Comps been weird.. can you check for me

PC has suddenly slowed down dramatically, can't see anything obvious, and malwarebytes picked up a few small things, but nothing drastic..

OTL logfile created on: 01/10/2009 08:27:08 - Run 1
OTL by OldTimer - Version 3.0.17.0 Folder = C:\Documents and Settings\Joe Westwood\My Documents\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 100.00% Memory free
4.00 Gb Paging File | 4.00 Gb Available in Paging File | 100.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 229.49 Gb Total Space | 6.09 Gb Free Space | 2.66% Space Free | Partition Type: NTFS
Drive D: | 152.66 Gb Total Space | 84.31 Gb Free Space | 55.23% Space Free | Partition Type: NTFS
Drive E: | 236.26 Gb Total Space | 112.43 Gb Free Space | 47.59% Space Free | Partition Type: HFSJ
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
Drive I: | 298.02 Gb Total Space | 81.55 Gb Free Space | 27.36% Space Free | Partition Type: FAT32

Computer Name: BRKN-7ABB9CA2B7
Current User Name: Joe Westwood
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2009/06/16 14:05:08 | 00,213,776 | ---- | M] () -- C:\Program Files\USB Safely Remove\USBSRService.exe
PRC - [2008/06/03 04:09:36 | 00,552,960 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\Ati2evxx.exe
PRC - [2008/06/03 04:09:36 | 00,552,960 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\Ati2evxx.exe
PRC - [2008/03/21 06:36:30 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE
PRC - [2009/08/28 19:42:54 | 00,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2009/04/02 12:47:02 | 00,464,264 | ---- | M] () -- C:\Program Files\AskBarDis\bar\bin\AskService.exe
PRC - [2009/04/02 12:47:04 | 00,234,888 | ---- | M] () -- C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
PRC - [2009/08/08 10:07:51 | 00,297,752 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgwdsvc.exe
PRC - [2008/12/12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2009/08/16 13:38:33 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2008/11/26 10:23:46 | 00,150,528 | ---- | M] (Mediafour Corporation) -- C:\Program Files\Mediafour\MacDrive 7\MacDriveService.exe
PRC - [2009/09/10 14:54:02 | 00,269,648 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2004/09/19 12:27:46 | 00,065,536 | ---- | M] () -- C:\Program Files\LClock\LClock.exe
PRC - [2007/09/20 09:51:46 | 00,853,288 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
PRC - [2009/08/08 10:07:52 | 00,486,680 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgrsx.exe
PRC - [2009/08/08 10:07:53 | 00,595,736 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgnsx.exe
PRC - [2005/07/05 03:04:34 | 00,828,416 | ---- | M] () -- C:\WINDOWS\System32\mmm.exe
PRC - [2008/02/27 09:33:26 | 00,015,872 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerAssistant.exe
PRC - [2007/12/05 01:41:00 | 00,155,716 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe
PRC - [2007/04/25 09:45:44 | 00,956,928 | ---- | M] (Christian Salmon) -- C:\Program Files\Utilities\VisualTooltip\VisualToolTip.exe
PRC - [2009/08/16 13:38:33 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009/08/08 10:07:51 | 00,908,056 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgemc.exe
PRC - [2005/11/01 00:00:00 | 00,307,200 | ---- | M] (Team H2O) -- C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe
PRC - [2006/10/18 20:05:24 | 00,913,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\WMPNetwk.exe
PRC - [2006/09/21 10:36:22 | 09,138,176 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel Audio Studio\IntelAudioStudio.exe
PRC - [2002/04/02 19:22:56 | 00,024,576 | ---- | M] () -- C:\WINDOWS\System32\DeltTray.exe
PRC - [2009/08/23 09:40:43 | 02,007,832 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgtray.exe
PRC - [2009/06/15 11:07:08 | 00,201,304 | ---- | M] (Mediafour Corporation) -- C:\Program Files\Mediafour\MacDrive 7\MacDrive.exe
PRC - [2009/09/10 14:54:00 | 00,420,176 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2006/08/04 14:59:16 | 00,062,976 | ---- | M] (Alexander Avdonin) -- C:\Program Files\TaskSwitchXP\TaskSwitchXP.exe
PRC - [2007/09/20 15:35:10 | 00,202,024 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe
PRC - [2009/08/08 10:07:52 | 00,693,016 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgcsrvx.exe
PRC - [2009/06/19 10:53:52 | 03,678,208 | ---- | M] () -- C:\Program Files\USB Safely Remove\USBSafelyRemove.exe
PRC - [2007/05/09 17:54:21 | 00,050,736 | ---- | M] (AOL LLC) -- C:\Program Files\AIM6\aim6.exe
PRC - [2006/10/18 20:05:26 | 00,204,288 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe
PRC - [2009/07/26 16:44:34 | 03,883,856 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
PRC - [2006/09/26 01:52:48 | 00,050,736 | ---- | M] (America Online, Inc.) -- C:\Program Files\AIM6\aolsoftware.exe
PRC - [2005/01/20 08:50:20 | 00,126,976 | ---- | M] () -- C:\Program Files\MOTU\FireWire Audio\MFWAKeys.exe
PRC - [2007/09/20 15:35:38 | 00,382,248 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
PRC - [2007/09/20 15:35:40 | 01,410,344 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
PRC - [2009/09/10 17:21:48 | 00,908,280 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009/10/01 08:25:50 | 00,519,168 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Joe Westwood\My Documents\Downloads\OTL.exe

========== Win32 Services (SafeList) ==========

SRV - [2009/08/28 19:42:54 | 00,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device [Auto | Running])
SRV - [2009/04/02 12:47:02 | 00,464,264 | ---- | M] () -- C:\Program Files\AskBarDis\bar\bin\AskService.exe -- (ASKService [Auto | Running])
SRV - [2009/04/02 12:47:04 | 00,234,888 | ---- | M] () -- C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe -- (ASKUpgrade [Auto | Running])
SRV - [2008/07/25 11:16:40 | 00,034,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state [On_Demand | Stopped])
SRV - [2008/06/03 04:09:36 | 00,552,960 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\Ati2evxx.exe -- (Ati HotKey Poller [Auto | Running])
SRV - [2008/06/02 21:05:00 | 00,593,920 | ---- | M] () -- C:\WINDOWS\System32\ati2sgag.exe -- (ATI Smart [Auto | Stopped])
SRV - [2009/08/08 10:07:51 | 00,908,056 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgemc.exe -- (avg8emc [Auto | Running])
SRV - [2009/08/08 10:07:51 | 00,297,752 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgwdsvc.exe -- (avg8wd [Auto | Running])
SRV - [2008/12/12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service [Auto | Running])
SRV - [2008/07/25 11:17:02 | 00,069,632 | ---- | M] (Microsoft Corporation) -- c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
SRV - [2009/08/19 09:30:22 | 00,654,848 | ---- | M] (Macrovision Europe Ltd.) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service [On_Demand | Stopped])
SRV - [2008/07/29 21:10:04 | 00,046,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
SRV - [2008/03/21 06:36:12 | 00,038,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running])
SRV - [2005/04/04 00:41:10 | 00,069,632 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT [On_Demand | Stopped])
SRV - [2008/07/29 19:24:50 | 00,881,664 | ---- | M] (Microsoft Corporation) -- c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped])
SRV - [2009/09/21 16:36:02 | 00,545,568 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service [On_Demand | Stopped])
SRV - [2009/08/16 13:38:33 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService [Auto | Running])
SRV - [2008/11/26 10:23:46 | 00,150,528 | ---- | M] (Mediafour Corporation) -- C:\Program Files\Mediafour\MacDrive 7\MacDriveService.exe -- (MacDriveService [Auto | Running])
SRV - [2009/09/10 14:54:02 | 00,269,648 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService [Auto | Running])
SRV - [2007/09/20 09:51:46 | 00,853,288 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe -- (Nero BackItUp Scheduler 3 [Auto | Running])
SRV - [2008/07/29 19:16:38 | 00,132,096 | ---- | M] (Microsoft Corporation) -- c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
SRV - [2007/09/20 15:35:38 | 00,382,248 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe -- (NMIndexingService [On_Demand | Running])
SRV - [2007/12/05 01:41:00 | 00,155,716 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe -- (NVSvc [Auto | Running])
SRV - [2007/06/14 15:16:18 | 00,074,656 | ---- | M] (MicroVision Development, Inc.) -- C:\Program Files\Common Files\SureThing Shared\stllssvr.exe -- (stllssvr [On_Demand | Stopped])
SRV - [2009/06/16 14:05:08 | 00,213,776 | ---- | M] () -- C:\Program Files\USB Safely Remove\USBSRService.exe -- (USBSafelyRemoveService [Auto | Running])
SRV - [2006/10/18 20:05:24 | 00,913,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\WMPNetwk.exe -- (WMPNetworkSvc [Auto | Running])

========== Driver Services (SafeList) ==========

DRV - [2008/06/03 07:20:54 | 03,100,160 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\DRIVERS\ati2mtag.sys -- (ati2mtag [On_Demand | Stopped])
DRV - [2009/08/08 10:08:00 | 00,335,240 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86 [System | Running])
DRV - [2009/08/08 10:08:00 | 00,027,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86 [System | Running])
DRV - [2009/08/08 10:08:01 | 00,108,552 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX [System | Running])
DRV - [2005/05/09 20:08:40 | 00,033,792 | ---- | M] (Team H2O) -- C:\WINDOWS\System32\DRIVERS\cledx.sys -- (CLEDX [On_Demand | Running])
DRV - [2002/04/11 19:32:26 | 00,320,896 | ---- | M] (Midiman/M Audio) -- C:\WINDOWS\System32\drivers\delta.sys -- (DELTA [On_Demand | Running])
DRV - [2007/03/02 09:37:44 | 00,246,680 | R--- | M] (Intel Corporation) -- C:\WINDOWS\System32\DRIVERS\e1e5132.sys -- (e1express [On_Demand | Running])
DRV - [2009/05/18 14:17:00 | 00,026,600 | ---- | M] (GEAR Software Inc.) -- C:\WINDOWS\System32\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM [On_Demand | Running])
DRV - [2008/03/20 23:05:30 | 00,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) -- C:\WINDOWS\System32\DRIVERS\HDAudBus.sys -- (HDAudBus [On_Demand | Running])
DRV - [2007/03/02 09:36:10 | 00,044,416 | R--- | M] (Intel Corporation) -- C:\WINDOWS\System32\DRIVERS\HECI.sys -- (HECI [On_Demand | Running])
DRV - [2009/09/10 14:53:50 | 00,019,160 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys -- (MBAMProtector [On_Demand | Running])
DRV - [2009/04/30 17:18:20 | 00,284,416 | ---- | M] (Mediafour Corporation) -- C:\WINDOWS\System32\drivers\MDFSYSNT.SYS -- (MDFSYSNT [Boot | Running])
DRV - [2009/05/19 13:19:26 | 00,020,992 | ---- | M] (Mediafour Corporation) -- C:\WINDOWS\System32\drivers\MDPMGRNT.SYS -- (MDPMGRNT [Boot | Running])
DRV - [2005/01/20 08:47:04 | 00,018,944 | ---- | M] (Mark of the Unicorn) -- C:\WINDOWS\System32\drivers\MFWAMIDI.sys -- (MFWAMIDI [On_Demand | Stopped])
DRV - [2005/01/20 08:45:20 | 00,024,960 | ---- | M] (MOTU) -- C:\WINDOWS\System32\drivers\MFWAWAVE.sys -- (MFWAWAVE [On_Demand | Stopped])
DRV - [2004/11/23 13:09:18 | 00,015,616 | ---- | M] (Mark of the Unicorn) -- C:\WINDOWS\System32\drivers\MotuBus.sys -- (motubus [On_Demand | Running])
DRV - [2005/01/20 15:34:32 | 00,192,128 | ---- | M] (Mark of the Unicorn) -- C:\WINDOWS\System32\drivers\MotuFWA.sys -- (MotuFWA [On_Demand | Stopped])
DRV - [2007/10/18 21:22:02 | 00,143,360 | ---- | M] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\system32\DRIVERS\mv61xx.sys -- (mv61xx [Boot | Running])
DRV - [2007/12/05 01:41:00 | 07,435,392 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\nv4_mini.sys -- (nv [On_Demand | Running])
DRV - [2008/04/12 22:02:46 | 00,047,360 | ---- | M] (VSO Software) -- C:\WINDOWS\System32\Drivers\pcouffin.sys -- (pcouffin [On_Demand | Running])
DRV - [2008/03/04 10:55:00 | 00,076,800 | ---- | M] (TC Electronic A/S) -- C:\WINDOWS\System32\DRIVERS\PCore.sys -- (Powercore [On_Demand | Running])
DRV - [2001/08/22 21:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])
DRV - [2007/07/26 03:00:00 | 00,043,872 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20 [Boot | Running])
DRV - [2006/09/28 05:44:46 | 00,079,393 | ---- | M] (Roland Corporation) -- C:\WINDOWS\System32\Drivers\rdwm1027.sys -- (RDID1027 [On_Demand | Running])
DRV - [2008/03/20 23:09:18 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\System32\DRIVERS\secdrv.sys -- (Secdrv [On_Demand | Stopped])
DRV - [2007/03/02 09:36:20 | 00,041,728 | ---- | M] (Sonic Focus, Inc) -- C:\WINDOWS\System32\drivers\sfng32.sys -- (sfng32 [On_Demand | Running])
DRV - [2007/03/02 09:36:22 | 01,178,088 | ---- | M] (SigmaTel, Inc.) -- C:\WINDOWS\System32\drivers\sthda.sys -- (STHDA [On_Demand | Running])

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn...st/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn...st/srchasst.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - URLSearchHook: *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - Reg Error: Key error. File not found
IE - URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}:6.0.05
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.1
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.3
FF - prefs.js..keyword.URL: "http://uk.yhs.search...2-tb-web_uk&p="

FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG8\Firefox [2009/08/08 10:07:50 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG8\Toolbar\Firefox\avg@igeared [2009/08/08 10:07:57 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009/09/02 03:01:55 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009/08/16 13:38:34 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/09/10 17:21:54 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/09/24 15:15:58 | 00,000,000 | ---D | M]

[2009/08/09 06:34:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Joe Westwood\Application Data\mozilla\Extensions
[2009/08/09 06:34:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Joe Westwood\Application Data\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/09/30 20:46:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Joe Westwood\Application Data\mozilla\Firefox\Profiles\cjozzq9o.default\extensions
[2009/09/02 08:54:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Joe Westwood\Application Data\mozilla\Firefox\Profiles\cjozzq9o.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009/09/30 20:46:11 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009/09/10 17:21:53 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2008/04/08 22:46:14 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}
[2009/08/16 13:38:45 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
[2009/09/10 17:21:48 | 00,023,544 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009/09/10 17:21:48 | 00,137,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2009/08/16 13:38:34 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeploytk.dll
[2009/09/10 17:21:50 | 00,065,016 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2009/02/27 12:13:42 | 00,103,792 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll
[2009/09/24 15:15:58 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin.dll
[2009/09/24 15:15:58 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll
[2009/09/24 15:15:58 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll
[2009/09/24 15:15:58 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll
[2009/09/24 15:15:58 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll
[2009/09/24 15:15:58 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll
[2009/09/24 15:15:58 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll
[2009/07/30 23:24:36 | 00,001,538 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-en-GB.xml
[2009/07/31 00:39:40 | 00,002,193 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\answers.xml
[2009/08/09 06:34:27 | 00,001,497 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg_igeared.xml
[2009/07/30 23:24:36 | 00,000,947 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\chambers-en-GB.xml
[2009/07/31 00:39:40 | 00,001,534 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
[2009/07/30 23:24:36 | 00,000,769 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-en-GB.xml
[2009/07/31 00:39:40 | 00,002,371 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2009/07/31 00:39:40 | 00,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia.xml
[2009/07/30 23:24:36 | 00,000,831 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-en-GB.xml

O1 HOSTS File: (734 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (AskBar BHO) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (StylerToolBar) - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - C:\Program Files\Styler\TB\StylerTB.dll (StyleFantasist)
O3 - HKLM\..\Toolbar: (no name) - SITEguard - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {3041D03E-FD4B-44E0-B742-2D9B88305F98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AVG8_TRAY] C:\Program Files\AVG\AVG8\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [DeltTray] C:\WINDOWS\System32\DeltTray.exe ()
O4 - HKLM..\Run: [Getting started with MacDrive] C:\Program Files\Mediafour\MacDrive 7\MDGetStarted.exe (Mediafour Corporation)
O4 - HKLM..\Run: [H2O] C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe (Team H2O)
O4 - HKLM..\Run: [IntelAudioStudio] C:\Program Files\Intel Audio Studio\IntelAudioStudio.exe (Intel Corporation)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O4 - HKLM..\Run: [LClock] C:\Program Files\LClock\LClock.exe ()
O4 - HKLM..\Run: [MacDrive application] C:\Program Files\Mediafour\MacDrive 7\MacDrive.exe (Mediafour Corporation)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [PowerTweak Menu] C:\WINDOWS\System32\mmm.exe ()
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [SigmatelSysTrayApp] File not found
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [UnlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe ()
O4 - HKLM..\Run: [VisualTooltip] C:\Program Files\Utilities\VisualTooltip\VisualToolTip.exe (Christian Salmon)
O4 - HKCU..\Run: [Aim6] C:\Program Files\AIM6\aim6.exe (AOL LLC)
O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKCU..\Run: [msnmsgr] C:\Program Files\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
O4 - HKCU..\Run: [TaskSwitchXP] C:\Program Files\TaskSwitchXP\TaskSwitchXP.exe (Alexander Avdonin)
O4 - HKCU..\Run: [USB Safely Remove] C:\Program Files\USB Safely Remove\USBSafelyRemove.exe ()
O4 - HKCU..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\MFWAKeys.lnk = C:\Program Files\MOTU\FireWire Audio\MFWAKeys.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\control panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\control panel present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\restrictions present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\System32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\System32\rsvpsp.dll (Microsoft Corporation)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_05)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_15)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 194.168.4.100 194.168.8.100
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\Ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O24 - Desktop Components:0 (My Current Home Page) - About:Home
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/04/08 22:41:05 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2007/08/27 12:50:42 | 00,000,000 | ---- | M] () - D:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found

NetSvcs: 6to4 - Service key not found. File not found
NetSvcs: Ias - Service key not found. File not found
NetSvcs: Iprip - Service key not found. File not found
NetSvcs: Irmon - Service key not found. File not found
NetSvcs: NWCWorkstation - Service key not found. File not found
NetSvcs: Nwsapagent - Service key not found. File not found
NetSvcs: WmdmPmSp - Service key not found. File not found
NetSvcs: helpsvc - C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll (Microsoft Corporation)

========== Files/Folders - Created Within 30 Days ==========

[2009/09/30 22:02:35 | 06,977,625 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\My Documents\HWARE nov BHAM BACK2.jpg
[2009/09/30 21:04:20 | 06,271,221 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\My Documents\HWARE nov BHAM.jpg
[2009/09/30 21:02:15 | 06,930,836 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\My Documents\HWARE nov BHAM BACK.jpg
[2009/09/30 21:00:03 | 00,294,130 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\My Documents\HWARE-nov-BHAM-BACK.jpg
[2009/09/30 20:59:37 | 00,199,417 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\My Documents\HWARE-nov-BHAM.jpg
[2009/09/30 20:53:05 | 35,172,286 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\My Documents\HWARE nov BHAM.pdf
[2009/09/30 20:52:00 | 36,075,148 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\My Documents\HWARE nov BHAM BACK.pdf
[2009/09/30 08:37:12 | 00,000,710 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\TuneUp Companion.lnk
[2009/09/30 08:37:05 | 00,000,000 | ---D | C] -- C:\Program Files\TuneUpMedia
[2009/09/30 08:37:03 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Joe Westwood\Application Data\TuneUpMedia
[2009/09/30 08:37:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TuneUpMedia
[2009/09/30 08:36:25 | 00,001,507 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Vuze.lnk
[2009/09/29 21:00:22 | 00,268,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2009/09/29 21:00:22 | 00,208,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\muweb.dll
[2009/09/29 21:00:22 | 00,027,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui
[2009/09/29 20:31:50 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft
[2009/09/29 20:31:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\microsoft
[2009/09/29 20:31:33 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Live SkyDrive
[2009/09/29 20:31:11 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2009/09/29 20:26:35 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live
[2009/09/24 16:29:59 | 02,886,475 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\laser stuff.rar
[2009/09/24 15:18:13 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Joe Westwood\Application Data\Apple Computer
[2009/09/24 15:17:37 | 00,107,368 | ---- | C] (GEAR Software Inc.) -- C:\WINDOWS\System32\GEARAspi.dll
[2009/09/24 15:17:37 | 00,026,600 | ---- | C] (GEAR Software Inc.) -- C:\WINDOWS\System32\drivers\GEARAspiWDM.sys
[2009/09/24 15:16:43 | 00,000,000 | ---D | C] -- C:\Program Files\iPod
[2009/09/24 15:16:41 | 00,000,000 | ---D | C] -- C:\Program Files\iTunes
[2009/09/24 15:16:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2009/09/24 15:15:41 | 00,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2009/09/24 15:15:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple Computer
[2009/09/24 15:15:24 | 00,000,284 | ---- | C] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2009/09/24 15:15:23 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Joe Westwood\Local Settings\Application Data\Apple
[2009/09/24 15:15:20 | 00,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2009/09/24 15:14:01 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2009/09/24 15:14:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple
[2009/09/24 15:13:23 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Joe Westwood\Local Settings\Application Data\Apple Computer
[2009/09/23 14:19:28 | 00,345,996 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\HWARE nov BHAM BACK.jpg
[2009/09/21 19:08:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Joe Westwood\Desktop\laser stuff
[2009/09/21 18:56:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Joe Westwood\Local Settings\Application Data\Moncha
[2009/09/21 18:56:16 | 00,002,261 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\MonchaDraw.lnk
[2009/09/21 18:56:16 | 00,002,243 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Moncha 2.1.lnk
[2009/09/21 18:56:16 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Joe Westwood\Application Data\Moncha
[2009/09/21 18:56:06 | 00,000,000 | ---D | C] -- C:\Program Files\Moncha 2.1
[2009/09/21 18:56:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Joe Westwood\My Documents\MonchaShows
[2009/09/20 20:08:48 | 03,362,094 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\GRINDHOUSE LOGO2 copy.jpg
[2009/09/18 17:02:54 | 00,199,395 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\HWARE-nov-BHAM.jpg
[2009/09/18 13:19:03 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Joe Westwood\My Documents\Version Cue
[2009/09/18 13:19:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Joe Westwood\My Documents\AdobeStockPhotos
[2009/09/17 21:32:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Joe Westwood\Desktop\DESKTYO
[2009/09/17 21:18:42 | 00,068,307 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\TMG Logo.ai
[2009/09/17 21:15:57 | 00,057,623 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\sublogo.ai
[2009/09/17 20:37:11 | 56,445,431 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\HWARE nov BHAM BACK.pdf
[2009/09/17 15:01:04 | 14,650,510 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\GRINDHOUSE LOGO2.eps
[2009/09/17 14:30:49 | 00,007,238 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\Screen shot 2009-09-17 at 14.30.12.png
[2009/09/17 12:50:28 | 52,731,373 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\HWARE nov BHAM BACK.ai
[2009/09/17 12:41:19 | 55,213,458 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\HWARE nov BHAM.pdf
[2009/09/17 12:21:56 | 00,704,654 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\Hardware.psd
[2009/09/16 22:34:25 | 01,387,262 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\Hardware.eps
[2009/09/16 22:33:57 | 11,916,6660 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\HWARE nov BHAM.psd
[2009/09/16 22:20:15 | 11,910,756 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\Hardware.ai
[2009/09/16 21:40:57 | 00,000,323 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\Shortcut to joewestwood.lnk
[2009/09/16 21:29:01 | 00,171,546 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\HARDWARE LOGO.ai
[2009/09/16 19:51:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ALM
[2009/09/16 19:46:12 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Joe Westwood\Desktop\Adobe CS3
[2009/09/16 14:04:06 | 00,044,094 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\sublogo.jpg
[2009/09/16 14:03:53 | 00,022,068 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\sublogotype.jpg
[2009/09/16 14:03:05 | 00,046,785 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\TMG_SONIK_LOGO.jpg
[2009/09/16 14:02:39 | 00,046,785 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\TMG Logo.jpg
[2009/09/16 14:02:11 | 00,002,765 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\hardware text.jpg
[2009/09/16 14:01:54 | 00,103,488 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\Hardware.jpg
[2009/09/16 13:13:59 | 15,226,360 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\SERUM & BLADERUNNER - CHALICE - - PURE VIBEZ 005.mp3
[2009/09/16 13:13:59 | 14,667,340 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\SERUM & BLADERUNNER - JUST A BEAT - PURE VIBEZ 005.mp3
[2009/09/16 13:08:13 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Joe Westwood\Desktop\Eurostile Stencil D Black Extended
[2009/09/16 13:07:35 | 00,038,169 | ---- | C] () -- C:\Documents and Settings\Joe Westwood\Desktop\Eurostile Stencil D Black Extended.zip
[2009/09/16 08:34:39 | 00,017,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2009/09/09 01:45:04 | 00,153,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\triedit.dll
[2009/09/08 20:24:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Joe Westwood\Desktop\Massive Attack - Live In Chile
[2009/09/08 11:33:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\vsosdk
[2009/09/05 17:25:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Joe Westwood\Local Settings\Application Data\Microsoft Help
[2009/09/05 17:24:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft Help
[2009/09/05 17:15:44 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Joe Westwood\Application Data\ImgBurn
[2009/09/05 17:15:15 | 00,000,000 | ---D | C] -- C:\Program Files\ImgBurn
[2009/09/05 15:38:00 | 00,000,000 | ---D | C] -- C:\CANNON2
[2009/09/05 01:54:48 | 00,094,208 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\QuickTimeVR.qtx
[2009/09/05 01:54:48 | 00,069,632 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\QuickTime.qts
[2008/10/24 19:31:22 | 00,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2008/10/24 19:31:22 | 00,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2008/10/24 19:31:21 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2008/10/24 19:31:21 | 00,755,027 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2008/10/24 19:31:21 | 00,159,839 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008/10/24 19:31:20 | 00,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2008/10/24 19:31:20 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2008/07/24 18:56:19 | 00,006,925 | ---- | C] () -- C:\WINDOWS\System32\LANGMONI.DLL
[2008/04/17 20:12:09 | 00,001,025 | ---- | C] () -- C:\WINDOWS\System32\sysprs7.dll
[2008/04/17 20:12:09 | 00,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth2.dll
[2008/04/17 20:12:09 | 00,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth1.dll
[2008/04/17 20:12:09 | 00,000,205 | ---- | C] () -- C:\WINDOWS\System32\lsprst7.dll
[2008/04/17 20:12:09 | 00,000,073 | ---- | C] () -- C:\WINDOWS\System32\ssprs.dll
[2008/04/17 20:06:49 | 00,905,290 | ---- | C] () -- C:\WINDOWS\System32\libmmd.dll
[2008/04/12 22:05:45 | 00,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008/04/08 22:33:05 | 00,012,348 | ---- | C] () -- C:\WINDOWS\System32\Notepad2.ini
[2008/04/08 22:33:04 | 00,175,616 | ---- | C] () -- C:\WINDOWS\System32\mmm.dll
[2007/12/05 01:41:00 | 01,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2007/12/05 01:41:00 | 01,474,560 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2007/12/05 01:41:00 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2007/12/05 01:41:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2007/12/05 01:41:00 | 00,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2007/01/10 06:25:23 | 00,010,886 | ---- | C] () -- C:\WINDOWS\System32\RdCi1027.dll
[2001/08/22 21:00:00 | 00,000,507 | ---- | C] () -- C:\WINDOWS\win.ini
[2001/08/22 21:00:00 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini

========== Files - Modified Within 30 Days ==========

[2009/10/01 08:21:29 | 00,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job
[2009/10/01 08:05:48 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009/10/01 08:05:43 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009/10/01 01:09:29 | 00,000,520 | ---- | M] () -- C:\WINDOWS\tasks\Malwarebytes' Scheduled Scan for Joe Westwood.job
[2009/10/01 01:00:06 | 00,000,506 | ---- | M] () -- C:\WINDOWS\tasks\Malwarebytes' Scheduled Update for Joe Westwood.job
[2009/09/30 22:13:59 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2009/09/30 22:02:49 | 06,977,625 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\My Documents\HWARE nov BHAM BACK2.jpg
[2009/09/30 21:21:54 | 00,078,336 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/09/30 21:04:43 | 06,271,221 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\My Documents\HWARE nov BHAM.jpg
[2009/09/30 21:02:28 | 06,930,836 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\My Documents\HWARE nov BHAM BACK.jpg
[2009/09/30 21:00:03 | 00,294,130 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\My Documents\HWARE-nov-BHAM-BACK.jpg
[2009/09/30 20:59:37 | 00,199,417 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\My Documents\HWARE-nov-BHAM.jpg
[2009/09/30 20:53:07 | 35,172,286 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\My Documents\HWARE nov BHAM.pdf
[2009/09/30 20:52:04 | 36,075,148 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\My Documents\HWARE nov BHAM BACK.pdf
[2009/09/30 18:56:15 | 41,999,697 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2009/09/30 08:53:18 | 00,113,494 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\microavi.avg
[2009/09/30 08:37:12 | 00,000,710 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\TuneUp Companion.lnk
[2009/09/30 08:36:25 | 00,001,507 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Vuze.lnk
[2009/09/30 08:03:30 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009/09/29 14:34:37 | 52,731,373 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\Desktop\HWARE nov BHAM BACK.ai
[2009/09/26 21:59:02 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2009/09/24 16:30:04 | 02,886,475 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\Desktop\laser stuff.rar
[2009/09/24 15:34:50 | 00,002,243 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Moncha 2.1.lnk
[2009/09/24 14:24:51 | 00,012,348 | ---- | M] () -- C:\WINDOWS\System32\Notepad2.ini
[2009/09/23 14:19:29 | 00,345,996 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\Desktop\HWARE nov BHAM BACK.jpg
[2009/09/23 11:09:57 | 55,213,458 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\Desktop\HWARE nov BHAM.pdf
[2009/09/21 19:28:51 | 00,002,261 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\MonchaDraw.lnk
[2009/09/20 20:08:53 | 03,362,094 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\Desktop\GRINDHOUSE LOGO2 copy.jpg
[2009/09/18 17:02:54 | 00,199,395 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\Desktop\HWARE-nov-BHAM.jpg
[2009/09/17 21:31:29 | 56,445,431 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\Desktop\HWARE nov BHAM BACK.pdf
[2009/09/17 21:18:44 | 00,068,307 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\Desktop\TMG Logo.ai
[2009/09/17 21:16:01 | 00,057,623 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\Desktop\sublogo.ai
[2009/09/17 15:00:24 | 14,650,510 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\Desktop\GRINDHOUSE LOGO2.eps
[2009/09/17 14:30:16 | 00,007,238 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\Desktop\Screen shot 2009-09-17 at 14.30.12.png
[2009/09/17 12:26:24 | 01,387,262 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\Desktop\Hardware.eps
[2009/09/17 12:21:58 | 00,704,654 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\Desktop\Hardware.psd
[2009/09/17 12:04:54 | 11,916,6660 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\Desktop\HWARE nov BHAM.psd
[2009/09/16 22:20:16 | 11,910,756 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\Desktop\Hardware.ai
[2009/09/16 21:40:57 | 00,000,323 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\Desktop\Shortcut to joewestwood.lnk
[2009/09/16 21:29:08 | 00,171,546 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\Desktop\HARDWARE LOGO.ai
[2009/09/16 13:45:38 | 00,144,888 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2009/09/16 13:44:25 | 01,712,584 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009/09/16 13:07:17 | 00,038,169 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\Desktop\Eurostile Stencil D Black Extended.zip
[2009/09/16 08:34:26 | 00,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2009/09/16 08:34:26 | 00,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2009/09/13 23:25:59 | 00,000,668 | ---- | M] () -- C:\Documents and Settings\Joe Westwood\Application Data\vso_ts_preview.xml
[2009/09/10 14:54:06 | 00,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009/09/10 14:53:50 | 00,019,160 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009/09/09 03:00:38 | 00,001,355 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2009/09/05 01:54:48 | 00,094,208 | ---- | M] (Apple Inc.) -- C:\WINDOWS\System32\QuickTimeVR.qtx
[2009/09/05 01:54:48 | 00,069,632 | ---- | M] (Apple Inc.) -- C:\WINDOWS\System32\QuickTime.qts

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.exe >

< %systemroot%\system32\eventlog.dll >
[2008/03/21 06:35:58 | 00,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eventlog.dll

< %systemroot%\system32\scecli.dll >
[2008/03/21 06:36:12 | 00,181,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\scecli.dll

< %systemroot%\netlogon.dll >

< %systemroot%\system32\cngaudit.dll >

< %systemroot%\system32\sceclt.dll >

< %systemroot%\ntelogon.dll >

< %systemroot%\system32\logevent.dll >

========== Alternate Data Streams ==========

@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\xpssvcs.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\xpsshhdr.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\xmllite.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\wpdshextres.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\WinFXDocObj.exe:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\webcheck.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\vbscript.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\url.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\tdc.ocx:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\spupdsvc.exe:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\prntvpt.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\pngfilt.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\normnfkd.nls:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\normnfkc.nls:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\normnfd.nls:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\normnfc.nls:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\normidna.nls:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\normaliz.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\nlsdl.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\mstime.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\msrating.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\msrating.dll.mui:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\msls31.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\mshtmler.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\mshtmled.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\mshtml.tlb:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\mshta.exe:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\mshta.exe.mui:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\msfeedssync.exe:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\msdbg2.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\MRT.exe:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\licmgr10.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\inseng.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\imgutil.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\ieuinit.inf:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\ieui.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\ieudinit.exe:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\iesetup.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\iernonce.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\ieframe.dll.mui:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\iedkcs32.dll.mui:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\ieapfltr.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\ieapfltr.dat:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\ieakui.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\ieaksie.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\ieakeng.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\IE8Eula.rtf:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\ie4uinit.exe.mui:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\idndl.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\icrav03.rat:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\icardie.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\html.iec:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dxtrans.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dxtmsft.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\xpssvcs.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\xpsshhdr.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\webcheck.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\VGX.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\vbscript.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\url.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\tdc.ocx:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\sqmapi.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\shlwapi.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\shdocvw.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\pngfilt.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\mstime.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\msrating.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\msls31.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\mshtmler.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\mshtmled.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\mshtml.tlb:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\mshta.exe:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\licmgr10.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\inseng.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\imgutil.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\iexplore.exe:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\iesetup.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\iernonce.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\ieframe.dll.mui:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\ieapfltr.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\ieapfltr.dat:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\ieakui.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\ieaksie.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\ieakeng.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\icardie.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\hmmapi.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\dxtrans.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\dxtmsft.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\corpol.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\browseui.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\advpack.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\dllcache\admparse.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\corpol.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\advpack.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\advpack.dll.mui:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\WINDOWS\System32\admparse.dll:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\Program Files\USB Safely Remove\USBSafelyRemove.exe:AFP_AfpInfo
< End of report >

OTL Extras logfile created on: 01/10/2009 08:27:08 - Run 1
OTL by OldTimer - Version 3.0.17.0 Folder = C:\Documents and Settings\Joe Westwood\My Documents\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 100.00% Memory free
4.00 Gb Paging File | 4.00 Gb Available in Paging File | 100.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 229.49 Gb Total Space | 6.09 Gb Free Space | 2.66% Space Free | Partition Type: NTFS
Drive D: | 152.66 Gb Total Space | 84.31 Gb Free Space | 55.23% Space Free | Partition Type: NTFS
Drive E: | 236.26 Gb Total Space | 112.43 Gb Free Space | 47.59% Space Free | Partition Type: HFSJ
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
Drive I: | 298.02 Gb Total Space | 81.55 Gb Free Space | 27.36% Space Free | Partition Type: FAT32

Computer Name: BRKN-7ABB9CA2B7
Current User Name: Joe Westwood
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- C:\WINDOWS\hh.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.inf [@ = inffile] -- C:\WINDOWS\System32\Notepad2.exe ()
.ini [@ = inifile] -- C:\WINDOWS\System32\Notepad2.exe ()
.txt [@ = txtfile] -- C:\WINDOWS\System32\Notepad2.exe ()

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- C:\WINDOWS\system32\Notepad2.exe %1 ()
batfile [open] -- "%1" %* File not found
chm.file [open] -- "C:\WINDOWS\hh.exe" %1 (Microsoft Corporation)
cmdfile [edit] -- C:\WINDOWS\system32\Notepad2.exe %1 ()
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
inffile [open] -- C:\WINDOWS\system32\Notepad2.exe %1 ()
inifile [open] -- C:\WINDOWS\system32\Notepad2.exe %1 ()
jsfile [edit] -- C:\WINDOWS\system32\Notepad2.exe %1 ()
jsefile [edit] -- C:\WINDOWS\system32\Notepad2.exe %1 ()
piffile [open] -- "%1" %* File not found
regfile [edit] -- C:\WINDOWS\system32\Notepad2.exe %1 ()
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- C:\WINDOWS\system32\Notepad2.exe %1 ()
vbefile [edit] -- C:\WINDOWS\system32\Notepad2.exe %1 ()
vbsfile [edit] -- C:\WINDOWS\system32\Notepad2.exe %1 ()
wsffile [edit] -- C:\WINDOWS\system32\Notepad2.exe %1 ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [New Window] -- explorer.exe %1 (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\AVG\AVG8\avgupd.exe" = C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG8\avgnsx.exe" = C:\Program Files\AVG\AVG8\avgnsx.exe:*:Enabled:avgnsx.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG8\avgemc.exe" = C:\Program Files\AVG\AVG8\avgemc.exe:*:Enabled:avgemc.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\Vuze\Azureus.exe" = C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus -- (Vuze Inc.)
"C:\Program Files\Common Files\AOL\Loader\aolload.exe" = C:\Program Files\Common Files\AOL\Loader\aolload.exe:*:Enabled:AOL Loader -- (AOL LLC)
"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation)
"C:\Program Files\AIM6\aim6.exe" = C:\Program Files\AIM6\aim6.exe:*:Enabled:AIM -- (AOL LLC)
"C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- (Apple Inc.)
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0046FA01-C5B9-4985-BACB-398DC480FC05}" = Adobe Photoshop CS3
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{0C34B801-6AEC-4667-B053-03A67E2D0415}" = Apple Application Support
"{114463C6-FB0B-4E32-AA86-F589BC5418AE}" = Planet Earth
"{15CA0D1A-242F-4602-BC58-16CFD1B68DA9}_is1" = SureThing CD Labeler Primera Edition 5
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{21AE04E8-EBF6-40DB-9AA9-B7A80C5D057D}" = mkv2vob
"{2205E3A5-DCDC-461D-8ED6-D6F2341D3B64}" = Intel Audio Studio 2.0
"{2222B364-0854-4265-B32E-A142DB9DC7BB}" = Intel® PRO Network Connections 11.2.0.69
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216015FF}" = Java™ 6 Update 15
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{322DEC79-EEC6-4DE8-B81F-AD36CB1FF541}" = CutList Plus
"{3248F0A8-6813-11D6-A77B-00B0D0160050}" = Java™ 6 Update 5
"{34ACF0AB-D649-47DC-A90C-6DF34C270D78}" = Intel Audio Studio 2.0
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{39D21587-743A-4745-883E-B8E6254A13D5}" = PTP Administrator Utility
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3F3733A5-8322-454D-A638-3B74E1C83752}" = Gadget Installer
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{48EB9208-593D-4DC7-B613-9C5A210D87BA}" = Sony Sound Forge 8.0b
"{4F3E17F8-F1C8-4A4B-9EB8-1EE2D190CDA9}" = Adobe Setup
"{51846830-E7B2-4218-8968-B77F0FF475B8}" = Adobe Color EU Extra Settings
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{551AB2DB-9A21-461A-B9A0-F39D7D056D10}" = Moncha 2.1
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6A77C6D8-AD79-4FE3-98DC-BDBCD627F5CA}" = PCR Editor V2
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6FE22164-DB8B-4A90-86E6-CE6A4EF9594F}" = DCLive7
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{76C24F39-B161-498F-BD8B-C64789812D13}_is1" = ConvertXtoDVD 3.0.0.1
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7E0E01E6-8F0B-428B-9A06-668104DA6872}" = Business Plan Pro 11.0
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{870F1750-BA89-11DA-A94D-0800200C9A66}_is1" = VSO CopyToDVD 4
"{8B7AED24-E1A6-41E5-A2E8-18ED56144208}" = String Machine
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{90120000-008A-0409-0000-0000000FF1CE}" = Microsoft Office 2007 Recent Documents Gadget
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95655ED4-7CA5-46DF-907F-7144877A32E5}" = Adobe Color NA Recommended Settings
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A429C2AE-EBF1-4F81-A221-1C115CAADDAD}" = QuickTime
"{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}" = SigmaTel Audio
"{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger
"{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support
"{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings
"{AC76BA86-7AD7-1033-7B44-A91000000001}" = Adobe Reader 9.1.3
"{B08ACC56-7772-4C92-8052-774079E8927A}" = Mo Phatt
"{B3783869-5D14-4838-A042-910DF816D070}" = Xara3D6
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B944FA21-81AF-4A77-8328-CE4F4CC51033}" = Nero 8
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{BB05D173-9681-4812-A7FA-BD4042A3DA00}" = Alky for Applications (Windows XP)
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2
"{CA5F87DB-2AE2-4AAA-A300-04ED8E813FB1}" = PTPublisher
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D1BB4446-AE9C-4256-9A7F-4D46604D2462}" = Adobe Setup
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{DA34FE93-5DC5-48E0-ACC8-A5389E05BB51}" = iTunes
"{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}" = Adobe Color Common Settings
"{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings
"{E1230694-33DA-4E74-82E1-06CC9D545E9B}" = Windows Vista Sounds Pack
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{E9ECF354-2422-4FDB-9ABF-D8ADAC0EF941}" = Styler
"{EBD6B3E2-D43A-4F7D-A9FD-1F359E0C2320}" = MacDrive 7
"{F08E8D2E-F132-4742-9C87-D5FF223A016A}" = Adobe Illustrator CS3
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"8461-7759-5462-8226" = Vuze
"AC" = Attribute Changer 5.30
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe_2ac78060bc5856b0c1cf873bb919b58" = Adobe Photoshop CS3
"Adobe_a04a925a57548091300ada368235fc6" = Adobe Illustrator CS3
"AIM_6" = AIM 6
"Antares Tube v1.0" = Antares Tube v1.0
"Ask Toolbar_is1" = Vuze Toolbar
"ATI Display Driver" = ATI Display Driver
"AVG8Uninstall" = AVG Free 8.5
"CCleaner" = CCleaner (remove only)
"DamnNFOViewer" = [bleep] NFO Viewer v2.10.0032.RC3 (Remove Only)
"Focusrite Saffire Bundle VST v1.0" = Focusrite Saffire Bundle VST v1.0
"Genwaveaudio Genwave EQ VST_is1" = Genwaveaudio Genwave EQ VST v1.0
"GFORCE_SOFTWARE_MINIMONSTA_RTAS_VSTi_v1.04-PLZ" = GFORCE_SOFTWARE_MINIMONSTA_RTAS_VSTi_v1.04-PLZ
"GMedia Music impOSCar Standalone VST v1.01" = GMedia Music impOSCar Standalone VST v1.01
"HECI" = Intel® Management Engine Interface
"IconPackager" = IconPackager
"ie8" = Windows Internet Explorer 8
"ImgBurn" = ImgBurn
"iZotope Ozone v3.05" = iZotope Ozone v3.05
"JkDefragGUI" = JkDefragGUI v1.01
"KLiteCodecPack_is1" = K-Lite Codec Pack 4.2.5 (Full)
"KORG Legacy Collection - DIGITAL EDITION v1.0.0 " = KORG Legacy Collection - DIGITAL EDITION v1.0.0
"Korg Legacy Collection v1.0.0.2" = Korg Legacy Collection v1.0.0.2
"Kristanix Right Click Image Converter" = Right Click Image Converter
"LClock" = LClock
"Live 7.0.3" = Live 7.0.3
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mixed In Key" = Mixed In Key 2.5
"mmm" = PowerTweaK Menu (mmm)
"MOTU FireWire Audio Uninstall" = MOTU FireWire Audio
"Mozilla Firefox (3.5.3)" = Mozilla Firefox (3.5.3)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Native Instruments Absynth v3.0" = Native Instruments Absynth v3.0
"Native Instruments Battery v2.0" = Native Instruments Battery v2.0
"Native Instruments FM7" = Native Instruments FM7
"Native Instruments Kontakt v1.5.2 Incl Keygen" = Native Instruments Kontakt v1.5.2 Incl Keygen
"Native Instruments Kontakt v2.0" = Native Instruments Kontakt v2.0
"Nero8Lite_is1" = Nero 8 Micro 8.3.6.0
"NVIDIA Drivers" = NVIDIA Drivers
"PowerCore" = PowerCore 3.1
"Protean Drums" = Protean Drums
"PSP 84 v1.0" = PSP 84 v1.0
"PSP VintageWarmer v1.5d" = PSP VintageWarmer v1.5d
"ReCycle v2.1" = ReCycle v2.1
"Refreshem" = RefreshEM
"ReFX Vanguard VSTi v1.03 Retail" = ReFX Vanguard VSTi v1.03 Retail
"RegShot" = RegShot
"Reshack" = Resource Hacker
"SendTO" = Sendto Xtras
"Sonnox Oxford Limiter PowerCore VST_is1" = Sonnox Oxford Limiter PowerCore VST v1.1.1
"Sonnox Oxford R3 EQ PowerCore VST_is1" = Sonnox Oxford R3 EQ PowerCore VST v1.6.1
"Sonnox Oxford TransMod PowerCore VST_is1" = Sonnox Oxford TransMod PowerCore VST v1.3.1
"Steinberg Cubase SX v3.1.1.944" = Steinberg Cubase SX v3.1.1.944
"Steinberg Dcota v1.0" = Steinberg Dcota v1.0
"SureThing CD Labeler LightScribe_is1" = SureThing CD Labeler LightScribe 5.0.581.0
"SyncroSoft Emu" = SyncroSoft Emu (Remove only)
"Syncrosoft's License Control" = Syncrosoft's License Control
"TaskSwitchXP" = TaskSwitchXP
"TL Audio EQ-1 VST v1.0" = TL Audio EQ-1 VST v1.0
"TuneUpMedia" = TuneUp Companion 1.5.9
"Unlocker" = Unlocker 1.8.6
"USB Safely Remove_is1" = USB Safely Remove 4.1
"ViewpointMediaPlayer" = Viewpoint Media Player
"VLC media player" = VideoLAN VLC media player 0.8.6f
"Waves Mercury Complete VST DX RTAS_is1" = Waves Mercury Complete VST DX RTAS v1.01
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows Sidebar" = Windows Sidebar
"WinGrub" = WinGrub
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 17/09/2009 02:43:11 | Computer Name = BRKN-7ABB9CA2B7 | Source = Application Error | ID = 1000
Description = Faulting application explorer.exe, version 6.0.2900.5508, faulting
module unknown, version 0.0.0.0, fault address 0x0588c960.

Error - 17/09/2009 07:36:14 | Computer Name = BRKN-7ABB9CA2B7 | Source = Application Hang | ID = 1002
Description = Hanging application Photoshop.exe, version 10.0.0.0, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.

Error - 17/09/2009 09:42:16 | Computer Name = BRKN-7ABB9CA2B7 | Source = Application Error | ID = 1000
Description = Faulting application illustrator.exe, version 13.0.128.0, faulting
module illustrator.exe, version 13.0.128.0, fault address 0x001fb0bd.

Error - 23/09/2009 06:30:08 | Computer Name = BRKN-7ABB9CA2B7 | Source = Application Error | ID = 1000
Description = Faulting application illustrator.exe, version 13.0.128.0, faulting
module msvcr80.dll, version 8.0.50727.3053, fault address 0x00008aa0.

Error - 24/09/2009 10:24:58 | Computer Name = BRKN-7ABB9CA2B7 | Source = Application Error | ID = 1000
Description = Faulting application itunes.exe, version 9.0.1.8, faulting module
quicktime.qts, version 7.64.17.73, fault address 0x000e25aa.

Error - 30/09/2009 16:04:55 | Computer Name = BRKN-7ABB9CA2B7 | Source = Application Error | ID = 1000
Description = Faulting application illustrator.exe, version 13.0.128.0, faulting
module illustrator.exe, version 13.0.128.0, fault address 0x001f9576.

Error - 01/10/2009 02:55:27 | Computer Name = BRKN-7ABB9CA2B7 | Source = Application Hang | ID = 1002
Description = Hanging application Illustrator.exe, version 13.0.128.0, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 01/10/2009 02:55:27 | Computer Name = BRKN-7ABB9CA2B7 | Source = Application Hang | ID = 1002
Description = Hanging application Illustrator.exe, version 13.0.128.0, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

[ System Events ]
Error - 01/10/2009 03:03:40 | Computer Name = BRKN-7ABB9CA2B7 | Source = Service Control Manager | ID = 7034
Description = The MacDrive service service terminated unexpectedly. It has done
this 1 time(s).

Error - 01/10/2009 03:03:40 | Computer Name = BRKN-7ABB9CA2B7 | Source = Service Control Manager | ID = 7034
Description = The Nero BackItUp Scheduler 3 service terminated unexpectedly. It
has done this 1 time(s).

Error - 01/10/2009 03:03:40 | Computer Name = BRKN-7ABB9CA2B7 | Source = Service Control Manager | ID = 7034
Description = The MBAMService service terminated unexpectedly. It has done this
1 time(s).

Error - 01/10/2009 03:03:40 | Computer Name = BRKN-7ABB9CA2B7 | Source = Service Control Manager | ID = 7031
Description = The AVG Free8 WatchDog service terminated unexpectedly. It has done
this 1 time(s). The following corrective action will be taken in 0 milliseconds:
Restart the service.

Error - 01/10/2009 03:03:40 | Computer Name = BRKN-7ABB9CA2B7 | Source = Service Control Manager | ID = 7034
Description = The NVIDIA Display Driver Service service terminated unexpectedly.
It has done this 1 time(s).

Error - 01/10/2009 03:03:40 | Computer Name = BRKN-7ABB9CA2B7 | Source = Service Control Manager | ID = 7031
Description = The Windows Media Player Network Sharing Service service terminated
unexpectedly. It has done this 1 time(s). The following corrective action will
be taken in 30000 milliseconds: Restart the service.

Error - 01/10/2009 03:03:41 | Computer Name = BRKN-7ABB9CA2B7 | Source = Service Control Manager | ID = 7034
Description = The NMIndexingService service terminated unexpectedly. It has done
this 1 time(s).

Error - 01/10/2009 03:07:24 | Computer Name = BRKN-7ABB9CA2B7 | Source = DCOM | ID = 10005
Description = DCOM got error "%1053" attempting to start the service iPod Service
with arguments "" in order to run the server: {063D34A4-BF84-4B8D-B699-E8CA06504DDE}

Error - 01/10/2009 03:07:24 | Computer Name = BRKN-7ABB9CA2B7 | Source = Service Control Manager | ID = 7009
Description = Timeout (30000 milliseconds) waiting for the iPod Service service
to connect.

Error - 01/10/2009 03:07:24 | Computer Name = BRKN-7ABB9CA2B7 | Source = Service Control Manager | ID = 7000
Description = The iPod Service service failed to start due to the following error:
%%1053

< End of report >

Drivers
-------------------
Name: dump_atapi.sys
Image Path: C:\WINDOWS\System32\Drivers\dump_atapi.sys
Address: 0xB68AC000 Size: 98304 File Visible: No Signed: -
Status: -

Name: dump_WMILIB.SYS
Image Path: C:\WINDOWS\System32\Drivers\dump_WMILIB.SYS
Address: 0xBA5DA000 Size: 8192 File Visible: No Signed: -
Status: -

Name: rootrepeal.sys
Image Path: C:\WINDOWS\system32\drivers\rootrepeal.sys
Address: 0xB48D1000 Size: 49152 File Visible: No Signed: -
Status: -

==EOF==

Malwarebytes' Anti-Malware 1.40
Database version: 2746
Windows 5.1.2600 Service Pack 3

06/09/2009 01:10:52
mbam-log-2009-09-06 (01-10-52).txt

Scan type: Quick Scan
Objects scanned: 93449
Time elapsed: 5 minute(s), 49 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

#1
brokenjoe

Posted 01 October 2009 - 01:36 AM

Advertisements

#2
brokenjoe

Posted 05 October 2009 - 04:35 PM

#3
brokenjoe

Posted 12 October 2009 - 04:34 PM

Similar Topics

0 user(s) are reading this topic

As Featured On:

Forums

Downloads

Members

Connect With Us