OTL logfile created on: 7/2/2010 08:09:09 AM - Run 2 OTL by OldTimer - Version 3.2.7.0 Folder = E:\Virus Medicine Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18928) Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 1,013.00 Mb Total Physical Memory | 390.00 Mb Available Physical Memory | 38.00% Memory free 2.00 Gb Paging File | 2.00 Gb Available in Paging File | 82.00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 110.32 Gb Total Space | 51.67 Gb Free Space | 46.84% Space Free | Partition Type: NTFS D: Drive not present or media not loaded Drive E: | 982.72 Mb Total Space | 981.80 Mb Free Space | 99.91% Space Free | Partition Type: FAT F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: SMASH2THELEY Current User Name: Smashley Logged in as Administrator. Current Boot Mode: SafeMode with Networking Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Minimal [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - E:\Virus Medicine\OTL.exe (OldTimer Tools) PRC - C:\Windows\explorer.exe (Microsoft Corporation) PRC - C:\Windows\System32\LVCOMSX.EXE (Logitech Inc.) [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - E:\Virus Medicine\OTL.exe (OldTimer Tools) MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll (Microsoft Corporation) MOD - C:\Windows\System32\msscript.ocx (Microsoft Corporation) [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - (avg9wd) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.) SRV - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software) SRV - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software) SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software) SRV - (WPFFontCache_v0400) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe (Microsoft Corporation) SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation) SRV - (ACDaemon) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.) SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation) SRV - (avg8emc) -- C:\Program Files\AVG\AVG8\avgemc.exe (AVG Technologies CZ, s.r.o.) SRV - (avg8wd) -- C:\Program Files\AVG\AVG8\avgwdsvc.exe (AVG Technologies CZ, s.r.o.) SRV - (EMP_UDSA) -- C:\Program Files\EPSON Projector\EPSON USB Display V1.4\EMP_UDSA.exe (SEIKO EPSON CORPORATION) SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation) SRV - (WcesComm) -- C:\Windows\WindowsMobile\wcescomm.dll (Microsoft Corporation) SRV - (RapiMgr) -- C:\Windows\WindowsMobile\rapimgr.dll (Microsoft Corporation) SRV - (WLSetupSvc) -- C:\Program Files\Windows Live\installer\WLSetupSvc.exe (Microsoft Corporation) SRV - (TNaviSrv) -- C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe (TOSHIBA Corporation) SRV - (TOSHIBA Bluetooth Service) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe (TOSHIBA CORPORATION) SRV - (Swupdtmr) -- c:\Toshiba\IVP\swupdate\swupdtmr.exe () SRV - (pinger) -- C:\Toshiba\IVP\ISM\pinger.exe () SRV - (TosCoSrv) -- C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe (TOSHIBA Corporation) SRV - (CFSvcs) -- C:\Program Files\Toshiba\ConfigFree\CFSvcs.exe (TOSHIBA CORPORATION) SRV - (AgereModemAudio) -- C:\Windows\System32\agrsmsvc.exe (Agere Systems) SRV - (UleadBurningHelper) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe (Ulead Systems, Inc.) SRV - (TODDSrv) -- C:\Windows\System32\TODDSrv.exe (TOSHIBA Corporation) SRV - (IDriverT) -- C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe (Macrovision Corporation) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - (AvgTdiX) -- C:\Windows\System32\Drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.) DRV - (AvgMfx86) -- C:\Windows\System32\Drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.) DRV - (AvgLdx86) -- C:\Windows\System32\Drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.) DRV - (aswTdi) -- C:\Windows\System32\drivers\aswTdi.sys (ALWIL Software) DRV - (aswSP) -- C:\Windows\System32\drivers\aswSP.sys (ALWIL Software) DRV - (aswRdr) -- C:\Windows\System32\drivers\aswRdr.sys (ALWIL Software) DRV - (aswMonFlt) -- C:\Windows\System32\drivers\aswMonFlt.sys (ALWIL Software) DRV - (aswFsBlk) -- C:\Windows\System32\drivers\aswFsBlk.sys (ALWIL Software) DRV - (SASENUM) -- C:\Program Files\SUPERAntiSpyware\sasenum.sys ( SUPERAdBlocker.com and SUPERAntiSpyware.com) DRV - (SASDIFSV) -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com) DRV - (SASKUTIL) -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com) DRV - (prmvmouse) -- C:\Windows\System32\drivers\activmouse.sys (Promethean Technologies Ltd) DRV - (ActivHidSerMini) -- C:\Windows\System32\drivers\activhidsermini.sys (Promethean Technologies Ltd) DRV - (eppvad_simple) -- C:\Windows\System32\drivers\EMP_UDAU.sys (SEIKO EPSON CORPORATION) DRV - (igfx) -- C:\Windows\System32\drivers\igdkmd32.sys (Intel Corporation) DRV - (NETw4v32) Intel(R) -- C:\Windows\System32\drivers\NETw4v32.sys (Intel Corporation) DRV - (tos_sps32) -- C:\Windows\system32\DRIVERS\tos_sps32.sys (TOSHIBA Corporation) DRV - (SynTP) -- C:\Windows\System32\drivers\SynTP.sys (Synaptics, Inc.) DRV - (tifm21) -- C:\Windows\System32\drivers\tifm21.sys (Texas Instruments) DRV - (yukonwlh) -- C:\Windows\System32\drivers\yk60x86.sys (Marvell) DRV - (KR3NPXP) -- C:\Windows\system32\drivers\kr3npxp.sys (TOSHIBA CORPORATION) DRV - (KR10N) -- C:\Windows\system32\drivers\kr10n.sys (TOSHIBA CORPORATION) DRV - (KR10I) -- C:\Windows\system32\drivers\kr10i.sys (TOSHIBA CORPORATION) DRV - (AgereSoftModem) -- C:\Windows\System32\drivers\AGRSM.sys (Agere Systems) DRV - (FwLnk) -- C:\Windows\System32\drivers\FwLnk.sys (TOSHIBA Corporation) DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation) DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.) DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex) DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.) DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.) DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation) DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.) DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.) DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd) DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation) DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.) DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.) DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation) DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation) DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH) DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems) DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation) DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.) DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.) DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic) DRV - (SiSRaid2) -- C:\Windows\system32\drivers\sisraid2.sys (Silicon Integrated Systems Corp.) DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company) DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.) DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.) DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.) DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic) DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic) DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic) DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic) DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation) DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic) DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Logic Corporation) DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.) DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.) DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.) DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.) DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.) DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.) DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies) DRV - (tdcmdpst) -- C:\Windows\System32\drivers\tdcmdpst.sys (TOSHIBA Corporation.) DRV - (TVALZ) -- C:\Windows\system32\DRIVERS\TVALZ_O.SYS (TOSHIBA Corporation) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomSearch = http://us.rd.yahoo.com/customize/ie/defaults/cs/msgr8/*http://www.yahoo.com/ext/search/search.html IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:5577 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultenginename: "Yahoo! Search" FF - prefs.js..browser.search.defaulturl: "http://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p=" FF - prefs.js..browser.search.selectedEngine: "Bing" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://weather.yahoo.com/forecast/USLA0319_f.html" FF - prefs.js..extensions.enabledItems: artur.dubovoy@gmail.com:2.0.6 FF - prefs.js..extensions.enabledItems: moveplayer@movenetworks.com:1.0.0.07076007 FF - prefs.js..extensions.enabledItems: {5b1fdac4-a239-4933-9c52-b65a2a720b75}:2.3 FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.3.20100310105313 FF - prefs.js..extensions.enabledItems: DeviceDetection@logitech.com:1.0.176.0 FF - prefs.js..extensions.enabledItems: {c2db4fe6-8409-45ce-8010-189a7b5cce86}:2.6.0.15 FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:9.0.0.825 FF - prefs.js..extensions.enabledItems: avg@igeared:3.011.025.005 FF - prefs.js..keyword.URL: "http://us.yhs.search.yahoo.com/avg/search?fr=yhs-avgb&type=yahoo_avg_hs2-tb-web_us&p=" FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010/07/01 13:23:25 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared [2010/06/30 12:26:11 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/06/29 19:34:40 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/06/29 19:34:40 | 000,000,000 | ---D | M] [2009/03/08 13:09:11 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Extensions [2009/03/08 13:09:11 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Extensions\mozswing@mozswing.org [2010/07/02 01:07:02 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions [2010/05/30 11:25:48 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2008/08/23 16:46:10 | 000,000,000 | ---D | M] (Picnik) -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\{5b1fdac4-a239-4933-9c52-b65a2a720b75} [2010/03/24 19:21:33 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2010/04/29 17:24:03 | 000,000,000 | ---D | M] (NCH Toolbar) -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\{c2db4fe6-8409-45ce-8010-189a7b5cce86} [2010/05/30 11:25:41 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\artur.dubovoy@gmail.com [2010/04/05 13:51:59 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\DeviceDetection@logitech.com [2008/02/15 22:28:12 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\moveplayer@movenetworks.com [2010/04/06 02:49:06 | 000,001,820 | ---- | M] () -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\searchplugins\bing.xml [2010/04/06 02:50:35 | 000,002,270 | ---- | M] () -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\searchplugins\photobucket.xml [2007/11/26 06:15:09 | 000,002,386 | ---- | M] () -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\searchplugins\siteadvisor.xml [2010/06/30 19:47:42 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010/01/21 16:04:41 | 000,000,000 | ---D | M] (Smart Notebook Extension) -- C:\Program Files\Mozilla Firefox\extensions\{D6D05E6F-D5C1-4e03-8E33-73F92B05E262} [2008/08/27 21:15:44 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org [2007/12/19 07:57:38 | 000,310,272 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npGoogleGadgetPluginFirefoxWin.dll O1 HOSTS File: ([2010/02/07 14:02:57 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.) O2 - BHO: (CIEDownload Object) - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} - C:\Program Files\SMART Technologies\Notebook Software\NotebookPlugin.dll (SMART Technologies ULC.) O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () O4 - HKLM..\Run: [00TCrdMain] C:\Program Files\Toshiba\FlashCards\TCrdMain.exe (TOSHIBA Corporation) O4 - HKLM..\Run: [ActivControl] C:\Program Files\Activ Software\ActivDriver\ActivControl2.exe (Promethean Technologies Group Ltd) O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.) O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software) O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [Camera Assistant Software] C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe (Chicony) O4 - HKLM..\Run: [CamWizard] C:\Program Files\Common Files\Logitech\QCDRV\BIN\CamWizrd.exe (Logitech Inc.) O4 - HKLM..\Run: [EPSON_UD_START] C:\Program Files\EPSON Projector\EPSON USB Display V1.4\EMP_UD.exe (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [GoBoingo] C:\Program Files\Alltel\GoBoingo\AlltelWifi.exe (Boingo Wireless, Inc.) O4 - HKLM..\Run: [HSON] C:\Program Files\Toshiba\TBS\HSON.exe (TOSHIBA Corporation) O4 - HKLM..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe (Logitech Inc.) O4 - HKLM..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe (Logitech Inc.) O4 - HKLM..\Run: [LVCOMSX] C:\Windows\System32\LVCOMSX.EXE (Logitech Inc.) O4 - HKLM..\Run: [sealmon.exe] C:\Program Files\Oracle\Information Rights Management\Desktop\sealmon.exe (Oracle Corporation) O4 - HKLM..\Run: [SmoothView] C:\Program Files\Toshiba\SmoothView\SmoothView.exe (TOSHIBA Corporation) O4 - HKLM..\Run: [TPwrMain] C:\Program Files\Toshiba\Power Saver\TPwrMain.exe (TOSHIBA Corporation) O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - HKLM..\Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdSync.exe (Microsoft Corporation) O4 - HKCU..\Run: [LogitechSoftwareUpdate] C:\Program Files\Logitech\Video\ManifestEngine.exe (Logitech Inc.) O4 - HKCU..\Run: [TOSCDSPD] File not found O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.) O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.87.68.166 68.87.74.166 O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation) O20 - AppInit_DLLs: (avgrsstx.dll) - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com) O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\Windows\System32\igfxdev.dll (Intel Corporation) O24 - Desktop WallPaper: C:\Users\Smashley\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg O24 - Desktop BackupWallPaper: C:\Users\Smashley\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com) O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{0aea8497-2f57-11dd-82ed-00a0d17cf124}\Shell\AutoRun\command - "" = E:\Player\DVR_Player.exe ..\20 -- File not found O33 - MountPoints2\{16e78b7b-4f5a-11df-a01c-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{4b0432f2-2436-11df-b00a-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{4b0432fd-2436-11df-b00a-7a8020000200}\Shell - "" = AutoRun O33 - MountPoints2\{4db79140-72ee-11de-8041-7a8020000200}\Shell - "" = AutoRun O33 - MountPoints2\{5df7010f-dc25-11dd-b09c-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{8ba3e4b5-b470-11de-8642-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{d9f2e680-af89-11de-ace1-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{f27f8b42-47e1-11de-a951-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{f27f8bba-47e1-11de-a951-7a8020000200}\Shell - "" = AutoRun O33 - MountPoints2\F\Shell - "" = AutoRun O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\LaunchU3.exe -- File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: FastUserSwitchingCompatibility - File not found NetSvcs: Ias - C:\Windows\System32\ias [2008/08/04 01:08:07 | 000,000,000 | ---D | M] NetSvcs: Nla - File not found NetSvcs: Ntmssvc - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: SRService - File not found NetSvcs: Wmi - C:\Windows\System32\wmi.dll (Microsoft Corporation) NetSvcs: WmdmPmSp - File not found NetSvcs: LogonHours - File not found NetSvcs: PCAudit - File not found NetSvcs: helpsvc - File not found NetSvcs: uploadmgr - File not found Drivers32: aux - C:\Windows\System32\wdmaud.drv (Microsoft Corporation) Drivers32: midi - C:\Windows\System32\wdmaud.drv (Microsoft Corporation) Drivers32: midimapper - C:\Windows\System32\midimap.dll (Microsoft Corporation) Drivers32: mixer - C:\Windows\System32\wdmaud.drv (Microsoft Corporation) Drivers32: msacm.dvacm - C:\Program Files\Common Files\Ulead Systems\vio\DVACM.acm (Ulead Systems, Inc.) Drivers32: msacm.imaadpcm - C:\Windows\System32\imaadp32.acm (Microsoft Corporation) Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.msadpcm - C:\Windows\System32\msadp32.acm (Microsoft Corporation) Drivers32: msacm.msg711 - C:\Windows\System32\msg711.acm (Microsoft Corporation) Drivers32: msacm.msgsm610 - C:\Windows\System32\msgsm32.acm (Microsoft Corporation) Drivers32: MSVideo - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation) Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation) Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.) Drivers32: vidc.DIVX - C:\Windows\System32\DivX.dll (DivX, Inc.) Drivers32: VIDC.I420 - C:\Windows\System32\lvcodec2.dll (Logitech Inc.) Drivers32: VIDC.IYUV - C:\Windows\System32\iyuv_32.dll (Microsoft Corporation) Drivers32: vidc.mrle - C:\Windows\System32\msrle32.dll (Microsoft Corporation) Drivers32: vidc.msvc - C:\Windows\System32\msvidc32.dll (Microsoft Corporation) Drivers32: vidc.tscc - C:\Windows\System32\tsccvid.dll (TechSmith Corporation) Drivers32: VIDC.UYVY - C:\Windows\System32\msyuv.dll (Microsoft Corporation) Drivers32: vidc.VP60 - C:\Windows\System32\vp6vfw.dll (On2.com) Drivers32: vidc.VP61 - C:\Windows\System32\vp6vfw.dll (On2.com) Drivers32: VIDC.WMV3 - C:\Windows\System32\wmv9vcm.dll (Microsoft Corporation) Drivers32: VIDC.YUY2 - C:\Windows\System32\msyuv.dll (Microsoft Corporation) Drivers32: vidc.yv12 - C:\Windows\System32\DivX.dll (DivX, Inc.) Drivers32: VIDC.YVU9 - C:\Windows\System32\tsbyuv.dll (Microsoft Corporation) Drivers32: VIDC.YVYU - C:\Windows\System32\msyuv.dll (Microsoft Corporation) Drivers32: wave - C:\Windows\System32\wdmaud.drv (Microsoft Corporation) Drivers32: wavemapper - C:\Windows\System32\msacm32.drv (Microsoft Corporation) CREATERESTOREPOINT Error creating restore point. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010/07/02 01:30:48 | 000,000,000 | -H-D | C] -- C:\Program Files\Temp [2010/07/02 00:40:32 | 000,000,000 | ---D | C] -- C:\Users\Smashley\Desktop\Virus Medicine [2010/07/01 18:37:13 | 000,000,000 | ---D | C] -- C:\Windows\System32\x64 [2010/07/01 18:37:12 | 000,920,088 | ---- | C] (Intel® Corporation) -- C:\Windows\System32\igxpun.exe [2010/07/01 16:23:27 | 000,000,000 | ---D | C] -- C:\Intel [2010/07/01 13:18:34 | 000,012,464 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\avgrsstx.dll [2010/07/01 13:17:55 | 000,038,848 | ---- | C] (ALWIL Software) -- C:\Windows\avastSS.scr [2010/06/30 13:09:00 | 000,000,000 | ---D | C] -- C:\Users\Smashley\AppData\Local\AVG Security Toolbar [2010/06/30 12:30:31 | 000,000,000 | -H-D | C] -- C:\$AVG [2010/06/30 12:26:17 | 000,242,896 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgtdix.sys [2010/06/30 12:26:15 | 000,216,200 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgldx86.sys [2010/06/30 12:26:14 | 000,029,584 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgmfx86.sys [2010/06/30 12:26:13 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\Avg [2010/06/30 12:26:11 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG Security Toolbar [2010/06/29 23:21:03 | 000,000,000 | ---D | C] -- C:\Users\Smashley\AppData\Local\bdibbjahd [2010/06/24 03:00:48 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll [2010/06/24 03:00:47 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe [2010/06/24 03:00:47 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll [2010/06/23 00:23:25 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll [2010/06/23 00:23:24 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll [2010/06/18 01:55:36 | 000,000,000 | ---D | C] -- C:\Users\Smashley\Desktop\Gimp Brushes [2010/06/17 19:30:50 | 000,000,000 | ---D | C] -- C:\Users\Smashley\heart [2010/06/08 21:40:23 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll [2010/06/08 21:40:17 | 000,289,792 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll [2010/06/08 21:40:16 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll [2010/06/08 21:39:55 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2010/06/08 21:39:54 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll [2010/06/08 21:39:54 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2010/06/08 21:39:53 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2010/06/08 21:39:53 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2010/06/08 21:39:52 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll [2010/06/08 21:39:52 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2010/06/08 21:39:52 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll [2010/06/08 21:39:52 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll [2010/06/08 21:39:52 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2010/06/08 21:39:44 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2010/06/08 21:39:44 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe [2010/06/08 21:39:44 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll [2010/06/08 21:39:44 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll [2010/06/08 21:39:44 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe [2010/06/08 21:39:30 | 002,037,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2010/07/02 08:07:11 | 004,718,592 | -HS- | M] () -- C:\Users\Smashley\ntuser.dat [2010/07/02 08:01:42 | 000,759,570 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI [2010/07/02 08:01:42 | 000,641,920 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2010/07/02 08:01:42 | 000,119,480 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2010/07/02 07:07:26 | 000,016,384 | ---- | M] () -- C:\Windows\System32\Ikeext.etl [2010/07/02 07:07:15 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2010/07/02 06:55:39 | 000,000,376 | ---- | M] () -- C:\Windows\tasks\AWC Startup.job [2010/07/02 06:11:39 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2010/07/02 06:11:34 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2010/07/02 06:11:34 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2010/07/02 02:23:22 | 000,524,288 | -HS- | M] () -- C:\Users\Smashley\ntuser.dat{b1f1f7da-549f-11dd-88bd-001b778291ff}.TMContainer00000000000000000001.regtrans-ms [2010/07/02 02:23:22 | 000,065,536 | -HS- | M] () -- C:\Users\Smashley\ntuser.dat{b1f1f7da-549f-11dd-88bd-001b778291ff}.TM.blf [2010/07/02 02:23:17 | 002,616,904 | -H-- | M] () -- C:\Users\Smashley\AppData\Local\IconCache.db [2010/07/02 01:35:16 | 000,319,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\DIFxAPI.dll [2010/07/02 00:34:31 | 000,000,853 | ---- | M] () -- C:\Users\Smashley\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk [2010/07/01 18:59:07 | 000,000,680 | ---- | M] () -- C:\Users\Smashley\AppData\Local\d3d9caps.dat [2010/07/01 17:51:05 | 000,000,564 | -H-- | M] () -- C:\Windows\tasks\Norton Security Scan for Smashley.job [2010/07/01 13:18:38 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgtdix.sys [2010/07/01 13:18:34 | 000,012,464 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\avgrsstx.dll [2010/07/01 13:18:33 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgmfx86.sys [2010/07/01 13:18:23 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt [2010/07/01 13:17:49 | 061,560,572 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm [2010/07/01 13:15:18 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgldx86.sys [2010/06/30 22:43:57 | 000,000,275 | ---- | M] () -- C:\Windows\win.ini [2010/06/30 12:26:19 | 000,001,658 | ---- | M] () -- C:\Users\Public\Desktop\AVG Free 9.0.lnk [2010/06/30 12:26:14 | 000,113,461 | ---- | M] () -- C:\Windows\System32\drivers\Avg\iavichjw.avm [2010/06/30 12:26:13 | 006,061,540 | ---- | M] () -- C:\Windows\System32\drivers\Avg\avi7.avg [2010/06/30 12:26:13 | 000,492,629 | ---- | M] () -- C:\Windows\System32\drivers\Avg\miniavi.avg [2010/06/30 12:26:13 | 000,142,495 | ---- | M] () -- C:\Windows\System32\drivers\Avg\microavi.avg [2010/06/28 15:57:33 | 000,038,848 | ---- | M] (ALWIL Software) -- C:\Windows\avastSS.scr [2010/06/28 15:57:12 | 000,165,032 | ---- | M] (AVAST Software) -- C:\Windows\System32\aswBoot.exe [2010/06/28 15:37:52 | 000,046,672 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswTdi.sys [2010/06/28 15:37:30 | 000,165,456 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswSP.sys [2010/06/28 15:33:13 | 000,023,376 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswRdr.sys [2010/06/28 15:32:56 | 000,050,256 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswMonFlt.sys [2010/06/28 15:32:33 | 000,017,744 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswFsBlk.sys [2010/06/21 11:40:01 | 000,032,256 | ---- | M] () -- C:\Users\Smashley\Documents\Newest_Resume.doc [2010/06/21 11:02:01 | 000,035,840 | ---- | M] () -- C:\Users\Smashley\Documents\Resume for ULM-1.doc [2010/06/17 14:13:35 | 000,005,885 | ---- | M] () -- C:\Users\Smashley\.recently-used.xbel [2010/06/16 14:49:56 | 000,027,648 | ---- | M] () -- C:\Users\Smashley\Documents\HCG Recipes2.doc [2010/06/16 14:10:30 | 000,002,609 | ---- | M] () -- C:\Users\Smashley\Desktop\Microsoft Office Word 2003.lnk [2010/06/14 17:12:47 | 000,024,064 | ---- | M] () -- C:\Users\Smashley\Documents\HCG Recipes.doc [2010/06/14 14:15:29 | 000,669,167 | ---- | M] () -- C:\Users\Smashley\Desktop\Hcg Phase2 Recipes.pdf [2010/06/12 01:28:27 | 000,501,584 | ---- | M] () -- C:\Users\Smashley\AppData\Local\GDIPFONTCACHEV1.DAT [2010/06/12 01:24:24 | 001,182,888 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2010/06/10 01:54:24 | 000,000,909 | ---- | M] () -- C:\Users\Public\Desktop\GIMP 2.lnk [2010/06/08 22:49:05 | 000,001,711 | ---- | M] () -- C:\Users\Smashley\Desktop\LimeWire 5.5.9.lnk [2010/06/08 22:34:59 | 000,000,039 | ---- | M] () -- C:\Windows\vbaddin.ini [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010/06/30 12:26:19 | 000,001,658 | ---- | C] () -- C:\Users\Public\Desktop\AVG Free 9.0.lnk [2010/06/30 12:26:14 | 000,113,461 | ---- | C] () -- C:\Windows\System32\drivers\Avg\iavichjw.avm [2010/06/30 12:26:13 | 061,560,572 | ---- | C] () -- C:\Windows\System32\drivers\Avg\incavi.avm [2010/06/30 12:26:13 | 006,061,540 | ---- | C] () -- C:\Windows\System32\drivers\Avg\avi7.avg [2010/06/30 12:26:13 | 000,492,629 | ---- | C] () -- C:\Windows\System32\drivers\Avg\miniavi.avg [2010/06/30 12:26:13 | 000,142,495 | ---- | C] () -- C:\Windows\System32\drivers\Avg\microavi.avg [2010/06/29 23:38:34 | 000,000,680 | ---- | C] () -- C:\Users\Smashley\AppData\Local\d3d9caps.dat [2010/06/21 11:40:01 | 000,032,256 | ---- | C] () -- C:\Users\Smashley\Documents\Newest_Resume.doc [2010/06/17 14:13:35 | 000,005,885 | ---- | C] () -- C:\Users\Smashley\.recently-used.xbel [2010/06/16 14:49:55 | 000,027,648 | ---- | C] () -- C:\Users\Smashley\Documents\HCG Recipes2.doc [2010/06/14 17:12:44 | 000,024,064 | ---- | C] () -- C:\Users\Smashley\Documents\HCG Recipes.doc [2010/06/14 14:15:28 | 000,669,167 | ---- | C] () -- C:\Users\Smashley\Desktop\Hcg Phase2 Recipes.pdf [2010/06/08 22:49:05 | 000,001,711 | ---- | C] () -- C:\Users\Smashley\Desktop\LimeWire 5.5.9.lnk [2010/06/02 09:35:08 | 000,035,840 | ---- | C] () -- C:\Users\Smashley\Documents\Resume for ULM-1.doc [2010/04/29 17:12:02 | 000,165,376 | ---- | C] () -- C:\Windows\System32\unrar.dll [2010/04/05 15:01:51 | 000,009,255 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini [2009/11/30 12:55:39 | 000,000,751 | ---- | C] () -- C:\Windows\Bti.ini [2009/10/22 16:44:36 | 000,223,016 | ---- | C] () -- C:\Windows\libactivboardex.dll [2009/10/22 16:44:16 | 000,252,696 | ---- | C] () -- C:\Windows\ActivDRV.dll [2009/09/17 19:20:25 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll [2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll [2009/02/08 19:15:08 | 000,290,919 | ---- | C] () -- C:\Windows\System32\pythoncom21.dll [2009/02/08 19:15:08 | 000,057,344 | ---- | C] () -- C:\Windows\System32\PyWinTypes21.dll [2009/02/08 19:13:38 | 000,096,768 | ---- | C] () -- C:\Windows\SlantAdj.dll [2009/02/08 19:13:38 | 000,000,072 | R--- | C] () -- C:\Windows\System32\epDPE.ini [2009/02/08 18:45:15 | 000,000,171 | ---- | C] () -- C:\Windows\EPSON CX3200 Installer.ini [2008/04/30 21:16:30 | 000,000,067 | ---- | C] () -- C:\Windows\swupdate.INI [2008/02/11 19:55:18 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1437.dll [2008/01/24 10:58:36 | 000,028,124 | ---- | C] () -- C:\Windows\System32\jpn_lang_plusviewer.ini [2008/01/24 10:58:20 | 000,028,973 | ---- | C] () -- C:\Windows\System32\kor_lang_plusviewer.ini [2008/01/24 10:58:06 | 000,029,742 | ---- | C] () -- C:\Windows\System32\eng_lang_plusviewer.ini [2008/01/16 22:11:46 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI [2008/01/04 16:58:50 | 003,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll [2008/01/04 16:57:22 | 000,000,416 | ---- | C] () -- C:\Windows\System32\dtu100.dll.manifest [2008/01/04 16:57:22 | 000,000,416 | ---- | C] () -- C:\Windows\System32\dpl100.dll.manifest [2008/01/04 16:56:24 | 000,012,288 | ---- | C] () -- C:\Windows\System32\DivXWMPExtType.dll [2007/07/18 00:42:16 | 000,010,150 | ---- | C] () -- C:\Windows\System32\tosmreg.ini [2007/07/18 00:42:15 | 000,128,113 | ---- | C] () -- C:\Windows\System32\csellang.ini [2007/07/18 00:42:15 | 000,045,056 | ---- | C] () -- C:\Windows\System32\csellang.dll [2007/07/18 00:42:15 | 000,007,671 | ---- | C] () -- C:\Windows\System32\cseltbl.ini [2007/03/21 17:30:52 | 000,069,632 | ---- | C] () -- C:\Windows\System32\mp4dec2avi.dll [2007/03/06 14:49:42 | 000,204,800 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1227.dll [2007/03/02 14:01:09 | 000,204,800 | ---- | C] () -- C:\Windows\System32\IVIresizeW7.dll [2007/03/02 14:01:09 | 000,188,416 | ---- | C] () -- C:\Windows\System32\IVIresizePX.dll [2007/03/02 14:01:08 | 000,200,704 | ---- | C] () -- C:\Windows\System32\IVIresizeA6.dll [2007/03/02 14:01:08 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeP6.dll [2007/03/02 14:01:08 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeM6.dll [2007/03/02 14:01:08 | 000,020,480 | ---- | C] () -- C:\Windows\System32\IVIresize.dll [2007/02/28 15:47:07 | 000,000,000 | ---- | C] () -- C:\Windows\NDSTray.INI [2006/12/05 16:05:06 | 000,114,688 | ---- | C] () -- C:\Windows\System32\TosBtAcc.dll [2006/11/02 07:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll [2006/11/02 02:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini [2006/03/09 13:58:00 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll [2005/07/23 00:30:20 | 000,065,536 | ---- | C] () -- C:\Windows\System32\TosCommAPI.dll [2004/05/31 15:39:46 | 000,045,056 | ---- | C] () -- C:\Windows\System32\rfg726.dll [2004/01/19 18:17:58 | 000,356,352 | ---- | C] () -- C:\Windows\System32\mwmp4dec.dll [2003/03/24 05:03:00 | 000,279,552 | ---- | C] () -- C:\Windows\System32\FGWVB32.DLL [2003/01/07 16:05:08 | 000,002,695 | ---- | C] () -- C:\Windows\System32\OUTLPERF.INI [2002/12/11 19:19:34 | 000,708,608 | ---- | C] () -- C:\Windows\System32\ltcry13n.dll [2002/12/11 19:19:34 | 000,147,456 | ---- | C] () -- C:\Windows\System32\lttls13n.dll [2000/04/12 17:28:12 | 000,118,784 | ---- | C] () -- C:\Windows\System32\lfkodak.dll [2000/04/12 17:24:10 | 000,338,944 | ---- | C] () -- C:\Windows\System32\lffpx7.dll [1996/02/23 16:34:48 | 000,014,629 | ---- | C] () -- C:\Windows\System32\Declw.dll [1996/02/22 14:09:20 | 000,032,256 | ---- | C] () -- C:\Windows\System32\Decln.dll [color=#E56717]========== LOP Check ==========[/color] [2010/04/07 12:27:49 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\ACTIV Software [2008/10/19 02:50:22 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Azureus [2009/04/17 23:56:44 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\EPSON [2008/05/14 21:23:15 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\GameHouse [2010/04/05 15:40:47 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\GetRightToGo [2010/06/17 14:13:35 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\gtk-2.0 [2010/05/06 07:21:18 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Image Zone Express [2010/03/30 06:42:35 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\IObit [2009/02/17 10:54:40 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\IrfanView [2008/03/12 02:20:13 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\iWinArcade [2010/04/05 14:02:46 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Leadertech [2010/06/10 23:10:11 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\LimeWire [2008/05/14 21:25:12 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\My Games [2008/02/24 20:11:42 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\PlayFirst [2008/12/01 01:29:56 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Printer Info Cache [2010/04/08 10:07:48 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Promethean [2008/11/04 23:53:00 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\River Past G5 [2008/10/27 23:34:39 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Skinux [2010/01/21 16:05:30 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\SMART Technologies Inc [2009/05/30 15:20:41 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Smith Micro [2007/12/04 08:21:43 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Template [2009/01/21 02:23:08 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\TOSHIBA [2009/01/22 10:59:14 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\WinBatch [2010/07/02 06:55:39 | 000,000,376 | ---- | M] () -- C:\Windows\Tasks\AWC Startup.job [2010/07/02 02:23:37 | 000,032,522 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< >[/color] [color=#A23BEC]< %SYSTEMDRIVE%\*.* >[/color] [2009/04/11 01:36:36 | 000,333,257 | RHS- | M] () -- C:\bootmgr [2007/02/28 14:08:50 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK [2006/09/18 16:43:37 | 000,000,010 | ---- | M] () -- C:\config.sys [2010/05/10 20:25:30 | 000,000,045 | ---- | M] () -- C:\error.log [2007/12/28 04:15:53 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010/07/02 00:34:34 | 000,000,109 | ---- | M] () -- C:\mbam-error.txt [2007/12/28 04:15:53 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010/07/02 07:06:49 | 1377,116,160 | -HS- | M] () -- C:\pagefile.sys [2010/02/07 14:03:50 | 000,002,472 | ---- | M] () -- C:\rapport.txt [2008/05/04 16:12:59 | 000,000,162 | ---- | M] () -- C:\YServer.txt [color=#A23BEC]< %systemroot%\system32\Spool\prtprocs\w32x86\*.dll >[/color] [2008/08/12 11:58:10 | 000,314,880 | ---- | M] (Hewlett-Packard Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\hpfpp082.dll [2008/01/19 02:34:28 | 000,089,600 | ---- | M] (Hewlett-Packard Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\HPZPPLHN.DLL [2006/11/02 07:35:48 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\jnwppr.dll [2007/04/09 14:23:54 | 000,028,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\mdippr.dll [2006/10/26 19:56:12 | 000,033,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll [color=#A23BEC]< %systemroot%\system32\*.wt >[/color] [color=#A23BEC]< %systemroot%\system32\*.ruy >[/color] [color=#A23BEC]< %systemroot%\Fonts\*.com >[/color] [2006/11/02 07:37:12 | 000,026,040 | ---- | M] () -- C:\Windows\Fonts\GlobalMonospace.CompositeFont [2006/11/02 07:37:12 | 000,026,489 | ---- | M] () -- C:\Windows\Fonts\GlobalSansSerif.CompositeFont [2006/11/02 07:37:12 | 000,029,779 | ---- | M] () -- C:\Windows\Fonts\GlobalSerif.CompositeFont [2009/09/20 10:52:30 | 000,037,665 | ---- | M] () -- C:\Windows\Fonts\GlobalUserInterface.CompositeFont [color=#A23BEC]< %systemroot%\Fonts\*.dll >[/color] [color=#A23BEC]< %systemroot%\system32\spool\prtprocs\w32x86\*.tmp >[/color] [color=#A23BEC]< %systemroot%\*. /mp /s >[/color] [color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color] [color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color] [color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color] [2007/02/28 14:08:36 | 006,602,752 | ---- | M] () -- C:\Windows\System32\config\COMPONENTS.SAV [2007/02/28 14:08:34 | 000,102,400 | ---- | M] () -- C:\Windows\System32\config\DEFAULT.SAV [2007/02/28 14:08:36 | 000,020,480 | ---- | M] () -- C:\Windows\System32\config\SECURITY.SAV [2007/02/28 14:08:46 | 015,556,608 | ---- | M] () -- C:\Windows\System32\config\SOFTWARE.SAV [2007/02/28 14:08:48 | 006,012,928 | ---- | M] () -- C:\Windows\System32\config\SYSTEM.SAV [color=#A23BEC]< %systemroot%\system32\user32.dll /md5 >[/color] [2009/04/11 01:28:25 | 000,627,712 | ---- | M] (Microsoft Corporation) MD5=75510147B94598407666F4802797C75A -- C:\Windows\System32\user32.dll [color=#A23BEC]< %systemroot%\system32\ws2_32.dll /md5 >[/color] [2008/01/19 02:37:09 | 000,179,200 | ---- | M] (Microsoft Corporation) MD5=B304D47D5744BA20FCB99FB8B2C07B0B -- C:\Windows\System32\ws2_32.dll [color=#A23BEC]< %systemroot%\system32\ws2help.dll /md5 >[/color] [2006/11/02 04:44:30 | 000,004,608 | ---- | M] (Microsoft Corporation) MD5=17C0671BF57057108A6D949510EE42C8 -- C:\Windows\System32\ws2help.dll [color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >[/color] [color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >[/color] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2010-07-01 23:39:21 < End of report > OTL logfile created on: 7/2/2010 08:09:09 AM - Run 2 OTL by OldTimer - Version 3.2.7.0 Folder = E:\Virus Medicine Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18928) Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 1,013.00 Mb Total Physical Memory | 390.00 Mb Available Physical Memory | 38.00% Memory free 2.00 Gb Paging File | 2.00 Gb Available in Paging File | 82.00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 110.32 Gb Total Space | 51.67 Gb Free Space | 46.84% Space Free | Partition Type: NTFS D: Drive not present or media not loaded Drive E: | 982.72 Mb Total Space | 981.80 Mb Free Space | 99.91% Space Free | Partition Type: FAT F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: SMASH2THELEY Current User Name: Smashley Logged in as Administrator. Current Boot Mode: SafeMode with Networking Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Minimal [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - E:\Virus Medicine\OTL.exe (OldTimer Tools) PRC - C:\Windows\explorer.exe (Microsoft Corporation) PRC - C:\Windows\System32\LVCOMSX.EXE (Logitech Inc.) [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - E:\Virus Medicine\OTL.exe (OldTimer Tools) MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll (Microsoft Corporation) MOD - C:\Windows\System32\msscript.ocx (Microsoft Corporation) [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - (avg9wd) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.) SRV - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software) SRV - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software) SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software) SRV - (WPFFontCache_v0400) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe (Microsoft Corporation) SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation) SRV - (ACDaemon) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.) SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation) SRV - (avg8emc) -- C:\Program Files\AVG\AVG8\avgemc.exe (AVG Technologies CZ, s.r.o.) SRV - (avg8wd) -- C:\Program Files\AVG\AVG8\avgwdsvc.exe (AVG Technologies CZ, s.r.o.) SRV - (EMP_UDSA) -- C:\Program Files\EPSON Projector\EPSON USB Display V1.4\EMP_UDSA.exe (SEIKO EPSON CORPORATION) SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation) SRV - (WcesComm) -- C:\Windows\WindowsMobile\wcescomm.dll (Microsoft Corporation) SRV - (RapiMgr) -- C:\Windows\WindowsMobile\rapimgr.dll (Microsoft Corporation) SRV - (WLSetupSvc) -- C:\Program Files\Windows Live\installer\WLSetupSvc.exe (Microsoft Corporation) SRV - (TNaviSrv) -- C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe (TOSHIBA Corporation) SRV - (TOSHIBA Bluetooth Service) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe (TOSHIBA CORPORATION) SRV - (Swupdtmr) -- c:\Toshiba\IVP\swupdate\swupdtmr.exe () SRV - (pinger) -- C:\Toshiba\IVP\ISM\pinger.exe () SRV - (TosCoSrv) -- C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe (TOSHIBA Corporation) SRV - (CFSvcs) -- C:\Program Files\Toshiba\ConfigFree\CFSvcs.exe (TOSHIBA CORPORATION) SRV - (AgereModemAudio) -- C:\Windows\System32\agrsmsvc.exe (Agere Systems) SRV - (UleadBurningHelper) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe (Ulead Systems, Inc.) SRV - (TODDSrv) -- C:\Windows\System32\TODDSrv.exe (TOSHIBA Corporation) SRV - (IDriverT) -- C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe (Macrovision Corporation) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - (AvgTdiX) -- C:\Windows\System32\Drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.) DRV - (AvgMfx86) -- C:\Windows\System32\Drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.) DRV - (AvgLdx86) -- C:\Windows\System32\Drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.) DRV - (aswTdi) -- C:\Windows\System32\drivers\aswTdi.sys (ALWIL Software) DRV - (aswSP) -- C:\Windows\System32\drivers\aswSP.sys (ALWIL Software) DRV - (aswRdr) -- C:\Windows\System32\drivers\aswRdr.sys (ALWIL Software) DRV - (aswMonFlt) -- C:\Windows\System32\drivers\aswMonFlt.sys (ALWIL Software) DRV - (aswFsBlk) -- C:\Windows\System32\drivers\aswFsBlk.sys (ALWIL Software) DRV - (SASENUM) -- C:\Program Files\SUPERAntiSpyware\sasenum.sys ( SUPERAdBlocker.com and SUPERAntiSpyware.com) DRV - (SASDIFSV) -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com) DRV - (SASKUTIL) -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com) DRV - (prmvmouse) -- C:\Windows\System32\drivers\activmouse.sys (Promethean Technologies Ltd) DRV - (ActivHidSerMini) -- C:\Windows\System32\drivers\activhidsermini.sys (Promethean Technologies Ltd) DRV - (eppvad_simple) -- C:\Windows\System32\drivers\EMP_UDAU.sys (SEIKO EPSON CORPORATION) DRV - (igfx) -- C:\Windows\System32\drivers\igdkmd32.sys (Intel Corporation) DRV - (NETw4v32) Intel(R) -- C:\Windows\System32\drivers\NETw4v32.sys (Intel Corporation) DRV - (tos_sps32) -- C:\Windows\system32\DRIVERS\tos_sps32.sys (TOSHIBA Corporation) DRV - (SynTP) -- C:\Windows\System32\drivers\SynTP.sys (Synaptics, Inc.) DRV - (tifm21) -- C:\Windows\System32\drivers\tifm21.sys (Texas Instruments) DRV - (yukonwlh) -- C:\Windows\System32\drivers\yk60x86.sys (Marvell) DRV - (KR3NPXP) -- C:\Windows\system32\drivers\kr3npxp.sys (TOSHIBA CORPORATION) DRV - (KR10N) -- C:\Windows\system32\drivers\kr10n.sys (TOSHIBA CORPORATION) DRV - (KR10I) -- C:\Windows\system32\drivers\kr10i.sys (TOSHIBA CORPORATION) DRV - (AgereSoftModem) -- C:\Windows\System32\drivers\AGRSM.sys (Agere Systems) DRV - (FwLnk) -- C:\Windows\System32\drivers\FwLnk.sys (TOSHIBA Corporation) DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation) DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.) DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex) DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.) DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.) DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation) DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.) DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.) DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd) DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation) DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.) DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.) DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation) DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation) DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH) DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems) DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation) DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.) DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.) DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic) DRV - (SiSRaid2) -- C:\Windows\system32\drivers\sisraid2.sys (Silicon Integrated Systems Corp.) DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company) DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.) DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.) DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.) DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic) DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic) DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic) DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic) DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation) DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic) DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Logic Corporation) DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.) DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.) DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.) DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.) DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.) DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.) DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies) DRV - (tdcmdpst) -- C:\Windows\System32\drivers\tdcmdpst.sys (TOSHIBA Corporation.) DRV - (TVALZ) -- C:\Windows\system32\DRIVERS\TVALZ_O.SYS (TOSHIBA Corporation) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomSearch = http://us.rd.yahoo.com/customize/ie/defaults/cs/msgr8/*http://www.yahoo.com/ext/search/search.html IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:5577 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultenginename: "Yahoo! Search" FF - prefs.js..browser.search.defaulturl: "http://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p=" FF - prefs.js..browser.search.selectedEngine: "Bing" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://weather.yahoo.com/forecast/USLA0319_f.html" FF - prefs.js..extensions.enabledItems: artur.dubovoy@gmail.com:2.0.6 FF - prefs.js..extensions.enabledItems: moveplayer@movenetworks.com:1.0.0.07076007 FF - prefs.js..extensions.enabledItems: {5b1fdac4-a239-4933-9c52-b65a2a720b75}:2.3 FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.3.20100310105313 FF - prefs.js..extensions.enabledItems: DeviceDetection@logitech.com:1.0.176.0 FF - prefs.js..extensions.enabledItems: {c2db4fe6-8409-45ce-8010-189a7b5cce86}:2.6.0.15 FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:9.0.0.825 FF - prefs.js..extensions.enabledItems: avg@igeared:3.011.025.005 FF - prefs.js..keyword.URL: "http://us.yhs.search.yahoo.com/avg/search?fr=yhs-avgb&type=yahoo_avg_hs2-tb-web_us&p=" FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010/07/01 13:23:25 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared [2010/06/30 12:26:11 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/06/29 19:34:40 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/06/29 19:34:40 | 000,000,000 | ---D | M] [2009/03/08 13:09:11 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Extensions [2009/03/08 13:09:11 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Extensions\mozswing@mozswing.org [2010/07/02 01:07:02 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions [2010/05/30 11:25:48 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2008/08/23 16:46:10 | 000,000,000 | ---D | M] (Picnik) -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\{5b1fdac4-a239-4933-9c52-b65a2a720b75} [2010/03/24 19:21:33 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2010/04/29 17:24:03 | 000,000,000 | ---D | M] (NCH Toolbar) -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\{c2db4fe6-8409-45ce-8010-189a7b5cce86} [2010/05/30 11:25:41 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\artur.dubovoy@gmail.com [2010/04/05 13:51:59 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\DeviceDetection@logitech.com [2008/02/15 22:28:12 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\moveplayer@movenetworks.com [2010/04/06 02:49:06 | 000,001,820 | ---- | M] () -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\searchplugins\bing.xml [2010/04/06 02:50:35 | 000,002,270 | ---- | M] () -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\searchplugins\photobucket.xml [2007/11/26 06:15:09 | 000,002,386 | ---- | M] () -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\searchplugins\siteadvisor.xml [2010/06/30 19:47:42 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010/01/21 16:04:41 | 000,000,000 | ---D | M] (Smart Notebook Extension) -- C:\Program Files\Mozilla Firefox\extensions\{D6D05E6F-D5C1-4e03-8E33-73F92B05E262} [2008/08/27 21:15:44 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org [2007/12/19 07:57:38 | 000,310,272 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npGoogleGadgetPluginFirefoxWin.dll O1 HOSTS File: ([2010/02/07 14:02:57 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.) O2 - BHO: (CIEDownload Object) - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} - C:\Program Files\SMART Technologies\Notebook Software\NotebookPlugin.dll (SMART Technologies ULC.) O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () O4 - HKLM..\Run: [00TCrdMain] C:\Program Files\Toshiba\FlashCards\TCrdMain.exe (TOSHIBA Corporation) O4 - HKLM..\Run: [ActivControl] C:\Program Files\Activ Software\ActivDriver\ActivControl2.exe (Promethean Technologies Group Ltd) O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.) O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software) O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [Camera Assistant Software] C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe (Chicony) O4 - HKLM..\Run: [CamWizard] C:\Program Files\Common Files\Logitech\QCDRV\BIN\CamWizrd.exe (Logitech Inc.) O4 - HKLM..\Run: [EPSON_UD_START] C:\Program Files\EPSON Projector\EPSON USB Display V1.4\EMP_UD.exe (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [GoBoingo] C:\Program Files\Alltel\GoBoingo\AlltelWifi.exe (Boingo Wireless, Inc.) O4 - HKLM..\Run: [HSON] C:\Program Files\Toshiba\TBS\HSON.exe (TOSHIBA Corporation) O4 - HKLM..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe (Logitech Inc.) O4 - HKLM..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe (Logitech Inc.) O4 - HKLM..\Run: [LVCOMSX] C:\Windows\System32\LVCOMSX.EXE (Logitech Inc.) O4 - HKLM..\Run: [sealmon.exe] C:\Program Files\Oracle\Information Rights Management\Desktop\sealmon.exe (Oracle Corporation) O4 - HKLM..\Run: [SmoothView] C:\Program Files\Toshiba\SmoothView\SmoothView.exe (TOSHIBA Corporation) O4 - HKLM..\Run: [TPwrMain] C:\Program Files\Toshiba\Power Saver\TPwrMain.exe (TOSHIBA Corporation) O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - HKLM..\Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdSync.exe (Microsoft Corporation) O4 - HKCU..\Run: [LogitechSoftwareUpdate] C:\Program Files\Logitech\Video\ManifestEngine.exe (Logitech Inc.) O4 - HKCU..\Run: [TOSCDSPD] File not found O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.) O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.87.68.166 68.87.74.166 O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation) O20 - AppInit_DLLs: (avgrsstx.dll) - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com) O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\Windows\System32\igfxdev.dll (Intel Corporation) O24 - Desktop WallPaper: C:\Users\Smashley\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg O24 - Desktop BackupWallPaper: C:\Users\Smashley\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com) O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{0aea8497-2f57-11dd-82ed-00a0d17cf124}\Shell\AutoRun\command - "" = E:\Player\DVR_Player.exe ..\20 -- File not found O33 - MountPoints2\{16e78b7b-4f5a-11df-a01c-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{4b0432f2-2436-11df-b00a-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{4b0432fd-2436-11df-b00a-7a8020000200}\Shell - "" = AutoRun O33 - MountPoints2\{4db79140-72ee-11de-8041-7a8020000200}\Shell - "" = AutoRun O33 - MountPoints2\{5df7010f-dc25-11dd-b09c-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{8ba3e4b5-b470-11de-8642-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{d9f2e680-af89-11de-ace1-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{f27f8b42-47e1-11de-a951-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{f27f8bba-47e1-11de-a951-7a8020000200}\Shell - "" = AutoRun O33 - MountPoints2\F\Shell - "" = AutoRun O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\LaunchU3.exe -- File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: FastUserSwitchingCompatibility - File not found NetSvcs: Ias - C:\Windows\System32\ias [2008/08/04 01:08:07 | 000,000,000 | ---D | M] NetSvcs: Nla - File not found NetSvcs: Ntmssvc - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: SRService - File not found NetSvcs: Wmi - C:\Windows\System32\wmi.dll (Microsoft Corporation) NetSvcs: WmdmPmSp - File not found NetSvcs: LogonHours - File not found NetSvcs: PCAudit - File not found NetSvcs: helpsvc - File not found NetSvcs: uploadmgr - File not found Drivers32: aux - C:\Windows\System32\wdmaud.drv (Microsoft Corporation) Drivers32: midi - C:\Windows\System32\wdmaud.drv (Microsoft Corporation) Drivers32: midimapper - C:\Windows\System32\midimap.dll (Microsoft Corporation) Drivers32: mixer - C:\Windows\System32\wdmaud.drv (Microsoft Corporation) Drivers32: msacm.dvacm - C:\Program Files\Common Files\Ulead Systems\vio\DVACM.acm (Ulead Systems, Inc.) Drivers32: msacm.imaadpcm - C:\Windows\System32\imaadp32.acm (Microsoft Corporation) Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.msadpcm - C:\Windows\System32\msadp32.acm (Microsoft Corporation) Drivers32: msacm.msg711 - C:\Windows\System32\msg711.acm (Microsoft Corporation) Drivers32: msacm.msgsm610 - C:\Windows\System32\msgsm32.acm (Microsoft Corporation) Drivers32: MSVideo - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation) Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation) Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.) Drivers32: vidc.DIVX - C:\Windows\System32\DivX.dll (DivX, Inc.) Drivers32: VIDC.I420 - C:\Windows\System32\lvcodec2.dll (Logitech Inc.) Drivers32: VIDC.IYUV - C:\Windows\System32\iyuv_32.dll (Microsoft Corporation) Drivers32: vidc.mrle - C:\Windows\System32\msrle32.dll (Microsoft Corporation) Drivers32: vidc.msvc - C:\Windows\System32\msvidc32.dll (Microsoft Corporation) Drivers32: vidc.tscc - C:\Windows\System32\tsccvid.dll (TechSmith Corporation) Drivers32: VIDC.UYVY - C:\Windows\System32\msyuv.dll (Microsoft Corporation) Drivers32: vidc.VP60 - C:\Windows\System32\vp6vfw.dll (On2.com) Drivers32: vidc.VP61 - C:\Windows\System32\vp6vfw.dll (On2.com) Drivers32: VIDC.WMV3 - C:\Windows\System32\wmv9vcm.dll (Microsoft Corporation) Drivers32: VIDC.YUY2 - C:\Windows\System32\msyuv.dll (Microsoft Corporation) Drivers32: vidc.yv12 - C:\Windows\System32\DivX.dll (DivX, Inc.) Drivers32: VIDC.YVU9 - C:\Windows\System32\tsbyuv.dll (Microsoft Corporation) Drivers32: VIDC.YVYU - C:\Windows\System32\msyuv.dll (Microsoft Corporation) Drivers32: wave - C:\Windows\System32\wdmaud.drv (Microsoft Corporation) Drivers32: wavemapper - C:\Windows\System32\msacm32.drv (Microsoft Corporation) CREATERESTOREPOINT Error creating restore point. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010/07/02 01:30:48 | 000,000,000 | -H-D | C] -- C:\Program Files\Temp [2010/07/02 00:40:32 | 000,000,000 | ---D | C] -- C:\Users\Smashley\Desktop\Virus Medicine [2010/07/01 18:37:13 | 000,000,000 | ---D | C] -- C:\Windows\System32\x64 [2010/07/01 18:37:12 | 000,920,088 | ---- | C] (Intel® Corporation) -- C:\Windows\System32\igxpun.exe [2010/07/01 16:23:27 | 000,000,000 | ---D | C] -- C:\Intel [2010/07/01 13:18:34 | 000,012,464 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\avgrsstx.dll [2010/07/01 13:17:55 | 000,038,848 | ---- | C] (ALWIL Software) -- C:\Windows\avastSS.scr [2010/06/30 13:09:00 | 000,000,000 | ---D | C] -- C:\Users\Smashley\AppData\Local\AVG Security Toolbar [2010/06/30 12:30:31 | 000,000,000 | -H-D | C] -- C:\$AVG [2010/06/30 12:26:17 | 000,242,896 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgtdix.sys [2010/06/30 12:26:15 | 000,216,200 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgldx86.sys [2010/06/30 12:26:14 | 000,029,584 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgmfx86.sys [2010/06/30 12:26:13 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\Avg [2010/06/30 12:26:11 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG Security Toolbar [2010/06/29 23:21:03 | 000,000,000 | ---D | C] -- C:\Users\Smashley\AppData\Local\bdibbjahd [2010/06/24 03:00:48 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll [2010/06/24 03:00:47 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe [2010/06/24 03:00:47 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll [2010/06/23 00:23:25 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll [2010/06/23 00:23:24 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll [2010/06/18 01:55:36 | 000,000,000 | ---D | C] -- C:\Users\Smashley\Desktop\Gimp Brushes [2010/06/17 19:30:50 | 000,000,000 | ---D | C] -- C:\Users\Smashley\heart [2010/06/08 21:40:23 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll [2010/06/08 21:40:17 | 000,289,792 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll [2010/06/08 21:40:16 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll [2010/06/08 21:39:55 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2010/06/08 21:39:54 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll [2010/06/08 21:39:54 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2010/06/08 21:39:53 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2010/06/08 21:39:53 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2010/06/08 21:39:52 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll [2010/06/08 21:39:52 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2010/06/08 21:39:52 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll [2010/06/08 21:39:52 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll [2010/06/08 21:39:52 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2010/06/08 21:39:44 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2010/06/08 21:39:44 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe [2010/06/08 21:39:44 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll [2010/06/08 21:39:44 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll [2010/06/08 21:39:44 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe [2010/06/08 21:39:30 | 002,037,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2010/07/02 08:07:11 | 004,718,592 | -HS- | M] () -- C:\Users\Smashley\ntuser.dat [2010/07/02 08:01:42 | 000,759,570 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI [2010/07/02 08:01:42 | 000,641,920 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2010/07/02 08:01:42 | 000,119,480 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2010/07/02 07:07:26 | 000,016,384 | ---- | M] () -- C:\Windows\System32\Ikeext.etl [2010/07/02 07:07:15 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2010/07/02 06:55:39 | 000,000,376 | ---- | M] () -- C:\Windows\tasks\AWC Startup.job [2010/07/02 06:11:39 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2010/07/02 06:11:34 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2010/07/02 06:11:34 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2010/07/02 02:23:22 | 000,524,288 | -HS- | M] () -- C:\Users\Smashley\ntuser.dat{b1f1f7da-549f-11dd-88bd-001b778291ff}.TMContainer00000000000000000001.regtrans-ms [2010/07/02 02:23:22 | 000,065,536 | -HS- | M] () -- C:\Users\Smashley\ntuser.dat{b1f1f7da-549f-11dd-88bd-001b778291ff}.TM.blf [2010/07/02 02:23:17 | 002,616,904 | -H-- | M] () -- C:\Users\Smashley\AppData\Local\IconCache.db [2010/07/02 01:35:16 | 000,319,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\DIFxAPI.dll [2010/07/02 00:34:31 | 000,000,853 | ---- | M] () -- C:\Users\Smashley\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk [2010/07/01 18:59:07 | 000,000,680 | ---- | M] () -- C:\Users\Smashley\AppData\Local\d3d9caps.dat [2010/07/01 17:51:05 | 000,000,564 | -H-- | M] () -- C:\Windows\tasks\Norton Security Scan for Smashley.job [2010/07/01 13:18:38 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgtdix.sys [2010/07/01 13:18:34 | 000,012,464 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\avgrsstx.dll [2010/07/01 13:18:33 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgmfx86.sys [2010/07/01 13:18:23 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt [2010/07/01 13:17:49 | 061,560,572 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm [2010/07/01 13:15:18 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgldx86.sys [2010/06/30 22:43:57 | 000,000,275 | ---- | M] () -- C:\Windows\win.ini [2010/06/30 12:26:19 | 000,001,658 | ---- | M] () -- C:\Users\Public\Desktop\AVG Free 9.0.lnk [2010/06/30 12:26:14 | 000,113,461 | ---- | M] () -- C:\Windows\System32\drivers\Avg\iavichjw.avm [2010/06/30 12:26:13 | 006,061,540 | ---- | M] () -- C:\Windows\System32\drivers\Avg\avi7.avg [2010/06/30 12:26:13 | 000,492,629 | ---- | M] () -- C:\Windows\System32\drivers\Avg\miniavi.avg [2010/06/30 12:26:13 | 000,142,495 | ---- | M] () -- C:\Windows\System32\drivers\Avg\microavi.avg [2010/06/28 15:57:33 | 000,038,848 | ---- | M] (ALWIL Software) -- C:\Windows\avastSS.scr [2010/06/28 15:57:12 | 000,165,032 | ---- | M] (AVAST Software) -- C:\Windows\System32\aswBoot.exe [2010/06/28 15:37:52 | 000,046,672 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswTdi.sys [2010/06/28 15:37:30 | 000,165,456 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswSP.sys [2010/06/28 15:33:13 | 000,023,376 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswRdr.sys [2010/06/28 15:32:56 | 000,050,256 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswMonFlt.sys [2010/06/28 15:32:33 | 000,017,744 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswFsBlk.sys [2010/06/21 11:40:01 | 000,032,256 | ---- | M] () -- C:\Users\Smashley\Documents\Newest_Resume.doc [2010/06/21 11:02:01 | 000,035,840 | ---- | M] () -- C:\Users\Smashley\Documents\Resume for ULM-1.doc [2010/06/17 14:13:35 | 000,005,885 | ---- | M] () -- C:\Users\Smashley\.recently-used.xbel [2010/06/16 14:49:56 | 000,027,648 | ---- | M] () -- C:\Users\Smashley\Documents\HCG Recipes2.doc [2010/06/16 14:10:30 | 000,002,609 | ---- | M] () -- C:\Users\Smashley\Desktop\Microsoft Office Word 2003.lnk [2010/06/14 17:12:47 | 000,024,064 | ---- | M] () -- C:\Users\Smashley\Documents\HCG Recipes.doc [2010/06/14 14:15:29 | 000,669,167 | ---- | M] () -- C:\Users\Smashley\Desktop\Hcg Phase2 Recipes.pdf [2010/06/12 01:28:27 | 000,501,584 | ---- | M] () -- C:\Users\Smashley\AppData\Local\GDIPFONTCACHEV1.DAT [2010/06/12 01:24:24 | 001,182,888 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2010/06/10 01:54:24 | 000,000,909 | ---- | M] () -- C:\Users\Public\Desktop\GIMP 2.lnk [2010/06/08 22:49:05 | 000,001,711 | ---- | M] () -- C:\Users\Smashley\Desktop\LimeWire 5.5.9.lnk [2010/06/08 22:34:59 | 000,000,039 | ---- | M] () -- C:\Windows\vbaddin.ini [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010/06/30 12:26:19 | 000,001,658 | ---- | C] () -- C:\Users\Public\Desktop\AVG Free 9.0.lnk [2010/06/30 12:26:14 | 000,113,461 | ---- | C] () -- C:\Windows\System32\drivers\Avg\iavichjw.avm [2010/06/30 12:26:13 | 061,560,572 | ---- | C] () -- C:\Windows\System32\drivers\Avg\incavi.avm [2010/06/30 12:26:13 | 006,061,540 | ---- | C] () -- C:\Windows\System32\drivers\Avg\avi7.avg [2010/06/30 12:26:13 | 000,492,629 | ---- | C] () -- C:\Windows\System32\drivers\Avg\miniavi.avg [2010/06/30 12:26:13 | 000,142,495 | ---- | C] () -- C:\Windows\System32\drivers\Avg\microavi.avg [2010/06/29 23:38:34 | 000,000,680 | ---- | C] () -- C:\Users\Smashley\AppData\Local\d3d9caps.dat [2010/06/21 11:40:01 | 000,032,256 | ---- | C] () -- C:\Users\Smashley\Documents\Newest_Resume.doc [2010/06/17 14:13:35 | 000,005,885 | ---- | C] () -- C:\Users\Smashley\.recently-used.xbel [2010/06/16 14:49:55 | 000,027,648 | ---- | C] () -- C:\Users\Smashley\Documents\HCG Recipes2.doc [2010/06/14 17:12:44 | 000,024,064 | ---- | C] () -- C:\Users\Smashley\Documents\HCG Recipes.doc [2010/06/14 14:15:28 | 000,669,167 | ---- | C] () -- C:\Users\Smashley\Desktop\Hcg Phase2 Recipes.pdf [2010/06/08 22:49:05 | 000,001,711 | ---- | C] () -- C:\Users\Smashley\Desktop\LimeWire 5.5.9.lnk [2010/06/02 09:35:08 | 000,035,840 | ---- | C] () -- C:\Users\Smashley\Documents\Resume for ULM-1.doc [2010/04/29 17:12:02 | 000,165,376 | ---- | C] () -- C:\Windows\System32\unrar.dll [2010/04/05 15:01:51 | 000,009,255 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini [2009/11/30 12:55:39 | 000,000,751 | ---- | C] () -- C:\Windows\Bti.ini [2009/10/22 16:44:36 | 000,223,016 | ---- | C] () -- C:\Windows\libactivboardex.dll [2009/10/22 16:44:16 | 000,252,696 | ---- | C] () -- C:\Windows\ActivDRV.dll [2009/09/17 19:20:25 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll [2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll [2009/02/08 19:15:08 | 000,290,919 | ---- | C] () -- C:\Windows\System32\pythoncom21.dll [2009/02/08 19:15:08 | 000,057,344 | ---- | C] () -- C:\Windows\System32\PyWinTypes21.dll [2009/02/08 19:13:38 | 000,096,768 | ---- | C] () -- C:\Windows\SlantAdj.dll [2009/02/08 19:13:38 | 000,000,072 | R--- | C] () -- C:\Windows\System32\epDPE.ini [2009/02/08 18:45:15 | 000,000,171 | ---- | C] () -- C:\Windows\EPSON CX3200 Installer.ini [2008/04/30 21:16:30 | 000,000,067 | ---- | C] () -- C:\Windows\swupdate.INI [2008/02/11 19:55:18 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1437.dll [2008/01/24 10:58:36 | 000,028,124 | ---- | C] () -- C:\Windows\System32\jpn_lang_plusviewer.ini [2008/01/24 10:58:20 | 000,028,973 | ---- | C] () -- C:\Windows\System32\kor_lang_plusviewer.ini [2008/01/24 10:58:06 | 000,029,742 | ---- | C] () -- C:\Windows\System32\eng_lang_plusviewer.ini [2008/01/16 22:11:46 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI [2008/01/04 16:58:50 | 003,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll [2008/01/04 16:57:22 | 000,000,416 | ---- | C] () -- C:\Windows\System32\dtu100.dll.manifest [2008/01/04 16:57:22 | 000,000,416 | ---- | C] () -- C:\Windows\System32\dpl100.dll.manifest [2008/01/04 16:56:24 | 000,012,288 | ---- | C] () -- C:\Windows\System32\DivXWMPExtType.dll [2007/07/18 00:42:16 | 000,010,150 | ---- | C] () -- C:\Windows\System32\tosmreg.ini [2007/07/18 00:42:15 | 000,128,113 | ---- | C] () -- C:\Windows\System32\csellang.ini [2007/07/18 00:42:15 | 000,045,056 | ---- | C] () -- C:\Windows\System32\csellang.dll [2007/07/18 00:42:15 | 000,007,671 | ---- | C] () -- C:\Windows\System32\cseltbl.ini [2007/03/21 17:30:52 | 000,069,632 | ---- | C] () -- C:\Windows\System32\mp4dec2avi.dll [2007/03/06 14:49:42 | 000,204,800 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1227.dll [2007/03/02 14:01:09 | 000,204,800 | ---- | C] () -- C:\Windows\System32\IVIresizeW7.dll [2007/03/02 14:01:09 | 000,188,416 | ---- | C] () -- C:\Windows\System32\IVIresizePX.dll [2007/03/02 14:01:08 | 000,200,704 | ---- | C] () -- C:\Windows\System32\IVIresizeA6.dll [2007/03/02 14:01:08 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeP6.dll [2007/03/02 14:01:08 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeM6.dll [2007/03/02 14:01:08 | 000,020,480 | ---- | C] () -- C:\Windows\System32\IVIresize.dll [2007/02/28 15:47:07 | 000,000,000 | ---- | C] () -- C:\Windows\NDSTray.INI [2006/12/05 16:05:06 | 000,114,688 | ---- | C] () -- C:\Windows\System32\TosBtAcc.dll [2006/11/02 07:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll [2006/11/02 02:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini [2006/03/09 13:58:00 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll [2005/07/23 00:30:20 | 000,065,536 | ---- | C] () -- C:\Windows\System32\TosCommAPI.dll [2004/05/31 15:39:46 | 000,045,056 | ---- | C] () -- C:\Windows\System32\rfg726.dll [2004/01/19 18:17:58 | 000,356,352 | ---- | C] () -- C:\Windows\System32\mwmp4dec.dll [2003/03/24 05:03:00 | 000,279,552 | ---- | C] () -- C:\Windows\System32\FGWVB32.DLL [2003/01/07 16:05:08 | 000,002,695 | ---- | C] () -- C:\Windows\System32\OUTLPERF.INI [2002/12/11 19:19:34 | 000,708,608 | ---- | C] () -- C:\Windows\System32\ltcry13n.dll [2002/12/11 19:19:34 | 000,147,456 | ---- | C] () -- C:\Windows\System32\lttls13n.dll [2000/04/12 17:28:12 | 000,118,784 | ---- | C] () -- C:\Windows\System32\lfkodak.dll [2000/04/12 17:24:10 | 000,338,944 | ---- | C] () -- C:\Windows\System32\lffpx7.dll [1996/02/23 16:34:48 | 000,014,629 | ---- | C] () -- C:\Windows\System32\Declw.dll [1996/02/22 14:09:20 | 000,032,256 | ---- | C] () -- C:\Windows\System32\Decln.dll [color=#E56717]========== LOP Check ==========[/color] [2010/04/07 12:27:49 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\ACTIV Software [2008/10/19 02:50:22 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Azureus [2009/04/17 23:56:44 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\EPSON [2008/05/14 21:23:15 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\GameHouse [2010/04/05 15:40:47 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\GetRightToGo [2010/06/17 14:13:35 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\gtk-2.0 [2010/05/06 07:21:18 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Image Zone Express [2010/03/30 06:42:35 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\IObit [2009/02/17 10:54:40 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\IrfanView [2008/03/12 02:20:13 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\iWinArcade [2010/04/05 14:02:46 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Leadertech [2010/06/10 23:10:11 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\LimeWire [2008/05/14 21:25:12 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\My Games [2008/02/24 20:11:42 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\PlayFirst [2008/12/01 01:29:56 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Printer Info Cache [2010/04/08 10:07:48 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Promethean [2008/11/04 23:53:00 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\River Past G5 [2008/10/27 23:34:39 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Skinux [2010/01/21 16:05:30 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\SMART Technologies Inc [2009/05/30 15:20:41 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Smith Micro [2007/12/04 08:21:43 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Template [2009/01/21 02:23:08 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\TOSHIBA [2009/01/22 10:59:14 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\WinBatch [2010/07/02 06:55:39 | 000,000,376 | ---- | M] () -- C:\Windows\Tasks\AWC Startup.job [2010/07/02 02:23:37 | 000,032,522 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< >[/color] [color=#A23BEC]< %SYSTEMDRIVE%\*.* >[/color] [2009/04/11 01:36:36 | 000,333,257 | RHS- | M] () -- C:\bootmgr [2007/02/28 14:08:50 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK [2006/09/18 16:43:37 | 000,000,010 | ---- | M] () -- C:\config.sys [2010/05/10 20:25:30 | 000,000,045 | ---- | M] () -- C:\error.log [2007/12/28 04:15:53 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010/07/02 00:34:34 | 000,000,109 | ---- | M] () -- C:\mbam-error.txt [2007/12/28 04:15:53 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010/07/02 07:06:49 | 1377,116,160 | -HS- | M] () -- C:\pagefile.sys [2010/02/07 14:03:50 | 000,002,472 | ---- | M] () -- C:\rapport.txt [2008/05/04 16:12:59 | 000,000,162 | ---- | M] () -- C:\YServer.txt [color=#A23BEC]< %systemroot%\system32\Spool\prtprocs\w32x86\*.dll >[/color] [2008/08/12 11:58:10 | 000,314,880 | ---- | M] (Hewlett-Packard Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\hpfpp082.dll [2008/01/19 02:34:28 | 000,089,600 | ---- | M] (Hewlett-Packard Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\HPZPPLHN.DLL [2006/11/02 07:35:48 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\jnwppr.dll [2007/04/09 14:23:54 | 000,028,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\mdippr.dll [2006/10/26 19:56:12 | 000,033,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll [color=#A23BEC]< %systemroot%\system32\*.wt >[/color] [color=#A23BEC]< %systemroot%\system32\*.ruy >[/color] [color=#A23BEC]< %systemroot%\Fonts\*.com >[/color] [2006/11/02 07:37:12 | 000,026,040 | ---- | M] () -- C:\Windows\Fonts\GlobalMonospace.CompositeFont [2006/11/02 07:37:12 | 000,026,489 | ---- | M] () -- C:\Windows\Fonts\GlobalSansSerif.CompositeFont [2006/11/02 07:37:12 | 000,029,779 | ---- | M] () -- C:\Windows\Fonts\GlobalSerif.CompositeFont [2009/09/20 10:52:30 | 000,037,665 | ---- | M] () -- C:\Windows\Fonts\GlobalUserInterface.CompositeFont [color=#A23BEC]< %systemroot%\Fonts\*.dll >[/color] [color=#A23BEC]< %systemroot%\system32\spool\prtprocs\w32x86\*.tmp >[/color] [color=#A23BEC]< %systemroot%\*. /mp /s >[/color] [color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color] [color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color] [color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color] [2007/02/28 14:08:36 | 006,602,752 | ---- | M] () -- C:\Windows\System32\config\COMPONENTS.SAV [2007/02/28 14:08:34 | 000,102,400 | ---- | M] () -- C:\Windows\System32\config\DEFAULT.SAV [2007/02/28 14:08:36 | 000,020,480 | ---- | M] () -- C:\Windows\System32\config\SECURITY.SAV [2007/02/28 14:08:46 | 015,556,608 | ---- | M] () -- C:\Windows\System32\config\SOFTWARE.SAV [2007/02/28 14:08:48 | 006,012,928 | ---- | M] () -- C:\Windows\System32\config\SYSTEM.SAV [color=#A23BEC]< %systemroot%\system32\user32.dll /md5 >[/color] [2009/04/11 01:28:25 | 000,627,712 | ---- | M] (Microsoft Corporation) MD5=75510147B94598407666F4802797C75A -- C:\Windows\System32\user32.dll [color=#A23BEC]< %systemroot%\system32\ws2_32.dll /md5 >[/color] [2008/01/19 02:37:09 | 000,179,200 | ---- | M] (Microsoft Corporation) MD5=B304D47D5744BA20FCB99FB8B2C07B0B -- C:\Windows\System32\ws2_32.dll [color=#A23BEC]< %systemroot%\system32\ws2help.dll /md5 >[/color] [2006/11/02 04:44:30 | 000,004,608 | ---- | M] (Microsoft Corporation) MD5=17C0671BF57057108A6D949510EE42C8 -- C:\Windows\System32\ws2help.dll [color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >[/color] [color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >[/color] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2010-07-01 23:39:21 < End of report > DRV - (AvgTdiX) -- C:\Windows\System32\Drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.) DRV - (AvgMfx86) -- C:\Windows\System32\Drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.) DRV - (AvgLdx86) -- C:\Windows\System32\Drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.) DRV - (aswTdi) -- C:\Windows\System32\drivers\aswTdi.sys (ALWIL Software) DRV - (aswSP) -- C:\Windows\System32\drivers\aswSP.sys (ALWIL Software) DRV - (aswRdr) -- C:\Windows\System32\drivers\aswRdr.sys (ALWIL Software) DRV - (aswMonFlt) -- C:\Windows\System32\drivers\aswMonFlt.sys (ALWIL Software) DRV - (aswFsBlk) -- C:\Windows\System32\drivers\aswFsBlk.sys (ALWIL Software) DRV - (SASENUM) -- C:\Program Files\SUPERAntiSpyware\sasenum.sys ( SUPERAdBlocker.com and SUPERAntiSpyware.com) DRV - (SASDIFSV) -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com) DRV - (SASKUTIL) -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com) DRV - (prmvmouse) -- C:\Windows\System32\drivers\activmouse.sys (Promethean Technologies Ltd) DRV - (ActivHidSerMini) -- C:\Windows\System32\drivers\activhidsermini.sys (Promethean Technologies Ltd) DRV - (eppvad_simple) -- C:\Windows\System32\drivers\EMP_UDAU.sys (SEIKO EPSON CORPORATION) DRV - (igfx) -- C:\Windows\System32\drivers\igdkmd32.sys (Intel Corporation) DRV - (NETw4v32) Intel(R) -- C:\Windows\System32\drivers\NETw4v32.sys (Intel Corporation) DRV - (tos_sps32) -- C:\Windows\system32\DRIVERS\tos_sps32.sys (TOSHIBA Corporation) DRV - (SynTP) -- C:\Windows\System32\drivers\SynTP.sys (Synaptics, Inc.) DRV - (tifm21) -- C:\Windows\System32\drivers\tifm21.sys (Texas Instruments) DRV - (yukonwlh) -- C:\Windows\System32\drivers\yk60x86.sys (Marvell) DRV - (KR3NPXP) -- C:\Windows\system32\drivers\kr3npxp.sys (TOSHIBA CORPORATION) DRV - (KR10N) -- C:\Windows\system32\drivers\kr10n.sys (TOSHIBA CORPORATION) DRV - (KR10I) -- C:\Windows\system32\drivers\kr10i.sys (TOSHIBA CORPORATION) DRV - (AgereSoftModem) -- C:\Windows\System32\drivers\AGRSM.sys (Agere Systems) DRV - (FwLnk) -- C:\Windows\System32\drivers\FwLnk.sys (TOSHIBA Corporation) DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation) DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.) DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex) DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.) DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.) DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation) DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.) DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.) DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd) DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation) DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.) DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.) DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation) DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation) DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH) DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems) DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation) DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.) DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.) DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic) DRV - (SiSRaid2) -- C:\Windows\system32\drivers\sisraid2.sys (Silicon Integrated Systems Corp.) DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company) DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.) DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.) DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.) DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic) DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic) DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic) DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic) DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation) DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic) DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Logic Corporation) DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.) DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.) DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.) DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.) DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.) DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.) DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies) DRV - (tdcmdpst) -- C:\Windows\System32\drivers\tdcmdpst.sys (TOSHIBA Corporation.) DRV - (TVALZ) -- C:\Windows\system32\DRIVERS\TVALZ_O.SYS (TOSHIBA Corporation) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomSearch = http://us.rd.yahoo.com/customize/ie/defaults/cs/msgr8/*http://www.yahoo.com/ext/search/search.html IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:5577 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultenginename: "Yahoo! Search" FF - prefs.js..browser.search.defaulturl: "http://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p=" FF - prefs.js..browser.search.selectedEngine: "Bing" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://weather.yahoo.com/forecast/USLA0319_f.html" FF - prefs.js..extensions.enabledItems: artur.dubovoy@gmail.com:2.0.6 FF - prefs.js..extensions.enabledItems: moveplayer@movenetworks.com:1.0.0.07076007 FF - prefs.js..extensions.enabledItems: {5b1fdac4-a239-4933-9c52-b65a2a720b75}:2.3 FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.3.20100310105313 FF - prefs.js..extensions.enabledItems: DeviceDetection@logitech.com:1.0.176.0 FF - prefs.js..extensions.enabledItems: {c2db4fe6-8409-45ce-8010-189a7b5cce86}:2.6.0.15 FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:9.0.0.825 FF - prefs.js..extensions.enabledItems: avg@igeared:3.011.025.005 FF - prefs.js..keyword.URL: "http://us.yhs.search.yahoo.com/avg/search?fr=yhs-avgb&type=yahoo_avg_hs2-tb-web_us&p=" FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010/07/01 13:23:25 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared [2010/06/30 12:26:11 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/06/29 19:34:40 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/06/29 19:34:40 | 000,000,000 | ---D | M] [2009/03/08 13:09:11 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Extensions [2009/03/08 13:09:11 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Extensions\mozswing@mozswing.org [2010/07/02 01:07:02 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions [2010/05/30 11:25:48 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2008/08/23 16:46:10 | 000,000,000 | ---D | M] (Picnik) -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\{5b1fdac4-a239-4933-9c52-b65a2a720b75} [2010/03/24 19:21:33 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2010/04/29 17:24:03 | 000,000,000 | ---D | M] (NCH Toolbar) -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\{c2db4fe6-8409-45ce-8010-189a7b5cce86} [2010/05/30 11:25:41 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\artur.dubovoy@gmail.com [2010/04/05 13:51:59 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\DeviceDetection@logitech.com [2008/02/15 22:28:12 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\moveplayer@movenetworks.com [2010/04/06 02:49:06 | 000,001,820 | ---- | M] () -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\searchplugins\bing.xml [2010/04/06 02:50:35 | 000,002,270 | ---- | M] () -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\searchplugins\photobucket.xml [2007/11/26 06:15:09 | 000,002,386 | ---- | M] () -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\searchplugins\siteadvisor.xml [2010/06/30 19:47:42 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010/01/21 16:04:41 | 000,000,000 | ---D | M] (Smart Notebook Extension) -- C:\Program Files\Mozilla Firefox\extensions\{D6D05E6F-D5C1-4e03-8E33-73F92B05E262} [2008/08/27 21:15:44 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org [2007/12/19 07:57:38 | 000,310,272 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npGoogleGadgetPluginFirefoxWin.dll O1 HOSTS File: ([2010/02/07 14:02:57 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.) O2 - BHO: (CIEDownload Object) - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} - C:\Program Files\SMART Technologies\Notebook Software\NotebookPlugin.dll (SMART Technologies ULC.) O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () O4 - HKLM..\Run: [00TCrdMain] C:\Program Files\Toshiba\FlashCards\TCrdMain.exe (TOSHIBA Corporation) O4 - HKLM..\Run: [ActivControl] C:\Program Files\Activ Software\ActivDriver\ActivControl2.exe (Promethean Technologies Group Ltd) O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.) O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software) O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [Camera Assistant Software] C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe (Chicony) O4 - HKLM..\Run: [CamWizard] C:\Program Files\Common Files\Logitech\QCDRV\BIN\CamWizrd.exe (Logitech Inc.) O4 - HKLM..\Run: [EPSON_UD_START] C:\Program Files\EPSON Projector\EPSON USB Display V1.4\EMP_UD.exe (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [GoBoingo] C:\Program Files\Alltel\GoBoingo\AlltelWifi.exe (Boingo Wireless, Inc.) O4 - HKLM..\Run: [HSON] C:\Program Files\Toshiba\TBS\HSON.exe (TOSHIBA Corporation) O4 - HKLM..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe (Logitech Inc.) O4 - HKLM..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe (Logitech Inc.) O4 - HKLM..\Run: [LVCOMSX] C:\Windows\System32\LVCOMSX.EXE (Logitech Inc.) O4 - HKLM..\Run: [sealmon.exe] C:\Program Files\Oracle\Information Rights Management\Desktop\sealmon.exe (Oracle Corporation) O4 - HKLM..\Run: [SmoothView] C:\Program Files\Toshiba\SmoothView\SmoothView.exe (TOSHIBA Corporation) O4 - HKLM..\Run: [TPwrMain] C:\Program Files\Toshiba\Power Saver\TPwrMain.exe (TOSHIBA Corporation) O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - HKLM..\Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdSync.exe (Microsoft Corporation) O4 - HKCU..\Run: [LogitechSoftwareUpdate] C:\Program Files\Logitech\Video\ManifestEngine.exe (Logitech Inc.) O4 - HKCU..\Run: [TOSCDSPD] File not found O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.) O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.87.68.166 68.87.74.166 O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation) O20 - AppInit_DLLs: (avgrsstx.dll) - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com) O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\Windows\System32\igfxdev.dll (Intel Corporation) O24 - Desktop WallPaper: C:\Users\Smashley\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg O24 - Desktop BackupWallPaper: C:\Users\Smashley\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com) O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{0aea8497-2f57-11dd-82ed-00a0d17cf124}\Shell\AutoRun\command - "" = E:\Player\DVR_Player.exe ..\20 -- File not found O33 - MountPoints2\{16e78b7b-4f5a-11df-a01c-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{4b0432f2-2436-11df-b00a-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{4b0432fd-2436-11df-b00a-7a8020000200}\Shell - "" = AutoRun O33 - MountPoints2\{4db79140-72ee-11de-8041-7a8020000200}\Shell - "" = AutoRun O33 - MountPoints2\{5df7010f-dc25-11dd-b09c-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{8ba3e4b5-b470-11de-8642-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{d9f2e680-af89-11de-ace1-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{f27f8b42-47e1-11de-a951-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{f27f8bba-47e1-11de-a951-7a8020000200}\Shell - "" = AutoRun O33 - MountPoints2\F\Shell - "" = AutoRun O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\LaunchU3.exe -- File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010/07/02 01:30:48 | 000,000,000 | -H-D | C] -- C:\Program Files\Temp [2010/07/02 00:40:32 | 000,000,000 | ---D | C] -- C:\Users\Smashley\Desktop\Virus Medicine [2010/07/01 18:37:13 | 000,000,000 | ---D | C] -- C:\Windows\System32\x64 [2010/07/01 18:37:12 | 000,920,088 | ---- | C] (Intel® Corporation) -- C:\Windows\System32\igxpun.exe [2010/07/01 16:23:27 | 000,000,000 | ---D | C] -- C:\Intel [2010/07/01 13:18:34 | 000,012,464 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\avgrsstx.dll [2010/07/01 13:17:55 | 000,038,848 | ---- | C] (ALWIL Software) -- C:\Windows\avastSS.scr [2010/06/30 13:09:00 | 000,000,000 | ---D | C] -- C:\Users\Smashley\AppData\Local\AVG Security Toolbar [2010/06/30 12:30:31 | 000,000,000 | -H-D | C] -- C:\$AVG [2010/06/30 12:26:17 | 000,242,896 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgtdix.sys [2010/06/30 12:26:15 | 000,216,200 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgldx86.sys [2010/06/30 12:26:14 | 000,029,584 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgmfx86.sys [2010/06/30 12:26:13 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\Avg [2010/06/30 12:26:11 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG Security Toolbar [2010/06/29 23:21:03 | 000,000,000 | ---D | C] -- C:\Users\Smashley\AppData\Local\bdibbjahd [2010/06/24 03:00:48 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll [2010/06/24 03:00:47 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe [2010/06/24 03:00:47 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll [2010/06/23 00:23:25 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll [2010/06/23 00:23:24 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll [2010/06/18 01:55:36 | 000,000,000 | ---D | C] -- C:\Users\Smashley\Desktop\Gimp Brushes [2010/06/17 19:30:50 | 000,000,000 | ---D | C] -- C:\Users\Smashley\heart [2010/06/08 21:40:23 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll [2010/06/08 21:40:17 | 000,289,792 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll [2010/06/08 21:40:16 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll [2010/06/08 21:39:55 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2010/06/08 21:39:54 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll [2010/06/08 21:39:54 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2010/06/08 21:39:53 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2010/06/08 21:39:53 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2010/06/08 21:39:52 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll [2010/06/08 21:39:52 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2010/06/08 21:39:52 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll [2010/06/08 21:39:52 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll [2010/06/08 21:39:52 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2010/06/08 21:39:44 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2010/06/08 21:39:44 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe [2010/06/08 21:39:44 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll [2010/06/08 21:39:44 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll [2010/06/08 21:39:44 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe [2010/06/08 21:39:30 | 002,037,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2010/07/02 08:07:11 | 004,718,592 | -HS- | M] () -- C:\Users\Smashley\ntuser.dat [2010/07/02 08:01:42 | 000,759,570 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI [2010/07/02 08:01:42 | 000,641,920 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2010/07/02 08:01:42 | 000,119,480 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2010/07/02 07:07:26 | 000,016,384 | ---- | M] () -- C:\Windows\System32\Ikeext.etl [2010/07/02 07:07:15 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2010/07/02 06:55:39 | 000,000,376 | ---- | M] () -- C:\Windows\tasks\AWC Startup.job [2010/07/02 06:11:39 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2010/07/02 06:11:34 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2010/07/02 06:11:34 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2010/07/02 02:23:22 | 000,524,288 | -HS- | M] () -- C:\Users\Smashley\ntuser.dat{b1f1f7da-549f-11dd-88bd-001b778291ff}.TMContainer00000000000000000001.regtrans-ms [2010/07/02 02:23:22 | 000,065,536 | -HS- | M] () -- C:\Users\Smashley\ntuser.dat{b1f1f7da-549f-11dd-88bd-001b778291ff}.TM.blf [2010/07/02 02:23:17 | 002,616,904 | -H-- | M] () -- C:\Users\Smashley\AppData\Local\IconCache.db [2010/07/02 01:35:16 | 000,319,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\DIFxAPI.dll [2010/07/02 00:34:31 | 000,000,853 | ---- | M] () -- C:\Users\Smashley\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk [2010/07/01 18:59:07 | 000,000,680 | ---- | M] () -- C:\Users\Smashley\AppData\Local\d3d9caps.dat [2010/07/01 17:51:05 | 000,000,564 | -H-- | M] () -- C:\Windows\tasks\Norton Security Scan for Smashley.job [2010/07/01 13:18:38 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgtdix.sys [2010/07/01 13:18:34 | 000,012,464 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\avgrsstx.dll [2010/07/01 13:18:33 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgmfx86.sys [2010/07/01 13:18:23 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt [2010/07/01 13:17:49 | 061,560,572 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm [2010/07/01 13:15:18 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgldx86.sys [2010/06/30 22:43:57 | 000,000,275 | ---- | M] () -- C:\Windows\win.ini [2010/06/30 12:26:19 | 000,001,658 | ---- | M] () -- C:\Users\Public\Desktop\AVG Free 9.0.lnk [2010/06/30 12:26:14 | 000,113,461 | ---- | M] () -- C:\Windows\System32\drivers\Avg\iavichjw.avm [2010/06/30 12:26:13 | 006,061,540 | ---- | M] () -- C:\Windows\System32\drivers\Avg\avi7.avg [2010/06/30 12:26:13 | 000,492,629 | ---- | M] () -- C:\Windows\System32\drivers\Avg\miniavi.avg [2010/06/30 12:26:13 | 000,142,495 | ---- | M] () -- C:\Windows\System32\drivers\Avg\microavi.avg [2010/06/28 15:57:33 | 000,038,848 | ---- | M] (ALWIL Software) -- C:\Windows\avastSS.scr [2010/06/28 15:57:12 | 000,165,032 | ---- | M] (AVAST Software) -- C:\Windows\System32\aswBoot.exe [2010/06/28 15:37:52 | 000,046,672 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswTdi.sys [2010/06/28 15:37:30 | 000,165,456 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswSP.sys [2010/06/28 15:33:13 | 000,023,376 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswRdr.sys [2010/06/28 15:32:56 | 000,050,256 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswMonFlt.sys [2010/06/28 15:32:33 | 000,017,744 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswFsBlk.sys [2010/06/21 11:40:01 | 000,032,256 | ---- | M] () -- C:\Users\Smashley\Documents\Newest_Resume.doc [2010/06/21 11:02:01 | 000,035,840 | ---- | M] () -- C:\Users\Smashley\Documents\Resume for ULM-1.doc [2010/06/17 14:13:35 | 000,005,885 | ---- | M] () -- C:\Users\Smashley\.recently-used.xbel [2010/06/16 14:49:56 | 000,027,648 | ---- | M] () -- C:\Users\Smashley\Documents\HCG Recipes2.doc [2010/06/16 14:10:30 | 000,002,609 | ---- | M] () -- C:\Users\Smashley\Desktop\Microsoft Office Word 2003.lnk [2010/06/14 17:12:47 | 000,024,064 | ---- | M] () -- C:\Users\Smashley\Documents\HCG Recipes.doc [2010/06/14 14:15:29 | 000,669,167 | ---- | M] () -- C:\Users\Smashley\Desktop\Hcg Phase2 Recipes.pdf [2010/06/12 01:28:27 | 000,501,584 | ---- | M] () -- C:\Users\Smashley\AppData\Local\GDIPFONTCACHEV1.DAT [2010/06/12 01:24:24 | 001,182,888 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2010/06/10 01:54:24 | 000,000,909 | ---- | M] () -- C:\Users\Public\Desktop\GIMP 2.lnk [2010/06/08 22:49:05 | 000,001,711 | ---- | M] () -- C:\Users\Smashley\Desktop\LimeWire 5.5.9.lnk [2010/06/08 22:34:59 | 000,000,039 | ---- | M] () -- C:\Windows\vbaddin.ini [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010/06/30 12:26:19 | 000,001,658 | ---- | C] () -- C:\Users\Public\Desktop\AVG Free 9.0.lnk [2010/06/30 12:26:14 | 000,113,461 | ---- | C] () -- C:\Windows\System32\drivers\Avg\iavichjw.avm [2010/06/30 12:26:13 | 061,560,572 | ---- | C] () -- C:\Windows\System32\drivers\Avg\incavi.avm [2010/06/30 12:26:13 | 006,061,540 | ---- | C] () -- C:\Windows\System32\drivers\Avg\avi7.avg [2010/06/30 12:26:13 | 000,492,629 | ---- | C] () -- C:\Windows\System32\drivers\Avg\miniavi.avg [2010/06/30 12:26:13 | 000,142,495 | ---- | C] () -- C:\Windows\System32\drivers\Avg\microavi.avg [2010/06/29 23:38:34 | 000,000,680 | ---- | C] () -- C:\Users\Smashley\AppData\Local\d3d9caps.dat [2010/06/21 11:40:01 | 000,032,256 | ---- | C] () -- C:\Users\Smashley\Documents\Newest_Resume.doc [2010/06/17 14:13:35 | 000,005,885 | ---- | C] () -- C:\Users\Smashley\.recently-used.xbel [2010/06/16 14:49:55 | 000,027,648 | ---- | C] () -- C:\Users\Smashley\Documents\HCG Recipes2.doc [2010/06/14 17:12:44 | 000,024,064 | ---- | C] () -- C:\Users\Smashley\Documents\HCG Recipes.doc [2010/06/14 14:15:28 | 000,669,167 | ---- | C] () -- C:\Users\Smashley\Desktop\Hcg Phase2 Recipes.pdf [2010/06/08 22:49:05 | 000,001,711 | ---- | C] () -- C:\Users\Smashley\Desktop\LimeWire 5.5.9.lnk [2010/06/02 09:35:08 | 000,035,840 | ---- | C] () -- C:\Users\Smashley\Documents\Resume for ULM-1.doc [2010/04/29 17:12:02 | 000,165,376 | ---- | C] () -- C:\Windows\System32\unrar.dll [2010/04/05 15:01:51 | 000,009,255 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini [2009/11/30 12:55:39 | 000,000,751 | ---- | C] () -- C:\Windows\Bti.ini [2009/10/22 16:44:36 | 000,223,016 | ---- | C] () -- C:\Windows\libactivboardex.dll [2009/10/22 16:44:16 | 000,252,696 | ---- | C] () -- C:\Windows\ActivDRV.dll [2009/09/17 19:20:25 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll [2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll [2009/02/08 19:15:08 | 000,290,919 | ---- | C] () -- C:\Windows\System32\pythoncom21.dll [2009/02/08 19:15:08 | 000,057,344 | ---- | C] () -- C:\Windows\System32\PyWinTypes21.dll [2009/02/08 19:13:38 | 000,096,768 | ---- | C] () -- C:\Windows\SlantAdj.dll [2009/02/08 19:13:38 | 000,000,072 | R--- | C] () -- C:\Windows\System32\epDPE.ini [2009/02/08 18:45:15 | 000,000,171 | ---- | C] () -- C:\Windows\EPSON CX3200 Installer.ini [2008/04/30 21:16:30 | 000,000,067 | ---- | C] () -- C:\Windows\swupdate.INI [2008/02/11 19:55:18 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1437.dll [2008/01/24 10:58:36 | 000,028,124 | ---- | C] () -- C:\Windows\System32\jpn_lang_plusviewer.ini [2008/01/24 10:58:20 | 000,028,973 | ---- | C] () -- C:\Windows\System32\kor_lang_plusviewer.ini [2008/01/24 10:58:06 | 000,029,742 | ---- | C] () -- C:\Windows\System32\eng_lang_plusviewer.ini [2008/01/16 22:11:46 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI [2008/01/04 16:58:50 | 003,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll [2008/01/04 16:57:22 | 000,000,416 | ---- | C] () -- C:\Windows\System32\dtu100.dll.manifest [2008/01/04 16:57:22 | 000,000,416 | ---- | C] () -- C:\Windows\System32\dpl100.dll.manifest [2008/01/04 16:56:24 | 000,012,288 | ---- | C] () -- C:\Windows\System32\DivXWMPExtType.dll [2007/07/18 00:42:16 | 000,010,150 | ---- | C] () -- C:\Windows\System32\tosmreg.ini [2007/07/18 00:42:15 | 000,128,113 | ---- | C] () -- C:\Windows\System32\csellang.ini [2007/07/18 00:42:15 | 000,045,056 | ---- | C] () -- C:\Windows\System32\csellang.dll [2007/07/18 00:42:15 | 000,007,671 | ---- | C] () -- C:\Windows\System32\cseltbl.ini [2007/03/21 17:30:52 | 000,069,632 | ---- | C] () -- C:\Windows\System32\mp4dec2avi.dll [2007/03/06 14:49:42 | 000,204,800 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1227.dll [2007/03/02 14:01:09 | 000,204,800 | ---- | C] () -- C:\Windows\System32\IVIresizeW7.dll [2007/03/02 14:01:09 | 000,188,416 | ---- | C] () -- C:\Windows\System32\IVIresizePX.dll [2007/03/02 14:01:08 | 000,200,704 | ---- | C] () -- C:\Windows\System32\IVIresizeA6.dll [2007/03/02 14:01:08 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeP6.dll [2007/03/02 14:01:08 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeM6.dll [2007/03/02 14:01:08 | 000,020,480 | ---- | C] () -- C:\Windows\System32\IVIresize.dll [2007/02/28 15:47:07 | 000,000,000 | ---- | C] () -- C:\Windows\NDSTray.INI [2006/12/05 16:05:06 | 000,114,688 | ---- | C] () -- C:\Windows\System32\TosBtAcc.dll [2006/11/02 07:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll [2006/11/02 02:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini [2006/03/09 13:58:00 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll [2005/07/23 00:30:20 | 000,065,536 | ---- | C] () -- C:\Windows\System32\TosCommAPI.dll [2004/05/31 15:39:46 | 000,045,056 | ---- | C] () -- C:\Windows\System32\rfg726.dll [2004/01/19 18:17:58 | 000,356,352 | ---- | C] () -- C:\Windows\System32\mwmp4dec.dll [2003/03/24 05:03:00 | 000,279,552 | ---- | C] () -- C:\Windows\System32\FGWVB32.DLL [2003/01/07 16:05:08 | 000,002,695 | ---- | C] () -- C:\Windows\System32\OUTLPERF.INI [2002/12/11 19:19:34 | 000,708,608 | ---- | C] () -- C:\Windows\System32\ltcry13n.dll [2002/12/11 19:19:34 | 000,147,456 | ---- | C] () -- C:\Windows\System32\lttls13n.dll [2000/04/12 17:28:12 | 000,118,784 | ---- | C] () -- C:\Windows\System32\lfkodak.dll [2000/04/12 17:24:10 | 000,338,944 | ---- | C] () -- C:\Windows\System32\lffpx7.dll [1996/02/23 16:34:48 | 000,014,629 | ---- | C] () -- C:\Windows\System32\Declw.dll [1996/02/22 14:09:20 | 000,032,256 | ---- | C] () -- C:\Windows\System32\Decln.dll [color=#E56717]========== LOP Check ==========[/color] [2010/04/07 12:27:49 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\ACTIV Software [2008/10/19 02:50:22 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Azureus [2009/04/17 23:56:44 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\EPSON [2008/05/14 21:23:15 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\GameHouse [2010/04/05 15:40:47 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\GetRightToGo [2010/06/17 14:13:35 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\gtk-2.0 [2010/05/06 07:21:18 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Image Zone Express [2010/03/30 06:42:35 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\IObit [2009/02/17 10:54:40 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\IrfanView [2008/03/12 02:20:13 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\iWinArcade [2010/04/05 14:02:46 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Leadertech [2010/06/10 23:10:11 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\LimeWire [2008/05/14 21:25:12 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\My Games [2008/02/24 20:11:42 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\PlayFirst [2008/12/01 01:29:56 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Printer Info Cache [2010/04/08 10:07:48 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Promethean [2008/11/04 23:53:00 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\River Past G5 [2008/10/27 23:34:39 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Skinux [2010/01/21 16:05:30 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\SMART Technologies Inc [2009/05/30 15:20:41 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Smith Micro [2007/12/04 08:21:43 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Template [2009/01/21 02:23:08 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\TOSHIBA [2009/01/22 10:59:14 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\WinBatch [2010/07/02 06:55:39 | 000,000,376 | ---- | M] () -- C:\Windows\Tasks\AWC Startup.job [2010/07/02 02:23:37 | 000,032,522 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< >[/color] [color=#A23BEC]< %SYSTEMDRIVE%\*.* >[/color] [2009/04/11 01:36:36 | 000,333,257 | RHS- | M] () -- C:\bootmgr [2007/02/28 14:08:50 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK [2006/09/18 16:43:37 | 000,000,010 | ---- | M] () -- C:\config.sys [2010/05/10 20:25:30 | 000,000,045 | ---- | M] () -- C:\error.log [2007/12/28 04:15:53 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010/07/02 00:34:34 | 000,000,109 | ---- | M] () -- C:\mbam-error.txt [2007/12/28 04:15:53 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010/07/02 07:06:49 | 1377,116,160 | -HS- | M] () -- C:\pagefile.sys [2010/02/07 14:03:50 | 000,002,472 | ---- | M] () -- C:\rapport.txt [2008/05/04 16:12:59 | 000,000,162 | ---- | M] () -- C:\YServer.txt [color=#A23BEC]< %systemroot%\system32\Spool\prtprocs\w32x86\*.dll >[/color] [2008/08/12 11:58:10 | 000,314,880 | ---- | M] (Hewlett-Packard Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\hpfpp082.dll [2008/01/19 02:34:28 | 000,089,600 | ---- | M] (Hewlett-Packard Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\HPZPPLHN.DLL [2006/11/02 07:35:48 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\jnwppr.dll [2007/04/09 14:23:54 | 000,028,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\mdippr.dll [2006/10/26 19:56:12 | 000,033,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll [color=#A23BEC]< %systemroot%\system32\*.wt >[/color] [color=#A23BEC]< %systemroot%\system32\*.ruy >[/color] [color=#A23BEC]< %systemroot%\Fonts\*.com >[/color] [2006/11/02 07:37:12 | 000,026,040 | ---- | M] () -- C:\Windows\Fonts\GlobalMonospace.CompositeFont [2006/11/02 07:37:12 | 000,026,489 | ---- | M] () -- C:\Windows\Fonts\GlobalSansSerif.CompositeFont [2006/11/02 07:37:12 | 000,029,779 | ---- | M] () -- C:\Windows\Fonts\GlobalSerif.CompositeFont [2009/09/20 10:52:30 | 000,037,665 | ---- | M] () -- C:\Windows\Fonts\GlobalUserInterface.CompositeFont [color=#A23BEC]< %systemroot%\Fonts\*.dll >[/color] [color=#A23BEC]< %systemroot%\system32\spool\prtprocs\w32x86\*.tmp >[/color] [color=#A23BEC]< %systemroot%\*. /mp /s >[/color] [color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color] [color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color] [color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color] [2007/02/28 14:08:36 | 006,602,752 | ---- | M] () -- C:\Windows\System32\config\COMPONENTS.SAV [2007/02/28 14:08:34 | 000,102,400 | ---- | M] () -- C:\Windows\System32\config\DEFAULT.SAV [2007/02/28 14:08:36 | 000,020,480 | ---- | M] () -- C:\Windows\System32\config\SECURITY.SAV [2007/02/28 14:08:46 | 015,556,608 | ---- | M] () -- C:\Windows\System32\config\SOFTWARE.SAV [2007/02/28 14:08:48 | 006,012,928 | ---- | M] () -- C:\Windows\System32\config\SYSTEM.SAV [color=#A23BEC]< %systemroot%\system32\user32.dll /md5 >[/color] [2009/04/11 01:28:25 | 000,627,712 | ---- | M] (Microsoft Corporation) MD5=75510147B94598407666F4802797C75A -- C:\Windows\System32\user32.dll [color=#A23BEC]< %systemroot%\system32\ws2_32.dll /md5 >[/color] [2008/01/19 02:37:09 | 000,179,200 | ---- | M] (Microsoft Corporation) MD5=B304D47D5744BA20FCB99FB8B2C07B0B -- C:\Windows\System32\ws2_32.dll [color=#A23BEC]< %systemroot%\system32\ws2help.dll /md5 >[/color] [2006/11/02 04:44:30 | 000,004,608 | ---- | M] (Microsoft Corporation) MD5=17C0671BF57057108A6D949510EE42C8 -- C:\Windows\System32\ws2help.dll [color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >[/color] [color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >[/color] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2010-07-01 23:39:21 < End of report > DRV - (AvgTdiX) -- C:\Windows\System32\Drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.) DRV - (AvgMfx86) -- C:\Windows\System32\Drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.) DRV - (AvgLdx86) -- C:\Windows\System32\Drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.) DRV - (aswTdi) -- C:\Windows\System32\drivers\aswTdi.sys (ALWIL Software) DRV - (aswSP) -- C:\Windows\System32\drivers\aswSP.sys (ALWIL Software) DRV - (aswRdr) -- C:\Windows\System32\drivers\aswRdr.sys (ALWIL Software) DRV - (aswMonFlt) -- C:\Windows\System32\drivers\aswMonFlt.sys (ALWIL Software) DRV - (aswFsBlk) -- C:\Windows\System32\drivers\aswFsBlk.sys (ALWIL Software) DRV - (SASENUM) -- C:\Program Files\SUPERAntiSpyware\sasenum.sys ( SUPERAdBlocker.com and SUPERAntiSpyware.com) DRV - (SASDIFSV) -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com) DRV - (SASKUTIL) -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com) DRV - (prmvmouse) -- C:\Windows\System32\drivers\activmouse.sys (Promethean Technologies Ltd) DRV - (ActivHidSerMini) -- C:\Windows\System32\drivers\activhidsermini.sys (Promethean Technologies Ltd) DRV - (eppvad_simple) -- C:\Windows\System32\drivers\EMP_UDAU.sys (SEIKO EPSON CORPORATION) DRV - (igfx) -- C:\Windows\System32\drivers\igdkmd32.sys (Intel Corporation) DRV - (NETw4v32) Intel(R) -- C:\Windows\System32\drivers\NETw4v32.sys (Intel Corporation) DRV - (tos_sps32) -- C:\Windows\system32\DRIVERS\tos_sps32.sys (TOSHIBA Corporation) DRV - (SynTP) -- C:\Windows\System32\drivers\SynTP.sys (Synaptics, Inc.) DRV - (tifm21) -- C:\Windows\System32\drivers\tifm21.sys (Texas Instruments) DRV - (yukonwlh) -- C:\Windows\System32\drivers\yk60x86.sys (Marvell) DRV - (KR3NPXP) -- C:\Windows\system32\drivers\kr3npxp.sys (TOSHIBA CORPORATION) DRV - (KR10N) -- C:\Windows\system32\drivers\kr10n.sys (TOSHIBA CORPORATION) DRV - (KR10I) -- C:\Windows\system32\drivers\kr10i.sys (TOSHIBA CORPORATION) DRV - (AgereSoftModem) -- C:\Windows\System32\drivers\AGRSM.sys (Agere Systems) DRV - (FwLnk) -- C:\Windows\System32\drivers\FwLnk.sys (TOSHIBA Corporation) DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation) DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.) DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex) DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.) DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.) DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation) DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.) DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.) DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd) DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation) DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.) DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.) DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation) DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation) DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH) DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems) DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation) DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.) DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.) DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic) DRV - (SiSRaid2) -- C:\Windows\system32\drivers\sisraid2.sys (Silicon Integrated Systems Corp.) DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company) DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.) DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.) DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.) DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic) DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic) DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic) DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic) DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation) DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic) DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Logic Corporation) DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.) DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.) DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.) DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.) DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.) DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.) DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies) DRV - (tdcmdpst) -- C:\Windows\System32\drivers\tdcmdpst.sys (TOSHIBA Corporation.) DRV - (TVALZ) -- C:\Windows\system32\DRIVERS\TVALZ_O.SYS (TOSHIBA Corporation) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomSearch = http://us.rd.yahoo.com/customize/ie/defaults/cs/msgr8/*http://www.yahoo.com/ext/search/search.html IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:5577 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultenginename: "Yahoo! Search" FF - prefs.js..browser.search.defaulturl: "http://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p=" FF - prefs.js..browser.search.selectedEngine: "Bing" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://weather.yahoo.com/forecast/USLA0319_f.html" FF - prefs.js..extensions.enabledItems: artur.dubovoy@gmail.com:2.0.6 FF - prefs.js..extensions.enabledItems: moveplayer@movenetworks.com:1.0.0.07076007 FF - prefs.js..extensions.enabledItems: {5b1fdac4-a239-4933-9c52-b65a2a720b75}:2.3 FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.3.20100310105313 FF - prefs.js..extensions.enabledItems: DeviceDetection@logitech.com:1.0.176.0 FF - prefs.js..extensions.enabledItems: {c2db4fe6-8409-45ce-8010-189a7b5cce86}:2.6.0.15 FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:9.0.0.825 FF - prefs.js..extensions.enabledItems: avg@igeared:3.011.025.005 FF - prefs.js..keyword.URL: "http://us.yhs.search.yahoo.com/avg/search?fr=yhs-avgb&type=yahoo_avg_hs2-tb-web_us&p=" FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010/07/01 13:23:25 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared [2010/06/30 12:26:11 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/06/29 19:34:40 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/06/29 19:34:40 | 000,000,000 | ---D | M] [2009/03/08 13:09:11 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Extensions [2009/03/08 13:09:11 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Extensions\mozswing@mozswing.org [2010/07/02 01:07:02 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions [2010/05/30 11:25:48 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2008/08/23 16:46:10 | 000,000,000 | ---D | M] (Picnik) -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\{5b1fdac4-a239-4933-9c52-b65a2a720b75} [2010/03/24 19:21:33 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2010/04/29 17:24:03 | 000,000,000 | ---D | M] (NCH Toolbar) -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\{c2db4fe6-8409-45ce-8010-189a7b5cce86} [2010/05/30 11:25:41 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\artur.dubovoy@gmail.com [2010/04/05 13:51:59 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\DeviceDetection@logitech.com [2008/02/15 22:28:12 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\extensions\moveplayer@movenetworks.com [2010/04/06 02:49:06 | 000,001,820 | ---- | M] () -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\searchplugins\bing.xml [2010/04/06 02:50:35 | 000,002,270 | ---- | M] () -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\searchplugins\photobucket.xml [2007/11/26 06:15:09 | 000,002,386 | ---- | M] () -- C:\Users\Smashley\AppData\Roaming\Mozilla\Firefox\Profiles\vtup31pg.default\searchplugins\siteadvisor.xml [2010/06/30 19:47:42 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010/01/21 16:04:41 | 000,000,000 | ---D | M] (Smart Notebook Extension) -- C:\Program Files\Mozilla Firefox\extensions\{D6D05E6F-D5C1-4e03-8E33-73F92B05E262} [2008/08/27 21:15:44 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org [2007/12/19 07:57:38 | 000,310,272 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npGoogleGadgetPluginFirefoxWin.dll O1 HOSTS File: ([2010/02/07 14:02:57 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.) O2 - BHO: (CIEDownload Object) - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} - C:\Program Files\SMART Technologies\Notebook Software\NotebookPlugin.dll (SMART Technologies ULC.) O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () O4 - HKLM..\Run: [00TCrdMain] C:\Program Files\Toshiba\FlashCards\TCrdMain.exe (TOSHIBA Corporation) O4 - HKLM..\Run: [ActivControl] C:\Program Files\Activ Software\ActivDriver\ActivControl2.exe (Promethean Technologies Group Ltd) O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.) O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software) O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [Camera Assistant Software] C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe (Chicony) O4 - HKLM..\Run: [CamWizard] C:\Program Files\Common Files\Logitech\QCDRV\BIN\CamWizrd.exe (Logitech Inc.) O4 - HKLM..\Run: [EPSON_UD_START] C:\Program Files\EPSON Projector\EPSON USB Display V1.4\EMP_UD.exe (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [GoBoingo] C:\Program Files\Alltel\GoBoingo\AlltelWifi.exe (Boingo Wireless, Inc.) O4 - HKLM..\Run: [HSON] C:\Program Files\Toshiba\TBS\HSON.exe (TOSHIBA Corporation) O4 - HKLM..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe (Logitech Inc.) O4 - HKLM..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe (Logitech Inc.) O4 - HKLM..\Run: [LVCOMSX] C:\Windows\System32\LVCOMSX.EXE (Logitech Inc.) O4 - HKLM..\Run: [sealmon.exe] C:\Program Files\Oracle\Information Rights Management\Desktop\sealmon.exe (Oracle Corporation) O4 - HKLM..\Run: [SmoothView] C:\Program Files\Toshiba\SmoothView\SmoothView.exe (TOSHIBA Corporation) O4 - HKLM..\Run: [TPwrMain] C:\Program Files\Toshiba\Power Saver\TPwrMain.exe (TOSHIBA Corporation) O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - HKLM..\Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdSync.exe (Microsoft Corporation) O4 - HKCU..\Run: [LogitechSoftwareUpdate] C:\Program Files\Logitech\Video\ManifestEngine.exe (Logitech Inc.) O4 - HKCU..\Run: [TOSCDSPD] File not found O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.) O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.87.68.166 68.87.74.166 O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation) O20 - AppInit_DLLs: (avgrsstx.dll) - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com) O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\Windows\System32\igfxdev.dll (Intel Corporation) O24 - Desktop WallPaper: C:\Users\Smashley\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg O24 - Desktop BackupWallPaper: C:\Users\Smashley\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com) O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{0aea8497-2f57-11dd-82ed-00a0d17cf124}\Shell\AutoRun\command - "" = E:\Player\DVR_Player.exe ..\20 -- File not found O33 - MountPoints2\{16e78b7b-4f5a-11df-a01c-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{4b0432f2-2436-11df-b00a-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{4b0432fd-2436-11df-b00a-7a8020000200}\Shell - "" = AutoRun O33 - MountPoints2\{4db79140-72ee-11de-8041-7a8020000200}\Shell - "" = AutoRun O33 - MountPoints2\{5df7010f-dc25-11dd-b09c-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{8ba3e4b5-b470-11de-8642-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{d9f2e680-af89-11de-ace1-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{f27f8b42-47e1-11de-a951-00a0d17cf124}\Shell - "" = AutoRun O33 - MountPoints2\{f27f8bba-47e1-11de-a951-7a8020000200}\Shell - "" = AutoRun O33 - MountPoints2\F\Shell - "" = AutoRun O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\LaunchU3.exe -- File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010/07/02 01:30:48 | 000,000,000 | -H-D | C] -- C:\Program Files\Temp [2010/07/02 00:40:32 | 000,000,000 | ---D | C] -- C:\Users\Smashley\Desktop\Virus Medicine [2010/07/01 18:37:13 | 000,000,000 | ---D | C] -- C:\Windows\System32\x64 [2010/07/01 18:37:12 | 000,920,088 | ---- | C] (Intel® Corporation) -- C:\Windows\System32\igxpun.exe [2010/07/01 16:23:27 | 000,000,000 | ---D | C] -- C:\Intel [2010/07/01 13:18:34 | 000,012,464 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\avgrsstx.dll [2010/07/01 13:17:55 | 000,038,848 | ---- | C] (ALWIL Software) -- C:\Windows\avastSS.scr [2010/06/30 13:09:00 | 000,000,000 | ---D | C] -- C:\Users\Smashley\AppData\Local\AVG Security Toolbar [2010/06/30 12:30:31 | 000,000,000 | -H-D | C] -- C:\$AVG [2010/06/30 12:26:17 | 000,242,896 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgtdix.sys [2010/06/30 12:26:15 | 000,216,200 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgldx86.sys [2010/06/30 12:26:14 | 000,029,584 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgmfx86.sys [2010/06/30 12:26:13 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\Avg [2010/06/30 12:26:11 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG Security Toolbar [2010/06/29 23:21:03 | 000,000,000 | ---D | C] -- C:\Users\Smashley\AppData\Local\bdibbjahd [2010/06/24 03:00:48 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll [2010/06/24 03:00:47 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe [2010/06/24 03:00:47 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll [2010/06/23 00:23:25 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll [2010/06/23 00:23:24 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll [2010/06/18 01:55:36 | 000,000,000 | ---D | C] -- C:\Users\Smashley\Desktop\Gimp Brushes [2010/06/17 19:30:50 | 000,000,000 | ---D | C] -- C:\Users\Smashley\heart [2010/06/08 21:40:23 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll [2010/06/08 21:40:17 | 000,289,792 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll [2010/06/08 21:40:16 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll [2010/06/08 21:39:55 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2010/06/08 21:39:54 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll [2010/06/08 21:39:54 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2010/06/08 21:39:53 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2010/06/08 21:39:53 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2010/06/08 21:39:52 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll [2010/06/08 21:39:52 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2010/06/08 21:39:52 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll [2010/06/08 21:39:52 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll [2010/06/08 21:39:52 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2010/06/08 21:39:44 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2010/06/08 21:39:44 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe [2010/06/08 21:39:44 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll [2010/06/08 21:39:44 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll [2010/06/08 21:39:44 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe [2010/06/08 21:39:30 | 002,037,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2010/07/02 08:34:59 | 004,718,592 | -HS- | M] () -- C:\Users\Smashley\ntuser.dat [2010/07/02 08:01:42 | 000,759,570 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI [2010/07/02 08:01:42 | 000,641,920 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2010/07/02 08:01:42 | 000,119,480 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2010/07/02 07:07:26 | 000,016,384 | ---- | M] () -- C:\Windows\System32\Ikeext.etl [2010/07/02 07:07:15 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2010/07/02 06:55:39 | 000,000,376 | ---- | M] () -- C:\Windows\tasks\AWC Startup.job [2010/07/02 06:11:39 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2010/07/02 06:11:34 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2010/07/02 06:11:34 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2010/07/02 02:23:22 | 000,524,288 | -HS- | M] () -- C:\Users\Smashley\ntuser.dat{b1f1f7da-549f-11dd-88bd-001b778291ff}.TMContainer00000000000000000001.regtrans-ms [2010/07/02 02:23:22 | 000,065,536 | -HS- | M] () -- C:\Users\Smashley\ntuser.dat{b1f1f7da-549f-11dd-88bd-001b778291ff}.TM.blf [2010/07/02 02:23:17 | 002,616,904 | -H-- | M] () -- C:\Users\Smashley\AppData\Local\IconCache.db [2010/07/02 01:35:16 | 000,319,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\DIFxAPI.dll [2010/07/02 00:34:31 | 000,000,853 | ---- | M] () -- C:\Users\Smashley\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk [2010/07/01 18:59:07 | 000,000,680 | ---- | M] () -- C:\Users\Smashley\AppData\Local\d3d9caps.dat [2010/07/01 17:51:05 | 000,000,564 | -H-- | M] () -- C:\Windows\tasks\Norton Security Scan for Smashley.job [2010/07/01 13:18:38 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgtdix.sys [2010/07/01 13:18:34 | 000,012,464 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\avgrsstx.dll [2010/07/01 13:18:33 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgmfx86.sys [2010/07/01 13:18:23 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt [2010/07/01 13:17:49 | 061,560,572 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm [2010/07/01 13:15:18 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgldx86.sys [2010/06/30 22:43:57 | 000,000,275 | ---- | M] () -- C:\Windows\win.ini [2010/06/30 12:26:19 | 000,001,658 | ---- | M] () -- C:\Users\Public\Desktop\AVG Free 9.0.lnk [2010/06/30 12:26:14 | 000,113,461 | ---- | M] () -- C:\Windows\System32\drivers\Avg\iavichjw.avm [2010/06/30 12:26:13 | 006,061,540 | ---- | M] () -- C:\Windows\System32\drivers\Avg\avi7.avg [2010/06/30 12:26:13 | 000,492,629 | ---- | M] () -- C:\Windows\System32\drivers\Avg\miniavi.avg [2010/06/30 12:26:13 | 000,142,495 | ---- | M] () -- C:\Windows\System32\drivers\Avg\microavi.avg [2010/06/28 15:57:33 | 000,038,848 | ---- | M] (ALWIL Software) -- C:\Windows\avastSS.scr [2010/06/28 15:57:12 | 000,165,032 | ---- | M] (AVAST Software) -- C:\Windows\System32\aswBoot.exe [2010/06/28 15:37:52 | 000,046,672 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswTdi.sys [2010/06/28 15:37:30 | 000,165,456 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswSP.sys [2010/06/28 15:33:13 | 000,023,376 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswRdr.sys [2010/06/28 15:32:56 | 000,050,256 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswMonFlt.sys [2010/06/28 15:32:33 | 000,017,744 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswFsBlk.sys [2010/06/21 11:40:01 | 000,032,256 | ---- | M] () -- C:\Users\Smashley\Documents\Newest_Resume.doc [2010/06/21 11:02:01 | 000,035,840 | ---- | M] () -- C:\Users\Smashley\Documents\Resume for ULM-1.doc [2010/06/17 14:13:35 | 000,005,885 | ---- | M] () -- C:\Users\Smashley\.recently-used.xbel [2010/06/16 14:49:56 | 000,027,648 | ---- | M] () -- C:\Users\Smashley\Documents\HCG Recipes2.doc [2010/06/16 14:10:30 | 000,002,609 | ---- | M] () -- C:\Users\Smashley\Desktop\Microsoft Office Word 2003.lnk [2010/06/14 17:12:47 | 000,024,064 | ---- | M] () -- C:\Users\Smashley\Documents\HCG Recipes.doc [2010/06/14 14:15:29 | 000,669,167 | ---- | M] () -- C:\Users\Smashley\Desktop\Hcg Phase2 Recipes.pdf [2010/06/12 01:28:27 | 000,501,584 | ---- | M] () -- C:\Users\Smashley\AppData\Local\GDIPFONTCACHEV1.DAT [2010/06/12 01:24:24 | 001,182,888 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2010/06/10 01:54:24 | 000,000,909 | ---- | M] () -- C:\Users\Public\Desktop\GIMP 2.lnk [2010/06/08 22:49:05 | 000,001,711 | ---- | M] () -- C:\Users\Smashley\Desktop\LimeWire 5.5.9.lnk [2010/06/08 22:34:59 | 000,000,039 | ---- | M] () -- C:\Windows\vbaddin.ini [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010/06/30 12:26:19 | 000,001,658 | ---- | C] () -- C:\Users\Public\Desktop\AVG Free 9.0.lnk [2010/06/30 12:26:14 | 000,113,461 | ---- | C] () -- C:\Windows\System32\drivers\Avg\iavichjw.avm [2010/06/30 12:26:13 | 061,560,572 | ---- | C] () -- C:\Windows\System32\drivers\Avg\incavi.avm [2010/06/30 12:26:13 | 006,061,540 | ---- | C] () -- C:\Windows\System32\drivers\Avg\avi7.avg [2010/06/30 12:26:13 | 000,492,629 | ---- | C] () -- C:\Windows\System32\drivers\Avg\miniavi.avg [2010/06/30 12:26:13 | 000,142,495 | ---- | C] () -- C:\Windows\System32\drivers\Avg\microavi.avg [2010/06/29 23:38:34 | 000,000,680 | ---- | C] () -- C:\Users\Smashley\AppData\Local\d3d9caps.dat [2010/06/21 11:40:01 | 000,032,256 | ---- | C] () -- C:\Users\Smashley\Documents\Newest_Resume.doc [2010/06/17 14:13:35 | 000,005,885 | ---- | C] () -- C:\Users\Smashley\.recently-used.xbel [2010/06/16 14:49:55 | 000,027,648 | ---- | C] () -- C:\Users\Smashley\Documents\HCG Recipes2.doc [2010/06/14 17:12:44 | 000,024,064 | ---- | C] () -- C:\Users\Smashley\Documents\HCG Recipes.doc [2010/06/14 14:15:28 | 000,669,167 | ---- | C] () -- C:\Users\Smashley\Desktop\Hcg Phase2 Recipes.pdf [2010/06/08 22:49:05 | 000,001,711 | ---- | C] () -- C:\Users\Smashley\Desktop\LimeWire 5.5.9.lnk [2010/06/02 09:35:08 | 000,035,840 | ---- | C] () -- C:\Users\Smashley\Documents\Resume for ULM-1.doc [2010/04/29 17:12:02 | 000,165,376 | ---- | C] () -- C:\Windows\System32\unrar.dll [2010/04/05 15:01:51 | 000,009,255 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini [2009/11/30 12:55:39 | 000,000,751 | ---- | C] () -- C:\Windows\Bti.ini [2009/10/22 16:44:36 | 000,223,016 | ---- | C] () -- C:\Windows\libactivboardex.dll [2009/10/22 16:44:16 | 000,252,696 | ---- | C] () -- C:\Windows\ActivDRV.dll [2009/09/17 19:20:25 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll [2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll [2009/02/08 19:15:08 | 000,290,919 | ---- | C] () -- C:\Windows\System32\pythoncom21.dll [2009/02/08 19:15:08 | 000,057,344 | ---- | C] () -- C:\Windows\System32\PyWinTypes21.dll [2009/02/08 19:13:38 | 000,096,768 | ---- | C] () -- C:\Windows\SlantAdj.dll [2009/02/08 19:13:38 | 000,000,072 | R--- | C] () -- C:\Windows\System32\epDPE.ini [2009/02/08 18:45:15 | 000,000,171 | ---- | C] () -- C:\Windows\EPSON CX3200 Installer.ini [2008/04/30 21:16:30 | 000,000,067 | ---- | C] () -- C:\Windows\swupdate.INI [2008/02/11 19:55:18 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1437.dll [2008/01/24 10:58:36 | 000,028,124 | ---- | C] () -- C:\Windows\System32\jpn_lang_plusviewer.ini [2008/01/24 10:58:20 | 000,028,973 | ---- | C] () -- C:\Windows\System32\kor_lang_plusviewer.ini [2008/01/24 10:58:06 | 000,029,742 | ---- | C] () -- C:\Windows\System32\eng_lang_plusviewer.ini [2008/01/16 22:11:46 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI [2008/01/04 16:58:50 | 003,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll [2008/01/04 16:57:22 | 000,000,416 | ---- | C] () -- C:\Windows\System32\dtu100.dll.manifest [2008/01/04 16:57:22 | 000,000,416 | ---- | C] () -- C:\Windows\System32\dpl100.dll.manifest [2008/01/04 16:56:24 | 000,012,288 | ---- | C] () -- C:\Windows\System32\DivXWMPExtType.dll [2007/07/18 00:42:16 | 000,010,150 | ---- | C] () -- C:\Windows\System32\tosmreg.ini [2007/07/18 00:42:15 | 000,128,113 | ---- | C] () -- C:\Windows\System32\csellang.ini [2007/07/18 00:42:15 | 000,045,056 | ---- | C] () -- C:\Windows\System32\csellang.dll [2007/07/18 00:42:15 | 000,007,671 | ---- | C] () -- C:\Windows\System32\cseltbl.ini [2007/03/21 17:30:52 | 000,069,632 | ---- | C] () -- C:\Windows\System32\mp4dec2avi.dll [2007/03/06 14:49:42 | 000,204,800 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1227.dll [2007/03/02 14:01:09 | 000,204,800 | ---- | C] () -- C:\Windows\System32\IVIresizeW7.dll [2007/03/02 14:01:09 | 000,188,416 | ---- | C] () -- C:\Windows\System32\IVIresizePX.dll [2007/03/02 14:01:08 | 000,200,704 | ---- | C] () -- C:\Windows\System32\IVIresizeA6.dll [2007/03/02 14:01:08 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeP6.dll [2007/03/02 14:01:08 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeM6.dll [2007/03/02 14:01:08 | 000,020,480 | ---- | C] () -- C:\Windows\System32\IVIresize.dll [2007/02/28 15:47:07 | 000,000,000 | ---- | C] () -- C:\Windows\NDSTray.INI [2006/12/05 16:05:06 | 000,114,688 | ---- | C] () -- C:\Windows\System32\TosBtAcc.dll [2006/11/02 07:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll [2006/11/02 02:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini [2006/03/09 13:58:00 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll [2005/07/23 00:30:20 | 000,065,536 | ---- | C] () -- C:\Windows\System32\TosCommAPI.dll [2004/05/31 15:39:46 | 000,045,056 | ---- | C] () -- C:\Windows\System32\rfg726.dll [2004/01/19 18:17:58 | 000,356,352 | ---- | C] () -- C:\Windows\System32\mwmp4dec.dll [2003/03/24 05:03:00 | 000,279,552 | ---- | C] () -- C:\Windows\System32\FGWVB32.DLL [2003/01/07 16:05:08 | 000,002,695 | ---- | C] () -- C:\Windows\System32\OUTLPERF.INI [2002/12/11 19:19:34 | 000,708,608 | ---- | C] () -- C:\Windows\System32\ltcry13n.dll [2002/12/11 19:19:34 | 000,147,456 | ---- | C] () -- C:\Windows\System32\lttls13n.dll [2000/04/12 17:28:12 | 000,118,784 | ---- | C] () -- C:\Windows\System32\lfkodak.dll [2000/04/12 17:24:10 | 000,338,944 | ---- | C] () -- C:\Windows\System32\lffpx7.dll [1996/02/23 16:34:48 | 000,014,629 | ---- | C] () -- C:\Windows\System32\Declw.dll [1996/02/22 14:09:20 | 000,032,256 | ---- | C] () -- C:\Windows\System32\Decln.dll [color=#E56717]========== LOP Check ==========[/color] [2010/04/07 12:27:49 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\ACTIV Software [2008/10/19 02:50:22 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Azureus [2009/04/17 23:56:44 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\EPSON [2008/05/14 21:23:15 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\GameHouse [2010/04/05 15:40:47 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\GetRightToGo [2010/06/17 14:13:35 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\gtk-2.0 [2010/05/06 07:21:18 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Image Zone Express [2010/03/30 06:42:35 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\IObit [2009/02/17 10:54:40 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\IrfanView [2008/03/12 02:20:13 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\iWinArcade [2010/04/05 14:02:46 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Leadertech [2010/06/10 23:10:11 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\LimeWire [2008/05/14 21:25:12 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\My Games [2008/02/24 20:11:42 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\PlayFirst [2008/12/01 01:29:56 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Printer Info Cache [2010/04/08 10:07:48 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Promethean [2008/11/04 23:53:00 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\River Past G5 [2008/10/27 23:34:39 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Skinux [2010/01/21 16:05:30 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\SMART Technologies Inc [2009/05/30 15:20:41 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Smith Micro [2007/12/04 08:21:43 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\Template [2009/01/21 02:23:08 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\TOSHIBA [2009/01/22 10:59:14 | 000,000,000 | ---D | M] -- C:\Users\Smashley\AppData\Roaming\WinBatch [2010/07/02 06:55:39 | 000,000,376 | ---- | M] () -- C:\Windows\Tasks\AWC Startup.job [2010/07/02 02:23:37 | 000,032,522 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< >[/color] [color=#A23BEC]< %SYSTEMDRIVE%\*.* >[/color] [2009/04/11 01:36:36 | 000,333,257 | RHS- | M] () -- C:\bootmgr [2007/02/28 14:08:50 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK [2006/09/18 16:43:37 | 000,000,010 | ---- | M] () -- C:\config.sys [2010/05/10 20:25:30 | 000,000,045 | ---- | M] () -- C:\error.log [2007/12/28 04:15:53 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010/07/02 00:34:34 | 000,000,109 | ---- | M] () -- C:\mbam-error.txt [2007/12/28 04:15:53 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010/07/02 07:06:49 | 1377,116,160 | -HS- | M] () -- C:\pagefile.sys [2010/02/07 14:03:50 | 000,002,472 | ---- | M] () -- C:\rapport.txt [2008/05/04 16:12:59 | 000,000,162 | ---- | M] () -- C:\YServer.txt [color=#A23BEC]< %systemroot%\system32\Spool\prtprocs\w32x86\*.dll >[/color] [2008/08/12 11:58:10 | 000,314,880 | ---- | M] (Hewlett-Packard Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\hpfpp082.dll [2008/01/19 02:34:28 | 000,089,600 | ---- | M] (Hewlett-Packard Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\HPZPPLHN.DLL [2006/11/02 07:35:48 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\jnwppr.dll [2007/04/09 14:23:54 | 000,028,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\mdippr.dll [2006/10/26 19:56:12 | 000,033,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll [color=#A23BEC]< %systemroot%\system32\*.wt >[/color] [color=#A23BEC]< %systemroot%\system32\*.ruy >[/color] [color=#A23BEC]< %systemroot%\Fonts\*.com >[/color] [2006/11/02 07:37:12 | 000,026,040 | ---- | M] () -- C:\Windows\Fonts\GlobalMonospace.CompositeFont [2006/11/02 07:37:12 | 000,026,489 | ---- | M] () -- C:\Windows\Fonts\GlobalSansSerif.CompositeFont [2006/11/02 07:37:12 | 000,029,779 | ---- | M] () -- C:\Windows\Fonts\GlobalSerif.CompositeFont [2009/09/20 10:52:30 | 000,037,665 | ---- | M] () -- C:\Windows\Fonts\GlobalUserInterface.CompositeFont [color=#A23BEC]< %systemroot%\Fonts\*.dll >[/color] [color=#A23BEC]< %systemroot%\system32\spool\prtprocs\w32x86\*.tmp >[/color] [color=#A23BEC]< %systemroot%\*. /mp /s >[/color] [color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color] [color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color] [color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color] [2007/02/28 14:08:36 | 006,602,752 | ---- | M] () -- C:\Windows\System32\config\COMPONENTS.SAV [2007/02/28 14:08:34 | 000,102,400 | ---- | M] () -- C:\Windows\System32\config\DEFAULT.SAV [2007/02/28 14:08:36 | 000,020,480 | ---- | M] () -- C:\Windows\System32\config\SECURITY.SAV [2007/02/28 14:08:46 | 015,556,608 | ---- | M] () -- C:\Windows\System32\config\SOFTWARE.SAV [2007/02/28 14:08:48 | 006,012,928 | ---- | M] () -- C:\Windows\System32\config\SYSTEM.SAV [color=#A23BEC]< %systemroot%\system32\user32.dll /md5 >[/color] [2009/04/11 01:28:25 | 000,627,712 | ---- | M] (Microsoft Corporation) MD5=75510147B94598407666F4802797C75A -- C:\Windows\System32\user32.dll [color=#A23BEC]< %systemroot%\system32\ws2_32.dll /md5 >[/color] [2008/01/19 02:37:09 | 000,179,200 | ---- | M] (Microsoft Corporation) MD5=B304D47D5744BA20FCB99FB8B2C07B0B -- C:\Windows\System32\ws2_32.dll [color=#A23BEC]< %systemroot%\system32\ws2help.dll /md5 >[/color] [2006/11/02 04:44:30 | 000,004,608 | ---- | M] (Microsoft Corporation) MD5=17C0671BF57057108A6D949510EE42C8 -- C:\Windows\System32\ws2help.dll [color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >[/color] [color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >[/color] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2010-07-01 23:39:21 < End of report >