OTL logfile created on: 2009-10-16 11:09:25 AM - Run 1 OTL by OldTimer - Version 3.0.21.0 Folder = H:\My Documents\Downloads Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000409 | Country: United States | Language: ENU | Date Format: yyyy-MM-dd 2.00 Gb Total Physical Memory | 1.08 Gb Available Physical Memory | 54.08% Memory free 4.00 Gb Paging File | 3.95 Gb Available in Paging File | 98.74% Paging File free Paging file location(s): C:\pagefile.sys 3067 9201 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 105.78 Gb Total Space | 58.89 Gb Free Space | 55.67% Space Free | Partition Type: NTFS D: Drive not present or media not loaded E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded Drive H: | 232.83 Gb Total Space | 180.67 Gb Free Space | 77.60% Space Free | Partition Type: FAT32 I: Drive not present or media not loaded Computer Name: CJ-SONY-LAPTOP Current User Name: Chris Jones Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: On Skip Microsoft Files: On File Age = 14 Days Output = Standard Quick Scan [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2009-10-16 11:08:28 | 00,521,216 | ---- | M] (OldTimer Tools) -- H:\My Documents\Downloads\OTL.exe PRC - [2009-10-14 15:18:46 | 02,000,112 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe PRC - [2009-09-24 08:59:28 | 02,971,608 | ---- | M] (PC Tools) -- C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe PRC - [2009-09-23 08:43:00 | 00,818,432 | ---- | M] (PC Tools) -- C:\Program Files\PC Tools Firewall Plus\FWService.exe PRC - [2009-09-15 06:56:48 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe PRC - [2009-09-15 06:56:43 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe PRC - [2009-09-15 06:56:28 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe PRC - [2009-09-15 06:54:13 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe PRC - [2009-09-15 06:49:40 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe PRC - [2009-09-10 20:38:58 | 00,908,280 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2009-07-25 05:23:12 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe PRC - [2009-07-25 05:23:10 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2009-07-10 11:58:30 | 00,378,951 | ---- | M] (Plaxo, Inc.) -- C:\Program Files\Plaxo\3.22.0.7\PlaxoHelper_en.exe PRC - [2009-07-01 23:13:34 | 00,623,960 | ---- | M] (Research In Motion Limited) -- C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe PRC - [2009-06-30 00:37:35 | 00,133,104 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.2.183.7\GoogleCrashHandler.exe PRC - [2009-05-29 13:41:26 | 00,144,712 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe PRC - [2009-05-19 11:36:18 | 00,240,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe PRC - [2009-05-08 10:35:50 | 02,780,432 | ---- | M] () -- C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe PRC - [2009-05-08 10:34:08 | 00,559,888 | ---- | M] () -- C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe PRC - [2009-04-30 16:01:10 | 00,154,136 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe PRC - [2009-04-17 13:08:00 | 00,053,064 | ---- | M] (TechSmith Corporation) -- C:\Program Files\TechSmith\Snagit 9\TSCHelp.exe PRC - [2009-04-17 13:07:58 | 00,089,928 | ---- | M] (TechSmith Corporation) -- C:\Program Files\TechSmith\Snagit 9\SnagPriv.exe PRC - [2009-04-17 13:07:56 | 08,824,648 | ---- | M] (TechSmith Corporation) -- C:\Program Files\TechSmith\Snagit 9\snagiteditor.exe PRC - [2009-04-17 13:07:54 | 07,226,184 | ---- | M] (TechSmith Corporation) -- C:\Program Files\TechSmith\Snagit 9\Snagit32.exe PRC - [2009-03-30 16:28:36 | 01,533,808 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE PRC - [2009-03-30 16:28:36 | 00,183,152 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe PRC - [2009-02-06 06:10:02 | 00,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wbem\wmiprvse.exe PRC - [2009-02-03 10:32:28 | 03,550,592 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\procexp.exe PRC - [2008-12-12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe PRC - [2008-10-25 11:44:34 | 00,031,072 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe PRC - [2008-10-10 23:17:50 | 00,132,456 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe PRC - [2008-05-26 09:10:46 | 00,068,856 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe PRC - [2008-04-13 20:12:19 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE PRC - [2008-03-04 14:55:56 | 00,823,296 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\EvtEng.exe PRC - [2008-03-04 14:46:16 | 00,999,424 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe PRC - [2008-03-04 14:41:50 | 01,101,824 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe PRC - [2008-03-04 14:37:38 | 00,688,128 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe PRC - [2008-03-04 14:34:38 | 01,187,840 | ---- | M] (Intel Corporation ) -- C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe PRC - [2008-03-04 14:30:12 | 00,483,328 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe PRC - [2007-08-16 21:57:40 | 00,530,296 | ---- | M] () -- C:\Program Files\sony\Wireless adapter\ZDWLan.EXE PRC - [2006-11-02 20:40:12 | 00,174,656 | ---- | M] () -- C:\WINDOWS\System32\PSIService.exe PRC - [2006-10-26 13:40:34 | 00,335,872 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe PRC - [2006-10-18 23:05:24 | 00,913,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\WMPNetwk.exe PRC - [2006-06-20 20:45:00 | 00,143,428 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe PRC - [2006-06-13 13:22:20 | 00,217,088 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Power Management\SPMgr.exe PRC - [2006-04-13 16:36:36 | 00,176,128 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Event Service\VESMgr.exe PRC - [2006-04-04 17:55:18 | 00,274,432 | ---- | M] (Sony Corporation) -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe PRC - [2006-02-08 00:29:04 | 00,094,208 | ---- | M] (Sony Electronics, Inc) -- C:\Program Files\Sony\SmartWi Connection Utility\SmartWiService.exe PRC - [2006-02-08 00:28:44 | 00,172,032 | ---- | M] (Sony Electronics Corporation) -- C:\Program Files\Sony\SmartWi Connection Utility\SmartWiTogglet.exe PRC - [2006-02-08 00:28:44 | 00,073,728 | ---- | M] (Sony Electronics Corporation) -- C:\Program Files\Sony\SmartWi Connection Utility\WCULauncher.exe PRC - [2005-12-27 17:58:10 | 00,069,632 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe PRC - [2005-11-28 16:39:32 | 00,118,784 | ---- | M] (Sony Corporation) -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe PRC - [2005-11-28 16:39:30 | 00,131,072 | ---- | M] (Sony Corporation) -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe PRC - [2004-11-17 23:47:16 | 00,118,784 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\Apoint\Apoint.exe PRC - [2004-08-19 12:40:08 | 00,045,056 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\Apoint\Apntex.exe PRC - [2004-02-20 17:12:34 | 00,032,768 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\ISB Utility\ISBMgr.exe PRC - [2003-09-30 18:39:38 | 00,061,440 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\Toolbox\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe PRC - [2003-05-31 22:02:32 | 07,544,916 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Binn\sqlservr.exe PRC - [2002-03-19 18:30:00 | 00,045,632 | ---- | M] () -- C:\WINDOWS\System32\taskswitch.exe PRC - [2000-09-08 14:34:38 | 00,167,936 | ---- | M] (ALPS) -- C:\Program Files\Apoint\Apvfb.exe [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2009-09-23 08:43:00 | 00,818,432 | ---- | M] (PC Tools) -- C:\Program Files\PC Tools Firewall Plus\FWService.exe -- (PCToolsFirewallPlus [Auto | Running]) SRV - [2009-09-21 16:36:02 | 00,545,568 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service [On_Demand | Stopped]) SRV - [2009-09-15 06:56:43 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus [Auto | Running]) SRV - [2009-09-15 06:56:28 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner [On_Demand | Running]) SRV - [2009-09-15 06:54:13 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner [On_Demand | Running]) SRV - [2009-09-15 06:49:40 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv [Auto | Running]) SRV - [2009-07-25 05:23:10 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService [Auto | Running]) SRV - [2009-05-29 13:41:26 | 00,144,712 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device [Auto | Running]) SRV - [2009-05-19 11:36:18 | 00,240,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort [Auto | Running]) SRV - [2009-04-30 16:01:10 | 00,154,136 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv [Auto | Running]) SRV - [2009-04-11 14:17:46 | 00,313,840 | ---- | M] (Sonic Solutions) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe -- (RoxLiveShare9 [Auto | Stopped]) SRV - [2009-04-11 14:17:44 | 00,170,480 | ---- | M] (Sonic Solutions) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe -- (RoxWatch9 [Auto | Stopped]) SRV - [2009-04-11 14:17:26 | 01,108,464 | ---- | M] (Sonic Solutions) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe -- (RoxMediaDB9 [On_Demand | Stopped]) SRV - [2009-04-09 00:47:58 | 00,020,480 | ---- | M] (Intuit) -- C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe -- (QBCFMonitorService [Disabled | Stopped]) SRV - [2009-03-30 16:28:36 | 01,533,808 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc [Auto | Running]) SRV - [2009-03-24 09:43:04 | 00,183,280 | ---- | M] (Google) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [Auto | Stopped]) SRV - [2009-02-06 18:08:58 | 00,533,360 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe -- (fsssvc [On_Demand | Stopped]) SRV - [2009-02-04 10:32:35 | 00,133,104 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\GoogleUpdate.exe -- (gupdate1c986d5746afa36 [Auto | Stopped]) SRV - [2008-12-12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service [Auto | Running]) SRV - [2008-11-04 01:06:28 | 00,441,712 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped]) SRV - [2008-10-25 11:44:08 | 00,065,888 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service [On_Demand | Stopped]) SRV - [2008-10-10 23:17:50 | 00,132,456 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe -- (TOSHIBA Bluetooth Service [Auto | Running]) SRV - [2008-07-29 21:10:04 | 00,046,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped]) SRV - [2008-07-29 19:24:50 | 00,881,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped]) SRV - [2008-07-29 19:16:38 | 00,132,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped]) SRV - [2008-07-25 11:17:02 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped]) SRV - [2008-07-25 11:16:40 | 00,034,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state [On_Demand | Stopped]) SRV - [2008-04-13 20:12:02 | 00,038,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running]) SRV - [2008-03-04 14:55:56 | 00,823,296 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\EvtEng.exe -- (EvtEng [Auto | Running]) SRV - [2008-03-04 14:34:38 | 01,187,840 | ---- | M] (Intel Corporation ) -- C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe -- (S24EventMonitor [Auto | Running]) SRV - [2008-03-04 14:30:12 | 00,483,328 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe -- (RegSrvc [Auto | Running]) SRV - [2007-12-06 23:20:56 | 00,088,560 | ---- | M] (Sonic Solutions) -- C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe -- (Roxio UPnP Renderer 9 [On_Demand | Stopped]) SRV - [2007-12-06 23:20:52 | 00,362,992 | ---- | M] (Sonic Solutions) -- C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe -- (Roxio Upnp Server 9 [Auto | Stopped]) SRV - [2007-07-11 18:25:20 | 00,025,640 | R--- | M] (Amazon.com) -- C:\Program Files\Amazon\Amazon Unbox Video\ADVWindowsClientService.exe -- (ADVService [Disabled | Stopped]) SRV - [2007-02-05 11:11:18 | 00,075,320 | ---- | M] (Sony Corporation) -- C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe -- (SSScsiSV [On_Demand | Stopped]) SRV - [2007-02-05 11:11:16 | 00,112,184 | ---- | M] (Sony Corporation) -- C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe -- (SonicStage Back-End Service [On_Demand | Stopped]) SRV - [2006-12-14 03:21:20 | 00,045,056 | ---- | M] (Sony Corporation) -- C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe -- (MSCSPTISRV [On_Demand | Stopped]) SRV - [2006-12-14 03:02:08 | 00,069,632 | ---- | M] (Sony Corporation) -- C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV [On_Demand | Stopped]) SRV - [2006-12-14 02:46:16 | 00,057,344 | ---- | M] () -- C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe -- (PACSPTISVR [On_Demand | Stopped]) SRV - [2006-11-30 05:57:25 | 01,119,888 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe -- (Symantec Core LC [Disabled | Stopped]) SRV - [2006-11-09 19:30:14 | 00,065,536 | ---- | M] (Intuit Inc.) -- C:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe -- (QBFCService [On_Demand | Stopped]) SRV - [2006-11-02 20:40:12 | 00,174,656 | ---- | M] () -- C:\WINDOWS\System32\PSIService.exe -- (ProtexisLicensing [Auto | Running]) SRV - [2006-10-26 14:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped]) SRV - [2006-10-26 13:40:34 | 00,335,872 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe -- (MDM [Auto | Running]) SRV - [2006-10-18 23:05:24 | 00,913,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\WMPNetwk.exe -- (WMPNetworkSvc [Auto | Running]) SRV - [2006-06-20 20:45:00 | 00,143,428 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe -- (NVSvc [Auto | Running]) SRV - [2006-06-13 12:03:42 | 02,084,864 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe -- (VAIOMediaPlatform-IntegratedServer-AppServer [On_Demand | Stopped]) SRV - [2006-06-07 13:51:50 | 00,155,648 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe -- (VAIOMediaPlatform-Mobile-Gateway [On_Demand | Stopped]) SRV - [2006-05-18 14:22:26 | 00,770,048 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe -- (VAIOMediaPlatform-IntegratedServer-UPnP [On_Demand | Stopped]) SRV - [2006-05-18 14:22:26 | 00,057,344 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe -- (VAIOMediaPlatform-IntegratedServer-HTTP [On_Demand | Stopped]) SRV - [2006-05-11 18:15:50 | 00,052,736 | ---- | M] (Hewlett-Packard) -- C:\WINDOWS\System32\HPZipm12.dll -- (Pml Driver HPZ12 [Auto | Running]) SRV - [2006-04-13 16:36:36 | 00,176,128 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Event Service\VESMgr.exe -- (VAIO Event Service [Auto | Running]) SRV - [2006-04-04 17:55:18 | 00,274,432 | ---- | M] (Sony Corporation) -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe -- (Vcsw [On_Demand | Running]) SRV - [2006-02-08 00:29:04 | 00,094,208 | ---- | M] (Sony Electronics, Inc) -- C:\Program Files\Sony\SmartWi Connection Utility\SmartWiService.exe -- (SmartWiService [Auto | Running]) SRV - [2005-11-28 16:39:32 | 00,118,784 | ---- | M] (Sony Corporation) -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe -- (VzFw [Auto | Running]) SRV - [2005-11-28 16:39:30 | 00,131,072 | ---- | M] (Sony Corporation) -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe -- (VzCdbSvc [Auto | Running]) SRV - [2005-11-25 16:08:54 | 00,073,728 | ---- | M] (Sony Corporation) -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe -- (VAIO Entertainment TV Device Arbitration Service [On_Demand | Stopped]) SRV - [2005-07-14 23:10:16 | 00,032,768 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\Image Converter 2\IcVzMon.exe -- (Image Converter video recording monitor for VAIO Entertainment [On_Demand | Stopped]) SRV - [2004-10-22 07:24:18 | 00,073,728 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT [On_Demand | Stopped]) SRV - [2003-05-31 22:02:32 | 07,544,916 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Binn\sqlservr.exe -- (MSSQL$MICROSOFTBCM [Auto | Running]) SRV - [2002-12-17 19:23:30 | 00,311,872 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Binn\sqlagent.EXE -- (SQLAgent$MICROSOFTBCM [On_Demand | Stopped]) SRV - [2002-12-17 19:23:30 | 00,066,112 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe -- (MSSQLServerADHelper [On_Demand | Stopped]) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/ IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig?hl=en IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = ;*.local [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "http://www.google.com/ig?rls=ig&hl=en&source=iglk" FF - prefs.js..extensions.enabledItems: {097d3191-e6fa-4728-9826-b533d755359d}:0.7.10 FF - prefs.js..extensions.enabledItems: {E9A1DEE0-C623-4439-8932-001E7D17607D}:2.1.0.5 FF - prefs.js..extensions.enabledItems: {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}:0.9.6.5 FF - prefs.js..extensions.enabledItems: {0538E3E3-7E9B-4d49-8831-A227C80A7AD3}:0.9.10.1 FF - prefs.js..extensions.enabledItems: {d37dc5d0-431d-44e5-8c91-49419370caa1}:2.5.35 FF - prefs.js..extensions.enabledItems: {77b819fa-95ad-4f2c-ac7c-486b356188a9}:1.5.20090525 FF - prefs.js..extensions.enabledItems: {c33c5b47-69c8-45a4-a5e0-af85bbe628dd}:1.6.1.2 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}:6.0.05 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}:6.0.03 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}:6.0.07 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}:6.0.12 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}:6.0.14 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {75CEEE46-9B64-46f8-94BF-54012DE155F0}:0.3.9 FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.1 FF - prefs.js..extensions.enabledItems: morningCoffee@shaneliesegang:1.33 FF - prefs.js..extensions.enabledItems: {37E4D8EA-8BDA-4831-8EA1-89053939A250}:3.0.0.1 FF - prefs.js..extensions.enabledItems: {dc572301-7619-498c-a57d-39143191b318}:0.3.8.2 FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.3 FF - prefs.js..extensions.enabledItems: {29852C08-1E91-4889-A6BF-C77F91D6A8F3}:1.8.51 FF - HKLM\software\mozilla\Firefox\extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009-06-29 09:57:43 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009-03-11 08:07:29 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-09-20 13:42:39 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-09-10 20:39:06 | 00,000,000 | ---D | M] [2008-06-23 11:47:39 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\mozilla\Extensions [2008-06-23 11:47:39 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} [2009-10-16 07:37:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\mozilla\Firefox\Profiles\h76wtfw3.default\extensions [2009-06-13 21:40:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\mozilla\Firefox\Profiles\h76wtfw3.default\extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3} [2009-03-22 08:07:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\mozilla\Firefox\Profiles\h76wtfw3.default\extensions\{097d3191-e6fa-4728-9826-b533d755359d} [2009-06-29 18:46:21 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\mozilla\Firefox\Profiles\h76wtfw3.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2009-09-08 10:02:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\mozilla\Firefox\Profiles\h76wtfw3.default\extensions\{29852C08-1E91-4889-A6BF-C77F91D6A8F3} [2009-10-15 14:43:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\mozilla\Firefox\Profiles\h76wtfw3.default\extensions\{37E4D8EA-8BDA-4831-8EA1-89053939A250} [2009-07-08 08:04:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\mozilla\Firefox\Profiles\h76wtfw3.default\extensions\{75CEEE46-9B64-46f8-94BF-54012DE155F0} [2009-06-03 18:19:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\mozilla\Firefox\Profiles\h76wtfw3.default\extensions\{77b819fa-95ad-4f2c-ac7c-486b356188a9} [2009-10-08 18:22:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\mozilla\Firefox\Profiles\h76wtfw3.default\extensions\{c33c5b47-69c8-45a4-a5e0-af85bbe628dd} [2009-09-14 19:00:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\mozilla\Firefox\Profiles\h76wtfw3.default\extensions\{d37dc5d0-431d-44e5-8c91-49419370caa1} [2009-05-06 13:44:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\mozilla\Firefox\Profiles\h76wtfw3.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389} [2009-10-13 12:53:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\mozilla\Firefox\Profiles\h76wtfw3.default\extensions\{dc572301-7619-498c-a57d-39143191b318} [2009-05-07 11:37:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\mozilla\Firefox\Profiles\h76wtfw3.default\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D} [2009-02-25 07:59:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\mozilla\Firefox\Profiles\h76wtfw3.default\extensions\morningCoffee@shaneliesegang [2009-10-16 07:37:43 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions [2009-09-10 20:39:06 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2009-02-24 09:49:25 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED} [2008-02-28 16:33:32 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} [2008-03-06 18:05:22 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} [2008-09-08 19:34:59 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} [2009-03-11 08:07:52 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA} [2009-05-04 21:14:13 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} [2009-06-12 07:16:27 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} [2009-08-04 16:59:29 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} [2009-09-10 20:38:57 | 00,023,544 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll [2009-09-10 20:38:57 | 00,137,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll [2008-06-17 16:12:42 | 00,114,688 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\mozilla firefox\plugins\np32dsw.dll [2009-07-25 05:23:01 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeploytk.dll [2009-05-07 19:01:15 | 00,072,960 | ---- | M] (Foxit Software Company) -- C:\Program Files\mozilla firefox\plugins\npFoxitReaderPlugin.dll [2007-12-19 08:57:38 | 00,310,272 | ---- | M] () -- C:\Program Files\mozilla firefox\plugins\npGoogleGadgetPluginFirefoxWin.dll [2009-09-10 20:39:02 | 00,065,016 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll [2006-10-26 20:12:16 | 00,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2007-03-22 19:23:30 | 00,017,248 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL [2009-09-10 16:59:30 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2009-09-10 16:59:31 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2009-09-10 16:59:31 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2009-09-10 16:59:31 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2009-09-10 16:59:31 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2009-09-10 16:59:31 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll [2009-09-10 16:59:31 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll [2009-07-30 03:24:20 | 00,001,394 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom.xml [2009-07-30 03:24:20 | 00,002,193 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\answers.xml [2009-07-30 03:24:20 | 00,001,534 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml [2009-07-30 03:24:20 | 00,002,344 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay.xml [2009-07-30 03:24:20 | 00,002,371 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml [2009-07-30 03:24:20 | 00,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia.xml [2009-07-30 03:24:20 | 00,000,792 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo.xml O1 HOSTS File: (27 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (SnagIt Toolbar Loader) - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\Snagit 9\SnagitBHO.dll (TechSmith Corporation) O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation) O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll (Google Inc.) O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.) O3 - HKLM\..\Toolbar: (Snagit) - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\Snagit 9\SnagitIEAddin.dll (TechSmith Corporation) O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.) O4 - HKLM..\Run: [00PCTFW] C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe (PC Tools) O4 - HKLM..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe (Alps Electric Co., Ltd.) O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe (Apple Inc.) O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software) O4 - HKLM..\Run: [BlackBerryAutoUpdate] C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe (Research In Motion Limited) O4 - HKLM..\Run: [CoolSwitch] C:\WINDOWS\System32\taskswitch.exe () O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation) O4 - HKLM..\Run: [igfxhkcmd] C:\WINDOWS\System32\hkcmd.exe (Intel Corporation) O4 - HKLM..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe (Intel Corporation) O4 - HKLM..\Run: [IntelZeroConfig] C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe (Intel Corporation) O4 - HKLM..\Run: [ISBMgr.exe] C:\Program Files\Sony\ISB Utility\ISBMgr.exe (Sony Corporation) O4 - HKLM..\Run: [ITSecMng] C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe (TOSHIBA CORPORATION) O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe () O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.) O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe (Sonic Solutions) O4 - HKLM..\Run: [SonyPowerCfg] C:\Program Files\Sony\VAIO Power Management\SPMgr.exe (Sony Corporation) O4 - HKLM..\Run: [StatusClient 2.5] C:\Program Files\Hewlett-Packard\Toolbox\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe (Hewlett-Packard) O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.) O4 - HKLM..\Run: [VAIO Recovery] C:\WINDOWS\Sonysys\VAIO Recovery\PartSeal.exe (Sony Electronics Inc) O4 - HKLM..\Run: [VAIOCameraUtility] C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe (Sony Corporation) O4 - HKLM..\Run: [WCULauncher] C:\Program Files\Sony\SmartWi Connection Utility\WCULauncher.exe (Sony Electronics Corporation) O4 - HKLM..\Run: [Wireless Adapter Manager] C:\Program Files\sony\Wireless adapter\ZDWLan.EXE () O4 - HKCU..\Run: [PlaxoSysTray] C:\Program Files\Plaxo\3.22.0.7\PlaxoSysTray.exe (Plaxo, Inc.) O4 - HKCU..\Run: [PlaxoUpdate] C:\Program Files\Plaxo\3.22.0.7\PlaxoHelper_en.exe (Plaxo, Inc.) O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com) O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.) O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Desktop Manager.lnk = C:\Program Files\Research In Motion\BlackBerry\DesktopMgr.exe (Research In Motion Limited) O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\procexp.exe (Sysinternals - www.sysinternals.com) O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Snagit 9.lnk = C:\Program Files\TechSmith\Snagit 9\Snagit32.exe (TechSmith Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8 - Extra context menu item: &ieSpell Options - C:\Program Files\ieSpell\iespell.dll (Red Egg Software) O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.) O8 - Extra context menu item: Check &Spelling - C:\Program Files\ieSpell\iespell.dll (Red Egg Software) O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation) O8 - Extra context menu item: Lookup on Merriam Webster - C:\Program Files\ieSpell\Merriam Webster.HTM () O8 - Extra context menu item: Lookup on Wikipedia - C:\Program Files\ieSpell\wikipedia.HTM () O8 - Extra context menu item: Transfer by Image Converter 2 Plus - C:\Program Files\Sony\Image Converter 2\menu.htm () O8 - Extra context menu item: ZoomInto - C:\Documents and Settings\Chris Jones\Application Data\Zoominto\zoominto.htm () O9 - Extra Button: ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files\ieSpell\iespell.dll (Red Egg Software) O9 - Extra 'Tools' menuitem : ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files\ieSpell\iespell.dll (Red Egg Software) O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation) O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O15 - HKLM\..Trusted Domains: trymedia.com ([]https in Trusted sites) O15 - HKLM\..Trusted Domains: 58 domain(s) and sub-domain(s) not assigned to a zone. O15 - HKCU\..Trusted Domains: 57 domain(s) and sub-domain(s) not assigned to a zone. O16 - DPF: {02CF1781-EA91-4FA5-A200-646E8241987C} http://esupport.sony.com/VaioInfo.CAB (VaioInfo.CMClass) O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} http://catalog.update.microsoft.com/v7/site/ClientControl/en/x86/MuCatalogWebControl.cab?1187800829500 (MUCatalogWebControl Class) O16 - DPF: {5D80A6D1-B500-47DA-82B8-EB9875F85B4D} http://dl.google.com/dl/desktop/nv/GoogleGadgetPluginIEWin.cab (Google Gadget Control) O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase5036.cab (Windows Live Safety Center Base Module) O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1239577892223 (WUWebControl Class) O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1187799973375 (MUWebControl Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {90C9629E-CD32-11D3-BBFB-00105A1F0D68} http://www.installengine.com/engine/isetup.cab (InstallShield International Setup Player) O16 - DPF: {A796D216-2DE1-4EA8-BABB-FE6E7C959098} http://www.hp.com/cpso-support-new/SDD/hpsddObjSigned.cab (HPSDDX Class) O16 - DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} http://www.crucial.com/controls/cpcScanner.cab (Crucial cpcScan) O16 - DPF: {C7DB51B4-BCF7-4923-8874-7F1A0DC92277} http://office.microsoft.com/officeupdate/content/opuc4.cab (Office Update Installation Engine) O16 - DPF: {CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_07-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 24.224.127.143 24.224.95.205 O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp - No CLSID value found O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation) O18 - Protocol\Handler\msdaipp - No CLSID value found O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation) O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation) O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Filter: - text/xml - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O18 - Protocol\Filter: - x-sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: GinaDLL - (PSLogon.dll) - C:\WINDOWS\System32\PSLogon.dll (UPEK Inc.) O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com) O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation) O20 - Winlogon\Notify\psfus: DllName - fusstub.dll - C:\WINDOWS\System32\fusstub.dll (UPEK Inc.) O20 - Winlogon\Notify\VESWinlogon: DllName - VESWinlogon.dll - C:\WINDOWS\System32\VESWinlogon.dll (Sony Corporation) O24 - Desktop Components:0 (My Current Home Page) - About:Home O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll (Microsoft Corporation) O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com) O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O31 - SafeBoot: AlternateShell - cmd.exe O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2006-07-22 14:47:29 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2007-09-15 06:09:36 | 00,000,000 | ---D | M] - H:\autorun -- [ FAT32 ] O34 - HKLM BootExecute: (autocheck) - File not found O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation) O34 - HKLM BootExecute: (*) - File not found O35 - comfile [open] -- "%1" %* File not found O35 - exefile [open] -- "%1" %* File not found NetSvcs: 6to4 - Service key not found. File not found NetSvcs: Ias - Service key not found. File not found NetSvcs: Iprip - Service key not found. File not found NetSvcs: Irmon - Service key not found. File not found NetSvcs: NWCWorkstation - Service key not found. File not found NetSvcs: Nwsapagent - Service key not found. File not found NetSvcs: WmdmPmSp - Service key not found. File not found NetSvcs: helpsvc - C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll (Microsoft Corporation) [color=#E56717]========== Files/Folders - Created Within 14 Days ==========[/color] [2009-10-07 14:26:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TEMP [2009-10-07 14:31:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Chris Jones\Application Data\PCToolsFirewallPlus [2009-10-14 15:34:43 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Chris Jones\Application Data\Research In Motion [2009-10-07 13:47:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Chris Jones\Application Data\Sammsoft [2009-10-13 19:42:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Chris Jones\Local Settings\Application Data\Temp [2009-10-07 14:26:26 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\PC Tools [2009-10-07 13:46:50 | 00,000,000 | ---D | C] -- C:\Program Files\Advanced Registry Optimizer [2009-10-07 11:36:28 | 00,000,000 | ---D | C] -- C:\Program Files\Alwil Software [2009-10-16 09:02:56 | 00,000,000 | ---D | C] -- C:\Program Files\ERUNT [2009-10-02 13:37:53 | 00,000,000 | ---D | C] -- C:\Program Files\iPod [2009-10-02 13:37:40 | 00,000,000 | ---D | C] -- C:\Program Files\iTunes [2009-10-07 14:26:21 | 00,000,000 | ---D | C] -- C:\Program Files\PC Tools Firewall Plus [2009-10-16 10:20:01 | 00,028,544 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\pavboot.sys [2009-10-16 07:19:45 | 00,000,000 | -HSD | C] -- C:\RECYCLER [2009-10-15 14:01:56 | 00,000,000 | RHSD | C] -- C:\cmdcons [2009-10-15 14:00:45 | 00,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe [2009-10-15 14:00:45 | 00,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe [2009-10-15 14:00:45 | 00,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe [2009-10-15 14:00:45 | 00,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe [2009-10-15 14:00:39 | 00,000,000 | ---D | C] -- C:\WINDOWS\ERDNT [2009-10-15 14:00:15 | 00,000,000 | ---D | C] -- C:\Qoobox [2009-10-14 22:18:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Chris Jones\Desktop\backups [2009-10-14 15:09:55 | 00,000,000 | ---D | C] -- H:\My Documents\Desktop-SonyVAIO [091014] [2009-10-07 14:27:04 | 00,207,280 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\PCTCore.sys [2009-10-07 14:27:04 | 00,087,656 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\PCTAppEvent.sys [2009-10-07 14:27:02 | 00,229,304 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctgntdi.sys [2009-10-07 14:26:26 | 00,070,280 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctNdis-PacketFilter.sys [2009-10-07 14:26:26 | 00,046,592 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctNdis.sys [2009-10-07 14:26:26 | 00,032,552 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctNdis-DNS.sys [2009-10-07 14:26:24 | 00,115,088 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctplfw.sys [2009-10-07 11:36:55 | 00,023,152 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys [2009-10-07 11:36:54 | 00,052,368 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys [2009-10-07 11:36:53 | 00,027,408 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys [2009-10-07 11:36:51 | 00,097,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr [2009-10-07 11:36:50 | 00,114,768 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys [2009-10-07 11:36:50 | 00,094,160 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys [2009-10-07 11:36:50 | 00,093,424 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys [2009-10-07 11:36:50 | 00,020,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys [2009-10-07 11:36:32 | 01,279,968 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe [2009-05-07 11:44:25 | 00,262,144 | ---- | C] (ZoneAlarm) -- C:\Program Files\Uninstall Spy Blocker.dll [color=#E56717]========== Files - Modified Within 14 Days ==========[/color] [2009-10-16 11:05:16 | 00,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2009-10-16 11:02:53 | 00,000,256 | ---- | M] () -- C:\WINDOWS\System32\pool.bin [2009-10-16 11:01:03 | 00,050,868 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2009-10-16 11:00:44 | 00,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2009-10-16 10:58:31 | 00,000,868 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job [2009-10-16 10:58:14 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2009-10-16 10:58:09 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2009-10-16 10:58:05 | 21,454,39744 | -HS- | M] () -- C:\hiberfil.sys [2009-10-16 10:42:01 | 00,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2009-10-16 09:28:10 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job [2009-10-16 08:04:42 | 00,000,434 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{C53B2825-D440-4FA4-93DF-447EF2A9B179}.job [2009-10-16 07:51:06 | 21,454,68416 | ---- | M] () -- C:\WINDOWS\MEMORY.DMP [2009-10-16 07:40:50 | 00,000,765 | ---- | M] () -- C:\WINDOWS\win.ini [2009-10-16 07:40:50 | 00,000,282 | RHS- | M] () -- C:\boot.ini [2009-10-16 07:40:50 | 00,000,256 | ---- | M] () -- C:\WINDOWS\system.ini [2009-10-16 07:34:24 | 00,001,754 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Snagit 9.lnk [2009-10-16 07:31:54 | 00,001,715 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\avast! Antivirus.lnk [2009-10-16 07:31:53 | 00,002,632 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2009-10-16 00:33:24 | 00,000,428 | ---- | M] () -- C:\WINDOWS\tasks\ParetoLogic Update Version2.job [2009-10-15 18:00:53 | 00,000,000 | R--- | M] () -- C:\WINDOWS\System32\RCCustomSetup.ini [2009-10-15 18:00:00 | 00,000,454 | ---- | M] () -- C:\WINDOWS\tasks\ParetoLogic Registration.job [2009-10-15 17:47:25 | 00,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts [2009-10-15 16:41:00 | 00,389,620 | ---- | M] () -- C:\Documents and Settings\Chris Jones\Desktop\Schedule of Events 2009.pdf [2009-10-15 16:41:00 | 00,136,154 | ---- | M] () -- C:\Documents and Settings\Chris Jones\Desktop\11th Annual Set Up and Resource Schedule.pdf [2009-10-15 16:29:02 | 04,864,940 | ---- | M] () -- C:\Documents and Settings\Chris Jones\Desktop\2009AuctionSetupLayout.pdf [2009-10-15 13:58:17 | 03,339,174 | R--- | M] () -- C:\Documents and Settings\Chris Jones\Desktop\ComboFix.exe [2009-10-15 07:29:09 | 00,564,814 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2009-10-15 07:29:09 | 00,485,236 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2009-10-15 07:29:09 | 00,088,198 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2009-10-15 07:24:22 | 00,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2009-10-14 22:13:18 | 00,401,720 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\Chris Jones\Desktop\HijackThis.exe [2009-10-14 15:14:12 | 00,358,544 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2009-10-14 14:08:12 | 00,000,510 | ---- | M] () -- C:\WINDOWS\ODBC.INI [2009-10-14 09:19:05 | 00,138,164 | ---- | M] () -- C:\Documents and Settings\Chris Jones\Desktop\Polio Fund Raising Ideas.pdf [2009-10-14 06:47:11 | 00,000,392 | ---- | M] () -- C:\WINDOWS\tasks\DriverCure.job [2009-10-13 11:55:43 | 01,872,578 | ---- | M] () -- C:\Documents and Settings\Chris Jones\Desktop\11thAnnualWineSpectacular.pptx [2009-10-12 18:11:00 | 00,037,857 | ---- | M] () -- C:\Documents and Settings\Chris Jones\Desktop\Copy of Ticket Distribution.xlsx [2009-10-12 17:16:24 | 00,000,279 | ---- | M] () -- C:\WINDOWS\hpqcopy.INI [2009-10-11 08:10:09 | 00,236,544 | ---- | M] () -- C:\WINDOWS\PEV.exe [2009-10-09 12:51:43 | 00,094,720 | ---- | M] () -- C:\Documents and Settings\Chris Jones\Desktop\WineSpecVolunteerForSat.xls [2009-10-09 12:26:07 | 00,030,341 | ---- | M] () -- C:\Documents and Settings\Chris Jones\Desktop\Silent and Live Auction 2009.xlsx [2009-10-07 14:01:44 | 00,001,736 | ---- | M] () -- C:\Documents and Settings\Chris Jones\Desktop\Check PC For Errors.lnk [2009-10-07 10:30:57 | 01,474,832 | ---- | M] () -- C:\WINDOWS\System32\drivers\sfi.dat [2009-10-07 09:48:00 | 00,033,811 | ---- | M] () -- C:\Documents and Settings\Chris Jones\Desktop\Invoice.PDF [2009-10-06 16:59:17 | 00,033,280 | ---- | M] () -- C:\Documents and Settings\Chris Jones\Desktop\WineSpec_ACNTable.xls [2009-10-05 11:20:31 | 00,012,999 | ---- | M] () -- C:\Documents and Settings\Chris Jones\Application Data\Microsoft Excel 97-2003.CAL [2009-10-04 14:47:30 | 00,068,794 | ---- | M] () -- C:\Documents and Settings\Chris Jones\Desktop\AnnuityColleen.pdf [color=#E56717]========== Files - No Company Name ==========[/color] [2009-10-16 07:23:36 | 21,454,39744 | -HS- | C] () -- C:\hiberfil.sys [2009-10-15 18:00:53 | 00,000,000 | R--- | C] () -- C:\WINDOWS\System32\RCCustomSetup.ini [2009-10-15 16:41:00 | 00,389,620 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Desktop\Schedule of Events 2009.pdf [2009-10-15 16:41:00 | 00,136,154 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Desktop\11th Annual Set Up and Resource Schedule.pdf [2009-10-15 16:28:57 | 04,864,940 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Desktop\2009AuctionSetupLayout.pdf [2009-10-15 14:02:05 | 00,000,212 | ---- | C] () -- C:\Boot.bak [2009-10-15 14:02:04 | 00,260,272 | ---- | C] () -- C:\cmldr [2009-10-15 14:00:45 | 00,236,544 | ---- | C] () -- C:\WINDOWS\PEV.exe [2009-10-15 14:00:45 | 00,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2009-10-15 14:00:45 | 00,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2009-10-15 14:00:45 | 00,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2009-10-15 13:58:00 | 03,339,174 | R--- | C] () -- C:\Documents and Settings\Chris Jones\Desktop\ComboFix.exe [2009-10-14 09:18:58 | 00,138,164 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Desktop\Polio Fund Raising Ideas.pdf [2009-10-12 18:21:31 | 01,872,578 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Desktop\11thAnnualWineSpectacular.pptx [2009-10-12 18:11:00 | 00,037,857 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Desktop\Copy of Ticket Distribution.xlsx [2009-10-09 12:26:06 | 00,030,341 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Desktop\Silent and Live Auction 2009.xlsx [2009-10-08 11:25:09 | 00,094,720 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Desktop\WineSpecVolunteerForSat.xls [2009-10-07 14:27:04 | 00,007,412 | ---- | C] () -- C:\WINDOWS\System32\drivers\PCTAppEvent.cat [2009-10-07 14:27:04 | 00,007,383 | ---- | C] () -- C:\WINDOWS\System32\drivers\pctcore.cat [2009-10-07 14:27:02 | 00,007,387 | ---- | C] () -- C:\WINDOWS\System32\drivers\pctgntdi.cat [2009-10-07 13:46:54 | 00,001,736 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Desktop\Check PC For Errors.lnk [2009-10-07 11:36:55 | 00,001,715 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\avast! Antivirus.lnk [2009-10-07 11:36:32 | 00,380,928 | ---- | C] () -- C:\WINDOWS\System32\actskin4.ocx [2009-10-07 09:48:00 | 00,033,811 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Desktop\Invoice.PDF [2009-10-06 16:59:12 | 00,033,280 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Desktop\WineSpec_ACNTable.xls [2009-10-05 11:20:09 | 00,012,999 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Application Data\Microsoft Excel 97-2003.CAL [2009-10-04 14:47:27 | 00,068,794 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Desktop\AnnuityColleen.pdf [2009-10-02 17:42:28 | 00,001,754 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Snagit 9.lnk [2009-08-03 15:07:42 | 00,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll [2009-05-26 06:49:04 | 00,000,130 | ---- | C] () -- C:\WINDOWS\cfplogvw.INI [2009-05-08 10:13:04 | 00,013,584 | ---- | C] () -- C:\WINDOWS\System32\drivers\iKeyLFT2.dll [2009-05-05 07:52:23 | 00,020,429 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Application Data\CleanUp!.log [2009-04-30 22:39:36 | 00,082,289 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini [2009-04-30 16:00:12 | 00,025,624 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPr2Mon.sys [2009-04-12 20:59:04 | 00,000,797 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Application Data\Launch Internet Explorer Browser.lnk [2009-03-19 11:19:42 | 00,038,437 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Application Data\Microsoft Excel 97-2003.ADR [2008-10-03 14:10:38 | 00,013,012 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Application Data\Comma Separated Values (Windows).CAL [2008-07-28 08:19:30 | 00,000,054 | ---- | C] () -- C:\WINDOWS\CmdFile.INI [2008-07-25 15:00:28 | 00,000,000 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Application Data\wklnhst.dat [2008-03-12 16:07:24 | 00,014,290 | ---- | C] () -- C:\Program Files\settings.dat [2008-02-28 16:45:22 | 00,007,516 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Application Data\HPCOM_48BitScanUpdate.log [2008-02-28 16:45:22 | 00,000,214 | ---- | C] () -- C:\WINDOWS\HP_48BitScanUpdatePatch.ini [2008-02-28 16:09:12 | 00,000,279 | ---- | C] () -- C:\WINDOWS\hpqcopy.INI [2008-02-26 11:58:24 | 00,059,904 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2008-02-24 14:08:07 | 00,038,403 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Application Data\Comma Separated Values (Windows).ADR [2008-02-24 12:48:46 | 00,002,528 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Application Data\$_hpcst$.hpc [2008-01-11 15:45:06 | 00,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ezsid.dat [2007-11-09 14:24:45 | 00,074,752 | ---- | C] () -- C:\WINDOWS\System32\jst.dll [2007-11-09 14:24:45 | 00,061,440 | ---- | C] () -- C:\WINDOWS\System32\PMLJNI.dll [2007-11-09 14:22:39 | 00,000,142 | ---- | C] () -- C:\WINDOWS\System32\AddPort.ini [2007-11-09 14:22:38 | 00,003,399 | R--- | C] () -- C:\WINDOWS\System32\hptcpmon.ini [2007-11-09 14:17:59 | 00,000,103 | ---- | C] () -- C:\WINDOWS\System32\hptrace.ini [2007-11-09 14:16:03 | 00,019,000 | ---- | C] () -- C:\WINDOWS\hpclj3500.ini [2007-10-31 14:24:50 | 00,000,952 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys [2007-09-27 10:51:02 | 00,020,698 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini [2007-09-27 10:48:48 | 00,030,628 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini [2007-09-27 10:48:28 | 00,031,698 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini [2007-08-22 11:51:19 | 00,000,000 | ---- | C] () -- C:\WINDOWS\tosOBEX.INI [2007-08-22 11:49:01 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\Chris Jones\Application Data\desktop.ini [2007-08-22 11:48:59 | 04,256,884 | -H-- | C] () -- C:\Documents and Settings\Chris Jones\Local Settings\Application Data\IconCache.db [2007-08-22 11:48:59 | 00,064,800 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Local Settings\Application Data\GDIPFONTCACHEV1.DAT [2007-08-22 11:48:59 | 00,000,134 | ---- | C] () -- C:\Documents and Settings\Chris Jones\Local Settings\Application Data\fusioncache.dat [2006-11-30 06:01:29 | 00,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll [2006-11-30 06:01:29 | 00,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll [2006-11-30 06:01:29 | 00,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll [2006-11-30 06:01:29 | 00,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll [2006-11-30 06:01:29 | 00,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll [2006-11-30 06:01:29 | 00,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll [2006-11-30 06:00:13 | 00,002,154 | ---- | C] () -- C:\WINDOWS\System32\tmmute.ini [2006-11-30 05:53:19 | 00,000,000 | R--- | C] () -- C:\WINDOWS\System32\svconfig.ini [2006-11-30 05:51:49 | 00,019,968 | ---- | C] () -- C:\WINDOWS\System32\Cpuinf32.dll [2006-11-30 05:50:36 | 00,000,217 | ---- | C] () -- C:\WINDOWS\QUICKEN.INI [2006-11-30 05:40:36 | 00,000,510 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2006-11-30 05:33:02 | 00,532,480 | ---- | C] () -- C:\WINDOWS\System32\CddbPlaylist2Sony.dll [2006-07-22 16:51:38 | 00,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini [2006-07-22 16:32:31 | 00,000,430 | ---- | C] () -- C:\WINDOWS\wininit.ini [2006-07-22 16:26:16 | 00,000,000 | ---- | C] () -- C:\WINDOWS\VAIOUpdt.INI [2006-07-22 14:53:19 | 00,000,811 | ---- | C] () -- C:\WINDOWS\orun32.ini [2006-07-22 14:31:32 | 00,098,304 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll [2006-07-22 14:31:22 | 00,000,760 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini [2006-07-22 14:31:14 | 00,000,765 | ---- | C] () -- C:\WINDOWS\win.ini [2006-07-22 14:31:13 | 00,000,256 | ---- | C] () -- C:\WINDOWS\system.ini [2006-07-22 07:38:03 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\desktop.ini [2006-01-30 10:00:00 | 00,106,496 | ---- | C] () -- C:\WINDOWS\System32\VSHP1018.DLL [2005-11-01 21:53:38 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini [2004-01-13 21:46:34 | 00,172,032 | ---- | C] () -- C:\WINDOWS\System32\tifmicon.dll [2003-02-25 14:19:56 | 00,094,274 | ---- | C] () -- C:\WINDOWS\System32\HPBHEALR.DLL [2002-06-12 16:21:12 | 00,049,152 | R--- | C] () -- C:\WINDOWS\System32\winchip.dll [2002-04-14 17:53:16 | 00,001,024 | ---- | C] () -- C:\WINDOWS\System32\vttdrve.dll [2002-03-19 19:30:00 | 00,010,752 | ---- | C] () -- C:\WINDOWS\System32\mag.dll [color=#E56717]========== LOP Check ==========[/color] [2009-10-15 18:01:13 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\All Users\Application Data [2009-03-13 09:57:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3} [2009-09-10 17:03:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD} [2009-04-06 15:50:27 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906} [2007-12-28 13:28:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Amazon [2008-02-26 14:11:46 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\COMMON FILES [2009-01-14 10:27:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Digital Interactive Systems Corporation [2009-03-30 09:00:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations [2009-10-14 03:56:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DriverCure [2009-04-15 08:09:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Intel [2008-03-17 12:06:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Intuit [2008-05-14 18:10:58 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\iolo [2009-07-20 08:31:05 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LogiShrd [2008-04-18 16:17:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MailFrontier [2008-09-29 09:19:36 | 00,000,000 | --SD | M] -- C:\Documents and Settings\All Users\Application Data\Memeo [2008-03-27 10:32:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Napster [2009-04-11 06:50:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ParetoLogic [2009-10-01 17:15:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Research In Motion [2009-10-01 17:17:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Roxio [2006-07-22 14:55:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SBSI [2009-04-07 11:37:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TechSmith [2009-10-16 11:01:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP [2009-04-12 13:57:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TOSHIBA [2009-05-20 14:46:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Verizon Wireless [2008-03-25 18:17:39 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint [2009-07-09 16:10:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WinZip [2009-10-14 15:34:43 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Chris Jones\Application Data [2008-02-28 16:51:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\$CUERoot$ [2009-09-26 07:26:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\.purple [2009-10-02 07:42:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\Blackberry Desktop [2007-10-31 14:24:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\Corel [2008-06-05 21:45:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\Digital Album Organizer [2009-04-11 06:52:58 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\DriverCure [2008-03-26 12:50:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\Expression Media [2009-05-07 11:34:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\Foxit [2009-09-10 12:51:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\Foxit Software [2008-09-25 10:04:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\gtk-2.0 [2009-04-16 20:03:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\ieSpell [2009-04-15 08:09:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\Intel [2008-09-25 07:56:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\InterVideo [2008-02-26 14:18:46 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\Intuit [2008-05-14 18:10:58 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\iolo [2008-01-10 19:29:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\Leadertech [2009-05-08 09:44:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\MailFrontier [2008-02-28 14:39:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\mioObjects [2009-04-07 13:35:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\OfficeUpdate12 [2009-10-07 14:32:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\PCToolsFirewallPlus [2007-08-22 11:50:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\Protector Suite [2009-10-14 15:34:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\Research In Motion [2008-02-28 14:53:46 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\RhinoSoft.com [2008-05-31 21:56:47 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\Roxio [2009-10-07 13:47:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\Sammsoft [2008-02-28 16:03:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\Share-to-Web Upload Folder [2008-03-26 10:52:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\Smith Micro [2009-08-18 07:48:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\SystemRequirementsLab [2009-02-04 11:53:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\TechSmith [2008-07-25 15:00:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\Template [2009-08-12 07:13:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\Trondent Development Corp [2009-10-05 14:29:12 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\U3 [2008-07-25 16:47:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\Windows Desktop Search [2008-08-12 14:30:12 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\Windows Search [2009-05-11 13:39:27 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Chris Jones\Application Data\Zoominto [2009-10-16 09:28:10 | 00,000,284 | ---- | M] () -- C:\WINDOWS\Tasks\AppleSoftwareUpdate.job [2006-02-28 08:00:00 | 00,000,065 | RH-- | M] () -- C:\WINDOWS\Tasks\desktop.ini [2009-10-14 06:47:11 | 00,000,392 | ---- | M] () -- C:\WINDOWS\Tasks\DriverCure.job [2009-10-16 10:58:31 | 00,000,868 | ---- | M] () -- C:\WINDOWS\Tasks\Google Software Updater.job [2009-10-16 11:00:44 | 00,000,882 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job [2009-10-16 10:42:01 | 00,000,886 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [2009-04-28 21:26:55 | 00,000,302 | -H-- | M] () -- C:\WINDOWS\Tasks\Microsoft_Hardware_Launch_IPoint_exe.job [2009-10-15 18:00:00 | 00,000,454 | ---- | M] () -- C:\WINDOWS\Tasks\ParetoLogic Registration.job [2009-10-16 00:33:24 | 00,000,428 | ---- | M] () -- C:\WINDOWS\Tasks\ParetoLogic Update Version2.job [2009-10-16 10:58:14 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\Tasks\SA.DAT [2009-10-16 08:04:42 | 00,000,434 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{C53B2825-D440-4FA4-93DF-447EF2A9B179}.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color] [color=#A23BEC]< %systemroot%\system32\eventlog.dll >[/color] [2008-04-13 20:11:53 | 00,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eventlog.dll [color=#A23BEC]< %systemroot%\system32\scecli.dll >[/color] [2008-04-13 20:12:05 | 00,181,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\scecli.dll [color=#A23BEC]< %systemroot%\netlogon.dll >[/color] [color=#A23BEC]< %systemroot%\system32\cngaudit.dll >[/color] [color=#A23BEC]< %systemroot%\system32\sceclt.dll >[/color] [color=#A23BEC]< %systemroot%\ntelogon.dll >[/color] [color=#A23BEC]< %systemroot%\system32\logevent.dll >[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 88 bytes -> C:\Documents and Settings\Chris Jones\Desktop\HijackThis.exe:SummaryInformation @Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C31F31E6 < End of report >