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: Singapore | Language: ENE | Date Format: d/M/yyyy

4.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 53.00% Memory free
8.00 Gb Paging File | 5.00 Gb Available in Paging File | 72.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 444.27 Gb Total Space | 413.56 Gb Free Space | 93.09% Space Free | Partition Type: NTFS

Computer Name: KELVIN-PC | User Name: Kelvin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/01/26 00:45:03 | 000,603,136 | ---- | M] (OldTimer Tools) -- C:\Users\Kelvin\Downloads\OTL.exe
PRC - [2011/01/10 22:24:20 | 000,993,848 | ---- | M] (Secunia) -- C:\Program Files (x86)\Secunia\PSI\psia.exe
PRC - [2011/01/10 22:24:20 | 000,399,416 | ---- | M] (Secunia) -- C:\Program Files (x86)\Secunia\PSI\sua.exe
PRC - [2011/01/10 22:24:20 | 000,291,896 | ---- | M] (Secunia) -- C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
PRC - [2010/12/04 03:35:08 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2010/12/04 03:35:08 | 000,016,856 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
PRC - [2010/11/07 11:22:56 | 003,058,304 | ---- | M] (ASUS) -- C:\Windows\AsScrPro.exe
PRC - [2010/10/16 00:40:40 | 000,037,664 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2010/09/30 15:15:20 | 001,078,912 | ---- | M] (asus) -- C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe
PRC - [2010/09/24 07:53:16 | 001,601,536 | ---- | M] () -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
PRC - [2010/08/21 09:47:58 | 000,077,312 | ---- | M] () -- C:\ExpressGateUtil\VAWinService.exe
PRC - [2010/08/18 05:55:42 | 005,732,992 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
PRC - [2010/08/17 13:34:22 | 000,235,624 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2010/08/17 13:30:54 | 001,620,584 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2010/08/13 08:52:16 | 000,021,504 | ---- | M] () -- C:\ExpressGateUtil\VAWinAgent.exe
PRC - [2010/07/20 03:26:00 | 000,370,480 | ---- | M] (syncables, LLC) -- C:\Program Files (x86)\syncables\syncables desktop\syncables.exe
PRC - [2010/07/20 03:26:00 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\syncables\syncables desktop\jre\bin\javaw.exe
PRC - [2010/07/10 13:45:00 | 000,984,400 | ---- | M] (Virage Logic Corporation / Sonic Focus) -- C:\Program Files (x86)\ASUS\SonicMaster\SonicMasterTray.exe
PRC - [2010/05/21 00:28:00 | 011,312,128 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
PRC - [2010/05/21 00:27:58 | 011,318,784 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
PRC - [2010/05/04 05:45:50 | 000,182,912 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
PRC - [2010/05/04 05:41:46 | 000,170,624 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
PRC - [2010/04/24 01:10:34 | 000,209,768 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
PRC - [2010/04/24 01:10:28 | 000,483,688 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
PRC - [2010/02/24 11:14:26 | 000,075,048 | ---- | M] (cyberlink) -- C:\Program Files (x86)\CyberLink\Shared files\brs.exe
PRC - [2009/12/16 01:39:38 | 000,096,896 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
PRC - [2009/11/03 05:21:26 | 000,103,720 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
PRC - [2009/10/01 10:34:22 | 002,314,240 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2009/10/01 10:33:08 | 000,262,144 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2009/08/13 03:32:56 | 000,365,936 | ---- | M] (Boingo Wireless, Inc.) -- C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe
PRC - [2009/08/01 01:38:24 | 000,305,720 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
PRC - [2009/07/07 05:22:04 | 000,087,336 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe
PRC - [2009/06/20 01:29:42 | 000,105,016 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
PRC - [2009/06/20 01:29:26 | 002,488,888 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
PRC - [2009/06/16 08:30:42 | 000,084,536 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
PRC - [2009/03/05 16:07:20 | 002,260,480 | RHS- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
PRC - [2008/12/23 08:15:34 | 000,174,648 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
PRC - [2007/12/01 02:20:44 | 000,051,768 | ---- | M] () -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe

========== Modules (SafeList) ==========

MOD - [2011/01/26 00:45:03 | 000,603,136 | ---- | M] (OldTimer Tools) -- C:\Users\Kelvin\Downloads\OTL.exe
MOD - [2010/08/21 13:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll

========== Win32 Services (SafeList) ==========

SRV:64bit: - [2010/11/11 14:36:38 | 000,282,616 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2010/11/11 14:36:38 | 000,012,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2010/06/23 02:20:42 | 000,379,520 | ---- | M] (ASUSTeK Computer Inc.) [Auto | Running] -- C:\Windows\SysNative\FBAgent.exe -- (AFBAgent)
SRV:64bit: - [2010/04/17 07:07:42 | 000,134,928 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\TurboBoost\TurboBoost.exe -- (TurboBoost)
SRV:64bit: - [2009/07/14 09:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2011/01/10 22:24:20 | 000,993,848 | ---- | M] (Secunia) [Auto | Running] -- C:\Program Files (x86)\Secunia\PSI\PSIA.exe -- (Secunia PSI Agent)
SRV - [2011/01/10 22:24:20 | 000,399,416 | ---- | M] (Secunia) [Auto | Running] -- C:\Program Files (x86)\Secunia\PSI\sua.exe -- (Secunia Update Agent)
SRV - [2010/11/07 10:59:41 | 000,332,272 | ---- | M] (Google Inc.) [On_Demand | Stopped] -- C:\ProgramData\Partner\Partner.exe -- (Partner Service)
SRV - [2010/10/16 00:40:40 | 000,037,664 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/08/21 09:47:58 | 000,077,312 | ---- | M] () [Auto | Running] -- C:\ExpressGateUtil\VAWinService.exe -- (VideAceWindowsService)
SRV - [2010/08/17 13:34:22 | 000,235,624 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2010/08/17 13:30:54 | 001,620,584 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2010/04/24 01:10:34 | 000,209,768 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa)
SRV - [2010/04/24 01:10:28 | 000,483,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist)
SRV - [2009/12/16 01:39:38 | 000,096,896 | ---- | M] (ASUS) [Auto | Running] -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe -- (ATKGFNEXSrv)
SRV - [2009/10/01 10:34:22 | 002,314,240 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R)
SRV - [2009/10/01 10:33:08 | 000,262,144 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R)
SRV - [2009/06/16 08:30:42 | 000,084,536 | ---- | M] (ASUS) [Auto | Running] -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe -- (ASLDRService)
SRV - [2009/06/11 05:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Running] -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2010/10/24 21:25:38 | 000,072,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2010/09/28 15:44:52 | 000,051,712 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2010/09/25 10:24:26 | 000,229,376 | ---- | M] (Fresco Logic) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\FLxHCIc.sys -- (FLxHCIc) Fresco Logic xHCI (USB3)
DRV:64bit: - [2010/09/25 10:24:26 | 000,069,120 | ---- | M] (Fresco Logic) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\FLxHCIh.sys -- (FLxHCIh) Fresco Logic xHCI (USB3)
DRV:64bit: - [2010/09/23 03:19:02 | 000,037,888 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\taphss.sys -- (taphss)
DRV:64bit: - [2010/09/01 16:30:58 | 000,017,976 | ---- | M] (Secunia) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\psi_mf.sys -- (PSI)
DRV:64bit: - [2010/08/16 21:49:59 | 000,024,680 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:64bit: - [2010/07/29 02:40:39 | 010,610,400 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2010/07/21 13:33:49 | 000,129,024 | ---- | M] (ELAN Microelectronic Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:64bit: - [2010/06/21 15:07:37 | 000,131,688 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2010/04/24 01:10:32 | 000,022,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftvollh.sys -- (Sftvol)
DRV:64bit: - [2010/04/24 01:10:28 | 000,269,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftplaylh.sys -- (Sftplay)
DRV:64bit: - [2010/04/24 01:10:28 | 000,025,960 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftredirlh.sys -- (Sftredir)
DRV:64bit: - [2010/04/24 01:10:20 | 000,721,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftfslh.sys -- (Sftfs)
DRV:64bit: - [2010/04/17 07:07:28 | 000,013,832 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\TurboB.sys -- (TurboB)
DRV:64bit: - [2010/03/04 17:53:01 | 000,075,816 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C)
DRV:64bit: - [2010/03/03 19:51:39 | 000,540,696 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010/03/02 16:45:23 | 001,594,368 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2010/02/27 05:02:11 | 000,158,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:64bit: - [2009/09/18 03:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) Intel(R)
DRV:64bit: - [2009/08/20 10:41:37 | 001,800,192 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC)
DRV:64bit: - [2009/07/20 17:29:39 | 000,015,416 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kbfiltr.sys -- (kbfiltr)
DRV:64bit: - [2009/07/14 09:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/07/14 09:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/07/14 09:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 09:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 09:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/14 09:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/11 04:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/11 04:35:57 | 000,056,832 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SiSG664.sys -- (SiSGbeLH)
DRV:64bit: - [2009/06/11 04:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/11 04:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/11 04:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/11 04:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/05/18 13:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2009/05/14 00:07:20 | 000,015,928 | ---- | M] (ASUS) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ATK64AMD.sys -- (MTsensor)
DRV:64bit: - [2008/12/08 17:35:52 | 000,061,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2008/05/24 08:27:28 | 000,154,168 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV - [2010/02/25 02:14:22 | 000,146,928 | ---- | M] (CyberLink Corp.) [2010/11/06 19:44:02] [Kernel | Auto | Running] -- C:\Program Files (x86)\CyberLink\PowerDVD9\000.fcl -- ({B154377D-700F-42cc-9474-23858FBDF4BD})
DRV - [2009/07/03 08:36:14 | 000,015,416 | ---- | M] (ASUS) [Kernel | Auto | Running] -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys -- (ASMMAP64)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Search the web (Babylon) "
FF - prefs.js..browser.search.defaulturl: "http://search.babylon.com/web/{searchTerms}?babsrc=browsersearch&AF=15000 "
FF - prefs.js..browser.search.order.1: "Search the web (Babylon) "
FF - prefs.js..browser.search.selectedEngine: "Google "
FF - prefs.js..browser.startup.homepage: "yahoo.com "
FF - prefs.js..extensions.enabledItems: {340c2bbc-ce74-4362-90b5-7c26312808ef}:1.6.2
FF - prefs.js..extensions.enabledItems: siphon@siphon.ian-halpern.com:0.9.0
FF - prefs.js..extensions.enabledItems: {ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}:1.4.1
FF - prefs.js..extensions.enabledItems: {097d3191-e6fa-4728-9826-b533d755359d}:0.7.12
FF - prefs.js..extensions.enabledItems: {E0B8C461-F8FB-49b4-8373-FE32E9252800}:4.0.0.106602
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.2
FF - prefs.js..extensions.enabledItems: {c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}:4.0
FF - prefs.js..extensions.enabledItems: zotero@chnm.gmu.edu:2.0.9
FF - prefs.js..extensions.enabledItems: canitbecheaper@trafficbroker.co.uk:2.9.1
FF - prefs.js..extensions.enabledItems: afurladvisor@anchorfree.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.9.1.14019
FF - prefs.js..extensions.enabledItems: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}:20100908
FF - prefs.js..keyword.URL: "http://www.google.com/search?q= "

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011/01/21 23:11:03 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011/01/26 01:49:59 | 000,000,000 | ---D | M]

[2011/01/21 20:11:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kelvin\AppData\Roaming\Mozilla\Extensions
[2011/01/26 01:45:17 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kelvin\AppData\Roaming\Mozilla\Firefox\Profiles\m303u31u.default\extensions
[2011/01/21 21:25:40 | 000,000,000 | ---D | M] (All-in-One Sidebar) -- C:\Users\Kelvin\AppData\Roaming\Mozilla\Firefox\Profiles\m303u31u.default\extensions\{097d3191-e6fa-4728-9826-b533d755359d}
[2011/01/21 20:31:44 | 000,000,000 | ---D | M] (Firefox Sync) -- C:\Users\Kelvin\AppData\Roaming\Mozilla\Firefox\Profiles\m303u31u.default\extensions\{340c2bbc-ce74-4362-90b5-7c26312808ef}
[2011/01/26 01:45:11 | 000,000,000 | ---D | M] (WOT) -- C:\Users\Kelvin\AppData\Roaming\Mozilla\Firefox\Profiles\m303u31u.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2011/01/21 21:25:37 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Kelvin\AppData\Roaming\Mozilla\Firefox\Profiles\m303u31u.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2011/01/21 21:25:36 | 000,000,000 | ---D | M] (Easy Youtube Video Downloader) -- C:\Users\Kelvin\AppData\Roaming\Mozilla\Firefox\Profiles\m303u31u.default\extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}
[2011/01/23 16:35:02 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Kelvin\AppData\Roaming\Mozilla\Firefox\Profiles\m303u31u.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2011/01/21 21:25:40 | 000,000,000 | ---D | M] (Evernote Web Clipper) -- C:\Users\Kelvin\AppData\Roaming\Mozilla\Firefox\Profiles\m303u31u.default\extensions\{E0B8C461-F8FB-49b4-8373-FE32E9252800}
[2011/01/21 21:25:41 | 000,000,000 | ---D | M] (FoxTab) -- C:\Users\Kelvin\AppData\Roaming\Mozilla\Firefox\Profiles\m303u31u.default\extensions\{ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}
[2011/01/21 22:05:38 | 000,000,000 | ---D | M] (InvisibleHand) -- C:\Users\Kelvin\AppData\Roaming\Mozilla\Firefox\Profiles\m303u31u.default\extensions\canitbecheaper@trafficbroker.co.uk
[2011/01/21 21:21:22 | 000,000,000 | ---D | M] (Siphon - Sync Add-ons) -- C:\Users\Kelvin\AppData\Roaming\Mozilla\Firefox\Profiles\m303u31u.default\extensions\siphon@siphon.ian-halpern.com
[2011/01/25 21:22:27 | 000,000,000 | ---D | M] (Foxit PDF Creator Toolbar) -- C:\Users\Kelvin\AppData\Roaming\Mozilla\Firefox\Profiles\m303u31u.default\extensions\toolbar@ask.com
[2011/01/21 21:28:27 | 000,000,000 | ---D | M] (Zotero) -- C:\Users\Kelvin\AppData\Roaming\Mozilla\Firefox\Profiles\m303u31u.default\extensions\zotero@chnm.gmu.edu
[2011/01/26 01:45:17 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2011/01/21 21:50:05 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2011/01/22 20:37:19 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2011/01/24 21:00:47 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011/01/26 02:14:03 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions\afurladvisor@anchorfree.com
[2010/11/12 18:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2011/01/21 21:49:17 | 000,002,226 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml

O1 HOSTS File: ([2009/06/11 05:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
O2:64bit: - BHO: (Partner BHO Class) - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner64.dll (Google Inc.)
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll (Google Inc.)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Partner BHO Class) - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll (Google Inc.)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (Google Inc.)
O2 - BHO: (Foxit PDF Creator Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Foxit PDF Creator Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O4:64bit: - HKLM..\Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (Alcor Micro Corp.)
O4:64bit: - HKLM..\Run: [ASUS WebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe ()
O4:64bit: - HKLM..\Run: [ETDWare] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronic Corp.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUS)
O4 - HKLM..\Run: [BDRegion] C:\Program Files (x86)\CyberLink\Shared files\brs.exe (cyberlink)
O4 - HKLM..\Run: [Boingo Wi-Fi] C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk ()
O4 - HKLM..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe (ASUS)
O4 - HKLM..\Run: [RemoteControl9] C:\Program Files (x86)\Cyberlink\PowerDVD9\PDVD9Serv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\SonicMaster\SonicMasterTray.exe (Virage Logic Corporation / Sonic Focus)
O4 - HKLM..\Run: [UpdateLBPShortCut] C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdateP2GoShortCut] C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePSTShortCut] C:\Program Files (x86)\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [VAWinAgent] C:\ExpressGateUtil\VAWinAgent.exe ()
O4 - HKLM..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe ()
O4 - HKCU..\Run: [FileHippo.com] C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe (FileHippo.com)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - HKCU..\Run: [Syncables] C:\Program Files (x86)\syncables\syncables desktop\syncables.exe (syncables, LLC)
O4 - Startup: C:\Users\Kelvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 202.156.1.68 202.156.1.58 218.186.1.38
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - AppInit_DLLs: (C:\Windows\System32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20:64bit: - AppInit_DLLs: (C:\Windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20 - AppInit_DLLs: (C:\Windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Value error. - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

mrbiglive · 2011/01/25

OTL (part2)
---
========== Files/Folders - Created Within 30 Days ==========

[2011/01/26 02:14:03 | 000,000,000 | ---D | C] -- C:\ProgramData\hsswpr
[2011/01/26 01:47:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2011/01/26 01:46:51 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011/01/26 01:39:07 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Local\Secunia PSI
[2011/01/26 01:39:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Secunia
[2011/01/26 01:37:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FileHippo.com
[2011/01/25 23:17:27 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Local\Microsoft Help
[2011/01/25 23:17:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2011/01/25 22:23:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSECache
[2011/01/25 09:00:18 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Roaming\Foxit Software
[2011/01/25 09:00:18 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Roaming\Foxit
[2011/01/25 09:00:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
[2011/01/25 08:59:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ask.com
[2011/01/25 08:59:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Foxit Software
[2011/01/24 21:24:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
[2011/01/24 21:05:29 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2011/01/24 21:01:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2011/01/24 01:27:45 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2011/01/23 22:15:37 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Local\Adobe
[2011/01/23 03:07:59 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2011/01/23 03:07:59 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2011/01/23 03:02:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2011/01/23 02:13:24 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Local\Microsoft Games
[2011/01/23 01:21:16 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Roaming\Malwarebytes
[2011/01/23 01:20:14 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2011/01/23 01:20:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/01/23 01:20:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/01/23 01:20:10 | 000,024,152 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011/01/23 01:20:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2011/01/22 23:09:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English)
[2011/01/22 22:39:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client
[2011/01/22 22:39:22 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2011/01/22 21:56:30 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2011/01/22 21:37:01 | 000,000,000 | ---D | C] -- C:\ProgramData\VirtualizedApplications
[2011/01/22 20:50:30 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Roaming\OpenOffice.org
[2011/01/22 20:37:54 | 000,000,000 | --SD | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.2
[2011/01/22 20:37:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\JRE
[2011/01/22 20:37:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenOffice.org 3
[2011/01/22 20:37:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2011/01/22 20:37:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2011/01/22 20:36:33 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\Desktop\OpenOffice.org 3.2 (en-US) Installation Files
[2011/01/22 19:32:44 | 000,000,000 | R--D | C] -- C:\MSOCache
[2011/01/22 19:26:45 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Roaming\SoftGrid Client
[2011/01/22 19:26:45 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Local\SoftGrid Client
[2011/01/22 19:26:10 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2011/01/22 19:26:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2011/01/22 19:26:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Application Virtualization Client
[2011/01/22 19:26:03 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Roaming\TP
[2011/01/22 13:16:04 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Local\Cyberlink
[2011/01/22 13:16:00 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\Documents\CyberLink
[2011/01/22 13:15:59 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Roaming\CyberLink
[2011/01/22 11:49:25 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\log
[2011/01/22 11:46:58 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2011/01/21 23:14:36 | 000,000,000 | ---D | C] -- C:\Windows\FLV Player
[2011/01/21 23:14:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FLV Player
[2011/01/21 23:14:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FLV Player
[2011/01/21 23:12:54 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Roaming\Apple Computer
[2011/01/21 23:12:54 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Local\Apple Computer
[2011/01/21 23:12:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2011/01/21 23:12:37 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011/01/21 23:12:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2011/01/21 23:12:37 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011/01/21 23:12:37 | 000,000,000 | ---D | C] -- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
[2011/01/21 23:10:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2011/01/21 23:10:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2011/01/21 23:10:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2011/01/21 23:10:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2011/01/21 23:10:50 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Local\Apple
[2011/01/21 23:10:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2011/01/21 23:10:40 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2011/01/21 23:10:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bonjour
[2011/01/21 23:10:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2011/01/21 23:10:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple
[2011/01/21 22:30:42 | 000,000,000 | ---D | C] -- C:\Hotspot Shield
[2011/01/21 21:55:13 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Roaming\skypePM
[2011/01/21 21:49:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2011/01/21 21:49:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2011/01/21 21:49:46 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2011/01/21 21:49:46 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Roaming\Skype
[2011/01/21 21:49:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2011/01/21 21:49:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Conduit
[2011/01/21 21:49:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Babylon
[2011/01/21 20:44:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2011/01/21 20:44:38 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011/01/21 20:29:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy
[2011/01/21 20:29:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2011/01/21 20:29:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spybot - Search & Destroy
[2011/01/21 20:26:22 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2011/01/21 20:17:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ControlDeck
[2011/01/21 20:16:21 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2011/01/21 20:11:02 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Roaming\Mozilla
[2011/01/21 20:11:02 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Local\Mozilla
[2011/01/21 20:10:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox
[2011/01/21 20:10:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2011/01/21 20:04:29 | 000,000,000 | -H-D | C] -- C:\ProgramData\.syncID
[2011/01/21 20:04:24 | 000,000,000 | -H-D | C] -- C:\ProgramData\.Syncables
[2011/01/21 20:04:01 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\Documents\ASUS
[2011/01/21 20:03:55 | 000,000,000 | ---D | C] -- C:\ProgramData\ASUS
[2011/01/21 20:03:54 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Local\ASUS
[2011/01/21 20:00:27 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Roaming\com.nyt.timesreader.78C54164786ADE80CB31E1C5D95607D0938C987A.1
[2011/01/21 20:00:06 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Roaming\Adobe
[2011/01/21 19:58:57 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Local\Google
[2011/01/21 19:57:50 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\Documents\ASUS WebStorage
[2011/01/21 19:57:50 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Roaming\Asus WebStorage
[2011/01/21 19:57:26 | 000,000,000 | R--D | C] -- C:\Users\Kelvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2011/01/21 19:57:26 | 000,000,000 | R--D | C] -- C:\Users\Kelvin\Searches
[2011/01/21 19:57:26 | 000,000,000 | R--D | C] -- C:\Users\Kelvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2011/01/21 19:57:26 | 000,000,000 | -H-D | C] -- C:\Users\Kelvin\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2011/01/21 19:57:19 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Roaming\Identities
[2011/01/21 19:57:17 | 000,000,000 | R--D | C] -- C:\Users\Kelvin\Contacts
[2011/01/21 19:57:05 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\eBay
[2011/01/21 19:55:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2011/01/21 19:55:48 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2011/01/21 19:55:48 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE
[2011/01/21 19:55:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Sync Framework
[2011/01/21 19:54:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
[2011/01/21 19:54:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft
[2011/01/21 19:53:56 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft
[2011/01/21 19:53:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live SkyDrive
[2011/01/21 19:53:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
[2011/01/21 19:53:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live
[2011/01/21 19:53:13 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2011/01/21 19:52:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Windows Live
[2011/01/21 19:52:09 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Local\Power2Go
[2011/01/21 19:52:07 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Local\VirtualStore
[2011/01/21 19:50:53 | 000,000,000 | -HSD | C] -- C:\Users\Kelvin\AppData\Local\Temporary Internet Files
[2011/01/21 19:50:53 | 000,000,000 | -HSD | C] -- C:\Users\Kelvin\Templates
[2011/01/21 19:50:53 | 000,000,000 | -HSD | C] -- C:\Users\Kelvin\Start Menu
[2011/01/21 19:50:53 | 000,000,000 | -HSD | C] -- C:\Users\Kelvin\SendTo
[2011/01/21 19:50:53 | 000,000,000 | -HSD | C] -- C:\Users\Kelvin\Recent
[2011/01/21 19:50:53 | 000,000,000 | -HSD | C] -- C:\Users\Kelvin\PrintHood
[2011/01/21 19:50:53 | 000,000,000 | -HSD | C] -- C:\Users\Kelvin\NetHood
[2011/01/21 19:50:53 | 000,000,000 | -HSD | C] -- C:\Users\Kelvin\Documents\My Videos
[2011/01/21 19:50:53 | 000,000,000 | -HSD | C] -- C:\Users\Kelvin\Documents\My Pictures
[2011/01/21 19:50:53 | 000,000,000 | -HSD | C] -- C:\Users\Kelvin\Documents\My Music
[2011/01/21 19:50:53 | 000,000,000 | -HSD | C] -- C:\Users\Kelvin\My Documents
[2011/01/21 19:50:53 | 000,000,000 | -HSD | C] -- C:\Users\Kelvin\Local Settings
[2011/01/21 19:50:53 | 000,000,000 | -HSD | C] -- C:\Users\Kelvin\AppData\Local\History
[2011/01/21 19:50:53 | 000,000,000 | -HSD | C] -- C:\Users\Kelvin\Cookies
[2011/01/21 19:50:53 | 000,000,000 | -HSD | C] -- C:\Users\Kelvin\Application Data
[2011/01/21 19:50:53 | 000,000,000 | -HSD | C] -- C:\Users\Kelvin\AppData\Local\Application Data
[2011/01/21 19:50:52 | 000,000,000 | --SD | C] -- C:\Users\Kelvin\AppData\Roaming\Microsoft
[2011/01/21 19:50:52 | 000,000,000 | R--D | C] -- C:\Users\Kelvin\Videos
[2011/01/21 19:50:52 | 000,000,000 | R--D | C] -- C:\Users\Kelvin\Saved Games
[2011/01/21 19:50:52 | 000,000,000 | R--D | C] -- C:\Users\Kelvin\Pictures
[2011/01/21 19:50:52 | 000,000,000 | R--D | C] -- C:\Users\Kelvin\Music
[2011/01/21 19:50:52 | 000,000,000 | R--D | C] -- C:\Users\Kelvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2011/01/21 19:50:52 | 000,000,000 | R--D | C] -- C:\Users\Kelvin\Links
[2011/01/21 19:50:52 | 000,000,000 | R--D | C] -- C:\Users\Kelvin\Favorites
[2011/01/21 19:50:52 | 000,000,000 | R--D | C] -- C:\Users\Kelvin\Downloads
[2011/01/21 19:50:52 | 000,000,000 | R--D | C] -- C:\Users\Kelvin\My Documents
[2011/01/21 19:50:52 | 000,000,000 | R--D | C] -- C:\Users\Kelvin\Desktop
[2011/01/21 19:50:52 | 000,000,000 | R--D | C] -- C:\Users\Kelvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2011/01/21 19:50:52 | 000,000,000 | -H-D | C] -- C:\Users\Kelvin\AppData
[2011/01/21 19:50:52 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Local\Temp
[2011/01/21 19:50:52 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Local\Microsoft
[2011/01/21 19:50:52 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Roaming\Media Center Programs
[2011/01/21 19:50:52 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Roaming\Macromedia
[2011/01/21 19:50:52 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink Blu-ray Disc Suite
[2011/01/21 19:50:52 | 000,000,000 | ---D | C] -- C:\Users\Kelvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASUS Video Magic

========== Files - Modified Within 30 Days ==========

[2011/01/26 02:04:00 | 000,000,912 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/01/26 01:58:29 | 000,009,696 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/01/26 01:58:29 | 000,009,696 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/01/26 01:53:04 | 000,002,112 | ---- | M] () -- C:\Windows\SysNative\AutoRunFilter.ini
[2011/01/26 01:52:59 | 000,001,347 | ---- | M] () -- C:\Windows\SysNative\ServiceFilter.ini
[2011/01/26 01:51:30 | 000,045,056 | ---- | M] () -- C:\Windows\SysNative\acovcnt.exe
[2011/01/26 01:51:30 | 000,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/01/26 01:50:59 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/01/26 01:50:57 | 3054,878,720 | -HS- | M] () -- C:\hiberfil.sys
[2011/01/26 01:50:00 | 000,002,016 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2011/01/26 01:39:04 | 000,001,112 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
[2011/01/26 01:37:59 | 000,001,975 | ---- | M] () -- C:\Users\Kelvin\Desktop\Update Checker.lnk
[2011/01/26 00:47:13 | 000,300,840 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011/01/26 00:42:42 | 000,022,709 | ---- | M] () -- C:\Users\Kelvin\Documents\Introduction to Educational Psychology Quiz 2 no answer.docx
[2011/01/26 00:41:31 | 000,023,242 | ---- | M] () -- C:\Users\Kelvin\Documents\Introduction to Educational Psychology Quiz 2.docx
[2011/01/25 09:00:18 | 000,000,201 | ---- | M] () -- C:\Users\Public\Desktop\eBay.url
[2011/01/25 09:00:18 | 000,000,201 | ---- | M] () -- C:\Users\Kelvin\Application Data\Microsoft\Internet Explorer\Quick Launch\eBay.url
[2011/01/25 09:00:03 | 000,001,260 | ---- | M] () -- C:\Users\Kelvin\Application Data\Microsoft\Internet Explorer\Quick Launch\Foxit Reader.lnk
[2011/01/25 09:00:03 | 000,001,236 | ---- | M] () -- C:\Users\Public\Desktop\Foxit Reader.lnk
[2011/01/25 08:47:05 | 000,000,162 | -H-- | M] () -- C:\Users\Kelvin\Desktop\~$w Rich Text Document.rtf
[2011/01/24 23:49:20 | 000,110,592 | ---- | M] () -- C:\Users\Kelvin\Documents\Kelvin Lee CV 2010.doc
[2011/01/24 21:11:11 | 000,879,028 | ---- | M] () -- C:\Users\Kelvin\Desktop\SecurityCheck.exe
[2011/01/23 16:37:52 | 004,133,268 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011/01/23 16:37:52 | 000,687,498 | ---- | M] () -- C:\Windows\SysNative\perfh00C.dat
[2011/01/23 16:37:52 | 000,686,544 | ---- | M] () -- C:\Windows\SysNative\perfh00A.dat
[2011/01/23 16:37:52 | 000,672,628 | ---- | M] () -- C:\Windows\SysNative\prfh0816.dat
[2011/01/23 16:37:52 | 000,609,734 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011/01/23 16:37:52 | 000,373,842 | ---- | M] () -- C:\Windows\SysNative\prfh0404.dat
[2011/01/23 16:37:52 | 000,357,872 | ---- | M] () -- C:\Windows\SysNative\prfh0804.dat
[2011/01/23 16:37:52 | 000,134,890 | ---- | M] () -- C:\Windows\SysNative\perfc00A.dat
[2011/01/23 16:37:52 | 000,131,772 | ---- | M] () -- C:\Windows\SysNative\prfc0816.dat
[2011/01/23 16:37:52 | 000,128,256 | ---- | M] () -- C:\Windows\SysNative\perfc00C.dat
[2011/01/23 16:37:52 | 000,104,754 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011/01/23 16:37:52 | 000,102,614 | ---- | M] () -- C:\Windows\SysNative\prfc0804.dat
[2011/01/23 16:37:52 | 000,097,700 | ---- | M] () -- C:\Windows\SysNative\prfc0404.dat
[2011/01/23 01:20:14 | 000,001,115 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/01/22 22:39:35 | 000,002,154 | ---- | M] () -- C:\Windows\epplauncher.mif
[2011/01/22 22:04:26 | 004,065,638 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011/01/22 20:54:21 | 000,002,309 | ---- | M] () -- C:\Users\Kelvin\Documents\New Database.odb
[2011/01/22 20:50:57 | 000,001,241 | ---- | M] () -- C:\Users\Kelvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk
[2011/01/22 20:37:54 | 000,001,120 | ---- | M] () -- C:\Users\Public\Desktop\OpenOffice.org 3.2.lnk
[2011/01/22 11:49:31 | 000,039,252 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2011/01/22 11:49:31 | 000,039,252 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2011/01/21 23:14:36 | 000,001,916 | ---- | M] () -- C:\Users\Public\Desktop\FLV Player.lnk
[2011/01/21 23:12:51 | 000,001,785 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011/01/21 23:10:59 | 000,001,847 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2011/01/21 21:50:35 | 000,002,061 | ---- | M] () -- C:\Users\Kelvin\Desktop\Check PC For Errors.lnk
[2011/01/21 21:50:35 | 000,002,045 | ---- | M] () -- C:\Users\Kelvin\Application Data\Microsoft\Internet Explorer\Quick Launch\Check PC For Errors.lnk
[2011/01/21 21:49:47 | 000,002,515 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2011/01/21 21:36:50 | 000,000,824 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\tmvsthfud.bin
[2011/01/21 21:36:45 | 000,000,824 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\tmvsthfss.bin
[2011/01/21 21:13:38 | 000,000,080 | ---- | M] () -- C:\Windows\SysNative\Defrag.ini
[2011/01/21 20:45:40 | 000,017,044 | ---- | M] () -- C:\Users\Kelvin\Documents\cc_20110121_204534.reg
[2011/01/21 20:44:40 | 000,000,824 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011/01/21 20:30:01 | 000,001,288 | ---- | M] () -- C:\Users\Kelvin\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk
[2011/01/21 20:30:01 | 000,001,264 | ---- | M] () -- C:\Users\Kelvin\Desktop\Spybot - Search & Destroy.lnk
[2011/01/21 20:17:32 | 000,002,595 | ---- | M] () -- C:\Users\Public\Desktop\ControlDeck.lnk
[2011/01/21 20:10:59 | 000,001,969 | ---- | M] () -- C:\Users\Kelvin\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/01/21 20:10:59 | 000,001,945 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011/01/21 20:07:39 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\drivers\1043_ASUSTeK_N53Jf.alu
[2011/01/21 20:05:15 | 000,000,024 | ---- | M] () -- C:\Windows\ATKPF.ini
[2011/01/21 19:58:55 | 000,001,443 | ---- | M] () -- C:\Users\Kelvin\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/01/21 19:54:47 | 000,000,020 | ---- | M] () -- C:\Windows\DÃ³´

========== Files Created - No Company Name ==========

[2011/01/26 01:47:20 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
[2011/01/26 01:47:20 | 000,002,016 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2011/01/26 01:39:04 | 000,001,112 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
[2011/01/26 01:39:04 | 000,001,075 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk
[2011/01/26 01:37:59 | 000,002,005 | ---- | C] () -- C:\Users\Kelvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Update Checker.lnk
[2011/01/26 01:37:59 | 000,001,975 | ---- | C] () -- C:\Users\Kelvin\Desktop\Update Checker.lnk
[2011/01/26 00:42:19 | 000,022,709 | ---- | C] () -- C:\Users\Kelvin\Documents\Introduction to Educational Psychology Quiz 2 no answer.docx
[2011/01/26 00:31:48 | 000,023,242 | ---- | C] () -- C:\Users\Kelvin\Documents\Introduction to Educational Psychology Quiz 2.docx
[2011/01/25 22:24:03 | 000,002,543 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft PowerPoint Viewer .lnk
[2011/01/25 09:00:18 | 000,000,201 | ---- | C] () -- C:\Users\Public\Desktop\eBay.url
[2011/01/25 09:00:18 | 000,000,201 | ---- | C] () -- C:\Users\Kelvin\Application Data\Microsoft\Internet Explorer\Quick Launch\eBay.url
[2011/01/25 09:00:18 | 000,000,201 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.url
[2011/01/25 09:00:03 | 000,001,260 | ---- | C] () -- C:\Users\Kelvin\Application Data\Microsoft\Internet Explorer\Quick Launch\Foxit Reader.lnk
[2011/01/25 09:00:03 | 000,001,236 | ---- | C] () -- C:\Users\Public\Desktop\Foxit Reader.lnk
[2011/01/25 08:47:05 | 000,000,162 | -H-- | C] () -- C:\Users\Kelvin\Desktop\~$w Rich Text Document.rtf
[2011/01/24 23:49:19 | 000,110,592 | ---- | C] () -- C:\Users\Kelvin\Documents\Kelvin Lee CV 2010.doc
[2011/01/24 21:11:49 | 000,879,028 | ---- | C] () -- C:\Users\Kelvin\Desktop\SecurityCheck.exe
[2011/01/23 01:20:14 | 000,001,115 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/01/22 22:39:35 | 000,002,154 | ---- | C] () -- C:\Windows\epplauncher.mif
[2011/01/22 22:39:23 | 000,001,899 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2011/01/22 20:54:14 | 000,002,309 | ---- | C] () -- C:\Users\Kelvin\Documents\New Database.odb
[2011/01/22 20:50:57 | 000,001,241 | ---- | C] () -- C:\Users\Kelvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk
[2011/01/22 20:37:54 | 000,001,120 | ---- | C] () -- C:\Users\Public\Desktop\OpenOffice.org 3.2.lnk
[2011/01/22 19:26:17 | 004,133,268 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011/01/22 11:46:46 | 3054,878,720 | -HS- | C] () -- C:\hiberfil.sys
[2011/01/21 23:14:36 | 000,001,916 | ---- | C] () -- C:\Users\Public\Desktop\FLV Player.lnk
[2011/01/21 23:12:51 | 000,001,785 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011/01/21 23:10:59 | 000,001,847 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2011/01/21 23:10:50 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2011/01/21 21:50:35 | 000,002,061 | ---- | C] () -- C:\Users\Kelvin\Desktop\Check PC For Errors.lnk
[2011/01/21 21:50:35 | 000,002,045 | ---- | C] () -- C:\Users\Kelvin\Application Data\Microsoft\Internet Explorer\Quick Launch\Check PC For Errors.lnk
[2011/01/21 21:49:47 | 000,002,515 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2011/01/21 20:45:37 | 000,017,044 | ---- | C] () -- C:\Users\Kelvin\Documents\cc_20110121_204534.reg
[2011/01/21 20:44:40 | 000,000,824 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011/01/21 20:30:01 | 000,001,288 | ---- | C] () -- C:\Users\Kelvin\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk
[2011/01/21 20:30:01 | 000,001,264 | ---- | C] () -- C:\Users\Kelvin\Desktop\Spybot - Search & Destroy.lnk
[2011/01/21 20:10:59 | 000,001,969 | ---- | C] () -- C:\Users\Kelvin\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/01/21 20:10:59 | 000,001,945 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011/01/21 20:07:39 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\drivers\1043_ASUSTeK_N53Jf.alu
[2011/01/21 20:03:48 | 000,000,024 | ---- | C] () -- C:\Windows\ATKPF.ini
[2011/01/21 19:58:55 | 000,001,443 | ---- | C] () -- C:\Users\Kelvin\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/01/21 19:57:32 | 000,001,415 | ---- | C] () -- C:\Users\Kelvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[2011/01/21 19:57:29 | 000,001,449 | ---- | C] () -- C:\Users\Kelvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2011/01/21 19:57:05 | 000,000,392 | ---- | C] () -- C:\Users\Public\Desktop\eBay.lnk
[2011/01/21 19:54:47 | 000,000,020 | ---- | C] () -- C:\Windows\DÃ³´
[2011/01/21 19:51:02 | 000,045,056 | ---- | C] () -- C:\Windows\SysNative\acovcnt.exe
[2011/01/21 19:50:52 | 000,002,180 | ---- | C] () -- C:\Users\Kelvin\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2011/01/21 19:50:52 | 000,000,290 | ---- | C] () -- C:\Users\Kelvin\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2011/01/21 19:50:52 | 000,000,272 | ---- | C] () -- C:\Users\Kelvin\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2010/11/07 10:45:23 | 000,000,105 | ---- | C] () -- C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
[2010/11/07 10:45:03 | 000,000,107 | ---- | C] () -- C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
[2010/11/07 10:44:24 | 000,000,105 | ---- | C] () -- C:\ProgramData\{d36dd326-7280-11d8-97c8-000129760cbe}.log
[2010/11/07 10:44:09 | 000,000,109 | ---- | C] () -- C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
[2010/11/07 10:43:04 | 000,000,106 | ---- | C] () -- C:\ProgramData\{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}.log
[2010/11/07 10:39:57 | 000,000,110 | ---- | C] () -- C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log
[2010/11/07 10:38:43 | 000,000,115 | ---- | C] () -- C:\ProgramData\{E3739848-5329-48E3-8D28-5BBD6E8BE384}.log
[2010/07/29 01:44:37 | 000,208,896 | ---- | C] () -- C:\Windows\SysWow64\iglhsip32.dll
[2010/07/29 01:44:37 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\iglhcp32.dll
[2010/02/09 15:07:38 | 000,000,269 | ---- | C] () -- C:\Windows\OOBEPlayer.ini
[2009/07/29 13:20:40 | 000,000,010 | ---- | C] () -- C:\Windows\SysWow64\ABLKSR.ini
[2009/07/14 07:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/14 05:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2006/05/19 11:39:57 | 000,015,497 | ---- | C] () -- C:\Windows\snp2uvc.ini

========== LOP Check ==========

[2011/01/21 19:58:38 | 000,000,000 | ---D | M] -- C:\Users\Kelvin\AppData\Roaming\Asus WebStorage
[2011/01/21 20:00:27 | 000,000,000 | ---D | M] -- C:\Users\Kelvin\AppData\Roaming\com.nyt.timesreader.78C54164786ADE80CB31E1C5D95607D0938C987A.1
[2011/01/25 09:00:18 | 000,000,000 | ---D | M] -- C:\Users\Kelvin\AppData\Roaming\Foxit
[2011/01/25 09:00:18 | 000,000,000 | ---D | M] -- C:\Users\Kelvin\AppData\Roaming\Foxit Software
[2011/01/22 20:50:30 | 000,000,000 | ---D | M] -- C:\Users\Kelvin\AppData\Roaming\OpenOffice.org
[2011/01/26 01:50:14 | 000,000,000 | ---D | M] -- C:\Users\Kelvin\AppData\Roaming\SoftGrid Client
[2011/01/22 19:26:51 | 000,000,000 | ---D | M] -- C:\Users\Kelvin\AppData\Roaming\TP
[2009/07/14 13:08:49 | 000,009,874 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========

< End of report >

mrbiglive · 2011/01/25

Extras.txt
---
OTL Extras logfile created on: 1/26/2011 2:36:31 AM - Run 1
OTL by OldTimer - Version 3.2.20.5 Folder = C:\Users\Kelvin\Downloads
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: Singapore | Language: ENE | Date Format: d/M/yyyy

4.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 53.00% Memory free
8.00 Gb Paging File | 5.00 Gb Available in Paging File | 72.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 444.27 Gb Total Space | 413.56 Gb Free Space | 93.09% Space Free | Partition Type: NTFS

Computer Name: KELVIN-PC | User Name: Kelvin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\System32\ieframe.DLL (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- C:\Windows\System32\ieframe.DLL (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection DefaultInstall 132 %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll ",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll ",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1 ",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll ",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll ",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1 "
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== System Restore Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0C682623-8F66-46A8-B9B3-93FE1E66A001}" = iTunes
"{13F4A7F3-EABC-4261-AF6B-1317777F0755}" = Fast Boot
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{39F4C6F9-618A-4E5B-8FB2-6BD661174E32}" = Intel(R) Turbo Boost Technology Monitor
"{48B0F24F-B828-4B1A-A22E-C65454B32A7A}" = Windows Live Family Safety
"{774088D4-0777-4D78-904D-E435B318F5D2}" = Microsoft Antimalware
"{7F2540AD-FD82-427A-8FDC-33EC53C8B17A}" = Fresco Logic USB3.0 Host Controller
"{90140000-006D-0409-1000-0000000FF1CE}" = Microsoft Office Click-to-Run 2010
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{963BFE7E-C350-4346-B43C-B02358306A45}" = Apple Mobile Device Support
"{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}" = ASUS Power4Gear Hybrid
"{E4F5E48E-7155-4CF9-88CD-7F377EC9AC54}" = Bonjour
"{E77543EE-6FB5-4FF6-AB70-635392C8C756}" = Microsoft Security Client
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"CCleaner" = CCleaner
"Elantech" = ETDWare PS/2-x64 7.0.5.13_WHQL
"Microsoft Security Client" = Microsoft Security Essentials
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"USB2.0 UVC 2M WebCam" = USB2.0 UVC 2M WebCam

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{020D8396-D6D9-4B53-A9A1-83C47E2E27AA}" = Windows Live Call
"{0969AF05-4FF6-4C00-9406-43599238DE0D}" = ASUS Splendid Video Enhancement Technology
"{09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}" = SonicMaster
"{0AAA9C97-74D4-47CE-B089-0B147EF3553C}" = Windows Live Messenger
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}" = ASUS LifeFrame3
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F7424F8-F992-48BC-90EF-7C4DB0405E3F}" = Alcor Micro USB Card Reader
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = ASUS Video Magic
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}" = Wireless Console 3
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 23
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{299CF645-48C7-4FA1-8BCD-5CE200CF180D}" = Microsoft Search Enhancement Pack
"{2B4C7E1E-E446-4740-ADB5-9842E742EE8A}" = Windows Live Toolbar
"{341697D8-9923-445E-B42A-529E5A99CB7A}" = syncables desktop SE
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}" = Adobe AIR
"{491ADA37-04EE-2ECE-9F86-DDC0106047AC}" = Times Reader
"{499DED08-6FA8-4749-8E94-8526CC9D1CA8}" = ExpressGate Cloud
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AB8B41B-3AF1-46BE-99B0-0ACD3B300C0A}" = Junk Mail filter update
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{5A13987D-55F4-4271-A40E-76AC9B1B38FD}" = OpenOffice.org 3.2
"{5B65EF64-1DFA-414A-8C94-7BB726158E21}" = ControlDeck
"{63C1109E-D977-49ED-BCE3-D00D0BF187D6}" = Windows Live Mail
"{64452561-169F-4A36-A2FF-B5E118EC65F5}" = ASUS SmartLogon
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{6A92E5C5-0578-443D-91F3-92ECE5F2CAE2}" = Windows Live Writer
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7BF67A61-BE7C-4806-B93C-97F299D6A6FE}" = ASUS AI Recovery
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8F21291E-0444-4B1D-B9F9-4370A73E346D}" = WinFlash
"{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard
"{90140011-0066-0409-0000-0000000FF1CE}" = Microsoft Office Starter 2010 - English
"{9422C8EA-B0C6-4197-B8FC-DC797658CA00}" = Windows Live Sign-in Assistant
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{95140000-00AF-0409-0000-0000000FF1CE}" = Microsoft PowerPoint Viewer
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9D48531D-2135-49FC-BC29-ACCDA5396A76}" = ASUS MultiFrame
"{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}" = CyberLink PowerDVD 9
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}" = ATK Package
"{AC76BA86-7AD7-1033-7B44-A94000000001}" = Adobe Reader 9.4.1
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B653A2EC-D816-4498-A4FD-651047AB9DC9}" = Boingo Wi-Fi
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = CyberLink PowerDirector
"{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars
"{D36DD326-7280-11D8-97C8-000129760CBE}" = CyberLink PhotoNow
"{D9D754A1-EAC5-406C-A28B-C49B1E846711}" = Windows Live Essentials
"{E3739848-5329-48E3-8D28-5BBD6E8BE384}" = CyberLink MediaShow Espresso
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.1
"{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}" = ASUS Live Update
"{E71E60C1-533E-45A5-8D80-E475E88D2B17}_is1" = Game Park Console
"{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}" = ASUS Virtual Camera
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Graphics Media Accelerator Driver
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F69E83CF-B440-43F8-89E6-6EA80712109B}" = Windows Live Communications Platform
"{F73A5B18-EB75-4B2C-B32D-9457576E2417}" = Windows Live Photo Gallery
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}" = Visual Studio 2008 x64 Redistributables
"{FDD810CA-D5E3-40E9-AB7B-36440B0D41EF}" = Windows Live Sync
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Advanced Registry Optimizer_is1" = Advanced Registry Optimizer
"Amazon Kindle For PC" = Amazon Kindle For PC v1.0
"ASUS AP Bank_is1" = ASUS AP Bank
"ASUS WebStorage" = ASUS WebStorage
"ASUS_N3_Series" = ASUS_N3_Series
"Bookworm Deluxe" = Bookworm Deluxe
"com.nyt.timesreader.78C54164786ADE80CB31E1C5D95607D0938C987A.1" = Times Reader
"Cooking Dash" = Cooking Dash
"Digsby" = Digsby
"ESET Online Scanner" = ESET Online Scanner v3
"FileHippo.com" = FileHippo.com Update Checker
"FLV Player2.0.25" = FLV Player
"Foxit Reader" = Foxit Reader
"Google Chrome" = Google Chrome
"Governor of Poker" = Governor of Poker
"Hotel Dash Suite Success" = Hotel Dash Suite Success
"InstallShield_{1F7424F8-F992-48BC-90EF-7C4DB0405E3F}" = Alcor Micro USB Card Reader
"InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = ASUS Video Magic
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"InstallShield_{499DED08-6FA8-4749-8E94-8526CC9D1CA8}" = ExpressGate Cloud
"InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}" = CyberLink PowerDVD 9
"InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint
"InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = CyberLink PowerDirector
"InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}" = CyberLink PhotoNow
"InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}" = CyberLink MediaShow Espresso
"Jewel Quest 3" = Jewel Quest 3
"Luxor 3" = Luxor 3
"Mahjongg dimensions" = Mahjongg dimensions
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox (3.6.13)" = Mozilla Firefox (3.6.13)
"NVIDIA.Updatus" = NVIDIA Updatus
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Office14.Click2Run" = Microsoft Office Click-to-Run 2010
"Plants vs Zombies" = Plants vs Zombies
"Secunia PSI" = Secunia PSI (2.0.0.3001)
"WinLiveSuite_Wave3" = Windows Live Essentials
"World of Goo" = World of Goo

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 1/22/2011 10:29:28 AM | Computer Name = Kelvin-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 1/22/2011 10:29:28 AM | Computer Name = Kelvin-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 14040

Error - 1/22/2011 10:29:28 AM | Computer Name = Kelvin-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 14040

Error - 1/22/2011 10:39:19 AM | Computer Name = Kelvin-PC | Source = System Restore | ID = 8193
Description =

Error - 1/22/2011 10:39:19 AM | Computer Name = Kelvin-PC | Source = System Restore | ID = 8193
Description =

Error - 1/22/2011 11:00:26 AM | Computer Name = Kelvin-PC | Source = System Restore | ID = 8193
Description =

Error - 1/22/2011 3:00:11 PM | Computer Name = Kelvin-PC | Source = System Restore | ID = 8193
Description =

Error - 1/22/2011 3:00:12 PM | Computer Name = Kelvin-PC | Source = System Restore | ID = 8193
Description =

Error - 1/22/2011 3:00:28 PM | Computer Name = Kelvin-PC | Source = MsiInstaller | ID = 11935
Description =

Error - 1/22/2011 4:41:09 PM | Computer Name = Kelvin-PC | Source = System Restore | ID = 8193
Description =

[ System Events ]
Error - 1/24/2011 9:05:21 AM | Computer Name = Kelvin-PC | Source = Service Control Manager | ID = 7034
Description = The ATKGFNEX Service service terminated unexpectedly. It has done
this 1 time(s).

Error - 1/24/2011 9:15:04 AM | Computer Name = Kelvin-PC | Source = Service Control Manager | ID = 7034
Description = The ASLDR Service service terminated unexpectedly. It has done this
1 time(s).

Error - 1/24/2011 10:42:56 AM | Computer Name = Kelvin-PC | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the lmhosts service.

Error - 1/24/2011 8:44:51 PM | Computer Name = Kelvin-PC | Source = Service Control Manager | ID = 7034
Description = The ASLDR Service service terminated unexpectedly. It has done this
1 time(s).

Error - 1/24/2011 8:46:36 PM | Computer Name = Kelvin-PC | Source = Service Control Manager | ID = 7034
Description = The ATKGFNEX Service service terminated unexpectedly. It has done
this 1 time(s).

Error - 1/24/2011 8:49:17 PM | Computer Name = Kelvin-PC | Source = Service Control Manager | ID = 7031
Description = The Apple Mobile Device service terminated unexpectedly. It has done
this 1 time(s). The following corrective action will be taken in 60000 milliseconds:
Restart the service.

Error - 1/24/2011 8:49:41 PM | Computer Name = Kelvin-PC | Source = Service Control Manager | ID = 7034
Description = The Bonjour Service service terminated unexpectedly. It has done
this 1 time(s).

Error - 1/24/2011 8:50:36 PM | Computer Name = Kelvin-PC | Source = Service Control Manager | ID = 7031
Description = The Hotspot Shield Service service terminated unexpectedly. It has
done this 1 time(s). The following corrective action will be taken in 0 milliseconds:
Restart the service.

Error - 1/24/2011 8:51:54 PM | Computer Name = Kelvin-PC | Source = Service Control Manager | ID = 7031
Description = The Hotspot Shield Routing Service service terminated unexpectedly.
It has done this 1 time(s). The following corrective action will be taken in
0 milliseconds: Restart the service.

Error - 1/24/2011 8:53:28 PM | Computer Name = Kelvin-PC | Source = Service Control Manager | ID = 7034
Description = The Hotspot Shield Monitoring Service service terminated unexpectedly.
It has done this 1 time(s).

< End of report >

broni · 2011/01/25

Run OTL
Under the [color= "#0000FF"]Custom Scans/Fixes[/color] box at the bottom, paste in the following
Code:
:OTL
FF - prefs.js..browser.search.defaultenginename:  "Search the web (Babylon) "
FF - prefs.js..browser.search.defaulturl:  "http://search.babylon.com/web/{searchTerms}?babsrc=browsersearch&AF=15000 "
FF - prefs.js..browser.search.order.1:  "Search the web (Babylon) "
FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.9.1.14019
[2011/01/25 21:22:27 | 000,000,000 | ---D | M] (Foxit PDF Creator Toolbar) -- C:\Users\Kelvin\AppData\Roaming\Mozilla\Firefox\Profiles\m303u31u.default\e xtensions\toolbar@ask.com
[2011/01/21 21:49:17 | 000,002,226 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml

:Commands
[purity]
[emptytemp]
[emptyflash]
[Reboot]
Then click the [color= "#FF0000"]Run Fix[/color] button at the top

Let the program run unhindered, reboot the PC when it is done

You will get a log that shows the results of the fix. Please post it.
Check for redirections.

Log in or Sign up

Solved Redirected to Qbyrd and Ask.com

broni Moderator Malware Analyst

mrbiglive Inactive Thread Starter

broni Moderator Malware Analyst

mrbiglive Inactive Thread Starter

broni Moderator Malware Analyst

mrbiglive Inactive Thread Starter

broni Moderator Malware Analyst

mrbiglive Inactive Thread Starter

mrbiglive Inactive Thread Starter

broni Moderator Malware Analyst

mrbiglive Inactive Thread Starter

broni Moderator Malware Analyst

mrbiglive Inactive Thread Starter

broni Moderator Malware Analyst

mrbiglive Inactive Thread Starter

broni Moderator Malware Analyst

mrbiglive Inactive Thread Starter

mrbiglive Inactive Thread Starter

mrbiglive Inactive Thread Starter

broni Moderator Malware Analyst

Share This Page

Log in or Sign up

Solved Redirected to Qbyrd and Ask.com

broni Moderator Malware Analyst

mrbiglive Inactive Thread Starter

broni Moderator Malware Analyst

mrbiglive Inactive Thread Starter

broni Moderator Malware Analyst

mrbiglive Inactive Thread Starter

broni Moderator Malware Analyst

mrbiglive Inactive Thread Starter

mrbiglive Inactive Thread Starter

broni Moderator Malware Analyst

mrbiglive Inactive Thread Starter

broni Moderator Malware Analyst

mrbiglive Inactive Thread Starter

broni Moderator Malware Analyst

mrbiglive Inactive Thread Starter

broni Moderator Malware Analyst

mrbiglive Inactive Thread Starter

mrbiglive Inactive Thread Starter

mrbiglive Inactive Thread Starter

broni Moderator Malware Analyst

Share This Page

Useful Searches