Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

(?) vmain.class Windows 7 running very slowly, freezing and programs c

Started by katekitty01 , Sep 30 2011 04:10 PM

  • Please log in to reply

#1
katekitty01
Posted 30 September 2011 - 04:10 PM

katekitty01

    New Member

  • Member
  • Pip
  • 1 posts
Before I start, may I apologise for my lack of technical know-how and terminology, I've tried my best over the last 8 days to solve this problem but am now at a loss as to where to go from here.
The first sign of any problem was a few weeks ago when my Incredimail program was acting strangely. It took much longer than normal to load up and whenever I'd been either using another program or the browser and came back to the email client it seemed to freeze for up to 2 minutes then no matter which email was highlighted it would switch to the first email in the inbox.
Then last Thursday - 22nd September - my Lenovo G550 laptop stopped recognising the external hard drive. At about the same time I could not connect to the internet despite the icon in the notification tray showing I had a full signal. Once the external drive had been disconnected the browser windows and Incredimail were connecting perfectly well again. However whatever I tried to do, whether online or not, was taking ages to do and often whatever I was using (Firefox, Windows Explorer, Incredimail, Adobe reader etc) would actually stop working completely and close down with the error message telling me that the program 'needed to close'.
I did a system restore which didn't make any difference so I tried to take it back to an even earlier restore point but for some reason it said there were no other restore points available - really weird !
I ran chkdsk from the start menu and after several hours of checking the machine booted up fairly quickly but within a short space of time (seconds rather than minutes) it reverted to the same set of problems.
A friend suggested that I changed to AVG free anti-virus as it does a boot scan. I uninstalled VirginMedia security (which has always served me well in the past) and installed AVG free. I did this today and configured it as best I could, then ran a quick scan which showed that there was an infection - vmain.class.
At this point I thought "Hang on I'd better get some expert advice here, before I go and mess things up completely !" and so here I am.
Below is the OTL log as you request in your guide.

OTL logfile created on: 9/30/2011 10:20:55 PM - Run 1
OTL by OldTimer - Version 3.2.29.1 Folder = C:\Users\Kate\Downloads
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

2.93 Gb Total Physical Memory | 1.63 Gb Available Physical Memory | 55.40% Memory free
5.87 Gb Paging File | 4.67 Gb Available in Paging File | 79.53% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 420.56 Gb Total Space | 95.38 Gb Free Space | 22.68% Space Free | Partition Type: NTFS
Drive D: | 30.25 Gb Total Space | 11.57 Gb Free Space | 38.25% Space Free | Partition Type: NTFS

Computer Name: KATE-PC | User Name: Kate | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/09/30 22:18:48 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Users\Kate\Downloads\OTL.exe
PRC - [2011/09/08 19:18:33 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Users\Kate\AppData\Local\Mozilla Firefox\firefox.exe
PRC - [2011/09/06 21:45:30 | 003,722,416 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011/09/06 21:45:28 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2011/06/24 05:22:20 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2011/06/06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/03/25 13:34:04 | 000,689,464 | ---- | M] (Radialpoint Inc.) -- C:\Program Files\Virgin Media\Service Manager\ServicepointService.exe
PRC - [2011/03/25 13:34:00 | 004,371,768 | ---- | M] (Virgin Media) -- C:\Program Files\Virgin Media\Service Manager\ServiceManager.exe
PRC - [2011/03/23 14:12:38 | 001,406,264 | ---- | M] (Virgin Media) -- C:\Program Files\Virgin Media\Digital Home Support\HsdService.exe
PRC - [2011/03/23 14:12:34 | 002,032,952 | ---- | M] (Virgin Media) -- C:\Program Files\Virgin Media\Digital Home Support\DHSClient.exe
PRC - [2011/02/25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/11/20 13:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009/12/09 14:22:56 | 000,057,344 | ---- | M] (Nalpeiron Ltd.) -- C:\Windows\System32\nlssrv32.exe
PRC - [2009/09/29 17:23:20 | 004,114,288 | ---- | M] (Lenovo(beijing) Limited) -- C:\Program Files\Lenovo\Energy Management\utility.exe
PRC - [2009/09/29 17:22:46 | 005,064,560 | ---- | M] (Lenovo (Beijing) Limited) -- C:\Program Files\Lenovo\Energy Management\Energy Management.exe
PRC - [2009/07/14 15:27:26 | 000,038,152 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
PRC - [2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IgrsSvcs.exe
PRC - [2009/06/04 20:03:32 | 000,186,904 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2009/06/04 20:03:06 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2008/05/19 12:13:20 | 000,057,344 | ---- | M] (Nalpeiron Ltd.) -- C:\Windows\System32\ASTSRV.EXE


========== Modules (No Company Name) ==========

MOD - [2011/09/08 19:18:33 | 001,846,232 | ---- | M] () -- C:\Users\Kate\AppData\Local\Mozilla Firefox\mozjs.dll
MOD - [2011/08/12 09:43:03 | 006,277,280 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll
MOD - [2011/03/25 13:25:14 | 000,158,208 | ---- | M] () -- C:\Program Files\Virgin Media\Service Manager\Windows7Features.dll
MOD - [2010/05/19 07:23:30 | 001,410,312 | ---- | M] () -- C:\Windows\System32\IcnOvrly.dll
MOD - [2009/10/28 23:21:48 | 004,850,016 | ---- | M] () -- C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
MOD - [2008/12/20 04:20:50 | 000,063,304 | ---- | M] () -- C:\Program Files\Lenovo\Energy Management\KbdHook.dll
MOD - [2008/12/20 04:20:08 | 000,051,016 | ---- | M] () -- C:\Program Files\Lenovo\Energy Management\HookLib.dll


========== Win32 Services (SafeList) ==========

SRV - [2011/09/06 21:45:28 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011/06/06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/03/25 13:34:04 | 000,689,464 | ---- | M] (Radialpoint Inc.) [Auto | Running] -- C:\Program Files\Virgin Media\Service Manager\ServicepointService.exe -- (ServicepointService)
SRV - [2011/03/23 14:12:38 | 001,406,264 | ---- | M] (Virgin Media) [Auto | Running] -- C:\Program Files\Virgin Media\Digital Home Support\HsdService.exe -- (HsdService)
SRV - [2010/06/09 19:44:38 | 001,343,400 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2009/12/09 14:22:56 | 000,057,344 | ---- | M] (Nalpeiron Ltd.) [Auto | Running] -- C:\Windows\System32\nlssrv32.exe -- (nlsX86cc)
SRV - [2009/10/29 10:22:50 | 030,603,640 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2009/09/22 19:16:32 | 000,579,400 | ---- | M] (Lenovo Group Limited) [On_Demand | Stopped] -- C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe -- (Lenovo ReadyComm ConnSvc)
SRV - [2009/08/14 15:22:48 | 000,509,192 | ---- | M] (Lenovo Group Limited) [On_Demand | Stopped] -- C:\Program Files\Lenovo\ReadyComm\AppSvc.exe -- (Lenovo ReadyComm AppSvc)
SRV - [2009/07/14 15:27:26 | 000,038,152 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe -- (IGRS)
SRV - [2009/07/14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\windows\System32\IgrsSvcs.exe -- (ReadyComm.DirectRouter)
SRV - [2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\windows\System32\IgrsSvcs.exe -- (PS_MDP)
SRV - [2009/06/04 20:03:06 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel®
SRV - [2008/05/19 12:13:20 | 000,057,344 | ---- | M] (Nalpeiron Ltd.) [Auto | Running] -- C:\Windows\System32\ASTSRV.EXE -- (ASTSRV)
SRV - [2007/07/24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Disabled | Stopped] -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)


========== Driver Services (SafeList) ==========

DRV - [2011/09/06 21:38:05 | 000,442,200 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011/09/06 21:37:53 | 000,320,856 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011/09/06 21:36:38 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011/09/06 21:36:36 | 000,052,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011/09/06 21:36:26 | 000,054,616 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2011/09/06 21:36:12 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011/05/18 10:12:38 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2011/05/18 10:12:36 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2011/05/18 10:12:32 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2011/05/18 10:12:28 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2011/03/16 18:59:38 | 000,032,672 | ---- | M] (IObit Information Technology) [File_System | Auto | Running] -- C:\Program Files\IObit\Protected Folder\pffilter.sys -- (PfFilter)
DRV - [2010/11/20 11:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 10:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\WinUsb.sys -- (WinUsb)
DRV - [2010/05/19 07:22:51 | 000,054,800 | ---- | M] () [Kernel | System | Running] -- C:\windows\System32\drivers\funfrm.sys -- (funfrm)
DRV - [2010/04/22 05:08:22 | 000,218,744 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2010/03/31 07:49:52 | 000,517,688 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CHDRT32.sys -- (CnxtHdAudService)
DRV - [2010/01/20 06:14:42 | 000,023,136 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AcpiVpc.sys -- (ACPIVPC)
DRV - [2009/12/01 17:37:02 | 001,261,680 | ---- | M] (Bison Electronics. Inc. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\BisonC07.sys -- (Cam5607)
DRV - [2009/07/28 22:09:36 | 000,063,240 | ---- | M] (Lenovo) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wdbridge.sys -- (Bridge0)
DRV - [2009/07/21 22:14:58 | 000,081,704 | ---- | M] (CyberLink) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wsvd.sys -- (wsvd)
DRV - [2009/07/16 13:37:14 | 000,011,792 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WDMirror.sys -- (wdmirror)
DRV - [2009/07/14 00:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2009/07/14 00:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\windows\system32\DRIVERS\serial.sys -- (Serial)
DRV - [2009/07/13 23:02:53 | 000,545,792 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\netr73.sys -- (netr73)
DRV - [2009/07/13 23:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32) Intel®
DRV - [2009/07/13 23:02:49 | 000,229,888 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\k57nd60x.sys -- (k57nd60x) Broadcom NetLink ™
DRV - [2008/08/26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008/08/06 13:34:16 | 000,128,104 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\WimFltr.sys -- (WimFltr)
DRV - [2005/08/30 03:47:38 | 000,058,320 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssm_bus.sys -- (ssm_bus) SAMSUNG Mobile USB Device II 1.0 driver (WDM)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://uk.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-gb
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 6F 43 A8 01 5C F3 CB 01 [binary data]
IE - HKCU\..\URLSearchHook: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - No CLSID value found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "about:home"
FF - prefs.js..extensions.enabledItems: [email protected]:3.1.5
FF - prefs.js..extensions.enabledItems: [email protected]:3.3.3.2
FF - prefs.js..extensions.enabledItems: [email protected]:0.41
FF - prefs.js..extensions.enabledItems: [email protected]:1.0.6
FF - prefs.js..extensions.enabledItems: [email protected]:2.2.1
FF - prefs.js..extensions.enabledItems: SkipScreen@SkipScreen:0.5.21amo
FF - prefs.js..extensions.enabledItems: wikilook@testpilot:2.7.0
FF - prefs.js..extensions.enabledItems: {1f91cde0-c040-11da-a94d-0800200c9a66}:5
FF - prefs.js..extensions.enabledItems: {3EC9C995-8072-4fc0-953E-4F30620D17F3}:2.0.0.4
FF - prefs.js..extensions.enabledItems: {ada4b710-8346-4b82-8199-5de2b400a6ae}:1.9.9.3.1
FF - prefs.js..extensions.enabledItems: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}:3.3.3.2
FF - prefs.js..extensions.enabledItems: {c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}:4.1
FF - prefs.js..extensions.enabledItems: {ca0849e8-2c76-42ae-9abe-34e14d337acf}:1.94
FF - prefs.js..extensions.enabledItems: {d47a9f51-8281-43fa-f450-f28ef8735e9a}:2.1.1
FF - prefs.js..extensions.enabledItems: {DDC359D1-844A-42a7-9AA1-88A850A938A8}:2.0.2
FF - prefs.js..extensions.enabledItems: {e1170235-2845-420c-acc3-42261a29dd46}:4.0.1
FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:2.0
FF - prefs.js..extensions.enabledItems: {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}:5.5
FF - prefs.js..extensions.enabledItems: {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.51
FF - prefs.js..extensions.enabledItems: {1BCA7BD8-8977-11DC-A9BD-548555D89593}:1.6
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6
FF - prefs.js..extensions.enabledItems: {0545b830-f0aa-4d7e-8820-50a4629a56fe}:4.6.5
FF - prefs.js..extensions.enabledItems: [email protected]:1.3.1
FF - prefs.js..keyword.URL: "chrome://browser-region/locale/region.properties"


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@radialpoint.com/SPA,version=1: C:\Program Files\Virgin Media\Service Manager\nprpspa.dll (Virgin Media)
FF - HKLM\Software\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0: C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011/04/22 20:30:06 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2011/09/30 08:27:37 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Users\Kate\AppData\Local\Mozilla Firefox\components [2011/09/08 19:18:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Users\Kate\AppData\Local\Mozilla Firefox\plugins [2011/09/16 08:14:46 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011/04/22 20:30:06 | 000,000,000 | ---D | M]

[2010/10/19 22:17:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kate\AppData\Roaming\Mozilla\Extensions
[2011/09/30 21:06:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kate\AppData\Roaming\Mozilla\Firefox\Profiles\j89b20o7.default\extensions
[2011/04/05 20:53:37 | 000,000,000 | ---D | M] ("Met Office weather gadget") -- C:\Users\Kate\AppData\Roaming\Mozilla\Firefox\Profiles\j89b20o7.default\extensions\{1BCA7BD8-8977-11DC-A9BD-548555D89593}
[2010/10/19 22:56:46 | 000,000,000 | ---D | M] (WeatherBug) -- C:\Users\Kate\AppData\Roaming\Mozilla\Firefox\Profiles\j89b20o7.default\extensions\{3EC9C995-8072-4fc0-953E-4F30620D17F3}
[2011/09/26 18:07:52 | 000,000,000 | ---D | M] (Clippings) -- C:\Users\Kate\AppData\Roaming\Mozilla\Firefox\Profiles\j89b20o7.default\extensions\{91aa5abe-9de4-4347-b7b5-322c38dd9271}
[2011/08/18 17:22:28 | 000,000,000 | ---D | M] (ReminderFox) -- C:\Users\Kate\AppData\Roaming\Mozilla\Firefox\Profiles\j89b20o7.default\extensions\{ada4b710-8346-4b82-8199-5de2b400a6ae}
[2011/09/23 09:39:58 | 000,000,000 | ---D | M] (uTorrentBar Community Toolbar) -- C:\Users\Kate\AppData\Roaming\Mozilla\Firefox\Profiles\j89b20o7.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
[2011/06/24 17:52:32 | 000,000,000 | ---D | M] ("BabelFish") -- C:\Users\Kate\AppData\Roaming\Mozilla\Firefox\Profiles\j89b20o7.default\extensions\{ca0849e8-2c76-42ae-9abe-34e14d337acf}
[2011/01/28 14:04:52 | 000,000,000 | ---D | M] (Pixlr Grabber) -- C:\Users\Kate\AppData\Roaming\Mozilla\Firefox\Profiles\j89b20o7.default\extensions\{d47a9f51-8281-43fa-f450-f28ef8735e9a}
[2011/01/30 17:40:33 | 000,000,000 | ---D | M] (Clipmarks) -- C:\Users\Kate\AppData\Roaming\Mozilla\Firefox\Profiles\j89b20o7.default\extensions\{e1170235-2845-420c-acc3-42261a29dd46}
[2011/03/28 01:53:58 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Users\Kate\AppData\Roaming\Mozilla\Firefox\Profiles\j89b20o7.default\extensions\[email protected]
[2011/09/13 13:21:47 | 000,000,000 | ---D | M] (Awesome screenshot: Capture and Annotate) -- C:\Users\Kate\AppData\Roaming\Mozilla\Firefox\Profiles\j89b20o7.default\extensions\jid0-GXjLLfbCoAx0LcltEdFrEkQdQPI@jetpack
[2010/10/19 22:56:44 | 000,000,000 | ---D | M] (图像浏览器) -- C:\Users\Kate\AppData\Roaming\Mozilla\Firefox\Profiles\j89b20o7.default\extensions\[email protected]
[2011/04/18 01:07:01 | 000,000,000 | ---D | M] (Remember The Milk for Gmail) -- C:\Users\Kate\AppData\Roaming\Mozilla\Firefox\Profiles\j89b20o7.default\extensions\[email protected]
[2011/06/21 22:44:17 | 000,000,000 | ---D | M] (samfind Bookmarks Bar) -- C:\Users\Kate\AppData\Roaming\Mozilla\Firefox\Profiles\j89b20o7.default\extensions\[email protected]
[2011/04/25 03:40:28 | 000,000,000 | ---D | M] (yogurttree) -- C:\Users\Kate\AppData\Roaming\Mozilla\Firefox\Profiles\j89b20o7.default\extensions\[email protected]
[2011/04/18 01:07:08 | 000,000,000 | ---D | M] (WikiLook) -- C:\Users\Kate\AppData\Roaming\Mozilla\Firefox\Profiles\j89b20o7.default\extensions\wikilook@testpilot
[2011/09/22 10:27:14 | 000,000,000 | ---D | M] (Zotero) -- C:\Users\Kate\AppData\Roaming\Mozilla\Firefox\Profiles\j89b20o7.default\extensions\[email protected]
[2011/09/11 00:10:41 | 000,000,000 | ---D | M] (Zotero WinWord Integration) -- C:\Users\Kate\AppData\Roaming\Mozilla\Firefox\Profiles\j89b20o7.default\extensions\[email protected]
[2011/04/05 07:36:40 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/06/11 02:59:20 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/09/01 19:16:27 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010/10/19 22:35:21 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2010/12/20 11:50:41 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011/03/04 21:04:13 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011/09/30 08:27:37 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF
() (No name found) -- C:\USERS\KATE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\J89B20O7.DEFAULT\EXTENSIONS\{0545B830-F0AA-4D7E-8820-50A4629A56FE}.XPI
() (No name found) -- C:\USERS\KATE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\J89B20O7.DEFAULT\EXTENSIONS\{1F91CDE0-C040-11DA-A94D-0800200C9A66}.XPI
() (No name found) -- C:\USERS\KATE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\J89B20O7.DEFAULT\EXTENSIONS\{C0C9A2C7-2E5C-4447-BC53-97718BC91E1B}.XPI
() (No name found) -- C:\USERS\KATE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\J89B20O7.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
() (No name found) -- C:\USERS\KATE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\J89B20O7.DEFAULT\EXTENSIONS\{DDC359D1-844A-42A7-9AA1-88A850A938A8}.XPI
() (No name found) -- C:\USERS\KATE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\J89B20O7.DEFAULT\EXTENSIONS\[email protected]
() (No name found) -- C:\USERS\KATE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\J89B20O7.DEFAULT\EXTENSIONS\[email protected]
() (No name found) -- C:\USERS\KATE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\J89B20O7.DEFAULT\EXTENSIONS\[email protected]
[2010/06/14 15:42:04 | 000,393,216 | ---- | M] (Invenda Corporation) -- C:\Program Files\mozilla firefox\plugins\NPcol400.dll
[2008/06/18 06:43:04 | 000,086,016 | ---- | M] (Coupons, Inc.) -- C:\Program Files\mozilla firefox\plugins\npCouponPrinter.dll
[2011/02/02 22:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2009/07/16 21:15:58 | 000,086,016 | ---- | M] (Coupons, Inc.) -- C:\Program Files\mozilla firefox\plugins\npMozCouponPrinter.dll

========== Chrome ==========

CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\14.0.835.186\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U26 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\14.0.835.186\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\14.0.835.186\pdf.dll
CHR - plugin: RIM Handheld Application Loader (Enabled) = C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
CHR - plugin: Service Manager (Enabled) = C:\Program Files\Virgin Media\Service Manager\nprpspa.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: avast! WebRep = C:\Users\Kate\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\

O1 HOSTS File: ([2009/06/10 22:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [DHSClient.exe] C:\Program Files\Virgin Media\Digital Home Support\DHSClient.exe (Virgin Media)
O4 - HKLM..\Run: [Energy Management] C:\Program Files\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited)
O4 - HKLM..\Run: [EnergyUtility] C:\Program Files\Lenovo\Energy Management\utility.exe (Lenovo(beijing) Limited)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [ServiceManager.exe] C:\Program Files\Virgin Media\Service Manager\ServiceManager.exe (Virgin Media)
O4 - HKLM..\Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SAIICpl.exe ()
O4 - HKLM..\Run: [UpdateP2GShortCut] C:\Program Files\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\Program Files\IncrediMail\Bin\resources\WebMenuImg.htm ()
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html File not found
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 194.168.4.100 194.168.8.100
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C75A9E4B-B405-483C-AAF0-5ACDB01CB8CB}: DhcpNameServer = 194.168.4.100 194.168.8.100
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) -C:\windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/09/30 08:29:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2011/09/30 08:28:26 | 000,020,568 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswFsBlk.sys
[2011/09/30 08:28:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2011/09/30 08:28:24 | 000,320,856 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswSP.sys
[2011/09/30 08:28:11 | 000,034,392 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswRdr.sys
[2011/09/30 08:28:10 | 000,052,568 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswTdi.sys
[2011/09/30 08:28:09 | 000,442,200 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswSnx.sys
[2011/09/30 08:27:59 | 000,054,616 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswMonFlt.sys
[2011/09/30 08:27:33 | 000,199,304 | ---- | C] (AVAST Software) -- C:\windows\System32\aswBoot.exe
[2011/09/30 08:27:33 | 000,041,184 | ---- | C] (AVAST Software) -- C:\windows\avastSS.scr
[2011/09/30 08:26:53 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2011/09/30 08:26:53 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2011/09/29 14:06:48 | 000,000,000 | ---D | C] -- C:\Program Files\M Set
[2011/09/26 21:28:28 | 000,000,000 | -HSD | C] -- C:\found.000
[2011/09/25 19:02:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2011/09/25 19:02:29 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011/09/17 07:48:03 | 000,000,000 | ---D | C] -- C:\Users\Kate\Documents\Any Video Converter Professional
[2011/09/17 07:47:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AnvSoft
[2011/09/17 07:47:42 | 000,000,000 | ---D | C] -- C:\Users\Kate\AppData\Roaming\AnvSoft
[2011/09/17 06:36:07 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrentBar
[2011/09/17 06:36:07 | 000,000,000 | ---D | C] -- C:\Users\Kate\AppData\Local\Conduit
[2011/09/17 06:36:03 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2011/09/17 06:35:08 | 000,000,000 | ---D | C] -- C:\Users\Kate\AppData\Roaming\uTorrent
[2011/09/17 06:35:08 | 000,000,000 | ---D | C] -- C:\Users\Kate\AppData\Local\uTorrent
[2011/09/13 08:22:15 | 000,000,000 | ---D | C] -- C:\Users\Kate\AppData\Local\{D692F566-433C-4E0B-914B-DFBAC137DD08}
[2011/09/10 23:54:01 | 000,000,000 | ---D | C] -- C:\Users\Kate\.clipbak
[2011/09/10 21:55:15 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe
[2011/09/10 21:33:42 | 000,000,000 | ---D | C] -- C:\Adobe Clean Install & Error Toolkit V4
[2011/09/10 16:00:35 | 000,000,000 | ---D | C] -- C:\windows\System32\Adobe
[2011/09/09 20:18:07 | 000,000,000 | ---D | C] -- C:\Users\Kate\AppData\Roaming\Nokia Ovi Suite
[2011/09/09 20:17:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Nokia
[2011/09/09 20:15:12 | 000,000,000 | ---D | C] -- C:\Users\Kate\AppData\Local\NokiaAccount
[2011/09/09 20:13:59 | 000,000,000 | ---D | C] -- C:\Users\Kate\AppData\Local\Nokia
[2011/09/09 20:12:10 | 000,000,000 | ---D | C] -- C:\Users\Kate\Documents\nataliephone
[2011/09/09 20:12:03 | 000,018,816 | ---- | C] (Nokia) -- C:\windows\System32\drivers\pccsmcfd.sys
[2011/09/08 22:59:17 | 000,000,000 | ---D | C] -- C:\Users\Kate\.freemind
[2011/09/08 22:59:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeMind
[2011/09/08 22:59:04 | 000,000,000 | ---D | C] -- C:\Program Files\FreeMind
[2011/09/08 20:12:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KAZ (Keyboard A-Z)
[2011/09/08 20:12:25 | 000,737,280 | ---- | C] (Indigo Rose Corporation) -- C:\windows\iun6002.exe
[2011/09/08 20:12:16 | 000,000,000 | ---D | C] -- C:\Program Files\KAZ (Keyboard A-Z)
[2011/09/07 00:17:28 | 000,000,000 | ---D | C] -- C:\Users\Kate\Documents\FFOutput
[2011/09/06 03:30:06 | 000,000,000 | ---D | C] -- C:\Users\Kate\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SDK125
[2011/09/06 03:30:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SDK125
[2011/06/16 17:12:26 | 000,216,064 | ---- | C] ( ) -- C:\windows\System32\lagarith.dll
[2011/04/05 10:39:09 | 008,579,448 | ---- | C] (Mozilla) -- C:\Program Files\Firefox Setup 3.6.16.exe
[2010/09/23 17:53:00 | 000,850,200 | ---- | C] (DivX, Inc. ) -- C:\Users\Kate\AppData\Roaming\DivXInstaller.exe
[2010/06/21 16:46:32 | 000,047,360 | ---- | C] (VSO Software) -- C:\Users\Kate\AppData\Roaming\pcouffin.sys
[2 C:\*.tmp files -> C:\*.tmp -> ]
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/09/30 22:28:02 | 000,000,882 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/09/30 21:03:35 | 000,000,878 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/09/30 20:58:47 | 000,015,488 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/09/30 20:58:47 | 000,015,488 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/09/30 20:51:00 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2011/09/30 11:00:15 | 000,002,577 | ---- | M] () -- C:\windows\System32\config.nt
[2011/09/30 08:29:52 | 000,002,161 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011/09/30 08:29:52 | 000,002,145 | ---- | M] () -- C:\Users\Kate\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2011/09/30 08:28:26 | 000,001,954 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2011/09/30 00:17:36 | 007,176,192 | ---- | M] () -- C:\Users\Kate\Documents\Personal contact manager.accdb
[2011/09/27 13:57:18 | 000,577,720 | ---- | M] () -- C:\windows\System32\FNTCACHE.DAT
[2011/09/27 13:50:47 | 000,000,290 | ---- | M] () -- C:\Users\Kate\Documents\cc_20110927_135042.reg
[2011/09/27 13:50:22 | 000,059,390 | ---- | M] () -- C:\Users\Kate\Documents\cc_20110927_135007.reg
[2011/09/26 19:20:07 | 000,000,925 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011/09/26 15:25:21 | 000,007,599 | ---- | M] () -- C:\Users\Kate\AppData\Local\Resmon.ResmonCfg
[2011/09/23 14:25:18 | 000,632,742 | ---- | M] () -- C:\windows\System32\perfh009.dat
[2011/09/23 14:25:18 | 000,114,702 | ---- | M] () -- C:\windows\System32\perfc009.dat
[2011/09/14 13:33:09 | 000,036,864 | ---- | M] () -- C:\Users\Kate\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/09/10 23:54:01 | 000,000,456 | ---- | M] () -- C:\Users\Kate\clipdat2.rdf
[2011/09/10 23:38:51 | 000,001,809 | ---- | M] () -- C:\Users\Kate\Documents\Firefox Sync Key.html
[2011/09/10 23:24:16 | 000,201,058 | ---- | M] () -- C:\Users\Kate\Documents\AllMyNotes Documents.ddb
[2011/09/10 23:24:16 | 000,201,058 | ---- | M] () -- C:\Users\Kate\Documents\AllMyNotes Documents.ddb - backup 11-09-10.ddb
[2011/09/09 19:12:42 | 000,002,882 | ---- | M] () -- C:\Users\Kate\Desktop\My IncrediMail Gold Gallery.html
[2011/09/09 00:37:21 | 000,000,058 | ---- | M] () -- C:\Users\Kate\Desktop\Platform Open University.URL
[2011/09/08 22:59:06 | 000,001,791 | ---- | M] () -- C:\Users\Kate\Desktop\FreeMind.lnk
[2011/09/08 20:12:27 | 000,001,840 | ---- | M] () -- C:\Users\Kate\Desktop\KAZ Typing Tutor V20.lnk
[2011/09/08 20:11:14 | 000,737,280 | ---- | M] (Indigo Rose Corporation) -- C:\windows\iun6002.exe
[2011/09/08 19:18:49 | 000,002,081 | ---- | M] () -- C:\Users\Kate\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/09/06 21:45:29 | 000,199,304 | ---- | M] (AVAST Software) -- C:\windows\System32\aswBoot.exe
[2011/09/06 21:45:29 | 000,041,184 | ---- | M] (AVAST Software) -- C:\windows\avastSS.scr
[2011/09/06 21:38:05 | 000,442,200 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswSnx.sys
[2011/09/06 21:37:53 | 000,320,856 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswSP.sys
[2011/09/06 21:36:38 | 000,034,392 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswRdr.sys
[2011/09/06 21:36:36 | 000,052,568 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswTdi.sys
[2011/09/06 21:36:26 | 000,054,616 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswMonFlt.sys
[2011/09/06 21:36:12 | 000,020,568 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswFsBlk.sys
[2011/09/06 03:30:06 | 000,003,636 | ---- | M] () -- C:\windows\SDK125.INI
[2011/09/05 18:46:12 | 000,000,069 | ---- | M] () -- C:\Users\Kate\Desktop\StudentHome - The Open University.URL
[2 C:\*.tmp files -> C:\*.tmp -> ]
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/09/30 08:29:52 | 000,002,161 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011/09/30 08:29:52 | 000,002,145 | ---- | C] () -- C:\Users\Kate\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2011/09/30 08:28:26 | 000,001,954 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2011/09/27 13:53:34 | 000,577,720 | ---- | C] () -- C:\windows\System32\FNTCACHE.DAT
[2011/09/27 13:50:44 | 000,000,290 | ---- | C] () -- C:\Users\Kate\Documents\cc_20110927_135042.reg
[2011/09/27 13:50:14 | 000,059,390 | ---- | C] () -- C:\Users\Kate\Documents\cc_20110927_135007.reg
[2011/09/26 19:20:07 | 000,000,925 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011/09/10 23:54:01 | 000,000,456 | ---- | C] () -- C:\Users\Kate\clipdat2.rdf
[2011/09/10 23:38:42 | 000,001,809 | ---- | C] () -- C:\Users\Kate\Documents\Firefox Sync Key.html
[2011/09/10 23:24:15 | 000,201,058 | ---- | C] () -- C:\Users\Kate\Documents\AllMyNotes Documents.ddb - backup 11-09-10.ddb
[2011/09/09 19:12:42 | 000,002,882 | ---- | C] () -- C:\Users\Kate\Desktop\My IncrediMail Gold Gallery.html
[2011/09/09 00:37:21 | 000,000,058 | ---- | C] () -- C:\Users\Kate\Desktop\Platform Open University.URL
[2011/09/08 22:59:06 | 000,001,791 | ---- | C] () -- C:\Users\Kate\Desktop\FreeMind.lnk
[2011/09/08 20:12:27 | 000,001,840 | ---- | C] () -- C:\Users\Kate\Desktop\KAZ Typing Tutor V20.lnk
[2011/09/06 03:29:59 | 000,003,636 | ---- | C] () -- C:\windows\SDK125.INI
[2011/09/05 18:46:12 | 000,000,069 | ---- | C] () -- C:\Users\Kate\Desktop\StudentHome - The Open University.URL
[2011/08/10 19:49:09 | 000,007,599 | ---- | C] () -- C:\Users\Kate\AppData\Local\Resmon.ResmonCfg
[2011/06/16 17:12:30 | 000,000,038 | ---- | C] () -- C:\windows\avisplitter.ini
[2011/06/16 17:12:25 | 002,712,064 | ---- | C] () -- C:\windows\System32\x264vfw.dll
[2011/06/16 17:12:22 | 000,631,808 | ---- | C] () -- C:\windows\System32\xvidcore.dll
[2011/06/16 17:12:22 | 000,243,200 | ---- | C] () -- C:\windows\System32\xvidvfw.dll
[2011/06/16 17:12:20 | 000,080,896 | ---- | C] () -- C:\windows\System32\ff_vfw.dll
[2011/06/16 14:37:09 | 000,175,616 | ---- | C] () -- C:\windows\System32\unrar.dll
[2011/05/17 15:46:44 | 000,488,448 | ---- | C] () -- C:\windows\System32\apdfprintmon.dll
[2011/04/22 20:22:01 | 000,210,803 | ---- | C] () -- C:\windows\hpoins21.dat
[2011/04/22 20:22:01 | 000,005,474 | ---- | C] () -- C:\windows\hpomdl21.dat
[2010/09/24 23:16:14 | 000,000,022 | ---- | C] () -- C:\Users\Kate\AppData\Local\kodakpcd.ini
[2010/06/21 17:41:03 | 000,000,016 | ---- | C] () -- C:\windows\Wininit.ini
[2010/06/21 17:40:57 | 000,035,328 | ---- | C] () -- C:\windows\INETWH32.DLL
[2010/06/21 17:40:57 | 000,009,136 | ---- | C] () -- C:\windows\INETWH16.DLL
[2010/06/21 17:40:57 | 000,004,528 | ---- | C] () -- C:\windows\SETBROWS.EXE
[2010/06/21 16:48:38 | 000,001,057 | ---- | C] () -- C:\Users\Kate\AppData\Roaming\vso_ts_preview.xml
[2010/06/21 16:46:34 | 000,087,608 | ---- | C] () -- C:\Users\Kate\AppData\Roaming\inst.exe
[2010/06/21 16:46:34 | 000,007,887 | ---- | C] () -- C:\Users\Kate\AppData\Roaming\pcouffin.cat
[2010/06/21 16:46:32 | 000,001,144 | ---- | C] () -- C:\Users\Kate\AppData\Roaming\pcouffin.inf
[2010/06/20 19:13:31 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/06/12 15:05:34 | 000,210,944 | ---- | C] () -- C:\windows\System32\MSVCRT10.DLL
[2010/06/12 15:05:34 | 000,057,344 | ---- | C] () -- C:\windows\System32\icmfilter.dll
[2010/06/03 13:49:18 | 000,000,031 | -H-- | C] () -- C:\windows\UKCpInfo.sys
[2010/06/03 13:37:34 | 000,000,069 | ---- | C] () -- C:\Users\Kate\AppData\Roaming\IncrediMail Collection ManagerIcm.ini
[2010/06/02 21:59:25 | 000,000,952 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys
[2010/06/02 00:27:59 | 000,036,864 | ---- | C] () -- C:\Users\Kate\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/06/01 23:54:48 | 000,111,932 | ---- | C] () -- C:\windows\System32\EPPICPrinterDB.dat
[2010/06/01 23:54:48 | 000,001,136 | ---- | C] () -- C:\windows\System32\EPPICPresetData_ES.dat
[2010/06/01 23:54:48 | 000,001,120 | ---- | C] () -- C:\windows\System32\EPPICPresetData_IT.dat
[2010/06/01 23:54:48 | 000,001,107 | ---- | C] () -- C:\windows\System32\EPPICPresetData_GE.dat
[2010/06/01 23:54:48 | 000,000,097 | ---- | C] () -- C:\windows\System32\PICSDK.ini
[2010/06/01 23:54:47 | 000,031,053 | ---- | C] () -- C:\windows\System32\EPPICPattern131.dat
[2010/06/01 23:54:47 | 000,027,417 | ---- | C] () -- C:\windows\System32\EPPICPattern121.dat
[2010/06/01 23:54:47 | 000,026,154 | ---- | C] () -- C:\windows\System32\EPPICPattern1.dat
[2010/06/01 23:54:47 | 000,024,903 | ---- | C] () -- C:\windows\System32\EPPICPattern3.dat
[2010/06/01 23:54:47 | 000,021,390 | ---- | C] () -- C:\windows\System32\EPPICPattern5.dat
[2010/06/01 23:54:47 | 000,020,148 | ---- | C] () -- C:\windows\System32\EPPICPattern2.dat
[2010/06/01 23:54:47 | 000,011,811 | ---- | C] () -- C:\windows\System32\EPPICPattern4.dat
[2010/06/01 23:54:47 | 000,004,943 | ---- | C] () -- C:\windows\System32\EPPICPattern6.dat
[2010/06/01 23:54:47 | 000,001,146 | ---- | C] () -- C:\windows\System32\EPPICPresetData_DU.dat
[2010/06/01 23:54:47 | 000,001,139 | ---- | C] () -- C:\windows\System32\EPPICPresetData_PT.dat
[2010/06/01 23:54:47 | 000,001,139 | ---- | C] () -- C:\windows\System32\EPPICPresetData_BP.dat
[2010/06/01 23:54:47 | 000,001,129 | ---- | C] () -- C:\windows\System32\EPPICPresetData_FR.dat
[2010/06/01 23:54:47 | 000,001,129 | ---- | C] () -- C:\windows\System32\EPPICPresetData_CF.dat
[2010/06/01 23:54:47 | 000,001,104 | ---- | C] () -- C:\windows\System32\EPPICPresetData_EN.dat
[2010/06/01 23:39:13 | 000,000,025 | ---- | C] () -- C:\windows\CSES20.ini
[2010/05/19 07:23:35 | 002,110,728 | ---- | C] () -- C:\windows\System32\Apblend.dll
[2010/05/19 07:23:35 | 001,410,312 | ---- | C] () -- C:\windows\System32\IcnOvrly.dll
[2010/05/19 07:23:35 | 001,171,456 | ---- | C] () -- C:\windows\System32\PicNotify.dll
[2010/05/19 07:23:35 | 000,660,744 | ---- | C] () -- C:\windows\System32\EncIcons.dll
[2010/05/19 07:23:35 | 000,513,288 | ---- | C] () -- C:\windows\System32\SimpleExt.dll
[2010/05/19 07:23:24 | 001,044,480 | ---- | C] () -- C:\windows\System32\3DImageRenderer.dll
[2010/05/19 07:22:52 | 000,057,344 | ---- | C] () -- C:\windows\AsfHelper.dll
[2010/05/19 07:22:52 | 000,054,800 | ---- | C] () -- C:\windows\System32\drivers\funfrm.sys
[2010/05/19 07:22:08 | 000,015,190 | ---- | C] () -- C:\windows\M3000Twn.ini
[2010/05/19 07:20:45 | 000,140,288 | ---- | C] () -- C:\windows\System32\igfxtvcx.dll
[2010/05/19 07:16:20 | 000,016,648 | R--- | C] () -- C:\windows\System32\LogAPI.dll
[2010/05/19 07:14:45 | 000,982,220 | ---- | C] () -- C:\windows\System32\igkrng500.bin
[2010/05/19 07:14:42 | 000,134,592 | ---- | C] () -- C:\windows\System32\igfcg500.bin
[2010/05/19 07:14:42 | 000,092,216 | ---- | C] () -- C:\windows\System32\igfcg500m.bin
[2010/05/19 07:14:41 | 000,439,300 | ---- | C] () -- C:\windows\System32\igcompkrng500.bin
[2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\windows\System32\OGACheckControl.dll
[2009/08/03 15:07:42 | 000,230,768 | ---- | C] () -- C:\windows\System32\OGAEXEC.exe
[2009/07/14 05:57:37 | 000,067,584 | --S- | C] () -- C:\windows\bootstat.dat
[2009/07/14 03:05:48 | 000,632,742 | ---- | C] () -- C:\windows\System32\perfh009.dat
[2009/07/14 03:05:48 | 000,291,294 | ---- | C] () -- C:\windows\System32\perfi009.dat
[2009/07/14 03:05:48 | 000,114,702 | ---- | C] () -- C:\windows\System32\perfc009.dat
[2009/07/14 03:05:48 | 000,031,548 | ---- | C] () -- C:\windows\System32\perfd009.dat
[2009/07/14 03:05:05 | 000,000,741 | ---- | C] () -- C:\windows\System32\NOISE.DAT
[2009/07/14 03:04:11 | 000,215,943 | ---- | C] () -- C:\windows\System32\dssec.dat
[2009/07/14 00:55:01 | 000,043,131 | ---- | C] () -- C:\windows\mib.bin
[2009/07/14 00:51:43 | 000,073,728 | ---- | C] () -- C:\windows\System32\BthpanContextHandler.dll
[2009/07/14 00:42:10 | 000,064,000 | ---- | C] () -- C:\windows\System32\BWContextHandler.dll
[2009/06/10 22:26:10 | 000,673,088 | ---- | C] () -- C:\windows\System32\mlang.dat

========== LOP Check ==========

[2011/06/27 20:43:25 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\.minecraft
[2011/06/16 04:46:11 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\aignes
[2010/06/21 17:30:15 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\Alien Skin
[2010/09/30 10:29:00 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\Amazon
[2010/06/18 22:44:56 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\AMPSoft
[2011/09/17 07:47:42 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\AnvSoft
[2011/02/15 01:22:42 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\Blackberry Desktop
[2011/05/19 22:01:22 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\CaptureSaver
[2010/09/23 17:36:56 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\CoffeeCup Software
[2011/08/10 00:19:39 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\coupons
[2010/08/08 16:18:00 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\DriverCure
[2010/06/14 15:42:04 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\E-centives
[2010/06/17 22:42:52 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\EasyCapture
[2011/04/25 21:29:03 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\FotkiDesktop
[2010/06/16 21:47:03 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\FUJIFILM
[2010/06/03 13:37:48 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\IncrediMail Collection Manager
[2011/04/25 12:48:02 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\IObit
[2010/08/01 17:27:45 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\Jasc
[2011/09/27 03:25:22 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\Nokia Ovi Suite
[2010/06/01 21:47:51 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\ooVoo Details
[2011/09/09 20:17:16 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\PC Suite
[2011/06/16 04:37:45 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\Radialpoint
[2011/02/15 01:13:59 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\Research In Motion
[2010/06/01 23:21:26 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\Skinux
[2010/08/31 20:36:28 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\Tific
[2011/04/26 02:36:20 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\TuneUp Software
[2010/06/02 17:50:51 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\Ulead Systems
[2011/09/30 03:00:01 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\uTorrent
[2011/09/30 09:00:32 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\Virgin Media
[2011/06/16 18:25:14 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\Vso
[2010/08/16 05:57:54 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\Windows SideBar
[2010/10/10 19:13:37 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\Xilisoft
[2010/06/17 17:15:55 | 000,000,000 | ---D | M] -- C:\Users\Kate\AppData\Roaming\Xilisoft Corporation
[2011/08/13 20:12:48 | 000,032,620 | ---- | M] () -- C:\windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 136 bytes -> C:\ProgramData\Temp:0656FCD2
@Alternate Data Stream - 131 bytes -> C:\ProgramData\Temp:8178B8D6
@Alternate Data Stream - 125 bytes -> C:\ProgramData\Temp:661DFA1C

< End of report >




Many, many thanks for reading this and hopefully being able to help me with this problem. I'm starting my degree tomorrow with the Open University and am supposed to have reliable internet access for the duration :/ so as you can imagine I'm getting pretty anxious (understatement of the year !!).
Regards
Kate
x
  • 0

Advertisements

#2
phutteringphoenix
Posted 01 October 2011 - 07:19 AM

phutteringphoenix

    New Member

  • Member
  • Pip
  • 2 posts
My apologies, have had to create another account as the one I did last night won't allow me to sign in, not sure whether I entered my email address incorrecty as when I tried to recover the password it's telling me that an email has been sent to my account but nothing has arrived after a few hours.
Kate
  • 0

#3
phutteringphoenix
Posted 01 October 2011 - 07:22 AM

phutteringphoenix

    New Member

  • Member
  • Pip
  • 2 posts
I ran a very detailed, in depth scan overnight and received the following notification via email from my computer.

avast! [KATE-PC]: File "C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_RpsSecurityAware_e1a893ceaaac134931cb84516465be1ef9fe115d_cab_020aac5a\WER105A.tmp.hdmp" is infected by "Int 13-512" virus.
"Mytotal" task used
Version of current VPS file is 110930-1, 30/09/2011

Not sure if this helps or not, I certainly hope so.
Kate
x
  • 0
Back to Windows Vista and Windows 7 · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Retired Forums
  3. Windows Vista and Windows 7

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP