[code] WinPFind35 logfile created on: 2/21/2008 1:12:39 PM WinPFind35U Version 1.0.0.0 Folder = C:\Documents and Settings\Owner\Desktop\fixing tims shite\WinPFind35u Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 7.0.5730.11) Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 502.73 Mb Total Physical Memory | 220.62 Mb Available Physical Memory | 43.88% Memory free 1.20 Gb Paging File | 0.98 Gb Available in Paging File | 81.68% Paging File free Paging file location(s): C:\pagefile.sys 756 1512; %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 70.89 Gb Total Space | 39.42 Gb Free Space | 55.61% Space Free | Partition Type: NTFS Drive D: | 3.62 Gb Total Space | 1.66 Gb Free Space | 45.86% Space Free | Partition Type: FAT32 E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: YOUR-05951D9DC8 Current User Name: Owner Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user [Processes - Non-Microsoft Only] igfxtray.exe -> %SystemRoot%\system32\igfxtray.exe -> Intel Corporation [Ver = 3.0.0.2331 | Size = 155648 bytes | Modified Date = 1/29/2004 9:13:24 PM | Attr = ] hkcmd.exe -> %SystemRoot%\system32\hkcmd.exe -> Intel Corporation [Ver = 3.0.0.2331 | Size = 118784 bytes | Modified Date = 1/29/2004 9:13:00 PM | Attr = ] pdvdserv.exe -> %ProgramFiles%\CyberLink\PowerDVD\PDVDServ.exe -> Cyberlink Corp. [Ver = 5.00.0000 | Size = 32768 bytes | Modified Date = 10/31/2003 10:42:40 PM | Attr = ] shwiconem.exe -> %ProgramFiles%\Digital Media Reader\shwiconEM.exe -> Alcor Micro, Corp. [Ver = 1, 4, 0, 8 | Size = 135168 bytes | Modified Date = 10/18/2004 5:05:12 PM | Attr = ] jusched.exe -> %ProgramFiles%\Java\jre1.6.0_03\bin\jusched.exe -> Sun Microsystems, Inc. [Ver = 6.0.30.5 | Size = 132496 bytes | Modified Date = 9/25/2007 1:11:35 AM | Attr = ] e_fatiada.exe -> %SystemRoot%\system32\spool\drivers\w32x86\3\E_FATIADA.EXE -> SEIKO EPSON CORPORATION [Ver = 4.00 | Size = 98304 bytes | Modified Date = 2/1/2005 10:00:00 PM | Attr = ] applemobiledeviceservice.exe -> %CommonProgramFiles%\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -> Apple, Inc. [Ver = 1, 14, 0, 0 | Size = 110592 bytes | Modified Date = 1/15/2008 2:40:04 AM | Attr = ] avgamsvr.exe -> %ProgramFiles%\Grisoft\AVG7\avgamsvr.exe -> GRISOFT, s.r.o. [Ver = 7.5.0.496 | Size = 418816 bytes | Modified Date = 2/15/2008 1:13:17 PM | Attr = ] avgupsvc.exe -> %ProgramFiles%\Grisoft\AVG7\avgupsvc.exe -> GRISOFT, s.r.o. [Ver = 7.5.0.420 | Size = 49664 bytes | Modified Date = 2/15/2008 1:13:32 PM | Attr = ] avgemc.exe -> %ProgramFiles%\Grisoft\AVG7\avgemc.exe -> GRISOFT, s.r.o. [Ver = 7.5.0.510 | Size = 406528 bytes | Modified Date = 2/15/2008 1:13:19 PM | Attr = ] prismxl.sys -> %CommonProgramFiles%\New Boundary\PrismXL\PRISMXL.SYS -> New Boundary Technologies, Inc. [Ver = 6.0.1.22 | Size = 172032 bytes | Modified Date = 11/15/2004 6:09:20 PM | Attr = ] winpfind35u.exe -> %UserProfile%\Desktop\fixing tims shite\WinPFind35u\WinPFind35U.exe -> OldTimer Tools [Ver = 1.0.0.0 | Size = 309760 bytes | Modified Date = 2/20/2008 11:36:44 AM | Attr = ] [Win32 Services - Non-Microsoft Only] (Apple Mobile Device) Apple Mobile Device [Win32_Own | Auto | Running] -> %CommonProgramFiles%\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -> Apple, Inc. [Ver = 1, 14, 0, 0 | Size = 110592 bytes | Modified Date = 1/15/2008 2:40:04 AM | Attr = ] (Avg7Alrt) AVG7 Alert Manager Server [Win32_Own | Auto | Running] -> %ProgramFiles%\Grisoft\AVG7\avgamsvr.exe -> GRISOFT, s.r.o. [Ver = 7.5.0.496 | Size = 418816 bytes | Modified Date = 2/15/2008 1:13:17 PM | Attr = ] (Avg7UpdSvc) AVG7 Update Service [Win32_Own | Auto | Running] -> %ProgramFiles%\Grisoft\AVG7\avgupsvc.exe -> GRISOFT, s.r.o. [Ver = 7.5.0.420 | Size = 49664 bytes | Modified Date = 2/15/2008 1:13:32 PM | Attr = ] (AVGEMS) AVG E-mail Scanner [Win32_Own | Auto | Running] -> %ProgramFiles%\Grisoft\AVG7\avgemc.exe -> GRISOFT, s.r.o. [Ver = 7.5.0.510 | Size = 406528 bytes | Modified Date = 2/15/2008 1:13:19 PM | Attr = ] (dmadmin) Logical Disk Manager Administrative Service [Win32_Shared | On_Demand | Stopped] -> %SystemRoot%\system32\dmadmin.exe -> Microsoft Corp., Veritas Software [Ver = 2600.2180.503.0 | Size = 224768 bytes | Modified Date = 8/4/2004 2:00:00 PM | Attr = ] (iPod Service) iPod Service [Win32_Own | On_Demand | Stopped] -> %ProgramFiles%\iPod\bin\iPodService.exe -> Apple Inc. [Ver = 7.3.0.54 | Size = 501048 bytes | Modified Date = 6/28/2007 8:14:32 AM | Attr = ] (PrismXL) PrismXL [Win32_Own | Auto | Running] -> %CommonProgramFiles%\New Boundary\PrismXL\PRISMXL.SYS -> New Boundary Technologies, Inc. [Ver = 6.0.1.22 | Size = 172032 bytes | Modified Date = 11/15/2004 6:09:20 PM | Attr = ] [Driver Services - Non-Microsoft Only] (Abiosdsk) Abiosdsk [Kernel | Disabled | Stopped] -> -> File not found (aeaudio) aeaudio [Kernel | On_Demand | Running] -> %SystemRoot%\system32\drivers\aeaudio.sys -> Andrea Electronics Corporation [Ver = 1.0.0.2 (STUB) | Size = 4816 bytes | Modified Date = 4/1/2002 2:15:00 PM | Attr = ] (AliIde) AliIde [Kernel | Boot | Running] -> %SystemRoot%\system32\drivers\aliide.sys -> Acer Laboratories Inc. [Ver = 1.20 | Size = 5248 bytes | Modified Date = 8/17/2001 10:51:56 PM | Attr = ] (amdagp) AMD AGP Bus Filter Driver [Kernel | Boot | Running] -> %SystemRoot%\system32\drivers\AMDAGP.SYS -> Advanced Micro Devices, Inc. [Ver = 5.00 (xpsp_sp2_rtm.040803-2158) | Size = 43008 bytes | Modified Date = 8/4/2004 8:07:44 AM | Attr = ] (asc) asc [Kernel | Boot | Running] -> %SystemRoot%\system32\drivers\asc.sys -> Advanced System Products, Inc. [Ver = 2.9I-MS (XPClient.010817-1148) | Size = 26496 bytes | Modified Date = 8/17/2001 10:52:00 PM | Attr = ] (asc3550) asc3550 [Kernel | Boot | Running] -> %SystemRoot%\system32\drivers\asc3550.sys -> Advanced System Products, Inc. [Ver = 3.1E-MS (XPClient.010817-1148) | Size = 14848 bytes | Modified Date = 8/17/2001 10:51:58 PM | Attr = ] (ASCTRM) ASCTRM [Kernel | Auto | Running] -> %SystemRoot%\system32\drivers\asctrm.sys -> Windows (R) 2000 DDK provider [Ver = 5.00.2195.1 | Size = 8552 bytes | Modified Date = 11/15/2004 6:06:50 PM | Attr = ] (Atdisk) Atdisk [Kernel | Disabled | Stopped] -> -> File not found (Avg7Core) AVG7 Kernel [Kernel | System | Running] -> %SystemRoot%\system32\drivers\avg7core.sys -> GRISOFT, s.r.o. [Ver = 7.5.0.498 | Size = 821856 bytes | Modified Date = 2/15/2008 1:13:33 PM | Attr = ] (Avg7RsW) AVG7 Wrap Driver [Kernel | System | Running] -> %SystemRoot%\system32\drivers\avg7rsw.sys -> GRISOFT, s.r.o. [Ver = 7,0,0,340 | Size = 4224 bytes | Modified Date = 2/15/2008 1:13:39 PM | Attr = ] (Avg7RsXP) AVG7 Resident Driver XP [Kernel | System | Running] -> %SystemRoot%\system32\drivers\avg7rsxp.sys -> GRISOFT, s.r.o. [Ver = 7.5.0.442 | Size = 27776 bytes | Modified Date = 2/15/2008 1:13:39 PM | Attr = ] (AvgClean) AVG7 Clean Driver [Kernel | System | Running] -> %SystemRoot%\system32\drivers\avgclean.sys -> GRISOFT, s.r.o. [Ver = 1.0.0.14 | Size = 10760 bytes | Modified Date = 2/15/2008 1:13:40 PM | Attr = ] (AvgTdi) AVG Network Redirector [Kernel | Auto | Running] -> %SystemRoot%\system32\drivers\avgtdi.sys -> GRISOFT, s.r.o. [Ver = 7,0,0,346 | Size = 4960 bytes | Modified Date = 2/15/2008 1:13:40 PM | Attr = ] (Changer) Changer [Kernel | System | Stopped] -> -> File not found (CmdIde) CmdIde [Kernel | Boot | Running] -> %SystemRoot%\system32\drivers\cmdide.sys -> CMD Technology, Inc. [Ver = 2.0.7 (XPClient.010817-1148) | Size = 6656 bytes | Modified Date = 8/17/2001 10:51:54 PM | Attr = ] (dac2w2k) dac2w2k [Kernel | Boot | Running] -> %SystemRoot%\system32\drivers\dac2w2k.sys -> Mylex Corporation [Ver = 6.00-21 (XPClient.010817-1148) | Size = 179584 bytes | Modified Date = 8/17/2001 10:52:16 PM | Attr = ] (dmboot) dmboot [Kernel | Disabled | Stopped] -> %SystemRoot%\system32\drivers\dmboot.sys -> Microsoft Corp., Veritas Software [Ver = 2600.2180.503.0 | Size = 799744 bytes | Modified Date = 8/4/2004 2:00:00 PM | Attr = ] (dmio) dmio [Kernel | Disabled | Stopped] -> %SystemRoot%\system32\drivers\dmio.sys -> Microsoft Corp., Veritas Software [Ver = 2600.2180.503.0 | Size = 153344 bytes | Modified Date = 8/4/2004 2:00:00 PM | Attr = ] (dmload) dmload [Kernel | Disabled | Stopped] -> %SystemRoot%\system32\drivers\dmload.sys -> Microsoft Corp., Veritas Software. [Ver = 2600.0.503.0 | Size = 5888 bytes | Modified Date = 8/4/2004 2:00:00 PM | Attr = ] (E100B) Intel(R) PRO Adapter Driver [Kernel | On_Demand | Running] -> %SystemRoot%\system32\drivers\e100b325.sys -> Intel Corporation [Ver = 7.1.12.0 built by: WinDDK | Size = 154112 bytes | Modified Date = 2/10/2004 4:49:14 PM | Attr = ] (GEARAspiWDM) GEAR CDRom Filter [Kernel | On_Demand | Running] -> %SystemRoot%\system32\drivers\GEARAspiWDM.sys -> GEAR Software Inc. [Ver = 2.0.6.1 | Size = 15664 bytes | Modified Date = 9/19/2006 3:44:04 PM | Attr = ] (HSFHWBS2) HSFHWBS2 [Kernel | On_Demand | Running] -> %SystemRoot%\system32\drivers\HSFHWBS2.sys -> Conexant Systems, Inc. [Ver = 7.12.09 | Size = 220032 bytes | Modified Date = 6/17/2004 5:56:22 PM | Attr = ] (HSF_DP) HSF_DP [Kernel | On_Demand | Running] -> %SystemRoot%\system32\drivers\HSF_DP.sys -> Conexant Systems, Inc. [Ver = 7.12.09 | Size = 1041536 bytes | Modified Date = 6/17/2004 5:55:04 PM | Attr = ] (ialm) ialm [Kernel | On_Demand | Running] -> %SystemRoot%\system32\drivers\ialmnt5.sys -> Intel Corporation [Ver = 6.14.10.3722 | Size = 95579 bytes | Modified Date = 1/29/2004 9:13:06 PM | Attr = ] (lbrtfdc) lbrtfdc [Kernel | System | Stopped] -> -> File not found (LVUSBSta) Logitech USB Monitor Filter [Kernel | On_Demand | Stopped] -> system32\drivers\lvusbsta.sys -> File not found (mdmxsdk) mdmxsdk [Kernel | Auto | Running] -> %SystemRoot%\system32\drivers\mdmxsdk.sys -> Conexant [Ver = 1.0.2.006 | Size = 13059 bytes | Modified Date = 3/17/2004 2:04:14 PM | Attr = ] (mraid35x) mraid35x [Kernel | Boot | Running] -> %SystemRoot%\system32\drivers\mraid35x.sys -> American Megatrends Inc. [Ver = 6.19 (XPClient.010817-1148) | Size = 17280 bytes | Modified Date = 8/17/2001 10:52:12 PM | Attr = ] (mxnic) Macronix MX987xx Family Fast Ethernet NT Driver [Kernel | On_Demand | Stopped] -> %SystemRoot%\system32\drivers\mxnic.sys -> Macronix International Co., Ltd. [Ver = 2.12 (XPClient.010817-1148) | Size = 19968 bytes | Modified Date = 8/17/2001 3:49:32 PM | Attr = ] (nv) nv [Kernel | On_Demand | Stopped] -> %SystemRoot%\system32\drivers\nv4_mini.sys -> NVIDIA Corporation [Ver = 6.14.10.5673 | Size = 1897408 bytes | Modified Date = 8/4/2004 12:29:56 AM | Attr = ] (PCIDump) PCIDump [Kernel | System | Stopped] -> -> File not found (PDCOMP) PDCOMP [Kernel | On_Demand | Stopped] -> -> File not found (PDFRAME) PDFRAME [Kernel | On_Demand | Stopped] -> -> File not found (PDRELI) PDRELI [Kernel | On_Demand | Stopped] -> -> File not found (PDRFRAME) PDRFRAME [Kernel | On_Demand | Stopped] -> -> File not found (pfc) Padus ASPI Shell [Kernel | On_Demand | Running] -> %SystemRoot%\system32\drivers\pfc.sys -> Padus, Inc. [Ver = 2, 5, 0, 204 | Size = 21248 bytes | Modified Date = 9/19/2003 3:45:48 PM | Attr = ] (Ptilink) Direct Parallel Link Driver [Kernel | On_Demand | Running] -> %SystemRoot%\system32\drivers\ptilink.sys -> Parallel Technologies, Inc. [Ver = 1.10 (XPClient.010817-1148) | Size = 17792 bytes | Modified Date = 8/4/2004 2:00:00 PM | Attr = ] (PxHelp20) PxHelp20 [Kernel | Boot | Running] -> %SystemRoot%\system32\drivers\PxHelp20.sys -> Sonic Solutions [Ver = 3.00.56a | Size = 43528 bytes | Modified Date = 7/26/2007 6:06:18 PM | Attr = ] (QCMerced) Logitech QuickCam Communicate [Kernel | On_Demand | Stopped] -> system32\DRIVERS\LVCM.sys -> File not found (ql1080) ql1080 [Kernel | Boot | Running] -> %SystemRoot%\system32\drivers\ql1080.sys -> QLogic Corporation [Ver = 3.04 | Size = 40320 bytes | Modified Date = 8/17/2001 10:52:20 PM | Attr = ] (ql12160) ql12160 [Kernel | Boot | Running] -> %SystemRoot%\system32\drivers\ql12160.sys -> QLogic Corporation [Ver = 7.13.02 (W64) | Size = 45312 bytes | Modified Date = 8/17/2001 10:52:20 PM | Attr = ] (ql1280) ql1280 [Kernel | Boot | Running] -> %SystemRoot%\system32\drivers\ql1280.sys -> QLogic Corporation [Ver = 7.13.01 (W2K) | Size = 49024 bytes | Modified Date = 8/17/2001 10:52:18 PM | Attr = ] (SbcpHid) SbcpHid [Kernel | Auto | Running] -> %SystemRoot%\system32\drivers\SbcpHid.sys -> [Ver = 5,00,21,0 | Size = 38176 bytes | Modified Date = 2/23/2001 12:49:44 PM | Attr = ] (Secdrv) Secdrv [Kernel | On_Demand | Stopped] -> %SystemRoot%\system32\drivers\secdrv.sys -> [Ver = | Size = 27440 bytes | Modified Date = 8/4/2004 2:00:00 PM | Attr = ] (Simbad) Simbad [Kernel | Disabled | Stopped] -> -> File not found (sisagp) SIS AGP Bus Filter [Kernel | Boot | Running] -> %SystemRoot%\system32\drivers\SISAGP.SYS -> Silicon Integrated Systems Corporation [Ver = 5.12.01.2010 (xpsp_sp2_rtm.040803-2158) | Size = 41088 bytes | Modified Date = 8/4/2004 8:07:44 AM | Attr = ] (smwdm) smwdm [Kernel | On_Demand | Running] -> %SystemRoot%\system32\drivers\smwdm.sys -> Analog Devices, Inc. [Ver = 5.12.01.3571 | Size = 542976 bytes | Modified Date = 3/18/2003 2:00:00 PM | Attr = ] (SONYPVU1) Sony USB Filter Driver (SONYPVU1) [Kernel | On_Demand | Stopped] -> %SystemRoot%\system32\drivers\SONYPVU1.SYS -> Sony Corporation [Ver = 1.3.0526.0 (XPClient.010817-1148) | Size = 7552 bytes | Modified Date = 8/17/2001 12:56:16 PM | Attr = ] (Sparrow) Sparrow [Kernel | Boot | Running] -> %SystemRoot%\system32\drivers\sparrow.sys -> Adaptec, Inc. [Ver = v2.0a (ReleaseBinaries.001205-1804) | Size = 19072 bytes | Modified Date = 8/17/2001 11:07:44 PM | Attr = ] (SunkFilt) Alcor Micro Corp - 9360 [Kernel | On_Demand | Running] -> %SystemRoot%\system32\drivers\Sunkfilt.sys -> Alcor Micro Corp. [Ver = 2, 0, 4, 1 | Size = 40724 bytes | Modified Date = 10/20/2004 2:39:32 PM | Attr = ] (SunkFilt39) Alcor Micro Corp - 3239 [Kernel | On_Demand | Stopped] -> %SystemRoot%\system32\drivers\Sunkfilt39.sys -> Alcor Micro Corp. [Ver = 1, 0, 0, 4 | Size = 42968 bytes | Modified Date = 10/18/2004 5:05:12 PM | Attr = ] (Sunkfiltp) HP && Alcor Micro Corp for Phison [Kernel | On_Demand | Stopped] -> %SystemRoot%\System32\Drivers\sunkfiltp.sys -> File not found (symc810) symc810 [Kernel | Boot | Running] -> %SystemRoot%\system32\drivers\symc810.sys -> Symbios Logic Inc. [Ver = 5.1.2409.1 (ReleaseBinaries.001205-1804) | Size = 16256 bytes | Modified Date = 8/17/2001 11:07:34 PM | Attr = ] (symc8xx) symc8xx [Kernel | Boot | Running] -> %SystemRoot%\system32\drivers\symc8xx.sys -> LSI Logic [Ver = 5.1.2409.1 (ReleaseBinaries.001205-1804) | Size = 32640 bytes | Modified Date = 8/17/2001 11:07:36 PM | Attr = ] (sym_hi) sym_hi [Kernel | Boot | Running] -> %SystemRoot%\system32\drivers\sym_hi.sys -> LSI Logic [Ver = 5.1.2462.0 (Lab01_N.010309-0027) | Size = 28384 bytes | Modified Date = 8/17/2001 11:07:40 PM | Attr = ] (sym_u3) sym_u3 [Kernel | Boot | Running] -> %SystemRoot%\system32\drivers\sym_u3.sys -> LSI Logic [Ver = 5.1.2462.0 (Lab01_N.010309-0027) | Size = 30688 bytes | Modified Date = 8/17/2001 11:07:42 PM | Attr = ] (ultra) ultra [Kernel | Boot | Running] -> %SystemRoot%\system32\drivers\ultra.sys -> Promise Technology, Inc. [Ver = 1.43 (Build 0603) | Size = 36736 bytes | Modified Date = 8/17/2001 10:52:22 PM | Attr = ] (wanatw) WAN Miniport (ATW) [Kernel | On_Demand | Stopped] -> system32\DRIVERS\wanatw4.sys -> File not found (WDICA) WDICA [Kernel | On_Demand | Stopped] -> -> File not found (winachsf) winachsf [Kernel | On_Demand | Running] -> %SystemRoot%\system32\drivers\HSF_CNXT.sys -> Conexant Systems, Inc. [Ver = 7.12.09 built by: WinDDK | Size = 685056 bytes | Modified Date = 6/17/2004 5:55:38 PM | Attr = ] ({6080A529-897E-4629-A488-ABA0C29B635E}) Intel(R) Graphics Platform (SoftBIOS) Driver [Kernel | On_Demand | Running] -> %SystemRoot%\system32\drivers\ialmsbw.sys -> Intel Corporation [Ver = 6.14.10.3722 | Size = 122110 bytes | Modified Date = 1/29/2004 9:13:06 PM | Attr = ] ({D31A0762-0CEB-444e-ACFF-B049A1F6FE91}) Intel(R) Graphics Chipset (KCH) Driver [Kernel | On_Demand | Running] -> %SystemRoot%\system32\drivers\ialmkchw.sys -> Intel Corporation [Ver = 6.14.10.3722 | Size = 99002 bytes | Modified Date = 1/29/2004 9:13:04 PM | Attr = ] [Registry - Non-Microsoft Only] < Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> adgbptbl -> %SystemDrive%\gdjkgbrr.bat -> [Ver = | Size = 1080 bytes | Modified Date = 2/21/2008 11:15:36 AM | Attr = ] AVG7_CC -> %ProgramFiles%\Grisoft\AVG7\avgcc.exe -> GRISOFT, s.r.o. [Ver = 7.5.0.504 | Size = 579072 bytes | Modified Date = 2/15/2008 1:13:18 PM | Attr = ] EPSON Stylus CX4800 Series -> %SystemRoot%\system32\spool\drivers\w32x86\3\E_FATIADA.EXE -> SEIKO EPSON CORPORATION [Ver = 4.00 | Size = 98304 bytes | Modified Date = 2/1/2005 10:00:00 PM | Attr = ] HotKeysCmds -> %SystemRoot%\system32\hkcmd.exe -> Intel Corporation [Ver = 3.0.0.2331 | Size = 118784 bytes | Modified Date = 1/29/2004 9:13:00 PM | Attr = ] IgfxTray -> %SystemRoot%\system32\igfxtray.exe -> Intel Corporation [Ver = 3.0.0.2331 | Size = 155648 bytes | Modified Date = 1/29/2004 9:13:24 PM | Attr = ] KernelFaultCheck -> -> File not found losclkcf -> %SystemDrive%\aumvxgyy.bat -> [Ver = | Size = 1080 bytes | Modified Date = 2/21/2008 11:25:18 AM | Attr = ] NeroFilterCheck -> %SystemRoot%\system32\NeroCheck.exe -> Ahead Software Gmbh [Ver = 1, 0, 0, 2 | Size = 155648 bytes | Modified Date = 7/9/2001 2:50:42 PM | Attr = ] QuickTime Task -> %ProgramFiles%\QuickTime\QTTask.exe -> Apple Inc. [Ver = 7.4 | Size = 385024 bytes | Modified Date = 1/10/2008 3:27:36 PM | Attr = ] RemoteControl -> %ProgramFiles%\CyberLink\PowerDVD\PDVDServ.exe -> Cyberlink Corp. [Ver = 5.00.0000 | Size = 32768 bytes | Modified Date = 10/31/2003 10:42:40 PM | Attr = ] SunJavaUpdateSched -> %ProgramFiles%\Java\jre1.6.0_03\bin\jusched.exe -> Sun Microsystems, Inc. [Ver = 6.0.30.5 | Size = 132496 bytes | Modified Date = 9/25/2007 1:11:35 AM | Attr = ] SunKistEM -> %ProgramFiles%\Digital Media Reader\shwiconEM.exe -> Alcor Micro, Corp. [Ver = 1, 4, 0, 8 | Size = 135168 bytes | Modified Date = 10/18/2004 5:05:12 PM | Attr = ] < Run [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> EPSON Stylus CX4800 Series -> %SystemRoot%\system32\spool\drivers\w32x86\3\E_FATIADA.EXE -> SEIKO EPSON CORPORATION [Ver = 4.00 | Size = 98304 bytes | Modified Date = 2/1/2005 10:00:00 PM | Attr = ] Yahoo! Pager -> %ProgramFiles%\Yahoo!\Messenger\YahooMessenger.exe -> Yahoo! Inc. [Ver = 8,1,0,209 | Size = 4662776 bytes | Modified Date = 11/30/2006 9:49:04 PM | Attr = ] < All Users Startup Folder > -> C:\Documents and Settings\All Users\Start Menu\Programs\Startup -> < Owner Startup Folder > -> C:\Documents and Settings\Owner\Start Menu\Programs\Startup -> < ShellExecuteHooks [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks -> {D85530E8-D39D-49D0-9F36-300D594556D2} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\wvutqpn.dll [] -> [Ver = | Size = 37376 bytes | Modified Date = 2/20/2008 5:36:11 AM | Attr = ] < SecurityProviders [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\\SecurityProviders -> < Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> < Winlogon settings [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> < Winlogon\Notify settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ -> igfxcui -> %SystemRoot%\system32\igfxsrvc.dll -> Intel Corporation [Ver = 3.0.0.2331 | Size = 323584 bytes | Modified Date = 1/29/2004 9:13:24 PM | Attr = ] wvutqpn -> %SystemRoot%\system32\wvutqpn.dll -> [Ver = | Size = 37376 bytes | Modified Date = 2/20/2008 5:36:11 AM | Attr = ] < CurrentVersion Policy Settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{BDEADF00-C265-11D0-BCED-00A0C90AB50F} -> 1 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{6DFD7C5C-2451-11d3-A299-00C04F8EF6AF} -> 1073741857 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{0DF44EAA-FF21-4412-828E-260A8728E7F1} -> 32 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\dontdisplaylastusername -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\legalnoticecaption -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\legalnoticetext -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\shutdownwithoutlogon -> 1 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\undockwithoutlogon -> 1 -> < CurrentVersion Policy Settings [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\ -> -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun -> 145 -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoSaveSettings -> 0 -> < HOSTS File > (734 bytes) -> C:\WINDOWS\System32\drivers\etc\Hosts -> < Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> -> HKEY_LOCAL_MACHINE\: Main\\Default_Page_URL -> http://go.microsoft.com/fwlink/?LinkId=69157 -> HKEY_LOCAL_MACHINE\: Main\\Default_Search_URL -> http://go.microsoft.com/fwlink/?LinkId=54896 -> HKEY_LOCAL_MACHINE\: Main\\Local Page -> %SystemRoot%\system32\blank.htm -> HKEY_LOCAL_MACHINE\: Main\\Search Bar -> http://red.clientapps.yahoo.com/customize/ie/defaults/sb/ymsgr6/*http://www.yahoo.com/ext/search/search.html -> HKEY_LOCAL_MACHINE\: Main\\Search Page -> http://go.microsoft.com/fwlink/?LinkId=54896 -> HKEY_LOCAL_MACHINE\: Main\\Start Page -> http://go.microsoft.com/fwlink/?LinkId=69157 -> HKEY_LOCAL_MACHINE\: Search\\CustomizeSearch -> http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm -> HKEY_LOCAL_MACHINE\: Search\\SearchAssistant -> http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm -> < Internet Explorer Settings [HKEY_CURRENT_USER\] > -> -> HKEY_CURRENT_USER\: Main\\Local Page -> C:\WINDOWS\system32\blank.htm -> HKEY_CURRENT_USER\: Main\\Search Bar -> http://www.yahoo.com/search/ie.html -> HKEY_CURRENT_USER\: Main\\Search Page -> http://red.clientapps.yahoo.com/customize/ie/defaults/sp/ymsgr6/*http://www.yahoo.com -> HKEY_CURRENT_USER\: Main\\Start Page -> http://www.charter.net/index.php -> HKEY_CURRENT_USER\: SearchURL\\ -> [] -> HKEY_CURRENT_USER\: URLSearchHooks\\{EF99BD32-C1FB-11D2-892F-0090271D4F88} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Yahoo!\Companion\Installs\cpn2\yt.dll [Yahoo! Toolbar] -> Yahoo! Inc. [Ver = 2006, 10, 26, 1 | Size = 440384 bytes | Modified Date = 10/26/2006 10:28:40 AM | Attr = ] HKEY_CURRENT_USER\: ProxyEnable -> 0 -> < Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 11 domain(s) found. -> 11 domain(s) and sub-domain(s) not assigned to a zone. < Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Trusted Sites Domains [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 12 domain(s) found. -> objects_aol.com [*] -> Out of zone range - ( 5 ) -> 13 domain(s) and sub-domain(s) not assigned to a zone. < Trusted Sites Ranges [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ -> {02478D38-C3F9-4EFB-9B51-7695ECA05670} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Yahoo!\Companion\Installs\cpn2\yt.dll [Yahoo! Toolbar Helper] -> Yahoo! Inc. [Ver = 2006, 10, 26, 1 | Size = 440384 bytes | Modified Date = 10/26/2006 10:28:40 AM | Attr = ] {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Yahoo!\Common\yiesrvc.dll [Yahoo! IE Services Button] -> Yahoo! Inc. [Ver = 2006, 10, 31, 3 | Size = 198136 bytes | Modified Date = 10/31/2006 3:29:16 PM | Attr = ] {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Java\jre1.6.0_03\bin\ssv.dll [SSVHelper Class] -> Sun Microsystems, Inc. [Ver = 6.0.30.5 | Size = 501136 bytes | Modified Date = 9/25/2007 1:11:33 AM | Attr = ] {D85530E8-D39D-49D0-9F36-300D594556D2} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\wvutqpn.dll [Reg Error: Value does not exist or could not be read.] -> [Ver = | Size = 37376 bytes | Modified Date = 2/20/2008 5:36:11 AM | Attr = ] {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} [HKEY_LOCAL_MACHINE] -> Reg Error: Key does not exist or could not be opened. [Reg Error: Key does not exist or could not be opened.] -> File not found < Internet Explorer Bars [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\ -> {4528BBE0-4E08-11D5-AD55-00010333D0AD} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Yahoo!\Common\yhexbmesus.dll [&Yahoo! Messenger] -> Yahoo! Inc. [Ver = 2005, 5, 11, 1 | Size = 316552 bytes | Modified Date = 5/11/2005 4:06:02 PM | Attr = ] < Internet Explorer Bars [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\ -> {4528BBE0-4E08-11D5-AD55-00010333D0AD} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Yahoo!\Common\yhexbmesus.dll [&Yahoo! Messenger] -> Yahoo! Inc. [Ver = 2005, 5, 11, 1 | Size = 316552 bytes | Modified Date = 5/11/2005 4:06:02 PM | Attr = ] < Internet Explorer ToolBars [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar -> {EF99BD32-C1FB-11D2-892F-0090271D4F88} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Yahoo!\Companion\Installs\cpn2\yt.dll [Yahoo! Toolbar] -> Yahoo! Inc. [Ver = 2006, 10, 26, 1 | Size = 440384 bytes | Modified Date = 10/26/2006 10:28:40 AM | Attr = ] < Internet Explorer ToolBars [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ -> WebBrowser\\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} [HKEY_LOCAL_MACHINE] -> Reg Error: Key does not exist or could not be opened. [Reg Error: Key does not exist or could not be opened.] -> File not found WebBrowser\\{4982D40A-C53B-4615-B15B-B5B5E98D167C} [HKEY_LOCAL_MACHINE] -> Reg Error: Key does not exist or could not be opened. [Reg Error: Key does not exist or could not be opened.] -> File not found WebBrowser\\{EF99BD32-C1FB-11D2-892F-0090271D4F88} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Yahoo!\Companion\Installs\cpn2\yt.dll [Yahoo! Toolbar] -> Yahoo! Inc. [Ver = 2006, 10, 26, 1 | Size = 440384 bytes | Modified Date = 10/26/2006 10:28:40 AM | Attr = ] < Internet Explorer Extensions [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ -> {08B0E5C0-4FCB-11CF-AAA5-00401C608501}:{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Java\jre1.6.0_03\bin\npjpi160_03.dll [Sun Java Console] -> Sun Microsystems, Inc. [Ver = 6.0.30.5 | Size = 132496 bytes | Modified Date = 9/25/2007 1:11:34 AM | Attr = ] {08B0E5C0-4FCB-11CF-AAA5-00401C608501}:{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC} [HKEY_CURRENT_USER] -> %ProgramFiles%\Java\jre1.6.0_03\bin\ssv.dll [Sun Java Console] -> Sun Microsystems, Inc. [Ver = 6.0.30.5 | Size = 501136 bytes | Modified Date = 9/25/2007 1:11:33 AM | Attr = ] {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897}:{5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Yahoo!\Common\yiesrvc.dll [Yahoo! Services] -> Yahoo! Inc. [Ver = 2006, 10, 31, 3 | Size = 198136 bytes | Modified Date = 10/31/2006 3:29:16 PM | Attr = ] CmdMapping: [HKEY_LOCAL_MACHINE] -> Reg Error: Key does not exist or could not be opened. [] -> File not found < Internet Explorer Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\ -> CmdMapping\\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Java\jre1.6.0_03\bin\npjpi160_03.dll [Sun Java Console] -> Sun Microsystems, Inc. [Ver = 6.0.30.5 | Size = 132496 bytes | Modified Date = 9/25/2007 1:11:34 AM | Attr = ] CmdMapping\\{4982D40A-C53B-4615-B15B-B5B5E98D167C} [HKEY_LOCAL_MACHINE] -> [Reg Error: Key does not exist or could not be opened.] -> File not found CmdMapping\\{5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Yahoo!\Common\yiesrvc.dll [Yahoo! IE Services Button] -> Yahoo! Inc. [Ver = 2006, 10, 31, 3 | Size = 198136 bytes | Modified Date = 10/31/2006 3:29:16 PM | Attr = ] < Internet Explorer Menu Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\ -> &AOL Toolbar search -> %ProgramFiles%\AOL Toolbar\toolbar.dll -> File not found &Yahoo! Search -> -> File not found Yahoo! &Dictionary -> -> File not found Yahoo! &Maps -> -> File not found Yahoo! &SMS -> -> File not found < Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ -> PluginsPageFriendlyName -> Microsoft ActiveX Gallery -> PluginsPage -> http://activex.microsoft.com/controls/find.asp?ext=%s&mime=%s -> < DNS Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ -> {A4F8D62F-7CD2-40F2-8D4E-B6FC726FAD87} -> () -> {F78CE6D0-014B-4F65-9AE2-67BF75CFEB0B} -> (Intel(R) PRO/100 VE Network Connection) -> < Protocol Handlers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ -> ipp: [HKEY_LOCAL_MACHINE] -> Reg Error: Key does not exist or could not be opened.[{1A03F196-9617-4CA0-842B-A83CEECB022B}] -> File not found msdaipp: [HKEY_LOCAL_MACHINE] -> Reg Error: Key does not exist or could not be opened.[{1A03F196-9617-4CA0-842B-A83CEECB022B}] -> File not found < Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ -> {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B}[HKEY_LOCAL_MACHINE] -> http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall.info.apple.com/qtactivex/qtplugin.cab[QuickTime Object] -> {0B79F48A-E8D6-11DB-9283-E25056D89593}[HKEY_LOCAL_MACHINE] -> http://support.f-secure.com/ols/fscax.cab[F-Secure Online Scanner 3.1] -> {166B1BCA-3F9C-11CF-8075-444553540000}[HKEY_LOCAL_MACHINE] -> http://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab[Shockwave ActiveX Control] -> {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE}[HKEY_LOCAL_MACHINE] -> http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab[Symantec AntiVirus scanner] -> {30528230-99F7-4BB4-88D8-FA1D4F56A2AB}[HKEY_LOCAL_MACHINE] -> C:\Program Files\Yahoo!\Common\yinsthelper.dll[YInstStarter Class] -> {48DD0448-9209-4F81-9F6D-D83562940134}[HKEY_LOCAL_MACHINE] -> http://lads.myspace.com/upload/MySpaceUploader1005.cab[MySpace Uploader Control] -> {644E432F-49D3-41A1-8DD5-E099162EEEC5}[HKEY_LOCAL_MACHINE] -> http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab[Symantec RuFSI Utility Class] -> {8AD9C840-044E-11D1-B3E9-00805F499D93}[HKEY_LOCAL_MACHINE] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab[Java Plug-in 1.6.0_03] -> {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}[HKEY_LOCAL_MACHINE] -> http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab[Reg Error: Key does not exist or could not be opened.] -> {B38870E4-7ECB-40DA-8C6A-595F0A5519FF}[HKEY_LOCAL_MACHINE] -> http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab[MsnMessengerSetupDownloadControl Class] -> {CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}[HKEY_LOCAL_MACHINE] -> http://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab[Java Plug-in 1.4.2] -> {CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}[HKEY_LOCAL_MACHINE] -> http://java.sun.com/update/1.5.0/jinstall-1_5_0_01-windows-i586.cab[Java Plug-in 1.5.0_01] -> {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}[HKEY_LOCAL_MACHINE] -> http://java.sun.com/update/1.5.0/jinstall-1_5_0_02-windows-i586.cab[Java Plug-in 1.5.0_02] -> {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}[HKEY_LOCAL_MACHINE] -> http://java.sun.com/update/1.5.0/jinstall-1_5_0_04-windows-i586.cab[Java Plug-in 1.5.0_04] -> {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}[HKEY_LOCAL_MACHINE] -> http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab[Java Plug-in 1.5.0_06] -> {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}[HKEY_LOCAL_MACHINE] -> http://java.sun.com/update/1.5.0/jinstall-1_5_0_09-windows-i586.cab[Java Plug-in 1.5.0_09] -> {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}[HKEY_LOCAL_MACHINE] -> http://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab[Java Plug-in 1.5.0_10] -> {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}[HKEY_LOCAL_MACHINE] -> http://java.sun.com/update/1.5.0/jinstall-1_5_0_11-windows-i586.cab[Java Plug-in 1.5.0_11] -> {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}[HKEY_LOCAL_MACHINE] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab[Java Plug-in 1.6.0_01] -> {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}[HKEY_LOCAL_MACHINE] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab[Java Plug-in 1.6.0_02] -> {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}[HKEY_LOCAL_MACHINE] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab[Java Plug-in 1.6.0_03] -> {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}[HKEY_LOCAL_MACHINE] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab[Java Plug-in 1.6.0_03] -> {D719897A-B07A-4C0C-AEA9-9B663A28DFCB}[HKEY_LOCAL_MACHINE] -> http://ax.phobos.apple.com.edgesuite.net/detection/ITDetector.cab[iTunesDetector Class] -> {E6182DB0-BE70-4EA3-A8FB-D402C6D951D5}[HKEY_LOCAL_MACHINE] -> http://photofiddle.com/ocx/VUploaderProj1.cab[VUploader Control] -> {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6}[HKEY_LOCAL_MACHINE] -> http://chat.msn.com/controls/msnchat45.cab[MSN Chat Control 4.5] -> [Files/Folders - Created Within 30 days] aumvxgyy.bat -> %SystemDrive%\aumvxgyy.bat -> [Ver = | Size = 1080 bytes | Modified Date = 2/21/2008 11:25:18 AM | Attr = ] backup-Fri 02.15.2008-12.24.29.46.zip -> %SystemDrive%\backup-Fri 02.15.2008-12.24.29.46.zip -> [Ver = | Size = 22 bytes | Modified Date = 2/21/2008 11:22:51 AM | Attr = ] backup-Fri 02.15.2008-20.40.21.46.zip -> %SystemDrive%\backup-Fri 02.15.2008-20.40.21.46.zip -> [Ver = | Size = 22 bytes | Modified Date = 2/21/2008 11:22:36 AM | Attr = ] backup-Tue 02.19.2008-18.40.11.39.zip -> %SystemDrive%\backup-Tue 02.19.2008-18.40.11.39.zip -> [Ver = | Size = 22 bytes | Modified Date = 2/19/2008 6:40:11 PM | Attr = ] backup.reg -> %SystemDrive%\backup.reg -> [Ver = | Size = 0 bytes | Modified Date = 2/21/2008 11:34:47 AM | Attr = ] Config.Msi -> %SystemDrive%\Config.Msi -> [Folder | Created Date = 1/23/2008 10:41:02 PM | Attr = HS] gdjkgbrr.bat -> %SystemDrive%\gdjkgbrr.bat -> [Ver = | Size = 1080 bytes | Modified Date = 2/21/2008 11:15:36 AM | Attr = ] hiberfil.sys -> %SystemDrive%\hiberfil.sys -> [Ver = | Size = 527224832 bytes | Modified Date = 2/21/2008 11:42:20 AM | Attr = HS] VundoFix Backups -> %SystemDrive%\VundoFix Backups -> [Folder | Created Date = 2/19/2008 5:03:30 PM | Attr = ] avg7core.sys -> %SystemRoot%\System32\drivers\avg7core.sys -> GRISOFT, s.r.o. [Ver = 7.5.0.498 | Size = 821856 bytes | Modified Date = 2/15/2008 1:13:33 PM | Attr = ] avg7rsw.sys -> %SystemRoot%\System32\drivers\avg7rsw.sys -> GRISOFT, s.r.o. [Ver = 7,0,0,340 | Size = 4224 bytes | Modified Date = 2/15/2008 1:13:39 PM | Attr = ] avg7rsxp.sys -> %SystemRoot%\System32\drivers\avg7rsxp.sys -> GRISOFT, s.r.o. [Ver = 7.5.0.442 | Size = 27776 bytes | Modified Date = 2/15/2008 1:13:39 PM | Attr = ] avgclean.sys -> %SystemRoot%\System32\drivers\avgclean.sys -> GRISOFT, s.r.o. [Ver = 1.0.0.14 | Size = 10760 bytes | Modified Date = 2/15/2008 1:13:40 PM | Attr = ] avgmfx86.sys -> %SystemRoot%\System32\drivers\avgmfx86.sys -> GRISOFT, s.r.o. [Ver = 7.5.0.510 | Size = 26952 bytes | Modified Date = 2/15/2008 1:13:40 PM | Attr = ] avgtdi.sys -> %SystemRoot%\System32\drivers\avgtdi.sys -> GRISOFT, s.r.o. [Ver = 7,0,0,346 | Size = 4960 bytes | Modified Date = 2/15/2008 1:13:40 PM | Attr = ] cuudbcdq.sys -> %SystemRoot%\System32\drivers\cuudbcdq.sys -> [Ver = | Size = 60416 bytes | Modified Date = 2/21/2008 11:25:18 AM | Attr = ] cvsghbck.sys -> %SystemRoot%\System32\drivers\cvsghbck.sys -> [Ver = | Size = 60416 bytes | Modified Date = 2/21/2008 11:15:27 AM | Attr = ] gebyaby.dll -> %SystemRoot%\System32\gebyaby.dll -> [Ver = | Size = 37376 bytes | Modified Date = 2/20/2008 5:45:49 AM | Attr = ] VundoFixSVC.exe -> %SystemRoot%\System32\VundoFixSVC.exe -> Atribune.org [Ver = 1.00.0003 | Size = 24576 bytes | Modified Date = 2/19/2008 7:06:02 PM | Attr = ] wvutqpn.dll -> %SystemRoot%\System32\wvutqpn.dll -> [Ver = | Size = 37376 bytes | Modified Date = 2/20/2008 5:36:11 AM | Attr = ] W?nSxS -> %SystemRoot%\System32\WіnSxS -> [Folder | Modified Date = 2/21/2008 11:31:21 AM | Attr = ] 8 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ?ymantec -> %SystemRoot%\System32\Ѕymantec -> [Folder | Modified Date = 2/15/2008 2:00:04 PM | Attr = ] LastGood -> %SystemRoot%\LastGood -> [Folder | Created Date = 2/21/2008 11:44:49 AM | Attr = ] pss -> %SystemRoot%\pss -> [Folder | Created Date = 2/12/2008 2:36:34 PM | Attr = ] [Files Created - Additional Folder Scans - Non-Microsoft Only] Grisoft -> %AllUsersProfile%\Application Data\Grisoft -> [Folder | Created Date = 2/15/2008 1:13:14 PM | Attr = ] AVG 7.5.lnk -> %AllUsersProfile%\Desktop\AVG 7.5.lnk -> [Ver = | Size = 1532 bytes | Modified Date = 2/15/2008 1:13:41 PM | Attr = ] QuickTime Player.lnk -> %AllUsersProfile%\Desktop\QuickTime Player.lnk -> [Ver = | Size = 1604 bytes | Modified Date = 1/23/2008 10:44:40 PM | Attr = ] DSCF2190.JPG -> %UserProfile%\Desktop\DSCF2190.JPG -> [Ver = | Size = 472964 bytes | Modified Date = 1/1/2003 12:06:22 AM | Attr = ] DSCF2220.JPG -> %UserProfile%\Desktop\DSCF2220.JPG -> [Ver = | Size = 454922 bytes | Modified Date = 1/1/2003 12:01:32 AM | Attr = ] DSCF2223.JPG -> %UserProfile%\Desktop\DSCF2223.JPG -> [Ver = | Size = 451882 bytes | Modified Date = 1/1/2003 12:01:54 AM | Attr = ] DSCF2224.JPG -> %UserProfile%\Desktop\DSCF2224.JPG -> [Ver = | Size = 475566 bytes | Modified Date = 1/1/2003 12:00:22 AM | Attr = ] fixing tims shite -> %UserProfile%\Desktop\fixing tims shite -> [Folder | Created Date = 2/19/2008 5:42:33 PM | Attr = ] geo's arrangement.jpg -> %UserProfile%\Desktop\geo's arrangement.jpg -> [Ver = | Size = 480129 bytes | Modified Date = 1/1/2003 12:00:30 AM | Attr = ] s?mbols -> %CommonProgramFiles%\sуmbols -> [Folder | Modified Date = 2/13/2008 10:13:28 PM | Attr = ] [Files/Folders - Modified Within 30 days] $VAULT$.AVG -> %SystemDrive%\$VAULT$.AVG -> [Folder | Modified Date = 2/21/2008 11:27:26 AM | Attr = RH ] aumvxgyy.bat -> %SystemDrive%\aumvxgyy.bat -> [Ver = | Size = 1080 bytes | Modified Date = 2/21/2008 11:25:18 AM | Attr = ] backup-Fri 02.15.2008-12.24.29.46.zip -> %SystemDrive%\backup-Fri 02.15.2008-12.24.29.46.zip -> [Ver = | Size = 22 bytes | Modified Date = 2/21/2008 11:22:51 AM | Attr = ] backup-Fri 02.15.2008-20.40.21.46.zip -> %SystemDrive%\backup-Fri 02.15.2008-20.40.21.46.zip -> [Ver = | Size = 22 bytes | Modified Date = 2/21/2008 11:22:36 AM | Attr = ] backup-Tue 02.19.2008-18.40.11.39.zip -> %SystemDrive%\backup-Tue 02.19.2008-18.40.11.39.zip -> [Ver = | Size = 22 bytes | Modified Date = 2/19/2008 6:40:11 PM | Attr = ] backup.reg -> %SystemDrive%\backup.reg -> [Ver = | Size = 0 bytes | Modified Date = 2/21/2008 11:34:47 AM | Attr = ] boot.ini -> %SystemDrive%\boot.ini -> [Ver = | Size = 210 bytes | Modified Date = 2/12/2008 2:40:35 PM | Attr = RHS] Config.Msi -> %SystemDrive%\Config.Msi -> [Folder | Modified Date = 2/12/2008 3:32:49 PM | Attr = HS] Documents and Settings -> %SystemDrive%\Documents and Settings -> [Folder | Modified Date = 2/21/2008 11:25:54 AM | Attr = ] gdjkgbrr.bat -> %SystemDrive%\gdjkgbrr.bat -> [Ver = | Size = 1080 bytes | Modified Date = 2/21/2008 11:15:36 AM | Attr = ] hiberfil.sys -> %SystemDrive%\hiberfil.sys -> [Ver = | Size = 527224832 bytes | Modified Date = 2/21/2008 11:42:20 AM | Attr = HS] install.dat -> %SystemDrive%\install.dat -> [Ver = | Size = 164 bytes | Modified Date = 1/30/2008 12:20:04 AM | Attr = ] Program Files -> %ProgramFiles% -> [Folder | Modified Date = 2/15/2008 8:39:02 PM | Attr = R ] RECYCLER -> %SystemDrive%\RECYCLER -> [Folder | Modified Date = 2/12/2008 7:09:42 PM | Attr = HS] TEMP -> %SystemDrive%\TEMP -> [Folder | Modified Date = 2/12/2008 2:54:27 PM | Attr = ] VundoFix Backups -> %SystemDrive%\VundoFix Backups -> [Folder | Modified Date = 2/19/2008 7:05:58 PM | Attr = ] WINDOWS -> %SystemRoot% -> [Folder | Modified Date = 2/21/2008 11:44:49 AM | Attr = ] avg7core.sys -> %SystemRoot%\System32\drivers\avg7core.sys -> GRISOFT, s.r.o. [Ver = 7.5.0.498 | Size = 821856 bytes | Modified Date = 2/15/2008 1:13:33 PM | Attr = ] avg7rsw.sys -> %SystemRoot%\System32\drivers\avg7rsw.sys -> GRISOFT, s.r.o. [Ver = 7,0,0,340 | Size = 4224 bytes | Modified Date = 2/15/2008 1:13:39 PM | Attr = ] avg7rsxp.sys -> %SystemRoot%\System32\drivers\avg7rsxp.sys -> GRISOFT, s.r.o. [Ver = 7.5.0.442 | Size = 27776 bytes | Modified Date = 2/15/2008 1:13:39 PM | Attr = ] avgclean.sys -> %SystemRoot%\System32\drivers\avgclean.sys -> GRISOFT, s.r.o. [Ver = 1.0.0.14 | Size = 10760 bytes | Modified Date = 2/15/2008 1:13:40 PM | Attr = ] avgmfx86.sys -> %SystemRoot%\System32\drivers\avgmfx86.sys -> GRISOFT, s.r.o. [Ver = 7.5.0.510 | Size = 26952 bytes | Modified Date = 2/15/2008 1:13:40 PM | Attr = ] avgtdi.sys -> %SystemRoot%\System32\drivers\avgtdi.sys -> GRISOFT, s.r.o. [Ver = 7,0,0,346 | Size = 4960 bytes | Modified Date = 2/15/2008 1:13:40 PM | Attr = ] cuudbcdq.sys -> %SystemRoot%\System32\drivers\cuudbcdq.sys -> [Ver = | Size = 60416 bytes | Modified Date = 2/21/2008 11:25:18 AM | Attr = ] cvsghbck.sys -> %SystemRoot%\System32\drivers\cvsghbck.sys -> [Ver = | Size = 60416 bytes | Modified Date = 2/21/2008 11:15:27 AM | Attr = ] CatRoot2 -> %SystemRoot%\System32\CatRoot2 -> [Folder | Modified Date = 2/21/2008 11:44:49 AM | Attr = ] 8 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> drivers -> %SystemRoot%\System32\drivers -> [Folder | Modified Date = 2/21/2008 11:25:18 AM | Attr = ] gebyaby.dll -> %SystemRoot%\System32\gebyaby.dll -> [Ver = | Size = 37376 bytes | Modified Date = 2/20/2008 5:45:49 AM | Attr = ] VundoFixSVC.exe -> %SystemRoot%\System32\VundoFixSVC.exe -> Atribune.org [Ver = 1.00.0003 | Size = 24576 bytes | Modified Date = 2/19/2008 7:06:02 PM | Attr = ] wpa.dbl -> %SystemRoot%\System32\wpa.dbl -> [Ver = | Size = 1170 bytes | Modified Date = 2/21/2008 11:43:34 AM | Attr = ] wvutqpn.dll -> %SystemRoot%\System32\wvutqpn.dll -> [Ver = | Size = 37376 bytes | Modified Date = 2/20/2008 5:36:11 AM | Attr = ] W?nSxS -> %SystemRoot%\System32\WіnSxS -> [Folder | Modified Date = 2/21/2008 11:31:21 AM | Attr = ] ?ymantec -> %SystemRoot%\System32\Ѕymantec -> [Folder | Modified Date = 2/15/2008 2:00:04 PM | Attr = ] bootstat.dat -> %SystemRoot%\bootstat.dat -> [Ver = | Size = 2048 bytes | Modified Date = 2/21/2008 11:42:22 AM | Attr = S] Downloaded Program Files -> %SystemRoot%\Downloaded Program Files -> [Folder | Modified Date = 2/21/2008 11:49:16 AM | Attr = S] inf -> %SystemRoot%\inf -> [Folder | Modified Date = 1/30/2008 7:00:37 AM | Attr = H ] Installer -> %SystemRoot%\Installer -> [Folder | Modified Date = 2/12/2008 3:32:27 PM | Attr = HS] LastGood -> %SystemRoot%\LastGood -> [Folder | Modified Date = 2/21/2008 11:44:49 AM | Attr = ] NeroDigital.ini -> %SystemRoot%\NeroDigital.ini -> [Ver = | Size = 49 bytes | Modified Date = 2/11/2008 11:35:51 AM | Attr = ] Prefetch -> %SystemRoot%\Prefetch -> [Folder | Modified Date = 2/21/2008 11:46:56 AM | Attr = ] pss -> %SystemRoot%\pss -> [Folder | Modified Date = 2/12/2008 2:40:34 PM | Attr = ] Registration -> %SystemRoot%\Registration -> [Folder | Modified Date = 2/20/2008 5:31:10 AM | Attr = ] system -> %SystemRoot%\system -> [Folder | Modified Date = 2/15/2008 1:13:02 PM | Attr = ] system.ini -> %SystemRoot%\system.ini -> [Ver = | Size = 227 bytes | Modified Date = 2/12/2008 2:40:35 PM | Attr = ] system32 -> %SystemRoot%\system32 -> [Folder | Modified Date = 2/21/2008 11:17:43 AM | Attr = ] Temp -> %SystemRoot%\Temp -> [Folder | Modified Date = 2/21/2008 11:49:16 AM | Attr = ] win.ini -> %SystemRoot%\win.ini -> [Ver = | Size = 644 bytes | Modified Date = 2/12/2008 2:40:35 PM | Attr = ] WinSxS -> %SystemRoot%\WinSxS -> [Folder | Modified Date = 2/12/2008 9:46:14 AM | Attr = ] AppleSoftwareUpdate.job -> %SystemRoot%\tasks\AppleSoftwareUpdate.job -> [Ver = | Size = 284 bytes | Modified Date = 2/20/2008 10:32:03 PM | Attr = ] SA.DAT -> %SystemRoot%\tasks\SA.DAT -> [Ver = | Size = 6 bytes | Modified Date = 2/21/2008 11:42:32 AM | Attr = H ] about.dat -> C:\Documents and Settings\All Users\Application Data\Microsoft\Money\12.0\Webcache\about.dat -> [Ver = | Size = 1528 bytes | Modified Date = 6/18/2003 3:00:00 PM | Attr = ] college.dat -> C:\Documents and Settings\All Users\Application Data\Microsoft\Money\12.0\Webcache\college.dat -> [Ver = | Size = 327746 bytes | Modified Date = 6/18/2003 3:00:00 PM | Attr = ] moreinfo.dat -> C:\Documents and Settings\All Users\Application Data\Microsoft\Money\12.0\Webcache\moreinfo.dat -> [Ver = | Size = 102 bytes | Modified Date = 6/18/2003 3:00:00 PM | Attr = ] ylpgscat.dat -> C:\Documents and Settings\All Users\Application Data\Microsoft\Money\12.0\Webcache\ylpgscat.dat -> [Ver = | Size = 12283223 bytes | Modified Date = 6/18/2003 3:00:00 PM | Attr = ] dref=http%253A%252F%252Fmusic.aol[6].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\4T6V4P2Z\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 440 bytes | Modified Date = 1/27/2008 11:53:50 AM | Attr = ] dref=http%253A%252F%252Fmusic.aol[5].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\4T6V4P2Z\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 1379 bytes | Modified Date = 1/27/2008 11:53:47 AM | Attr = ] dref=http%253A%252F%252Fwww.styledash[1].com%252F2008%252F01%252F23%252Fkim-cattralls-enormous-floppy-hat-is-stupid-but-still-a-good-r%252F -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\4T6V4P2Z\dref=http%253A%252F%252Fwww.sty -> [Ver = | Size = 1491 bytes | Modified Date = 1/27/2008 1:36:50 PM | Attr = ] dref=http%253A%252F%252Fmusic.aol[1].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\4T6V4P2Z\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 732 bytes | Modified Date = 1/27/2008 11:52:00 AM | Attr = ] dref=http%253A%252F%252Fmusic.aol[2].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\4T6V4P2Z\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 1050 bytes | Modified Date = 1/27/2008 11:53:30 AM | Attr = ] dref=http%253A%252F%252Fmusic.aol[3].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\4T6V4P2Z\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 1379 bytes | Modified Date = 1/27/2008 11:53:33 AM | Attr = ] dref=http%253A%252F%252Fmusic.aol[4].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\4T6V4P2Z\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 1358 bytes | Modified Date = 1/27/2008 11:53:44 AM | Attr = ] get_video[1].com -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\4T6V4P2Z\get_video[1].com -> [Ver = | Size = 6320900 bytes | Modified Date = 1/26/2008 10:15:47 PM | Attr = ] imp[1].com%2Fpage%2F5%2F&r=1 -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\4T6V4P2Z\imp[1].com -> [Ver = | Size = 616 bytes | Modified Date = 1/26/2008 10:13:57 PM | Attr = ] dref=http%253A%252F%252Fwww.styledash[2].com%252F2008%252F01%252F23%252Fkim-cattralls-enormous-floppy-hat-is-stupid-but-still-a-good-r%252F -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\DJBLJLBC\dref=http%253A%252F%252Fwww.sty -> [Ver = | Size = 440 bytes | Modified Date = 1/27/2008 1:36:54 PM | Attr = ] dref=http%253A%252F%252Fmusic.aol[5].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\DJBLJLBC\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 1375 bytes | Modified Date = 1/27/2008 11:53:45 AM | Attr = ] dref=http%253A%252F%252Fwww.styledash[1].com%252F2008%252F01%252F23%252Fkim-cattralls-enormous-floppy-hat-is-stupid-but-still-a-good-r%252F -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\DJBLJLBC\dref=http%253A%252F%252Fwww.sty -> [Ver = | Size = 1369 bytes | Modified Date = 1/27/2008 1:36:52 PM | Attr = ] dref=http%253A%252F%252Fmusic.aol[1].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\DJBLJLBC\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 1316 bytes | Modified Date = 1/27/2008 11:52:01 AM | Attr = ] dref=http%253A%252F%252Fmusic.aol[2].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\DJBLJLBC\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 1368 bytes | Modified Date = 1/27/2008 11:52:07 AM | Attr = ] dref=http%253A%252F%252Fmusic.aol[3].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\DJBLJLBC\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 1352 bytes | Modified Date = 1/27/2008 11:52:09 AM | Attr = ] dref=http%253A%252F%252Fmusic.aol[4].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\DJBLJLBC\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 1358 bytes | Modified Date = 1/27/2008 11:53:37 AM | Attr = ] imp[1].com%2Fpage%2F4%2F&r=1 -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\DJBLJLBC\imp[1].com -> [Ver = | Size = 556 bytes | Modified Date = 1/26/2008 10:12:04 PM | Attr = ] dref=http%253A%252F%252Fmusic.aol[6].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\ENCJ16VU\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 1379 bytes | Modified Date = 1/27/2008 11:53:32 AM | Attr = ] dref=http%253A%252F%252Fmusic.aol[5].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\ENCJ16VU\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 1379 bytes | Modified Date = 1/27/2008 11:53:28 AM | Attr = ] dref=http%253A%252F%252Fwww.styledash[1].com%252F2008%252F01%252F23%252Fkim-cattralls-enormous-floppy-hat-is-stupid-but-still-a-good-r%252F -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\ENCJ16VU\dref=http%253A%252F%252Fwww.sty -> [Ver = | Size = 898 bytes | Modified Date = 1/27/2008 1:36:48 PM | Attr = ] dref=http%253A%252F%252Fmusic.aol[1].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\ENCJ16VU\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 1274 bytes | Modified Date = 1/27/2008 11:51:54 AM | Attr = ] dref=http%253A%252F%252Fmusic.aol[2].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\ENCJ16VU\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 1358 bytes | Modified Date = 1/27/2008 11:52:05 AM | Attr = ] dref=http%253A%252F%252Fmusic.aol[3].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\ENCJ16VU\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 441 bytes | Modified Date = 1/27/2008 11:53:19 AM | Attr = ] dref=http%253A%252F%252Fmusic.aol[4].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\ENCJ16VU\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 1375 bytes | Modified Date = 1/27/2008 11:53:22 AM | Attr = ] imp[1].com%2Fpage%2F5%2F&r=1 -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\ENCJ16VU\imp[1].com -> [Ver = | Size = 556 bytes | Modified Date = 1/26/2008 10:13:59 PM | Attr = ] get_video[1].com -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\JE9C9ZFZ\get_video[1].com -> [Ver = | Size = 24624574 bytes | Modified Date = 1/26/2008 8:29:30 PM | Attr = ] dref=http%253A%252F%252Fmovies.aol[1].com%252Fsearch%252Flocations -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\JSHUGSZZ\dref=http%253A%252F%252Fmovies.aol -> [Ver = | Size = 490 bytes | Modified Date = 1/25/2008 12:09:54 PM | Attr = ] dref=http%253A%252F%252Fwww.styledash[2].com%252F2008%252F01%252F23%252Fkim-cattralls-enormous-floppy-hat-is-stupid-but-still-a-good-r%252F -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\K1270PYR\dref=http%253A%252F%252Fwww.sty -> [Ver = | Size = 1347 bytes | Modified Date = 1/27/2008 1:36:51 PM | Attr = ] dref=http%253A%252F%252Fmusic.aol[6].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\K1270PYR\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 1358 bytes | Modified Date = 1/27/2008 11:53:43 AM | Attr = ] dref=http%253A%252F%252Fmusic.aol[3].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\K1270PYR\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 898 bytes | Modified Date = 1/27/2008 11:52:11 AM | Attr = ] dref=http%253A%252F%252Fmusic.aol[7].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\K1270PYR\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 1358 bytes | Modified Date = 1/27/2008 11:53:49 AM | Attr = ] dref=http%253A%252F%252Fmusic.aol[4].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\K1270PYR\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 1379 bytes | Modified Date = 1/27/2008 11:53:31 AM | Attr = ] dref=http%253A%252F%252Fmusic.aol[5].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\K1270PYR\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 440 bytes | Modified Date = 1/27/2008 11:53:35 AM | Attr = ] dref=http%253A%252F%252Fwww.styledash[1].com%252F2008%252F01%252F23%252Fkim-cattralls-enormous-floppy-hat-is-stupid-but-still-a-good-r%252F -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\K1270PYR\dref=http%253A%252F%252Fwww.sty -> [Ver = | Size = 440 bytes | Modified Date = 1/27/2008 1:36:51 PM | Attr = ] dref=http%253A%252F%252Fwww.tmz[1].com%252F -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\K1270PYR\dref=http%253A%252F%252Fwww.tmz -> [Ver = | Size = 441 bytes | Modified Date = 1/26/2008 10:16:41 PM | Attr = ] dref=http%253A%252F%252Fwww.tmz[2].com%252F -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\K1270PYR\dref=http%253A%252F%252Fwww.tmz -> [Ver = | Size = 1305 bytes | Modified Date = 1/26/2008 10:16:43 PM | Attr = ] dref=http%253A%252F%252Fmusic.aol[1].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\K1270PYR\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 897 bytes | Modified Date = 1/27/2008 11:51:57 AM | Attr = ] dref=http%253A%252F%252Fmusic.aol[2].com%252Fblog-photo-gallery%252Fphotos-of-the-week-popscene -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\K1270PYR\dref=http%253A%252F%252Fmusic.aol -> [Ver = | Size = 438 bytes | Modified Date = 1/27/2008 11:52:08 AM | Attr = ] get_video[1].com -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\M1MLGDSZ\get_video[1].com -> [Ver = | Size = 2349374 bytes | Modified Date = 1/26/2008 12:45:03 PM | Attr = ] get_video[2].com -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\M1MLGDSZ\get_video[2].com -> [Ver = | Size = 1381160 bytes | Modified Date = 1/26/2008 4:30:49 PM | Attr = ] get_video[1].com -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\W34JUPC3\get_video[1].com -> [Ver = | Size = 11189466 bytes | Modified Date = 1/26/2008 12:47:30 PM | Attr = ] snapsnet.exe -> C:\Documents and Settings\Owner\Local Settings\Temp\snapsnet.exe -> [Ver = | Size = 28925 bytes | Modified Date = 2/12/2008 9:03:14 AM | Attr = ] xpre.exe -> C:\Documents and Settings\Owner\Local Settings\Temp\xpre.exe -> [Ver = | Size = 69805 bytes | Modified Date = 2/12/2008 9:02:41 AM | Attr = ] yazzsnet.exe -> C:\Documents and Settings\Owner\Local Settings\Temp\yazzsnet.exe -> [Ver = | Size = 31845 bytes | Modified Date = 2/12/2008 9:05:24 AM | Attr = ] 220 C:\Documents and Settings\Owner\Local Settings\Temp\*.tmp files -> C:\Documents and Settings\Owner\Local Settings\Temp\*.tmp -> fsgk32.exe -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\fsgk32.exe -> F-Secure Corp. [Ver = 7.50.13332.1 | Size = 368640 bytes | Modified Date = 2/21/2008 11:46:37 AM | Attr = ] fssm32.exe -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\fssm32.exe -> F-Secure Corp. [Ver = 7.50.13332.1 | Size = 446464 bytes | Modified Date = 2/21/2008 11:46:37 AM | Attr = ] avenger.exe -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Directory 1 for avenger[1].zip\avenger.exe -> [Ver = | Size = 130048 bytes | Modified Date = 2/25/2006 11:28:16 PM | Attr = ] @Alternate Data Stream - 0 bytes -> %UserProfile%\Local Settings\Temp\Temporary Directory 1 for avenger[1].zip\avenger.exe:Zone.Identifier lsse.dll -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Spyware\lsse.dll -> Lavasoft [Ver = 1.0.35.0 | Size = 184320 bytes | Modified Date = 2/21/2008 11:46:37 AM | Attr = ] AVPFPI0.dll -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\AVPFPI0.dll -> Kaspersky Lab [Ver = 7.0.171.8410 | Size = 147538 bytes | Modified Date = 2/21/2008 11:46:37 AM | Attr = ] avpproxy.dll -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\avpproxy.dll -> F-Secure Corporation [Ver = 1.2.12160 | Size = 77910 bytes | Modified Date = 2/21/2008 11:46:37 AM | Attr = ] daas_s.dll -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\daas_s.dll -> F-Secure Corporation [Ver = 6.00.12471 | Size = 500120 bytes | Modified Date = 5/7/2007 4:38:46 PM | Attr = ] DFFPI.DLL -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\DFFPI.DLL -> F-Secure Corporation [Ver = 1.02.37 | Size = 151552 bytes | Modified Date = 2/21/2008 11:46:37 AM | Attr = ] fm4av.dll -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\fm4av.dll -> [Ver = | Size = 486912 bytes | Modified Date = 2/21/2008 11:46:37 AM | Attr = ] fpinor.dll -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\fpinor.dll -> F-Secure Corporation [Ver = 1.20.13100 | Size = 113664 bytes | Modified Date = 2/21/2008 11:46:37 AM | Attr = ] fsbl.dll -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\fsbl.dll -> F-Secure Corporation [Ver = 1, 0, 0, 1 | Size = 49152 bytes | Modified Date = 2/21/2008 11:46:37 AM | Attr = ] fsbld.dll -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\fsbld.dll -> F-Secure Corporation [Ver = 1, 0, 0, 64 | Size = 524288 bytes | Modified Date = 2/21/2008 11:49:57 AM | Attr = ] fsgkiapi.dll -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\fsgkiapi.dll -> F-Secure Corp. [Ver = 7.50.13330.18100 | Size = 68096 bytes | Modified Date = 2/21/2008 11:46:37 AM | Attr = ] FSHKE.dll -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\FSHKE.dll -> F-Secure Corporation [Ver = 1, 0, 0, 4 | Size = 61440 bytes | Modified Date = 2/21/2008 11:46:37 AM | Attr = ] FSLFPI.dll -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\FSLFPI.dll -> F-Secure Corporation [Ver = 2.04.02 | Size = 237664 bytes | Modified Date = 2/21/2008 11:46:37 AM | Attr = ] fssubmit.dll -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\fssubmit.dll -> F-Secure Corporation [Ver = 1.0.11 | Size = 651264 bytes | Modified Date = 2/21/2008 11:46:37 AM | Attr = ] lsse.dll -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\lsse.dll -> Lavasoft [Ver = 1.0.35.0 | Size = 184320 bytes | Modified Date = 2/21/2008 11:46:37 AM | Attr = ] Nse_w32.dll -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\Nse_w32.dll -> [Ver = | Size = 506936 bytes | Modified Date = 2/21/2008 11:46:18 AM | Attr = ] Perflib_Perfdata_1558.dat -> C:\Documents and Settings\Owner\Local Settings\Temp\Perflib_Perfdata_1558.dat -> [Ver = | Size = 16384 bytes | Modified Date = 2/12/2008 7:19:43 AM | Attr = ] Perflib_Perfdata_168.dat -> C:\Documents and Settings\Owner\Local Settings\Temp\Perflib_Perfdata_168.dat -> [Ver = | Size = 16384 bytes | Modified Date = 1/30/2008 4:59:41 PM | Attr = ] Perflib_Perfdata_6c8.dat -> C:\Documents and Settings\Owner\Local Settings\Temp\Perflib_Perfdata_6c8.dat -> [Ver = | Size = 16384 bytes | Modified Date = 1/16/2008 10:20:36 PM | Attr = ] Perflib_Perfdata_824.dat -> C:\Documents and Settings\Owner\Local Settings\Temp\Perflib_Perfdata_824.dat -> [Ver = | Size = 16384 bytes | Modified Date = 1/5/2008 10:32:36 PM | Attr = ] Perflib_Perfdata_a38.dat -> C:\Documents and Settings\Owner\Local Settings\Temp\Perflib_Perfdata_a38.dat -> [Ver = | Size = 16384 bytes | Modified Date = 12/30/2007 3:19:27 PM | Attr = ] 220 C:\Documents and Settings\Owner\Local Settings\Temp\*.tmp files -> C:\Documents and Settings\Owner\Local Settings\Temp\*.tmp -> index.dat -> C:\Documents and Settings\Owner\Local Settings\Temp\Auos\index.dat -> [Ver = | Size = 313 bytes | Modified Date = 2/21/2008 11:27:11 AM | Attr = ] 3 C:\Documents and Settings\Owner\Local Settings\Temp\Auos\*.tmp files -> C:\Documents and Settings\Owner\Local Settings\Temp\Auos\*.tmp -> segrules.dat -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\segrules.dat -> [Ver = | Size = 707 bytes | Modified Date = 2/21/2008 11:41:11 AM | Attr = ] ext.dat -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\ext.dat -> [Ver = | Size = 444 bytes | Modified Date = 2/21/2008 11:46:38 AM | Attr = ] fshke.dat -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\fshke.dat -> [Ver = | Size = 84 bytes | Modified Date = 2/21/2008 11:46:39 AM | Attr = ] orion.dat -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\orion.dat -> [Ver = | Size = 747828 bytes | Modified Date = 2/21/2008 11:45:47 AM | Attr = ] orioneng.dat -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\orioneng.dat -> [Ver = | Size = 1325 bytes | Modified Date = 2/21/2008 11:45:47 AM | Attr = ] orionfin.dat -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\orionfin.dat -> [Ver = | Size = 1599 bytes | Modified Date = 2/21/2008 11:45:47 AM | Attr = ] perf.dat -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\perf.dat -> [Ver = | Size = 128 bytes | Modified Date = 2/21/2008 1:11:04 PM | Attr = ] sae.dat -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\sae.dat -> [Ver = | Size = 243 bytes | Modified Date = 2/21/2008 11:46:38 AM | Attr = ] sai.dat -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\sai.dat -> [Ver = | Size = 1348 bytes | Modified Date = 2/21/2008 11:46:38 AM | Attr = ] index.dat -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\index.dat -> [Ver = | Size = 6488064 bytes | Modified Date = 1/28/2008 4:30:39 AM | Attr = ] RunTime.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\RunTime.ini -> [Ver = | Size = 578 bytes | Modified Date = 2/12/2008 9:45:34 AM | Attr = ] 220 C:\Documents and Settings\Owner\Local Settings\Temp\*.tmp files -> C:\Documents and Settings\Owner\Local Settings\Temp\*.tmp -> FS@swdb.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Spyware\FS@swdb.ini -> [Ver = | Size = 205 bytes | Modified Date = 2/21/2008 11:46:33 AM | Attr = ] FS@av.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\FS@av.ini -> [Ver = | Size = 203 bytes | Modified Date = 2/21/2008 11:46:38 AM | Attr = ] FS@avpe.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\FS@avpe.ini -> [Ver = | Size = 205 bytes | Modified Date = 2/21/2008 11:45:44 AM | Attr = ] FS@bleng.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\FS@bleng.ini -> [Ver = | Size = 241 bytes | Modified Date = 2/21/2008 11:49:57 AM | Attr = ] FS@hkeng.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\FS@hkeng.ini -> [Ver = | Size = 206 bytes | Modified Date = 2/21/2008 11:46:39 AM | Attr = ] FS@libra.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\FS@libra.ini -> [Ver = | Size = 206 bytes | Modified Date = 2/21/2008 11:45:49 AM | Attr = ] FS@ols3bin.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\FS@ols3bin.ini -> [Ver = | Size = 175 bytes | Modified Date = 2/21/2008 11:46:37 AM | Attr = ] FS@orion.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\FS@orion.ini -> [Ver = | Size = 206 bytes | Modified Date = 2/21/2008 11:45:47 AM | Attr = ] FS@peg.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\FS@peg.ini -> [Ver = | Size = 204 bytes | Modified Date = 2/21/2008 11:46:18 AM | Attr = ] verdicts.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\OnlineScanner\Anti-Virus\verdicts.ini -> [Ver = | Size = 2539 bytes | Modified Date = 2/21/2008 11:45:45 AM | Attr = ] desktop.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\desktop.ini -> [Ver = | Size = 67 bytes | Modified Date = 5/29/2005 7:56:59 AM | Attr = HS] desktop.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\13535ENT\desktop.ini -> [Ver = | Size = 67 bytes | Modified Date = 1/28/2008 3:51:02 AM | Attr = HS] desktop.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\4NIJWRMQ\desktop.ini -> [Ver = | Size = 67 bytes | Modified Date = 1/25/2008 9:12:38 AM | Attr = HS] desktop.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\4T6V4P2Z\desktop.ini -> [Ver = | Size = 67 bytes | Modified Date = 1/26/2008 10:04:29 PM | Attr = HS] desktop.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\6DO787K5\desktop.ini -> [Ver = | Size = 67 bytes | Modified Date = 1/28/2008 3:51:02 AM | Attr = HS] desktop.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\DJBLJLBC\desktop.ini -> [Ver = | Size = 67 bytes | Modified Date = 1/26/2008 10:04:29 PM | Attr = HS] desktop.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\ENCJ16VU\desktop.ini -> [Ver = | Size = 67 bytes | Modified Date = 1/26/2008 10:04:29 PM | Attr = HS] desktop.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\JE9C9ZFZ\desktop.ini -> [Ver = | Size = 67 bytes | Modified Date = 1/26/2008 7:25:44 AM | Attr = HS] desktop.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\JSHUGSZZ\desktop.ini -> [Ver = | Size = 67 bytes | Modified Date = 1/25/2008 9:12:38 AM | Attr = HS] desktop.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\K1270PYR\desktop.ini -> [Ver = | Size = 67 bytes | Modified Date = 1/26/2008 10:04:29 PM | Attr = HS] desktop.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\L6KMVT1W\desktop.ini -> [Ver = | Size = 67 bytes | Modified Date = 1/28/2008 3:51:02 AM | Attr = HS] desktop.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\M1MLGDSZ\desktop.ini -> [Ver = | Size = 67 bytes | Modified Date = 1/26/2008 7:25:44 AM | Attr = HS] desktop.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\RNCY7UWM\desktop.ini -> [Ver = | Size = 67 bytes | Modified Date = 1/25/2008 9:12:38 AM | Attr = HS] desktop.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\SLQDEJGR\desktop.ini -> [Ver = | Size = 67 bytes | Modified Date = 1/25/2008 9:12:38 AM | Attr = HS] desktop.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\URON2N6T\desktop.ini -> [Ver = | Size = 67 bytes | Modified Date = 1/26/2008 7:25:44 AM | Attr = HS] desktop.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\W34JUPC3\desktop.ini -> [Ver = | Size = 67 bytes | Modified Date = 1/26/2008 7:25:44 AM | Attr = HS] desktop.ini -> C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\WBP7I6ZT\desktop.ini -> [Ver = | Size = 67 bytes | Modified Date = 1/28/2008 3:51:02 AM | Attr = HS] [Files Modified - Additional Folder Scans - Non-Microsoft Only] Avg7 -> %AllUsersProfile%\Application Data\Avg7 -> [Folder | Modified Date = 2/21/2008 12:00:10 AM | Attr = ] Grisoft -> %AllUsersProfile%\Application Data\Grisoft -> [Folder | Modified Date = 2/15/2008 1:13:14 PM | Attr = ] AVG7 -> %AppData%\AVG7 -> [Folder | Modified Date = 2/19/2008 8:34:57 PM | Attr = ] Microsoft -> %AppData%\Microsoft -> [Folder | Modified Date = 2/15/2008 1:13:04 PM | Attr = S] Adobe -> %UserProfile%\Local Settings\Application Data\Adobe -> [Folder | Modified Date = 2/12/2008 9:45:45 AM | Attr = ] DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> %UserProfile%\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> [Ver = | Size = 152576 bytes | Modified Date = 2/14/2008 1:06:10 AM | Attr = ] IconCache.db -> %UserProfile%\Local Settings\Application Data\IconCache.db -> [Ver = | Size = 8575542 bytes | Modified Date = 2/21/2008 11:25:22 AM | Attr = H ] Microsoft -> %UserProfile%\Local Settings\Application Data\Microsoft -> [Folder | Modified Date = 2/15/2008 1:13:04 PM | Attr = ] MySpaceIM Pics -> %UserProfile%\My Documents\MySpaceIM Pics -> [Folder | Modified Date = 2/12/2008 8:14:35 AM | Attr = ] AVG 7.5.lnk -> %AllUsersProfile%\Desktop\AVG 7.5.lnk -> [Ver = | Size = 1532 bytes | Modified Date = 2/15/2008 1:13:41 PM | Attr = ] QuickTime Player.lnk -> %AllUsersProfile%\Desktop\QuickTime Player.lnk -> [Ver = | Size = 1604 bytes | Modified Date = 1/23/2008 10:44:40 PM | Attr = ] fixing tims shite -> %UserProfile%\Desktop\fixing tims shite -> [Folder | Modified Date = 2/21/2008 1:10:42 PM | Attr = ] Incomplete -> %UserProfile%\Desktop\Incomplete -> [Folder | Modified Date = 2/17/2008 9:16:31 PM | Attr = ] my music2 -> %UserProfile%\Desktop\my music2 -> [Folder | Modified Date = 2/17/2008 9:11:45 PM | Attr = ] My Pictures -> %UserProfile%\Desktop\My Pictures -> [Folder | Modified Date = 1/23/2008 11:28:31 PM | Attr = R ] Programs -> %UserProfile%\Desktop\Programs -> [Folder | Modified Date = 2/12/2008 3:32:47 PM | Attr = ] Sofondah! -> %UserProfile%\Desktop\Sofondah! -> [Folder | Modified Date = 2/6/2008 6:41:47 PM | Attr = ] Adobe -> %CommonProgramFiles%\Adobe -> [Folder | Modified Date = 2/12/2008 3:32:49 PM | Attr = ] Scanner -> %CommonProgramFiles%\Scanner -> [Folder | Modified Date = 2/12/2008 3:32:50 PM | Attr = ] s?mbols -> %CommonProgramFiles%\sуmbols -> [Folder | Modified Date = 2/13/2008 10:13:28 PM | Attr = ] < End of report > [/code]