Solved IE9 and Google Chrome stop working.

Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D53F4263-07E6-46C8-A48F-D1A982DF4428}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D54F40A9-B81C-41AB-A610-3FD3EFD49AEB}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D5A0E7FE-7357-45C8-8FDD-5456DD8413E5}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D5A12507-CC36-4AE2-9096-924208C30323}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D5A704AC-BB6C-4595-A21F-04C13017EA47}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D5D1FB18-E3A2-4BB5-ADFE-BCE36D7E541E}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D5D8DD87-4BDD-41EA-9FC3-019D3A44BB88}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D5FF8DA6-6A0A-4E13-86C5-BD32A6A75D7C}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D63217A4-6D44-41F5-835F-D3E16B11C6F3}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D687B55C-7618-4F83-9396-FC31D827EC7A}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D6902E5B-013B-4418-BCF1-3E5C1165FF35}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D6A0510D-6804-439D-A51A-FA174AC8675C}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D7201E05-28B2-4A7A-A7F6-97BB22EA6C25}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D7303250-51EF-4F25-BFDD-E6AD07871595}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D730D15B-E5A7-4F08-AE80-5A0453B63B40}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D74467DD-5CA7-48AE-A4B6-C2ED002195A7}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D75FB43B-2B2E-4D5E-85B0-583A8BD33459}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D760BB29-7000-4866-A891-E32033ABFC35}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D773C59C-29E2-49D6-92B8-FEBED6038430}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D7AC040A-845E-47AE-BD13-19C26E6BDC8B}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D7D2A06C-C64B-4E60-BB0F-9C98777E8F1A}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D7EF2577-5A60-4C0F-9CE8-B27C516D3CAD}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D80D22F3-CE08-4C2E-80D9-219417549E56}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D830105C-F439-4479-B407-D104350106AF}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D8C0F839-27E8-44B3-A6E2-A718D86AE913}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D8D34FFF-4740-4F94-8E24-5C5089B59076}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D8D4BD9B-D188-400F-A5A7-A580DE483126}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D8E15E0A-E841-4984-9836-B5226DEA58AE}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D8EA923A-B750-4373-877E-4939EAADB420}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D9026660-C07C-4B23-8F6C-451AAA8E3212}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D91B4446-4660-4454-9C2B-2C2B9057FD55}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D92BA37A-CC35-4EB1-9979-8ACDD2465BB6}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D9706EA7-2A3E-4B12-A055-C3028CD77178}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D9714D02-7FCE-40F3-8B12-ACAA442FF9EF}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D978305B-BD31-4CEE-AC79-40D3A76BF13C}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D97EFDAA-65D2-4294-8896-EFAA387192B3}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D9800222-25CF-4C6A-B238-17C19E1DFF71}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D9A1ACE1-F37D-432A-A75A-397D78C072F0}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D9A26C75-D8EA-4917-A22B-72626D1367A1}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D9B5A768-0714-43BF-9CED-554722AB5C55}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{D9EADC42-DE75-44BE-AFDA-8684DD6EA916}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DA4DEB4A-85AB-4B23-8464-C7A3180B67AB}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DA71AA50-D88E-4692-ACAE-B542A3D86E14}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DA9331D2-5253-46C3-87CC-D3424ADC003E}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DA93E3AF-FD35-4AAD-A445-913A47CA5C17}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DAC9F578-BA67-45B4-BB3D-D1D607905720}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DACA4E79-27B9-4D72-837C-57F6B50E36E1}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DAD1F7B6-FC0F-4585-A396-78E334F5CDA8}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DAE7E071-9E0D-4EBA-9B9C-C33B68E69690}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DAE8AB32-8681-4BA6-80C4-9B03F0B5F579}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DAFDE6F9-8B27-4024-9757-FA3B279D168B}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DB473541-47EE-4BB1-84A6-A76816001084}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DB7A50E6-2D2F-406C-B6F4-49058EDA6061}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DB7CE198-2685-4AE3-AFAD-0B24BF42C13C}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DB98D6C5-BEC9-48E8-A7B6-A2B7E1AA063C}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DC17A58B-7CA9-437C-A593-264776D5199B}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DC2EEA95-4297-4E91-B883-F4523C18A725}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DC72F689-534A-4534-91E9-9B7ABC582197}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DC949E75-B846-4A3A-A041-CD695375A167}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DD040742-D6E4-4E3A-8144-2A40B040E06D}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DD388D2C-0EFA-407F-AC9E-7F5B1F19CF65}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DD3E3008-3A03-4A29-B69E-0F6C52BF8A11}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DD9A106D-68D3-4A74-87C3-DF99B3C2D753}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DDA366CD-4001-4A92-99FA-EA288CE534CD}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DDF60AD3-89FE-41C8-B055-83B56D483CA5}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DE2065E1-61D9-41AE-8508-A04577524E87}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DE3FAC45-9067-4562-A4CF-7653CFB3405B}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DE5D97D1-2FE4-46C3-B7BA-F6ACF771EFC1}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DE8824D7-873E-4B4D-B59B-5B014D9FC4D9}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DEC887ED-D95C-42EC-8472-E2D16B242F3B}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DEE50BF4-911C-45A0-88E6-9EC5AEC54E54}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DEFB7AC1-FECE-47FA-BFC8-5ABF1DDA8FD9}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DF3C3213-E16A-46BD-82A9-7A7827D32543}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DF501359-1B22-4F33-AA0E-1DCD4D4235BC}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DF70A6B0-90C7-4C52-80D6-D151667B51FF}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DF922215-E279-4941-A068-577B8CEF3DD8}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DF97E587-B475-4CA2-9042-98BE8EF694E5}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{DFC981D4-32DA-4486-8C03-458DFD5D156A}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E00DF500-CEB5-4A2A-A29A-20588BA54D54}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E066BBDA-2DE9-409A-9BB6-0C5D98CECA72}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E0E45365-94D5-4D45-B4CD-CB57FDDE06FA}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E10316D8-BCB5-4438-9E68-FC1B4C5CC5D8}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E126366B-8610-4B23-8E35-37D288F0E499}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E13BBE90-FF2D-4B08-9DCD-C8BB0E5B1119}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E167407F-0EC6-4C8F-8847-36D64929EBD9}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E176B34C-B282-4D3B-A13D-B7E0C619A5F4}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E19E631E-981A-400F-96CA-702F28E454ED}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E1D22F57-0A01-415F-98F7-004A48789FEC}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E206AFC9-B572-44A1-8465-1B5B1E4B7AE5}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E270B07B-5E24-4C7E-A813-A3E752B4AA4F}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E2955981-C45D-4637-AF4F-E37C8A5F0BC9}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E2B30223-E68B-40FC-9009-2717BB66483B}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E2B5AE6D-B8A2-41B9-8D63-597A03A6088D}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E2CD072F-A95A-43CF-AC63-3760A5D5029C}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E2D0CE31-E687-4A84-9B89-151326BEE9F2}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E303FECC-53A8-4F60-AC37-679315C77445}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E30C5FF8-4F54-4977-8C21-4181CFA7D362}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E3252735-011C-446A-909D-4C7DE4CFF083}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E3793883-517F-4E8E-A075-E7FD0F2A4AFF}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E38E6CF2-F1F2-4C75-A92C-637649CBD4E4}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E41C660E-D27D-4703-83F9-33AA83CEC330}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E4245D59-3694-459F-8A42-E5E824B2F83C}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E43DFB6E-EDA7-4555-AF01-19DA1A9726A0}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E4550759-FD42-4108-94BF-418EF4B87876}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E4BAB0CB-5829-4E65-AE63-335494C3F0AB}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E4CA1378-0E5B-497B-ACAD-5CE3B26554C5}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E4E248DE-CDB5-45A1-8D92-AE47B21B8A5B}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E4F3AC3F-DF18-4555-84DE-C8161C88242B}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E50CF61C-456A-432B-B161-772B9DEC56A7}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E537BD25-1F18-42FF-994C-296F344D7182}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E54707E8-52BB-4F36-9CC6-80425BE721F6}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E59C16B0-BD00-4FAF-8FF2-F31270447815}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E5AE57CE-EBF9-4E4E-810A-35741146D1D9}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E60795A5-2137-4FD7-BB65-05E3CB03DDA4}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E60BF94F-9727-49CA-8D72-B929758FF21C}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E651177E-CA18-4636-99AB-987F5A327571}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E67F8597-909F-4482-9C35-C271C3B545CD}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E6CBEB1D-0275-4BC2-AE1E-52A9ADBBD407}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E7056986-B8BE-4823-A7DD-6385F8402166}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E73636A0-A972-4E76-B362-40C750B23960}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E84CD57D-0603-41DF-AB88-400B186DBB4A}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E88FD3D7-84EB-40F8-B0A8-428E3740F9E1}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E8D5D323-B6D1-476E-8973-B4E365605936}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E8DC155F-60BF-4460-8D4E-D782E6D867C5}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E8E0D087-2901-4869-BCB9-A8A531123F37}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E8F3AD20-FC13-4CA0-8A30-1459212EA1D9}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E96F5131-FBE1-4557-BCFD-1B1442BC49F6}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E98F0031-76B2-419B-BBE3-B1A040E89397}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E9A33957-4AA9-49C7-91D7-CAABF61B194E}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E9F46A2F-5306-4382-B601-76435821A7B5}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{E9F8E08E-64C3-4FBB-B80D-670FBE3F4135}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EA018997-9B5C-4ECC-928F-FD783D1085DC}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EA2B2AFE-2A04-421B-9080-F8C9D44AC8B1}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EA385D96-5240-4D8E-B81E-DC6934188C4D}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EA729AB6-737B-42B6-882C-2F7B2C83DB45}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EA77B349-F6F2-48E4-9273-FB041C69D954}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EA86199C-3613-4E19-ACD1-802236F1179B}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EA90B231-3C3F-47E7-822E-7BBF9E7ED312}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EAB0288E-F084-420F-8F4A-7F635573C689}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EAD4A935-988D-426E-BCC5-17ECA5D4D361}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EAD992F8-C5E6-4903-B7F7-C1015A093816}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EBC9A257-BA7D-48EB-83F1-5BD32AFA9C75}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EBE2A93F-93D8-4535-B94F-444822313F82}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EC11F204-E334-4352-8427-857154FA32DF}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EC267270-8EA1-44C2-A235-F7C9ADE9540B}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EC5DB679-AF5E-4AE2-B1BB-401D0DB8B310}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EC9617DD-3BAD-40BA-9A1F-C2A48C36EAFF}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{ECB6D39E-C917-47F8-A623-206CF0E62157}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{ECF857D4-35C6-4EEC-8E4C-1BF921E40B56}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{ED371C75-A6F4-43DB-964D-C09B48EF35BC}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{ED37F6F7-ED4C-47F6-8486-EFA09B7B2EE5}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{ED52760A-454D-4208-8F53-42840D7513B8}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EE12DEB3-EFA9-4C0F-9ED5-23CB5EA29BBE}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EE516B4A-7E76-4BBF-9B18-589F25E19485}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EE5F46D1-C3E5-4C99-A9A2-3DD9BF37474B}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EE83164E-5AEE-43A5-97FE-F23425B5FDAB}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EEA77687-BDC4-4FCC-823F-7BB1F33F2AE5}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EEB6CF8A-EFB1-4780-99AE-CDE5CF21C2C4}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EEF04D55-CD7E-4CAA-96FD-353E192C8F0F}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EEF20D13-54A0-4F8D-8989-F2F302D04BA1}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EEFE0B53-54F6-4DB5-A727-DDFFE41152F4}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EF1A430C-7298-44B0-AB7B-4C32E0B1398D}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EF2169DA-D920-4272-8510-510D1C39C8A3}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EF237453-86BD-4C90-8B08-850002E9C2F5}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EF7FE0ED-C74C-4E13-BF58-42B969F9BCBE}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EF9A2670-E491-473D-9EB8-1377DAB404F6}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EFBDBF1F-CA7B-4D05-8D9F-86A75407CEBB}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EFBEB5FA-C938-49DD-8828-9F0744A156F6}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EFE0377C-91D1-4806-97C6-0CA9860BB028}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EFE98569-71AC-4884-983E-3CE9A5218CD2}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{EFFCF15C-6DF0-441B-AAB0-EE76DAE17F9A}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F0C37A19-5B23-470A-8322-77AAACA1A430}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F0C6B8F8-B7F7-4A62-9864-734B1F5D5121}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F1057C5D-A9E0-48C4-8485-AD2DDDE32265}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F10F6E74-F180-4716-8351-F3B67B3686C9}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F110DDC0-8279-46A0-A2E0-69DF289424DD}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F14EE0BD-ADD0-4162-AB41-8BAFC5C6B1BA}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F15B5150-6BCA-40D5-8C2C-FC7182B224A7}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F18BEC5B-FB75-4779-9B7B-CF7DE604A2C6}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F19269F0-0089-47C8-8D5B-04C07CB2DABD}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F196F870-75DC-4BA0-A89D-570F7FFDD8DC}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F1A3BB19-166F-4DFB-93D3-8BB8FEABAC7C}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F1CA65F0-BC6B-41E9-B406-80873A26B533}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F1FEEA35-5061-4299-867D-F7F732952040}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F22AFA44-0C95-49EC-AE57-CF714676EB82}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F29DE6B4-51FA-4C22-92AC-732A710718A9}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F2E46ACA-5310-4320-B0AB-7DE1C4C58B9B}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F2F92CA5-2235-4B86-B57A-7F7964B6583D}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F31AA94C-9BB3-436E-A31A-5AA3355ED05D}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F335A383-7FC8-4FD2-83A9-DCAAE8B734A0}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F370C7CD-04FF-4875-912F-0FDB6D493039}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F391AA30-8CBC-4F5B-A053-C7AC7348E50E}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F3EDF802-D8A4-4860-9757-EEAA9ADA3B82}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F41F17A7-30ED-4149-9523-692F6664D72D}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F4241736-8BA0-49A5-B3AC-21EBA6A60097}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F42C823D-8378-4659-8D37-4B24CB712555}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F445070D-73CA-42FC-915A-8F15ACA03D17}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F47C84FB-02EF-4759-921A-EA7FC85873E7}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F4A3A95A-E460-4AB5-9B57-AEE3ECC793F4}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F4B28ADB-A354-49AD-BA92-0BFD8ED67CC3}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F4BF488A-E82C-4DAC-A829-C91FB28F0C7B}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F4F3A097-2AEE-45AA-B21E-E73BA91F7493}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F4FF472C-134C-4BED-A155-98B8ABBF8EFB}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F54E0D08-04F8-4D34-A380-49A664AA9056}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F55581E4-138B-4AFC-A9FD-3E689B68216F}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F56B1DC7-962B-4949-92BC-DA947A156836}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F5782C74-84CF-4DD6-85F7-ABD2ED776AFC}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F58A691E-A8EC-4088-BB93-E6C17FD53334}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F5A04437-CDA3-451D-953F-4E947D4EBB17}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F5A81C29-4E3E-4B5A-AE8E-9AF4A0F58045}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F5C2491F-311F-4E18-97F6-23056F9B1831}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F5F3B3D7-3BD9-477C-BCFB-DFEF67B1882D}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F5F9ADC1-F78B-47D8-AD91-904ED3E9995D}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F64E8957-26D9-4030-AC33-65B9D3886A0D}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F64F38F9-78B6-4897-8CBD-1BCFED8D91C7}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F654E0F9-007E-4D51-8C95-C048C009E15A}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F68AAD3F-CFF4-4727-8F5E-93FC8528113C}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F6BC540A-BB52-40E6-AA2B-F26C49BD3D08}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F6EA38C8-8760-4900-AD8B-4DB8F4E92C53}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F710E75C-C546-492C-847D-77D6A9DD316D}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F79C36CD-3793-4CAD-9976-82DA9DEFE0C5}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F7C2DC2D-0700-4535-B21B-575CB3C7CE65}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F7D5B5D2-1B30-4CAD-950A-298ADE237C23}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F7FE6DB0-7C71-4657-A18D-BCCC2A92358D}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F81129DF-6646-4F00-B6F1-F16D332150D9}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F81B21C1-47B2-49AC-A44C-95503C8550F3}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F83BDF65-2951-4AE0-94C8-4D667F87A4B7}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F85109DC-2775-4D20-B4A1-0EDF5A194471}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F8C70684-818E-413B-AE8B-A4587F627E4D}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F8EA6A59-3B36-4B5D-A2E9-A7C20AF8FF69}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F8EBD435-F2F8-4E4E-9555-A9FDB1B90E8B}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F8F3EF90-1432-44E3-BFD2-A30D0C0C5718}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{F91BC0D7-F517-46CC-9B16-35C8D974546E}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FA181348-52EF-47F0-BE89-5023857872F6}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FA332492-9C27-4DF0-B2E3-AF6B2C193722}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FA375576-8AEC-4828-8540-F585F9611810}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FACD5408-3A23-4EC5-B7C9-265D23461A82}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FB12259A-3E5F-4CB2-9433-122B9FECC5A0}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FB4FC3AC-A0BC-4664-A0DE-80469641A1F8}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FBE2AA5E-E8EF-4ED9-B9B1-98D55076FCB9}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FBF56AC9-FA4F-40A8-A829-90B43BF65A38}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FC110487-4969-4730-A4DC-BA0A0AD8C445}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FC4B114E-62BE-4CB9-8951-AB368594ED70}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FC6A2F71-B91A-4EFF-BECE-AB198FAF2AB8}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FCC6D521-CD14-4158-A937-657F5F315D4B}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FCCBC4FE-077E-410E-891B-F835D5BE7218}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FCF40630-5B73-476D-96D2-F58A6D2ED18F}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FD1EE414-CDA4-47FD-97F3-07FB08B813F1}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FD3EF5FD-0C0F-4439-8F87-90F4F1213117}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FD4C81F7-980F-4953-81EF-D3D4C73F57D8}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FD52A1ED-EEC2-4801-8D5B-EB3E94B57268}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FD8426B6-7331-4973-A30C-D0D67F681FA2}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FD88FD60-2D20-4CC5-A1D7-E6C74A9878CB}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FDAF9A4C-2363-4D2E-BD52-394EA12B296E}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FDFAC6A0-7E2E-4B66-A076-EBBE437E00EC}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FE09A0A4-0CD8-4DE4-A9DC-F58FD496D6DF}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FE18C40A-FA9A-47B8-AD3E-86932BA31C7F}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FE35EE4A-1B59-4524-B9E3-6816A50AAF71}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FE46A85B-2A62-4067-BFA6-22242E93D488}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FE8D8A0E-6F05-41AC-846F-328D76029F07}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FE9A07FE-2B88-4A22-83E7-A20AC9114368}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FEA70B4F-FFCC-443E-B194-F42BAD51E2DE}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FEC2FEC4-3A7A-487C-BB55-19C9AA56FA67}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FECCA96D-BB52-40F7-8B74-AAB7891A173E}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FEE5EF7F-0AA2-4A90-8CDF-D32F944098DE}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FEF14C20-1CB9-4222-8472-5FE8492BC67C}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FF08F240-41AA-4300-959C-202D229D4D98}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FF11350E-A251-4A35-8837-77EAB8EB69EE}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FF1A79DF-D54E-4C8C-930B-294A2172BBE7}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FF4D340E-CBAE-40C1-89BD-27244F24F982}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FF58AC5D-85FF-4F5B-B833-05C730CCC8AC}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FFB81DFF-E113-4962-9B3E-8DC0348B12B1}
Successfully deleted: [Empty Folder] C:\Users\Joe\appdata\local\{FFD2DE39-AFD8-453C-9B75-B38DB5196FEA}



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 26/07/2013 at 7:08:04.05
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

OTL logfile created on: 26/07/2013 7:46:13 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Joe\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy

2.94 Gb Total Physical Memory | 1.35 Gb Available Physical Memory | 46.13% Memory free
6.08 Gb Paging File | 4.56 Gb Available in Paging File | 74.97% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 326.01 Gb Total Space | 264.41 Gb Free Space | 81.11% Space Free | Partition Type: NTFS
Drive D: | 9.34 Gb Total Space | 1.29 Gb Free Space | 13.76% Space Free | Partition Type: NTFS

Computer Name: JOE-PC | User Name: Joe | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/07/25 23:20:08 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Joe\Desktop\OTL.exe
PRC - [2013/05/10 01:57:22 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/03/27 14:02:42 | 002,447,888 | ---- | M] (Check Point Software Technologies LTD) -- C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
PRC - [2013/03/27 13:31:18 | 000,073,832 | ---- | M] (Check Point Software Technologies LTD) -- C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe
PRC - [2012/11/22 08:33:18 | 000,497,320 | ---- | M] (Check Point Software Technologies) -- C:\Program Files\CheckPoint\ZAForceField\ISWSVC.exe
PRC - [2012/11/22 08:32:54 | 000,738,984 | ---- | M] (Check Point Software Technologies) -- C:\Program Files\CheckPoint\ZAForceField\ForceField.exe
PRC - [2011/04/19 16:39:30 | 000,935,744 | ---- | M] (SonicWALL, Inc.) -- C:\Program Files\CheckPoint\ZoneAlarm\MailFrontier\mantispm.exe
PRC - [2011/02/25 11:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft\BingBar\SeaPort.EXE
PRC - [2009/08/21 11:36:46 | 000,878,080 | ---- | M] (ActMask Co.,Ltd - http://www.all2pdf.com) -- C:\Windows\System32\PrintDisp.exe
PRC - [2009/07/24 16:05:24 | 000,139,120 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe
PRC - [2009/06/16 07:38:34 | 000,077,824 | ---- | M] (ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM) -- C:\Windows\System32\PrintCtrl.exe
PRC - [2009/04/11 00:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/04/11 00:27:28 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conime.exe
PRC - [2008/09/16 12:02:42 | 000,352,312 | ---- | M] (Rosetta Stone Ltd.) -- C:\Program Files\RosettaStoneLtdServices\RosettaStoneLtdController.exe
PRC - [2008/09/16 12:02:42 | 000,013,368 | ---- | M] (Rosetta Stone Ltd.) -- C:\Program Files\RosettaStoneLtdServices\RosettaStoneLtdServer.exe
PRC - [2007/07/24 12:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
PRC - [2007/06/05 13:20:32 | 000,177,704 | ---- | M] () -- C:\Windows\System32\PSIService.exe
PRC - [2002/12/23 11:02:38 | 000,102,400 | ---- | M] (Kensington Technology Group) -- C:\Windows\System32\kmw_run.exe
PRC - [2002/12/23 11:01:38 | 000,167,936 | ---- | M] () -- C:\Windows\System32\kmw_show.exe


========== Modules (No Company Name) ==========

MOD - [2013/06/18 14:08:18 | 000,093,696 | ---- | M] () -- C:\Program Files\FileZilla FTP Client\fzshellext.dll
MOD - [2011/04/19 16:40:06 | 000,088,896 | ---- | M] () -- C:\Program Files\CheckPoint\ZoneAlarm\MailFrontier\crsrpt.dll
MOD - [2011/04/19 16:39:34 | 000,013,120 | ---- | M] () -- C:\Program Files\CheckPoint\ZoneAlarm\MailFrontier\MlfHook.dll
MOD - [2011/04/19 16:39:32 | 000,290,112 | ---- | M] () -- C:\Program Files\CheckPoint\ZoneAlarm\MailFrontier\mtdsdk.dll
MOD - [2011/04/19 16:39:24 | 000,222,016 | ---- | M] () -- C:\Program Files\CheckPoint\ZoneAlarm\MailFrontier\resources\mbzaenu.dll
MOD - [2002/12/23 11:01:38 | 000,167,936 | ---- | M] () -- C:\Windows\System32\kmw_show.exe


========== Services (SafeList) ==========

SRV - [2013/06/12 10:38:15 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/06/03 16:34:46 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/05/10 01:57:22 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/03/27 14:02:42 | 002,447,888 | ---- | M] (Check Point Software Technologies LTD) [Auto | Running] -- C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe -- (vsmon)
SRV - [2013/01/20 16:57:59 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2012/11/22 08:33:18 | 000,497,320 | ---- | M] (Check Point Software Technologies) [Auto | Running] -- C:\Program Files\CheckPoint\ZAForceField\ISWSVC.exe -- (IswSvc)
SRV - [2011/02/28 19:44:14 | 000,183,560 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files\Microsoft\BingBar\BBSvc.EXE -- (BBSvc)
SRV - [2011/02/25 11:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft\BingBar\SeaPort.EXE -- (SeaPort)
SRV - [2010/10/12 11:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
SRV - [2010/06/22 19:21:13 | 000,068,000 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper)
SRV - [2009/07/24 16:05:24 | 000,139,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe -- (MSCamSvc)
SRV - [2009/06/16 07:38:34 | 000,077,824 | ---- | M] (ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM) [Auto | Running] -- C:\Windows\System32\PrintCtrl.exe -- (Printer Control)
SRV - [2008/09/16 12:02:42 | 000,352,312 | ---- | M] (Rosetta Stone Ltd.) [Auto | Running] -- C:\Program Files\RosettaStoneLtdServices\RosettaStoneLtdController.exe -- (RosettaStoneLtdController)
SRV - [2008/01/20 20:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/07/24 12:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Auto | Running] -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
SRV - [2007/06/05 13:20:32 | 000,177,704 | ---- | M] () [Auto | Running] -- C:\Windows\System32\PSIService.exe -- (ProtexisLicensing)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\vsdatant.win7.sys -- (vsdatant7)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\pcdrndisuio.sys -- (PcdrNdisuio)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [File_System | Boot | Stopped] -- system32\DRIVERS\Lbd.sys -- (Lbd)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys -- (Lavasoft Kernexplorer)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Joe\AppData\Local\Temp\cpuz134\cpuz134_x32.sys -- (cpuz134)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Joe\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - [2013/02/21 14:44:16 | 000,589,144 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\Windows\System32\drivers\klif.sys -- (KLIF)
DRV - [2012/12/13 11:49:44 | 000,451,160 | ---- | M] (Check Point Software Technologies LTD) [Kernel | System | Running] -- C:\Windows\System32\drivers\vsdatant.sys -- (Vsdatant)
DRV - [2012/11/22 08:33:30 | 000,027,056 | ---- | M] (Check Point Software Technologies) [Kernel | Auto | Running] -- C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys -- (ISWKL)
DRV - [2012/11/15 21:06:06 | 000,136,024 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\kl1.sys -- (KL1)
DRV - [2010/10/29 17:11:08 | 000,197,224 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV - [2010/06/14 16:04:30 | 000,069,976 | ---- | M] (Sunbelt Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\sbapifs.sys -- (sbapifs)
DRV - [2010/02/17 11:25:50 | 000,012,872 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2010/02/17 11:15:58 | 000,066,632 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010/02/17 11:15:58 | 000,012,872 | R--- | M] ( SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | On_Demand | Stopped] -- C:\Program Files\SUPERAntiSpyware\SASENUM.SYS -- (SASENUM)
DRV - [2009/06/26 18:21:02 | 001,956,352 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\VX3000.sys -- (VX3000)
DRV - [2008/08/01 19:51:14 | 001,052,704 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvmfdx32.sys -- (NVENETFD)
DRV - [2008/05/22 14:49:00 | 007,465,312 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2008/05/08 05:05:18 | 000,266,752 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSXHWBS2.sys -- (HSXHWBS2)
DRV - [2008/05/08 05:03:18 | 000,980,992 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSX_DP.sys -- (HSF_DP)
DRV - [2007/12/07 09:28:10 | 000,140,320 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\nvstor32.sys -- (nvstor32)
DRV - [2007/12/07 09:28:10 | 000,131,616 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\nvrd32.sys -- (nvrd32)
DRV - [2007/10/18 07:36:54 | 000,008,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2007/10/12 09:53:10 | 000,013,312 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\nvsmu.sys -- (nvsmu)
DRV - [2005/12/12 10:27:00 | 000,019,072 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\PS2.sys -- (Ps2)
DRV - [2002/12/09 18:20:00 | 000,089,856 | ---- | M] (Kensington Technology Group) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\KMW_SYS.sys -- (KMW_SYS)
DRV - [2002/12/09 18:19:00 | 000,005,120 | ---- | M] (Kensington Technology Group) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\kmw_kbd.sys -- (KMW_KBD)


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{390A2E53-2935-49C8-AE53-67E5385EA684}: "URL" = http://ca.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=hp-pvdt
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-3713060884-1631031299-1821023285-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKU\S-1-5-21-3713060884-1631031299-1821023285-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKU\S-1-5-21-3713060884-1631031299-1821023285-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\S-1-5-21-3713060884-1631031299-1821023285-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
IE - HKU\S-1-5-21-3713060884-1631031299-1821023285-1000\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-3713060884-1631031299-1821023285-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-3713060884-1631031299-1821023285-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-3713060884-1631031299-1821023285-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-3713060884-1631031299-1821023285-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3713060884-1631031299-1821023285-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@photoproduct.rocketlife.com/RocketLife App Viewer;version=0.8: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\13\NP_wtapp.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009/06/24 06:14:17 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\esnipsxpi@logia.esnips: C:\Program Files\Logia\eSnipsDownloader\ext [2010/05/07 10:55:22 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012/04/27 22:24:39 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012/05/04 14:38:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}: C:\Program Files\CheckPoint\ZAForceField\TrustChecker [2013/04/23 22:24:02 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012/04/27 22:24:39 | 000,000,000 | ---D | M]

[2010/12/18 17:48:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Joe\AppData\Roaming\Mozilla\Extensions
[2008/06/11 22:27:49 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Joe\AppData\Roaming\Mozilla\Extensions\home2@tomtom.com
[2010/07/13 22:26:38 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Joe\AppData\Roaming\Mozilla\firefox\profiles\1z4ailuj.default\extensions
[2010/05/26 22:42:37 | 000,000,000 | ---D | M] (ImTranslator) -- C:\Users\Joe\AppData\Roaming\Mozilla\firefox\profiles\1z4ailuj.default\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}
[2010/06/22 19:21:15 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Joe\AppData\Roaming\Mozilla\firefox\profiles\pkb7vbw7.default\extensions
[2010/06/07 09:14:45 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Joe\AppData\Roaming\Mozilla\firefox\profiles\pkb7vbw7.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/06/22 19:21:15 | 000,000,000 | ---D | M] (Adobe DLM (powered by getPlus(R))) -- C:\Users\Joe\AppData\Roaming\Mozilla\firefox\profiles\pkb7vbw7.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}
[2010/10/25 22:35:35 | 000,001,135 | ---- | M] () -- C:\Users\Joe\AppData\Roaming\Mozilla\firefox\profiles\1slc1bk4.default\searchplugins\GoogleFeed.xml
[2011/04/08 11:41:56 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2008/09/11 07:44:17 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
[2009/03/05 09:11:43 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}
[2009/03/24 21:11:25 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
[2010/04/16 21:49:11 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/08/04 11:07:41 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010/10/14 13:50:21 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2010/09/15 04:50:38 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2006/10/26 21:12:16 | 000,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL
[2009/12/21 18:34:06 | 000,103,864 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll
[2009/06/28 11:09:30 | 000,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin.dll
[2009/06/28 11:09:30 | 000,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll
[2009/06/28 11:09:30 | 000,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll
[2009/06/28 11:09:30 | 000,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll
[2009/06/28 11:09:30 | 000,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll
[2009/06/28 11:09:30 | 000,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll
[2009/06/28 11:09:30 | 000,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll
[2010/06/22 19:21:13 | 000,032,576 | ---- | M] (NOS Microsystems Ltd.) -- C:\Program Files\mozilla firefox\plugins\np_gp.dll

========== Chrome ==========

CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\QuickTime Alternative\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\QuickTime Alternative\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\QuickTime Alternative\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\QuickTime Alternative\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\QuickTime Alternative\plugins\npqtplugin5.dll
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U25 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Microsoft Office Live Plug-in for Firefox (Enabled) = C:\Program Files\Microsoft\Office Live\npOLW.dll
CHR - plugin: WildTangent Games App V2 Presence Detector (Enabled) = C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\13\NP_wtapp.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Java Deployment Toolkit 7.0.250.17 (Enabled) = C:\Windows\system32\npDeployJava1.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: Docs = C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0\
CHR - Extension: Google Drive = C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\
CHR - Extension: YouTube = C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google Search = C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: WiseConvert G2 = C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\jokonealeohacjjmmhaeligmhchgejep\2.3.4.2_0\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: Gmail = C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2013/07/25 21:27:05 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (ZoneAlarm Security Engine Registrar) - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Program Files\CheckPoint\ZAForceField\Trustchecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2 - BHO: (Windows Live Messenger Companion Helper) - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll (Google Inc.)
O2 - BHO: (eSnipsBHO Class) - {B530A9A4-1722-4D16-AAD6-AA85E3AD2ADE} - C:\Program Files\Logia\eSnipsDownloader\eSnipsBHO.dll (Logia Media)
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll (Google Inc.)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O3 - HKLM\..\Toolbar: (&Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (ZoneAlarm Security Engine) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\Trustchecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
O3 - HKU\S-1-5-21-3713060884-1631031299-1821023285-1000\..\Toolbar\WebBrowser: (&Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O3 - HKU\S-1-5-21-3713060884-1631031299-1821023285-1000\..\Toolbar\WebBrowser: (ZoneAlarm Security Engine) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\Trustchecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ISW] C:\Program Files\CheckPoint\ZAForceField\ForceField.exe (Check Point Software Technologies)
O4 - HKLM..\Run: [kmw_run.exe] C:\Windows\System32\kmw_run.exe (Kensington Technology Group)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [PrintDisp] C:\Windows\System32\PrintDisp.exe (ActMask Co.,Ltd - http://www.all2pdf.com)
O4 - HKLM..\Run: [SunJavaUpdateReg] C:\Windows\System32\jureg.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe (Oracle Corporation)
O4 - HKLM..\Run: [ZoneAlarm] C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe (Check Point Software Technologies LTD)
O4 - HKU\S-1-5-21-3713060884-1631031299-1821023285-1000..\Run: [ehTray.exe] C:\Windows\ehome\ehtray.exe (Microsoft Corporation)
O4 - HKU\.DEFAULT..\RunOnce: [ZAFFRegisterTrustChecker] C:\Windows\System32\regsvr32.exe (Microsoft Corporation)
O4 - HKU\.DEFAULT..\RunOnce: [ZAFFRegisterTrustCheckerIE] C:\Windows\System32\regsvr32.exe (Microsoft Corporation)
O4 - HKU\S-1-5-18..\RunOnce: [ZAFFRegisterTrustChecker] C:\Windows\System32\regsvr32.exe (Microsoft Corporation)
O4 - HKU\S-1-5-18..\RunOnce: [ZAFFRegisterTrustCheckerIE] C:\Windows\System32\regsvr32.exe (Microsoft Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: BindDirectlyToPropertySetStorage = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control

 

Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3713060884-1631031299-1821023285-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3713060884-1631031299-1821023285-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-3713060884-1631031299-1821023285-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKU\S-1-5-21-3713060884-1631031299-1821023285-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 0
O9 - Extra Button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
O9 - Extra Button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - Reg Error: Value error. File not found
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - Reg Error: Value error. File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\System32\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\System32\winrnr.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O15 - HKU\S-1-5-21-3713060884-1631031299-1821023285-1000\..Trusted Domains: voltigeur1.net ([]https in Trusted sites)
O15 - HKU\S-1-5-21-3713060884-1631031299-1821023285-1000\..Trusted Domains: youtube.com ([]https in Trusted sites)
O15 - HKU\S-1-5-21-3713060884-1631031299-1821023285-1000\..Trusted Domains: youtube.com ([www] https in Trusted sites)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{08B4084B-14C0-4E33-8B4B-B123F92BBF89}: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall - No CLSID value found
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim - No CLSID value found
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\Windows\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl ") - C:\Windows\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.dll) - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\System32\webcheck.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Component Categories cache daemon - C:\Windows\System32\browseui.dll (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Joe\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Joe\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\System32\credssp.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\System32\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\System32\tspkg.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/02/23 19:03:09 | 000,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2013/07/26 06:58:26 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2013/07/25 23:20:07 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Joe\Desktop\OTL.exe
[2013/07/25 23:20:01 | 000,561,140 | ---- | C] (Oleg N. Scherbakov) -- C:\Users\Joe\Desktop\JRT.exe
[2013/07/25 23:05:07 | 005,093,969 | R--- | C] (Swearware) -- C:\Users\Joe\Documents\ComboFix.exe
[2013/07/25 21:29:36 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2013/07/25 21:09:39 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2013/07/25 21:09:39 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2013/07/25 21:09:39 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2013/07/25 21:09:32 | 000,000,000 | ---D | C] -- C:\ComboFix
[2013/07/25 21:09:04 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2013/07/24 23:19:23 | 000,000,000 | ---D | C] -- C:\Users\Joe\Documents\RK_Quarantine
[2013/07/24 23:17:12 | 000,000,000 | ---D | C] -- C:\Users\Joe\Documents\mbar-1.06.0.1004
[2013/07/24 21:59:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
[2013/07/24 07:39:45 | 000,688,992 | R--- | C] (Swearware) -- C:\Users\Joe\Documents\dds.com
[2013/07/10 07:46:16 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2013/07/10 07:46:14 | 000,607,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2013/07/10 07:46:14 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2013/07/10 07:46:14 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2013/07/10 07:46:14 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2013/07/10 07:46:13 | 001,800,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2013/07/10 07:46:12 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2013/07/10 07:46:11 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2013/07/10 06:32:29 | 002,049,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2013/07/10 06:32:10 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2013/07/10 06:32:10 | 001,069,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2013/07/10 06:32:10 | 001,029,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2013/07/10 06:32:10 | 000,683,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2013/07/10 06:32:10 | 000,486,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2013/07/10 06:32:10 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2013/07/10 06:32:10 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2013/07/10 06:32:10 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2013/07/10 06:32:09 | 000,505,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qedit.dll
[2013/07/10 06:32:08 | 001,548,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL
[2013/06/29 15:01:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2013/06/29 15:01:03 | 000,263,592 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2013/06/29 15:00:50 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2013/06/29 15:00:50 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2013/06/29 15:00:50 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/07/26 07:45:13 | 000,003,744 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2013/07/26 07:45:13 | 000,003,744 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2013/07/26 07:38:01 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/07/26 07:10:00 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/07/25 23:53:07 | 000,609,182 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013/07/25 23:53:07 | 000,108,690 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013/07/25 23:45:33 | 000,065,536 | ---- | M] () -- C:\Windows\System32\Ikeext.etl
[2013/07/25 23:45:24 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/07/25 23:45:12 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/07/25 23:31:45 | 000,000,129 | ---- | M] () -- C:\Windows\DeleteOnReboot.bat
[2013/07/25 23:20:08 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Joe\Desktop\OTL.exe
[2013/07/25 23:20:02 | 000,561,140 | ---- | M] (Oleg N. Scherbakov) -- C:\Users\Joe\Desktop\JRT.exe
[2013/07/25 23:19:42 | 000,666,633 | ---- | M] () -- C:\Users\Joe\Desktop\adwcleaner.exe
[2013/07/25 22:39:05 | 000,002,401 | ---- | M] () -- C:\Users\Joe\Application Data\Microsoft\Internet Explorer\Quick Launch\Skype.lnk
[2013/07/25 21:27:05 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2013/07/25 21:01:14 | 005,093,969 | R--- | M] (Swearware) -- C:\Users\Joe\Documents\ComboFix.exe
[2013/07/24 21:41:58 | 000,915,968 | ---- | M] () -- C:\Users\Joe\Documents\RogueKiller.exe
[2013/07/24 07:17:42 | 000,688,992 | R--- | M] (Swearware) -- C:\Users\Joe\Documents\dds.com
[2013/07/21 20:57:17 | 000,002,561 | ---- | M] () -- C:\Users\Joe\Application Data\Microsoft\Internet Explorer\Quick Launch\Paint Shop Pro 7.lnk
[2013/07/20 23:28:25 | 000,113,337 | ---- | M] () -- C:\Users\Joe\Documents\croix2.jpg
[2013/07/20 23:12:30 | 000,004,087 | ---- | M] () -- C:\Users\Joe\Documents\1citation
[2013/07/20 22:44:19 | 000,056,332 | ---- | M] () -- C:\Users\Joe\Documents\croix.jpg
[2013/07/19 23:18:21 | 000,199,656 | ---- | M] () -- C:\Users\Joe\Documents\lettre20.jpg
[2013/07/19 23:12:57 | 000,078,711 | ---- | M] () -- C:\Users\Joe\Documents\valmildip2.jpg
[2013/07/19 21:28:37 | 000,026,472 | ---- | M] () -- C:\Users\Joe\AppData\Roaming\wklnhst.dat
[2013/07/17 21:40:37 | 001,273,160 | ---- | M] () -- C:\Users\Joe\Documents\KeyScrambler_Setup.exe
[2013/07/15 22:49:40 | 000,002,543 | ---- | M] () -- C:\Users\Joe\Application Data\Microsoft\Internet Explorer\Quick Launch\HiJackThis.lnk
[2013/07/14 21:38:05 | 000,000,471 | ---- | M] () -- C:\Users\Joe\Application Data\Microsoft\Internet Explorer\Quick Launch\Hotmail.website
[2013/07/11 23:01:55 | 000,042,936 | ---- | M] () -- C:\Users\Joe\Documents\cc_20130711_230147.reg
[2013/07/10 08:00:24 | 000,316,224 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013/07/08 09:25:46 | 000,017,369 | -H-- | M] () -- C:\Windows\System32\BTImages.dat
[2013/07/07 13:16:06 | 000,035,960 | ---- | M] () -- C:\Users\Joe\Documents\PCTechBytes Discusses Troubleshooting Bad Hard Drives, USB 3_0, Creating Disk Images and More!.eml
[2013/06/29 15:00:41 | 000,094,632 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2013/06/29 15:00:39 | 000,263,592 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2013/06/29 15:00:39 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2013/06/29 15:00:39 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2013/06/29 15:00:38 | 000,867,240 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\npDeployJava1.dll
[2013/06/29 15:00:38 | 000,789,416 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\deployJava1.dll
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/07/25 23:31:38 | 000,000,129 | ---- | C] () -- C:\Windows\DeleteOnReboot.bat
[2013/07/25 23:19:42 | 000,666,633 | ---- | C] () -- C:\Users\Joe\Desktop\adwcleaner.exe
[2013/07/25 21:09:39 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013/07/25 21:09:39 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013/07/25 21:09:39 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013/07/25 21:09:39 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013/07/25 21:09:39 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013/07/24 23:18:53 | 000,915,968 | ---- | C] () -- C:\Users\Joe\Documents\RogueKiller.exe
[2013/07/20 23:30:51 | 000,113,337 | ---- | C] () -- C:\Users\Joe\Documents\croix2.jpg
[2013/07/20 23:12:30 | 000,004,087 | ---- | C] () -- C:\Users\Joe\Documents\1citation
[2013/07/20 22:44:18 | 000,056,332 | ---- | C] () -- C:\Users\Joe\Documents\croix.jpg
[2013/07/19 23:18:21 | 000,199,656 | ---- | C] () -- C:\Users\Joe\Documents\lettre20.jpg
[2013/07/19 23:12:57 | 000,078,711 | ---- | C] () -- C:\Users\Joe\Documents\valmildip2.jpg
[2013/07/17 21:45:58 | 001,273,160 | ---- | C] () -- C:\Users\Joe\Documents\KeyScrambler_Setup.exe
[2013/07/11 23:01:51 | 000,042,936 | ---- | C] () -- C:\Users\Joe\Documents\cc_20130711_230147.reg
[2013/07/07 13:16:04 | 000,035,960 | ---- | C] () -- C:\Users\Joe\Documents\PCTechBytes Discusses Troubleshooting Bad Hard Drives, USB 3_0, Creating Disk Images and More!.eml
[2013/04/25 00:00:38 | 000,017,369 | -H-- | C] () -- C:\Windows\System32\BTImages.dat
[2012/08/17 08:14:37 | 000,014,080 | ---- | C] () -- C:\Windows\System32\drivers\TrueSight.sys
[2012/05/22 16:49:10 | 000,260,394 | ---- | C] () -- C:\Users\Joe\System Test.html
[2012/05/04 14:24:20 | 000,237,568 | ---- | C] () -- C:\Windows\System32\PAIGE32.dll
[2012/04/27 22:19:23 | 000,207,029 | ---- | C] () -- C:\Windows\hpoins46.dat
[2011/12/24 13:04:15 | 000,000,000 | ---- | C] () -- C:\Windows\f5unistall.INI
[2011/12/04 13:48:05 | 000,000,002 | ---- | C] () -- C:\Users\Joe\Allowed
[2011/11/30 13:53:50 | 000,150,996 | ---- | C] () -- C:\Windows\System32\drivers\RTAIODAT.DAT
[2011/10/04 07:31:45 | 000,001,891 | ---- | C] () -- C:\Users\Joe\Kreisman, Wolfgang Mr CIV USA IMCOM.vcf
[2011/10/04 07:31:45 | 000,000,181 | ---- | C] () -- C:\Users\Joe\t_decervens@ch-saintnazaire_fr (1).vcf
[2011/10/04 07:31:45 | 000,000,175 | ---- | C] () -- C:\Users\Joe\zeboss_cervens_net@gmail_com.vcf
[2011/10/04 07:31:45 | 000,000,175 | ---- | C] () -- C:\Users\Joe\Christina van Raamt.vcf
[2011/10/04 07:31:45 | 000,000,172 | ---- | C] () -- C:\Users\Joe\oscarofthenorth@hotmail_com (1).vcf
[2011/10/04 07:31:45 | 000,000,172 | ---- | C] () -- C:\Users\Joe\joop1936_psl9@blog_hyves_nl.vcf
[2011/10/04 07:31:45 | 000,000,169 | ---- | C] () -- C:\Users\Joe\roland-schaefer@hotmail_de.vcf
[2011/10/04 07:31:45 | 000,000,161 | ---- | C] () -- C:\Users\Joe\BUREAU CAMERONE.vcf
[2011/10/04 07:31:45 | 000,000,157 | ---- | C] () -- C:\Users\Joe\Ted and Christina van Raamt (1).vcf
[2011/10/04 07:31:45 | 000,000,152 | ---- | C] () -- C:\Users\Joe\Paul L_ Kendall, CISSP (1).vcf
[2011/10/04 07:31:45 | 000,000,152 | ---- | C] () -- C:\Users\Joe\Hans und Charlotte (1).vcf
[2011/10/04 07:31:45 | 000,000,148 | ---- | C] () -- C:\Users\Joe\kieronsummers@yahoo_fr (1).vcf
[2011/10/04 07:31:45 | 000,000,146 | ---- | C] () -- C:\Users\Joe\Tom and Cathy Crowe (1).vcf
[2011/10/04 07:31:45 | 000,000,146 | ---- | C] () -- C:\Users\Joe\angela leonard (1).vcf
[2011/10/04 07:31:45 | 000,000,145 | ---- | C] () -- C:\Users\Joe\Annemieke Dekker (1).vcf
[2011/10/04 07:31:45 | 000,000,144 | ---- | C] () -- C:\Users\Joe\Patrick Hervier (1).vcf
[2011/10/04 07:31:45 | 000,000,144 | ---- | C] () -- C:\Users\Joe\Friedrich Buchholz.vcf
[2011/10/04 07:31:45 | 000,000,144 | ---- | C] () -- C:\Users\Joe\Francine Young (1).vcf
[2011/10/04 07:31:45 | 000,000,144 | ---- | C] () -- C:\Users\Joe\Davis C_ Bruce.vcf
[2011/10/04 07:31:45 | 000,000,143 | ---- | C] () -- C:\Users\Joe\Jack E_ McDonald.vcf
[2011/10/04 07:31:45 | 000,000,142 | ---- | C] () -- C:\Users\Joe\marilyn ramberg (1).vcf
[2011/10/04 07:31:45 | 000,000,142 | ---- | C] () -- C:\Users\Joe\freddie webb.vcf
[2011/10/04 07:31:45 | 000,000,142 | ---- | C] () -- C:\Users\Joe\avraamt@gmail_com.vcf
[2011/10/04 07:31:45 | 000,000,141 | ---- | C] () -- C:\Users\Joe\Thomas Woods.vcf
[2011/10/04 07:31:45 | 000,000,141 | ---- | C] () -- C:\Users\Joe\Karin van Raamt.vcf
[2011/10/04 07:31:45 | 000,000,141 | ---- | C] () -- C:\Users\Joe\Isabelle Poirier.vcf
[2011/10/04 07:31:45 | 000,000,141 | ---- | C] () -- C:\Users\Joe\Flash & Eileen (1).vcf
[2011/10/04 07:31:45 | 000,000,141 | ---- | C] () -- C:\Users\Joe\Andy Carter (3).vcf
[2011/10/04 07:31:45 | 000,000,140 | ---- | C] () -- C:\Users\Joe\Terry Harrison (1).vcf
[2011/10/04 07:31:45 | 000,000,140 | ---- | C] () -- C:\Users\Joe\Ted Lightfoot.vcf
[2011/10/04 07:31:45 | 000,000,140 | ---- | C] () -- C:\Users\Joe\STEVEN SCHUSLER.vcf
[2011/10/04 07:31:45 | 000,000,140 | ---- | C] () -- C:\Users\Joe\Annelie deDurand.vcf
[2011/10/04 07:31:45 | 000,000,140 | ---- | C] () -- C:\Users\Joe\Annelie deDurand (1).vcf
[2011/10/04 07:31:45 | 000,000,139 | ---- | C] () -- C:\Users\Joe\REICH Sita.vcf
[2011/10/04 07:31:45 | 000,000,139 | ---- | C] () -- C:\Users\Joe\Anna Vantunen.vcf
[2011/10/04 07:31:45 | 000,000,138 | ---- | C] () -- C:\Users\Joe\Thierry de Cervens (2).vcf
[2011/10/04 07:31:45 | 000,000,138 | ---- | C] () -- C:\Users\Joe\Rene (1).vcf
[2011/10/04 07:31:45 | 000,000,138 | ---- | C] () -- C:\Users\Joe\Patrick Ramberg (1).vcf
[2011/10/04 07:31:45 | 000,000,138 | ---- | C] () -- C:\Users\Joe\mayrbernard.vcf
[2011/10/04 07:31:45 | 000,000,138 | ---- | C] () -- C:\Users\Joe\harryluyckx.vcf
[2011/10/04 07:31:45 | 000,000,137 | ---- | C] () -- C:\Users\Joe\Taylor Hudson.vcf
[2011/10/04 07:31:45 | 000,000,137 | ---- | C] () -- C:\Users\Joe\Phyllis Baskin.vcf
[2011/10/04 07:31:45 | 000,000,137 | ---- | C] () -- C:\Users\Joe\martin scott (1).vcf
[2011/10/04 07:31:45 | 000,000,137 | ---- | C] () -- C:\Users\Joe\Gwenda Millin.vcf
[2011/10/04 07:31:45 | 000,000,137 | ---- | C] () -- C:\Users\Joe\Carlos Pizano (1).vcf
[2011/10/04 07:31:45 | 000,000,137 | ---- | C] () -- C:\Users\Joe\audemar.vcf
[2011/10/04 07:31:45 | 000,000,136 | ---- | C] () -- C:\Users\Joe\Charles Stoeng (2).vcf
[2011/10/04 07:31:45 | 000,000,136 | ---- | C] () -- C:\Users\Joe\Bret Zelisko.vcf
[2011/10/04 07:31:45 | 000,000,135 | ---- | C] () -- C:\Users\Joe\Ted Crapnell (1).vcf
[2011/10/04 07:31:45 | 000,000,135 | ---- | C] () -- C:\Users\Joe\Mark Friedman (1).vcf
[2011/10/04 07:31:45 | 000,000,135 | ---- | C] () -- C:\Users\Joe\Mark Adjutant.vcf
[2011/10/04 07:31:45 | 000,000,135 | ---- | C] () -- C:\Users\Joe\Marcel Wilbie.vcf
[2011/10/04 07:31:45 | 000,000,135 | ---- | C] () -- C:\Users\Joe\John Sharp.vcf
[2011/10/04 07:31:45 | 000,000,135 | ---- | C] () -- C:\Users\Joe\Jan and Diana.vcf
[2011/10/04 07:31:45 | 000,000,135 | ---- | C] () -- C:\Users\Joe\Horst Beuger.vcf
[2011/10/04 07:31:45 | 000,000,135 | ---- | C] () -- C:\Users\Joe\Bob Saylor (1).vcf
[2011/10/04 07:31:45 | 000,000,135 | ---- | C] () -- C:\Users\Joe\A BANERMAN.vcf
[2011/10/04 07:31:45 | 000,000,134 | ---- | C] () -- C:\Users\Joe\madmonk 7_5 (1).vcf
[2011/10/04 07:31:45 | 000,000,134 | ---- | C] () -- C:\Users\Joe\Jan van Toor.vcf
[2011/10/04 07:31:45 | 000,000,133 | ---- | C] () -- C:\Users\Joe\nel dessens (1).vcf
[2011/10/04 07:31:45 | 000,000,133 | ---- | C] () -- C:\Users\Joe\Jaap van Raamt (1).vcf
[2011/10/04 07:31:45 | 000,000,132 | ---- | C] () -- C:\Users\Joe\LIBBY TOMASKO (1).vcf
[2011/10/04 07:31:45 | 000,000,132 | ---- | C] () -- C:\Users\Joe\Horst Krämer.vcf
[2011/10/04 07:31:45 | 000,000,132 | ---- | C] () -- C:\Users\Joe\Gwenda (1).vcf
[2011/10/04 07:31:45 | 000,000,132 | ---- | C] () -- C:\Users\Joe\Denny Zdenek.vcf
[2011/10/04 07:31:45 | 000,000,132 | ---- | C] () -- C:\Users\Joe\Arjan Wilbie (1).vcf
[2011/10/04 07:31:45 | 000,000,131 | ---- | C] () -- C:\Users\Joe\Gwenda.vcf
[2011/10/04 07:31:45 | 000,000,130 | ---- | C] () -- C:\Users\Joe\Kris Greaves (1).vcf
[2011/10/04 07:31:45 | 000,000,130 | ---- | C] () -- C:\Users\Joe\Edward Reed.vcf
[2011/10/04 07:31:45 | 000,000,129 | ---- | C] () -- C:\Users\Joe\Oskar Ott (2).vcf
[2011/10/04 07:31:45 | 000,000,129 | ---- | C] () -- C:\Users\Joe\Joe van Raamt.vcf
[2011/10/04 07:31:45 | 000,000,129 | ---- | C] () -- C:\Users\Joe\Eric Diaz (1).vcf
[2011/10/04 07:31:45 | 000,000,128 | ---- | C] () -- C:\Users\Joe\Nick Fury (1).vcf
[2011/10/04 07:31:45 | 000,000,128 | ---- | C] () -- C:\Users\Joe\Kelly Lenz (1).vcf
[2011/10/04 07:31:45 | 000,000,127 | ---- | C] () -- C:\Users\Joe\Oskar Ott (3).vcf
[2011/10/04 07:31:45 | 000,000,126 | ---- | C] () -- C:\Users\Joe\Andy Carter (2).vcf
[2011/10/04 07:31:45 | 000,000,125 | ---- | C] () -- C:\Users\Joe\Charles (1).vcf
[2011/10/04 07:31:45 | 000,000,124 | ---- | C] () -- C:\Users\Joe\Zdenek (1).vcf
[2011/10/04 07:31:45 | 000,000,124 | ---- | C] () -- C:\Users\Joe\K_ Wilbie.vcf
[2011/10/04 07:31:45 | 000,000,124 | ---- | C] () -- C:\Users\Joe\Joette (1).vcf
[2011/10/04 07:31:45 | 000,000,122 | ---- | C] () -- C:\Users\Joe\Sheliah.vcf
[2011/10/04 07:31:45 | 000,000,122 | ---- | C] () -- C:\Users\Joe\fran.vcf
[2011/10/04 07:31:45 | 000,000,122 | ---- | C] () -- C:\Users\Joe\Celine (1).vcf
[2011/10/04 07:31:45 | 000,000,121 | ---- | C] () -- C:\Users\Joe\Thierry (2).vcf
[2011/10/04 07:31:45 | 000,000,118 | ---- | C] () -- C:\Users\Joe\Wilbie, Wim (1).vcf
[2011/10/04 07:31:45 | 000,000,118 | ---- | C] () -- C:\Users\Joe\V G.vcf
[2011/10/04 07:31:45 | 000,000,118 | ---- | C] () -- C:\Users\Joe\A V.vcf
[2011/10/04 07:31:45 | 000,000,117 | ---- | C] () -- C:\Users\Joe\Vonda (1).vcf
[2011/10/04 07:31:45 | 000,000,117 | ---- | C] () -- C:\Users\Joe\Kim (2).vcf
[2011/10/04 07:31:45 | 000,000,116 | ---- | C] () -- C:\Users\Joe\Mac (1).vcf
[2010/12/24 13:29:17 | 000,005,013 | ---- | C] () -- C:\Users\Joe\add dec23 2010.csv
[2010/10/14 13:53:33 | 000,000,414 | ---- | C] () -- C:\Users\Joe\AppData\Local\RAExpertHistory.xml
[2010/08/02 11:28:44 | 008,739,956 | ---- | C] () -- C:\Program Files\ipligence-lite.csv
[2009/08/30 12:45:37 | 000,003,746 | ---- | C] () -- C:\Users\Joe\AppData\Roaming\UserTile.png
[2009/07/02 10:27:00 | 000,000,848 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys
[2009/03/05 22:35:15 | 000,004,533 | ---- | C] () -- C:\Users\Joe\AppData\Local\Temp15.html
[2009/02/09 10:51:03 | 000,001,293 | ---- | C] () -- C:\Users\Joe\AppData\Local\Temp1.html
[2009/01/07 12:49:40 | 000,007,268 | ---- | C] () -- C:\ProgramData\N360BUOptions.ini
[2008/09/01 14:09:22 | 000,026,472 | ---- | C] () -- C:\Users\Joe\AppData\Roaming\wklnhst.dat
[2008/05/31 07:25:02 | 000,000,189 | ---- | C] () -- C:\Users\Joe\Kreisman, Wolfgang CIV USAG FWA DPW.vcf
[2008/05/31 07:25:02 | 000,000,181 | ---- | C] () -- C:\Users\Joe\t_decervens@ch-saintnazaire_fr.vcf
[2008/05/31 07:25:02 | 000,000,172 | ---- | C] () -- C:\Users\Joe\oscarofthenorth@hotmail_com.vcf
[2008/05/31 07:25:02 | 000,000,163 | ---- | C] () -- C:\Users\Joe\horst_beuger@t-online_de.vcf
[2008/05/31 07:25:02 | 000,000,160 | ---- | C] () -- C:\Users\Joe\Ted and Christina van Raamt.vcf
[2008/05/31 07:25:02 | 000,000,160 | ---- | C] () -- C:\Users\Joe\ereed@sanbrunocable_com.vcf
[2008/05/31 07:25:02 | 000,000,159 | ---- | C] () -- C:\Users\Joe\Jan and Diane van Raamt.vcf
[2008/05/31 07:25:02 | 000,000,157 | ---- | C] () -- C:\Users\Joe\Bannerman, Andrew.vcf
[2008/05/31 07:25:02 | 000,000,154 | ---- | C] () -- C:\Users\Joe\squaddiejh@milism_net.vcf
[2008/05/31 07:25:02 | 000,000,153 | ---- | C] () -- C:\Users\Joe\Charles Stoeng (1).vcf
[2008/05/31 07:25:02 | 000,000,152 | ---- | C] () -- C:\Users\Joe\Paul L_ Kendall, CISSP.vcf
[2008/05/31 07:25:02 | 000,000,152 | ---- | C] () -- C:\Users\Joe\Hans und Charlotte.vcf
[2008/05/31 07:25:02 | 000,000,148 | ---- | C] () -- C:\Users\Joe\kieronsummers@yahoo_fr.vcf
[2008/05/31 07:25:02 | 000,000,148 | ---- | C] () -- C:\Users\Joe\johnwebb100@aol_com.vcf
[2008/05/31 07:25:02 | 000,000,147 | ---- | C] () -- C:\Users\Joe\Roland Schaefer.vcf
[2008/05/31 07:25:02 | 000,000,146 | ---- | C] () -- C:\Users\Joe\Tom and Cathy Crowe.vcf
[2008/05/31 07:25:02 | 000,000,146 | ---- | C] () -- C:\Users\Joe\Thierry de Cervens.vcf
[2008/05/31 07:25:02 | 000,000,146 | ---- | C] () -- C:\Users\Joe\angela leonard.vcf
[2008/05/31 07:25:02 | 000,000,144 | ---- | C] () -- C:\Users\Joe\Patrick Hervier.vcf
[2008/05/31 07:25:02 | 000,000,143 | ---- | C] () -- C:\Users\Joe\Ted and Annie.vcf
[2008/05/31 07:25:02 | 000,000,143 | ---- | C] () -- C:\Users\Joe\Annemieke Dekker.vcf
[2008/05/31 07:25:02 | 000,000,143 | ---- | C] () -- C:\Users\Joe\Andy Bannerman.vcf
[2008/05/31 07:25:02 | 000,000,142 | ---- | C] () -- C:\Users\Joe\Marilyn Ramberg.vcf
[2008/05/31 07:25:02 | 000,000,141 | ---- | C] () -- C:\Users\Joe\Francine Young.vcf
[2008/05/31 07:25:02 | 000,000,141 | ---- | C] () -- C:\Users\Joe\Flash & Eileen.vcf
[2008/05/31 07:25:02 | 000,000,141 | ---- | C] () -- C:\Users\Joe\Andy Carter (1).vcf
[2008/05/31 07:25:02 | 000,000,140 | ---- | C] () -- C:\Users\Joe\Terry Harrison.vcf
[2008/05/31 07:25:02 | 000,000,140 | ---- | C] () -- C:\Users\Joe\Robert Petersen.vcf
[2008/05/31 07:25:02 | 000,000,140 | ---- | C] () -- C:\Users\Joe\Hannibal Barca.vcf
[2008/05/31 07:25:02 | 000,000,140 | ---- | C] () -- C:\Users\Joe\Elizabeth Tomasko.vcf
[2008/05/31 07:25:02 | 000,000,140 | ---- | C] () -- C:\Users\Joe\Cliff and Marg.vcf
[2008/05/31 07:25:02 | 000,000,140 | ---- | C] () -- C:\Users\Joe\Alexandra Sheach.vcf
[2008/05/31 07:25:02 | 000,000,139 | ---- | C] () -- C:\Users\Joe\Terry Weaver.vcf
[2008/05/31 07:25:02 | 000,000,139 | ---- | C] () -- C:\Users\Joe\Kieron Summers.vcf
[2008/05/31 07:25:02 | 000,000,139 | ---- | C] () -- C:\Users\Joe\Jesse Forsyth.vcf
[2008/05/31 07:25:02 | 000,000,139 | ---- | C] () -- C:\Users\Joe\Jasmin Gerstner.vcf
[2008/05/31 07:25:02 | 000,000,138 | ---- | C] () -- C:\Users\Joe\Thierry de Cervens (1).vcf
[2008/05/31 07:25:02 | 000,000,138 | ---- | C] () -- C:\Users\Joe\Rene.vcf
[2008/05/31 07:25:02 | 000,000,137 | ---- | C] () -- C:\Users\Joe\Ted Crapnell.vcf
[2008/05/31 07:25:02 | 000,000,137 | ---- | C] () -- C:\Users\Joe\martin scott.vcf
[2008/05/31 07:25:02 | 000,000,137 | ---- | C] () -- C:\Users\Joe\Carlos Pizano.vcf
[2008/05/31 07:25:02 | 000,000,136 | ---- | C] () -- C:\Users\Joe\Philip Bryan.vcf
[2008/05/31 07:25:02 | 000,000,136 | ---- | C] () -- C:\Users\Joe\Patrick Ramberg.vcf
[2008/05/31 07:25:02 | 000,000,136 | ---- | C] () -- C:\Users\Joe\Charles Stoeng.vcf
[2008/05/31 07:25:02 | 000,000,136 | ---- | C] () -- C:\Users\Joe\Anna & Ted.vcf
[2008/05/31 07:25:02 | 000,000,135 | ---- | C] () -- C:\Users\Joe\Mark Friedman.vcf
[2008/05/31 07:25:02 | 000,000,135 | ---- | C] () -- C:\Users\Joe\Bob Saylor.vcf
[2008/05/31 07:25:02 | 000,000,134 | ---- | C] () -- C:\Users\Joe\madmonk 7_5.vcf
[2008/05/31 07:25:02 | 000,000,134 | ---- | C] () -- C:\Users\Joe\Horst Krämer.vcf
[2008/05/31 07:25:02 | 000,000,133 | ---- | C] () -- C:\Users\Joe\Sws157@aol_com.vcf
[2008/05/31 07:25:02 | 000,000,133 | ---- | C] () -- C:\Users\Joe\nel dessens.vcf
[2008/05/31 07:25:02 | 000,000,133 | ---- | C] () -- C:\Users\Joe\marilynR45.vcf
[2008/05/31 07:25:02 | 000,000,133 | ---- | C] () -- C:\Users\Joe\Jaap van Raamt.vcf
[2008/05/31 07:25:02 | 000,000,133 | ---- | C] () -- C:\Users\Joe\Aad van Raamt.vcf
[2008/05/31 07:25:02 | 000,000,132 | ---- | C] () -- C:\Users\Joe\LIBBY TOMASKO.vcf
[2008/05/31 07:25:02 | 000,000,132 | ---- | C] () -- C:\Users\Joe\Arjan Wilbie.vcf
[2008/05/31 07:25:02 | 000,000,131 | ---- | C] () -- C:\Users\Joe\V + F.vcf
[2008/05/31 07:25:02 | 000,000,130 | ---- | C] () -- C:\Users\Joe\Sheliah Cook.vcf
[2008/05/31 07:25:02 | 000,000,130 | ---- | C] () -- C:\Users\Joe\Roland _.vcf
[2008/05/31 07:25:02 | 000,000,130 | ---- | C] () -- C:\Users\Joe\Kris Greaves.vcf
[2008/05/31 07:25:02 | 000,000,130 | ---- | C] () -- C:\Users\Joe\Holger Viel.vcf
[2008/05/31 07:25:02 | 000,000,130 | ---- | C] () -- C:\Users\Joe\Aurelie.vcf
[2008/05/31 07:25:02 | 000,000,130 | ---- | C] () -- C:\Users\Joe\Andy Bannerman (1).vcf
[2008/05/31 07:25:02 | 000,000,129 | ---- | C] () -- C:\Users\Joe\Oskar Ott (1).vcf
[2008/05/31 07:25:02 | 000,000,129 | ---- | C] () -- C:\Users\Joe\Eric Diaz.vcf
[2008/05/31 07:25:02 | 000,000,128 | ---- | C] () -- C:\Users\Joe\Nick Fury.vcf
[2008/05/31 07:25:02 | 000,000,128 | ---- | C] () -- C:\Users\Joe\Kelly Lenz.vcf
[2008/05/31 07:25:02 | 000,000,127 | ---- | C] () -- C:\Users\Joe\W_ Wilbie.vcf
[2008/05/31 07:25:02 | 000,000,127 | ---- | C] () -- C:\Users\Joe\Oskar Ott.vcf
[2008/05/31 07:25:02 | 000,000,127 | ---- | C] () -- C:\Users\Joe\Mike Yates.vcf
[2008/05/31 07:25:02 | 000,000,127 | ---- | C] () -- C:\Users\Joe\Friedrich.vcf
[2008/05/31 07:25:02 | 000,000,126 | ---- | C] () -- C:\Users\Joe\Jo van Raamt.vcf
[2008/05/31 07:25:02 | 000,000,126 | ---- | C] () -- C:\Users\Joe\D_ Wilbie.vcf
[2008/05/31 07:25:02 | 000,000,125 | ---- | C] () -- C:\Users\Joe\Charles.vcf
[2008/05/31 07:25:02 | 000,000,125 | ---- | C] () -- C:\Users\Joe\Andy Carter.vcf
[2008/05/31 07:25:02 | 000,000,124 | ---- | C] () -- C:\Users\Joe\Zdenek.vcf
[2008/05/31 07:25:02 | 000,000,124 | ---- | C] () -- C:\Users\Joe\Joette.vcf
[2008/05/31 07:25:02 | 000,000,124 | ---- | C] () -- C:\Users\Joe\Ed Reed.vcf
[2008/05/31 07:25:02 | 000,000,123 | ---- | C] () -- C:\Users\Joe\Charley.vcf
[2008/05/31 07:25:02 | 000,000,122 | ---- | C] () -- C:\Users\Joe\Pascal.vcf
[2008/05/31 07:25:02 | 000,000,122 | ---- | C] () -- C:\Users\Joe\Jim.vcf
[2008/05/31 07:25:02 | 000,000,122 | ---- | C] () -- C:\Users\Joe\Celine.vcf
[2008/05/31 07:25:02 | 000,000,121 | ---- | C] () -- C:\Users\Joe\Thierry.vcf
[2008/05/31 07:25:02 | 000,000,120 | ---- | C] () -- C:\Users\Joe\Thierry (1).vcf
[2008/05/31 07:25:02 | 000,000,120 | ---- | C] () -- C:\Users\Joe\Kim (1).vcf
[2008/05/31 07:25:02 | 000,000,118 | ---- | C] () -- C:\Users\Joe\Wilbie, Wim.vcf
[2008/05/31 07:25:02 | 000,000,117 | ---- | C] () -- C:\Users\Joe\Vonda.vcf
[2008/05/31 07:25:02 | 000,000,117 | ---- | C] () -- C:\Users\Joe\Kim.vcf
[2008/05/31 07:25:02 | 000,000,117 | ---- | C] () -- C:\Users\Joe\Keith.vcf
[2008/05/31 07:25:02 | 000,000,116 | ---- | C] () -- C:\Users\Joe\Mac.vcf
[2008/05/31 07:25:02 | 000,000,116 | ---- | C] () -- C:\Users\Joe\G.vcf
[2008/05/13 08:32:34 | 000,069,120 | ---- | C] () -- C:\Users\Joe\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/05/12 19:16:58 | 000,001,356 | ---- | C] () -- C:\Users\Joe\AppData\Local\d3d9caps.dat

========== ZeroAccess Check ==========

[2006/11/02 06:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
" " = %SystemRoot%\system32\shell32.dll -- [2012/06/08 11:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
" " = %systemroot%\system32\wbem\fastprox.dll -- [2009/04/11 00:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
" " = %systemroot%\system32\wbem\wbemess.dll -- [2009/04/11 00:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== Alternate Data Streams ==========

@Alternate Data Stream - 925 bytes -> C:\Users\Joe\Documents\Thank You For Registering With HP.eml:OECustomProperty
@Alternate Data Stream - 849 bytes -> C:\Users\Joe\Documents\RE_ Your User ID at Network Solutions.eml:OECustomProperty
@Alternate Data Stream - 841 bytes -> C:\Users\Joe\Documents\Bravenet Receipt -domain name.eml:OECustomProperty
@Alternate Data Stream - 841 bytes -> C:\Users\Joe\Documents\Bravenet Receipt - ACCEPTED & APPROVED.eml:OECustomProperty
@Alternate Data Stream - 813 bytes -> C:\Users\Joe\Documents\Your Order is Confirmed domainbuyffl.eml:OECustomProperty
@Alternate Data Stream - 793 bytes -> C:\Users\Joe\Documents\ted and chris new email and address.eml:OECustomProperty
@Alternate Data Stream - 793 bytes -> C:\Users\Joe\Documents\new pau address Re_ Iannotti Dominico.eml:OECustomProperty
@Alternate Data Stream - 785 bytes -> C:\Users\Joe\Documents\[HP Games] Purchase Receipt.eml:OECustomProperty
@Alternate Data Stream - 753 bytes -> C:\Users\Joe\Documents\jukebox!.eml:OECustomProperty
@Alternate Data Stream - 752 bytes -> C:\Users\Joe\Documents\Re_ Info Légion étrangère.eml:OECustomProperty
@Alternate Data Stream - 745 bytes -> C:\Users\Joe\Documents\Walter Mitty.eml:OECustomProperty
@Alternate Data Stream - 721 bytes -> C:\Users\Joe\Documents\top html code.eml:OECustomProperty
@Alternate Data Stream - 705 bytes -> C:\Users\Joe\Documents\HTML template.eml:OECustomProperty
@Alternate Data Stream - 688 bytes -> C:\Users\Joe\Documents\Info Pau etc.eml:OECustomProperty
@Alternate Data Stream - 665 bytes -> C:\Users\Joe\Documents\info ted.eml:OECustomProperty
@Alternate Data Stream - 644 bytes -> C:\Users\Joe\Documents\KNSM vertaling.eml:OECustomProperty
@Alternate Data Stream - 594 bytes -> C:\Users\Joe\Documents\mail address karin.eml:OECustomProperty
@Alternate Data Stream - 1423 bytes -> C:\Users\Joe\Documents\PCTechBytes Discusses Troubleshooting Bad Hard Drives, USB 3_0, Creating Disk Images and More!.eml:OECustomProperty
@Alternate Data Stream - 1333 bytes -> C:\Users\Joe\Documents\Registration at Windows Forum - Computer Support Forums ( Windows Forum - Computer Support Forums ).eml:OECustomProperty
@Alternate Data Stream - 1201 bytes -> C:\Users\Joe\Documents\rosetta stone.eml:OECustomProperty
@Alternate Data Stream - 1201 bytes -> C:\Users\Joe\Documents\New Private Message at a French Foreign Legion Forum _ cervens_net.eml:OECustomProperty
@Alternate Data Stream - 1093 bytes -> C:\Users\Joe\Documents\Transcript of 3-Aug-2012 2_40_56 PM_ Visitor_ Johannes van Raamt (Joe)_.eml:OECustomProperty
@Alternate Data Stream - 1053 bytes -> C:\Users\Joe\Documents\zonealarm.eml:OECustomProperty
@Alternate Data Stream - 1013 bytes -> C:\Users\Joe\Documents\ZoneAlarm Order Information - Order #A1366774776411.eml:OECustomProperty

< End of report >

 

OTL Extras logfile created on: 26/07/2013 7:46:13 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Joe\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy

2.94 Gb Total Physical Memory | 1.35 Gb Available Physical Memory | 46.13% Memory free
6.08 Gb Paging File | 4.56 Gb Available in Paging File | 74.97% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 326.01 Gb Total Space | 264.41 Gb Free Space | 81.11% Space Free | Partition Type: NTFS
Drive D: | 9.34 Gb Total Space | 1.29 Gb Free Space | 13.76% Space Free | Partition Type: NTFS

Computer Name: JOE-PC | User Name: Joe | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1 ",%*
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)

[HKEY_USERS\S-1-5-21-3713060884-1631031299-1821023285-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1 ",%*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1 "
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\EarthLink TotalAccess\TaskPanl.exe" = C:\Program Files\EarthLink TotalAccess\TaskPanl.exe:*:Enabled:Earthlink


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01B52D03-D9F5-437E-BECE-577EBFEC7F92}" = rport=137 | protocol=17 | dir=out | app=system |
"{02435976-8DFC-41C6-95D6-0760FFA78893}" = rport=10243 | protocol=6 | dir=out | app=system |
"{03FBD1E8-6616-4DC6-BE80-002204383599}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{07EC66EE-D908-4DDF-B62F-CB277B7262F2}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{1051E280-5C45-4C93-93EF-F46A92763C58}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{156B5964-C2D5-4BC2-A42A-837F3DDA9105}" = lport=2869 | protocol=6 | dir=in | app=system |
"{28B954BD-5B9F-4682-979A-2B1C7E7D8EA9}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{2B302AB2-3021-4108-8731-71B3DDCD7987}" = rport=139 | protocol=6 | dir=out | app=system |
"{515AF0E9-C35E-477B-A76D-0118082769C8}" = lport=137 | protocol=17 | dir=in | app=system |
"{5C9EB2DD-9155-4D87-90C5-77FE000AA447}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{644D9E76-E016-4C6C-8886-35883C85A153}" = lport=138 | protocol=17 | dir=in | app=system |
"{652C813F-6005-4BD6-828C-0791549BDBA9}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{6CB96EFA-85D9-497A-B1E6-696887AD073A}" = rport=427 | protocol=17 | dir=in | svc=hpslpsvc | app=c:\windows\system32\svchost.exe |
"{7953B574-091A-4F73-8425-5655CE12FF4F}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{8C13F678-1974-4495-BFFD-7D22187BE1EB}" = lport=57857 | protocol=17 | dir=in | name=pando p2p udp listening port |
"{97B6B9C3-3F6C-4BD9-96B7-99D25014F2DA}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{999C554E-2880-43DE-A7B6-5317400D9D87}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{9DE4F90F-FFC2-4D24-81DA-FEDE78E3ACEB}" = lport=10243 | protocol=6 | dir=in | app=system |
"{9E0FACAE-93A0-4421-9AB6-EE1C066FF98F}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{9FD54256-46C6-4C25-9F9F-372D9EB657CA}" = lport=2869 | protocol=6 | dir=in | app=system |
"{A1142110-7B3C-4981-885B-BB1EC37C0914}" = lport=139 | protocol=6 | dir=in | app=system |
"{BBCFB134-AD56-4044-B04F-E3695152B6D7}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{BDAD7E40-B782-46DD-9172-44F2CA59DB07}" = lport=57857 | protocol=6 | dir=in | name=pando p2p tcp listening port |
"{C5B7515E-BAF8-4CAF-9678-F719BE1EC7B7}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{D288B6F3-DA64-4ACD-B5FE-EBE72FF9922D}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{D900B7DA-758B-446E-B0E2-7FC721A9F3B6}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{DD2F181A-930D-4646-9623-1B7DBA477EA0}" = rport=138 | protocol=17 | dir=out | app=system |
"{DD8A26FA-4ABD-4DCB-BE53-2345FE0087F0}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{E9CDED05-4E26-455F-A55F-BC126086F4BB}" = rport=445 | protocol=6 | dir=out | app=system |
"{EABCA1D2-216B-4A58-93A1-A67349680665}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{EDCFE483-B396-4809-A8FC-D6B17084F092}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{EE383CD7-664A-4244-8F85-C49227F47F11}" = lport=445 | protocol=6 | dir=in | app=system |
"{F8493F70-72E7-46BF-9F80-443D1B3F3189}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{FED052C1-26EF-43DC-BE96-E094BD2EA167}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{011E8235-81D2-49E3-8D25-FE1261BA09D4}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqpse.exe |
"{04CB8D3C-39FD-4336-A75B-44D8B1F10019}" = dir=in | app=c:\program files\windows live\mesh\moe.exe |
"{062A6B82-509B-4CBE-ADA9-F30BBC66F091}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{142DB160-8B52-4881-9932-084EED1B4927}" = protocol=17 | dir=in | app=c:\program files\microsoft lifecam\lifetray.exe |
"{18B7EAB6-0F56-41EB-BFBA-BCA630F5A729}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqkygrp.exe |
"{1F0ACB71-367D-46B9-B6F9-0A2A517C6997}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{20136957-1CE0-472E-9081-122BEF3416B5}" = protocol=17 | dir=in | app=c:\program files\microsoft lifecam\lifeenc2.exe |
"{204DBA30-38EF-4C2B-A9EB-1A5A7631AAC0}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{27B69045-5380-4990-A8A4-4C179F1619FB}" = protocol=17 | dir=in | app=c:\program files\microsoft lifecam\lifeenc2.exe |
"{2F4E67C7-2ACF-49C6-BEE7-C1FAADD8E4A6}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{2FADB775-A4AC-4BDA-8B2F-81D8E68F6121}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{33E3190C-216F-46AD-B5EE-138DCAC0236C}" = dir=in | app=e:\setup\hpznui01.exe |
"{35E0501A-AE4D-438A-BA5F-B81E53BDE6B5}" = dir=in | app=c:\program files\cyberlink\powerdirector\pdr.exe |
"{374760F9-E74A-48C5-B632-B91B42A80E86}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqpsapp.exe |
"{3A9C7F91-36B2-4023-A168-77B9D6DBF89A}" = protocol=17 | dir=in | app=c:\program files\microsoft lifecam\lifecam.exe |
"{3E0F3996-9402-468B-9628-EFE6F5023C56}" = protocol=17 | dir=in | app=c:\program files\microsoft lifecam\lifeexp.exe |
"{3F379C18-3354-406B-BA36-96D484929E63}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{47D3A88C-EA88-41D6-9187-9B186303E123}" = dir=in | app=c:\program files\hp\digital imaging\bin\hposid01.exe |
"{4BDF45AD-4681-42F8-A94B-83BF1E9B41FE}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{5087CD45-0BEF-4DBC-83C1-6E9D40C0DC75}" = protocol=6 | dir=in | app=c:\program files\microsoft lifecam\lifecam.exe |
"{520A3C68-CD4B-4E5C-8B68-867FBFC14445}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqtra08.exe |
"{56D845AC-5364-4625-B1F9-9C2E856E45CF}" = protocol=17 | dir=in | app=c:\program files\microsoft lifecam\lifetray.exe |
"{58EAC397-623F-4EE4-AB1C-65CCF4BB08D6}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{592E5252-E0F1-4F63-A54D-9AE5E47609AF}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqusgm.exe |
"{5C8683A0-5F35-4870-9549-E01EA3669089}" = protocol=6 | dir=out | app=c:\program files\rosetta stone\rosetta stone version 3\rosettastoneversion3.exe |
"{660AF97C-44F5-4DCA-BD3D-FD82D7EDED98}" = dir=in | app=c:\program files\hp\digital imaging\smart web printing\smartwebprintexe.exe |
"{66D6F294-7B76-40DC-82BB-5511D489228E}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{6A36F253-F3E7-48F7-986F-E1B0D24D34AC}" = protocol=6 | dir=out | app=system |
"{6B67FFC7-7697-485B-90DD-CEC43FED6B9D}" = protocol=6 | dir=out | app=c:\program files\rosetta stone\rosetta stone version 3\support\bin\win\rosettastoneltdservices.exe |
"{6D39D80D-FEB6-4581-A0C7-37FA3B819A1E}" = protocol=6 | dir=in | app=c:\program files\microsoft lifecam\lifecam.exe |
"{70979FC3-A15B-4FF6-97F5-AE65B6D3C870}" = protocol=6 | dir=in | app=c:\program files\microsoft lifecam\lifetray.exe |
"{7742DAAA-D6F7-428B-8A8B-6344C95AD7B8}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{793B2F9F-0567-4FCB-98EF-C943C5F0041A}" = protocol=6 | dir=in | app=c:\program files\microsoft lifecam\lifeexp.exe |
"{7D95CA65-2CE0-49E7-92E0-0DB41B0FA068}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{7DBE73FD-8853-4186-8C57-09646D493AB9}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{84F8CF81-AA2F-4B5A-A1B8-7E7F5FC7B2D6}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpfccopy.exe |
"{8A652A0A-DD6E-42AF-A1BB-9695780EDAB7}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqgplgtupl.exe |
"{97565D35-459C-4254-BC95-F3D201DDCF56}" = dir=in | app=c:\program files\common files\hp\digital imaging\bin\hpqphotocrm.exe |
"{9AAC823B-AA51-4AA1-9E37-E93E03AE43A2}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqusgh.exe |
"{9F7B4E15-A5ED-46F8-B565-ADE955EBF81A}" = protocol=6 | dir=in | app=c:\program files\microsoft lifecam\lifetray.exe |
"{AC7B5F46-05A0-45CF-B9FA-905319FAA146}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqsudi.exe |
"{ACDA4BB3-CE93-4331-ACC0-0117E65265AA}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqste08.exe |
"{B0A5A3EE-061C-4E23-85B7-15C51E8166C2}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpiscnapp.exe |
"{B3CCC041-F13D-4805-9929-0358161757E8}" = protocol=6 | dir=in | app=c:\program files\microsoft lifecam\lifeexp.exe |
"{B4EB79A9-B679-4768-AE29-9ADF2361B4F4}" = dir=in | app=c:\program files\rosetta stone\rosetta stone version 3\support\bin\win\rosettastoneltdservices.exe |
"{BB9F2BD1-CCE9-4405-8AD3-502AA828FFA5}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqgpc01.exe |
"{C572C065-B425-453D-8D46-080D6ED7F36D}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C7B5F06B-786F-40B9-8D40-976D4BB554C6}" = protocol=17 | dir=in | app=c:\program files\microsoft lifecam\lifecam.exe |
"{C9F60DA5-BA9F-4A1E-A76C-6C315A6EC1CE}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{CB9B113B-790B-468E-9B0F-47CFC00633AE}" = protocol=6 | dir=in | app=c:\program files\microsoft lifecam\lifeenc2.exe |
"{CF9367EB-663C-40A2-ABED-791C358512E7}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{E36C475F-96B0-476D-8DA5-8C8EB042E512}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E503EC0D-AF5E-4A81-8E3C-F5D5269057D8}" = protocol=17 | dir=in | app=c:\program files\microsoft lifecam\lifeexp.exe |
"{E55F89FE-4BE2-4F89-9992-69A53BD99117}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{E77B50AC-E220-4361-B46C-3B5A40C17054}" = protocol=6 | dir=in | app=c:\program files\microsoft lifecam\lifeenc2.exe |
"{E903E607-52FC-42D3-92F1-0877034609B7}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{ED9FFF9C-648B-4CEB-8D68-3CF59338154D}" = dir=in | app=c:\program files\rosetta stone\rosetta stone version 3\rosettastoneversion3.exe |
"{F8C5943A-AD94-4BE2-8FD5-A634094FE38A}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpoews01.exe |
"{FB75AE96-0D70-458F-A512-9A935A837124}" = dir=in | app=c:\program files\hp\hp software update\hpwucli.exe |
"{FB8E62B5-F804-4617-AACF-01C28C622B97}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"TCP Query User{BE68239D-CF44-4E14-A10E-B38027D392BF}C:\users\joe\appdata\local\temp\{57764780-e33b-11d1-96ed-00a024a83a15}\k_update.exe" = protocol=6 | dir=in | app=c:\users\joe\appdata\local\temp\{57764780-e33b-11d1-96ed-00a024a83a15}\k_update.exe |
"UDP Query User{A0BC4B2C-199F-4F19-AB7A-F33B4A81D66E}C:\users\joe\appdata\local\temp\{57764780-e33b-11d1-96ed-00a024a83a15}\k_update.exe" = protocol=17 | dir=in | app=c:\users\joe\appdata\local\temp\{57764780-e33b-11d1-96ed-00a024a83a15}\k_update.exe |

 

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_{707EB912-C597-49D8-9460-46CC9AB03EBE}" = Corel Painter Photo Essentials 4
"{029B5901-1F27-4347-9923-E8ACC8F54E15}" = Snapfish Picture Mover
"{02E89EFC-7B07-4D5A-AA03-9EC0902914EE}" = VC 9.0 Runtime
"{06A1D88C-E102-4527-AF70-29FFD7AF215A}" = Scan
"{097CDB1E-07C9-40F1-9972-F0F9F3A287E4}" = Network
"{0A2C5854-557E-48C8-835A-3B9F074BDCAA}" = Python 2.5
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0E19A83E-F53B-40CF-8C91-96F32D955E6A}" = LightScribe System Software 1.10.23.1
"{0EC7C406-B592-4686-BAC1-AD29A85EAE6A}" = HP Driver Diagnostics
"{1458BB78-1DC5-4BC0-B9A3-2B644F5A8105}" = DeviceDiscovery
"{150B6201-E9E6-4DFB-960E-CCBD53FBDDED}" = HPProductAssistant
"{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
"{17504ED4-DB08-40A8-81C2-27D8C01581DA}" = Windows Live Remote Service Resources
"{19A4A990-5343-4FF7-B3B5-6F046C091EDF}" = Windows Live Remote Client
"{19a5dd5e-9675-41ef-b02a-5bdb53fb5557}" = C309a
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1BCE2581-B7CA-4BB4-BDFB-D113506AA38B}" = HP Easy Setup - Frontend
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite Deluxe
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{209CDA54-D390-46A2-A97C-7BF61734418D}" = WeatherBug Gadget
"{20EFC9AA-BBC1-4DFD-81FF-99654F71CBF8}" = HPPhotoSmartDiscLabel_PrintOnDisc
"{2110AF8F-F6E9-4712-A185-1B839C60822E}" = Rosetta Stone Ltd Services
"{227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0}" = Windows Live Remote Service
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{247C5DDA-FFD7-44E0-8BF7-79BC80A0BF87}" = Windows Live Family Safety
"{254C37AA-6B72-4300-84F6-98A82419187E}" = Hewlett-Packard Active Check
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 25
"{2902F983-B4C1-44BA-B85D-5C6D52E2C441}" = Windows Live Mesh ActiveX Control for Remote Connections
"{292F0F52-B62D-4E71-921B-89A682402201}" = Toolbox
"{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
"{2D6E3D97-1FDF-4993-AC75-72F59EC445C5}" = Windows Live Family Safety
"{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}" = HP Update
"{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App" = Update Installer for WildTangent Games App
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{36C97B5B-5593-45B8-B50E-DAD87036BD9D}" = Microsoft LifeCam
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{42BBA4CC-EFB6-4653-A2CC-F305D4B399C3}" = PS_AIO_07_D110_SW_Min
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{464B3406-A4D0-4914-910F-7CA4380DCC13}" = Windows Live Remote Client Resources
"{468D22C0-8080-11E2-B86E-B8AC6F98CCE3}" = Google Earth
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.5
"{4E7C28C7-D5DA-4E9F-A1CA-60490B54AE35}" = UnloadSupport
"{50816F92-1652-4A7C-B9BC-48F682742C4B}" = Messenger Companion
"{5115C036-C0D5-4E1B-81C9-542CA967478A}" = muvee autoProducer 6.1
"{53652DA6-AD2D-4B0F-80BA-6F3CFE2B48D7}" = ZoneAlarm Security
"{54CCA4E2-D15D-4927-A866-2D33BFED4A8E}" = ZoneAlarm Firewall
"{55979C41-7D6A-49CC-B591-64AC1BBE2C8B}" = HP Picasso Media Center Add-In
"{565E7B0E-B76B-4EAD-9753-F1E72A5CF12E}" = HPAppStudio
"{57764780-E33B-11D1-96ED-00A024A83A15}" = Kensington MouseWorks
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{5B025634-7D5B-4B8D-BE2A-7943C1CF2D5D}" = Status
"{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}" = Segoe UI
"{61F25370-7465-4404-BE28-4629BF808699}" = LightScribe Applications
"{64E72FB1-2343-4977-B4A8-262CD53D0BD3}" = Corel Paint Shop Pro Photo X2
"{65CB4C08-C47B-4A7E-A6A4-50C06ADA5FC6}" = Adobe AIR
"{669D4A35-146B-4314-89F1-1AC3D7B88367}" = Hewlett-Packard Asset Agent for Health Check
"{676981B7-A2D9-49D0-9F4C-03018F131DA9}" = DocProc
"{681B698F-C997-42C3-B184-B489C6CA24C9}" = HPPhotoSmartDiscLabelContent1
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69BDE82E-C14F-3309-9813-E5F4E6111920}" = Google Chrome
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{707EB912-C597-49D8-9460-46CC9AB03EBE}" = Corel Painter Photo Essentials 4
"{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp" = WildTangent Games App
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{72E3FF67-450F-4ADD-99A7-4147780F6C7B}_is1" = Shaw Support 8.1.1
"{73A43E42-3658-4DD9-8551-FACDA3632538}" = HP Advisor
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1}" = Bing Bar
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{7B08D306-7266-4647-A926-2F78817ED1E0}" = Microsoft Corporation
"{80F7CA44-F3A5-4853-8BA6-DDF57CD4F078}" = Rosetta Stone Version 3
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8D03A164-B586-4318-AFE6-870A5E2739C1}" = PHOTORECOVERY LE
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8EE94FD8-5F52-4463-A340-185D16328158}" = WebReg
"{8F157931-6E16-4AB6-BCAF-0C56D286CE3E}" = ZoneAlarm Antivirus
"{8FF6F5CA-4E30-4E3B-B951-204CAAA2716A}" = SmartWebPrinting
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00B0-0409-0000-0000000FF1CE}" = Microsoft Save as PDF Add-in for 2007 Microsoft Office programs
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{917443c8-4fab-4c87-8ef3-ac150db4d42c}.sdb" = PC Tune-Up
"{91D3AD6F-09CD-4695-9FA3-8FB15429BE97}" = D110
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95140000-00AF-0409-0000-0000000FF1CE}" = Microsoft PowerPoint Viewer
"{96421D9A-FDC8-4A9F-AEA3-6041794C394C}" = ZoneAlarm DataLock
"{9A379E7A-22ED-44FF-9293-E393D704505D}" = HP Demo
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9DBA770F-BF73-4D39-B1DF-6035D95268FC}" = HP Customer Feedback
"{A040AC77-C1AA-4CC9-8931-9F648AF178F6}" = VC 9.0 Runtime
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{A0FE0292-D3BE-3447-80F2-72E032A54875}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x86)
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A80FA752-C491-4ED9-ABF0-4278563160B2}" = 32 Bit HP CIO Components Installer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AB67580-257C-45FF-B8F4-C8C30682091A}_is1" = SIW version 2010.04.28
"{AC35A885-0F8F-4857-B7DA-6E8DFB43E6B3}" = HPSSupply
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.7)
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}" = QuickTime
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B28635AB-1DF3-4F07-BFEA-975D911B549B}" = hpphotosmartdisclabelplugin
"{B3BC9DB1-0B0A-48B0-B86B-EA77CAA7F800}" = Microsoft Corporation
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{BB3447F6-9553-4AA9-960E-0DB5310C5779}" = GPBaseService2
"{BC5DD87B-0143-4D14-AAE6-97109614DC6B}" = SolutionCenter
"{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}" = Destinations
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}" = Windows Live ID Sign-in Assistant
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{C8D47273-7A1A-4614-A3D8-263632D8A5ED}" = HP Customer Experience Enhancements
"{CAE4213F-F797-439D-BD9E-79B71D115BE3}" = HPPhotoGadget
"{CAE7D1D9-3794-4169-B4DD-964ADBC534EE}" = HP Product Detection
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"{CB84F0F2-927B-458D-9DC5-87832E3DC653}" = GearDrvs
"{CD31E63D-47FD-491C-8117-CF201D0AFAB5}" = TrayApp
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware Free Edition
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D360FA88-17C8-4F14-B67F-13AAF9607B12}" = MarketResearch
"{d3c33f97-7936-4301-815f-2cf4ea5a467f}" = PS_AIO_05_C309_Software_Min
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D6DE02C7-1F47-11D4-9515-00105AE4B89A}" = Paint Shop Pro 7
"{D9D8F2CF-FE2D-4644-9762-01F916FE90A9}" = HPPhotoSmartDiscLabel_PaperLabel
"{DBC1DE57-B55A-4D57-9769-1DB9BE506AF7}" = HP Photosmart D110 All-In-One Driver Software 14.0 Rel. 7
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E14B8A08-42B3-4676-9E91-1D39F8158DA1}" = HP Print Diagnostic Utility
"{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager
"{E517094C-06B6-419F-8FFD-EF4F57972130}" = QuickTransfer
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{EB879750-CCBD-4013-BFD5-0294D4DA5BD0}" = Apple Application Support
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}" = Microsoft Office Live Add-in 1.5
"{F8131A35-47FD-27AD-116D-0E79AF5DE5EE}" = Acrobat.com
"{FA0FF682-CC70-4C57-93CD-E276F3E7537E}" = BufferChm
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"258AB6C5CDFB70CF3FE1AC356A349759073E8252" = Windows Driver Package - Realtek Semiconductor Corp. HD Audio Driver (10/18/2011 6.0.1.6482)
"7-Zip" = 7-Zip 9.22beta
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Audacity 1.3 Beta (Unicode)_is1" = Audacity 1.3.11 (Unicode)
"B38D84B322FC50F215EC68F14E23D1E2ADCA14D0" = Windows Driver Package - Realtek (RSUSBSTOR) USB (10/27/2010 6.1.7600.30126)
"CCleaner" = CCleaner
"CNXT_MODEM_PCI_VEN_14F1&DEV_2F20&SUBSYS_200C14F1" = Soft Data Fax Modem with SmartCP
"Color Efex Pro 3.0 Corel Sampler" = Color Efex Pro 3.0 Corel Sampler
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"Coupon Printer for Windows5.0.0.0" = Coupon Printer for Windows
"DivX Setup" = DivX Setup
"F5 Networks Client Components" = BIG-IP Edge Client Components (All Users)
"FileZilla Client" = FileZilla Client 3.7.1
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"HP Imaging Device Functions" = HP Imaging Device Functions 14.0
"HP Photo Creations" = HP Photo Creations
"HP Smart Web Printing" = HP Smart Web Printing 4.60
"HP Solution Center & Imaging Support Tools" = HP Solution Center 14.0
"HPExtendedCapabilities" = HP Customer Participation Program 14.0
"InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"LAME for Audacity_is1" = LAME v3.98.2 for Audacity
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.75.0.1300
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft Visual Studio 2010 Tools for Office Runtime (x86)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x86)
"NVIDIA Drivers" = NVIDIA Drivers
"PC Tune-Up" = PC Tune-Up
"PC-Doctor 5 for Windows" = Hardware Diagnostic Tools
"QuicktimeAlt_is1" = QuickTime Alternative 2.1.1
"Revo Uninstaller" = Revo Uninstaller 1.90
"Shaw Internet Update_is1" = Shaw Internet Update 3.2.2
"Shop for HP Supplies" = Shop for HP Supplies
"Switch" = Switch Sound File Converter
"ToolBox" = NCH Toolbox
"WildTangent hp Master Uninstall" = HP Games
"WinLiveSuite" = Windows Live Essentials
"WTA-002492f4-634d-4c1f-b759-a8fca310d7e5" = Escape Rosecliff Island
"ZoneAlarm Extreme Security" = ZoneAlarm Extreme Security

========== Last 20 Event Log Errors ==========

[ OSession Events ]
Error - 07/11/2010 2:20:57 PM | Computer Name = Joe-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session
lasted 14 seconds with 0 seconds of active time. This session ended with a crash.

Error - 07/11/2010 2:21:26 PM | Computer Name = Joe-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session
lasted 8 seconds with 0 seconds of active time. This session ended with a crash.

Error - 05/04/2011 2:47:57 PM | Computer Name = Joe-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 4
seconds with 0 seconds of active time. This session ended with a crash.


< End of report >

 

All processes killed
Error: Unable to interpret <Code:> in the current context!
========== OTL ==========
Error: No service named vsdatant7 was found to stop!
Service\Driver key vsdatant7 not found.
File System32\drivers\vsdatant.win7.sys not found.
Error: No service named PcdrNdisuio was found to stop!
Service\Driver key PcdrNdisuio not found.
File system32\DRIVERS\pcdrndisuio.sys not found.
Error: No service named NwlnkFwd was found to stop!
Service\Driver key NwlnkFwd not found.
File system32\DRIVERS\nwlnkfwd.sys not found.
Error: No service named NwlnkFlt was found to stop!
Service\Driver key NwlnkFlt not found.
File system32\DRIVERS\nwlnkflt.sys not found.
Error: No service named Lbd was found to stop!
Service\Driver key Lbd not found.
File system32\DRIVERS\Lbd.sys not found.
Error: No service named Lavasoft Kernexplorer was found to stop!
Service\Driver key Lavasoft Kernexplorer not found.
File C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys not found.
Error: No service named IpInIp was found to stop!
Service\Driver key IpInIp not found.
File system32\DRIVERS\ipinip.sys not found.
Error: No service named cpuz134 was found to stop!
Service\Driver key cpuz134 not found.
File C:\Users\Joe\AppData\Local\Temp\cpuz134\cpuz134_x32.sys not found.
Error: No service named catchme was found to stop!
Service\Driver key catchme not found.
File C:\Users\Joe\AppData\Local\Temp\catchme.sys not found.
Error: Unable to stop service KLIF!
Unable to delete service\driver key KLIF.
File move failed. C:\Windows\System32\drivers\klif.sys scheduled to be moved on reboot.
Error: Unable to stop service KL1!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\KL1 deleted successfully.
File move failed. C:\Windows\System32\drivers\kl1.sys scheduled to be moved on reboot.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@photoproduct.rocketlife.com/RocketLife App Viewer;version=0.8\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{2670000A-7350-4f3c-8081-5663EE0C6C49}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2670000A-7350-4f3c-8081-5663EE0C6C49}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{2670000A-7350-4f3c-8081-5663EE0C6C49}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2670000A-7350-4f3c-8081-5663EE0C6C49}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{DDE87865-83C5-48c4-8357-2F5B1AA84522}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DDE87865-83C5-48c4-8357-2F5B1AA84522}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{DFB852A3-47F8-48C4-A200-58CAB36FD2A2}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DFB852A3-47F8-48C4-A200-58CAB36FD2A2}\ not found.
Registry key HKEY_USERS\S-1-5-21-3713060884-1631031299-1821023285-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\voltigeur1.net\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-3713060884-1631031299-1821023285-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\youtube.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-3713060884-1631031299-1821023285-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\youtube.com\www\ not found.
Starting removal of ActiveX control {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
C:\Windows\Downloaded Program Files\erma.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\livecall\ deleted successfully.
File Protocol\Handler\livecall - No CLSID value found not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msnim\ deleted successfully.
File Protocol\Handler\msnim - No CLSID value found not found.
ADS C:\Users\Joe\Documents\Thank You For Registering With HP.eml:OECustomProperty deleted successfully.
ADS C:\Users\Joe\Documents\RE_ Your User ID at Network Solutions.eml:OECustomProperty deleted successfully.
ADS C:\Users\Joe\Documents\Bravenet Receipt -domain name.eml:OECustomProperty deleted successfully.
ADS C:\Users\Joe\Documents\Bravenet Receipt - ACCEPTED & APPROVED.eml:OECustomProperty deleted successfully.
ADS C:\Users\Joe\Documents\Your Order is Confirmed domainbuyffl.eml:OECustomProperty deleted successfully.
ADS C:\Users\Joe\Documents\ted and chris new email and address.eml:OECustomProperty deleted successfully.
ADS C:\Users\Joe\Documents\new pau address Re_ Iannotti Dominico.eml:OECustomProperty deleted successfully.
ADS C:\Users\Joe\Documents\[HP Games] Purchase Receipt.eml:OECustomProperty deleted successfully.
ADS C:\Users\Joe\Documents\jukebox!.eml:OECustomProperty deleted successfully.
ADS C:\Users\Joe\Documents\Re_ Info Légion étrangère.eml:OECustomProperty deleted successfully.
ADS C:\Users\Joe\Documents\Walter Mitty.eml:OECustomProperty deleted successfully.
ADS C:\Users\Joe\Documents\top html code.eml:OECustomProperty deleted successfully.
ADS C:\Users\Joe\Documents\HTML template.eml:OECustomProperty deleted successfully.
ADS C:\Users\Joe\Documents\Info Pau etc.eml:OECustomProperty deleted successfully.
ADS C:\Users\Joe\Documents\info ted.eml:OECustomProperty deleted successfully.
ADS C:\Users\Joe\Documents\KNSM vertaling.eml:OECustomProperty deleted successfully.
ADS C:\Users\Joe\Documents\mail address karin.eml:OECustomProperty deleted successfully.
Unable to delete ADS C:\Users\Joe\Documents\PCTechBytes Discusses Troubleshooting Bad Hard Drives, USB 3_0, Creating Disk Images and More!.eml:OECustomProperty .
ADS C:\Users\Joe\Documents\Registration at Windows Forum - Computer Support Forums ( Windows Forum - Computer Support Forums ).eml:OECustomProperty deleted successfully.
ADS C:\Users\Joe\Documents\rosetta stone.eml:OECustomProperty deleted successfully.
Unable to delete ADS C:\Users\Joe\Documents\New Private Message at a French Foreign Legion Forum _ cervens_net.eml:OECustomProperty .
ADS C:\Users\Joe\Documents\Transcript of 3-Aug-2012 2_40_56 PM_ Visitor_ Johannes van Raamt (Joe)_.eml:OECustomProperty deleted successfully.
ADS C:\Users\Joe\Documents\zonealarm.eml:OECustomProperty deleted successfully.
ADS C:\Users\Joe\Documents\ZoneAlarm Order Information - Order #A1366774776411.eml:OECustomProperty deleted successfully.
========== SERVICES/DRIVERS ==========
========== REGISTRY ==========
========== FILES ==========
File\Folder C:\FRST not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 402 bytes
->Flash cache emptied: 56519 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Joe
->Temp folder emptied: 5188702 bytes
->Temporary Internet Files folder emptied: 288319194 bytes
->Java cache emptied: 12866487 bytes
->Google Chrome cache emptied: 38569583 bytes
->Apple Safari cache emptied: 0 bytes
->Flash cache emptied: 57496 bytes

User: LogMeInRemoteUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 2913 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 14648 bytes
%systemroot% .tmp files removed: 29320 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 6283518 bytes
RecycleBin emptied: 6175162 bytes

Total Files Cleaned = 341.00 mb


[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: Joe
->Java cache emptied: 0 bytes

User: LogMeInRemoteUser

User: Public

Total Java Files Cleaned = 0.00 mb


[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Joe
->Flash cache emptied: 0 bytes

User: LogMeInRemoteUser
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0.00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 07262013_163649

Files\Folders moved on Reboot...
File move failed. C:\Windows\System32\drivers\klif.sys scheduled to be moved on reboot.
File move failed. C:\Windows\System32\drivers\kl1.sys scheduled to be moved on reboot.
C:\Users\Joe\AppData\Local\Temp\~DF10E4.tmp moved successfully.
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(91)\Content.IE5\RBCE9WP6\1yc1ITHgB3KSE2bST1UsGQD_8r3bQIU4thpBlhLQW5kM1iKIbCnV4o8xx2836LnOD_4zbNqTRx5m2jsx5lt4mO2Yq64g8kVZp7bVlXHyUGfQzQLNkLaco-j83cxDhptsX7BF8_T5T5ML61-VO3KPOt9cEVLQ[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(91)\Content.IE5\RBCE9WP6\QS8Qnf9aotPnNG5b9FOIh3uf32QQ9L07JpLXiTgum2Otxfip_99Ifi5LgwPadROXoTcyEPUc_eRFLrEMdxyAebXUKoNU1Sd1zKLd17HUnC-umLDtn35xcgBIt9Pees6CjMj3Av-0imsMLIutpIzhiSKTuRva[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(91)\Content.IE5\RBCE9WP6\RDh_JX7bj9a7NwfMc99U7F6K7LF8xaeeNiHape71E9_AXwdHLd7k5H09Thr2WZnE_BZ9EDygP-1SuqLf6ZqqMht9vpJh-Cpl2pIvkLRbIc_-C2ydqdwaSY3IMv-rOGGUl2awfIOUyBv_si1eZ6b2PFcg3V5A[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(91)\Content.IE5\NTJHXPE1\IWcfVXxvZu9XwJ55OX7Ag,oCHtQO1ETwHPpHYX3-MxR8i55vO7OrRaBhBU7c7OsYBdR5XqWSFVyNuIkFAGD4iK6F3t7YtLBjmjXWO9FdHqDAlp-3xPZVjiEDw3VQegeQlOqCltj4cB71EmzIDKErUzWYogAQ[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(91)\Content.IE5\NTJHXPE1\IWcfVXxvZu9XwJ55OX7Ag,OT_mVlRNG7OWxwNE7G0HUS2KGKtzIe2EgqvBVWRYSuAit4E_z6XNrAiVDOdi61fHXKgQdSpvFHCBA-Vnxu7rKZLDIVi8-tx4PLFJp24qK43cQhUclzF-3JfeozzktyKYpwxIcg[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(91)\Content.IE5\NTJHXPE1\OKRbS5TfPpbgu1lwRHW2gOL8hOx5QtbDg1bV4p9Hijj1cGHjxF2S1RrLw7fpdz0mN2V_L5WzkZUqKy6csa7NBX04uc8ckaYGW0Jr3WHjjJLgBHd-REym67BVI6r-3059_Xx8ygEn0nnzCFbJkWDqXtUXoruQ[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(91)\Content.IE5\NTJHXPE1\ybMBuBDDCGxCOPOF1_uekfzjLRpcn2hRIAv1Os2Xn5w8QJQjRf9WXQqRUXGRKo9gW6sVPKiwC6dL6qJa6eSifNwWQ9n_dPll3S8qW-NoEFVfkwa2TVf8PmrVVTusPgmbOsZO-Gm_jPEWp9Ng7VGnu8a1P_qA[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(91)\Content.IE5\NJ3HLP9Q\mDj0GeczNSR7bxD1HyD3l6vQ2Y9O-P5rH32gkcRI-cfLDp9Fqs3WGw0fYraDS8UtIQ71UHLvvnb5Q8K6i0g61VGNtjXSPUIKiP3J60ZD9HHuKdR0nz-JZeBbXI4cKxKIcMNuCpEaVKC9xu8pK0ybE0ONVU9w[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(91)\Content.IE5\J5T33I2C\IWcfVXxvZu9XwJ55OX7Ag,HRhjS2I2O2QanmyvZUp_9VRTAYxV0Tma7eWd5cb2f6-VebXmHRHQUKl8LA16r2ake_k_eib2onfHuyQCVmtwqKBH_PQCCW9FVGSwm-6BDsqDetDDAEL3WbJNHXmXS-u-5oWmRw[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(91)\Content.IE5\ICJCZ8AT\gIcV_SLtdNaiJSp8-Bexe2BveEmAInCLdM-9A_esV-0onQXawqXCxAhwdY0JdP7sDKVG3Sp7hhs50fdIPqoV6uESzpsBNAfa0-6vKj04CIedkKgQShzfn0XcLyEuOSg_BYgBvBy2cVlpqmBFSjxW7Nc0N3ow[2].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(91)\Content.IE5\ICJCZ8AT\IWcfVXxvZu9XwJ55OX7Ag,Jn7c4c53In3jXq68t198L260CtuhecZor_zKuwkzIBoyoumaRs4WChMMezB5VqdJO3EA9e8W5tPfo0Edf7O48kabV3_g4Qy2xNkwARk04BEUcnegB58Wcl35pc6kpdQVgqnLdg[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(91)\Content.IE5\I0OAQO5K\n-4wt-SjNsPCNR5PQo34unf8vBPlVPNJ8zljl67-yJWOPfPyohQEFobJLRK_rdJ0NlZHLLge0Cvn1AhSxyKk6MrT2vzOV1axxtzV5Yh01mxb7KWjM0LMDT8afEy0-t2T8UfbxhL8NRqoVz0OAm0BDTdFjiWw[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(91)\Content.IE5\ANWEQOL2\IWcfVXxvZu9XwJ55OX7Ag,p92y8iJ5HUD78IF04S_ltaNVHExiox3RS3Ebs7w71O5a09zXWLNOmtzwzbzvwJ2mQW55LfOVelSTL8k6X0-KQZUfvsGcpLC4l94MG5p7u8ROyBXSYEsegNFKFlyK6L7Xzq0uMw[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\OLEV5OU5\45e00ae34577bedee515d7259941e4fb2bdeaf7bbecfd107d3b303b6a727ff443eb4f4ceccbd7bbc7c8b3cf2180a1eb6b52c141270343700e3cd08fe7f79d2ec91eb37caac476aef680d03fa4d6d[1].txt not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\OLEV5OU5\bUk4JcbTfh2oqdVw1bQj10HO3FJsn-2eYmtjLlynn3bIXpyTwcGG0IRwq2bgYgGpaaFdX62__KAy4nO7DkMRBZ4fwAL4nttK9NHJTiZDKb6MnuqyERRLiRgQ&callback=google.LU[1].loadFeaturemap_834_0 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\OLEV5OU5\cdcfacfedc5e0ce50ca86731b1a7e1c6fdb90da278c83cc60716739cf966fa1683dda34ec993a6557c4b034b5b696b09e9dce4881786b02ab8e1e2201222230858cdd0487f1e02dcc9ea00c3fccf[1].txt not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\OLEV5OU5\GDn_B1ykvcdoGkpOddjvMRSnRKNL45VPjIrln7eARzc6pHdzD9AutLxXUcUg-b9PE6ElwnoHjDsD5lxAfHdjoB8IYDlZJ9YNmgf1ismsVV2PC88oEBsV1SaA&callback=google.LU[1].loadFeaturemap_805_0 not found!

 

File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\OLEV5OU5\IWcfVXxvZu9XwJ55OX7Ag,uK-YvPHlDXnR87r-CjyVejTGMmOo3K2kMCkISc_aCjkTuU_pqPK7e59oVh7Op69z6emdxrjxgED3yN75LNnHQwV-4081QoQ0enyK0FBi3MY4RXjUDXZ-H0GA-hcXsM81r8S7Sg[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\OLEV5OU5\XQxgxTuReaPb3V2F3in_h7CndR0FafmR7Bx6oDBOv-JejvLeEUNtD3nk6N1iSNxtzQr-SDmtJT95BDaoRgxQaj-NtAjjDrJjVE2mb_aV_uWaodcv_-R9IQkw&callback=google.LU[1].loadFeaturemap_179_0 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\LV7HLU69\category=househom;!category=gardenweb;chan=home;sect=gardenweb;tandomad=none;horiz=;boardid=iowa;dcopt=ist;sz=728x90,970x66;pos=1;tile=1;pm=1;ord=13205482125500[1] not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\LV7HLU69\category=househom;!category=gardenweb;chan=home;sect=gardenweb;tandomad=none;horiz=;boardid=iowa;sz=120x600,160x600,300x250;pos=2;tile=2;pm=1;ord=13205482125500[1] not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\LV7HLU69\enweb_mb;!category=househom;!category=gardenweb;chan=home;sect=gardenweb;tandomad=none;horiz=;boardid=iowa;sz=468x60,728x90;pos=4;tile=4;pm=1;ord=13205482125500[1] not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\LV7HLU69\id=cb984dd7;abr=!webtvs;camp=ls_body_diet;ctx=42;ctx=95;ctx=154;ctx=176;ctx=177;ctx=199;ctx=230;ctx=277;ctx=410;pos=pencil;tile=20;sz=470x60;ord=113353010798076[1] not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\LV7HLU69\IWcfVXxvZu9XwJ55OX7Ag,rwvgqtERpWOEGnZoAq9cB52be_TLwj6cLUswQqmGgQFlLR1AbRmuaMLCrKFYgN_NWFGLdIK1mD4Oj6UNnicFlhXgUcVcy4BsnvM1ArtY-bbscE-GotMgfLPgwLEHV2ZW8uLRNA[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\LV7HLU69\MEGe8VH2CzUOkuj4diL2biDIhZ7ae5R1wcJUoVOOEmN6JbJKIqkykbMakCS67Qr2AHuWFI_FtD0dw6mrXDok1cJUAU411i7V4mmpIinOvHITh7B-tIdD8EBksg0dC4zly90W8Kld4A0whUKQGsPbwCZjXC_f[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\LV7HLU69\nmqgVqPMHR2Tm6UGiImIsNpHcTnKnuL-mLIVz0cSAOIqs74wsE8S6I8NFZi9I1ybwr44NixhBsmPjzshRWSYPC1yZCNH1av3f71hn8Z9dFL6LSBBAWPb9QorHDl0mVnwXaiYceP-IV_4dMkh7SG9Ye7c_7uP[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\LV7HLU69\ygvvip7rsnCKGOCLUErPDGUq_NZ7ISY1nbalU2fol8VTywLmzDl2f1JksjM6m91rkxpHNYIhvUN2q4pYNk7aVj7Wm7O39ui8yyd9P2ubhmf5EbolLbrq-Hk1&callback=google.LU[1].loadFeaturemap_776_0 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\LV7HLU69\ZoAq9cB52be_TLwj6cLUswQqmGgQFlLR1AbRmuaMLCrKFYgN_NWFGLdIK1mD4Oj6UNnicFlhXgUcVcy4BsnvM1ArtY-bbscE-GotMgfLPgwLEHV2ZW8uLRNA&callback=google.LU[1].loadFeaturemap_138_0 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\K8HDGOI9\41def2d895fe3da869fd77f102610ee7a73d6c4a24236f46aedd48a86a37c5c981e823b7e96f6abe3737104aa853e7071787f4b2e6dc22b9019ad8d17c5dc9294ba4364ce73466db2793016417e7[1].txt not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\K8HDGOI9\Dn4BCxKExQ2ox9voFqw9MEpJlfACy5fXbD_FYWzvvXuyKwQhVrD1zAp79Dcc_wUfAcx6d9U20165mlasqBb89wi_3J9kyqMOFk8GylKJkYMBu83Imh4AfvfSV&callback=google.LU[1].loadFeaturemap_81_0 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\K8HDGOI9\er_domain=www.google[1].ca;rsi=;headline=neolithicfindsunearthedbydig;module=page-bookmark-links;is_module=true;asset_type=story;keyword=;tile=2;ord=78446059869460 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\K8HDGOI9\EXQxgxTuReaPb3V2F3in_h7CndR0FafmR7Bx6oDBOv-JejvLeEUNtD3nk6N1iSNxtzQr-SDmtJT95BDaoRgxQaj-NtAjjDrJjVE2mb_aV_uWaodcv_-R9IQkw&callback=google.LU[1].loadFeaturemap_60_0 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\K8HDGOI9\gle[1].ca;rsi=;headline=neolithicfindsunearthedbydig;module=programme-breakout;topic=fast-track;is_module=true;asset_type=story;keyword=;tile=10;ord=78446059869460 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\K8HDGOI9\IWcfVXxvZu9XwJ55OX7Ag,v9be1735Zy-FhlyBqKVT02D8nvqK1zjj6ATdrzvYj5voxCNFJP4mqveyl8P7yg1XQ5FV7HyLgBiZdDsFp4VvdobhA2PD6eqMkRPDWuGneDPnWu1aVoMqL0a2o5TDvjHJxt3GLA[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\K8HDGOI9\Iz4gHFuDchH9_vHdm947uaTj7OR9hMMhlF1P9RBYBPRgqiD-OLv9hyEWoOrhC8Q8ASjdfHBa_2MLfPUMUXDf0YidbAf54_itXc9aiikB8EP-VSdQtVjJQma0r5B7jqXzkjdSfdg-Iu3jZ9g7WQ1PDfKzI45I[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\K8HDGOI9\omain=www.bbc.co.uk;referrer_domain=www.google[1].ca;rsi=;headline=neolithicfindsunearthedbydig;is_partner=true;asset_type=story;keyword=;tile=9;ord=78446059869460 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\K8HDGOI9\VjsdxtpTG4qqjzKQTnKMX8YtLU8laaYl3KROSz20RgM9dlS4k_uQqvLjtFLs1n991tPLmLXgPU9hR9JmCxCg4n927thBIV_RbqwfrTbqpqdhh-Jk04ofBaNY6ZQmutB91F4X00WvHf4g_iM9ng6ijOaIQrXV[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\K8HDGOI9\VJxNtLdsdeNE3YaM0_8DAUGbymxFnWdxh5qTyXHUZcMecXISq62CklPG9QaO8XV74dxRAbW2dWimzsUDPnOssr6MYuNHpkhHavbWLud5Zo1bk7hBwCUWBj9awUfJ1mJpeSA4yWiniip549iuYIqGdtG7oW4L[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\K8HDGOI9\YWwOCAcZyol_u6mQSZYctba1kOLD-4S-5IZDJnVhcVrEiT0Lz9yL7biRut6F7VOceSequtVAx4F7h2Q34HNULWPCcWSjfIF-GSpKD7KlLZA9O0Vm41yMQzCL4Jx_Ftu7OsQUnxx85ovI7uxUBKgSq8yDLoCQ[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\F1DYERKU\ehom;!category=gardenweb;!c=mb;!c=btf;chan=home;sect=gardenweb;tandomad=none;horiz=;boardid=iowa;sz=120x600,160x600,300x250;pos=3;tile=3;pm=1;ord=13205482125500[1] not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\F1DYERKU\IWcfVXxvZu9XwJ55OX7Ag,gkTrWKS9TWklNJDs8w2UnjU-lO2UrbPe_X-C0LY3hmUJq7_2FRdrT9-B_fB-vDDS3Loys49tXQsw4werg2EeXmuKUmur0UbcrE_xwZTOMd_dH30TaTQpGdjmox41LWZWtgoQ-Q[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\F1DYERKU\IWcfVXxvZu9XwJ55OX7Ag,mU1EL22KWeV-Jsw3ksHQdHyRWMSIGDP5bEOSOv6cedUR2eVDeBYqzqMYClwjGo9GRYyjSzxs4LzRN72Ai8HySC4xOTtM5afZT1cFtRATK6uNCEkRTSgkLDcX181PSxVgmVqP7w[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\F1DYERKU\ntentid=cb984dd7;abr=!webtvs;camp=ls_body_diet;ctx=42;ctx=95;ctx=154;ctx=176;ctx=177;ctx=199;ctx=230;ctx=277;ctx=410;pos=1;tile=2;sz=160x600;ord=113353010798076[1] not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\F1DYERKU\ontentid=cb984dd7;abr=!webtvs;camp=ls_body_diet;ctx=42;ctx=95;ctx=154;ctx=176;ctx=177;ctx=199;ctx=230;ctx=277;ctx=410;pos=1;tile=1;sz=728x90;ord=113353010798076[1] not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\F1DYERKU\ontentid=cb984dd7;abr=!webtvs;camp=ls_body_diet;ctx=42;ctx=95;ctx=154;ctx=176;ctx=177;ctx=199;ctx=230;ctx=277;ctx=410;pos=2;tile=6;sz=728x90;ord=113353010798076[1] not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\CU0BN81F\0CEgLCCvF1u7EOWwdzgLuFQYQyXe0z29R50aVPlHoV7SRZs5aIfvMCTZNo7KzcZpJjs_okoBhht7lQcbCchnVDGhmOle70OBFtHBwHnfZwMYasdJAf3F_D2w&callback=google.LU[1].loadFeaturemap_857_0 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\CU0BN81F\225WOuuAgXcU-G9g0tJ9FQEvY2QqkU6nJxyzbUk4JcbTfh2oqdVw1bQj10HO3FJsn-2eYmtjLlynn3bIXpyTwcGG0IRwq2bgYgGpaaFdX62__KAy4nO7DkMRBZ4fwAL4nttK9NHJTiZDKb6MnuqyERRLiRgQ[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\CU0BN81F\4086c4171c2c33259f790c7fc1bdac44e41532f2263bf1f671ab235391437c61b9522e236017980c7ea61c70357ef168e5d0bf850148dc6cc6cfd636599e3d78a5e6bef266c269c618e001c1ed5d[1].txt not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\CU0BN81F\c;domain=www.bbc.co.uk;referrer_domain=www.google[1].ca;rsi=;headline=neolithicfindsunearthedbydig;is_mpu=true;asset_type=story;keyword=;tile=11;ord=78446059869460 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\CU0BN81F\eferrer=nonbbc;domain=www.bbc.co.uk;referrer_domain=www.google[1].ca;rsi=;headline=neolithicfindsunearthedbydig;asset_type=story;keyword=;tile=3;ord=78446059869460 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\CU0BN81F\IWcfVXxvZu9XwJ55OX7Ag,3jg8XLrTkDALxp3bIO2sIf87mdvj9Dq5XfW_hOO_KOX_qTr18PrNfnkI6HkMUDIQjp2Rq17P5AyQj8pJOhHjpzcBOTqwakHXGn9gsngCa-krzUfKlMym5F4bB6G3rBbMTFZ2nA[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\CU0BN81F\IWcfVXxvZu9XwJ55OX7Ag,GhtCaIqrCDs5KYB8_-WgYeKSdAp98p4hIeomgNtFDUssD8i0lnAa0SpJ7QK13xWV93tYpt0xGUSFRWLQSY4ctw5Aua1nVdjD29juDaw2IZNXjJk4sitGPX4ar0hl7t6c-0rsQw[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\CU0BN81F\IWcfVXxvZu9XwJ55OX7Ag,NNBE-yl3fjKhH_GDn_B1ykvcdoGkpOddjvMRSnRKNL45VPjIrln7eARzc6pHdzD9AutLxXUcUg-b9PE6ElwnoHjDsD5lxAfHdjoB8IYDlZJ9YNmgf1ismsVV2PC88oEBsV1SaA[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\CU0BN81F\IWcfVXxvZu9XwJ55OX7Ag,upqFVQYvsVbUDZByNuLCLQ8eLGfh097fpDXO5A-qHdxxuZsDQoX-bA0Xj-N6luTkbuSLDsohhGgSXvEjHoJNM4h2NgYs1vJmbrfLYXxvYdfZegMzNykcThx9QeuxGjUHS_qoMw[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\CU0BN81F\JnVhcVrEiT0Lz9yL7biRut6F7VOceSequtVAx4F7h2Q34HNULWPCcWSjfIF-GSpKD7KlLZA9O0Vm41yMQzCL4Jx_Ftu7OsQUnxx85ovI7uxUBKgSq8yDLoCQ&callback=google.LU[1].loadFeaturemap_129_0 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\CU0BN81F\jYaUjghaE5tWf9xCW211fKUY5CbHeyQYUi94Yc0HL2sKxtL0wdfam3hHCCnf2vvZzku5wdE1E_AAfN3yz8cTef24L-6hIWOHR77sD67SjDEpBVxVYzzH8SxW3jr1MnjDk_AwSWlZO9zPFZWevReY2-8L-KMR[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\CU0BN81F\le[1].ca;rsi=;headline=neolithicfindsunearthedbydig;module=range-most-popular;topic=most-popular;is_module=true;asset_type=story;keyword=;tile=4;ord=78446059869460 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\CU0BN81F\omain=www.bbc.co.uk;referrer_domain=www.google[1].ca;rsi=;headline=neolithicfindsunearthedbydig;is_partner=true;asset_type=story;keyword=;tile=6;ord=78446059869460 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\CU0BN81F\omain=www.bbc.co.uk;referrer_domain=www.google[1].ca;rsi=;headline=neolithicfindsunearthedbydig;is_partner=true;asset_type=story;keyword=;tile=8;ord=78446059869460 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\CU0BN81F\yBqKVT02D8nvqK1zjj6ATdrzvYj5voxCNFJP4mqveyl8P7yg1XQ5FV7HyLgBiZdDsFp4VvdobhA2PD6eqMkRPDWuGneDPnWu1aVoMqL0a2o5TDvjHJxt3GLA&callback=google.LU[1].loadFeaturemap_440_0 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\CU0BN81F\yQEd-WdD4A13OcrEWfpukF296Xuv-wVo50hGiJFs_5P-eyFVmarLahnsJLENqqyiVJPfW2g6_LojqyQSCBLHGO9ChsN0FHsZb6VL0P-WcPGd2Aysym0GTP7gAzUjPwAIGcxBeOkcY4QW24LfuVWE2hMaZX-c[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\9LOIH1WR\7UY7b07sdATjhgrmLuuWIOhujftc-X_K-2_Dn4BCxKExQ2ox9voFqw9MEpJlfACy5fXbD_FYWzvvXuyKwQhVrD1zAp79Dcc_wUfAcx6d9U20165mlasqBb89wi_3J9kyqMOFk8GylKJkYMBu83Imh4AfvfSV[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\9LOIH1WR\c270436b1c61f58895b1a883f637d1d40df3fa89277b09fe2df5966f0ccfe1cfb04c5c3cd05be353779d95b45cbc349a0df38722dbb976af8ec1168ff31aa7d167f00245ab8bd8d2a124051be1e6[1].txt not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\9LOIH1WR\f90d41c9524bfa2c32f04521c4628ad192240f2e8621e2f8a5bed34f5fbf0efd6d6de5abe697b9f71bd2389b26f14a1532dc826ba8508bc6e108df97a6557c4d521701733921bfd2d59a010e2dd8[1].txt not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\9LOIH1WR\IWcfVXxvZu9XwJ55OX7Ag,AqI7q4jvZl6qO-0CEgLCCvF1u7EOWwdzgLuFQYQyXe0z29R50aVPlHoV7SRZs5aIfvMCTZNo7KzcZpJjs_okoBhht7lQcbCchnVDGhmOle70OBFtHBwHnfZwMYasdJAf3F_D2w[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\9LOIH1WR\IWcfVXxvZu9XwJ55OX7Ag,FUkPzk0L4M8zzEXQxgxTuReaPb3V2F3in_h7CndR0FafmR7Bx6oDBOv-JejvLeEUNtD3nk6N1iSNxtzQr-SDmtJT95BDaoRgxQaj-NtAjjDrJjVE2mb_aV_uWaodcv_-R9IQkw[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\9LOIH1WR\IWcfVXxvZu9XwJ55OX7Ag,qIq7GWNayOdwR6zk_7YUm5rKDJnXImi5nDEpFKsjJz16V-Rr60MapPfzL-vPpj2bk-yZeBhxrhDvHhwellAZwj15x15oTQ6sZdfRKtBzkZLloW9bGjNAbckPzsh7ND2udwRULg[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\9LOIH1WR\jGrr-0jr-zWI67OkqBpsxodl2xI7_wMRW9J3Ziq1RW9bp5Jveh7yoIi4-82XnfZNafC-vCuXeelC4ff71ksyShLEUR_saH4FJ8P3SA36gNy4JVdTPiOX67tDMjuUTeMIjaEvaFsPvjdBvmCS8juOw352j_-Z[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\9LOIH1WR\kCl4hpRsth_QBThSEdZH5O4eO75QMXt9WBwUtObhwIX_zb_jQEhcT7J7i48D6BameGOHhvxBpkF82genV9a1HvhH75utvHv7lE5MhNBnCksG0Yr8xUO1H0xAz694PHu5yyXIlWYZzxqOX_uk3Yhfua_zhuGY[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\9LOIH1WR\nbbc;domain=www.bbc.co.uk;referrer_domain=www.google[1].ca;rsi=;headline=neolithicfindsunearthedbydig;asset_type=story;keyword=;tile=1;dcopt=ist;ord=78446059869460 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\9LOIH1WR\omain=www.bbc.co.uk;referrer_domain=www.google[1].ca;rsi=;headline=neolithicfindsunearthedbydig;is_partner=true;asset_type=story;keyword=;tile=7;ord=78446059869460 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\9LOIH1WR\phwtTFPcoIi19fLovWn31VArpwuLOsjMq8BgJqQIq7Xtn6gbWJTIadxK1Wr3ifZHtIV1sObsuVwICjtAEVMPIAp5TW-vSXC9lQpbFiA7czbmoIx9t74K-sWKQSSCMhHr7jDm5CXSHoE5OiZsK6THXTPeZqZw[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\9LOIH1WR\Yc0HL2sKxtL0wdfam3hHCCnf2vvZzku5wdE1E_AAfN3yz8cTef24L-6hIWOHR77sD67SjDEpBVxVYzzH8SxW3jr1MnjDk_AwSWlZO9zPFZWevReY2-8L-KMR&callback=google.LU[1].loadFeaturemap_799_0 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\9LOIH1WR\yXHUZcMecXISq62CklPG9QaO8XV74dxRAbW2dWimzsUDPnOssr6MYuNHpkhHavbWLud5Zo1bk7hBwCUWBj9awUfJ1mJpeSA4yWiniip549iuYIqGdtG7oW4L&callback=google.LU[1].loadFeaturemap_393_0 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\9EZVHEPU\5JckZJjOahgiSii0KhYcNlEYarkvVgEAFwiBx9jg8VSD9Ww8HCJZmUbn4qYCrOe10P06zmCTaxKMw6HBzs-Dmhrtjgm8P82FIhp_9pBB_dJNGgvKryBrKO0mtLOWTz4oZSUcVBFaMQhNTqLyhKQ5A7_LeGA[1].jpeg not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\9EZVHEPU\5RtuivfVXTeTI4ciOHVnC0IVN6Dv6jyXIWPTIu8_ZcD_UB9lEj2SFb2xLI5tb515gTXeF0cMiGEyOOdZ3wJCN-wBJYIV3tJremdC-8pZD6OI-TvpPC5Anw8_UWY5n-kKejEDC2yZeKXKpv9uHZmbv1F8JkY[1].jpeg not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\9EZVHEPU\8e0c369fa478514b7bdfb5dc8593288d2a3f37a7b6ed07ae07fbaa9d86ccde1482cd9c6988906ce63d0b1c6af774a62bca01c629a32838896f8e04fcc1c3dfa09cc2dffa94be887d4b3902e4d8c6[1].txt not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\9EZVHEPU\br=!webtvs;camp=ls_body_diet;ctx=42;ctx=95;ctx=154;ctx=176;ctx=177;ctx=199;ctx=230;ctx=277;ctx=410;pos=1;dcopt=ist;tile=3;sz=300x250,300x600;ord=113353010798076[1] not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\9EZVHEPU\cb984dd7;abr=!webtvs;camp=ls_body_diet;ctx=42;ctx=95;ctx=154;ctx=176;ctx=177;ctx=199;ctx=230;ctx=277;ctx=410;pos=2;tile=4;sz=300x250,300x600;ord=113353010798076[1] not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\9EZVHEPU\IWcfVXxvZu9XwJ55OX7Ag,Z2DUMCJv0yY705vRPHGe1NOMcsSRR2PkEWBZE5mSNvxHgoEXh9TxRBE0ajSUhLGNRxRjowRfxlbfQiT25CGNk5CfmqB4iaPZsmDXFBEYFVjYWma3uEO0H0RT2EXcGIMYe_bR0A[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\9EZVHEPU\IWcfVXxvZu9XwJ55OX7Ag,zgRGipxjgqOg7BMmwCgozVPLWowH93J-lozhZJmlldwxqLRXNOG-DNmcIcbRZFbdm2Zjx3DDUqGMA59AlSL7Fr82TBx8I8ESSl8m70UM7c3yt7MrUx9eETOamTW62pcSvswp1A[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\9EZVHEPU\w3ksHQdHyRWMSIGDP5bEOSOv6cedUR2eVDeBYqzqMYClwjGo9GRYyjSzxs4LzRN72Ai8HySC4xOTtM5afZT1cFtRATK6uNCEkRTSgkLDcX181PSxVgmVqP7w&callback=google.LU[1].loadFeaturemap_401_0 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\9EZVHEPU\ZoAq9cB52be_TLwj6cLUswQqmGgQFlLR1AbRmuaMLCrKFYgN_NWFGLdIK1mD4Oj6UNnicFlhXgUcVcy4BsnvM1ArtY-bbscE-GotMgfLPgwLEHV2ZW8uLRNA&callback=google.LU[1].loadFeaturemap_653_0 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\9EZVHEPU\ZxQHu-gzT645JckZJjOahgiSii0KhYcNlEYarkvVgEAFwiBxH0m1aQJgWdnczEP0OvV4Ka5HhjknY80GHgehcWnbiYHnFp61phXStjI0vc4p62D83FxOHyqcL8oC8s24qfxWOVFt6Z5xsm-l_7aoFmz_jQo[1].jpeg not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\0G9IFED9\IWcfVXxvZu9XwJ55OX7Ag,K-ojPlBcuna3a-kzDbo1dTcmU_O0rs_wtAqalGZi3Eey6C6IDfALSovGD_-Wur8g6-MAZMPwpSOrealZcnePL0ifxLZ3L-uP_PyDF97OudfjInvjQP7zQHGa1Bxj9JsuF31c8A[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\0G9IFED9\nack;contentid=cb984dd7;dcopt=ist;abr=!webtvs;camp=ls_body_diet;ctx=42;ctx=95;ctx=154;ctx=176;ctx=177;ctx=199;ctx=230;ctx=277;ctx=410;sz=1x1;ord=113353010798076[1] not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\0G9IFED9\ngvJ_yRj9JGv5IL0rjZdEn95ncd1S0dmphay2WuGy-sNUN4tMDd4B8SbwiQk3JjVnP5HeISCDsj54TpIVyyTB3SIZ6IGf13Fco05JpPb3Edv4Z2pazMcQkEVIxunats7SA3ag-DAObtM6j4f5dzClIQmCdK0[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\0G9IFED9\ntentid=cb984dd7;abr=!webtvs;camp=ls_body_diet;ctx=42;ctx=95;ctx=154;ctx=176;ctx=177;ctx=199;ctx=230;ctx=277;ctx=410;pos=1;tile=5;sz=300x100;ord=113353010798076[1] not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\0G9IFED9\QcdoBK_Ck0y7yo6_I4HKjWNkeXyWJFX8v-c8ygvvip7rsnCKGOCLUErPDGUq_NZ7ISY1nbalU2fol8VTywLmzDl2f1JksjM6m91rkxpHNYIhvUN2q4pYNk7aVj7Wm7O39ui8yyd9P2ubhmf5EbolLbrq-Hk1[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\0G9IFED9\tentid=cb984dd7;abr=!webtvs;camp=ls_body_diet;ctx=42;ctx=95;ctx=154;ctx=176;ctx=177;ctx=199;ctx=230;ctx=277;ctx=410;pos=1;tile=16;sz=470x250;ord=113353010798076[1] not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\0G9IFED9\V-c9dB7wq98S7y9ileH-GM1baYaZwW9jbYBX9FyKnfFjykYHuZexvvzvWAGv6yp2cpAVC7nGQqUi0f8VUKEvD-xwzZwrkkPLAwrgt9cTpBEZMhoSJssDa8DwrXSTUDcHrCphVFyEMgKiLGpVY-2fa8laFnMu[1].gif not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\0G9IFED9\Vz0cSAOIqs74wsE8S6I8NFZi9I1ybwr44NixhBsmPjzshRWSYPC1yZCNH1av3f71hn8Z9dFL6LSBBAWPb9QorHDl0mVnwXaiYceP-IV_4dMkh7SG9Ye7c_7uP&callback=google.LU[1].loadFeaturemap_96_0 not found!
File\Folder C:\Users\Joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(421)\Content.IE5\0G9IFED9\XbM34Vdl72T05EB1Po0-dWzmCzRJ-T-suJlj1Bd5cBjFYU4jaxATXqXjTNJ2qgr9zWNnqv-5iWtXjChEkJyp1QPOOdHa4o4yWupIfCOjW4R4febjuZRFwPEFeIkj5up7kaS99Ze6qb0905oqB8OvYhz-u2TQ[1].gif not found!
File\Folder C:\Windows\temp\ZLT06e0e.TMP not found!

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

 

Results of screen317's Security Check version 0.99.71
Windows Vista Service Pack 2 x86 (UAC is enabled)
Internet Explorer 9
Internet Explorer 8
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Disabled!
ZoneAlarm Extreme Security Antivirus
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Spybot - Search & Destroy
SUPERAntiSpyware Free Edition
Malwarebytes Anti-Malware version 1.75.0.1300
CCleaner
Java 7 Update 25
Adobe Reader 9 Adobe Reader out of Date!
Adobe Reader 10.1.7 Adobe Reader out of Date!
Google Chrome 24.0.1312(53).57
Google Chrome 28.0.1500.71
Google Chrome 28.0.1500.72
````````Process Check: objlist.exe by Laurent````````
CheckPoint ZoneAlarm vsmon.exe
CheckPoint ZoneAlarm zatray.exe
CheckPoint ZoneAlarm MailFrontier mantispm.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 3 % Defragment your hard drive soon! (Do

NOT defrag if SSD!)
````````````````````End of Log``````````````````````

 

Farbar Service Scanner Version: 26-07-2013
Ran by Joe (administrator) on 26-07-2013 at 17:12:31
Running from "C:\Users\Joe\Downloads "
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall "=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware "=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll => MD5 is legit
C:\Windows\system32\iphlpsvc.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

 

Is there no txt log from TFC cleaner?

 

I was 49% trough with the eset scan, then it stopped. It shows a win 32 Kryptic.axgg trojan. maybe it got in during the powerdown of the ZoneAlarm scanner.
After posting this I shall restart the eset scan.

 

I just started now scanning anew with the eset. I did not think of looking for a file location. This post is from another PC since I disconnected the internet and shut down the virus scanner.

 

The eset scanner stopped working again at 46% this time. I shall start tomorrow again as it is past midnight here.

 

scanner stopped working again at 46%

C:\Users\Joe\AppData\Roaming\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\coVisPrx.exe a variant of Win32/Kryptik.AXGG trojan

 

scanner did not find any threats and no log was generated.