This topic is locked
Here are the logs:
**************
Rooter Log
**************
Microsoft Windows XP Professional (5.1.2600) Service Pack 2
A:\ [Removable] (Total:0 Mo/Free:0 Mo)
C:\ [Fixed] - NTFS - (Total:476938 Mo/Free:2500 Mo)
D:\ [CD-Rom] (Total:0 Mo/Free:0 Mo)
E:\ [CD-Rom] (Total:0 Mo/Free:0 Mo)
Fri 04/17/2009|19:02
----------------------\\ Processes..
--Locked-- [System Process]
---------- System
---------- \SystemRoot\System32\smss.exe
---------- \??\C:\WINDOWS\system32\csrss.exe
---------- \??\C:\WINDOWS\system32\winlogon.exe
---------- C:\WINDOWS\system32\services.exe
---------- C:\WINDOWS\system32\lsass.exe
---------- C:\WINDOWS\system32\svchost.exe
---------- C:\WINDOWS\system32\svchost.exe
---------- C:\WINDOWS\System32\svchost.exe
---------- C:\WINDOWS\system32\svchost.exe
---------- C:\WINDOWS\System32\svchost.exe
---------- C:\WINDOWS\System32\svchost.exe
---------- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
---------- C:\Program Files\Alwil Software\Avast4\ashServ.exe
---------- C:\WINDOWS\system32\LEXBCES.EXE
---------- C:\WINDOWS\system32\LEXPPS.EXE
---------- C:\WINDOWS\system32\spoolsv.exe
---------- C:\WINDOWS\System32\alg.exe
---------- C:\Program Files\ProcessGuard\dcsuserprot.exe
---------- C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe
---------- C:\Program Files\Java\jre6\bin\jqs.exe
---------- C:\WINDOWS\system32\nvsvc32.exe
---------- C:\WINDOWS\System32\snmp.exe
---------- C:\WINDOWS\System32\svchost.exe
---------- C:\WINDOWS\System32\vssvc.exe
---------- C:\Program Files\IMFirewall\WFilter\webservd.exe
---------- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
---------- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
---------- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
---------- C:\WINDOWS\System32\wbem\wmiapsrv.exe
---------- C:\WINDOWS\Explorer.EXE
---------- C:\WINDOWS\System32\svchost.exe
---------- C:\Program Files\ProcessGuard\pgaccount.exe
---------- C:\WINDOWS\SOUNDMAN.EXE
---------- C:\Program Files\Pure Networks\Network Magic\nmapp.exe
---------- C:\Program Files\Winamp\winampa.exe
---------- C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
---------- C:\Program Files\Canon\Memory Card Utility\iP6600D\PDUiP6600DMon.exe
---------- C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
---------- C:\WINDOWS\system32\RUNDLL32.EXE
---------- C:\Program Files\DAEMON Tools\daemon.exe
---------- C:\WINDOWS\system32\ctfmon.exe
---------- C:\program files\steam\steam.exe
---------- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
---------- C:\Program Files\TV Expert\ADTVScheduleAgent.exe
---------- C:\WINDOWS\system32\wuauclt.exe
---------- C:\Program Files\Mozilla Firefox\firefox.exe
---------- C:\WINDOWS\System32\wbem\wmiprvse.exe
---------- C:\WINDOWS\system32\cmd.exe
---------- C:\Rooter$\RK.exe
----------------------\\ Search..
==> VUNDO <==
----------------------\\ ROOTKIT !!
----------------------\\ Cracks & Keygens..
C:\DOCUME~1\Kevin\My Documents\My Music\CDintheMake\Fruity Loops STUDIO 5_XXL_cracked (Full Version) RTAS VST Dxi pro tools cakewalk soft synth.zip
1 - "C:\Rooter$\Rooter_1.txt" - Fri 04/17/2009|19:04
----------------------\\ Scan completed at 19:04
************
OTLI Log
************
OTListIt logfile created on: 4/17/2009 7:05:34 PM - Run 1
OTListIt2 by OldTimer - Version 2.0.14.0 Folder = C:\Documents and Settings\Kevin\Desktop
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.00 Gb Total Physical Memory | 1.39 Gb Available Physical Memory | 69.54% Memory free
3.85 Gb Paging File | 3.15 Gb Available in Paging File | 81.98% Paging File free
Paging file location(s): C:\pagefile.sys 0 0;
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 465.76 Gb Total Space | 266.44 Gb Free Space | 57.21% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: KEVINSCOMP
Current User Name: Kevin
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Output = Minimal
File Age = 30 Days
Company Name Whitelist: On
========== Processes (SafeList) ==========
PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
PRC - C:\WINDOWS\system32\LEXBCES.EXE (Lexmark International, Inc.)
PRC - C:\WINDOWS\system32\LEXPPS.EXE (Lexmark International, Inc.)
PRC - C:\Program Files\ProcessGuard\dcsuserprot.exe (DiamondCS)
PRC - C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe ()
PRC - C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
PRC - C:\WINDOWS\system32\nvsvc32.exe (NVIDIA Corporation)
PRC - C:\WINDOWS\System32\snmp.exe (Microsoft Corporation)
PRC - C:\Program Files\IMFirewall\WFilter\webservd.exe (IMFirewall Software)
PRC - C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe (Cisco Systems, Inc.)
PRC - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
PRC - C:\WINDOWS\Explorer.EXE (Microsoft Corporation)
PRC - C:\Program Files\ProcessGuard\pgaccount.exe (DiamondCS)
PRC - C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
PRC - C:\Program Files\Pure Networks\Network Magic\nmapp.exe (Cisco Systems, Inc.)
PRC - C:\Program Files\Winamp\winampa.exe ()
PRC - C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe (Cyberlink Corp.)
PRC - C:\Program Files\Canon\Memory Card Utility\iP6600D\PDUiP6600DMon.exe (CANON INC.)
PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
PRC - C:\Program Files\DAEMON Tools\daemon.exe (DT Soft Ltd.)
PRC - C:\program files\steam\steam.exe (Valve Corporation)
PRC - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
PRC - C:\Program Files\TV Expert\ADTVScheduleAgent.exe ()
PRC - C:\Documents and Settings\Kevin\Desktop\OTListIt2.exe (OldTimer Tools)
========== Win32 Services (SafeList) ==========
SRV - (AcrSch2Svc [Disabled | Stopped]) -- C:\Program Files\Common Files\Seagate\Schedule2\schedul2.exe (Acronis)
SRV - (aspnet_state [On_Demand | Stopped]) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (Microsoft Corporation)
SRV - (aswUpdSv [Auto | Running]) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
SRV - (avast! Antivirus [Auto | Running]) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
SRV - (avast! Mail Scanner [On_Demand | Running]) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
SRV - (avast! Web Scanner [On_Demand | Running]) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
SRV - (clr_optimization_v2.0.50727_32 [On_Demand | Stopped]) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (Creative Service for CDROM Access [Disabled | Stopped]) -- C:\WINDOWS\System32\CTsvcCDA.EXE (Creative Technology Ltd)
SRV - (DCSPGSRV [Auto | Running]) -- C:\Program Files\ProcessGuard\dcsuserprot.exe (DiamondCS)
SRV - (FontCache3.0.0.0 [On_Demand | Stopped]) -- C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation)
SRV - (GEST Service [Auto | Running]) -- C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe ()
SRV - (helpsvc [Disabled | Stopped]) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll (Microsoft Corporation)
SRV - (IDriverT [Disabled | Stopped]) -- File not found
SRV - (idsvc [Unknown | Stopped]) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe (Microsoft Corporation)
SRV - (InstallShield Licensing Service [Disabled | Stopped]) -- C:\Program Files\Common Files\InstallShield Shared\Service\InstallShield Licensing Service.exe (Macrovision )
SRV - (iPodService [Disabled | Stopped]) -- File not found
SRV - (JavaQuickStarterService [Auto | Running]) -- C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
SRV - (LexBceS [Auto | Running]) -- C:\WINDOWS\system32\LEXBCES.EXE (Lexmark International, Inc.)
SRV - (LicCtrlService [Disabled | Stopped]) -- C:\WINDOWS\runservice.exe ()
SRV - (LPDSVC [On_Demand | Stopped]) -- C:\WINDOWS\System32\tcpsvcs.exe (Microsoft Corporation)
SRV - (NetTcpPortSharing [Disabled | Stopped]) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe (Microsoft Corporation)
SRV - (nmservice [Auto | Running]) -- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe (Cisco Systems, Inc.)
SRV - (NVSvc [Auto | Running]) -- C:\WINDOWS\system32\nvsvc32.exe (NVIDIA Corporation)
SRV - (rpcapd [Disabled | Stopped]) -- C:\Program Files\WinPcap\rpcapd.exe (CACE Technologies)
SRV - (SNMP [Auto | Running]) -- C:\WINDOWS\System32\snmp.exe (Microsoft Corporation)
SRV - (Viewpoint Manager Service [Disabled | Stopped]) -- C:\Program Files\Viewpoint\Common\ViewpointService.exe (Viewpoint Corporation)
SRV - (WFilterd [Auto | Running]) -- C:\Program Files\IMFirewall\WFilter\webservd.exe (IMFirewall Software)
SRV - (WMPNetworkSvc [On_Demand | Stopped]) -- C:\Program Files\Windows Media Player\WMPNetwk.exe (Microsoft Corporation)
========== Driver Services (SafeList) ==========
DRV - (3xHybrid [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\3xHybrid.sys (NXP Semiconductors Germany GmbH)
DRV - (713xTVCard [Auto | Stopped]) -- C:\WINDOWS\system32\DRIVERS\SAA713x.sys (Philips Semiconductors)
DRV - (Aavmker4 [System | Running]) -- C:\WINDOWS\System32\drivers\aavmker4.sys (ALWIL Software)
DRV - (ALCXWDM [On_Demand | Stopped]) -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS (Realtek Semiconductor Corp.)
DRV - (ALLOW-IO [Boot | Running]) -- C:\WINDOWS\system32\Drivers\ALLOW-IO.sys ()
DRV - (ASInsHelp [Auto | Running]) -- C:\WINDOWS\system32\drivers\AsInsHelp32.sys ()
DRV - (AsIO [System | Running]) -- C:\WINDOWS\system32\drivers\AsIO.sys ()
DRV - (aswFsBlk [Auto | Running]) -- C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys (ALWIL Software)
DRV - (aswMon2 [Auto | Running]) -- C:\WINDOWS\System32\drivers\aswmon2.sys (ALWIL Software)
DRV - (aswRdr [On_Demand | Running]) -- C:\WINDOWS\System32\drivers\aswRdr.sys (ALWIL Software)
DRV - (aswSP [System | Running]) -- C:\WINDOWS\System32\drivers\aswSP.sys (ALWIL Software)
DRV - (aswTdi [System | Running]) -- C:\WINDOWS\System32\drivers\aswTdi.sys (ALWIL Software)
DRV - (ATITool [System | Running]) -- C:\WINDOWS\system32\DRIVERS\ATITool.sys ()
DRV - (BT848 [Auto | Stopped]) -- C:\WINDOWS\system32\drivers\Bt848.sys (AVerMedia)
DRV - (CrystalCpuInfo [On_Demand | Stopped]) -- C:\Program Files\OCCT\CpuInfo.sys (hiyohiyo)
DRV - (CyUsb [On_Demand | Stopped]) -- C:\WINDOWS\System32\Drivers\CyUsb.sys (Cypress Semiconductor)
DRV - (DAdderFltr [On_Demand | Stopped]) -- C:\WINDOWS\system32\drivers\dadder.sys (Razer (Asia-Pacific) Pte Ltd)
DRV - (epmntdrv [On_Demand | Stopped]) -- C:\WINDOWS\system32\epmntdrv.sys ()
DRV - (EuGdiDrv [On_Demand | Stopped]) -- C:\WINDOWS\system32\EuGdiDrv.sys ()
DRV - (FIXUSTOR [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\fixustor.sys (Genesys Logic)
DRV - (gameenum [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\gameenum.sys (Microsoft Corporation)
DRV - (gdrv [On_Demand | Running]) -- C:\WINDOWS\gdrv.sys (Windows ® 2000 DDK provider)
DRV - (GEARAspiWDM [On_Demand | Running]) -- C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV - (giveio [Boot | Running]) -- C:\WINDOWS\system32\giveio.sys ()
DRV - (GoProto [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\goprot51.sys (Gteko Ltd.)
DRV - (hamachi [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\hamachi.sys (LogMeIn, Inc.)
DRV - (HDAudBus [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\HDAudBus.sys (Windows ® Server 2003 DDK provider)
DRV - (IMNPF [On_Demand | Stopped]) -- C:\WINDOWS\system32\drivers\imnpf.sys (CACE Technologies)
DRV - (IntcAzAudAddService [On_Demand | Running]) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
DRV - (JRAID [Boot | Running]) -- C:\WINDOWS\system32\DRIVERS\jraid.sys (JMicron Technology Corp.)
DRV - (Jukebox3 [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\ctpdusb.sys (Creative Technology Ltd.)
DRV - (LCcfltr [On_Demand | Stopped]) -- C:\WINDOWS\system32\drivers\lccfltr.sys (Logitech, Inc.)
DRV - (LHidFilt [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys (Logitech, Inc.)
DRV - (LHidUsbK [On_Demand | Stopped]) -- C:\WINDOWS\System32\Drivers\LHidUsbK.Sys (Logitech, Inc.)
DRV - (LMouFilt [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys (Logitech, Inc.)
DRV - (LUsbFilt [On_Demand | Stopped]) -- C:\WINDOWS\System32\Drivers\LUsbFilt.Sys (Logitech, Inc.)
DRV - (mbmiodrvr [System | Running]) -- C:\WINDOWS\system32\mbmiodrvr.sys ([email protected])
DRV - (MPE [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\MPE.sys (Microsoft Corporation)
DRV - (ms_mpu401 [On_Demand | Stopped]) -- C:\WINDOWS\system32\drivers\msmpu401.sys (Microsoft Corporation)
DRV - (MTsensor [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\ASACPI.sys ()
DRV - (NetPeeker [System | Running]) -- C:\WINDOWS\System32\Drivers\NetPeeker.sys (Ming Jin)
DRV - (nm [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\NMnt.sys (Microsoft Corporation)
DRV - (NPF [On_Demand | Stopped]) -- C:\WINDOWS\system32\drivers\npf.sys (CACE Technologies)
DRV - (npkcrypt [On_Demand | Stopped]) -- C:\Program Files\Lineage II\system\npkcrypt.sys (INCA Internet Co., Ltd.)
DRV - (npkcusb [On_Demand | Stopped]) -- C:\Program Files\Lineage II\system\npkcusb.sys (INCA Internet Co., Ltd.)
DRV - (NPPTNT2 [On_Demand | Stopped]) -- C:\WINDOWS\system32\npptNT2.sys (INCA Internet Co., Ltd.)
DRV - (nv [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\nv4_mini.sys (NVIDIA Corporation)
DRV - (nvatabus [Boot | Running]) -- C:\WINDOWS\System32\DRIVERS\nvatabus.sys (NVIDIA Corporation)
DRV - (pnarp [Auto | Running]) -- C:\WINDOWS\system32\DRIVERS\pnarp.sys (Cisco Systems, Inc.)
DRV - (PQNTDrv [System | Running]) -- C:\WINDOWS\System32\drivers\PQNTDRV.sys (PowerQuest Corporation)
DRV - (procguard [Auto | Running]) -- C:\WINDOWS\system32\drivers\procguard.sys (DiamondCS)
DRV - (Ptilink [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys (Parallel Technologies, Inc.)
DRV - (purendis [Auto | Running]) -- C:\WINDOWS\system32\DRIVERS\purendis.sys (Cisco Systems, Inc.)
DRV - (PxHelp20 [Boot | Running]) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys (Sonic Solutions)
DRV - (Razerlow [On_Demand | Stopped]) -- C:\WINDOWS\System32\Drivers\Razerlow.sys (Razer (Asia-Pacific) Pte Ltd)
DRV - (ROOTMODEM [On_Demand | Stopped]) -- C:\WINDOWS\System32\Drivers\RootMdm.sys (Microsoft Corporation)
DRV - (RTLE8023xp [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys (Realtek Semiconductor Corporation )
DRV - (SASDIFSV [System | Running]) -- C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (SASENUM [On_Demand | Running]) -- C:\Program Files\SUPERAntiSpyware\SASENUM.SYS ( SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (SASKUTIL [System | Running]) -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (SDDMI2 [On_Demand | Stopped]) -- C:\WINDOWS\system32\DDMI2.sys (Gteko Ltd.)
DRV - (SDVC05 [On_Demand | Stopped]) -- C:\WINDOWS\System32\Drivers\SDVC05.sys (HaSoInTech)
DRV - (Secdrv [Auto | Running]) -- C:\WINDOWS\System32\DRIVERS\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
DRV - (sfdrv01 [Boot | Running]) -- C:\WINDOWS\System32\drivers\sfdrv01.sys (Protection Technology)
DRV - (sfhlp02 [Boot | Running]) -- C:\WINDOWS\System32\drivers\sfhlp02.sys (Protection Technology)
DRV - (sfsync02 [Boot | Running]) -- C:\WINDOWS\System32\drivers\sfsync02.sys (Protection Technology)
DRV - (Si3114r5 [Boot | Running]) -- C:\WINDOWS\System32\DRIVERS\Si3114r5.sys (Silicon Image, Inc)
DRV - (SiFilter [Boot | Running]) -- C:\WINDOWS\System32\DRIVERS\SiWinAcc.sys (Silicon Image, Inc.)
DRV - (snapman [Boot | Running]) -- C:\WINDOWS\system32\DRIVERS\snapman.sys (Acronis)
DRV - (SONYPVU1 [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS (Sony Corporation)
DRV - (speedfan [Boot | Running]) -- C:\WINDOWS\system32\speedfan.sys (Windows ® 2000 DDK provider)
DRV - (sptd [Boot | Running]) -- C:\WINDOWS\System32\Drivers\sptd.sys ()
DRV - (tifsfilter [Auto | Running]) -- C:\WINDOWS\system32\DRIVERS\tifsfilt.sys (Acronis)
DRV - (timounter [Boot | Running]) -- C:\WINDOWS\system32\DRIVERS\timntr.sys (Acronis)
DRV - (tmcomm [Auto | Running]) -- C:\WINDOWS\system32\drivers\tmcomm.sys (Trend Micro Inc.)
DRV - (TVICHW32 [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\TVICHW32.SYS (EnTech Taiwan)
DRV - (usbaudio [On_Demand | Stopped]) -- C:\WINDOWS\system32\drivers\usbaudio.sys (Microsoft Corporation)
DRV - (usb_rndis [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\usb8023.sys (Microsoft Corporation)
DRV - (WDMTVTuner [Auto | Stopped]) -- C:\WINDOWS\system32\drivers\WDMTuner.sys (Philips Semiconductors)
DRV - (yukonwxp [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\yk51x86.sys (Marvell)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn...st/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.microsoft...amp;ar=iesearch
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn...st/srchasst.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...amp;ar=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://kankan.xunlei.com/?id=55
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.8
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.8\extensions\\Components: C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS [2009/03/29 18:31:17 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.8\extensions\\Plugins: C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS [2009/04/14 20:59:33 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Netscape Browser 8.0.3.3\Extensions\\Components: C:\PROGRAM FILES\NETSCAPE\NETSCAPE BROWSER\COMPONENTS [2008/05/11 03:01:41 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Netscape Browser 8.0.3.3\Extensions\\Plugins: C:\PROGRAM FILES\NETSCAPE\NETSCAPE BROWSER\PLUGINS [2008/08/30 14:23:32 | 00,000,000 | ---D | M]
[2008/08/28 23:28:10 | 00,000,000 | ---D | M] -- C:\DOCUME~1\Kevin\Application Data\mozilla\Extensions
[2008/08/28 23:28:10 | 00,000,000 | ---D | M] -- C:\DOCUME~1\Kevin\Application Data\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/03/30 14:44:17 | 00,000,000 | ---D | M] -- C:\DOCUME~1\Kevin\Application Data\mozilla\Firefox\Profiles\43c08b2u.default\extensions
[2009/04/14 22:18:39 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009/03/28 16:58:34 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2009/04/14 20:59:41 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
[2009/03/28 16:58:28 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009/03/28 16:58:28 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2008/07/12 09:53:16 | 00,036,864 | ---- | M] (????) -- C:\Program Files\mozilla firefox\components\NsThunderLoader.dll
[2008/07/12 09:53:16 | 00,053,248 | ---- | M] (Thunder Networking Technologies,LTD) -- C:\Program Files\mozilla firefox\components\ThunderComponent.dll
[2008/12/17 20:39:26 | 00,001,394 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom.xml
[2008/12/17 20:39:26 | 00,002,193 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\answers.xml
[2008/12/17 20:39:26 | 00,001,534 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
[2008/12/17 20:39:26 | 00,002,343 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay.xml
[2008/12/17 20:39:26 | 00,001,706 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2008/12/17 20:39:26 | 00,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia.xml
[2008/12/17 20:39:26 | 00,000,792 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo.xml
O1 HOSTS File: (302509 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 75.126.151.179 l2testauthd.lineage2.com
O1 - Hosts: 75.126.151.179 l2authd.lineage2.com
O1 - Hosts: 216.107.250.194 nprotect.lineage2.com
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 10447 more lines...
O2 - BHO: (no name) - {01443AEC-0FD1-40fd-9C87-E93D1494C233} - Reg Error: Key error. File not found
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - Reg Error: Key error. File not found
O2 - BHO: (EWPBrowseObject Class) - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll ()
O2 - BHO: (no name) - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - Reg Error: Key error. File not found
O2 - BHO: (no name) - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Reg Error: Key error. File not found
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O2 - BHO: (no name) - {EFAD0057-A7A4-43DC-9DB5-72D229B66E2E} - Reg Error: Key error. File not found
O3 - HKLM\..\Toolbar: (Veoh Web Player Video Finder) - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll (Veoh Networks Inc)
O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O3 - HKLM\..\Toolbar: (Veoh Browser Plug-in) - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll (Veoh Networks Inc)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Reg Error: Key error. File not found
O4 - HKLM..\Run: [!1_pgaccount] "C:\Program Files\ProcessGuard\pgaccount.exe" (DiamondCS)
O4 - HKLM..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [nmapp] "C:\Program Files\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash (Cisco Systems, Inc.)
O4 - HKLM..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] nwiz.exe /install ()
O4 - HKLM..\Run: [PDUiP6600DMon] C:\Program Files\Canon\Memory Card Utility\iP6600D\PDUiP6600DMon.exe (CANON INC.)
O4 - HKLM..\Run: [PrinTray] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\printray.exe (Lexmark)
O4 - HKLM..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" (Cyberlink Corp.)
O4 - HKLM..\Run: [SoundMan] SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe ()
O4 - HKCU..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 (DT Soft Ltd.)
O4 - HKCU..\Run: [Steam] "c:\program files\steam\steam.exe" -silent (Valve Corporation)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\TV Expert Schedule Agent.lnk = C:\Program Files\TV Expert\ADTVScheduleAgent.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\PhotoSupport present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Toolbars present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ClassicShell = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoThemesTab = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceActiveDesktopOn = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispAppearancePage = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoColorChoice = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoSizeChoice = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispBackgroundPage = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispScrSavPage = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispCPL = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoVisualStyleChoice = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispSettingsPage = 0
O8 - Extra context menu item: Download with &FileFactory Turbo - C:\Program Files\FileFactory Turbo\Plugins\IE\FileFactoryIE.html ()
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 (Microsoft Corporation)
O8 - Extra context menu item: Save page with WinMHT... - C:\Program Files\WinMHT\iewmht0.htm ()
O8 - Extra context menu item: Save selection with WinMHT... - C:\Program Files\WinMHT\iewmht2.htm ()
O9 - Extra Button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe (America Online, Inc.)
O12 - Plugin for: .htm - C:\Program Files\Netscape\Netscape Browser\PLUGINS\npTrident.dll (Netscape Communications Corp.)
O15 - HKLM\..Trusted Domains: 49 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKCU\..Trusted Domains: aol.com ([free] http in Trusted sites)
O15 - HKCU\..Trusted Domains: 53 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (Reg Error: Key error.)
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.micr...78f/wvc1dmo.cab (Reg Error: Key error.)
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.micr...922/wmv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...t/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (Reg Error: Value error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Interfaces\{30E4D48C-632E-4515-BCD1-E367AE09D545}\\NameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Interfaces\{9D79EA98-570E-439A-8519-D52D818D53A5}\\NameServer = 68.94.156.1,58.94.157.1
O18 - Protocol\Handler\cdo {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Common Files\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\pure-go {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files\Common Files\Pure Networks Shared\Platform\puresp4.dll (Cisco Systems, Inc.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\jkhff: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\NavLogon: DllName - C:\WINDOWS\system32\NavLogon.dll - C:\WINDOWS\system32\NavLogon.dll ()
O20 - Winlogon\Notify\WRNotifier: DllName - WRLogonNTF.dll - C:\WINDOWS\system32\WRLogonNTF.dll (Webroot Software, Inc.)
O24 - Desktop Components:0 (My Current Home Page) - About:Home
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O30 - LSA: Authentication Packages - (C:\WINDOWS\system32\gebcc.dll) - C:\WINDOWS\system32\gebcc.dll File not found
O30 - LSA: Authentication Packages - (relog_ap) - C:\WINDOWS\System32\relog_ap.dll (Acronis)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - Autorun File - C:\AUTOEXEC.BAT () - [ NTFS ]
O33 - MountPoints2\{1a95baf9-bb30-11db-82ac-0013d4516294}\Shell - "" = AutoRun
O33 - MountPoints2\{1a95baf9-bb30-11db-82ac-0013d4516294}\Shell\Auto\command - "" = C:\WINDOWS\system32\setup.exe -- [2004/08/04 00:56:56 | 00,023,040 | ---- | M] (Microsoft Corporation)
O33 - MountPoints2\{1a95baf9-bb30-11db-82ac-0013d4516294}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{23786de8-a8f3-11db-8299-0013d4516294}\Shell - "" = AutoRun
O33 - MountPoints2\{23786de8-a8f3-11db-8299-0013d4516294}\Shell\Auto\command - "" = C:\WINDOWS\system32\setup.exe -- [2004/08/04 00:56:56 | 00,023,040 | ---- | M] (Microsoft Corporation)
O33 - MountPoints2\{23786de8-a8f3-11db-8299-0013d4516294}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{87fb5120-35b8-11da-8755-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{87fb5120-35b8-11da-8755-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{87fb5120-35b8-11da-8755-806d6172696f}\Shell\AutoRun\command - "" = D:\setup.exe -- File not found
O33 - MountPoints2\{d9c3b556-1d56-11d7-81aa-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{d9c3b556-1d56-11d7-81aa-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{d9c3b556-1d56-11d7-81aa-806d6172696f}\Shell\AutoRun\command - "" = D:\autoplay.exe -- File not found
O33 - MountPoints2\{d9c3b557-1d56-11d7-81aa-806d6172696f}\Shell\PlayWithPowerDVD\Command - "" = C:\Program Files\CyberLink\PowerDVD\PowerDVD.exe -- [2005/08/23 00:33:26 | 00,528,384 | ---- | M] (CyberLink Corp.)
O33 - MountPoints2\{fb0f4204-b981-11db-8ed7-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{fb0f4204-b981-11db-8ed7-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{fb0f4204-b981-11db-8ed7-806d6172696f}\Shell\AutoRun\command - "" = D:\start.exe languages.dbd -- File not found
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
O34 - HKLM BootExecute: (ssiefr.e) - File not found
========== Files/Folders - Created Within 30 Days ==========
[2 C:\*.tmp files]
[6 C:\WINDOWS\System32\*.tmp files]
[14 C:\WINDOWS\*.tmp files]
[2009/04/17 19:02:32 | 00,000,000 | ---D | C] -- C:\Rooter$
[2009/04/17 18:39:37 | 00,501,248 | ---- | C] (OldTimer Tools) -- C:\DOCUME~1\Kevin\Desktop\OTListIt2.exe
[2009/04/17 18:39:32 | 00,267,612 | ---- | C] () -- C:\DOCUME~1\Kevin\Desktop\Rooter.exe
[2009/04/17 18:32:41 | 00,023,058 | ---- | C] () -- C:\DOCUME~1\Kevin\My Documents\cc_20090417_183239.reg
[2009/04/17 18:14:19 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\AGEIA
[2009/04/17 18:14:19 | 00,000,000 | ---D | C] -- C:\Program Files\AGEIA Technologies
[2009/04/17 18:13:49 | 00,212,973 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml
[2009/04/17 18:13:49 | 00,019,021 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu
[2009/04/17 18:13:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\nview
[2009/04/17 14:19:45 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
[2009/04/17 14:19:42 | 00,000,780 | ---- | C] () -- C:\DOCUME~1\ALLUSE~1\Desktop\SUPERAntiSpyware Free Edition.lnk
[2009/04/17 14:19:40 | 00,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2009/04/17 14:19:40 | 00,000,000 | ---D | C] -- C:\DOCUME~1\Kevin\Application Data\SUPERAntiSpyware.com
[2009/04/17 14:19:14 | 06,289,952 | ---- | C] () -- C:\DOCUME~1\Kevin\Desktop\SUPERAntiSpyware.exe
[2009/04/17 14:16:24 | 00,051,376 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2009/04/17 14:16:24 | 00,023,152 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2009/04/17 14:16:24 | 00,001,709 | ---- | C] () -- C:\DOCUME~1\ALLUSE~1\Desktop\avast! Antivirus.lnk
[2009/04/17 14:16:23 | 00,026,944 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2009/04/17 14:16:22 | 00,097,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr
[2009/04/17 14:16:21 | 00,114,768 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2009/04/17 14:16:21 | 00,094,032 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2009/04/17 14:16:21 | 00,093,296 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2009/04/17 14:16:21 | 00,020,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2009/04/17 14:16:09 | 01,256,296 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2009/04/17 14:16:07 | 00,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2009/04/17 14:15:17 | 00,308,160 | ---- | C] (ALWIL Software) -- C:\DOCUME~1\Kevin\Desktop\avast_pro_setup.exe
[2009/04/17 14:14:30 | 00,905,815 | ---- | C] () -- C:\DOCUME~1\Kevin\Desktop\Cartographer-v2.5.3.zip
[2009/04/17 14:13:23 | 00,293,176 | ---- | C] () -- C:\DOCUME~1\Kevin\Desktop\Quartz-r13-release.zip
[2009/04/17 14:12:24 | 00,228,247 | ---- | C] () -- C:\DOCUME~1\Kevin\Desktop\Talented-v2.0b-release.zip
[2009/04/17 14:12:00 | 00,763,164 | ---- | C] () -- C:\DOCUME~1\Kevin\Desktop\ArkInventory-3.02.10.zip
[2009/04/17 14:11:24 | 00,645,583 | ---- | C] () -- C:\DOCUME~1\Kevin\Desktop\PitBull-v3.2.10.zip
[2009/04/16 19:31:47 | 00,000,000 | ---D | C] -- C:\NVIDIA
[2009/04/15 21:26:16 | 00,000,000 | ---D | C] -- C:\WINDOWS\NV28483916.TMP
[2009/04/15 21:00:31 | 00,000,685 | ---- | C] () -- C:\DOCUME~1\ALLUSE~1\Desktop\Driver Sweeper.lnk
[2009/04/15 21:00:31 | 00,000,000 | ---D | C] -- C:\Program Files\Driver Sweeper
[2009/04/15 20:44:55 | 00,000,000 | ---D | C] -- C:\WINDOWS\NV27682564.TMP
[2009/04/15 19:34:31 | 00,076,198 | ---- | C] () -- C:\DOCUME~1\Kevin\My Documents\cc_20090415_193429.reg
[2009/04/15 19:32:06 | 00,590,369 | ---- | C] () -- C:\DOCUME~1\Kevin\My Documents\cc_20090415_1932.reg
[2009/04/14 22:27:17 | 00,000,000 | ---D | C] -- C:\DOCUME~1\Kevin\Application Data\Malwarebytes
[2009/04/14 22:27:15 | 00,015,504 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009/04/14 22:27:15 | 00,000,696 | ---- | C] () -- C:\DOCUME~1\ALLUSE~1\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/04/14 22:27:13 | 00,038,496 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009/04/14 22:27:12 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009/04/14 22:27:12 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2009/04/14 22:26:41 | 02,967,800 | ---- | C] (Malwarebytes Corporation ) -- C:\DOCUME~1\Kevin\Desktop\mbam-setup.exe
[2009/04/09 17:17:02 | 00,005,528 | ---- | C] () -- C:\DOCUME~1\Kevin\Desktop\buyzonerange.amxx
[2009/04/04 14:34:30 | 00,000,000 | ---D | C] -- C:\DOCUME~1\Kevin\Desktop\audacity-win-1.2.6
[2009/04/04 13:55:22 | 00,014,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2009/04/04 13:54:55 | 00,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2009/04/04 13:54:55 | 00,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2009/04/04 13:54:53 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2009/04/04 13:51:32 | 00,000,000 | R--D | C] -- C:\DOCUME~1\ALLUSE~1\Documents\My Music
[2009/04/03 21:15:16 | 00,000,000 | ---D | C] -- C:\DOCUME~1\Kevin\Desktop\keyclone v1.8k
[2009/04/03 17:45:08 | 00,000,622 | ---- | C] () -- C:\DOCUME~1\Kevin\Desktop\Shortcut to keyclone.lnk
[2009/04/03 16:27:19 | 00,000,000 | ---D | C] -- C:\Program Files\keyclone
[2009/04/03 11:52:47 | 00,000,000 | ---D | C] -- C:\Program Files\World of Warcraft Public Test
[2009/04/02 22:16:55 | 00,000,000 | ---D | C] -- C:\DOCUME~1\Kevin\Desktop\ZoloFighter
[2009/04/01 23:30:46 | 00,000,000 | ---D | C] -- C:\DOCUME~1\Kevin\Desktop\aequitas_1_01
[2009/03/29 23:40:45 | 00,000,000 | ---D | C] -- C:\DOCUME~1\Kevin\Desktop\Listchecker
[2009/03/29 22:35:52 | 00,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_LUsbFilt_01005.Wdf
[2009/03/23 20:04:42 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\LogiShrd
[2009/03/23 20:03:57 | 00,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_LMouFilt_01005.Wdf
[2009/03/23 20:03:57 | 00,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_LHidFilt_01005.Wdf
[2009/03/23 20:03:53 | 00,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
[2009/03/23 20:02:05 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Logishrd
[2009/03/22 17:36:58 | 00,103,424 | ---- | C] () -- C:\DOCUME~1\Kevin\Desktop\WoW Dailies Guide.doc
[2009/03/21 22:00:07 | 00,000,818 | ---- | C] () -- C:\DOCUME~1\Kevin\Desktop\Free Studio Manager.lnk
[2009/03/21 21:45:48 | 00,000,000 | ---D | C] -- C:\DOCUME~1\Kevin\My Documents\DVDVideoSoft
[2009/03/21 21:45:41 | 00,000,000 | ---D | C] -- C:\Program Files\DVDVideoSoft
[2009/03/21 21:45:41 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\DVDVideoSoft
[2009/03/21 03:08:19 | 00,014,336 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2009/03/21 03:08:19 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2009/03/21 03:08:18 | 00,060,273 | ---- | C] (Open Source Software community project) -- C:\WINDOWS\System32\pthreadGC2.dll
[2009/02/18 14:44:00 | 01,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2009/02/18 14:44:00 | 01,507,328 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2009/02/18 14:44:00 | 01,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2009/02/18 14:44:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2008/12/12 15:42:04 | 00,472,064 | ---- | C] () -- C:\WINDOWS\System32\NTFSFormat.dll
[2008/12/12 15:42:04 | 00,180,736 | ---- | C] () -- C:\WINDOWS\System32\DeviceManager.dll
[2008/12/12 15:42:04 | 00,139,776 | ---- | C] () -- C:\WINDOWS\System32\NTFSCopy.dll
[2008/12/12 15:42:04 | 00,093,184 | ---- | C] () -- C:\WINDOWS\System32\Partition.dll
[2008/12/12 15:42:04 | 00,086,528 | ---- | C] () -- C:\WINDOWS\System32\NTFSLib.dll
[2008/12/12 15:42:04 | 00,086,016 | ---- | C] () -- C:\WINDOWS\System32\ResizeNTFS.dll
[2008/12/12 15:42:04 | 00,068,096 | ---- | C] () -- C:\WINDOWS\System32\Device.dll
[2008/12/12 15:42:04 | 00,065,536 | ---- | C] () -- C:\WINDOWS\System32\FatCopy.dll
[2008/12/12 15:42:04 | 00,061,952 | ---- | C] () -- C:\WINDOWS\System32\FatResizeMove.dll
[2008/12/12 15:42:04 | 00,045,568 | ---- | C] () -- C:\WINDOWS\System32\FileSystemCheck.dll
[2008/12/12 15:42:04 | 00,031,744 | ---- | C] () -- C:\WINDOWS\System32\FatLib.dll
[2008/12/12 15:42:04 | 00,025,088 | ---- | C] () -- C:\WINDOWS\System32\FATFileSystemAnalyser.dll
[2008/12/12 15:42:04 | 00,024,576 | ---- | C] () -- C:\WINDOWS\System32\NTFSFileSystemAnalyser.dll
[2008/12/12 15:42:04 | 00,022,016 | ---- | C] () -- C:\WINDOWS\System32\FatFormat.dll
[2008/12/12 15:42:04 | 00,021,504 | ---- | C] () -- C:\WINDOWS\System32\Fixup.dll
[2008/12/12 15:42:04 | 00,017,920 | ---- | C] () -- C:\WINDOWS\System32\SectorCopy.dll
[2008/12/12 15:42:04 | 00,014,848 | ---- | C] () -- C:\WINDOWS\System32\FileSystemAnalyser.dll
[2008/12/12 15:42:04 | 00,014,848 | ---- | C] () -- C:\WINDOWS\System32\EuEpmGdi.dll
[2008/12/12 15:42:04 | 00,010,752 | ---- | C] () -- C:\WINDOWS\System32\DeviceAdapter.dll
[2008/12/12 15:42:04 | 00,008,704 | ---- | C] () -- C:\WINDOWS\System32\epmntdrv.sys
[2008/12/12 15:42:04 | 00,006,656 | ---- | C] () -- C:\WINDOWS\System32\CallbackOperator.dll
[2008/12/12 15:42:04 | 00,003,072 | ---- | C] () -- C:\WINDOWS\System32\EuGdiDrv.sys
[2008/12/12 15:05:59 | 00,000,000 | ---- | C] () -- C:\WINDOWS\WinPM.INI
[2008/12/12 15:02:04 | 03,592,192 | ---- | C] () -- C:\WINDOWS\System32\qt-mt323.dll
[2008/12/12 02:43:35 | 04,244,744 | ---- | C] () -- C:\WINDOWS\System32\qtp-mt334.dll
[2008/12/12 02:43:35 | 00,247,560 | ---- | C] () -- C:\WINDOWS\System32\prgiso.dll
[2008/11/15 14:15:27 | 00,000,262 | ---- | C] () -- C:\WINDOWS\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
[2008/10/07 09:13:30 | 00,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2008/10/07 09:13:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2008/08/30 14:36:17 | 00,000,031 | ---- | C] () -- C:\WINDOWS\GunzLauncher.INI
[2008/08/01 00:52:02 | 00,002,261 | ---- | C] () -- C:\WINDOWS\uwfont.ini
[2008/06/29 23:09:43 | 00,001,536 | ---- | C] () -- C:\WINDOWS\System32\bcevent.dll
[2008/06/29 22:55:13 | 00,000,328 | ---- | C] () -- C:\WINDOWS\NPGUI.INI
[2008/06/16 17:27:13 | 00,009,760 | R--- | C] () -- C:\WINDOWS\System32\34CoInstaller.dll
[2008/05/02 20:25:54 | 00,000,416 | ---- | C] () -- C:\WINDOWS\MAXLINK.INI
[2008/03/08 18:51:34 | 00,524,288 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2008/03/08 18:51:34 | 00,139,264 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2007/12/09 02:03:09 | 00,794,696 | -HS- | C] () -- C:\WINDOWS\System32\xkvpaytq.ini
[2007/12/08 02:03:09 | 00,790,612 | -HS- | C] () -- C:\WINDOWS\System32\psrekxyv.ini
[2007/12/07 02:02:57 | 00,790,552 | -HS- | C] () -- C:\WINDOWS\System32\kpeirfui.ini
[2007/12/06 02:05:57 | 00,778,046 | -HS- | C] () -- C:\WINDOWS\System32\bjxqblfq.ini
[2007/12/05 02:05:57 | 00,670,222 | -HS- | C] () -- C:\WINDOWS\System32\rxvhmahl.ini
[2007/12/04 02:05:58 | 00,792,522 | -HS- | C] () -- C:\WINDOWS\System32\sergfcqj.ini
[2007/12/03 02:03:07 | 00,792,462 | -HS- | C] () -- C:\WINDOWS\System32\iitoeitc.ini
[2007/12/02 12:58:55 | 00,775,718 | -HS- | C] () -- C:\WINDOWS\System32\vfmbjywo.ini
[2007/12/01 15:23:40 | 00,775,658 | -HS- | C] () -- C:\WINDOWS\System32\qemjagbw.ini
[2007/11/30 20:51:40 | 00,775,718 | -HS- | C] () -- C:\WINDOWS\System32\wiudlmuo.ini
[2007/11/30 20:49:08 | 00,775,598 | -HS- | C] () -- C:\WINDOWS\System32\bjssxust.ini
[2007/11/29 23:33:44 | 00,795,019 | -HS- | C] () -- C:\WINDOWS\System32\mxcntfpf.ini
[2007/11/29 18:02:12 | 00,002,063 | ---- | C] () -- C:\WINDOWS\RefreshLock.ini
[2007/11/28 23:33:45 | 00,785,656 | -HS- | C] () -- C:\WINDOWS\System32\rhvyxjgl.ini
[2007/11/27 23:36:44 | 00,773,389 | -HS- | C] () -- C:\WINDOWS\System32\kjfjiinh.ini
[2007/11/26 23:33:30 | 00,779,587 | -HS- | C] () -- C:\WINDOWS\System32\tsqshjcc.ini
[2007/11/25 23:33:30 | 00,781,444 | -HS- | C] () -- C:\WINDOWS\System32\ftwdovmn.ini
[2007/11/25 22:36:30 | 00,778,238 | -HS- | C] () -- C:\WINDOWS\System32\mvrwxwxf.ini
[2007/11/24 22:30:37 | 00,778,178 | -HS- | C] () -- C:\WINDOWS\System32\maqagmbq.ini
[2007/11/24 20:23:09 | 00,776,132 | -HS- | C] () -- C:\WINDOWS\System32\bgqovfpb.ini
[2007/11/24 02:25:18 | 00,776,012 | -HS- | C] () -- C:\WINDOWS\System32\acymwqvy.ini
[2007/11/24 01:28:19 | 00,775,892 | -HS- | C] () -- C:\WINDOWS\System32\pprkguwy.ini
[2007/11/23 01:25:18 | 00,775,832 | -HS- | C] () -- C:\WINDOWS\System32\qoosovbj.ini
[2007/11/22 13:23:15 | 00,738,296 | -HS- | C] () -- C:\WINDOWS\System32\ajgyvglj.ini
[2007/11/22 00:25:06 | 00,776,441 | -HS- | C] () -- C:\WINDOWS\System32\xjhioxus.ini
[2007/11/21 19:12:55 | 00,866,311 | -HS- | C] () -- C:\WINDOWS\System32\yvnnyllf.ini
[2007/11/20 19:12:41 | 00,822,345 | -HS- | C] () -- C:\WINDOWS\System32\hadnkysf.ini
[2007/11/19 19:12:41 | 00,867,477 | -HS- | C] () -- C:\WINDOWS\System32\uitambbc.ini
[2007/11/18 19:12:41 | 00,678,289 | -HS- | C] () -- C:\WINDOWS\System32\kunsaotx.ini
[2007/11/17 19:09:50 | 00,678,220 | -HS- | C] () -- C:\WINDOWS\System32\lrrxcmvo.ini
[2007/11/17 17:49:32 | 00,678,160 | -HS- | C] () -- C:\WINDOWS\System32\wqykfdey.ini
[2007/11/16 08:13:53 | 00,678,100 | -HS- | C] () -- C:\WINDOWS\System32\obfvfqvb.ini
[2007/11/15 08:13:53 | 00,671,136 | -HS- | C] () -- C:\WINDOWS\System32\gfgfsxof.ini
[2007/11/14 08:13:53 | 00,671,462 | -HS- | C] () -- C:\WINDOWS\System32\mqxevqgj.ini
[2007/11/13 20:11:04 | 00,668,993 | -HS- | C] () -- C:\WINDOWS\System32\enmuwfoa.ini
[2007/11/13 10:09:30 | 00,669,053 | -HS- | C] () -- C:\WINDOWS\System32\umcddksj.ini
[2007/11/11 17:59:23 | 00,036,864 | ---- | C] () -- C:\WINDOWS\System32\EGameEncrypt.dll
[2007/11/10 11:01:04 | 00,584,596 | -HS- | C] () -- C:\WINDOWS\System32\vxvshjfv.ini
[2007/11/07 03:55:03 | 00,584,476 | -HS- | C] () -- C:\WINDOWS\System32\glhwxaqc.ini
[2007/11/06 13:19:28 | 00,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll
[2007/11/06 10:38:07 | 00,497,851 | -HS- | C] () -- C:\WINDOWS\System32\brpkxpqo.ini
[2007/11/05 14:27:04 | 00,583,284 | -HS- | C] () -- C:\WINDOWS\System32\ecqnljxm.ini
[2007/11/05 10:35:34 | 00,540,696 | -HS- | C] () -- C:\WINDOWS\System32\rypprxlj.ini
[2007/11/05 00:53:58 | 00,583,224 | -HS- | C] () -- C:\WINDOWS\System32\ytoewkgg.ini
[2007/11/04 22:38:33 | 00,583,404 | -HS- | C] () -- C:\WINDOWS\System32\mqkyvlbu.ini
[2007/11/03 07:42:03 | 00,583,104 | -HS- | C] () -- C:\WINDOWS\System32\tibsnfxb.ini
[2007/11/02 07:45:03 | 00,582,344 | -HS- | C] () -- C:\WINDOWS\System32\sscvravy.ini
[2007/11/01 07:42:14 | 00,582,284 | -HS- | C] () -- C:\WINDOWS\System32\fadhmxhv.ini
[2007/10/30 23:18:55 | 01,170,408 | -HS- | C] () -- C:\WINDOWS\System32\ipfvocos.ini
[2007/10/29 23:15:56 | 01,280,542 | -HS- | C] () -- C:\WINDOWS\System32\ykynxjin.ini
[2007/10/28 23:13:27 | 01,199,600 | -HS- | C] () -- C:\WINDOWS\System32\cgxhyurr.ini
[2007/10/27 23:50:14 | 01,177,128 | -HS- | C] () -- C:\WINDOWS\System32\dxyqrmsj.ini
[2007/10/26 23:50:14 | 01,172,240 | -HS- | C] () -- C:\WINDOWS\System32\wvwxbsli.ini
[2007/10/25 23:50:13 | 00,694,201 | -HS- | C] () -- C:\WINDOWS\System32\hpiojihi.ini
[2007/10/24 23:50:13 | 00,694,141 | -HS- | C] () -- C:\WINDOWS\System32\yoauumcj.ini
[2007/10/23 23:47:44 | 00,694,081 | -HS- | C] () -- C:\WINDOWS\System32\nibvqwmi.ini
[2007/10/23 15:31:32 | 00,694,021 | -HS- | C] () -- C:\WINDOWS\System32\bybyhlqy.ini
[2007/10/23 02:07:18 | 00,693,781 | -HS- | C] () -- C:\WINDOWS\System32\vthiditb.ini
[2007/10/22 02:09:41 | 00,693,601 | -HS- | C] () -- C:\WINDOWS\System32\kxxnwdme.ini
[2007/10/21 02:06:37 | 00,693,541 | -HS- | C] () -- C:\WINDOWS\System32\ogedukqr.ini
[2007/10/20 02:06:23 | 00,693,448 | -HS- | C] () -- C:\WINDOWS\System32\fyubfmvj.ini
[2007/10/19 17:56:16 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2007/10/19 17:54:28 | 00,000,416 | ---- | C] () -- C:\WINDOWS\System32\dtu100.dll.manifest
[2007/10/19 17:54:28 | 00,000,416 | ---- | C] () -- C:\WINDOWS\System32\dpl100.dll.manifest
[2007/10/19 02:09:12 | 00,696,061 | -HS- | C] () -- C:\WINDOWS\System32\ottnrwmi.ini
[2007/10/18 02:06:14 | 00,695,941 | -HS- | C] () -- C:\WINDOWS\System32\fsxofgju.ini
[2007/10/17 02:04:25 | 00,695,701 | -HS- | C] () -- C:\WINDOWS\System32\vhvogqmh.ini
[2007/10/16 02:01:54 | 00,695,581 | -HS- | C] () -- C:\WINDOWS\System32\oogbbwgd.ini
[2007/10/16 00:41:15 | 00,695,521 | -HS- | C] () -- C:\WINDOWS\System32\byatjsqi.ini
[2007/10/15 19:41:24 | 00,695,401 | -HS- | C] () -- C:\WINDOWS\System32\ffwvotou.ini
[2007/10/14 19:41:12 | 00,695,221 | -HS- | C] () -- C:\WINDOWS\System32\opbxblvu.ini
[2007/10/13 19:40:22 | 00,695,161 | -HS- | C] () -- C:\WINDOWS\System32\wghxeapj.ini
[2007/10/13 15:43:12 | 00,694,921 | -HS- | C] () -- C:\WINDOWS\System32\hmeenwrv.ini
[2007/10/12 15:43:11 | 00,694,801 | -HS- | C] () -- C:\WINDOWS\System32\cbjqtiwf.ini
[2007/10/11 15:40:36 | 00,694,741 | -HS- | C] () -- C:\WINDOWS\System32\btfqtlok.ini
[2007/10/10 15:40:11 | 00,694,681 | -HS- | C] () -- C:\WINDOWS\System32\bbncwbmh.ini
[2007/10/09 15:40:23 | 00,694,621 | -HS- | C] () -- C:\WINDOWS\System32\ffiraerm.ini
[2007/10/08 15:39:02 | 00,694,561 | -HS- | C] () -- C:\WINDOWS\System32\emredhhy.ini
[2007/10/08 03:35:12 | 00,694,441 | -HS- | C] () -- C:\WINDOWS\System32\igbpmqxd.ini
[2007/10/07 03:32:14 | 00,694,321 | -HS- | C] () -- C:\WINDOWS\System32\ruowjvwc.ini
[2007/10/06 03:33:24 | 00,694,261 | -HS- | C] () -- C:\WINDOWS\System32\mgyyonxt.ini
[2007/10/05 03:33:24 | 00,694,141 | -HS- | C] () -- C:\WINDOWS\System32\jkbhloyc.ini
[2007/10/04 03:30:43 | 00,694,081 | -HS- | C] () -- C:\WINDOWS\System32\noduaeiy.ini
[2007/10/03 03:30:25 | 00,694,021 | -HS- | C] () -- C:\WINDOWS\System32\ntikehcc.ini
[2007/10/02 03:30:09 | 00,693,961 | -HS- | C] () -- C:\WINDOWS\System32\mdfgydbu.ini
[2007/10/01 03:31:09 | 00,693,739 | -HS- | C] () -- C:\WINDOWS\System32\utxlcodu.ini
[2007/09/30 03:32:10 | 00,693,601 | -HS- | C] () -- C:\WINDOWS\System32\sobvtanx.ini
[2007/09/28 15:28:19 | 00,693,508 | -HS- | C] () -- C:\WINDOWS\System32\sxmvgwtk.ini
[2007/09/28 07:36:34 | 00,693,481 | -HS- | C] () -- C:\WINDOWS\System32\wbxkqica.ini
[2007/09/24 20:29:49 | 00,045,056 | ---- | C] () -- C:\WINDOWS\mmfs.dll
[2007/09/24 20:29:49 | 00,000,585 | -HS- | C] () -- C:\WINDOWS\System32\mmf.sys
[2007/05/22 00:16:34 | 00,073,728 | ---- | C] () -- C:\WINDOWS\System32\SDVC03.drv
[2007/04/18 20:12:39 | 00,040,960 | ---- | C] () -- C:\WINDOWS\System32\IPPCPUID.DLL
[2007/04/18 20:11:35 | 00,011,776 | ---- | C] () -- C:\WINDOWS\System32\pmsbfn32.dll
[2007/02/13 16:17:57 | 00,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI
[2007/01/11 18:19:45 | 00,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll
[2006/12/02 18:26:07 | 00,000,102 | ---- | C] () -- C:\WINDOWS\VSWizard.ini
[2006/11/10 06:08:50 | 00,024,064 | ---- | C] () -- C:\WINDOWS\System32\drivers\ATITool.sys
[2006/10/16 16:22:10 | 00,000,000 | ---- | C] () -- C:\WINDOWS\iplayer.INI
[2006/06/26 14:29:50 | 00,000,036 | RHS- | C] () -- C:\WINDOWS\System32\watson19.dll
[2006/06/18 21:34:55 | 00,364,544 | ---- | C] () -- C:\WINDOWS\System32\js32.dll
[2006/06/16 12:02:19 | 00,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2006/06/16 11:53:52 | 00,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll
[2006/06/16 11:53:52 | 00,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll
[2006/06/16 11:53:52 | 00,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll
[2006/06/03 00:50:03 | 00,000,209 | ---- | C] () -- C:\WINDOWS\GSdx9.INI
[2006/04/22 16:10:03 | 00,008,704 | ---- | C] () -- C:\WINDOWS\System32\CNMVS7D.DLL
[2006/04/08 16:11:58 | 00,000,177 | ---- | C] () -- C:\WINDOWS\System32\SETUP.INI
[2006/03/30 21:13:31 | 00,024,576 | R--- | C] () -- C:\WINDOWS\System32\AsIO.dll
[2006/03/30 21:13:31 | 00,004,962 | R--- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys
[2006/03/30 21:13:30 | 00,005,120 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp64.sys
[2006/03/30 21:13:30 | 00,003,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp32.sys
[2006/03/03 19:48:16 | 00,684,032 | ---- | C] () -- C:\WINDOWS\libeay32.dll
[2006/03/03 19:48:16 | 00,155,648 | ---- | C] () -- C:\WINDOWS\ssleay32.dll
[2006/02/26 14:54:13 | 00,089,088 | ---- | C] ( ) -- C:\WINDOWS\System32\Unzdll.dll
[2006/02/21 21:36:46 | 00,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2006/02/20 12:17:42 | 00,001,950 | ---- | C] () -- C:\WINDOWS\System32\drivers\REGISTER.SYS
[2005/12/21 16:37:36 | 00,000,268 | ---- | C] () -- C:\WINDOWS\Audiocut.ini
[2005/12/21 16:36:13 | 00,003,082 | ---- | C] () -- C:\WINDOWS\System32\affv11300p2now.sys
[2005/12/21 02:57:36 | 00,000,036 | ---- | C] () -- C:\WINDOWS\System32\drvlock.sys
[2005/12/21 02:57:36 | 00,000,030 | ---- | C] () -- C:\WINDOWS\System32\symbios.sys
[2005/12/21 02:24:58 | 00,000,489 | ---- | C] () -- C:\WINDOWS\asr.INI
[2005/11/30 21:32:34 | 00,000,094 | ---- | C] () -- C:\WINDOWS\wowCP.ini
[2005/11/29 21:31:33 | 00,685,816 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2005/11/28 18:54:21 | 00,000,028 | ---- | C] () -- C:\WINDOWS\atid.ini
[2005/11/05 20:15:33 | 00,000,602 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2005/10/13 21:27:30 | 00,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2005/10/06 21:26:10 | 00,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd.dll
[2005/10/06 20:28:23 | 00,028,672 | ---- | C] () -- C:\WINDOWS\System32\PdeSrvps.dll
[2005/10/04 17:00:51 | 00,000,192 | ---- | C] () -- C:\WINDOWS\winamp.ini
[2005/10/04 16:44:06 | 00,000,269 | R--- | C] () -- C:\WINDOWS\System32\raidmgmt.ini
[2005/10/04 16:43:55 | 00,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2005/10/04 16:43:52 | 00,006,344 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2005/10/04 16:43:49 | 00,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2005/08/30 01:00:00 | 00,781,312 | ---- | C] () -- C:\WINDOWS\System32\RGSS102J.dll
[2005/08/30 01:00:00 | 00,778,752 | ---- | C] () -- C:\WINDOWS\System32\RGSS102E.dll
[2005/08/30 01:00:00 | 00,771,584 | ---- | C] () -- C:\WINDOWS\System32\RGSS100J.dll
[2005/08/09 15:13:31 | 00,831,488 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2005/08/09 15:13:31 | 00,159,744 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2005/05/29 16:35:01 | 00,473,600 | ---- | C] () -- C:\WINDOWS\System32\Harmony.dll
[2005/05/29 16:35:01 | 00,237,568 | ---- | C] () -- C:\WINDOWS\System32\Unlha32.dll
[2005/05/29 15:55:28 | 00,000,056 | RHS- | C] () -- C:\WINDOWS\System32\6D14A3F742.sys
[2005/05/29 15:55:26 | 00,001,890 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys
[2005/05/18 12:03:00 | 00,581,632 | ---- | C] () -- C:\WINDOWS\System32\dfxg12.dll
[2005/01/01 00:30:56 | 00,006,016 | ---- | C] () -- C:\WINDOWS\System32\drivers\ALLOW-IO.SYS
[2003/08/07 15:01:50 | 00,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2003/04/18 09:28:34 | 00,004,990 | ---- | C] () -- C:\WINDOWS\AVerTV.ini
[2003/03/27 15:18:54 | 00,065,536 | ---- | C] () -- C:\WINDOWS\System32\akrip.dll
[2002/10/06 11:42:57 | 00,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2002/10/04 16:04:25 | 00,921,600 | ---- | C] () -- C:\WINDOWS\System32\vorbisenc.dll
[2002/10/04 16:04:24 | 00,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2002/10/04 16:04:17 | 00,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2002/03/18 13:37:42 | 00,192,512 | ---- | C] () -- C:\WINDOWS\System32\ezmp3enc.dll
[2001/10/29 13:51:02 | 00,045,056 | ---- | C] () -- C:\WINDOWS\System32\NavLogon.dll
[2001/08/23 05:00:00 | 00,001,808 | ---- | C] () -- C:\WINDOWS\win.ini
[2001/08/23 05:00:00 | 00,000,318 | ---- | C] () -- C:\WINDOWS\system.ini
[2000/09/04 00:29:58 | 00,017,920 | -H-- | C] () -- C:\WINDOWS\System32\Implode.dll
[2000/06/28 02:00:00 | 00,124,416 | ---- | C] () -- C:\WINDOWS\System32\dXCtrls.dll
[1997/10/24 15:56:36 | 00,000,643 | ---- | C] () -- C:\WINDOWS\LEXSTAT.INI
[1996/04/03 12:33:26 | 00,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys
========== Files - Modified Within 30 Days ==========
[2 C:\*.tmp files]
[1 C:\WINDOWS\System32\drivers\*.tmp files]
[6 C:\WINDOWS\System32\*.tmp files]
[14 C:\WINDOWS\*.tmp files]
[2009/04/17 19:05:04 | 01,857,284 | ---- | M] () -- C:\WINDOWS\System32\pghash.dat
[2009/04/17 18:56:23 | 00,000,746 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\TV Expert Schedule Agent.lnk
[2009/04/17 18:56:14 | 00,212,973 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2009/04/17 18:56:14 | 00,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009/04/17 18:56:00 | 00,833,006 | ---- | M] () -- C:\WINDOWS\NetPkr.str
[2009/04/17 18:55:42 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009/04/17 18:55:39 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009/04/17 18:39:37 | 00,501,248 | ---- | M] (OldTimer Tools) -- C:\DOCUME~1\Kevin\Desktop\OTListIt2.exe
[2009/04/17 18:39:33 | 00,267,612 | ---- | M] () -- C:\DOCUME~1\Kevin\Desktop\Rooter.exe
[2009/04/17 18:32:44 | 00,023,058 | ---- | M] () -- C:\DOCUME~1\Kevin\My Documents\cc_20090417_183239.reg
[2009/04/17 17:51:00 | 00,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn
[2009/04/17 14:19:42 | 00,000,780 | ---- | M] () -- C:\DOCUME~1\ALLUSE~1\Desktop\SUPERAntiSpyware Free Edition.lnk
[2009/04/17 14:19:21 | 06,289,952 | ---- | M] () -- C:\DOCUME~1\Kevin\Desktop\SUPERAntiSpyware.exe
[2009/04/17 14:16:24 | 00,001,709 | ---- | M] () -- C:\DOCUME~1\ALLUSE~1\Desktop\avast! Antivirus.lnk
[2009/04/17 14:16:21 | 00,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2009/04/17 14:15:18 | 00,308,160 | ---- | M] (ALWIL Software) -- C:\DOCUME~1\Kevin\Desktop\avast_pro_setup.exe
[2009/04/17 14:14:46 | 00,905,815 | ---- | M] () -- C:\DOCUME~1\Kevin\Desktop\Cartographer-v2.5.3.zip
[2009/04/17 14:13:30 | 00,293,176 | ---- | M] () -- C:\DOCUME~1\Kevin\Desktop\Quartz-r13-release.zip
[2009/04/17 14:12:32 | 00,228,247 | ---- | M] () -- C:\DOCUME~1\Kevin\Desktop\Talented-v2.0b-release.zip
[2009/04/17 14:12:13 | 00,763,164 | ---- | M] () -- C:\DOCUME~1\Kevin\Desktop\ArkInventory-3.02.10.zip
[2009/04/17 14:11:33 | 00,645,583 | ---- | M] () -- C:\DOCUME~1\Kevin\Desktop\PitBull-v3.2.10.zip
[2009/04/16 13:14:27 | 00,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009/04/15 21:00:31 | 00,000,685 | ---- | M] () -- C:\DOCUME~1\ALLUSE~1\Desktop\Driver Sweeper.lnk
[2009/04/15 19:34:37 | 00,076,198 | ---- | M] () -- C:\DOCUME~1\Kevin\My Documents\cc_20090415_193429.reg
[2009/04/15 19:32:13 | 00,590,369 | ---- | M] () -- C:\DOCUME~1\Kevin\My Documents\cc_20090415_1932.reg
[2009/04/15 18:14:04 | 00,046,080 | ---- | M] () -- C:\DOCUME~1\Kevin\Desktop\Team Plan.doc
[2009/04/14 22:27:15 | 00,000,696 | ---- | M] () -- C:\DOCUME~1\ALLUSE~1\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/04/14 22:26:53 | 02,967,800 | ---- | M] (Malwarebytes Corporation ) -- C:\DOCUME~1\Kevin\Desktop\mbam-setup.exe
[2009/04/14 19:14:16 | 00,473,098 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009/04/14 19:14:16 | 00,085,404 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009/04/14 19:14:16 | 00,004,830 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009/04/14 18:34:16 | 00,001,808 | ---- | M] () -- C:\WINDOWS\win.ini
[2009/04/14 18:34:16 | 00,000,318 | ---- | M] () -- C:\WINDOWS\system.ini
[2009/04/14 18:34:16 | 00,000,211 | RHS- | M] () -- C:\boot.ini
[2009/04/14 14:25:00 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2009/04/09 17:17:03 | 00,005,528 | ---- | M] () -- C:\DOCUME~1\Kevin\Desktop\buyzonerange.amxx
[2009/04/07 19:45:02 | 00,063,488 | ---- | M] () -- C:\DOCUME~1\Kevin\Desktop\Death Knight PvP.doc
[2009/04/06 15:32:54 | 00,038,496 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009/04/06 15:32:46 | 00,015,504 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009/04/04 19:22:44 | 00,083,456 | ---- | M] () -- C:\Documents and Settings\Kevin\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/04/04 14:11:27 | 00,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf
[2009/04/04 13:55:06 | 00,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2009/04/04 13:55:06 | 00,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2009/04/03 20:17:40 | 00,000,823 | ---- | M] () -- C:\DOCUME~1\ALLUSE~1\Desktop\World of Warcraft.lnk
[2009/04/03 17:45:36 | 00,000,622 | ---- | M] () -- C:\DOCUME~1\Kevin\Desktop\Shortcut to keyclone.lnk
[2009/03/29 22:35:52 | 00,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_LUsbFilt_01005.Wdf
[2009/03/28 00:23:16 | 00,103,424 | ---- | M] () -- C:\DOCUME~1\Kevin\Desktop\WoW Dailies Guide.doc
[2009/03/23 20:03:57 | 00,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_LMouFilt_01005.Wdf
[2009/03/23 20:03:57 | 00,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_LHidFilt_01005.Wdf
[2009/03/23 20:03:53 | 00,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
[2009/03/22 17:42:34 | 00,039,768 | ---- | M] () -- C:\DOCUME~1\Kevin\Application Data\GDIPFONTCACHEV1.DAT
[2009/03/22 01:46:10 | 00,434,534 | ---- | M] () -- C:\WINDOWS\War3Unin.dat
[2009/03/21 21:45:48 | 00,000,818 | ---- | M] () -- C:\DOCUME~1\Kevin\Desktop\Free Studio Manager.lnk
[2009/03/21 16:15:37 | 00,302,509 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2009/03/21 03:08:42 | 00,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2009/03/21 01:51:55 | 00,034,096 | -H-- | M] () -- C:\WINDOWS\System32\mlfcache.dat
[2009/03/20 11:08:01 | 00,039,768 | ---- | M] () -- C:\Documents and Settings\Kevin\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
< End of report >
OTListIt Extras logfile created on: 4/17/2009 7:05:34 PM - Run 1
OTListIt2 by OldTimer - Version 2.0.14.0 Folder = C:\Documents and Settings\Kevin\Desktop
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.00 Gb Total Physical Memory | 1.39 Gb Available Physical Memory | 69.54% Memory free
3.85 Gb Paging File | 3.15 Gb Available in Paging File | 81.98% Paging File free
Paging file location(s): C:\pagefile.sys 0 0;
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 465.76 Gb Total Space | 266.44 Gb Free Space | 57.21% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: KEVINSCOMP
Current User Name: Kevin
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Output = Minimal
File Age = 30 Days
Company Name Whitelist: On
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"6112:TCP" = 6112:TCP:*:Enabled:Warcraft 3
"6667:TCP" = 6667:TCP:*:Enabled:mIRC
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"3389:TCP" = 3389:TCP:*:Disabled:@xpsp2res.dll,-22009
"3724:TCP" = 3724:TCP:*:Enabled:Blizzard Downloader: 3724
"27015:TCP" = 27015:TCP:*:Enabled:CSTRIKE
"16208:TCP" = 16208:TCP:*:Enabled:BitCometLite 16208 TCP
"16208:UDP" = 16208:UDP:*:Enabled:BitCometLite 16208 UDP
"67:UDP" = 67:UDP:*:Enabled:DHCP Discovery Service
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:MSN Messenger 7.5 File not found
%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 (Microsoft Corporation)
C:\Program Files\AIM\aim.exe:*:Enabled:AOL Instant Messenger (America Online, Inc.)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire ()
C:\Program Files\Java\jre1.5.0_04\bin\javaw.exe:*:Enabled:Java™ 2 Platform Standard Edition binary (Sun Microsystems, Inc.)
C:\Program Files\mIRC\mirc.exe:*:Enabled:mIRC (mIRC Co. Ltd.)
C:\Program Files\Common Files\AOL\Loader\aolload.exe:*:Enabled:AOL Loader (AOL LLC)
C:\Program Files\Common Files\AOL\1133229381\ee\aolsoftware.exe:*:Enabled:AOL Services File not found
C:\Program Files\Common Files\AOL\1133229381\ee\aim6.exe:*:Enabled:AIM File not found
C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:MSN Messenger 7.5 File not found
C:\WINDOWS\system32\LEXPPS.EXE:*:Enabled:LEXPPS.EXE (Lexmark International, Inc.)
C:\Program Files\Steam\SteamApps\superchicken\counter-strike\hl.exe:*:Enabled:Half-Life Launcher (Valve)
C:\Program Files\Steam\SteamApps\superchicken\condition zero\hl.exe:*:Enabled:Half-Life Launcher (Valve)
C:\Program Files\Xfire\Xfire.exe:*:Enabled:Xfire (Xfire Inc.)
C:\Program Files\World of Warcraft\WoW-1.9.4.5086-to-1.10.0.5195-enUS-downloader.exe:*:Enabled:Blizzard Downloader (Blizzard Entertainment)
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe:*:Enabled:Apache HTTP Server File not found
C:\Program Files\hix\mirc.exe:*:Enabled:mIRC File not found
C:\Documents and Settings\Kevin\Desktop\MircStormbot\mirc.exe:*:Enabled:mirc File not found
C:\Program Files\World of Warcraft\BackgroundDownloader.exe:*:Enabled:Blizzard Downloader (Blizzard Entertainment)
C:\Documents and Settings\Kevin\Local Settings\Temp\WoWSneakPeekDownloader\WoWSneakPeekDownloader.exe:*:Enabled:WoWSneakPeekDownloader File not found
C:\Program Files\World of Warcraft\Launcher.exe:*:Disabled:World of Warcraft (Blizzard Entertainment)
C:\Program Files\Ocean Technology\GG E-Sports Platform\GGclient.exe:*:Enabled:GG E-Sports Platform Client File not found
C:\Program Files\Hollywood Hack\HollywoodHack163.exe:*:Enabled:HollywoodHack163 File not found
C:\Program Files\HLSW\hlsw.exe:*:Enabled:HLSW (Stripf Software)
C:\Documents and Settings\Kevin\Local Settings\Temp\usmt\migwiz.exe:*:Enabled:Files and Settings Transfer Wizard File not found
C:\Program Files\World of Warcraft\WoW-1.12.0-enUS-downloader.exe:*:Enabled:Blizzard Downloader (Blizzard Entertainment)
C:\Program Files\World of Warcraft\WoW-1.12.x-to-2.0.1-enUS-patch-downloader.exe:*:Enabled:Blizzard Downloader (Blizzard Entertainment)
C:\Program Files\World of Warcraft\WoW-2.0.3-enUS-downloader.exe:*:Enabled:Blizzard Downloader (Blizzard Entertainment)
C:\Program Files\World of Warcraft\WoW-2.0.4.6314-to-2.0.5.6320-enUS-downloader.exe:*:Enabled:Blizzard Downloader (Blizzard Entertainment)
C:\Program Files\World of Warcraft\WoW-2.0.3.6299-to-2.0.5.6320-enUS-downloader.exe:*:Enabled:Blizzard Downloader (Blizzard Entertainment)
C:\Program Files\World of Warcraft\WoW-2.0.5.6320-to-2.0.6.6337-enUS-downloader.exe:*:Enabled:Blizzard Downloader (Blizzard Entertainment)
C:\Program Files\SurfOffline\SO.exe:*:Enabled:SurfOffline - offline browser File not found
C:\Program Files\World of Warcraft\WoW-2.0.6.6337-to-2.0.7.6383-enUS-downloader.exe:*:Enabled:Blizzard Downloader (Blizzard Entertainment)
C:\Program Files\World of Warcraft\WoW-2.0.7.6383-to-2.0.8.6403-enUS-downloader.exe:*:Enabled:Blizzard Downloader (Blizzard Entertainment)
C:\Program Files\Steam\SteamApps\[email protected]\counter-strike\hl.exe:*:Enabled:Half-Life Launcher File not found
C:\Program Files\Steam\SteamApps\m3x1c4nj3w\counter-strike\hl.exe:*:Enabled:Half-Life Launcher File not found
C:\Program Files\Steam\SteamApps\kev323z\counter-strike\hl.exe:*:Enabled:Half-Life Launcher File not found
C:\Program Files\Steam\SteamApps\[email protected]\counter-strike\hl.exe:*:Enabled:Half-Life Launcher File not found
C:\Program Files\Steam\SteamApps\surfer555\counter-strike\hl.exe:*:Enabled:Half-Life Launcher (Valve)
C:\Program Files\Steam\SteamApps\surfer50\counter-strike source\hl2.exe:*:Enabled:hl2 File not found
C:\Program Files\Steam\SteamApps\[email protected]\counter-strike\hl.exe:*:Enabled:Half-Life Launcher (Valve)
C:\Program Files\Steam\SteamApps\[email protected]\counter-strike\hl.exe:*:Enabled:Half-Life Launcher (Valve)
C:\Program Files\World of Warcraft\WoW-2.0.10.6448-to-2.0.12.6546-enUS-downloader.exe:*:Enabled:Blizzard Downloader (Blizzard Entertainment)
C:\Program Files\Steam\SteamApps\[email protected]\counter-strike\hl.exe:*:Enabled:Half-Life Launcher File not found
C:\Program Files\RadioRipper\RadioRipper.exe:*:Enabled:RadioRipper ( )
C:\Program Files\SmartFTP Client\SmartFTP.exe:*:Enabled:SmartFTP Client 2.5 (SmartSoft Ltd.)
C:\Program Files\Steam\SteamApps\[email protected]\counter-strike\hl.exe:*:Enabled:Half-Life Launcher File not found
C:\Program Files\Steam\SteamApps\shadow584\counter-strike\hl.exe:*:Enabled:Half-Life Launcher File not found
C:\Program Files\Fury\Binaries\LauncherApp.exe:*:Enabled:LauncherApp File not found
C:\Program Files\Messenger\msmsgs.exe:*:Disabled:Windows Messenger (Microsoft Corporation)
C:\Program Files\LittleFighter2\LF2_v1.9c\lf2.exe:*:Disabled:lf2 File not found
C:\Program Files\Steam\SteamApps\[email protected]\counter-strike\hl.exe:*:Enabled:Half-Life Launcher File not found
C:\Program Files\Steam\steam.exe:*:Enabled:Steam (Valve Corporation)
C:\Program Files\Octoshape Streaming Services\Kevin\OctoshapeClient.exe:*:Enabled:OctoshapeClient ()
C:\Program Files\Steam\SteamApps\m3x1c4nj3w\counter-strike source\hl2.exe:*:Enabled:hl2 File not found
C:\Program Files\Steam\SteamApps\betrayedone\counter-strike\hl.exe:*:Enabled:Half-Life Launcher (Valve)
C:\Program Files\Veoh Networks\Veoh\VeohClient.exe:*:Enabled:Veoh Client (Veoh Networks)
C:\Program Files\AIM6\aim6.exe:*:Enabled:AIM File not found
%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 (Microsoft Corporation)
C:\Program Files\AIM\aim.exe:*:Enabled:AOL Instant Messenger (America Online, Inc.)
C:\Program Files\DNA\btdna.exe:*:Enabled:DNA (BitTorrent, Inc.)
C:\Program Files\Steam\SteamApps\[email protected]\counter-strike\hl.exe:*:Enabled:Half-Life Launcher (Valve)
C:\Program Files\Ventrilo\Ventrilo.exe:*:Enabled:Ventrilo.exe ()
C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe:*:Enabled:Veoh Web Player (Veoh Networks)
C:\Program Files\Steam\SteamApps\common\left 4 dead\left4dead.exe:*:Enabled:Left 4 Dead ()
C:\Program Files\World of Warcraft\WoW-3.0.9.9551-to-3.1.0.9767-enUS-downloader.exe:*:Enabled:Blizzard Downloader (Blizzard Entertainment)
C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe:LocalSubNet:Enabled:Pure Networks Platform Service (Cisco Systems, Inc.)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0405E51E-9582-4207-8F38-AC44201D3808}" = VeohTV BETA
"{0965D484-1777-4BA5-8C3A-095A6B0D2696}_is1" = Driver Sweeper 1.5.5
"{0A146245-DB79-4197-BF5D-FE1A699A2CC7}" = Camera Window DS
"{0DCCE3F4-E888-40E8-8AE5-CF8058F25631}" = DVC5.1 Driver
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{1ADE1AA0-7F82-4BB1-B1BD-727DE438057B}" = Cool & Quiet
"{21DBBDD6-93A5-4326-9A04-C9A5C9148502}" = Norton PartitionMagic
"{26A24AE4-039D-4CA4-87B4-2F83216013FF}" = Java™ 6 Update 13
"{2E0C1913-886B-4C5C-8DAF-D1E649CE5FCC}" = Creative MediaSource
"{31C44235-A613-4E95-B297-207BF6C6A8C1}" = Creative ZEN Vision M Series
"{3215EBED-1D06-42fb-A05C-A752A46FB24C}" = Canon MP530
"{3248F0A8-6813-11D6-A77B-00B0D0150040}" = J2SE Runtime Environment 5.0 Update 4
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3868A8EE-5051-4DB0-8DF6-4F4B8A98D083}" = QuickTime
"{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}" = Gigabyte Raid Configurer
"{3DD8E700-2DC7-42D3-9DA0-C491EC043768}" = Patcher
"{3DE5E7D4-7B88-403C-A3FD-2017A8240C5B}" = Google Earth
"{491DD792-AD81-429C-9EB4-86DD3D22E333}" = Windows Communication Foundation
"{49CC1A6A-3A1A-4EE7-913F-8106B51B59D1}" = Paragon Partition Manager 9.0 Personal Trial
"{4DBBF091-FACD-422C-B43C-786335BD5398}" = MovieEdit Task
"{4fdc0019-01b3-4435-b7c5-3312d7e6419c}" = DFX for RealNetworks
"{50E25180-3BDC-4B6D-80A2-3F1F0C9CF39D}" = Camera Window DVC
"{5A39D5C2-A28B-421D-925A-0390FD1E5529}_is1" = Hot CPU Tester Pro 4.3
"{5A9FE525-8B8F-4701-A937-7F6745A4E9C7}" = RGSS-RTP Standard
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{68CC21AD-B6EC-4DB8-954D-F27AD0D9A83F}" = TV Expert
"{6C3A75A6-9A90-44A3-A703-82AC1EA6A85D}" = Camera Window MC
"{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo Client
"{791C59F1-46FE-475B-B46F-058C0FABBED4}" = InterVideo FilterSDK
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}" = Windows Workflow Foundation
"{7ED169D4-5053-4166-93DF-53B12AE6C539}" = Energy Saver Advance B8.1015.1
"{7FBA44C4-6CBC-4892-8BCF-DA5C2DB67B03}" = Atlantica Online
"{81A60A13-224D-4637-8203-3EAC03B121A4}" = Seagate DiscWizard
"{86D28491-78AB-445C-A507-6F3FA81D7611}" = Canon iP6600D Memory Card Utility
"{872653C6-5DDC-488B-B7C2-CF9E4D9335E5}" = iTunes
"{89C89156-A70F-4C6D-9CAE-2EA71F1396FE}" = Garena
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8C92D38B-C1DE-490A-B6D1-AAAA8E17DCE2}" = WinTasks Trial
"{8DF56C91-281F-4C15-B954-F45FDC919568}" = UltraTV
"{8E1DCD15-C9F1-49CE-807B-198C8241EB6B}" = ALi USB2.0 Driver
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90280409-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional with FrontPage
"{9B34CAC6-738F-4A20-B428-A115C3E3474C}" = RPGXP
"{9DE9E293-5D7B-4312-88C2-BDFAEC5310AE}" = Microsoft .NET Framework 3.0
"{A28BECB7-2BF4-4171-8CDE-3803F0FE2874}" = ISEngineUpdate
"{A2EB8F2E-6D9B-4F8B-96EB-F976D33F416F}" = Camera Window DVC
"{A2F166A0-F031-4E27-A057-C69733219434}_is1" = Runes of Magic
"{AC76BA86-7AD7-1033-7B44-A70500000002}" = Adobe Reader 7.0.5
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B4FEA924-630D-11D4-B78E-005004566E4D}" = ViewSonic Monitor Drivers
"{B6EC7388-E277-4A5B-8C8F-71067A41BA64}" = TextPad 5
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}" = Apple Software Update
"{BA3FD02D-7BD0-4CD0-BFB4-B407D43D6A17}" = Cisco Network Magic
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{BB148BFF-D96D-48B6-9B4A-243DCC6DD444}" = Comic Life
"{BBBC2B89-E193-4348-A83C-C8DD8210A4AC}" = Canon PhotoRecord
"{C169D3BB-9A27-43F5-9979-09A0D65FE95C}" = SmartFTP Client
"{C1E693A4-B1D5-4DCD-B68D-2087835B7184}" = ScanSoft OmniPage SE 4.0
"{C34FAEF3-4241-4C4E-9CFF-7BBD8BCEABE7}" = WebEx Support Manager for Internet Explorer
"{C950420B-4182-49EA-850A-A6A2ABF06C6B}" = Marvell Miniport Driver
"{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware Free Edition
"{CF142A77-86EE-4973-8FF9-0615F554E7FA}" = FLEXnet AdminStudio
"{D2D6B9EB-C6DC-4DAA-B4DE-BB7D9735E7DA}" = Presto! PageManager 7.15.14
"{DD1865F0-AD73-40FB-B23E-1822E02396FF}" = NVIDIA PhysX
"{E8AEA11B-E60A-455E-B008-E4E763604612}" = Browser Configuration Utility
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1CBC6F7-D82D-4DC5-B81C-9A14F418593A}_is1" = WC3Banlist
"{F2B4305A-A66F-40FF-AA18-C3A551D9708E}" = WFilter
"{FA237125-51FF-408C-8BB8-30C2B3DFFF9C}" = Windows Resource Kit Tools
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FBDBC490-089D-4476-BF72-1F7A6368200A}" = Pure Networks Platform
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Add/Remove Pro" = Add/Remove Pro
"Adobe Acrobat 4.0" = Adobe Acrobat 4.0
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop 7.0" = Adobe Photoshop 7.0
"AOL Instant Messenger" = AOL Instant Messenger
"ATITool" = ATITool Overclocking Utility
"Auctioneer" = Auctioneer AddOns
"AutoHotkey" = AutoHotkey 1.0.48.00
"AutoItv3" = AutoIt v3.1.1
"AutoXDCC" = AutoXDCC
"avast!" = avast! Antivirus
"AVS DVDMenu Editor_is1" = AVS DVDMenu Editor 1.2.1.19
"AVS Video Tools 5_is1" = AVS Video Tools 5.6
"AWC" = Advanced WarCraft3 Configurator (remove only)
"Azureus" = Azureus
"BattleChar Generator" = BattleChar Generator
"Canon MP530 User Registration" = Canon MP530 User Registration
"CANONBJ_Deinstall_CNMCP7D.DLL" = Canon iP6600D
"CCleaner" = CCleaner (remove only)
"CMN_Deploy_0" = CMN3 4.0
"ComcastHSI" = Comcast High-Speed Internet Install Wizard
"Creative Jukebox Driver" = Creative Jukebox Driver
"Creative Removable Disk Manager" = Creative Removable Disk Manager
"Dekaron" = Dekaron
"DFX for Winamp" = DFX for Winamp
"Diablo II" = Diablo II
"DivX Content Uploader" = DivX Content Uploader
"DotaKeys" = DotaKeys 1.32.07
"Driver Cleaner Pro" = DH Driver Cleaner Professional Edition
"DVD Decrypter" = DVD Decrypter (Remove Only)
"EASEUS Partition Manager Home Edition_is1" = EASEUS Partition Manager 3.0 Home Edition
"EasyLinkAdvisor" = Linksys EasyLink Advisor 1.5 (1045)
"Easy-PhotoPrint" = Canon Utilities Easy-PhotoPrint
"Easy-WebPrint" = Easy-WebPrint
"eVer-Craft_is1" = eVer-Craft
"Extension Changer" = Extension Changer
"ffdshow_is1" = ffdshow [rev 2083] [2008-08-21]
"FL Studio 6" = FL Studio 6
"ForceBindIP" = ForceBindIP
"Fraps" = Fraps (remove only)
"Free YouTube to Mp3 Converter_is1" = Free YouTube to Mp3 Converter version 3.1
"Half-Life Dedicated Server Update Tool" = Half-Life Dedicated Server Update Tool
"Hamachi" = Hamachi 1.0.1.5
"HLSW_is1" = HLSW v1.3.0
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"InstallShield_{0405E51E-9582-4207-8F38-AC44201D3808}" = VeohTV BETA
"InstallShield_{0A146245-DB79-4197-BF5D-FE1A699A2CC7}" = Canon Camera Window DSLR 5 for ZoomBrowser EX
"InstallShield_{21DBBDD6-93A5-4326-9A04-C9A5C9148502}" = Norton PartitionMagic 8.0
"InstallShield_{3868A8EE-5051-4DB0-8DF6-4F4B8A98D083}" = QuickTime
"InstallShield_{4DBBF091-FACD-422C-B43C-786335BD5398}" = Canon MovieEdit Task for ZoomBrowser EX
"InstallShield_{50E25180-3BDC-4B6D-80A2-3F1F0C9CF39D}" = Canon Camera Window DC_DV 6 for ZoomBrowser EX
"InstallShield_{6C3A75A6-9A90-44A3-A703-82AC1EA6A85D}" = Canon Camera Window MC 6 for ZoomBrowser EX
"InstallShield_{872653C6-5DDC-488B-B7C2-CF9E4D9335E5}" = iTunes
"InstallShield_{8DF56C91-281F-4C15-B954-F45FDC919568}" = UltraTV
"InstallShield_{A2EB8F2E-6D9B-4F8B-96EB-F976D33F416F}" = Canon Camera Window DC_DV 5 for ZoomBrowser EX
"Keycraft" = Keycraft (remove only)
"LimeWire" = LimeWire PRO 4.12.6
"LiveReg" = LiveReg (Symantec Corporation)
"LiveUpdate" = LiveUpdate 1.80 (Symantec Corporation)
"Macromedia Shockwave Player" = Macromedia Shockwave Player
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Matroska Pack" = Matroska Pack
"Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0
"Microsoft .NET Framework 3.0" = Microsoft .NET Framework 3.0
"mIRC" = mIRC
"MKV Minimum Set (LD-Anime) - MatroskaSplitter & VSFilter_is1" = Matroska Pack - Lazy Man's MKV 0.9.9
"mm.BOT5.46" = mm.BOT
"Motherboard Monitor 5_is1" = Motherboard Monitor 5
"Mozilla ActiveX Control v1.7.12" = Mozilla ActiveX Control v1.7.12
"Mozilla Firefox (3.0.8)" = Mozilla Firefox (3.0.8)
"MP Navigator 2.2" = Canon MP Navigator 2.2
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NeroMultiInstaller!UninstallKey" = Nero Suite
"Netscape Browser" = Netscape Browser (remove only)
"Network MagicUninstall" = Network Magic
"NJStar Chinese Word Processor" = NJStar Chinese Word Processor
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"OCCT_is1" = OCCT v0.91
"OggDS" = Direct Show Ogg Vorbis Filter (remove only)
"PerformanceTest_is1" = PerformanceTest v6.1
"Pixillion" = Pixillion Image Converter
"POD-Bot 2.5" = POD-Bot 2.5
"Prism" = Prism Video Converter
"ReaJPEG_is1" = ReaJPEG 2.0
"RealPlayer 6.0" = RealPlayer
"RPG Maker 2000 1.05" = RPG Maker 2000 1.05
"RPG Maker 2003_is1" = RPG Maker 2003 v1.08
"RTP for RM2K (Png, Wav, Midi, Fonts)" = RTP for RM2K (Png, Wav, Midi, Fonts)
"Shockwave" = Shockwave
"SpeedFan" = SpeedFan (remove only)
"ST6UNST #1" = SpeedXP
"ST6UNST #2" = Hero Editor V0.96
"StealthBot v2.6 Revision 3" = StealthBot v2.6 Revision 3 (remove only)
"Steam App 10" = Counter-Strike
"Steam App 500" = Left 4 Dead
"Steam™" = Steam™
"SysInfo" = Creative System Information
"SystemRequirementsLab" = System Requirements Lab
"Uninstall_is1" = Uninstall 1.0.0.1
"UWFont" = UWFont
"Valve Hammer Editor" = Valve Hammer Editor
"Veoh Web Player Beta" = Veoh Web Player Beta
"VIA Register Tool" = VIA Register Tool
"Viewpoint Manager" = Viewpoint Manager (Remove Only)
"ViewpointMediaPlayer" = Viewpoint Media Player
"VLC media player" = VideoLAN VLC media player 0.8.6d
"Warhammer Online - Age of Reckoning" = Warhammer Online - Age of Reckoning
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"WIC" = Windows Imaging Component
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 2
"WinGimp-2.0_is1" = GIMP 2.6.4
"WinHTTrack Website Copier_is1" = WinHTTrack Website Copier 3.41-2
"WinMHT" = WinMHT
"WinPcapInst" = WinPcap 4.0.2
"WinRAR archiver" = WinRAR archiver
"WinZip" = WinZip
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"World of Warcraft" = World of Warcraft
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Xfire" = Xfire (remove only)
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"ZENcast Organizer" = ZENcast Organizer
"ZHTIELangPack" = Chinese (Traditional) Language Support
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"BitTorrent DNA" = DNA
"Octoshape Streaming Services" = Octoshape Streaming Services
"RadioRipper" = RadioRipper 1.1d BETA5
"Steam App 10" = Counter-Strike
"Steam App 240" = Counter-Strike: Source
"Warcraft III" = Warcraft III: All Products
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 4/17/2009 4:15:17 PM | Computer Name = KEVINSCOMP | Source = EventSystem | ID = 4609
Description = The COM+ Event System detected a bad return code during its internal
processing. HRESULT was 80070422 from line 44 of d:\qxp_slp\com\com1x\src\events\tier1\eventsystemobj.cpp.
Please contact Microsoft Product Support Services to report this erro
Error - 4/17/2009 4:15:17 PM | Computer Name = KEVINSCOMP | Source = COM+ | ID = 135894
Description = A condition has occurred that indicates this COM+ application is in
an unstable state or is not functioning correctly. Assertion Failure: SUCCEEDED(hr)
Server
Application ID: {02D4B3F1-FD88-11D1-960D-00805FC79235} Server Application Instance
ID: {6719CBC2-AA0A-4E7D-B8BB-62F58D0E9B24} Server Application Name: System Application
The
serious nature of this error has caused the process to terminate. Error Code = 0x8000ffff
: Catastrophic failure COM+ Services Internals Information: File: d:\qxp_slp\com\com1x\src\comsvcs\tracker\trksvr\trksvrimpl.cpp,
Line: 3000 Comsvcs.dll file version: ENU 2001.12.4414.308 s
Error - 4/17/2009 4:15:22 PM | Computer Name = KEVINSCOMP | Source = EventSystem | ID = 4609
Description = The COM+ Event System detected a bad return code during its internal
processing. HRESULT was 80070422 from line 44 of d:\qxp_slp\com\com1x\src\events\tier1\eventsystemobj.cpp.
Please contact Microsoft Product Support Services to report this erro
Error - 4/17/2009 4:15:22 PM | Computer Name = KEVINSCOMP | Source = EventSystem | ID = 4609
Description = The COM+ Event System detected a bad return code during its internal
processing. HRESULT was 80070422 from line 44 of d:\qxp_slp\com\com1x\src\events\tier1\eventsystemobj.cpp.
Please contact Microsoft Product Support Services to report this erro
Error - 4/17/2009 4:15:22 PM | Computer Name = KEVINSCOMP | Source = COM+ | ID = 135761
Description = The run-time environment has detected an inconsistency in its internal
state. This indicates a potential instability in the process that could be caused
by the custom components running in the COM+ application, the components they make
use of, or other factors. Error in d:\qxp_slp\com\com1x\src\comsvcs\events\lcedisp.cpp(131),
hr = 80040206: Failed to CoCreate EventSystem objec
Error - 4/17/2009 4:15:22 PM | Computer Name = KEVINSCOMP | Source = EventSystem | ID = 4609
Description = The COM+ Event System detected a bad return code during its internal
processing. HRESULT was 80070422 from line 44 of d:\qxp_slp\com\com1x\src\events\tier1\eventsystemobj.cpp.
Please contact Microsoft Product Support Services to report this erro
Error - 4/17/2009 4:15:22 PM | Computer Name = KEVINSCOMP | Source = EventSystem | ID = 4609
Description = The COM+ Event System detected a bad return code during its internal
processing. HRESULT was 80070422 from line 44 of d:\qxp_slp\com\com1x\src\events\tier1\eventsystemobj.cpp.
Please contact Microsoft Product Support Services to report this erro
Error - 4/17/2009 4:15:22 PM | Computer Name = KEVINSCOMP | Source = EventSystem | ID = 4609
Description = The COM+ Event System detected a bad return code during its internal
processing. HRESULT was 80070422 from line 44 of d:\qxp_slp\com\com1x\src\events\tier1\eventsystemobj.cpp.
Please contact Microsoft Product Support Services to report this erro
Error - 4/17/2009 4:15:22 PM | Computer Name = KEVINSCOMP | Source = COM+ | ID = 135894
Description = A condition has occurred that indicates this COM+ application is in
an unstable state or is not functioning correctly. Assertion Failure: SUCCEEDED(hr)
Server
Application ID: {02D4B3F1-FD88-11D1-960D-00805FC79235} Server Application Instance
ID: {15F4A864-FAA0-479B-B544-1124ABE5BB91} Server Application Name: System Application
The
serious nature of this error has caused the process to terminate. Error Code = 0x8000ffff
: Catastrophic failure COM+ Services Internals Information: File: d:\qxp_slp\com\com1x\src\comsvcs\tracker\trksvr\trksvrimpl.cpp,
Line: 3000 Comsvcs.dll file version: ENU 2001.12.4414.308 s
Error - 4/17/2009 4:42:26 PM | Computer Name = KEVINSCOMP | Source = EventSystem | ID = 4609
Description = The COM+ Event System detected a bad return code during its internal
processing. HRESULT was 80070422 from line 44 of d:\qxp_slp\com\com1x\src\events\tier1\eventsystemobj.cpp.
Please contact Microsoft Product Support Services to report this erro
[ Application Events ]
Error - 4/17/2009 4:15:17 PM | Computer Name = KEVINSCOMP | Source = EventSystem | ID = 4609
Description = The COM+ Event System detected a bad return code during its internal
processing. HRESULT was 80070422 from line 44 of d:\qxp_slp\com\com1x\src\events\tier1\eventsystemobj.cpp.
Please contact Microsoft Product Support Services to report this erro
Error - 4/17/2009 4:15:17 PM | Computer Name = KEVINSCOMP | Source = COM+ | ID = 135894
Description = A condition has occurred that indicates this COM+ application is in
an unstable state or is not functioning correctly. Assertion Failure: SUCCEEDED(hr)
Server
Application ID: {02D4B3F1-FD88-11D1-960D-00805FC79235} Server Application Instance
ID: {6719CBC2-AA0A-4E7D-B8BB-62F58D0E9B24} Server Application Name: System Application
The
serious nature of this error has caused the process to terminate. Error Code = 0x8000ffff
: Catastrophic failure COM+ Services Internals Information: File: d:\qxp_slp\com\com1x\src\comsvcs\tracker\trksvr\trksvrimpl.cpp,
Line: 3000 Comsvcs.dll file version: ENU 2001.12.4414.308 s
Error - 4/17/2009 4:15:22 PM | Computer Name = KEVINSCOMP | Source = EventSystem | ID = 4609
Description = The COM+ Event System detected a bad return code during its internal
processing. HRESULT was 80070422 from line 44 of d:\qxp_slp\com\com1x\src\events\tier1\eventsystemobj.cpp.
Please contact Microsoft Product Support Services to report this erro
Error - 4/17/2009 4:15:22 PM | Computer Name = KEVINSCOMP | Source = EventSystem | ID = 4609
Description = The COM+ Event System detected a bad return code during its internal
processing. HRESULT was 80070422 from line 44 of d:\qxp_slp\com\com1x\src\events\tier1\eventsystemobj.cpp.
Please contact Microsoft Product Support Services to report this erro
Error - 4/17/2009 4:15:22 PM | Computer Name = KEVINSCOMP | Source = COM+ | ID = 135761
Description = The run-time environment has detected an inconsistency in its internal
state. This indicates a potential instability in the process that could be caused
by the custom components running in the COM+ application, the components they make
use of, or other factors. Error in d:\qxp_slp\com\com1x\src\comsvcs\events\lcedisp.cpp(131),
hr = 80040206: Failed to CoCreate EventSystem objec
Error - 4/17/2009 4:15:22 PM | Computer Name = KEVINSCOMP | Source = EventSystem | ID = 4609
Description = The COM+ Event System detected a bad return code during its internal
processing. HRESULT was 80070422 from line 44 of d:\qxp_slp\com\com1x\src\events\tier1\eventsystemobj.cpp.
Please contact Microsoft Product Support Services to report this erro
Error - 4/17/2009 4:15:22 PM | Computer Name = KEVINSCOMP | Source = EventSystem | ID = 4609
Description = The COM+ Event System detected a bad return code during its internal
processing. HRESULT was 80070422 from line 44 of d:\qxp_slp\com\com1x\src\events\tier1\eventsystemobj.cpp.
Please contact Microsoft Product Support Services to report this erro
Error - 4/17/2009 4:15:22 PM | Computer Name = KEVINSCOMP | Source = EventSystem | ID = 4609
Description = The COM+ Event System detected a bad return code during its internal
processing. HRESULT was 80070422 from line 44 of d:\qxp_slp\com\com1x\src\events\tier1\eventsystemobj.cpp.
Please contact Microsoft Product Support Services to report this erro
Error - 4/17/2009 4:15:22 PM | Computer Name = KEVINSCOMP | Source = COM+ | ID = 135894
Description = A condition has occurred that indicates this COM+ application is in
an unstable state or is not functioning correctly. Assertion Failure: SUCCEEDED(hr)
Server
Application ID: {02D4B3F1-FD88-11D1-960D-00805FC79235} Server Application Instance
ID: {15F4A864-FAA0-479B-B544-1124ABE5BB91} Server Application Name: System Application
The
serious nature of this error has caused the process to terminate. Error Code = 0x8000ffff
: Catastrophic failure COM+ Services Internals Information: File: d:\qxp_slp\com\com1x\src\comsvcs\tracker\trksvr\trksvrimpl.cpp,
Line: 3000 Comsvcs.dll file version: ENU 2001.12.4414.308 s
Error - 4/17/2009 4:42:26 PM | Computer Name = KEVINSCOMP | Source = EventSystem | ID = 4609
Description = The COM+ Event System detected a bad return code during its internal
processing. HRESULT was 80070422 from line 44 of d:\qxp_slp\com\com1x\src\events\tier1\eventsystemobj.cpp.
Please contact Microsoft Product Support Services to report this erro
[ System Events ]
Error - 4/17/2009 4:42:26 PM | Computer Name = KEVINSCOMP | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 4/17/2009 4:42:26 PM | Computer Name = KEVINSCOMP | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 4/17/2009 4:42:27 PM | Computer Name = KEVINSCOMP | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 4/17/2009 4:42:27 PM | Computer Name = KEVINSCOMP | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 4/17/2009 4:42:27 PM | Computer Name = KEVINSCOMP | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 4/17/2009 4:42:31 PM | Computer Name = KEVINSCOMP | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 4/17/2009 4:42:31 PM | Computer Name = KEVINSCOMP | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 4/17/2009 4:42:32 PM | Computer Name = KEVINSCOMP | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 4/17/2009 4:42:36 PM | Computer Name = KEVINSCOMP | Source = Service Control Manager | ID = 7000
Description = The SAA7130 TV Card service failed to start due to the following error:
%%1058
Error - 4/17/2009 4:42:36 PM | Computer Name = KEVINSCOMP | Source = Service Control Manager | ID = 7000
Description = The AVerMedia AVerTV WDM Video Capture (878) service failed to start
due to the following error: %%1058
< End of report >
Edited by kteng, 17 April 2009 - 09:49 PM.
Sign In
Create Account
