Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Dr. Watson Error report *EDITED* with new problem [RESOLVED]

Started by soitscometothis , Aug 16 2008 12:22 AM

  • This topic is locked This topic is locked

#1
soitscometothis
Posted 16 August 2008 - 12:22 AM

soitscometothis

    New Member

  • Member
  • Pip
  • 9 posts
I just rebuilt my computer after the other one had an unfortunate ending. earlier tonight i was switching between users and upon my return to the administrator account i got a warning about Dr. Watson postmortem Debugged. It was asking me to send and error report and then proceeded to freeze up. I wasnt fully updated when this happened, or while i was reinstalling some stuff to my computer, but i didnt realize it until not too long ago. SP3 was interfering with the update so i just got that fixed. everything is up to date and i have run every anti-virus, anti-malware and anti-spyware under the sun. nada. I would really like to figure out what happened so i can get back to having a nice computer that loves and and would never die on me!

ADDED PART: i had to install my printer software after i posted this log because i forgot to do so when i was setting up my new computer. the install didnt work so well and everytime i tried to do anything i was getting warnings for from spybot about ctfmon.exe. i know this is normally an okay problem but i wasn't installing or uninstalling anything. the printer ended up not working and i uninstalled all of its components but i think there are still traces of it on my computer.

Original Hijack this log from unedited post:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:12:00 AM, on 8/16/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll,wbsys.dll
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe

--
End of file - 3832 bytes


Hijack this log from after install and uninstall of hp printer components:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:22:05 PM, on 8/18/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll,wbsys.dll
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe

--
End of file - 3963 bytes

Edited by soitscometothis, 18 August 2008 - 11:28 AM.

  • 0

Advertisements

#2
emeraldnzl
Posted 23 August 2008 - 12:59 AM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Hello soitscometothis,

Apologies for the delay. I am having a look at your log and will get back to you in a bit.

regards
emeraldnzl
  • 0

#3
emeraldnzl
Posted 23 August 2008 - 01:33 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Hello again soitscometothis,

Welcome to Geekstogo.

Nothing here that I can see at first glance.

Download OTViewIt to your desktop.
  • Close all windows and open it
  • Click Run Scan and let the program run uninterrupted
  • It will produce two logs for you, one will pop up called OTViewIt.txt, the other will be saved on your desktop and called Extras. Post both those logs here.
  • You may need more than one post to get it all on the forum; that's fine.

  • 0

#4
soitscometothis
Posted 25 August 2008 - 06:30 PM

soitscometothis

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts
OTViewIt logfile created on: 8/25/2008 7:29:18 PM - Run 1
OTViewIt by OldTimer - Version 1.0.0.12 Folder = C:\Documents and Settings\Kori\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.99 Gb Total Physical Memory | 1.57 Gb Available Physical Memory | 79.04% Memory free
3.84 Gb Paging File | 3.54 Gb Available in Paging File | 92.15% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 298.08 Gb Total Space | 246.81 Gb Free Space | 82.80% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: KRAK-HO-[bleep]
Current User Name: Kori
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user

===== Processes - Non-Microsoft Only =====

[08/15/2008 04:14 AM | 00,231,192 | ---- | M] (AVG Technologies CZ, s.r.o.) - C:\Program Files\AVG\AVG8\avgwdsvc.exe
[08/22/2008 01:23 PM | 00,145,504 | ---- | M] (B.H.A Corporation) - C:\WINDOWS\system32\bgsvcgen.exe
[08/15/2008 04:14 AM | 00,287,000 | ---- | M] (AVG Technologies CZ, s.r.o.) - C:\Program Files\AVG\AVG8\avgrsx.exe
[08/15/2008 04:14 AM | 00,873,752 | ---- | M] (AVG Technologies CZ, s.r.o.) - C:\Program Files\AVG\AVG8\avgemc.exe
[08/15/2008 04:14 AM | 01,232,152 | ---- | M] (AVG Technologies CZ, s.r.o.) - C:\Program Files\AVG\AVG8\avgtray.exe
[11/08/2007 02:56 AM | 00,141,848 | R--- | M] (Intel Corporation) - C:\WINDOWS\system32\igfxtray.exe
[11/08/2007 02:56 AM | 00,166,424 | R--- | M] (Intel Corporation) - C:\WINDOWS\system32\hkcmd.exe
[10/24/2007 10:57 PM | 16,855,552 | R--- | M] (Realtek Semiconductor Corp.) - C:\WINDOWS\RTHDCPL.exe
[06/10/2008 04:27 AM | 00,144,784 | ---- | M] (Sun Microsystems, Inc.) - C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
[07/07/2008 09:42 AM | 02,156,368 | RHS- | M] (Safer Networking Limited) - C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
[08/25/2008 07:28 PM | 01,299,968 | ---- | M] (OldTimer Tools) - C:\Documents and Settings\Kori\Desktop\OTViewIt.exe

===== Win32 Services - Non-Microsoft Only =====

(avg8emc) AVG Free8 E-mail Scanner [Auto | Running]
[08/15/2008 04:14 AM | 00,873,752 | ---- | M] (AVG Technologies CZ, s.r.o.) - C:\Program Files\AVG\AVG8\avgemc.exe

(avg8wd) AVG Free8 WatchDog [Auto | Running]
[08/15/2008 04:14 AM | 00,231,192 | ---- | M] (AVG Technologies CZ, s.r.o.) - C:\Program Files\AVG\AVG8\avgwdsvc.exe

(bgsvcgen) B's Recorder GOLD Library General Service [Auto | Running]
[08/22/2008 01:23 PM | 00,145,504 | ---- | M] (B.H.A Corporation) - C:\WINDOWS\system32\bgsvcgen.exe

(dmadmin) Logical Disk Manager Administrative Service [On_Demand | Stopped]
[04/13/2008 07:12 PM | 00,224,768 | ---- | M] (Microsoft Corp., Veritas Software) - C:\WINDOWS\system32\dmadmin.exe

===== Driver Services - Non-Microsoft Only =====

(AvgLdx86) AVG Free AVI Loader Driver x86 [System | Running]
[08/15/2008 04:14 AM | 00,096,520 | ---- | M] (AVG Technologies CZ, s.r.o.) - C:\WINDOWS\system32\drivers\avgldx86.sys

(AvgMfx86) AVG Free On-access Scanner Minifilter Driver x86 [System | Running]
[08/15/2008 04:14 AM | 00,026,824 | ---- | M] (AVG Technologies CZ, s.r.o.) - C:\WINDOWS\system32\drivers\avgmfx86.sys

(AvgTdiX) AVG Free8 Network Redirector [Auto | Running]
[08/15/2008 04:14 AM | 00,076,040 | ---- | M] (AVG Technologies CZ, s.r.o.) - C:\WINDOWS\system32\drivers\avgtdix.sys

(BCM43XX) Belkin 802.11 Network Adapter Driver [On_Demand | Running]
[01/20/2006 04:16 AM | 00,425,216 | R--- | M] (Broadcom Corporation) - C:\WINDOWS\system32\drivers\BCMWL5.SYS

(cdrbsdrv) cdrbsdrv [System | Running]
[08/22/2008 01:23 PM | 00,033,408 | ---- | M] (B.H.A Corporation) - C:\WINDOWS\System32\drivers\CDRBSDRV.SYS

(dmboot) dmboot [Disabled | Stopped]
[04/13/2008 01:44 PM | 00,799,744 | ---- | M] (Microsoft Corp., Veritas Software) - C:\WINDOWS\system32\drivers\dmboot.sys

(dmio) dmio [Disabled | Stopped]
[04/13/2008 01:44 PM | 00,153,344 | ---- | M] (Microsoft Corp., Veritas Software) - C:\WINDOWS\system32\drivers\dmio.sys

(dmload) dmload [Disabled | Stopped]
[08/04/2004 07:00 AM | 00,005,888 | ---- | M] (Microsoft Corp., Veritas Software.) - C:\WINDOWS\system32\drivers\dmload.sys

(dvd43llh) dvd43llh [On_Demand | Running]
[08/15/2008 06:41 PM | 00,018,816 | ---- | M] (RIF) - C:\WINDOWS\system32\drivers\dvd43llh.sys

(HDAudBus) Microsoft UAA Bus Driver for High Definition Audio [On_Demand | Running]
[04/13/2008 11:36 AM | 00,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) - C:\WINDOWS\system32\drivers\hdaudbus.sys

(HPZid412) IEEE-1284.4 Driver HPZid412 [On_Demand | Stopped]
[03/08/2007 02:20 PM | 00,049,920 | ---- | M] (HP) - C:\WINDOWS\system32\drivers\HPZid412.sys

(HPZipr12) Print Class Driver for IEEE-1284.4 HPZipr12 [On_Demand | Stopped]
[03/08/2007 02:20 PM | 00,016,496 | ---- | M] (HP) - C:\WINDOWS\system32\drivers\HPZipr12.sys

(HPZius12) USB to IEEE-1284.4 Translation Driver HPZius12 [On_Demand | Stopped]
[03/08/2007 02:20 PM | 00,021,568 | ---- | M] (HP) - C:\WINDOWS\system32\drivers\HPZius12.sys

(ialm) ialm [On_Demand | Running]
[10/29/2007 07:00 PM | 05,851,488 | R--- | M] (Intel Corporation) - C:\WINDOWS\system32\drivers\igxpmp32.sys

(IntcAzAudAddService) Service for Realtek HD Audio (WDM) [On_Demand | Running]
[11/01/2007 01:38 AM | 04,620,288 | R--- | M] (Realtek Semiconductor Corp.) - C:\WINDOWS\system32\drivers\RtkHDAud.sys

(MTsensor) ATK0110 ACPI UTILITY [On_Demand | Running]
[08/12/2004 09:56 PM | 00,005,810 | R--- | M] () - C:\WINDOWS\system32\drivers\ASACPI.sys

(pcouffin) VSO Software pcouffin [On_Demand | Running]
[08/15/2008 06:38 PM | 00,047,360 | ---- | M] (VSO Software) - C:\WINDOWS\system32\drivers\pcouffin.sys

(Ptilink) Direct Parallel Link Driver [On_Demand | Running]
[08/04/2004 07:00 AM | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) - C:\WINDOWS\system32\drivers\ptilink.sys

(PxHelp20) PxHelp20 [Boot | Running]
[07/23/2008 11:50 AM | 00,043,528 | ---- | M] (Sonic Solutions) - C:\WINDOWS\system32\drivers\PxHelp20.sys

(Secdrv) Secdrv [On_Demand | Stopped]
[04/13/2008 11:39 AM | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) - C:\WINDOWS\system32\drivers\secdrv.sys

===== Run Keys =====

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVG8_TRAY" = C:\PROGRA~1\AVG\AVG8\avgtray.exe [08/15/2008 04:14 AM | 01,232,152 | ---- | M] (AVG Technologies CZ, s.r.o.)
"HotKeysCmds" = C:\WINDOWS\system32\hkcmd.exe [11/08/2007 02:56 AM | 00,166,424 | R--- | M] (Intel Corporation)
"IgfxTray" = C:\WINDOWS\system32\igfxtray.exe [11/08/2007 02:56 AM | 00,141,848 | R--- | M] (Intel Corporation)
"RTHDCPL" = RTHDCPL.EXE [10/24/2007 10:57 PM | 16,855,552 | R--- | M] (Realtek Semiconductor Corp.)
"SkyTel" = SkyTel.EXE [10/10/2007 10:04 PM | 01,826,816 | R--- | M] (Realtek Semiconductor Corp.)
"SunJavaUpdateSched" = "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" [06/10/2008 04:27 AM | 00,144,784 | ---- | M] (Sun Microsystems, Inc.)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"load" = Reg Error: Value load does not exist or could not be read.
"run" = Reg Error: Value run does not exist or could not be read.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpybotSD TeaTimer" = C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [07/07/2008 09:42 AM | 02,156,368 | RHS- | M] (Safer Networking Limited)

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"load" =
"run" = Reg Error: Value run does not exist or could not be read.

===== Startup Folders =====

[All Users Startup Folder - C:\Documents and Settings\All Users\Start Menu\Programs\Startup]

[Kori Startup Folder - C:\Documents and Settings\Kori\Start Menu\Programs\Startup]

===== BHO's =====

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
HKLM CLSID: (AVG Safe Search) - [08/15/2008 04:14 AM | 00,455,960 | ---- | M] (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG8\avgssie.dll

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
HKLM CLSID: (Spybot-S&D IE Protection) - [07/07/2008 09:41 AM | 01,562,448 | ---- | M] (Safer Networking Limited) C:\Program Files\Spybot - Search & Destroy\SDHelper.dll

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
HKLM CLSID: (SSVHelper Class) - [06/10/2008 04:27 AM | 00,509,328 | ---- | M] (Sun Microsystems, Inc.) C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}]
HKLM CLSID: (AVG Security Toolbar) - [08/15/2008 04:14 AM | 02,055,960 | ---- | M] (AVG, Technologies CZ, s.r.o ) C:\Program Files\AVG\AVG8\avgtoolbar.dll

===== Toolbars =====

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar]
"{A057A204-BACC-4D26-9990-79A187E2698E}"
HKLM CLSID: (AVG Security Toolbar) - [08/15/2008 04:14 AM | 02,055,960 | ---- | M] (AVG, Technologies CZ, s.r.o ) C:\Program Files\AVG\AVG8\avgtoolbar.dll

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]

"{A057A204-BACC-4D26-9990-79A187E2698E}"
HKLM CLSID: (AVG Security Toolbar) - [08/15/2008 04:14 AM | 02,055,960 | ---- | M] (AVG, Technologies CZ, s.r.o ) C:\Program Files\AVG\AVG8\avgtoolbar.dll

===== Policies =====

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]
Unable to open key or key not present!


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]
"dontdisplaylastusername" = 0
"legalnoticecaption" =
"legalnoticetext" =
"shutdownwithoutlogon" = 1
"undockwithoutlogon" = 1

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]
"NoDriveTypeAutoRun" = 145

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]
Unable to open key or key not present!


===== Desktop Components =====

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"FriendlyName" = "My Current Home Page"
"Source" = "About:Home"
"SubscribedURL" = "About:Home"

===== Shared Task Scheduler =====

===== AppInit_Dlls =====

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls]
"avgrsstx.dll" - [08/15/2008 04:14 AM | 00,010,520 | ---- | M] (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgrsstx.dll
"wbsys.dll" - [04/26/2008 04:14 PM | 00,042,672 | ---- | M] (Stardock.Net, Inc) C:\WINDOWS\system32\wbsys.dll

===== Lsa Authentication Packages =====

===== Lsa Security Packages =====

===== Authorized Applications List =====

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = C:\WINDOWS\system32\sessmgr.exe [04/13/2008 07:12 PM | 00,141,312 | ---- | M] (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = C:\WINDOWS\network diagnostic\xpnetdiag.exe [04/13/2008 01:53 PM | 00,558,080 | ---- | M] (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = C:\WINDOWS\system32\sessmgr.exe [04/13/2008 07:12 PM | 00,141,312 | ---- | M] (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = C:\WINDOWS\network diagnostic\xpnetdiag.exe [04/13/2008 01:53 PM | 00,558,080 | ---- | M] (Microsoft Corporation)
"C:\Program Files\AVG\AVG8\avgemc.exe" = C:\Program Files\AVG\AVG8\avgemc.exe [08/15/2008 04:14 AM | 00,873,752 | ---- | M] (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG8\avgupd.exe" = C:\Program Files\AVG\AVG8\avgupd.exe [08/15/2008 04:14 AM | 00,640,280 | ---- | M] (AVG Technologies CZ, s.r.o.)
"C:\Program Files\Vuze\Azureus.exe" = C:\Program Files\Vuze\Azureus.exe [12/03/2007 08:28 PM | 00,254,976 | ---- | M] (Azureus Inc)
"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe [07/02/2008 08:52 PM | 00,307,712 | ---- | M] (Mozilla Corporation)

===== HKLM Winlogon Settings =====

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell]
"Explorer.exe" - [04/13/2008 07:12 PM | 01,033,728 | ---- | M] (Microsoft Corporation) C:\WINDOWS\explorer.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UserInit]
"C:\WINDOWS\system32\userinit.exe" - [04/13/2008 07:12 PM | 00,026,112 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\userinit.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UIHost]
"logonui.exe" - [04/13/2008 07:12 PM | 00,514,560 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\logonui.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet]
"rundll32 shell32" - [04/13/2008 07:12 PM | 08,461,312 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
"Control_RunDLL "sysdm.cpl"" - [04/13/2008 07:12 PM | 00,300,544 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\sysdm.cpl

===== User's Winlogon Settings =====

===== Winlogon Notify Settings =====

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
"DllName" = C:\WINDOWS\system32\igfxdev.dll [10/29/2007 06:39 PM | 00,208,896 | R--- | M] (Intel Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WBSrv]
"DllName" = C:\Program Files\Stardock\Object Desktop\WindowBlinds\WbSrv.dll [08/15/2008 09:04 PM | 00,229,376 | ---- | M] (Stardock Corporation)

===== Safeboot Options =====

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot]
"AlternateShell" = cmd.exe

===== Disabled MsConfig Items =====
Unable to open key or key not present!


===== DNS Name Servers =====

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\{D3AC14AF-87FB-4CD8-83B9-DB4AFCAE9A8C}]
Servers: | Description: Belkin 802.11g Network Adapter

===== CDRom AutoRun Settings =====

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom]
"AutoRun" = 1

===== Autorun Files on Drives =====

AUTOEXEC.BAT []
[08/15/2008 03:09 AM | 00,000,000 | ---- | M] () C:\AUTOEXEC.BAT [ NTFS ]

===== MountPoints2 =====

===== Hosts File =====

HOSTS File = (734 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
First 25 entries...
127.0.0.1 localhost



[Files/Folders - Created Within 30 days]
[08/15/2008 01:26 PM | ---D | C] - C:\Intel
[08/15/2008 03:05 AM | 00,000,211 | -HS- | C] () - C:\boot.ini
[08/15/2008 03:09 AM | 00,000,000 | ---- | C] () - C:\AUTOEXEC.BAT
[08/15/2008 03:09 AM | 00,000,000 | ---- | C] () - C:\CONFIG.SYS
[08/15/2008 03:09 AM | 00,000,000 | RHS- | C] () - C:\IO.SYS
[08/15/2008 03:09 AM | 00,000,000 | RHS- | C] () - C:\MSDOS.SYS
[08/15/2008 03:12 AM | -HSD | C] - C:\System Volume Information
[08/15/2008 03:31 AM | -HSD | C] - C:\RECYCLER
[08/15/2008 06:12 PM | ---D | C] - C:\temp_dvd
[08/15/2008 10:14 PM | ---D | C] - C:\Documents and Settings
[08/16/2008 12:25 AM | -H-D | C] - C:\$AVG8.VAULT$
[08/22/2008 01:23 PM | -H-D | C] - C:\Config.Msi
[08/22/2008 01:23 PM | R--D | C] - C:\Program Files
[08/22/2008 01:27 PM | ---D | C] - C:\WINDOWS
[08/22/2008 02:17 PM | ---D | C] - C:\WIZARD OF GORE
[08/22/2008 02:23 PM | ---D | C] - C:\ZOMBIES_ANONYMOUS
[08/22/2008 03:09 PM | ---D | C] - C:\SHORTBUS_TF_US
[08/22/2008 03:25 PM | ---D | C] - C:\QUID_PRO_QUO
[04/02/2007 12:51 PM | 00,023,195 | ---- | C] () - C:\WINDOWS\System32\dllcache\wmplay.chm
[04/13/2008 07:09 PM | 00,173,568 | ---- | C] () - C:\WINDOWS\System32\dllcache\chtskf.dll
[04/13/2008 07:09 PM | 00,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) - C:\WINDOWS\System32\dllcache\l3codeca.acm
[04/13/2008 07:09 PM | 13,463,552 | ---- | C] () - C:\WINDOWS\System32\dllcache\hwxjpn.dll
[04/13/2008 07:10 PM | 00,086,016 | ---- | C] (Sipro Lab Telecom Inc.) - C:\WINDOWS\System32\dllcache\sl_anet.acm
[04/13/2008 07:10 PM | 00,175,104 | ---- | C] () - C:\WINDOWS\System32\dllcache\pintlcsa.dll
[04/13/2008 12:23 PM | 00,029,070 | ---- | C] () - C:\WINDOWS\System32\dllcache\wmp.inf
[04/13/2008 12:28 PM | 00,066,725 | ---- | C] () - C:\WINDOWS\System32\dllcache\revert.wmz
[04/13/2008 12:28 PM | 00,184,959 | ---- | C] () - C:\WINDOWS\System32\dllcache\compact.wmz
[04/25/2006 10:10 AM | 00,069,612 | ---- | C] () - C:\WINDOWS\System32\dllcache\wmplayer.adm
[06/26/2007 12:56 AM | 00,000,733 | ---- | C] () - C:\WINDOWS\System32\dllcache\plylst15.wpl
[06/26/2007 12:56 AM | 00,000,775 | ---- | C] () - C:\WINDOWS\System32\dllcache\plylst14.wpl
[06/26/2007 12:56 AM | 00,000,783 | ---- | C] () - C:\WINDOWS\System32\dllcache\plylst13.wpl
[06/26/2007 12:56 AM | 00,000,784 | ---- | C] () - C:\WINDOWS\System32\dllcache\plylst9.wpl
[06/26/2007 12:56 AM | 00,000,787 | ---- | C] () - C:\WINDOWS\System32\dllcache\plylst10.wpl
[06/26/2007 12:56 AM | 00,000,789 | ---- | C] () - C:\WINDOWS\System32\dllcache\plylst11.wpl
[06/26/2007 12:56 AM | 00,001,036 | ---- | C] () - C:\WINDOWS\System32\dllcache\plylst8.wpl
[06/26/2007 12:56 AM | 00,001,046 | ---- | C] () - C:\WINDOWS\System32\dllcache\plylst7.wpl
[06/26/2007 12:56 AM | 00,001,049 | ---- | C] () - C:\WINDOWS\System32\dllcache\plylst2.wpl
[06/26/2007 12:56 AM | 00,001,250 | ---- | C] () - C:\WINDOWS\System32\dllcache\plylst1.wpl
[06/26/2007 12:56 AM | 00,001,448 | ---- | C] () - C:\WINDOWS\System32\dllcache\plylst4.wpl
[06/26/2007 12:56 AM | 00,001,451 | ---- | C] () - C:\WINDOWS\System32\dllcache\plylst12.wpl
[06/26/2007 12:56 AM | 00,001,474 | ---- | C] () - C:\WINDOWS\System32\dllcache\plylst3.wpl
[06/26/2007 12:56 AM | 00,001,477 | ---- | C] () - C:\WINDOWS\System32\dllcache\plylst5.wpl
[06/26/2007 12:56 AM | 00,001,477 | ---- | C] () - C:\WINDOWS\System32\dllcache\plylst6.wpl
[08/04/2004 07:00 AM | 00,000,403 | ---- | C] () - C:\WINDOWS\System32\dllcache\npdrmv2.zip
[08/04/2004 07:00 AM | 00,000,420 | ---- | C] () - C:\WINDOWS\System32\dllcache\wmploc.js
[08/04/2004 07:00 AM | 00,000,717 | ---- | C] () - C:\WINDOWS\System32\dllcache\cloapp.gif
[08/04/2004 07:00 AM | 00,000,760 | ---- | C] () - C:\WINDOWS\System32\dllcache\cloapph.gif
[08/04/2004 07:00 AM | 00,000,772 | ---- | C] () - C:\WINDOWS\System32\dllcache\cntd.gif
[08/04/2004 07:00 AM | 00,000,773 | ---- | C] () - C:\WINDOWS\System32\dllcache\cnt.gif
[08/04/2004 07:00 AM | 00,000,773 | ---- | C] () - C:\WINDOWS\System32\dllcache\cnth.gif
[08/04/2004 07:00 AM | 00,000,855 | ---- | C] () - C:\WINDOWS\System32\dllcache\wmpocm.inf
[08/04/2004 07:00 AM | 00,000,888 | ---- | C] () - C:\WINDOWS\System32\dllcache\sam.sdf
[08/04/2004 07:00 AM | 00,000,908 | ---- | C] () - C:\WINDOWS\System32\dllcache\skins.inf
[08/04/2004 07:00 AM | 00,000,984 | ---- | C] () - C:\WINDOWS\System32\dllcache\srframe.mmf
[08/04/2004 07:00 AM | 00,000,999 | ---- | C] () - C:\WINDOWS\System32\dllcache\bktrh.gif
[08/04/2004 07:00 AM | 00,001,148 | ---- | C] () - C:\WINDOWS\System32\dllcache\snd.htm
[08/04/2004 07:00 AM | 00,001,367 | ---- | C] () - C:\WINDOWS\System32\dllcache\taoffh.gif
[08/04/2004 07:00 AM | 00,001,380 | ---- | C] () - C:\WINDOWS\System32\dllcache\taoff.gif
[08/04/2004 07:00 AM | 00,001,380 | ---- | C] () - C:\WINDOWS\System32\dllcache\taonh.gif
[08/04/2004 07:00 AM | 00,001,398 | ---- | C] () - C:\WINDOWS\System32\dllcache\taon.gif
[08/04/2004 07:00 AM | 00,001,771 | ---- | C] () - C:\WINDOWS\System32\dllcache\wmptour.css
[08/04/2004 07:00 AM | 00,001,885 | ---- | C] () - C:\WINDOWS\System32\dllcache\mplayer2.cnt
[08/04/2004 07:00 AM | 00,002,371 | ---- | C] () - C:\WINDOWS\System32\dllcache\tpauseh.gif
[08/04/2004 07:00 AM | 00,002,375 | ---- | C] () - C:\WINDOWS\System32\dllcache\tplayh.gif
[08/04/2004 07:00 AM | 00,002,450 | ---- | C] () - C:\WINDOWS\System32\dllcache\tpause.gif
[08/04/2004 07:00 AM | 00,002,469 | ---- | C] () - C:\WINDOWS\System32\dllcache\tplay.gif
[08/04/2004 07:00 AM | 00,002,477 | ---- | C] () - C:\WINDOWS\System32\dllcache\wm5.gif
[08/04/2004 07:00 AM | 00,002,545 | ---- | C] () - C:\WINDOWS\System32\dllcache\mplogo.gif
[08/04/2004 07:00 AM | 00,002,778 | ---- | C] () - C:\WINDOWS\System32\dllcache\mplogoh.gif
[08/04/2004 07:00 AM | 00,003,187 | ---- | C] () - C:\WINDOWS\System32\dllcache\tour.js
[08/04/2004 07:00 AM | 00,004,193 | ---- | C] () - C:\WINDOWS\System32\dllcache\wm8.gif
[08/04/2004 07:00 AM | 00,005,290 | ---- | C] () - C:\WINDOWS\System32\dllcache\vidsamp.gif
[08/04/2004 07:00 AM | 00,005,789 | ---- | C] () - C:\WINDOWS\System32\dllcache\wm1.gif
[08/04/2004 07:00 AM | 00,005,971 | ---- | C] () - C:\WINDOWS\System32\dllcache\events.js
[08/04/2004 07:00 AM | 00,006,060 | ---- | C] () - C:\WINDOWS\System32\dllcache\wm6.gif
[08/04/2004 07:00 AM | 00,006,241 | ---- | C] () - C:\WINDOWS\System32\dllcache\wm3.gif
[08/04/2004 07:00 AM | 00,006,769 | ---- | C] () - C:\WINDOWS\System32\dllcache\wmfsdk.inf
[08/04/2004 07:00 AM | 00,006,878 | ---- | C] () - C:\WINDOWS\System32\dllcache\controls.js
[08/04/2004 07:00 AM | 00,007,334 | ---- | C] () - C:\WINDOWS\System32\dllcache\wmerrenu.cat
[08/04/2004 07:00 AM | 00,007,369 | ---- | C] () - C:\WINDOWS\System32\dllcache\wm4.gif
[08/04/2004 07:00 AM | 00,007,382 | ---- | C] () - C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[08/04/2004 07:00 AM | 00,007,636 | ---- | C] () - C:\WINDOWS\System32\dllcache\wm2.gif
[08/04/2004 07:00 AM | 00,007,892 | ---- | C] () - C:\WINDOWS\System32\dllcache\wm9.gif
[08/04/2004 07:00 AM | 00,008,298 | ---- | C] () - C:\WINDOWS\System32\dllcache\contents.htm
[08/04/2004 07:00 AM | 00,008,574 | ---- | C] () - C:\WINDOWS\System32\dllcache\IASNT4.CAT
[08/04/2004 07:00 AM | 00,008,677 | ---- | C] () - C:\WINDOWS\System32\dllcache\wm7.gif
[08/04/2004 07:00 AM | 00,009,585 | ---- | C] () - C:\WINDOWS\System32\dllcache\controls.css
[08/04/2004 07:00 AM | 00,010,457 | ---- | C] () - C:\WINDOWS\System32\dllcache\wmptour.hta
[08/04/2004 07:00 AM | 00,013,312 | ---- | C] (Hilgraeve, Inc.) - C:\WINDOWS\System32\dllcache\htrn_jis.dll
[08/04/2004 07:00 AM | 00,013,472 | ---- | C] () - C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[08/04/2004 07:00 AM | 00,017,272 | ---- | C] () - C:\WINDOWS\System32\dllcache\wmdm.inf
[08/04/2004 07:00 AM | 00,017,489 | ---- | C] () - C:\WINDOWS\System32\dllcache\videobg.gif
[08/04/2004 07:00 AM | 00,018,286 | ---- | C] () - C:\WINDOWS\System32\dllcache\mplayer2.inf
[08/04/2004 07:00 AM | 00,022,060 | ---- | C] () - C:\WINDOWS\System32\dllcache\npds.zip
[08/04/2004 07:00 AM | 00,023,829 | ---- | C] () - C:\WINDOWS\System32\dllcache\tourbg.gif
[08/04/2004 07:00 AM | 00,024,661 | ---- | C] (Perle Systems Ltd.) - C:\WINDOWS\System32\dllcache\spxcoins.dll
[08/04/2004 07:00 AM | 00,028,288 | ---- | C] () - C:\WINDOWS\System32\dllcache\xjis.nls
[08/04/2004 07:00 AM | 00,031,744 | ---- | C] (SEIKO EPSON CORP.) - C:\WINDOWS\System32\dllcache\esucmd.dll
[08/04/2004 07:00 AM | 00,037,484 | ---- | C] () - C:\WINDOWS\System32\dllcache\MW770.CAT
[08/04/2004 07:00 AM | 00,045,056 | ---- | C] (SEIKO EPSON CORP.) - C:\WINDOWS\System32\dllcache\esunid.dll
[08/04/2004 07:00 AM | 00,047,066 | ---- | C] () - C:\WINDOWS\System32\dllcache\ksc.nls
[08/04/2004 07:00 AM | 00,054,528 | ---- | C] (Philips Semiconductors GmbH) - C:\WINDOWS\System32\dllcache\cap7146.sys
[08/04/2004 07:00 AM | 00,057,856 | ---- | C] (SEIKO EPSON CORP.) - C:\WINDOWS\System32\dllcache\esuimgd.dll
[08/04/2004 07:00 AM | 00,059,392 | ---- | C] () - C:\WINDOWS\System32\dllcache\imscinst.exe
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_10004.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_10005.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_10006.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_10007.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_10010.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_10017.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_10021.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_10029.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_10081.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_10082.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_1047.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_1140.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_1141.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_1142.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_1143.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_1144.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_1145.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_1146.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_1147.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_1148.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_1149.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20105.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20106.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20107.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20108.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20127.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20269.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20273.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20277.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20278.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20280.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20284.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20285.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20290.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20297.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20420.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20423.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20424.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20833.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20838.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20871.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20880.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20924.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_21025.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_21027.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_28594.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_28595.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_28596.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_28597.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_28599.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_28603.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_708.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_870.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_875.nls
[08/04/2004 07:00 AM | 00,066,594 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_720.nls
[08/04/2004 07:00 AM | 00,066,594 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_737.nls
[08/04/2004 07:00 AM | 00,066,594 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_852.nls
[08/04/2004 07:00 AM | 00,066,594 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_855.nls
[08/04/2004 07:00 AM | 00,066,594 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_857.nls
[08/04/2004 07:00 AM | 00,066,594 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_858.nls
[08/04/2004 07:00 AM | 00,066,594 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_862.nls
[08/04/2004 07:00 AM | 00,066,594 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_864.nls
[08/04/2004 07:00 AM | 00,066,594 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_866.nls
[08/04/2004 07:00 AM | 00,066,594 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_869.nls
[08/04/2004 07:00 AM | 00,066,728 | ---- | C] () - C:\WINDOWS\System32\dllcache\big5.nls
[08/04/2004 07:00 AM | 00,077,307 | ---- | C] () - C:\WINDOWS\System32\dllcache\plyr_err.chm
[08/04/2004 07:00 AM | 00,079,872 | ---- | C] (Ricoh Co., Ltd.) - C:\WINDOWS\System32\dllcache\rwia001.dll
[08/04/2004 07:00 AM | 00,079,872 | ---- | C] (Ricoh Co., Ltd.) - C:\WINDOWS\System32\dllcache\rwia330.dll
[08/04/2004 07:00 AM | 00,082,172 | ---- | C] () - C:\WINDOWS\System32\dllcache\bopomofo.nls
[08/04/2004 07:00 AM | 00,083,748 | ---- | C] () - C:\WINDOWS\System32\dllcache\prc.nls
[08/04/2004 07:00 AM | 00,083,748 | ---- | C] () - C:\WINDOWS\System32\dllcache\prcp.nls
[08/04/2004 07:00 AM | 00,085,020 | ---- | C] (Digi International) - C:\WINDOWS\System32\dllcache\dgsetup.dll
[08/04/2004 07:00 AM | 00,086,180 | ---- | C] () - C:\WINDOWS\System32\dllcache\wmpaud2.wav
[08/04/2004 07:00 AM | 00,086,180 | ---- | C] () - C:\WINDOWS\System32\dllcache\wmpaud4.wav
[08/04/2004 07:00 AM | 00,086,196 | ---- | C] () - C:\WINDOWS\System32\dllcache\wmpaud5.wav
[08/04/2004 07:00 AM | 00,097,117 | ---- | C] () - C:\WINDOWS\System32\dllcache\mplayer2.hlp
[08/04/2004 07:00 AM | 00,103,424 | ---- | C] (Equinox Systems Inc.) - C:\WINDOWS\System32\dllcache\eqnclass.dll
[08/04/2004 07:00 AM | 00,108,827 | ---- | C] () - C:\WINDOWS\System32\dllcache\hanja.lex
[08/04/2004 07:00 AM | 00,134,339 | ---- | C] () - C:\WINDOWS\System32\dllcache\imekr.lex
[08/04/2004 07:00 AM | 00,162,850 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_10001.nls
[08/04/2004 07:00 AM | 00,172,196 | ---- | C] () - C:\WINDOWS\System32\dllcache\wmpaud3.wav
[08/04/2004 07:00 AM | 00,172,196 | ---- | C] () - C:\WINDOWS\System32\dllcache\wmpaud8.wav
[08/04/2004 07:00 AM | 00,172,196 | ---- | C] () - C:\WINDOWS\System32\dllcache\wmpaud9.wav
[08/04/2004 07:00 AM | 00,173,602 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_10008.nls
[08/04/2004 07:00 AM | 00,173,602 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20002.nls
[08/04/2004 07:00 AM | 00,173,602 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20936.nls
[08/04/2004 07:00 AM | 00,176,157 | ---- | C] (Digi International, Inc.) - C:\WINDOWS\System32\dllcache\dgrpsetu.dll
[08/04/2004 07:00 AM | 00,177,698 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_10003.nls
[08/04/2004 07:00 AM | 00,177,698 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20949.nls
[08/04/2004 07:00 AM | 00,180,258 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20000.nls
[08/04/2004 07:00 AM | 00,180,258 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20004.nls
[08/04/2004 07:00 AM | 00,180,770 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20932.nls
[08/04/2004 07:00 AM | 00,185,378 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20003.nls
[08/04/2004 07:00 AM | 00,186,402 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20001.nls
[08/04/2004 07:00 AM | 00,187,938 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_20005.nls
[08/04/2004 07:00 AM | 00,189,986 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_1361.nls
[08/04/2004 07:00 AM | 00,195,618 | ---- | C] () - C:\WINDOWS\System32\dllcache\c_10002.nls
[08/04/2004 07:00 AM | 00,196,665 | ---- | C] () - C:\WINDOWS\System32\dllcache\imjpinst.exe
[08/04/2004 07:00 AM | 00,300,969 | ---- | C] () - C:\WINDOWS\System32\dllcache\viz.wmv
[08/04/2004 07:00 AM | 00,343,204 | ---- | C] () - C:\WINDOWS\System32\dllcache\wmpaud6.wav
[08/04/2004 07:00 AM | 00,343,204 | ---- | C] () - C:\WINDOWS\System32\dllcache\wmpaud7.wav
[08/04/2004 07:00 AM | 00,354,468 | ---- | C] () - C:\WINDOWS\System32\dllcache\wmpaud1.wav
[08/04/2004 07:00 AM | 00,375,519 | ---- | C] () - C:\WINDOWS\System32\dllcache\nuskin.wmv
[08/04/2004 07:00 AM | 00,381,425 | ---- | C] () - C:\WINDOWS\System32\dllcache\copycd.wmv
[08/04/2004 07:00 AM | 00,399,645 | ---- | C] () - C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[08/04/2004 07:00 AM | 00,457,607 | ---- | C] () - C:\WINDOWS\System32\dllcache\mdlib.wmv
[08/04/2004 07:00 AM | 00,572,557 | ---- | C] () - C:\WINDOWS\System32\dllcache\rtuner.wmv
[08/04/2004 07:00 AM | 00,605,050 | ---- | C] () - C:\WINDOWS\System32\dllcache\r1033tts.lxa
[08/04/2004 07:00 AM | 00,613,334 | ---- | C] () - C:\WINDOWS\System32\dllcache\wmplayer.chm
[08/04/2004 07:00 AM | 00,643,717 | ---- | C] () - C:\WINDOWS\System32\dllcache\ltts1033.lxa
[08/04/2004 07:00 AM | 00,797,189 | ---- | C] () - C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[08/04/2004 07:00 AM | 01,042,903 | ---- | C] () - C:\WINDOWS\System32\dllcache\SP2.CAT
[08/04/2004 07:00 AM | 01,158,818 | ---- | C] () - C:\WINDOWS\System32\dllcache\korwbrkr.lex
[08/04/2004 07:00 AM | 01,685,606 | ---- | C] () - C:\WINDOWS\System32\dllcache\sam.spd
[08/04/2004 07:00 AM | 04,399,505 | ---- | C] () - C:\WINDOWS\System32\dllcache\nls302en.lex
[08/15/2008 04:14 AM | 00,211,986 | ---- | C] () - C:\WINDOWS\System32\drivers\Avg\miniavi.avg
[08/15/2008 04:14 AM | 06,061,540 | ---- | C] () - C:\WINDOWS\System32\drivers\Avg\avi7.avg
[08/23/2008 11:58 AM | 00,067,349 | ---- | C] () - C:\WINDOWS\System32\drivers\Avg\microavi.avg
[08/25/2008 12:51 PM | 26,587,220 | ---- | C] () - C:\WINDOWS\System32\drivers\Avg\incavi.avm
[08/15/2008 11:03 PM | 00,000,000 | -H-- | C] () - C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[01/20/2006 04:16 AM | 00,425,216 | R--- | C] (Broadcom Corporation) - C:\WINDOWS\System32\drivers\BCMWL5.SYS
[03/08/2007 02:20 PM | 00,016,496 | ---- | C] (HP) - C:\WINDOWS\System32\drivers\HPZipr12.sys
[03/08/2007 02:20 PM | 00,021,568 | ---- | C] (HP) - C:\WINDOWS\System32\drivers\HPZius12.sys
[03/08/2007 02:20 PM | 00,049,920 | ---- | C] (HP) - C:\WINDOWS\System32\drivers\HPZid412.sys
[04/13/2008 01:36 PM | 00,040,960 | ---- | C] (Silicon Integrated Systems Corporation) - C:\WINDOWS\System32\drivers\sisagp.sys
[04/13/2008 01:36 PM | 00,043,008 | ---- | C] (Advanced Micro Devices, Inc.) - C:\WINDOWS\System32\drivers\amdagp.sys
[04/13/2008 07:11 PM | 00,003,135 | ---- | C] (Intel® Corporation) - C:\WINDOWS\System32\drivers\adv08nt5.dll
[04/13/2008 07:11 PM | 00,003,615 | ---- | C] (Intel® Corporation) - C:\WINDOWS\System32\drivers\adv05nt5.dll
[04/13/2008 07:11 PM | 00,003,647 | ---- | C] (Intel® Corporation) - C:\WINDOWS\System32\drivers\adv07nt5.dll
[04/13/2008 07:11 PM | 00,003,711 | ---- | C] (Intel® Corporation) - C:\WINDOWS\System32\drivers\adv09nt5.dll
[04/13/2008 07:11 PM | 00,003,775 | ---- | C] (Intel® Corporation) - C:\WINDOWS\System32\drivers\adv11nt5.dll
[04/13/2008 07:11 PM | 00,003,967 | ---- | C] (Intel® Corporation) - C:\WINDOWS\System32\drivers\adv02nt5.dll
[04/13/2008 07:11 PM | 00,004,255 | ---- | C] (Intel® Corporation) - C:\WINDOWS\System32\drivers\adv01nt5.dll
[04/13/2008 07:11 PM | 00,011,359 | ---- | C] (Intel® Corporation) - C:\WINDOWS\System32\drivers\atv02nt5.dll
[04/13/2008 07:11 PM | 00,014,143 | ---- | C] (Intel® Corporation) - C:\WINDOWS\System32\drivers\atv06nt5.dll
[04/13/2008 07:11 PM | 00,015,423 | ---- | C] (Intel® Corporation) - C:\WINDOWS\System32\drivers\ch7xxnt5.dll
[04/13/2008 07:11 PM | 00,017,279 | ---- | C] (Intel® Corporation) - C:\WINDOWS\System32\drivers\atv10nt5.dll
[04/13/2008 07:11 PM | 00,021,183 | ---- | C] (Intel® Corporation) - C:\WINDOWS\System32\drivers\atv01nt5.dll
[04/13/2008 07:11 PM | 00,025,471 | ---- | C] (Intel® Corporation) - C:\WINDOWS\System32\drivers\atv04nt5.dll
[04/13/2008 07:12 PM | 00,003,901 | ---- | C] (Intel® Corporation) - C:\WINDOWS\System32\drivers\siint5.dll
[04/13/2008 07:12 PM | 00,011,325 | ---- | C] (Intel® Corporation) - C:\WINDOWS\System32\drivers\vchnt5.dll
[04/13/2008 11:36 AM | 00,144,384 | ---- | C] (Windows ® Server 2003 DDK provider) - C:\WINDOWS\System32\drivers\hdaudbus.sys
[07/17/2004 10:55 PM | 00,129,045 | ---- | C] () - C:\WINDOWS\System32\drivers\cxthsfs2.cty
[07/17/2004 11:35 AM | 00,067,866 | ---- | C] () - C:\WINDOWS\System32\drivers\netwlan5.img
[07/17/2004 11:36 AM | 00,064,352 | ---- | C] () - C:\WINDOWS\System32\drivers\ativmc20.cod
[07/23/2008 11:50 AM | 00,009,336 | ---- | C] (Sonic Solutions) - C:\WINDOWS\System32\drivers\cdr4_xp.sys
[07/23/2008 11:50 AM | 00,009,464 | ---- | C] (Sonic Solutions) - C:\WINDOWS\System32\drivers\cdralw2k.sys
[07/23/2008 11:50 AM | 00,043,528 | ---- | C] (Sonic Solutions) - C:\WINDOWS\System32\drivers\PxHelp20.sys
[07/30/2008 08:07 PM | 00,017,144 | ---- | C] (Malwarebytes Corporation) - C:\WINDOWS\System32\drivers\mbam.sys
[07/30/2008 08:07 PM | 00,038,472 | ---- | C] (Malwarebytes Corporation) - C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[07/31/2007 10:39 PM | 00,012,536 | ---- | C] () - C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[08/03/2004 10:29 PM | 00,011,295 | ---- | C] (Intel® Corporation) - C:\WINDOWS\System32\drivers\wadv08nt.sys
[08/03/2004 10:29 PM | 00,011,615 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\drivers\ati1mdxx.sys
[08/03/2004 10:29 PM | 00,011,807 | ---- | C] (Intel® Corporation) - C:\WINDOWS\System32\drivers\wadv07nt.sys
[08/03/2004 10:29 PM | 00,011,871 | ---- | C] (Intel® Corporation) - C:\WINDOWS\System32\drivers\wadv09nt.sys
[08/03/2004 10:29 PM | 00,011,935 | ---- | C] (Intel® Corporation) - C:\WINDOWS\System32\drivers\wadv11nt.sys
[08/03/2004 10:29 PM | 00,012,047 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\drivers\ati1pdxx.sys
[08/03/2004 10:29 PM | 00,013,824 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\drivers\atinmdxx.sys
[08/03/2004 10:29 PM | 00,013,824 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\drivers\atinttxx.sys
[08/03/2004 10:29 PM | 00,014,336 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\drivers\atinpdxx.sys
[08/03/2004 10:29 PM | 00,021,343 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\drivers\ati1ttxx.sys
[08/03/2004 10:29 PM | 00,022,271 | ---- | C] (Intel® Corporation) - C:\WINDOWS\System32\drivers\watv06nt.sys
[08/03/2004 10:29 PM | 00,025,471 | ---- | C] (Intel® Corporation) - C:\WINDOWS\System32\drivers\watv10nt.sys
[08/03/2004 10:29 PM | 00,026,367 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\drivers\ati1snxx.sys
[08/03/2004 10:29 PM | 00,028,672 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\drivers\atinsnxx.sys
[08/03/2004 10:29 PM | 00,029,455 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\drivers\ati1xbxx.sys
[08/03/2004 10:29 PM | 00,030,671 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\drivers\ati1raxx.sys
[08/03/2004 10:29 PM | 00,031,744 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\drivers\atinxbxx.sys
[08/03/2004 10:29 PM | 00,034,735 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\drivers\ati1xsxx.sys
[08/03/2004 10:29 PM | 00,036,463 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\drivers\ati1tuxx.sys
[08/03/2004 10:29 PM | 00,052,224 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\drivers\atinraxx.sys
[08/03/2004 10:29 PM | 00,056,623 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\drivers\ati1btxx.sys
[08/03/2004 10:29 PM | 00,057,856 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\drivers\atinbtxx.sys
[08/03/2004 10:29 PM | 00,063,488 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\drivers\atinxsxx.sys
[08/03/2004 10:29 PM | 00,063,663 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\drivers\ati1rvxx.sys
[08/03/2004 10:29 PM | 00,073,216 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\drivers\atintuxx.sys
[08/03/2004 10:29 PM | 00,104,960 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\drivers\atinrvxx.sys
[08/03/2004 10:29 PM | 00,166,912 | ---- | C] (S3 Graphics, Inc.) - C:\WINDOWS\System32\drivers\s3gnbm.sys
[08/03/2004 10:29 PM | 00,327,040 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\drivers\ati2mtaa.sys
[08/03/2004 10:29 PM | 00,452,736 | ---- | C] (Matrox Graphics Inc.) - C:\WINDOWS\System32\drivers\mtxparhm.sys
[08/03/2004 10:29 PM | 00,701,440 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\drivers\ati2mtag.sys
[08/03/2004 10:29 PM | 01,897,408 | ---- | C] (NVIDIA Corporation) - C:\WINDOWS\System32\drivers\nv4_mini.sys
[08/03/2004 10:41 PM | 00,011,868 | ---- | C] (Conexant) - C:\WINDOWS\System32\drivers\mdmxsdk.sys
[08/03/2004 10:41 PM | 00,013,240 | ---- | C] (Smart Link) - C:\WINDOWS\System32\drivers\slwdmsup.sys
[08/03/2004 10:41 PM | 00,013,776 | ---- | C] (Smart Link) - C:\WINDOWS\System32\drivers\recagent.sys
[08/03/2004 10:41 PM | 00,095,424 | ---- | C] (Smart Link) - C:\WINDOWS\System32\drivers\slnthal.sys
[08/03/2004 10:41 PM | 00,126,686 | ---- | C] (Smart Link) - C:\WINDOWS\System32\drivers\mtlmnt5.sys
[08/03/2004 10:41 PM | 00,129,535 | ---- | C] (Smart Link) - C:\WINDOWS\System32\drivers\slnt7554.sys
[08/03/2004 10:41 PM | 00,180,360 | ---- | C] (Smart Link) - C:\WINDOWS\System32\drivers\ntmtlfax.sys
[08/03/2004 10:41 PM | 00,220,032 | ---- | C] (Conexant Systems, Inc.) - C:\WINDOWS\System32\drivers\hsfbs2s2.sys
[08/03/2004 10:41 PM | 00,404,990 | ---- | C] (Smart Link) - C:\WINDOWS\System32\drivers\slntamr.sys
[08/03/2004 10:41 PM | 00,685,056 | ---- | C] (Conexant Systems, Inc.) - C:\WINDOWS\System32\drivers\hsfcxts2.sys
[08/03/2004 10:41 PM | 01,041,536 | ---- | C] (Conexant Systems, Inc.) - C:\WINDOWS\System32\drivers\hsfdpsp2.sys
[08/03/2004 10:41 PM | 01,309,184 | ---- | C] (Smart Link) - C:\WINDOWS\System32\drivers\mtlstrm.sys
[08/12/2004 09:56 PM | 00,005,810 | R--- | C] () - C:\WINDOWS\System32\drivers\ASACPI.sys
[08/15/2008 04:14 AM | 00,026,824 | ---- | C] (AVG Technologies CZ, s.r.o.) - C:\WINDOWS\System32\drivers\avgmfx86.sys
[08/15/2008 04:14 AM | 00,076,040 | ---- | C] (AVG Technologies CZ, s.r.o.) - C:\WINDOWS\System32\drivers\avgtdix.sys
[08/15/2008 04:14 AM | 00,096,520 | ---- | C] (AVG Technologies CZ, s.r.o.) - C:\WINDOWS\System32\drivers\avgldx86.sys
[08/15/2008 06:38 PM | 00,047,360 | ---- | C] (VSO Software) - C:\WINDOWS\System32\drivers\pcouffin.sys
[08/15/2008 06:41 PM | 00,018,816 | ---- | C] (RIF) - C:\WINDOWS\System32\drivers\dvd43llh.sys
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\System32\drivers\disdn
[08/15/2008 10:58 AM | ---D | C] - C:\WINDOWS\System32\drivers\etc
[08/15/2008 11:04 PM | ---D | C] - C:\WINDOWS\System32\drivers\UMDF
[08/22/2008 01:23 PM | 00,033,408 | ---- | C] (B.H.A Corporation) - C:\WINDOWS\System32\drivers\CDRBSDRV.SYS
[08/25/2008 12:51 PM | ---D | C] - C:\WINDOWS\System32\drivers\Avg
[10/29/2007 07:00 PM | 05,851,488 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\drivers\igxpmp32.sys
[11/01/2007 01:29 AM | 02,011,224 | R--- | C] (Realtek Semiconductor Corp.) - C:\WINDOWS\System32\drivers\RTKVHDA.sys
[11/01/2007 01:38 AM | 04,620,288 | R--- | C] (Realtek Semiconductor Corp.) - C:\WINDOWS\System32\drivers\RtkHDAud.sys
[1 C:\WINDOWS\System32\*.tmp files]
[03/08/2007 02:20 PM | 00,364,544 | ---- | C] (Hewlett-Packard) - C:\WINDOWS\System32\hppldcoi.dll
[03/17/2007 03:39 PM | 00,303,104 | ---- | C] (Hewlett-Packard Co.) - C:\WINDOWS\System32\hpovst11.dll
[03/17/2007 03:39 PM | 00,675,840 | ---- | C] (Hewlett-Packard) - C:\WINDOWS\System32\hpowiax4.dll
[03/17/2007 03:39 PM | 00,958,464 | ---- | C] (Hewlett-Packard Co.) - C:\WINDOWS\System32\hpotiop4.dll
[03/23/2007 02:34 AM | 00,266,240 | R--- | C] (Realtek Semiconductor Corp.) - C:\WINDOWS\System32\RtkApoApi.dll
[03/28/2007 02:01 PM | 00,118,272 | ---- | C] (Hewlett-Packard Company) - C:\WINDOWS\System32\hpz3l5ha.dll
[03/31/2007 12:29 AM | 00,267,864 | ---- | C] (Hewlett-Packard) - C:\WINDOWS\System32\hpzids01.dll
[04/13/2008 07:11 PM | 00,032,285 | ---- | C] (Conexant Systems, Inc.) - C:\WINDOWS\System32\hsfcisp2.dll
[04/13/2008 07:11 PM | 00,032,768 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\ativtmxx.dll
[04/13/2008 07:11 PM | 00,032,768 | ---- | C] (Intel Corporation) - C:\WINDOWS\System32\isrdbg32.dll
[04/13/2008 07:11 PM | 00,086,016 | ---- | C] (Conexant) - C:\WINDOWS\System32\mdmxsdk.dll
[04/13/2008 07:11 PM | 00,201,728 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\ati2dvag.dll
[04/13/2008 07:11 PM | 00,229,376 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\ati2cqag.dll
[04/13/2008 07:11 PM | 00,347,136 | ---- | C] (Hilgraeve, Inc.) - C:\WINDOWS\System32\hypertrm.dll
[04/13/2008 07:11 PM | 00,377,984 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\ati2dvaa.dll
[04/13/2008 07:11 PM | 00,516,768 | ---- | C] (ATI Technologies Inc. ) - C:\WINDOWS\System32\ativvaxx.dll
[04/13/2008 07:11 PM | 00,870,784 | ---- | C] (ATI Technologies Inc. ) - C:\WINDOWS\System32\ati3d1ag.dll
[04/13/2008 07:11 PM | 01,888,992 | ---- | C] (ATI Technologies Inc. ) - C:\WINDOWS\System32\ati3duag.dll
[04/13/2008 07:12 PM | 00,009,728 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\ativdaxx.ax
[04/13/2008 07:12 PM | 00,023,040 | ---- | C] (ATI Technologies Inc.) - C:\WINDOWS\System32\ativmvxx.ax
[04/13/2008 07:12 PM | 00,032,866 | ---- | C] (Smart Link) - C:\WINDOWS\System32\slrundll.exe
[04/13/2008 07:12 PM | 00,073,796 | ---- | C] (Smart Link) - C:\WINDOWS\System32\slserv.exe
[04/13/2008 07:12 PM | 00,073,832 | ---- | C] (Smart Link) - C:\WINDOWS\System32\slcoinst.dll
[04/13/2008 07:12 PM | 00,188,508 | ---- | C] (Smart Link) - C:\WINDOWS\System32\slgen.dll
[04/13/2008 07:12 PM | 00,286,792 | ---- | C] (Smart Link) - C:\WINDOWS\System32\slextspk.dll
[04/13/2008 07:12 PM | 00,397,056 | ---- | C] (S3 Graphics, Inc.) - C:\WINDOWS\System32\s3gnb.dll
[04/13/2008 07:12 PM | 01,737,856 | ---- | C] (Matrox Graphics Inc.) - C:\WINDOWS\System32\mtxparhd.dll
[04/13/2008 07:12 PM | 04,274,816 | ---- | C] (NVIDIA Corporation) - C:\WINDOWS\System32\nv4_disp.dll
[04/16/2007 04:09 AM | 00,167,936 | R--- | C] (SRS Labs, Inc.) - C:\WINDOWS\System32\SRSHP360.dll
[04/26/2008 04:14 PM | 00,042,672 | ---- | C] (Stardock.Net, Inc) - C:\WINDOWS\System32\wbsys.dll
[05/16/2007 10:26 PM | 00,185,776 | R--- | C] (SRS Labs, Inc.) - C:\WINDOWS\System32\SRSTSHD.dll
[06/10/2008 01:21 AM | 00,135,168 | ---- | C] (Sun Microsystems, Inc.) - C:\WINDOWS\System32\java.exe
[06/10/2008 01:21 AM | 00,135,168 | ---- | C] (Sun Microsystems, Inc.) - C:\WINDOWS\System32\javaw.exe
[06/10/2008 02:32 AM | 00,073,728 | ---- | C] (Sun Microsystems, Inc.) - C:\WINDOWS\System32\javacpl.cpl
[06/10/2008 02:32 AM | 00,139,264 | ---- | C] (Sun Microsystems, Inc.) - C:\WINDOWS\System32\javaws.exe
[07/23/2008 11:50 AM | 00,064,760 | ---- | C] (Sonic Solutions) - C:\WINDOWS\System32\pxinsa64.exe
[07/23/2008 11:50 AM | 00,066,296 | ---- | C] (Sonic Solutions) - C:\WINDOWS\System32\pxcpya64.exe
[07/23/2008 11:50 AM | 00,072,440 | ---- | C] (Sonic Solutions) - C:\WINDOWS\System32\pxhpinst.exe
[07/23/2008 11:50 AM | 00,088,824 | ---- | C] (Sonic Solutions) - C:\WINDOWS\System32\vxblock.dll
[07/23/2008 11:50 AM | 00,118,520 | ---- | C] (Sonic Solutions) - C:\WINDOWS\System32\pxinsi64.exe
[07/23/2008 11:50 AM | 00,120,056 | ---- | C] (Sonic Solutions) - C:\WINDOWS\System32\pxcpyi64.exe
[07/23/2008 11:50 AM | 00,129,784 | ---- | C] (Sonic Solutions) - C:\WINDOWS\System32\pxafs.dll
[07/23/2008 11:50 AM | 00,187,128 | ---- | C] (Sonic Solutions) - C:\WINDOWS\System32\pxmas.dll
[07/23/2008 11:50 AM | 00,379,640 | ---- | C] (Sonic Solutions) - C:\WINDOWS\System32\pxwave.dll
[07/23/2008 11:50 AM | 00,518,904 | ---- | C] (Sonic Solutions) - C:\WINDOWS\System32\pxdrv.dll
[07/23/2008 11:50 AM | 00,551,672 | ---- | C] (Sonic Solutions) - C:\WINDOWS\System32\px.dll
[07/23/2008 11:50 AM | 01,628,920 | ---- | C] (Sonic Solutions) - C:\WINDOWS\System32\pxsfs.dll
[07/24/2007 08:33 PM | 00,135,168 | R--- | C] (SRS Labs, Inc.) - C:\WINDOWS\System32\SRSWOW.dll
[07/30/2007 05:26 AM | 00,126,976 | R--- | C] (Waves Audio Ltd.) - C:\WINDOWS\System32\maxxaudioapo.dll
[08/01/2006 02:02 AM | 00,049,152 | R--- | C] () - C:\WINDOWS\System32\ChCfg.exe
[08/04/2004 07:00 AM | 00,000,002 | ---- | C] () - C:\WINDOWS\System32\desktop.ini
[08/04/2004 07:00 AM | 00,000,768 | ---- | C] () - C:\WINDOWS\System32\msdtcprf.h
[08/04/2004 07:00 AM | 00,001,161 | ---- | C] () - C:\WINDOWS\System32\usrlogon.cmd
[08/04/2004 07:00 AM | 00,001,688 | ---- | C] () - C:\WINDOWS\System32\AUTOEXEC.NT
[08/04/2004 07:00 AM | 00,001,931 | ---- | C] () - C:\WINDOWS\System32\msdtcprf.ini
[08/04/2004 07:00 AM | 00,003,286 | ---- | C] () - C:\WINDOWS\System32\tslabels.h
[08/04/2004 07:00 AM | 00,006,948 | ---- | C] () - C:\WINDOWS\System32\kanji_1.uce
[08/04/2004 07:00 AM | 00,008,484 | ---- | C] () - C:\WINDOWS\System32\kanji_2.uce
[08/04/2004 07:00 AM | 00,012,876 | ---- | C] () - C:\WINDOWS\System32\korean.uce
[08/04/2004 07:00 AM | 00,013,223 | ---- | C] () - C:\WINDOWS\System32\tslabels.ini
[08/04/2004 07:00 AM | 00,016,740 | ---- | C] () - C:\WINDOWS\System32\shiftjis.uce
[08/04/2004 07:00 AM | 00,022,984 | ---- | C] () - C:\WINDOWS\System32\bopomofo.uce
[08/04/2004 07:00 AM | 00,024,006 | ---- | C] () - C:\WINDOWS\System32\gb2312.uce
[08/04/2004 07:00 AM | 00,024,661 | ---- | C] (Perle Systems Ltd.) - C:\WINDOWS\System32\spxcoins.dll
[08/04/2004 07:00 AM | 00,044,544 | ---- | C] (Hilgraeve, Inc.) - C:\WINDOWS\System32\hticons.dll
[08/04/2004 07:00 AM | 00,060,458 | ---- | C] () - C:\WINDOWS\System32\ideograf.uce
[08/04/2004 07:00 AM | 00,063,488 | ---- | C] () - C:\WINDOWS\System32\wmimgmt.msc
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\c_10006.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\c_10007.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\c_10010.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\c_10017.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\c_10029.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\c_10081.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\c_10082.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\c_20127.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\C_28594.NLS
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\C_28595.NLS
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\C_28597.NLS
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\c_28599.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- |
  • 0

#5
soitscometothis
Posted 25 August 2008 - 06:35 PM

soitscometothis

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts
C] () - C:\WINDOWS\System32\c_28603.nls
[08/04/2004 07:00 AM | 00,066,082 | ---- | C] () - C:\WINDOWS\System32\c_875.nls
[08/04/2004 07:00 AM | 00,066,594 | ---- | C] () - C:\WINDOWS\System32\c_737.nls
[08/04/2004 07:00 AM | 00,066,594 | ---- | C] () - C:\WINDOWS\System32\c_852.nls
[08/04/2004 07:00 AM | 00,066,594 | ---- | C] () - C:\WINDOWS\System32\c_855.nls
[08/04/2004 07:00 AM | 00,066,594 | ---- | C] () - C:\WINDOWS\System32\c_857.nls
[08/04/2004 07:00 AM | 00,066,594 | ---- | C] () - C:\WINDOWS\System32\c_866.nls
[08/04/2004 07:00 AM | 00,066,594 | ---- | C] () - C:\WINDOWS\System32\c_869.nls
[08/04/2004 07:00 AM | 00,085,020 | ---- | C] (Digi International) - C:\WINDOWS\System32\dgsetup.dll
[08/04/2004 07:00 AM | 00,093,702 | ---- | C] () - C:\WINDOWS\System32\subrange.uce
[08/04/2004 07:00 AM | 00,103,424 | ---- | C] (Equinox Systems Inc.) - C:\WINDOWS\System32\EqnClass.Dll
[08/04/2004 07:00 AM | 00,176,157 | ---- | C] (Digi International, Inc.) - C:\WINDOWS\System32\dgrpsetu.dll
[08/15/2008 01:26 PM | ---D | C] - C:\WINDOWS\System32\Lang
[08/15/2008 03:05 AM | ---D | C] - C:\WINDOWS\System32\spool
[08/15/2008 03:07 AM | 00,021,640 | ---- | C] () - C:\WINDOWS\System32\emptyregdb.dat
[08/15/2008 03:07 AM | ---D | C] - C:\WINDOWS\System32\MsDtc
[08/15/2008 03:08 AM | 00,000,488 | RH-- | C] () - C:\WINDOWS\System32\logonui.exe.manifest
[08/15/2008 03:08 AM | 00,000,488 | RH-- | C] () - C:\WINDOWS\System32\WindowsLogon.manifest
[08/15/2008 03:08 AM | 00,000,749 | RH-- | C] () - C:\WINDOWS\System32\cdplayer.exe.manifest
[08/15/2008 03:08 AM | 00,000,749 | RH-- | C] () - C:\WINDOWS\System32\ncpa.cpl.manifest
[08/15/2008 03:08 AM | 00,000,749 | RH-- | C] () - C:\WINDOWS\System32\nwc.cpl.manifest
[08/15/2008 03:08 AM | 00,000,749 | RH-- | C] () - C:\WINDOWS\System32\sapi.cpl.manifest
[08/15/2008 03:08 AM | 00,000,749 | RH-- | C] () - C:\WINDOWS\System32\wuaucpl.cpl.manifest
[08/15/2008 03:08 AM | ---D | C] - C:\WINDOWS\System32\DirectX
[08/15/2008 03:08 AM | ---D | C] - C:\WINDOWS\System32\Macromed
[08/15/2008 03:09 AM | 00,002,577 | ---- | C] () - C:\WINDOWS\System32\CONFIG.NT
[08/15/2008 03:09 AM | ---D | C] - C:\WINDOWS\System32\xircom
[08/15/2008 03:10 AM | 00,000,261 | ---- | C] () - C:\WINDOWS\System32\$winnt$.inf
[08/15/2008 03:11 AM | ---D | C] - C:\WINDOWS\System32\config
[08/15/2008 03:11 AM | --SD | C] - C:\WINDOWS\System32\Microsoft
[08/15/2008 03:20 AM | 00,013,646 | ---- | C] () - C:\WINDOWS\System32\wpa.bak
[08/15/2008 03:20 AM | ---D | C] - C:\WINDOWS\System32\SoftwareDistribution
[08/15/2008 03:30 AM | ---D | C] - C:\WINDOWS\System32\PreInstall
[08/15/2008 03:47 AM | ---D | C] - C:\WINDOWS\System32\ReinstallBackups
[08/15/2008 03:48 AM | ---D | C] - C:\WINDOWS\System32\oobe
[08/15/2008 03:49 AM | ---D | C] - C:\WINDOWS\System32\Com
[08/15/2008 03:49 AM | ---D | C] - C:\WINDOWS\System32\npp
[08/15/2008 03:49 AM | ---D | C] - C:\WINDOWS\System32\Restore
[08/15/2008 03:50 AM | ---D | C] - C:\WINDOWS\System32\bits
[08/15/2008 03:50 AM | ---D | C] - C:\WINDOWS\System32\en
[08/15/2008 03:50 AM | ---D | C] - C:\WINDOWS\System32\scripting
[08/15/2008 03:50 AM | ---D | C] - C:\WINDOWS\System32\usmt
[08/15/2008 03:53 AM | 00,091,888 | ---- | C] () - C:\WINDOWS\System32\FNTCACHE.DAT
[08/15/2008 03:53 AM | ---D | C] - C:\WINDOWS\System32\Setup
[08/15/2008 03:53 AM | ---D | C] - C:\WINDOWS\System32\wbem
[08/15/2008 04:14 AM | 00,010,520 | ---- | C] (AVG Technologies CZ, s.r.o.) - C:\WINDOWS\System32\avgrsstx.dll
[08/15/2008 04:27 AM | 00,000,664 | ---- | C] () - C:\WINDOWS\System32\d3d9caps.dat
[08/15/2008 05:11 PM | ---D | C] - C:\WINDOWS\System32\CatRoot
[08/15/2008 05:26 PM | ---D | C] - C:\WINDOWS\System32\RTCOM
[08/15/2008 05:29 PM | 00,146,650 | ---- | C] () - C:\WINDOWS\System32\BuzzingBee.wav
[08/15/2008 05:29 PM | 00,940,794 | ---- | C] () - C:\WINDOWS\System32\LoopyMusic.wav
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\System32\1025
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\System32\1028
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\System32\1031
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\System32\1037
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\System32\1041
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\System32\1042
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\System32\1054
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\System32\2052
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\System32\3076
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\System32\3com_dmi
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\System32\dhcp
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\System32\export
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\System32\IME
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\System32\inetsrv
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\System32\mui
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\System32\ShellExt
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\System32\wins
[08/15/2008 10:58 AM | ---D | C] - C:\WINDOWS\System32\1033
[08/15/2008 10:58 AM | ---D | C] - C:\WINDOWS\System32\ias
[08/15/2008 10:58 AM | ---D | C] - C:\WINDOWS\System32\icsxml
[08/15/2008 10:59 AM | ---D | C] - C:\WINDOWS\System32\ras
[08/15/2008 11:03 PM | ---D | C] - C:\WINDOWS\System32\LogFiles
[08/15/2008 11:04 PM | 00,016,832 | ---- | C] () - C:\WINDOWS\System32\amcompat.tlb
[08/15/2008 11:04 PM | 00,023,392 | ---- | C] () - C:\WINDOWS\System32\nscompat.tlb
[08/17/2006 05:58 PM | 00,282,624 | R--- | C] (Realtek Semiconductor Corp.) - C:\WINDOWS\System32\RTSndMgr.cpl
[08/18/2008 12:02 AM | ---D | C] - C:\WINDOWS\System32\DRVSTORE
[08/18/2008 12:11 AM | ---D | C] - C:\WINDOWS\System32\en-us
[08/22/2008 01:23 PM | 00,059,488 | ---- | C] (B.H.A Corporation) - C:\WINDOWS\System32\GenSvcInst.exe
[08/22/2008 01:23 PM | 00,145,504 | ---- | C] (B.H.A Corporation) - C:\WINDOWS\System32\bgsvcgen.exe
[08/22/2008 01:23 PM | ---D | C] - C:\WINDOWS\System32\drivers
[08/22/2008 01:27 PM | ---D | C] - C:\WINDOWS\System32\CatRoot2
[08/22/2008 01:27 PM | RHSD | C] - C:\WINDOWS\System32\dllcache
[08/25/2008 05:09 PM | 00,356,120 | ---- | C] () - C:\WINDOWS\System32\PerfStringBackup.INI
[09/17/2007 03:48 AM | 00,001,261 | ---- | C] () - C:\WINDOWS\System32\pid.inf
[09/20/2005 09:25 PM | 00,299,008 | R--- | C] (Realtek Semiconductor Corp.) - C:\WINDOWS\System32\ALSndMgr.cpl
[09/21/2007 07:46 AM | 00,505,214 | ---- | C] () - C:\WINDOWS\System32\autorun.inf
[10/17/2007 02:27 AM | 00,582,656 | R--- | C] (Realtek Semiconductor Corp.) - C:\WINDOWS\System32\RtkPgExt.dll
[10/24/2007 06:50 AM | 02,101,248 | R--- | C] (Realtek Semiconductor Corp.) - C:\WINDOWS\System32\RtkAPO.dll
[10/29/2007 02:29 AM | 00,027,136 | R--- | C] (Realtek Semiconductor Corp.) - C:\WINDOWS\System32\RtkCoInst.dll
[10/29/2007 06:34 PM | 00,002,096 | R--- | C] () - C:\WINDOWS\System32\igxpxk32.vp
[10/29/2007 06:39 PM | 00,048,128 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxsrvc.dll
[10/29/2007 06:39 PM | 00,102,400 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\hccutils.dll
[10/29/2007 06:39 PM | 00,135,168 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxdo.dll
[10/29/2007 06:39 PM | 00,172,032 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrenu.lrc
[10/29/2007 06:39 PM | 00,172,032 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxres.dll
[10/29/2007 06:39 PM | 00,208,896 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxdev.dll
[10/29/2007 06:39 PM | 03,293,184 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxress.dll
[10/29/2007 06:40 PM | 00,024,576 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxexps.dll
[10/29/2007 06:40 PM | 00,122,880 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxcpl.cpl
[10/29/2007 06:40 PM | 00,204,800 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxpph.dll
[10/29/2007 06:43 PM | 00,110,592 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrchs.lrc
[10/29/2007 06:43 PM | 00,110,592 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrcht.lrc
[10/29/2007 06:43 PM | 00,126,976 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrkor.lrc
[10/29/2007 06:43 PM | 00,131,072 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrjpn.lrc
[10/29/2007 06:43 PM | 00,155,648 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrheb.lrc
[10/29/2007 06:43 PM | 00,159,744 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrara.lrc
[10/29/2007 06:43 PM | 00,163,840 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrtha.lrc
[10/29/2007 06:43 PM | 00,172,032 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrdan.lrc
[10/29/2007 06:43 PM | 00,172,032 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrslv.lrc
[10/29/2007 06:43 PM | 00,172,032 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrsve.lrc
[10/29/2007 06:43 PM | 00,172,032 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrtrk.lrc
[10/29/2007 06:43 PM | 00,176,128 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrcsy.lrc
[10/29/2007 06:43 PM | 00,176,128 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrfin.lrc
[10/29/2007 06:43 PM | 00,176,128 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrnor.lrc
[10/29/2007 06:43 PM | 00,176,128 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrsky.lrc
[10/29/2007 06:43 PM | 00,180,224 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrhun.lrc
[10/29/2007 06:43 PM | 00,180,224 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrplk.lrc
[10/29/2007 06:43 PM | 00,180,224 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrptb.lrc
[10/29/2007 06:43 PM | 00,180,224 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrptg.lrc
[10/29/2007 06:43 PM | 00,180,224 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrrus.lrc
[10/29/2007 06:43 PM | 00,184,320 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrfra.lrc
[10/29/2007 06:43 PM | 00,188,416 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxresp.lrc
[10/29/2007 06:43 PM | 00,188,416 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrita.lrc
[10/29/2007 06:43 PM | 00,188,416 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrnld.lrc
[10/29/2007 06:43 PM | 00,192,512 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrdeu.lrc
[10/29/2007 06:43 PM | 00,192,512 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxrell.lrc
[10/29/2007 06:54 PM | 00,294,912 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igldev32.dll
[10/29/2007 06:54 PM | 02,334,720 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\iglicd32.dll
[10/29/2007 07:00 PM | 00,057,344 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igxprd32.dll
[10/29/2007 07:00 PM | 00,151,040 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igxpgd32.dll
[10/29/2007 07:00 PM | 01,668,960 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igxpdv32.dll
[10/29/2007 07:00 PM | 02,643,968 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igxpdx32.dll
[10/29/2007 07:08 PM | 00,147,456 | R--- | C] () - C:\WINDOWS\System32\igfxCoIn_v4885.dll
[10/29/2007 07:45 PM | 00,026,960 | R--- | C] () - C:\WINDOWS\System32\igxpxs32.vp
[11/08/2007 02:56 AM | 00,137,752 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxpers.exe
[11/08/2007 02:56 AM | 00,141,848 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxtray.exe
[11/08/2007 02:56 AM | 00,166,424 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\hkcmd.exe
[11/08/2007 02:56 AM | 00,170,520 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxext.exe
[11/08/2007 02:56 AM | 00,170,520 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxzoom.exe
[11/08/2007 02:56 AM | 00,256,536 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxsrvc.exe
[11/08/2007 02:56 AM | 00,530,968 | R--- | C] (Intel Corporation) - C:\WINDOWS\System32\igfxcfg.exe
[11/08/2007 02:56 AM | 00,920,088 | R--- | C] (Intel® Corporation) - C:\WINDOWS\System32\igxpun.exe
[12/12/2006 09:30 PM | 00,339,968 | R--- | C] (SRS Labs, Inc.) - C:\WINDOWS\System32\SRSTSXT.dll
[4 C:\WINDOWS\*.tmp files]
[03/23/2007 06:19 AM | 09,715,200 | R--- | C] (Realtek Semiconductor Corp.) - C:\WINDOWS\RTLCPL.exe
[04/13/2008 07:12 PM | 00,032,866 | ---- | C] (Smart Link) - C:\WINDOWS\slrundll.exe
[05/03/2005 05:43 AM | 00,069,632 | R--- | C] (Realtek Semiconductor Corp.) - C:\WINDOWS\Alcmtr.exe
[05/04/2006 03:26 AM | 02,808,832 | R--- | C] (RealTek Semicoductor Corp.) - C:\WINDOWS\alcwzrd.exe
[06/28/2007 03:44 AM | 02,165,760 | R--- | C] (Realtek Semiconductor Corp.) - C:\WINDOWS\MicCal.exe
[07/21/2006 03:14 AM | 00,086,016 | R--- | C] (Realtek Semiconductor Corp.) - C:\WINDOWS\SoundMan.exe
[07/26/2007 04:09 AM | 00,520,192 | R--- | C] (Realtek Semiconductor Corp.) - C:\WINDOWS\RtlExUpd.dll
[07/26/2007 05:06 AM | 01,191,936 | R--- | C] (Realtek Semiconductor Corp.) - C:\WINDOWS\RtlUpd.exe
[08/04/2004 07:00 AM | 00,000,002 | ---- | C] () - C:\WINDOWS\desktop.ini
[08/04/2004 07:00 AM | 00,001,272 | ---- | C] () - C:\WINDOWS\Blue Lace 16.bmp
[08/04/2004 07:00 AM | 00,009,522 | ---- | C] () - C:\WINDOWS\Zapotec.bmp
[08/04/2004 07:00 AM | 00,016,730 | ---- | C] () - C:\WINDOWS\FeatherTexture.bmp
[08/04/2004 07:00 AM | 00,017,062 | ---- | C] () - C:\WINDOWS\Coffee Bean.bmp
[08/04/2004 07:00 AM | 00,017,336 | ---- | C] () - C:\WINDOWS\Gone Fishing.bmp
[08/04/2004 07:00 AM | 00,017,362 | ---- | C] () - C:\WINDOWS\Rhododendron.bmp
[08/04/2004 07:00 AM | 00,026,582 | ---- | C] () - C:\WINDOWS\Greenstone.bmp
[08/04/2004 07:00 AM | 00,026,680 | ---- | C] () - C:\WINDOWS\River Sumida.bmp
[08/04/2004 07:00 AM | 00,048,680 | -HS- | C] () - C:\WINDOWS\winnt.bmp
[08/04/2004 07:00 AM | 00,048,680 | -HS- | C] () - C:\WINDOWS\winnt256.bmp
[08/04/2004 07:00 AM | 00,065,832 | ---- | C] () - C:\WINDOWS\Santa Fe Stucco.bmp
[08/04/2004 07:00 AM | 00,065,954 | ---- | C] () - C:\WINDOWS\Prairie Wind.bmp
[08/04/2004 07:00 AM | 00,065,978 | ---- | C] () - C:\WINDOWS\Soap Bubbles.bmp
[08/15/2008 01:31 PM | 00,315,392 | ---- | C] (Realtek Semiconductor Corp.) - C:\WINDOWS\HideWin.exe
[08/15/2008 03:06 AM | ---D | C] - C:\WINDOWS\Cursors
[08/15/2008 03:07 AM | 00,000,036 | ---- | C] () - C:\WINDOWS\vb.ini
[08/15/2008 03:07 AM | 00,000,037 | ---- | C] () - C:\WINDOWS\vbaddin.ini
[08/15/2008 03:07 AM | ---D | C] - C:\WINDOWS\pchealth
[08/15/2008 03:08 AM | 00,000,749 | RH-- | C] () - C:\WINDOWS\WindowsShell.Manifest
[08/15/2008 03:08 AM | R--D | C] - C:\WINDOWS\Offline Web Pages
[08/15/2008 03:08 AM | R--D | C] - C:\WINDOWS\Web
[08/15/2008 03:08 AM | --SD | C] - C:\WINDOWS\Downloaded Program Files
[08/15/2008 03:09 AM | 00,000,000 | ---- | C] () - C:\WINDOWS\control.ini
[08/15/2008 03:09 AM | 00,004,161 | ---- | C] () - C:\WINDOWS\ODBCINST.INI
[08/15/2008 03:09 AM | ---D | C] - C:\WINDOWS\Registration
[08/15/2008 03:11 AM | 00,008,192 | ---- | C] () - C:\WINDOWS\REGLOCS.OLD
[08/15/2008 03:11 AM | --SD | C] - C:\WINDOWS\Tasks
[08/15/2008 03:34 AM | ---D | C] - C:\WINDOWS\SoftwareDistribution
[08/15/2008 03:46 AM | ---D | C] - C:\WINDOWS\EHome
[08/15/2008 03:47 AM | -H-D | C] - C:\WINDOWS\$NtServicePackUninstall$
[08/15/2008 03:48 AM | ---D | C] - C:\WINDOWS\system
[08/15/2008 03:49 AM | ---D | C] - C:\WINDOWS\msagent
[08/15/2008 03:49 AM | ---D | C] - C:\WINDOWS\ServicePackFiles
[08/15/2008 03:49 AM | ---D | C] - C:\WINDOWS\srchasst
[08/15/2008 03:50 AM | ---D | C] - C:\WINDOWS\ime
[08/15/2008 03:50 AM | ---D | C] - C:\WINDOWS\l2schemas
[08/15/2008 03:50 AM | ---D | C] - C:\WINDOWS\network diagnostic
[08/15/2008 03:50 AM | ---D | C] - C:\WINDOWS\PeerNet
[08/15/2008 03:53 AM | ---D | C] - C:\WINDOWS\AppPatch
[08/15/2008 03:53 AM | R-SD | C] - C:\WINDOWS\Fonts
[08/15/2008 04:00 AM | 00,000,000 | ---- | C] () - C:\WINDOWS\nsreg.dat
[08/15/2008 05:25 PM | 00,011,617 | ---- | C] () - C:\WINDOWS\Ascd_tmp.ini
[08/15/2008 06:06 PM | ---D | C] - C:\WINDOWS\WinRAR
[08/15/2008 06:15 PM | 00,316,640 | ---- | C] () - C:\WINDOWS\WMSysPr9.prx
[08/15/2008 06:15 PM | ---D | C] - C:\WINDOWS\RegisteredPackages
[08/15/2008 06:15 PM | ---D | C] - C:\WINDOWS\security
[08/15/2008 08:36 PM | 00,000,000 | ---- | C] () - C:\WINDOWS\WB.ini
[08/15/2008 08:41 PM | 00,002,560 | ---- | C] () - C:\WINDOWS\_MSRSTRT.EXE
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\addins
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\Config
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\Connection Wizard
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\Driver Cache
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\java
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\msapps
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\mui
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\Provisioning
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\repair
[08/15/2008 10:57 AM | ---D | C] - C:\WINDOWS\Resources
[08/16/2008 01:02 AM | -H-D | C] - C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
[08/16/2008 01:02 AM | -H-D | C] - C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
[08/16/2008 01:03 AM | ---D | C] - C:\WINDOWS\Media
[08/16/2008 01:03 AM | ---D | C] - C:\WINDOWS\WBEM
[08/16/2008 01:03 AM | -H-D | C] - C:\WINDOWS\ie7
[08/16/2008 01:11 AM | ---D | C] - C:\WINDOWS\Debug
[08/16/2008 12:04 AM | ---D | C] - C:\WINDOWS\Sun
[08/18/2008 12:02 AM | ---D | C] - C:\WINDOWS\twain_32
[08/18/2008 12:02 AM | ---D | C] - C:\WINDOWS\WinSxS
[08/18/2008 12:10 AM | ---D | C] - C:\WINDOWS\ie7updates
[08/18/2008 12:10 AM | -H-D | C] - C:\WINDOWS\$hf_mig$
[08/22/2008 01:23 PM | -HSD | C] - C:\WINDOWS\Installer
[08/22/2008 11:04 PM | ---D | C] - C:\WINDOWS\Prefetch
[08/22/2008 11:55 AM | ---D | C] - C:\WINDOWS\Help
[08/22/2008 11:55 AM | -H-D | C] - C:\WINDOWS\inf
[08/25/2008 05:05 PM | 00,002,048 | --S- | C] () - C:\WINDOWS\bootstat.dat
[08/25/2008 05:09 PM | ---D | C] - C:\WINDOWS\system32
[08/25/2008 07:29 PM | ---D | C] - C:\WINDOWS\Temp
[10/10/2007 10:04 PM | 01,826,816 | R--- | C] (Realtek Semiconductor Corp.) - C:\WINDOWS\SkyTel.exe
[10/24/2007 10:57 PM | 16,855,552 | R--- | C] (Realtek Semiconductor Corp.) - C:\WINDOWS\RTHDCPL.exe
[10/30/2007 11:35 PM | 04,702,208 | R--- | C] (Realtek Semiconductor) - C:\WINDOWS\RtHDVCpl.exe
[08/04/2004 07:00 AM | 00,000,065 | RH-- | C] () - C:\WINDOWS\tasks\desktop.ini
[08/25/2008 05:05 PM | 00,000,006 | -H-- | C] () - C:\WINDOWS\tasks\SA.DAT
[08/15/2008 03:19 AM | --SD | C] - C:\Documents and Settings\All Users\Application Data\Microsoft
[08/15/2008 03:35 AM | ---D | C] - C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[08/15/2008 04:14 AM | ---D | C] - C:\Documents and Settings\All Users\Application Data\Avg8
[08/15/2008 05:37 PM | ---D | C] - C:\Documents and Settings\All Users\Application Data\Azureus
[08/15/2008 06:01 PM | ---D | C] - C:\Documents and Settings\All Users\Application Data\Malwarebytes
[08/15/2008 11:05 AM | 00,000,062 | -HS- | C] () - C:\Documents and Settings\All Users\Application Data\desktop.ini
[08/16/2008 01:11 AM | ---D | C] - C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
[08/16/2008 01:59 AM | ---D | C] - C:\Documents and Settings\All Users\Application Data\Hewlett-Packard
[08/16/2008 02:02 AM | ---D | C] - C:\Documents and Settings\All Users\Application Data\WEBREG
[08/18/2008 02:16 PM | ---D | C] - C:\Documents and Settings\All Users\Application Data\vsosdk
[08/18/2008 12:13 AM | ---D | C] - C:\Documents and Settings\All Users\Application Data\HP
[08/22/2008 09:23 PM | ---D | C] - C:\Documents and Settings\All Users\Application Data\DVD Shrink
[08/22/2008 11:12 PM | ---D | C] - C:\Documents and Settings\All Users\Application Data\1Click DVD Copy
[08/15/2008 03:12 AM | ---D | C] - C:\Documents and Settings\Kori\Application Data\Identities
[08/15/2008 04:00 AM | ---D | C] - C:\Documents and Settings\Kori\Application Data\Mozilla
[08/15/2008 05:44 PM | ---D | C] - C:\Documents and Settings\Kori\Application Data\Adobe
[08/15/2008 05:44 PM | ---D | C] - C:\Documents and Settings\Kori\Application Data\Macromedia
[08/15/2008 06:01 PM | ---D | C] - C:\Documents and Settings\Kori\Application Data\Malwarebytes
[08/15/2008 06:13 PM | ---D | C] - C:\Documents and Settings\Kori\Application Data\WinRAR
[08/15/2008 06:19 PM | ---D | C] - C:\Documents and Settings\Kori\Application Data\Winamp
[08/15/2008 06:38 PM | 00,001,144 | ---- | C] () - C:\Documents and Settings\Kori\Application Data\pcouffin.inf
[08/15/2008 06:38 PM | 00,007,887 | ---- | C] () - C:\Documents and Settings\Kori\Application Data\pcouffin.cat
[08/15/2008 06:38 PM | 00,047,360 | ---- | C] (VSO Software) - C:\Documents and Settings\Kori\Application Data\pcouffin.sys
[08/15/2008 06:38 PM | 00,087,608 | ---- | C] () - C:\Documents and Settings\Kori\Application Data\inst.exe
[08/15/2008 06:38 PM | ---D | C] - C:\Documents and Settings\Kori\Application Data\Vso
[08/15/2008 11:05 AM | 00,000,062 | -HS- | C] () - C:\Documents and Settings\Kori\Application Data\desktop.ini
[08/15/2008 11:10 PM | ---D | C] - C:\Documents and Settings\Kori\Application Data\AVGTOOLBAR
[08/16/2008 02:04 AM | ---D | C] - C:\Documents and Settings\Kori\Application Data\HP
[08/16/2008 12:04 AM | ---D | C] - C:\Documents and Settings\Kori\Application Data\Sun
[08/20/2008 11:31 PM | --SD | C] - C:\Documents and Settings\Kori\Application Data\Microsoft
[08/22/2008 01:27 PM | ---D | C] - C:\Documents and Settings\Kori\Application Data\Pegasys Inc
[08/22/2008 01:29 PM | ---D | C] - C:\Documents and Settings\Kori\Application Data\LEAPS
[08/22/2008 02:03 PM | ---D | C] - C:\Documents and Settings\Kori\Application Data\DivX
[08/22/2008 11:13 PM | ---D | C] - C:\Documents and Settings\Kori\Application Data\Azureus
[08/15/2008 04:00 AM | ---D | C] - C:\Documents and Settings\Kori\Local Settings\Application Data\Mozilla
[08/15/2008 05:37 PM | 00,013,104 | ---- | C] () - C:\Documents and Settings\Kori\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[08/15/2008 07:44 PM | ---D | C] - C:\Documents and Settings\Kori\Local Settings\Application Data\Stardock
[08/16/2008 01:06 AM | ---D | C] - C:\Documents and Settings\Kori\Local Settings\Application Data\Microsoft
[08/20/2008 11:31 PM | ---D | C] - C:\Documents and Settings\Kori\Local Settings\Application Data\Identities
[08/21/2008 12:28 AM | 05,332,426 | -H-- | C] () - C:\Documents and Settings\Kori\Local Settings\Application Data\IconCache.db
[08/22/2008 02:05 PM | ---D | C] - C:\Documents and Settings\Kori\Local Settings\Application Data\1Click DVD Copy
[08/15/2008 03:08 AM | R--D | C] - C:\Documents and Settings\All Users\Documents\My Pictures
[08/15/2008 08:58 PM | ---D | C] - C:\Documents and Settings\All Users\Documents\Stardock
[08/15/2008 11:04 PM | R--D | C] - C:\Documents and Settings\All Users\Documents\My Music
[08/15/2008 11:05 AM | 00,000,062 | -HS- | C] () - C:\Documents and Settings\All Users\Documents\desktop.ini
[08/15/2008 11:05 PM | R--D | C] - C:\Documents and Settings\All Users\Documents\My Videos
[08/16/2008 01:06 AM | 00,000,075 | -HS- | C] () - C:\Documents and Settings\Kori\My Documents\desktop.ini
[08/16/2008 01:06 AM | R--D | C] - C:\Documents and Settings\Kori\My Documents\My Pictures
[08/20/2008 07:24 PM | R--D | C] - C:\Documents and Settings\Kori\My Documents\My Music
[08/22/2008 02:48 PM | R--D | C] - C:\Documents and Settings\Kori\My Documents\My Movies
[08/22/2008 09:48 PM | ---D | C] - C:\Documents and Settings\Kori\My Documents\TMPGEnc DVD Author 3
[08/22/2008 10:45 PM | ---D | C] - C:\Documents and Settings\Kori\My Documents\My Torrents
[08/18/2008 12:13 PM | 19,153,264 | ---- | C] () - C:\Documents and Settings\Kori\Desktop\aaw2008.exe
[08/18/2008 12:14 AM | 00,005,664 | ---- | C] () - C:\Documents and Settings\Kori\Desktop\cc_20080818_001408.reg
[08/20/2008 05:03 PM | 03,113,143 | ---- | C] () - C:\Documents and Settings\Kori\Desktop\Setup_MagicISO.exe
[08/25/2008 07:28 PM | 01,299,968 | ---- | C] (OldTimer Tools) - C:\Documents and Settings\Kori\Desktop\OTViewIt.exe
[08/15/2008 03:09 AM | 00,000,084 | -HS- | C] () - C:\Documents and Settings\All Users\Start Menu\Programs\Startup\desktop.ini
[08/15/2008 03:09 AM | 00,000,084 | -HS- | C] () - C:\Documents and Settings\Kori\Start Menu\Programs\Startup\desktop.ini
[08/15/2008 03:08 AM | ---D | C] - C:\Program Files\Common Files\MSSoap
[08/15/2008 03:08 AM | ---D | C] - C:\Program Files\Common Files\Services
[08/15/2008 03:29 AM | ---D | C] - C:\Program Files\Common Files\Microsoft Shared
[08/15/2008 03:48 AM | ---D | C] - C:\Program Files\Common Files\System
[08/15/2008 05:34 PM | ---D | C] - C:\Program Files\Common Files\Java
[08/15/2008 08:07 PM | ---D | C] - C:\Program Files\Common Files\stardock
[08/15/2008 11:05 AM | ---D | C] - C:\Program Files\Common Files\ODBC
[08/15/2008 11:05 AM | ---D | C] - C:\Program Files\Common Files\SpeechEngines
[08/16/2008 02:00 AM | ---D | C] - C:\Program Files\Common Files\Hewlett-Packard
[08/22/2008 01:23 PM | ---D | C] - C:\Program Files\Common Files\InstallShield
[08/15/2008 03:06 AM | ---D | C] - C:\Program Files\MSN
[08/15/2008 03:06 AM | ---D | C] - C:\Program Files\MSN Gaming Zone
[08/15/2008 03:07 AM | ---D | C] - C:\Program Files\ComPlus Applications
[08/15/2008 03:07 AM | ---D | C] - C:\Program Files\Online Services
[08/15/2008 03:08 AM | -H-D | C] - C:\Program Files\WindowsUpdate
[08/15/2008 03:09 AM | ---D | C] - C:\Program Files\microsoft frontpage
[08/15/2008 03:09 AM | ---D | C] - C:\Program Files\xerox
[08/15/2008 03:12 AM | -H-D | C] - C:\Program Files\Uninstall Information
[08/15/2008 03:49 AM | ---D | C] - C:\Program Files\NetMeeting
[08/15/2008 03:49 AM | ---D | C] - C:\Program Files\Outlook Express
[08/15/2008 03:49 AM | ---D | C] - C:\Program Files\Windows NT
[08/15/2008 03:50 AM | ---D | C] - C:\Program Files\Movie Maker
[08/15/2008 04:14 AM | ---D | C] - C:\Program Files\AVG
[08/15/2008 04:19 AM | ---D | C] - C:\Program Files\DivX
[08/15/2008 05:22 PM | ---D | C] - C:\Program Files\CCleaner
[08/15/2008 05:25 PM | ---D | C] - C:\Program Files\Realtek
[08/15/2008 05:25 PM | -H-D | C] - C:\Program Files\InstallShield Installation Information
[08/15/2008 05:35 PM | ---D | C] - C:\Program Files\Java
[08/15/2008 05:36 PM | ---D | C] - C:\Program Files\Vuze
[08/15/2008 06:01 PM | ---D | C] - C:\Program Files\Malwarebytes' Anti-Malware
[08/15/2008 06:06 PM | ---D | C] - C:\Program Files\WinRAR
[08/15/2008 06:15 PM | ---D | C] - C:\Program Files\Winamp
[08/15/2008 06:38 PM | ---D | C] - C:\Program Files\LG Software Innovations
[08/15/2008 06:41 PM | ---D | C] - C:\Program Files\dvd43
[08/15/2008 06:48 PM | ---D | C] - C:\Program Files\Spybot - Search & Destroy
[08/15/2008 07:44 PM | ---D | C] - C:\Program Files\Common Files
[08/15/2008 08:58 PM | ---D | C] - C:\Program Files\Stardock
[08/15/2008 11:04 PM | ---D | C] - C:\Program Files\Windows Media Connect 2
[08/15/2008 11:04 PM | ---D | C] - C:\Program Files\Windows Media Player
[08/15/2008 11:08 PM | ---D | C] - C:\Program Files\Netflix
[08/16/2008 01:04 AM | ---D | C] - C:\Program Files\Messenger
[08/16/2008 12:01 AM | ---D | C] - C:\Program Files\FinalBurner
[08/16/2008 12:01 AM | ---D | C] - C:\Program Files\Trend Micro
[08/18/2008 12:11 AM | ---D | C] - C:\Program Files\Internet Explorer
[08/22/2008 01:00 PM | ---D | C] - C:\Program Files\DVD Shrink
[08/22/2008 01:23 PM | ---D | C] - C:\Program Files\Pegasys Inc
[08/22/2008 12:33 PM | ---D | C] - C:\Program Files\DVD Decrypter
[08/25/2008 07:03 PM | ---D | C] - C:\Program Files\Mozilla Firefox

[Files/Folders - Modified Within 30 days]
[08/15/2008 01:26 PM | ---D | M] - C:\Intel
[08/15/2008 03:05 AM | 00,000,211 | -HS- | M] () - C:\boot.ini
[08/15/2008 03:09 AM | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT
[08/15/2008 03:09 AM | 00,000,000 | ---- | M] () - C:\CONFIG.SYS
[08/15/2008 03:09 AM | 00,000,000 | RHS- | M] () - C:\IO.SYS
[08/15/2008 03:09 AM | 00,000,000 | RHS- | M] () - C:\MSDOS.SYS
[08/15/2008 03:12 AM | -HSD | M] - C:\System Volume Information
[08/15/2008 03:31 AM | -HSD | M] - C:\RECYCLER
[08/15/2008 03:47 AM | 00,250,048 | RHS- | M] () - C:\ntldr
[08/15/2008 06:12 PM | ---D | M] - C:\temp_dvd
[08/15/2008 10:14 PM | ---D | M] - C:\Documents and Settings
[08/16/2008 12:25 AM | -H-D | M] - C:\$AVG8.VAULT$
[08/22/2008 01:23 PM | -H-D | M] - C:\Config.Msi
[08/22/2008 01:23 PM | R--D | M] - C:\Program Files
[08/22/2008 01:27 PM | ---D | M] - C:\WINDOWS
[08/22/2008 02:17 PM | ---D | M] - C:\WIZARD OF GORE
[08/22/2008 02:23 PM | ---D | M] - C:\ZOMBIES_ANONYMOUS
[08/22/2008 03:09 PM | ---D | M] - C:\SHORTBUS_TF_US
[08/22/2008 03:25 PM | ---D | M] - C:\QUID_PRO_QUO
[08/15/2008 04:14 AM | 00,211,986 | ---- | M] () - C:\WINDOWS\System32\drivers\Avg\miniavi.avg
[08/15/2008 04:14 AM | 06,061,540 | ---- | M] () - C:\WINDOWS\System32\drivers\Avg\avi7.avg
[08/23/2008 11:58 AM | 00,067,349 | ---- | M] () - C:\WINDOWS\System32\drivers\Avg\microavi.avg
[08/25/2008 12:51 PM | 26,587,220 | ---- | M] () - C:\WINDOWS\System32\drivers\Avg\incavi.avm
[08/15/2008 11:03 PM | 00,000,000 | -H-- | M] () - C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[07/30/2008 08:07 PM | 00,017,144 | ---- | M] (Malwarebytes Corporation) - C:\WINDOWS\System32\drivers\mbam.sys
[07/30/2008 08:07 PM | 00,038,472 | ---- | M] (Malwarebytes Corporation) - C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[08/15/2008 04:14 AM | 00,026,824 | ---- | M] (AVG Technologies CZ, s.r.o.) - C:\WINDOWS\System32\drivers\avgmfx86.sys
[08/15/2008 04:14 AM | 00,076,040 | ---- | M] (AVG Technologies CZ, s.r.o.) - C:\WINDOWS\System32\drivers\avgtdix.sys
[08/15/2008 04:14 AM | 00,096,520 | ---- | M] (AVG Technologies CZ, s.r.o.) - C:\WINDOWS\System32\drivers\avgldx86.sys
[08/15/2008 06:38 PM | 00,047,360 | ---- | M] (VSO Software) - C:\WINDOWS\System32\drivers\pcouffin.sys
[08/15/2008 06:41 PM | 00,018,816 | ---- | M] (RIF) - C:\WINDOWS\System32\drivers\dvd43llh.sys
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\System32\drivers\disdn
[08/15/2008 10:58 AM | ---D | M] - C:\WINDOWS\System32\drivers\etc
[08/15/2008 11:04 PM | ---D | M] - C:\WINDOWS\System32\drivers\UMDF
[08/22/2008 01:23 PM | 00,033,408 | ---- | M] (B.H.A Corporation) - C:\WINDOWS\System32\drivers\CDRBSDRV.SYS
[08/25/2008 12:51 PM | ---D | M] - C:\WINDOWS\System32\drivers\Avg
[1 C:\WINDOWS\System32\*.tmp files]
[08/15/2008 01:26 PM | ---D | M] - C:\WINDOWS\System32\Lang
[08/15/2008 03:05 AM | ---D | M] - C:\WINDOWS\System32\spool
[08/15/2008 03:07 AM | 00,021,640 | ---- | M] () - C:\WINDOWS\System32\emptyregdb.dat
[08/15/2008 03:07 AM | ---D | M] - C:\WINDOWS\System32\MsDtc
[08/15/2008 03:08 AM | 00,000,488 | RH-- | M] () - C:\WINDOWS\System32\logonui.exe.manifest
[08/15/2008 03:08 AM | 00,000,488 | RH-- | M] () - C:\WINDOWS\System32\WindowsLogon.manifest
[08/15/2008 03:08 AM | 00,000,749 | RH-- | M] () - C:\WINDOWS\System32\cdplayer.exe.manifest
[08/15/2008 03:08 AM | 00,000,749 | RH-- | M] () - C:\WINDOWS\System32\ncpa.cpl.manifest
[08/15/2008 03:08 AM | 00,000,749 | RH-- | M] () - C:\WINDOWS\System32\nwc.cpl.manifest
[08/15/2008 03:08 AM | 00,000,749 | RH-- | M] () - C:\WINDOWS\System32\sapi.cpl.manifest
[08/15/2008 03:08 AM | 00,000,749 | RH-- | M] () - C:\WINDOWS\System32\wuaucpl.cpl.manifest
[08/15/2008 03:08 AM | ---D | M] - C:\WINDOWS\System32\DirectX
[08/15/2008 03:08 AM | ---D | M] - C:\WINDOWS\System32\Macromed
[08/15/2008 03:09 AM | 00,002,577 | ---- | M] () - C:\WINDOWS\System32\CONFIG.NT
[08/15/2008 03:09 AM | ---D | M] - C:\WINDOWS\System32\xircom
[08/15/2008 03:10 AM | 00,000,261 | ---- | M] () - C:\WINDOWS\System32\$winnt$.inf
[08/15/2008 03:11 AM | ---D | M] - C:\WINDOWS\System32\config
[08/15/2008 03:11 AM | --SD | M] - C:\WINDOWS\System32\Microsoft
[08/15/2008 03:20 AM | 00,013,646 | ---- | M] () - C:\WINDOWS\System32\wpa.bak
[08/15/2008 03:20 AM | ---D | M] - C:\WINDOWS\System32\SoftwareDistribution
[08/15/2008 03:30 AM | ---D | M] - C:\WINDOWS\System32\PreInstall
[08/15/2008 03:47 AM | ---D | M] - C:\WINDOWS\System32\ReinstallBackups
[08/15/2008 03:48 AM | ---D | M] - C:\WINDOWS\System32\oobe
[08/15/2008 03:49 AM | ---D | M] - C:\WINDOWS\System32\Com
[08/15/2008 03:49 AM | ---D | M] - C:\WINDOWS\System32\npp
[08/15/2008 03:49 AM | ---D | M] - C:\WINDOWS\System32\Restore
[08/15/2008 03:50 AM | ---D | M] - C:\WINDOWS\System32\bits
[08/15/2008 03:50 AM | ---D | M] - C:\WINDOWS\System32\en
[08/15/2008 03:50 AM | ---D | M] - C:\WINDOWS\System32\scripting
[08/15/2008 03:50 AM | ---D | M] - C:\WINDOWS\System32\usmt
[08/15/2008 03:53 AM | 00,091,888 | ---- | M] () - C:\WINDOWS\System32\FNTCACHE.DAT
[08/15/2008 03:53 AM | ---D | M] - C:\WINDOWS\System32\Setup
[08/15/2008 03:53 AM | ---D | M] - C:\WINDOWS\System32\wbem
[08/15/2008 04:14 AM | 00,010,520 | ---- | M] (AVG Technologies CZ, s.r.o.) - C:\WINDOWS\System32\avgrsstx.dll
[08/15/2008 04:27 AM | 00,000,664 | ---- | M] () - C:\WINDOWS\System32\d3d9caps.dat
[08/15/2008 05:11 PM | ---D | M] - C:\WINDOWS\System32\CatRoot
[08/15/2008 05:26 PM | ---D | M] - C:\WINDOWS\System32\RTCOM
[08/15/2008 05:29 PM | 00,146,650 | ---- | M] () - C:\WINDOWS\System32\BuzzingBee.wav
[08/15/2008 05:29 PM | 00,940,794 | ---- | M] () - C:\WINDOWS\System32\LoopyMusic.wav
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\System32\1025
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\System32\1028
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\System32\1031
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\System32\1037
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\System32\1041
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\System32\1042
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\System32\1054
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\System32\2052
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\System32\3076
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\System32\3com_dmi
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\System32\dhcp
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\System32\export
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\System32\IME
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\System32\inetsrv
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\System32\mui
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\System32\ShellExt
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\System32\wins
[08/15/2008 10:58 AM | ---D | M] - C:\WINDOWS\System32\1033
[08/15/2008 10:58 AM | ---D | M] - C:\WINDOWS\System32\ias
[08/15/2008 10:58 AM | ---D | M] - C:\WINDOWS\System32\icsxml
[08/15/2008 10:59 AM | ---D | M] - C:\WINDOWS\System32\ras
[08/15/2008 11:03 PM | ---D | M] - C:\WINDOWS\System32\LogFiles
[08/15/2008 11:04 PM | 00,016,832 | ---- | M] () - C:\WINDOWS\System32\amcompat.tlb
[08/15/2008 11:04 PM | 00,023,392 | ---- | M] () - C:\WINDOWS\System32\nscompat.tlb
[08/18/2008 12:02 AM | ---D | M] - C:\WINDOWS\System32\DRVSTORE
[08/18/2008 12:11 AM | ---D | M] - C:\WINDOWS\System32\en-us
[08/22/2008 01:23 PM | 00,059,488 | ---- | M] (B.H.A Corporation) - C:\WINDOWS\System32\GenSvcInst.exe
[08/22/2008 01:23 PM | 00,145,504 | ---- | M] (B.H.A Corporation) - C:\WINDOWS\System32\bgsvcgen.exe
[08/22/2008 01:23 PM | ---D | M] - C:\WINDOWS\System32\drivers
[08/22/2008 01:27 PM | ---D | M] - C:\WINDOWS\System32\CatRoot2
[08/22/2008 01:27 PM | RHSD | M] - C:\WINDOWS\System32\dllcache
[08/24/2008 05:33 PM | 00,013,646 | ---- | M] () - C:\WINDOWS\System32\wpa.dbl
[08/25/2008 05:09 PM | 00,040,196 | ---- | M] () - C:\WINDOWS\System32\perfc009.dat
[08/25/2008 05:09 PM | 00,311,934 | ---- | M] () - C:\WINDOWS\System32\perfh009.dat
[08/25/2008 05:09 PM | 00,356,120 | ---- | M] () - C:\WINDOWS\System32\PerfStringBackup.INI
[4 C:\WINDOWS\*.tmp files]
[08/15/2008 01:31 PM | 00,315,392 | ---- | M] (Realtek Semiconductor Corp.) - C:\WINDOWS\HideWin.exe
[08/15/2008 03:06 AM | ---D | M] - C:\WINDOWS\Cursors
[08/15/2008 03:07 AM | 00,000,036 | ---- | M] () - C:\WINDOWS\vb.ini
[08/15/2008 03:07 AM | 00,000,037 | ---- | M] () - C:\WINDOWS\vbaddin.ini
[08/15/2008 03:07 AM | ---D | M] - C:\WINDOWS\pchealth
[08/15/2008 03:08 AM | 00,000,749 | RH-- | M] () - C:\WINDOWS\WindowsShell.Manifest
[08/15/2008 03:08 AM | R--D | M] - C:\WINDOWS\Offline Web Pages
[08/15/2008 03:08 AM | R--D | M] - C:\WINDOWS\Web
[08/15/2008 03:08 AM | --SD | M] - C:\WINDOWS\Downloaded Program Files
[08/15/2008 03:09 AM | 00,000,000 | ---- | M] () - C:\WINDOWS\control.ini
[08/15/2008 03:09 AM | 00,004,161 | ---- | M] () - C:\WINDOWS\ODBCINST.INI
[08/15/2008 03:09 AM | ---D | M] - C:\WINDOWS\Registration
[08/15/2008 03:11 AM | 00,008,192 | ---- | M] () - C:\WINDOWS\REGLOCS.OLD
[08/15/2008 03:11 AM | --SD | M] - C:\WINDOWS\Tasks
[08/15/2008 03:34 AM | ---D | M] - C:\WINDOWS\SoftwareDistribution
[08/15/2008 03:46 AM | ---D | M] - C:\WINDOWS\EHome
[08/15/2008 03:47 AM | -H-D | M] - C:\WINDOWS\$NtServicePackUninstall$
[08/15/2008 03:48 AM | ---D | M] - C:\WINDOWS\system
[08/15/2008 03:49 AM | ---D | M] - C:\WINDOWS\msagent
[08/15/2008 03:49 AM | ---D | M] - C:\WINDOWS\ServicePackFiles
[08/15/2008 03:49 AM | ---D | M] - C:\WINDOWS\srchasst
[08/15/2008 03:50 AM | ---D | M] - C:\WINDOWS\ime
[08/15/2008 03:50 AM | ---D | M] - C:\WINDOWS\l2schemas
[08/15/2008 03:50 AM | ---D | M] - C:\WINDOWS\network diagnostic
[08/15/2008 03:50 AM | ---D | M] - C:\WINDOWS\PeerNet
[08/15/2008 03:53 AM | ---D | M] - C:\WINDOWS\AppPatch
[08/15/2008 03:53 AM | R-SD | M] - C:\WINDOWS\Fonts
[08/15/2008 04:00 AM | 00,000,000 | ---- | M] () - C:\WINDOWS\nsreg.dat
[08/15/2008 05:25 PM | 00,011,617 | ---- | M] () - C:\WINDOWS\Ascd_tmp.ini
[08/15/2008 06:06 PM | ---D | M] - C:\WINDOWS\WinRAR
[08/15/2008 06:15 PM | 00,316,640 | ---- | M] () - C:\WINDOWS\WMSysPr9.prx
[08/15/2008 06:15 PM | ---D | M] - C:\WINDOWS\RegisteredPackages
[08/15/2008 06:15 PM | ---D | M] - C:\WINDOWS\security
[08/15/2008 08:36 PM | 00,000,000 | ---- | M] () - C:\WINDOWS\WB.ini
[08/15/2008 08:41 PM | 00,002,560 | ---- | M] () - C:\WINDOWS\_MSRSTRT.EXE
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\addins
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\Config
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\Connection Wizard
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\Driver Cache
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\java
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\msapps
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\mui
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\Provisioning
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\repair
[08/15/2008 10:57 AM | ---D | M] - C:\WINDOWS\Resources
[08/15/2008 11:05 AM | 00,000,231 | ---- | M] () - C:\WINDOWS\system.ini
[08/16/2008 01:02 AM | -H-D | M] - C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
[08/16/2008 01:02 AM | -H-D | M] - C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
[08/16/2008 01:03 AM | ---D | M] - C:\WINDOWS\Media
[08/16/2008 01:03 AM | ---D | M] - C:\WINDOWS\WBEM
[08/16/2008 01:03 AM | -H-D | M] - C:\WINDOWS\ie7
[08/16/2008 01:11 AM | ---D | M] - C:\WINDOWS\Debug
[08/16/2008 02:01 AM | 00,000,589 | ---- | M] () - C:\WINDOWS\win.ini
[08/16/2008 12:04 AM | ---D | M] - C:\WINDOWS\Sun
[08/18/2008 12:02 AM | ---D | M] - C:\WINDOWS\twain_32
[08/18/2008 12:02 AM | ---D | M] - C:\WINDOWS\WinSxS
[08/18/2008 12:10 AM | ---D | M] - C:\WINDOWS\ie7updates
[08/18/2008 12:10 AM | -H-D | M] - C:\WINDOWS\$hf_mig$
[08/22/2008 01:23 PM | -HSD | M] - C:\WINDOWS\Installer
[08/22/2008 11:55 AM | ---D | M] - C:\WINDOWS\Help
[08/22/2008 11:55 AM | -H-D | M] - C:\WINDOWS\inf
[08/25/2008 05:05 PM | 00,002,048 | --S- | M] () - C:\WINDOWS\bootstat.dat
[08/25/2008 05:09 PM | ---D | M] - C:\WINDOWS\system32
[08/25/2008 07:29 PM | ---D | M] - C:\WINDOWS\Prefetch
[08/25/2008 07:29 PM | ---D | M] - C:\WINDOWS\Temp
[08/25/2008 05:05 PM | 00,000,006 | -H-- | M] () - C:\WINDOWS\tasks\SA.DAT
[08/15/2008 03:19 AM | --SD | M] - C:\Documents and Settings\All Users\Application Data\Microsoft
[08/15/2008 03:35 AM | ---D | M] - C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[08/15/2008 04:14 AM | ---D | M] - C:\Documents and Settings\All Users\Application Data\Avg8
[08/15/2008 05:37 PM | ---D | M] - C:\Documents and Settings\All Users\Application Data\Azureus
[08/15/2008 06:01 PM | ---D | M] - C:\Documents and Settings\All Users\Application Data\Malwarebytes
[08/15/2008 11:05 AM | 00,000,062 | -HS- | M] () - C:\Documents and Settings\All Users\Application Data\desktop.ini
[08/16/2008 01:11 AM | ---D | M] - C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
[08/16/2008 01:59 AM | ---D | M] - C:\Documents and Settings\All Users\Application Data\Hewlett-Packard
[08/16/2008 02:02 AM | ---D | M] - C:\Documents and Settings\All Users\Application Data\WEBREG
[08/18/2008 02:16 PM | ---D | M] - C:\Documents and Settings\All Users\Application Data\vsosdk
[08/18/2008 12:13 AM | ---D | M] - C:\Documents and Settings\All Users\Application Data\HP
[08/22/2008 09:23 PM | ---D | M] - C:\Documents and Settings\All Users\Application Data\DVD Shrink
[08/22/2008 11:12 PM | ---D | M] - C:\Documents and Settings\All Users\Application Data\1Click DVD Copy
[08/15/2008 03:12 AM | ---D | M] - C:\Documents and Settings\Kori\Application Data\Identities
[08/15/2008 04:00 AM | ---D | M] - C:\Documents and Settings\Kori\Application Data\Mozilla
[08/15/2008 05:44 PM | ---D | M] - C:\Documents and Settings\Kori\Application Data\Adobe
[08/15/2008 05:44 PM | ---D | M] - C:\Documents and Settings\Kori\Application Data\Macromedia
[08/15/2008 06:01 PM | ---D | M] - C:\Documents and Settings\Kori\Application Data\Malwarebytes
[08/15/2008 06:13 PM | ---D | M] - C:\Documents and Settings\Kori\Application Data\WinRAR
[08/15/2008 06:19 PM | ---D | M] - C:\Documents and Settings\Kori\Application Data\Winamp
[08/15/2008 06:38 PM | 00,001,144 | ---- | M] () - C:\Documents and Settings\Kori\Application Data\pcouffin.inf
[08/15/2008 06:38 PM | 00,007,887 | ---- | M] () - C:\Documents and Settings\Kori\Application Data\pcouffin.cat
[08/15/2008 06:38 PM | 00,047,360 | ---- | M] (VSO Software) - C:\Documents and Settings\Kori\Application Data\pcouffin.sys
[08/15/2008 06:38 PM | 00,087,608 | ---- | M] () - C:\Documents and Settings\Kori\Application Data\inst.exe
[08/15/2008 06:38 PM | ---D | M] - C:\Documents and Settings\Kori\Application Data\Vso
[08/15/2008 11:05 AM | 00,000,062 | -HS- | M] () - C:\Documents and Settings\Kori\Application Data\desktop.ini
[08/15/2008 11:10 PM | ---D | M] - C:\Documents and Settings\Kori\Application Data\AVGTOOLBAR
[08/16/2008 02:04 AM | ---D | M] - C:\Documents and Settings\Kori\Application Data\HP
[08/16/2008 12:04 AM | ---D | M] - C:\Documents and Settings\Kori\Application Data\Sun
[08/20/2008 11:31 PM | --SD | M] - C:\Documents and Settings\Kori\Application Data\Microsoft
[08/22/2008 01:27 PM | ---D | M] - C:\Documents and Settings\Kori\Application Data\Pegasys Inc
[08/22/2008 01:29 PM | ---D | M] - C:\Documents and Settings\Kori\Application Data\LEAPS
[08/22/2008 02:03 PM | ---D | M] - C:\Documents and Settings\Kori\Application Data\DivX
[08/22/2008 11:13 PM | ---D | M] - C:\Documents and Settings\Kori\Application Data\Azureus
[08/15/2008 04:00 AM | ---D | M] - C:\Documents and Settings\Kori\Local Settings\Application Data\Mozilla
[08/15/2008 05:37 PM | 00,013,104 | ---- | M] () - C:\Documents and Settings\Kori\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[08/15/2008 07:44 PM | ---D | M] - C:\Documents and Settings\Kori\Local Settings\Application Data\Stardock
[08/16/2008 01:06 AM | ---D | M] - C:\Documents and Settings\Kori\Local Settings\Application Data\Microsoft
[08/20/2008 11:31 PM | ---D | M] - C:\Documents and Settings\Kori\Local Settings\Application Data\Identities
[08/21/2008 12:28 AM | 05,332,426 | -H-- | M] () - C:\Documents and Settings\Kori\Local Settings\Application Data\IconCache.db
[08/22/2008 02:05 PM | ---D | M] - C:\Documents and Settings\Kori\Local Settings\Application Data\1Click DVD Copy
[08/15/2008 03:08 AM | R--D | M] - C:\Documents and Settings\All Users\Documents\My Pictures
[08/15/2008 08:58 PM | ---D | M] - C:\Documents and Settings\All Users\Documents\Stardock
[08/15/2008 11:04 PM | R--D | M] - C:\Documents and Settings\All Users\Documents\My Music
[08/15/2008 11:05 AM | 00,000,062 | -HS- | M] () - C:\Documents and Settings\All Users\Documents\desktop.ini
[08/15/2008 11:05 PM | R--D | M] - C:\Documents and Settings\All Users\Documents\My Videos
[08/16/2008 01:06 AM | 00,000,075 | -HS- | M] () - C:\Documents and Settings\Kori\My Documents\desktop.ini
[08/16/2008 01:06 AM | R--D | M] - C:\Documents and Settings\Kori\My Documents\My Pictures
[08/20/2008 07:24 PM | R--D | M] - C:\Documents and Settings\Kori\My Documents\My Music
[08/22/2008 02:48 PM | R--D | M] - C:\Documents and Settings\Kori\My Documents\My Movies
[08/22/2008 09:48 PM | ---D | M] - C:\Documents and Settings\Kori\My Documents\TMPGEnc DVD Author 3
[08/22/2008 10:45 PM | ---D | M] - C:\Documents and Settings\Kori\My Documents\My Torrents
[08/18/2008 12:13 PM | 19,153,264 | ---- | M] () - C:\Documents and Settings\Kori\Desktop\aaw2008.exe
[08/18/2008 12:14 AM | 00,005,664 | ---- | M] () - C:\Documents and Settings\Kori\Desktop\cc_20080818_001408.reg
[08/20/2008 05:03 PM | 03,113,143 | ---- | M] () - C:\Documents and Settings\Kori\Desktop\Setup_MagicISO.exe
[08/25/2008 07:28 PM | 01,299,968 | ---- | M] (OldTimer Tools) - C:\Documents and Settings\Kori\Desktop\OTViewIt.exe
[08/15/2008 03:09 AM | 00,000,084 | -HS- | M] () - C:\Documents and Settings\All Users\Start Menu\Programs\Startup\desktop.ini
[08/15/2008 03:09 AM | 00,000,084 | -HS- | M] () - C:\Documents and Settings\Kori\Start Menu\Programs\Startup\desktop.ini
[08/15/2008 03:08 AM | ---D | M] - C:\Program Files\Common Files\MSSoap
[08/15/2008 03:08 AM | ---D | M] - C:\Program Files\Common Files\Services
[08/15/2008 03:29 AM | ---D | M] - C:\Program Files\Common Files\Microsoft Shared
[08/15/2008 03:48 AM | ---D | M] - C:\Program Files\Common Files\System
[08/15/2008 05:34 PM | ---D | M] - C:\Program Files\Common Files\Java
[08/15/2008 08:07 PM | ---D | M] - C:\Program Files\Common Files\stardock
[08/15/2008 11:05 AM | ---D | M] - C:\Program Files\Common Files\ODBC
[08/15/2008 11:05 AM | ---D | M] - C:\Program Files\Common Files\SpeechEngines
[08/16/2008 02:00 AM | ---D | M] - C:\Program Files\Common Files\Hewlett-Packard
[08/22/2008 01:23 PM | ---D | M] - C:\Program Files\Common Files\InstallShield

< End of report >
  • 0

#6
soitscometothis
Posted 25 August 2008 - 06:35 PM

soitscometothis

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts
OTViewIt Extras logfile created on: 8/25/2008 7:29:19 PM - Run 1
OTViewIt by OldTimer - Version 1.0.0.12 Folder = C:\Documents and Settings\Kori\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.99 Gb Total Physical Memory | 1.57 Gb Available Physical Memory | 79.04% Memory free
3.84 Gb Paging File | 3.54 Gb Available in Paging File | 92.15% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 298.08 Gb Total Space | 246.81 Gb Free Space | 82.80% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

===== File Associations =====

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.bat [@ = batfile] - File not found -
.cmd [@ = cmdfile] - File not found -
.com [@ = comfile] - File not found -
.exe [@ = exefile] - File not found -
.pif [@ = piffile] - File not found -
.scr [@ = scrfile] - File not found -

===== Uninstall List =====

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{1A3E23D7-7A1E-43EC-B35D-EB8A31BED943}" = FinalBurner Free v2.2.0.132
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java™ 6 Update 7
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3E9F2540-DD55-42FB-8EB6-5508EEC54013}" = TMPGEnc DVD Author 3 with DivX Authoring
"{543E938C-BDC4-4933-A612-01293996845F}" = UnloadSupport
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{BCE72AED-3332-4863-9567-C5DCB9052CA2}" = Netflix Movie Viewer
"{E2662C24-B31E-4349-A084-32EB76E8B760}" = BufferChm
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}" = 32 Bit HP CIO Components Installer
"1Click DVD Copy 5_is1" = 1Click DVD Copy 5.4.3.8
"Adobe Flash Player Plugin" = Adobe Flash Player Plugin
"AVG8Uninstall" = AVG Free 8.0
"CCleaner" = CCleaner (remove only)
"DVD Decrypter" = DVD Decrypter (Remove Only)
"DVD Shrink_is1" = DVD Shrink 3.2
"DVD43_is1" = DVD43 v4.3.1
"FoxyTunesForFirefox" = FoxyTunes for Firefox
"HDMI" = Intel® Graphics Media Accelerator Driver
"HijackThis" = HijackThis 2.0.2
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"KB892130" = Windows Genuine Advantage Validation Tool (KB892130)
"KB923789" = Security Update for Windows XP (KB923789)
"KB929399" = Hotfix for Windows Media Format 11 SDK (KB929399)
"KB936782_WMP11" = Security Update for Windows Media Player 11 (KB936782)
"KB939683" = Hotfix for Windows Media Player 11 (KB939683)
"KB941569" = Security Update for Windows XP (KB941569)
"KB946648" = Security Update for Windows XP (KB946648)
"KB950762" = Security Update for Windows XP (KB950762)
"KB950974" = Security Update for Windows XP (KB950974)
"KB951066" = Security Update for Windows XP (KB951066)
"KB951072-v2" = Update for Windows XP (KB951072-v2)
"KB951376-v2" = Security Update for Windows XP (KB951376-v2)
"KB951698" = Security Update for Windows XP (KB951698)
"KB951748" = Security Update for Windows XP (KB951748)
"KB951978" = Update for Windows XP (KB951978)
"KB952287" = Hotfix for Windows XP (KB952287)
"KB952954" = Security Update for Windows XP (KB952954)
"KB953838" = Security Update for Windows XP (KB953838)
"KB953838-IE7" = Security Update for Windows Internet Explorer 7 (KB953838)
"KB953839" = Security Update for Windows XP (KB953839)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox (3.0.1)" = Mozilla Firefox (3.0.1)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"Vuze" = Vuze
"WGA" = Windows Genuine Advantage Validation Tool (KB892130)
"Winamp" = Winamp
"WindowBlinds" = WindowBlinds
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

===== Uninstall List =====


===== Winsock2 Catalogs =====

===== Protocol Defaults =====


===== Protocol Defaults =====


===== Protocol Handlers =====

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\]
ipp: [HKLM - No CLSID value]

linkscanner:{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} [HKLM - XPLPPFilter Class]
[08/15/2008 04:14 AM | 00,079,128 | ---- | M] (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG8\avgpp.dll
msdaipp: [HKLM - No CLSID value]

===== Protocol Filters =====

< End of report >
  • 0

#7
soitscometothis
Posted 25 August 2008 - 06:39 PM

soitscometothis

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts
i know that i don't get much form reading these, and it may just be a ridiculous question...
but if it was searching for files created in the last thirty days, why do the dates go back farther?
and how could they when i just put this computer together less than a month ago?
  • 0

#8
emeraldnzl
Posted 26 August 2008 - 02:18 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Hello soitscometothis,

i know that i don't get much form reading these, and it may just be a ridiculous question...
but if it was searching for files created in the last thirty days, why do the dates go back farther?
and how could they when i just put this computer together less than a month ago?


Don't know why that is. They are genuine files though. Might be something to do with your building the computer and your updates.

Can't see any problems there.

Lets try an on line scan.

Kaspersky only works if you are using Internet Explorer.

Please do an online scan with Kaspersky WebScanner.

Click on the Kaspersky Online Scanner button. A box will come up, click Accept, this will allow it to install an ActiveX component and download its latest anti-virus database. (Note: It may take a couple of minutes)

  • Once the files have been downloaded click on NEXT
  • Now click on Scan Settings
  • In the scan settings make that the following are selected:
    * Scan using the following Anti-Virus database:
    Extended (if available otherwise Standard)
    * Scan Options:
    Scan Archives
    Scan Mail Bases
  • Click OK
  • Now under select a target to scan:
    Select My Computer
  • This will program will start and scan your system.
  • The scan will take a while so be patient and let it run.
  • Once the scan is complete it will display if your system has been infected.
    * Now click on the Save as Text button:
  • Save the file to your desktop.
Copy and paste that information in your next post.
  • 0

#9
soitscometothis
Posted 27 August 2008 - 04:09 AM

soitscometothis

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts
i have done the kaspersky online scanner three times before i posted this. i'm sorry but i dont plan on sitting through that again when all it does is tell me nothing is wrong. the same thing happened right before my other computer died.
  • 0

#10
emeraldnzl
Posted 28 August 2008 - 01:40 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Hello soitscometothis,

i have done the kaspersky online scanner three times before i posted this. i'm sorry but i dont plan on sitting through that again when all it does is tell me nothing is wrong. the same thing happened right before my other computer died.


Can't give you a clean bill of health unless I can see a recent scan for myself and check that there is nothing there.

Kaspersky would be the best for me from an anti-virus viewpoint also an Malwarebytes scan to cover the anti-spyware side.

I know you have run them both but as I said earlier I haven't seen them, your choice I suppose.

At this juncture without sign of what, if any, infection is on your computer, there is no point in running any other tools.

Pretty much a waste of your time (and ours) if you don't complete the process.
  • 0

#11
soitscometothis
Posted 28 August 2008 - 03:58 PM

soitscometothis

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts
well, i'm sorry, but i can tell you exactly what the report said... nothing. there is no point in my running it again for fifty hours just so i can save the report that says absolutely nothing. i'll run malwarebytes and post that log for you, but i don't have time to sit around and wait for kaspersky again.
  • 0

#12
emeraldnzl
Posted 28 August 2008 - 04:11 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Up to you.

Look forward to seeing the MBAM report.
  • 0

#13
soitscometothis
Posted 28 August 2008 - 04:21 PM

soitscometothis

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts
Malwarebytes' Anti-Malware 1.25
Database version: 1093
Windows 5.1.2600 Service Pack 3

5:13:22 PM 8/28/2008
mbam-log-08-28-2008 (17-13-22).txt

Scan type: Full Scan (C:\|)
Objects scanned: 64297
Time elapsed: 11 minute(s), 22 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)
  • 0

#14
emeraldnzl
Posted 28 August 2008 - 05:37 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Hello soitscometothis,

I can't see any malware on what you have allowed us to look at.

Assuming that what you tell us is true, then I think you should look for a technical problem.

We have a couple of last steps to perform and then you're all set. :)

Please go here to download OTCleanIt.

Run this program to remove the tools we have been using.

You will be asked to reboot the machine to finish the Cleanup process choose Yes.

Next, we need to clean your restore points and set a new one:

Reset and Re-enable your System Restore to remove infected files that have been backed up by Windows. The files in System Restore are protected to prevent any programs from changing those files. This is the only way to clean these files: (You will lose all previous restore points which are likely to be infected)1. Turn off System Restore.On the Desktop, right-click My Computer.
Click Properties.
Click the System Restore tab.
Check Turn off System Restore.
Click Apply, and then click OK.
2. Restart your computer.

3. Turn ON System Restore.On the Desktop, right-click My Computer.
Click Properties.
Click the System Restore tab.
UN-Check Turn off System Restore.
Click Apply, and then click OK.
[/list]System Restore will now be active again.

-------------------------------------------------------------------------------------------------------------------

Now that you are clean here are some things I think are worth having a look at:

--------------------------------------------------------------------------------------------------------------------

Check your Adobe Acrobat Reader; it may be out of date. Older versions are vunerable to attack.

Please go to the link below to update.

http://www.adobe.com.../readstep2.html

---------------------------------------------------------------------------------------------------------------------

Be sure and give the Temp folders a cleaning out now and then. This helps with security and your computer will run more efficiently. I clean mine once a week. For ease of use, you might consider the following free program which works well with XP:--------------------------------------------------------------------------------------------------------------------

A great way to check that your Microsoft and Java have the latest updates is to go to Software Inspector at Secunia.

I do this weekly. Not only do they tell you which programs need updating but they give you the link to follow.

To bolster your security go to Secunia.com to ensure essential programs are up to date.

---------------------------------------------------------------------------------------------------------------------

Make Internet Explorer more secure
  • Click Start > Run
  • Type Inetcpl.cpl & click OK
  • Click on the Security tab
  • Click Reset all zones to default level
  • Make sure the Internet Zone is selected & Click Custom level
  • In the ActiveX section, set the first two options ("Download signed and unsigned ActiveX controls) to "Prompt", and ("Initialize and Script ActiveX controls not marked as safe") to "Disable".
  • Next Click OK, then Apply button and then OK to exit the Internet Properties page.

* MVPS Hosts file replaces your current HOSTS file with one containing well known ad sites and other bad sites. Basically, this prevents your computer from connecting to those sites by redirecting them to 127.0.0.1 which is your local computer, meaning it will be difficult to infect yourself in the future.

* Consider using an alternate browser. Mozilla's Firefox browser is excellant; it is much more secure than Internet Explorer, immune to almost all known browser hijackers, and also has the best built-in pop up blocker (Note: this as an added benefit!) that I have seen. Firefox is my default browser but I retain Internet Explorer as well so that I can access the very few sites that require it.

Firefox may be downloaded from Here

-----------------------------------------------------------------------------------------------------------------------

To help protect your computer in the future here are some free programs you can look at:

  • SUPERAntiSpyware Free for Home Users to detect and remove spyware.
  • IESpy-Ad to block access to malicious websites so you cannot be redirected to them from an infected site or email.

    If your Microsoft Update is not working automatically. Keep your operating system up to date by visiting
  • Microsoft Windows Update
monthly. And to keep your system clean run these free malware scanners
weekly, and be aware of what emails you open and websites you visit.

To learn more about how to protect yourself while on the internet read this article by Tony Klein: So how did I get infected in the first place?

Have a safe and happy computing day!
  • 0

#15
Rorschach112
Posted 01 September 2008 - 03:37 PM

Rorschach112

    Ralphie

  • Retired Staff
  • 47,710 posts
Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. :)

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP