OTL logfile created on: 5/10/2011 10:20:43 AM - Run 1
OTL by OldTimer - Version 3.2.22.3     Folder = C:\Documents and Settings\HP_Administrator\Desktop
Windows XP Media Center Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
1,014.00 Mb Total Physical Memory | 632.00 Mb Available Physical Memory | 62.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 88.00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 224.23 Gb Total Space | 189.28 Gb Free Space | 84.41% Space Free | Partition Type: NTFS
Drive D: | 8.62 Gb Total Space | 0.42 Gb Free Space | 4.85% Space Free | Partition Type: FAT32
 
Computer Name: SHEILA | User Name: HP_Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2011/05/09 10:29:01 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\HP_Administrator\Desktop\OTL.exe
PRC - [2008/07/09 03:38:29 | 000,755,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SoftwareDistribution\Download\55ae228715888b68a08f491655790fa6\update\update.exe
PRC - [2006/09/30 05:16:54 | 001,119,888 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
PRC - [2006/09/30 05:04:26 | 000,036,903 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Updates from HP\9972322\Program\Updates from HP.exe
PRC - [2006/07/06 17:15:00 | 000,151,552 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2006/07/06 17:14:30 | 000,090,112 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2006/06/02 02:25:00 | 000,180,224 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\ELService.exe
PRC - [2006/04/13 12:05:00 | 000,090,112 | ---- | M] (Sonic Solutions) -- C:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe
PRC - [2006/04/07 04:51:18 | 001,073,152 | ---- | M] (Digital Interactive Systems Corporation) -- C:\Program Files\DISC\DISCover.exe
PRC - [2006/04/07 04:50:22 | 000,065,536 | ---- | M] (Digital Interactive Systems Corporation, Inc.) -- C:\Program Files\DISC\DISCUpdMgr.exe
PRC - [2006/04/07 04:50:22 | 000,057,344 | ---- | M] (Digital Interactive Systems Corporation, Inc.) -- C:\Program Files\DISC\DiscStreamHub.exe
PRC - [2005/09/24 18:10:56 | 000,749,696 | ---- | M] (Symantec Corporation) -- c:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
PRC - [2005/09/19 14:24:20 | 000,214,672 | ---- | M] (Symantec Corporation) -- c:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
PRC - [2005/09/17 03:27:12 | 000,169,584 | ---- | M] (Symantec Corporation) -- c:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
PRC - [2005/09/17 03:27:10 | 000,202,352 | ---- | M] (Symantec Corporation) -- c:\Program Files\Common Files\Symantec Shared\ccProxy.exe
PRC - [2005/09/17 03:27:06 | 000,192,112 | ---- | M] (Symantec Corporation) -- c:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
PRC - [2005/09/17 03:27:02 | 000,052,848 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccApp.exe
PRC - [2004/08/10 00:00:00 | 001,032,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - [2011/05/09 10:29:01 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\HP_Administrator\Desktop\OTL.exe
MOD - [2006/09/30 05:04:24 | 000,024,613 | ---- | M] (BackWeb) -- C:\Documents and Settings\HP_Administrator\Local Settings\Temp\IadHide5.dll
MOD - [2005/09/23 21:38:24 | 000,123,488 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\AntiSpam\asOEHook.dll
MOD - [2005/09/17 03:33:36 | 000,377,968 | ---- | M] (Symantec Corporation) -- c:\Program Files\Common Files\Symantec Shared\ccL40.dll
MOD - [2004/08/10 07:00:00 | 001,050,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [On_Demand | Stopped] --  -- (SAVScan)
SRV - File not found [Auto | Stopped] --  -- (navapsvc)
SRV - File not found [Disabled | Stopped] --  -- (HidServ)
SRV - [2008/05/06 16:16:26 | 000,026,488 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\system32\spupdsvc.exe -- (spupdsvc)
SRV - [2006/09/30 05:16:54 | 001,119,888 | ---- | M] (Symantec Corporation) [On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe -- (Symantec Core LC)
SRV - [2006/07/06 17:14:30 | 000,090,112 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R)
SRV - [2006/06/02 02:25:00 | 000,180,224 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\ELService.exe -- (ELService) Intel(R)
SRV - [2006/01/02 16:18:24 | 000,045,744 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- c:\Program Files\Norton Internet Security\comHost.exe -- (comHost)
SRV - [2005/10/13 11:48:40 | 000,072,280 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- c:\Program Files\Norton Internet Security\ccPwdSvc.exe -- (ccISPwdSvc)
SRV - [2005/09/24 18:10:56 | 000,749,696 | ---- | M] (Symantec Corporation) [On_Demand | Running] -- c:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE -- (NSCService)
SRV - [2005/09/19 14:24:20 | 000,214,672 | ---- | M] (Symantec Corporation) [On_Demand | Running] -- c:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe -- (SNDSrvc)
SRV - [2005/09/17 03:27:12 | 000,169,584 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe -- (ccSetMgr)
SRV - [2005/09/17 03:27:10 | 000,202,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Common Files\Symantec Shared\ccProxy.exe -- (ccProxy)
SRV - [2005/09/17 03:27:06 | 000,192,112 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe -- (ccEvtMgr)
SRV - [2005/09/15 18:21:14 | 001,160,800 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- c:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe -- (SPBBCSvc)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2006/09/30 05:16:54 | 000,010,344 | ---- | M] (Symantec Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\symlcbrd.sys -- (symlcbrd)
DRV - [2006/06/14 14:04:12 | 004,299,264 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006/05/10 01:36:44 | 000,009,728 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ELacpi.sys -- (ELacpi)
DRV - [2006/05/10 01:36:42 | 000,007,040 | ---- | M] (Intel Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\Elmon.sys -- (ELmon)
DRV - [2006/05/10 01:36:22 | 000,006,912 | ---- | M] (Intel Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\Elkbd.sys -- (ELkbd)
DRV - [2006/05/10 01:36:20 | 000,006,400 | ---- | M] (Intel Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\Elmou.sys -- (ELmou)
DRV - [2006/05/10 01:36:18 | 000,010,112 | ---- | M] (Intel Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\Elhid.sys -- (ELhid)
DRV - [2006/04/25 12:00:00 | 000,799,208 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20060425.007\NAVEX15.SYS -- (NAVEX15)
DRV - [2006/04/25 12:00:00 | 000,077,864 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20060425.007\NAVENG.SYS -- (NAVENG)
DRV - [2005/12/12 20:27:00 | 000,019,072 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\PS2.sys -- (Ps2)
DRV - [2005/12/06 14:20:50 | 000,241,664 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSXHWBS2.sys -- (HSXHWBS2)
DRV - [2005/12/06 14:20:40 | 000,936,448 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSX_DP.sys -- (HSX_DP)
DRV - [2005/09/17 03:20:06 | 000,108,168 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\Symantec\SYMEVENT.SYS -- (SymEvent)
DRV - [2005/09/15 18:21:14 | 000,389,728 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)
DRV - [2005/09/01 22:07:36 | 000,199,408 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\SymcData\idsdefs\20050901.036\SymIDSCo.sys -- (SYMIDSCO)
DRV - [2005/06/29 20:03:18 | 000,175,104 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\ftsata2.sys -- (ftsata2)
DRV - [2004/08/03 17:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
DRV - [2003/11/05 10:45:12 | 000,017,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\bb-run.sys -- (bb-run)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
 
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
FF - HKLM\software\mozilla\Netscape Browser 8.0.4.0\Extensions\\Components: C:\Program Files\Netscape\Netscape Browser\Components
FF - HKLM\software\mozilla\Netscape Browser 8.0.4.0\Extensions\\Plugins: C:\Program Files\Netscape\Netscape Browser\Plugins
 
 
O1 HOSTS File: ([2004/08/10 07:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Yahoo! Toolbar Helper) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (CNavExtBho Class) - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} -  File not found
O2 - BHO: (hpWebHelper Class) - {AAAE832A-5FFF-4661-9C8F-369692D1DCB9} - C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\plugin\WebHelper.dll (Hewlett-Packard)
O3 - HKLM\..\Toolbar: (Norton AntiVirus) - {C4069E3A-68F1-403E-B40E-20066696354B} -  File not found
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [ccApp] c:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [DISCover] C:\Program Files\DISC\DISCover.exe (Digital Interactive Systems Corporation)
O4 - HKLM..\Run: [DiscUpdateManager] C:\Program Files\DISC\DISCUpdMgr.exe (Digital Interactive Systems Corporation, Inc.)
O4 - HKLM..\Run: [DMAScheduler] c:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe (Sonic Solutions)
O4 - HKLM..\Run: [ftutil2] C:\WINDOWS\System32\ftutil2.dll (Promise Technology, Inc.)
O4 - HKLM..\Run: [HPBootOp] C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [IS CfgWiz] c:\Program Files\Norton Internet Security\cfgwiz.exe (Symantec Corporation)
O4 - HKLM..\Run: [KernelFaultCheck]  File not found
O4 - HKLM..\Run: [PCDrProfiler] C:\Program Files\PC-Doctor 5 for Windows\RunProfiler.exe ()
O4 - HKLM..\Run: [Recguard] C:\WINDOWS\SMINST\Recguard.exe ()
O4 - HKLM..\Run: [SetDefaultPrinter] c:\hp\bin\cloaker.exe (Hewlett-Packard Co.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ReSchedHPSU.lnk = C:\hp\bin\cloaker.exe (Hewlett-Packard Co.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Updates From HP.lnk = C:\Program Files\Updates from HP\9972322\Program\Updates from HP.exe (Hewlett-Packard)
O4 - Startup: C:\Documents and Settings\HP_Administrator\Start Menu\Programs\Startup\AXEL.DAV ()
O4 - Startup: C:\Documents and Settings\HP_Administrator\Start Menu\Programs\Startup\TurboApps WinMobile Conduit.lnk =  File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme ()
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\NPJPI150_06.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Internet Connection Help - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm ()
O9 - Extra 'Tools' menuitem : Internet Connection Help - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm ()
O15 - HKLM\..Trusted Domains: trymedia.com ([]http in Trusted sites)
O15 - HKLM\..Trusted Domains: trymedia.com ([]https in Trusted sites)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab (Java Plug-in 1.5.0_06)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.105.28.11 68.105.29.11 68.105.28.12
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/30 05:00:21 | 000,000,100 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2001/07/27 08:07:38 | 000,000,000 | -HS- | M] () - D:\AUTOEXEC.BAT -- [ FAT32 ]
O32 - AutoRun File - [2004/04/30 00:01:14 | 000,000,053 | -HS- | M] () - D:\Autorun.inf -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
File not found -- C:\WINDOWS\System32\dllcache\rmcast.sys
[2011/05/10 09:43:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2011/05/09 10:29:01 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\HP_Administrator\Desktop\OTL.exe
[2011/05/09 06:59:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot_bak
[2011/05/09 03:03:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2011/05/08 17:20:37 | 007,866,472 | ---- | C] (Microsoft Corporation) -- C:\mseinstall.exe
[2011/05/08 16:34:26 | 005,497,592 | ---- | C] (AVG Technologies) -- C:\Documents and Settings\HP_Administrator\Desktop\avg_free_stb_all_2011_1321_cnet.exe
[2011/05/08 09:52:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2011/05/08 01:59:23 | 000,000,000 | --SD | C] -- C:\Documents and Settings\HP_Administrator\Application Data\Microsoft
[2011/05/08 01:59:23 | 000,000,000 | --SD | C] -- C:\Documents and Settings\HP_Administrator\Cookies
[2011/05/08 01:59:23 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\HP_Administrator\SendTo
[2011/05/08 01:59:23 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\HP_Administrator\Recent
[2011/05/08 01:59:23 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\HP_Administrator\Application Data
[2011/05/08 01:59:23 | 000,000,000 | R--D | C] -- C:\Documents and Settings\HP_Administrator\Start Menu\Programs\Startup
[2011/05/08 01:59:23 | 000,000,000 | R--D | C] -- C:\Documents and Settings\HP_Administrator\Start Menu
[2011/05/08 01:59:23 | 000,000,000 | R--D | C] -- C:\Documents and Settings\HP_Administrator\My Documents\My Videos
[2011/05/08 01:59:23 | 000,000,000 | R--D | C] -- C:\Documents and Settings\HP_Administrator\My Documents\My Pictures
[2011/05/08 01:59:23 | 000,000,000 | R--D | C] -- C:\Documents and Settings\HP_Administrator\My Documents\My Music
[2011/05/08 01:59:23 | 000,000,000 | R--D | C] -- C:\Documents and Settings\HP_Administrator\My Documents
[2011/05/08 01:59:23 | 000,000,000 | R--D | C] -- C:\Documents and Settings\HP_Administrator\Favorites
[2011/05/08 01:59:23 | 000,000,000 | R--D | C] -- C:\Documents and Settings\HP_Administrator\Start Menu\Programs\Accessories
[2011/05/08 01:59:23 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\HP_Administrator\PrintHood
[2011/05/08 01:59:23 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\HP_Administrator\NetHood
[2011/05/08 01:59:23 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\HP_Administrator\Local Settings
[2011/05/08 01:59:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Wildtangent
[2011/05/08 01:59:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Administrator\Application Data\Symantec
[2011/05/08 01:59:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Administrator\Application Data\Real
[2011/05/08 01:59:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Administrator\PrivacIE
[2011/05/08 01:59:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Administrator\Start Menu\Programs\Online Services
[2011/05/08 01:59:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Microsoft
[2011/05/08 01:59:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Administrator\Application Data\Intuit
[2011/05/08 01:59:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Administrator\IETldCache
[2011/05/08 01:59:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Identities
[2011/05/08 01:59:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Administrator\Application Data\Identities
[2011/05/08 01:59:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Administrator\Application Data\HPQ
[2011/05/08 01:59:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Administrator\Desktop
[2011/05/08 01:59:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\ApplicationHistory
[2011/05/08 01:59:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\{3248F0A6-6813-11D6-A77B-00B0D0150060}
[2011/05/08 01:57:38 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\HP_Administrator\Templates
[2011/05/08 01:57:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Administrator\WINDOWS
[2011/05/07 06:24:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2011/05/07 05:05:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2011/05/07 05:05:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\x64
[2011/05/07 05:05:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2011/05/07 05:03:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2011/05/07 05:03:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2011/05/07 05:03:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2011/05/07 05:03:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2011/05/07 05:02:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pcintro
[2011/05/07 05:02:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2011/05/07 05:02:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2011/05/07 04:59:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2011/05/07 04:59:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2011/05/07 04:59:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2011/05/07 04:59:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2011/05/07 04:59:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2011/05/07 04:59:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2011/05/07 04:59:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2011/05/07 04:57:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2011/05/07 04:21:14 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2011/05/07 04:21:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2011/05/07 04:18:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2011/05/07 04:18:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTemp
[2011/05/07 04:18:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2011/05/07 04:18:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2011/05/07 04:18:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM
[2011/05/07 04:18:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2011/05/07 04:17:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2011/05/07 04:17:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2011/05/07 04:17:21 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2011/05/07 04:17:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2011/05/07 04:17:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang
[2011/05/07 04:17:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2011/05/07 04:17:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\FxsTmp
[2011/05/07 04:17:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ENU
[2011/05/07 04:17:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2011/05/07 04:16:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2011/05/07 04:16:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2011/05/07 04:15:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2011/05/07 04:15:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2011/05/07 04:15:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2011/05/07 04:15:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2011/05/07 04:15:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2011/05/07 04:15:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2011/05/07 04:15:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2011/05/07 04:15:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2011/05/07 04:15:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2011/05/07 04:15:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2011/05/07 04:15:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2011/05/07 04:15:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2011/05/07 04:15:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2011/05/07 03:45:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2011/05/05 23:54:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2011/05/05 23:07:14 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2011/05/05 23:07:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Administrator\Start Menu\Programs\HiJackThis
[2011/05/04 19:46:31 | 000,000,000 | -HSD | C] -- C:\found.001
[2011/05/04 16:18:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Administrator\Application Data\SUPERAntiSpyware.com
[2011/05/04 15:33:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Administrator\Application Data\Macromedia
[2011/05/04 15:30:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Adobe
[2011/05/04 15:30:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Administrator\Application Data\Adobe
[2011/05/04 10:45:28 | 000,000,000 | ---D | C] -- C:\Program Files\Norton Internet Security
[2011/05/03 20:36:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\TiVo Shared
[2011/05/03 20:27:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SureThing Shared
[2011/05/03 20:24:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Palo Alto Software
[2011/05/03 20:21:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\muvee Technologies
[2011/05/03 20:15:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Intuit
[2011/05/03 20:06:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Sonic
[2011/05/03 20:06:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Quicken 2006
[2011/05/03 20:06:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\My HP Games
[2011/05/03 20:06:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\muvee Technologies
[2011/05/03 19:07:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\wt
[2011/04/21 10:39:11 | 000,000,000 | -HSD | C] -- C:\found.000
[2011/04/19 20:09:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/04/19 20:09:37 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/04/14 12:19:28 | 000,000,000 | ---D | C] -- C:\2008febee3e0abb42f
[43 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]
[1 C:\Documents and Settings\All Users\Application Data\*.tmp files -> C:\Documents and Settings\All Users\Application Data\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2011/05/10 11:02:57 | 000,002,842 | ---- | M] () -- C:\WINDOWS\System32\spupdsvc.inf
[2011/05/10 10:57:55 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011/05/10 09:33:05 | 000,000,246 | ---- | M] () -- C:\WINDOWS\System\hpsysdrv.dat
[2011/05/10 09:26:08 | 000,000,332 | ---- | M] () -- C:\WINDOWS\tasks\StartUp_FileTask.job
[2011/05/10 09:25:52 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/05/10 09:25:51 | 1063,731,200 | -HS- | M] () -- C:\hiberfil.sys
[2011/05/09 17:23:01 | 000,000,458 | -H-- | M] () -- C:\WINDOWS\tasks\Norton Security Scan for HP_Administrator.job
[2011/05/09 16:10:49 | 000,000,490 | -H-- | M] () -- C:\WINDOWS\tasks\Norton Security Scan for Administrator.job
[2011/05/09 10:29:01 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\HP_Administrator\Desktop\OTL.exe
[2011/05/09 03:00:00 | 000,000,460 | ---- | M] () -- C:\WINDOWS\tasks\FixCleaner Scan.job
[2011/05/08 17:32:56 | 000,002,243 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2011/05/08 17:23:19 | 007,866,472 | ---- | M] (Microsoft Corporation) -- C:\mseinstall.exe
[2011/05/08 16:34:32 | 005,497,592 | ---- | M] (AVG Technologies) -- C:\Documents and Settings\HP_Administrator\Desktop\avg_free_stb_all_2011_1321_cnet.exe
[2011/05/08 02:15:05 | 000,382,022 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/05/08 02:15:05 | 000,053,640 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/05/08 01:57:29 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/05/08 01:57:25 | 000,184,224 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/05/08 01:54:15 | 000,001,197 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2011/05/08 01:48:05 | 000,000,211 | RHS- | M] () -- C:\boot.ini
[2011/05/06 23:50:04 | 000,000,246 | ---- | M] () -- C:\WINDOWS\System\hpsysdrv.dat.oth
[2011/05/06 23:41:41 | 000,002,469 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\Desktop\HiJackThis.lnk
[2011/05/06 00:42:11 | 000,001,879 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Updates From HP.lnk
[2011/05/06 00:40:12 | 000,000,790 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/05/04 19:58:41 | 000,001,489 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Media Center.lnk
[2011/05/02 23:42:33 | 000,002,387 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\Start Menu\Programs\Startup\TurboApps WinMobile Conduit.lnk
[2011/04/30 23:18:43 | 000,002,221 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\FixCleaner.lnk
[2011/04/29 14:03:54 | 000,000,783 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\My Documents\Document.rtf
[2011/04/29 13:32:49 | 001,605,632 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\My Documents\Contacts1.accdb
[2011/04/29 13:18:59 | 000,054,416 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\My Documents\hardship letter.rtf
[2011/04/25 01:24:41 | 000,032,754 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\My Documents\cc_20110425_012433.reg
[2011/04/22 05:23:36 | 000,002,016 | ---- | M] () -- C:\{729F0378-F865-49CE-A20B-1544FC55DF20}
[2011/04/19 20:09:43 | 000,000,795 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/04/18 23:14:33 | 000,002,265 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[47 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]
[1 C:\Documents and Settings\All Users\Application Data\*.tmp files -> C:\Documents and Settings\All Users\Application Data\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2011/05/10 10:16:40 | 000,000,291 | ---- | C] () -- C:\WINDOWS\System32\spupdsvc.inf
[2011/05/08 17:34:17 | 1063,731,200 | -HS- | C] () -- C:\hiberfil.sys
[2011/05/08 17:29:07 | 000,002,243 | ---- | C] () -- C:\WINDOWS\epplauncher.mif
[2011/05/08 02:11:05 | 000,000,799 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\Start Menu\Programs\Windows Media Player.lnk
[2011/05/08 02:11:00 | 000,000,790 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/05/08 02:11:00 | 000,000,778 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\Start Menu\Programs\Internet Explorer.lnk
[2011/05/08 02:05:26 | 000,000,026 | RH-- | C] () -- C:\Documents and Settings\HP_Administrator\Application Data\AXEL.DAV
[2011/05/08 02:05:25 | 000,000,026 | R--- | C] () -- C:\Documents and Settings\HP_Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\AXEL.DAV
[2011/05/08 02:05:24 | 000,002,138 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\My HP Games.lnk
[2011/05/08 02:05:24 | 000,001,776 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Netscape Browser.lnk
[2011/05/08 02:05:24 | 000,001,489 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Media Center.lnk
[2011/05/08 02:05:24 | 000,000,926 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\RealPlayer.lnk
[2011/05/08 02:05:24 | 000,000,876 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\DISCover My Games™.lnk
[2011/05/08 02:05:24 | 000,000,659 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Rhapsody.lnk
[2011/05/08 02:05:24 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2011/05/08 02:02:48 | 000,000,026 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\AXEL.DAV
[2011/05/08 02:02:40 | 000,000,026 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\Desktop\AXEL.DAV
[2011/05/08 02:00:09 | 000,000,136 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\fusioncache.dat
[2011/05/08 02:00:09 | 000,000,026 | -H-- | C] () -- C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\AXEL.DAV
[2011/05/08 01:59:27 | 000,035,084 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\My Documents\cc_20100724_221258.reg
[2011/05/08 01:59:27 | 000,000,026 | R--- | C] () -- C:\Documents and Settings\HP_Administrator\My Documents\AXEL.DAV
[2011/05/08 01:59:24 | 000,001,610 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\Start Menu\Programs\Remote Assistance.lnk
[2011/05/08 01:59:24 | 000,000,749 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\Start Menu\Programs\Outlook Express.lnk
[2011/05/08 01:59:24 | 000,000,026 | R--- | C] () -- C:\Documents and Settings\HP_Administrator\Start Menu\Programs\Startup\AXEL.DAV
[2011/05/08 01:59:24 | 000,000,026 | R--- | C] () -- C:\Documents and Settings\HP_Administrator\Start Menu\Programs\AXEL.DAV
[2011/05/06 00:42:11 | 000,001,879 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Updates From HP.lnk
[2011/05/05 23:07:14 | 000,002,469 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\Desktop\HiJackThis.lnk
[2011/05/03 15:52:10 | 000,000,246 | ---- | C] () -- C:\WINDOWS\System\hpsysdrv.dat.oth
[2011/04/29 14:03:54 | 000,000,783 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\My Documents\Document.rtf
[2011/04/25 01:24:37 | 000,032,754 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\My Documents\cc_20110425_012433.reg
[2011/04/22 05:23:36 | 000,002,016 | ---- | C] () -- C:\{729F0378-F865-49CE-A20B-1544FC55DF20}
[2011/04/19 20:09:43 | 000,000,795 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/03/21 11:49:55 | 000,117,159 | ---- | C] () -- C:\WINDOWS\hpoins11.dat
[2011/03/21 11:44:13 | 000,011,634 | ---- | C] () -- C:\WINDOWS\hpomdl11.dat
[2010/12/18 17:51:39 | 008,892,928 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\atscie.msi
[2010/12/03 21:04:03 | 000,000,026 | ---- | C] () -- C:\WINDOWS\starmsg.ini
[2010/11/18 07:18:58 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\LocalService\Application Data\$_hpcst$.hpc
[2010/06/06 08:12:11 | 000,000,025 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2010/03/30 13:29:48 | 000,116,414 | ---- | C] () -- C:\WINDOWS\hpoins11.dat.temp
[2010/03/30 13:29:48 | 000,011,634 | ---- | C] () -- C:\WINDOWS\hpomdl11.dat.temp
[2006/09/30 05:29:22 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2006/09/30 05:07:40 | 000,028,848 | ---- | C] () -- C:\WINDOWS\System32\drivers\USBkey.sys
[2006/09/30 05:04:25 | 000,118,842 | R--- | C] () -- C:\WINDOWS\HPCPCUninstaller-6.3.2.116-9972322.exe
[2006/09/30 05:03:40 | 000,014,316 | ---- | C] () -- C:\WINDOWS\System32\CHODDI.SYS
[2006/09/30 05:03:34 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\hpreg.dll
[2006/09/30 05:00:32 | 000,000,174 | ---- | C] () -- C:\WINDOWS\QUICKEN.INI
[2006/09/30 04:49:43 | 000,000,157 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2006/09/30 04:49:07 | 000,045,929 | ---- | C] () -- C:\WINDOWS\NSSetDefaultBrowser.EXE
[2006/09/30 04:49:07 | 000,000,698 | ---- | C] () -- C:\WINDOWS\NSSetDefaultBrowser.ini
[2006/09/30 04:44:37 | 000,095,822 | ---- | C] () -- C:\WINDOWS\hpqins69.dat
[2006/09/30 04:43:46 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2006/09/30 04:39:41 | 000,000,791 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2006/09/30 04:39:17 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\Elusetup.exe
[2006/09/30 04:35:08 | 000,348,880 | ---- | C] () -- C:\WINDOWS\System32\igmedkrn.dll
[2006/09/30 04:35:08 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4624.dll
[2006/09/30 04:14:58 | 000,323,584 | ---- | C] () -- C:\WINDOWS\System32\pythoncom22.dll
[2006/09/30 04:14:58 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\pywintypes22.dll
[2006/09/30 04:14:41 | 000,016,896 | ---- | C] () -- C:\WINDOWS\System32\bcbmm.dll
[2006/09/30 04:12:16 | 000,000,026 | -H-- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\AXEL.DAV
[2006/09/30 04:12:16 | 000,000,026 | ---- | C] () -- C:\Documents and Settings\LocalService\Application Data\AXEL.DAV
[2006/09/30 04:12:15 | 000,000,026 | -H-- | C] () -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\AXEL.DAV
[2006/09/30 04:12:15 | 000,000,026 | ---- | C] () -- C:\Documents and Settings\NetworkService\Application Data\AXEL.DAV
[2006/06/16 14:58:18 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2005/11/14 21:04:36 | 000,000,026 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\AXEL.DAV
[2005/08/31 00:17:40 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2005/08/31 00:07:46 | 000,382,022 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2005/08/31 00:07:46 | 000,053,640 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2005/08/31 00:05:30 | 000,184,224 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2005/08/31 00:01:42 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2005/08/30 23:58:02 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2005/08/06 00:01:54 | 000,239,104 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2004/09/16 23:24:26 | 003,375,104 | ---- | C] () -- C:\WINDOWS\System32\qt-mt331.dll
[2004/08/10 07:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004/08/10 00:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004/08/10 00:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004/08/10 00:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004/08/10 00:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004/08/10 00:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004/08/10 00:00:00 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2004/08/10 00:00:00 | 000,001,788 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2004/08/10 00:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2004/07/26 10:51:38 | 000,000,310 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2001/08/23 11:12:28 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2001/08/23 11:11:02 | 000,004,490 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CB0AACC9
@Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D1B5B4F1

< End of report >