OTL logfile created on: 8/17/2011 10:48:48 PM - Run 2
OTL by OldTimer - Version 3.2.26.5     Folder = C:\accessories\spyware and av
 An unknown product Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
2.96 Gb Total Physical Memory | 0.82 Gb Available Physical Memory | 27.83% Memory free
5.92 Gb Paging File | 3.70 Gb Available in Paging File | 62.51% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 298.05 Gb Total Space | 27.97 Gb Free Space | 9.38% Space Free | Partition Type: NTFS
Drive H: | 465.76 Gb Total Space | 0.01 Gb Free Space | 0.00% Space Free | Partition Type: NTFS
 
Computer Name: WHOLETEAM-DELL2 | User Name: wholeteam | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2011/08/17 10:28:14 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\accessories\spyware and av\OTL.exe
PRC - [2011/07/21 16:20:08 | 000,161,336 | ---- | M] (Google) -- C:\Users\whoelteam\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
PRC - [2011/06/24 00:22:20 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2011/06/23 01:41:08 | 001,306,728 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee.com\Agent\mcagent.exe
PRC - [2011/06/01 10:00:17 | 000,273,544 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe
PRC - [2011/03/13 11:45:14 | 000,148,520 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\mfevtps.exe
PRC - [2011/03/13 11:41:50 | 000,159,832 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
PRC - [2011/03/13 11:41:36 | 000,165,000 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
PRC - [2011/02/25 01:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2011/02/16 15:49:08 | 000,088,176 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
PRC - [2011/02/10 00:47:03 | 000,058,288 | ---- | M] (Absolute Software Corp.) -- C:\Windows\System32\rpcnet.exe
PRC - [2011/01/27 18:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
PRC - [2010/11/20 08:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2010/11/20 08:17:00 | 000,302,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmd.exe
PRC - [2010/10/02 16:20:00 | 004,537,280 | ---- | M] (SlySoft, Inc.) -- C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe
PRC - [2010/09/24 13:19:08 | 000,159,472 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Zune\ZuneLauncher.exe
PRC - [2010/09/15 12:41:16 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010/03/26 10:52:24 | 001,234,216 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 10\Nero BackItUp\NBAgent.exe
PRC - [2010/03/25 14:39:22 | 000,490,280 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Update\NASvc.exe
PRC - [2010/03/04 23:38:00 | 000,071,096 | ---- | M] () -- C:\Program Files\CDBurnerXP\NMSAccessU.exe
PRC - [2009/12/22 08:57:22 | 001,172,992 | ---- | M] (Vitalwerks LLC) -- C:\Program Files\No-IP\DUC20.exe
PRC - [2009/07/13 21:14:37 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sfc.exe
PRC - [2009/07/13 21:14:21 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetsrv\inetinfo.exe
PRC - [2009/03/05 16:07:20 | 002,260,480 | RHS- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2009/02/27 10:18:32 | 000,217,088 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\Apoint.exe
PRC - [2009/01/31 16:15:38 | 000,049,152 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\ApntEx.exe
PRC - [2009/01/31 14:43:30 | 000,049,250 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\hidfind.exe
PRC - [2009/01/26 16:31:12 | 005,365,592 | RHS- | M] (Safer Networking Limited) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
PRC - [2009/01/26 16:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
PRC - [2008/11/24 05:56:46 | 000,054,568 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\ApMsgFwd.exe
PRC - [2008/11/09 16:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
PRC - [2007/11/12 21:49:58 | 001,085,513 | ---- | M] (Linksys) -- C:\Program Files\Linksys\WMB54G\WMB54G.exe
PRC - [2007/10/05 12:22:38 | 000,283,466 | ---- | M] (C-Media) -- C:\Program Files\Linksys\WMB54G\Driver\CmFlywav.exe
PRC - [2006/12/05 13:00:28 | 000,061,516 | ---- | M] (C-Media Electronics Inc.) -- C:\Program Files\Linksys\WMB54G\Driver\cmas2ds.exe
PRC - [2006/04/21 17:18:26 | 014,651,392 | ---- | M] (Macromedia, Inc.) -- C:\Program Files\Macromedia\Dreamweaver 8\Dreamweaver.exe
PRC - [2005/08/24 23:21:58 | 016,175,104 | ---- | M] (Macromedia Inc.) -- C:\Program Files\Macromedia\Fireworks 8\Fireworks.exe
PRC - [2004/12/14 03:12:02 | 000,483,328 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Adobe\Acrobat 7.0\Distillr\acrotray.exe
PRC - [2003/08/01 19:28:24 | 000,474,624 | ---- | M] (Constantin Kaplinsky) -- C:\Program Files\TightVNC\WinVNC.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2011/08/17 20:40:44 | 006,277,280 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll
MOD - [2010/09/15 12:41:16 | 001,016,792 | ---- | M] () -- C:\Program Files\Mozilla Firefox\js3250.dll
MOD - [2009/11/10 16:39:24 | 000,929,792 | ---- | M] () -- C:\Program Files\Yahoo!\Messenger\yui.dll
MOD - [2009/11/03 16:51:42 | 000,067,872 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2009/06/05 14:20:15 | 000,140,800 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2009/02/14 06:04:38 | 000,756,040 | ---- | M] () -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSPTLS.DLL
MOD - [2008/10/26 06:42:14 | 000,065,376 | ---- | M] () -- C:\Program Files\Microsoft Office\Office12\ADDINS\ColleagueImport.dll
MOD - [2008/06/19 18:35:36 | 000,333,288 | ---- | M] () -- C:\Program Files\Spybot - Search & Destroy\sqlite3.dll
MOD - [2008/03/05 10:34:32 | 000,795,520 | ---- | M] () -- C:\Program Files\Spybot - Search & Destroy\Plugins\Fennel.dll
MOD - [2008/03/04 15:52:00 | 000,790,392 | ---- | M] () -- C:\Program Files\Spybot - Search & Destroy\Plugins\Chai.dll
MOD - [2008/02/26 12:04:40 | 000,717,176 | ---- | M] () -- C:\Program Files\Spybot - Search & Destroy\Plugins\Mate.dll
MOD - [2007/12/24 02:05:00 | 000,121,344 | ---- | M] () -- C:\Program Files\Spybot - Search & Destroy\Plugins\TCPIPAddress.dll
MOD - [2007/07/03 19:33:36 | 000,106,496 | ---- | M] () -- C:\Windows\VMix.dll
MOD - [2006/10/27 16:35:18 | 000,436,512 | ---- | M] () -- C:\Program Files\Microsoft Office\Office12\ADDINS\UmOutlookAddin.dll
MOD - [2006/09/25 13:40:36 | 000,274,490 | ---- | M] () -- C:\Program Files\Linksys\WMB54G\Driver\flac.dll
MOD - [2006/03/21 21:08:48 | 000,491,520 | ---- | M] () -- C:\Program Files\Linksys\WMB54G\cmaudiow.dll
MOD - [2005/12/20 00:41:38 | 000,131,072 | ---- | M] () -- C:\Program Files\Macromedia\Dreamweaver 8\libcurl.dll
MOD - [2005/08/30 16:32:04 | 000,106,496 | ---- | M] () -- C:\Program Files\Macromedia\Dreamweaver 8\Configuration\JSExtensions\DWfile.dll
MOD - [2005/08/30 16:32:02 | 000,192,512 | ---- | M] () -- C:\Program Files\Macromedia\Dreamweaver 8\NetIOFTP.dll
MOD - [2005/08/30 16:28:48 | 000,528,384 | ---- | M] () -- C:\Program Files\Macromedia\Dreamweaver 8\Workspace.dll
MOD - [2005/08/30 16:28:20 | 000,114,688 | ---- | M] () -- C:\Program Files\Macromedia\Dreamweaver 8\Configuration\JSExtensions\MM.dll
MOD - [2005/08/30 16:28:12 | 000,106,496 | ---- | M] () -- C:\Program Files\Macromedia\Dreamweaver 8\Configuration\JSExtensions\SWFFile.dll
MOD - [2005/08/30 16:27:14 | 000,073,728 | ---- | M] () -- C:\Program Files\Macromedia\Dreamweaver 8\NetIO.dll
MOD - [2005/08/30 16:26:42 | 000,126,976 | ---- | M] () -- C:\Program Files\Macromedia\Dreamweaver 8\CoreTypes.dll
MOD - [2005/08/30 16:23:26 | 000,843,776 | ---- | M] () -- C:\Program Files\Macromedia\Dreamweaver 8\libeay32.dll
MOD - [2005/08/30 16:23:26 | 000,159,744 | ---- | M] () -- C:\Program Files\Macromedia\Dreamweaver 8\ssleay32.dll
MOD - [2005/08/30 16:19:42 | 001,052,672 | ---- | M] () -- C:\Program Files\Macromedia\Dreamweaver 8\Configuration\flash player\FlashPlayerW.dll
MOD - [2005/08/30 16:13:28 | 000,015,360 | ---- | M] () -- C:\Program Files\Macromedia\Dreamweaver 8\Configuration\JSExtensions\DWEMLaunch.dll
MOD - [2005/08/24 22:54:04 | 000,106,496 | ---- | M] () -- C:\Program Files\Macromedia\Fireworks 8\giflib.dll
MOD - [2005/08/24 22:53:24 | 000,335,872 | ---- | M] () -- C:\Program Files\Macromedia\Fireworks 8\jslib.dll
MOD - [2005/08/24 22:53:06 | 000,106,496 | ---- | M] () -- C:\Program Files\Macromedia\Fireworks 8\python.dll
MOD - [2005/08/24 22:53:00 | 000,118,784 | ---- | M] () -- C:\Program Files\Macromedia\Fireworks 8\libpng.dll
MOD - [2005/08/24 22:52:56 | 000,069,632 | ---- | M] () -- C:\Program Files\Macromedia\Fireworks 8\zlib.dll
MOD - [2005/08/24 22:50:50 | 000,040,960 | ---- | M] () -- C:\Program Files\Macromedia\Fireworks 8\SN.dll
MOD - [2005/08/24 22:50:28 | 001,638,400 | ---- | M] () -- C:\Program Files\Macromedia\Fireworks 8\Plug-Ins\authplay.dll
MOD - [2001/11/09 01:44:06 | 004,558,910 | ---- | M] () -- C:\Program Files\Macromedia\Fireworks 8\Plug-Ins\gsdll32.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [Auto | Stopped] --  -- (0195511313283042mcinstcleanup) McAfee Application Installer Cleanup (0195511313283042)
SRV - [2011/08/07 13:22:01 | 000,411,432 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011/06/23 15:22:58 | 000,361,712 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
SRV - [2011/03/13 11:45:14 | 000,148,520 | ---- | M] (McAfee, Inc.) [Unknown | Running] -- C:\Windows\System32\mfevtps.exe -- (mfevtp)
SRV - [2011/03/13 11:41:50 | 000,159,832 | ---- | M] () [Unknown | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe -- (mfefire)
SRV - [2011/03/13 11:41:36 | 000,165,000 | ---- | M] () [Unknown | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe -- (McShield)
SRV - [2011/02/16 15:49:08 | 000,088,176 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe -- (McAfee SiteAdvisor Service)
SRV - [2011/02/10 00:47:03 | 000,058,288 | ---- | M] (Absolute Software Corp.) [Auto | Running] -- C:\Windows\System32\rpcnet.exe -- (rpcnet) Remote Procedure Call (RPC)
SRV - [2011/01/27 18:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McProxy)
SRV - [2011/01/27 18:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McNASvc)
SRV - [2011/01/27 18:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McNaiAnn)
SRV - [2011/01/27 18:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (mcmscsvc)
SRV - [2011/01/26 02:06:49 | 000,309,760 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\inetsrv\ftpsvc.dll -- (ftpsvc)
SRV - [2010/11/20 08:19:20 | 000,397,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\inetsrv\iisw3adm.dll -- (WAS)
SRV - [2010/11/20 08:19:20 | 000,397,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\inetsrv\iisw3adm.dll -- (W3SVC)
SRV - [2010/11/20 08:18:03 | 000,061,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\inetsrv\apphostsvc.dll -- (AppHostSvc)
SRV - [2010/09/24 13:19:16 | 000,444,656 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\ZuneWlanCfgSvc.exe -- (ZuneWlanCfgSvc)
SRV - [2010/09/24 13:19:16 | 000,268,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Zune\WMZuneComm.exe -- (WMZuneComm)
SRV - [2010/09/24 13:19:08 | 006,351,600 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Zune\ZuneNss.exe -- (ZuneNetworkSvc)
SRV - [2010/03/25 14:39:22 | 000,490,280 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2010/03/04 23:38:00 | 000,071,096 | ---- | M] () [Auto | Running] -- C:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccess)
SRV - [2010/02/26 04:00:36 | 001,343,400 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2009/12/22 08:57:22 | 001,172,992 | ---- | M] (Vitalwerks LLC) [Auto | Running] -- C:\Program Files\No-IP\DUC20.exe -- (NoIPDUCService)
SRV - [2009/07/13 21:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009/07/13 21:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/13 21:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/13 21:14:48 | 000,009,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\inetsrv\WMSvc.exe -- (WMSVC)
SRV - [2009/07/13 21:14:21 | 000,013,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\inetsrv\inetinfo.exe -- (IISADMIN)
SRV - [2009/01/26 16:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Running] -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)
SRV - [2008/11/09 16:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
SRV - [2003/08/01 19:28:24 | 000,474,624 | ---- | M] (Constantin Kaplinsky) [Auto | Running] -- C:\Program Files\TightVNC\WinVNC.exe -- (winvnc)
SRV - [2002/09/03 15:46:36 | 001,282,112 | ---- | M] (Cisco Systems, Inc.) [Auto | Stopped] -- C:\Program Files\Kaiser\VPN Client\cvpnd.exe -- (CVPND)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2011/03/13 11:20:10 | 000,459,728 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\Windows\System32\drivers\mfehidk.sys -- (mfehidk)
DRV - [2011/03/13 11:20:10 | 000,337,912 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\Windows\System32\drivers\mfefirek.sys -- (mfefirek)
DRV - [2011/03/13 11:20:10 | 000,179,248 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\Windows\System32\drivers\mfeavfk.sys -- (mfeavfk)
DRV - [2011/03/13 11:20:10 | 000,163,400 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\Windows\System32\drivers\mfewfpk.sys -- (mfewfpk)
DRV - [2011/03/13 11:20:10 | 000,118,784 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\Windows\System32\drivers\mfeapfk.sys -- (mfeapfk)
DRV - [2011/03/13 11:20:10 | 000,085,984 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Stopped] -- C:\Windows\System32\drivers\mferkdet.sys -- (mferkdet)
DRV - [2011/03/13 11:20:10 | 000,064,648 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\mfenlfk.sys -- (mfenlfk)
DRV - [2011/03/13 11:20:10 | 000,059,288 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\Windows\System32\drivers\mfebopk.sys -- (mfebopk)
DRV - [2011/03/13 11:20:10 | 000,057,432 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Stopped] -- C:\Windows\System32\drivers\cfwids.sys -- (cfwids)
DRV - [2010/11/20 08:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\vmbus.sys -- (vmbus)
DRV - [2010/11/20 08:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010/11/20 08:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\storvsc.sys -- (storvsc)
DRV - [2010/11/20 06:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 05:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUSB)
DRV - [2010/11/20 05:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010/11/20 05:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010/09/14 09:16:06 | 000,108,480 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AnyDVD.sys -- (AnyDVD)
DRV - [2009/11/12 14:48:56 | 000,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2009/10/26 08:54:24 | 000,025,088 | ---- | M] (HTC, Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ANDROIDUSB.sys -- (HTCAND32)
DRV - [2009/09/03 17:33:38 | 000,021,248 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Motive\MREMP50.sys -- (MREMP50)
DRV - [2009/09/03 17:33:38 | 000,020,096 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Motive\MRESP50.sys -- (MRESP50)
DRV - [2009/07/13 19:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\serial.sys -- (Serial)
DRV - [2009/07/13 18:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32) Intel(R)
DRV - [2009/03/25 01:25:24 | 000,197,680 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2008/05/28 18:01:00 | 000,235,840 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\OEM13Vid.sys -- (OEM13Vid)
DRV - [2007/03/29 11:25:18 | 001,410,240 | ---- | M] (C-Media Electronics Inc) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\cmudaxv.sys -- (cmvad)
DRV - [2007/03/05 11:45:04 | 000,007,424 | ---- | M] (EyePower Games Pte. Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\OEM13Vfx.sys -- (OEM13Vfx)
DRV - [2004/10/25 15:40:58 | 000,017,664 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\pcasp50.sys -- (PCASp50)
DRV - [2004/03/23 22:12:34 | 000,017,280 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\nsndis5.sys -- (NSNDIS5)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Page_URL = http://g.msn.com/USSMB/1
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://g.msn.com/USSMB/1
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/?.home=ytie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 46 6E 34 01 D2 BD 89 4A 8A A2 DD 11 A0 6F B1 44  [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
 
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\progra~1\mcafee\msc\npmcsn~1.dll ()
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.647: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.647: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.652: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.652: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.647: c:\program files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=:  File not found
FF - HKLM\Software\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0: C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.3: C:\Users\whoelteam\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll ( )
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\whoelteam\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\whoelteam\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\whoelteam\AppData\Local\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\whoelteam\AppData\Local\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\Program Files\McAfee\SiteAdvisor [2011/08/10 01:17:26 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011/06/01 10:01:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.9\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/06/01 10:00:51 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.9\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/06/01 10:01:36 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{1978D798-BAC6-45F1-8C74-0A017DB9028D}: C:\Users\whoelteam\AppData\Local\{1978D798-BAC6-45F1-8C74-0A017DB9028D}\ [2011/08/14 23:42:25 | 000,000,000 | ---D | M]
 
[2009/12/06 23:50:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\whoelteam\AppData\Roaming\mozilla\Extensions
[2011/08/17 20:20:27 | 000,000,000 | ---D | M] (No name found) -- C:\Users\whoelteam\AppData\Roaming\mozilla\Firefox\Profiles\5iskg2hu.default\extensions
[2011/06/22 08:39:48 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\whoelteam\AppData\Roaming\mozilla\Firefox\Profiles\5iskg2hu.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2011/02/26 23:22:17 | 000,001,919 | ---- | M] () -- C:\Users\whoelteam\AppData\Roaming\Mozilla\Firefox\Profiles\5iskg2hu.default\searchplugins\bing-zugo.xml
[2011/08/16 23:29:05 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/06/09 07:03:40 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2011/04/14 14:01:38 | 000,024,376 | ---- | M] (McAfee, Inc.) -- C:\Program Files\mozilla firefox\components\Scriptff.dll
[2010/04/12 17:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011/02/28 10:35:00 | 000,002,024 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\McSiteAdvisor.xml
 
O1 HOSTS File: ([2011/08/17 19:58:01 | 000,435,637 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: 127.0.0.1	www.007guard.com
O1 - Hosts: 127.0.0.1	007guard.com
O1 - Hosts: 127.0.0.1	008i.com
O1 - Hosts: 127.0.0.1	www.008k.com
O1 - Hosts: 127.0.0.1	008k.com
O1 - Hosts: 127.0.0.1	www.00hq.com
O1 - Hosts: 127.0.0.1	00hq.com
O1 - Hosts: 127.0.0.1	010402.com
O1 - Hosts: 127.0.0.1	www.032439.com
O1 - Hosts: 127.0.0.1	032439.com
O1 - Hosts: 127.0.0.1	www.0scan.com
O1 - Hosts: 127.0.0.1	0scan.com
O1 - Hosts: 127.0.0.1	1000gratisproben.com
O1 - Hosts: 127.0.0.1	www.1000gratisproben.com
O1 - Hosts: 127.0.0.1	1001namen.com
O1 - Hosts: 127.0.0.1	www.1001namen.com
O1 - Hosts: 127.0.0.1	100888290cs.com
O1 - Hosts: 127.0.0.1	www.100888290cs.com
O1 - Hosts: 127.0.0.1	www.100sexlinks.com
O1 - Hosts: 127.0.0.1	100sexlinks.com
O1 - Hosts: 127.0.0.1	10sek.com
O1 - Hosts: 127.0.0.1	www.10sek.com
O1 - Hosts: 127.0.0.1	www.1-2005-search.com
O1 - Hosts: 127.0.0.1	1-2005-search.com
O1 - Hosts: 15020 more lines...
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20110816171840.dll (McAfee, Inc.)
O2 - BHO: (AcroIEToolbarHelper Class) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Acrobat Assistant 7.0] C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [NBAgent] C:\Program Files\Nero\Nero 10\Nero BackItUp\NBAgent.exe (Nero AG)
O4 - HKLM..\Run: [TkBellExe] c:\program files\real\realplayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [WinVNC] C:\Program Files\TightVNC\WinVNC.exe (Constantin Kaplinsky)
O4 - HKLM..\Run: [Zune Launcher] c:\Program Files\Zune\ZuneLauncher.exe (Microsoft Corporation)
O4 - HKCU..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe (SlySoft, Inc.)
O4 - HKCU..\Run: [Messenger (Yahoo!)] C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - HKCU..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AdobeUpdateManager.exe (Adobe Systems Incorporated)
O4 - Startup: C:\Users\whoelteam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\No-IP DUC.lnk = C:\Program Files\No-IP\DUC20.exe (Vitalwerks LLC)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O8 - Extra context menu item: Convert link target to Adobe PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert link target to existing PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selected links to Adobe PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selected links to existing PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selection to Adobe PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selection to existing PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to existing PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 17:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O35 - HKCU\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKCU\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2011/08/17 19:55:34 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{E5FE896F-8125-4093-AF44-25F32D5138B4}
[2011/08/17 19:55:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
[2011/08/17 19:55:03 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{095EDC25-E39E-4A88-845E-EBA7E0197D10}
[2011/08/17 19:37:10 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2011/08/17 19:14:14 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\temp
[2011/08/17 14:13:15 | 000,518,144 | R--- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2011/08/17 14:13:15 | 000,406,528 | R--- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2011/08/17 14:13:15 | 000,060,416 | R--- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2011/08/17 13:54:36 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{176CDC81-CB37-447F-B0DA-3009B1DD95EF}
[2011/08/17 13:54:22 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{1F0E639A-96F6-44B5-8459-28CB6B9FD38E}
[2011/08/17 13:51:15 | 000,000,000 | ---D | C] -- C:\_OTL
[2011/08/17 13:47:46 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{AA4A63AE-5541-4F83-800F-9E3454D5A0D8}
[2011/08/17 13:47:29 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{1A39977E-C50B-4CCC-8A8D-A54F1C13B749}
[2011/08/17 13:43:39 | 000,058,288 | ---- | C] (Absolute Software Corp.) -- C:\Windows\System32\rpcnet.dll
[2011/08/17 09:20:47 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{337BBB7E-9AC7-4C87-A3E9-70E80506704D}
[2011/08/17 09:20:30 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{F3640F0D-6A17-4973-A109-411BC6518CA5}
[2011/08/17 09:09:47 | 000,000,000 | ---D | C] -- C:\_OTM
[2011/08/17 09:08:21 | 000,000,000 | ---D | C] -- C:\registrybackup
[2011/08/17 08:19:10 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{33B1F291-16E7-4D6B-8D97-59018B6C5CF3}
[2011/08/17 08:18:58 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{41DD4C0A-D108-426A-B2DF-9ABA25D81877}
[2011/08/16 23:20:06 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
[2011/08/16 23:20:03 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2011/08/16 23:09:09 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{142E3B46-CD00-474B-B2D4-ACFEA80DB2E1}
[2011/08/16 23:02:52 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{38EC1D8B-711A-4C9E-AB42-AE07E8D4AF6E}
[2011/08/16 23:02:38 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{CBB2FB88-590C-45BF-AAEB-788EBA3926D5}
[2011/08/16 21:28:19 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{8C5CBBFD-DE1F-44A9-B661-D63B7229790D}
[2011/08/16 21:00:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Hitman Pro
[2011/08/16 21:00:26 | 000,000,000 | ---D | C] -- C:\Program Files\Hitman Pro 3.5
[2011/08/16 20:02:53 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{A4FC60C6-136A-479B-8B45-ED3095B9B956}
[2011/08/16 20:02:40 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{BFF4CFF3-EA5C-4153-96B6-176A65009F30}
[2011/08/16 15:16:21 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{883428A0-E7A1-4FB2-9168-0452B5C6C23A}
[2011/08/16 13:58:57 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Roaming\Malwarebytes
[2011/08/16 13:58:51 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/08/16 13:58:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/08/16 13:58:44 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/08/16 13:58:43 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/08/16 13:25:23 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\Nero
[2011/08/16 12:34:03 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{3D626994-A3BA-4F79-B793-AB4D8C9F8A4A}
[2011/08/16 10:08:34 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{9A34AE45-E9E6-48ED-B2DD-691CF865C36E}
[2011/08/16 10:08:17 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{B705349B-8C5E-4B55-9020-D7796E56B206}
[2011/08/16 01:29:12 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\PackageAware
[2011/08/16 00:32:28 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{090B33A6-5A80-418C-9991-ACEACFAF1FC9}
[2011/08/15 16:42:43 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{B24F19EC-A443-40D3-AE87-4966EE991236}
[2011/08/15 15:15:22 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{C5C07D01-4623-4145-BC31-29C4EEC3CA70}
[2011/08/15 15:15:08 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{8F2DFBF9-1979-4D44-BF5F-83C24A986CB8}
[2011/08/15 15:01:13 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{9CD6C905-F755-4F2C-AA23-098CACAA360B}
[2011/08/15 14:37:36 | 000,197,680 | ---- | C] (Alps Electric Co., Ltd.) -- C:\Windows\System32\drivers\Apfiltr.sys
[2011/08/15 14:24:25 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{4E4280C3-CE53-47BC-A064-43A68C2635A7}
[2011/08/15 14:24:08 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{C4129BFC-C14F-48C6-8CF8-B25D8A3D9785}
[2011/08/15 13:34:24 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{75416CA0-DB20-4FE7-A24B-6D1163E5444C}
[2011/08/14 23:42:24 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{1978D798-BAC6-45F1-8C74-0A017DB9028D}
[2011/08/14 20:09:46 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2011/08/14 19:40:15 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\Documents\DVDFab
[2011/08/14 19:40:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDFab 8 Qt
[2011/08/14 19:39:39 | 000,000,000 | ---D | C] -- C:\Program Files\DVDFab 8 Qt
[2011/08/14 19:28:10 | 000,000,000 | ---D | C] -- C:\DVDFabDecrypter_Temp
[2011/08/14 19:28:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDFab Decrypter
[2011/08/14 19:27:58 | 000,000,000 | ---D | C] -- C:\Program Files\DVDFab Decrypter
[2011/08/14 19:23:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aimersoft
[2011/08/14 19:22:40 | 000,000,000 | ---D | C] -- C:\Program Files\Aimersoft
[2011/08/14 18:24:45 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\Documents\DVD Creator
[2011/08/14 13:34:11 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\Documents\NeroVision
[2011/08/11 09:54:28 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{700C9AC6-AAC6-4B31-8BEA-28680E298121}
[2011/08/11 09:54:11 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{1C2C2639-422C-4F42-B0B6-939F7FE6FD64}
[2011/08/11 09:53:26 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Roaming\Nero
[2011/08/11 03:01:38 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2011/08/10 07:36:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero
[2011/08/10 07:35:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero
[2011/08/10 07:35:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
[2011/08/10 07:35:50 | 000,000,000 | ---D | C] -- C:\Program Files\Nero
[2011/08/10 07:32:51 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{331D4135-92B2-4399-A4A7-FF06C5D17D36}
[2011/08/10 03:07:27 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2011/08/10 03:07:26 | 001,797,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2011/08/10 03:07:26 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2011/08/10 03:07:26 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2011/08/10 03:07:24 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2011/08/09 23:12:15 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_42.dll
[2011/08/09 23:11:50 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll
[2011/08/09 23:11:25 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_40.dll
[2011/08/09 23:11:01 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_35.dll
[2011/08/09 23:10:36 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_34.dll
[2011/08/09 23:10:11 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_30.dll
[2011/08/09 22:10:40 | 003,912,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2011/08/09 22:10:39 | 003,967,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2011/08/09 22:10:22 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
[2011/08/09 22:10:22 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2011/08/09 22:10:22 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2011/08/09 22:10:22 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2011/08/09 22:10:22 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2011/08/09 22:10:22 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2011/08/09 22:10:22 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2011/08/09 22:10:22 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2011/08/09 22:10:22 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2011/08/09 22:10:21 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2011/08/09 22:10:21 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2011/08/09 22:10:21 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/08/09 22:10:21 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2011/08/09 22:10:21 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2011/08/09 22:10:21 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2011/08/09 22:10:21 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2011/08/09 22:10:20 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2011/08/09 22:10:20 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2011/08/09 22:10:20 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2011/08/09 22:10:20 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2011/08/09 22:10:20 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2011/08/09 22:10:20 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2011/08/09 22:10:20 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[2011/08/09 22:10:20 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2011/08/09 22:10:20 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2011/08/09 22:10:20 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2011/08/09 22:10:20 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2011/08/09 22:10:20 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2011/08/09 22:10:19 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2011/08/09 22:10:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2011/08/09 22:10:14 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcjt32.dll
[2011/08/09 22:10:14 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbctrac.dll
[2011/08/09 22:10:14 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccp32.dll
[2011/08/09 22:10:14 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccu32.dll
[2011/08/09 22:10:14 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccr32.dll
[2011/08/08 18:37:08 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{1F403329-B00F-49DF-86E8-E377146AC085}
[2011/08/08 18:36:47 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{844C133F-6BB6-4995-B556-B530BA740463}
[2011/08/08 08:29:00 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{19F73B67-6CDA-4B44-8987-D3F9EE626BC6}
[2011/08/08 08:28:42 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{42A1D9F8-3585-4158-BB75-A92603184366}
[2011/08/07 13:21:57 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{07F9EDF7-7590-49FC-A575-C51F7DA74993}
[2011/08/07 13:21:31 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{AF0697C5-2F9B-43E8-86FA-772BF2A65A0D}
[2011/08/01 23:20:35 | 000,000,000 | ---D | C] -- C:\Users\whoelteam\AppData\Local\{226819F7-97CD-4705-A6BB-F4AEDB8C57D5}
[2011/08/01 08:17:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2011/08/01 08:15:52 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011/08/01 08:15:51 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011/08/01 08:10:39 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2011/02/11 18:40:40 | 000,004,096 | ---- | C] ( ) -- C:\Windows\System32\IGFXDEVLib.dll
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2011/08/17 22:54:25 | 000,001,184 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/08/17 22:54:25 | 000,001,184 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/08/17 22:29:00 | 000,000,924 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1983123432-918471795-1554061222-1000UA.job
[2011/08/17 21:56:48 | 002,249,650 | ---- | M] () -- C:\Users\whoelteam\Documents\Mad Resume Pt 2.jpg
[2011/08/17 21:55:33 | 003,478,840 | ---- | M] () -- C:\Users\whoelteam\Documents\Mad Resume.jpg
[2011/08/17 21:30:21 | 000,000,632 | RHS- | M] () -- C:\Users\whoelteam\ntuser.pol
[2011/08/17 20:40:44 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011/08/17 19:58:01 | 000,435,637 | R--- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2011/08/17 19:56:13 | 000,023,624 | ---- | M] () -- C:\Windows\System32\drivers\hitmanpro35.sys
[2011/08/17 19:55:19 | 000,001,790 | ---- | M] () -- C:\Users\Public\Desktop\McAfee AntiVirus Plus.lnk
[2011/08/17 19:53:52 | 000,058,288 | ---- | M] (Absolute Software Corp.) -- C:\Windows\System32\rpcnet.dll
[2011/08/17 19:53:48 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/08/17 19:53:38 | 2385,162,240 | -HS- | M] () -- C:\hiberfil.sys
[2011/08/17 19:32:22 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts.20110817-195801.backup
[2011/08/17 09:29:27 | 000,000,178 | ---- | M] () -- C:\Windows\System32\.crusader
[2011/08/17 09:09:48 | 000,000,098 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts.20110817-100354.backup
[2011/08/17 04:29:00 | 000,000,872 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1983123432-918471795-1554061222-1000Core.job
[2011/08/16 23:37:40 | 000,017,408 | ---- | M] () -- C:\Windows\System32\rpcnetp.dll
[2011/08/16 23:37:33 | 002,364,912 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/08/16 23:20:06 | 000,002,983 | ---- | M] () -- C:\Users\whoelteam\Desktop\HiJackThis.lnk
[2011/08/16 13:58:52 | 000,001,110 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/08/15 15:42:09 | 000,000,695 | ---- | M] () -- C:\Users\whoelteam\Desktop\reset.bat
[2011/08/15 10:53:01 | 270,663,073 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2011/08/14 19:40:00 | 000,001,017 | ---- | M] () -- C:\Users\whoelteam\Desktop\DVDFab 8 Qt.lnk
[2011/08/14 19:28:01 | 000,001,031 | ---- | M] () -- C:\Users\whoelteam\Desktop\DVDFab Decrypter.lnk
[2011/08/14 19:23:09 | 000,001,221 | ---- | M] () -- C:\Users\whoelteam\Desktop\Aimersoft DVD Creator.lnk
[2011/08/11 10:03:31 | 000,001,312 | ---- | M] () -- C:\Users\whoelteam\Desktop\DJ.Khaled-We.The.Best.Forever-(Deluxe.Edition)-2011-[NoFS] - Shortcut.lnk
[2011/08/11 10:03:22 | 000,001,227 | ---- | M] () -- C:\Users\whoelteam\Desktop\Wu-Tang Clan - Legendary Weapons (Deluxe Edition) - Shortcut.lnk
[2011/08/10 07:44:10 | 000,002,923 | ---- | M] () -- C:\Users\Public\Desktop\Nero StartSmart 10.lnk
[2011/08/10 07:42:39 | 000,002,901 | ---- | M] () -- C:\Users\Public\Desktop\Nero Vision 10.lnk
[2011/08/10 07:40:49 | 000,002,895 | ---- | M] () -- C:\Users\Public\Desktop\Nero MediaHub 10.lnk
[2011/08/10 07:37:58 | 000,003,013 | ---- | M] () -- C:\Users\Public\Desktop\Nero BackItUp 10.lnk
[2011/08/10 07:37:19 | 000,002,915 | ---- | M] () -- C:\Users\Public\Desktop\Nero Burning ROM 10.lnk
[2011/08/01 08:17:21 | 000,001,796 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011/07/21 22:54:43 | 001,797,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2011/07/21 22:47:24 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2011/07/21 22:46:48 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2011/07/21 22:44:36 | 002,382,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2011/07/21 22:43:07 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2011/08/17 21:56:44 | 002,249,650 | ---- | C] () -- C:\Users\whoelteam\Documents\Mad Resume Pt 2.jpg
[2011/08/17 21:55:28 | 003,478,840 | ---- | C] () -- C:\Users\whoelteam\Documents\Mad Resume.jpg
[2011/08/17 14:13:15 | 000,256,000 | R--- | C] () -- C:\Windows\PEV.exe
[2011/08/17 14:13:15 | 000,208,896 | R--- | C] () -- C:\Windows\MBR.exe
[2011/08/17 14:13:15 | 000,098,816 | R--- | C] () -- C:\Windows\sed.exe
[2011/08/17 14:13:15 | 000,080,412 | R--- | C] () -- C:\Windows\grep.exe
[2011/08/17 14:13:15 | 000,068,096 | R--- | C] () -- C:\Windows\zip.exe
[2011/08/16 23:37:40 | 000,017,408 | ---- | C] () -- C:\Windows\System32\rpcnetp.dll
[2011/08/16 23:37:16 | 002,364,912 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/08/16 23:20:06 | 000,002,983 | ---- | C] () -- C:\Users\whoelteam\Desktop\HiJackThis.lnk
[2011/08/16 23:20:02 | 000,000,178 | ---- | C] () -- C:\Windows\System32\.crusader
[2011/08/16 21:01:17 | 000,023,624 | ---- | C] () -- C:\Windows\System32\drivers\hitmanpro35.sys
[2011/08/16 13:58:52 | 000,001,110 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/08/16 12:30:57 | 000,001,184 | -H-- | C] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/08/16 12:30:57 | 000,001,184 | -H-- | C] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/08/15 15:42:09 | 000,000,695 | ---- | C] () -- C:\Users\whoelteam\Desktop\reset.bat
[2011/08/14 19:40:00 | 000,001,017 | ---- | C] () -- C:\Users\whoelteam\Desktop\DVDFab 8 Qt.lnk
[2011/08/14 19:28:01 | 000,001,031 | ---- | C] () -- C:\Users\whoelteam\Desktop\DVDFab Decrypter.lnk
[2011/08/14 19:23:09 | 000,001,221 | ---- | C] () -- C:\Users\whoelteam\Desktop\Aimersoft DVD Creator.lnk
[2011/08/11 10:03:31 | 000,001,312 | ---- | C] () -- C:\Users\whoelteam\Desktop\DJ.Khaled-We.The.Best.Forever-(Deluxe.Edition)-2011-[NoFS] - Shortcut.lnk
[2011/08/11 10:03:22 | 000,001,227 | ---- | C] () -- C:\Users\whoelteam\Desktop\Wu-Tang Clan - Legendary Weapons (Deluxe Edition) - Shortcut.lnk
[2011/08/10 07:44:10 | 000,002,923 | ---- | C] () -- C:\Users\Public\Desktop\Nero StartSmart 10.lnk
[2011/08/10 07:42:39 | 000,002,901 | ---- | C] () -- C:\Users\Public\Desktop\Nero Vision 10.lnk
[2011/08/10 07:40:49 | 000,002,895 | ---- | C] () -- C:\Users\Public\Desktop\Nero MediaHub 10.lnk
[2011/08/10 07:37:58 | 000,003,013 | ---- | C] () -- C:\Users\Public\Desktop\Nero BackItUp 10.lnk
[2011/08/10 07:37:19 | 000,002,915 | ---- | C] () -- C:\Users\Public\Desktop\Nero Burning ROM 10.lnk
[2011/08/01 08:17:21 | 000,001,796 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011/07/14 08:44:39 | 000,036,401 | ---- | C] () -- C:\Users\whoelteam\AppData\Roaming\Comma Separated Values (Windows).ADR
[2011/04/20 21:39:58 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2010/12/01 00:21:19 | 000,274,490 | ---- | C] () -- C:\Windows\System32\flac.dll
[2010/12/01 00:21:19 | 000,106,496 | ---- | C] () -- C:\Windows\VMix.dll
[2010/12/01 00:21:19 | 000,045,056 | ---- | C] () -- C:\Windows\System32\cmrmdrvw.dll
[2010/12/01 00:21:19 | 000,040,960 | ---- | C] () -- C:\Windows\System32\WMB54G.dll
[2010/12/01 00:21:16 | 000,491,520 | ---- | C] () -- C:\Windows\System32\cmaudiow.dll
[2010/11/04 11:07:45 | 000,000,235 | ---- | C] () -- C:\Users\whoelteam\AppData\Roaming\devices.xml
[2010/11/04 11:07:45 | 000,000,012 | ---- | C] () -- C:\Users\whoelteam\AppData\Roaming\settings.xml
[2010/10/31 16:02:14 | 000,019,558 | ---- | C] () -- C:\Windows\hpoins01.dat
[2010/10/31 16:02:14 | 000,016,606 | ---- | C] () -- C:\Windows\hpomdl01.dat
[2010/08/25 20:30:02 | 000,439,308 | ---- | C] () -- C:\Windows\System32\igcompkrng500.bin
[2010/08/25 20:30:00 | 000,982,240 | ---- | C] () -- C:\Windows\System32\igkrng500.bin
[2010/08/25 20:30:00 | 000,092,356 | ---- | C] () -- C:\Windows\System32\igfcg500m.bin
[2010/08/25 19:57:00 | 000,000,151 | ---- | C] () -- C:\Windows\System32\GfxUI.exe.config
[2010/06/16 01:08:55 | 000,007,168 | ---- | C] () -- C:\Windows\System32\drivers\StarOpen.sys
[2010/04/23 23:46:29 | 000,027,648 | ---- | C] () -- C:\Windows\System32\AVSredirect.dll
[2010/01/20 16:13:03 | 000,000,000 | ---- | C] () -- C:\ProgramData\setup32.exe
[2009/12/11 12:27:03 | 000,005,632 | ---- | C] () -- C:\Users\whoelteam\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/12/06 23:34:37 | 000,025,640 | ---- | C] () -- C:\Windows\System32\emptyregdb.dat
[2009/12/03 09:27:30 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2009/07/14 00:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/13 22:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009/07/13 22:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009/07/13 22:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009/07/13 22:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009/07/13 19:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/13 19:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/13 19:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/07/13 18:09:19 | 000,139,824 | ---- | C] () -- C:\Windows\System32\igfcg500.bin
[2009/06/10 17:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat

< End of report >