Websites unreachable and ports being blocked

I have had the above problem on my work network for the last few days and can only put it down to Malware.

The websites in question (on my home server Sabnzbd, couchpotato etc) are accessible from any other network except my work one.

When i scan ports that i have opened on my work router with a web tool it says they are closed. I also can't access these websites with an iphone on the same network or any other pc.

So something is blocking the ports! I thought it could possibly be my ISP BT business but that doesn't make sense.

Another thing to add is that the websites allow me to login (if required) but the data will not load. sometimes only partially. I also had this problem with facebook.

Hope someone can help! thanks

OS: win xp sp3
router: billion bipac 7800n (same as at home)configured correctly.
google chrome (IE explorer and safari has same issue)

here is my OT log:

OTL logfile created on: 05/10/2011 09:55:49 - Run 3
OTL by OldTimer - Version 3.2.29.1 Folder = C:\Documents and Settings\Alan Hoey\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

2.75 Gb Total Physical Memory | 1.29 Gb Available Physical Memory | 46.87% Memory free
4.09 Gb Paging File | 2.76 Gb Available in Paging File | 67.55% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 182.23 Gb Total Space | 35.36 Gb Free Space | 19.40% Space Free | Partition Type: NTFS
Drive F: | 931.50 Gb Total Space | 153.93 Gb Free Space | 16.53% Space Free | Partition Type: NTFS

Computer Name: ALANHOEY | User Name: Alan Hoey | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Alan Hoey\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - c:\Program Files\TeamViewer\Version6\TeamViewer.exe (TeamViewer GmbH)
PRC - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Program Files\Raxco\PerfectDisk\PDAgentS1.exe (Raxco Software, Inc.)
PRC - C:\Program Files\Raxco\PerfectDisk\PDAgent.exe (Raxco Software, Inc.)
PRC - C:\Program Files\Raxco\PerfectDisk\PDEngine.exe (Raxco Software, Inc.)
PRC - C:\Program Files\Common Files\Sage SBD\SBDDesktop.exe ()
PRC - C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe (PC Tools)
PRC - C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
PRC - C:\Program Files\Common Files\Sage SData\Sage.SData.Service.exe (Sage (UK) Limited)
PRC - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe (TuneUp Software)
PRC - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe (TuneUp Software)
PRC - C:\Program Files\RealVNC\VNC4\vncaddrbook.exe ()
PRC - C:\Program Files\RealVNC\VNC4\winvnc4.exe (RealVNC Ltd.)
PRC - C:\WINDOWS\system32\pcPDisp.exe (pdfconverter.com)
PRC - C:\Program Files\Paragon Software\Drive Backup 9 Professional\Net Burner Service\NetBurnerService.exe (Paragon GmbH)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Protexis Inc.)
PRC - C:\WINDOWS\system32\spool\drivers\w32x86\3\OPHJLDCS.EXE (Oki Data Corporation)
PRC - C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech Inc.)
PRC - C:\Program Files\Common Files\Logitech\KhalShared\KHALMNPR.exe (Logitech Inc.)
PRC - C:\Program Files\Gemplus\GemSafe Libraries\BIN\GCardSrvNT.exe (Gemplus)
PRC - C:\Program Files\Gemplus\GemSafe Libraries\BIN\GCardSrv.exe (Gemplus)
PRC - C:\Program Files\Gemplus\GemSafe Libraries\BIN\RegTool.exe (Gemplus)
PRC - C:\Program Files\Symantec AntiVirus\VPTray.exe (Symantec Corporation)
PRC - C:\Program Files\Symantec AntiVirus\Rtvscan.exe (Symantec Corporation)
PRC - C:\Program Files\Symantec AntiVirus\DefWatch.exe (Symantec Corporation)
PRC - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe (Symantec Corporation)
PRC - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe (Symantec Corporation)
PRC - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe (Symantec Corporation)
PRC - C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
PRC - C:\Program Files\WinFax\WFXCTL32.EXE ()
PRC - C:\Program Files\USB Product Driver 2.25r003\shwicon.exe (MyComp)
PRC - C:\WINDOWS\DIT.EXE (ICSI Technology Ltd.)
PRC - C:\WINDOWS\mHotkey.exe (Chicony)
PRC - C:\WINDOWS\CNYHKey.exe (Chicony)
PRC - C:\Program Files\WallpaperToy\Wallpapertoy.Exe (Microsoft Corp.)
PRC - C:\Program Files\WinFax\WFXMOD32.EXE (Symantec Corporation)
PRC - C:\WINDOWS\system32\WFXSNT40.EXE (Microsoft Corporation)
PRC - C:\Program Files\WinFax\WFXSWTCH.exe ()
PRC - C:\Program Files\Brownie\BRSTSWND.EXE (brother)
PRC - C:\Program Files\Brownie\brcdcmon.exe (brother)
PRC - C:\WINDOWS\system32\WFXSVC.EXE (Symantec Corporation)

========== Modules (No Company Name) ==========

MOD - C:\Program Files\Google\Chrome\Application\14.0.835.187\ppgooglenaclpluginchrome.dll ()
MOD - C:\Program Files\Google\Chrome\Application\14.0.835.187\pdf.dll ()
MOD - C:\Program Files\Google\Chrome\Application\14.0.835.187\Locales\en-US.dll ()
MOD - C:\Program Files\Google\Chrome\Application\14.0.835.187\avutil-51.dll ()
MOD - C:\Program Files\Google\Chrome\Application\14.0.835.187\avformat-53.dll ()
MOD - C:\Program Files\Google\Chrome\Application\14.0.835.187\avcodec-53.dll ()
MOD - C:\Program Files\Google\Chrome\Application\14.0.835.187\gcswf32.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Management\6e563a58e6fc0117070d5b8fd59e4e1b\System.Management.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\585e68739b2a8aff61ee6b2786513245\System.Configuration.Install.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\70a1400affdc775d7c7398e036359286\System.ServiceProcess.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\a2392c995b1bb6b63079091259222357\System.Web.Services.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\40893760431f8f0dcce3e18630e45b23\System.Web.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\75f452279422a7898e840ee5768c9d2e\System.EnterpriseServices.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\75f452279422a7898e840ee5768c9d2e\System.EnterpriseServices.Wrapper.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\846dd505f97805f00999ee26aec9bf75\System.Transactions.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\de9cd25ccb24bcf8a0316756e766721f\System.Security.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\77df2cd21a5b85a1605b335aa9ad9d44\System.Configuration.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\Act.Shared.Diagnost#\a77d26406a70604b1a37aa7ad98274f8\Act.Shared.Diagnostics.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\Act.Shared.Config\e0e417fc8541fff98df98346ae00530d\Act.Shared.Config.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\Act.Outlook.Service#\5ece99672a5e84381c00c70fa99eb07a\Act.Outlook.Service.Shared.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\Act.Outlook.Service#\0cd72a5522bd3f90db863e21d191b097\Act.Outlook.Service.Interfaces.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\Act.Outlook.Service#\753cb278a4106812ec58f260a282f8ef\Act.Outlook.Service.Desktop.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\Act.Outlook.Message#\396621defb21ae36715ca0e2ac88f4fd\Act.Outlook.Message.Reader.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\Act.Outlook.Integra#\4c1c32a263cff06c32c03afccf679c4f\Act.Outlook.Integration.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\Act.Outlook.Addin.S#\9b8e772df022b1d34386fc93f88e2a52\Act.Outlook.Addin.Shared.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\Act.Framework\974d2fbf6bce39082af16da1d4f5029d\Act.Framework.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\10154dcad2d62f226af2fd4211460a4b\System.Xml.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\d00cc387e462e4c3cdcd112b137cac87\System.Windows.Forms.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\7ed09623172a292eaee51e2e3bcaf784\System.Drawing.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\e54e013315849f5e34d8f2a8e7fdb450\System.Core.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\db2d84e279807592a680ef4135e9fe9a\System.Data.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\b7795999cc67f3a6cec40f5b24005e00\PresentationFramework.Luna.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\704556e34128441ea9f1a81cc89f8a79\PresentationFramework.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\5f332c48d03eca57419c4f0e884092ee\PresentationCore.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\fd6e0cd6f124a6d041ef1b4c9a5f080b\WindowsBase.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System\e6c79e1d71b0c9000afd7e5e439b5c54\System.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\0309936a8e1672d39b9cf14463ce69f9\mscorlib.ni.dll ()
MOD - C:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll ()
MOD - C:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll ()
MOD - C:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll ()
MOD - C:\windows\assembly\GAC_MSIL\Sage.Common.Web.Server\1.0.0.0__c59b718b5ca510a8\Sage.Common.Web.Server.dll ()
MOD - C:\windows\assembly\GAC_MSIL\Sage.Integration.Server.Model\1.0.0.0__3f422f0ff54abde1\Sage.Integration.Server.Model.dll ()
MOD - C:\windows\assembly\GAC_MSIL\Sage.Integration.Server\1.0.0.0__3f422f0ff54abde1\Sage.Integration.Server.dll ()
MOD - C:\windows\assembly\GAC_MSIL\Sage.Integration.Server.Feeds\1.0.0.0__3f422f0ff54abde1\Sage.Integration.Server.Feeds.dll ()
MOD - C:\windows\assembly\GAC_MSIL\Sage.Common.Syndication\1.0.0.0__c59b718b5ca510a8\Sage.Common.Syndication.dll ()
MOD - C:\windows\assembly\GAC_MSIL\Sage.Utilities\1.0.0.0__c59b718b5ca510a8\Sage.Utilities.dll ()
MOD - C:\windows\assembly\GAC_MSIL\Sage.Integration.Diagnostics\1.0.0.0__3f422f0ff54abde1\Sage.Integration.Diagnostics.dll ()
MOD - C:\windows\assembly\GAC\Sage.Common\10.0.0.141__6e1ad03deaa1eb79\Sage.Common.dll ()
MOD - C:\windows\assembly\GAC_MSIL\Sage.Reporting.Engine.Integration\1.0.0.5__0a4a2ad97614f98d\Sage.Reporting.Engine.Integration.dll ()
MOD - C:\windows\assembly\GAC_MSIL\Sage.UI\1.0.0.5__0a4a2ad97614f98d\Sage.UI.dll ()
MOD - C:\windows\assembly\GAC_MSIL\Sage.Reporting.Model\1.0.0.5__0a4a2ad97614f98d\Sage.Reporting.Model.dll ()
MOD - C:\windows\assembly\GAC_MSIL\Sage.Xml\1.0.0.5__0a4a2ad97614f98d\Sage.Xml.dll ()
MOD - C:\windows\assembly\GAC_MSIL\Sage.Serialization\1.0.0.5__0a4a2ad97614f98d\Sage.Serialization.dll ()
MOD - C:\windows\assembly\GAC_MSIL\Sage.Reporting.Services\1.0.0.5__0a4a2ad97614f98d\Sage.Reporting.Services.dll ()
MOD - C:\windows\assembly\GAC_MSIL\Sage.Reporting.Engine\1.0.0.5__0a4a2ad97614f98d\Sage.Reporting.Engine.dll ()
MOD - C:\windows\assembly\GAC_MSIL\Sage.Query.Engine\1.0.0.5__0a4a2ad97614f98d\Sage.Query.Engine.dll ()
MOD - C:\windows\assembly\GAC_MSIL\Sage.Query.Engine.Model\1.0.0.5__0a4a2ad97614f98d\Sage.Query.Engine.Model.dll ()
MOD - C:\windows\assembly\GAC_MSIL\Sage.Expressions\1.0.0.5__0a4a2ad97614f98d\Sage.Expressions.dll ()
MOD - C:\windows\assembly\GAC_MSIL\Sage.Designer\1.0.0.5__0a4a2ad97614f98d\Sage.Designer.dll ()
MOD - C:\windows\assembly\GAC_32\ESubs.Model.Interfaces\3.1.0.0__e64c7adafb397180\ESubs.Model.Interfaces.dll ()
MOD - C:\windows\assembly\GAC_32\ESubs.Model\3.1.0.0__e64c7adafb397180\ESubs.Model.dll ()
MOD - C:\windows\assembly\GAC_32\ESubs.View\3.1.0.0__e64c7adafb397180\ESubs.View.dll ()
MOD - C:\windows\assembly\GAC_32\SgEData\3.1.0.0__e64c7adafb397180\SgEData.dll ()
MOD - C:\windows\assembly\GAC_32\ESubs.ViewModel\3.1.0.0__e64c7adafb397180\ESubs.ViewModel.dll ()
MOD - C:\windows\assembly\GAC_32\SgELauncher\3.1.0.0__e64c7adafb397180\SgELauncher.dll ()
MOD - C:\Program Files\Sage Payroll\PayReport.dll ()
MOD - C:\Program Files\Sage Payroll\PayCommon.dll ()
MOD - C:\Program Files\Sage Payroll\PayList.dll ()
MOD - C:\Program Files\Sage Payroll\PayAudit.dll ()
MOD - C:\Program Files\Sage Payroll\PayHealthCheck.dll ()
MOD - C:\Program Files\Sage Payroll\PayHistorical.dll ()
MOD - C:\Program Files\Sage Payroll\DbCopy32.dll ()
MOD - C:\WINDOWS\system32\SGRep32.dll ()
MOD - C:\WINDOWS\system32\SGLch32.dll ()
MOD - C:\WINDOWS\system32\SGTBar32.dll ()
MOD - C:\WINDOWS\system32\SgStat32.dll ()
MOD - C:\WINDOWS\system32\SGLogo32.dll ()
MOD - C:\WINDOWS\system32\SGCDlg32.dll ()
MOD - C:\WINDOWS\system32\SGAppBar.dll ()
MOD - C:\windows\assembly\GAC\DevComponents.DotNetBar\5.8.0.0__7eb7c3a35b91de04\DevComponents.DotNetBar.dll ()
MOD - C:\windows\assembly\GAC_MSIL\PdfSharp\1.31.1789.0__f94615aa0424f9eb\PdfSharp.dll ()
MOD - C:\Program Files\FileZilla FTP Client\fzshellext.dll ()
MOD - C:\windows\assembly\GAC\Extensibility\7.0.3300.0__b03f5f7f11d50a3a\Extensibility.dll ()
MOD - C:\windows\assembly\GAC\Microsoft.Office.Interop.Outlook\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.Outlook.dll ()
MOD - C:\Program Files\Common Files\Sage SBD\Sage.SBD.Platform.NewsFeeds.dll ()
MOD - C:\Program Files\Common Files\Sage SBD\Sage.SBD.Platform.DotNet.dll ()
MOD - C:\Program Files\Common Files\Sage SBD\SBDDesktop.exe ()
MOD - C:\Program Files\Common Files\Sage SBD\Interop.SageSBDPlatformUIInterfaces.dll ()
MOD - C:\Program Files\Common Files\Sage SBD\Interop.SageSBDPlatformUI.dll ()
MOD - C:\Program Files\Common Files\Sage SBD\Interop.SageSBDCommon.dll ()
MOD - C:\Program Files\Common Files\Sage SBD\Interop.SageSBDPlatformInterfaces.dll ()
MOD - C:\Program Files\Common Files\Sage SBD\Sage.SBD.Controls.dll ()
MOD - C:\Program Files\Common Files\Sage SBD\Sage.SBD.Platform.UI.MFC.dll ()
MOD - C:\Program Files\Common Files\Sage SBD\Sage.SBD.Platform.UI.dll ()
MOD - C:\Program Files\Common Files\Sage SBD\Sage.SBD.Platform.dll ()
MOD - C:\Program Files\Common Files\Sage SBD\Sage.SBD.Common.dll ()
MOD - C:\windows\assembly\GAC\Microsoft.Office.Interop.Outlook\10.0.4504.0__31bf3856ad364e35\Microsoft.Office.Interop.Outlook.dll ()
MOD - C:\windows\assembly\GAC_MSIL\Microsoft.Practices.Unity\1.2.0.0__31bf3856ad364e35\Microsoft.Practices.Unity.dll ()
MOD - C:\windows\assembly\GAC_MSIL\Microsoft.Practices.ObjectBuilder2\2.2.0.0__31bf3856ad364e35\Microsoft.Practices.ObjectBuilder2.dll ()
MOD - C:\windows\assembly\GAC_MSIL\Interop.Redemption\4.7.0.0__ebf6b2ff4d0a08aa\Interop.Redemption.dll ()
MOD - C:\windows\assembly\GAC_MSIL\Act.Shared.Utilities\12.1.181.0__ebf6b2ff4d0a08aa\Act.Shared.Utilities.dll ()
MOD - C:\windows\assembly\GAC_32\Act.Outlook.Message.Reader\12.1.181.0__ebf6b2ff4d0a08aa\Act.Outlook.Message.Reader.dll ()
MOD - C:\windows\assembly\GAC_MSIL\ActOutlookAddin\12.1.181.0__ebf6b2ff4d0a08aa\ActOutlookAddin.dll ()
MOD - C:\Program Files\Sage\Accounts\sg50Controls.dll ()
MOD - C:\WINDOWS\system32\SGList32.dll ()
MOD - C:\WINDOWS\system32\SGTool32.dll ()
MOD - C:\WINDOWS\system32\SGIntl32.dll ()
MOD - C:\WINDOWS\system32\SGHelp32.dll ()
MOD - C:\WINDOWS\system32\SGDt32.dll ()
MOD - C:\WINDOWS\system32\SGSchemeXml.dll ()
MOD - C:\WINDOWS\system32\SGSchemeManager.dll ()
MOD - C:\WINDOWS\system32\SGCom32.dll ()
MOD - C:\WINDOWS\system32\SGWebBrowser.dll ()
MOD - C:\WINDOWS\system32\quartz.dll ()
MOD - C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll ()
MOD - C:\Program Files\WinRAR\RarExt.dll ()
MOD - C:\Program Files\RealVNC\VNC4\vncaddrbook.exe ()
MOD - C:\WINDOWS\system32\VNCpm.dll ()
MOD - C:\Program Files\Traction Software\SFV Checker\SFVContextMenuExt.dll ()
MOD - C:\Program Files\Combined Community Codec Pack\Filters\Haali\splitter.ax ()
MOD - C:\Program Files\Combined Community Codec Pack\Filters\Haali\mkx.dll ()
MOD - C:\Program Files\Combined Community Codec Pack\Filters\Haali\mp4.dll ()
MOD - C:\Program Files\Combined Community Codec Pack\Filters\Haali\mkzlib.dll ()
MOD - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSPTLS.DLL ()
MOD - C:\Program Files\Haali\MatroskaSplitter\mmfinfo.dll ()
MOD - C:\Program Files\Haali\MatroskaSplitter\mkunicode.dll ()
MOD - C:\Program Files\Microsoft Office\Office12\ADDINS\ColleagueImport.dll ()
MOD - C:\WINDOWS\system32\msdmo.dll ()
MOD - C:\WINDOWS\system32\devenum.dll ()
MOD - C:\WINDOWS\system32\msjetoledb40.dll ()
MOD - C:\Program Files\Common Files\Sage SBD\SBDHelper.dll ()
MOD - C:\Program Files\Microsoft Office\Office12\ADDINS\UmOutlookAddin.dll ()
MOD - C:\Program Files\Unlocker\UnlockerCOM.dll ()
MOD - C:\Program Files\Sage\Accounts\implodelib.dll ()
MOD - C:\Program Files\WinFax\WFXCTL32.EXE ()
MOD - C:\WINDOWS\CNYUSB.dll ()
MOD - C:\WINDOWS\HKCYDLL.dll ()
MOD - C:\WINDOWS\HIDMNT.dll ()
MOD - C:\WINDOWS\system32\HPBHEALR.DLL ()
MOD - C:\Program Files\WinFax\WFXSWTCH.exe ()
MOD - C:\Program Files\WinFax\WFSUBKUP.DLL ()
MOD - C:\Program Files\WinFax\DCCDA32I.DLL ()
MOD - C:\Program Files\WinFax\WFXVW32I.DLL ()
MOD - C:\WINDOWS\system32\spool\prtprocs\w32x86\WFXPNT40.DLL ()
MOD - C:\Program Files\WinFax\SENGINE.DLL ()
MOD - C:\Program Files\WinFax\DCCTBP32.DLL ()
MOD - C:\Program Files\WinFax\DCCDA32K.DLL ()

========== Win32 Services (SafeList) ==========

SRV - (gusvc) -- File not found
SRV - (ekrn) -- File not found
SRV - (EhttpSrv) -- File not found
SRV - (AVG Security Toolbar Service) -- File not found
SRV - (AppMgmt) -- File not found
SRV - (MBAMService) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (TeamViewer6) -- C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (PDAgent) -- C:\Program Files\Raxco\PerfectDisk\PDAgent.exe (Raxco Software, Inc.)
SRV - (PDEngine) -- C:\Program Files\Raxco\PerfectDisk\PDEngine.exe (Raxco Software, Inc.)
SRV - (PCToolsSSDMonitorSvc) -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe (PC Tools)
SRV - (TuneUp.Defrag) -- C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe (TuneUp Software)
SRV - (ACT! Scheduler) -- C:\Program Files\ACT\Act for Windows\Act.Scheduler.exe (Sage Software, Inc.)
SRV - (Sage SData Service) -- C:\Program Files\Common Files\Sage SData\Sage.SData.Service.exe (Sage (UK) Limited)
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe (TuneUp Software)
SRV - (UxTuneUp) -- C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software)
SRV - (WinVNC4) -- C:\Program Files\RealVNC\VNC4\WinVNC4.exe (RealVNC Ltd.)
SRV - (NetBurnerService) -- C:\Program Files\Paragon Software\Drive Backup 9 Professional\Net Burner Service\NetBurnerService.exe (Paragon GmbH)
SRV - (PSI_SVC_2) -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Protexis Inc.)
SRV - (TryAndDecideService) -- C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe ()
SRV - (AcrSch2Svc) -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe (Acronis)
SRV - (OKI OPHJ DCS Loader) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\OPHJLDCS.EXE (Oki Data Corporation)
SRV - (GemSAFE Card Server) -- C:\Program Files\Gemplus\GemSafe Libraries\BIN\GCardSrvNT.exe (Gemplus)
SRV - (SavRoam) -- C:\Program Files\Symantec AntiVirus\SavRoam.exe (symantec)
SRV - (Symantec AntiVirus) -- C:\Program Files\Symantec AntiVirus\Rtvscan.exe (Symantec Corporation)
SRV - (DefWatch) -- C:\Program Files\Symantec AntiVirus\DefWatch.exe (Symantec Corporation)
SRV - (SNDSrvc) -- C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe (Symantec Corporation)
SRV - (LiveUpdate) -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_0.EXE (Symantec Corporation)
SRV - (Automatic LiveUpdate Scheduler) -- C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (Symantec Corporation)
SRV - (ccSetMgr) -- C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe (Symantec Corporation)
SRV - (ccPwdSvc) -- C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe (Symantec Corporation)
SRV - (ccEvtMgr) -- C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe (Symantec Corporation)
SRV - (Ad-Axis Server) -- C:\Program Files\Lavasoft\Ad-Aware SE Enterprise 2005\aaserver.exe ()
SRV - (SPBBCSvc) -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe (Symantec Corporation)
SRV - (Pml Driver HPZ12) -- C:\WINDOWS\system32\hpzipm12.exe (HP)
SRV - (KMService) -- C:\WINDOWS\system32\srvany.exe ()
SRV - (x10nets) -- C:\Program Files\Common Files\X10\Common\X10nets.exe (X10)
SRV - (wfxsvc) -- C:\WINDOWS\system32\WFXSVC.EXE (Symantec Corporation)

========== Driver Services (SafeList) ==========

DRV - (CardReaderFilter) -- C:\WINDOWS\system32\drivers\USBCRFT.SYS (ICSI Technology Ltd.)
DRV - (NAVEX15) -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20111003.001\NAVEX15.SYS (Symantec Corporation)
DRV - (NAVENG) -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20111003.001\NAVENG.SYS (Symantec Corporation)
DRV - (MBAMProtector) -- C:\WINDOWS\system32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (eeCtrl) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys (Symantec Corporation)
DRV - (EraserUtilRebootDrv) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys (Symantec Corporation)
DRV - (SASKUTIL) -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (SASDIFSV) -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (DefragFS) -- C:\windows\System32\drivers\DefragFs.sys (Raxco Software, Inc.)
DRV - (TuneUpUtilitiesDrv) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys (TuneUp Software)
DRV - (vncmirror) -- C:\WINDOWS\system32\drivers\vncmirror.sys (RealVNC Ltd.)
DRV - (timounter) -- C:\windows\system32\DRIVERS\timntr.sys (Acronis)
DRV - (tifsfilter) -- C:\WINDOWS\system32\drivers\tifsfilt.sys (Acronis)
DRV - (snapman) -- C:\windows\system32\DRIVERS\snapman.sys (Acronis)
DRV - (tdrpman) -- C:\windows\system32\DRIVERS\tdrpman.sys (Acronis)
DRV - (NetBurn) -- C:\WINDOWS\system32\drivers\NetBurn.sys (Rocket Division Software)
DRV - (Uim_IM) -- C:\WINDOWS\system32\drivers\Uim_IM.sys (Paragon Software Group)
DRV - (UimBus) -- C:\WINDOWS\system32\drivers\UimBus.sys (Paragon Software Group)
DRV - (hotcore3) -- C:\windows\system32\DRIVERS\hotcore3.sys (Paragon Software Group)
DRV - (MPE) -- C:\WINDOWS\system32\drivers\mpe.sys (Microsoft Corporation)
DRV - ({95808DC4-FA4A-4C74-92FE-5B863F82066B}) -- C:\Program Files\CyberLink\PowerDVD\000.fcl (Cyberlink Corp.)
DRV - (LMouFilt) -- C:\WINDOWS\system32\drivers\LMouFilt.Sys (Logitech, Inc.)
DRV - (LHidFilt) -- C:\WINDOWS\system32\drivers\LHidFilt.Sys (Logitech, Inc.)
DRV - (Cdralw2k) -- C:\windows\System32\drivers\cdralw2k.sys (Sonic Solutions)
DRV - (Cdr4_xp) -- C:\windows\System32\drivers\cdr4_xp.sys (Sonic Solutions)
DRV - (sptd) -- C:\WINDOWS\system32\drivers\sptd.sys (Duplex Secure Ltd.)
DRV - (tbhsd) -- C:\WINDOWS\system32\drivers\tbhsd.sys (RapidSolution Software AG)
DRV - (StarOpen) -- C:\windows\System32\drivers\StarOpen.sys ()
DRV - (LBeepKE) -- C:\WINDOWS\system32\drivers\LBeepKE.sys (Logitech, Inc.)
DRV - (LHidKe) -- C:\WINDOWS\system32\drivers\LHidKE.Sys (Logitech, Inc.)
DRV - (LMouKE) -- C:\WINDOWS\system32\drivers\LMouKE.Sys (Logitech, Inc.)
DRV - (LUsbKbd) -- C:\WINDOWS\system32\drivers\LUsbKbd.sys (Logitech, Inc.)
DRV - (LHidUsbK) -- C:\WINDOWS\system32\drivers\LHidUsbK.sys (Logitech, Inc.)
DRV - (L8042mou) -- C:\WINDOWS\system32\drivers\L8042MOU.SYS (Logitech, Inc.)
DRV - (L8042Kbd) -- C:\WINDOWS\system32\drivers\L8042Kbd.SYS (Logitech, Inc.)
DRV - (ZDPSp50) -- C:\WINDOWS\system32\drivers\ZDPSp50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (BRGSp50) -- C:\WINDOWS\system32\drivers\BRGSp50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (SYMTDI) -- C:\windows\System32\Drivers\SYMTDI.SYS (Symantec Corporation)
DRV - (SYMREDRV) -- C:\windows\System32\Drivers\SYMREDRV.SYS (Symantec Corporation)
DRV - (SymEvent) -- C:\Program Files\Symantec\SYMEVENT.SYS (Symantec Corporation)
DRV - (SAVRTPEL) -- C:\Program Files\Symantec AntiVirus\Savrtpel.sys (Symantec Corporation)
DRV - (SAVRT) -- C:\Program Files\Symantec AntiVirus\savrt.sys (Symantec Corporation)
DRV - (SPBBCDrv) -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys (Symantec Corporation)
DRV - (AgereSoftModem) -- C:\WINDOWS\system32\drivers\AGRSM.sys (Agere Systems)
DRV - (ati2mtag) -- C:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.)
DRV - (3xHybrid) -- C:\WINDOWS\system32\drivers\3xHybrid.sys (Philips Semiconductors GmbH)
DRV - (cmudax) -- C:\WINDOWS\system32\drivers\cmudax.sys (C-Media Inc.)
DRV - (atinevxx) -- C:\WINDOWS\system32\drivers\atinevxx.sys (ATI Technologies Inc.)
DRV - (MVDCODEC) -- C:\WINDOWS\system32\drivers\atinmdxx.sys (ATI Technologies Inc.)
DRV - (SecDir) -- C:\windows\System32\SecDir.sys (Y0YS Software)
DRV - (a347bus) -- C:\WINDOWS\system32\drivers\a347bus.sys ( )
DRV - (a347scsi) -- C:\windows\System32\Drivers\a347scsi.sys ( )
DRV - (HdAudAddService) -- C:\WINDOWS\system32\drivers\Hdaudio.sys (Windows ® Server 2003 DDK provider)
DRV - (PRISM_A00) -- C:\WINDOWS\system32\drivers\PRISMA00.sys ()
DRV - (UKBFLT) -- C:\WINDOWS\system32\drivers\UKBFLT.sys (Chicony)
DRV - (pfc) -- C:\WINDOWS\system32\drivers\pfc.sys (Padus, Inc.)
DRV - (dot4ufd) -- C:\WINDOWS\system32\drivers\hppaufd0.sys (HP)
DRV - (GTwinUSB) -- C:\WINDOWS\system32\drivers\GTwinUSB.sys (Gemplus)
DRV - (PCANDIS5) -- C:\WINDOWS\system32\PCANDIS5.SYS (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (X10UIF) -- C:\WINDOWS\system32\drivers\x10uif.sys (X10 Wireless Technology, Inc.)
DRV - (ms_mpu401) -- C:\WINDOWS\system32\drivers\msmpu401.sys (Microsoft Corporation)
DRV - (SBKUPNT) -- C:\WINDOWS\system32\drivers\SBKUPNT.SYS ()
DRV - (BrPar) -- C:\windows\System32\drivers\BrPar.sys (Brother Industries Ltd.)

========== Standard Registry (All) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft...B_PVER}&ar=home
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn...st/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn...st/srchasst.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.co...ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>;*.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Yahoo "
FF - prefs.js..browser.search.defaulturl: "http://www.google.co...-8&oe=UTF-8&q="
FF - prefs.js..browser.search.update: false
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.co.uk/"
FF - prefs.js..extensions.enabledItems: {3112ca9c-de6d-4884-a869-9855de68056c}:7.1.20101113Wb1
FF - prefs.js..extensions.enabledItems: [email protected]:2.1
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:0.0.0
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.1.5
FF - prefs.js..extensions.enabledItems: avg@igeared:5.008.027.003
FF - prefs.js..extensions.enabledItems: {3713a489-0634-4472-8456-dc7abd7eba00}:1.2.2
FF - prefs.js..extensions.enabledItems: {FDE3FEE9-893E-4cc7-A814-60E0DE7B2E01}:3.6
FF - prefs.js..extensions.enabledItems: {5c876f30-10ce-11dd-bd0b-0800200c9a66}:3.5
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.13
FF - prefs.js..extensions.enabledItems: [email protected]:0.6.20100705
FF - prefs.js..keyword.URL: "http://search.yahoo....&type=62929&p="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=1.1.4: C:\Program Files\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.3: C:\Documents and Settings\Alan Hoey\Application Data\Facebook\npfbplugin_1_0_3.dll ( )

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009/09/02 10:21:57 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared [2011/02/22 12:48:33 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/09/09 11:46:26 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/09/09 11:46:45 | 000,000,000 | ---D | M]

[2008/08/26 08:06:04 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Alan Hoey\Application Data\Mozilla\Extensions
[2008/08/26 08:06:04 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Alan Hoey\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2011/03/02 18:02:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Alan Hoey\Application Data\Mozilla\Firefox\Profiles\25ca2gf0.default\extensions
[2009/02/04 17:06:10 | 000,000,000 | ---D | M] (Abstract Classic) -- C:\Documents and Settings\Alan Hoey\Application Data\Mozilla\Firefox\Profiles\25ca2gf0.default\extensions\{2fbc1200-ad13-11db-abbd-0800200c9a66}
[2011/01/26 17:29:20 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Documents and Settings\Alan Hoey\Application Data\Mozilla\Firefox\Profiles\25ca2gf0.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2009/02/04 17:04:22 | 000,000,000 | ---D | M] (Abaca classic) -- C:\Documents and Settings\Alan Hoey\Application Data\Mozilla\Firefox\Profiles\25ca2gf0.default\extensions\{3713a489-0634-4472-8456-dc7abd7eba00}
[2009/02/04 17:31:07 | 000,000,000 | ---D | M] (Acid Burn) -- C:\Documents and Settings\Alan Hoey\Application Data\Mozilla\Firefox\Profiles\25ca2gf0.default\extensions\{47d1d620-5e5b-11da-8cd6-0800200c9a66}
[2009/07/28 07:55:41 | 000,000,000 | ---D | M] (Aero Fox Silver) -- C:\Documents and Settings\Alan Hoey\Application Data\Mozilla\Firefox\Profiles\25ca2gf0.default\extensions\{5c876f30-10ce-11dd-bd0b-0800200c9a66}
[2009/02/04 17:07:33 | 000,000,000 | ---D | M] (Aero Fox) -- C:\Documents and Settings\Alan Hoey\Application Data\Mozilla\Firefox\Profiles\25ca2gf0.default\extensions\{5c8bfb7c-9a54-11dc-8314-0800200c9a66}
[2009/10/20 16:07:43 | 000,000,000 | ---D | M] (PitchDark) -- C:\Documents and Settings\Alan Hoey\Application Data\Mozilla\Firefox\Profiles\25ca2gf0.default\extensions\{c1dffba0-628e-11d9-9669-0800200c9a66}
[2009/02/05 13:45:02 | 000,000,000 | ---D | M] (iPox) -- C:\Documents and Settings\Alan Hoey\Application Data\Mozilla\Firefox\Profiles\25ca2gf0.default\extensions\{c9c58820-7bd4-11da-a72b-0800200c9a66}
[2010/07/21 15:55:41 | 000,000,000 | ---D | M] (Aeon Clouds) -- C:\Documents and Settings\Alan Hoey\Application Data\Mozilla\Firefox\Profiles\25ca2gf0.default\extensions\{FDE3FEE9-893E-4cc7-A814-60E0DE7B2E01}
[2010/05/19 12:48:05 | 000,000,000 | ---D | M] (InvisibleHand) -- C:\Documents and Settings\Alan Hoey\Application Data\Mozilla\Firefox\Profiles\25ca2gf0.default\extensions\[email protected]
[2010/08/10 12:48:45 | 000,000,000 | ---D | M] (BrowserNation â€“ Liverpool F.C. for Firefox) -- C:\Documents and Settings\Alan Hoey\Application Data\Mozilla\Firefox\Profiles\25ca2gf0.default\extensions\[email protected]
[2010/07/21 15:58:50 | 000,000,000 | ---D | M] (NASA Night Launch) -- C:\Documents and Settings\Alan Hoey\Application Data\Mozilla\Firefox\Profiles\25ca2gf0.default\extensions\[email protected]
[2009/12/11 10:53:02 | 000,000,000 | ---D | M] (Send to WebUI) -- C:\Documents and Settings\Alan Hoey\Application Data\Mozilla\Firefox\Profiles\25ca2gf0.default\extensions\[email protected]
[2009/07/28 07:56:04 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Alan Hoey\Application Data\Mozilla\Firefox\Profiles\25ca2gf0.default\extensions\{5c876f30-10ce-11dd-bd0b-0800200c9a66}\chrome\mac\browser\extensions
[2009/07/28 07:56:04 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Alan Hoey\Application Data\Mozilla\Firefox\Profiles\25ca2gf0.default\extensions\{5c876f30-10ce-11dd-bd0b-0800200c9a66}\chrome\mac\mozapps\extensions
[2009/07/28 07:56:04 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Alan Hoey\Application Data\Mozilla\Firefox\Profiles\25ca2gf0.default\extensions\{5c876f30-10ce-11dd-bd0b-0800200c9a66}\chrome\win\browser\extensions
[2009/07/28 07:56:05 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Alan Hoey\Application Data\Mozilla\Firefox\Profiles\25ca2gf0.default\extensions\{5c876f30-10ce-11dd-bd0b-0800200c9a66}\chrome\win\mozapps\extensions
[2009/10/19 07:59:11 | 000,001,784 | ---- | M] () -- C:\Documents and Settings\Alan Hoey\Application Data\Mozilla\Firefox\Profiles\25ca2gf0.default\searchplugins\stmusic-search.xml
[2010/08/10 12:49:11 | 000,000,855 | ---- | M] () -- C:\Documents and Settings\Alan Hoey\Application Data\Mozilla\Firefox\Profiles\25ca2gf0.default\searchplugins\yahoo-.xml
[2011/07/22 14:01:45 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/12/13 08:39:19 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT
[2011/02/22 12:48:33 | 000,000,000 | ---D | M] ("urn:mozilla:install-manifest" em:id="avg@igeared" em:name="AVG Security Toolbar" em:version="5.008.027.003" em:displayname="AVG Security Toolbar" em:iconURL="chrome://tavgp/skin/logo.ico" em:creator="AVG Technologies" em:description="AVG Security Toolbar" em:homepageURL="http://www.avg.com" >) -- C:\PROGRAM FILES\AVG\AVG10\TOOLBAR\FIREFOX\AVG@IGEARED
[2009/09/02 10:21:57 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2010/12/13 08:38:26 | 000,025,048 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2010/12/13 08:38:26 | 000,140,248 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2004/05/07 15:31:40 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\components\MSVCR71.DLL
[2004/09/09 00:03:50 | 000,049,152 | ---- | M] (Macromedia, Inc.) -- C:\Program Files\mozilla firefox\plugins\np32dsw.dll
[2009/07/03 10:53:57 | 002,527,232 | ---- | M] (Gemplus) -- C:\Program Files\mozilla firefox\plugins\Npcsig.dll
[2011/07/22 13:53:28 | 000,410,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeploytk.dll
[2010/12/13 08:38:51 | 000,066,520 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2006/10/26 20:12:16 | 000,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL
[2011/04/12 14:55:51 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin.dll
[2011/04/12 14:55:51 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll
[2011/04/12 14:55:51 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll
[2011/04/12 14:55:51 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll
[2011/04/12 14:55:51 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll
[2011/04/12 14:55:52 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll
[2011/04/12 14:55:52 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll
[2011/04/12 14:55:52 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin8.dll
[2010/12/13 08:39:00 | 000,001,394 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom.xml
[2010/12/13 08:39:00 | 000,002,193 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\answers.xml
[2011/02/23 16:29:04 | 000,001,345 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg_igeared.xml
[2010/12/13 08:39:00 | 000,001,534 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
[2010/12/13 08:39:00 | 000,002,344 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay.xml
[2010/12/13 08:39:00 | 000,002,371 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2010/12/13 08:39:00 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia.xml
[2010/12/13 08:39:01 | 000,001,096 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\14.0.835.187\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin8.dll
CHR - plugin: Java Deployment Toolkit 6.0.140.8 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdeploytk.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np32dsw.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: 2007 Microsoft Office system (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\14.0.835.187\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\14.0.835.187\pdf.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Acrobat 7.0\Reader\Browser\nppdf32.dll
CHR - plugin: GemSafe eSigner (Enabled) = C:\Program Files\Mozilla Firefox\plugins\Npcsig.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Facebook Plugin (Enabled) = C:\Documents and Settings\Alan Hoey\Application Data\Facebook\npfbplugin_1_0_3.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files\Google\Picasa3\npPicasa3.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll
CHR - plugin: VLC Multimedia Plug-in (Enabled) = C:\Program Files\VideoLAN\VLC\npvlc.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: CouchPotato UserScript = C:\Documents and Settings\Alan Hoey\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jccappebkkgapmekhojjkaaohicifkme\1.0_0\
CHR - Extension: SABconnect++ = C:\Documents and Settings\Alan Hoey\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\okphadhbbjadcifjplhifajfacbkkbod\0.5.6_0\

O1 HOSTS File: ([2011/10/04 08:14:55 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll (Google Inc.)
O2 - BHO: (Act.UI.InternetExplorer.Plugins.AttachFile.CAttachFile) - {D5233FCD-D258-4903-89B8-FB1568E7413D} - C:\windows\System32\mscoree.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\ShellBrowser: (&Address) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Address) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Links) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (&Links) - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
O4 - HKLM..\Run: [AGRSMMSG] C:\windows\AGRSMMSG.exe (Agere Systems)
O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [CHotkey] C:\windows\mHotkey.exe (Chicony)
O4 - HKLM..\Run: [DIT] C:\windows\DIT.EXE (ICSI Technology Ltd.)
O4 - HKLM..\Run: [gemstrmw] C:\windows\System32\gemstrmw.exe (Gemplus)
O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [High Definition Audio Property Page Shortcut] C:\windows\System32\Hdaudpropshortcut.exe (Windows ® Server 2003 DDK provider)
O4 - HKLM..\Run: [ledpointer] C:\windows\CNYHKey.exe (Chicony)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [PCE Print Dispatcher] C:\WINDOWS\system32\pcPDisp.exe (pdfconverter.com)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [Recguard] C:\WINDOWS\SMINST\Recguard.exe ()
O4 - HKLM..\Run: [RegTool] C:\Program Files\Gemplus\GemSafe Libraries\BIN\RegTool.exe (Gemplus)
O4 - HKLM..\Run: [ShowIcon_Justram_USB Product Driver v2.25r003] "C:\Program Files\USB Product Driver 2.25r003\shwicon.exe" -t"Justram\USB Product Driver v2.25r003" File not found
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_06\bin\jusched.exe ()
O4 - HKLM..\Run: [vptray] C:\Program Files\Symantec AntiVirus\VPTray.exe (Symantec Corporation)
O4 - HKCU..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Radio Downloader] C:\Program Files\Radio Downloader\Radio Downloader.exe (www.nerdoftheherd.com)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKCU..\Run: [TClockEx] C:\Program Files\TClockEx\TCLOCKEX.EXE (Dale Nurden)
O4 - Startup: C:\Documents and Settings\Alan Hoey\Start Menu\Programs\Startup\Controller.LNK = C:\Program Files\WinFax\WFXCTL32.EXE ()
O4 - Startup: C:\Documents and Settings\Alan Hoey\Start Menu\Programs\Startup\Wallpaper Changer.lnk = C:\Program Files\WallpaperToy\Wallpapertoy.Exe (Microsoft Corp.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\windows\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll (Google Inc.)
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~3\Office14\ONBttnIE.dll/105 File not found
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Attach Web page to ACT! contact - {6F431AC3-364A-478b-BBDB-89C7CE1B18F6} - C:\windows\System32\mscoree.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Attach Web page to ACT! contact... - {6F431AC3-364A-478b-BBDB-89C7CE1B18F6} - C:\windows\System32\mscoree.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O12 - Plugin for: .csd - C:\Program Files\Gemplus\GemSafe eSigner\plugin\Npcsig.dll (Gemplus)
O12 - Plugin for: .i4t - C:\Program Files\Gemplus\GemSafe eSigner\plugin\Npcsig.dll (Gemplus)
O15 - HKCU\..Trusted Domains: amazon.co.uk ([www] http in Trusted sites)
O15 - HKCU\..Trusted Domains: cd-wow.com ([www5] http in Trusted sites)
O15 - HKCU\..Trusted Domains: guardian.co.uk ([www] http in Trusted sites)
O15 - HKCU\..Trusted Domains: harmonyremote.com ([members] http in Trusted sites)
O15 - HKCU\..Trusted Domains: homecinemachoice.com ([www] http in Trusted sites)
O15 - HKCU\..Trusted Domains: keysurvey2.com ([sage] * in Trusted sites)
O15 - HKCU\..Trusted Domains: koptalk.com ([www] http in Trusted sites)
O16 - DPF: {00000000-A6C3-4023-AE3A-22F2983D851D} https://signon.defra...olInstaller.CAB (Reg Error: Key error.)
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebo...toUploader5.cab (Facebook Photo Uploader 5)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {71057C18-0507-4747-86BC-E11CE7512C5F} https://register.bti...lcontrol013.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.4.2_06)
O16 - DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} http://www.crucial.c.../cpcScanner.cab (Crucial cpcScan)
O16 - DPF: {CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.4.2_06)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E7DBFB6C-113A-47CF-B278-F5C6AF4DE1BD} http://download.abac...abasetup161.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{82E5FF7F-1702-45FC-8CD4-5CD8E22C5FFB}: NameServer = 192.168.1.254
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\avgsecuritytoolbar - No CLSID value found
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdo {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Common Files\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\windows\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (logonui.exe) -C:\windows\System32\logonui.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) -C:\windows\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") -C:\windows\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\windows\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\crypt32chain: DllName - (crypt32.dll) - C:\windows\System32\crypt32.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cryptnet: DllName - (cryptnet.dll) - C:\windows\System32\cryptnet.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cscdll: DllName - (cscdll.dll) - C:\windows\System32\cscdll.dll (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - (%SystemRoot%\System32\dimsntfy.dll) - C:\WINDOWS\system32\dimsntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\NavLogon: DllName - (C:\windows\system32\NavLogon.dll) - C:\WINDOWS\system32\NavLogon.dll (Symantec Corporation)
O20 - Winlogon\Notify\ScCertProp: DllName - (wlnotify.dll) - C:\windows\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\Schedule: DllName - (wlnotify.dll) - C:\windows\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\sclgntfy: DllName - (sclgntfy.dll) - C:\windows\System32\sclgntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\SensLogn: DllName - (WlNotify.dll) - C:\windows\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\termsrv: DllName - (wlnotify.dll) - C:\windows\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\WgaLogon: DllName - (WgaLogon.dll) - C:\windows\System32\WgaLogon.dll (Microsoft Corporation)
O20 - Winlogon\Notify\wlballoon: DllName - (wlnotify.dll) - C:\windows\System32\wlnotify.dll (Microsoft Corporation)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Corporation)
O21 - SSODL: UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Component Categories cache daemon - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O24 - Desktop Components:0 (My Current Home Page) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Alan Hoey\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Alan Hoey\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O28 - HKLM ShellExecuteHooks: {A213B520-C6C2-11d0-AF9D-008029E1027E} - C:\Program Files\WinFax\WFXSEH32.DLL (Symantec Corporation)
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\windows\System32\shell32.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msapsspc.dll) -C:\windows\System32\msapsspc.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (schannel.dll) -C:\windows\System32\schannel.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digest.dll) -C:\windows\System32\digest.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msnsspc.dll) -C:\windows\System32\msnsspc.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) -C:\windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) -C:\windows\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) -C:\windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) -C:\windows\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) -C:\windows\System32\wdigest.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (PDBoot.exe)
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/10/05 08:11:07 | 000,582,656 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Alan Hoey\Desktop\OTL.exe
[2011/10/04 22:54:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alan Hoey\Application Data\wsInspector
[2011/10/04 22:52:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alan Hoey\My Documents\wsInspector
[2011/10/04 22:33:24 | 000,000,000 | ---D | C] -- C:\Program Files\Startup Inspector for Windows
[2011/10/04 22:33:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup Inspector for Windows
[2011/10/04 21:54:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alan Hoey\Start Menu\Programs\HiJackThis
[2011/10/04 20:27:51 | 007,202,624 | ---- | C] (McAfee Inc.) -- C:\Documents and Settings\Alan Hoey\Desktop\stinger10.2.0.302.exe
[2011/10/04 13:18:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alan Hoey\Application Data\XBMC
[2011/10/04 13:18:06 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\D3DCompiler_43.dll
[2011/10/04 13:18:02 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\D3DX9_43.dll
[2011/10/04 13:17:36 | 000,000,000 | ---D | C] -- C:\windows\Logs
[2011/10/04 13:16:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alan Hoey\Start Menu\Programs\XBMC
[2011/10/04 13:16:20 | 000,000,000 | ---D | C] -- C:\Program Files\XBMC
[2011/10/04 11:10:49 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2011/10/04 08:15:10 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Alan Hoey\Recent
[2011/10/04 07:48:46 | 004,240,992 | R--- | C] (Swearware) -- C:\Documents and Settings\Alan Hoey\Desktop\ComboFix.exe
[2011/09/27 14:57:29 | 000,000,000 | ---D | C] -- C:\emmr-v2420-x86-jco-v5
[2011/09/26 14:27:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alan Hoey\My Documents\Gangmaster AWL
[2011/09/23 12:01:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Lazesoft Recover My Password
[2011/09/23 12:01:39 | 000,000,000 | ---D | C] -- C:\Program Files\Lazesoft Recover My Password
[2011/09/06 13:33:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alan Hoey\My Documents\Tower Supplies 060911_files
[2011/09/02 13:03:55 | 000,192,512 | ---- | C] (ICSharpCode.net) -- C:\Program Files\ICSharpCode.SharpZipLib.dll
[2008/12/23 10:32:46 | 000,184,320 | R--- | C] ( ) -- C:\windows\System32\SgE.interop.MSXML2.dll
[2006/12/12 10:59:08 | 000,184,320 | ---- | C] ( ) -- C:\windows\System32\Interop.MSXML2.dll
[2006/10/31 14:40:20 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Alan Hoey\Application Data\pcouffin.sys
[2005/10/20 09:40:06 | 000,160,640 | ---- | C] ( ) -- C:\windows\System32\drivers\a347bus.sys
[2005/10/20 09:40:06 | 000,005,248 | ---- | C] ( ) -- C:\windows\System32\drivers\a347scsi.sys
[10 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/10/05 09:52:04 | 007,056,054 | -H-- | M] () -- C:\windows\System32\toyhide.bmp
[2011/10/05 09:34:53 | 000,003,034 | ---- | M] () -- C:\windows\Payroll.INI
[2011/10/05 09:29:00 | 000,000,880 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore1cb76798efbd420.job
[2011/10/05 08:32:30 | 000,000,162 | ---- | M] () -- C:\windows\Brownie.ini
[2011/10/05 08:22:26 | 000,001,896 | ---- | M] () -- C:\windows\System32\SGLCH32.USR
[2011/10/05 08:11:08 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Alan Hoey\Desktop\OTL.exe
[2011/10/04 22:51:43 | 000,017,408 | ---- | M] (ICSI Technology Ltd.) -- C:\windows\System32\drivers\USBCRFT.SYS
[2011/10/04 22:51:01 | 000,001,158 | ---- | M] () -- C:\windows\System32\wpa.dbl
[2011/10/04 22:46:05 | 000,002,048 | --S- | M] () -- C:\windows\bootstat.dat
[2011/10/04 22:33:24 | 000,000,750 | ---- | M] () -- C:\Documents and Settings\Alan Hoey\Desktop\Startup Inspector for Windows.lnk
[2011/10/04 22:05:19 | 000,000,028 | ---- | M] () -- C:\Documents and Settings\Alan Hoey\defogger_reenable
[2011/10/04 21:54:34 | 000,002,455 | ---- | M] () -- C:\Documents and Settings\Alan Hoey\Desktop\HiJackThis.lnk
[2011/10/04 20:27:58 | 007,202,624 | ---- | M] (McAfee Inc.) -- C:\Documents and Settings\Alan Hoey\Desktop\stinger10.2.0.302.exe
[2011/10/04 08:14:55 | 000,000,027 | ---- | M] () -- C:\windows\System32\drivers\etc\hosts
[2011/10/04 07:48:55 | 004,240,992 | R--- | M] (Swearware) -- C:\Documents and Settings\Alan Hoey\Desktop\ComboFix.exe
[2011/10/03 16:54:55 | 000,000,116 | ---- | M] () -- C:\windows\NeroDigital.ini
[2011/10/03 16:54:00 | 000,044,544 | ---- | M] () -- C:\Documents and Settings\Alan Hoey\My Documents\GCSE I.T Grid.dat
[2011/10/03 13:45:34 | 000,002,333 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\WOL Magic Packet Sender.lnk
[2011/10/03 12:20:55 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
[2011/10/03 11:27:59 | 000,002,427 | ---- | M] () -- C:\Documents and Settings\Alan Hoey\My Documents\tax codes 280911.csv
[2011/10/03 11:19:21 | 000,000,447 | ---- | M] () -- C:\windows\BRWMARK.INI
[2011/10/03 07:32:47 | 000,000,453 | ---- | M] () -- C:\Documents and Settings\Alan Hoey\Desktop\Shortcut to Documents on Klaudia.lnk
[2011/09/30 21:34:00 | 000,000,284 | ---- | M] () -- C:\windows\tasks\AppleSoftwareUpdate.job
[2011/09/30 17:27:05 | 000,000,468 | ---- | M] () -- C:\Documents and Settings\Alan Hoey\Desktop\Shortcut to Documents on Melanie-vaio.lnk
[2011/09/29 15:28:15 | 000,010,593 | ---- | M] () -- C:\windows\CSTBox.INI
[2011/09/29 15:26:19 | 000,541,959 | ---- | M] () -- C:\Documents and Settings\Alan Hoey\My Documents\Chris VIner.PDF
[2011/09/28 14:08:03 | 000,001,000 | ---- | M] () -- C:\Documents and Settings\Alan Hoey\My Documents\B280911fl_csv.htm
[2011/09/27 15:00:03 | 000,000,610 | ---- | M] () -- C:\Documents and Settings\Alan Hoey\Desktop\Shortcut to Ember Media Manager.exe.lnk
[2011/09/26 11:47:18 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\System32\FlashPlayerCPLApp.cpl
[2011/09/26 08:14:16 | 000,103,581 | ---- | M] () -- C:\Documents and Settings\Alan Hoey\My Documents\P1090453.jpg
[2011/09/21 17:21:04 | 000,001,001 | ---- | M] () -- C:\Documents and Settings\Alan Hoey\My Documents\B210911fl_csv.htm
[2011/09/21 09:47:33 | 000,048,448 | ---- | M] () -- C:\Documents and Settings\Alan Hoey\My Documents\PreSelectionHRA (2).pdf
[2011/09/20 14:21:46 | 000,062,502 | ---- | M] () -- C:\Documents and Settings\Alan Hoey\My Documents\sookie&finn.jpg
[2011/09/20 08:47:43 | 000,002,651 | ---- | M] () -- C:\Documents and Settings\Alan Hoey\My Documents\tax codes 250811.csv
[2011/09/16 11:55:42 | 000,187,078 | ---- | M] () -- C:\Documents and Settings\Alan Hoey\My Documents\Lesan Hula P45.pdf
[2011/09/15 16:52:11 | 006,119,495 | ---- | M] () -- C:\Documents and Settings\Alan Hoey\My Documents\UM-bipac7800n.pdf
[2011/09/14 15:37:37 | 000,000,997 | ---- | M] () -- C:\Documents and Settings\Alan Hoey\My Documents\B140911fl_csv.htm
[2011/09/14 15:20:14 | 000,002,629 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Bacsess-iP.lnk
[2011/09/09 10:12:13 | 000,599,040 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\crypt32.dll
[2011/09/08 15:37:41 | 000,346,608 | ---- | M] () -- C:\windows\System32\FNTCACHE.DAT
[2011/09/08 15:27:38 | 000,970,300 | ---- | M] () -- C:\windows\System32\perfh009.dat
[2011/09/08 15:27:38 | 000,293,178 | ---- | M] () -- C:\windows\System32\perfc009.dat
[2011/09/06 13:33:22 | 000,001,285 | ---- | M] () -- C:\Documents and Settings\Alan Hoey\My Documents\Tower Supplies 060911.htm
[2011/09/05 15:44:27 | 000,005,152 | ---- | M] () -- C:\Documents and Settings\Alan Hoey\My Documents\Week 6 Nominal Link.pdf
[2011/09/05 15:39:03 | 000,005,156 | ---- | M] () -- C:\Documents and Settings\Alan Hoey\My Documents\Week 5 Nominal Link.pdf
[10 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/10/04 22:33:24 | 000,000,750 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\Desktop\Startup Inspector for Windows.lnk
[2011/10/04 22:05:02 | 000,000,028 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\defogger_reenable
[2011/10/04 21:54:21 | 000,002,455 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\Desktop\HiJackThis.lnk
[2011/10/03 16:54:00 | 000,044,544 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\My Documents\GCSE I.T Grid.dat
[2011/10/03 12:20:55 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
[2011/09/29 15:26:20 | 000,541,959 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\My Documents\Chris VIner.PDF
[2011/09/28 15:30:04 | 000,002,427 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\My Documents\tax codes 280911.csv
[2011/09/28 14:08:03 | 000,001,000 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\My Documents\B280911fl_csv.htm
[2011/09/26 08:14:16 | 000,103,581 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\My Documents\P1090453.jpg
[2011/09/21 17:21:04 | 000,001,001 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\My Documents\B210911fl_csv.htm
[2011/09/21 09:47:33 | 000,048,448 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\My Documents\PreSelectionHRA (2).pdf
[2011/09/20 16:15:28 | 000,062,502 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\My Documents\sookie&finn.jpg
[2011/09/16 11:55:41 | 000,187,078 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\My Documents\Lesan Hula P45.pdf
[2011/09/15 16:51:59 | 006,119,495 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\My Documents\UM-bipac7800n.pdf
[2011/09/14 15:37:37 | 000,000,997 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\My Documents\B140911fl_csv.htm
[2011/09/06 13:33:21 | 000,001,285 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\My Documents\Tower Supplies 060911.htm
[2011/09/05 15:44:27 | 000,005,152 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\My Documents\Week 6 Nominal Link.pdf
[2011/09/05 15:39:03 | 000,005,156 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\My Documents\Week 5 Nominal Link.pdf
[2011/09/02 13:03:55 | 002,396,160 | ---- | C] () -- C:\Program Files\Ember Media Manager.exe
[2011/09/02 13:03:55 | 000,886,272 | ---- | C] () -- C:\Program Files\System.Data.SQLite.dll
[2011/09/02 13:03:55 | 000,662,528 | ---- | C] () -- C:\Program Files\EmberAPI.dll
[2011/07/22 13:53:46 | 000,045,163 | ---- | C] () -- C:\windows\System32\javaw.exe
[2011/07/22 13:53:46 | 000,045,161 | ---- | C] () -- C:\windows\System32\java.exe
[2011/04/01 10:32:21 | 000,000,066 | ---- | C] () -- C:\windows\JcAdmin32.ini
[2011/02/23 09:48:11 | 000,004,096 | -H-- | C] () -- C:\Documents and Settings\Alan Hoey\Local Settings\Application Data\keyfile3.drm
[2011/02/01 11:09:20 | 000,000,118 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\Application Data\sqlite3Explorer.xml
[2010/11/05 14:26:17 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\Local Settings\Application Data\PUTTY.RND
[2010/11/03 09:23:51 | 000,917,504 | ---- | C] () -- C:\windows\System32\dtsdecoderdll.dll
[2010/10/28 11:58:02 | 000,592,264 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2010/10/07 08:38:39 | 000,000,000 | ---- | C] () -- C:\windows\nmquick.INI
[2010/10/04 09:02:10 | 000,000,161 | ---- | C] () -- C:\windows\AutoKMS.ini
[2010/09/29 10:03:04 | 000,037,336 | ---- | C] () -- C:\windows\System32\CleanMFT32.exe
[2010/09/29 09:53:56 | 000,008,192 | ---- | C] () -- C:\windows\System32\srvany.exe
[2010/09/27 12:39:10 | 000,110,592 | ---- | C] () -- C:\windows\System32\SageSantander.dll
[2010/09/14 12:35:38 | 000,090,112 | ---- | C] () -- C:\windows\System32\SageBankOfAmerica.dll
[2010/07/29 17:02:15 | 000,000,952 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\KGyGaAvL.sys
[2010/07/29 17:02:15 | 000,000,088 | RHS- | C] () -- C:\Documents and Settings\All Users\Application Data\DB77F79100.sys
[2010/07/07 10:48:00 | 000,282,624 | ---- | C] () -- C:\windows\System32\SGList32.dll
[2010/07/07 10:47:54 | 000,278,528 | ---- | C] () -- C:\windows\System32\SGTool32.dll
[2010/07/07 10:47:50 | 000,090,112 | ---- | C] () -- C:\windows\System32\SGIntl32.dll
[2010/07/07 10:47:48 | 000,172,032 | ---- | C] () -- C:\windows\System32\SGHelp32.dll
[2010/07/07 10:47:48 | 000,073,728 | ---- | C] () -- C:\windows\System32\SGDt32.dll
[2010/07/07 10:47:42 | 000,258,048 | ---- | C] () -- C:\windows\System32\SGSchemeXml.dll
[2010/07/07 10:47:34 | 000,118,784 | ---- | C] () -- C:\windows\System32\SGSchemeXP.dll
[2010/07/07 10:47:32 | 000,176,128 | ---- | C] () -- C:\windows\System32\SGSchemeDefault.dll
[2010/07/07 10:47:26 | 000,221,184 | ---- | C] () -- C:\windows\System32\SGSchemeManager.dll
[2010/07/07 10:47:18 | 000,094,208 | ---- | C] () -- C:\windows\System32\SGCom32.dll
[2010/07/07 10:46:30 | 000,241,664 | ---- | C] () -- C:\windows\System32\SGWebBrowser.dll
[2010/02/16 09:19:45 | 000,026,624 | ---- | C] () -- C:\windows\System32\VNCpm.dll
[2010/01/22 15:31:41 | 000,077,712 | -H-- | C] () -- C:\windows\System32\mlfcache.dat
[2009/12/30 03:35:56 | 003,190,784 | ---- | C] () -- C:\windows\System32\libavcodec.dll
[2009/12/30 03:35:56 | 000,741,376 | ---- | C] () -- C:\windows\System32\audxlib.dll
[2009/12/30 03:35:56 | 000,662,016 | ---- | C] () -- C:\windows\System32\xvidcore.dll
[2009/12/30 03:35:56 | 000,511,488 | ---- | C] () -- C:\windows\System32\ff_x264.dll
[2009/12/30 03:35:56 | 000,405,504 | ---- | C] () -- C:\windows\System32\libmplayer.dll
[2009/12/30 03:35:56 | 000,245,760 | ---- | C] () -- C:\windows\System32\ff_libfaad2.dll
[2009/12/30 03:35:56 | 000,221,184 | ---- | C] () -- C:\windows\System32\ff_kernelDeint.dll
[2009/12/30 03:35:56 | 000,200,704 | ---- | C] () -- C:\windows\System32\TomsMoComp_ff.dll
[2009/12/30 03:35:56 | 000,155,648 | ---- | C] () -- C:\windows\System32\ff_libdts.dll
[2009/12/30 03:35:56 | 000,143,360 | ---- | C] () -- C:\windows\System32\ff_theora.dll
[2009/12/30 03:35:56 | 000,122,880 | ---- | C] () -- C:\windows\System32\ff_samplerate.dll
[2009/12/30 03:35:56 | 000,118,784 | ---- | C] () -- C:\windows\System32\ff_libmad.dll
[2009/12/30 03:35:56 | 000,114,688 | ---- | C] () -- C:\windows\System32\libmpeg2_ff.dll
[2009/12/30 03:35:56 | 000,108,032 | ---- | C] () -- C:\windows\System32\ff_vfw.dll
[2009/12/30 03:35:56 | 000,097,280 | ---- | C] () -- C:\windows\System32\ff_realaac.dll
[2009/12/30 03:35:56 | 000,079,872 | ---- | C] () -- C:\windows\System32\ff_tremor.dll
[2009/12/30 03:35:56 | 000,040,960 | ---- | C] () -- C:\windows\System32\ff_liba52.dll
[2009/12/30 03:35:56 | 000,038,400 | ---- | C] () -- C:\windows\System32\ff_unrar.dll
[2009/12/30 03:35:56 | 000,026,624 | ---- | C] () -- C:\windows\System32\ff_wmv9.dll
[2009/12/24 12:09:52 | 000,143,360 | ---- | C] () -- C:\windows\System32\SGSTDREG.dll
[2009/12/24 12:09:48 | 000,131,072 | ---- | C] () -- C:\windows\System32\SGRegister.dll
[2009/11/19 09:01:48 | 000,208,896 | ---- | C] () -- C:\windows\MBR.exe
[2009/10/13 17:16:14 | 000,110,602 | ---- | C] () -- C:\windows\System32\xcdsfx32.bin
[2009/10/02 16:29:08 | 000,000,246 | ---- | C] () -- C:\windows\OPHJ.INI
[2009/07/27 15:15:32 | 000,001,205 | ---- | C] () -- C:\windows\SAGEINTL.INI
[2009/07/02 11:46:45 | 000,011,473 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp Real Audio (Helix) Encoder.dat
[2009/07/02 11:46:23 | 000,003,365 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp Windows Media Audio 10 Codec.dat
[2009/07/02 11:45:46 | 000,001,224 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp Wave64 Codec.dat
[2009/07/02 11:45:39 | 000,003,417 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp TTA Codec.dat
[2009/07/02 11:45:27 | 000,002,228 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBPoweramp tooLame MP2 codec.dat
[2009/07/02 11:45:08 | 000,002,980 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp Speex Codec.dat
[2009/07/02 11:44:50 | 000,003,411 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp Shorten Codec.dat
[2009/07/02 11:44:35 | 000,088,576 | ---- | C] () -- C:\windows\System32\OptimFROG.dll
[2009/07/02 11:44:35 | 000,003,467 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp OptimFROG Codec.dat
[2009/07/02 11:44:21 | 000,003,378 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp Ogg Vorbis Lancer Encoder.dat
[2009/07/02 11:43:43 | 000,003,283 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp Musepack Codec.dat
[2009/07/02 11:43:07 | 000,001,259 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp m4b Audio book Encoder.dat
[2009/07/02 11:42:53 | 000,003,175 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp m4a Utilities.dat
[2009/07/02 11:42:36 | 000,003,590 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp m4a Codec.dat
[2009/07/02 11:41:47 | 000,001,206 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp Dalet Codec.dat
[2009/07/02 11:41:38 | 000,001,129 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp Aiff Codec.dat
[2009/07/02 11:41:18 | 000,003,328 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp AAC Encoder.dat
[2009/07/02 11:39:33 | 000,008,457 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp DSP Effects.dat
[2009/07/02 11:38:40 | 000,003,008 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp WavPack Codec.dat
[2009/07/02 11:38:33 | 000,003,030 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp Ogg Vorbis Codec.dat
[2009/07/02 11:38:25 | 000,003,117 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp mp3 (Fraunhofer IIS) Codec.dat
[2009/07/02 11:38:17 | 000,003,107 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp Monkeys Audio Codec.dat
[2009/07/02 11:38:10 | 000,002,951 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp FLAC Codec.dat
[2009/07/02 11:38:00 | 000,003,494 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp Mp2 and BwfMp2 codec.dat
[2009/07/02 11:37:58 | 000,002,843 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp [Calculate Audio CRC] Codec.dat
[2009/07/02 11:37:55 | 004,044,152 | ---- | C] () -- C:\windows\System32\SpoonUninstall.exe
[2009/07/02 11:37:55 | 000,014,187 | ---- | C] () -- C:\windows\System32\SpoonUninstall-dBpoweramp Music Converter.dat
[2009/06/24 13:51:25 | 000,256,000 | ---- | C] () -- C:\windows\PEV.exe
[2009/06/24 13:51:25 | 000,098,816 | ---- | C] () -- C:\windows\sed.exe
[2009/06/24 13:51:25 | 000,080,412 | ---- | C] () -- C:\windows\grep.exe
[2009/06/24 13:51:25 | 000,068,096 | ---- | C] () -- C:\windows\zip.exe
[2009/02/24 10:44:46 | 000,000,871 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\Application Data\coreavc.ini
[2009/01/28 15:21:37 | 000,014,976 | ---- | C] () -- C:\windows\System32\drivers\SBKUPNT.SYS
[2009/01/28 15:21:37 | 000,013,312 | ---- | C] () -- C:\windows\System32\DEVLOAD.EXE
[2009/01/28 15:21:30 | 000,002,799 | ---- | C] () -- C:\windows\SKLANG.INI
[2009/01/08 11:10:23 | 001,525,760 | ---- | C] () -- C:\windows\System32\calclib.dll
[2009/01/08 11:10:23 | 000,088,576 | ---- | C] () -- C:\windows\System32\fixclipinf.exe
[2008/12/22 10:28:06 | 000,061,440 | ---- | C] () -- C:\windows\System32\SageFolderBrowser.dll
[2008/12/02 20:06:22 | 000,017,408 | ---- | C] () -- C:\windows\System32\SgDate.dll
[2008/12/01 15:36:00 | 000,180,224 | ---- | C] () -- C:\windows\System32\SGJPEG32.dll
[2008/11/06 13:49:01 | 000,120,320 | ---- | C] () -- C:\windows\System32\apexchanger.exe
[2008/11/06 13:49:01 | 000,109,568 | ---- | C] () -- C:\windows\System32\apex3gp.exe
[2008/11/06 13:49:00 | 004,755,968 | ---- | C] () -- C:\windows\System32\apexconverter.exe
[2008/11/06 13:49:00 | 003,138,048 | ---- | C] () -- C:\windows\System32\apexxbox.exe
[2008/11/06 13:49:00 | 000,086,016 | ---- | C] () -- C:\windows\System32\AddiTunes.exe
[2008/11/06 13:48:59 | 000,061,440 | ---- | C] () -- C:\windows\System32\cygz.dll
[2008/11/06 13:48:59 | 000,007,196 | ---- | C] () -- C:\windows\System32\INI_Pro_3GP_AAC.ini
[2008/11/06 13:48:59 | 000,006,490 | ---- | C] () -- C:\windows\System32\INI_Pro_PSP.ini
[2008/11/06 13:48:59 | 000,005,028 | ---- | C] () -- C:\windows\System32\INI_Pro_3GP2_AAC.ini
[2008/11/06 13:48:59 | 000,003,045 | ---- | C] () -- C:\windows\System32\INI_Pro_iPod.ini
[2008/11/06 13:48:59 | 000,002,956 | ---- | C] () -- C:\windows\System32\INI_Pro_PMP.ini
[2008/11/06 13:48:59 | 000,002,910 | ---- | C] () -- C:\windows\System32\INI_Pro_3GP_AMR.ini
[2008/11/06 13:48:59 | 000,002,516 | ---- | C] () -- C:\windows\System32\INI_Pro_PPC.ini
[2008/11/06 13:48:59 | 000,001,964 | ---- | C] () -- C:\windows\System32\INI_QT_3GPP2_QVGA_AAC.ini
[2008/11/06 13:48:59 | 000,001,964 | ---- | C] () -- C:\windows\System32\INI_QT_3GPP2_QCIF_AAC.ini
[2008/11/06 13:48:59 | 000,001,878 | ---- | C] () -- C:\windows\System32\INI_Pro_Xbox.ini
[2008/11/06 13:48:59 | 000,001,814 | ---- | C] () -- C:\windows\System32\INI_QT_3GPP_QVGA_AMR.ini
[2008/11/06 13:48:59 | 000,001,814 | ---- | C] () -- C:\windows\System32\INI_QT_3GPP_QVGA_AAC.ini
[2008/11/06 13:48:59 | 000,001,814 | ---- | C] () -- C:\windows\System32\INI_QT_3GPP_QCIF_AMR.ini
[2008/11/06 13:48:59 | 000,001,814 | ---- | C] () -- C:\windows\System32\INI_QT_3GPP_QCIF_AAC.ini
[2008/11/06 13:48:59 | 000,000,036 | ---- | C] () -- C:\windows\System32\INI_Add_mfra.ini
[2008/11/06 13:48:51 | 000,237,568 | ---- | C] () -- C:\windows\System32\lame_enc.dll
[2008/10/27 10:03:14 | 000,000,038 | ---- | C] () -- C:\windows\avisplitter.INI
[2008/08/05 17:07:53 | 000,011,455 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\Application Data\Comma Separated Values (Windows).TSK
[2008/06/07 15:53:02 | 004,244,744 | ---- | C] () -- C:\windows\System32\qtp-mt334.dll
[2008/06/07 15:53:02 | 000,013,576 | ---- | C] () -- C:\windows\System32\wnaspi32.dll
[2008/06/07 15:52:56 | 000,247,560 | ---- | C] () -- C:\windows\System32\prgiso.dll
[2008/06/03 11:14:03 | 000,010,593 | ---- | C] () -- C:\windows\CSTBox.INI
[2008/06/03 10:35:14 | 000,040,960 | ---- | C] () -- C:\windows\System32\IPPCPUID.DLL
[2008/06/03 10:33:47 | 000,011,776 | ---- | C] () -- C:\windows\System32\pmsbfn32.dll
[2008/05/26 22:59:42 | 000,018,904 | ---- | C] () -- C:\windows\System32\structuredqueryschematrivial.bin
[2008/05/26 22:59:40 | 000,106,605 | ---- | C] () -- C:\windows\System32\structuredqueryschema.bin
[2008/05/12 09:27:00 | 000,018,944 | ---- | C] () -- C:\windows\System32\ventmon.dll
[2008/05/01 10:22:05 | 000,139,264 | ---- | C] () -- C:\windows\System32\xvidvfw.dll
[2008/05/01 10:22:04 | 003,596,288 | ---- | C] () -- C:\windows\System32\qt-dx331.dll
[2008/04/25 16:02:18 | 000,000,000 | ---- | C] () -- C:\windows\SMMVSplitter.INI
[2008/04/08 10:36:24 | 000,040,960 | ---- | C] () -- C:\windows\System32\SgEEncrypt.dll
[2008/03/31 19:27:19 | 000,038,463 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\Application Data\Microsoft Excel 97-2003.ADR
[2008/02/12 11:04:56 | 000,116,736 | ---- | C] () -- C:\windows\System32\libsndfile-1.dll
[2007/11/07 10:13:41 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\LauncherAccess.dt
[2007/11/07 10:11:32 | 000,005,632 | ---- | C] () -- C:\windows\System32\drivers\StarOpen.sys
[2007/09/27 11:51:02 | 000,020,698 | ---- | C] () -- C:\windows\System32\idxcntrs.ini
[2007/09/27 11:48:48 | 000,030,628 | ---- | C] () -- C:\windows\System32\gsrvctr.ini
[2007/09/27 11:48:28 | 000,031,698 | ---- | C] () -- C:\windows\System32\gthrctr.ini
[2007/09/24 12:49:23 | 000,000,014 | ---- | C] () -- C:\windows\System32\W7409A4F3181222F2.bin
[2007/08/02 08:48:48 | 000,028,672 | ---- | C] () -- C:\windows\System32\InsDrvZD.dll
[2007/08/02 08:48:48 | 000,024,576 | ---- | C] () -- C:\windows\System32\ZyDelReg.exe
[2007/08/02 08:48:48 | 000,015,872 | ---- | C] () -- C:\windows\System32\InsDrvZD64.DLL
[2007/08/02 08:48:41 | 000,001,162 | ---- | C] () -- C:\windows\System32\W32N55.INI
[2007/06/07 15:08:47 | 000,077,824 | ---- | C] () -- C:\windows\System32\BROSNMP.DLL
[2007/06/07 15:08:47 | 000,032,768 | ---- | C] () -- C:\windows\System32\BRVPDNTA.DLL
[2007/06/07 15:08:47 | 000,026,624 | ---- | C] () -- C:\windows\System32\BRGSRC32.DLL
[2007/06/07 15:08:47 | 000,004,608 | ---- | C] () -- C:\windows\System32\BRGSRC16.DLL
[2007/06/07 15:08:47 | 000,000,313 | ---- | C] () -- C:\windows\BRDIAG.INI
[2007/06/07 15:08:47 | 000,000,162 | ---- | C] () -- C:\windows\Brownie.ini
[2007/06/07 15:08:47 | 000,000,145 | ---- | C] () -- C:\windows\BRVIDEO.INI
[2007/06/07 15:08:47 | 000,000,000 | ---- | C] () -- C:\windows\opt_7050.ini
[2007/06/07 15:08:47 | 000,000,000 | ---- | C] () -- C:\windows\BROHL705.INI
[2007/06/07 15:08:47 | 000,000,000 | ---- | C] () -- C:\windows\brmx2001.ini
[2007/06/07 15:08:45 | 000,016,408 | ---- | C] () -- C:\windows\HL-7050.INI
[2007/06/07 15:08:22 | 000,000,447 | ---- | C] () -- C:\windows\BRWMARK.INI
[2007/06/07 15:08:22 | 000,000,052 | ---- | C] () -- C:\windows\BRPP2KA.INI
[2007/06/07 15:08:22 | 000,000,030 | ---- | C] () -- C:\windows\System32\brss01a.ini
[2007/03/16 16:05:24 | 000,000,029 | ---- | C] () -- C:\windows\DEBUGSM.INI
[2007/03/16 15:13:19 | 000,000,097 | ---- | C] () -- C:\windows\System32\PICSDK.ini
[2007/03/16 15:13:18 | 000,111,932 | ---- | C] () -- C:\windows\System32\EPPICPrinterDB.dat
[2007/03/16 15:13:18 | 000,031,053 | ---- | C] () -- C:\windows\System32\EPPICPattern131.dat
[2007/03/16 15:13:18 | 000,027,417 | ---- | C] () -- C:\windows\System32\EPPICPattern121.dat
[2007/03/16 15:13:18 | 000,026,154 | ---- | C] () -- C:\windows\System32\EPPICPattern1.dat
[2007/03/16 15:13:18 | 000,024,903 | ---- | C] () -- C:\windows\System32\EPPICPattern3.dat
[2007/03/16 15:13:18 | 000,021,390 | ---- | C] () -- C:\windows\System32\EPPICPattern5.dat
[2007/03/16 15:13:18 | 000,020,148 | ---- | C] () -- C:\windows\System32\EPPICPattern2.dat
[2007/03/16 15:13:18 | 000,011,811 | ---- | C] () -- C:\windows\System32\EPPICPattern4.dat
[2007/03/16 15:13:18 | 000,004,943 | ---- | C] () -- C:\windows\System32\EPPICPattern6.dat
[2007/03/16 15:13:18 | 000,001,146 | ---- | C] () -- C:\windows\System32\EPPICPresetData_DU.dat
[2007/03/16 15:13:18 | 000,001,139 | ---- | C] () -- C:\windows\System32\EPPICPresetData_PT.dat
[2007/03/16 15:13:18 | 000,001,139 | ---- | C] () -- C:\windows\System32\EPPICPresetData_BP.dat
[2007/03/16 15:13:18 | 000,001,136 | ---- | C] () -- C:\windows\System32\EPPICPresetData_ES.dat
[2007/03/16 15:13:18 | 000,001,129 | ---- | C] () -- C:\windows\System32\EPPICPresetData_FR.dat
[2007/03/16 15:13:18 | 000,001,129 | ---- | C] () -- C:\windows\System32\EPPICPresetData_CF.dat
[2007/03/16 15:13:18 | 000,001,120 | ---- | C] () -- C:\windows\System32\EPPICPresetData_IT.dat
[2007/03/16 15:13:18 | 000,001,107 | ---- | C] () -- C:\windows\System32\EPPICPresetData_GE.dat
[2007/03/16 15:13:18 | 000,001,104 | ---- | C] () -- C:\windows\System32\EPPICPresetData_EN.dat
[2007/03/16 15:11:59 | 000,000,025 | ---- | C] () -- C:\windows\CDE V10V100V350EFGD.ini
[2007/02/15 15:54:15 | 000,000,269 | ---- | C] () -- C:\windows\IfoEdit.ini
[2007/02/12 10:11:42 | 000,000,026 | ---- | C] () -- C:\windows\dvdSanta.INI
[2007/02/01 09:19:53 | 000,000,000 | ---- | C] () -- C:\windows\WTNSETUP.INI
[2007/02/01 09:11:46 | 000,037,888 | ---- | C] () -- C:\windows\System32\DCCWFP32.DLL
[2007/02/01 09:11:46 | 000,000,250 | ---- | C] () -- C:\windows\WINFAX.INI
[2007/02/01 09:11:44 | 000,017,920 | ---- | C] () -- C:\windows\System32\IMPLODE.DLL
[2007/01/10 10:17:21 | 000,040,960 | ---- | C] () -- C:\windows\System32\MMAVILNG.exe
[2007/01/10 10:16:59 | 000,000,056 | RHS- | C] () -- C:\windows\System32\EA322A9256.sys
[2007/01/10 10:16:58 | 000,002,098 | -HS- | C] () -- C:\windows\System32\KGyGaAvL.sys
[2006/12/30 18:48:38 | 000,000,601 | ---- | C] () -- C:\windows\powermp3cutterjoiner.ini
[2006/10/31 14:40:20 | 000,081,920 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\Application Data\ezpinst.exe
[2006/10/31 14:40:20 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\Application Data\pcouffin.cat
[2006/10/31 14:40:20 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\Application Data\pcouffin.inf
[2006/08/10 16:49:37 | 000,001,359 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2006/06/22 12:41:20 | 000,000,167 | ---- | C] () -- C:\windows\ConverterCore.INI
[2006/06/22 12:39:00 | 000,015,360 | ---- | C] () -- C:\windows\System32\BASSMOD.dll
[2006/02/24 16:14:33 | 000,000,012 | ---- | C] () -- C:\windows\clocked.ini
[2006/02/22 11:41:12 | 000,002,154 | ---- | C] () -- C:\windows\System32\tmmute.ini
[2006/02/15 14:14:28 | 000,000,000 | ---- | C] () -- C:\windows\vpc32.INI
[2006/02/02 12:28:46 | 000,212,992 | ---- | C] () -- C:\windows\ALCHUNIN.EXE
[2006/01/20 15:38:07 | 000,000,151 | ---- | C] () -- C:\windows\PhotoSnapViewer.INI
[2005/12/01 11:09:03 | 000,000,050 | ---- | C] () -- C:\windows\cdplayer.ini
[2005/11/29 11:16:41 | 000,000,052 | ---- | C] () -- C:\Program Files\Save Windows and Programs (No Data or Documents).BDF
[2005/11/29 11:16:41 | 000,000,052 | ---- | C] () -- C:\Program Files\Save Data and Documents Only.BDF
[2005/11/29 11:16:25 | 000,004,872 | ---- | C] () -- C:\windows\Ufxmaint31.exe
[2005/11/04 17:51:36 | 000,000,116 | ---- | C] () -- C:\windows\NeroDigital.ini
[2005/11/03 14:03:48 | 000,000,004 | ---- | C] () -- C:\windows\RM_RESULT.DAT
[2005/11/03 14:03:14 | 000,000,170 | ---- | C] () -- C:\windows\GetServer.ini
[2005/11/01 17:43:47 | 000,167,424 | ---- | C] () -- C:\windows\System32\Flocker.dll
[2005/11/01 13:18:32 | 000,000,041 | ---- | C] () -- C:\windows\System32\mwsysb.dll
[2005/10/13 07:55:08 | 000,028,162 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\Application Data\Comma Separated Values (Windows).ADR
[2005/10/06 11:13:03 | 000,000,000 | ---- | C] () -- C:\windows\nsreg.dat
[2005/10/06 11:12:46 | 000,003,786 | ---- | C] () -- C:\windows\mozver.dat
[2005/09/05 16:36:00 | 000,002,156 | ---- | C] () -- C:\windows\FONTSMRT.INI
[2005/09/05 12:35:31 | 000,001,187 | ---- | C] () -- C:\windows\SGREP32.INI
[2005/09/05 12:21:11 | 000,003,034 | ---- | C] () -- C:\windows\Payroll.INI
[2005/09/05 10:38:40 | 000,172,032 | ---- | C] () -- C:\windows\System32\SageEventHandler.exe
[2005/09/05 10:38:38 | 000,249,856 | ---- | C] () -- C:\windows\System32\SGCDlg32.dll
[2005/09/05 10:38:38 | 000,233,472 | ---- | C] () -- C:\windows\System32\SGLch32.dll
[2005/09/05 10:38:38 | 000,200,704 | ---- | C] () -- C:\windows\System32\SGTBar32.dll
[2005/09/05 10:38:38 | 000,143,360 | ---- | C] () -- C:\windows\System32\SGCtrlEx.dll
[2005/09/05 10:38:38 | 000,061,440 | ---- | C] () -- C:\windows\System32\SGAppBar.dll
[2005/09/05 10:38:38 | 000,061,440 | ---- | C] () -- C:\windows\System32\SG3D32.dll
[2005/09/05 10:38:38 | 000,049,152 | ---- | C] () -- C:\windows\System32\SgStat32.dll
[2005/09/05 10:38:38 | 000,049,152 | ---- | C] () -- C:\windows\System32\SGLogo32.dll
[2005/09/05 10:38:38 | 000,040,960 | ---- | C] () -- C:\windows\System32\RepDes32.exe
[2005/09/05 10:38:37 | 001,724,416 | ---- | C] () -- C:\windows\System32\SGRep32.dll
[2005/09/05 10:37:58 | 000,032,256 | ---- | C] () -- C:\windows\System32\_RegTLB.dll
[2005/09/05 08:07:06 | 000,093,696 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2005/08/25 11:05:50 | 000,009,016 | ---- | C] () -- C:\windows\hplj24x0.ini
[2005/08/25 11:05:38 | 000,001,436 | ---- | C] () -- C:\windows\mariner.ini
[2005/08/23 15:11:51 | 000,000,585 | ---- | C] () -- C:\windows\ODBC.INI
[2005/08/22 11:18:31 | 000,000,754 | ---- | C] () -- C:\windows\WORDPAD.INI
[2005/08/22 10:33:54 | 000,045,056 | ---- | C] () -- C:\windows\System32\Bmb2Krypt.exe
[2005/08/19 12:29:59 | 000,000,132 | ---- | C] () -- C:\Documents and Settings\Alan Hoey\Local Settings\Application Data\fusioncache.dat
[2005/04/13 16:43:46 | 000,380,736 | ---- | C] () -- C:\windows\System32\drivers\PRISMA00.sys
[2005/04/13 16:34:15 | 000,532,544 | ---- | C] () -- C:\windows\PIC.dll
[2005/04/13 16:34:15 | 000,049,152 | ---- | C] () -- C:\windows\CNYUSB.dll
[2005/04/13 16:34:15 | 000,024,576 | ---- | C] () -- C:\windows\HKCYDLL.dll
[2005/04/13 16:34:15 | 000,011,776 | ---- | C] () -- C:\windows\HIDMNT.dll
[2005/04/13 16:34:15 | 000,000,360 | ---- | C] () -- C:\windows\CNYHKey.ini
[2005/04/12 16:47:28 | 000,000,010 | ---- | C] () -- C:\windows\WININIT.INI
[2005/04/07 20:48:59 | 000,000,060 | ---- | C] () -- C:\windows\System32\SYSDRV.DAT
[2005/04/07 20:14:53 | 000,004,569 | ---- | C] () -- C:\windows\System32\secupd.dat
[2005/04/07 20:14:38 | 000,272,128 | ---- | C] () -- C:\windows\System32\perfi009.dat
[2005/04/07 20:14:38 | 000,028,626 | ---- | C] () -- C:\windows\System32\perfd009.dat
[2005/04/07 20:14:33 | 000,004,518 | ---- | C] () -- C:\windows\System32\oembios.dat
[2005/04/07 20:14:28 | 013,107,200 | ---- | C] () -- C:\windows\System32\oembios.bin
[2005/04/07 20:14:21 | 000,000,741 | ---- | C] () -- C:\windows\System32\noise.dat
[2005/04/07 20:13:40 | 000,673,088 | ---- | C] () -- C:\windows\System32\mlang.dat
[2005/04/07 20:13:40 | 000,046,258 | ---- | C] () -- C:\windows\System32\mib.bin
[2005/04/07 20:12:26 | 000,218,003 | ---- | C] () -- C:\windows\System32\dssec.dat
[2005/04/07 20:11:36 | 000,001,804 | ---- | C] () -- C:\windows\System32\dcache.bin
[2005/04/07 16:25:45 | 000,127,184 | ---- | C] () -- C:\windows\Unwise.exe
[2005/04/07 14:49:15 | 000,001,793 | ---- | C] () -- C:\windows\System32\fxsperf.ini
[2005/04/07 14:29:42 | 000,000,269 | ---- | C] () -- C:\windows\Dit.INI
[2005/04/07 14:18:17 | 000,363,520 | ---- | C] () -- C:\windows\System32\psisdecd.dll
[2005/04/07 14:07:45 | 000,003,072 | ---- | C] () -- C:\windows\System32\34CoInstaller.dll
[2005/04/07 14:06:44 | 000,001,176 | ---- | C] () -- C:\windows\ImpTable.bin
[2005/04/07 14:06:43 | 000,237,568 | ---- | C] () -- C:\windows\System32\cmirmdrv.exe
[2005/04/07 14:06:43 | 000,028,672 | ---- | C] () -- C:\windows\System32\cmirmdrv.dll
[2005/03/02 08:07:23 | 000,000,061 | ---- | C] () -- C:\windows\smscfg.ini
[2005/03/02 02:43:16 | 000,002,048 | --S- | C] () -- C:\windows\bootstat.dat
[2005/03/02 02:39:34 | 000,021,640 | ---- | C] () -- C:\windows\System32\emptyregdb.dat
[2005/03/02 01:28:58 | 000,001,384 | R--- | C] () -- C:\windows\System32\oeminfo.ini
[2005/03/02 01:28:28 | 000,970,300 | ---- | C] () -- C:\windows\System32\perfh009.dat
[2005/03/02 01:28:28 | 000,293,178 | ---- | C] () -- C:\windows\System32\perfc009.dat
[2005/03/01 18:35:00 | 000,004,317 | ---- | C] () -- C:\windows\ODBCINST.INI
[2005/03/01 18:34:12 | 000,346,608 | ---- | C] () -- C:\windows\System32\FNTCACHE.DAT
[2004/11/20 14:17:36 | 000,950,272 | ---- | C] () -- C:\windows\System32\ice20.dll
[2004/11/20 14:12:26 | 000,102,400 | ---- | C] () -- C:\windows\System32\iceutil20.dll
[2004/07/10 18:55:38 | 000,252,416 | ---- | C] () -- C:\windows\System32\wsiShared.dll
[2003/09/17 13:00:56 | 000,266,327 | ---- | C] () -- C:\windows\System32\ADErrorHandling.dll
[2003/02/25 19:19:56 | 000,094,274 | ---- | C] () -- C:\windows\System32\HPBHEALR.DLL
[2002/10/27 10:49:26 | 000,108,908 | ---- | C] () -- C:\windows\System32\bass.dll
[2002/10/15 23:54:04 | 000,153,088 | ---- | C] () -- C:\windows\System32\unrar.dll
[2002/04/16 11:27:54 | 000,000,005 | -HS- | C] () -- C:\windows\System32\CdI5T.drv
[1999/07/23 14:46:48 | 000,000,116 | ---- | C] () -- C:\windows\AuHCcup1.ini
[1999/07/23 11:53:20 | 000,129,536 | ---- | C] () -- C:\windows\AuHCcup1.dll
[1998/03/26 01:12:00 | 000,053,248 | ---- | C] () -- C:\windows\System32\SgHmZLib.dll
[1997/11/17 20:31:04 | 000,003,219 | ---- | C] () -- C:\windows\System32\mmc.ini

========== LOP Check ==========

[2005/09/07 14:06:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\.BitTornado
[2010/02/18 15:30:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Acronis
[2010/07/29 16:26:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\ACT
[2011/02/22 12:50:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\AVG10
[2008/02/12 12:30:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\AVSEdit
[2010/02/22 11:14:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\AVSMedia
[2011/01/21 18:39:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Azureus
[2008/06/03 11:14:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Canon
[2011/10/03 12:31:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\CoreFTP
[2009/07/08 08:16:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\dBpoweramp
[2011/09/02 13:27:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Ember_Media_Manager
[2007/03/16 15:48:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\EPSON
[2010/04/07 09:09:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Facebook
[2011/10/05 08:14:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\FileZilla
[2007/06/05 17:05:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Flickr
[2008/12/09 17:19:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\GetRightToGo
[2009/08/06 09:39:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\GHISLER
[2010/03/05 09:55:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\GlobalSCAPE
[2010/04/12 08:58:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\HandBrake
[2006/12/05 09:07:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\IBP
[2008/11/13 12:09:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\ImgBurn
[2011/07/20 08:49:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\IsolatedStorage
[2009/01/05 14:52:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Leadertech
[2008/02/20 10:21:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\LEAPS
[2010/10/14 14:24:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\mkvtoolnix
[2011/09/16 16:33:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Mp3tag
[2007/04/24 08:50:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\MusicIP
[2011/09/09 15:17:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\NCH Swift Sound
[2008/09/23 11:11:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\NewSoft
[2010/01/05 09:24:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Nokia
[2010/08/23 14:11:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Nortel
[2010/01/05 16:27:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\PC Suite
[2008/02/20 10:15:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Pegasys Inc
[2011/06/10 10:27:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Recordpad
[2010/09/29 11:12:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Registry Mechanic
[2005/05/01 23:04:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\SampleView
[2010/03/04 11:38:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Samsung
[2010/04/01 16:56:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Snappy Fax
[2010/04/01 11:03:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Snappy Fax Archives
[2006/12/05 09:05:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\SolidDocuments
[2010/09/13 16:35:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Spearit
[2007/03/23 16:16:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Spectaculator
[2011/05/31 16:23:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Subversion
[2006/02/15 13:08:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\SuperAdBlocker.com
[2006/02/01 14:28:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Systweak
[2011/04/14 17:14:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\TeamViewer
[2007/03/15 09:09:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\tunebite
[2006/12/05 09:01:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\TuneUp Software
[2010/10/04 16:17:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\URSoft
[2011/10/05 10:04:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\uTorrent
[2007/07/14 17:24:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Viewpoint
[2010/12/22 14:52:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Vso
[2010/02/26 16:09:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\WinAVI
[2009/12/21 13:19:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Windows Desktop Search
[2009/12/21 13:20:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\Windows Search
[2011/10/04 22:54:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\wsInspector
[2011/06/07 09:56:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\www.nerdoftheherd.com
[2011/10/04 13:18:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alan Hoey\Application Data\XBMC
[2009/07/01 15:04:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AcrobatInstall
[2008/08/29 12:06:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Acronis
[2010/07/29 17:09:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ACT
[2010/10/26 09:53:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Applications
[2011/02/22 12:48:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar
[2011/03/01 11:01:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG10
[2011/02/22 12:48:49 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2010/10/04 10:54:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ESET
[2010/03/05 09:57:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\GlobalSCAPE
[2010/03/03 16:55:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Installations
[2010/09/13 16:35:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Laplink
[2011/02/22 14:32:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2006/12/05 09:35:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Napster
[2011/06/09 15:19:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
[2010/01/05 09:24:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Suite
[2011/07/07 14:44:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sage
[2010/07/29 16:34:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sage Software, Inc
[2010/04/01 12:09:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Snappy Fax Server
[2006/06/22 12:32:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SolidDocuments
[2010/09/13 16:35:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Spearit
[2010/11/30 10:08:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2010/02/26 12:54:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software
[2006/11/21 12:12:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2009/03/20 12:56:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3}
[2011/04/12 15:03:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2009/08/05 10:34:56 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\{55A29068-F2CE-456C-9148-C869879E2357}
[2010/01/21 13:16:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2010/02/26 12:54:30 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2011/06/16 15:19:00 | 000,000,306 | ---- | M] () -- C:\windows\Tasks\expressburnSevenDays.job
[2011/06/12 15:19:00 | 000,000,306 | ---- | M] () -- C:\windows\Tasks\expressburnShakeIcon.job
[2011/06/16 15:19:00 | 000,000,302 | ---- | M] () -- C:\windows\Tasks\expressripSevenDays.job
[2011/06/12 15:19:00 | 000,000,302 | ---- | M] () -- C:\windows\Tasks\expressripShakeIcon.job

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 182 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4BF2F6B5
@Alternate Data Stream - 163 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:1CE11B51
@Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D1B5B4F1
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5C321E34

< End of report >

#1
johnmerrick

Posted 05 October 2011 - 06:48 AM

Advertisements

Similar Topics

0 user(s) are reading this topic

As Featured On:

Forums

Downloads

Members

Connect With Us