OTL logfile created on: 20/05/2010 06:55:39 - Run 1 OTL by OldTimer - Version 3.2.5.0 Folder = D:\Network Diagnostic\+Arnold Consulting Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy 480.00 Mb Total Physical Memory | 237.00 Mb Available Physical Memory | 49.00% Memory free 3.00 Gb Paging File | 3.00 Gb Available in Paging File | 97.00% Paging File free Paging file location(s): [Binary data over 100 bytes] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 27.95 Gb Total Space | 3.67 Gb Free Space | 13.12% Space Free | Partition Type: NTFS Drive D: | 121.10 Gb Total Space | 34.24 Gb Free Space | 28.27% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: YOUR-BDY5OW96G0 Current User Name: Tony Logged in as Administrator. Current Boot Mode: SafeMode with Networking Scan Mode: Current user Company Name Whitelist: On Skip Microsoft Files: On File Age = 90 Days Output = Standard Quick Scan [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2010/05/20 06:52:28 | 000,571,904 | ---- | M] (OldTimer Tools) -- D:\Network Diagnostic\+Arnold Consulting\OTL.exe PRC - [2010/04/02 09:38:34 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe PRC - [2008/04/14 01:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2010/05/20 06:52:28 | 000,571,904 | ---- | M] (OldTimer Tools) -- D:\Network Diagnostic\+Arnold Consulting\OTL.exe MOD - [2008/04/14 01:10:20 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- -- (VAIOMediaPlatform-VideoServer-UPnP) VAIO Media Video Server (UPnP) SRV - File not found [Disabled | Stopped] -- -- (VAIOMediaPlatform-VideoServer-HTTP) VAIO Media Video Server (HTTP) SRV - File not found [Disabled | Stopped] -- -- (AOLService) SRV - [2010/04/02 09:39:00 | 000,308,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd) SRV - [2010/03/12 09:35:11 | 000,916,760 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files\AVG\AVG9\avgemc.exe -- (avg9emc) SRV - [2009/10/20 19:19:48 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [Disabled | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental) SRV - [2007/04/23 12:22:14 | 003,068,352 | ---- | M] (Kontiki Inc.) [Disabled | Stopped] -- C:\Program Files\Kontiki\KService.exe -- (KService) SRV - [2007/01/04 22:38:08 | 000,024,652 | ---- | M] (Viewpoint Corporation) [Disabled | Stopped] -- C:\Program Files\Viewpoint\Common\ViewpointService.exe -- (Viewpoint Manager Service) SRV - [2004/12/13 05:34:32 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Disabled | Stopped] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper) SRV - [2004/09/29 12:14:36 | 000,069,632 | ---- | M] (HP) [Disabled | Stopped] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12) SRV - [2003/11/14 19:17:38 | 000,966,656 | ---- | M] (Sony Corporation) [Disabled | Stopped] -- C:\Program Files\Sony\giga pocket\GPVSvr.exe -- (VAIOMediaPlatform-VideoServer-AppServer) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010/05/18 16:31:34 | 000,023,456 | ---- | M] (Phoenix Technologies) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\DrvAgent32.sys -- (DrvAgent32) DRV - [2010/04/21 09:58:13 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX) DRV - [2010/03/12 09:37:00 | 000,029,512 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Stopped] -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86) DRV - [2010/03/12 09:35:08 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Stopped] -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86) DRV - [2008/08/21 09:48:51 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2008/04/13 19:53:09 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm) DRV - [2008/04/13 19:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) USB Audio Driver (WDM) DRV - [2007/11/07 05:22:06 | 000,034,064 | ---- | M] (CACE Technologies) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF) DRV - [2006/11/29 06:46:24 | 000,028,224 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\APLMp50.sys -- (APLMp50) DRV - [2006/11/22 19:13:22 | 000,016,024 | ---- | M] (InterVideo, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\iviaspi.sys -- (Iviaspi) DRV - [2005/06/02 15:14:02 | 000,016,694 | ---- | M] (PalmSource, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PalmUSBD.sys -- (PalmUSBD) DRV - [2004/01/29 10:39:06 | 000,058,624 | ---- | M] (SMSC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SMSCMS.sys -- (SMSCMS) DRV - [2003/11/24 10:54:10 | 000,011,264 | R--- | M] (Silicon Integrated Systems Corporation) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\srvkp.sys -- (SiSkp) DRV - [2003/10/30 11:20:54 | 000,766,848 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\smrt.sys -- (smrt) DRV - [2003/10/13 23:57:34 | 000,426,752 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sisgrp.sys -- (SiS315) DRV - [2003/07/22 18:24:16 | 000,015,126 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LCcfltr.sys -- (LCcfltr) DRV - [2003/07/22 18:23:44 | 000,073,368 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouFlt2.Sys -- (LMouFlt2) DRV - [2003/07/22 18:22:42 | 000,026,072 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidFlt2.Sys -- (LHidFlt2) DRV - [2003/07/22 18:22:02 | 000,037,782 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidUsb.sys -- (LHidUsb) DRV - [2003/06/15 12:31:00 | 000,175,744 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HSFHWSIS.sys -- (HSFHWSIS) DRV - [2003/06/15 12:28:28 | 000,631,552 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf) DRV - [2003/06/15 12:27:18 | 001,063,296 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HSF_DP.sys -- (HSF_DP) DRV - [2003/01/13 10:43:56 | 000,030,720 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\SISAGPX.sys -- (sisagp) DRV - [2002/06/13 11:37:16 | 000,045,568 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\R8139n51.sys -- (rtl8139) DRV - [2000/12/05 17:18:02 | 000,003,952 | R--- | M] (Sony Corporation) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\DMICall.sys -- (DMICall) DRV - [2000/11/09 19:15:08 | 000,048,896 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SonyNC.sys -- (SNC) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/ IE - HKCU\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com) IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultengine: "Ask.com" FF - prefs.js..browser.search.defaultenginename: "Yahoo! Search" FF - prefs.js..browser.search.order.1: "Ask.com" FF - prefs.js..browser.search.selectedEngine: "Yahoo! Search" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://www.google.com/" FF - prefs.js..extensions.enabledItems: {35379F86-8CCB-4724-AE33-4278DE266C70}:1.0.4 FF - prefs.js..keyword.URL: "http://uk.yhs.search.yahoo.com/avg/search?fr=yhs-avg&type=yahoo_avg_hs2-tb-web_uk&p=" FF - prefs.js..network.proxy.ftp: "119.70.40.101:8080" FF - prefs.js..network.proxy.gopher: "119.70.40.101:8080" FF - prefs.js..network.proxy.http: "72.214.91.6:8008" FF - prefs.js..network.proxy.socks: "119.70.40.101:8080" FF - prefs.js..network.proxy.ssl: "119.70.40.101:8080" FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010/04/22 06:07:17 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared [2010/03/27 11:00:24 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.9\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/05/11 01:23:38 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.9\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/05/12 18:31:06 | 000,000,000 | ---D | M] [2009/02/19 09:50:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\Mozilla\Extensions [2010/05/18 14:04:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\npmsgtky.default\extensions [2010/05/14 10:00:14 | 000,000,000 | ---D | M] (FlashGot) -- C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\npmsgtky.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34} [2010/04/27 20:32:23 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\npmsgtky.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010/04/27 20:32:22 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\npmsgtky.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2008/03/22 08:56:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\npmsgtky.default\extensions\en-GB@dictionaries.addons.mozilla.org [2009/10/04 09:17:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\npmsgtky.default\extensions\moveplayer@movenetworks.com [2010/03/11 17:39:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\npmsgtky.default\extensions\toolbar@ask.com [2010/03/11 17:39:23 | 000,002,427 | ---- | M] () -- C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\npmsgtky.default\searchplugins\askcom.xml [2010/05/17 20:28:09 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010/02/03 04:14:49 | 000,001,538 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-en-GB.xml [2010/02/03 04:14:49 | 000,000,947 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\chambers-en-GB.xml [2010/02/03 04:14:49 | 000,000,769 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-en-GB.xml [2010/02/03 04:14:49 | 000,000,831 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-en-GB.xml O1 HOSTS File: ([2003/03/31 13:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Octh Class) - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll (Orbitdownloader.com) O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com) O3 - HKLM\..\Toolbar: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files\Orbitdownloader\GrabPro.dll () O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com) O3 - HKLM\..\Toolbar: (Viewpoint Toolbar) - {F8AD5AA5-D966-4667-9DAF-2561D68B2012} - C:\Program Files\Viewpoint\Viewpoint Toolbar\ViewBar.dll File not found O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files\Orbitdownloader\GrabPro.dll () O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com) O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [ezShieldProtector for Px] C:\WINDOWS\system32\ezSP_Px.exe (Easy Systems Japan Ltd.) O4 - HKLM..\Run: [HKSERV.EXE] C:\Program Files\Sony\HotKey Utility\HKServ.exe (Sony Corporation) O4 - HKLM..\Run: [KernelFaultCheck] File not found O4 - HKLM..\Run: [LgWDskTp] C:\Program Files\Wireless Desktop\LgWDskTp.exe (Logitech Inc.) O4 - HKLM..\Run: [Logitech Utility] C:\WINDOWS\Logi_MwX.Exe (Logitech Inc.) O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation) O4 - HKLM..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe (Microsoft Corporation) O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\VAIO Action Setup (Server).lnk = C:\Program Files\Sony\VAIO Action Setup\VAServ.exe (Sony Corporation) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\control panel present O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: &Download by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com) O8 - Extra context menu item: &Grab video by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com) O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.) O8 - Extra context menu item: Do&wnload selected by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com) O8 - Extra context menu item: Down&load all by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com) O8 - Extra context menu item: E&xport to Microsoft Excel - D:\Office12\EXCEL.EXE (Microsoft Corporation) O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Office12\REFIEBAR.DLL (Microsoft Corporation) O15 - HKCU\..Trusted Domains: sony-europe.com ([]* in Trusted sites) O15 - HKCU\..Trusted Domains: sonystyle-europe.com ([]* in Trusted sites) O15 - HKCU\..Trusted Domains: vaio-link.com ([]* in Trusted sites) O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} file:///C:/Program%20Files/Chessmaster%20Challenge/Images/stg_drm.ocx (SpinTop DRM Control) O16 - DPF: {4A3CF76B-EC7A-405D-A67D-8DC6B52AB35B} http://aolcc.aolsvc.aol.co.uk/computercheckup/qdiagcc.cab (QDiagAOLCCUpdateObj Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11) O16 - DPF: {CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab (Java Plug-in 1.4.2_01) O16 - DPF: {CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_01-windows-i586.cab (Java Plug-in 1.5.0_01) O16 - DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11) O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} file:///C:/Program%20Files/Chessmaster%20Challenge/Images/armhelper.ocx (ArmHelper Control) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 195.8.69.7 195.8.69.12 O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.) O24 - Desktop WallPaper: C:\Documents and Settings\Tony\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Tony\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010/02/22 16:09:08 | 000,000,057 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O33 - MountPoints2\{683d54a1-bb00-11de-ac70-000ea65917e6}\Shell\AutoRun\command - "" = E:\RunMe.exe -- File not found O33 - MountPoints2\{b7108e25-b930-11dc-a86f-00030d000001}\Shell - "" = AutoRun O33 - MountPoints2\{b7108e25-b930-11dc-a86f-00030d000001}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\G\Shell - "" = AutoRun O33 - MountPoints2\G\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\LaunchU3.exe -- File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKCU\...exe [@ = exefile] -- Reg Error: Key error. File not found NetSvcs: 6to4 - File not found NetSvcs: Ias - C:\WINDOWS\system32\ias [2003/11/05 10:54:49 | 000,000,000 | ---D | M] NetSvcs: Iprip - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: Wmi - C:\WINDOWS\system32\wmi.dll (Microsoft Corporation) NetSvcs: WmdmPmSp - File not found Unable to start service SrService! [color=#E56717]========== Files/Folders - Created Within 90 Days ==========[/color] [2010/05/19 22:55:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tony\Application Data\Malwarebytes [2010/05/19 22:54:54 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010/05/19 22:54:53 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2010/05/19 22:54:53 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2010/05/19 22:54:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes [2010/05/19 22:50:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT [2010/05/19 22:48:56 | 000,000,000 | ---D | C] -- C:\Program Files\ERUNT [2010/05/19 17:54:53 | 000,058,624 | ---- | C] (SMSC) -- C:\WINDOWS\System32\drivers\SMSCMS.sys [2010/05/19 11:28:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood.Tmp [2010/05/18 20:19:40 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software [2010/05/18 20:19:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Alwil Software [2010/05/18 16:31:34 | 000,023,456 | ---- | C] (Phoenix Technologies) -- C:\WINDOWS\System32\drivers\DrvAgent32.sys [2010/05/18 16:31:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tony\Local Settings\Application Data\eSupport.com [2010/05/18 15:19:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tony\Application Data\Smart PC Solutions [2010/05/18 15:19:03 | 000,000,000 | ---D | C] -- C:\Program Files\Smart PC Solutions [2010/05/18 14:09:57 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Tony\Recent [2010/05/12 17:38:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tony\Application Data\vlc [2010/05/12 17:05:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tony\Application Data\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 [2010/04/30 16:35:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9 Installer [2010/04/30 16:06:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tony\Local Settings\Application Data\nos [2010/04/30 16:05:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NOS [2010/04/28 15:11:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tony\Desktop\New Folder [2010/04/28 02:24:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tony\My Documents\New Folder [2010/04/28 01:35:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tony\Local Settings\Application Data\Windows Server [2010/04/23 14:49:03 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip [2010/04/02 09:17:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tony\Local Settings\Application Data\Temp [2010/04/02 09:16:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tony\Local Settings\Application Data\Deployment [2010/03/26 01:56:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\bulbul [2010/03/12 09:37:01 | 000,012,464 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll [2010/03/11 23:45:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tony\dwhelper [2010/03/11 17:48:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tony\Local Settings\Application Data\AskToolbar [2010/03/11 17:38:02 | 000,000,000 | ---D | C] -- C:\Program Files\Ask.com [2010/02/26 23:37:06 | 000,000,000 | ---D | C] -- C:\Y.D.T [2010/02/26 23:36:52 | 000,068,224 | ---- | C] (CACE Technologies) -- C:\WINDOWS\System32\WanPacket.dll [2010/02/26 23:36:45 | 000,000,000 | ---D | C] -- C:\Program Files\E.M. Free Youtube Download Tool [2010/02/23 19:14:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SITEguard [2010/02/23 19:12:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\iS3 [2010/02/23 19:12:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\STOPzilla! [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files - Modified Within 90 Days ==========[/color] [2010/05/20 06:49:10 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010/05/20 06:48:45 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010/05/20 02:04:47 | 008,126,464 | ---- | M] () -- C:\Documents and Settings\Tony\NTUSER.DAT [2010/05/20 02:04:42 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Tony\ntuser.ini [2010/05/20 02:04:27 | 002,205,456 | -H-- | M] () -- C:\Documents and Settings\Tony\Local Settings\Application Data\IconCache.db [2010/05/19 22:54:56 | 000,000,700 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk [2010/05/19 19:17:04 | 000,002,201 | ---- | M] () -- C:\Documents and Settings\Tony\Desktop\Excel 2007.lnk [2010/05/19 13:51:47 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2010/05/19 09:29:26 | 000,002,239 | ---- | M] () -- C:\Documents and Settings\Tony\Desktop\Word 2007.lnk [2010/05/18 23:50:55 | 000,000,713 | ---- | M] () -- C:\WINDOWS\win.ini [2010/05/18 23:50:55 | 000,000,284 | ---- | M] () -- C:\WINDOWS\system.ini [2010/05/18 23:50:55 | 000,000,211 | -HS- | M] () -- C:\boot.ini [2010/05/18 20:33:53 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010/05/18 19:16:20 | 000,005,632 | ---- | M] () -- C:\Documents and Settings\Tony\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010/05/18 16:31:35 | 000,001,057 | ---- | M] () -- C:\Documents and Settings\Tony\Desktop\Find Drivers with DriverAgent.lnk [2010/05/18 16:31:34 | 000,023,456 | ---- | M] (Phoenix Technologies) -- C:\WINDOWS\System32\drivers\DrvAgent32.sys [2010/05/18 15:19:04 | 000,000,963 | ---- | M] () -- C:\Documents and Settings\Tony\Desktop\Clean My Registry.lnk [2010/05/17 23:32:32 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010/05/17 23:22:00 | 000,000,972 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-555046474-1445209915-1949612339-1008UA.job [2010/05/17 23:20:21 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Tony\Local Settings\Application Data\prvlcl.dat [2010/05/17 23:01:00 | 000,000,232 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job [2010/05/17 22:57:02 | 000,000,980 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-555046474-1445209915-1949612339-1009UA.job [2010/05/17 17:46:38 | 060,075,572 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm [2010/05/16 09:22:01 | 000,000,920 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-555046474-1445209915-1949612339-1008Core.job [2010/05/14 16:35:03 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn [2010/05/14 11:16:31 | 000,000,148 | ---- | M] () -- C:\WINDOWS\ANS2000.INI [2010/05/13 01:57:00 | 000,000,928 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-555046474-1445209915-1949612339-1009Core.job [2010/05/12 18:54:58 | 000,010,809 | ---- | M] () -- C:\Documents and Settings\Tony\My Documents\hma vIDS.docx [2010/05/12 18:54:58 | 000,000,162 | -H-- | M] () -- C:\Documents and Settings\Tony\My Documents\~$a vIDS.docx [2010/05/12 17:33:39 | 000,000,723 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk [2010/05/04 07:00:53 | 000,001,733 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk [2010/04/30 16:33:49 | 000,000,736 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Acrobat_com.lnk [2010/04/29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010/04/29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2010/04/29 12:25:00 | 000,002,281 | ---- | M] () -- C:\Documents and Settings\Tony\Desktop\Google Chrome.lnk [2010/04/28 13:38:40 | 000,000,828 | ---- | M] () -- C:\Documents and Settings\Tony\Desktop\RapidShare Plus.lnk [2010/04/27 10:47:51 | 000,024,947 | ---- | M] () -- C:\Documents and Settings\Tony\My Documents\Tony Arnold - CV 04.10.docx [2010/04/27 10:46:56 | 000,041,984 | ---- | M] () -- C:\Documents and Settings\Tony\My Documents\Tony Arnold - CV 04.10.doc [2010/04/27 10:35:40 | 000,013,085 | ---- | M] () -- C:\Documents and Settings\Tony\My Documents\Cover Letter - 2inspire.docx [2010/04/27 10:19:44 | 000,116,156 | ---- | M] () -- C:\Documents and Settings\Tony\My Documents\Tony Arnold - CV.pdf [2010/04/27 10:17:45 | 000,025,128 | ---- | M] () -- C:\Documents and Settings\Tony\My Documents\Tony Arnold - CV2.docx [2010/04/21 09:58:13 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys [2010/04/19 23:33:31 | 000,018,028 | ---- | M] () -- C:\Documents and Settings\Tony\My Documents\the appeal case.docx [2010/04/07 17:37:43 | 000,010,641 | ---- | M] () -- C:\Documents and Settings\Tony\My Documents\link.docx [2010/04/06 14:59:51 | 000,002,205 | ---- | M] () -- C:\Documents and Settings\Tony\Desktop\PowerPoint 2007.lnk [2010/04/01 18:03:49 | 000,532,631 | ---- | M] () -- C:\Documents and Settings\Tony\My Documents\Doc2.docx [2010/04/01 17:59:34 | 000,097,656 | ---- | M] () -- C:\Documents and Settings\Tony\My Documents\Doc1.docx [2010/03/30 15:29:23 | 000,000,401 | ---- | M] () -- C:\Documents and Settings\Tony\Desktop\login.php_files.lnk [2010/03/28 07:43:28 | 000,441,898 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010/03/28 07:43:27 | 000,521,766 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010/03/28 07:43:27 | 000,071,516 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010/03/27 17:20:40 | 000,001,606 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk [2010/03/23 15:39:08 | 000,001,968 | ---- | M] () -- C:\Documents and Settings\Tony\Desktop\Guru List Siphon.lnk [2010/03/14 17:19:54 | 000,002,415 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk [2010/03/12 09:37:01 | 000,012,464 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll [2010/03/12 09:37:00 | 000,029,512 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys [2010/03/12 09:35:08 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys [2010/03/11 17:38:02 | 000,000,348 | ---- | M] () -- C:\WINDOWS\tasks\File Helper.job [2010/03/09 14:04:42 | 000,000,183 | ---- | M] () -- C:\WINDOWS\System32\Infoa.dat [2010/03/09 14:04:42 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\Infob.dat [2010/03/09 01:44:41 | 000,015,912 | ---- | M] () -- C:\Documents and Settings\Tony\My Documents\Bens appeal letter.docx [2010/03/05 15:27:42 | 000,000,305 | ---- | M] () -- C:\WINDOWS\System32\treeinfo.dat [2010/03/05 01:39:49 | 000,072,080 | ---- | M] () -- C:\Documents and Settings\Tony\g2mdlhlpx.exe [2010/03/01 14:27:30 | 000,026,112 | ---- | M] () -- C:\Documents and Settings\Tony\My Documents\Tony Arnold - Cover Letter.doc [2010/02/23 19:35:19 | 000,000,992 | ---- | M] () -- C:\WINDOWS\System32\drivers\kgpcpy.cfg [2010/02/22 16:09:08 | 000,000,057 | ---- | M] () -- C:\AUTOEXEC.BAT [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010/05/19 22:54:56 | 000,000,700 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk [2010/05/18 16:31:48 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2010/05/18 16:31:34 | 000,001,057 | ---- | C] () -- C:\Documents and Settings\Tony\Desktop\Find Drivers with DriverAgent.lnk [2010/05/18 15:19:04 | 000,000,963 | ---- | C] () -- C:\Documents and Settings\Tony\Desktop\Clean My Registry.lnk [2010/05/12 18:54:58 | 000,000,162 | -H-- | C] () -- C:\Documents and Settings\Tony\My Documents\~$a vIDS.docx [2010/05/12 18:54:57 | 000,010,809 | ---- | C] () -- C:\Documents and Settings\Tony\My Documents\hma vIDS.docx [2010/05/12 17:33:35 | 000,000,723 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk [2010/04/30 16:38:35 | 000,001,733 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk [2010/04/30 16:33:48 | 000,000,736 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Acrobat_com.lnk [2010/04/28 13:38:40 | 000,000,828 | ---- | C] () -- C:\Documents and Settings\Tony\Desktop\RapidShare Plus.lnk [2010/04/27 10:47:51 | 000,024,947 | ---- | C] () -- C:\Documents and Settings\Tony\My Documents\Tony Arnold - CV 04.10.docx [2010/04/27 10:46:56 | 000,041,984 | ---- | C] () -- C:\Documents and Settings\Tony\My Documents\Tony Arnold - CV 04.10.doc [2010/04/27 10:26:11 | 000,013,085 | ---- | C] () -- C:\Documents and Settings\Tony\My Documents\Cover Letter - 2inspire.docx [2010/04/27 10:19:43 | 000,116,156 | ---- | C] () -- C:\Documents and Settings\Tony\My Documents\Tony Arnold - CV.pdf [2010/04/19 21:14:28 | 000,018,028 | ---- | C] () -- C:\Documents and Settings\Tony\My Documents\the appeal case.docx [2010/04/07 16:52:20 | 000,010,641 | ---- | C] () -- C:\Documents and Settings\Tony\My Documents\link.docx [2010/04/02 09:20:20 | 000,002,281 | ---- | C] () -- C:\Documents and Settings\Tony\Desktop\Google Chrome.lnk [2010/04/02 09:17:15 | 000,000,972 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-555046474-1445209915-1949612339-1008UA.job [2010/04/02 09:17:14 | 000,000,920 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-555046474-1445209915-1949612339-1008Core.job [2010/04/01 18:03:49 | 000,532,631 | ---- | C] () -- C:\Documents and Settings\Tony\My Documents\Doc2.docx [2010/04/01 17:59:32 | 000,097,656 | ---- | C] () -- C:\Documents and Settings\Tony\My Documents\Doc1.docx [2010/03/30 15:29:23 | 000,000,401 | ---- | C] () -- C:\Documents and Settings\Tony\Desktop\login.php_files.lnk [2010/03/27 17:20:40 | 000,001,606 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk [2010/03/23 15:39:08 | 000,001,968 | ---- | C] () -- C:\Documents and Settings\Tony\Desktop\Guru List Siphon.lnk [2010/03/11 17:38:14 | 000,000,232 | ---- | C] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job [2010/03/11 17:38:01 | 000,000,348 | ---- | C] () -- C:\WINDOWS\tasks\File Helper.job [2010/03/08 21:41:20 | 000,015,912 | ---- | C] () -- C:\Documents and Settings\Tony\My Documents\Bens appeal letter.docx [2010/03/01 13:32:32 | 000,026,112 | ---- | C] () -- C:\Documents and Settings\Tony\My Documents\Tony Arnold - Cover Letter.doc [2010/02/26 23:38:22 | 000,000,183 | ---- | C] () -- C:\WINDOWS\System32\Infoa.dat [2010/02/26 23:38:22 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\Infob.dat [2010/02/26 23:37:14 | 000,000,305 | ---- | C] () -- C:\WINDOWS\System32\treeinfo.dat [2010/02/23 19:20:47 | 000,000,992 | ---- | C] () -- C:\WINDOWS\System32\drivers\kgpcpy.cfg [2009/10/20 19:19:30 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll [2009/08/13 10:51:19 | 000,000,028 | ---- | C] () -- C:\WINDOWS\pdf995.ini [2009/07/08 07:12:02 | 000,000,187 | ---- | C] () -- C:\WINDOWS\NetChess.INI [2009/04/07 14:39:45 | 000,063,986 | ---- | C] () -- C:\WINDOWS\System32\Winrinnt.dll [2008/12/19 18:36:25 | 000,051,716 | ---- | C] () -- C:\WINDOWS\System32\pdf995mon.dll [2008/12/19 18:36:25 | 000,000,059 | ---- | C] () -- C:\WINDOWS\wpd99.drv [2008/08/21 09:48:50 | 000,717,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2008/07/24 21:52:29 | 000,000,148 | ---- | C] () -- C:\WINDOWS\ANS2000.INI [2008/07/24 21:52:29 | 000,000,020 | -H-- | C] () -- C:\WINDOWS\akebook.ini [2008/07/24 21:52:29 | 000,000,004 | -H-- | C] () -- C:\WINDOWS\a3kebook.ini [2008/03/19 15:56:12 | 000,176,235 | ---- | C] () -- C:\WINDOWS\System32\Primomonnt.dll [2007/12/29 12:13:13 | 001,936,528 | ---- | C] () -- C:\WINDOWS\System32\ltmm15.dll [2006/12/05 12:38:21 | 000,000,002 | ---- | C] () -- C:\WINDOWS\msoffice.ini [2005/06/01 05:46:30 | 011,194,368 | ---- | C] () -- C:\WINDOWS\System32\ZHHP_RES.DLL [2005/06/01 05:46:30 | 000,749,568 | ---- | C] () -- C:\WINDOWS\System32\AGISSI.DLL [2005/06/01 05:46:30 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\VSHP2600.DLL [2005/01/21 16:34:20 | 000,000,059 | ---- | C] () -- C:\WINDOWS\News Manager.ini [2004/11/25 17:00:45 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI [2004/11/23 11:33:52 | 000,004,149 | ---- | C] () -- C:\WINDOWS\WinSig.Ini [2004/11/23 11:33:52 | 000,002,124 | ---- | C] () -- C:\WINDOWS\winros.ini [2004/11/23 11:33:52 | 000,000,046 | ---- | C] () -- C:\WINDOWS\Reader.Ini [2004/09/16 13:28:06 | 000,001,147 | ---- | C] () -- C:\WINDOWS\cdplayer.ini [2004/08/27 20:15:25 | 000,000,540 | ---- | C] () -- C:\WINDOWS\AppRun.ini [2004/08/22 16:20:34 | 000,001,295 | ---- | C] () -- C:\WINDOWS\System32\Px.ini [2004/08/22 16:15:38 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\Cpuinf32.dll [2004/08/22 16:13:57 | 000,262,416 | ---- | C] () -- C:\WINDOWS\System32\ASFV2.DLL [2004/08/22 16:13:10 | 000,524,288 | ---- | C] () -- C:\WINDOWS\System32\TDI-SonyOMG.dll [2003/11/05 17:22:16 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini [2003/11/05 12:24:05 | 000,034,403 | ---- | C] () -- C:\WINDOWS\System32\1_ssetup.ini [2003/11/05 12:24:05 | 000,016,558 | ---- | C] () -- C:\WINDOWS\System32\sunistlog.ini [2003/11/05 12:23:15 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\setuplib.dll [2003/11/05 10:58:03 | 000,000,780 | ---- | C] () -- C:\WINDOWS\orun32.ini [2003/11/05 10:57:22 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll [2003/11/05 09:31:50 | 000,002,696 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini [2003/11/04 09:00:10 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\cbldrm.dll [2003/03/27 17:28:44 | 000,004,955 | ---- | C] () -- C:\WINDOWS\System32\DProg.ini [color=#E56717]========== LOP Check ==========[/color] [2010/05/18 20:33:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software [2010/04/19 10:02:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar [2009/12/02 18:38:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\avg9 [2009/08/11 13:47:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Bluetooth [2009/01/10 22:44:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Channel4 [2009/11/28 16:36:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DonationCoder [2005/06/02 15:18:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\HotSync [2009/07/13 08:28:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Kontiki [2009/11/27 18:38:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\pdf995 [2010/02/23 19:14:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SITEguard [2010/02/23 19:41:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\STOPzilla! [2009/07/27 22:37:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP [2007/12/25 12:50:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ulead Systems [2005/06/01 13:15:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint [2009/12/05 22:27:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\Affilorama [2009/10/17 18:22:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\BBCiPlayerDesktop.61DB7A798358575D6A969CCD73DDBBD723A6DA9D.1 [2009/12/07 15:43:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\brenexa [2009/07/27 22:09:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\Chessmaster Challenge [2010/05/12 17:05:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 [2010/01/28 19:24:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\CommissionBlueprint.KeywordBlueprint.E611A7DFA7A14643DD636F3114ECD771F85A61E0.1 [2008/08/21 09:48:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\DAEMON Tools [2007/11/06 13:09:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\DeepBurner [2009/11/28 16:38:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\DonationCoder [2009/09/21 13:07:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\GetRightToGo [2010/03/05 01:25:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\GrabPro [2008/08/19 23:20:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\InterVideo [2009/12/03 12:31:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\KompoZer [2009/12/07 16:00:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\ms [2009/12/04 17:21:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\Notepad++ [2008/03/31 13:52:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\Nvu [2009/11/28 09:40:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\OpenCandy [2010/05/15 18:55:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\Orbit [2009/08/13 10:51:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\pdf995 [2010/05/18 15:19:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\Smart PC Solutions [2009/07/27 21:27:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\SpinTop [2007/11/03 16:10:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\Template [2009/02/17 17:56:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\uTorrent [2007/11/03 22:36:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\Viewpoint [2008/07/01 14:57:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tony\Application Data\YouSendIt [2010/03/11 17:38:02 | 000,000,348 | ---- | M] () -- C:\WINDOWS\Tasks\File Helper.job [2010/05/17 23:01:00 | 000,000,232 | ---- | M] () -- C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %SYSTEMDRIVE%\*.* >[/color] [2010/02/22 16:09:08 | 000,000,057 | ---- | M] () -- C:\AUTOEXEC.BAT [2010/05/18 23:50:55 | 000,000,211 | -HS- | M] () -- C:\boot.ini [2009/01/10 22:43:38 | 003,723,256 | ---- | M] (Channel 4 Television Corporation and 4 Ventures Limited ) -- C:\channel4_on_demand.exe [2003/11/05 10:55:04 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010/04/28 01:35:44 | 000,000,054 | ---- | M] () -- C:\feed.txt [2003/11/05 10:55:04 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2009/04/06 13:23:34 | 000,038,274 | ---- | M] () -- C:\logfile [2008/08/21 15:30:36 | 000,000,156 | ---- | M] () -- C:\m.txt [2003/11/05 10:55:04 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2004/11/17 16:39:53 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2009/08/15 07:27:46 | 000,250,048 | RHS- | M] () -- C:\ntldr [2010/05/20 06:48:37 | 1509,949,440 | -HS- | M] () -- C:\pagefile.sys [2009/08/05 22:38:20 | 004,928,376 | ---- | M] (Microsoft Corporation) -- C:\Silverlight.exe [2009/08/11 14:05:32 | 000,000,000 | ---- | M] () -- C:\winamp.ini [color=#A23BEC]< %systemroot%\*. /mp /s >[/color] [color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color] [color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color] [color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color] [2003/11/05 10:50:55 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav [2003/11/05 10:50:55 | 000,602,112 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav [2003/11/05 10:50:54 | 000,401,408 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav [color=#A23BEC]< %systemroot%\system32\drivers\*.sys /180 >[/color] [2010/03/12 09:35:08 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\system32\drivers\avgldx86.sys [2010/03/12 09:37:00 | 000,029,512 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\system32\drivers\avgmfx86.sys [2010/04/21 09:58:13 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\system32\drivers\avgtdix.sys [2010/05/18 16:31:34 | 000,023,456 | ---- | M] (Phoenix Technologies) -- C:\WINDOWS\system32\drivers\DrvAgent32.sys [2010/04/29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\system32\drivers\mbam.sys [2010/04/29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys [2010/02/24 14:11:07 | 000,455,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\mrxsmb.sys [2009/12/31 17:50:03 | 000,353,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\srv.sys [2010/02/11 13:02:15 | 000,226,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\tcpip6.sys [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:93E9C78D @Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D158BAF9 < End of report >