OTL logfile created on: 1/9/2012 12:59:47 PM - Run 2
OTL by OldTimer - Version 3.2.31.0     Folder = C:\Documents and Settings\i65659\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
3.24 Gb Total Physical Memory | 2.29 Gb Available Physical Memory | 70.65% Memory free
5.08 Gb Paging File | 4.36 Gb Available in Paging File | 85.80% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232.88 Gb Total Space | 198.03 Gb Free Space | 85.03% Space Free | Partition Type: NTFS
Drive G: | 91.97 Gb Total Space | 0.11 Gb Free Space | 0.12% Space Free | Partition Type: NTFS
Drive H: | 91.97 Gb Total Space | 0.11 Gb Free Space | 0.12% Space Free | Partition Type: NTFS
Drive P: | 91.97 Gb Total Space | 0.11 Gb Free Space | 0.12% Space Free | Partition Type: NTFS
Drive S: | 91.97 Gb Total Space | 0.11 Gb Free Space | 0.12% Space Free | Partition Type: NTFS
 
Computer Name: WVAL-MMITCHELL | User Name: i65659 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012/01/03 09:47:55 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\i65659\Desktop\OTL.exe
PRC - [2011/07/12 11:14:40 | 000,988,520 | ---- | M] (Fiberlink Communications Corp.) -- C:\Program Files\MaaS360\MaaS360 Mobile Service\ServiceMgr.exe
PRC - [2011/07/12 11:14:16 | 000,124,264 | ---- | M] (Fiberlink Communications Corp.) -- C:\Program Files\MaaS360\MaaS360 Mobile Service\FLUtilsSvc.exe
PRC - [2011/07/12 11:14:10 | 000,443,752 | ---- | M] (Fiberlink Communications Corp.) -- C:\Program Files\MaaS360\MaaS360 Mobile Service\e360SysTray.exe
PRC - [2011/06/15 15:16:48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2011/03/22 22:04:06 | 000,737,280 | ---- | M] (Andrea Electronics Corporation) -- C:\WINDOWS\system32\AESTFltr.exe
PRC - [2011/03/22 22:04:06 | 000,536,668 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\sttray.exe
PRC - [2011/03/22 22:04:06 | 000,266,322 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\stacsv.exe
PRC - [2011/02/17 21:34:26 | 000,378,216 | ---- | M] (Fiberlink Communications Corp.) -- C:\Program Files\MaaS360\MaaS360 Visibility Service\EMSAgent.exe
PRC - [2010/11/17 08:53:16 | 000,113,288 | ---- | M] (Renesas Electronics Corporation) -- C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
PRC - [2010/09/27 16:42:18 | 004,180,576 | ---- | M] (SafeNet Inc.) -- C:\WINDOWS\system32\hasplms.exe
PRC - [2010/08/13 16:25:08 | 000,223,848 | ---- | M] (O2Micro.) -- C:\WINDOWS\system32\SDIOAssist.exe
PRC - [2010/04/07 12:49:00 | 002,093,322 | ---- | M] (Internet Security Systems, Inc.) -- C:\Program Files\ISS\Proventia Desktop\blackd.exe
PRC - [2010/04/07 12:49:00 | 001,274,122 | ---- | M] (Internet Security Systems, Inc.) -- C:\Program Files\ISS\Proventia Desktop\RapApp.exe
PRC - [2010/04/07 12:49:00 | 000,405,770 | ---- | M] (Internet Security Systems, Inc.) -- C:\Program Files\ISS\Proventia Desktop\vpatch.exe
PRC - [2010/02/10 16:50:50 | 000,072,296 | ---- | M] (O2Micro International) -- C:\WINDOWS\system32\drivers\o2flash.exe
PRC - [2008/11/09 14:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
PRC - [2008/04/13 18:12:31 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ping.exe
PRC - [2008/04/13 18:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007/10/31 14:21:06 | 001,246,536 | ---- | M] (Famatech International Corp.) -- C:\WINDOWS\system32\rserver30\rserver3.exe
PRC - [2007/10/31 14:20:52 | 000,099,720 | ---- | M] (Famatech International Corp.) -- C:\WINDOWS\system32\rserver30\FamItrfc.Exe
PRC - [2007/10/07 19:48:40 | 000,125,368 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec AntiVirus\VPTray.exe
PRC - [2007/10/07 19:48:24 | 000,031,160 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec AntiVirus\DefWatch.exe
PRC - [2007/07/26 18:25:20 | 001,181,016 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
PRC - [2007/05/29 15:33:36 | 000,169,576 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
PRC - [2007/05/29 15:33:26 | 000,192,104 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
PRC - [2007/05/29 15:33:22 | 000,052,840 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccApp.exe
PRC - [2006/11/10 09:46:26 | 001,504,304 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
PRC - [2004/01/09 03:56:44 | 000,057,393 | ---- | M] (IBM Corp) -- C:\lotus\notes\ntmulti.exe
PRC - [2003/04/18 17:06:26 | 000,008,192 | ---- | M] () -- C:\WINDOWS\system32\srvany.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2011/08/22 01:18:06 | 000,925,696 | ---- | M] () -- C:\Program Files\Yahoo!\Messenger\yui.dll
MOD - [2011/08/18 12:17:02 | 000,009,728 | ---- | M] () -- C:\Program Files\MaaS360\MaaS360 Visibility Service\bitlib.dll
MOD - [2011/08/18 12:16:56 | 000,131,072 | ---- | M] () -- C:\Program Files\MaaS360\MaaS360 Visibility Service\luaUtils.dll
MOD - [2011/07/12 11:14:54 | 000,054,632 | ---- | M] () -- C:\Program Files\MaaS360\MaaS360 Mobile Service\zlib.dll
MOD - [2011/07/12 10:46:18 | 000,782,336 | ---- | M] () -- C:\Program Files\MaaS360\MaaS360 Mobile Service\wlan.dll
MOD - [2011/07/12 10:07:12 | 000,995,328 | ---- | M] () -- C:\Program Files\MaaS360\MaaS360 Mobile Service\VDK_VC.dll
MOD - [2011/02/17 21:34:24 | 000,054,632 | ---- | M] () -- C:\Program Files\MaaS360\MaaS360 Visibility Service\fibzlib.dll
MOD - [2010/04/07 12:48:56 | 000,745,984 | ---- | M] () -- C:\Program Files\ISS\Proventia Desktop\libxml2.dll
MOD - [2010/04/07 12:48:56 | 000,147,968 | ---- | M] () -- C:\Program Files\ISS\Proventia Desktop\libxslt.dll
MOD - [2008/06/20 10:02:47 | 000,245,248 | ---- | M] () -- \\?\globalroot\systemroot\system32\mswsock.dll
MOD - [2008/06/20 10:02:47 | 000,245,248 | ---- | M] () -- \\.\globalroot\systemroot\system32\mswsock.dll
MOD - [2006/11/10 09:46:36 | 000,197,680 | ---- | M] () -- C:\WINDOWS\system32\vpnapi.dll
MOD - [2006/05/13 22:23:40 | 000,138,752 | ---- | M] () -- C:\Program Files\7-Zip\7-zip.dll
MOD - [2003/04/18 17:06:26 | 000,008,192 | ---- | M] () -- C:\WINDOWS\system32\srvany.exe
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [On_Demand | Stopped] --  -- (BESClient)
SRV - [2011/09/29 06:26:41 | 001,045,256 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2011/07/12 11:14:40 | 000,988,520 | ---- | M] (Fiberlink Communications Corp.) [Unknown | Running] -- C:\Program Files\MaaS360\MaaS360 Mobile Service\ServiceMgr.exe -- (ServiceMgr)
SRV - [2011/07/12 11:14:16 | 000,124,264 | ---- | M] (Fiberlink Communications Corp.) [Unknown | Running] -- C:\Program Files\MaaS360\MaaS360 Mobile Service\FLUtilsSvc.exe -- (FLUtilsSvc)
SRV - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2011/03/22 22:04:06 | 000,266,322 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Program Files\IDT\WDM\stacsv.exe -- (STacSV)
SRV - [2011/02/17 21:34:26 | 000,378,216 | ---- | M] (Fiberlink Communications Corp.) [Unknown | Running] -- C:\Program Files\MaaS360\MaaS360 Visibility Service\EMSAgent.exe -- (EMSAgent)
SRV - [2010/09/27 16:42:18 | 004,180,576 | ---- | M] (SafeNet Inc.) [Auto | Running] -- C:\WINDOWS\System32\hasplms.exe -- (hasplms)
SRV - [2010/04/07 12:49:00 | 002,093,322 | ---- | M] (Internet Security Systems, Inc.) [Auto | Running] -- C:\Program Files\ISS\Proventia Desktop\blackd.exe -- (BlackICE)
SRV - [2010/04/07 12:49:00 | 001,274,122 | ---- | M] (Internet Security Systems, Inc.) [Auto | Running] -- C:\Program Files\ISS\Proventia Desktop\RapApp.exe -- (RapApp)
SRV - [2010/04/07 12:49:00 | 000,405,770 | ---- | M] (Internet Security Systems, Inc.) [Auto | Running] -- C:\Program Files\ISS\Proventia Desktop\vpatch.exe -- (VPatch)
SRV - [2010/02/10 16:50:50 | 000,072,296 | ---- | M] (O2Micro International) [Auto | Running] -- C:\WINDOWS\system32\drivers\o2flash.exe -- (O2FLASH)
SRV - [2008/11/09 14:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
SRV - [2007/10/31 14:21:06 | 001,246,536 | ---- | M] (Famatech International Corp.) [Auto | Running] -- C:\WINDOWS\System32\rserver30\RServer3.exe -- (RServer3)
SRV - [2007/10/07 19:48:36 | 000,116,664 | ---- | M] (symantec) [Auto | Stopped] -- C:\Program Files\Symantec AntiVirus\SavRoam.exe -- (SavRoam)
SRV - [2007/10/07 19:48:32 | 001,822,648 | ---- | M] (Symantec Corporation) [Auto | Stopped] -- C:\Program Files\Symantec AntiVirus\Rtvscan.exe -- (Symantec AntiVirus)
SRV - [2007/10/07 19:48:24 | 000,031,160 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec AntiVirus\DefWatch.exe -- (DefWatch)
SRV - [2007/08/28 18:04:25 | 002,999,664 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_2.EXE -- (LiveUpdate)
SRV - [2007/08/27 16:14:00 | 000,214,408 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe -- (SNDSrvc)
SRV - [2007/07/26 18:25:20 | 001,181,016 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe -- (SPBBCSvc)
SRV - [2007/05/29 15:33:36 | 000,169,576 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe -- (ccSetMgr)
SRV - [2007/05/29 15:33:26 | 000,192,104 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe -- (ccEvtMgr)
SRV - [2006/11/10 09:46:26 | 001,504,304 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe -- (CVPND)
SRV - [2004/01/09 03:56:44 | 000,057,393 | ---- | M] (IBM Corp) [Auto | Running] -- C:\lotus\notes\ntmulti.exe -- (Multi-user Cleanup Service)
SRV - [2003/04/18 17:06:26 | 000,008,192 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\srvany.exe -- (O2SDIOAssist)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2012/01/09 12:00:31 | 000,029,904 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5CF3639F-D64A-4158-B59C-1D21F9460FB6}\MpKsl75e50db1.sys -- (MpKsl75e50db1)
DRV - [2012/01/09 11:15:39 | 000,029,904 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5CF3639F-D64A-4158-B59C-1D21F9460FB6}\MpKsle34d73b4.sys -- (MpKsle34d73b4)
DRV - [2012/01/09 08:05:09 | 000,029,904 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5CF3639F-D64A-4158-B59C-1D21F9460FB6}\MpKsl3a94b5d3.sys -- (MpKsl3a94b5d3)
DRV - [2011/12/09 13:58:14 | 000,374,392 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2011/12/09 13:58:14 | 000,106,104 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2011/08/17 07:49:54 | 000,138,496 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\afd.sys -- (AFD)
DRV - [2011/07/29 08:45:46 | 001,576,312 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20111220.002\NAVEX15.SYS -- (NAVEX15)
DRV - [2011/07/29 08:45:43 | 000,086,136 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20111220.002\NAVENG.SYS -- (NAVENG)
DRV - [2011/07/12 10:08:36 | 000,032,408 | ---- | M] (Smith Micro Inc.) [Kernel | On_Demand | Stopped] -- C:\Program Files\MaaS360\MaaS360 Mobile Service\FIBWLANAPI5.sys -- (FIBWLANAPI5)
DRV - [2011/07/12 10:07:32 | 000,027,072 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PCASp50.sys -- (PCASp50)
DRV - [2011/03/23 12:51:56 | 000,063,976 | ---- | M] (O2Micro ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\o2sdjxp.sys -- (O2SDJRDR)
DRV - [2011/03/22 22:04:16 | 003,360,256 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2011/03/22 22:04:14 | 000,174,248 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\e1c5132.sys -- (e1cexpress) Intel(R)
DRV - [2011/03/22 22:04:12 | 000,053,800 | ---- | M] (Ericsson AB) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\d554scard.sys -- (d554scard)
DRV - [2011/03/22 22:04:12 | 000,028,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\usbccid.sys -- (USBCCID)
DRV - [2011/03/22 22:04:06 | 001,660,451 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2011/03/22 22:04:04 | 000,113,664 | ---- | M] (Andrea Electronics Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AESTAud.sys -- (AESTAud)
DRV - [2011/02/07 09:53:06 | 000,118,248 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvhda32.sys -- (NVHDA)
DRV - [2011/01/04 01:58:42 | 000,061,728 | ---- | M] (O2Micro ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\o2mdrxp.sys -- (O2MDRRDR)
DRV - [2010/11/19 09:34:14 | 000,141,568 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV - [2010/11/19 09:34:12 | 000,062,208 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nusb3hub.sys -- (nusb3hub)
DRV - [2010/09/27 16:42:24 | 000,356,864 | ---- | M] (SafeNet Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\aksfridge.sys -- (aksfridge)
DRV - [2010/09/27 16:42:16 | 000,238,208 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\akshasp.sys -- (akshasp)
DRV - [2010/09/27 16:42:14 | 000,588,800 | ---- | M] (SafeNet Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hardlock.sys -- (hardlock)
DRV - [2010/09/27 16:42:14 | 000,016,384 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\aksusb.sys -- (aksusb)
DRV - [2010/09/27 16:42:12 | 000,046,336 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\akshhl.sys -- (akshhl)
DRV - [2010/04/07 12:49:00 | 000,050,163 | ---- | M] (Internet Security Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RapDrv.sys -- (rap)
DRV - [2010/04/07 12:48:58 | 000,205,938 | ---- | M] (Internet Security Systems, Inc.) [Kernel | Disabled | Running] -- C:\WINDOWS\system32\drivers\Blackcat.sys -- (black)
DRV - [2010/04/07 12:48:58 | 000,080,512 | ---- | M] (Internet Security Systems Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\isskboep.sys -- (MakoNT)
DRV - [2008/08/26 11:05:30 | 000,110,952 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2007/11/21 06:28:36 | 000,105,984 | ---- | M] (LSI Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\symmpi.sys -- (Symmpi)
DRV - [2007/10/31 14:30:50 | 000,045,976 | ---- | M] (Famatech International Corp.) [Kernel | System | Running] -- C:\WINDOWS\system32\rserver30\raddrvv3.sys -- (raddrvv3)
DRV - [2007/08/27 16:13:36 | 000,189,320 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\SYMTDI.SYS -- (SYMTDI)
DRV - [2007/07/26 18:25:18 | 000,400,216 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)
DRV - [2007/01/10 09:33:17 | 000,003,840 | ---- | M] (ATI Technologies Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\atiide.sys -- (atiide)
DRV - [2006/11/10 09:44:52 | 000,305,788 | ---- | M] (Cisco Systems, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\CVPNDRVA.sys -- (CVPNDRVA)
DRV - [2006/11/01 04:01:56 | 000,003,328 | ---- | M] (Famatech International Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rminiv3.sys -- (mirrorv3)
DRV - [2006/10/02 16:45:40 | 000,126,864 | ---- | M] (Deterministic Networks, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dne2000.sys -- (DNE)
DRV - [2006/09/06 13:41:20 | 000,337,592 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Symantec AntiVirus\savrt.sys -- (SAVRT)
DRV - [2006/09/06 13:41:20 | 000,054,968 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Symantec AntiVirus\Savrtpel.sys -- (SAVRTPEL)
DRV - [2005/05/17 03:51:34 | 000,005,315 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CVirtA.sys -- (CVirtA)
DRV - [2005/01/26 06:22:20 | 000,280,344 | ---- | M] (Zone Labs LLC) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\vsdatant.sys -- (vsdatant)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://phcweb/intranet/home.asp
IE - HKCU\..\URLSearchHook: {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - No CLSID value found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
 
 
 
Hosts file not found
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [AESTFltr] C:\WINDOWS\System32\AESTFltr.exe (Andrea Electronics Corporation)
O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [Heleni Uploader] C:\Program Files\Hewlett-Packard\HP ePrintAndShare\ProxyUploader\HPePrintNShareProxyUI.exe File not found
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NVHotkey] C:\WINDOWS\System32\nvhotkey.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe ()
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM..\Run: [vptray] C:\Program Files\Symantec AntiVirus\VPTray.exe (Symantec Corporation)
O4 - HKCU..\Run: [Messenger (Yahoo!)] C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\VPN Client.lnk = C:\WINDOWS\Installer\{176130BC-99A1-41FE-A78B-56045E33AD70}\Icon3E5562ED7.ico ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunStartupScriptSync = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\npjpi160_27.dll (Sun Microsystems, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - mswsock.dll File not found
O15 - HKCU\..Trusted Domains: /// ([]e360zip in My Computer)
O16 - DPF: {570DC905-36A7-11D2-86B9-00A02487E988} http://phcweb/intranet/PHCFileSaver.CAB (PHCFileSaver.FileSave)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1310649099468 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.1.6.10 10.120.3.41
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = PatriotCoal.com
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{41905ED5-BBED-4E3E-8480-8BAE39C0945D}: DhcpNameServer = 10.1.6.10 10.120.3.41
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\NavLogon: DllName - (C:\WINDOWS\system32\NavLogon.dll) - C:\WINDOWS\system32\NavLogon.dll (Symantec Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\i65659\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\i65659\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/09/28 13:44:11 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ]
O32 - AutoRun File - [2008/08/26 09:38:22 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{2a01a3c3-19e5-11e1-9d6e-3859f98db9d6}\Shell - "" = AutoRun
O33 - MountPoints2\{2a01a3c3-19e5-11e1-9d6e-3859f98db9d6}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{2a01a3c3-19e5-11e1-9d6e-3859f98db9d6}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKCU\...exe [@ = exefile] -- Reg Error: Key error. File not found
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012/01/09 11:00:06 | 000,000,000 | ---D | C] -- C:\_OTL
[2012/01/04 08:51:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\PCHealth
[2012/01/03 09:47:41 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\i65659\Desktop\OTL.exe
[2011/12/26 19:57:05 | 000,000,000 | ---D | C] -- C:\fe723fdf0a51333bc6dbfff43bfebb
[2011/12/26 18:16:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\i65659\Application Data\Malwarebytes
[2011/12/26 18:16:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/12/26 18:16:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2011/12/26 18:16:16 | 000,022,216 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011/12/26 18:16:15 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/12/26 18:14:32 | 001,190,816 | ---- | C] (PC Drivers HeadQuarters                                      ) -- C:\Documents and Settings\i65659\Desktop\DriverDetective.exe
[2011/12/25 22:57:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Sun
[2011/12/25 16:54:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Macromedia
[2011/12/25 16:54:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Adobe
[2011/12/25 00:45:06 | 009,852,544 | ---- | C] (Malwarebytes Corporation                                    ) -- C:\Documents and Settings\i65659\Desktop\mbam-setup-1.51.2.1300.exe
[2011/12/24 22:50:15 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2011/12/21 13:31:27 | 000,110,592 | R--- | C] (Hewlett Packard) -- C:\WINDOWS\System32\hptcpmon.dll
[2011/12/21 13:31:27 | 000,098,304 | R--- | C] (Hewlett Packard Company) -- C:\WINDOWS\System32\hpzjsn01.dll
[2011/12/21 13:31:27 | 000,073,728 | R--- | C] (Hewlett Packard) -- C:\WINDOWS\System32\hptcpmib.dll
[2011/12/21 13:31:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\i65659\Start Menu\Programs\HP Designjet 4000 series
[2011/12/21 13:31:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\i65659\Start Menu\Programs\Hewlett-Packard
[2011/12/21 13:26:00 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2011/12/21 10:53:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\i65659\Application Data\HP
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012/01/09 13:04:27 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012/01/09 12:43:57 | 000,142,437 | ---- | M] () -- C:\WINDOWS\System32\nvModes.001
[2012/01/09 12:43:57 | 000,002,447 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\VPN Client.lnk
[2012/01/09 12:43:54 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012/01/09 12:05:33 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2012/01/09 12:00:17 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012/01/04 10:55:24 | 000,000,459 | ---- | M] () -- C:\Documents and Settings\i65659\Desktop\Shortcut to Engineering on spefp1.lnk
[2012/01/03 10:19:45 | 000,002,515 | ---- | M] () -- C:\Documents and Settings\i65659\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Word 2003.lnk
[2012/01/03 09:47:55 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\i65659\Desktop\OTL.exe
[2012/01/02 10:08:20 | 000,009,216 | ---- | M] () -- C:\Documents and Settings\i65659\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/01/02 09:56:27 | 000,000,806 | ---- | M] () -- C:\Documents and Settings\i65659\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2011/12/26 19:44:03 | 000,001,945 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2011/12/26 18:16:20 | 000,000,790 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/12/26 18:14:40 | 001,190,816 | ---- | M] (PC Drivers HeadQuarters                                      ) -- C:\Documents and Settings\i65659\Desktop\DriverDetective.exe
[2011/12/25 00:45:43 | 009,852,544 | ---- | M] (Malwarebytes Corporation                                    ) -- C:\Documents and Settings\i65659\Desktop\mbam-setup-1.51.2.1300.exe
[2011/12/24 15:15:20 | 000,142,437 | ---- | M] () -- C:\WINDOWS\System32\nvModes.dat
[2011/12/22 21:55:31 | 000,255,132 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011/12/22 21:55:31 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011/12/21 15:25:10 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wininet_dll.iss
[2011/12/21 15:25:09 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\urlmon_dll.iss
[2011/12/21 15:25:09 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\url_dll.iss
[2011/12/21 15:25:09 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ole32_dll.iss
[2011/12/21 15:22:43 | 000,346,608 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/12/21 13:31:28 | 000,000,131 | ---- | M] () -- C:\WINDOWS\System32\AddPort.ini
[2011/12/21 13:31:15 | 000,000,998 | ---- | M] () -- C:\Documents and Settings\i65659\Desktop\HP Printer Access Tool.lnk
[2011/12/21 13:22:32 | 000,000,232 | ---- | M] () -- C:\WINDOWS\hpdj4000.his
[2011/12/21 13:22:32 | 000,000,056 | ---- | M] () -- C:\WINDOWS\hpdj4000.ini
[2011/12/21 11:03:23 | 000,436,312 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/12/21 11:03:23 | 000,069,042 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/12/21 10:46:08 | 000,000,798 | ---- | M] () -- C:\Documents and Settings\i65659\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Microsoft Office Outlook.lnk
[2011/12/21 10:15:26 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011/12/15 08:12:06 | 000,010,734 | RHS- | M] () -- C:\Documents and Settings\All Users\ntuser.pol
[2011/12/11 21:17:42 | 000,255,132 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012/01/09 11:18:20 | 000,481,620 | ---- | C] () -- C:\backup.exe
[2012/01/02 09:56:27 | 000,000,806 | ---- | C] () -- C:\Documents and Settings\i65659\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2011/12/26 19:48:31 | 000,000,424 | -H-- | C] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2011/12/26 19:43:17 | 000,001,686 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Security Essentials.lnk
[2011/12/26 18:16:20 | 000,000,790 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/12/24 22:51:12 | 000,001,945 | ---- | C] () -- C:\WINDOWS\epplauncher.mif
[2011/12/21 13:31:28 | 000,003,399 | R--- | C] () -- C:\WINDOWS\System32\hptcpmon.ini
[2011/12/21 13:31:28 | 000,000,131 | ---- | C] () -- C:\WINDOWS\System32\AddPort.ini
[2011/12/21 13:31:15 | 000,000,998 | ---- | C] () -- C:\Documents and Settings\i65659\Desktop\HP Printer Access Tool.lnk
[2011/12/21 10:54:26 | 000,000,232 | ---- | C] () -- C:\WINDOWS\hpdj4000.his
[2011/12/21 10:54:26 | 000,000,056 | ---- | C] () -- C:\WINDOWS\hpdj4000.ini
[2011/10/29 11:32:55 | 000,009,216 | ---- | C] () -- C:\Documents and Settings\i65659\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/10/03 11:12:10 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011/09/29 07:21:37 | 000,601,648 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2011/09/29 07:07:03 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\sqlite3_mod_fts3.dll
[2011/09/29 07:07:03 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\sqlite3_mod_rtree.dll
[2011/09/29 07:07:03 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\sqlite3_mod_extfunc.dll
[2011/09/29 07:07:03 | 000,021,504 | ---- | C] () -- C:\WINDOWS\System32\sqlite3_mod_impexp.dll
[2011/07/14 06:37:39 | 000,032,256 | ---- | C] () -- C:\WINDOWS\System32\instsrv.exe
[2011/07/14 06:37:39 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\srvany.exe
[2011/07/13 11:59:11 | 000,142,437 | ---- | C] () -- C:\WINDOWS\System32\nvModes.dat
[2011/07/13 07:32:31 | 000,255,132 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011/07/13 07:32:31 | 000,255,132 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2011/07/13 07:32:31 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011/07/13 04:36:37 | 000,006,550 | ---- | C] () -- C:\WINDOWS\jautoexp.dat
[2011/03/22 22:04:22 | 002,285,234 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2008/09/03 11:09:01 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2008/08/26 11:46:24 | 000,000,000 | ---- | C] () -- C:\WINDOWS\vpc32.INI
[2008/08/26 11:25:46 | 000,000,281 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2008/08/26 11:24:49 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2008/08/26 11:24:42 | 000,436,312 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2008/08/26 11:24:42 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2008/08/26 11:24:42 | 000,069,042 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2008/08/26 11:24:42 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2008/08/26 11:24:42 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2008/08/26 11:24:40 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2008/08/26 11:24:38 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2008/08/26 11:24:30 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2008/08/26 11:24:29 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2008/08/26 11:24:18 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2008/08/26 11:24:01 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2008/08/26 11:23:51 | 000,138,496 | ---- | C] () -- C:\WINDOWS\System32\drivers\afd.sys
[2008/08/26 10:53:49 | 000,001,000 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008/08/26 09:41:40 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2008/08/26 09:35:30 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2008/08/26 04:31:58 | 000,004,675 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2008/08/26 04:31:02 | 000,346,608 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2006/11/10 09:46:36 | 000,197,680 | ---- | C] () -- C:\WINDOWS\System32\vpnapi.dll
[2006/11/10 09:46:24 | 000,193,584 | ---- | C] () -- C:\WINDOWS\System32\CSGina.dll
[2003/01/07 14:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2011/09/29 07:18:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Autodesk
[2011/09/28 13:01:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BigFix
[2011/09/29 07:03:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Carlson Software
[2011/10/10 07:20:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations
[2011/09/28 13:02:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MaaS360
[2011/09/28 13:17:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\RSA
[2011/09/29 07:07:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SafeNet Sentinel
[2011/09/28 13:02:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WEngineLite
[2008/08/26 10:50:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WinZip
[2011/09/29 07:16:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\i65659\Application Data\Autodesk
[2011/09/29 07:08:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\i65659\Application Data\Carlson Software
[2011/11/17 15:41:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\i65659\Application Data\ICAClient
[2011/10/05 09:43:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\i65659\Application Data\Xerox
[2012/01/09 12:05:33 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
 
[color=#E56717]========== Purity Check ==========[/color]
 
 

< End of report >