OTL by OldTimer - Version 3.2.5.3 Folder = C:\Documents and Settings\kagome.HOME\My Documents\Downloads
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
502.00 Mb Total Physical Memory | 149.00 Mb Available Physical Memory | 30.00% Memory free
1.00 Gb Paging File | 1.00 Gb Available in Paging File | 57.00% Paging File free
Paging file location(s): C:\pagefile.sys 756 1512 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 55.88 Gb Total Space | 42.21 Gb Free Space | 75.54% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: HOME
Current User Name: kagome
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan
========== Processes (SafeList) ==========
PRC - [2010/06/05 19:08:04 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\kagome.HOME\My Documents\Downloads\OTL.exe
PRC - [2010/06/05 18:25:41 | 000,062,760 | ---- | M] () -- c:\Program Files\tbh\base\bin\tbhDaemon.exe
PRC - [2010/06/05 15:13:06 | 000,492,840 | ---- | M] (eBay) -- C:\Program Files\tbh\base\bin\tbhSystray.exe
PRC - [2010/06/05 15:00:58 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2010/06/05 15:00:58 | 000,620,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2010/06/05 15:00:56 | 000,508,184 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2010/06/05 15:00:52 | 000,710,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2010/06/05 15:00:31 | 002,064,736 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe
PRC - [2010/06/05 15:00:04 | 000,916,760 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe
PRC - [2010/06/05 15:00:01 | 000,836,888 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgam.exe
PRC - [2010/06/05 14:59:59 | 000,308,064 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2010/04/02 01:58:04 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009/11/11 10:57:36 | 001,451,520 | ---- | M] (Nokia) -- C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
PRC - [2009/11/08 23:18:00 | 000,065,216 | ---- | M] (WordWeb Software) -- C:\Program Files\WordWeb\wweb32.exe
PRC - [2009/10/29 13:03:34 | 000,159,744 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclBCBTSrv.exe
PRC - [2009/10/27 09:26:36 | 000,657,408 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
PRC - [2009/10/27 09:15:44 | 000,132,608 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
PRC - [2009/10/27 09:15:02 | 000,120,832 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
PRC - [2009/10/22 13:57:44 | 000,070,952 | ---- | M] () -- C:\Program Files\tbh\monitor\bin\tbhMonitor.exe
PRC - [2008/11/10 04:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
PRC - [2005/11/26 17:13:40 | 000,417,792 | ---- | M] () -- C:\WINDOWS\system32\Notepad2.EXE
PRC - [2005/10/15 17:07:16 | 001,032,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2005/08/17 06:06:22 | 000,577,597 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
========== Modules (SafeList) ==========
MOD - [2010/06/05 19:08:04 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\kagome.HOME\My Documents\Downloads\OTL.exe
MOD - [2005/10/16 21:55:06 | 001,053,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2649_x-ww_aac16c8b\comctl32.dll
MOD - [2004/08/04 07:31:18 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
========== Win32 Services (SafeList) ==========
SRV - [2010/06/05 15:00:04 | 000,916,760 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgemc.exe -- (avg9emc)
SRV - [2010/06/05 14:59:59 | 000,308,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2010/04/19 10:25:46 | 000,430,152 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service)
SRV - [2010/03/29 08:51:54 | 000,068,000 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper) getPlus®
SRV - [2009/10/27 09:26:36 | 000,657,408 | ---- | M] (Nokia) [On_Demand | Running] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2009/10/22 13:57:44 | 000,070,952 | ---- | M] () [Auto | Running] -- C:\Program Files\tbh\monitor\bin\tbhMonitor.exe -- (tbhMonitor.exe)
SRV - [2008/11/10 04:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
========== Driver Services (SafeList) ==========
DRV - [2010/06/05 15:02:19 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\System32\Drivers\avgrkx86.sys -- (AvgRkx86)
DRV - [2010/06/05 15:02:18 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2010/06/05 15:02:09 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2010/06/05 15:02:08 | 000,029,512 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2008/08/26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008/03/05 07:40:04 | 000,097,408 | ---- | M] (Mobile Connector) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\cmusbser.sys -- (qcusbser)
DRV - [2005/10/14 05:35:58 | 000,145,920 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hdaudio.sys -- (HdAudAddService)
DRV - [2005/10/14 05:35:58 | 000,138,752 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2005/08/17 05:53:54 | 000,401,152 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (btaudio)
DRV - [2005/08/17 05:52:32 | 000,023,271 | ---- | M] (Broadcom Corporation.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\btserial.sys -- (BTSERIAL)
DRV - [2005/08/17 05:52:28 | 000,222,876 | ---- | M] (Broadcom Corporation.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\btslbcsp.sys -- (BTSLBCSP)
DRV - [2005/08/17 05:51:32 | 001,341,466 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL)
DRV - [2005/08/17 05:49:38 | 000,030,363 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver)
DRV - [2005/08/17 05:49:30 | 000,030,189 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwmodem.sys -- (btwmodem)
DRV - [2005/08/17 05:49:04 | 000,056,648 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB)
DRV - [2005/08/17 05:46:08 | 000,148,040 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwdndis.sys -- (BTWDNDIS)
DRV - [2005/08/09 16:43:00 | 003,855,360 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2004/08/04 06:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
DRV - [2001/08/18 05:57:38 | 000,016,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MODEMCSA.sys -- (MODEMCSA)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://us.rd.yahoo.c...//www.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.c...//www.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomSearch = http://us.rd.yahoo.c...rch/search.html
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.c...//www.yahoo.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com?o=15127&l=dis
IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultthis.engineName: "ClixSense.com Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.condui...={searchTerms}"
FF - prefs.js..browser.search.selectedEngine: "ClixSense.com Customized Web Search"
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:9.0.0.812
FF - prefs.js..extensions.enabledItems: avg@igeared:4.504.019.002
FF - prefs.js..extensions.enabledItems: {afe43e80-0abc-4df2-81a0-3fe44b74abe8}:1.300.306
FF - prefs.js..keyword.URL: "http://ph.yhs.search...2-tb-web_ph&p="
FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2 [2009/05/19 08:11:29 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2010/05/02 17:21:36 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010/06/05 14:59:47 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared [2010/06/05 15:01:44 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/06/05 09:20:37 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/06/05 09:20:36 | 000,000,000 | ---D | M]
[2010/05/02 14:20:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kagome.HOME\Application Data\Mozilla\Extensions
[2010/04/15 16:46:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kagome.HOME\Application Data\Mozilla\Extensions\[email protected]
[2010/05/02 14:20:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kagome.HOME\Application Data\Mozilla\Extensions\[email protected]
[2010/06/05 18:46:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kagome.HOME\Application Data\Mozilla\Firefox\Profiles\oav0550d.default\extensions
[2010/05/17 14:14:25 | 000,000,000 | ---D | M] (ClixSense.com Toolbar) -- C:\Documents and Settings\kagome.HOME\Application Data\Mozilla\Firefox\Profiles\oav0550d.default\extensions\{70df8d13-bdd3-448e-944c-efde21b77161}(2)
[2010/06/05 18:42:18 | 000,000,000 | ---D | M] (Gamers Unite! Snag Bar) -- C:\Documents and Settings\kagome.HOME\Application Data\Mozilla\Firefox\Profiles\oav0550d.default\extensions\{afe43e80-0abc-4df2-81a0-3fe44b74abe8}
[2010/05/02 15:53:38 | 000,002,425 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\Application Data\Mozilla\Firefox\Profiles\oav0550d.default\searchplugins\askcom.xml
[2010/04/21 12:09:02 | 000,000,929 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\Application Data\Mozilla\Firefox\Profiles\oav0550d.default\searchplugins\conduit.xml
[2010/06/05 18:46:58 | 000,001,751 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\Application Data\Mozilla\Firefox\Profiles\oav0550d.default\searchplugins\search-the-web.xml
[2010/05/17 14:16:32 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2007/12/18 01:16:14 | 000,065,536 | ---- | M] ( ) -- C:\Program Files\Mozilla Firefox\plugins\npkimi.dll
O1 HOSTS File: ([2001/08/24 01:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (Yahooo Search Protection) - {25BC7718-0BFA-40EA-B381-4B2D9732D686} - C:\Program Files\Yahoo!\Search Protection\ysp.dll (Yahoo! Inc.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [High Definition Audio Property Page Shortcut] C:\WINDOWS\System32\hdashcut.exe (Windows ® Server 2003 DDK provider)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [tbhSystray] C:\Program Files\tbh\base\bin\tbhSystray.exe (eBay)
O4 - HKCU..\Run: [Free Download Manager] C:\Program Files\Free Download Manager\fdm.exe File not found
O4 - HKCU..\Run: [Messenger (Yahoo!)] C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - HKCU..\Run: [PC Suite Tray] C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia)
O4 - HKCU..\Run: [Search Protection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe File not found
O4 - HKCU..\Run: [Uniblue RegistryBooster 2] C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe File not found
O4 - HKCU..\Run: [WordWeb] C:\Program Files\WordWeb\wweb32.exe (WordWeb Software)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Bluetooth.lnk = C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\kagome.HOME\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Main present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Main present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSharedDocuments = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office10\EXCEL.EXE (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Yahoo! Search Protection - {BBF74FB9-ABCD-4678-880A-2511DAABB5E1} - C:\Program Files\Yahoo!\Search Protection\ysp.dll (Yahoo! Inc.)
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\kagome.HOME\Start Menu\Programs\IMVU\Run IMVU.lnk File not found
O9 - Extra Button: HP Smart Select - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.micros...b?1272112024234 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_05)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (get_atlcom Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/01/31 11:59:39 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{bf95b5f3-20ee-11df-8edb-00163614dd83}\Shell - "" = AutoRun
O33 - MountPoints2\{bf95b5f3-20ee-11df-8edb-00163614dd83}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{bf95b5f3-20ee-11df-8edb-00163614dd83}\Shell\Explore\command - "" = E:\MS-DOS.com -- File not found
O33 - MountPoints2\{bf95b5f3-20ee-11df-8edb-00163614dd83}\Shell\Open\command - "" = E:\MS-DOS.com -- File not found
O33 - MountPoints2\{fa6984fe-32ba-11de-8bda-00163614dd83}\Shell\AutoRun\command - "" = E:\.\ShowModem.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2010/06/05 18:28:09 | 000,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: wave3 - C:\WINDOWS\System32\serwvdrv.dll (Microsoft Corporation)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (54338281256517632)
========== Files/Folders - Created Within 90 Days ==========
[2010/06/05 18:22:46 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\kagome.HOME\Recent
[2010/06/05 17:10:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kagome.HOME\Application Data\Malwarebytes
[2010/06/05 17:09:39 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/06/05 17:09:38 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/06/05 17:09:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010/06/05 17:09:37 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/06/05 15:08:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kagome.HOME\Local Settings\Application Data\AVG Security Toolbar
[2010/06/05 15:02:19 | 000,052,872 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgrkx86.sys
[2010/06/05 15:02:19 | 000,012,464 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2010/06/05 15:02:16 | 000,242,896 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys
[2010/06/05 15:02:08 | 000,216,200 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys
[2010/06/05 15:02:06 | 000,029,512 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys
[2010/06/05 15:01:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\Avg
[2010/06/05 15:01:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar
[2010/06/05 13:13:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2010/06/05 12:26:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010/06/05 12:24:11 | 000,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2010/06/05 12:11:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kagome.HOME\My Documents\Malware-Spyware-Cleaning-Guide-t2852_files
[2010/06/05 10:25:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kagome.HOME\Application Data\Pointstone
[2010/06/05 10:08:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Pointstone
[2010/06/05 07:59:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kagome.HOME\Application Data\Uniblue
[2010/05/17 14:17:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kagome.HOME\Local Settings\Application Data\Temp
[2010/05/17 14:16:47 | 000,000,000 | ---D | C] -- C:\Program Files\NOS
[2010/05/17 14:16:32 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2010/05/17 14:16:14 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Thunderbird
[2010/05/17 14:16:14 | 000,000,000 | ---D | C] -- C:\Program Files\MozBackup
[2010/05/17 14:15:59 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Motive
[2010/05/15 14:34:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2010/05/14 13:04:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kagome.HOME\Local Settings\Application Data\Google
[2010/05/12 22:13:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NOS
[2010/05/12 19:00:02 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox(2)
[2010/05/12 17:10:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kagome.HOME\Application Data\SUPERAntiSpyware.com
[2010/05/12 16:50:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2010/05/12 16:12:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kagome.HOME\My Documents\Downloads
[2010/05/12 15:27:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Motive
[2010/05/02 17:21:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PCSuite
[2010/05/02 17:21:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nokia
[2010/05/02 14:21:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kagome.HOME\My Documents\LimeWire
[2010/05/02 14:18:44 | 000,000,000 | ---D | C] -- C:\Program Files\Ask.com
[2010/05/02 07:55:31 | 024,184,872 | ---- | C] (Lime Wire LLC) -- C:\Documents and Settings\kagome.HOME\My Documents\LimeWireWin.exe
[2010/05/01 11:17:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\McAfee
[2010/04/28 09:57:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2010/04/26 08:26:45 | 000,018,816 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\pccsmcfd.sys
[2010/04/26 08:25:47 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution
[2010/04/25 17:38:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kagome.HOME\Local Settings\Application Data\Adobe
[2010/04/25 16:01:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kagome.HOME\Application Data\Nokia
[2010/04/24 20:26:51 | 000,000,000 | --SD | C] -- C:\Documents and Settings\kagome.HOME\UserData
[2010/04/21 22:36:04 | 000,000,000 | ---D | C] -- C:\Program Files\UnH Solutions
[2010/04/21 13:09:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kagome.HOME\Application Data\HP
[2010/04/15 18:12:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kagome.HOME\Application Data\HPAppData
[2010/04/15 16:56:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kagome.HOME\Application Data\Vivox
[2010/04/12 15:31:35 | 002,114,184 | ---- | C] (Facebook, Inc.) -- C:\Documents and Settings\kagome.HOME\My Documents\Install_Facebook_Plug-In_1.0.3.exe
[2010/04/04 13:33:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kagome.HOME\Application Data\TeamViewer
[2010/04/04 13:33:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kagome.HOME\temp
[2010/04/04 13:15:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\'Full Speed' Internet Booster + Performance Tests
[2010/04/04 13:14:59 | 000,000,000 | ---D | C] -- C:\Program Files\'Full Speed' Internet Booster + Performance Tests
[2010/03/22 10:15:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kagome.HOME\Bluetooth Software
[2010/03/22 10:15:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kagome.HOME\My Documents\Bluetooth Exchange Folder
[2010/03/20 16:43:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kagome.HOME\Local Settings\Application Data\HP
[2010/03/18 16:09:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kagome.HOME\My Documents\park-shin-hyes-wrote-poem-on-cyworld_files
[2010/03/14 16:41:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kagome.HOME\Application Data\Yahoo!
[1 C:\Documents and Settings\kagome.HOME\*.tmp files -> C:\Documents and Settings\kagome.HOME\*.tmp -> ]
========== Files - Modified Within 90 Days ==========
[2010/06/05 18:25:11 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/06/05 18:25:04 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/06/05 18:22:56 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\kagome.HOME\ntuser.ini
[2010/06/05 18:22:55 | 002,834,432 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\ntuser.dat
[2010/06/05 18:19:34 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\Local Settings\Application Data\prvlcl.dat
[2010/06/05 17:53:41 | 060,715,765 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2010/06/05 17:37:49 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/06/05 15:02:22 | 000,001,507 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\AVG 9.0.lnk
[2010/06/05 15:02:21 | 000,012,464 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2010/06/05 15:02:19 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgrkx86.sys
[2010/06/05 15:02:18 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys
[2010/06/05 15:02:09 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys
[2010/06/05 15:02:08 | 000,029,512 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys
[2010/06/05 15:02:06 | 000,113,461 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\iavichjw.avm
[2010/06/05 13:13:13 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/06/05 12:24:23 | 000,000,767 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk
[2010/06/05 12:24:17 | 000,000,592 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\Desktop\ERUNT.lnk
[2010/06/05 12:11:07 | 000,078,314 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\Malware-Spyware-Cleaning-Guide-t2852.html
[2010/06/05 09:20:45 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2010/06/04 22:31:17 | 000,018,432 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\victoria model sample computation(for ms estella).xls
[2010/06/03 15:21:41 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/06/02 08:09:00 | 000,108,032 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\new price list xevera mabalacat (revised).xls
[2010/06/02 07:59:23 | 000,038,400 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\new bacolor price list (single & townhouse).xls
[2010/06/01 23:23:14 | 000,001,511 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\Application Data\kalypte-user.ini
[2010/05/27 09:43:39 | 000,078,848 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\MY resume.doc
[2010/05/26 21:11:33 | 000,018,432 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\victoria model sample computation.xls
[2010/05/22 18:22:43 | 000,085,150 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\3350538788_d8435a670b.jpg
[2010/05/20 09:48:49 | 000,029,184 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\promo price for victoria model house.xls
[2010/05/18 20:52:05 | 001,411,042 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\Bellissima pricelist2.JPG
[2010/05/18 20:51:48 | 001,403,427 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\Bellissima pricelist1.JPG
[2010/05/18 20:36:56 | 000,509,952 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\hacienda royale lot price.doc
[2010/05/18 13:10:46 | 000,031,232 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\HERENCIA DE JULIETA1 sample computation.doc
[2010/05/15 12:28:31 | 000,034,329 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\victoria-pic.jpg
[2010/05/15 02:33:09 | 000,162,304 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\Frienship.ppt
[2010/05/12 16:52:35 | 000,000,521 | ---- | M] () -- C:\WINDOWS\win.ini
[2010/05/12 16:52:35 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010/05/11 14:19:46 | 000,042,182 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\wisepick-ipanema4.jpg
[2010/05/11 14:19:22 | 000,048,787 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\wisepick-ipanema3.jpg
[2010/05/11 14:19:01 | 000,068,447 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\wisepick-ipanema2.jpg
[2010/05/11 14:18:01 | 000,042,267 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\wisepick-ipanema.jpg
[2010/05/11 14:13:20 | 000,057,536 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\wisepick-hava.jpg
[2010/05/11 14:12:23 | 000,047,464 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\wisepick hava.jpg
[2010/05/11 14:08:47 | 000,045,424 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\wisepick ipanema.jpg
[2010/05/11 14:06:14 | 000,049,807 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\wisepic juicy flat.jpg
[2010/05/11 14:03:46 | 000,052,287 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\wisepick roxy pic.jpg
[2010/05/11 14:02:33 | 000,047,711 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\wisepick-bebe.jpg
[2010/05/11 14:00:21 | 000,042,588 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\wisepick-juicy.jpg
[2010/05/09 11:38:30 | 000,822,591 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\Desktop\screenshot.357.jpg
[2010/05/08 23:53:52 | 000,020,992 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\Our first duty.doc
[2010/05/08 13:41:30 | 000,144,254 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\xevera bacolor sample computation(pagibig-inhouse).JPG
[2010/05/08 13:34:38 | 000,062,976 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\Sameerah Copy of regular pricelist.xls
[2010/05/08 12:27:53 | 000,029,184 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\victoria model house for ms.shirly.xls
[2010/05/07 13:50:50 | 000,031,232 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\Copy of bacolor single detached townhouses pricelist-2.xls
[2010/05/07 13:42:17 | 000,016,896 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\xevera bacolor sample computation(pagibig).xls
[2010/05/06 14:46:27 | 000,145,408 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\Copy of Micaela Sample Computation.xls
[2010/05/06 14:05:23 | 000,026,624 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\promo price victoria model house.xls
[2010/05/02 17:22:17 | 000,001,763 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Nokia PC Suite.lnk
[2010/05/02 17:18:35 | 034,399,664 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\Nokia_PC_Suite_eng_web.exe
[2010/05/02 08:10:40 | 024,184,872 | ---- | M] (Lime Wire LLC) -- C:\Documents and Settings\kagome.HOME\My Documents\LimeWireWin.exe
[2010/04/30 11:22:44 | 000,000,238 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\bernardino de los santos.rtf
[2010/04/29 21:11:30 | 000,722,944 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\TOWNHOUSE B SECOND FLOOR.doc
[2010/04/29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/04/29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/04/29 00:42:27 | 000,262,144 | ---- | M] () -- C:\Documents and Settings\All Users\ntuser.dat
[2010/04/27 16:14:37 | 000,669,830 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\brentwood pricelist 10-15-10.JPG
[2010/04/27 16:14:29 | 000,458,703 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\brentwood pricelist 10-15-10 009.JPG
[2010/04/27 16:14:16 | 000,830,811 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\brentwood pricelist 10-15-10 008.JPG
[2010/04/27 16:14:08 | 000,705,584 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\brentwood pricelist 10-15-10 007.JPG
[2010/04/27 16:14:00 | 001,167,923 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\brentwood pricelist 10-15-10 006.JPG
[2010/04/27 16:13:53 | 001,089,566 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\brentwood pricelist 10-15-10 005.JPG
[2010/04/27 16:13:45 | 001,379,182 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\brentwood pricelist 10-15-10 004.JPG
[2010/04/27 16:13:38 | 000,946,135 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\brentwood pricelist 10-15-10 003.JPG
[2010/04/27 16:13:27 | 001,131,586 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\brentwood pricelist 10-15-10 002.JPG
[2010/04/27 16:13:18 | 001,302,593 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\brentwood pricelist 10-15-10 001.JPG
[2010/04/27 15:51:33 | 000,163,840 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\brokers accreditation(Brentwood).doc
[2010/04/27 10:14:30 | 000,001,512 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\Desktop\Uzzap.lnk
[2010/04/27 10:11:58 | 004,508,024 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\uzzap_1.0.18_i386.exe
[2010/04/25 20:48:28 | 000,583,067 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\hacienda and dizon estate model house.JPG
[2010/04/25 16:31:02 | 002,114,184 | ---- | M] (Facebook, Inc.) -- C:\Documents and Settings\kagome.HOME\My Documents\Install_Facebook_Plug-In_1.0.3.exe
[2010/04/24 17:27:51 | 001,068,544 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\Copy of SAMPLE COMPUTATION-anda jewels.xls
[2010/04/24 17:27:15 | 001,067,520 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\Copy of SAMPLE COMPUTATION-anda luxuria.xls
[2010/04/24 16:57:47 | 001,369,600 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\ANDALUSIA SAMPLE COMP. PICTURE-1.doc
[2010/04/24 16:29:30 | 000,379,392 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\HERENCIA DE JULIETA SAMPLE COMPUTATION.xls
[2010/04/21 23:01:51 | 000,030,208 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\Serena Sample computation.xls
[2010/04/21 22:23:24 | 000,044,462 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\expose.swf
[2010/04/21 22:13:44 | 000,044,462 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\xevera eco park.swf
[2010/04/21 22:13:11 | 000,044,462 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\xevera single detached vid.swf
[2010/04/21 18:16:13 | 000,133,632 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\xevera mabalacat and bacolor sample computation.xls
[2010/04/21 17:40:09 | 000,480,768 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\single detached mabalacat.doc
[2010/04/21 13:10:11 | 000,016,752 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010/04/19 08:29:57 | 000,136,704 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\xevera mabalacat (pagibig financing).xls
[2010/04/19 08:28:51 | 000,039,936 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\xevera mabalacat(in house).xls
[2010/04/18 13:42:47 | 000,072,720 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\InstallIMVU_435.0_st.exe
[2010/04/17 17:53:46 | 000,020,992 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\Kim Yoo Kyung.doc
[2010/04/17 16:18:38 | 000,020,992 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\Because im stupid by ss501.doc
[2010/04/17 12:31:02 | 000,040,869 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\mae kimi.jpg
[2010/04/15 16:32:32 | 000,072,728 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\InstallIMVU_433.52_st.exe
[2010/04/15 12:37:52 | 000,039,197 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\metrogate-angeles-location-map.jpg
[2010/04/15 12:37:42 | 000,049,439 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\metrogate-angeles-swimming-pool1.jpg
[2010/04/15 12:37:38 | 000,053,019 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\metrogate-angeles-childrens-playground1.jpg
[2010/04/15 12:37:32 | 000,056,321 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\metrogate-clubhouse-view-from-golf-driving-range.jpg
[2010/04/15 12:37:27 | 000,062,936 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\metrogate-angeles-view1.jpg
[2010/04/15 12:37:23 | 000,057,990 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\metrogate-clubhouse-view.jpg
[2010/04/15 12:37:13 | 000,056,338 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\metrogate-angeles-swimming-pool2.jpg
[2010/04/15 12:37:03 | 000,101,038 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\metrogateangeles pic.jpg
[2010/04/15 11:55:35 | 000,078,506 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\vicinitymap xevera mabalacat.jpg
[2010/04/15 11:52:28 | 000,068,724 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\4_church.jpg
[2010/04/15 11:51:59 | 000,060,022 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\1_fountain.jpg
[2010/04/15 11:51:54 | 000,081,745 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\2_amusement.jpg
[2010/04/15 11:51:39 | 000,070,668 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\3_commercial.jpg
[2010/04/07 10:45:56 | 000,433,152 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\Jang Geun 12.doc
[2010/04/07 10:17:24 | 000,130,560 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\Jang Geun 11.doc
[2010/04/04 13:31:48 | 002,822,656 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\Desktop\TeamViewer_Setup.exe
[2010/04/04 13:04:47 | 011,319,835 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\FullSpeedv3.6.1.exe
[2010/04/04 12:24:27 | 000,022,204 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\mae.jpg
[2010/03/31 23:07:58 | 000,008,503 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\pix farm.jpg
[2010/03/30 01:08:23 | 000,019,968 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\jgs09.doc
[2010/03/30 01:05:49 | 000,000,402 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\popup.asp.htm
[2010/03/29 16:28:41 | 000,040,448 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\jgs10.doc
[2010/03/29 16:24:25 | 000,083,968 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\jgs08.doc
[2010/03/29 16:23:01 | 000,075,776 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\jgs07.doc
[2010/03/29 16:19:21 | 000,043,008 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\jgs06.doc
[2010/03/29 16:13:43 | 000,045,056 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\jgs05.doc
[2010/03/29 16:11:25 | 000,059,904 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\jgs04.doc
[2010/03/29 16:08:40 | 000,035,840 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\jgs03.doc
[2010/03/29 16:06:29 | 000,222,720 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\jgs02.doc
[2010/03/29 16:05:50 | 000,189,440 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\jgs01.doc
[2010/03/29 15:56:18 | 000,083,968 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\PSH and JGS.doc
[2010/03/29 15:55:37 | 000,016,752 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\Application Data\GDIPFONTCACHEV1.DAT
[2010/03/21 04:16:46 | 000,023,808 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\aca2bc8f40edfec8f11f3638-233599.jpg
[2010/03/20 04:07:11 | 000,020,480 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\PSH poem.doc
[2010/03/18 16:20:57 | 000,423,182 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\park-shin-hyes-wrote-poem-on-cyworld.html
[2010/03/14 17:42:50 | 000,262,144 | ---- | M] () -- C:\ntuser.dat
[2010/03/14 17:33:13 | 000,000,802 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Yahoo! Messenger.lnk
[2010/03/08 20:37:01 | 000,016,896 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\Lot only sample computation.xls
[2010/03/08 12:47:24 | 000,020,480 | ---- | M] () -- C:\Documents and Settings\kagome.HOME\My Documents\Bakit di magawang limutin ka.doc
[1 C:\Documents and Settings\kagome.HOME\*.tmp files -> C:\Documents and Settings\kagome.HOME\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010/06/05 17:09:48 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/06/05 15:02:22 | 000,001,507 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\AVG 9.0.lnk
[2010/06/05 15:02:06 | 000,113,461 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\iavichjw.avm
[2010/06/05 15:01:50 | 060,715,765 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2010/06/05 12:24:23 | 000,000,767 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk
[2010/06/05 12:24:17 | 000,000,592 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\Desktop\ERUNT.lnk
[2010/06/05 12:11:03 | 000,078,314 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\Malware-Spyware-Cleaning-Guide-t2852.html
[2010/06/05 08:51:45 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2010/06/04 22:31:17 | 000,018,432 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\victoria model sample computation(for ms estella).xls
[2010/06/03 09:58:36 | 002,834,432 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\ntuser.dat
[2010/06/02 08:09:00 | 000,108,032 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\new price list xevera mabalacat (revised).xls
[2010/06/02 07:59:22 | 000,038,400 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\new bacolor price list (single & townhouse).xls
[2010/05/27 09:43:39 | 000,078,848 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\MY resume.doc
[2010/05/22 18:22:31 | 000,085,150 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\3350538788_d8435a670b.jpg
[2010/05/20 09:48:48 | 000,029,184 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\promo price for victoria model house.xls
[2010/05/18 20:52:05 | 001,411,042 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\Bellissima pricelist2.JPG
[2010/05/18 20:51:48 | 001,403,427 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\Bellissima pricelist1.JPG
[2010/05/18 20:36:55 | 000,509,952 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\hacienda royale lot price.doc
[2010/05/18 13:10:45 | 000,031,232 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\HERENCIA DE JULIETA1 sample computation.doc
[2010/05/15 12:28:31 | 000,034,329 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\victoria-pic.jpg
[2010/05/15 02:33:09 | 000,162,304 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\Frienship.ppt
[2010/05/11 14:19:35 | 000,042,182 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\wisepick-ipanema4.jpg
[2010/05/11 14:19:20 | 000,048,787 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\wisepick-ipanema3.jpg
[2010/05/11 14:18:59 | 000,068,447 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\wisepick-ipanema2.jpg
[2010/05/11 14:18:00 | 000,042,267 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\wisepick-ipanema.jpg
[2010/05/11 14:13:20 | 000,057,536 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\wisepick-hava.jpg
[2010/05/11 14:12:23 | 000,047,464 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\wisepick hava.jpg
[2010/05/11 14:08:47 | 000,045,424 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\wisepick ipanema.jpg
[2010/05/11 14:06:13 | 000,049,807 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\wisepic juicy flat.jpg
[2010/05/11 14:03:46 | 000,052,287 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\wisepick roxy pic.jpg
[2010/05/11 14:02:32 | 000,047,711 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\wisepick-bebe.jpg
[2010/05/11 14:00:19 | 000,042,588 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\wisepick-juicy.jpg
[2010/05/09 11:38:28 | 000,822,591 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\Desktop\screenshot.357.jpg
[2010/05/08 23:50:49 | 000,020,992 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\Our first duty.doc
[2010/05/08 13:41:30 | 000,144,254 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\xevera bacolor sample computation(pagibig-inhouse).JPG
[2010/05/08 13:34:38 | 000,062,976 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\Sameerah Copy of regular pricelist.xls
[2010/05/07 13:50:49 | 000,031,232 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\Copy of bacolor single detached townhouses pricelist-2.xls
[2010/05/06 14:10:05 | 000,029,184 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\victoria model house for ms.shirly.xls
[2010/05/06 14:05:23 | 000,026,624 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\promo price victoria model house.xls
[2010/05/02 17:22:16 | 000,001,763 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Nokia PC Suite.lnk
[2010/05/02 15:29:35 | 034,399,664 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\Nokia_PC_Suite_eng_web.exe
[2010/04/30 11:22:44 | 000,000,238 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\bernardino de los santos.rtf
[2010/04/29 21:11:29 | 000,722,944 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\TOWNHOUSE B SECOND FLOOR.doc
[2010/04/29 00:42:26 | 000,262,144 | ---- | C] () -- C:\Documents and Settings\All Users\ntuser.dat
[2010/04/29 00:42:26 | 000,001,024 | -H-- | C] () -- C:\Documents and Settings\All Users\ntuser.dat.LOG
[2010/04/27 16:14:37 | 000,669,830 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\brentwood pricelist 10-15-10.JPG
[2010/04/27 16:14:29 | 000,458,703 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\brentwood pricelist 10-15-10 009.JPG
[2010/04/27 16:14:15 | 000,830,811 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\brentwood pricelist 10-15-10 008.JPG
[2010/04/27 16:14:07 | 000,705,584 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\brentwood pricelist 10-15-10 007.JPG
[2010/04/27 16:13:59 | 001,167,923 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\brentwood pricelist 10-15-10 006.JPG
[2010/04/27 16:13:52 | 001,089,566 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\brentwood pricelist 10-15-10 005.JPG
[2010/04/27 16:13:44 | 001,379,182 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\brentwood pricelist 10-15-10 004.JPG
[2010/04/27 16:13:37 | 000,946,135 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\brentwood pricelist 10-15-10 003.JPG
[2010/04/27 16:13:27 | 001,131,586 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\brentwood pricelist 10-15-10 002.JPG
[2010/04/27 16:13:18 | 001,302,593 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\brentwood pricelist 10-15-10 001.JPG
[2010/04/27 15:48:23 | 000,163,840 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\brokers accreditation(Brentwood).doc
[2010/04/27 10:14:30 | 000,001,512 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\Desktop\Uzzap.lnk
[2010/04/25 20:48:28 | 000,583,067 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\hacienda and dizon estate model house.JPG
[2010/04/24 17:27:50 | 001,068,544 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\Copy of SAMPLE COMPUTATION-anda jewels.xls
[2010/04/24 17:27:14 | 001,067,520 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\Copy of SAMPLE COMPUTATION-anda luxuria.xls
[2010/04/24 16:57:46 | 001,369,600 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\ANDALUSIA SAMPLE COMP. PICTURE-1.doc
[2010/04/24 16:29:30 | 000,379,392 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\HERENCIA DE JULIETA SAMPLE COMPUTATION.xls
[2010/04/21 22:23:24 | 000,044,462 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\expose.swf
[2010/04/21 22:13:44 | 000,044,462 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\xevera eco park.swf
[2010/04/21 22:13:11 | 000,044,462 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\xevera single detached vid.swf
[2010/04/21 18:00:40 | 000,133,632 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\xevera mabalacat and bacolor sample computation.xls
[2010/04/21 17:40:07 | 000,480,768 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\single detached mabalacat.doc
[2010/04/19 08:29:57 | 000,136,704 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\xevera mabalacat (pagibig financing).xls
[2010/04/19 08:28:50 | 000,039,936 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\xevera mabalacat(in house).xls
[2010/04/18 13:42:46 | 000,072,720 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\InstallIMVU_435.0_st.exe
[2010/04/17 17:53:45 | 000,020,992 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\Kim Yoo Kyung.doc
[2010/04/17 16:18:37 | 000,020,992 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\Because im stupid by ss501.doc
[2010/04/17 12:31:00 | 000,040,869 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\mae kimi.jpg
[2010/04/15 16:32:30 | 000,072,728 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\InstallIMVU_433.52_st.exe
[2010/04/15 12:37:52 | 000,039,197 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\metrogate-angeles-location-map.jpg
[2010/04/15 12:37:41 | 000,049,439 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\metrogate-angeles-swimming-pool1.jpg
[2010/04/15 12:37:38 | 000,053,019 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\metrogate-angeles-childrens-playground1.jpg
[2010/04/15 12:37:32 | 000,056,321 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\metrogate-clubhouse-view-from-golf-driving-range.jpg
[2010/04/15 12:37:26 | 000,062,936 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\metrogate-angeles-view1.jpg
[2010/04/15 12:37:22 | 000,057,990 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\metrogate-clubhouse-view.jpg
[2010/04/15 12:37:13 | 000,056,338 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\metrogate-angeles-swimming-pool2.jpg
[2010/04/15 12:37:02 | 000,101,038 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\metrogateangeles pic.jpg
[2010/04/15 11:55:34 | 000,078,506 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\vicinitymap xevera mabalacat.jpg
[2010/04/15 11:52:27 | 000,068,724 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\4_church.jpg
[2010/04/15 11:51:48 | 000,060,022 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\1_fountain.jpg
[2010/04/15 11:51:43 | 000,081,745 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\2_amusement.jpg
[2010/04/15 11:51:36 | 000,070,668 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\3_commercial.jpg
[2010/04/07 10:45:55 | 000,433,152 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\Jang Geun 12.doc
[2010/04/07 10:17:24 | 000,130,560 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\Jang Geun 11.doc
[2010/04/04 13:27:24 | 002,822,656 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\Desktop\TeamViewer_Setup.exe
[2010/04/04 12:57:13 | 011,319,835 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\FullSpeedv3.6.1.exe
[2010/04/04 12:24:15 | 000,022,204 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\mae.jpg
[2010/03/31 23:07:46 | 000,008,503 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\pix farm.jpg
[2010/03/30 01:05:47 | 000,000,402 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\popup.asp.htm
[2010/03/29 16:28:41 | 000,040,448 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\jgs10.doc
[2010/03/29 16:26:56 | 000,019,968 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\jgs09.doc
[2010/03/29 16:24:25 | 000,083,968 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\jgs08.doc
[2010/03/29 16:23:01 | 000,075,776 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\jgs07.doc
[2010/03/29 16:19:21 | 000,043,008 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\jgs06.doc
[2010/03/29 16:13:43 | 000,045,056 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\jgs05.doc
[2010/03/29 16:11:25 | 000,059,904 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\jgs04.doc
[2010/03/29 16:08:39 | 000,035,840 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\jgs03.doc
[2010/03/29 16:06:29 | 000,222,720 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\jgs02.doc
[2010/03/29 16:05:50 | 000,189,440 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\jgs01.doc
[2010/03/29 15:56:17 | 000,083,968 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\PSH and JGS.doc
[2010/03/27 23:35:44 | 000,016,896 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\xevera bacolor sample computation(pagibig).xls
[2010/03/23 00:36:11 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/03/21 04:16:41 | 000,023,808 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\aca2bc8f40edfec8f11f3638-233599.jpg
[2010/03/18 16:20:57 | 000,423,182 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\park-shin-hyes-wrote-poem-on-cyworld.html
[2010/03/18 16:10:35 | 000,020,480 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\PSH poem.doc
[2010/03/14 17:42:50 | 000,262,144 | ---- | C] () -- C:\ntuser.dat
[2010/03/14 17:33:12 | 000,000,802 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Yahoo! Messenger.lnk
[2010/03/08 18:49:57 | 000,016,896 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\Lot only sample computation.xls
[2010/03/08 12:47:23 | 000,020,480 | ---- | C] () -- C:\Documents and Settings\kagome.HOME\My Documents\Bakit di magawang limutin ka.doc
[2009/04/13 07:15:05 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009/01/31 12:35:43 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009/01/31 12:11:10 | 000,000,000 | ---- | C] () -- C:\WINDOWS\NT.INI
[2005/12/01 21:26:21 | 000,000,114 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2005/11/22 15:49:22 | 000,394,240 | ---- | C] () -- C:\WINDOWS\System32\HMTCD.dll
[2005/08/17 05:56:16 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\btprn2k.dll
[2004/08/04 09:26:44 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll
[2002/05/16 15:29:04 | 000,000,607 | ---- | C] () -- C:\WINDOWS\System32\BTNeighborhood.dll.manifest
[2001/11/24 10:18:00 | 000,000,597 | ---- | C] () -- C:\WINDOWS\System32\btcss.dll.manifest
[2001/11/15 05:56:00 | 001,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll
[2001/08/24 01:00:00 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\CopyToSendTo.dll
========== LOP Check ==========
[2010/06/05 15:01:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar
[2010/06/05 14:58:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\avg9
[2010/04/26 07:55:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Installations
[2009/05/27 03:55:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Suite
[2010/02/26 15:23:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kagome.HOME\Application Data\kalypte-drafts
[2010/06/01 15:13:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kagome.HOME\Application Data\kalypte-msg
[2010/05/05 19:11:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kagome.HOME\Application Data\kalypte-user-pics
[2010/05/02 17:25:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kagome.HOME\Application Data\Nokia
[2010/04/25 16:03:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kagome.HOME\Application Data\PC Suite
[2010/06/05 10:25:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kagome.HOME\Application Data\Pointstone
[2010/04/04 13:33:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kagome.HOME\Application Data\TeamViewer
[2010/02/23 11:59:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kagome.HOME\Application Data\Thunderbird
[2010/06/05 09:49:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kagome.HOME\Application Data\Uniblue
[2010/04/15 16:56:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kagome.HOME\Application Data\Vivox
========== Purity Check ==========
========== Custom Scans ==========
< %SYSTEMDRIVE%\*.* >
[2009/12/17 13:09:33 | 000,056,711 | ---- | M] () -- C:\02accent jam.htm
[2009/01/31 11:59:39 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2009/01/31 11:50:52 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2009/01/31 11:59:39 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2009/12/17 12:40:37 | 000,014,987 | ---- | M] () -- C:\ConvSkills01 jam.htm
[2009/12/17 12:39:35 | 000,014,450 | ---- | M] () -- C:\ConvSkills06 jam.htm
[2009/12/17 11:41:27 | 000,014,390 | ---- | M] () -- C:\ConvSkills06.html
[2009/12/17 12:39:54 | 000,014,515 | ---- | M] () -- C:\ConvSkills07 jam.htm
[2009/12/17 12:58:50 | 000,013,689 | ---- | M] () -- C:\first-step-speak-english jam.htm
[2009/12/17 12:43:40 | 000,017,194 | ---- | M] () -- C:\Idioms01 jam.htm
[2009/12/17 12:43:20 | 000,015,177 | ---- | M] () -- C:\Idioms02 jam.htm
[2009/12/17 13:07:17 | 000,069,747 | ---- | M] () -- C:\improvespeakingpage jam.htm
[2009/12/28 13:24:09 | 000,000,187 | ---- | M] () -- C:\index.htm
[2009/12/28 12:51:52 | 000,046,385 | ---- | M] () -- C:\insomnia-lyrics.html
[2009/01/31 11:59:39 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2009/03/31 03:27:31 | 000,000,006 | ---- | M] () -- C:\ISACER.ID
[2009/12/17 17:39:20 | 000,199,432 | ---- | M] () -- C:\jam 18.htm
[2009/12/17 11:40:01 | 000,010,285 | ---- | M] () -- C:\jam qoute.htm
[2009/12/17 13:13:02 | 000,085,284 | ---- | M] () -- C:\JAM.htm
[2009/12/17 11:28:21 | 000,010,302 | ---- | M] () -- C:\Joke01.html
[2009/12/17 11:27:49 | 000,009,612 | ---- | M] () -- C:\Joke02.html
[2009/12/17 11:26:49 | 000,008,489 | ---- | M] () -- C:\Joke39.html
[2007/11/20 21:37:17 | 000,345,088 | ---- | M] (BySoft) -- C:\MemoryManager.exe
[2009/01/31 11:59:39 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2009/12/28 12:49:05 | 000,079,285 | ---- | M] () -- C:\nobody lyrics.htm
[2004/08/04 07:08:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2004/08/04 07:29:34 | 000,250,032 | RHS- | M] () -- C:\ntldr
[2010/03/14 17:42:50 | 000,262,144 | ---- | M] () -- C:\ntuser.dat
[2010/03/14 17:42:51 | 000,001,024 | -H-- | M] () -- C:\ntuser.dat.LOG
[2010/06/05 18:24:58 | 792,723,456 | -HS- | M] () -- C:\pagefile.sys
[2009/12/13 11:28:16 | 000,173,990 | ---- | M] () -- C:\PBB Double Up8.htm
[2009/12/17 12:38:50 | 000,011,025 | ---- | M] () -- C:\QuoteMoney jam.htm
[2009/12/17 11:39:07 | 000,011,283 | ---- | M] () -- C:\QuoteSuccess JAM.htm
[2009/12/17 12:38:25 | 000,011,205 | ---- | M] () -- C:\QuoteSuccess.html
[2009/12/17 12:39:11 | 000,010,333 | ---- | M] () -- C:\QuoteWork jam.htm
[2009/12/17 18:58:56 | 000,020,044 | ---- | M] () -- C:\results.aspx.xhtml
[2009/12/17 11:20:08 | 000,024,370 | ---- | M] () -- C:\SpeakingRules.aspx.htm
[2009/12/28 13:04:17 | 000,029,802 | ---- | M] () -- C:\star_ng_pasko.html
[2009/12/17 13:03:45 | 000,054,161 | ---- | M] () -- C:\tips-speaking jam.htm
[2009/12/17 12:56:42 | 000,014,960 | ---- | M] () -- C:\tips-speaking-english-fluently jam.htm
[2009/12/17 12:44:02 | 000,010,660 | ---- | M] () -- C:\Vocab200 jam.htm
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\System32\config\*.sav >
[2009/01/31 03:41:51 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2009/01/31 03:41:51 | 000,638,976 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2009/01/31 03:41:51 | 000,868,352 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
< %systemroot%\system32\user32.dll /md5 >
[2005/10/14 05:36:14 | 000,577,024 | ---- | M] (Microsoft Corporation) MD5=1800F293BCCC8EDE8A70E12B88D80036 -- C:\WINDOWS\system32\user32.dll
< %systemroot%\system32\ws2_32.dll /md5 >
[2004/08/04 09:26:48 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=2ED0B7F12A60F90092081C50FA0EC2B2 -- C:\WINDOWS\system32\ws2_32.dll
< End of report >
Sign In
Create Account
