Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

babylon search

  • 22-06-2011 10:17am
    #1
    Registered Users, Registered Users 2 Posts: 312 ✭✭


    Hello all
    This is my first post here, I have limited experience with computers, so please excuse my ignorance. This f***ing "babylon search" has glued itself to my google chrome task bar and it seems to be taking over my computer. I have tried everyway i know how to uninstall this piece of crap, but it keeps coming back. Any help would be greatly appreciated. I'm about ready to through the laptop out the upstairs window:eek:


Comments

  • Site Banned Posts: 1,167 ✭✭✭ASJ112


    Download OTL to your Desktop
    • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
    • Click the Quick Scan button. Do not change any settings. The scan wont take long.
    • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
    • Please copy (Edit->Select All, Edit->Copy) the contents of these files here


  • Registered Users, Registered Users 2 Posts: 312 ✭✭Remmie 223


    ASJ112 wrote: »
    Download OTL to your Desktop
    • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
    • Click the Quick Scan button. Do not change any settings. The scan wont take long.
    • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
    • Please copy (Edit->Select All, Edit->Copy) the contents of these files here
    OTL logfile created on: 6/22/2011 12:00:17 PM - Run 1
    OTL by OldTimer - Version 3.2.24.1 Folder = C:\Users\User\Downloads
    64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.7600.16385)
    Locale: 00000409 | Country: Ireland | Language: ENI | Date Format: dd/MM/yyyy

    3.80 Gb Total Physical Memory | 2.31 Gb Available Physical Memory | 60.79% Memory free
    7.60 Gb Paging File | 5.75 Gb Available in Paging File | 75.60% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
    Drive C: | 449.21 Gb Total Space | 396.14 Gb Free Space | 88.18% Space Free | Partition Type: NTFS
    Drive D: | 16.25 Gb Total Space | 2.34 Gb Free Space | 14.42% Space Free | Partition Type: NTFS

    Computer Name: USER-HP | User Name: User | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
    Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

    ========== Processes (SafeList) ==========

    PRC - [2011/06/22 11:59:37 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\User\Downloads\OTL.exe
    PRC - [2011/04/17 01:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) -- C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe
    PRC - [2011/03/28 17:07:50 | 000,094,264 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
    PRC - [2010/11/09 16:20:36 | 000,586,296 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
    PRC - [2010/11/09 16:20:34 | 000,026,680 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
    PRC - [2010/04/23 20:00:00 | 000,514,232 | ---- | M] (EasyBits Software AS) -- C:\Windows\SysWOW64\ezSharedSvcHost.exe
    PRC - [2010/04/13 17:57:58 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
    PRC - [2010/04/13 17:57:56 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
    PRC - [2010/04/05 20:55:01 | 000,116,104 | ---- | M] () -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
    PRC - [2010/04/02 11:18:54 | 001,185,112 | ---- | M] (CANON INC.) -- C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
    PRC - [2010/03/18 20:57:02 | 002,320,920 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    PRC - [2010/03/18 20:56:56 | 000,268,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    PRC - [2009/09/16 13:24:48 | 000,077,824 | ---- | M] (PFU LIMITED) -- C:\Program Files (x86)\PFU\ScanSnap\CardMinder\CardLauncher.exe


    ========== Modules (SafeList) ==========

    MOD - [2011/06/22 11:59:37 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\User\Downloads\OTL.exe
    MOD - [2010/08/21 06:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll


    ========== Win32 Services (SafeList) ==========

    SRV:64bit: - [2010/06/24 16:24:12 | 000,315,392 | ---- | M] (Realtek Semiconductor Corp.) [Auto | Running] -- C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe -- (RtVOsdService)
    SRV:64bit: - [2010/06/19 00:26:18 | 000,103,992 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe -- (HP Wireless Assistant Service)
    SRV:64bit: - [2009/11/18 03:14:26 | 000,098,208 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe -- (AERTFilters)
    SRV:64bit: - [2009/07/14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
    SRV - [2011/04/17 01:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) [Unknown | Running] -- C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe -- (N360)
    SRV - [2011/03/28 17:07:50 | 000,094,264 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe -- (HPDrvMntSvc.exe)
    SRV - [2010/11/09 16:20:34 | 000,026,680 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe -- (HPWMISVC)
    SRV - [2010/10/12 18:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
    SRV - [2010/06/01 23:31:28 | 002,804,568 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe -- (NOBU)
    SRV - [2010/04/13 17:57:58 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) Intel(R)
    SRV - [2010/04/05 20:55:01 | 000,116,104 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
    SRV - [2010/03/18 20:57:02 | 002,320,920 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R)
    SRV - [2010/03/18 20:56:56 | 000,268,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R)
    SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
    SRV - [2009/06/10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


    ========== Driver Services (SafeList) ==========

    DRV:64bit: - [2011/06/05 23:27:35 | 000,174,200 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS -- (SymEvent)
    DRV:64bit: - [2011/03/31 04:00:09 | 000,744,568 | R--- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\srtsp64.sys -- (SRTSP)
    DRV:64bit: - [2011/03/31 04:00:09 | 000,040,568 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\srtspx64.sys -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
    DRV:64bit: - [2011/03/22 01:39:49 | 000,382,584 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\symnets.sys -- (SymNetS)
    DRV:64bit: - [2011/03/15 03:31:23 | 000,912,504 | R--- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\SymEFA64.sys -- (SymEFA)
    DRV:64bit: - [2011/03/12 19:03:42 | 000,243,744 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
    DRV:64bit: - [2011/03/11 07:22:41 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
    DRV:64bit: - [2011/03/11 07:22:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
    DRV:64bit: - [2011/03/09 09:14:59 | 000,349,800 | ---- | M] (Realtek ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
    DRV:64bit: - [2011/01/27 07:47:10 | 000,450,680 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\SymDS64.sys -- (SymDS)
    DRV:64bit: - [2011/01/27 06:07:06 | 000,171,128 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\Ironx64.sys -- (SymIRON)
    DRV:64bit: - [2010/11/06 19:00:31 | 003,063,360 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
    DRV:64bit: - [2010/09/28 16:44:52 | 000,051,712 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
    DRV:64bit: - [2010/08/25 20:36:04 | 010,611,552 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
    DRV:64bit: - [2010/08/21 04:59:12 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
    DRV:64bit: - [2010/04/16 04:26:28 | 000,319,536 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
    DRV:64bit: - [2010/04/13 17:44:22 | 000,540,696 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
    DRV:64bit: - [2010/02/03 15:38:30 | 000,271,872 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud) Intel(R)
    DRV:64bit: - [2009/09/28 09:55:42 | 000,051,760 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\OXSDIDRV_x64.sys -- (OXSDIDRV_x64) Oxford Semi eSATA Filter (x64)
    DRV:64bit: - [2009/09/17 21:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) Intel(R)
    DRV:64bit: - [2009/07/14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
    DRV:64bit: - [2009/07/14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
    DRV:64bit: - [2009/07/14 02:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
    DRV:64bit: - [2009/07/14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
    DRV:64bit: - [2009/07/14 01:35:32 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
    DRV:64bit: - [2009/07/14 00:31:10 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
    DRV:64bit: - [2009/06/10 22:01:11 | 001,485,312 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTDPV6.SYS -- (SrvHsfV92)
    DRV:64bit: - [2009/06/10 22:01:11 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS -- (SrvHsfWinac)
    DRV:64bit: - [2009/06/10 22:01:11 | 000,292,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTAZL6.SYS -- (SrvHsfHDA)
    DRV:64bit: - [2009/06/10 22:01:06 | 001,146,880 | ---- | M] (LSI Corp) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AgereSoftModem)
    DRV:64bit: - [2009/06/10 21:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
    DRV:64bit: - [2009/06/10 21:35:33 | 000,389,120 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
    DRV:64bit: - [2009/06/10 21:35:28 | 005,434,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netw5v64.sys -- (netw5v64) Intel(R)
    DRV:64bit: - [2009/06/10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
    DRV:64bit: - [2009/06/10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
    DRV:64bit: - [2009/06/10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
    DRV:64bit: - [2009/06/10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
    DRV - [2011/06/08 00:57:49 | 002,011,768 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20110621.035\EX64.SYS -- (NAVEX15)
    DRV - [2011/06/08 00:57:49 | 000,117,880 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20110621.035\ENG64.SYS -- (NAVENG)
    DRV - [2011/06/03 02:08:18 | 000,488,056 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\IPSDefs\20110622.001\IDSviA64.sys -- (IDSVia64)
    DRV - [2011/05/19 20:37:05 | 001,143,416 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\BASHDefs\20110616.003\BHDrvx64.sys -- (BHDrvx64)
    DRV - [2011/05/10 11:28:36 | 000,481,912 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl)
    DRV - [2011/05/10 11:28:36 | 000,136,824 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
    DRV - [2009/09/23 02:39:56 | 000,225,280 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\RtsUStor.sys -- (RSUSBSTOR)


    ========== Standard Registry (SafeList) ==========


    ========== Internet Explorer ==========

    IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPALL/27
    IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPALL/27
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPALL/27
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPALL/27

    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPALL/27
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPALL/27
    IE - HKCU\..\URLSearchHook: {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - Reg Error: Key error. File not found
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

    ========== FireFox ==========

    FF - prefs.js..extensions.enabledItems: {27182e60-b5f3-411c-b545-b44205977502}:1.0
    FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:2.0
    FF - prefs.js..extensions.enabledItems: {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}:4.6
    FF - prefs.js..network.proxy.no_proxies_on: "*.local"
    FF - prefs.js..network.proxy.type: 0

    FF - HKLM\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\IPSFFPlgn\ [2011/06/22 00:11:41 | 000,000,000 | ---D | M]
    FF - HKLM\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\coFFPlgn\ [2011/06/05 23:26:59 | 000,000,000 | ---D | M]

    [2011/01/04 14:27:43 | 000,000,000 | ---D | M] (No name found) -- C:\Users\User\AppData\Roaming\Mozilla\Extensions
    [2011/05/25 22:14:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\9fwls8us.default\extensions
    File not found (No name found) -- C:\PROGRAM FILES (X86)\MICROSOFT\SEARCH ENHANCEMENT PACK\SEARCH HELPER\FIREFOXEXTENSION\SEARCHHELPEREXTENSION
    File not found (No name found) -- C:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.0.0.127\COFFPLGN
    File not found (No name found) -- C:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.0.0.127\IPSFFPLGN

    O1 HOSTS File: ([2009/06/10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
    O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
    O2:64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg64.dll (Google Inc.)
    O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
    O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\CoIEPlg.dll (Symantec Corporation)
    O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\IPS\IPSBHO.dll (Symantec Corporation)
    O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll (Google Inc.)
    O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
    O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
    O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\CoIEPlg.dll (Symantec Corporation)
    O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
    O3 - HKCU\..\Toolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
    O4:64bit: - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
    O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
    O4:64bit: - HKLM..\Run: [HPWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe ()
    O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
    O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
    O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
    O4 - HKLM..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE (CANON INC.)
    O4 - HKLM..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe (EasyBits Software AS)
    O4 - HKLM..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.)
    O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
    O4 - HKLM..\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe (Symantec Corporation)
    O4 - HKLM..\Run: [TaskTray] File not found
    O4 - HKCU..\Run: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe ()
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: EnableShellExecuteHooks = 1
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideFastUserSwitching = 0
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableChangePassword = 0
    O8:64bit: - Extra context menu item: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll (Google Inc.)
    O8 - Extra context menu item: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll (Google Inc.)
    O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
    O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
    O13 - gopher Prefix: missing
    O13 - gopher Prefix: missing
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
    O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
    O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
    O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
    O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
    O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
    O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
    O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
    O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
    O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
    O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
    O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
    O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
    O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Key error. - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
    O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
    O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
    O28 - HKLM ShellExecuteHooks: {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll (EasyBits Software Corp.)
    O32 - HKLM CDRom: AutoRun - 1
    O33 - MountPoints2\{80b07a9e-73e1-11e0-98d5-b935b725bda0}\Shell - "" = AutoRun
    O33 - MountPoints2\{80b07a9e-73e1-11e0-98d5-b935b725bda0}\Shell\AutoRun\command - "" = Iomega Encryption Utility.exe
    O34 - HKLM BootExecute: (autocheck autochk *) - File not found
    O35:64bit: - HKLM\..comfile [open] -- "%1" %*
    O35:64bit: - HKLM\..exefile [open] -- "%1" %*
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
    O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
    O37 - HKLM\...com [@ = comfile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*

    ========== Files/Folders - Created Within 30 Days ==========

    [2011/06/22 00:09:05 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
    [2011/06/21 11:12:00 | 000,000,000 | ---D | C] -- C:\HP_TOOLS_mountHPSF
    [2011/06/21 11:11:18 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LightScribe Direct Disc Labeling
    [2011/06/21 11:11:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\LightScribe
    [2011/06/20 20:00:03 | 000,000,000 | ---D | C] -- C:\ProgramData\{E91883C8-8CDC-46A4-A45F-CB40EB82ED60}
    [2011/06/20 19:55:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
    [2011/05/29 12:23:51 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\go
    [2011/05/29 12:23:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Easybits GO
    [2011/05/26 22:23:27 | 000,000,000 | ---D | C] -- C:\Users\User\Documents\julie docs
    [2011/05/25 21:07:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype Extras
    [2011/05/25 21:07:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
    [2011/05/25 21:07:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype

    ========== Files - Modified Within 30 Days ==========

    [2011/06/22 11:57:56 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
    [2011/06/22 11:48:13 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
    [2011/06/22 11:33:00 | 000,000,904 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1755794126-1414478762-129814385-1000UA.job
    [2011/06/22 10:21:06 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    [2011/06/22 10:21:06 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    [2011/06/22 10:17:48 | 000,002,151 | ---- | M] () -- C:\Users\User\Desktop\Google Chrome - Shortcut.lnk
    [2011/06/22 10:14:05 | 000,000,890 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
    [2011/06/22 10:13:28 | 3062,255,616 | -HS- | M] () -- C:\hiberfil.sys
    [2011/06/21 03:09:05 | 000,732,070 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
    [2011/06/21 03:09:05 | 000,616,008 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
    [2011/06/21 03:09:05 | 000,106,388 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
    [2011/06/21 00:33:00 | 000,000,852 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1755794126-1414478762-129814385-1000Core.job
    [2011/06/20 20:01:47 | 000,002,139 | ---- | M] () -- C:\Users\Public\Desktop\HP Support Assistant.lnk
    [2011/06/18 21:22:01 | 000,038,741 | ---- | M] () -- C:\Users\User\Documents\donegal rally 2011.wlmp
    [2011/06/17 20:45:43 | 000,000,328 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForUser.job
    [2011/06/17 20:45:30 | 000,425,784 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
    [2011/06/16 12:54:22 | 001,451,688 | ---- | M] () -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\Cat.DB
    [2011/06/05 23:29:34 | 000,002,348 | ---- | M] () -- C:\Users\Public\Desktop\Norton 360.lnk
    [2011/06/05 23:27:35 | 000,174,200 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS
    [2011/06/05 23:27:35 | 000,007,488 | ---- | M] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.CAT
    [2011/06/05 23:27:35 | 000,000,855 | ---- | M] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.INF
    [2011/06/05 23:25:46 | 000,001,940 | ---- | M] () -- C:\Users\User\AppData\Local\{96C87F53-AC72-4604-A9CC-186A49F17F3C}.ini
    [2011/05/25 21:07:00 | 000,002,515 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
    [2011/05/23 17:17:41 | 000,769,672 | ---- | M] () -- C:\Users\User\Documents\Handyman poster.pdf
    [2011/05/23 16:18:10 | 000,177,713 | ---- | M] () -- C:\Users\User\Documents\Reference from Eoin Buckley.pdf

    ========== Files Created - No Company Name ==========

    [2011/06/22 10:17:48 | 000,002,151 | ---- | C] () -- C:\Users\User\Desktop\Google Chrome - Shortcut.lnk
    [2011/06/20 20:01:47 | 000,002,139 | ---- | C] () -- C:\Users\Public\Desktop\HP Support Assistant.lnk
    [2011/06/18 21:22:01 | 000,038,741 | ---- | C] () -- C:\Users\User\Documents\donegal rally 2011.wlmp
    [2011/05/29 12:23:52 | 000,001,686 | ---- | C] () -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Play games (EasyBits GO).lnk
    [2011/05/23 17:18:15 | 000,769,672 | ---- | C] () -- C:\Users\User\Documents\Handyman poster.pdf
    [2011/05/23 16:18:52 | 000,177,713 | ---- | C] () -- C:\Users\User\Documents\Reference from Eoin Buckley.pdf
    [2011/05/18 23:13:58 | 000,001,940 | ---- | C] () -- C:\Users\User\AppData\Local\{96C87F53-AC72-4604-A9CC-186A49F17F3C}.ini
    [2011/05/12 23:13:31 | 000,001,854 | ---- | C] () -- C:\Users\User\AppData\Roaming\GhostObjGAFix.xml
    [2011/04/13 19:12:39 | 000,024,209 | ---- | C] () -- C:\Users\User\AppData\Roaming\UserTile.png
    [2010/11/06 18:59:49 | 000,000,268 | ---- | C] () -- C:\Windows\SysWow64\RStoneLog2.ini
    [2010/11/06 18:59:49 | 000,000,209 | ---- | C] () -- C:\Windows\SysWow64\RStoneLog.ini
    [2010/11/06 18:56:23 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.dat
    [2010/08/25 20:34:30 | 000,127,868 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng575.bin
    [2010/08/25 20:34:30 | 000,104,796 | ---- | C] () -- C:\Windows\SysWow64\igfcg575m.bin
    [2010/07/17 08:11:07 | 000,000,188 | ---- | C] () -- C:\Windows\SysWow64\HPWA.ini
    [2010/07/17 07:21:57 | 000,009,988 | ---- | C] () -- C:\Windows\SysWow64\ezdigsgn.dat
    [2010/07/17 05:42:42 | 000,000,186 | ---- | C] () -- C:\Windows\SysWow64\HP Documentation.ini
    [2010/05/14 19:27:50 | 000,870,560 | ---- | C] () -- C:\Windows\SysWow64\igkrng575.bin
    [2010/05/14 18:16:12 | 000,208,896 | ---- | C] () -- C:\Windows\SysWow64\iglhsip32.dll
    [2010/05/14 18:16:12 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\iglhcp32.dll
    [2010/02/10 02:58:12 | 000,012,800 | ---- | C] () -- C:\Windows\LPRES.DLL
    [2009/07/14 06:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
    [2009/07/14 03:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
    [2009/07/14 03:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
    [2009/07/14 01:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
    [2009/07/14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
    [2009/07/13 22:59:36 | 001,498,564 | ---- | C] () -- C:\Windows\SysWow64\igkrng400.bin
    [2009/07/13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
    [2009/06/10 22:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat

    ========== LOP Check ==========

    [2011/05/25 20:44:21 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\BitTorrent
    [2011/02/15 17:45:31 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Canon
    [2011/04/19 10:05:57 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Fujitsu
    [2011/06/22 10:15:00 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\go
    [2011/04/19 10:06:56 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\PFU
    [2011/01/02 18:36:49 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Windows Live Writer
    [2011/01/26 13:41:40 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\_MDLogs
    [2011/04/22 08:08:18 | 000,032,638 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

    ========== Purity Check ==========



    < End of report >


  • Site Banned Posts: 1,167 ✭✭✭ASJ112


    do you have the extras.txt too ?

    this scan may take a while, open OTL click the none button, paste this in the custom scan box at the bottom


    babylon /rs

    click run scan post that log


  • Registered Users, Registered Users 2 Posts: 312 ✭✭Remmie 223


    ASJ112 wrote: »
    do you have the extras.txt too ?

    this scan may take a while, open OTL click the none button, paste this in the custom scan box at the bottom


    babylon /rs

    click run scan post that log

    OTL logfile created on: 6/22/2011 1:29:15 PM - Run 2
    OTL by OldTimer - Version 3.2.24.1 Folder = C:\Users\User\Downloads
    64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.7600.16385)
    Locale: 00000409 | Country: Ireland | Language: ENI | Date Format: dd/MM/yyyy

    3.80 Gb Total Physical Memory | 2.35 Gb Available Physical Memory | 61.80% Memory free
    7.60 Gb Paging File | 5.70 Gb Available in Paging File | 75.01% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
    Drive C: | 449.21 Gb Total Space | 396.13 Gb Free Space | 88.18% Space Free | Partition Type: NTFS
    Drive D: | 16.25 Gb Total Space | 2.34 Gb Free Space | 14.42% Space Free | Partition Type: NTFS

    Computer Name: USER-HP | User Name: User | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days

    ========== Custom Scans ==========


    < OTL logfile created on: 6/22/2011 12:00:17 PM - Run 1 >
    Invalid Switch: 2011 12:00:17 PM - Run 1


    < OTL by OldTimer - Version 3.2.24.1 Folder = C:\Users\User\Downloads >

    < 64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation >

    < Internet Explorer (Version = 8.0.7600.16385) >

    < Locale: 00000409 | Country: Ireland | Language: ENI | Date Format: dd/MM/yyyy >
    Invalid Switch: yyyy


    < >

    < 3.80 Gb Total Physical Memory | 2.31 Gb Available Physical Memory | 60.79% Memory free >

    < 7.60 Gb Paging File | 5.75 Gb Available in Paging File | 75.60% Paging File free >

    < Paging file location(s): ?:\pagefile.sys [binary data] >

    < >

    < %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) >

    < Drive C: | 449.21 Gb Total Space | 396.14 Gb Free Space | 88.18% Space Free | Partition Type: NTFS >

    < Drive D: | 16.25 Gb Total Space | 2.34 Gb Free Space | 14.42% Space Free | Partition Type: NTFS >

    < >

    < Computer Name: USER-HP | User Name: User | Logged in as Administrator. >

    < Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans >

    < Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days >

    < >

    < ========== Processes (SafeList) ========== >
    Invalid Switch: color]


    < >

    < PRC - [2011/06/22 11:59:37 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\User\Downloads\OTL.exe >
    Invalid Switch: 22 11:59:37 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\User\Downloads\OTL.exe


    < PRC - [2011/04/17 01:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) -- C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe >
    Invalid Switch: 17 01:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) -- C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe


    < PRC - [2011/03/28 17:07:50 | 000,094,264 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe >
    Invalid Switch: 28 17:07:50 | 000,094,264 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe


    < PRC - [2010/11/09 16:20:36 | 000,586,296 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe >
    Invalid Switch: 09 16:20:36 | 000,586,296 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe


    < PRC - [2010/11/09 16:20:34 | 000,026,680 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe >
    Invalid Switch: 09 16:20:34 | 000,026,680 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe


    < PRC - [2010/04/23 20:00:00 | 000,514,232 | ---- | M] (EasyBits Software AS) -- C:\Windows\SysWOW64\ezSharedSvcHost.exe >
    Invalid Switch: 23 20:00:00 | 000,514,232 | ---- | M] (EasyBits Software AS) -- C:\Windows\SysWOW64\ezSharedSvcHost.exe


    < PRC - [2010/04/13 17:57:58 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe >
    Invalid Switch: 13 17:57:58 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe


    < PRC - [2010/04/13 17:57:56 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe >
    Invalid Switch: 13 17:57:56 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe


    < PRC - [2010/04/05 20:55:01 | 000,116,104 | ---- | M] () -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe >
    Invalid Switch: 05 20:55:01 | 000,116,104 | ---- | M] () -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe


    < PRC - [2010/04/02 11:18:54 | 001,185,112 | ---- | M] (CANON INC.) -- C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE >
    Invalid Switch: 02 11:18:54 | 001,185,112 | ---- | M] (CANON INC.) -- C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE


    < PRC - [2010/03/18 20:57:02 | 002,320,920 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe >
    Invalid Switch: 18 20:57:02 | 002,320,920 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe


    < PRC - [2010/03/18 20:56:56 | 000,268,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe >
    Invalid Switch: 18 20:56:56 | 000,268,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe


    < PRC - [2009/09/16 13:24:48 | 000,077,824 | ---- | M] (PFU LIMITED) -- C:\Program Files (x86)\PFU\ScanSnap\CardMinder\CardLauncher.exe >
    Invalid Switch: 16 13:24:48 | 000,077,824 | ---- | M] (PFU LIMITED) -- C:\Program Files (x86)\PFU\ScanSnap\CardMinder\CardLauncher.exe


    < >

    < >

    < ========== Modules (SafeList) ========== >
    Invalid Switch: color]


    < >

    < MOD - [2011/06/22 11:59:37 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\User\Downloads\OTL.exe >
    Invalid Switch: 22 11:59:37 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\User\Downloads\OTL.exe


    < MOD - [2010/08/21 06:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll >
    Invalid Switch: 21 06:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll


    < >

    < >

    < ========== Win32 Services (SafeList) ========== >
    Invalid Switch: color]


    < >

    < SRV:64bit: - [2010/06/24 16:24:12 | 000,315,392 | ---- | M] (Realtek Semiconductor Corp.) [Auto | Running] -- C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe -- (RtVOsdService) >
    Invalid Switch: 24 16:24:12 | 000,315,392 | ---- | M] (Realtek Semiconductor Corp.) [Auto | Running] -- C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe -- (RtVOsdService)


    < SRV:64bit: - [2010/06/19 00:26:18 | 000,103,992 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe -- (HP Wireless Assistant Service) >
    Invalid Switch: 19 00:26:18 | 000,103,992 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe -- (HP Wireless Assistant Service)


    < SRV:64bit: - [2009/11/18 03:14:26 | 000,098,208 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe -- (AERTFilters) >
    Invalid Switch: 18 03:14:26 | 000,098,208 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe -- (AERTFilters)


    < SRV:64bit: - [2009/07/14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) >
    Invalid Switch: 14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)


    < SRV - [2011/04/17 01:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) [Unknown | Running] -- C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe -- (N360) >
    Invalid Switch: 17 01:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) [Unknown | Running] -- C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe -- (N360)


    < SRV - [2011/03/28 17:07:50 | 000,094,264 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe -- (HPDrvMntSvc.exe) >
    Invalid Switch: 28 17:07:50 | 000,094,264 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe -- (HPDrvMntSvc.exe)


    < SRV - [2010/11/09 16:20:34 | 000,026,680 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe -- (HPWMISVC) >
    Invalid Switch: 09 16:20:34 | 000,026,680 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe -- (HPWMISVC)


    < SRV - [2010/10/12 18:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe -- (GamesAppService) >
    Invalid Switch: 12 18:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)


    < SRV - [2010/06/01 23:31:28 | 002,804,568 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe -- (NOBU) >
    Invalid Switch: 01 23:31:28 | 002,804,568 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe -- (NOBU)


    < SRV - [2010/04/13 17:57:58 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) Intel(R) >
    Invalid Switch: 13 17:57:58 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) Intel(R)


    < SRV - [2010/04/05 20:55:01 | 000,116,104 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC) >
    Invalid Switch: 05 20:55:01 | 000,116,104 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)


    < SRV - [2010/03/18 20:57:02 | 002,320,920 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R) >
    Invalid Switch: 18 20:57:02 | 002,320,920 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R)


    < SRV - [2010/03/18 20:56:56 | 000,268,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R) >
    Invalid Switch: 18 20:56:56 | 000,268,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R)


    < SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) >
    Invalid Switch: 18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)


    < SRV - [2009/06/10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) >
    Invalid Switch: 10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


    < >

    < >

    < ========== Driver Services (SafeList) ========== >
    Invalid Switch: color]


    < >

    < DRV:64bit: - [2011/06/05 23:27:35 | 000,174,200 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS -- (SymEvent) >
    Invalid Switch: 05 23:27:35 | 000,174,200 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS -- (SymEvent)


    < DRV:64bit: - [2011/03/31 04:00:09 | 000,744,568 | R--- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\srtsp64.sys -- (SRTSP) >
    Invalid Switch: 31 04:00:09 | 000,744,568 | R--- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\srtsp64.sys -- (SRTSP)


    < DRV:64bit: - [2011/03/31 04:00:09 | 000,040,568 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\srtspx64.sys -- (SRTSPX) Symantec Real Time Storage Protection (PEL) >
    Invalid Switch: 31 04:00:09 | 000,040,568 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\srtspx64.sys -- (SRTSPX) Symantec Real Time Storage Protection (PEL)


    < DRV:64bit: - [2011/03/22 01:39:49 | 000,382,584 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\symnets.sys -- (SymNetS) >
    Invalid Switch: 22 01:39:49 | 000,382,584 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\symnets.sys -- (SymNetS)


    < DRV:64bit: - [2011/03/15 03:31:23 | 000,912,504 | R--- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\SymEFA64.sys -- (SymEFA) >
    Invalid Switch: 15 03:31:23 | 000,912,504 | R--- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\SymEFA64.sys -- (SymEFA)


    < DRV:64bit: - [2011/03/12 19:03:42 | 000,243,744 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR) >
    Invalid Switch: 12 19:03:42 | 000,243,744 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)


    < DRV:64bit: - [2011/03/11 07:22:41 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) >
    Invalid Switch: 11 07:22:41 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)


    < DRV:64bit: - [2011/03/11 07:22:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) >
    Invalid Switch: 11 07:22:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)


    < DRV:64bit: - [2011/03/09 09:14:59 | 000,349,800 | ---- | M] (Realtek ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167) >
    Invalid Switch: 09 09:14:59 | 000,349,800 | ---- | M] (Realtek ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)


    < DRV:64bit: - [2011/01/27 07:47:10 | 000,450,680 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\SymDS64.sys -- (SymDS) >
    Invalid Switch: 27 07:47:10 | 000,450,680 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\SymDS64.sys -- (SymDS)


    < DRV:64bit: - [2011/01/27 06:07:06 | 000,171,128 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\Ironx64.sys -- (SymIRON) >
    Invalid Switch: 27 06:07:06 | 000,171,128 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\Ironx64.sys -- (SymIRON)


    < DRV:64bit: - [2010/11/06 19:00:31 | 003,063,360 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX) >
    Invalid Switch: 06 19:00:31 | 003,063,360 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)


    < DRV:64bit: - [2010/09/28 16:44:52 | 000,051,712 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64) >
    Invalid Switch: 28 16:44:52 | 000,051,712 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)


    < DRV:64bit: - [2010/08/25 20:36:04 | 010,611,552 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx) >
    Invalid Switch: 25 20:36:04 | 010,611,552 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)


    < DRV:64bit: - [2010/08/21 04:59:12 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM) >
    Invalid Switch: 21 04:59:12 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)


    < DRV:64bit: - [2010/04/16 04:26:28 | 000,319,536 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP) >
    Invalid Switch: 16 04:26:28 | 000,319,536 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)


    < DRV:64bit: - [2010/04/13 17:44:22 | 000,540,696 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor) >
    Invalid Switch: 13 17:44:22 | 000,540,696 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)


    < DRV:64bit: - [2010/02/03 15:38:30 | 000,271,872 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud) Intel(R) >
    Invalid Switch: 03 15:38:30 | 000,271,872 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud) Intel(R)


    < DRV:64bit: - [2009/09/28 09:55:42 | 000,051,760 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\OXSDIDRV_x64.sys -- (OXSDIDRV_x64) Oxford Semi eSATA Filter (x64) >
    Invalid Switch: 28 09:55:42 | 000,051,760 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\OXSDIDRV_x64.sys -- (OXSDIDRV_x64) Oxford Semi eSATA Filter (x64)


    < DRV:64bit: - [2009/09/17 21:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) Intel(R) >
    Invalid Switch: 17 21:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) Intel(R)


    < DRV:64bit: - [2009/07/14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) >
    Invalid Switch: 14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)


    < DRV:64bit: - [2009/07/14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) >
    Invalid Switch: 14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)


    < DRV:64bit: - [2009/07/14 02:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) >
    Invalid Switch: 14 02:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)


    < DRV:64bit: - [2009/07/14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) >
    Invalid Switch: 14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)


    < DRV:64bit: - [2009/07/14 01:35:32 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam) >
    Invalid Switch: 14 01:35:32 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)


    < DRV:64bit: - [2009/07/14 00:31:10 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus) >
    Invalid Switch: 14 00:31:10 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)


    < DRV:64bit: - [2009/06/10 22:01:11 | 001,485,312 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTDPV6.SYS -- (SrvHsfV92) >
    Invalid Switch: 10 22:01:11 | 001,485,312 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTDPV6.SYS -- (SrvHsfV92)


    < DRV:64bit: - [2009/06/10 22:01:11 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS -- (SrvHsfWinac) >
    Invalid Switch: 10 22:01:11 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS -- (SrvHsfWinac)


    < DRV:64bit: - [2009/06/10 22:01:11 | 000,292,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTAZL6.SYS -- (SrvHsfHDA) >
    Invalid Switch: 10 22:01:11 | 000,292,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTAZL6.SYS -- (SrvHsfHDA)


    < DRV:64bit: - [2009/06/10 22:01:06 | 001,146,880 | ---- | M] (LSI Corp) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AgereSoftModem) >
    Invalid Switch: 10 22:01:06 | 001,146,880 | ---- | M] (LSI Corp) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AgereSoftModem)


    < DRV:64bit: - [2009/06/10 21:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs) >
    Invalid Switch: 10 21:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)


    < DRV:64bit: - [2009/06/10 21:35:33 | 000,389,120 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7) >
    Invalid Switch: 10 21:35:33 | 000,389,120 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)


    < DRV:64bit: - [2009/06/10 21:35:28 | 005,434,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netw5v64.sys -- (netw5v64) Intel(R) >
    Invalid Switch: 10 21:35:28 | 005,434,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netw5v64.sys -- (netw5v64) Intel(R)


    < DRV:64bit: - [2009/06/10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) >
    Invalid Switch: 10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)


    < DRV:64bit: - [2009/06/10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) >
    Invalid Switch: 10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)


    < DRV:64bit: - [2009/06/10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) >
    Invalid Switch: 10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)


    < DRV:64bit: - [2009/06/10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) >
    Invalid Switch: 10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)


    < DRV - [2011/06/08 00:57:49 | 002,011,768 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20110621.035\EX64.SYS -- (NAVEX15) >
    Invalid Switch: 08 00:57:49 | 002,011,768 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20110621.035\EX64.SYS -- (NAVEX15)


    < DRV - [2011/06/08 00:57:49 | 000,117,880 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20110621.035\ENG64.SYS -- (NAVENG) >
    Invalid Switch: 08 00:57:49 | 000,117,880 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20110621.035\ENG64.SYS -- (NAVENG)


    < DRV - [2011/06/03 02:08:18 | 000,488,056 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\IPSDefs\20110622.001\IDSviA64.sys -- (IDSVia64) >
    Invalid Switch: 03 02:08:18 | 000,488,056 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\IPSDefs\20110622.001\IDSviA64.sys -- (IDSVia64)


    < DRV - [2011/05/19 20:37:05 | 001,143,416 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\BASHDefs\20110616.003\BHDrvx64.sys -- (BHDrvx64) >
    Invalid Switch: 19 20:37:05 | 001,143,416 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\BASHDefs\20110616.003\BHDrvx64.sys -- (BHDrvx64)


    < DRV - [2011/05/10 11:28:36 | 000,481,912 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl) >
    Invalid Switch: 10 11:28:36 | 000,481,912 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl)


    < DRV - [2011/05/10 11:28:36 | 000,136,824 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv) >
    Invalid Switch: 10 11:28:36 | 000,136,824 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)


    < DRV - [2009/09/23 02:39:56 | 000,225,280 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\RtsUStor.sys -- (RSUSBSTOR) >
    Invalid Switch: 23 02:39:56 | 000,225,280 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\RtsUStor.sys -- (RSUSBSTOR)


    < >

    < >

    < ========== Standard Registry (SafeList) ========== >
    Invalid Switch: color]


    < >

    < >

    < ========== Internet Explorer ========== >
    Invalid Switch: color]


    < >

    < IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPALL/27 >

    < IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPALL/27 >

    < IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPALL/27 >

    < IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm >

    < IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPALL/27 >

    < >

    < IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPALL/27 >

    < IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPALL/27 >

    < IE - HKCU\..\URLSearchHook: {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - Reg Error: Key error. File not found >

    < IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 >

    < IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local >

    < >

    < ========== FireFox ========== >
    Invalid Switch: color]


    < >

    < FF - prefs.js..extensions.enabledItems: {27182e60-b5f3-411c-b545-b44205977502}:1.0 >

    < FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:2.0 >

    < FF - prefs.js..extensions.enabledItems: {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}:4.6 >

    < FF - prefs.js..network.proxy.no_proxies_on: "*.local" >

    < FF - prefs.js..network.proxy.type: 0 >

    < >

    < FF - HKLM\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\IPSFFPlgn\ [2011/06/22 00:11:41 | 000,000,000 | ---D | M] >
    Invalid Switch: 22 00:11:41 | 000,000,000 | ---D | M]


    < FF - HKLM\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\coFFPlgn\ [2011/06/05 23:26:59 | 000,000,000 | ---D | M] >
    Invalid Switch: 05 23:26:59 | 000,000,000 | ---D | M]


    < >

    < [2011/01/04 14:27:43 | 000,000,000 | ---D | M] (No name found) -- C:\Users\User\AppData\Roaming\Mozilla\Extensions >
    Invalid Switch: 04 14:27:43 | 000,000,000 | ---D | M] (No name found) -- C:\Users\User\AppData\Roaming\Mozilla\Extensions


    < [2011/05/25 22:14:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\9fwls8us.default\extensions >
    Invalid Switch: 25 22:14:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\9fwls8us.default\extensions


    < File not found (No name found) -- C:\PROGRAM FILES (X86)\MICROSOFT\SEARCH ENHANCEMENT PACK\SEARCH HELPER\FIREFOXEXTENSION\SEARCHHELPEREXTENSION >

    < File not found (No name found) -- C:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.0.0.127\COFFPLGN >

    < File not found (No name found) -- C:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.0.0.127\IPSFFPLGN >

    < >

    < O1 HOSTS File: ([2009/06/10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts >
    Invalid Switch: 10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts


    < O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) >
    Invalid Switch: b] - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)


    < O2:64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg64.dll (Google Inc.) >
    Invalid Switch: b] - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg64.dll (Google Inc.)


    < O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.) >

    < O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. >

    < O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\CoIEPlg.dll (Symantec Corporation) >

    < O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\IPS\IPSBHO.dll (Symantec Corporation) >

    < O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll (Google Inc.) >

    < O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) >
    Invalid Switch: b] - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)


    < O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.) >

    < O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\CoIEPlg.dll (Symantec Corporation) >

    < O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) >
    Invalid Switch: b] - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)


    < O3 - HKCU\..\Toolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.) >

    < O4:64bit: - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.) >
    Invalid Switch: b] - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)


    < O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation) >
    Invalid Switch: b] - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)


    < O4:64bit: - HKLM..\Run: [HPWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe () >
    Invalid Switch: b] - HKLM..\Run: [HPWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe ()


    < O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation) >
    Invalid Switch: b] - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)


    < O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation) >
    Invalid Switch: b] - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)


    < O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor) >
    Invalid Switch: b] - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)


    < O4 - HKLM..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE (CANON INC.) >

    < O4 - HKLM..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe (EasyBits Software AS) >

    < O4 - HKLM..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.) >

    < O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) >

    < O4 - HKLM..\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe (Symantec Corporation) >

    < O4 - HKLM..\Run: [TaskTray] File not found >

    < O4 - HKCU..\Run: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe () >

    < O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 >

    < O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 >

    < O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: EnableShellExecuteHooks = 1 >

    < O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 >

    < O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 >

    < O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideFastUserSwitching = 0 >

    < O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0 >

    < O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableChangePassword = 0 >

    < O8:64bit: - Extra context menu item: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll (Google Inc.) >
    Invalid Switch: b] - Extra context menu item: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll (Google Inc.)


    < O8 - Extra context menu item: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll (Google Inc.) >

    < O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.) >
    Invalid Switch: b] - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)


    < O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.) >

    < O13 - gopher Prefix: missing >

    < O13 - gopher Prefix: missing >

    < O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) >
    Invalid Switch: jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)


    < O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) >
    Invalid Switch: jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)


    < O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) >
    Invalid Switch: jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)


    < O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) >
    Invalid Switch: jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)


    < O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) >
    Invalid Switch: jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)


    < O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) >
    Invalid Switch: jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)


    < O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) >
    Invalid Switch: gp.cab (Reg Error: Key error.)


    < O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 >

    < O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found >
    Invalid Switch: b] - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found


    < O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found >
    Invalid Switch: b] - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found


    < O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found >
    Invalid Switch: b] - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found


    < O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found >
    Invalid Switch: b] - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found


    < O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found >
    Invalid Switch: b] - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found


    < O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) >

    < O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) >
    Invalid Switch: b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)


    < O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) >
    Invalid Switch: b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)


    < O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found >
    Invalid Switch: pagefile) - File not found


    < O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) >

    < O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found >
    Invalid Switch: pagefile) - File not found


    < O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Key error. - C:\Windows\SysNative\igfxdev.dll (Intel Corporation) >
    Invalid Switch: b] - Winlogon\Notify\igfxcui: DllName - Reg Error: Key error. - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)


    < O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. >
    Invalid Switch: b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.


    < O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. >

    < O28 - HKLM ShellExecuteHooks: {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll (EasyBits Software Corp.) >

    < O32 - HKLM CDRom: AutoRun - 1 >

    < O33 - MountPoints2\{80b07a9e-73e1-11e0-98d5-b935b725bda0}\Shell - "" = AutoRun >

    < O33 - MountPoints2\{80b07a9e-73e1-11e0-98d5-b935b725bda0}\Shell\AutoRun\command - "" = Iomega Encryption Utility.exe >

    < O34 - HKLM BootExecute: (autocheck autochk *) - File not found >

    < O35:64bit: - HKLM\..comfile [open] -- "%1" %* >

    < O35:64bit: - HKLM\..exefile [open] -- "%1" %* >

    < O35 - HKLM\..comfile [open] -- "%1" %* >

    < O35 - HKLM\..exefile [open] -- "%1" %* >

    < O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* >

    < O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* >

    < O37 - HKLM\...com [@ = comfile] -- "%1" %* >

    < O37 - HKLM\...exe [@ = exefile] -- "%1" %* >

    < >

    < ========== Files/Folders - Created Within 30 Days ========== >
    Invalid Switch: color]


    < >

    < [2011/06/22 00:09:05 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome >
    Invalid Switch: 22 00:09:05 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome


    < [2011/06/21 11:12:00 | 000,000,000 | ---D | C] -- C:\HP_TOOLS_mountHPSF >
    Invalid Switch: 21 11:12:00 | 000,000,000 | ---D | C] -- C:\HP_TOOLS_mountHPSF


    < [2011/06/21 11:11:18 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LightScribe Direct Disc Labeling >
    Invalid Switch: 21 11:11:18 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LightScribe Direct Disc Labeling


    < [2011/06/21 11:11:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\LightScribe >
    Invalid Switch: 21 11:11:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\LightScribe


    < [2011/06/20 20:00:03 | 000,000,000 | ---D | C] -- C:\ProgramData\{E91883C8-8CDC-46A4-A45F-CB40EB82ED60} >
    Invalid Switch: 20 20:00:03 | 000,000,000 | ---D | C] -- C:\ProgramData\{E91883C8-8CDC-46A4-A45F-CB40EB82ED60}


    < [2011/06/20 19:55:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java >
    Invalid Switch: 20 19:55:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java


    < [2011/05/29 12:23:51 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\go >
    Invalid Switch: 29 12:23:51 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\go


    < [2011/05/29 12:23:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Easybits GO >
    Invalid Switch: 29 12:23:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Easybits GO


    < [2011/05/26 22:23:27 | 000,000,000 | ---D | C] -- C:\Users\User\Documents\julie docs >
    Invalid Switch: 26 22:23:27 | 000,000,000 | ---D | C] -- C:\Users\User\Documents\julie docs


    < [2011/05/25 21:07:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype Extras >
    Invalid Switch: 25 21:07:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype Extras


    < [2011/05/25 21:07:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype >
    Invalid Switch: 25 21:07:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype


    < [2011/05/25 21:07:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype >
    Invalid Switch: 25 21:07:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype


    < >

    < ========== Files - Modified Within 30 Days ========== >
    Invalid Switch: color]


    < >

    < [2011/06/22 11:57:56 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat >
    Invalid Switch: 22 11:57:56 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat


    < [2011/06/22 11:48:13 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job >
    Invalid Switch: 22 11:48:13 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job


    < [2011/06/22 11:33:00 | 000,000,904 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1755794126-1414478762-129814385-1000UA.job >
    Invalid Switch: 22 11:33:00 | 000,000,904 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1755794126-1414478762-129814385-1000UA.job


    < [2011/06/22 10:21:06 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 >
    Invalid Switch: 22 10:21:06 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0


    < [2011/06/22 10:21:06 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 >
    Invalid Switch: 22 10:21:06 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0


    < [2011/06/22 10:17:48 | 000,002,151 | ---- | M] () -- C:\Users\User\Desktop\Google Chrome - Shortcut.lnk >
    Invalid Switch: 22 10:17:48 | 000,002,151 | ---- | M] () -- C:\Users\User\Desktop\Google Chrome - Shortcut.lnk


    < [2011/06/22 10:14:05 | 000,000,890 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job >
    Invalid Switch: 22 10:14:05 | 000,000,890 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job


    < [2011/06/22 10:13:28 | 3062,255,616 | -HS- | M] () -- C:\hiberfil.sys >
    Invalid Switch: 22 10:13:28 | 3062,255,616 | -HS- | M] () -- C:\hiberfil.sys


    < [2011/06/21 03:09:05 | 000,732,070 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI >
    Invalid Switch: 21 03:09:05 | 000,732,070 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI


    < [2011/06/21 03:09:05 | 000,616,008 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat >
    Invalid Switch: 21 03:09:05 | 000,616,008 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat


    < [2011/06/21 03:09:05 | 000,106,388 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat >
    Invalid Switch: 21 03:09:05 | 000,106,388 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat


    < [2011/06/21 00:33:00 | 000,000,852 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1755794126-1414478762-129814385-1000Core.job >
    Invalid Switch: 21 00:33:00 | 000,000,852 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1755794126-1414478762-129814385-1000Core.job


    < [2011/06/20 20:01:47 | 000,002,139 | ---- | M] () -- C:\Users\Public\Desktop\HP Support Assistant.lnk >
    Invalid Switch: 20 20:01:47 | 000,002,139 | ---- | M] () -- C:\Users\Public\Desktop\HP Support Assistant.lnk


    < [2011/06/18 21:22:01 | 000,038,741 | ---- | M] () -- C:\Users\User\Documents\donegal rally 2011.wlmp >
    Invalid Switch: 18 21:22:01 | 000,038,741 | ---- | M] () -- C:\Users\User\Documents\donegal rally 2011.wlmp


    < [2011/06/17 20:45:43 | 000,000,328 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForUser.job >
    Invalid Switch: 17 20:45:43 | 000,000,328 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForUser.job


    < [2011/06/17 20:45:30 | 000,425,784 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT >
    Invalid Switch: 17 20:45:30 | 000,425,784 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT


    < [2011/06/16 12:54:22 | 001,451,688 | ---- | M] () -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\Cat.DB >
    Invalid Switch: 16 12:54:22 | 001,451,688 | ---- | M] () -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\Cat.DB


    < [2011/06/05 23:29:34 | 000,002,348 | ---- | M] () -- C:\Users\Public\Desktop\Norton 360.lnk >
    Invalid Switch: 05 23:29:34 | 000,002,348 | ---- | M] () -- C:\Users\Public\Desktop\Norton 360.lnk


    < [2011/06/05 23:27:35 | 000,174,200 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS >
    Invalid Switch: 05 23:27:35 | 000,174,200 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS


    < [2011/06/05 23:27:35 | 000,007,488 | ---- | M] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.CAT >
    Invalid Switch: 05 23:27:35 | 000,007,488 | ---- | M] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.CAT


    < [2011/06/05 23:27:35 | 000,000,855 | ---- | M] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.INF >
    Invalid Switch: 05 23:27:35 | 000,000,855 | ---- | M] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.INF


    < [2011/06/05 23:25:46 | 000,001,940 | ---- | M] () -- C:\Users\User\AppData\Local\{96C87F53-AC72-4604-A9CC-186A49F17F3C}.ini >
    Invalid Switch: 05 23:25:46 | 000,001,940 | ---- | M] () -- C:\Users\User\AppData\Local\{96C87F53-AC72-4604-A9CC-186A49F17F3C}.ini


    < [2011/05/25 21:07:00 | 000,002,515 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk >
    Invalid Switch: 25 21:07:00 | 000,002,515 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk


    < [2011/05/23 17:17:41 | 000,769,672 | ---- | M] () -- C:\Users\User\Documents\Handyman poster.pdf >
    Invalid Switch: 23 17:17:41 | 000,769,672 | ---- | M] () -- C:\Users\User\Documents\Handyman poster.pdf


    < [2011/05/23 16:18:10 | 000,177,713 | ---- | M] () -- C:\Users\User\Documents\Reference from Eoin Buckley.pdf >
    Invalid Switch: 23 16:18:10 | 000,177,713 | ---- | M] () -- C:\Users\User\Documents\Reference from Eoin Buckley.pdf


    < >

    < ========== Files Created - No Company Name ========== >
    Invalid Switch: color]


    < >

    < [2011/06/22 10:17:48 | 000,002,151 | ---- | C] () -- C:\Users\User\Desktop\Google Chrome - Shortcut.lnk >
    Invalid Switch: 22 10:17:48 | 000,002,151 | ---- | C] () -- C:\Users\User\Desktop\Google Chrome - Shortcut.lnk


    < [2011/06/20 20:01:47 | 000,002,139 | ---- | C] () -- C:\Users\Public\Desktop\HP Support Assistant.lnk >
    Invalid Switch: 20 20:01:47 | 000,002,139 | ---- | C] () -- C:\Users\Public\Desktop\HP Support Assistant.lnk


    < [2011/06/18 21:22:01 | 000,038,741 | ---- | C] () -- C:\Users\User\Documents\donegal rally 2011.wlmp >
    Invalid Switch: 18 21:22:01 | 000,038,741 | ---- | C] () -- C:\Users\User\Documents\donegal rally 2011.wlmp


    < [2011/05/29 12:23:52 | 000,001,686 | ---- | C] () -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Play games (EasyBits GO).lnk >
    Invalid Switch: 29 12:23:52 | 000,001,686 | ---- | C] () -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Play games (EasyBits GO).lnk


    < [2011/05/23 17:18:15 | 000,769,672 | ---- | C] () -- C:\Users\User\Documents\Handyman poster.pdf >
    Invalid Switch: 23 17:18:15 | 000,769,672 | ---- | C] () -- C:\Users\User\Documents\Handyman poster.pdf


    < [2011/05/23 16:18:52 | 000,177,713 | ---- | C] () -- C:\Users\User\Documents\Reference from Eoin Buckley.pdf >
    Invalid Switch: 23 16:18:52 | 000,177,713 | ---- | C] () -- C:\Users\User\Documents\Reference from Eoin Buckley.pdf


    < [2011/05/18 23:13:58 | 000,001,940 | ---- | C] () -- C:\Users\User\AppData\Local\{96C87F53-AC72-4604-A9CC-186A49F17F3C}.ini >
    Invalid Switch: 18 23:13:58 | 000,001,940 | ---- | C] () -- C:\Users\User\AppData\Local\{96C87F53-AC72-4604-A9CC-186A49F17F3C}.ini


    < [2011/05/12 23:13:31 | 000,001,854 | ---- | C] () -- C:\Users\User\AppData\Roaming\GhostObjGAFix.xml >
    Invalid Switch: 12 23:13:31 | 000,001,854 | ---- | C] () -- C:\Users\User\AppData\Roaming\GhostObjGAFix.xml


    < [2011/04/13 19:12:39 | 000,024,209 | ---- | C] () -- C:\Users\User\AppData\Roaming\UserTile.png >
    Invalid Switch: 13 19:12:39 | 000,024,209 | ---- | C] () -- C:\Users\User\AppData\Roaming\UserTile.png


    < [2010/11/06 18:59:49 | 000,000,268 | ---- | C] () -- C:\Windows\SysWow64\RStoneLog2.ini >
    Invalid Switch: 06 18:59:49 | 000,000,268 | ---- | C] () -- C:\Windows\SysWow64\RStoneLog2.ini


    < [2010/11/06 18:59:49 | 000,000,209 | ---- | C] () -- C:\Windows\SysWow64\RStoneLog.ini >
    Invalid Switch: 06 18:59:49 | 000,000,209 | ---- | C] () -- C:\Windows\SysWow64\RStoneLog.ini


    < [2010/11/06 18:56:23 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.dat >
    Invalid Switch: 06 18:56:23 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.dat


    < [2010/08/25 20:34:30 | 000,127,868 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng575.bin >
    Invalid Switch: 25 20:34:30 | 000,127,868 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng575.bin


    < [2010/08/25 20:34:30 | 000,104,796 | ---- | C] () -- C:\Windows\SysWow64\igfcg575m.bin >
    Invalid Switch: 25 20:34:30 | 000,104,796 | ---- | C] () -- C:\Windows\SysWow64\igfcg575m.bin


    < [2010/07/17 08:11:07 | 000,000,188 | ---- | C] () -- C:\Windows\SysWow64\HPWA.ini >
    Invalid Switch: 17 08:11:07 | 000,000,188 | ---- | C] () -- C:\Windows\SysWow64\HPWA.ini


    < [2010/07/17 07:21:57 | 000,009,988 | ---- | C] () -- C:\Windows\SysWow64\ezdigsgn.dat >
    Invalid Switch: 17 07:21:57 | 000,009,988 | ---- | C] () -- C:\Windows\SysWow64\ezdigsgn.dat


    < [2010/07/17 05:42:42 | 000,000,186 | ---- | C] () -- C:\Windows\SysWow64\HP Documentation.ini >
    Invalid Switch: 17 05:42:42 | 000,000,186 | ---- | C] () -- C:\Windows\SysWow64\HP Documentation.ini


    < [2010/05/14 19:27:50 | 000,870,560 | ---- | C] () -- C:\Windows\SysWow64\igkrng575.bin >
    Invalid Switch: 14 19:27:50 | 000,870,560 | ---- | C] () -- C:\Windows\SysWow64\igkrng575.bin


    < [2010/05/14 18:16:12 | 000,208,896 | ---- | C] () -- C:\Windows\SysWow64\iglhsip32.dll >
    Invalid Switch: 14 18:16:12 | 000,208,896 | ---- | C] () -- C:\Windows\SysWow64\iglhsip32.dll


    < [2010/05/14 18:16:12 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\iglhcp32.dll >
    I


  • Site Banned Posts: 1,167 ✭✭✭ASJ112


    Do you have the extras.txt too ? Its in the same location as OTL


  • Advertisement
  • Registered Users, Registered Users 2 Posts: 312 ✭✭Remmie 223


    ASJ112 wrote: »
    Do you have the extras.txt too ? Its in the same location as OTL
    Sorry ASJ as i stated in my original post "ignorant". I can't see where the extras.txt is.


  • Site Banned Posts: 1,167 ✭✭✭ASJ112


    No worries, open OTL click the None button at the top

    Under the Extra Registry box, select All

    Click Run Scan. Post the log it gives


    Also have you tried uninstalling Chrome, re-downloading it and installing it again ?


  • Registered Users, Registered Users 2 Posts: 312 ✭✭Remmie 223


    ASJ112 wrote: »
    No worries, open OTL click the None button at the top

    Under the Extra Registry box, select All

    Click Run Scan. Post the log it gives


    Also have you tried uninstalling Chrome, re-downloading it and installing it again ?

    I have uninstalled chrome & re-downloaded it

    OTL Extras logfile created on: 6/22/2011 12:00:17 PM - Run 1
    OTL by OldTimer - Version 3.2.24.1 Folder = C:\Users\User\Downloads
    64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.7600.16385)
    Locale: 00000409 | Country: Ireland | Language: ENI | Date Format: dd/MM/yyyy

    3.80 Gb Total Physical Memory | 2.31 Gb Available Physical Memory | 60.79% Memory free
    7.60 Gb Paging File | 5.75 Gb Available in Paging File | 75.60% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
    Drive C: | 449.21 Gb Total Space | 396.14 Gb Free Space | 88.18% Space Free | Partition Type: NTFS
    Drive D: | 16.25 Gb Total Space | 2.34 Gb Free Space | 14.42% Space Free | Partition Type: NTFS

    Computer Name: USER-HP | User Name: User | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
    Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

    ========== Extra Registry (SafeList) ==========


    ========== File Associations ==========

    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
    .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
    .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

    ========== Shell Spawning ==========

    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
    batfile [open] -- "%1" %* File not found
    cmdfile [open] -- "%1" %* File not found
    comfile [open] -- "%1" %* File not found
    exefile [open] -- "%1" %* File not found
    helpfile [open] -- Reg Error: Key error.
    inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
    InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
    InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
    piffile [open] -- "%1" %* File not found
    regfile [merge] -- Reg Error: Key error.
    scrfile [config] -- "%1" File not found
    scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l File not found
    scrfile [open] -- "%1" /S File not found
    txtfile [edit] -- Reg Error: Key error.
    Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
    Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
    Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Folder [explore] -- Reg Error: Value error.
    Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
    batfile [open] -- "%1" %*
    cmdfile [open] -- "%1" %*
    comfile [open] -- "%1" %*
    cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
    exefile [open] -- "%1" %*
    helpfile [open] -- Reg Error: Key error.
    inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
    piffile [open] -- "%1" %*
    regfile [merge] -- Reg Error: Key error.
    scrfile [config] -- "%1"
    scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
    scrfile [open] -- "%1" /S
    txtfile [edit] -- Reg Error: Key error.
    Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
    Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
    Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Folder [explore] -- Reg Error: Value error.
    Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

    ========== Security Center Settings ==========

    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
    "cval" = 1

    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
    "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
    "AntiVirusOverride" = 0
    "AntiSpywareOverride" = 0
    "FirewallOverride" = 0

    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

    ========== Firewall Settings ==========

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
    "DisableNotifications" = 0
    "EnableFirewall" = 1

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
    "DisableNotifications" = 0
    "EnableFirewall" = 1

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
    "DisableNotifications" = 0
    "EnableFirewall" = 1

    ========== Authorized Applications List ==========


    ========== HKEY_LOCAL_MACHINE Uninstall List ==========

    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "{091A0130-A82F-4A6D-9C61-3BBBB3289030}" = RtVOsd
    "{0C682623-8F66-46A8-B9B3-93FE1E66A001}" = iTunes
    "{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP495_series" = Canon MP495 series MP Drivers
    "{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX700_series" = Canon MX700 series
    "{26A24AE4-039D-4CA4-87B4-2F86416020FF}" = Java(TM) 6 Update 20 (64-bit)
    "{3B582B41-5FFC-4AB8-B006-A087BDE74494}" = Iomega Encryption
    "{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
    "{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
    "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
    "{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
    "{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
    "{90140000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2010
    "{90140000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010
    "{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
    "{963BFE7E-C350-4346-B43C-B02358306A45}" = Apple Mobile Device Support
    "{9B48B0AC-C813-4174-9042-476A887592C7}" = Windows Live ID Sign-in Assistant
    "{B5FC1E1B-E70D-45F1-8E40-A3C30698B323}" = HP Wireless Assistant
    "{E4F5E48E-7155-4CF9-88CD-7F377EC9AC54}" = Bonjour
    "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
    "Adobe Flash Player ActiveX 64" = Adobe Flash Player 10 ActiveX 64-bit
    "Broadcom 802.11 Wireless LAN Adapter" = Broadcom 802.11 Wireless LAN Adapter
    "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
    "SynTPDeinstKey" = Synaptics Pointing Device Driver

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
    "{04FCD5DE-1662-4F99-BDA9-C57212113EF2}" = RemoteComms External Disk Access
    "{07FA4960-B038-49EB-891B-9F95930AA544}" = HP Customer Experience Enhancements
    "{178832DE-9DE0-4C87-9F82-9315A9B03985}" = Windows Live Writer
    "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
    "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    "{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite
    "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
    "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
    "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
    "{254C37AA-6B72-4300-84F6-98A82419187E}" = ActiveCheck component for HP Active Support Library
    "{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 26
    "{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
    "{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App" = Update Installer for WildTangent Games App
    "{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
    "{3877C901-7B90-4727-A639-B6ED2DD59D43}" = ESU for Microsoft Windows 7
    "{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
    "{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}" = Norton Online Backup
    "{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
    "{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}" = HP Advisor
    "{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}" = Recovery Manager
    "{474F25F5-BDC9-40E5-B1B6-F6BF23FC106F}" = Windows Live Essentials
    "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
    "{4B156358-CE9C-4E9F-8CAD-79AE86A68C60}" = HP Power Manager
    "{503F62C9-99C2-376A-9B74-AB03E7CDB980}" = Google Talk Plugin
    "{5335DADB-34BA-4AE8-A519-648D78498846}" = Skype™ 5.3
    "{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
    "{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail
    "{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
    "{669D4A35-146B-4314-89F1-1AC3D7B88367}" = HPAsset component for HP Active Support Library
    "{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp" = WildTangent Games App (HP Games)
    "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
    "{72D90DB3-A16A-4545-B555-868471101833}" = HP Setup
    "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    "{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
    "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
    "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
    "{8DCD0779-8811-4060-9227-871E2FD48E45}" = CardMinder V4.1
    "{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
    "{90140000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2010
    "{90140000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2010
    "{90140000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2010
    "{90140000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2010
    "{90140000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2010
    "{90140000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2010
    "{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
    "{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
    "{90140000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
    "{90140000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2010
    "{90140000-003D-0000-0000-0000000FF1CE}" = Microsoft Office Single Image 2010
    "{90140000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2010
    "{90140000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2010
    "{90140000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2010
    "{90140000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2010
    "{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
    "{97BBECCF-B1FD-4010-8D4B-EFC9E3CCEECF}" = Driver Whiz
    "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    "{9ECF7817-DB11-4FBA-9DF1-296A578D513A}" = Adobe Shockwave Player 11.5
    "{9F479685-180E-4C05-9400-D59292A1B29C}" = Windows Live Movie Maker
    "{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
    "{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}" = CyberLink PowerDVD 9
    "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
    "{AC76BA86-7AD7-FFFF-7B44-A91000000001}" = Adobe Reader 9.4.2 MUI
    "{B10914FD-8812-47A4-85A1-50FCDE7F1F33}" = Windows Live Sync
    "{B360E24A-BF25-4353-AA79-1B54F509024A}" = HP Documentation
    "{B57EAFF2-D6EE-4C6C-9175-ED9F17BFC1BC}" = Windows Live Messenger
    "{B7F60A16-7A7B-41FB-9AE3-DE9E324FBA06}" = HP Software Framework
    "{BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}" = Energy Star Digital Logo
    "{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
    "{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
    "{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
    "{D36DD326-7280-11D8-97C8-000129760CBE}" = PhotoNow!
    "{D4F2AFD3-0167-4464-B92F-78AB6DA8A0AA}" = CardMinder
    "{E0E55FC1-C53D-4F8D-B14B-B59C312747C8}" = LightScribe System Software
    "{E6158D07-2637-4ECF-B576-37C489669174}" = Windows Live Call
    "{E92D47A1-D27D-430A-8368-0BAFD956507D}" = HP Support Assistant
    "{EB58480C-0721-483C-B354-9D35A147999F}" = HP Quick Launch
    "{EE39FFBD-544E-49E4-A999-6819828EAE91}" = Windows Live Photo Gallery
    "{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
    "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
    "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
    "{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Graphics Media Accelerator Driver
    "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
    "{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
    "{FB400000-0002-0000-0000-074957833700}" = ABBYY FineReader for ScanSnap (TM) 4.1
    "Adobe AIR" = Adobe AIR
    "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
    "BitTorrent" = BitTorrent
    "Canon MP495 series User Registration" = Canon MP495 series User Registration
    "Canon_IJ_Network_UTILITY" = Canon IJ Network Tool
    "CANONIJPLM100" = Canon Inkjet Printer/Scanner/Fax Extended Survey Program
    "CanonMyPrinter" = Canon My Printer
    "CanonSolutionMenuEX" = Canon Solution Menu EX
    "Driver Genius Professional Edition_is1" = Driver Genius Professional Edition
    "EasyBits Magic Desktop" = Magic Desktop
    "Easy-PhotoPrint EX" = Canon Easy-PhotoPrint EX
    "Easy-WebPrint EX" = Canon Easy-WebPrint EX
    "HP Photo Creations" = HP Photo Creations
    "InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
    "InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite
    "InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
    "InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}" = CyberLink PowerDVD 9
    "InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
    "InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
    "InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}" = PhotoNow!
    "MP Navigator EX 1.0" = Canon MP Navigator EX 1.0
    "MP Navigator EX 4.0" = Canon MP Navigator EX 4.0
    "N360" = Norton 360
    "Office14.SingleImage" = Microsoft Office Home and Student 2010
    "WildTangent hp Master Uninstall" = HP Games
    "WinLiveSuite_Wave3" = Windows Live Essentials
    "WT087328" = Blackhawk Striker 2
    "WT087342" = Dora's Carnival Adventure
    "WT087360" = Escape Rosecliff Island
    "WT087361" = FATE
    "WT087362" = Final Drive Nitro
    "WT087374" = Jewel Quest - Heritage
    "WT087394" = Penguins!
    "WT087395" = Poker Superstars III
    "WT087396" = Polar Bowler
    "WT087397" = Polar Golfer
    "WT087420" = Agatha Christie - Death on the Nile
    "WT087428" = Bejeweled 2 Deluxe
    "WT087453" = Chuzzle Deluxe
    "WT087501" = Plants vs. Zombies
    "WT087513" = Virtual Villagers - The Secret City
    "WT087533" = Zuma Deluxe

    ========== HKEY_CURRENT_USER Uninstall List ==========

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "Game Organizer" = EasyBits GO
    "Google Chrome" = Google Chrome

    ========== Last 10 Event Log Errors ==========

    [ Application Events ]
    Error - 6/6/2011 3:36:36 PM | Computer Name = User-HP | Source = Bonjour Service | ID = 100
    Description = Task Scheduling Error: m->NextScheduledSPRetry 2543

    Error - 6/6/2011 4:39:50 PM | Computer Name = User-HP | Source = Bonjour Service | ID = 100
    Description = Task Scheduling Error: Continuously busy for more than a second

    Error - 6/6/2011 4:39:50 PM | Computer Name = User-HP | Source = Bonjour Service | ID = 100
    Description = Task Scheduling Error: m->NextScheduledEvent 1529

    Error - 6/6/2011 4:39:50 PM | Computer Name = User-HP | Source = Bonjour Service | ID = 100
    Description = Task Scheduling Error: m->NextScheduledSPRetry 1529

    Error - 6/6/2011 4:39:51 PM | Computer Name = User-HP | Source = Bonjour Service | ID = 100
    Description = Task Scheduling Error: Continuously busy for more than a second

    Error - 6/6/2011 4:39:51 PM | Computer Name = User-HP | Source = Bonjour Service | ID = 100
    Description = Task Scheduling Error: m->NextScheduledEvent 2558

    Error - 6/6/2011 4:39:51 PM | Computer Name = User-HP | Source = Bonjour Service | ID = 100
    Description = Task Scheduling Error: m->NextScheduledSPRetry 2558

    Error - 6/7/2011 5:25:01 AM | Computer Name = User-HP | Source = Application Error | ID = 1000
    Description = Faulting application name: mDNSResponder.exe, version: 2.0.4.0, time
    stamp: 0x4cae1be1 Faulting module name: mDNSResponder.exe, version: 2.0.4.0, time
    stamp: 0x4cae1be1 Exception code: 0xc0000005 Fault offset: 0x0001dc8a Faulting process
    id: 0x5e8 Faulting application start time: 0x01cc24f4bbea2e46 Faulting application
    path: C:\Program Files (x86)\Bonjour\mDNSResponder.exe Faulting module path: C:\Program
    Files (x86)\Bonjour\mDNSResponder.exe Report Id: 04983ba5-90e8-11e0-ae6e-e787b817fbaa

    Error - 6/7/2011 11:42:52 AM | Computer Name = User-HP | Source = Application Error | ID = 1000
    Description = Faulting application name: Skype.exe, version: 5.3.0.111, time stamp:
    0x4dac4a84 Faulting module name: Skype.exe, version: 5.3.0.111, time stamp: 0x4dac4a84
    Exception
    code: 0xc0000005 Fault offset: 0x005dd938 Faulting process id: 0x108c Faulting application
    start time: 0x01cc24f9bd15acbe Faulting application path: C:\Program Files (x86)\Skype\Phone\Skype.exe
    Faulting
    module path: C:\Program Files (x86)\Skype\Phone\Skype.exe Report Id: cd4a3cba-911c-11e0-ae6e-e787b817fbaa

    Error - 6/15/2011 6:26:44 AM | Computer Name = User-HP | Source = SideBySide | ID = 16842787
    Description = Activation context generation failed for "C:\Program Files (x86)\Windows
    Live\Photo Gallery\MovieMaker.Exe".Error in manifest or policy file "C:\Program
    Files (x86)\Windows Live\Photo Gallery\WLMFDS.DLL" on line 8. Component identity
    found in manifest does not match the identity of the component requested. Reference
    is WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1". Definition
    is WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1". Please use
    sxstrace.exe for detailed diagnosis.

    [ Hewlett-Packard Events ]
    Error - 1/7/2011 5:51:06 AM | Computer Name = User-HP | Source = Hewlett-Packard | ID = 0
    Description = en-IE Could not find a part of the path 'C:\ProgramData\Hewlett-Packard\HP
    Support Framework\Logs\Temp\HPSA\HPSASession_201101070951.xml'. mscorlib at System.IO.__Error.WinIOError(Int32
    errorCode, String maybeFullPath) at System.IO.FileStream.Init(String path, FileMode
    mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32
    bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath,
    Boolean bFromProxy) at System.IO.FileStream..ctor(String path, FileMode mode,
    FileAccess access, FileShare share, Int32 bufferSize, FileOptions options) at
    System.IO.StreamWriter.CreateFile(String path, Boolean append) at System.IO.StreamWriter..ctor(String
    path, Boolean append, Encoding encoding, Int32 bufferSize) at System.IO.StreamWriter..ctor(String
    path, Boolean append, Encoding encoding) at System.IO.File.WriteAllText(String
    path, String contents, Encoding encoding) at HP.ActiveSupportLibrary.Issues.HPSFSession.closeSaveSession()


    Error - 1/14/2011 3:20:29 AM | Computer Name = User-HP | Source = Hewlett-Packard | ID = 0
    Description = en-IE Could not find a part of the path 'C:\ProgramData\Hewlett-Packard\HP
    Support Framework\Logs\Temp\HPSA\HPSASession_201101140720.xml'. mscorlib at System.IO.__Error.WinIOError(Int32
    errorCode, String maybeFullPath) at System.IO.FileStream.Init(String path, FileMode
    mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32
    bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath,
    Boolean bFromProxy) at System.IO.FileStream..ctor(String path, FileMode mode,
    FileAccess access, FileShare share, Int32 bufferSize, FileOptions options) at
    System.IO.StreamWriter.CreateFile(String path, Boolean append) at System.IO.StreamWriter..ctor(String
    path, Boolean append, Encoding encoding, Int32 bufferSize) at System.IO.StreamWriter..ctor(String
    path, Boolean append, Encoding encoding) at System.IO.File.WriteAllText(String
    path, String contents, Encoding encoding) at HP.ActiveSupportLibrary.Issues.HPSFSession.closeSaveSession()


    Error - 1/21/2011 3:16:39 AM | Computer Name = User-HP | Source = Hewlett-Packard | ID = 0
    Description = en-IE Could not find a part of the path 'C:\ProgramData\Hewlett-Packard\HP
    Support Framework\Logs\Temp\HPSA\HPSASession_201101210716.xml'. mscorlib at System.IO.__Error.WinIOError(Int32
    errorCode, String maybeFullPath) at System.IO.FileStream.Init(String path, FileMode
    mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32
    bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath,
    Boolean bFromProxy) at System.IO.FileStream..ctor(String path, FileMode mode,
    FileAccess access, FileShare share, Int32 bufferSize, FileOptions options) at
    System.IO.StreamWriter.CreateFile(String path, Boolean append) at System.IO.StreamWriter..ctor(String
    path, Boolean append, Encoding encoding, Int32 bufferSize) at System.IO.StreamWriter..ctor(String
    path, Boolean append, Encoding encoding) at System.IO.File.WriteAllText(String
    path, String contents, Encoding encoding) at HP.ActiveSupportLibrary.Issues.HPSFSession.closeSaveSession()


    Error - 1/28/2011 3:16:56 AM | Computer Name = User-HP | Source = Hewlett-Packard | ID = 0
    Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\011128071653.xml
    File not created by asset agent

    Error - 1/28/2011 3:18:27 AM | Computer Name = User-HP | Source = Hewlett-Packard | ID = 0
    Description = en-IE Could not find a part of the path 'C:\ProgramData\Hewlett-Packard\HP
    Support Framework\Logs\Temp\HPSA\HPSASession_201101280718.xml'. mscorlib at System.IO.__Error.WinIOError(Int32
    errorCode, String maybeFullPath) at System.IO.FileStream.Init(String path, FileMode
    mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32
    bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath,
    Boolean bFromProxy) at System.IO.FileStream..ctor(String path, FileMode mode,
    FileAccess access, FileShare share, Int32 bufferSize, FileOptions options) at
    System.IO.StreamWriter.CreateFile(String path, Boolean append) at System.IO.StreamWriter..ctor(String
    path, Boolean append, Encoding encoding, Int32 bufferSize) at System.IO.StreamWriter..ctor(String
    path, Boolean append, Encoding encoding) at System.IO.File.WriteAllText(String
    path, String contents, Encoding encoding) at HP.ActiveSupportLibrary.Issues.HPSFSession.closeSaveSession()


    Error - 2/2/2011 3:46:23 AM | Computer Name = User-HP | Source = Hewlett-Packard | ID = 0
    Description =

    Error - 2/4/2011 3:23:22 AM | Computer Name = User-HP | Source = Hewlett-Packard | ID = 0
    Description = en-IE Could not find a part of the path 'C:\ProgramData\Hewlett-Packard\HP
    Support Framework\Logs\Temp\HPSA\HPSASession_201102040723.xml'. mscorlib at System.IO.__Error.WinIOError(Int32
    errorCode, String maybeFullPath) at System.IO.FileStream.Init(String path, FileMode
    mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32
    bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath,
    Boolean bFromProxy) at System.IO.FileStream..ctor(String path, FileMode mode,
    FileAccess access, FileShare share, Int32 bufferSize, FileOptions options) at
    System.IO.StreamWriter.CreateFile(String path, Boolean append) at System.IO.StreamWriter..ctor(String
    path, Boolean append, Encoding encoding, Int32 bufferSize) at System.IO.StreamWriter..ctor(String
    path, Boolean append, Encoding encoding) at System.IO.File.WriteAllText(String
    path, String contents, Encoding encoding) at HP.ActiveSupportLibrary.Issues.HPSFSession.closeSaveSession()


    Error - 2/11/2011 3:27:29 AM | Computer Name = User-HP | Source = Hewlett-Packard | ID = 0
    Description = en-IE Could not find a part of the path 'C:\ProgramData\Hewlett-Packard\HP
    Support Framework\Logs\Temp\HPSA\HPSASession_201102110727.xml'. mscorlib at System.IO.__Error.WinIOError(Int32
    errorCode, String maybeFullPath) at System.IO.FileStream.Init(String path, FileMode
    mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32
    bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath,
    Boolean bFromProxy) at System.IO.FileStream..ctor(String path, FileMode mode,
    FileAccess access, FileShare share, Int32 bufferSize, FileOptions options) at
    System.IO.StreamWriter.CreateFile(String path, Boolean append) at System.IO.StreamWriter..ctor(String
    path, Boolean append, Encoding encoding, Int32 bufferSize) at System.IO.StreamWriter..ctor(String
    path, Boolean append, Encoding encoding) at System.IO.File.WriteAllText(String
    path, String contents, Encoding encoding) at HP.ActiveSupportLibrary.Issues.HPSFSession.closeSaveSession()


    [ HP Wireless Assistant Events ]
    Error - 12/29/2010 7:32:36 AM | Computer Name = User-HP | Source = HP WA Service | ID = 0
    Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
    (Exception from HRESULT: 0x800706BA) at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
    errorCode, IntPtr errorInfo) at System.Management.ManagementScope.InitializeGuts(Object
    o) at System.Management.ManagementScope.Initialize() at System.Management.ManagementObject.Initialize(Boolean
    getObject) at System.Management.ManagementBaseObject.get_Properties() at System.Management.ManagementBaseObject.GetPropertyValue(String
    propertyName) at HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

    Error - 12/29/2010 7:33:36 AM | Computer Name = User-HP | Source = HP WA Service | ID = 0
    Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
    (Exception from HRESULT: 0x800706BA) at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
    errorCode, IntPtr errorInfo) at System.Management.ManagementScope.InitializeGuts(Object
    o) at System.Management.ManagementScope.Initialize() at System.Management.ManagementObject.Initialize(Boolean
    getObject) at System.Management.ManagementBaseObject.get_Properties() at System.Management.ManagementBaseObject.GetPropertyValue(String
    propertyName) at HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

    Error - 12/29/2010 7:34:36 AM | Computer Name = User-HP | Source = HP WA Service | ID = 0
    Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
    (Exception from HRESULT: 0x800706BA) at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
    errorCode, IntPtr errorInfo) at System.Management.ManagementScope.InitializeGuts(Object
    o) at System.Management.ManagementScope.Initialize() at System.Management.ManagementObject.Initialize(Boolean
    getObject) at System.Management.ManagementBaseObject.get_Properties() at System.Management.ManagementBaseObject.GetPropertyValue(String
    propertyName) at HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

    Error - 12/29/2010 7:35:36 AM | Computer Name = User-HP | Source = HP WA Service | ID = 0
    Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
    (Exception from HRESULT: 0x800706BA) at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
    errorCode, IntPtr errorInfo) at System.Management.ManagementScope.InitializeGuts(Object
    o) at System.Management.ManagementScope.Initialize() at System.Management.ManagementObject.Initialize(Boolean
    getObject) at System.Management.ManagementBaseObject.get_Properties() at System.Management.ManagementBaseObject.GetPropertyValue(String
    propertyName) at HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

    Error - 3/18/2011 7:13:41 AM | Computer Name = User-HP | Source = HP WA Service | ID = 0
    Description = System.Runtime.InteropServices.COMException at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
    errorCode, IntPtr errorInfo) at System.Management.ManagementObject.Initialize(Boolean
    getObject) at System.Management.ManagementBaseObject.get_Properties() at System.Management.ManagementBaseObject.GetPropertyValue(String
    propertyName) at HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

    Error - 3/18/2011 7:14:41 AM | Computer Name = User-HP | Source = HP WA Service | ID = 0
    Description = System.Runtime.InteropServices.COMException at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
    errorCode, IntPtr errorInfo) at System.Management.ManagementObject.Initialize(Boolean
    getObject) at System.Management.ManagementBaseObject.get_Properties() at System.Management.ManagementBaseObject.GetPropertyValue(String
    propertyName) at HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

    Error - 4/15/2011 5:28:12 PM | Computer Name = User-HP | Source = HP WA Service | ID = 0
    Description = System.Runtime.InteropServices.COMException Call was canceled by the
    message filter. (Exception from HRESULT: 0x80010002 (RPC_E_CALL_CANCELED)) at
    System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32 errorCode,
    IntPtr errorInfo) at System.Management.ManagementScope.InitializeGuts(Object
    o) at System.Management.ManagementScope.Initialize() at System.Management.ManagementObjectSearcher.Initialize()

    at System.Management.ManagementObjectSearcher.Get() at HPPA_Service.CurrentConfiguration.FindDevice(String
    hostPath, String portName) at HPPA_Service.CurrentConfiguration.ApplyDeviceManagerState(List`1
    radios) at HPPA_Service.CurrentConfiguration.ReloadRadioList()

    Error - 4/19/2011 9:40:22 AM | Computer Name = User-HP | Source = HP WA Application | ID = 0
    Description = System.Exception HardwareAccess hasn't been instantiated properly.
    at PAProgramAccess.Impl.UpdatePowerSchemeInformation(PowerScheme powerScheme)

    Error - 5/2/2011 5:29:50 PM | Computer Name = User-HP | Source = HP WA Service | ID = 0
    Description = System.Runtime.InteropServices.COMException at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
    errorCode, IntPtr errorInfo) at System.Management.ManagementObject.Initialize(Boolean
    getObject) at System.Management.ManagementBaseObject.get_Properties() at System.Management.ManagementBaseObject.GetPropertyValue(String
    propertyName) at HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

    Error - 5/2/2011 5:30:50 PM | Computer Name = User-HP | Source = HP WA Service | ID = 0
    Description = System.Runtime.InteropServices.COMException at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
    errorCode, IntPtr errorInfo) at System.Management.ManagementObject.Initialize(Boolean
    getObject) at System.Management.ManagementBaseObject.get_Properties() at System.Management.ManagementBaseObject.GetPropertyValue(String
    propertyName) at HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

    [ System Events ]
    Error - 5/2/2011 5:32:47 PM | Computer Name = User-HP | Source = Service Control Manager | ID = 7011
    Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
    response from the Schedule service.

    Error - 5/2/2011 5:33:17 PM | Computer Name = User-HP | Source = Service Control Manager | ID = 7011
    Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
    response from the Schedule service.

    Error - 5/2/2011 5:33:47 PM | Computer Name = User-HP | Source = Service Control Manager | ID = 7011
    Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
    response from the IKEEXT service.

    Error - 5/2/2011 5:34:17 PM | Computer Name = User-HP | Source = Service Control Manager | ID = 7011
    Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
    response from the AeLookupSvc service.

    Error - 5/2/2011 5:34:17 PM | Computer Name = User-HP | Source = Service Control Manager | ID = 7000
    Description = The Application Experience service failed to start due to the following
    error: %%1053

    Error - 5/2/2011 5:34:47 PM | Computer Name = User-HP | Source = Service Control Manager | ID = 7011
    Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
    response from the ShellHWDetection service.

    Error - 5/2/2011 5:34:53 PM | Computer Name = User-HP | Source = Ntfs | ID = 262281
    Description = The default transaction resource manager on volume G: encountered
    a non-retryable error and could not start. The data contains the error code.

    Error - 5/2/2011 5:40:44 PM | Computer Name = User-HP | Source = Ntfs | ID = 262199
    Description = The file system structure on the disk is corrupt and unusable. Please
    run the chkdsk utility on the volume \Device\HarddiskVolume2.

    Error - 5/2/2011 5:40:44 PM | Computer Name = User-HP | Source = Ntfs | ID = 262199
    Description = The file system structure on the disk is corrupt and unusable. Please
    run the chkdsk utility on the volume \Device\HarddiskVolume2.

    Error - 5/3/2011 6:40:28 PM | Computer Name = User-HP | Source = Service Control Manager | ID = 7011
    Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
    response from the HPWMISVC service.


    < End of report >


  • Site Banned Posts: 1,167 ✭✭✭ASJ112


    Not having much luck. Easy solution would be to use SRWare Iron, its based on the Chrome browser but is far better and less likely to collect personal information than Chrome, have a read of it here

    https://www.srware.net/en/software_srware_iron_chrome_vs_iron.php


    We can try this too. Open OTL click the None button at the top, paste this in the Custom Scans/Fixes box at the bottom


    HKEY_LOCAL_MACHINE\SOFTWARE\Google /s
    C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\*. /s
    C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\*.*
    %AppData%\Local\Google\Chrome\User Data\Default\*. /s
    %AppData%\Local\Google\Chrome\User Data\Default\*.*
    %PROGRAMFILES%\Google Chrome\*.


    click run scan post the log it gives you


  • Registered Users, Registered Users 2 Posts: 312 ✭✭Remmie 223


    ASJ112 wrote: »
    Not having much luck. Easy solution would be to use SRWare Iron, its based on the Chrome browser but is far better and less likely to collect personal information than Chrome, have a read of it here

    https://www.srware.net/en/software_srware_iron_chrome_vs_iron.php


    We can try this too. Open OTL click the None button at the top, paste this in the Custom Scans/Fixes box at the bottom


    HKEY_LOCAL_MACHINE\SOFTWARE\Google /s
    C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\*. /s
    C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\*.*
    %AppData%\Local\Google\Chrome\User Data\Default\*. /s
    %AppData%\Local\Google\Chrome\User Data\Default\*.*
    %PROGRAMFILES%\Google Chrome\*.


    click run scan post the log it gives you
    OTL logfile created on: 6/22/2011 3:06:41 PM - Run 3
    OTL by OldTimer - Version 3.2.24.1 Folder = C:\Users\User\Downloads
    64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.7600.16385)
    Locale: 00000409 | Country: Ireland | Language: ENI | Date Format: dd/MM/yyyy

    3.80 Gb Total Physical Memory | 2.26 Gb Available Physical Memory | 59.38% Memory free
    7.60 Gb Paging File | 5.66 Gb Available in Paging File | 74.47% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
    Drive C: | 449.21 Gb Total Space | 395.69 Gb Free Space | 88.09% Space Free | Partition Type: NTFS
    Drive D: | 16.25 Gb Total Space | 2.34 Gb Free Space | 14.42% Space Free | Partition Type: NTFS

    Computer Name: USER-HP | User Name: User | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days

    ========== Custom Scans ==========


    < >

    < HKEY_LOCAL_MACHINE\SOFTWARE\Google /s >
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\chrome]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\chrome\Extensions]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb]
    "path" = C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonChrome.crx
    "version" = 1.1
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Common]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Common\Google Updater]
    "path" = C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe -- [2011/01/02 18:15:52 | 000,182,768 | ---- | M] (Google)
    "version" = 2.4.1441.4352
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Common\Google Updater\apps]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Common\Google Updater\apps\swg]
    "auto" = 0
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Common\Google Updater\apps\tbie]
    "auto" = 0
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Common\Rlz]
    "DCC" = T4:1T4ADFA_enIE412IE413,R7:1R7ADFA_enIE412,W1:1W1ADFA_en,R2:1R2ADFA_enIE412,I7:1I7ADFA_en
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\CustomSearch]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Google Toolbar]
    "test" = 41
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Google Toolbar\4.0]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Google Toolbar\4.0\Audit]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Google Toolbar\4.0\ServerOptions]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Google Toolbar\4.0\ServerOptions\Options]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Google Toolbar\4.0\Setup]
    "DisableBrowseByName" = 0
    "ToastOfferTime" = 0
    "EulaAccepted" = 1
    "AllowInteractions" = 1
    "EnableUsageStats" = 1
    "SystemPatchLevel" = 4
    "FirstInstallTime" = 1293988564
    "EnabledExperiments" = TENF
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Google Toolbar\Branding]
    "sin" = 7
    "ein" = 0
    "brand" = ADFA
    "id" = 11F150A322957A6A094ACA9DC618880D0B93C0kQKSQ
    "installtime" = 1293988551
    "InstallType" = 4
    "sent" = 1
    "sentfs" = 1
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Google Toolbar\Component]
    "CurrentVersion" = 7.0.1710.2246
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Google Toolbar\Component\NonManifest]
    "C:\ProgramData\Google\Custom Buttons\toolbar.google.com_O8Y91YHB24Z6SR0SGYSK.XML" = 1
    "C:\Users\User\AppData\Local\Google\Toolbar Sync\OL651WQAWQT499YZPQ22\Custom Buttons\skypecasts.xml" = 1
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Google Toolbar\Component\Used]
    "GoogleToolbarManager.exe" = 1
    "GoogleUpdaterService.exe" = 1
    "SearchWithGoogleUpdate.exe" = 1
    "GoogleToolbarDynamic_mui_en.dll" = 1
    "GoogleToolbarDynamic_32.dll" = 1
    "GoogleCld.dll" = 1
    "GoogleToolbarDynamic_64.dll" = 1
    "GoogleToolbarUser_32.exe" = 1
    "GoogleToolbarUser_64.exe" = 1
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Google Toolbar\Elevate]
    "sid" = S-1-5-21-1755794126-1414478762-129814385-1000
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Google Toolbar\GoogleUpdate]
    "InstallResult" = tu
    "InstallTimestamp" = 1306446784
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Google Toolbar\Installations]
    "1293988563" = v=6.5.708.1000&tbbrand=ADFA&i=0
    "1293989464" = v=6.6.1124.846&tbbrand=ADFA&i=0
    "1298626503" = v=6.6.1409.1944&tbbrand=ADFA&i=0
    "1306446787" = v=7.0.1710.2246&tbbrand=ADFA&i=0
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\GoogleToolbarNotifier]
    "Version" = 5.7.6406.1642
    "brand" = ADFA
    "id" = e3a8e2e9c70b46d8ba691251304c4c79
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\GoogleToolbarNotifier\Clients]
    "ietb" = 0
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Installers]
    "MsiStubRun" = 0
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update]
    "path" = C:\Program Files (x86)\Google\Update\GoogleUpdate.exe -- [2011/01/02 18:15:56 | 000,136,176 | ---- | M] (Google Inc.)
    "MsiStubRun" = 0
    "version" = 1.3.21.57
    "uid" = {4B5A23E0-5FA3-486C-9A2C-340775E0A5BD}
    "LastChecked" = 1308735840
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\Clients]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\Clients\{430FD4D0-B729-4F61-AA34-91526481799D}]
    "pv" = 1.3.21.57
    "name" = Google Update
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\Clients\{F69EABDD-A4BB-4555-BE7E-1EA5F59BBA24}]
    "pv" = 7.0.1710.2246
    "name" = Google Toolbar
    "cmd_7.0.1710.2246_0" = "C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_B12CA2CBE40DD1A2.exe" /execute:0 -- [2011/05/26 22:50:49 | 001,033,904 | ---- | M] (Google Inc.)
    "cmd_7.0.1710.2246_1" = "C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_B12CA2CBE40DD1A2.exe" /execute:1 -- [2011/05/26 22:50:49 | 001,033,904 | ---- | M] (Google Inc.)
    "cmd_7.0.1710.2246_2" = "C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_B12CA2CBE40DD1A2.exe" /execute:2 -- [2011/05/26 22:50:49 | 001,033,904 | ---- | M] (Google Inc.)
    "cmd_7.0.1710.2246_3" = "C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_B12CA2CBE40DD1A2.exe" /execute:3 -- [2011/05/26 22:50:49 | 001,033,904 | ---- | M] (Google Inc.)
    "cmd_7.0.1710.2246_4" = "C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_B12CA2CBE40DD1A2.exe" /execute:4 -- [2011/05/26 22:50:49 | 001,033,904 | ---- | M] (Google Inc.)
    "cmd_7.0.1710.2246_5" = "C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_B12CA2CBE40DD1A2.exe" /execute:5 -- [2011/05/26 22:50:49 | 001,033,904 | ---- | M] (Google Inc.)
    "cmd_7.0.1710.2246_6" = "C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_B12CA2CBE40DD1A2.exe" /execute:6 -- [2011/05/26 22:50:49 | 001,033,904 | ---- | M] (Google Inc.)
    "cmd_7.0.1710.2246_7" = "C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_B12CA2CBE40DD1A2.exe" /execute:7 -- [2011/05/26 22:50:49 | 001,033,904 | ---- | M] (Google Inc.)
    "cmd_7.0.1710.2246_8" = "C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_B12CA2CBE40DD1A2.exe" /execute:8 -- [2011/05/26 22:50:49 | 001,033,904 | ---- | M] (Google Inc.)
    "cmd_7.0.1710.2246_9" = "C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_B12CA2CBE40DD1A2.exe" /execute:9 -- [2011/05/26 22:50:49 | 001,033,904 | ---- | M] (Google Inc.)
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\ClientState]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\ClientState\{430FD4D0-B729-4F61-AA34-91526481799D}]
    "brand" = GGOT
    "InstallTime" = 1293988560
    "pv" = 1.3.21.57
    "LastCheckSuccess" = 1308735840
    "UpdateTime" = 1307551201
    "RollCallDayStartSec" = 1308726001
    "experiment_labels" = omaha=v3_57|Tue, 21 Jun 2011 20:23:06 GMT
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\ClientState\{F69EABDD-A4BB-4555-BE7E-1EA5F59BBA24}]
    "brand" = ADFA
    "InstallTime" = 1293988563
    "pv" = 7.0.1710.2246
    "RollCallDayStartSec" = 1308726001
    "LastCheckSuccess" = 1308735840
    "ActivePingDayStartSec" = 1308726001
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\ClientStateMedium]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\ClientStateMedium\{F69EABDD-A4BB-4555-BE7E-1EA5F59BBA24}]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\network]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\network\secure]
    "sk" = [Binary data over 100 bytes]
    "c" = c=ANcH4TJrcFrV5So4mgOTE09yeRpxazIdQEeCByMAzk4pFREK6WHkHj9UcjXPV4IGBaFyUO4VYJ7WOFahe4N4xCvr8Wtz7FfJZQ
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\network\secure-S-1-5-18]
    "sk" = [Binary data over 100 bytes]
    "c" = c=ANcH4TJS5KuLt4OyfL-ovk4AcpCLypcPvyjBVYa8JeABDMUpG_RgEkoFHDObO8lOoKxS-arYXwSvDbruBLJH01OBU1j-E1VbXQ
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\network\secure-S-1-5-21-1755794126-1414478762-129814385-1000]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\proxy]
    "source" = auto
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\UsageStats]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\UsageStats\Daily]
    "LastTransmission" = 1295443280

    < C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\*. /s >

    < C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\*.* >
    [2011/06/22 00:09:06 | 000,002,320 | ---- | M] () -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
    [2011/06/22 00:09:06 | 000,002,429 | ---- | M] () -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Uninstall Google Chrome.lnk

    < %AppData%\Local\Google\Chrome\User Data\Default\*. /s >

    < %AppData%\Local\Google\Chrome\User Data\Default\*.* >

    < %PROGRAMFILES%\Google Chrome\*. >

    < End of report >


  • Advertisement
  • Site Banned Posts: 1,167 ✭✭✭ASJ112


    this might help actually

    Open OTL, paste this in the custom scans/fixes box at the bottom


    :reg
    [-HKEY_LOCAL_MACHINE\SOFTWARE\Google\chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb]
    :files
    C:\Program Files (x86)\Babylon
    C:\BabylonChrome.crx
    ipconfig /flushdns /c
    %systemroot%\prefetch\*.*
    :Commands
    [ResetHosts]
    [EmptyFlash]
    [EmptyTemp]
    [CreateRestorePoint]
    [Reboot]


    Click Run Fix. Let it reboot the machine. Post the log it gives and tell me if the problem remains in chrome


  • Registered Users, Registered Users 2 Posts: 312 ✭✭Remmie 223


    All processes killed
    ========== REGISTRY ==========
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Google\chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\ deleted successfully.
    ========== FILES ==========
    File\Folder C:\Program Files (x86)\Babylon not found.
    File\Folder C:\BabylonChrome.crx not found.
    < ipconfig /flushdns /c >
    Windows IP Configuration
    Successfully flushed the DNS Resolver Cache.
    C:\Users\User\Downloads\cmd.bat deleted successfully.
    C:\Users\User\Downloads\cmd.txt deleted successfully.
    C:\Windows\prefetch\ACRORD32.EXE-96B65281.pf moved successfully.
    C:\Windows\prefetch\ADOBEARM.EXE-7105D3A2.pf moved successfully.
    C:\Windows\prefetch\AgAppLaunch.db moved successfully.
    C:\Windows\prefetch\AgCx_S1_S-1-5-21-1755794126-1414478762-129814385-1000.snp.db moved successfully.
    C:\Windows\prefetch\AgCx_SC1.db moved successfully.
    C:\Windows\prefetch\AgCx_SC1.db.trx moved successfully.
    C:\Windows\prefetch\AgCx_SC2.db moved successfully.
    C:\Windows\prefetch\AgCx_SC4.db moved successfully.
    C:\Windows\prefetch\AgGlFaultHistory.db moved successfully.
    C:\Windows\prefetch\AgGlFgAppHistory.db moved successfully.
    C:\Windows\prefetch\AgGlGlobalHistory.db moved successfully.
    C:\Windows\prefetch\AgGlUAD_P_S-1-5-21-1755794126-1414478762-129814385-1000.db moved successfully.
    C:\Windows\prefetch\AgGlUAD_S-1-5-21-1755794126-1414478762-129814385-1000.db moved successfully.
    C:\Windows\prefetch\AgRobust.db moved successfully.
    C:\Windows\prefetch\AUDIODG.EXE-BDFD3029.pf moved successfully.
    C:\Windows\prefetch\CASLEXEC.EXE-688F54F0.pf moved successfully.
    C:\Windows\prefetch\CHROME.EXE-5617A1BF.pf moved successfully.
    C:\Windows\prefetch\CHROME_INSTALLER.EXE-D85E0531.pf moved successfully.
    C:\Windows\prefetch\CLICKONCE_BOOTSTRAP.EXE-2B0AF2A5.pf moved successfully.
    C:\Windows\prefetch\CLTLMH.EXE-EBE50DBF.pf moved successfully.
    C:\Windows\prefetch\CNMSEA9.EXE-CDFE1C25.pf moved successfully.
    C:\Windows\prefetch\CNSEMAIN.EXE-E4A3DD41.pf moved successfully.
    C:\Windows\prefetch\CONHOST.EXE-1F3E9D7E.pf moved successfully.
    C:\Windows\prefetch\CONSENT.EXE-531BD9EA.pf moved successfully.
    C:\Windows\prefetch\CSC.EXE-A3B8D95D.pf moved successfully.
    C:\Windows\prefetch\CSCRIPT.EXE-0FB3F22C.pf moved successfully.
    C:\Windows\prefetch\CVTRES.EXE-069169FB.pf moved successfully.
    C:\Windows\prefetch\DEFRAG.EXE-588F90AD.pf moved successfully.
    C:\Windows\prefetch\DFSVC.EXE-3D1775F1.pf moved successfully.
    C:\Windows\prefetch\DLLHOST.EXE-3644570E.pf moved successfully.
    C:\Windows\prefetch\DLLHOST.EXE-5E46FA0D.pf moved successfully.
    C:\Windows\prefetch\DLLHOST.EXE-766398D2.pf moved successfully.
    C:\Windows\prefetch\DLLHOST.EXE-76936ED5.pf moved successfully.
    C:\Windows\prefetch\DLLHOST.EXE-B2EB1806.pf moved successfully.
    C:\Windows\prefetch\DLLHOST.EXE-ECB71776.pf moved successfully.
    C:\Windows\prefetch\EWPEXDL.EXE-90FEB5D0.pf moved successfully.
    C:\Windows\prefetch\EZRECOVER.EXE-E7109CC0.pf moved successfully.
    C:\Windows\prefetch\FLASHUTIL64_10_3_162_ACTIVEX.-2BE35DB5.pf moved successfully.
    C:\Windows\prefetch\GOOGLECRASHHANDLER.EXE-6BA1A923.pf moved successfully.
    C:\Windows\prefetch\GOOGLECRASHHANDLER.EXE-8001F7AE.pf moved successfully.
    C:\Windows\prefetch\GOOGLETALKPLUGIN.EXE-2864CCA3.pf moved successfully.
    C:\Windows\prefetch\GOOGLETOOLBARMANAGER_B12CA2CB-50361DD4.pf moved successfully.
    C:\Windows\prefetch\GOOGLETOOLBARUSER_32.EXE-34B1B1C5.pf moved successfully.
    C:\Windows\prefetch\GOOGLEUPDATE.EXE-B89DF375.pf moved successfully.
    C:\Windows\prefetch\GOOGLEUPDATE.EXE-B95715F5.pf moved successfully.
    C:\Windows\prefetch\GOOGLEUPDATE.EXE-DAED8DEA.pf moved successfully.
    C:\Windows\prefetch\GOOGLEUPDATEONDEMAND.EXE-C0ECE528.pf moved successfully.
    C:\Windows\prefetch\GOOGLEUPDATEONDEMAND.EXE-CC6C6C4D.pf moved successfully.
    C:\Windows\prefetch\GOOGLEUPDATERSERVICE.EXE-F11F9E20.pf moved successfully.
    C:\Windows\prefetch\GOOGLEUPDATESETUP.EXE-8BB9435A.pf moved successfully.
    C:\Windows\prefetch\HPADVISOR.EXE-FDFAE59D.pf moved successfully.
    C:\Windows\prefetch\HPASSET.EXE-64C2897D.pf moved successfully.
    C:\Windows\prefetch\HPCASLNOTIFICATION.EXE-F1274B82.pf moved successfully.
    C:\Windows\prefetch\HPCEE.EXE-6A33E4FB.pf moved successfully.
    C:\Windows\prefetch\HPDOBJECT.EXE-BC6F451E.pf moved successfully.
    C:\Windows\prefetch\HPDOWNLOAD.EXE-465D74A7.pf moved successfully.
    C:\Windows\prefetch\HPHC_SERVICE.EXE-5151F760.pf moved successfully.
    C:\Windows\prefetch\HPQWMIEX.EXE-FAAC8C6F.pf moved successfully.
    C:\Windows\prefetch\HPSF.EXE-C90ABEF1.pf moved successfully.
    C:\Windows\prefetch\HPSFREPORT.EXE-F3375220.pf moved successfully.
    C:\Windows\prefetch\HPSF_UTILS.EXE-C119B829.pf moved successfully.
    C:\Windows\prefetch\HPWA_MAIN.EXE-D03C92EE.pf moved successfully.
    C:\Windows\prefetch\HPWA_SERVICE.EXE-AC79FDB2.pf moved successfully.
    C:\Windows\prefetch\HPWSD.EXE-6A0DF60E.pf moved successfully.
    C:\Windows\prefetch\IASTORDATAMGRSVC.EXE-C086B157.pf moved successfully.
    C:\Windows\prefetch\IASTORICON.EXE-FF322740.pf moved successfully.
    C:\Windows\prefetch\IEXPLORE.EXE-908C99F8.pf moved successfully.
    C:\Windows\prefetch\IGFXSRVC.EXE-96A493A4.pf moved successfully.
    C:\Windows\prefetch\IPODSERVICE.EXE-37C43D64.pf moved successfully.
    C:\Windows\prefetch\ITUNESHELPER.EXE-010C3851.pf moved successfully.
    C:\Windows\prefetch\JAVA.EXE-873AF69D.pf moved successfully.
    C:\Windows\prefetch\Layout.ini moved successfully.
    C:\Windows\prefetch\LODCTR.EXE-3CCE0534.pf moved successfully.
    C:\Windows\prefetch\LODCTR.EXE-72CD50D0.pf moved successfully.
    C:\Windows\prefetch\LOGONUI.EXE-09140401.pf moved successfully.
    C:\Windows\prefetch\LOGTRANSPORT2.EXE-CC12578E.pf moved successfully.
    C:\Windows\prefetch\LSSRVC.EXE-5D56B5E2.pf moved successfully.
    C:\Windows\prefetch\MAKECAB.EXE-0F1704A4.pf moved successfully.
    C:\Windows\prefetch\MOFCOMP.EXE-8FE3D558.pf moved successfully.
    C:\Windows\prefetch\MOFCOMP.EXE-FDE76EFC.pf moved successfully.
    C:\Windows\prefetch\MSCORSVW.EXE-57D17DAF.pf moved successfully.
    C:\Windows\prefetch\MSCORSVW.EXE-C3C515BD.pf moved successfully.
    C:\Windows\prefetch\MSIEXEC.EXE-A2D55CB6.pf moved successfully.
    C:\Windows\prefetch\MSIEXEC.EXE-E09A077A.pf moved successfully.
    C:\Windows\prefetch\MSIPATCHREGFIX-AMD64.EXE-0BC8200B.pf moved successfully.
    C:\Windows\prefetch\NCWMODULELIST.EXE-5326ACEF.pf moved successfully.
    C:\Windows\prefetch\NDP40-KB2478663-X64.EXE-B0B21867.pf moved successfully.
    C:\Windows\prefetch\NDP40-KB2518870-X64.EXE-1EBA9DDE.pf moved successfully.
    C:\Windows\prefetch\NGEN.EXE-AE594A6B.pf moved successfully.
    C:\Windows\prefetch\NGEN.EXE-EC3F9239.pf moved successfully.
    C:\Windows\prefetch\NOBUCLIENT.EXE-0874E89F.pf moved successfully.
    C:\Windows\prefetch\NTOSBOOT-B00DFAAD.pf moved successfully.
    C:\Windows\prefetch\OSPPSVC.EXE-E53D3CC0.pf moved successfully.
    C:\Windows\prefetch\OUTLOOK.EXE-8FE118FE.pf moved successfully.
    C:\Windows\prefetch\PfSvPerfStats.bin moved successfully.
    C:\Windows\prefetch\PRESENTATIONFONTCACHE.EXE-73BE9E78.pf moved successfully.
    C:\Windows\prefetch\PRINTISOLATIONHOST.EXE-E0CD10A9.pf moved successfully.
    C:\Windows\prefetch\QTTASK.EXE-D20C213D.pf moved successfully.
    C:\Windows\prefetch\READER_SL.EXE-BA37A2AE.pf moved successfully.
    C:\Windows\prefetch\REGTLIBV12.EXE-B7C4F383.pf moved successfully.
    C:\Windows\prefetch\REGTLIBV12.EXE-D3A27E55.pf moved successfully.
    C:\Windows\prefetch\RESETFILETIME.EXE-2533BC8C.pf moved successfully.
    C:\Windows\prefetch\RTVOSD.EXE-CC4D0C6E.pf moved successfully.
    C:\Windows\prefetch\RTVOSDSERVICE.EXE-4E015DA3.pf moved successfully.
    C:\Windows\prefetch\RUNDLL32.EXE-230FC512.pf moved successfully.
    C:\Windows\prefetch\RUNDLL32.EXE-411A328D.pf moved successfully.
    C:\Windows\prefetch\RUNDLL32.EXE-7E02731E.pf moved successfully.
    C:\Windows\prefetch\RUNDLL32.EXE-A3E35360.pf moved successfully.
    C:\Windows\prefetch\RUNDLL32.EXE-C51630BC.pf moved successfully.
    C:\Windows\prefetch\RUNDLL32.EXE-DE9673F9.pf moved successfully.
    C:\Windows\prefetch\RUNDLL32.EXE-EFC47012.pf moved successfully.
    C:\Windows\prefetch\SCHTASKS.EXE-5CA45734.pf moved successfully.
    C:\Windows\prefetch\SEARCHFILTERHOST.EXE-77482212.pf moved successfully.
    C:\Windows\prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf moved successfully.
    C:\Windows\prefetch\SEARCHPROTOCOLHOST.EXE-42E1CDC2.pf moved successfully.
    C:\Windows\prefetch\SETUP.EXE-677A32FE.pf moved successfully.
    C:\Windows\prefetch\SETUP.EXE-92C16F91.pf moved successfully.
    C:\Windows\prefetch\SETUP.EXE-9840E70D.pf moved successfully.
    C:\Windows\prefetch\SETUP.EXE-ECCE6D13.pf moved successfully.
    C:\Windows\prefetch\SKYPEPM.EXE-F9E72290.pf moved successfully.
    C:\Windows\prefetch\SNDVOL.EXE-5D4CC7D6.pf moved successfully.
    C:\Windows\prefetch\SPLWOW64.EXE-297C4568.pf moved successfully.
    C:\Windows\prefetch\SPPSVC.EXE-B0F8131B.pf moved successfully.
    C:\Windows\prefetch\SVCHOST.EXE-7AC6742A.pf moved successfully.
    C:\Windows\prefetch\SVCHOST.EXE-7CFEDEA3.pf moved successfully.
    C:\Windows\prefetch\SYMERR.EXE-53C19F25.pf moved successfully.
    C:\Windows\prefetch\TASKENG.EXE-48D4E289.pf moved successfully.
    C:\Windows\prefetch\TASKHOST.EXE-7238F31D.pf moved successfully.
    C:\Windows\prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf moved successfully.
    C:\Windows\prefetch\UNLODCTR.EXE-531FACC7.pf moved successfully.
    C:\Windows\prefetch\UNLODCTR.EXE-A3D4DEEB.pf moved successfully.
    C:\Windows\prefetch\UNS.EXE-E6E49771.pf moved successfully.
    C:\Windows\prefetch\VSSVC.EXE-B8AFC319.pf moved successfully.
    C:\Windows\prefetch\WERMGR.EXE-0F2AC88C.pf moved successfully.
    C:\Windows\prefetch\WLXPHOTOGALLERY.EXE-F184FD87.pf moved successfully.
    C:\Windows\prefetch\WMIADAP.EXE-F8DFDFA2.pf moved successfully.
    C:\Windows\prefetch\WMIPRVSE.EXE-1628051C.pf moved successfully.
    C:\Windows\prefetch\WMIPRVSE.EXE-6768A320.pf moved successfully.
    C:\Windows\prefetch\WMPNETWK.EXE-D9F2A96F.pf moved successfully.
    C:\Windows\prefetch\WSCRIPT.EXE-52CF1F0C.pf moved successfully.
    C:\Windows\prefetch\WSCSTUB.EXE-AEBDB472.pf moved successfully.
    C:\Windows\prefetch\WSQMCONS.EXE-118B52B7.pf moved successfully.
    C:\Windows\prefetch\WUAUCLT.EXE-70318591.pf moved successfully.
    ========== COMMANDS ==========
    C:\Windows\System32\drivers\etc\Hosts moved successfully.
    HOSTS file reset successfully

    [EMPTYFLASH]

    User: All Users

    User: Default

    User: Default User

    User: Public

    User: User
    ->Flash cache emptied: 10849 bytes

    Total Flash Files Cleaned = 0.00 mb


    [EMPTYTEMP]

    User: All Users

    User: Default
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 33170 bytes

    User: Default User
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes

    User: Public

    User: User
    ->Temp folder emptied: 73740109 bytes
    ->Temporary Internet Files folder emptied: 478457818 bytes
    ->Java cache emptied: 21613 bytes
    ->FireFox cache emptied: 32973366 bytes
    ->Google Chrome cache emptied: 406101181 bytes
    ->Flash cache emptied: 0 bytes

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 0 bytes
    %systemroot%\System32 .tmp files removed: 0 bytes
    %systemroot%\System32 (64bit) .tmp files removed: 0 bytes
    %systemroot%\System32\drivers .tmp files removed: 0 bytes
    Windows Temp folder emptied: 26260605 bytes
    %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67563 bytes
    RecycleBin emptied: 8807 bytes

    Total Files Cleaned = 971.00 mb

    Restore point Set: OTL Restore Point
    Error: Unable to interpret <[Reboot> in the current context!

    OTL by OldTimer - Version 3.2.24.1 log created on 06222011_152626

    Files\Folders moved on Reboot...
    C:\Users\User\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

    Registry entries deleted on Reboot...


  • Site Banned Posts: 1,167 ✭✭✭ASJ112


    one final idea

    open OTL click the none button, paste this in the custom scan box


    dhkplhfnhceodhffomolpfigojocbpcb /rs
    /md5start
    BabylonChrome.*
    /md5stop


    click run scan post the log it gives


    may take a while to scan


  • Registered Users, Registered Users 2 Posts: 312 ✭✭Remmie 223


    ASJ112 wrote: »
    one final idea

    open OTL click the none button, paste this in the custom scan box


    dhkplhfnhceodhffomolpfigojocbpcb /rs
    /md5start
    BabylonChrome.*
    /md5stop


    click run scan post the log it gives


    may take a while to scan
    OTL logfile created on: 6/22/2011 3:48:18 PM - Run 4
    OTL by OldTimer - Version 3.2.24.1 Folder = C:\Users\User\Downloads
    64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.7600.16385)
    Locale: 00000409 | Country: Ireland | Language: ENI | Date Format: dd/MM/yyyy

    3.80 Gb Total Physical Memory | 2.11 Gb Available Physical Memory | 55.56% Memory free
    7.60 Gb Paging File | 5.72 Gb Available in Paging File | 75.29% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
    Drive C: | 449.21 Gb Total Space | 395.96 Gb Free Space | 88.14% Space Free | Partition Type: NTFS
    Drive D: | 16.25 Gb Total Space | 2.34 Gb Free Space | 14.42% Space Free | Partition Type: NTFS

    Computer Name: USER-HP | User Name: User | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days

    ========== Custom Scans ==========


    < All processes killed >

    < ========== REGISTRY ========== >

    < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Google\chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\ deleted successfully. >

    < ========== FILES ========== >

    < File\Folder C:\Program Files (x86)\Babylon not found. >

    < File\Folder C:\BabylonChrome.crx not found. >

    < < ipconfig /flushdns /c > >
    Invalid Switch: color]


    < Windows IP Configuration >

    < Successfully flushed the DNS Resolver Cache. >

    < C:\Users\User\Downloads\cmd.bat deleted successfully. >

    < C:\Users\User\Downloads\cmd.txt deleted successfully. >

    < C:\Windows\prefetch\ACRORD32.EXE-96B65281.pf moved successfully. >

    < C:\Windows\prefetch\ADOBEARM.EXE-7105D3A2.pf moved successfully. >

    < C:\Windows\prefetch\AgAppLaunch.db moved successfully. >

    < C:\Windows\prefetch\AgCx_S1_S-1-5-21-1755794126-1414478762-129814385-1000.snp.db moved successfully. >

    < C:\Windows\prefetch\AgCx_SC1.db moved successfully. >

    < C:\Windows\prefetch\AgCx_SC1.db.trx moved successfully. >

    < C:\Windows\prefetch\AgCx_SC2.db moved successfully. >

    < C:\Windows\prefetch\AgCx_SC4.db moved successfully. >

    < C:\Windows\prefetch\AgGlFaultHistory.db moved successfully. >

    < C:\Windows\prefetch\AgGlFgAppHistory.db moved successfully. >

    < C:\Windows\prefetch\AgGlGlobalHistory.db moved successfully. >

    < C:\Windows\prefetch\AgGlUAD_P_S-1-5-21-1755794126-1414478762-129814385-1000.db moved successfully. >

    < C:\Windows\prefetch\AgGlUAD_S-1-5-21-1755794126-1414478762-129814385-1000.db moved successfully. >

    < C:\Windows\prefetch\AgRobust.db moved successfully. >

    < C:\Windows\prefetch\AUDIODG.EXE-BDFD3029.pf moved successfully. >

    < C:\Windows\prefetch\CASLEXEC.EXE-688F54F0.pf moved successfully. >

    < C:\Windows\prefetch\CHROME.EXE-5617A1BF.pf moved successfully. >

    < C:\Windows\prefetch\CHROME_INSTALLER.EXE-D85E0531.pf moved successfully. >

    < C:\Windows\prefetch\CLICKONCE_BOOTSTRAP.EXE-2B0AF2A5.pf moved successfully. >

    < C:\Windows\prefetch\CLTLMH.EXE-EBE50DBF.pf moved successfully. >

    < C:\Windows\prefetch\CNMSEA9.EXE-CDFE1C25.pf moved successfully. >

    < C:\Windows\prefetch\CNSEMAIN.EXE-E4A3DD41.pf moved successfully. >

    < C:\Windows\prefetch\CONHOST.EXE-1F3E9D7E.pf moved successfully. >

    < C:\Windows\prefetch\CONSENT.EXE-531BD9EA.pf moved successfully. >

    < C:\Windows\prefetch\CSC.EXE-A3B8D95D.pf moved successfully. >

    < C:\Windows\prefetch\CSCRIPT.EXE-0FB3F22C.pf moved successfully. >

    < C:\Windows\prefetch\CVTRES.EXE-069169FB.pf moved successfully. >

    < C:\Windows\prefetch\DEFRAG.EXE-588F90AD.pf moved successfully. >

    < C:\Windows\prefetch\DFSVC.EXE-3D1775F1.pf moved successfully. >

    < C:\Windows\prefetch\DLLHOST.EXE-3644570E.pf moved successfully. >

    < C:\Windows\prefetch\DLLHOST.EXE-5E46FA0D.pf moved successfully. >

    < C:\Windows\prefetch\DLLHOST.EXE-766398D2.pf moved successfully. >

    < C:\Windows\prefetch\DLLHOST.EXE-76936ED5.pf moved successfully. >

    < C:\Windows\prefetch\DLLHOST.EXE-B2EB1806.pf moved successfully. >

    < C:\Windows\prefetch\DLLHOST.EXE-ECB71776.pf moved successfully. >

    < C:\Windows\prefetch\EWPEXDL.EXE-90FEB5D0.pf moved successfully. >

    < C:\Windows\prefetch\EZRECOVER.EXE-E7109CC0.pf moved successfully. >

    < C:\Windows\prefetch\FLASHUTIL64_10_3_162_ACTIVEX.-2BE35DB5.pf moved successfully. >

    < C:\Windows\prefetch\GOOGLECRASHHANDLER.EXE-6BA1A923.pf moved successfully. >

    < C:\Windows\prefetch\GOOGLECRASHHANDLER.EXE-8001F7AE.pf moved successfully. >

    < C:\Windows\prefetch\GOOGLETALKPLUGIN.EXE-2864CCA3.pf moved successfully. >

    < C:\Windows\prefetch\GOOGLETOOLBARMANAGER_B12CA2CB-50361DD4.pf moved successfully. >

    < C:\Windows\prefetch\GOOGLETOOLBARUSER_32.EXE-34B1B1C5.pf moved successfully. >

    < C:\Windows\prefetch\GOOGLEUPDATE.EXE-B89DF375.pf moved successfully. >

    < C:\Windows\prefetch\GOOGLEUPDATE.EXE-B95715F5.pf moved successfully. >

    < C:\Windows\prefetch\GOOGLEUPDATE.EXE-DAED8DEA.pf moved successfully. >

    < C:\Windows\prefetch\GOOGLEUPDATEONDEMAND.EXE-C0ECE528.pf moved successfully. >

    < C:\Windows\prefetch\GOOGLEUPDATEONDEMAND.EXE-CC6C6C4D.pf moved successfully. >

    < C:\Windows\prefetch\GOOGLEUPDATERSERVICE.EXE-F11F9E20.pf moved successfully. >

    < C:\Windows\prefetch\GOOGLEUPDATESETUP.EXE-8BB9435A.pf moved successfully. >

    < C:\Windows\prefetch\HPADVISOR.EXE-FDFAE59D.pf moved successfully. >

    < C:\Windows\prefetch\HPASSET.EXE-64C2897D.pf moved successfully. >

    < C:\Windows\prefetch\HPCASLNOTIFICATION.EXE-F1274B82.pf moved successfully. >

    < C:\Windows\prefetch\HPCEE.EXE-6A33E4FB.pf moved successfully. >

    < C:\Windows\prefetch\HPDOBJECT.EXE-BC6F451E.pf moved successfully. >

    < C:\Windows\prefetch\HPDOWNLOAD.EXE-465D74A7.pf moved successfully. >

    < C:\Windows\prefetch\HPHC_SERVICE.EXE-5151F760.pf moved successfully. >

    < C:\Windows\prefetch\HPQWMIEX.EXE-FAAC8C6F.pf moved successfully. >

    < C:\Windows\prefetch\HPSF.EXE-C90ABEF1.pf moved successfully. >

    < C:\Windows\prefetch\HPSFREPORT.EXE-F3375220.pf moved successfully. >

    < C:\Windows\prefetch\HPSF_UTILS.EXE-C119B829.pf moved successfully. >

    < C:\Windows\prefetch\HPWA_MAIN.EXE-D03C92EE.pf moved successfully. >

    < C:\Windows\prefetch\HPWA_SERVICE.EXE-AC79FDB2.pf moved successfully. >

    < C:\Windows\prefetch\HPWSD.EXE-6A0DF60E.pf moved successfully. >

    < C:\Windows\prefetch\IASTORDATAMGRSVC.EXE-C086B157.pf moved successfully. >

    < C:\Windows\prefetch\IASTORICON.EXE-FF322740.pf moved successfully. >

    < C:\Windows\prefetch\IEXPLORE.EXE-908C99F8.pf moved successfully. >

    < C:\Windows\prefetch\IGFXSRVC.EXE-96A493A4.pf moved successfully. >

    < C:\Windows\prefetch\IPODSERVICE.EXE-37C43D64.pf moved successfully. >

    < C:\Windows\prefetch\ITUNESHELPER.EXE-010C3851.pf moved successfully. >

    < C:\Windows\prefetch\JAVA.EXE-873AF69D.pf moved successfully. >

    < C:\Windows\prefetch\Layout.ini moved successfully. >

    < C:\Windows\prefetch\LODCTR.EXE-3CCE0534.pf moved successfully. >

    < C:\Windows\prefetch\LODCTR.EXE-72CD50D0.pf moved successfully. >

    < C:\Windows\prefetch\LOGONUI.EXE-09140401.pf moved successfully. >

    < C:\Windows\prefetch\LOGTRANSPORT2.EXE-CC12578E.pf moved successfully. >

    < C:\Windows\prefetch\LSSRVC.EXE-5D56B5E2.pf moved successfully. >

    < C:\Windows\prefetch\MAKECAB.EXE-0F1704A4.pf moved successfully. >

    < C:\Windows\prefetch\MOFCOMP.EXE-8FE3D558.pf moved successfully. >

    < C:\Windows\prefetch\MOFCOMP.EXE-FDE76EFC.pf moved successfully. >

    < C:\Windows\prefetch\MSCORSVW.EXE-57D17DAF.pf moved successfully. >

    < C:\Windows\prefetch\MSCORSVW.EXE-C3C515BD.pf moved successfully. >

    < C:\Windows\prefetch\MSIEXEC.EXE-A2D55CB6.pf moved successfully. >

    < C:\Windows\prefetch\MSIEXEC.EXE-E09A077A.pf moved successfully. >

    < C:\Windows\prefetch\MSIPATCHREGFIX-AMD64.EXE-0BC8200B.pf moved successfully. >

    < C:\Windows\prefetch\NCWMODULELIST.EXE-5326ACEF.pf moved successfully. >

    < C:\Windows\prefetch\NDP40-KB2478663-X64.EXE-B0B21867.pf moved successfully. >

    < C:\Windows\prefetch\NDP40-KB2518870-X64.EXE-1EBA9DDE.pf moved successfully. >

    < C:\Windows\prefetch\NGEN.EXE-AE594A6B.pf moved successfully. >

    < C:\Windows\prefetch\NGEN.EXE-EC3F9239.pf moved successfully. >

    < C:\Windows\prefetch\NOBUCLIENT.EXE-0874E89F.pf moved successfully. >

    < C:\Windows\prefetch\NTOSBOOT-B00DFAAD.pf moved successfully. >

    < C:\Windows\prefetch\OSPPSVC.EXE-E53D3CC0.pf moved successfully. >

    < C:\Windows\prefetch\OUTLOOK.EXE-8FE118FE.pf moved successfully. >

    < C:\Windows\prefetch\PfSvPerfStats.bin moved successfully. >

    < C:\Windows\prefetch\PRESENTATIONFONTCACHE.EXE-73BE9E78.pf moved successfully. >

    < C:\Windows\prefetch\PRINTISOLATIONHOST.EXE-E0CD10A9.pf moved successfully. >

    < C:\Windows\prefetch\QTTASK.EXE-D20C213D.pf moved successfully. >

    < C:\Windows\prefetch\READER_SL.EXE-BA37A2AE.pf moved successfully. >

    < C:\Windows\prefetch\REGTLIBV12.EXE-B7C4F383.pf moved successfully. >

    < C:\Windows\prefetch\REGTLIBV12.EXE-D3A27E55.pf moved successfully. >

    < C:\Windows\prefetch\RESETFILETIME.EXE-2533BC8C.pf moved successfully. >

    < C:\Windows\prefetch\RTVOSD.EXE-CC4D0C6E.pf moved successfully. >

    < C:\Windows\prefetch\RTVOSDSERVICE.EXE-4E015DA3.pf moved successfully. >

    < C:\Windows\prefetch\RUNDLL32.EXE-230FC512.pf moved successfully. >

    < C:\Windows\prefetch\RUNDLL32.EXE-411A328D.pf moved successfully. >

    < C:\Windows\prefetch\RUNDLL32.EXE-7E02731E.pf moved successfully. >

    < C:\Windows\prefetch\RUNDLL32.EXE-A3E35360.pf moved successfully. >

    < C:\Windows\prefetch\RUNDLL32.EXE-C51630BC.pf moved successfully. >

    < C:\Windows\prefetch\RUNDLL32.EXE-DE9673F9.pf moved successfully. >

    < C:\Windows\prefetch\RUNDLL32.EXE-EFC47012.pf moved successfully. >

    < C:\Windows\prefetch\SCHTASKS.EXE-5CA45734.pf moved successfully. >

    < C:\Windows\prefetch\SEARCHFILTERHOST.EXE-77482212.pf moved successfully. >

    < C:\Windows\prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf moved successfully. >

    < C:\Windows\prefetch\SEARCHPROTOCOLHOST.EXE-42E1CDC2.pf moved successfully. >

    < C:\Windows\prefetch\SETUP.EXE-677A32FE.pf moved successfully. >

    < C:\Windows\prefetch\SETUP.EXE-92C16F91.pf moved successfully. >

    < C:\Windows\prefetch\SETUP.EXE-9840E70D.pf moved successfully. >

    < C:\Windows\prefetch\SETUP.EXE-ECCE6D13.pf moved successfully. >

    < C:\Windows\prefetch\SKYPEPM.EXE-F9E72290.pf moved successfully. >

    < C:\Windows\prefetch\SNDVOL.EXE-5D4CC7D6.pf moved successfully. >

    < C:\Windows\prefetch\SPLWOW64.EXE-297C4568.pf moved successfully. >

    < C:\Windows\prefetch\SPPSVC.EXE-B0F8131B.pf moved successfully. >

    < C:\Windows\prefetch\SVCHOST.EXE-7AC6742A.pf moved successfully. >

    < C:\Windows\prefetch\SVCHOST.EXE-7CFEDEA3.pf moved successfully. >

    < C:\Windows\prefetch\SYMERR.EXE-53C19F25.pf moved successfully. >

    < C:\Windows\prefetch\TASKENG.EXE-48D4E289.pf moved successfully. >

    < C:\Windows\prefetch\TASKHOST.EXE-7238F31D.pf moved successfully. >

    < C:\Windows\prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf moved successfully. >

    < C:\Windows\prefetch\UNLODCTR.EXE-531FACC7.pf moved successfully. >

    < C:\Windows\prefetch\UNLODCTR.EXE-A3D4DEEB.pf moved successfully. >

    < C:\Windows\prefetch\UNS.EXE-E6E49771.pf moved successfully. >

    < C:\Windows\prefetch\VSSVC.EXE-B8AFC319.pf moved successfully. >

    < C:\Windows\prefetch\WERMGR.EXE-0F2AC88C.pf moved successfully. >

    < C:\Windows\prefetch\WLXPHOTOGALLERY.EXE-F184FD87.pf moved successfully. >

    < C:\Windows\prefetch\WMIADAP.EXE-F8DFDFA2.pf moved successfully. >

    < C:\Windows\prefetch\WMIPRVSE.EXE-1628051C.pf moved successfully. >

    < C:\Windows\prefetch\WMIPRVSE.EXE-6768A320.pf moved successfully. >

    < C:\Windows\prefetch\WMPNETWK.EXE-D9F2A96F.pf moved successfully. >

    < C:\Windows\prefetch\WSCRIPT.EXE-52CF1F0C.pf moved successfully. >

    < C:\Windows\prefetch\WSCSTUB.EXE-AEBDB472.pf moved successfully. >

    < C:\Windows\prefetch\WSQMCONS.EXE-118B52B7.pf moved successfully. >

    < C:\Windows\prefetch\WUAUCLT.EXE-70318591.pf moved successfully. >

    < ========== COMMANDS ========== >

    < C:\Windows\System32\drivers\etc\Hosts moved successfully. >

    < HOSTS file reset successfully >

    < >

    < [EMPTYFLASH] >

    < >

    < User: All Users >

    < >

    < User: Default >

    < >

    < User: Default User >

    < >

    < User: Public >

    < >

    < User: User >

    < ->Flash cache emptied: 10849 bytes >

    < >

    < Total Flash Files Cleaned = 0.00 mb >

    < >

    < >

    < [EMPTYTEMP] >

    < >

    < User: All Users >

    < >

    < User: Default >

    < ->Temp folder emptied: 0 bytes >

    < ->Temporary Internet Files folder emptied: 33170 bytes >

    < >

    < User: Default User >

    < ->Temp folder emptied: 0 bytes >

    < ->Temporary Internet Files folder emptied: 0 bytes >

    < >

    < User: Public >

    < >

    < User: User >

    < ->Temp folder emptied: 73740109 bytes >

    < ->Temporary Internet Files folder emptied: 478457818 bytes >

    < ->Java cache emptied: 21613 bytes >

    < ->FireFox cache emptied: 32973366 bytes >

    < ->Google Chrome cache emptied: 406101181 bytes >

    < ->Flash cache emptied: 0 bytes >

    < >

    < %systemdrive% .tmp files removed: 0 bytes >

    < %systemroot% .tmp files removed: 0 bytes >

    < %systemroot%\System32 .tmp files removed: 0 bytes >

    < %systemroot%\System32 (64bit) .tmp files removed: 0 bytes >

    < %systemroot%\System32\drivers .tmp files removed: 0 bytes >

    < Windows Temp folder emptied: 26260605 bytes >

    < %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67563 bytes >

    < RecycleBin emptied: 8807 bytes >

    < >

    < Total Files Cleaned = 971.00 mb >

    < >

    < Restore point Set: OTL Restore Point >

    < Error: Unable to interpret <[Reboot> in the current context! >

    < >

    < OTL by OldTimer - Version 3.2.24.1 log created on 06222011_152626 >

    < >

    < Files\Folders moved on Reboot... >

    < C:\Users\User\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully. >

    < >

    < Registry entries deleted on Reboot... >

    < End of report >


  • Site Banned Posts: 1,167 ✭✭✭ASJ112


    Sorry cant be much more help with this problem.

    I would recommend using SRWare Iron instead though. Very similar to Chrome so it wont take long to get used to it


    https://www.srware.net/en/software_srware_iron_chrome_vs_iron.php


  • Registered Users, Registered Users 2 Posts: 312 ✭✭Remmie 223


    ASJ112 wrote: »
    Sorry cant be much more help with this problem.

    I would recommend using SRWare Iron instead though. Very similar to Chrome so it wont take long to get used to it


    https://www.srware.net/en/software_srware_iron_chrome_vs_iron.php
    Thanks for your time and help ASJ:)


  • Closed Accounts Posts: 18,056 ✭✭✭✭BostonB


    ASJ112 wrote: »
    Download OTL to your Desktop
    • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
    • Click the Quick Scan button. Do not change any settings. The scan wont take long.
    • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
    • Please copy (Edit->Select All, Edit->Copy) the contents of these files here

    Can I ask what are you hoping to find when you get someone to post all this information?


  • Closed Accounts Posts: 18,056 ✭✭✭✭BostonB


    Remmie 223 wrote: »
    Hello all
    This is my first post here, I have limited experience with computers, so please excuse my ignorance. This f***ing "babylon search" has glued itself to my google chrome task bar and it seems to be taking over my computer. I have tried everyway i know how to uninstall this piece of crap, but it keeps coming back. Any help would be greatly appreciated. I'm about ready to through the laptop out the upstairs window:eek:

    Did you try this...

    http://www.google.com/support/forum/p/Chrome/thread?tid=22a72ea01ac0640f&hl=en

    ..just click on the tools (the wrench icon in the upper right corner), and go to "Options". There you will see your startup page, and you can change that from "http://search.Babylon.com&quot; to "http://www.google.com",

    Then below that you will see a pulldown tab that says "Default Search" and it will be set to "babylon search" - just pull down the tab to pick another search provider - I assume you want Google so pick that...


  • Registered Users, Registered Users 2 Posts: 312 ✭✭Remmie 223


    BostonB wrote: »
    Thank you Boston B. That sorted it :D


  • Closed Accounts Posts: 18,056 ✭✭✭✭BostonB


    Sweet.


  • Advertisement
Advertisement