Inactive very slow to process applications, load or internet.

i do not recognize any of those .txt files.

All processes killed
========== OTL ==========
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks\\{A3BC75A2-1F87-4686-AA43-5347D756017C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C}\ not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable|dword:0 /E : value set successfully!
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyOverride| /E : value set successfully!
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\URLSearchHooks\\{A3BC75A2-1F87-4686-AA43-5347D756017C} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C}\ not found.
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable|dword:0 /E : value set successfully!
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyOverride| /E : value set successfully!
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer| /E : value set successfully!
Starting removal of ActiveX control {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
C:\WINDOWS\Downloaded Program Files\gp.inf not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
C:\Documents and Settings\Rick Picon\Local Settings\Application Data\jepiqod.dl moved successfully.
C:\Documents and Settings\Rick Picon\Application Data\otumy._dl moved successfully.
C:\Documents and Settings\All Users\Application Data\oxol.bat moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Application Data\xacomihony.dll moved successfully.
C:\Documents and Settings\All Users\Application Data\ujiluj._sy moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Application Data\ehipep.scr moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Application Data\xobusob.lib moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Application Data\bufezo.dl moved successfully.
C:\Documents and Settings\All Users\Application Data\rycaxujy.exe moved successfully.
C:\Documents and Settings\Rick Picon\Application Data\liqeli._sy moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Application Data\rafofula.exe moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Application Data\zilyjev.bin moved successfully.
C:\Documents and Settings\Rick Picon\Application Data\ofawivetud.bat moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Application Data\sarehof._dl moved successfully.
C:\WINDOWS\system32\aveda.dll moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Application Data\arizojuxas.com moved successfully.
C:\Documents and Settings\All Users\Application Data\izuhyp.bat moved successfully.
C:\Documents and Settings\Rick Picon\Application Data\lysocewity._dl moved successfully.
C:\WINDOWS\ehubanowo.sys moved successfully.
C:\Documents and Settings\Rick Picon\Application Data\exasoby.vbs moved successfully.
C:\Documents and Settings\Rick Picon\Application Data\okahogog.dl moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Application Data\jeno.scr moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Application Data\zyzowy.dll moved successfully.
C:\Documents and Settings\Rick Picon\Application Data\pemuzelit.dl moved successfully.
C:\Documents and Settings\All Users\Application Data\Viewpoint\Viewpoint Experience Technology\UserShell\AOL9Plus folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Viewpoint\Viewpoint Experience Technology\UserShell\AOL9 folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Viewpoint\Viewpoint Experience Technology\UserShell folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Viewpoint\Viewpoint Experience Technology\Resources\Welcome\BH00 folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Viewpoint\Viewpoint Experience Technology\Resources\Welcome folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Viewpoint\Viewpoint Experience Technology\Resources\ResourceFolder_03 folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Viewpoint\Viewpoint Experience Technology\Resources\ResourceFolder_02 folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Viewpoint\Viewpoint Experience Technology\Resources\ResourceFolder_01 folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Viewpoint\Viewpoint Experience Technology\Resources\ResourceFolder_00 folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Viewpoint\Viewpoint Experience Technology\Resources folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Viewpoint\Viewpoint Experience Technology folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Viewpoint\AxMetaStream_Win folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Viewpoint folder moved successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP282699C deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:0B4227B4 deleted successfully.
========== SERVICES/DRIVERS ==========
========== REGISTRY ==========
========== FILES ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: All Users

User: Copy of Rick Picon

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: dfederman
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: LocalService
->Temp folder emptied: 65748 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes
->Java cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: pwalsh
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Rick Picon
->Temp folder emptied: 14973564 bytes
->Temporary Internet Files folder emptied: 264483294 bytes
->Java cache emptied: 2946727 bytes
->FireFox cache emptied: 107161134 bytes
->Flash cache emptied: 38819 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 11158 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 372.00 mb


[EMPTYFLASH]

User: Administrator

User: All Users

User: Copy of Rick Picon

User: Default User

User: dfederman
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService
->Flash cache emptied: 0 bytes

User: pwalsh
->Flash cache emptied: 0 bytes

User: Rick Picon
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0.00 mb


OTL by OldTimer - Version 3.2.21.0 log created on 03012011_114448

Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temp\tmp120.tmp not found!
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temp\tmp155.tmp not found!
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temp\tmp177.tmp not found!
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRF{6AFC20DB-BA10-406B-AFCB-E447C1B0E68F}.tmp moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{1152DBD9-4F24-4E24-A66A-20C1124F8395}.tmp moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{250C69C4-888A-4773-940C-208B8B64DB85}.tmp moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{350BC287-5F13-4120-B445-46EF18A831B1}.tmp moved successfully.
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{699D9C06-38A5-4E2B-AFBF-AFD3A0507AA8}.tmp not found!
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{6A3237F5-4629-46C2-8D28-5C660C372E6E}.tmp not found!
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{967B2DD6-B6F0-4C53-BA23-643EE3B942C2}.tmp not found!
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{EAEC998F-3726-42D8-9E12-1E034370EB7A}.tmp moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\Z8E7RRMB\97833-active-very-slow-process-applications-load-internet-2[2].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\TJIE3IFC\background_button_green_full[1].png moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\AntiPhishing\A0AB7674-8D67-4F4D-B5E1-96FAEADFB79D.dat moved successfully.
File move failed. C:\WINDOWS\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

 

All processes killed
========== OTL ==========
========== FILES ==========
C:\sqmdata00.sqm moved successfully.
C:\sqmdata01.sqm moved successfully.
C:\sqmdata02.sqm moved successfully.
C:\sqmdata03.sqm moved successfully.
C:\sqmdata04.sqm moved successfully.
C:\sqmdata05.sqm moved successfully.
C:\sqmdata06.sqm moved successfully.
C:\sqmdata07.sqm moved successfully.
C:\sqmdata08.sqm moved successfully.
C:\sqmdata09.sqm moved successfully.
C:\sqmdata10.sqm moved successfully.
C:\sqmdata11.sqm moved successfully.
C:\sqmdata12.sqm moved successfully.
C:\sqmdata13.sqm moved successfully.
C:\sqmdata14.sqm moved successfully.
C:\sqmdata15.sqm moved successfully.
C:\sqmdata16.sqm moved successfully.
C:\sqmdata17.sqm moved successfully.
C:\sqmdata18.sqm moved successfully.
C:\sqmdata19.sqm moved successfully.
C:\sqmnoopt00.sqm moved successfully.
C:\sqmnoopt01.sqm moved successfully.
C:\sqmnoopt02.sqm moved successfully.
C:\sqmnoopt03.sqm moved successfully.
C:\sqmnoopt04.sqm moved successfully.
C:\sqmnoopt05.sqm moved successfully.
C:\sqmnoopt06.sqm moved successfully.
C:\sqmnoopt07.sqm moved successfully.
C:\sqmnoopt08.sqm moved successfully.
C:\sqmnoopt09.sqm moved successfully.
C:\sqmnoopt10.sqm moved successfully.
C:\sqmnoopt11.sqm moved successfully.
C:\sqmnoopt12.sqm moved successfully.
C:\sqmnoopt13.sqm moved successfully.
C:\sqmnoopt14.sqm moved successfully.
C:\sqmnoopt15.sqm moved successfully.
C:\sqmnoopt16.sqm moved successfully.
C:\sqmnoopt17.sqm moved successfully.
C:\sqmnoopt18.sqm moved successfully.
C:\sqmnoopt19.sqm moved successfully.
C:\a0LpMh.txt moved successfully.
C:\a0mB.txt moved successfully.
C:\a0RX.txt moved successfully.
C:\a5Oa7.txt moved successfully.
C:\a5Uu.txt moved successfully.
C:\A5Uz.txt moved successfully.
C:\A6k.txt moved successfully.
C:\aaj9eb.txt moved successfully.
C:\aBysYs.txt moved successfully.
C:\aCTvZg.txt moved successfully.
C:\Acw.txt moved successfully.
C:\aeG.txt moved successfully.
C:\aGA.txt moved successfully.
C:\AHMK.txt moved successfully.
C:\Ahvag.txt moved successfully.
C:\AiFqE.txt moved successfully.
C:\AIG1KRM.txt moved successfully.
C:\Aip.txt moved successfully.
C:\AISkCzV.txt moved successfully.
C:\AJYa.txt moved successfully.
C:\aMb.txt moved successfully.
C:\aNfvqCts.txt moved successfully.
C:\aNLNogy7.txt moved successfully.
C:\aPkW.txt moved successfully.
C:\aqUi0c.txt moved successfully.
C:\aQWw5.txt moved successfully.
C:\asbIYvx.txt moved successfully.
C:\atGY1O7.txt moved successfully.
C:\AVU.txt moved successfully.
C:\AWAzUEo.txt moved successfully.
C:\AXe5870E.txt moved successfully.
C:\AzU.txt moved successfully.
C:\b1FMO0.txt moved successfully.
C:\B1v.txt moved successfully.
C:\b4W1y2.txt moved successfully.
C:\B8PYqtfO.txt moved successfully.
C:\bAR7d.txt moved successfully.
C:\bAv.txt moved successfully.
C:\bbhJEySo.txt moved successfully.
C:\BCg.txt moved successfully.
C:\Bda.txt moved successfully.
C:\Bdb.txt moved successfully.
C:\bg5kd.txt moved successfully.
C:\Bgks.txt moved successfully.
C:\bgR.txt moved successfully.
C:\bGx.txt moved successfully.
C:\BH3x.txt moved successfully.
C:\Bi5.txt moved successfully.
C:\bKKgsf.txt moved successfully.
C:\BKxCL.txt moved successfully.
C:\bqlOdI7.txt moved successfully.
C:\bqt5cqJI.txt moved successfully.
C:\BRCtKy.txt moved successfully.
C:\Brh0.txt moved successfully.
C:\btzneidJ.txt moved successfully.
C:\bvbQCfR.txt moved successfully.
C:\bVuQ6.txt moved successfully.
C:\bWEEdX2.txt moved successfully.
C:\BxBGEeX.txt moved successfully.
C:\BxDMO4B.txt moved successfully.
C:\BxEaxsB5.txt moved successfully.
C:\bxOCCHrM.txt moved successfully.
C:\bzG.txt moved successfully.
C:\BzZ3.txt moved successfully.
C:\C153.txt moved successfully.
C:\c5W1w0r.txt moved successfully.
C:\c7gtx.txt moved successfully.
C:\C7w.txt moved successfully.
C:\ca1.txt moved successfully.
C:\caC.txt moved successfully.
C:\cAUOSrc.txt moved successfully.
C:\cbi3p.txt moved successfully.
C:\cCn.txt moved successfully.
C:\CD26.txt moved successfully.
C:\Ce8hoG5y.txt moved successfully.
C:\cFBcv.txt moved successfully.
C:\CgCSMcb.txt moved successfully.
C:\CMk3z.txt moved successfully.
C:\cN8ufx.txt moved successfully.
C:\cNqAJ2x.txt moved successfully.
C:\cocqGE.txt moved successfully.
C:\ComboFix.txt moved successfully.
C:\cQr.txt moved successfully.
C:\Cr351AzS.txt moved successfully.
C:\CvG96f1.txt moved successfully.
C:\CWY.txt moved successfully.
C:\CX6UNlfS.txt moved successfully.
C:\cxb6.txt moved successfully.
C:\CXs.txt moved successfully.
C:\CYl.txt moved successfully.
C:\Cz1k.txt moved successfully.
C:\D0TQIY.txt moved successfully.
C:\d2w.txt moved successfully.
C:\D39.txt moved successfully.
C:\d5RJk.txt moved successfully.
C:\D6MM24.txt moved successfully.
C:\D8HZsrQ1.txt moved successfully.
C:\dBbDbg.txt moved successfully.
C:\DBhYAdKy.txt moved successfully.
C:\dCaXKH.txt moved successfully.
C:\DcdmSq.txt moved successfully.
C:\ddKRVg.txt moved successfully.
C:\ddykzQ4.txt moved successfully.
C:\dELPpWl.txt moved successfully.
C:\dgH.txt moved successfully.
C:\dGmY9sB.txt moved successfully.
C:\dHbRTa.txt moved successfully.
C:\dIdiRCd.txt moved successfully.
C:\dIpM.txt moved successfully.
C:\dJK.txt moved successfully.
C:\dkewJjO.txt moved successfully.
C:\Dkj4.txt moved successfully.
C:\DlPO.txt moved successfully.
C:\dMF1bHuV.txt moved successfully.
C:\Dnsp.txt moved successfully.
C:\Dnx5Tn.txt moved successfully.
C:\dO2S.txt moved successfully.
C:\dO3GqGK.txt moved successfully.
C:\DoddJUb.txt moved successfully.
C:\dokI8GQ.txt moved successfully.
C:\dPRGu.txt moved successfully.
C:\dPv.txt moved successfully.
C:\Dq3.txt moved successfully.
C:\DqRd.txt moved successfully.
C:\DR2OyP.txt moved successfully.
C:\DSWVS.txt moved successfully.
C:\DvGl.txt moved successfully.
C:\dWa6b.txt moved successfully.
C:\dww.txt moved successfully.
C:\E0VR.txt moved successfully.
C:\e5Ok.txt moved successfully.
C:\E62FF5.txt moved successfully.
C:\e6uWFeM.txt moved successfully.
C:\ebqd2gg.txt moved successfully.
C:\ebT.txt moved successfully.
C:\EDGjl.txt moved successfully.
C:\EDiD.txt moved successfully.
C:\eHWET3dR.txt moved successfully.
C:\eIgG2f.txt moved successfully.
C:\EjR8G.txt moved successfully.
C:\EmvL57.txt moved successfully.
C:\eMYdeARJ.txt moved successfully.
C:\enuc.txt moved successfully.
C:\EoCjcK.txt moved successfully.
C:\eP9CBu6.txt moved successfully.
C:\epRCf.txt moved successfully.
C:\erHvGNNP.txt moved successfully.
C:\eRwdIP.txt moved successfully.
C:\EThA.txt moved successfully.
C:\EVc.txt moved successfully.
C:\EvHVD1.txt moved successfully.
C:\EvTBNb.txt moved successfully.
C:\eXKd.txt moved successfully.
C:\ez8s2m.txt moved successfully.
C:\f0F9j.txt moved successfully.
C:\f1UPJA.txt moved successfully.
C:\f27beHR.txt moved successfully.
C:\f3h3qjxc.txt moved successfully.
C:\f4xYXq.txt moved successfully.
C:\F6ajG.txt moved successfully.
C:\F6KwZZ.txt moved successfully.
C:\F7x37.txt moved successfully.
C:\fBiIo.txt moved successfully.
C:\fc5Zs.txt moved successfully.
C:\FcivR.txt moved successfully.
C:\fEG3a8.txt moved successfully.
C:\FF9J.txt moved successfully.
C:\ffO4.txt moved successfully.
C:\fGEaDj0.txt moved successfully.
C:\FHz.txt moved successfully.
C:\fjMg8Fk.txt moved successfully.
C:\fjqtcDv0.txt moved successfully.
C:\fMAYvJ.txt moved successfully.
C:\FMum.txt moved successfully.
C:\fMW.txt moved successfully.
C:\FnhwPYGU.txt moved successfully.
C:\fNw6M8t.txt moved successfully.
C:\Fo8.txt moved successfully.
C:\FOrAuf.txt moved successfully.
C:\FOuQlM.txt moved successfully.
C:\FQ3.txt moved successfully.
C:\FR6rrIi.txt moved successfully.
C:\Fsi0MNJa.txt moved successfully.
C:\FsQVz.txt moved successfully.
C:\ft10.txt moved successfully.
C:\fu1vpU.txt moved successfully.
C:\fuzZ9F.txt moved successfully.
C:\FWE7.txt moved successfully.
C:\fwlHO.txt moved successfully.
C:\FYJkv.txt moved successfully.
C:\FyP6.txt moved successfully.
C:\FytR3.txt moved successfully.
C:\FYVEfz.txt moved successfully.
C:\fZ1RwhP6.txt moved successfully.
C:\FZg2eNZ.txt moved successfully.
C:\G1OY.txt moved successfully.
C:\g1xXVau.txt moved successfully.
C:\G3f.txt moved successfully.
C:\G624p.txt moved successfully.
C:\g6RxZ.txt moved successfully.
C:\g77e.txt moved successfully.
C:\G81Tu3B.txt moved successfully.
C:\gAtUf.txt moved successfully.
C:\GBx.txt moved successfully.
C:\gClHn.txt moved successfully.
C:\Ggc.txt moved successfully.
C:\GGek.txt moved successfully.
C:\Ghm6.txt moved successfully.
C:\GJ2sCNGj.txt moved successfully.
C:\GjX.txt moved successfully.
C:\GKcD.txt moved successfully.
C:\gllt7j.txt moved successfully.
C:\GnmTzir.txt moved successfully.
C:\GOeH.txt moved successfully.
C:\gOkYzagN.txt moved successfully.
C:\GpiY.txt moved successfully.
C:\gqEaDn.txt moved successfully.
C:\gsOMO.txt moved successfully.
C:\gtBnMm.txt moved successfully.
C:\gTwZ.txt moved successfully.
C:\gUEF3Oj.txt moved successfully.
C:\GVjkj4X.txt moved successfully.
C:\GwzjkwJw.txt moved successfully.
C:\H23MnKDR.txt moved successfully.
C:\H61Bk.txt moved successfully.
C:\h83kk.txt moved successfully.
C:\hA5.txt moved successfully.
C:\hbhyxjs.txt moved successfully.
C:\hExuo0qS.txt moved successfully.
C:\Heyvc.txt moved successfully.
C:\HGM.txt moved successfully.
C:\hI29L3.txt moved successfully.
C:\hIMeS7ZQ.txt moved successfully.
C:\hiX.txt moved successfully.
C:\HixcfIU.txt moved successfully.
C:\hkJUR.txt moved successfully.
C:\hkxmKTF.txt moved successfully.
C:\hP9Ji.txt moved successfully.
C:\hQ0uzK5.txt moved successfully.
C:\HtBk7c.txt moved successfully.
C:\hu9C.txt moved successfully.
C:\HwHTDsJO.txt moved successfully.
C:\HySc9ih.txt moved successfully.
C:\HZ1q.txt moved successfully.
C:\I01xFOl.txt moved successfully.
C:\i1eW.txt moved successfully.
C:\i2r1.txt moved successfully.
C:\I3wbrk.txt moved successfully.
C:\i5c2wMG.txt moved successfully.
C:\I6jDwoR.txt moved successfully.
C:\I7Z.txt moved successfully.
C:\IBifhB0.txt moved successfully.
C:\ICD.txt moved successfully.
C:\iDiby.txt moved successfully.
C:\idR5Wymo.txt moved successfully.
C:\Idxi.txt moved successfully.
C:\iE6.txt moved successfully.
C:\iEXZrc.txt moved successfully.
C:\IFc.txt moved successfully.
C:\IfOlVxW.txt moved successfully.
C:\IgD9RKs.txt moved successfully.
C:\iGzOQ.txt moved successfully.
C:\ihAMRhW.txt moved successfully.
C:\IHWuupd.txt moved successfully.
C:\IiAtp.txt moved successfully.
C:\iJ4.txt moved successfully.
C:\ijILc.txt moved successfully.
C:\IjWQw.txt moved successfully.
C:\IKueNOZ.txt moved successfully.
C:\ilbw.txt moved successfully.
C:\Im6mzRL.txt moved successfully.
C:\INA.txt moved successfully.
C:\iOh8F.txt moved successfully.
C:\Ip9kxH.txt moved successfully.
C:\ipYmfG.txt moved successfully.
C:\IQwY.txt moved successfully.
C:\isOTv.txt moved successfully.
C:\iw4ugm.txt moved successfully.
C:\iwYV.txt moved successfully.
C:\iXn4OIan.txt moved successfully.
C:\IZJApO.txt moved successfully.
C:\iZZImJx.txt moved successfully.
C:\j05AKOy.txt moved successfully.
C:\j1pcs.txt moved successfully.
C:\j3f.txt moved successfully.
C:\j5IqP.txt moved successfully.
C:\j5qRb.txt moved successfully.
C:\J6J.txt moved successfully.
C:\jAPBX0P.txt moved successfully.
C:\jaZK3o.txt moved successfully.
C:\jEo.txt moved successfully.
C:\JF4izqk.txt moved successfully.
C:\JIfICGaT.txt moved successfully.
C:\jk4bmO.txt moved successfully.
C:\JKgvZU.txt moved successfully.
C:\Jknsfk.txt moved successfully.
C:\JL48JaH.txt moved successfully.
C:\jle.txt moved successfully.
C:\jMdy.txt moved successfully.
C:\Jnk0CuU.txt moved successfully.
C:\JoM9.txt moved successfully.
C:\JouKe.txt moved successfully.
C:\jpqfVSo.txt moved successfully.
C:\JpSWl.txt moved successfully.
C:\jq0HeFB.txt moved successfully.
C:\jQbsrW.txt moved successfully.
C:\JqwLO3Y.txt moved successfully.
C:\jR1j.txt moved successfully.
C:\jrGC.txt moved successfully.
C:\JUl9zli.txt moved successfully.
C:\jwSGTkw.txt moved successfully.
C:\jXD0Q.txt moved successfully.
C:\JYKeu.txt moved successfully.
C:\K4er9.txt moved successfully.
C:\K53u.txt moved successfully.
C:\K75m0.txt moved successfully.
C:\K7Qpc22a.txt moved successfully.
C:\K8l1R.txt moved successfully.
C:\KAs9t.txt moved successfully.
C:\kaw9W9j.txt moved successfully.
C:\KBmc.txt moved successfully.
C:\kbMu6.txt moved successfully.
C:\KBQg.txt moved successfully.
C:\kbV.txt moved successfully.
C:\kccgh.txt moved successfully.
C:\KfjR5D.txt moved successfully.
C:\Kft5CiFF.txt moved successfully.
C:\Kha.txt moved successfully.
C:\kHo.txt moved successfully.
C:\kJ2nZ3t.txt moved successfully.
C:\kJTeqGF.txt moved successfully.
C:\kjz.txt moved successfully.
C:\kkty2.txt moved successfully.
C:\KKugD07.txt moved successfully.
C:\KLa5P8.txt moved successfully.
C:\kMN62d.txt moved successfully.
C:\Kpp759.txt moved successfully.
C:\kS4T7wh.txt moved successfully.
C:\kUeo.txt moved successfully.
C:\KuwQXez.txt moved successfully.
C:\kvTv.txt moved successfully.
C:\kY31.txt moved successfully.
C:\Kz5.txt moved successfully.
C:\l07fJsI.txt moved successfully.
C:\L0vxckYn.txt moved successfully.
C:\l1TXCIg.txt moved successfully.
C:\laUsPM.txt moved successfully.
C:\LBjrKE.txt moved successfully.
C:\lCJU9F3.txt moved successfully.
C:\ldjfF.txt moved successfully.
C:\LeFal4z.txt moved successfully.
C:\LeLkHOp.txt moved successfully.
C:\lg4Dg.txt moved successfully.
C:\lGj0HU.txt moved successfully.
C:\lGZfwN.txt moved successfully.
C:\lhkBj27.txt moved successfully.
C:\LjtSSAoq.txt moved successfully.
C:\LKJHK3AF.txt moved successfully.
C:\lkl.txt moved successfully.
C:\LKMlHi.txt moved successfully.
C:\Lo3iWQl.txt moved successfully.
C:\lRXIO.txt moved successfully.
C:\ls81C1sb.txt moved successfully.
C:\LsBAzi.txt moved successfully.
C:\LSKqUcn.txt moved successfully.
C:\ltbRieJ.txt moved successfully.
C:\lTmOOB.txt moved successfully.
C:\Lu1Yj.txt moved successfully.
C:\lUS.txt moved successfully.
C:\lWm0msQ5.txt moved successfully.
C:\LXNVQULX.txt moved successfully.
C:\LyYqF027.txt moved successfully.
C:\m02V86sg.txt moved successfully.
C:\M1dmMwHu.txt moved successfully.
C:\M1r2kU.txt moved successfully.
C:\M5Dk.txt moved successfully.
C:\M5rdFd.txt moved successfully.
C:\m6rvUXwi.txt moved successfully.
C:\M7PZqN4.txt moved successfully.
C:\maBuptKl.txt moved successfully.
C:\mATrL.txt moved successfully.
C:\mbE.txt moved successfully.
C:\mbT.txt moved successfully.
C:\McqhXV.txt moved successfully.
C:\MdJRyceo.txt moved successfully.
C:\mDs.txt moved successfully.
C:\mFn.txt moved successfully.
C:\mFwTd.txt moved successfully.
C:\MiGeN2.txt moved successfully.
C:\MJU.txt moved successfully.
C:\Mk7Oagq.txt moved successfully.
C:\MLDBoT.txt moved successfully.
C:\MMjCdz.txt moved successfully.
C:\MMqcg4.txt moved successfully.
C:\MorXr.txt moved successfully.
C:\MOVjd6Oi.txt moved successfully.
C:\MpgEtKgD.txt moved successfully.
C:\MQqKQv1d.txt moved successfully.
C:\mQTjlYo.txt moved successfully.
C:\mtN82Yd.txt moved successfully.
C:\MtrF.txt moved successfully.
C:\mtWKK.txt moved successfully.
C:\mVgRjC.txt moved successfully.
C:\mVUb4.txt moved successfully.
C:\mWfxp9al.txt moved successfully.
C:\MYfkyL.txt moved successfully.
C:\myly.txt moved successfully.
C:\MyMeaY3.txt moved successfully.
C:\MZ3lkaIa.txt moved successfully.
C:\N3zD.txt moved successfully.
C:\n6aT21o.txt moved successfully.
C:\n8dW.txt moved successfully.
C:\NcFPlzA.txt moved successfully.
C:\NEbKyk.txt moved successfully.
C:\NF2KV8aP.txt moved successfully.
C:\NgSq.txt moved successfully.
C:\NgYp.txt moved successfully.
C:\NIb.txt moved successfully.
C:\nJKW.txt moved successfully.
C:\Nkkf.txt moved successfully.
C:\nLKE3M.txt moved successfully.
C:\nMwl.txt moved successfully.
C:\NMYl.txt moved successfully.
C:\npPpg.txt moved successfully.
C:\NPUKpW.txt moved successfully.
C:\Nvr0.txt moved successfully.
C:\nwHdz7NX.txt moved successfully.
C:\NWopq9.txt moved successfully.
C:\nwyc38U.txt moved successfully.
C:\nx51.txt moved successfully.
C:\nxRUBQl.txt moved successfully.
C:\NY3.txt moved successfully.
C:\NYkKV2.txt moved successfully.
C:\nz5N0q.txt moved successfully.
C:\NzYk3W0F.txt moved successfully.
C:\o2M6oD9.txt moved successfully.
C:\o55mZ.txt moved successfully.
C:\O90.txt moved successfully.
C:\o95UF.txt moved successfully.
C:\Oa965.txt moved successfully.
C:\OanSW.txt moved successfully.
C:\oC2h6Q.txt moved successfully.
C:\ODJjK.txt moved successfully.
C:\oDQ4hY.txt moved successfully.
C:\odSbeKM.txt moved successfully.
C:\oe4.txt moved successfully.
C:\oH64Y.txt moved successfully.
C:\ohHhcKM.txt moved successfully.
C:\OkWYjnD.txt moved successfully.
C:\OoxE.txt moved successfully.
C:\opuAoO.txt moved successfully.
C:\OPz11t.txt moved successfully.
C:\oSgJaeoG.txt moved successfully.
C:\OSpC.txt moved successfully.
C:\oua.txt moved successfully.
C:\oWe.txt moved successfully.
C:\OwgzWgMV.txt moved successfully.
C:\owND.txt moved successfully.
C:\OXQSR.txt moved successfully.
C:\OYyDBNt.txt moved successfully.
C:\OZYhA.txt moved successfully.
C:\p1iJ.txt moved successfully.
C:\P2V1hqoi.txt moved successfully.
C:\p3KShg.txt moved successfully.
C:\p4m.txt moved successfully.
C:\p5ExeW.txt moved successfully.
C:\P7pBB2B.txt moved successfully.
C:\paT6yl.txt moved successfully.
C:\pBKxKyT.txt moved successfully.
C:\pc8A.txt moved successfully.
C:\PDVhd.txt moved successfully.
C:\pEv.txt moved successfully.
C:\pfCJJaS.txt moved successfully.
C:\PfDdJSiK.txt moved successfully.
C:\PG5itpm.txt moved successfully.
C:\PJwnnRm.txt moved successfully.
C:\PJyk.txt moved successfully.
C:\pKV5mOIS.txt moved successfully.
C:\PmQmotm.txt moved successfully.
C:\PooW.txt moved successfully.
C:\pOozV.txt moved successfully.
C:\PS7zg.txt moved successfully.
C:\Pst5jZnU.txt moved successfully.
C:\puybt.txt moved successfully.
C:\pvKsWC.txt moved successfully.
C:\Pwmg.txt moved successfully.
C:\Pwt.txt moved successfully.
C:\PXyCnc.txt moved successfully.
C:\q0UAE2.txt moved successfully.
C:\Q6D9K.txt moved successfully.
C:\Q98WM3q.txt moved successfully.
C:\Q9qeNHB2.txt moved successfully.
C:\QdQTO.txt moved successfully.
C:\qEKwZ.txt moved successfully.
C:\qIhoC.txt moved successfully.
C:\QIx4.txt moved successfully.
C:\qj59AQx.txt moved successfully.
C:\qlz.txt moved successfully.
C:\qNaN3ZYb.txt moved successfully.
C:\QoI2p91z.txt moved successfully.
C:\QPEB1.txt moved successfully.
C:\qpt.txt moved successfully.
C:\qqrucR0p.txt moved successfully.
C:\QQWp9D.txt moved successfully.
C:\qRFCmu3.txt moved successfully.
C:\qstp.txt moved successfully.
C:\qSZ.txt moved successfully.
C:\QT3WqP.txt moved successfully.
C:\QTL.txt moved successfully.
C:\QtUvuj0.txt moved successfully.
C:\QU72lBcH.txt moved successfully.
C:\qUe8j.txt moved successfully.
C:\qugeiNW.txt moved successfully.
C:\qXvC.txt moved successfully.
C:\QZYizYsN.txt moved successfully.
C:\r4Mk.txt moved successfully.
C:\R7BfQ5n.txt moved successfully.
C:\R95.txt moved successfully.
C:\rBfZZiMa.txt moved successfully.
C:\rcMt.txt moved successfully.
C:\Rd2AJ.txt moved successfully.
C:\Re7.txt moved successfully.
C:\ReIxWB.txt moved successfully.
C:\Reslog.txt moved successfully.
C:\RfXt2.txt moved successfully.
C:\rHQhls3.txt moved successfully.
C:\rIEu.txt moved successfully.
C:\Rka.txt moved successfully.
C:\rKz.txt moved successfully.
C:\RmAVWe.txt moved successfully.
C:\RnrW.txt moved successfully.
C:\rp4daQ.txt moved successfully.
C:\RPkN.txt moved successfully.
C:\RQ4.txt moved successfully.
C:\RQla.txt moved successfully.
C:\rQpM.txt moved successfully.
C:\rR1JI.txt moved successfully.
C:\RsUF658.txt moved successfully.
C:\rU8zl.txt moved successfully.
C:\RuohO4z1.txt moved successfully.
C:\RVcDF.txt moved successfully.
C:\RvK4CvsL.txt moved successfully.
C:\rvq.txt moved successfully.
C:\rWaz.txt moved successfully.
C:\rzN.txt moved successfully.
C:\S2PrWN.txt moved successfully.
C:\S5CL.txt moved successfully.
C:\S6X.txt moved successfully.
C:\S751.txt moved successfully.
C:\sA382.txt moved successfully.
C:\sAFB.txt moved successfully.
C:\SahcX.txt moved successfully.
C:\sbk.txt moved successfully.
C:\Sbl.txt moved successfully.
C:\sC48.txt moved successfully.
C:\sCaD85TU.txt moved successfully.
C:\Sdpn1A1S.txt moved successfully.
C:\sE8cHJ.txt moved successfully.
C:\SeI5.txt moved successfully.
C:\seX4jo.txt moved successfully.
C:\sF6.txt moved successfully.
C:\Sgd5.txt moved successfully.
C:\sMm.txt moved successfully.
C:\Smo7.txt moved successfully.
C:\smooDh.txt moved successfully.
C:\Snc8uf3.txt moved successfully.
C:\soAZ.txt moved successfully.
C:\spjBdu.txt moved successfully.
C:\sSlpHA.txt moved successfully.
C:\sTO.txt moved successfully.
C:\stTMN.txt moved successfully.
C:\SuxRtt7Z.txt moved successfully.
C:\suyWFc.txt moved successfully.
C:\SvCP.txt moved successfully.
C:\SWuoOM3.txt moved successfully.
C:\SYt2D.txt moved successfully.
C:\t1BAhbhL.txt moved successfully.
C:\T1Xp.txt moved successfully.
C:\T2a88G.txt moved successfully.
C:\t3gkYvw.txt moved successfully.
C:\t3gpE.txt moved successfully.
C:\t8nY7.txt moved successfully.
C:\TaLkA.txt moved successfully.
C:\tBjYLa.txt moved successfully.
C:\TcO.txt moved successfully.
C:\td8T.txt moved successfully.
C:\TFel.txt moved successfully.
C:\tMClLtIW.txt moved successfully.
C:\tovN.txt moved successfully.
C:\tPJ1P.txt moved successfully.
C:\tPMX3i.txt moved successfully.
C:\Tqkhuw.txt moved successfully.
C:\Trx6.txt moved successfully.
C:\TSiJ.txt moved successfully.
C:\tsnmtrc.txt moved successfully.
C:\tT3A.txt moved successfully.
C:\tUN2WmJb.txt moved successfully.
C:\tvB5G7w7.txt moved successfully.
C:\TVFY.txt moved successfully.
C:\TWyu.txt moved successfully.
C:\Tx6I.txt moved successfully.
C:\tXQ6YQ.txt moved successfully.
C:\txVd.txt moved successfully.
C:\tYg00G7.txt moved successfully.
C:\tyLx.txt moved successfully.
C:\u33dkii.txt moved successfully.
C:\u4FAHkX.txt moved successfully.
C:\U9fWDjic.txt moved successfully.
C:\UAB.txt moved successfully.
C:\uaDF8.txt moved successfully.
C:\ubwMhP.txt moved successfully.
C:\uBZ2c.txt moved successfully.
C:\uDdb.txt moved successfully.
C:\UdNM7j.txt moved successfully.
C:\UGYXa.txt moved successfully.
C:\UH51.txt moved successfully.
C:\ui9M.txt moved successfully.
C:\Ujl.txt moved successfully.
C:\UjP.txt moved successfully.
C:\uKOSF.txt moved successfully.
C:\UMVSAK.txt moved successfully.
C:\UNqWMX.txt moved successfully.
C:\UnV.txt moved successfully.
C:\UpBFsgD.txt moved successfully.
C:\UPSiwjtO.txt moved successfully.
C:\urdCgpsE.txt moved successfully.
C:\uRxeo.txt moved successfully.
C:\UStO2.txt moved successfully.
C:\UTK.txt moved successfully.
C:\uu6qJcGZ.txt moved successfully.
C:\UUCskz.txt moved successfully.
C:\UX1.txt moved successfully.
C:\uYk.txt moved successfully.
C:\v0JH.txt moved successfully.
C:\V2RuSM.txt moved successfully.
C:\V4i6.txt moved successfully.
C:\v9OB.txt moved successfully.
C:\VBD4c2.txt moved successfully.
C:\VBdvTc4G.txt moved successfully.
C:\vcFCUP.txt moved successfully.
C:\Vci8EO0.txt moved successfully.
C:\VCMKvpP.txt moved successfully.
C:\Vcr61.txt moved successfully.
C:\vcxwyBiT.txt moved successfully.
C:\vCY4Ok.txt moved successfully.
C:\VFB5Vs.txt moved successfully.
C:\vhPdI.txt moved successfully.
C:\vL7.txt moved successfully.
C:\vmDi.txt moved successfully.
C:\vmlNw.txt moved successfully.
C:\VN7mkhN.txt moved successfully.
C:\vNWPRXQ.txt moved successfully.
C:\VPqwWxG.txt moved successfully.
C:\Vr96SW8.txt moved successfully.
C:\vsCg8F.txt moved successfully.
C:\VsdbgluO.txt moved successfully.
C:\VundoFix.txt moved successfully.
C:\vv4wDhaQ.txt moved successfully.
C:\VVZ5cd.txt moved successfully.
C:\vXXW4b.txt moved successfully.
C:\W1h1an.txt moved successfully.
C:\w5r.txt moved successfully.
C:\w9P.txt moved successfully.
C:\wAt.txt moved successfully.
C:\WAvLv.txt moved successfully.
C:\wcznxn.txt moved successfully.
C:\WcZs64qL.txt moved successfully.
C:\WdF.txt moved successfully.
C:\wdQS.txt moved successfully.
C:\whPT.txt moved successfully.
C:\WISG.txt moved successfully.
C:\WiTiwA0.txt moved successfully.
C:\WLUBpu.txt moved successfully.
C:\wOTnQ.txt moved successfully.
C:\wPs7.txt moved successfully.
C:\WPUIq.txt moved successfully.
C:\wQ5.txt moved successfully.
C:\wQhQdk8.txt moved successfully.
C:\wrDS.txt moved successfully.
C:\wSp0Pkch.txt moved successfully.
C:\wteVYcUl.txt moved successfully.
C:\WtkSk.txt moved successfully.
C:\wtv.txt moved successfully.
C:\Wu8x4xzn.txt moved successfully.
C:\wUi.txt moved successfully.
C:\WuY4G.txt moved successfully.
C:\wv3.txt moved successfully.
C:\WVtQrFN.txt moved successfully.
C:\wWFFy1N.txt moved successfully.
C:\wyADENqI.txt moved successfully.
C:\WZIQoTIX.txt moved successfully.
C:\x0zSuTR7.txt moved successfully.
C:\X1cV.txt moved successfully.
C:\X2aem.txt moved successfully.
C:\X37oJI.txt moved successfully.
C:\x3GMW4i.txt moved successfully.
C:\x3tU4.txt moved successfully.
C:\X5zaYueB.txt moved successfully.
C:\x6T.txt moved successfully.
C:\x73.txt moved successfully.
C:\xbO1TZ.txt moved successfully.
C:\xcoZV.txt moved successfully.
C:\XCVhjq.txt moved successfully.
C:\XdSgD.txt moved successfully.
C:\xfjJvS.txt moved successfully.
C:\XfoIMs.txt moved successfully.
C:\XH3.txt moved successfully.
C:\Xhce3.txt moved successfully.
C:\xihI.txt moved successfully.
C:\xIj.txt moved successfully.
C:\xIOPd7.txt moved successfully.
C:\XjJUrMl.txt moved successfully.
C:\XkP.txt moved successfully.
C:\XLW2xHYO.txt moved successfully.
C:\XmZCCiJ.txt moved successfully.
C:\XqdidOKk.txt moved successfully.
C:\XrG.txt moved successfully.
C:\XUFTOzCL.txt moved successfully.
C:\y16vtNz0.txt moved successfully.
C:\Y2T8T4W.txt moved successfully.
C:\Y66ago.txt moved successfully.
C:\Y8rwH.txt moved successfully.
C:\Y8ycqus.txt moved successfully.
C:\YEPfu8.txt moved successfully.
C:\YeZGYGE.txt moved successfully.
C:\Yfe.txt moved successfully.
C:\yHqlt.txt moved successfully.
C:\yJ2HOCq.txt moved successfully.
C:\YLL.txt moved successfully.
C:\ymGZs.txt moved successfully.
C:\YMhV.txt moved successfully.
C:\yNB6.txt moved successfully.
C:\YnXoBR7m.txt moved successfully.
C:\YoTHn.txt moved successfully.
C:\yOtIUKN.txt moved successfully.
C:\yRmJjR.txt moved successfully.
C:\YServer.txt moved successfully.
C:\YSOAbfH.txt moved successfully.
C:\Ysu.txt moved successfully.
C:\yvt.txt moved successfully.
C:\YXMDgjp.txt moved successfully.
C:\yYeUvoP.txt moved successfully.
C:\yzcRk.txt moved successfully.
C:\Z3Srma.txt moved successfully.
C:\zAB.txt moved successfully.
C:\ZCRtR1O.txt moved successfully.
C:\ZdrIq.txt moved successfully.
C:\zECH.txt moved successfully.
C:\ZfEs.txt moved successfully.
C:\Zfs3Zd5.txt moved successfully.
C:\ZgCda2ra.txt moved successfully.
C:\ZH93h5d1.txt moved successfully.
C:\ZhFhX.txt moved successfully.
C:\ZHHoWk.txt moved successfully.
C:\ZhMNS.txt moved successfully.
C:\ZhpFw.txt moved successfully.
C:\ziX.txt moved successfully.
C:\ZLa3.txt moved successfully.
C:\zmnnF.txt moved successfully.
C:\ZNrQU.txt moved successfully.
C:\ZQwqSIr.txt moved successfully.
C:\zrFVCcm.txt moved successfully.
C:\zSRzg.txt moved successfully.
C:\ztgnCRhC.txt moved successfully.
C:\zu3.txt moved successfully.
C:\ZvUJ.txt moved successfully.
C:\Zx4S.txt moved successfully.
C:\zYfuT70.txt moved successfully.
C:\zyljL.txt moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: All Users

User: Copy of Rick Picon

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: dfederman
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: pwalsh
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Rick Picon
->Temp folder emptied: 11432516 bytes
->Temporary Internet Files folder emptied: 230579426 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 74851187 bytes
->Flash cache emptied: 8140 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 6918 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 302.00 mb


[EMPTYFLASH]

User: Administrator

User: All Users

User: Copy of Rick Picon

User: Default User

User: dfederman
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService
->Flash cache emptied: 0 bytes

User: pwalsh
->Flash cache emptied: 0 bytes

User: Rick Picon
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0.00 mb


OTL by OldTimer - Version 3.2.21.0 log created on 03022011_164914

Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temp\fla12F.tmp not found!
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temp\tmp11.tmp not found!
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temp\tmp1D.tmp not found!
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temp\tmp1E.tmp not found!
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temp\tmp2B.tmp not found!
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temp\tmp2C.tmp not found!
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temp\tmpC.tmp not found!
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temp\tmpF.tmp not found!
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temp\~DF3B32.tmp not found!
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temp\~DF3B46.tmp not found!
C:\Documents and Settings\Rick Picon\Local Settings\Temp\~DFA614.tmp moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRF{515B716D-69BF-42E8-85AC-27E184A6F2B0}.tmp moved successfully.
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{036F1DD9-9458-4F8F-86BC-D5ECC74DB393}.tmp not found!
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{0E2A6C8D-A678-44B7-9635-CDEC9EDA2DB3}.tmp moved successfully.
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{1ECA2BD7-DC26-4075-A170-35A7C8842C83}.tmp not found!
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{2A94FB09-1F53-44EB-99A6-7EBF3050F2C2}.tmp moved successfully.
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{49AB7BB6-299B-49EF-B155-176D42BF72CF}.tmp not found!
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{62E2163F-C154-452E-9B26-832E342BC192}.tmp not found!
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{66EDA30D-9219-4931-932F-CD09C64C9F53}.tmp not found!
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{AA95BB20-B191-443A-B5EC-C822B4D47AB3}.tmp not found!
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{C313D24F-71AD-403F-B7FE-7E5BB339D4E6}.tmp moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{D5A4D4DC-3B4E-4659-B332-D2A6C2294B0D}.tmp moved successfully.
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{EEB10A5F-25E0-4BEB-B9EB-DD6581705EF7}.tmp not found!
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\O7RHLXWN\AccountOpen[1].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\MTWIBX05\97833-active-very-slow-process-applications-load-internet-2[1].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\MTWIBX05\newApplicationsAction[1].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\KVHJK35Y\videoplayback[1] moved successfully.
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\KVHJK35Y\watch[1].htm not found!
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\G2OS177Q\search[4].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\6PECH7AD\listBuilder[1].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\6PECH7AD\LOS40AAC[1] moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\61BLKBB3\pyv_watch_request_ad[1].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\AntiPhishing\A0AB7674-8D67-4F4D-B5E1-96FAEADFB79D.dat moved successfully.
File move failed. C:\WINDOWS\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

 

OTL logfile created on: 2011-03-02 17:00:52 - Run 5
OTL by OldTimer - Version 3.2.21.0 Folder = C:\Documents and Settings\Rick Picon\Desktop
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: yyyy-MM-dd

2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 70.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 89.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 108.59 Gb Total Space | 30.89 Gb Free Space | 28.45% Space Free | Partition Type: NTFS
Drive D: | 36.96 Gb Total Space | 6.03 Gb Free Space | 16.33% Space Free | Partition Type: NTFS
Drive G: | 916.60 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive P: | 136.02 Gb Total Space | 56.47 Gb Free Space | 41.52% Space Free | Partition Type: NTFS
Drive T: | 136.02 Gb Total Space | 56.47 Gb Free Space | 41.52% Space Free | Partition Type: NTFS

Computer Name: GLB-RPICON-02 | User Name: rpicon | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011-02-25 10:52:47 | 000,577,024 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Rick Picon\Desktop\OTL.exe
PRC - [2011-01-13 03:47:34 | 003,396,624 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2011-01-13 03:47:33 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2011-01-05 18:19:48 | 000,813,448 | ---- | M] (Plaxo, Inc.) -- C:\Documents and Settings\Rick Picon\Local Settings\Application Data\Plaxo\3.25.0.87\PlaxoHelper_en.exe
PRC - [2011-01-05 18:19:48 | 000,015,752 | ---- | M] (Plaxo, Inc.) -- C:\Documents and Settings\Rick Picon\Local Settings\Application Data\Plaxo\3.25.0.87\plaxosystray.exe
PRC - [2010-07-26 14:52:06 | 000,546,360 | ---- | M] (Google) -- C:\Program Files\Google\Google Calendar Sync\GoogleCalendarSync.exe
PRC - [2009-10-01 13:30:35 | 000,116,032 | ---- | M] (LogMeIn, Inc.) -- C:\Program Files\LogMeIn\x86\ramaint.exe
PRC - [2009-10-01 13:30:10 | 000,378,176 | ---- | M] (LogMeIn, Inc.) -- C:\Program Files\LogMeIn\x86\LMIGuardian.exe
PRC - [2009-05-30 14:00:24 | 007,573,504 | ---- | M] (Gracebyte Software) -- C:\Program Files\Network Assistant\Nassi.exe
PRC - [2007-05-10 21:46:20 | 000,624,248 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\acrotray.exe
PRC - [2007-04-17 13:03:50 | 000,063,048 | ---- | M] (LogMeIn, Inc.) -- C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
PRC - [2007-04-17 13:03:50 | 000,063,040 | ---- | M] (LogMeIn, Inc.) -- C:\Program Files\LogMeIn\x86\LogMeIn.exe
PRC - [2007-03-28 11:12:34 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
PRC - [2006-06-20 21:36:22 | 001,207,080 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\wcescomm.exe
PRC - [2006-06-20 21:36:00 | 000,187,176 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\rapimgr.exe
PRC - [2005-10-05 04:12:00 | 000,094,208 | ---- | M] () -- C:\Program Files\Dell\Media Experience\DMXLauncher.exe
PRC - [2005-09-08 06:20:00 | 000,122,940 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\system32\DLA\DLACTRLW.EXE
PRC - [2005-06-17 08:56:14 | 000,139,264 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2005-06-17 08:55:58 | 000,086,140 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
PRC - [2005-04-01 20:51:48 | 000,217,600 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
PRC - [2004-08-04 06:00:00 | 001,032,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (SafeList) ==========

MOD - [2011-02-25 10:52:47 | 000,577,024 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Rick Picon\Desktop\OTL.exe
MOD - [2011-01-13 03:47:35 | 000,189,728 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\snxhk.dll
MOD - [2011-01-05 18:19:50 | 000,055,176 | ---- | M] (Plaxo, Inc.) -- C:\Documents and Settings\Rick Picon\Local Settings\Application Data\Plaxo\3.25.0.87\plx_hook.dll
MOD - [2009-07-12 00:02:02 | 000,653,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcr90.dll
MOD - [2009-07-12 00:02:00 | 000,569,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcp90.dll
MOD - [2006-08-25 10:45:55 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
MOD - [2000-12-27 17:40:58 | 000,043,008 | ---- | M] () -- C:\Program Files\Network Assistant\hooks.dll


========== Win32 Services (SafeList) ==========

SRV - [2011-01-13 03:47:33 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2009-10-01 13:30:35 | 000,116,032 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files\LogMeIn\x86\RaMaint.exe -- (LMIMaint)
SRV - [2007-05-23 13:29:36 | 000,122,880 | ---- | M] (CrypKey (Canada) Ltd.) [Disabled | Stopped] -- C:\WINDOWS\System32\Crypserv.exe -- (Crypkey License)
SRV - [2007-04-17 13:03:50 | 000,063,040 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files\LogMeIn\x86\LogMeIn.exe -- (LogMeIn)
SRV - [2007-03-28 11:12:34 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Running] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2005-06-17 08:55:58 | 000,086,140 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe -- (IAANTMon) Intel(R)
SRV - [2005-04-01 20:51:48 | 000,217,600 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe -- (StarWindService)


========== Driver Services (SafeList) ==========

DRV - [2011-01-13 03:41:16 | 000,294,608 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011-01-13 03:40:16 | 000,047,440 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011-01-13 03:40:04 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011-01-13 03:37:30 | 000,023,632 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011-01-13 03:37:11 | 000,029,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011-01-13 03:37:09 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2009-10-01 13:30:14 | 000,083,288 | ---- | M] (LogMeIn, Inc.) [File_System | Disabled | Stopped] -- C:\WINDOWS\System32\LMIRfsClientNP.dll -- (LMIRfsClientNP)
DRV - [2009-09-25 16:44:49 | 000,074,480 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2009-06-23 10:01:42 | 000,007,408 | R--- | M] ( SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | On_Demand | Stopped] -- C:\Program Files\SUPERAntiSpyware\SASENUM.SYS -- (SASENUM)
DRV - [2009-06-23 10:01:40 | 000,009,968 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2009-02-17 12:40:24 | 000,034,760 | ---- | M] (Greatis Software) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Partizan.sys -- (Partizan)
DRV - [2008-10-17 09:25:11 | 000,047,640 | ---- | M] (LogMeIn, Inc.) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\LMIRfsDriver.sys -- (LMIRfsDriver)
DRV - [2008-02-28 14:31:50 | 000,012,856 | ---- | M] (LogMeIn, Inc.) [Kernel | Auto | Running] -- C:\Program Files\LogMeIn\x86\rainfo.sys -- (LMIInfo)
DRV - [2007-05-01 16:15:54 | 000,016,896 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\ckldrv.sys -- (NetworkX)
DRV - [2007-01-30 11:36:42 | 000,223,128 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\vaxscsi.sys -- (vaxscsi)
DRV - [2007-01-30 11:26:47 | 000,643,072 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2006-12-29 11:30:25 | 000,076,560 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\tmcomm.sys -- (tmcomm)
DRV - [2006-11-07 05:48:44 | 000,023,040 | ---- | M] () [Kernel | Auto | Running] -- C:\Program Files\GameTap\bin\release\X4HSX32.sys -- (X4HSX32)
DRV - [2006-06-29 23:53:44 | 000,003,712 | ---- | M] (Logitech, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\LBeepKE.sys -- (LBeepKE)
DRV - [2006-05-10 08:56:54 | 000,027,264 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidKE.Sys -- (LHidKe)
DRV - [2006-05-10 08:56:50 | 000,071,680 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE)
DRV - [2006-03-07 08:07:09 | 000,008,552 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\asctrm.sys -- (ASCTRM)
DRV - [2005-11-16 22:36:00 | 001,047,816 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2005-09-12 04:30:00 | 000,089,264 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\DRVMCDB.SYS -- (DRVMCDB)
DRV - [2005-09-08 06:20:00 | 000,094,332 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAUDFAM.SYS -- (DLAUDFAM)
DRV - [2005-09-08 06:20:00 | 000,087,036 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAUDF_M.SYS -- (DLAUDF_M)
DRV - [2005-09-08 06:20:00 | 000,086,524 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAIFS_M.SYS -- (DLAIFS_M)
DRV - [2005-09-08 06:20:00 | 000,025,628 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLABOIOM.SYS -- (DLABOIOM)
DRV - [2005-09-08 06:20:00 | 000,014,684 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAOPIOM.SYS -- (DLAOPIOM)
DRV - [2005-09-08 06:20:00 | 000,006,364 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAPoolM.SYS -- (DLAPoolM)
DRV - [2005-09-08 06:20:00 | 000,002,496 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLADResN.SYS -- (DLADResN)
DRV - [2005-08-25 20:05:24 | 000,176,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\e1e5132.sys -- (e1express) Intel(R)
DRV - [2005-08-25 13:16:52 | 000,005,628 | ---- | M] (Sonic Solutions) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\DLACDBHM.SYS -- (DLACDBHM)
DRV - [2005-08-25 13:16:16 | 000,022,684 | ---- | M] (Sonic Solutions) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\DLARTL_N.SYS -- (DLARTL_N)
DRV - [2005-08-12 06:20:00 | 000,040,544 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\DRVNDDM.SYS -- (DRVNDDM)
DRV - [2005-07-09 00:57:00 | 003,198,304 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2005-06-17 13:33:40 | 000,872,064 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\iastor.sys -- (iastor)
DRV - [2004-08-12 18:45:54 | 000,137,728 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)
DRV - [2004-08-04 00:07:44 | 000,043,008 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\amdagp.sys -- (amdagp)
DRV - [2004-08-04 00:07:44 | 000,041,088 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sisagp.sys -- (sisagp)
DRV - [2001-08-17 15:07:44 | 000,019,072 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sparrow.sys -- (Sparrow)
DRV - [2001-08-17 15:07:42 | 000,030,688 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys -- (sym_u3)
DRV - [2001-08-17 15:07:40 | 000,028,384 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sym_hi.sys -- (sym_hi)
DRV - [2001-08-17 15:07:36 | 000,032,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\symc8xx.sys -- (symc8xx)
DRV - [2001-08-17 15:07:34 | 000,016,256 | ---- | M] (Symbios Logic Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\symc810.sys -- (symc810)
DRV - [2001-08-17 14:52:22 | 000,036,736 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ultra.sys -- (ultra)
DRV - [2001-08-17 14:52:20 | 000,045,312 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql12160.sys -- (ql12160)
DRV - [2001-08-17 14:52:20 | 000,040,320 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql1080.sys -- (ql1080)
DRV - [2001-08-17 14:52:18 | 000,049,024 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql1280.sys -- (ql1280)
DRV - [2001-08-17 14:52:16 | 000,179,584 | ---- | M] (Mylex Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\dac2w2k.sys -- (dac2w2k)
DRV - [2001-08-17 14:52:12 | 000,017,280 | ---- | M] (American Megatrends Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\mraid35x.sys -- (mraid35x)
DRV - [2001-08-17 14:52:00 | 000,026,496 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\asc.sys -- (asc)
DRV - [2001-08-17 14:51:58 | 000,014,848 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\asc3550.sys -- (asc3550)
DRV - [2001-08-17 14:51:56 | 000,005,248 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\aliide.sys -- (AliIde)
DRV - [2001-08-17 14:51:54 | 000,006,656 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\cmdide.sys -- (CmdIde)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Page_URL = http://www.google.com/ig/dell?hl=en&client=dell
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://www.google.com/ig/dell?hl=en&client=dell

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yaho.com/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..keyword.URL: "http://search.avg.com/route/?d=4c34b73d&v=6.010.006.004&i=23&tp=ab&iy=&ychte=us&lng=en-US&q= "

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-02-17 14:12:27 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-02-17 14:12:27 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

[2011-02-04 18:11:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Rick Picon\Application Data\Mozilla\Extensions
[2011-02-04 18:11:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Rick Picon\Application Data\Mozilla\Firefox\Profiles\cu58ft3k.default\extensions
[2011-03-01 16:38:57 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2006-11-16 11:22:26 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2010-07-06 11:58:16 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2011-03-01 11:38:57 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2009-07-21 09:33:35 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011-02-02 21:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2008-03-12 12:04:10 | 000,086,016 | ---- | M] (SpiralFrog Inc.) -- C:\Program Files\Mozilla Firefox\plugins\NPSFDMGR.dll

O1 HOSTS File: ([2011-02-23 11:50:22 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\Program Files\Google\GoogleToolbar2.dll (Google Inc.)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - c:\Program Files\GoogleAFE\GoogleAE.dll (Google)
O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar2.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\ShellBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar2.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE (Sonic Solutions)
O4 - HKLM..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe ()
O4 - HKLM..\Run: [Google Desktop Search] C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe ()
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation)
O4 - HKLM..\Run: [Logitech Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech Inc.)
O4 - HKLM..\Run: [LogMeIn GUI] C:\Program Files\LogMeIn\x86\LogMeInSystray.exe (LogMeIn, Inc.)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKCU..\Run: [AdobeUpdater] C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\wcescomm.exe (Microsoft Corporation)
O4 - HKCU..\Run: [PlaxoSysTray] C:\Documents and Settings\Rick Picon\Local Settings\Application Data\Plaxo\3.25.0.87\plaxosystray.exe (Plaxo, Inc.)
O4 - HKCU..\Run: [PlaxoUpdate] C:\Documents and Settings\Rick Picon\Local Settings\Application Data\Plaxo\3.25.0.87\PlaxoHelper_en.exe (Plaxo, Inc.)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Google Calendar Sync.lnk = C:\Program Files\Google\Google Calendar Sync\GoogleCalendarSync.exe (Google)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Append to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert link target to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert link target to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selected links to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selected links to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selection to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selection to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O9 - Extra 'Tools' menuitem : Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O9 - Extra Button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files\PokerStars.NET\PokerStarsUpdate.exe (PokerStars)
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://go.microsoft.com/fwlink/?linkid=67633 (Office Genuine Advantage Validation Tool)
O16 - DPF: {0F733F27-5BBB-4D03-8D6B-19E2143880BF} http://www1.skillground.com/cab1831/SkillGround.cab (SkillGround Game Manager)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft.com/fwlink/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {1A1F56AA-3401-46F9-B277-D57F3421F821} http://aol.worldwinner.com/games/v47/shared/FunGamesLoader.cab (FunGamesLoader Object)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {25D9AA40-ED39-11D2-A038-009027078284} https://b1-www.advisorservices.com/advisorweb/file/urldownloader.cab (UrlDownloader Class)
O16 - DPF: {3107C2A8-9F0B-4404-A58B-21BD85268FBC} http://www.pogo.com/cdl/launcher/PogoWebLauncherInstaller.CAB (PogoWebLauncher Control)
O16 - DPF: {493ACF15-5CD9-4474-82A6-91670C3DD66E} http://www.linkedin.com/cab/LinkedInContactFinderControl.cab (LinkedIn ContactFinderControl)
O16 - DPF: {556EEC63-31E2-47C3-BF29-DFF799D2FE04} https://secure.logmein.com/activex/RACtrl.cab (Remote Access ActiveX Client)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1249928285454 (WUWebControl Class)
O16 - DPF: {6D2EF4B4-CB62-4C0B-85F3-B79C236D702C} http://www.facebook.com/controls/contactx.dll (ContactExtractor Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1260546108330 (MUWebControl Class)
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} http://clubgames.pogo.com/online2/pogop/luxor_2/mjolauncher.cab (MJLauncherCtrl Class)
O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} http://www.worldwinner.com/games/shared/wwlaunch.cab (Wwlaunch Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {95A311CD-EC8E-452A-BCEC-B844EB616D03} http://www.worldwinner.com/games/v51/bejeweledtwist/bejeweledtwist.cab (BejeweledTwist Control)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CF969D51-F764-4FBF-9E90-475248601C8A} http://www.worldwinner.com/games/v47/familyfeud/familyfeud.cab (FamilyFeud Control)
O16 - DPF: {D1548A26-B8F6-4E86-AE74-E7062CCC2E2A} http://www.miniclip.com/igloader/igloader.CAB (igLoader Content on Demand)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {DC4B2445-4A2C-46FF-BAAE-C0FBB45D866D} https://www.laserapp.com/dev/detect/lavdetect.ocx (LASDetectX Control)
O16 - DPF: {E12EB891-D000-421B-A8ED-EDE1BDCA14A0} http://www.worldwinner.com/games/v44/golfsol/golfsol.cab (GolfSol Control)
O16 - DPF: {E70E3E64-2793-4AEF-8CC8-F1606BE563B0} http://www.worldwinner.com/games/v54/wwspades/wwspades.cab (WWSpades Control)
O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} https://secure.logmein.com/activex/RACtrl.cab (Performance Viewer Activex Control)
O16 - DPF: {FF0F7B6E-D733-11D7-8088-0001024743E4} https://vex.advisorservices.com/Views/VeoExpress/AdoView/Pages/veoExpress.CAB (veoExpress.ctlVeoExpress)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.113
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = aribaglb.local
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL) - C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll ()
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\LMIinit: DllName - LMIinit.dll - C:\WINDOWS\System32\LMIinit.dll (LogMeIn, Inc.)
O24 - Desktop WallPaper: C:\WINDOWS\Dell.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Dell.bmp
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006-10-23 07:20:07 | 000,000,057 | R--- | M] () - G:\AUTORUN.INF -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (Partizan) - C:\WINDOWS\System32\Partizan.exe (Greatis Software)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011-03-02 14:32:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rick Picon\Desktop\Rossner
[2011-03-02 13:37:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rick Picon\Desktop\Long
[2011-02-28 13:52:08 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2011-02-25 10:52:44 | 000,577,024 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Rick Picon\Desktop\OTL.exe
[2011-02-23 14:30:03 | 000,000,000 | ---D | C] -- C:\CFSLib
[2011-02-15 11:59:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\LogMeIn
[2011-02-14 16:07:13 | 000,294,608 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011-02-14 16:07:13 | 000,047,440 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011-02-14 16:07:13 | 000,023,632 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011-02-14 16:07:13 | 000,017,744 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011-02-14 16:07:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\avast! Free Antivirus
[2011-02-14 16:07:12 | 000,100,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011-02-14 16:07:12 | 000,094,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011-02-14 16:07:12 | 000,029,392 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011-02-14 16:06:44 | 000,188,216 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011-02-14 16:06:44 | 000,038,848 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011-02-14 16:06:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2011-02-11 11:35:44 | 000,446,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Rick Picon\Desktop\TFC.exe
[2011-02-10 14:31:53 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2011-02-10 12:00:23 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2011-02-10 11:56:10 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011-02-04 18:11:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rick Picon\Application Data\Mozilla
[2011-02-04 18:11:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox
[2003-12-09 12:16:52 | 000,442,368 | ---- | C] ( ) -- C:\WINDOWS\System32\comintfs.dll

========== Files - Modified Within 30 Days ==========

[2011-03-02 16:56:15 | 000,029,204 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2011-03-02 16:55:57 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-03-02 16:55:39 | 000,000,868 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2011-03-02 16:55:06 | 2145,546,240 | -HS- | M] () -- C:\hiberfil.sys
[2011-03-02 16:53:46 | 000,000,268 | -H-- | M] () -- C:\sqmdata00.sqm
[2011-03-02 16:53:46 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt00.sqm
[2011-02-28 15:03:01 | 000,010,936 | ---- | M] () -- C:\Documents and Settings\Rick Picon\Desktop\Wealth of Nations.docx
[2011-02-25 10:52:47 | 000,577,024 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Rick Picon\Desktop\OTL.exe
[2011-02-25 06:20:42 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011-02-24 15:58:15 | 000,298,848 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-02-23 11:50:22 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011-02-22 12:12:06 | 004,272,549 | R--- | M] () -- C:\Documents and Settings\Rick Picon\Desktop\ComboFix.exe
[2011-02-16 11:56:39 | 000,098,187 | ---- | M] () -- C:\Documents and Settings\Rick Picon\Desktop\ENGINE_BANK_1_AND_BANK_2_A_F_AND_02_IDENTIFICATION_T-EG034-07.pdf
[2011-02-15 09:53:01 | 000,624,128 | ---- | M] () -- C:\Documents and Settings\Rick Picon\Desktop\dds.scr
[2011-02-14 16:07:13 | 000,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011-02-11 15:03:02 | 000,080,384 | ---- | M] () -- C:\Documents and Settings\Rick Picon\Desktop\MBRCheck.exe
[2011-02-11 15:02:51 | 000,296,448 | ---- | M] () -- C:\Documents and Settings\Rick Picon\Desktop\vvi1j13j.exe
[2011-02-11 11:35:32 | 000,446,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Rick Picon\Desktop\TFC.exe
[2011-02-10 15:57:06 | 000,209,920 | ---- | M] () -- C:\Documents and Settings\Rick Picon\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-02-10 12:00:30 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2011-02-08 14:30:35 | 000,249,588 | ---- | M] () -- C:\Documents and Settings\Rick Picon\Desktop\ALI-ABA%20Form%20ADV%20Part%202%20Outline.pdf
[2011-02-08 14:25:34 | 000,017,418 | ---- | M] () -- C:\Documents and Settings\Rick Picon\Desktop\Sample_Brochure_Supp_10Jan2011.pdf
[2011-02-08 14:23:17 | 000,207,292 | ---- | M] () -- C:\Documents and Settings\Rick Picon\Desktop\Link1_ADV-Par-%202--Tips-for-Coping-Paper.pdf
[2011-02-08 14:15:12 | 000,103,379 | ---- | M] () -- C:\Documents and Settings\Rick Picon\Desktop\NoticeADV2.pdf
[2011-02-08 13:59:19 | 000,266,984 | ---- | M] () -- C:\Documents and Settings\Rick Picon\Desktop\formadv-part2.pdf
[2011-02-08 13:54:53 | 000,621,772 | ---- | M] () -- C:\Documents and Settings\Rick Picon\Desktop\ADV_Part_II_Firm_User_90.pdf
[2011-02-08 13:51:08 | 000,161,740 | ---- | M] () -- C:\Documents and Settings\Rick Picon\Desktop\20100810-investment-advisor-registration-requirements[1].pdf
[2011-02-08 13:45:26 | 000,114,869 | ---- | M] () -- C:\Documents and Settings\Rick Picon\Desktop\Compliance.pdf
[2011-02-08 13:43:37 | 000,692,957 | ---- | M] () -- C:\Documents and Settings\Rick Picon\Desktop\investmentmanagementupdate2219.pdf
[2011-02-04 18:11:37 | 000,001,620 | ---- | M] () -- C:\Documents and Settings\Rick Picon\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011-02-04 15:11:58 | 000,022,075 | ---- | M] () -- C:\Documents and Settings\Rick Picon\Desktop\Nora Allocation.pdf

========== Files Created - No Company Name ==========

[2011-03-02 16:53:46 | 000,000,268 | -H-- | C] () -- C:\sqmdata00.sqm
[2011-03-02 16:53:46 | 000,000,244 | -H-- | C] () -- C:\sqmnoopt00.sqm
[2011-02-28 15:03:01 | 000,010,936 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Desktop\Wealth of Nations.docx
[2011-02-22 12:11:54 | 004,272,549 | R--- | C] () -- C:\Documents and Settings\Rick Picon\Desktop\ComboFix.exe
[2011-02-17 13:00:24 | 2145,546,240 | -HS- | C] () -- C:\hiberfil.sys
[2011-02-16 11:56:39 | 000,098,187 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Desktop\ENGINE_BANK_1_AND_BANK_2_A_F_AND_02_IDENTIFICATION_T-EG034-07.pdf
[2011-02-15 09:53:25 | 000,624,128 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Desktop\dds.scr
[2011-02-11 15:03:02 | 000,080,384 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Desktop\MBRCheck.exe
[2011-02-11 15:02:51 | 000,296,448 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Desktop\vvi1j13j.exe
[2011-02-11 12:02:14 | 000,002,064 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Desktop\PortfolioCenter.lnk
[2011-02-08 14:30:35 | 000,249,588 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Desktop\ALI-ABA%20Form%20ADV%20Part%202%20Outline.pdf
[2011-02-08 14:25:34 | 000,017,418 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Desktop\Sample_Brochure_Supp_10Jan2011.pdf
[2011-02-08 14:23:17 | 000,207,292 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Desktop\Link1_ADV-Par-%202--Tips-for-Coping-Paper.pdf
[2011-02-08 14:15:12 | 000,103,379 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Desktop\NoticeADV2.pdf
[2011-02-08 13:54:53 | 000,621,772 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Desktop\ADV_Part_II_Firm_User_90.pdf
[2011-02-08 13:54:25 | 000,266,984 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Desktop\formadv-part2.pdf
[2011-02-08 13:51:08 | 000,161,740 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Desktop\20100810-investment-advisor-registration-requirements[1].pdf
[2011-02-08 13:45:26 | 000,114,869 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Desktop\Compliance.pdf
[2011-02-08 13:43:42 | 000,692,957 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Desktop\investmentmanagementupdate2219.pdf
[2011-02-04 18:11:37 | 000,001,620 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011-02-04 15:08:42 | 000,022,075 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Desktop\Nora Allocation.pdf
[2010-01-20 17:36:30 | 000,162,304 | ---- | C] () -- C:\WINDOWS\System32\ztvunrar36.dll
[2010-01-20 17:36:30 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\UNRAR3.dll
[2010-01-20 17:36:30 | 000,077,312 | ---- | C] () -- C:\WINDOWS\System32\ztvunace26.dll
[2010-01-20 17:36:30 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\unacev2.dll
[2009-11-05 12:04:51 | 000,691,592 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL
[2009-08-10 13:15:12 | 000,176,328 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2009-04-13 16:28:30 | 000,000,134 | ---- | C] () -- C:\WINDOWS\rootkitno.ini
[2008-11-21 08:21:16 | 000,032,256 | ---- | C] () -- C:\WINDOWS\System32\_regtlb.dll
[2007-11-20 16:23:07 | 000,009,365 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Application Data\Comma Separated Values (DOS).EML
[2007-11-20 16:19:57 | 000,009,363 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Application Data\Microsoft Excel 97-2003.EML
[2007-11-20 16:18:23 | 000,009,369 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Application Data\Comma Separated Values (Windows).EML
[2007-09-25 11:29:25 | 000,000,064 | ---- | C] () -- C:\WINDOWS\Crypkey.ini
[2007-09-25 11:29:18 | 000,018,432 | ---- | C] () -- C:\WINDOWS\Setup_ck.dll
[2007-09-25 11:29:18 | 000,016,896 | ---- | C] () -- C:\WINDOWS\System32\Ckldrv.sys
[2007-03-09 17:28:03 | 000,001,362 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2007-01-30 11:36:42 | 000,223,128 | ---- | C] () -- C:\WINDOWS\System32\drivers\vaxscsi.sys
[2007-01-30 11:26:47 | 000,643,072 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2007-01-30 11:26:47 | 000,096,256 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd3197.sys
[2006-12-29 11:30:26 | 000,002,154 | ---- | C] () -- C:\WINDOWS\System32\tmmute.ini
[2006-12-15 10:05:40 | 000,000,030 | ---- | C] () -- C:\WINDOWS\xoloxexe.INI
[2006-12-13 09:26:49 | 000,002,508 | ---- | C] () -- C:\Documents and Settings\LocalService\Application Data\$_hpcst$.hpc
[2006-11-27 12:37:25 | 000,000,008 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Local Settings\Application Data\.mpid
[2006-10-12 17:18:56 | 000,462,848 | ---- | C] () -- C:\WINDOWS\System32\ractrlkeyhook.dll
[2006-10-11 08:55:04 | 000,000,033 | ---- | C] () -- C:\WINDOWS\schwabcd.ini
[2006-07-27 12:28:42 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2006-07-11 17:33:49 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll
[2006-06-12 12:52:07 | 000,209,920 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2006-05-04 10:19:07 | 000,002,508 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Application Data\$_hpcst$.hpc
[2006-04-29 23:34:04 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\WbxRMenu.dll
[2006-04-17 13:07:45 | 000,003,350 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys
[2006-04-13 22:18:24 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\atonres.dll
[2006-04-13 22:18:24 | 000,131,072 | ---- | C] () -- C:\WINDOWS\System32\WbxMSAI.dll
[2006-04-13 22:18:24 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\atonecli.dll
[2006-04-11 10:03:49 | 000,000,028 | ---- | C] () -- C:\WINDOWS\atid.ini
[2006-04-11 08:55:58 | 000,000,002 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2006-03-31 13:38:49 | 000,000,133 | ---- | C] () -- C:\Documents and Settings\Rick Picon\Local Settings\Application Data\fusioncache.dat
[2006-03-31 13:24:58 | 000,000,550 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2006-03-07 08:18:17 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2006-03-07 08:14:39 | 000,000,126 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2006-03-07 08:11:00 | 000,712,704 | ---- | C] () -- C:\WINDOWS\System32\DellSystemRestore.dll
[2006-03-07 07:44:46 | 000,000,393 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2005-11-10 09:56:34 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2004-08-11 18:24:19 | 000,000,791 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2004-08-11 18:11:31 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2004-08-11 18:07:24 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2004-08-11 18:00:30 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys

========== LOP Check ==========

[2011-02-14 16:06:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2011-02-10 11:52:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\avg9
[2006-09-18 10:50:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Centric Services
[2011-02-10 14:31:53 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2009-12-07 16:24:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ESET
[2009-10-01 12:35:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FunGames
[2007-09-11 12:48:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Grisoft
[2009-02-03 13:23:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\iWin Games
[2008-11-28 11:27:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LogMeIn
[2011-02-10 14:22:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2006-10-09 15:28:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Money Tree Software
[2008-01-16 16:10:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MumboJumbo
[2007-03-14 14:34:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PlayFirst
[2006-09-13 13:18:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PlayTime
[2006-12-15 12:54:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PopCap
[2009-06-08 14:06:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Schwab Performance Technologies
[2010-01-20 17:36:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Simply Super Software
[2007-03-14 14:12:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SonyPicturesGames
[2011-03-02 16:58:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2008-07-22 13:04:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\UTour Golf
[2010-03-26 13:38:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WildTangent
[2008-12-01 15:18:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{8737778F-82C6-4680-A660-E8B2B8C8C22B}
[2008-12-01 15:18:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{B0AFCE64-DF3F-4824-8985-B21DB0EEE07B}
[2008-12-01 15:19:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{D9AA4D17-9292-410D-9AA5-84526D062900}
[2008-12-01 15:16:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{FBB5C4A9-4848-46A0-8863-C359F08D7728}
[2006-04-11 10:05:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rick Picon\Application Data\acccore
[2006-11-01 08:49:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rick Picon\Application Data\AIM
[2006-11-01 08:49:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rick Picon\Application Data\AIMPro
[2007-06-22 10:26:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rick Picon\Application Data\BitTorrent
[2010-11-22 16:40:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rick Picon\Application Data\FrostWire
[2006-04-11 10:30:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rick Picon\Application Data\Gracebyte Software
[2007-01-30 11:24:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rick Picon\Application Data\Leadertech
[2007-03-08 16:54:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rick Picon\Application Data\LinkedIn
[2007-09-24 15:00:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rick Picon\Application Data\MegauploadToolbar
[2006-10-13 10:44:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rick Picon\Application Data\Money Tree Software
[2007-03-14 14:34:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rick Picon\Application Data\PlayFirst
[2009-01-23 17:18:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rick Picon\Application Data\PowerChallenge
[2007-11-16 12:47:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rick Picon\Application Data\RSSRadio
[2007-11-16 12:21:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rick Picon\Application Data\RSSRadio.local
[2009-11-04 14:57:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rick Picon\Application Data\Serif
[2008-01-18 13:37:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rick Picon\Application Data\Sigaba
[2009-01-21 15:56:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rick Picon\Application Data\Simply Super Software
[2008-05-08 13:39:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rick Picon\Application Data\SmartDraw
[2008-12-01 15:20:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rick Picon\Application Data\Stamps.com Internet Postage
[2007-03-02 14:13:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rick Picon\Application Data\System Restore
[2007-06-28 13:37:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rick Picon\Application Data\uTorrent

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 179 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP282699C

< End of report >

 

Results of screen317's Security Check version 0.99.7
Windows XP Service Pack 2
Out of date service pack!!
Internet Explorer 7 Out of date!
``````````````````````````````
Antivirus/Firewall Check:
Windows Security Center service is not running! This report may not be accurate!
Windows Firewall Disabled!
avast! Free Antivirus
Antivirus out of date!
```````````````````````````````
Anti-malware/Other Utilities Check:
Malwarebytes' Anti-Malware
HijackThis 2.0.2
Java(TM) 6 Update 24
Out of date Java installed!
Adobe Flash Player 10.1.82.76
````````````````````````````````
Process Check:
objlist.exe by Laurent
Alwil Software Avast5 AvastSvc.exe
Alwil Software Avast5 avastUI.exe
``````````End of Log````````````

 

pc is acting much better now, however i can still tell once in a while still acts slow or gets stuck, but nothing compared to what it used to be.

 

ESFTScan report:
C:\Documents and Settings\Rick Picon\Desktop\STUFF\Alcohol_120_1.9.5.4327_Incl_Activator\Alcohol_120_1.9.5.4327_Incl_Activator.zip probably a variant of Win32/Agent.IENOFKM trojan
C:\Documents and Settings\Rick Picon\Desktop\STUFF\VISTA\bravo & dj.wma probably a variant of Win32/Agent.KTQOACN trojan
C:\Documents and Settings\Rick Picon\Desktop\STUFF\VISTA\bravo & djs extended studio edition.mp3 a variant of WMA/TrojanDownloader.GetCodec.gen trojan
C:\Documents and Settings\Rick Picon\Desktop\STUFF\VISTA\bravo & djs.wma probably a variant of Win32/Agent.FGRCJNB trojan
C:\Documents and Settings\Rick Picon\Desktop\STUFF\VISTA\difacil rap the new unreleased single.mp3 a variant of WMA/TrojanDownloader.GetCodec.gen trojan
C:\Documents and Settings\Rick Picon\Desktop\STUFF\VISTA\difacil rap.mp3 WMA/TrojanDownloader.GetCodec.C trojan
C:\Documents and Settings\Rick Picon\Desktop\STUFF\VISTA\sopcast.rar a variant of Win32/Packed.FlyStudio application
C:\Program Files\Morpheus\morpheustoolbar.exe Win32/Toolbar.AskSBar application

 

forgot to mentioned..everytime i do a restart after the pc reboots i get an error message:

jusched.exe has encounter a problem and needs to close.
We are sorry for the inconvenience.

Details:
Error signature
AppName: jusched.exe AppVer:2.0.3.1 ModName:user32.dll
ModVer:5.1.2600.3099 Offset: 001e69c

 

All processes killed
========== OTL ==========
========== SERVICES/DRIVERS ==========
========== REGISTRY ==========
========== FILES ==========
File\Folder C:\Documents and Settings\Rick Picon\Desktop\STUFF\Alcohol_120_1.9.5.4327_Incl_Activator\Alcohol_120_1.9.5 .4327_Incl_Activator.zip not found.
C:\Documents and Settings\Rick Picon\Desktop\STUFF\VISTA\bravo & dj.wma moved successfully.
C:\Documents and Settings\Rick Picon\Desktop\STUFF\VISTA\bravo & djs extended studio edition.mp3 moved successfully.
C:\Documents and Settings\Rick Picon\Desktop\STUFF\VISTA\bravo & djs.wma moved successfully.
C:\Documents and Settings\Rick Picon\Desktop\STUFF\VISTA\difacil rap the new unreleased single.mp3 moved successfully.
C:\Documents and Settings\Rick Picon\Desktop\STUFF\VISTA\difacil rap.mp3 moved successfully.
C:\Documents and Settings\Rick Picon\Desktop\STUFF\VISTA\sopcast.rar moved successfully.
C:\Program Files\Morpheus\morpheustoolbar.exe moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: All Users

User: Copy of Rick Picon

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: dfederman
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: pwalsh
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Rick Picon
->Temp folder emptied: 49947707 bytes
->Temporary Internet Files folder emptied: 50748206 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 2932509 bytes
->Flash cache emptied: 1507 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 7342 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 99.00 mb


[EMPTYFLASH]

User: Administrator

User: All Users

User: Copy of Rick Picon

User: Default User

User: dfederman
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService
->Flash cache emptied: 0 bytes

User: pwalsh
->Flash cache emptied: 0 bytes

User: Rick Picon
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0.00 mb


OTL by OldTimer - Version 3.2.21.0 log created on 03072011_170615

Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temp\tmp1CCC.tmp not found!
C:\Documents and Settings\Rick Picon\Local Settings\Temp\Z@R1D47.tmp moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temp\Z@R1D49.tmp moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temp\Z@R1D4B.tmp moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temp\Z@R1D4F.tmp moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temp\Z@R1D51.tmp moved successfully.
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temp\~DF6181.tmp not found!
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temp\~DF6195.tmp not found!
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temp\~DFC1C7.tmp not found!
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRF{BB1EB789-EEC6-4229-8D69-B6C6EDEBB800}.tmp moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRF{D0A9F036-8C54-46C2-A3CA-35315EF60D92}.tmp moved successfully.
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{027D7F53-1398-4670-A77C-3BEF0F55305E}.tmp not found!
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{0D07EEDB-7DF6-4CB1-B9FA-6E9064E7795D}.tmp moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{35B21CA7-7A68-4CA8-AE34-3A4ECE806210}.tmp moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{4F74F41B-B6AA-425B-A1C6-61D373AB800B}.tmp moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{81ABAAB4-52CC-46E5-9123-2C6CFF8F3BFF}.tmp moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{A14B943B-3E44-4506-A19E-25412758EE55}.tmp moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{B04013FA-5F17-4F51-9CFF-86AC434752E3}.tmp moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{B403D4CE-9CC8-435B-8850-0B816106B4AB}.tmp moved successfully.
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{CE01F393-C96F-4CA1-81F9-84A79C4E0A8E}.tmp not found!
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{D07B5B71-4FE5-45BF-BA0D-1BD2099D030B}.tmp not found!
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{D19DE091-3900-42EF-9B48-DB5B6CB90D51}.tmp moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{D1B7AE76-6669-4CB8-ACED-32518B278D7C}.tmp moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{E7C05A44-6E31-4CA8-AB15-39DE9E163E00}.tmp moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\UND76V54\97833-active-very-slow-process-applications-load-internet-3[1].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\UND76V54\97833-active-very-slow-process-applications-load-internet-3[2].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\UND76V54\CAFCO3UECAT1H1F0CA9Y6WEFCA72E7R1CAF2K73PCA3D3RF4CA81FQ5SCAJFOZWFCAH1N6OKCA5CM6KNCAX5DED7CA2F2FIXCA7K6XKLCA99P5ZKCAKF5UTUCA5YUH2SCABENMM6CAB625GLCARLBUA1.htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\UND76V54\CAFQWWQMCAVPYL14CA54P7DPCAXBZIJSCAQMMRJ8CARS0UWBCAACDLW8CA81M7S6CABUB78ECABMZAQICA0NZPESCAPQCL8UCA45GFIACA8EMTHFCARZTNC1CAJ0PBWACAF56NXKCAJ099HDCA2SYMVO.htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\UND76V54\vmus39814_iframe[1].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\SZVYAH0O\ads[10].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\SZVYAH0O\op[2].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\SZVYAH0O\vmus39814_iframe_control[1].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\SEJEDU5R\1299514434769239[1].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\SEJEDU5R\ALD[1] moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\SEJEDU5R\getSegment[1].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\SEJEDU5R\iframescript[1].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\SEJEDU5R\iframescript[2].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\SEJEDU5R\iframescript[3].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\SEJEDU5R\ros_bottom_1[1].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\SEJEDU5R\_;dcopt=rcl;mtfIFPath=nofile;ord=1299514434769239[1].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\SEJEDU5R\_;dcopt=rcl;mtfIFPath=nofile;ord=1299514434769239[2].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\1YV6F5GJ\iframescript[1].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\1YV6F5GJ\index.7ed3da20df94bf0cc1ae084bb1949bdf[1].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\1YV6F5GJ\ros_right_1_4[1].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\1YV6F5GJ\sp_inpage_top_bn_wide_1[1].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\1YV6F5GJ\_;dcopt=rcl;mtfIFPath=nofile;ord=1299514434769239[1].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\AntiPhishing\A0AB7674-8D67-4F4D-B5E1-96FAEADFB79D.dat moved successfully.
File move failed. C:\WINDOWS\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

 

All processes killed
========== OTL ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: All Users

User: Copy of Rick Picon

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: dfederman
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: pwalsh
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Rick Picon
->Temp folder emptied: 1235 bytes
->Temporary Internet Files folder emptied: 973569 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Flash cache emptied: 456 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 982 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 1.00 mb


[EMPTYFLASH]

User: Administrator

User: All Users

User: Copy of Rick Picon

User: Default User

User: dfederman
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService
->Flash cache emptied: 0 bytes

User: pwalsh
->Flash cache emptied: 0 bytes

User: Rick Picon
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0.00 mb

Restore points cleared and new OTL Restore Point set!

OTL by OldTimer - Version 3.2.21.0 log created on 03072011_173014

Files\Folders moved on Reboot...
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{790A3297-6C21-4736-9EAB-6BB70C9D9991}.tmp moved successfully.
File\Folder C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.Word\~WRS{F6E6A23F-6F43-4BE9-B2C0-A6E19909D4FB}.tmp not found!
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\JFSHM0OK\iframescript[1].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\ILX8TCK1\vmus39814_iframe_control[1].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\5TIP1FLI\97833-active-very-slow-process-applications-load-internet-3[1].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\5TIP1FLI\iframescript[1].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\Content.IE5\0YD9BA78\vmus39814_iframe[1].htm moved successfully.
C:\Documents and Settings\Rick Picon\Local Settings\Temporary Internet Files\AntiPhishing\A0AB7674-8D67-4F4D-B5E1-96FAEADFB79D.dat moved successfully.
File move failed. C:\WINDOWS\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

 

should i be looking at my CPU usage bar/graphics to see how the pc is performing?

It tends to spike everytime i open a new browser, refresh a page or open a new app. Sometimes it goes as high as 90% plus, which is when i noticed the pc getting slow and waiting to process...although its not nearly as bad as it was. At first, the CPU Usage was hanging around the 30%-40% and spike up at the blink of the eye, at least now it hangs low.

 

I've been monotoring my CPU Usage for the last hour. I've been using multiple progams at the same time including listening to music on-line and from time to time it freezes and gets stuck. I noticed the CPU Usage goes to the max 100%

 

Process PID CPU Private Bytes Working Set Description Company Name Command Line
System Idle Process 0 94.85 0 K 28 K
Interrupts n/a 0 K 0 K Hardware Interrupts
DPCs n/a 0 K 0 K Deferred Procedure Calls
System 4 0 K 252 K
smss.exe 696 176 K 436 K Windows NT Session Manager Microsoft Corporation \SystemRoot\System32\smss.exe
csrss.exe 796 1,732 K 5,492 K Client Server Runtime Process Microsoft Corporation C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16
winlogon.exe 820 9,132 K 6,396 K Windows NT Logon Application Microsoft Corporation winlogon.exe
services.exe 868 0.77 4,304 K 5,152 K Services and Controller app Microsoft Corporation C:\WINDOWS\system32\services.exe
svchost.exe 1092 3,172 K 5,840 K Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\system32\svchost -k DcomLaunch
rapimgr.exe 3936 2,892 K 5,596 K ActiveSync RAPI Manager Microsoft Corporation C:\PROGRA~1\MI3AA1~1\rapimgr.exe -Embedding
WLLoginProxy.exe 3124 4,672 K 8,136 K WLLoginProxy.exe Microsoft Corporation "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe" -Embedding
wmiprvse.exe 4104 2,500 K 5,068 K WMI Microsoft Corporation C:\WINDOWS\system32\wbem\wmiprvse.exe
svchost.exe 1156 2,264 K 5,328 K Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\system32\svchost -k rpcss
svchost.exe 1252 19,200 K 29,384 K Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe 1344 1,748 K 3,944 K Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\system32\svchost.exe -k NetworkService
svchost.exe 1452 3,360 K 6,316 K Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\system32\svchost.exe -k LocalService
AvastSvc.exe 1580 0.77 17,300 K 27,388 K avast! Service AVAST Software "C:\Program Files\Alwil Software\Avast5\AvastSvc.exe "
spoolsv.exe 1976 3,804 K 6,232 K Spooler SubSystem App Microsoft Corporation C:\WINDOWS\system32\spoolsv.exe
IAANTMon.exe 732 620 K 1,800 K RAID Monitor Intel Corporation "C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe "
jqs.exe 764 2,332 K 1,396 K Java(TM) Quick Starter Service Sun Microsystems, Inc. "C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf "
ramaint.exe 208 1,420 K 3,692 K LogMeIn Maintenance Service LogMeIn, Inc. "C:\Program Files\LogMeIn\x86\RaMaint.exe "
LogMeIn.exe 1240 12,072 K 14,264 K LogMeIn LogMeIn, Inc. "C:\Program Files\LogMeIn\x86\LogMeIn.exe "
LMIGuardian.exe 1328 876 K 2,428 K LMIGuardian LogMeIn, Inc. "C:\Program Files\LogMeIn\x86\LMIGuardian" /ESCORT 1240
nvsvc32.exe 1368 2,164 K 4,212 K NVIDIA Driver Helper Service, Version 77.74 NVIDIA Corporation C:\WINDOWS\system32\nvsvc32.exe
StarWindService.exe 1416 740 K 2,384 K StarWind iSCSI Target (Alcohol Edition) Rocket Division Software "C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe "
alg.exe 2172 1,340 K 3,840 K Application Layer Gateway Service Microsoft Corporation C:\WINDOWS\System32\alg.exe
FNPLicensingService.exe 1280 1,468 K 3,336 K Activation Licensing Service Macrovision Europe Ltd. "C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe "
psia.exe 2980 1,072 K 3,436 K Secunia PSI Agent Secunia "C:\Program Files\Secunia\PSI\PSIA.exe" --start-service
lsass.exe 880 5,144 K 8,888 K LSA Shell (Export Version) Microsoft Corporation C:\WINDOWS\system32\lsass.exe
taskmgr.exe 3524 2,468 K 4,800 K Windows TaskManager Microsoft Corporation taskmgr.exe
explorer.exe 3032 34,904 K 52,748 K Windows Explorer Microsoft Corporation C:\WINDOWS\Explorer.EXE
IAAnotif.exe 3476 992 K 2,988 K Event Monitor User Notification Tool Intel Corporation "C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe"
DMXLauncher.exe 3484 964 K 3,356 K "C:\Program Files\Dell\Media Experience\DMXLauncher.exe"
DLACTRLW.EXE 3532 1,256 K 4,112 K Drive Letter Access Component Sonic Solutions "C:\WINDOWS\System32\DLA\DLACTRLW.EXE"
LogMeInSystray.exe 3572 2,724 K 7,412 K LogMeIn Desktop Application LogMeIn, Inc. "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
LMIGuardian.exe 3728 876 K 2,432 K LMIGuardian LogMeIn, Inc. "C:\Program Files\LogMeIn\x86\LMIGuardian" /ESCORT 3572
acrotray.exe 3580 4,488 K 9,332 K AcroTray Adobe Systems Inc. "C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"
GrooveMonitor.exe 3648 2,672 K 7,824 K GrooveMonitor Utility Microsoft Corporation "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
AvastUI.exe 3656 4,412 K 3,196 K avast! Antivirus AVAST Software "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
wcescomm.exe 3704 1,532 K 5,100 K ActiveSync Connection Manager Microsoft Corporation "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
PlaxoHelper_en.exe 3792 3,932 K 9,936 K Enables Plaxo to integrate securely with Windows Mail, Windows Live Mail, and Outlook Express Plaxo, Inc. "C:\Documents and Settings\Rick Picon\Local Settings\Application Data\Plaxo\3.25.0.87\PlaxoHelper_en.exe" -a
msnmsgr.exe 3928 8,700 K 5,508 K Messenger Microsoft Corporation "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
ctfmon.exe 3964 1,232 K 5,220 K CTF Loader Microsoft Corporation "C:\WINDOWS\system32\ctfmon.exe"
GoogleCalendarSync.exe 4068 4,660 K 12,280 K Google Calendar Sync Google "C:\Program Files\Google\Google Calendar Sync\GoogleCalendarSync.exe"
OUTLOOK.EXE 2280 119,100 K 126,204 K Microsoft Office Outlook Microsoft Corporation "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" /recycle
Nassi.exe 2308 8,872 K 11,096 K Network Assistant (Nassi) Gracebyte Software "C:\Program Files\Network Assistant\Nassi.exe"
PortfolioCenter.exe 5496 43,952 K 53,580 K PortfolioCenter Application Schwab Performance Technologies, Inc., "C:\Program Files\Schwab Performance Technologies\PortfolioCenter\PortfolioCenter.exe"
iexplore.exe 576 3.86 380,936 K 373,504 K Internet Explorer Microsoft Corporation "C:\Program Files\Internet Explorer\IEXPLORE.EXE"
procexp.exe 980 21,068 K 27,544 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com "C:\Documents and Settings\Rick Picon\Desktop\ProcessExplorer\procexp.exe"
psi_tray.exe 3768 992 K 3,492 K Secunia PSI Tray Secunia "C:\Program Files\Secunia\PSI\PSI_TRAY.exe" 1