Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Computer Running Very Slow

Started by worldwidewandering , Mar 18 2011 01:07 PM

  • Please log in to reply

#1
worldwidewandering
Posted 18 March 2011 - 01:07 PM

worldwidewandering

    Member

  • Member
  • PipPip
  • 22 posts
Hello,

My computer is running very slow and firefox freezes with CPU running at 100%. I recently upgraded to Firefox 4.0 Beta but it has been like this before that. I constantly have to use Task Manager to close the browser and often have to restart the computer. Lately this hasn't helped and it seems to get worse. Please help.

OTL logfile created on: 3/18/2011 2:47:14 PM - Run 2
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\ioioioioi\Desktop\downloads
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 59.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 83.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 465.76 Gb Total Space | 106.26 Gb Free Space | 22.81% Space Free | Partition Type: NTFS
Drive D: | 547.19 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive M: | 931.51 Gb Total Space | 625.55 Gb Free Space | 67.15% Space Free | Partition Type: NTFS

Computer Name: YOUR-1263E89BEC | User Name: ioioioioi | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/03/18 14:46:43 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\ioioioioi\Desktop\downloads\OTL.exe
PRC - [2011/03/04 07:49:46 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011/02/18 12:06:18 | 000,273,544 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe
PRC - [2011/01/13 04:47:34 | 003,396,624 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2011/01/13 04:47:33 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010/05/20 16:27:26 | 000,762,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\vVX3000.exe
PRC - [2010/05/20 16:27:24 | 000,139,632 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe
PRC - [2010/05/06 22:22:39 | 000,126,976 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe
PRC - [2010/03/25 07:03:14 | 001,753,088 | ---- | M] () -- C:\Program Files\PADManager2\RSDBServer.exe
PRC - [2010/03/02 19:14:40 | 000,065,536 | ---- | M] (New Boundary Technologies, Inc.) -- C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
PRC - [2008/06/11 22:43:26 | 000,640,376 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
PRC - [2008/04/13 20:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2005/09/26 19:07:00 | 000,090,112 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe
PRC - [2005/08/27 06:09:28 | 000,139,264 | ---- | M] (Alcor Micro, Corp.) -- C:\Program Files\Digital Media Reader\readericon45G.exe
PRC - [2001/08/18 02:36:42 | 000,024,064 | ---- | M] (Creative Technology Ltd.) -- C:\WINDOWS\system32\devldr32.exe


========== Modules (SafeList) ==========

MOD - [2011/03/18 14:46:43 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\ioioioioi\Desktop\downloads\OTL.exe
MOD - [2011/02/18 12:06:46 | 000,040,448 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Chrome\Hook\rpchromebrowserrecordhelper.dll
MOD - [2011/01/13 04:47:35 | 000,189,728 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\snxhk.dll
MOD - [2010/08/23 12:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2009/07/12 01:02:02 | 000,653,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcr90.dll
MOD - [2009/07/12 01:02:00 | 000,569,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcp90.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011/01/13 04:47:33 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010/08/07 13:43:10 | 000,651,720 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010/05/20 16:27:24 | 000,139,632 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe -- (MSCamSvc)
SRV - [2010/03/25 07:03:14 | 001,753,088 | ---- | M] () [Auto | Running] -- C:\Program Files\PADManager2\RSDBServer.exe -- (RSDBServerService)
SRV - [2010/03/02 19:14:40 | 000,065,536 | ---- | M] (New Boundary Technologies, Inc.) [Auto | Running] -- C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS -- (PrismXL)


========== Driver Services (SafeList) ==========

DRV - [2011/02/23 09:56:55 | 000,371,544 | ---- | M] (AVAST Software) [File_System | System | Stopped] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011/02/23 09:56:45 | 000,301,528 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011/02/23 09:55:49 | 000,049,240 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011/02/23 09:55:47 | 000,102,232 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011/02/23 09:55:10 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011/02/23 09:54:57 | 000,030,680 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011/02/23 09:54:55 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010/05/20 16:27:26 | 001,961,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VX3000.sys -- (VX3000)
DRV - [2010/04/28 08:44:02 | 000,054,760 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys -- (fssfltr)
DRV - [2009/03/30 03:09:28 | 000,239,336 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\RsFx0103.sys -- (RsFx0103)
DRV - [2008/04/13 14:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2008/01/20 03:07:58 | 000,033,292 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2005/09/26 19:07:00 | 003,644,800 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2005/07/29 21:11:04 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2005/07/29 21:11:02 | 000,034,048 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2005/03/17 13:51:16 | 001,033,600 | R--- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV)
DRV - [2005/03/17 13:50:36 | 000,221,440 | R--- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWBS2.sys -- (HSFHWBS2)
DRV - [2005/03/17 13:50:32 | 000,705,280 | R--- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2001/08/17 16:19:34 | 000,036,480 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sfmanm.sys -- (sfman) Creative SoundFont Manager Driver (WDM)
DRV - [2001/08/17 16:19:28 | 000,006,912 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctlfacem.sys -- (emu10k1) Creative Interface Manager Driver (WDM)
DRV - [2001/08/17 16:19:26 | 000,283,904 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\emu10k1m.sys -- (emu10k) Creative SB Live! (WDM)
DRV - [2001/08/17 16:19:20 | 000,003,712 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctljystk.sys -- (ctljystk)
DRV - [2001/08/17 09:49:32 | 000,019,968 | ---- | M] (Macronix International Co., Ltd. ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mxnic.sys -- (mxnic)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\..\URLSearchHook: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTo0.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========


FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011/02/18 12:06:47 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/03/10 13:04:50 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/03/10 13:04:46 | 000,000,000 | ---D | M]

[2011/01/14 00:13:00 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Extensions
[2010/08/08 20:15:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Extensions\{ea278cf8-93cd-484f-b951-57360482d33a}
[2011/01/14 00:13:00 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Extensions\[email protected]
[2011/03/17 00:02:23 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Firefox\Profiles\rrv4e9gl.default\extensions
[2010/03/26 07:27:34 | 000,000,000 | ---D | M] (Screengrab) -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Firefox\Profiles\rrv4e9gl.default\extensions\{02450954-cdd9-410f-b1da-db804e18c671}
[2010/06/08 20:09:39 | 000,000,000 | ---D | M] (Chipmark) -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Firefox\Profiles\rrv4e9gl.default\extensions\{04e8797c-deb5-4f75-916d-930dd2d4c1c2}
[2011/03/11 12:55:52 | 000,000,000 | ---D | M] (Flagfox) -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Firefox\Profiles\rrv4e9gl.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}
[2010/04/27 07:05:13 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Firefox\Profiles\rrv4e9gl.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/01/09 10:47:09 | 000,000,000 | ---D | M] (AI Roboform Toolbar for Firefox) -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Firefox\Profiles\rrv4e9gl.default\extensions\{22119944-ED35-4ab1-910B-E619EA06A115}
[2010/08/28 12:24:40 | 000,000,000 | ---D | M] ("Delicious Bookmarks") -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Firefox\Profiles\rrv4e9gl.default\extensions\{2fa4ed95-0317-4c6a-a74c-5f3e3912c1f9}
[2011/01/19 23:22:19 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Firefox\Profiles\rrv4e9gl.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2010/12/31 11:13:24 | 000,000,000 | ---D | M] (AddThis) -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Firefox\Profiles\rrv4e9gl.default\extensions\{3e0e7d2a-070f-4a47-b019-91fe5385ba79}
[2011/03/15 15:42:30 | 000,000,000 | ---D | M] (Fire.fm) -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Firefox\Profiles\rrv4e9gl.default\extensions\{6F0976E6-26F3-4AFE-BBEC-9E99E27E4DF3}
[2010/09/07 12:05:56 | 000,000,000 | ---D | M] (affilorama) -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Firefox\Profiles\rrv4e9gl.default\extensions\{7822cf50-08ee-4915-9872-ee92472df6cb}
[2010/07/31 17:33:25 | 000,000,000 | ---D | M] (Live HTTP Headers) -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Firefox\Profiles\rrv4e9gl.default\extensions\{8f8fe09b-0bd3-4470-bc1b-8cad42b8203a}
[2010/11/16 10:07:44 | 000,000,000 | ---D | M] (DictionarySearch) -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Firefox\Profiles\rrv4e9gl.default\extensions\{a0faa0a4-f1a7-4098-9a74-21efc3a92372}
[2011/03/01 11:03:26 | 000,000,000 | ---D | M] ("StumbleUpon") -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Firefox\Profiles\rrv4e9gl.default\extensions\{AE93811A-5C9A-4d34-8462-F7B864FC4696}
[2010/12/27 11:29:24 | 000,000,000 | ---D | M] (uTorrentBar Community Toolbar) -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Firefox\Profiles\rrv4e9gl.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
[2011/01/14 12:35:48 | 000,000,000 | ---D | M] ("CoolPreviews") -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Firefox\Profiles\rrv4e9gl.default\extensions\{CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B}
[2011/02/16 10:26:27 | 000,000,000 | ---D | M] (Page Speed) -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Firefox\Profiles\rrv4e9gl.default\extensions\{e3f6c2cc-d8db-498c-af6c-499fb211db97}
[2011/01/26 18:03:20 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Firefox\Profiles\rrv4e9gl.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2010/11/17 20:17:59 | 000,000,000 | ---D | M] (FoxTab) -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Firefox\Profiles\rrv4e9gl.default\extensions\{ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}
[2010/12/27 11:29:23 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Firefox\Profiles\rrv4e9gl.default\extensions\[email protected]
[2011/01/30 18:46:08 | 000,000,000 | ---D | M] ("Upromise TurboSaver") -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Firefox\Profiles\rrv4e9gl.default\extensions\FFToolbar@upromise
[2010/12/28 11:05:55 | 000,000,000 | ---D | M] (Read It Later) -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Firefox\Profiles\rrv4e9gl.default\extensions\[email protected]
[2010/03/02 19:28:57 | 000,000,000 | ---D | M] (Reframe It) -- C:\Documents and Settings\ioioioioi\Application Data\Mozilla\Firefox\Profiles\rrv4e9gl.default\extensions\[email protected]
[2011/03/10 13:04:50 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/03/15 19:58:19 | 000,000,000 | ---D | M] (Skype extension for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2010/07/29 16:00:50 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010/12/02 20:15:42 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011/01/02 17:30:13 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011/03/03 10:57:52 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011/03/04 07:50:04 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
[2009/11/19 17:16:28 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npCouponPrinter.dll
[2011/02/02 22:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2009/11/19 17:16:29 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npMozCouponPrinter.dll
[2010/01/01 04:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\bing.xml

O1 HOSTS File: ([2004/08/04 15:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngin1.dll (Conduit Ltd.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.)
O2 - BHO: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTo0.dll (Conduit Ltd.)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngin1.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTo0.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (uTorrentBar Toolbar) - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - C:\Program Files\uTorrentBar\tbuTo0.dll (Conduit Ltd.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [Adobe Acrobat Speed Launcher] C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Google Quick Search Box] C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe (Google Inc.)
O4 - HKLM..\Run: [googletalk] C:\Program Files\Google\Google Talk\googletalk.exe (Google)
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O4 - HKLM..\Run: [LifeCam] C:\Program Files\Microsoft LifeCam\LifeExp.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.)
O4 - HKLM..\Run: [readericon] C:\Program Files\Digital Media Reader\readericon45G.exe (Alcor Micro, Corp.)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [VX3000] C:\WINDOWS\vVX3000.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Power2GoExpress] File not found
O4 - HKLM..\RunOnce: [aswAhAScr.dll] C:\Program Files\Alwil Software\Avast5\aswRegSvr.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\OnlyWire.LNK = C:\Program Files\OnlyWire\OnlyWireWindows.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Append to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll (Google Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {C8E7CBFB-9F2E-42C7-B4CB-D4B7FC89A363} http://www.gather.co...erUploader5.cab (Gather Photo Uploader Control)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - AppInit_DLLs: (acaptuser32.dll) - C:\WINDOWS\System32\acaptuser32.dll (Adobe Systems, Inc.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\ioioioioi\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\ioioioioi\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004/08/26 14:04:39 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/03/18 14:43:53 | 000,371,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011/03/10 13:38:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ioioioioi\Desktop\ScrapeBox
[2011/03/09 04:01:42 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011/03/08 18:48:03 | 000,086,016 | ---- | C] (MindVision Software) -- C:\WINDOWS\unvise32.exe
[2011/03/08 18:47:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\The Rosetta Stone
[2011/03/08 18:47:24 | 000,000,000 | ---D | C] -- C:\Program Files\The Rosetta Stone
[2011/03/07 23:28:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ioioioioi\Zend
[2011/03/07 23:27:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ioioioioi\Start Menu\Programs\Zend Guard - 5.5.0
[2011/03/07 23:26:39 | 000,000,000 | -H-D | C] -- C:\Program Files\Zero G Registry
[2011/03/07 23:26:39 | 000,000,000 | ---D | C] -- C:\Program Files\Zend
[2011/03/07 23:25:52 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\ioioioioi\InstallAnywhere
[2011/03/03 00:55:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\iTunes
[2011/03/03 00:54:54 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011/03/03 00:54:51 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011/02/27 16:42:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\ioioioioi\My Documents\Owner's Documents_old_HD_2-10
[2011/02/26 01:40:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ioioioioi\Desktop\videos
[2011/02/24 12:49:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ioioioioi\Desktop\NicheaDay
[2011/02/24 11:28:29 | 000,000,000 | ---D | C] -- C:\Program Files\Market Samurai
[2011/02/23 19:45:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ioioioioi\Local Settings\Application Data\TheBestSpinner
[2011/02/23 19:36:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ioioioioi\Start Menu\Programs\TheBestSpinner
[2011/02/23 19:34:31 | 000,000,000 | ---D | C] -- C:\Program Files\TheBestSpinner
[2011/02/18 12:06:51 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared
[2011/02/18 12:06:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Real
[2011/02/18 12:06:20 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\WINDOWS\System32\pncrt.dll
[2011/02/18 12:06:08 | 000,000,000 | ---D | C] -- C:\Program Files\Real
[2011/02/18 12:06:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real
[2011/02/18 12:06:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ioioioioi\Application Data\Real
[9 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/03/18 14:43:53 | 000,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011/03/18 14:32:15 | 000,000,868 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2011/03/18 14:30:14 | 000,030,277 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2011/03/18 14:30:06 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/03/18 14:30:04 | 2011,680,768 | -HS- | M] () -- C:\hiberfil.sys
[2011/03/18 14:26:53 | 000,000,294 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-665764933-3507332226-2116606206-1006.job
[2011/03/18 14:26:53 | 000,000,286 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-665764933-3507332226-2116606206-1006.job
[2011/03/18 14:26:52 | 000,000,892 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/03/17 16:22:08 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
[2011/03/17 16:21:00 | 000,000,888 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/03/17 11:06:37 | 000,036,615 | ---- | M] () -- C:\Documents and Settings\ioioioioi\Desktop\livingsocial_voucher_10009913686.pdf
[2011/03/17 01:22:04 | 000,001,791 | ---- | M] () -- C:\Documents and Settings\ioioioioi\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2011/03/16 23:44:09 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/03/16 16:08:42 | 025,690,697 | ---- | M] () -- C:\Documents and Settings\ioioioioi\Desktop\Build.Your.Own.Wicked.WordPress.Themes.pdf
[2011/03/15 15:59:57 | 000,522,278 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/03/15 15:59:57 | 000,100,564 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/03/10 13:05:03 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\ioioioioi\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/03/10 13:05:02 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2011/03/09 04:03:45 | 000,001,355 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011/03/08 18:47:46 | 000,001,852 | ---- | M] () -- C:\Documents and Settings\ioioioioi\Desktop\The Rosetta Stone.lnk
[2011/03/08 17:04:25 | 000,002,265 | ---- | M] () -- C:\Documents and Settings\ioioioioi\Desktop\Skype.lnk
[2011/03/07 16:29:07 | 000,000,706 | ---- | M] () -- C:\Documents and Settings\ioioioioi\Desktop\Web2Mayhem.lnk
[2011/03/03 11:27:04 | 000,572,335 | ---- | M] () -- C:\Documents and Settings\ioioioioi\Desktop\1_11141_10XROIofEnergizingBrandAdvocates_Zuberance_Oct42010.pdf
[2011/03/03 00:55:58 | 000,001,542 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2011/02/27 17:22:01 | 000,000,350 | ---- | M] () -- C:\Documents and Settings\ioioioioi\Desktop\IM TBA.lnk
[2011/02/27 17:21:50 | 000,000,394 | ---- | M] () -- C:\Documents and Settings\ioioioioi\Desktop\World Wide Wandering.lnk
[2011/02/27 17:21:44 | 000,000,388 | ---- | M] () -- C:\Documents and Settings\ioioioioi\Desktop\Product Review TBA.lnk
[2011/02/26 13:22:22 | 000,001,902 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Keyword Corral PRO.lnk
[2011/02/24 13:59:30 | 000,030,720 | ---- | M] () -- C:\Documents and Settings\ioioioioi\My Documents\body type diet 2.msam
[2011/02/24 11:28:37 | 000,000,690 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Market Samurai.lnk
[2011/02/24 00:48:45 | 000,000,473 | ---- | M] () -- C:\Documents and Settings\ioioioioi\Desktop\Shortcut to The Best Spinner.lnk
[2011/02/23 19:53:31 | 000,000,175 | ---- | M] () -- C:\Documents and Settings\ioioioioi\Local Settings\Application Data\TheBestSpinner_Export.dat
[2011/02/23 19:36:16 | 000,001,656 | ---- | M] () -- C:\Documents and Settings\ioioioioi\Desktop\TheBestSpinner.lnk
[2011/02/23 10:04:21 | 000,040,648 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011/02/23 10:04:17 | 000,190,016 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011/02/23 09:56:55 | 000,371,544 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011/02/23 09:56:45 | 000,301,528 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011/02/23 09:55:49 | 000,049,240 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011/02/23 09:55:47 | 000,102,232 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011/02/23 09:55:44 | 000,096,344 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011/02/23 09:55:10 | 000,025,432 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011/02/23 09:54:57 | 000,030,680 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011/02/23 09:54:55 | 000,019,544 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011/02/23 01:53:55 | 000,002,329 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Web Page Analyzer.lnk
[2011/02/18 19:12:02 | 002,743,294 | ---- | M] () -- C:\Documents and Settings\ioioioioi\.websiteauditor.properties
[2011/02/18 18:19:05 | 000,453,954 | ---- | M] () -- C:\Documents and Settings\ioioioioi\.linkassistant.properties
[2011/02/18 12:06:20 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\WINDOWS\System32\pncrt.dll
[2011/02/17 17:56:32 | 000,001,896 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Comment Kahuna.lnk
[2011/02/16 15:39:09 | 000,122,880 | ---- | M] () -- C:\Documents and Settings\ioioioioi\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[9 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/03/17 11:06:37 | 000,036,615 | ---- | C] () -- C:\Documents and Settings\ioioioioi\Desktop\livingsocial_voucher_10009913686.pdf
[2011/03/16 16:07:51 | 025,690,697 | ---- | C] () -- C:\Documents and Settings\ioioioioi\Desktop\Build.Your.Own.Wicked.WordPress.Themes.pdf
[2011/03/10 13:05:01 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk
[2011/03/08 18:47:46 | 000,001,852 | ---- | C] () -- C:\Documents and Settings\ioioioioi\Desktop\The Rosetta Stone.lnk
[2011/03/07 02:19:09 | 000,000,286 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-665764933-3507332226-2116606206-1006.job
[2011/03/03 11:27:04 | 000,572,335 | ---- | C] () -- C:\Documents and Settings\ioioioioi\Desktop\1_11141_10XROIofEnergizingBrandAdvocates_Zuberance_Oct42010.pdf
[2011/03/03 00:55:58 | 000,001,542 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2011/02/27 17:22:01 | 000,000,350 | ---- | C] () -- C:\Documents and Settings\ioioioioi\Desktop\IM TBA.lnk
[2011/02/27 17:21:50 | 000,000,394 | ---- | C] () -- C:\Documents and Settings\ioioioioi\Desktop\World Wide Wandering.lnk
[2011/02/27 17:21:44 | 000,000,388 | ---- | C] () -- C:\Documents and Settings\ioioioioi\Desktop\Product Review TBA.lnk
[2011/02/26 13:22:22 | 000,001,902 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Keyword Corral PRO.lnk
[2011/02/26 13:22:22 | 000,001,902 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Keyword Corral PRO.lnk
[2011/02/24 11:28:37 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Market Samurai.lnk
[2011/02/24 11:28:37 | 000,000,690 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Market Samurai.lnk
[2011/02/24 00:48:45 | 000,000,473 | ---- | C] () -- C:\Documents and Settings\ioioioioi\Desktop\Shortcut to The Best Spinner.lnk
[2011/02/23 19:53:28 | 000,000,175 | ---- | C] () -- C:\Documents and Settings\ioioioioi\Local Settings\Application Data\TheBestSpinner_Export.dat
[2011/02/23 19:36:16 | 000,001,656 | ---- | C] () -- C:\Documents and Settings\ioioioioi\Desktop\TheBestSpinner.lnk
[2011/02/18 19:02:14 | 002,743,294 | ---- | C] () -- C:\Documents and Settings\ioioioioi\.websiteauditor.properties
[2011/02/18 18:19:04 | 000,453,954 | ---- | C] () -- C:\Documents and Settings\ioioioioi\.linkassistant.properties
[2011/02/18 12:07:41 | 000,000,294 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-665764933-3507332226-2116606206-1006.job
[2011/01/27 23:09:20 | 000,056,004 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2011/01/17 00:42:48 | 000,015,498 | ---- | C] () -- C:\WINDOWS\VX3000.ini
[2010/12/15 21:38:32 | 000,054,246 | ---- | C] () -- C:\WINDOWS\dkbeng.dat
[2010/12/15 21:37:01 | 000,000,761 | -H-- | C] () -- C:\WINDOWS\keypro.ini
[2010/10/20 00:41:35 | 000,195,304 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2010/03/15 19:59:02 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010/03/07 15:37:18 | 000,122,880 | ---- | C] () -- C:\Documents and Settings\ioioioioi\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/03/04 20:29:16 | 000,000,169 | ---- | C] () -- C:\WINDOWS\RtlRack.ini
[2010/03/02 19:18:56 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010/02/26 08:56:10 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2010/02/26 08:56:05 | 000,156,672 | R--- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2010/02/26 08:56:02 | 000,000,164 | R--- | C] () -- C:\WINDOWS\avrack.ini
[2010/02/26 08:55:11 | 001,519,616 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2010/02/26 08:55:10 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2010/02/26 08:55:10 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2010/02/26 08:55:10 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2010/02/26 08:55:09 | 001,466,368 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2010/02/26 08:55:09 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2010/02/26 08:55:09 | 000,573,440 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2010/02/26 08:55:09 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2010/02/26 08:55:07 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2010/02/26 08:55:07 | 000,393,216 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[2010/02/26 08:55:07 | 000,046,080 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2010/02/26 08:52:55 | 000,000,004 | ---- | C] () -- C:\WINDOWS\Pix11.dat
[2010/02/25 23:57:38 | 000,000,060 | ---- | C] () -- C:\WINDOWS\System32\SYSDRV.DAT
[2010/02/25 23:53:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2010/02/25 23:52:47 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2010/02/25 23:52:47 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2010/02/25 23:52:43 | 000,005,151 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2010/02/25 23:52:37 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2010/02/25 23:52:31 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2010/02/25 23:52:03 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2010/02/25 23:52:03 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2010/02/25 23:50:55 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2010/02/25 23:50:25 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2008/05/26 21:59:42 | 000,018,904 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschematrivial.bin
[2008/05/26 21:59:40 | 000,106,605 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschema.bin
[2007/09/27 10:51:02 | 000,020,698 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2007/09/27 10:48:48 | 000,030,628 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2007/09/27 10:48:28 | 000,031,698 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2004/08/27 06:50:59 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2004/08/27 05:54:47 | 000,516,096 | ---- | C] () -- C:\WINDOWS\System32\HotlineClient.exe
[2004/08/26 14:07:50 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2004/08/26 14:01:37 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2004/08/26 12:12:43 | 000,000,465 | ---- | C] () -- C:\WINDOWS\System32\emver.ini
[2004/08/26 12:12:43 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2004/08/26 12:12:10 | 000,522,278 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004/08/26 12:12:10 | 000,100,564 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004/08/26 06:54:56 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2004/08/26 06:54:01 | 001,562,624 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT

========== LOP Check ==========

[2010/03/02 22:55:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2010/07/24 09:51:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ashampoo
[2010/03/03 20:43:04 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
[2010/07/15 23:02:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Guitar Pro 6
[2011/02/08 18:50:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PADManager
[2011/03/18 02:08:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\RoboSoft
[2010/05/11 07:04:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2010/07/22 00:16:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2010/03/21 14:44:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2010/07/24 09:51:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ioioioioi\Application Data\Ashampoo
[2011/01/17 20:27:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ioioioioi\Application Data\FileZilla
[2010/07/15 23:02:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ioioioioi\Application Data\Guitar Pro 6
[2010/08/01 20:53:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ioioioioi\Application Data\HDRsoft
[2011/01/21 17:17:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ioioioioi\Application Data\JonathanLeger.com
[2011/01/27 23:03:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ioioioioi\Application Data\MarketSamurai.6E37012E1CBD7F47B14488FCC715944F3EBDCEDC.1
[2011/02/08 18:53:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ioioioioi\Application Data\PADGen
[2011/02/08 18:50:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ioioioioi\Application Data\PADManager
[2011/03/17 11:13:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ioioioioi\Application Data\PriceGong
[2010/04/01 19:00:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ioioioioi\Application Data\Softlakecity
[2011/03/18 02:08:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ioioioioi\Application Data\uTorrent
[2011/03/07 16:29:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ioioioioi\Application Data\Web2Mayhem
[2010/03/23 18:51:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ioioioioi\Application Data\Windows Desktop Search
[2010/10/01 19:48:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ioioioioi\Application Data\Windows Search
[2010/08/08 14:01:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ioioioioi\Application Data\Zipeg

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2

< End of report >
  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP