OTL logfile created on: 8/7/2010 11:30:25 PM - Run 1 OTL by OldTimer - Version 3.2.9.1 Folder = C:\Documents and Settings\Randy Sto. Domingo\My Documents\Downloads\Programs Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 1,023.00 Mb Total Physical Memory | 531.00 Mb Available Physical Memory | 52.00% Memory free 2.00 Gb Paging File | 2.00 Gb Available in Paging File | 81.00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 57.26 Gb Total Space | 16.41 Gb Free Space | 28.66% Space Free | Partition Type: NTFS D: Drive not present or media not loaded Drive E: | 403.92 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS Drive F: | 685.57 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS Drive G: | 2.08 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: CDFS Drive H: | 658.78 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS Drive I: | 590.65 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS Computer Name: RANDY Current User Name: Randy Sto. Domingo Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: On Skip Microsoft Files: On File Age = 90 Days Output = Standard Quick Scan [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2010/08/07 23:08:22 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Randy Sto. Domingo\My Documents\Downloads\Programs\OTL.exe PRC - [2010/05/20 17:19:16 | 000,088,176 | ---- | M] (McAfee, Inc.) -- c:\Program Files\McAfee\SiteAdvisor\McSACore.exe PRC - [2010/04/29 15:39:34 | 000,304,464 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe PRC - [2010/04/29 15:39:32 | 000,437,584 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe PRC - [2010/04/01 13:33:19 | 000,267,432 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe PRC - [2010/03/20 09:25:22 | 001,713,152 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Miscellaneous\Xpadder [5.7].exe PRC - [2010/03/02 11:28:31 | 000,282,792 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe PRC - [2010/02/24 10:28:09 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe PRC - [2010/01/29 16:24:14 | 003,179,952 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IDMan.exe PRC - [2010/01/14 22:11:00 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe PRC - [2010/01/06 17:23:32 | 000,142,648 | ---- | M] (FSPro Labs) -- C:\WINDOWS\system32\fsproflt.exe PRC - [2009/10/15 15:21:50 | 000,263,600 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IEMonitor.exe PRC - [2009/07/31 15:18:32 | 000,170,512 | ---- | M] (FarStone Technology Inc.) -- C:\Program Files\FarStone\VirtualDrive\vdtask.exe PRC - [2009/01/09 09:54:26 | 000,081,920 | ---- | M] () -- C:\WINDOWS\system32\SupportAppXL\cdrom_mon.exe PRC - [2008/09/29 05:09:20 | 000,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe PRC - [2008/04/14 19:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008/03/19 08:31:20 | 004,742,184 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe PRC - [2007/04/17 04:28:22 | 000,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE PRC - [2005/04/02 01:51:48 | 000,217,600 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2010/08/07 23:08:22 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Randy Sto. Domingo\My Documents\Downloads\Programs\OTL.exe MOD - [2010/07/14 13:30:14 | 000,018,688 | ---- | M] (McAfee, Inc.) -- c:\Program Files\McAfee\SiteAdvisor\sahook.dll MOD - [2008/04/14 19:00:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2010/07/16 23:46:56 | 000,822,048 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Documents and Settings\Randy Sto. Domingo\Local Settings\Temp\0154061281191887mcinst.exe -- (0154061281191887mcinstcleanup) McAfee Application Installer Cleanup (0154061281191887) SRV - [2010/05/20 17:19:16 | 000,088,176 | ---- | M] (McAfee, Inc.) [Auto | Running] -- c:\Program Files\McAfee\SiteAdvisor\McSACore.exe -- (McAfee SiteAdvisor Service) SRV - [2010/04/29 15:39:34 | 000,304,464 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService) SRV - [2010/04/01 13:33:19 | 000,267,432 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2010/02/24 10:28:09 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2010/01/06 17:23:32 | 000,142,648 | ---- | M] (FSPro Labs) [Auto | Running] -- C:\WINDOWS\system32\fsproflt.exe -- (fsproflt) SRV - [2009/01/09 09:54:26 | 000,081,920 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\SupportAppXL\cdrom_mon.exe -- (Autorun CDROM Monitor) SRV - [2008/09/29 05:09:20 | 000,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0) SRV - [2005/04/02 01:51:48 | 000,217,600 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe -- (StarWindService) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\ewusbdev.sys -- (hwusbdev) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\ewusbmdm.sys -- (hwdatacard) DRV - [2010/04/29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector) DRV - [2010/03/01 10:05:24 | 000,124,784 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb) DRV - [2010/02/16 14:24:01 | 000,060,936 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt) DRV - [2009/06/18 15:58:00 | 000,018,432 | ---- | M] (XOSLAB.COM) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\xlkfs.sys -- (xlkfs) DRV - [2009/05/11 12:49:19 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio) DRV - [2009/05/11 10:12:49 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2009/01/06 17:14:14 | 000,103,936 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbser6k.sys -- (ZTEusbser6k) DRV - [2009/01/06 17:14:14 | 000,103,936 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbnmea.sys -- (ZTEusbnmea) DRV - [2009/01/06 17:14:14 | 000,103,936 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbmdm6k.sys -- (ZTEusbmdm6k) DRV - [2008/10/31 03:10:48 | 000,117,120 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp) DRV - [2008/10/29 08:46:46 | 000,018,448 | ---- | M] (FarStone Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\fcdabus.sys -- (fcdabus) DRV - [2008/10/21 13:54:08 | 000,086,800 | ---- | M] (FarStone Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\fvxscsi.sys -- (FVXSCSI) DRV - [2008/06/05 18:37:54 | 000,043,792 | ---- | M] (FSPro Labs) [File_System | Boot | Running] -- C:\WINDOWS\System32\Drivers\FSPFltd.sys -- (FSProFilter) DRV - [2008/04/14 00:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum) DRV - [2008/04/14 00:06:40 | 000,040,960 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\sisagp.sys -- (sisagp) DRV - [2008/04/13 22:04:32 | 001,897,408 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2008/01/25 05:36:16 | 004,127,488 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2007/06/23 02:06:48 | 000,043,408 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\fsRamDsk.sys -- (fsRamDsk) DRV - [2006/12/01 14:23:58 | 000,392,122 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\usbVM303.sys -- (ZSMC303) DRV - [2006/10/02 12:38:48 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc) DRV - [2006/07/04 17:17:52 | 000,053,921 | ---- | M] (Compuware Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hid7906.sys -- (hid7906) DRV - [2006/04/25 10:57:42 | 000,428,160 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\vmfilter303.sys -- (vmfilter303) DRV - [2006/02/26 23:22:48 | 000,010,240 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvmpu401.sys -- (nvmpu401) Service for NVIDIA(R) nForce(TM) DRV - [2005/04/25 10:43:58 | 000,159,616 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\Vax347b.sys -- (Vax347b) DRV - [2004/04/30 09:33:00 | 000,005,248 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\Vax347s.sys -- (Vax347s) DRV - [2003/03/26 06:50:46 | 000,004,096 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\siside.sys -- (siside) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com.ph/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ph.msn.com/iat/us_ph.aspx IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 95 E9 4D DB 18 19 CB 01 [binary data] IE - HKCU\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "http://www.yahoo.com.ph/" FF - prefs.js..extensions.enabledItems: quickstores@quickstores.de:1.0.0 FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:4.2.0.5198 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: mozilla_cc@internetdownloadmanager.com:6.9.1 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21 FF - prefs.js..extensions.enabledItems: {73a6fe31-595d-460b-a920-fcc0f8843232}:2.0 FF - HKLM\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\Program Files\McAfee\SiteAdvisor [2010/08/07 22:43:20 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/07/24 21:13:21 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/08/06 22:08:38 | 000,000,000 | ---D | M] [2010/07/24 21:13:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Mozilla\Extensions [2010/07/02 22:14:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Mozilla\Extensions\mozswing@mozswing.org [2010/08/07 22:32:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Mozilla\Firefox\Profiles\hunz3z3c.default\extensions [2010/08/07 22:27:18 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Mozilla\Firefox\Profiles\hunz3z3c.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010/08/07 22:32:13 | 000,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Mozilla\Firefox\Profiles\hunz3z3c.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232} [2010/08/07 22:32:21 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010/07/02 20:38:02 | 000,000,000 | ---D | M] (Skype extension for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1} [2010/08/06 22:08:42 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2010/07/02 00:04:29 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\quickstores@quickstores.de [2010/07/17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2007/03/10 07:16:44 | 000,189,496 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npyaxmpb.dll O1 HOSTS File: ([2008/04/14 19:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (IDMIEHlprObj Class) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll (Tonec Inc.) O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [VirtualDrive] C:\Program Files\FarStone\VirtualDrive\VDTask.exe (FarStone Technology Inc.) O4 - HKCU..\Run: [Xpadder] C:\Documents and Settings\Randy Sto. Domingo\Desktop\Miscellaneous\Xpadder [5.7].exe () O4 - HKLM..\RunOnce: [FsVdInstReboot] Reg Error: Invalid data type. File not found O4 - Startup: C:\Documents and Settings\Randy Sto. Domingo\Start Menu\Programs\Startup\Yahoo! Widgets.lnk = C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe (Yahoo! Inc.) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 992 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0 O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm () O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm () O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm () O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation) O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation) O13 - gopher Prefix: missing O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\Yinsthelper.dll (Installation Support) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Value error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 124.106.5.2 124.104.135.67 58.69.254.13 O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\Documents and Settings\Randy Sto. Domingo\My Documents\My Pictures\Wallpapers\Mario and Sonic.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Randy Sto. Domingo\My Documents\My Pictures\Wallpapers\Mario and Sonic.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010/07/01 20:16:43 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2008/09/25 12:28:59 | 000,000,000 | R--D | M] - E:\AutoRun -- [ CDFS ] O32 - AutoRun File - [2003/09/01 07:01:28 | 001,101,824 | R--- | M] () - E:\Autorun.exe -- [ CDFS ] O32 - AutoRun File - [2003/08/31 11:15:46 | 000,000,027 | R--- | M] () - E:\autorun.inf -- [ CDFS ] O32 - AutoRun File - [2003/08/31 11:15:25 | 000,001,214 | R--- | M] () - E:\autorun.str -- [ CDFS ] O32 - AutoRun File - [2004/09/05 09:37:45 | 000,000,000 | R--D | M] - F:\Autorun -- [ CDFS ] O32 - AutoRun File - [2004/08/31 02:14:20 | 000,172,032 | R--- | M] () - F:\Autorun.exe -- [ CDFS ] O32 - AutoRun File - [2004/06/22 05:27:12 | 000,000,044 | R--- | M] () - F:\autorun.inf -- [ CDFS ] O32 - AutoRun File - [2003/06/25 20:30:20 | 000,745,472 | R--- | M] (Atari) - G:\Autorun.exe -- [ CDFS ] O32 - AutoRun File - [2003/04/14 19:50:42 | 000,000,045 | R--- | M] () - G:\Autorun.inf -- [ CDFS ] O32 - AutoRun File - [2001/08/14 05:05:24 | 001,572,864 | R--- | M] () - H:\Autorun.exe -- [ CDFS ] O32 - AutoRun File - [2001/07/26 06:36:12 | 000,000,135 | R--- | M] () - H:\Autorun.inf -- [ CDFS ] O32 - AutoRun File - [2003/10/17 19:25:22 | 011,636,736 | R--- | M] () - I:\autorun.exe -- [ CDFS ] O32 - AutoRun File - [2003/08/22 13:33:38 | 000,000,049 | R--- | M] () - I:\autorun.inf -- [ CDFS ] O33 - MountPoints2\{20746e42-8511-11df-922e-001d0fffb640}\Shell - "" = AutoRun O33 - MountPoints2\{20746e42-8511-11df-922e-001d0fffb640}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{20746e42-8511-11df-922e-001d0fffb640}\Shell\AutoRun\command - "" = F:\Autorun.exe -- [2004/08/31 02:14:20 | 000,172,032 | R--- | M] () O33 - MountPoints2\{20746e43-8511-11df-922e-001d0fffb640}\Shell - "" = AutoRun O33 - MountPoints2\{20746e43-8511-11df-922e-001d0fffb640}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{20746e43-8511-11df-922e-001d0fffb640}\Shell\AutoRun\command - "" = G:\Autorun.exe -- [2003/06/25 20:30:20 | 000,745,472 | R--- | M] (Atari) O33 - MountPoints2\{20746e44-8511-11df-922e-001d0fffb640}\Shell - "" = AutoRun O33 - MountPoints2\{20746e44-8511-11df-922e-001d0fffb640}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{20746e44-8511-11df-922e-001d0fffb640}\Shell\AutoRun\command - "" = H:\Autorun.exe -- [2001/08/14 05:05:24 | 001,572,864 | R--- | M] () O33 - MountPoints2\{20746e44-8511-11df-922e-001d0fffb640}\Shell\readit\command - "" = notepad readme.doc O33 - MountPoints2\{20746e45-8511-11df-922e-001d0fffb640}\Shell - "" = AutoRun O33 - MountPoints2\{20746e45-8511-11df-922e-001d0fffb640}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{20746e45-8511-11df-922e-001d0fffb640}\Shell\AutoRun\command - "" = I:\autorun.exe -- [2003/10/17 19:25:22 | 011,636,736 | R--- | M] () O33 - MountPoints2\{4e71dfca-85cc-11df-9234-001d0fffb640}\Shell - "" = AutoRun O33 - MountPoints2\{4e71dfca-85cc-11df-9234-001d0fffb640}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{4e71dfca-85cc-11df-9234-001d0fffb640}\Shell\AutoRun\command - "" = E:\Autorun.exe -- [2003/09/01 07:01:28 | 001,101,824 | R--- | M] () O33 - MountPoints2\{7d46b41c-9720-11df-9264-001d0fffb640}\Shell - "" = AutoRun O33 - MountPoints2\{7d46b41c-9720-11df-9264-001d0fffb640}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{7d46b41c-9720-11df-9264-001d0fffb640}\Shell\AutoRun\command - "" = K:\AutoRun.exe -- File not found O33 - MountPoints2\{ad662084-9887-11df-926c-001d0fffb640}\Shell - "" = AutoRun O33 - MountPoints2\{ad662084-9887-11df-926c-001d0fffb640}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{ad662084-9887-11df-926c-001d0fffb640}\Shell\AutoRun\command - "" = K:\AutoRun.exe -- File not found O33 - MountPoints2\{ad662087-9887-11df-926c-001d0fffb640}\Shell - "" = AutoRun O33 - MountPoints2\{ad662087-9887-11df-926c-001d0fffb640}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{ad662087-9887-11df-926c-001d0fffb640}\Shell\AutoRun\command - "" = K:\AutoRun.exe -- File not found O33 - MountPoints2\{ad662089-9887-11df-926c-001d0fffb640}\Shell - "" = AutoRun O33 - MountPoints2\{ad662089-9887-11df-926c-001d0fffb640}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{ad662089-9887-11df-926c-001d0fffb640}\Shell\AutoRun\command - "" = K:\AutoRun.exe -- File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found Drivers32: msacm.ac3acm - C:\WINDOWS\System32\ac3acm.acm (fccHandler) Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation) Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.lameacm - C:\WINDOWS\System32\lameACM.acm (http://www.mp3dev.org/) Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.) Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.) Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation) Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.) Drivers32: VIDC.FFDS - C:\WINDOWS\System32\ff_vfw.dll () Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax () Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll () Drivers32: VIDC.XVID - C:\WINDOWS\System32\xvidvfw.dll () Drivers32: VIDC.YV12 - C:\WINDOWS\System32\yv12vfw.dll (www.helixcommunity.org) CREATERESTOREPOINT Restore point Set: OTL Restore Point (56590081070202880) [color=#E56717]========== Files/Folders - Created Within 90 Days ==========[/color] [2010/08/07 22:38:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\McAfee [2010/08/07 22:37:49 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee [2010/08/07 22:37:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood [2010/08/07 22:37:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\McAfee [2010/08/07 22:04:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT [2010/08/07 22:03:37 | 000,000,000 | ---D | C] -- C:\Program Files\ERUNT [2010/08/06 22:14:21 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2010/08/03 23:15:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Blizzard Entertainment [2010/08/03 23:15:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\My Documents\StarCraft II [2010/08/01 22:27:24 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\GroupPolicy [2010/08/01 22:20:46 | 000,000,000 | ---D | C] -- C:\logs [2010/07/31 23:00:04 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro [2010/07/26 21:56:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\n7-89-o9-3r-4t-r9 [2010/07/26 21:53:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\GameHouse [2010/07/26 21:53:54 | 000,000,000 | ---D | C] -- C:\Program Files\GameHouse [2010/07/26 21:37:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Trymedia [2010/07/26 15:31:13 | 000,000,000 | ---D | C] -- C:\Program Files\Sun Broadband Wireless [2010/07/25 21:51:14 | 000,000,000 | ---D | C] -- C:\Program Files\Sega [2010/07/25 21:15:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\My Documents\Month Calendar [2010/07/25 18:59:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\My Documents\My Widgets [2010/07/24 21:13:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Local Settings\Application Data\Mozilla [2010/07/24 20:40:39 | 000,103,936 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbser6k.sys [2010/07/24 20:40:39 | 000,103,936 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbnmeaext.sys [2010/07/24 20:40:39 | 000,103,936 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbnmea.sys [2010/07/24 20:40:39 | 000,103,936 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbmdm6k.sys [2010/07/24 20:40:29 | 000,000,000 | ---D | C] -- C:\Program Files\SMART BRO [2010/07/24 20:39:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SupportAppXL [2010/07/15 18:22:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\EleFun Games [2010/07/12 20:22:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Fugazo [2010/07/11 10:51:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\PlayFirst [2010/07/11 10:51:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PlayFirst [2010/07/08 22:07:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Avira [2010/07/05 13:54:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\Zuma's Revenge [2010/07/05 13:54:29 | 000,000,000 | ---D | C] -- C:\Program Files\Zuma's Revenge [2010/07/05 02:16:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2010/07/05 02:11:33 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2010/07/04 23:23:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles [2010/07/04 22:38:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2010/07/04 22:36:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Comodo Downloader [2010/07/04 21:42:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2010/07/04 12:52:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData [2010/07/04 12:51:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Avira [2010/07/04 12:38:36 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys [2010/07/04 12:38:33 | 000,124,784 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys [2010/07/04 12:38:33 | 000,060,936 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys [2010/07/04 12:38:33 | 000,045,416 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntdd.sys [2010/07/04 12:38:33 | 000,022,360 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntmgr.sys [2010/07/04 12:38:32 | 000,000,000 | ---D | C] -- C:\Program Files\Avira [2010/07/04 12:38:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Avira [2010/07/03 22:47:28 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Randy Sto. Domingo\My Documents\My Videos [2010/07/03 20:19:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Burger Island 2 [2010/07/03 20:17:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SWF Studio [2010/07/03 20:17:18 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\.# [2010/07/02 23:16:35 | 000,720,896 | ---- | C] (Indigo Rose Corporation) -- C:\WINDOWS\iun6002.exe [2010/07/02 23:16:34 | 000,000,000 | ---D | C] -- C:\Program Files\TuneXP [2010/07/02 22:42:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\GlarySoft [2010/07/02 22:15:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\My Documents\LimeWire [2010/07/02 22:14:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Mozilla [2010/07/02 22:14:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\LimeWire [2010/07/02 22:01:03 | 000,000,000 | ---D | C] -- C:\Program Files\EA SPORTS [2010/07/02 21:33:59 | 000,000,000 | ---D | C] -- C:\Westwood [2010/07/02 20:55:00 | 000,005,248 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\Vax347s.sys [2010/07/02 20:54:59 | 000,159,616 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\Vax347b.sys [2010/07/02 20:54:53 | 000,000,000 | ---D | C] -- C:\Program Files\Alcohol Soft [2010/07/02 20:49:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\CyberLink [2010/07/02 20:47:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Nero [2010/07/02 20:46:20 | 000,000,000 | ---D | C] -- C:\Program Files\mIRC [2010/07/02 20:46:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\mIRC [2010/07/02 20:43:59 | 000,000,000 | ---D | C] -- C:\Program Files\Chikka Messenger [2010/07/02 20:39:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\skypePM [2010/07/02 20:38:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Skype [2010/07/02 20:36:54 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype [2010/07/02 20:36:20 | 000,000,000 | R--D | C] -- C:\Program Files\Skype [2010/07/02 19:43:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\FarmFrenzy-PizzaParty [2010/07/02 19:29:46 | 000,000,000 | ---D | C] -- C:\Program Files\CAPCOM [2010/07/02 19:19:21 | 000,000,000 | ---D | C] -- C:\Program Files\EA GAMES [2010/07/02 19:15:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2010/07/02 07:44:14 | 000,000,000 | ---D | C] -- C:\Program Files\GameSpy Arcade [2010/07/02 07:35:51 | 000,000,000 | ---D | C] -- C:\Program Files\Liquid Entertainment [2010/07/02 07:23:21 | 000,139,264 | ---- | C] (Blizzard Entertainment) -- C:\WINDOWS\War3Unin.exe [2010/07/02 07:21:29 | 000,000,000 | ---D | C] -- C:\Program Files\Warcraft III [2010/07/02 07:16:30 | 000,086,016 | ---- | C] (MindVision Software) -- C:\WINDOWS\unvise32.exe [2010/07/02 07:16:02 | 000,000,000 | ---D | C] -- C:\nebula [2010/07/02 07:09:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\fltk.org [2010/07/02 07:08:33 | 000,000,000 | ---D | C] -- C:\mvc [2010/07/02 07:06:46 | 000,000,000 | ---D | C] -- C:\Arquivos de Programas [2010/07/02 07:05:10 | 000,000,000 | ---D | C] -- C:\Program Files\Easy File Locker [2010/07/02 04:01:06 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music [2010/07/02 04:00:40 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2010/07/02 04:00:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2010/07/02 04:00:35 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2010/07/02 04:00:35 | 000,000,000 | ---D | C] -- C:\Program Files [2010/07/02 04:00:35 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2010/07/02 04:00:35 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2010/07/02 04:00:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu [2010/07/02 04:00:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents [2010/07/02 04:00:02 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Templates [2010/07/02 04:00:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Favorites [2010/07/02 04:00:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Desktop [2010/07/02 03:59:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2010/07/02 03:59:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2010/07/02 03:59:40 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft [2010/07/02 03:59:40 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data [2010/07/02 03:58:17 | 000,117,120 | ---- | C] (Realtek Semiconductor Corporation ) -- C:\WINDOWS\System32\drivers\Rtnicxp.sys [2010/07/02 03:58:15 | 000,009,728 | ---- | C] (Realtek Semiconductor Corporation ) -- C:\WINDOWS\System32\RtNicProp32.dll [2010/07/02 03:57:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2010/07/02 03:57:53 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2010/07/02 03:52:46 | 000,000,000 | --SD | C] -- C:\WINDOWS\Offline Web Pages [2010/07/02 03:52:46 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2010/07/02 03:52:46 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2010/07/02 03:52:46 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2010/07/02 03:52:46 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2010/07/02 03:52:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2010/07/02 03:52:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2010/07/02 02:23:01 | 000,000,000 | ---D | C] -- C:\Program Files\Mario Forever [2010/07/02 02:14:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\Farm Frenzy Pizza Party [2010/07/02 02:14:22 | 000,000,000 | ---D | C] -- C:\Program Files\Farm Frenzy Pizza Party [2010/07/02 02:13:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cake Shop [2010/07/02 02:13:44 | 000,000,000 | ---D | C] -- C:\Program Files\Cake Shop [2010/07/02 02:13:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Tropical Swaps 2 [2010/07/02 02:13:10 | 000,000,000 | ---D | C] -- C:\Program Files\Tropical Swaps 2 [2010/07/02 02:12:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\Candy Ball [2010/07/02 02:12:14 | 000,000,000 | ---D | C] -- C:\Program Files\Candy Ball [2010/07/02 02:10:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cooking Academy 2 World Cuisine [2010/07/02 02:10:58 | 000,000,000 | ---D | C] -- C:\Program Files\Cooking Academy 2 World Cuisine [2010/07/02 02:10:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Diner Dash Flo Through Time [2010/07/02 02:10:21 | 000,000,000 | ---D | C] -- C:\Program Files\Diner Dash Flo Through Time [2010/07/02 02:09:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Burger Island 2 [2010/07/02 02:09:38 | 000,000,000 | ---D | C] -- C:\Program Files\Burger Island 2 [2010/07/02 01:52:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PopCap Games [2010/07/02 01:50:12 | 000,000,000 | ---D | C] -- C:\Program Files\PopCap Games [2010/07/02 01:37:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Leadertech [2010/07/02 01:35:48 | 000,000,000 | ---D | C] -- C:\Program Files\Atari [2010/07/02 01:26:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\My Documents\VCD [2010/07/02 01:17:02 | 000,000,000 | ---D | C] -- C:\Program Files\THQ [2010/07/02 01:15:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Games [2010/07/02 01:13:19 | 000,053,921 | ---- | C] (Compuware Corporation) -- C:\WINDOWS\System32\drivers\hid7906.sys [2010/07/02 01:13:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\USB Vibration [2010/07/02 01:13:03 | 000,000,000 | ---D | C] -- C:\Program Files\USB Vibration [2010/07/02 01:10:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\EffectResources [2010/07/02 01:10:38 | 000,428,160 | ---- | C] (Vimicro Corporation) -- C:\WINDOWS\System32\drivers\vmfilter303.sys [2010/07/02 01:10:38 | 000,392,122 | ---- | C] (Vimicro Corporation) -- C:\WINDOWS\System32\drivers\usbVM303.sys [2010/07/02 01:10:38 | 000,278,589 | ---- | C] (Vimicro) -- C:\WINDOWS\System32\VM303Prp.Ax [2010/07/02 01:10:38 | 000,102,400 | ---- | C] (www.zsmc.com.cn) -- C:\WINDOWS\VM303Cap.exe [2010/07/02 01:10:38 | 000,081,920 | ---- | C] (VM) -- C:\WINDOWS\System32\VM303STI.dll [2010/07/02 01:10:38 | 000,049,152 | ---- | C] (ZSMCSNAP) -- C:\WINDOWS\vmsnap3.exe [2010/07/02 01:10:38 | 000,049,152 | ---- | C] (Vimicro) -- C:\WINDOWS\Domino.exe [2010/07/02 01:10:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2010/07/02 01:10:29 | 000,000,000 | ---D | C] -- C:\Program Files\Vimicro [2010/07/02 01:10:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\InstallShield [2010/07/02 01:08:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\Free CD Music Converter [2010/07/02 01:08:19 | 000,000,000 | ---D | C] -- C:\Program Files\Free CD Music Converter [2010/07/02 00:52:18 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Sidebar [2010/07/02 00:44:58 | 000,000,000 | ---D | C] -- C:\Program Files\Nero [2010/07/02 00:44:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Nero [2010/07/02 00:44:27 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero [2010/07/02 00:33:54 | 000,000,000 | ---D | C] -- C:\Program Files\Jasc Software Inc [2010/07/02 00:27:24 | 000,142,648 | ---- | C] (FSPro Labs) -- C:\WINDOWS\System32\fsproflt.exe [2010/07/02 00:27:23 | 000,043,792 | ---- | C] (FSPro Labs) -- C:\WINDOWS\System32\drivers\FSPFltd.sys [2010/07/02 00:27:22 | 000,000,000 | ---D | C] -- C:\Program Files\My Lockbox [2010/07/02 00:23:53 | 000,000,000 | ---D | C] -- C:\Program Files\Glary Utilities [2010/07/02 00:17:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\CyberLink [2010/07/02 00:16:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\My Documents\CyberLink [2010/07/02 00:16:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\CyberLink [2010/07/02 00:09:47 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2010/07/02 00:09:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SmartSound Software Inc [2010/07/02 00:09:40 | 000,000,000 | ---D | C] -- C:\Program Files\SmartSound Software [2010/07/02 00:08:31 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime [2010/07/02 00:08:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple Computer [2010/07/02 00:08:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Local Settings\Application Data\Apple [2010/07/02 00:08:11 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update [2010/07/02 00:08:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple [2010/07/02 00:07:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Local Settings\Application Data\Apple Computer [2010/07/02 00:05:03 | 000,000,000 | ---D | C] -- C:\Program Files\CyberLink [2010/07/02 00:04:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\My Documents\FFOutput [2010/07/02 00:04:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\QuickStoresToolbar [2010/07/02 00:04:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Temp [2010/07/02 00:02:37 | 000,000,000 | ---D | C] -- C:\Program Files\FreeTime [2010/07/02 00:01:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\My Documents\MemoriesOnTV [2010/07/01 23:56:26 | 000,000,000 | ---D | C] -- C:\Program Files\MemoriesOnTV4 [2010/07/01 23:55:32 | 000,000,000 | ---D | C] -- C:\Program Files\Photo Story 3 for Windows [2010/07/01 23:53:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\My Documents\Documents [2010/07/01 23:50:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\My Documents\XPadder Game Pads [2010/07/01 23:47:14 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010/07/01 23:40:13 | 000,000,000 | ---D | C] -- C:\Program Files\LimeWire [2010/07/01 23:37:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Trillian [2010/07/01 23:37:12 | 000,000,000 | ---D | C] -- C:\Program Files\Trillian [2010/07/01 23:35:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Skype [2010/07/01 23:30:31 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\pcouffin.sys [2010/07/01 23:30:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Vso [2010/07/01 23:30:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\My Documents\PcSetup [2010/07/01 23:30:17 | 000,626,688 | ---- | C] (On2.com) -- C:\WINDOWS\System32\vp7vfw.dll [2010/07/01 23:30:12 | 000,000,000 | ---D | C] -- C:\Program Files\VSO [2010/07/01 23:27:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\IDM [2010/07/01 23:27:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\DMCache [2010/07/01 23:27:26 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Download Manager [2010/07/01 23:25:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Miscellaneous [2010/07/01 23:24:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\My Documents\Downloads [2010/07/01 23:18:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Local Settings\Application Data\Yahoo [2010/07/01 23:14:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\BitTorrent [2010/07/01 23:14:15 | 000,000,000 | ---D | C] -- C:\Program Files\BitTorrent [2010/07/01 23:12:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt [2010/07/01 23:08:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\My Documents\The KMPlayer [2010/07/01 23:08:55 | 000,000,000 | ---D | C] -- C:\searchplugins [2010/07/01 23:08:16 | 000,000,000 | ---D | C] -- C:\Program Files\The KMPlayer [2010/07/01 23:07:51 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2010/07/01 23:05:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Yahoo! [2010/07/01 23:05:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Yahoo! [2010/07/01 22:57:11 | 000,000,000 | ---D | C] -- C:\Program Files\Yahoo! [2010/07/01 22:56:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe [2010/07/01 22:56:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2010/07/01 22:56:01 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2010/07/01 22:53:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2010/07/01 22:49:13 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works [2010/07/01 22:48:42 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio [2010/07/01 22:48:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2010/07/01 22:48:00 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2010/07/01 22:44:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2010/07/01 22:44:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Local Settings\Application Data\Microsoft Help [2010/07/01 22:43:50 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2010/07/01 22:43:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft Help [2010/07/01 22:43:21 | 000,000,000 | RH-D | C] -- C:\MSOCache [2010/07/01 22:39:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\WinRAR [2010/07/01 22:39:05 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2010/07/01 22:37:56 | 000,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\WINDOWS\System32\lameACM.acm [2010/07/01 22:37:56 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\yv12vfw.dll [2010/07/01 22:37:56 | 000,151,552 | ---- | C] (fccHandler) -- C:\WINDOWS\System32\ac3acm.acm [2010/07/01 22:37:51 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack [2010/07/01 22:31:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\farstone [2010/07/01 22:30:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\FarStone [2010/07/01 22:27:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2010/07/01 22:26:50 | 000,086,800 | ---- | C] (FarStone Inc.) -- C:\WINDOWS\System32\drivers\fvxscsi.sys [2010/07/01 22:26:50 | 000,018,448 | ---- | C] (FarStone Inc.) -- C:\WINDOWS\System32\drivers\fcdabus.sys [2010/07/01 22:26:32 | 000,000,000 | ---D | C] -- C:\Program Files\FarStone [2010/07/01 22:25:48 | 000,086,016 | ---- | C] (FarStone Technology, Inc.) -- C:\WINDOWS\System32\Dversion.dll [2010/07/01 22:25:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2010/07/01 22:23:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Macromedia [2010/07/01 22:23:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Adobe [2010/07/01 22:19:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun [2010/07/01 22:18:51 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2010/07/01 22:14:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Sun [2010/07/01 22:09:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2010/07/01 22:09:07 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2010/07/01 22:08:56 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2010/07/01 22:08:12 | 000,000,000 | ---D | C] -- C:\e629fd07d7de1bf0204d8aac5ae888 [2010/07/01 22:07:08 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2010/07/01 22:06:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2010/07/01 21:24:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Malwarebytes [2010/07/01 21:24:17 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010/07/01 21:24:16 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2010/07/01 21:24:16 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2010/07/01 21:24:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes [2010/07/01 21:07:12 | 000,000,000 | ---D | C] -- C:\Program Files\IObit [2010/07/01 21:07:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\IObit [2010/07/01 20:58:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Google [2010/07/01 20:50:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Local Settings\Application Data\Temp [2010/07/01 20:50:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Google [2010/07/01 20:50:12 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2010/07/01 20:50:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Local Settings\Application Data\Google [2010/07/01 20:49:50 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software [2010/07/01 20:49:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Alwil Software [2010/07/01 20:28:45 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Randy Sto. Domingo\IECompatCache [2010/07/01 20:28:07 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Randy Sto. Domingo\PrivacIE [2010/07/01 20:23:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Identities [2010/07/01 20:23:46 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Randy Sto. Domingo\My Documents\My Pictures [2010/07/01 20:23:46 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Randy Sto. Domingo\My Documents\My Music [2010/07/01 20:23:46 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2010/07/01 20:22:30 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Randy Sto. Domingo\Local Settings\Application Data\Microsoft [2010/07/01 20:22:30 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Microsoft [2010/07/01 20:22:30 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Randy Sto. Domingo\SendTo [2010/07/01 20:22:30 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Recent [2010/07/01 20:22:30 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data [2010/07/01 20:22:30 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Start Menu [2010/07/01 20:22:30 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Randy Sto. Domingo\My Documents [2010/07/01 20:22:30 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Favorites [2010/07/01 20:22:30 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Randy Sto. Domingo\IETldCache [2010/07/01 20:22:30 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Randy Sto. Domingo\Cookies [2010/07/01 20:22:30 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Templates [2010/07/01 20:22:30 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Randy Sto. Domingo\PrintHood [2010/07/01 20:22:30 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Randy Sto. Domingo\NetHood [2010/07/01 20:22:30 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Local Settings [2010/07/01 20:22:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Randy Sto. Domingo\Desktop [2010/07/01 20:20:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2010/07/01 20:20:43 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2010/07/01 20:20:42 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft [2010/07/01 20:20:42 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Application Data\Microsoft [2010/07/01 20:20:31 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft [2010/07/01 20:20:31 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft [2010/07/01 20:18:56 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2010/07/01 20:18:56 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2010/07/01 20:18:56 | 000,029,184 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll [2010/07/01 20:17:47 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2010/07/01 20:17:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2010/07/01 20:17:19 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2010/07/01 20:17:19 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2010/07/01 20:17:02 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2010/07/01 20:15:36 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2010/07/01 20:15:14 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2010/07/01 20:14:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2010/07/01 20:14:27 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2010/07/01 20:14:24 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2010/07/01 20:14:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2010/07/01 20:14:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2010/07/01 20:14:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2010/07/01 20:14:03 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2010/07/01 20:13:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2010/07/01 20:13:32 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2010/07/01 20:13:28 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2010/07/01 20:13:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2010/07/01 20:13:19 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2010/07/01 20:13:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Pictures [2010/07/01 20:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2010/07/01 20:12:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2010/07/01 20:12:23 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services [2010/07/01 20:12:10 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2 [2010/07/01 20:12:09 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2010/07/01 20:12:08 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2010/07/01 20:12:05 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2010/07/01 20:11:30 | 000,281,088 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe [2010/07/01 20:11:30 | 000,000,000 | ---D | C] -- C:\Program Files\MSN [2010/07/01 20:11:29 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2010/07/01 20:11:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2010/07/01 20:11:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2010/07/01 20:11:09 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Videos [color=#E56717]========== Files - Modified Within 90 Days ==========[/color] [2010/08/07 23:37:04 | 000,001,030 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2000478354-1647877149-1177238915-1003UA.job [2010/08/07 23:25:04 | 000,000,910 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2010/08/07 21:56:31 | 000,002,640 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\UpdateLog.GDZ [2010/08/07 21:55:00 | 000,000,338 | ---- | M] () -- C:\WINDOWS\tasks\GlaryInitialize.job [2010/08/07 21:54:51 | 000,000,906 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2010/08/07 21:54:25 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010/08/07 21:54:20 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010/08/07 21:54:19 | 1073,274,880 | -HS- | M] () -- C:\hiberfil.sys [2010/08/07 21:53:32 | 004,456,448 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\NTUSER.DAT [2010/08/07 21:53:32 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\ntuser.ini [2010/08/07 21:48:34 | 000,053,872 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\My Documents\GeekstoGo Malware Removal.docx [2010/08/07 21:41:29 | 000,002,515 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Microsoft Office Word 2007.lnk [2010/08/07 21:07:52 | 008,582,890 | -H-- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Local Settings\Application Data\IconCache.db [2010/08/06 20:13:04 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010/08/02 13:20:52 | 000,002,617 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Battle Realms.lnk [2010/08/01 22:21:08 | 000,002,415 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk [2010/08/01 12:33:23 | 000,000,526 | -H-- | M] () -- C:\WINDOWS\popcreg.dat [2010/08/01 12:33:23 | 000,000,184 | ---- | M] () -- C:\WINDOWS\popcinfot.dat [2010/07/31 21:26:30 | 000,000,734 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Start Menu\Programs\Startup\Yahoo! Widgets.lnk [2010/07/31 00:49:10 | 000,001,849 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Tekken 3.lnk [2010/07/26 15:35:14 | 000,435,260 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010/07/26 15:35:14 | 000,068,156 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010/07/26 15:35:13 | 000,509,574 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010/07/24 21:13:25 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat [2010/07/24 20:40:38 | 000,001,526 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\SMART BRO.lnk [2010/07/21 22:43:21 | 000,000,766 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Trillian.lnk [2010/07/12 12:37:15 | 000,000,978 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2000478354-1647877149-1177238915-1003Core.job [2010/07/05 17:09:16 | 000,049,624 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Local Settings\Application Data\GDIPFONTCACHEV1.DAT [2010/07/05 17:03:16 | 000,200,144 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010/07/05 15:38:33 | 000,001,355 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2010/07/05 15:29:05 | 000,000,906 | ---- | M] () -- C:\WINDOWS\win.ini [2010/07/05 14:36:22 | 000,000,414 | ---- | M] () -- C:\WINDOWS\tasks\AWC Update.job [2010/07/04 21:24:53 | 002,883,584 | -H-- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\NTUSER.DAT.gbck [2010/07/04 12:39:01 | 000,001,707 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Avira AntiVir Control Center.lnk [2010/07/04 12:10:02 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010/07/02 23:16:20 | 000,720,896 | ---- | M] (Indigo Rose Corporation) -- C:\WINDOWS\iun6002.exe [2010/07/02 22:41:48 | 000,000,384 | ---- | M] () -- C:\WINDOWS\tasks\GlaryUpdate.job [2010/07/02 22:12:38 | 000,001,772 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\EA SPORTS™ NBA LIVE 08.lnk [2010/07/02 21:50:23 | 000,001,443 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Yuri's Revenge.lnk [2010/07/02 21:21:55 | 000,000,976 | ---- | M] () -- C:\WINDOWS\eReg.dat [2010/07/02 21:19:17 | 000,001,619 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Command & Conquer Generals Zero Hour .lnk [2010/07/02 20:56:10 | 000,034,308 | ---- | M] () -- C:\WINDOWS\System32\BASSMOD.dll [2010/07/02 20:46:21 | 000,000,626 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\mIRC.lnk [2010/07/02 20:44:10 | 000,001,743 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Chikka Messenger v.4.lnk [2010/07/02 20:39:48 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat [2010/07/02 19:34:34 | 000,001,628 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\biohazard 4.lnk [2010/07/02 19:32:05 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Devil May Cry 3 Special Edition.lnk [2010/07/02 19:24:12 | 000,001,822 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Need for Speed™ Most Wanted.lnk [2010/07/02 07:38:03 | 000,000,000 | ---- | M] () -- C:\WINDOWS\PowerReg.dat [2010/07/02 07:29:34 | 000,065,028 | ---- | M] () -- C:\WINDOWS\War3Unin.dat [2010/07/02 07:28:37 | 000,001,619 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Frozen Throne.lnk [2010/07/02 07:28:27 | 000,139,264 | ---- | M] (Blizzard Entertainment) -- C:\WINDOWS\War3Unin.exe [2010/07/02 07:28:27 | 000,002,829 | ---- | M] () -- C:\WINDOWS\War3Unin.pif [2010/07/02 07:16:30 | 000,000,494 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Metal Slug.lnk [2010/07/02 07:09:12 | 000,001,305 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Marvel vs Capcom.lnk [2010/07/02 07:05:22 | 000,023,552 | ---- | M] () -- C:\WINDOWS\xlkfs.dll [2010/07/02 04:05:54 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF [2010/07/02 04:00:34 | 000,000,231 | ---- | M] () -- C:\WINDOWS\system.ini [2010/07/02 01:56:13 | 000,000,014 | ---- | M] () -- C:\WINDOWS\popcinfo.dat [2010/07/02 01:24:25 | 000,001,949 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\CyberLink PowerDirector.lnk [2010/07/02 01:08:23 | 000,001,683 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Free CD Music Converter.lnk [2010/07/02 00:49:38 | 000,002,369 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Nero StartSmart.lnk [2010/07/02 00:34:41 | 000,002,427 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Paint Shop Pro 7.lnk [2010/07/02 00:27:24 | 000,000,683 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\My Documents\My Lockbox.lnk [2010/07/02 00:08:20 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job [2010/07/02 00:03:01 | 000,000,851 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Format Factory.lnk [2010/07/01 23:56:31 | 000,001,603 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\MemoriesOnTV4.lnk [2010/07/01 23:55:49 | 000,001,537 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Photo Story 3 for Windows.lnk [2010/07/01 23:40:30 | 000,001,578 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\LimeWire 5.5.8.lnk [2010/07/01 23:32:19 | 000,001,041 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\vso_ts_preview.xml [2010/07/01 23:30:32 | 000,087,608 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\inst.exe [2010/07/01 23:30:32 | 000,047,360 | ---- | M] (VSO Software) -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\pcouffin.sys [2010/07/01 23:30:32 | 000,007,887 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\pcouffin.cat [2010/07/01 23:30:31 | 000,001,144 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\pcouffin.inf [2010/07/01 23:30:29 | 000,000,859 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\ConvertXtoDVD 4.lnk [2010/07/01 23:14:21 | 000,000,728 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\BitTorrent.lnk [2010/07/01 23:08:31 | 000,000,710 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\KMPlayer.lnk [2010/07/01 23:07:56 | 000,001,620 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk [2010/07/01 23:07:56 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk [2010/07/01 23:05:10 | 000,000,820 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk [2010/07/01 23:05:10 | 000,000,802 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Yahoo! Messenger.lnk [2010/07/01 22:50:54 | 000,002,561 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Microsoft Office Excel 2007.lnk [2010/07/01 22:50:51 | 000,002,551 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Microsoft Office PowerPoint 2007.lnk [2010/07/01 22:39:13 | 000,000,692 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\WinRAR.lnk [2010/07/01 22:27:51 | 000,001,561 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\VirtualDrive Pro Manager.lnk [2010/07/01 22:27:44 | 000,000,261 | ---- | M] () -- C:\inVHDDrvLog.dat [2010/07/01 22:25:48 | 000,118,784 | ---- | M] () -- C:\WINDOWS\System32\DVC.dll [2010/07/01 22:25:48 | 000,086,016 | ---- | M] (FarStone Technology, Inc.) -- C:\WINDOWS\System32\Dversion.dll [2010/07/01 22:25:48 | 000,086,016 | ---- | M] () -- C:\WINDOWS\System32\RDrv2KInterface.dll [2010/07/01 22:25:48 | 000,036,864 | ---- | M] () -- C:\WINDOWS\System32\unVHDDrvExe.exe [2010/07/01 22:25:48 | 000,032,768 | ---- | M] () -- C:\WINDOWS\System32\inVHDDrvExe.exe [2010/07/01 22:25:48 | 000,028,672 | ---- | M] () -- C:\WINDOWS\System32\RDrvInterface.dll [2010/07/01 21:24:20 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk [2010/07/01 20:26:43 | 000,000,803 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Internet Explorer.lnk [2010/07/01 20:24:02 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf [2010/07/01 20:24:00 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [2010/07/01 20:23:53 | 000,000,782 | ---- | M] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Windows Media Player.lnk [2010/07/01 20:20:36 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2010/07/01 20:19:39 | 000,000,342 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2010/07/01 20:16:43 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010/07/01 20:16:43 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010/07/01 20:16:43 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini [2010/07/01 20:16:43 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010/07/01 20:16:43 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010/07/01 20:16:36 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2010/07/01 20:16:36 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2010/07/01 20:16:34 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2010/07/01 20:16:24 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2010/07/01 20:15:25 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010/07/01 20:15:25 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010/07/01 20:15:21 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010/07/01 20:15:21 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest [2010/07/01 20:15:21 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010/07/01 20:15:21 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010/07/01 20:15:21 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010/07/01 20:15:21 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010/07/01 20:12:50 | 000,021,640 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2010/07/01 20:12:37 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini [2010/07/01 20:12:37 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini [2010/07/01 20:07:54 | 000,000,211 | -HS- | M] () -- C:\boot.ini [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010/08/07 21:48:33 | 000,053,872 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\My Documents\GeekstoGo Malware Removal.docx [2010/07/31 21:26:30 | 000,000,734 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Start Menu\Programs\Startup\Yahoo! Widgets.lnk [2010/07/25 22:14:47 | 000,036,004 | ---- | C] () -- C:\WINDOWS\sonic_cur.ani [2010/07/24 21:13:25 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2010/07/24 20:40:29 | 000,001,526 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\SMART BRO.lnk [2010/07/04 23:53:00 | 000,000,162 | ---- | C] () -- C:\Program Files\IBM.txt [2010/07/04 12:39:01 | 000,001,707 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Avira AntiVir Control Center.lnk [2010/07/02 22:41:16 | 000,000,384 | ---- | C] () -- C:\WINDOWS\tasks\GlaryUpdate.job [2010/07/02 22:12:38 | 000,001,772 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\EA SPORTS™ NBA LIVE 08.lnk [2010/07/02 21:50:23 | 000,001,443 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Yuri's Revenge.lnk [2010/07/02 21:19:17 | 000,001,619 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Command & Conquer Generals Zero Hour .lnk [2010/07/02 21:13:06 | 000,000,976 | ---- | C] () -- C:\WINDOWS\eReg.dat [2010/07/02 20:55:45 | 000,034,308 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll [2010/07/02 20:46:21 | 000,000,626 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\mIRC.lnk [2010/07/02 20:44:10 | 000,001,743 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Chikka Messenger v.4.lnk [2010/07/02 20:39:48 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2010/07/02 20:36:54 | 000,002,415 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk [2010/07/02 19:39:53 | 000,001,628 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\biohazard 4.lnk [2010/07/02 19:32:05 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Devil May Cry 3 Special Edition.lnk [2010/07/02 19:24:12 | 000,001,822 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Need for Speed™ Most Wanted.lnk [2010/07/02 19:14:49 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll [2010/07/02 19:14:49 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisdecd.dll [2010/07/02 19:14:49 | 000,052,224 | ---- | C] () -- C:\WINDOWS\System32\msdvbnp.ax [2010/07/02 19:14:49 | 000,052,224 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdvbnp.ax [2010/07/02 19:14:49 | 000,030,208 | ---- | C] () -- C:\WINDOWS\System32\psisrndr.ax [2010/07/02 19:14:49 | 000,030,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisrndr.ax [2010/07/02 07:45:51 | 000,002,617 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Battle Realms.lnk [2010/07/02 07:38:03 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PowerReg.dat [2010/07/02 07:28:37 | 000,001,619 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Frozen Throne.lnk [2010/07/02 07:23:22 | 000,065,028 | ---- | C] () -- C:\WINDOWS\War3Unin.dat [2010/07/02 07:23:21 | 000,002,829 | ---- | C] () -- C:\WINDOWS\War3Unin.pif [2010/07/02 07:16:30 | 000,000,494 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Metal Slug.lnk [2010/07/02 07:09:12 | 000,001,305 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Marvel vs Capcom.lnk [2010/07/02 07:08:33 | 000,164,864 | ---- | C] () -- C:\UNWISE.EXE [2010/07/02 07:07:00 | 000,001,849 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Tekken 3.lnk [2010/07/02 04:05:54 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF [2010/07/02 04:00:43 | 000,001,355 | ---- | C] () -- C:\WINDOWS\imsins.BAK [2010/07/02 04:00:36 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd [2010/07/02 04:00:36 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa [2010/07/02 04:00:36 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf [2010/07/02 04:00:35 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa [2010/07/02 04:00:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls [2010/07/02 04:00:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls [2010/07/02 04:00:26 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls [2010/07/02 04:00:26 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls [2010/07/02 04:00:26 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls [2010/07/02 04:00:26 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls [2010/07/02 04:00:26 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls [2010/07/02 04:00:26 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls [2010/07/02 04:00:24 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls [2010/07/02 04:00:24 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS [2010/07/02 04:00:24 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls [2010/07/02 04:00:24 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls [2010/07/02 04:00:24 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls [2010/07/02 04:00:24 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls [2010/07/02 04:00:22 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls [2010/07/02 04:00:22 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls [2010/07/02 04:00:22 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls [2010/07/02 04:00:22 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls [2010/07/02 04:00:22 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls [2010/07/02 04:00:22 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls [2010/07/02 04:00:22 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls [2010/07/02 04:00:22 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS [2010/07/02 04:00:22 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls [2010/07/02 04:00:22 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls [2010/07/02 04:00:21 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls [2010/07/02 04:00:21 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls [2010/07/02 04:00:21 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls [2010/07/02 04:00:21 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls [2010/07/02 04:00:21 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls [2010/07/02 04:00:21 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS [2010/07/02 04:00:19 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_852.nls [2010/07/02 04:00:19 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_852.nls [2010/07/02 04:00:19 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls [2010/07/02 04:00:19 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls [2010/07/02 04:00:19 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls [2010/07/02 04:00:19 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls [2010/07/02 04:00:19 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls [2010/07/02 04:00:19 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls [2010/07/02 04:00:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls [2010/07/02 04:00:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls [2010/07/02 04:00:12 | 000,001,688 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2010/07/02 04:00:00 | 000,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat [2010/07/02 04:00:00 | 000,112,918 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat [2010/07/02 04:00:00 | 000,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat [2010/07/02 04:00:00 | 000,026,991 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn7.cat [2010/07/02 04:00:00 | 000,014,433 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn9.cat [2010/07/02 04:00:00 | 000,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT [2010/07/02 04:00:00 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2010/07/02 04:00:00 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2010/07/02 03:59:59 | 001,296,669 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT [2010/07/02 03:59:59 | 000,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2010/07/02 03:59:59 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2010/07/02 03:59:59 | 000,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2010/07/02 03:59:59 | 000,034,063 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT [2010/07/02 03:59:59 | 000,016,535 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT [2010/07/02 03:59:59 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2010/07/02 03:59:59 | 000,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT [2010/07/02 03:59:59 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat [2010/07/02 03:59:58 | 002,144,487 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT [2010/07/02 03:59:58 | 000,522,220 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT [2010/07/02 03:58:51 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll [2010/07/02 03:58:26 | 000,141,016 | ---- | C] () -- C:\WINDOWS\System32\ALSNDMGR.WAV [2010/07/02 03:57:52 | 000,200,144 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010/07/02 03:56:57 | 000,000,211 | -HS- | C] () -- C:\boot.ini [2010/07/02 03:56:52 | 000,000,342 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2010/07/02 01:56:13 | 000,000,014 | ---- | C] () -- C:\WINDOWS\popcinfo.dat [2010/07/02 01:50:12 | 000,000,526 | -H-- | C] () -- C:\WINDOWS\popcreg.dat [2010/07/02 01:50:12 | 000,000,184 | ---- | C] () -- C:\WINDOWS\popcinfot.dat [2010/07/02 01:10:38 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\setupfilter.exe [2010/07/02 01:08:23 | 000,001,683 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Free CD Music Converter.lnk [2010/07/02 00:49:38 | 000,002,369 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Nero StartSmart.lnk [2010/07/02 00:34:32 | 000,002,427 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Paint Shop Pro 7.lnk [2010/07/02 00:27:24 | 000,000,683 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\My Documents\My Lockbox.lnk [2010/07/02 00:24:04 | 000,000,338 | ---- | C] () -- C:\WINDOWS\tasks\GlaryInitialize.job [2010/07/02 00:08:20 | 000,000,284 | ---- | C] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job [2010/07/02 00:07:39 | 000,001,949 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\CyberLink PowerDirector.lnk [2010/07/02 00:03:01 | 000,000,851 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Format Factory.lnk [2010/07/01 23:56:31 | 000,001,603 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\MemoriesOnTV4.lnk [2010/07/01 23:55:49 | 000,001,537 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Photo Story 3 for Windows.lnk [2010/07/01 23:40:30 | 000,001,578 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\LimeWire 5.5.8.lnk [2010/07/01 23:37:26 | 000,000,766 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Trillian.lnk [2010/07/01 23:30:59 | 000,001,041 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\vso_ts_preview.xml [2010/07/01 23:30:37 | 000,000,034 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\pcouffin.log [2010/07/01 23:30:32 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\inst.exe [2010/07/01 23:30:32 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\pcouffin.cat [2010/07/01 23:30:31 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\pcouffin.inf [2010/07/01 23:30:29 | 000,000,859 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\ConvertXtoDVD 4.lnk [2010/07/01 23:16:07 | 000,001,030 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2000478354-1647877149-1177238915-1003UA.job [2010/07/01 23:16:07 | 000,000,978 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2000478354-1647877149-1177238915-1003Core.job [2010/07/01 23:14:21 | 000,000,728 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\BitTorrent.lnk [2010/07/01 23:08:31 | 000,000,710 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\KMPlayer.lnk [2010/07/01 23:07:56 | 000,001,620 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk [2010/07/01 23:07:56 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk [2010/07/01 23:05:10 | 000,000,820 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk [2010/07/01 23:05:10 | 000,000,802 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Yahoo! Messenger.lnk [2010/07/01 22:50:54 | 000,002,561 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Microsoft Office Excel 2007.lnk [2010/07/01 22:50:51 | 000,002,551 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Microsoft Office PowerPoint 2007.lnk [2010/07/01 22:50:46 | 000,002,515 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Microsoft Office Word 2007.lnk [2010/07/01 22:39:13 | 000,000,692 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\WinRAR.lnk [2010/07/01 22:38:04 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2010/07/01 22:38:04 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2010/07/01 22:37:56 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2010/07/01 22:37:56 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2010/07/01 22:37:56 | 000,000,414 | ---- | C] () -- C:\WINDOWS\System32\lame_acm.xml [2010/07/01 22:37:53 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2010/07/01 22:37:53 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2010/07/01 22:30:16 | 000,002,640 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\UpdateLog.GDZ [2010/07/01 22:29:03 | 000,001,561 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\VirtualDrive Pro Manager.lnk [2010/07/01 22:27:37 | 000,000,261 | ---- | C] () -- C:\inVHDDrvLog.dat [2010/07/01 22:27:36 | 000,043,408 | ---- | C] () -- C:\WINDOWS\System32\drivers\fsRamDsk.sys [2010/07/01 22:26:50 | 000,017,542 | ---- | C] () -- C:\WINDOWS\Driver.ico [2010/07/01 22:26:50 | 000,014,496 | ---- | C] () -- C:\WINDOWS\System32\VDI08X.dat [2010/07/01 22:25:48 | 000,118,784 | ---- | C] () -- C:\WINDOWS\System32\DVC.dll [2010/07/01 22:25:48 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\RDrv2KInterface.dll [2010/07/01 22:25:48 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\unVHDDrvExe.exe [2010/07/01 22:25:48 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\inVHDDrvExe.exe [2010/07/01 22:25:48 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\RDrvInterface.dll [2010/07/01 21:24:20 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk [2010/07/01 21:14:35 | 000,000,414 | ---- | C] () -- C:\WINDOWS\tasks\AWC Update.job [2010/07/01 20:50:16 | 000,000,910 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2010/07/01 20:50:16 | 000,000,906 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2010/07/01 20:26:43 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Internet Explorer.lnk [2010/07/01 20:24:02 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf [2010/07/01 20:24:00 | 000,000,815 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [2010/07/01 20:23:52 | 000,000,782 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\Desktop\Windows Media Player.lnk [2010/07/01 20:22:32 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\ntuser.ini [2010/07/01 20:22:30 | 004,456,448 | ---- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\NTUSER.DAT [2010/07/01 20:22:30 | 002,883,584 | -H-- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\NTUSER.DAT.gbck [2010/07/01 20:22:30 | 000,001,024 | -H-- | C] () -- C:\Documents and Settings\Randy Sto. Domingo\NTUSER.DAT.LOG [2010/07/01 20:22:28 | 1073,274,880 | -HS- | C] () -- C:\hiberfil.sys [2010/07/01 20:20:36 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2010/07/01 20:19:39 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010/07/01 20:19:24 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls [2010/07/01 20:18:51 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls [2010/07/01 20:18:51 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls [2010/07/01 20:18:50 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2010/07/01 20:18:31 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls [2010/07/01 20:18:30 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2010/07/01 20:18:23 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2010/07/01 20:18:22 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2010/07/01 20:18:21 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2010/07/01 20:18:10 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2010/07/01 20:18:05 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2010/07/01 20:18:01 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll [2010/07/01 20:17:50 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2010/07/01 20:17:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls [2010/07/01 20:17:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls [2010/07/01 20:17:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls [2010/07/01 20:17:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls [2010/07/01 20:17:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls [2010/07/01 20:17:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls [2010/07/01 20:17:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls [2010/07/01 20:17:45 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls [2010/07/01 20:17:45 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls [2010/07/01 20:17:45 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls [2010/07/01 20:17:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls [2010/07/01 20:17:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls [2010/07/01 20:17:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls [2010/07/01 20:17:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls [2010/07/01 20:17:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls [2010/07/01 20:17:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls [2010/07/01 20:17:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls [2010/07/01 20:17:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls [2010/07/01 20:17:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls [2010/07/01 20:17:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls [2010/07/01 20:17:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls [2010/07/01 20:17:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls [2010/07/01 20:17:44 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls [2010/07/01 20:17:44 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls [2010/07/01 20:17:44 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls [2010/07/01 20:17:44 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls [2010/07/01 20:17:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls [2010/07/01 20:17:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls [2010/07/01 20:17:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls [2010/07/01 20:17:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls [2010/07/01 20:17:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls [2010/07/01 20:17:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls [2010/07/01 20:17:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls [2010/07/01 20:17:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls [2010/07/01 20:17:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls [2010/07/01 20:17:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls [2010/07/01 20:17:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls [2010/07/01 20:17:43 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls [2010/07/01 20:17:43 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls [2010/07/01 20:17:43 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls [2010/07/01 20:17:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls [2010/07/01 20:17:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls [2010/07/01 20:17:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls [2010/07/01 20:17:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls [2010/07/01 20:17:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls [2010/07/01 20:17:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls [2010/07/01 20:17:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls [2010/07/01 20:17:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls [2010/07/01 20:17:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls [2010/07/01 20:17:42 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls [2010/07/01 20:17:42 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls [2010/07/01 20:17:42 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls [2010/07/01 20:17:42 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls [2010/07/01 20:17:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls [2010/07/01 20:17:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls [2010/07/01 20:17:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls [2010/07/01 20:17:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls [2010/07/01 20:17:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls [2010/07/01 20:17:41 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls [2010/07/01 20:17:41 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls [2010/07/01 20:16:43 | 000,002,577 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2010/07/01 20:16:43 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2010/07/01 20:16:43 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2010/07/01 20:16:43 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2010/07/01 20:16:43 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2010/07/01 20:16:36 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2010/07/01 20:16:36 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2010/07/01 20:16:34 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2010/07/01 20:15:25 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010/07/01 20:15:25 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010/07/01 20:15:21 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010/07/01 20:15:21 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest [2010/07/01 20:15:21 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010/07/01 20:15:21 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010/07/01 20:15:21 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010/07/01 20:15:21 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010/07/01 20:14:56 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex [2010/07/01 20:14:37 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2010/07/01 20:14:36 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2010/07/01 20:14:29 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf [2010/07/01 20:13:40 | 000,376,832 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll [2010/07/01 20:12:50 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2010/07/01 20:11:52 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Prairie Wind.bmp [2010/07/01 20:11:52 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe Stucco.bmp [2010/07/01 20:11:52 | 000,026,680 | ---- | C] () -- C:\WINDOWS\River Sumida.bmp [2010/07/01 20:11:52 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp [2010/07/01 20:11:52 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp [2010/07/01 20:11:51 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce [2010/07/01 20:11:51 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Soap Bubbles.bmp [2010/07/01 20:11:51 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Greenstone.bmp [2010/07/01 20:11:51 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Gone Fishing.bmp [2010/07/01 20:11:51 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Coffee Bean.bmp [2010/07/01 20:11:51 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce [2010/07/01 20:11:51 | 000,016,730 | ---- | C] () -- C:\WINDOWS\FeatherTexture.bmp [2010/07/01 20:11:51 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce [2010/07/01 20:11:51 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce [2010/07/01 20:11:51 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce [2010/07/01 20:11:51 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Blue Lace 16.bmp [2010/07/01 20:11:50 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce [2010/07/01 20:11:50 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce [2010/07/01 20:11:50 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce [2010/07/01 20:11:49 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2010/07/01 20:11:48 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2010/07/01 20:11:47 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2010/07/01 20:11:43 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2008/07/18 16:13:46 | 000,000,000 | ---- | C] () -- C:\WINDOWS\xlkfs.ini [2008/07/17 16:43:54 | 000,023,552 | ---- | C] () -- C:\WINDOWS\xlkfs.dll [2008/04/14 19:00:00 | 000,755,200 | ---- | C] () -- C:\WINDOWS\System32\ir50_32.dll [2008/04/14 19:00:00 | 000,338,432 | ---- | C] () -- C:\WINDOWS\System32\ir41_qcx.dll [2008/04/14 19:00:00 | 000,200,192 | ---- | C] () -- C:\WINDOWS\System32\ir50_qc.dll [2008/04/14 19:00:00 | 000,183,808 | ---- | C] () -- C:\WINDOWS\System32\ir50_qcx.dll [2008/04/14 19:00:00 | 000,120,320 | ---- | C] () -- C:\WINDOWS\System32\ir41_qc.dll [2006/09/19 06:20:58 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\VDExt800.dll [2006/09/19 06:20:58 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\VDExt712.dll [2006/09/19 06:20:50 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\GDExt800.dll [2006/08/08 10:03:20 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\GDExt712.dll [2001/07/13 07:04:00 | 000,373,248 | ---- | C] () -- C:\WINDOWS\EyeCand3.INI [color=#E56717]========== LOP Check ==========[/color] [2010/07/01 20:49:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software [2010/07/03 20:19:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Burger Island 2 [2010/07/02 19:50:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FarmFrenzy-PizzaParty [2010/07/01 22:32:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\farstone [2010/07/12 20:22:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Fugazo [2010/07/26 21:56:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\n7-89-o9-3r-4t-r9 [2010/07/11 10:51:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PlayFirst [2010/07/02 01:52:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PopCap Games [2010/07/02 00:10:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SmartSound Software Inc [2010/07/12 10:35:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Temp [2010/07/12 10:35:52 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\.# [2010/08/07 21:56:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\BitTorrent [2010/08/07 22:01:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\DMCache [2010/07/15 18:22:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\EleFun Games [2010/07/01 22:30:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\FarStone [2010/07/02 07:09:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\fltk.org [2010/07/26 21:53:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\GameHouse [2010/07/02 22:42:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\GlarySoft [2010/07/08 22:31:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\IDM [2010/07/01 21:16:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\IObit [2010/07/02 01:37:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Leadertech [2010/07/07 00:58:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\LimeWire [2010/07/11 10:51:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\PlayFirst [2010/07/02 20:28:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\QuickStoresToolbar [2010/07/02 21:25:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Trillian [2010/07/01 23:32:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Randy Sto. Domingo\Application Data\Vso [2010/07/05 14:36:22 | 000,000,414 | ---- | M] () -- C:\WINDOWS\Tasks\AWC Update.job [2010/08/07 21:55:00 | 000,000,338 | ---- | M] () -- C:\WINDOWS\Tasks\GlaryInitialize.job [2010/07/02 22:41:48 | 000,000,384 | ---- | M] () -- C:\WINDOWS\Tasks\GlaryUpdate.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %SYSTEMDRIVE%\*.* >[/color] [2010/07/01 20:16:43 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010/07/01 20:07:54 | 000,000,211 | -HS- | M] () -- C:\boot.ini [2010/07/01 20:16:43 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010/08/07 21:54:19 | 1073,274,880 | -HS- | M] () -- C:\hiberfil.sys [2010/07/02 07:08:58 | 000,019,971 | ---- | M] () -- C:\INSTALL.LOG [2010/07/01 22:27:44 | 000,000,261 | ---- | M] () -- C:\inVHDDrvLog.dat [2010/07/01 20:16:43 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010/07/01 20:16:43 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2008/04/14 19:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2008/04/14 19:00:00 | 000,250,048 | RHS- | M] () -- C:\ntldr [2010/08/07 21:54:16 | 1610,612,736 | -HS- | M] () -- C:\pagefile.sys [2001/09/28 17:00:28 | 000,164,864 | ---- | M] () -- C:\UNWISE.EXE [color=#A23BEC]< %systemroot%\system32\*.wt >[/color] [color=#A23BEC]< %systemroot%\system32\*.ruy >[/color] [color=#A23BEC]< %systemroot%\Fonts\*.com >[/color] [2006/04/18 15:39:28 | 000,026,040 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalMonospace.CompositeFont [2006/06/29 14:53:56 | 000,026,489 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalSansSerif.CompositeFont [2006/04/18 15:39:28 | 000,029,779 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalSerif.CompositeFont [2006/06/29 14:58:52 | 000,030,808 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalUserInterface.CompositeFont [color=#A23BEC]< %systemroot%\Fonts\*.dll >[/color] [color=#A23BEC]< %systemroot%\Fonts\*.ini >[/color] [2010/07/01 20:16:10 | 000,000,067 | -HS- | M] () -- C:\WINDOWS\Fonts\desktop.ini [color=#A23BEC]< %systemroot%\Fonts\*.ini2 >[/color] [color=#A23BEC]< %systemroot%\Fonts\*.exe >[/color] [color=#A23BEC]< %systemroot%\system32\spool\prtprocs\w32x86\*.* >[/color] [2008/07/06 20:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll [2008/07/06 18:50:03 | 000,597,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe [color=#A23BEC]< %systemroot%\REPAIR\*.bak1 >[/color] [color=#A23BEC]< %systemroot%\REPAIR\*.ini >[/color] [color=#A23BEC]< %systemroot%\system32\*.jpg >[/color] [color=#A23BEC]< %systemroot%\*.jpg >[/color] [color=#A23BEC]< %systemroot%\*.png >[/color] [color=#A23BEC]< %systemroot%\*.scr >[/color] [2001/07/13 07:04:00 | 000,253,952 | ---- | M] () -- C:\WINDOWS\Jasc Media Center Plus.scr [color=#A23BEC]< %systemroot%\*._sy >[/color] [color=#A23BEC]< %APPDATA%\Adobe\Update\*.* >[/color] [color=#A23BEC]< %ALLUSERSPROFILE%\Favorites\*.* >[/color] [color=#A23BEC]< %APPDATA%\Microsoft\*.* >[/color] [color=#A23BEC]< %PROGRAMFILES%\*.* >[/color] [2010/08/07 21:14:26 | 000,000,162 | ---- | M] () -- C:\Program Files\IBM.txt [color=#A23BEC]< %APPDATA%\Update\*.* >[/color] [color=#A23BEC]< %systemroot%\*. /mp /s >[/color] [color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color] [2010/07/02 03:56:55 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav [2010/07/02 03:56:55 | 001,089,536 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav [2010/07/02 03:56:55 | 000,884,736 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav [color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >[/color] [color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >[/color] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2010-07-25 11:17:22 [color=#A23BEC]< >[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 144 bytes -> C:\Documents and Settings\All Users\Application Data\Temp:A636021B < End of report >