missing shortcuts. \data\resources\

Volume in drive C has no label.
Volume Serial Number is 28B1-5A1B

Directory of C:\Documents and Settings\All Users\Application Data\Viewpoint\Viewpoint Experience Technology

15/03/2006 19:20Resources
0 File(s) 0 bytes

Hope this helps. I did do a full scan with my avg scanner, and then one with antivir on demand scanner. Have also done an avg anti-spyware scan, windows defender scan, and windows malicious software removal tool scan. All of these have found nothing.

Hi Ron, I cant install prevx1 (due to having it on my pc previously). What did you mean by "then type (with an Enter after each bold line)"? I typed cd\ enter dir/a/s resources enter notepad junk.txt (enter as in pressed enter on the keyboard). The symptoms happened once before a few months ago, and I think I did find a virus then. I thought I had resolved it until recently when the same thing started happening to the shortcuts again.

I'm just carrying out all the scans you requested and will post them shortly.

Asti

Message Edited by RKinner on 01-14-200702:42 PM

continued....

09/10/2006 23:33resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{32B4B536-4443-42F0-9676-98373BE9114F}\Data

09/10/2006 23:33resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{34EBD418-B8E6-4E86-89C4-33B72CF5663F}\Data

09/10/2006 23:33resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{3BB33584-3860-4772-AEE9-D8E61F552896}\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{3DE5E7D4-7B88-403C-A3FD-2017A8240C5B}\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{3F92ABBB-6BBF-11D5-B229-002078017FBF}\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{46C73DE4-E96D-4F7C-8371-F28052183B12}\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{52338F65-A1C3-4CDC-B733-50051682B297}\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{52AB2E1C-039E-470D-8EA5-A2E24206AFA5}\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{53C6D09E-EAB6-49E5-BA4C-BA7FF13830FB}\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{569A9538-86EC-44C3-8EE4-C68B165F2A75}\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{5B17E626-7885-4FC3-A66A-73548A4F01FD}\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{73919E2B-725C-4FAA-8473-45E063A3575F}\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{7A0EFAFB-AC4B-4B88-8C6B-6731BE88DB68}\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{7AFFF09F-386B-4F7A-B3E0-EC24C13893AA}\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{7F142D56-3326-11D5-B229-002078017FBF}\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{8A3F2ADE-DEF2-4A50-866A-6B9357B5590F}\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{8D2AE3F6-79DF-423C-91CB-389F6FB5837B}\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{A82F10CB-18B5-4EAC-AEF2-FA49CD565626}\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{DAAC5938-8026-4D0C-A476-D1954917B7F5}\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{DE4A4C48-2232-4CCB-AD61-490ACD29BA85}\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{EEEF992E-270C-4B4C-8389-4B3DEEE33190}\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\Intel\Intel Matrix Storage Manager\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\Intel\Modem Event Monitor\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\Intel\PROSetWired\NCS\PROSet\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\Intel\PROSetWired\NCS\Sync\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\Intel\PROSetWired\NCS\WMIProv\8023\CDM\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\Intel\PROSetWired\NCS\WMIProv\8023\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\Intel\PROSetWired\NCS\WMIProv\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\InterActual\InterActual Player\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\Internet Explorer\Connection Wizard\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\Internet Explorer\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\Java\j2re1.4.2_03\bin\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\Java\j2re1.4.2_03\javaws

15/03/2006 19:07resources
0 File(s) 0 bytes

Directory of C:\Program Files\Java\j2re1.4.2_03\javaws\Data

09/10/2006 23:34resources
0 File(s) 0 bytes

Directory of C:\Program Files\Java\jre1.5.0_03\bin\Data

09/10/2006 23:36resources
0 File(s) 0 bytes

Directory of C:\Program Files\Java\jre1.5.0_06\bin\Data

09/10/2006 23:37resources
0 File(s) 0 bytes

Directory of C:\Program Files\Java\jre1.5.0_08\bin\Data

09/10/2006 23:39resources
0 File(s) 0 bytes

Directory of C:\Program Files\Learn2.com\StRunner\Data

09/10/2006 23:40resources
0 File(s) 0 bytes

Directory of C:\Program Files\LimeWire\.NetworkShare\Data

09/10/2006 23:41resources
0 File(s) 0 bytes

Directory of C:\Program Files\LimeWire\Data

09/10/2006 23:41resources
0 File(s) 0 bytes

Directory of C:\Program Files\McAfee\SpamKiller\Data

09/10/2006 23:41resources
0 File(s) 0 bytes

Directory of C:\Program Files\Messenger\Data

09/10/2006 23:41resources
0 File(s) 0 bytes

Directory of C:\Program Files\Microsoft Games\Age of Empires\data

09/10/2006 23:41resources
0 File(s) 0 bytes

Directory of C:\Program Files\Microsoft Games\Age of Empires\data\Data

09/10/2006 23:41resources
0 File(s) 0 bytes

Directory of C:\Program Files\Microsoft Games\Age of Empires\data\resources\Data

09/10/2006 23:41resources
0 File(s) 0 bytes

Directory of C:\Program Files\Microsoft Games\Age of Empires\data2\Data

09/10/2006 23:41resources
0 File(s) 0 bytes

Directory of C:\Program Files\Microsoft Office\Office10\1033\Data

09/10/2006 23:45resources
0 File(s) 0 bytes

Directory of C:\Program Files\Microsoft Office\Office10\Data

09/10/2006 23:45resources
0 File(s) 0 bytes

Directory of C:\Program Files\Microsoft Works\Data

09/10/2006 23:46resources
0 File(s) 0 bytes

Directory of C:\Program Files\Modem Helper\Data

09/10/2006 23:46resources
0 File(s) 0 bytes

Directory of C:\Program Files\Modem On Hold\Data

09/10/2006 23:46resources
0 File(s) 0 bytes

Directory of C:\Program Files\Movie Maker\Data

09/10/2006 23:46resources
0 File(s) 0 bytes

Directory of C:\Program Files\Mozilla Firefox\Data

09/10/2006 23:46resources
0 File(s) 0 bytes

Directory of C:\Program Files\Mozilla Firefox\plugins\Data

09/10/2006 23:46resources
0 File(s) 0 bytes

Directory of C:\Program Files\Mozilla Firefox\uninstall\Data

09/10/2006 23:46resources
0 File(s) 0 bytes

Directory of C:\Program Files\MSN\MSNCoreFiles\Install\Data

09/10/2006 23:46resources
0 File(s) 0 bytes

Directory of C:\Program Files\MSN\MSNCoreFiles\Install\MSN9Components\Data

09/10/2006 23:46resources
0 File(s) 0 bytes

Directory of C:\Program Files\MSN\MSNIA\Data

09/10/2006 23:46resources
0 File(s) 0 bytes

Directory of C:\Program Files\MSN\MsnInstaller\Data

09/10/2006 23:46resources
0 File(s) 0 bytes

Directory of C:\Program Files\MSN Gaming Zone\Windows\Data

09/10/2006 23:46resources
0 File(s) 0 bytes

Directory of C:\Program Files\MSN Messenger\Data

09/10/2006 23:46resources
0 File(s) 0 bytes

Directory of C:\Program Files\MSN Messenger\Device Manager\Data

09/10/2006 23:46resources
0 File(s) 0 bytes

Directory of C:\Program Files\NetMeeting\Data

09/10/2006 23:46resources
0 File(s) 0 bytes

Directory of C:\Program Files\NokiaFREE Unlock Codes Calculator\Data

09/10/2006 23:46resources
0 File(s) 0 bytes

Directory of C:\Program Files\Outlook Express\Data

09/10/2006 23:46resources
0 File(s) 0 bytes

Directory of C:\Program Files\PowerISO\Data

09/10/2006 23:46resources
0 File(s) 0 bytes

Directory of C:\Program Files\Privacy Mantra 1.33\Data

09/10/2006 23:46resources
0 File(s) 0 bytes

Directory of C:\Program Files\QuickTime\Data

09/10/2006 23:46resources
0 File(s) 0 bytes

Directory of C:\Program Files\Real\RealPlayer\Data

09/10/2006 23:46resources
0 File(s) 0 bytes

Directory of C:\Program Files\Real\RealPlayer\Setup\Data

09/10/2006 23:46resources
0 File(s) 0 bytes

Directory of C:\Program Files\Roxio\DLA\Data

09/10/2006 23:47resources
0 File(s) 0 bytes

Directory of C:\Program Files\Roxio\DLA\install\Data

09/10/2006 23:47resources
0 File(s) 0 bytes

Directory of C:\Program Files\Roxio\MyDVD\Data

09/10/2006 23:47resources
0 File(s) 0 bytes

Directory of C:\Program Files\Samsung\Drivers 4.24\Data

09/10/2006 23:47resources
0 File(s) 0 bytes

Directory of C:\Program Files\Sandboxie\Data

09/10/2006 23:47resources
0 File(s) 0 bytes

Directory of C:\Program Files\Sony Ericsson\Mobile\Capability Manager\Data

09/10/2006 23:47resources
0 File(s) 0 bytes

Directory of C:\Program Files\Sony Ericsson\Mobile\File Manager\Data

09/10/2006 23:47resources
0 File(s) 0 bytes

Directory of C:\Program Files\Sony Ericsson\Mobile\Image Editor\Data

09/10/2006 23:47resources
0 File(s) 0 bytes

Directory of C:\Program Files\Sony Ericsson\Mobile\MMS Home Studio\Data

09/10/2006 23:47resources
0 File(s) 0 bytes

Directory of C:\Program Files\Sony Ericsson\Mobile\Mobile Networking Wizard\Data

09/10/2006 23:47resources
0 File(s) 0 bytes

Directory of C:\Program Files\Sony Ericsson\Mobile\Mobile Phone Monitor\Data

09/10/2006 23:48resources
0 File(s) 0 bytes

Directory of C:\Program Files\Sony Ericsson\Mobile\Sync Station\Data

09/10/2006 23:48resources
0 File(s) 0 bytes

Directory of C:\Program Files\Sports Interactive\Football Manager 2006\data

09/10/2006 23:49resources
0 File(s) 0 bytes

Directory of C:\Program Files\Sports Interactive\Football Manager 2006\data\resources\Data

09/10/2006 23:49resources
0 File(s) 0 bytes

Directory of C:\Program Files\stickies\Data

09/10/2006 23:49resources
0 File(s) 0 bytes

Directory of C:\Program Files\Sunbelt Software\Personal Firewall\Data

09/10/2006 23:49resources
0 File(s) 0 bytes

Directory of C:\Program Files\TextBridge Classic 2.0\Bin\Data

09/10/2006 23:49resources
0 File(s) 0 bytes

Directory of C:\Program Files\TextBridge Classic 2.0\Ereg\Data

09/10/2006 23:49resources
0 File(s) 0 bytes

Directory of C:\Program Files\Total Video Converter\Data

09/10/2006 23:49resources
0 File(s) 0 bytes

Directory of C:\Program Files\Ubisoft\Red Storm Entertainment\Rainbow Six Lockdown\data

09/10/2006 23:52resources
0 File(s) 0 bytes

Directory of C:\Program Files\Ubisoft\Red Storm Entertainment\Rainbow Six Lockdown\data\resources\Data

09/10/2006 23:52resources
0 File(s) 0 bytes

Directory of C:\Program Files\Ubisoft\Red Storm Entertainment\Rainbow Six Lockdown\EREG\Data

09/10/2006 23:53resources
0 File(s) 0 bytes

Directory of C:\Program Files\Viewpoint\Viewpoint Experience Technology\Data

09/10/2006 23:53resources
0 File(s) 0 bytes

Directory of C:\Program Files\Windows Defender\Data

09/10/2006 23:53resources
0 File(s) 0 bytes

Directory of C:\Program Files\Windows Live Toolbar\Data

09/10/2006 23:53resources
0 File(s) 0 bytes

Directory of C:\Program Files\Windows Media Connect 2\Data

09/10/2006 23:53resources
0 File(s) 0 bytes

Directory of C:\Program Files\Windows Media Player\Data

09/10/2006 23:53resources
0 File(s) 0 bytes

Directory of C:\Program Files\Windows NT\Accessories\Data

09/10/2006 23:53resources
0 File(s) 0 bytes

Directory of C:\Program Files\Windows NT\Data

09/10/2006 23:53resources
0 File(s) 0 bytes

Directory of C:\Program Files\Windows NT\Pinball\Data

09/10/2006 23:53resources
0 File(s) 0 bytes

Directory of C:\Program Files\Windows Plus\Audio Converter\Data

09/10/2006 23:53resources
0 File(s) 0 bytes

Directory of C:\Program Files\Windows Plus\CDLM\Data

09/10/2006 23:53resources
0 File(s) 0 bytes

Directory of C:\Program Files\Windows Plus\Dancer\Data

09/10/2006 23:53resources
0 File(s) 0 bytes

Directory of C:\Program Files\Windows Plus\Party Mode\Data

09/10/2006 23:53resources
0 File(s) 0 bytes

Directory of C:\Program Files\WinRAR\Data

09/10/2006 23:53resources
0 File(s) 0 bytes

Directory of C:\Program Files\WinZip\Data

09/10/2006 23:53resources
0 File(s) 0 bytes

Directory of C:\WINDOWS

16/08/2005 04:22Resources
0 File(s) 0 bytes

Total Files Listed:
0 File(s) 0 bytes
213 Dir(s) 151,170,719,744 bytes free

I must have done it wrong first time. Here are the new results!

Volume in drive C has no label.
Volume Serial Number is 28B1-5A1B

Directory of C:\Documents and Settings\All Users\Application Data\Viewpoint\Viewpoint Experience Technology

15/03/2006 19:20Resources
0 File(s) 0 bytes

Directory of C:\Program Files\Activision\Call of Duty 2\Data

09/10/2006 18:49resources
0 File(s) 0 bytes

Directory of C:\Program Files\Adobe\Acrobat 7.0\Reader\Data

09/10/2006 23:23resources
0 File(s) 0 bytes

Directory of C:\Program Files\Adobe\Acrobat 7.0\Reader\Updater\Data

09/10/2006 23:23resources
0 File(s) 0 bytes

Directory of C:\Program Files\Adobe\Acrobat 7.0\Setup Files\RdrBig\ENU\Data

09/10/2006 23:23resources
0 File(s) 0 bytes

Directory of C:\Program Files\Adobe\Photoshop Album Starter Edition\2.0\Apps\Data

09/10/2006 23:23resources
0 File(s) 0 bytes

Directory of C:\Program Files\AntiVir PersonalEdition Classic\Data

09/10/2006 23:23resources
0 File(s) 0 bytes

Directory of C:\Program Files\ATI Technologies\ATI Control Panel\Data

09/10/2006 23:23resources
0 File(s) 0 bytes

Directory of C:\Program Files\Azureus\Data

09/10/2006 23:24resources
0 File(s) 0 bytes

Directory of C:\Program Files\BillP Studios\WinPatrol\Data

09/10/2006 23:24resources
0 File(s) 0 bytes

Directory of C:\Program Files\BitLord\Data

09/10/2006 23:24resources
0 File(s) 0 bytes

Directory of C:\Program Files\BitLord\Downloads\Unreal Tournament 2004\Patch to apply in UT-System folder to enable online play\Data

09/10/2006 23:25resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\AOL\Screensaver\Data

09/10/2006 23:25resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Corel\AutoUpdate\Data

09/10/2006 23:25resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Creative Labs Shared\Service\Data

09/10/2006 23:25resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\InstallShield\Driver\7\Intel 32\Data

09/10/2006 23:25resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\Data

09/10/2006 23:25resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\InstallShield\Driver\9\Intel 32\Data

09/10/2006 23:25resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\InstallShield\Engine\6\Intel 32\Data

09/10/2006 23:25resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\InstallShield\Professional\RunTime\0701\Intel32\Data

09/10/2006 23:25resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\Data

09/10/2006 23:25resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\Data

09/10/2006 23:25resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\InstallShield\UpdateService\Data

09/10/2006 23:25resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Java\Update\Base Images\j2re1.4.2-b28\patch-j2re1.4.2_03-b02\Data

09/10/2006 23:25resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Java\Update\Base Images\jre1.5.0.b64\patch-jre1.5.0_03.b07\Data

09/10/2006 23:26resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Java\Update\Base Images\jre1.5.0.b64\patch-jre1.5.0_06.b05\Data

09/10/2006 23:26resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Java\Update\Base Images\jre1.5.0.b64\patch-jre1.5.0_08.b03\Data

09/10/2006 23:26resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Microsoft Shared\dasetup\Data

09/10/2006 23:26resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Microsoft Shared\DW\Data

09/10/2006 23:26resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Microsoft Shared\MSDesigners7

28/03/2006 23:26Resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Microsoft Shared\MSDraw\Data

09/10/2006 23:26resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Microsoft Shared\MSInfo\Data

09/10/2006 23:26resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Microsoft Shared\MSSearch\Bin\Data

09/10/2006 23:26resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Microsoft Shared\Note-It\Data

09/10/2006 23:26resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Microsoft Shared\Office10\Data

09/10/2006 23:26resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Microsoft Shared\Shoebox\Data

09/10/2006 23:26resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Microsoft Shared\Speech\Data

09/10/2006 23:26resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Microsoft Shared\web server extensions\50\bin\Data

09/10/2006 23:27resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Microsoft Shared\web server extensions\50\isapi\Data

09/10/2006 23:27resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Microsoft Shared\WordArt\Data

09/10/2006 23:27resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Microsoft Shared\Works Shared\Data

09/10/2006 23:27resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Motive\Data

09/10/2006 23:27resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\MSSoap\Binaries

16/08/2005 04:40Resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Nullsoft\ActiveX\Data

09/10/2006 23:27resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Real\GToolbar\Data

09/10/2006 23:27resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Real\Update_OB\Data

09/10/2006 23:27resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Sonic Shared\Data

09/10/2006 23:27resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Sonic Shared\Sonic Central\Audio\Data

09/10/2006 23:27resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Sonic Shared\Sonic Central\Data\Data

09/10/2006 23:27resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Sonic Shared\Sonic Central\Main\Data

09/10/2006 23:27resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\System\Mapi\1033\Data

09/10/2006 23:27resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\System\Ole DB

28/03/2006 23:26resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\SystemRequirementsLab\Data

09/10/2006 23:27resources
0 File(s) 0 bytes

Directory of C:\Program Files\Common Files\Teleca Shared\Data

09/10/2006 23:27resources
0 File(s) 0 bytes

Directory of C:\Program Files\Corel\Corel Paint Shop Pro X\Data

09/10/2006 23:28resources
0 File(s) 0 bytes

Directory of C:\Program Files\Corel\Corel Paint Shop Pro X\Python Libraries\Lib\distutils\command\Data

09/10/2006 23:28resources
0 File(s) 0 bytes

Directory of C:\Program Files\Creative\MediaSource\Data

09/10/2006 23:28resources
0 File(s) 0 bytes

Directory of C:\Program Files\Creative\MediaSource\Detector\Data

09/10/2006 23:28resources
0 File(s) 0 bytes

Directory of C:\Program Files\Creative\MediaSource\Go\Data

09/10/2006 23:28resources
0 File(s) 0 bytes

Directory of C:\Program Files\Creative\MediaSource\Wizard\AudioCvt\Data

09/10/2006 23:28resources
0 File(s) 0 bytes

Directory of C:\Program Files\Creative\MediaSource\Wizard\CDCover2\Data

09/10/2006 23:28resources
0 File(s) 0 bytes

Directory of C:\Program Files\Creative\MediaSource\Wizard\Import\Data

09/10/2006 23:28resources
0 File(s) 0 bytes

Directory of C:\Program Files\Creative\MediaSource\Wizard\ImportPlaylist\Data

09/10/2006 23:28resources
0 File(s) 0 bytes

Directory of C:\Program Files\Creative\MediaSource\Wizard\QuickStart\Data

09/10/2006 23:28resources
0 File(s) 0 bytes

Directory of C:\Program Files\Creative\SBAudigy\EAX\Data

09/10/2006 23:28resources
0 File(s) 0 bytes

Directory of C:\Program Files\Creative\SBAudigy\Equalizer\Data

09/10/2006 23:28resources
0 File(s) 0 bytes

Directory of C:\Program Files\Creative\SBAudigy\Program\Common\Data

09/10/2006 23:28resources
0 File(s) 0 bytes

Directory of C:\Program Files\Creative\SBAudigy\Program\Data

09/10/2006 23:28resources
0 File(s) 0 bytes

Directory of C:\Program Files\Creative\SBAudigy\SFBM\Data

09/10/2006 23:28resources
0 File(s) 0 bytes

Directory of C:\Program Files\Creative\SBAudigy\Speaker Settings\Data

09/10/2006 23:28resources
0 File(s) 0 bytes

Directory of C:\Program Files\Creative\SBAudigy\Surround Mixer\Data

09/10/2006 23:29resources
0 File(s) 0 bytes

Directory of C:\Program Files\Creative\SBAudigy\WaveStudio\Data

09/10/2006 23:29resources
0 File(s) 0 bytes

Directory of C:\Program Files\Creative\Shared Files\Data

09/10/2006 23:29resources
0 File(s) 0 bytes

Directory of C:\Program Files\Creative\Shared Files\Media Sniffer\Data

09/10/2006 23:29resources
0 File(s) 0 bytes

Directory of C:\Program Files\Creative\Shared Files\Music Analyzer\Data

09/10/2006 23:29resources
0 File(s) 0 bytes

Directory of C:\Program Files\Creative\ShareDLL\CADI\Data

09/10/2006 23:29resources
0 File(s) 0 bytes

Directory of C:\Program Files\Creative\Sound Blaster Audigy ADVANCED MB\Product Registration\English\Data

09/10/2006 23:29resources
0 File(s) 0 bytes

Directory of C:\Program Files\Creative\VoiceCenter\Data

09/10/2006 23:29resources
0 File(s) 0 bytes

Directory of C:\Program Files\DAEMON Tools\Data

09/10/2006 23:29resources
0 File(s) 0 bytes

Directory of C:\Program Files\Dell\Media Experience\Data

09/10/2006 23:29resources
0 File(s) 0 bytes

Directory of C:\Program Files\Dell\Media Experience\IAPCSDK\Data

09/10/2006 23:29resources
0 File(s) 0 bytes

Directory of C:\Program Files\Dell\Media Experience\IAPCSDK\win\setup\Data

09/10/2006 23:29resources
0 File(s) 0 bytes

Directory of C:\Program Files\Dell\Media Experience\InterActual\Data

09/10/2006 23:29resources
0 File(s) 0 bytes

Directory of C:\Program Files\Dell Photo Printer 720\Data

09/10/2006 23:29resources
0 File(s) 0 bytes

Directory of C:\Program Files\Dell Support\Data

09/10/2006 23:29resources
0 File(s) 0 bytes

Directory of C:\Program Files\Dell Support\GTCoach\Data

09/10/2006 23:29resources
0 File(s) 0 bytes

Directory of C:\Program Files\DIGStream\Data

09/10/2006 23:29resources
0 File(s) 0 bytes

Directory of C:\Program Files\Electronic Arts\The Godfather The Game\Data

09/10/2006 23:31resources
0 File(s) 0 bytes

Directory of C:\Program Files\Electronic Arts\The Godfather The Game\Support\Data

09/10/2006 23:33resources
0 File(s) 0 bytes

Directory of C:\Program Files\Eraser\Boot\Data

09/10/2006 23:33resources
0 File(s) 0 bytes

Directory of C:\Program Files\Eraser\Data

09/10/2006 23:33resources
0 File(s) 0 bytes

Directory of C:\Program Files\ESPNMotion\Data

09/10/2006 23:33resources
0 File(s) 0 bytes

Directory of C:\Program Files\ewido anti-spyware 4.0\Data

09/10/2006 23:33resources
0 File(s) 0 bytes

Directory of C:\Program Files\FLVPlayer\Data

09/10/2006 23:33resources
0 File(s) 0 bytes

Directory of C:\Program Files\GemMaster\Data

09/10/2006 23:33resources
0 File(s) 0 bytes

Directory of C:\Program Files\Google\Google Earth\Data

09/10/2006 23:33resources
0 File(s) 0 bytes

Directory of C:\Program Files\Grisoft\AVG Free\Data

09/10/2006 23:33resources
0 File(s) 0 bytes

Directory of C:\Program Files\ImTOO\3GP Video Converter\Data

09/10/2006 23:33resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{0B095086-7205-4D48-90DF-DCD16613C6D4}\Data

09/10/2006 23:33resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\Data

09/10/2006 23:33resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{103BCDA0-E063-46AC-8028-64E78722ABA7}\Data

09/10/2006 23:33resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{2616B36E-38CE-4357-8AB5-8B3EE9B1C117}\Data

09/10/2006 23:33resources
0 File(s) 0 bytes

Directory of C:\Program Files\InstallShield Installation Information\{2E0C1913-886B-4C5C-8DAF-D1E649CE5FCC}\Data

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]

>>>Context Menu Handlers (Non-Microsoft Only)
[HKEY_LOCAL_MACHINE\Software\Classes\*\shellex\ContextMenuHandlers]
\AVG Anti-Spyware - {8934FCEF-F5B8-468f-951F-78A921CD3920} = C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\context.dll (Anti-Malware Development a.s.)
\AVG7 Shell Extension - {9F97547E-4609-42C5-AE0C-81C61FFAEBC3} = C:\Program Files\Grisoft\AVG Free\avgse.dll (GRISOFT, s.r.o.)
\Erasext - {8BE13461-936F-11D1-A87D-444553540000} = C:\PROGRA~1\Eraser\erasext.dll (-)
\PowerISO - {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} = C:\Program Files\PowerISO\PWRISOSH.DLL (PowerISO Computing, Inc.)
\Shell Extension for Malware scanning - {45AC2688-0253-4ED8-97DE-B5370FA7D48A} = C:\Program Files\AntiVir PersonalEdition Classic\shlext.dll (H+BEDV Datentechnik GmbH)
\WinRAR - {B41DB860-8EE4-11D2-9906-E49FADC173CA} = C:\Program Files\WinRAR\rarext.dll ()
\WinZip - {E0D79304-84BE-11CE-9641-444553540000} = C:\PROGRA~1\WINZIP\WZSHLSTB.DLL (WinZip Computing LP)

[HKEY_LOCAL_MACHINE\Software\Classes\AllFilesystemObjects\shellex\ContextMenuHandlers]

[HKEY_LOCAL_MACHINE\Software\Classes\Directory\shellex\ContextMenuHandlers]
\AVG Anti-Spyware - {8934FCEF-F5B8-468f-951F-78A921CD3920} = C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\context.dll (Anti-Malware Development a.s.)
\PowerISO - {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} = C:\Program Files\PowerISO\PWRISOSH.DLL (PowerISO Computing, Inc.)
\WinRAR - {B41DB860-8EE4-11D2-9906-E49FADC173CA} = C:\Program Files\WinRAR\rarext.dll ()
\WinZip - {E0D79304-84BE-11CE-9641-444553540000} = C:\PROGRA~1\WINZIP\WZSHLSTB.DLL (WinZip Computing LP)

[HKEY_LOCAL_MACHINE\Software\Classes\Directory\BackGround\shellex\ContextMenuHandlers]
\ACE - {5E2121EE-0300-11D4-8D3B-444553540000} = C:\Program Files\ATI Technologies\ATI.ACE\atiacmxx.dll ()

[HKEY_LOCAL_MACHINE\Software\Classes\Folder\shellex\ContextMenuHandlers]
\AVG7 Shell Extension - {9F97547E-4609-42C5-AE0C-81C61FFAEBC3} = C:\Program Files\Grisoft\AVG Free\avgse.dll (GRISOFT, s.r.o.)
\Erasext - {8BE13461-936F-11D1-A87D-444553540000} = C:\PROGRA~1\Eraser\erasext.dll (-)
\PowerISO - {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} = C:\Program Files\PowerISO\PWRISOSH.DLL (PowerISO Computing, Inc.)
\Shell Extension for Malware scanning - {45AC2688-0253-4ED8-97DE-B5370FA7D48A} = C:\Program Files\AntiVir PersonalEdition Classic\shlext.dll (H+BEDV Datentechnik GmbH)
\WinRAR - {B41DB860-8EE4-11D2-9906-E49FADC173CA} = C:\Program Files\WinRAR\rarext.dll ()
\WinZip - {E0D79304-84BE-11CE-9641-444553540000} = C:\PROGRA~1\WINZIP\WZSHLSTB.DLL (WinZip Computing LP)

>>>Column Handlers (Non-Microsoft Only)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\shellex\ColumnHandlers]
\{F9DB5320-233E-11D1-9F84-707F02C10627} - PDF Column Info = C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll (Adobe Systems, Inc.)

>>>Registry Run Keys
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
ehTray - C:\WINDOWS\ehome\ehtray.exe (Microsoft Corporation)
SunJavaUpdateSched - C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe (Sun Microsystems, Inc.)
SigmatelSysTrayApp - C:\WINDOWS\stsystra.exe (SigmaTel, Inc.)
IAAnotif - C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation)
ATIPTA - C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe (ATI Technologies, Inc.)
IntelMeM - C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe (Intel Corporation)
CTSysVol - C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe (Creative Technology Ltd)
MBMon - Rundll32 CTMBHA.DLL ()
UpdReg - C:\WINDOWS\UpdReg.EXE (Creative Technology Ltd.)
ISUSPM Startup - C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe (InstallShield Software Corporation)
ISUSScheduler - C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation)
QuickTime Task - C:\Program Files\QuickTime\qttask.exe (Apple Computer, Inc.)
DLA - C:\WINDOWS\System32\DLA\DLACTRLW.EXE (Sonic Solutions)
TkBellExe - C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
MSKDetectorExe - C:\Program Files\McAfee\SpamKiller\MSKDetct.exe (McAfee, Inc.)
AVG7_CC - C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe (GRISOFT, s.r.o.)
WinPatrol - C:\PROGRA~1\BILLPS~1\WINPAT~1\winpatrol.exe ()
avgnt - C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe (Avira GmbH)
VoiceCenter - C:\Program Files\Creative\VoiceCenter\AndreaVC.exe (Andrea Electronics Corporation)
HP Software Update - C:\Program Files\HP\HP Software Update\HPWuSchd2.exe (Hewlett-Packard Development Company, L.P.)
Windows Defender - C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
ATICCC - C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe ()
iTunesHelper - C:\Program Files\iTunes\iTunesHelper.exe (Apple Computer, Inc.)
BluetoothAuthenticationAgent - C:\WINDOWS\SYSTEM32\rundll32.exe (Microsoft Corporation)
PCSuiteTrayApplication - C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE (Nokia)
PrevxOne - C:\Program Files\Prevx1\PXConsole.exe (Prevx)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents]
IMAIL Installed = 1
MAPI Installed = 1
MSFS Installed = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
SetDefaultMIDI - C:\WINDOWS\MIDIDef.exe (Creative Technology Ltd)
Creative Detector - C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe (Creative Technology Ltd)
DellSupport - C:\Program Files\Dell Support\DSAgnt.exe (Gteko Ltd.)
msnmsgr - C:\Program Files\MSN Messenger\msnmsgr.exe (Microsoft Corporation)
ctfmon.exe - C:\WINDOWS\system32\ctfmon.exe (Microsoft Corporation)
BitTorrent - C:\Program Files\BitTorrent\bittorrent.exe ()
WMPNSCFG - C:\Program Files\Windows Media Player\WMPNSCFG.exe (Microsoft Corporation)
PcSync - C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe (Time Information Services Ltd.)

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\load]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\run]

>>>Startup Links
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\\Common Startup]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe (Adobe Systems Incorporated)
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\desktop.ini ()
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Development Company, L.P.)
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Photosmart Premier Fast Start.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe (Hewlett-Packard Development Company, L.P.)
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\\Startup]
C:\Documents and Settings\Asti\Start Menu\Programs\Startup\desktop.ini ()

>>>MSConfig Disabled Items
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\services

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg
key SOFTWARE\Microsoft\Windows\CurrentVersion\Run
item
hkey HKLM
command
inimapping 0


HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\state
system.ini 0
win.ini 0
bootini 0
services 0
startup 0


[All Users Startup Folder Disabled Items]

[Current User Startup Folder Disabled Items]

>>>User Agent Post Platform
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform]

>>>AppInit Dll's
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs]

>>>Image File Execution Options
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
\Your Image File Name Here without a path - Debugger = ntsd -d

>>>Shell Service Object Delay Load
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
\\PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} = %SystemRoot%\system32\SHELL32.dll (Microsoft Corporation)
\\CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} = %SystemRoot%\system32\SHELL32.dll (Microsoft Corporation)
\\WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} = C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)
\\SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} = C:\WINDOWS\system32\stobject.dll (Microsoft Corporation)
\\WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} = C:\WINDOWS\system32\WPDShServiceObj.dll (Microsoft Corporation)

>>>Shell Execute Hooks
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
\\{AEB6717E-7E19-11d0-97EE-00C04FD91972} - URL Exec Hook = shell32.dll (Microsoft Corporation)
\\{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - Microsoft AntiMalware ShellExecuteHook = C:\PROGRA~1\WIFD1F~1\MpShHook.dll (Microsoft Corporation)
\\{57B86673-276A-48B2-BAE7-C6DBB3020EB8} - CShellExecuteHookImpl Object = C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll (Anti-Malware Development a.s.)

>>>Shared Task Scheduler
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
\\{438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader = %SystemRoot%\system32\browseui.dll (Microsoft Corporation)
\\{8C7461EF-2B13-11d2-BE35-3078302C2030} - Component Categories cache daemon = %SystemRoot%\system32\browseui.dll (Microsoft Corporation)

>>>Winlogon
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
\\UserInit = C:\WINDOWS\system32\userinit.exe,
\\Shell = Explorer.exe
\\System =

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify]
\AtiExtEvent - Ati2evxx.dll = (ATI Technologies Inc.)
\crypt32chain - crypt32.dll = (Microsoft Corporation)
\cryptnet - cryptnet.dll = (Microsoft Corporation)
\cscdll - cscdll.dll = (Microsoft Corporation)
\ScCertProp - wlnotify.dll = (Microsoft Corporation)
\Schedule - wlnotify.dll = (Microsoft Corporation)
\sclgntfy - sclgntfy.dll = (Microsoft Corporation)
\SensLogn - WlNotify.dll = (Microsoft Corporation)
\termsrv - wlnotify.dll = (Microsoft Corporation)
\WgaLogon - WgaLogon.dll = (Microsoft Corporation)
\wlballoon - wlnotify.dll = (Microsoft Corporation)

>>>DNS Name Servers
{13EFA343-CBBE-4F00-AD8A-3101E92D9E57} - (Intel(R) PRO/1000 PL Network Connection)
{6DAEA22C-E690-498D-BB7D-969A8F32A25C} - ()
{889B0418-C2A4-43E2-A7BA-50FAE1F83C09} - ()
{94C9CB4E-CF60-4BDD-9644-5993CBE56823} - (Motorola SURFboard SB5101 USB Cable Modem)
{A920637D-C6CC-4A3D-A663-75DA82489332} - ()

>>>All Winsock2 Catalogs
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries]
\000000000001\\LibraryPath - %SystemRoot%\System32\mswsock.dll (Microsoft Corporation)
\000000000002\\LibraryPath - %SystemRoot%\System32\winrnr.dll (Microsoft Corporation)
\000000000003\\LibraryPath - %SystemRoot%\System32\mswsock.dll (Microsoft Corporation)
\000000000004\\LibraryPath - %SystemRoot%\system32\wshbth.dll (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries]
\000000000001\\PackedCatalogItem - %SystemRoot%\system32\mswsock.dll (Microsoft Corporation)
\000000000002\\PackedCatalogItem - %SystemRoot%\system32\mswsock.dll (Microsoft Corporation)
\000000000003\\PackedCatalogItem - %SystemRoot%\system32\mswsock.dll (Microsoft Corporation)
\000000000004\\PackedCatalogItem - %SystemRoot%\system32\rsvpsp.dll (Microsoft Corporation)
\000000000005\\PackedCatalogItem - %SystemRoot%\system32\rsvpsp.dll (Microsoft Corporation)
\000000000006\\PackedCatalogItem - %SystemRoot%\system32\mswsock.dll (Microsoft Corporation)
\000000000007\\PackedCatalogItem - %SystemRoot%\system32\mswsock.dll (Microsoft Corporation)
\000000000008\\PackedCatalogItem - %SystemRoot%\system32\mswsock.dll (Microsoft Corporation)
\000000000009\\PackedCatalogItem - %SystemRoot%\system32\mswsock.dll (Microsoft Corporation)
\000000000010\\PackedCatalogItem - %SystemRoot%\system32\mswsock.dll (Microsoft Corporation)
\000000000011\\PackedCatalogItem - %SystemRoot%\system32\mswsock.dll (Microsoft Corporation)
\000000000012\\PackedCatalogItem - %SystemRoot%\system32\mswsock.dll (Microsoft Corporation)
\000000000013\\PackedCatalogItem - %SystemRoot%\system32\mswsock.dll (Microsoft Corporation)
\000000000014\\PackedCatalogItem - %SystemRoot%\system32\mswsock.dll (Microsoft Corporation)
\000000000015\\PackedCatalogItem - %SystemRoot%\system32\mswsock.dll (Microsoft Corporation)
\000000000016\\PackedCatalogItem - %SystemRoot%\system32\mswsock.dll (Microsoft Corporation)
\000000000017\\PackedCatalogItem - %SystemRoot%\system32\mswsock.dll (Microsoft Corporation)
\000000000018\\PackedCatalogItem - %SystemRoot%\system32\mswsock.dll (Microsoft Corporation)
\000000000019\\PackedCatalogItem - %SystemRoot%\system32\mswsock.dll (Microsoft Corporation)
\000000000020\\PackedCatalogItem - %SystemRoot%\system32\mswsock.dll (Microsoft Corporation)

>>>Protocol Handlers (Non-Microsoft Only)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler]
\ipp - ()
\msdaipp - ()

>>>Protocol Filters (Non-Microsoft Only)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter]

>>>Selected AddOn's


»»»»»»»»»»»»»»»»»»»»»»»» Scan Complete »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

winpfind continued


»»»»»»»»»»»»»»»»» Checking Selected Registry Keys »»»»»»»»»»»»»»»»»»»»»»»

>>>Internet Explorer Settings


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main]
\\Start Page - http://go.microsoft.com/fwlink/?LinkId=69157
\\Search Page - http://go.microsoft.com/fwlink/?LinkId=54896
\\Default_Page_URL - http://go.microsoft.com/fwlink/?LinkId=69157
\\Default_Search_URL - http://go.microsoft.com/fwlink/?LinkId=54896
\\Local Page - %SystemRoot%\system32\blank.htm

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main]
\\Start Page - http://www.google.co.uk/
\\Search Bar - http://www.google.com/ie
\\Search Page - http://www.google.com
\\Default_Search_URL - about:blank
\\Local Page - C:\WINDOWS\system32\blank.htm

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Search]
\\CustomizeSearch - http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
\\SearchAssistant - http://www.google.com/ie


[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
\\{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - Microsoft Url Search Hook = C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)

>>>BHO's
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects]
\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - = ()
\{55EA1964-F5E4-4D6A-B9B2-125B37655FCB} - URLDetector Class = C:\Documents and Settings\All Users\Application Data\Prevx\pxbho.dll (Prevx Ltd.)
\{5CA3D70E-1895-11CF-8E15-001234567890} - DriveLetterAccess = C:\WINDOWS\System32\DLA\DLASHX_W.DLL (Sonic Solutions)
\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - SSVHelper Class = C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll (Sun Microsystems, Inc.)
\{9030D464-4C02-4ABF-8ECC-5164760863C6} - Windows Live Sign-in Helper = C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Windows Live Toolbar Helper = C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)

>>>Internet Explorer Bars, Toolbars and Extensions
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars]
\{4D5C8C25-D075-11d0-B416-00C04FB90376} - &Tip of the Day = %SystemRoot%\system32\shdocvw.dll (Microsoft Corporation)
\{FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - Real.com = C:\WINDOWS\system32\Shdocvw.dll (Microsoft Corporation)

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Explorer Bars]
\{EFA24E64-B078-11D0-89E4-00C04FC9E26E} - Explorer Band = %SystemRoot%\system32\shdocvw.dll (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar]
\\{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Windows Live Toolbar = C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar]
\ShellBrowser\\{01E04581-4EEE-11D0-BFE9-00AA005B4383} - &Address = %SystemRoot%\system32\browseui.dll (Microsoft Corporation)
\WebBrowser\\{01E04581-4EEE-11D0-BFE9-00AA005B4383} - &Address = %SystemRoot%\system32\browseui.dll (Microsoft Corporation)
\WebBrowser\\{0E5CBF21-D15F-11D0-8301-00AA005B4383} - &Links = %SystemRoot%\system32\SHELL32.dll (Microsoft Corporation)
\WebBrowser\\{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Windows Live Toolbar = C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\CmdMapping]
\\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} - 8192 = Sun Java Console
\\NEXTID - 8197
\\{CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - 8193 =
\\{FB5F1910-F110-11d2-BB9E-00C04F795683} - 8194 = Windows Messenger
\\{39FD89BF-D3F1-45b6-BB56-3582CCF489E1} - 8195 =
\\{e2e2dd38-d088-4134-82b7-f2ba38496583} - 8196 = @xpsp3res.dll,-20001

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions]
\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} - MenuText: Sun Java Console = C:\Program Files\Java\jre1.5.0_10\bin\npjpi150_10.dll (Sun Microsystems, Inc.)
\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} - MenuText: Sun Java Console = C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll (Sun Microsystems, Inc.)(HKCU CLSID)
\{CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - ButtonText: Real.com =
\{e2e2dd38-d088-4134-82b7-f2ba38496583} - MenuText: @xpsp3res.dll,-20001 = ()
\{FB5F1910-F110-11d2-BB9E-00C04F795683} - ButtonText: Messenger = C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)

>>>Approved Shell Extensions (Non-Microsoft Only)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]
\\{42071714-76d4-11d1-8b24-00a0c9068ff3} - Display Panning CPL Extension = deskpan.dll ()
\\{764BF0E1-F219-11ce-972D-00AA00A14F56} - Shell extensions for file compression = ()
\\{853FE2B1-B769-11d0-9C4E-00C04FB6C6FA} - Encryption Context Menu = ()
\\{88895560-9AA2-1069-930E-00AA0030EBC8} - HyperTerminal Icon Ext = C:\WINDOWS\system32\hticons.dll (Hilgraeve, Inc.)
\\{0DF44EAA-FF21-4412-828E-260A8728E7F1} - Taskbar and Start Menu = ()
\\{00E7B358-F65B-4dcf-83DF-CD026B94BFD4} - Autoplay for SlideShow = ()
\\{7A9D77BD-5403-11d2-8785-2E0420524153} - User Accounts = ()
\\{5CA3D70E-1895-11CF-8E15-001234567890} - DriveLetterAccess = C:\WINDOWS\System32\DLA\DLASHX_W.DLL (Sonic Solutions)
\\{E0D79304-84BE-11CE-9641-444553540000} - WinZip = C:\PROGRA~1\WINZIP\WZSHLSTB.DLL (WinZip Computing LP)
\\{E0D79305-84BE-11CE-9641-444553540000} - WinZip = C:\PROGRA~1\WINZIP\WZSHLSTB.DLL (WinZip Computing LP)
\\{E0D79306-84BE-11CE-9641-444553540000} - WinZip = C:\PROGRA~1\WINZIP\WZSHLSTB.DLL (WinZip Computing LP)
\\{E0D79307-84BE-11CE-9641-444553540000} - WinZip = C:\PROGRA~1\WINZIP\WZSHLSTB.DLL (WinZip Computing LP)
\\{F0CB00CD-5A07-4D91-97F5-A8C92CDA93E4} - Shell Extensions for RealOne Player = C:\Program Files\Real\RealPlayer\rpshell.dll (RealNetworks, Inc.)
\\{B41DB860-8EE4-11D2-9906-E49FADC173CA} - WinRAR shell extension = C:\Program Files\WinRAR\rarext.dll ()
\\{967B2D40-8B7D-4127-9049-61EA0C2C6DCE} - PowerISO = C:\Program Files\PowerISO\PWRISOSH.DLL (PowerISO Computing, Inc.)
\\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} - AVG7 Shell Extension = C:\Program Files\Grisoft\AVG Free\avgse.dll (GRISOFT, s.r.o.)
\\{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} - AVG7 Find Extension = C:\Program Files\Grisoft\AVG Free\avgse.dll (GRISOFT, s.r.o.)
\\{45AC2688-0253-4ED8-97DE-B5370FA7D48A} - Shell Extension for Malware scanning = C:\Program Files\AntiVir PersonalEdition Classic\shlext.dll (H+BEDV Datentechnik GmbH)
\\{8BE13461-936F-11D1-A87D-444553540000} - Eraser Shell Extension = C:\PROGRA~1\Eraser\erasext.dll (-)
\\{B9E1D2CB-CCFF-4AA6-9579-D7A4754030EF} - iTunes = C:\Program Files\iTunes\iTunesMiniPlayer.dll (Apple Computer, Inc.)
\\{5E2121EE-0300-11D4-8D3B-444553540000} - Catalyst Context Menu extension = C:\Program Files\ATI Technologies\ATI.ACE\atiacmxx.dll ()
\\{416651E4-9C3C-11D9-8BDE-F66BAD1E3F3A} - PhoneBrowser = C:\Program Files\Nokia\Nokia PC Suite 6\PhoneBrowser.dll (Nokia)
\\{C0C4375A-5B72-4efe-929D-3B848C3A1E91} - Message View = C:\Program Files\Nokia\Nokia PC Suite 6\MessageView.dll (Nokia)

winpfind continued 2

Here are the scan results you requested.

WinPfind scan

WARNING: not all files found by this scanner are bad. Consult with a knowledgable person before proceeding.

If you see a message in the titlebar saying "Not responding..." you can ignore it. Windows sometimes displays this message due to the high volume of disk I/O. As long as the hard disk light is flashing, the program is still working properly.

»»»»»»»»»»»»»»»»» Windows OS and Versions »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Logfile created on: 14/01/2007 20:14:59
WinPFind v1.5.0 Folder = C:\WinPFind\
Microsoft Windows XP Service Pack 2 (Version = 5.1.2600)
Internet Explorer (Version = 7.0.5730.11)

»»»»»»»»»»»»»»»»» Checking Selected Standard Folders »»»»»»»»»»»»»»»»»»»»

Checking %SystemDrive% folder...

Checking %ProgramFilesDir% folder...

Checking %WinDir% folder...
UPX! 29/03/2006 15:31:58 47104 C:\WINDOWS\AKDeInstall.exe ()
Umonitor 14/01/2007 19:54:54 242155 C:\WINDOWS\pxinstall_log.txt ()

Checking %System% folder...
aspack 18/03/2005 17:19:58 2337488 C:\WINDOWS\SYSTEM32\d3dx9_25.dll (Microsoft Corporation)
aspack 26/05/2005 15:34:52 2297552 C:\WINDOWS\SYSTEM32\d3dx9_26.dll (Microsoft Corporation)
aspack 22/07/2005 18:59:04 2319568 C:\WINDOWS\SYSTEM32\d3dx9_27.dll (Microsoft Corporation)
aspack 05/12/2005 18:09:18 2323664 C:\WINDOWS\SYSTEM32\d3dx9_28.dll (Microsoft Corporation)
aspack 03/02/2006 08:43:16 2332368 C:\WINDOWS\SYSTEM32\d3dx9_29.dll (Microsoft Corporation)
aspack 31/03/2006 12:40:58 2388176 C:\WINDOWS\SYSTEM32\d3dx9_30.dll (Microsoft Corporation)
aspack 28/09/2006 16:05:20 2414360 C:\WINDOWS\SYSTEM32\d3dx9_31.dll (Microsoft Corporation)
aspack 29/11/2006 13:06:18 3426072 C:\WINDOWS\SYSTEM32\d3dx9_32.dll (Microsoft Corporation)
PEC2 10/08/2004 05:00:00 41397 C:\WINDOWS\SYSTEM32\dfrg.msc ()
PEC2 02/10/2006 19:04:40 635486 C:\WINDOWS\SYSTEM32\DivX.dll (DivX, Inc.)
PECompact2 02/10/2006 19:04:40 635486 C:\WINDOWS\SYSTEM32\DivX.dll (DivX, Inc.)
PTech 12/12/2006 10:45:04 1474864 C:\WINDOWS\SYSTEM32\LegitCheckControl.DLL (Microsoft Corporation)
PECompact2 02/01/2007 15:19:46 10980776 C:\WINDOWS\SYSTEM32\MRT.exe (Microsoft Corporation)
aspack 02/01/2007 15:19:46 10980776 C:\WINDOWS\SYSTEM32\MRT.exe (Microsoft Corporation)
WSUD 10/08/2004 05:00:00 1200128 C:\WINDOWS\SYSTEM32\ntbackup.exe (Microsoft Corporation)
aspack 10/08/2004 05:00:00 708096 C:\WINDOWS\SYSTEM32\ntdll.dll (Microsoft Corporation)
WSUD 10/08/2004 05:00:00 257024 C:\WINDOWS\SYSTEM32\nusrmgr.cpl (Microsoft Corporation)
Umonitor 10/08/2004 05:00:00 657920 C:\WINDOWS\SYSTEM32\rasdlg.dll (Microsoft Corporation)
winsync 10/08/2004 05:00:00 1309184 C:\WINDOWS\SYSTEM32\wbdbase.deu ()
PTech 19/06/2006 15:19:26 304944 C:\WINDOWS\SYSTEM32\WgaTray.exe (Microsoft Corporation)
PEC2 18/10/2006 22:47:20 8231936 C:\WINDOWS\SYSTEM32\wmploc.dll (Microsoft Corporation)
WSUD 18/10/2006 22:47:20 8231936 C:\WINDOWS\SYSTEM32\wmploc.dll (Microsoft Corporation)

Checking %System%\Drivers folder and sub-folders...
UPX! 03/11/2006 16:25:44 816672 C:\WINDOWS\SYSTEM32\drivers\avg7core.sys (GRISOFT, s.r.o.)
FSG! 03/11/2006 16:25:44 816672 C:\WINDOWS\SYSTEM32\drivers\avg7core.sys (GRISOFT, s.r.o.)
PEC2 03/11/2006 16:25:44 816672 C:\WINDOWS\SYSTEM32\drivers\avg7core.sys (GRISOFT, s.r.o.)
aspack 03/11/2006 16:25:44 816672 C:\WINDOWS\SYSTEM32\drivers\avg7core.sys (GRISOFT, s.r.o.)

Items found in C:\WINDOWS\SYSTEM32\drivers\etc\hosts


Checking the Windows folder and sub-folders for system and hidden files within the last 60 days...
14/01/2007 17:21:44 S 2048 C:\WINDOWS\bootstat.dat ()
12/01/2007 19:49:08 H 54156 C:\WINDOWS\QTFont.qfn ()
08/12/2006 12:08:50 S 7927 C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\d3dx9_32_x86.CAT ()
18/11/2006 17:53:42 S 8847 C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\KB928388.cat ()
29/11/2006 07:22:38 S 8847 C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\KB929120.cat ()
22/12/2006 11:53:02 S 7894 C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\KB929969.cat ()
08/12/2006 12:08:54 S 8225 C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\xact2_5_x86.CAT ()
14/01/2007 18:43:30 H 1024 C:\WINDOWS\system32\config\default.LOG ()
14/01/2007 18:53:32 H 1024 C:\WINDOWS\system32\config\SAM.LOG ()
14/01/2007 17:31:56 H 1024 C:\WINDOWS\system32\config\SECURITY.LOG ()
14/01/2007 20:31:34 H 1024 C:\WINDOWS\system32\config\software.LOG ()
14/01/2007 20:12:02 H 1024 C:\WINDOWS\system32\config\system.LOG ()
14/01/2007 01:22:48 H 1024 C:\WINDOWS\system32\config\systemprofile\NTUSER.DAT.LOG ()
18/11/2006 09:54:24 S 574 C:\WINDOWS\system32\config\systemprofile\Application Data\Microsoft\CryptnetUrlCache\Content\A722DD0408D31B48F1599878CA31591F ()
18/11/2006 09:54:24 S 471 C:\WINDOWS\system32\config\systemprofile\Application Data\Microsoft\CryptnetUrlCache\Content\C69FAAD80E5717FDD06CDA402566AD77 ()
18/11/2006 09:54:24 S 526 C:\WINDOWS\system32\config\systemprofile\Application Data\Microsoft\CryptnetUrlCache\Content\FB788E090BC1F3AA2FBC9E8FB2859601 ()
18/11/2006 09:54:24 S 202 C:\WINDOWS\system32\config\systemprofile\Application Data\Microsoft\CryptnetUrlCache\MetaData\A722DD0408D31B48F1599878CA31591F ()
18/11/2006 09:54:24 S 134 C:\WINDOWS\system32\config\systemprofile\Application Data\Microsoft\CryptnetUrlCache\MetaData\C69FAAD80E5717FDD06CDA402566AD77 ()
18/11/2006 09:54:24 S 134 C:\WINDOWS\system32\config\systemprofile\Application Data\Microsoft\CryptnetUrlCache\MetaData\FB788E090BC1F3AA2FBC9E8FB2859601 ()
11/01/2007 13:28:08 H 1024 C:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG ()
16/12/2006 12:52:34 HS 388 C:\WINDOWS\system32\Microsoft\Protect\S-1-5-18\228d6ea4-a2ac-4e32-81cb-3ce8afdacbc1 ()
16/12/2006 12:52:34 HS 24 C:\WINDOWS\system32\Microsoft\Protect\S-1-5-18\Preferred ()
16/12/2006 16:51:12 HS 388 C:\WINDOWS\system32\Microsoft\Protect\S-1-5-18\User\0e6965ad-b791-42b9-aa9f-f85c161471a9 ()
16/12/2006 16:51:12 HS 24 C:\WINDOWS\system32\Microsoft\Protect\S-1-5-18\User\Preferred ()
14/01/2007 17:24:50 H 330 C:\WINDOWS\Tasks\MP Scheduled Scan.job ()
14/01/2007 17:21:48 H 6 C:\WINDOWS\Tasks\SA.DAT ()

Checking for CPL files...
10/08/2004 05:00:00 68608 C:\WINDOWS\SYSTEM32\access.cpl (Microsoft Corporation)
10/08/2004 05:00:00 549888 C:\WINDOWS\SYSTEM32\appwiz.cpl (Microsoft Corporation)
10/08/2004 05:00:00 110592 C:\WINDOWS\SYSTEM32\bthprops.cpl (Microsoft Corporation)
03/05/2006 13:31:56 1019904 C:\WINDOWS\SYSTEM32\cmdvdpak.cpl (Sonic Solutions)
18/09/2003 03:18:00 R 24576 C:\WINDOWS\SYSTEM32\cpl_moh.cpl ()
10/08/2004 05:00:00 135168 C:\WINDOWS\SYSTEM32\desk.cpl (Microsoft Corporation)
10/08/2004 05:00:00 80384 C:\WINDOWS\SYSTEM32\firewall.cpl (Microsoft Corporation)
10/08/2004 05:00:00 155136 C:\WINDOWS\SYSTEM32\hdwwiz.cpl (Microsoft Corporation)
17/10/2006 12:05:48 1817088 C:\WINDOWS\SYSTEM32\inetcpl.cpl (Microsoft Corporation)
10/08/2004 05:00:00 129536 C:\WINDOWS\SYSTEM32\intl.cpl (Microsoft Corporation)
10/08/2004 05:00:00 380416 C:\WINDOWS\SYSTEM32\irprops.cpl (Microsoft Corporation)
10/06/2005 10:43:18 73728 C:\WINDOWS\SYSTEM32\ISUSPM.cpl (InstallShield Software Corporation)
10/08/2004 05:00:00 68608 C:\WINDOWS\SYSTEM32\joy.cpl (Microsoft Corporation)
09/11/2006 15:07:28 49265 C:\WINDOWS\SYSTEM32\jpicpl32.cpl (Sun Microsystems, Inc.)
10/08/2004 05:00:00 187904 C:\WINDOWS\SYSTEM32\main.cpl (Microsoft Corporation)
10/08/2004 05:00:00 618496 C:\WINDOWS\SYSTEM32\mmsys.cpl (Microsoft Corporation)
10/08/2004 05:00:00 35840 C:\WINDOWS\SYSTEM32\ncpa.cpl (Microsoft Corporation)
10/08/2004 05:00:00 25600 C:\WINDOWS\SYSTEM32\netsetup.cpl (Microsoft Corporation)
10/08/2004 05:00:00 257024 C:\WINDOWS\SYSTEM32\nusrmgr.cpl (Microsoft Corporation)
10/08/2004 05:00:00 36864 C:\WINDOWS\SYSTEM32\nwc.cpl (Microsoft Corporation)
10/08/2004 05:00:00 32768 C:\WINDOWS\SYSTEM32\odbccp32.cpl (Microsoft Corporation)
10/08/2004 05:00:00 114688 C:\WINDOWS\SYSTEM32\powercfg.cpl (Microsoft Corporation)
18/11/2004 10:02:36 77824 C:\WINDOWS\SYSTEM32\PRApplet.cpl (Intel(R) Corporation)
22/03/2005 05:22:44 143441 C:\WINDOWS\SYSTEM32\stac97.cpl (Sigmatel, Inc.)
10/08/2004 05:00:00 298496 C:\WINDOWS\SYSTEM32\sysdm.cpl (Microsoft Corporation)
10/08/2004 05:00:00 28160 C:\WINDOWS\SYSTEM32\telephon.cpl (Microsoft Corporation)
10/08/2004 05:00:00 94208 C:\WINDOWS\SYSTEM32\timedate.cpl (Microsoft Corporation)
10/08/2004 05:00:00 148480 C:\WINDOWS\SYSTEM32\wscui.cpl (Microsoft Corporation)
26/05/2005 04:16:30 174360 C:\WINDOWS\SYSTEM32\wuaucpl.cpl (Microsoft Corporation)
17/10/2006 12:05:48 1817088 C:\WINDOWS\SYSTEM32\dllcache\inetcpl.cpl (Microsoft Corporation)
26/05/2005 04:16:30 174360 C:\WINDOWS\SYSTEM32\dllcache\wuaucpl.cpl (Microsoft Corporation)

Checking for Downloaded Program Files...
{0E5F0222-96B9-11D3-8997-00104BD12D94} - PCPitstop Utility - CodeBase = http://www.pcpitstop.com/pcpitstop/PCPitStop.CAB
{17492023-C23A-453E-A040-C7C580BBF700} - Windows Genuine Advantage Validation Tool - CodeBase = http://download.microsoft.com/download/3/9/8/398422c0-8d3e-40e1-a617-af65a72a0465/LegitCheckControl.cab
{3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} - Office Update Installation Engine - CodeBase = http://office.microsoft.com/officeupdate/content/opuc3.cab
{4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - - CodeBase = http://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab
{78AEEDE8-7345-4FB5-A8FE-4BFF16EF25FC} - McAfee Virtual Technician Control Class - CodeBase = http://us-download.mcafee.com/products/protected/mvt/mvt.cab
{8AD9C840-044E-11D1-B3E9-00805F499D93} - Java Plug-in 1.5.0_10 - CodeBase = http://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab
{B38870E4-7ECB-40DA-8C6A-595F0A5519FF} - MsnMessengerSetupDownloadControl Class - CodeBase = http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
{BE833F39-1E0C-468C-BA70-25AAEE55775E} - System Requirements Lab Class - CodeBase = http://www.systemrequirementslab.com/sysreqlab.cab
{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} - Java Plug-in 1.4.2_03 - CodeBase = http://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab
{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA} - Java Plug-in 1.5.0_03 - CodeBase = http://java.sun.com/update/1.5.0/jinstall-1_5_0_03-windows-i586.cab
{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} - Java Plug-in 1.5.0_06 - CodeBase = http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA} - Java Plug-in 1.5.0_08 - CodeBase = http://java.sun.com/update/1.5.0/jinstall-1_5_0_08-windows-i586.cab
{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} - Java Plug-in 1.5.0_09 - CodeBase = http://java.sun.com/update/1.5.0/jinstall-1_5_0_09-windows-i586.cab
{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} - Java Plug-in 1.5.0_10 - CodeBase = http://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - Java Plug-in 1.5.0_10 - CodeBase = http://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab
{D27CDB6E-AE6D-11CF-96B8-444553540000} - - CodeBase = http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
{E856B973-45FD-4559-8F82-EAB539144667} - Dell PC Checkup Installer Control - CodeBase = http://pccheckup.dellfix.com/rel/35/install/gtdownde.cab
{F04A8AE2-A59D-11D2-8792-00C04F8EF29D} - Hotmail Attachments Control - CodeBase = http://by115fd.bay115.hotmail.msn.com/activex/HMAtchmt.ocx
{F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} - MSN Chat Control 4.5 - CodeBase = http://chat.msn.com/controls/msnchat45.cab
Microsoft XML Parser for Java - - CodeBase = file://C:\WINDOWS\Java\classes\xmldso.cab

»»»»»»»»»»»»»»»»» Checking Selected Startup Folders »»»»»»»»»»»»»»»»»»»»»

Checking files in %ALLUSERSPROFILE%\Startup folder...
11/01/2007 16:33:38 1757 C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk ()
16/08/2005 04:43:08 HS 84 C:\Documents and Settings\All Users\Start Menu\Programs\Startup\desktop.ini ()
16/10/2006 12:57:32 1808 C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk ()
16/10/2006 12:59:26 798 C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Photosmart Premier Fast Start.lnk ()
12/01/2007 19:48:26 1798 C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk ()

Checking files in %ALLUSERSPROFILE%\Application Data folder...
10/07/2006 00:27:16 305 C:\Documents and Settings\All Users\Application Data\addr_file.html ()
16/08/2005 04:33:26 HS 62 C:\Documents and Settings\All Users\Application Data\desktop.ini ()
16/10/2006 13:07:28 1088 C:\Documents and Settings\All Users\Application Data\hpzinstall.log ()
12/01/2007 19:49:16 1751 C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache ()

Checking files in %USERPROFILE%\Startup folder...
16/08/2005 04:43:08 HS 84 C:\Documents and Settings\Asti\Start Menu\Programs\Startup\desktop.ini ()

Checking files in %USERPROFILE%\Application Data folder...
16/08/2005 04:33:26 HS 62 C:\Documents and Settings\Asti\Application Data\desktop.ini ()
18/10/2006 01:12:18 41576 C:\Documents and Settings\Asti\Application Data\GDIPFONTCACHEV1.DAT ()
02/08/2006 01:33:48 188 C:\Documents and Settings\Asti\Application Data\G-Force Prefs (WindowsMediaPlayer).txt ()

blacklight did not return anything.

CPU usage:

system idle process: 98/99%
explorer.exe: 0/1%
taskmgr: 0/1%
lsass: 0/1% (???)
system: 0/1%
kp4gui.exe: 0/1% (sunbelt kerio firewall)

the hijack this tool returned these results

C:\Documents and Settings\The Godfather\Favorites\Links\Windows.url : favicon (3638 bytes)
C:\Program Files\ATI Technologies\ATI.ACE\skins\CATALYST_Quicksilver\CATALYST_Quicksilver.uis_Scrollbar : Smaller.WB4 (2416 bytes)

I've deleted the winhound file. Haven't done the sigverif procedure before, but I followed your instructions and only one file came up : gacutil.exe in folder c:\windows\microsoft.net\framework\v1.0.3705, modified 29th/9/2004. Don't think that's responsible though as I purchased my system only last year. I'm off to bed to, I'll try the IceSword procedure tomorrow and let you know how I get on. Many thanks for your help thus far