Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Windows XP help cant access main account


  • Please log in to reply

#1
Laztug

Laztug

    New Member

  • Member
  • Pip
  • 5 posts
I am running windows XP and had a system crash i had a friend using my computer when he was done i noticed that some antivirus program was running i would also get randome popups telling me my computer was infected but when i looked for the program to delete it..i couldent
So i was told about this program called "Malwarebytes' Anti-Malware" it worked great found false trojans which were the ones making the false popups saying my computer was infected.
Malwarebytes removed the antivirus program but could not remove whatever was making the popups. so when i tried to run the Malware program again it said my disk was full?! every program i would open the computer would tell me the system was full.
So, i tried to reboot my computer, and it was all down hill fom there.
When it asked me for my password to log on to my account i would type in my password i would hear windows opening and close soon after i could not access any of my two accounts.
i tried doing a restore point *not sure if that is what it is called but it would revert to the last time the computer was working good* but I could not find a restore point. So I tried to do a system restore, my computer started fresh it was like it was the first day of me using the computer it took a long time to boot it came out with the factory settings it was like the computer was new but the one problem it had was that it was full?! none of my programs worked i had to install windows service pack again none of my programs *antivirus microsoft office* none of them worked. I deleted programs and had enough memory to run Tuneup utilities 2009and when i ran the program i could see my old files still taking up memory in my computer but i could not access them?!

When I click my main account *Owner* it says I can't get access

Here are some pics hopefully they will help you guys out.

Posted Image

Posted Image

Posted Image

Posted Image

Posted Image

Posted Image



Any idea how i can get access to this file and remove the virus?! I have documents, my resume, music, and movies I would love to get back
Thanks for reading.

rooter


Microsoft Windows XP Home Edition (5.1.2600) Service Pack 2

A:\ [Removable] (Total:0 Mo/Free:0 Mo)
C:\ [Fixed] - NTFS - (Total:186475 Mo/Free:356 Mo)
D:\ [Fixed] - FAT32 - (Total:4288 Mo/Free:367 Mo)
E:\ [CD-Rom] (Total:0 Mo/Free:0 Mo)
F:\ [CD-Rom] (Total:0 Mo/Free:0 Mo)
G:\ [Removable] (Total:0 Mo/Free:0 Mo)
H:\ [Removable] (Total:0 Mo/Free:0 Mo)
I:\ [Removable] (Total:0 Mo/Free:0 Mo)
J:\ [Removable] (Total:0 Mo/Free:0 Mo)
K:\ [Removable] (Total:0 Mo/Free:0 Mo)

Tue 04/28/2009|15:37

----------------------\\ Processes..

--Locked-- [System Process]
---------- System
---------- \SystemRoot\System32\smss.exe
---------- \??\C:\WINDOWS\system32\csrss.exe
---------- \??\C:\WINDOWS\system32\winlogon.exe
---------- C:\WINDOWS\system32\services.exe
---------- C:\WINDOWS\system32\lsass.exe
---------- C:\WINDOWS\system32\svchost.exe
---------- C:\WINDOWS\system32\svchost.exe
---------- C:\WINDOWS\System32\svchost.exe
---------- C:\WINDOWS\System32\svchost.exe
---------- C:\WINDOWS\System32\svchost.exe
---------- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
---------- C:\Program Files\Alwil Software\Avast4\ashServ.exe
---------- C:\WINDOWS\Explorer.EXE
---------- C:\Program Files\Java\jre6\bin\jusched.exe
---------- C:\windows\system\hpsysdrv.exe
---------- C:\WINDOWS\System32\hphmon05.exe
---------- C:\HP\KBD\KBD.EXE
---------- C:\WINDOWS\LTMSG.exe
---------- C:\Program Files\Multimedia Card Reader\shwicon2k.exe
---------- C:\Program Files\Lexmark 5400 Series\lxctmon.exe
---------- C:\WINDOWS\system32\rundll32.exe
---------- C:\Program Files\Lexmark 5400 Series\ezprint.exe
---------- C:\WINDOWS\ALCXMNTR.EXE
---------- C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
---------- C:\Program Files\Registry Mechanic\RegMech.exe
---------- C:\Program Files\MSN Messenger\MsnMsgr.Exe
---------- C:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe
---------- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
---------- C:\WINDOWS\system32\spoolsv.exe
---------- C:\Program Files\Java\jre6\bin\jqs.exe
---------- C:\WINDOWS\System32\lxctcoms.exe
---------- C:\Program Files\CDBurnerXP\NMSAccessU.exe
---------- C:\WINDOWS\System32\nvsvc32.exe
---------- C:\WINDOWS\System32\svchost.exe
---------- C:\WINDOWS\System32\TUProgSt.exe
---------- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
---------- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
---------- C:\WINDOWS\System32\alg.exe
---------- C:\WINDOWS\system32\wuauclt.exe
---------- C:\Program Files\Opera\opera.exe
---------- C:\WINDOWS\system32\cmd.exe
---------- C:\Rooter$\RK.exe

----------------------\\ Search..

----------------------\\ ROOTKIT !!



1 - "C:\Rooter$\Rooter_1.txt" - Tue 04/28/2009|15:37

----------------------\\ Scan completed at 15:37

















OTListIt logfile created on: 4/28/2009 3:38:56 PM - Run 2
OTListIt2 by OldTimer - Version 2.0.14.0 Folder = C:\Documents and Settings\Owner.HOME\My Documents\Installation
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

511.30 Mb Total Physical Memory | 209.78 Mb Available Physical Memory | 41.03% Memory free
1.22 Gb Paging File | 0.82 Gb Available in Paging File | 67.40% Paging File free
Paging file location(s): C:\pagefile.sys 768 1212;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 182.10 Gb Total Space | 0.35 Gb Free Space | 0.19% Space Free | Partition Type: NTFS
Drive D: | 4.19 Gb Total Space | 0.36 Gb Free Space | 8.58% Space Free | Partition Type: FAT32
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: HOME
Current User Name: Owner
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Output = Minimal
File Age = 30 Days
Company Name Whitelist: On

========== Processes (SafeList) ==========

PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
PRC - C:\WINDOWS\Explorer.EXE (Microsoft Corporation)
PRC - C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
PRC - C:\windows\system\hpsysdrv.exe (Hewlett-Packard Company)
PRC - C:\WINDOWS\System32\hphmon05.exe (Hewlett-Packard)
PRC - C:\HP\KBD\KBD.EXE (Hewlett-Packard Company)
PRC - C:\WINDOWS\LTMSG.exe (Agere Systems)
PRC - C:\Program Files\Multimedia Card Reader\shwicon2k.exe (Alcor Micro, Corp.)
PRC - C:\Program Files\Lexmark 5400 Series\lxctmon.exe ()
PRC - C:\Program Files\Lexmark 5400 Series\ezprint.exe (Lexmark International Inc.)
PRC - C:\WINDOWS\ALCXMNTR.EXE (Realtek Semiconductor Corp.)
PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
PRC - C:\Program Files\Registry Mechanic\RegMech.exe (PC Tools)
PRC - C:\Program Files\MSN Messenger\MsnMsgr.Exe (Microsoft Corporation)
PRC - C:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe (Gadwin Systems, Inc)
PRC - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
PRC - C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
PRC - C:\WINDOWS\System32\lxctcoms.exe ( )
PRC - C:\Program Files\CDBurnerXP\NMSAccessU.exe ()
PRC - C:\WINDOWS\System32\nvsvc32.exe (NVIDIA Corporation)
PRC - C:\WINDOWS\System32\TUProgSt.exe (TuneUp Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
PRC - C:\Program Files\Opera\opera.exe (Opera Software)
PRC - C:\Documents and Settings\Owner.HOME\My Documents\Installation\OTListIt2.exe (OldTimer Tools)

========== Win32 Services (SafeList) ==========

SRV - (aspnet_state [On_Demand | Stopped]) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (Microsoft Corporation)
SRV - (aswUpdSv [Auto | Running]) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
SRV - (avast! Antivirus [Auto | Running]) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
SRV - (avast! Mail Scanner [On_Demand | Running]) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
SRV - (avast! Web Scanner [On_Demand | Running]) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
SRV - (clr_optimization_v2.0.50727_32 [On_Demand | Stopped]) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (FontCache3.0.0.0 [On_Demand | Stopped]) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation)
SRV - (helpsvc [Auto | Running]) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll (Microsoft Corporation)
SRV - (idsvc [Unknown | Stopped]) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe (Microsoft Corporation)
SRV - (JavaQuickStarterService [Auto | Running]) -- C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
SRV - (lxct_device [Auto | Running]) -- C:\WINDOWS\System32\lxctcoms.exe ( )
SRV - (NetTcpPortSharing [Disabled | Stopped]) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe (Microsoft Corporation)
SRV - (NMSAccessU [Auto | Running]) -- C:\Program Files\CDBurnerXP\NMSAccessU.exe ()
SRV - (NVSvc [Auto | Running]) -- C:\WINDOWS\System32\nvsvc32.exe (NVIDIA Corporation)
SRV - (ose [On_Demand | Stopped]) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (TuneUp.Defrag [On_Demand | Stopped]) -- C:\WINDOWS\System32\TuneUpDefragService.exe (TuneUp Software)
SRV - (TuneUp.ProgramStatisticsSvc [Auto | Running]) -- C:\WINDOWS\System32\TUProgSt.exe (TuneUp Software)
SRV - (usnjsvc [On_Demand | Stopped]) -- C:\Program Files\MSN Messenger\usnsvc.exe (Microsoft Corporation)
SRV - (UxTuneUp [Auto | Running]) -- C:\WINDOWS\System32\uxtuneup.dll (TuneUp Software)

========== Driver Services (SafeList) ==========

DRV - (Aavmker4 [System | Running]) -- C:\WINDOWS\System32\drivers\aavmker4.sys (ALWIL Software)
DRV - (AFS2K [System | Running]) -- C:\WINDOWS\System32\drivers\AFS2K.SYS (Oak Technology Inc.)
DRV - (ALCXSENS [On_Demand | Stopped]) -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS (Sensaura Ltd)
DRV - (ALCXWDM [On_Demand | Running]) -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS (Realtek Semiconductor Corp.)
DRV - (AmdK8 [System | Running]) -- C:\WINDOWS\System32\DRIVERS\AmdK8.sys (Advanced Micro Devices)
DRV - (aswFsBlk [Auto | Running]) -- C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys (ALWIL Software)
DRV - (aswMon2 [Auto | Running]) -- C:\WINDOWS\System32\drivers\aswmon2.sys (ALWIL Software)
DRV - (aswRdr [On_Demand | Running]) -- C:\WINDOWS\System32\drivers\aswRdr.sys (ALWIL Software)
DRV - (aswSP [System | Running]) -- C:\WINDOWS\System32\drivers\aswSP.sys (ALWIL Software)
DRV - (aswTdi [System | Running]) -- C:\WINDOWS\System32\drivers\aswTdi.sys (ALWIL Software)
DRV - (fasttx2k [Boot | Running]) -- C:\WINDOWS\System32\DRIVERS\fasttx2k.sys (Promise Technology, Inc.)
DRV - (ialm [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\ialmnt5.sys (Intel Corporation)
DRV - (ltmodem5 [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\ltmdmnt.sys (Agere Systems)
DRV - (MxlW2k [On_Demand | Running]) -- C:\WINDOWS\System32\drivers\MxlW2k.sys (MusicMatch, Inc.)
DRV - (nv [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\nv4_mini.sys (NVIDIA Corporation)
DRV - (NVENET [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\NVENET.sys (NVIDIA Corporation)
DRV - (nv_agp [Boot | Running]) -- C:\WINDOWS\System32\DRIVERS\nv_agp.sys (NVIDIA Corporation)
DRV - (Pfc [On_Demand | Running]) -- C:\WINDOWS\system32\drivers\pfc.sys (Padus, Inc.)
DRV - (Ps2 [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\PS2.sys (Hewlett-Packard Company)
DRV - (Ptilink [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys (Parallel Technologies, Inc.)
DRV - (PxHelp20 [Boot | Running]) -- C:\WINDOWS\System32\DRIVERS\PxHelp20.sys (Sonic Solutions)
DRV - (RimUsb [On_Demand | Stopped]) -- C:\WINDOWS\System32\Drivers\RimUsb.sys (Research In Motion Limited)
DRV - (rtl8139 [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\R8139n51.SYS (Realtek Semiconductor Corporation )
DRV - (Secdrv [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\secdrv.sys ()
DRV - (SiS315 [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\sisgrp.sys (Silicon Integrated Systems Corporation)
DRV - (SISAGP [Boot | Running]) -- C:\WINDOWS\System32\DRIVERS\SISAGPX.sys (Silicon Integrated Systems Corporation)
DRV - (SiSkp [System | Running]) -- C:\WINDOWS\System32\DRIVERS\srvkp.sys (Silicon Integrated Systems Corporation)
DRV - (SunkFilt [On_Demand | Running]) -- C:\WINDOWS\System32\Drivers\sunkfilt.sys (Alcor Micro Corp.)
DRV - (viaagp1 [Boot | Running]) -- C:\WINDOWS\System32\DRIVERS\viaagp1.sys (VIA Technologies, Inc.)
DRV - (viagfx [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\vtmini.sys (Copyright © VIA/S3 Graphics, Inc.)
DRV - ({6080A529-897E-4629-A488-ABA0C29B635E} [On_Demand | Stopped]) -- C:\WINDOWS\system32\drivers\ialmsbw.sys (Intel Corporation)
DRV - ({D31A0762-0CEB-444e-ACFF-B049A1F6FE91} [On_Demand | Stopped]) -- C:\WINDOWS\system32\drivers\ialmkchw.sys (Intel Corporation)

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://us10.hpwis.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-us10.hpwis.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://srch-us10.hpwis.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://us10.hpwis.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn...st/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn...st/srchasst.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://us10.hpwis.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-us10.hpwis.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://srch-us10.hpwis.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://us10.hpwis.com/
IE - URLSearchHook: {a33fa729-d155-4b23-842b-2c665ecabdb6} - C:\Program Files\The_Pirate_Bay\tbThe_.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}:6.0.03
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.0
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.9


FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2009/04/11 08:21:28 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION\ [2009/04/11 19:02:15 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.9\extensions\\Components: C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS [2009/04/22 08:11:11 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.9\extensions\\Plugins: C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS [2009/04/22 08:11:10 | 00,000,000 | ---D | M]

[2009/04/04 02:31:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Owner.HOME\Application Data\mozilla\Extensions
[2009/04/04 02:31:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Owner.HOME\Application Data\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/04/04 02:31:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Owner.HOME\Application Data\mozilla\Firefox\Profiles\varluybu.default\extensions
[2009/04/27 20:49:07 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009/04/22 08:11:10 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2007/10/31 21:57:55 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
[2009/04/22 08:11:02 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009/04/22 08:11:02 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2009/03/08 21:27:34 | 00,001,394 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom.xml
[2009/03/08 21:27:34 | 00,002,193 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\answers.xml
[2009/03/08 21:27:34 | 00,001,534 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
[2009/03/08 21:27:34 | 00,002,343 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay.xml
[2009/03/08 21:27:34 | 00,001,706 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2009/03/08 21:27:34 | 00,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia.xml
[2009/03/08 21:27:34 | 00,000,792 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo.xml

O1 HOSTS File: (734 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Lexmark Toolbar) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
O2 - BHO: (The Pirate Bay Toolbar) - {a33fa729-d155-4b23-842b-2c665ecabdb6} - C:\Program Files\The_Pirate_Bay\tbThe_.dll (Conduit Ltd.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (no name) - - Reg Error: Key error. File not found
O3 - HKLM\..\Toolbar: (Lexmark Toolbar) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
O3 - HKLM\..\Toolbar: (The Pirate Bay Toolbar) - {a33fa729-d155-4b23-842b-2c665ecabdb6} - C:\Program Files\The_Pirate_Bay\tbThe_.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (HP View) - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\hpdtlk02.dll (Hewlett-Packard Company)
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - Reg Error: Key error. File not found
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {A33FA729-D155-4B23-842B-2C665ECABDB6} - C:\Program Files\The_Pirate_Bay\tbThe_.dll (Conduit Ltd.)
O4 - HKLM..\Run: [AlcxMonitor] ALCXMNTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [EzPrint] "C:\Program Files\Lexmark 5400 Series\ezprint.exe" (Lexmark International Inc.)
O4 - HKLM..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe (Hewlett-Packard)
O4 - HKLM..\Run: [HPHUPD05] c:\Program Files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe (Hewlett-Packard)
O4 - HKLM..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [KBD] C:\HP\KBD\KBD.EXE (Hewlett-Packard Company)
O4 - HKLM..\Run: [Lexmark 5400 Series Fax Server] "C:\Program Files\Lexmark 5400 Series\fm3032.exe" /s ()
O4 - HKLM..\Run: [LTMSG] LTMSG.exe 7 (Agere Systems)
O4 - HKLM..\Run: [LXCTCATS] rundll32 C:\WINDOWS\system32\spool\DRIVERS\W32X86\3\LXCTtime.dll,_RunDLLEntry@16 (Lexmark International Inc.)
O4 - HKLM..\Run: [lxctmon.exe] "C:\Program Files\Lexmark 5400 Series\lxctmon.exe" ()
O4 - HKLM..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect (NVIDIA Corporation)
O4 - HKLM..\Run: [PS2] C:\WINDOWS\system32\ps2.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE ()
O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [Sunkist2k] C:\Program Files\Multimedia Card Reader\shwicon2k.exe (Alcor Micro, Corp.)
O4 - HKLM..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r (Sonic Solutions)
O4 - HKCU..\Run: [Gadwin PrintScreen] C:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe /nosplash (Gadwin Systems, Inc)
O4 - HKCU..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background (Microsoft Corporation)
O4 - HKCU..\Run: [RegistryMechanic] C:\Program Files\Registry Mechanic\RegMech.exe /H (PC Tools)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
O4 - Startup: C:\Documents and Settings\Owner.HOME\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000 (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - File not found
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.4.2_03)
O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_13)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Filter: - text/xml - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxsrvc.dll - C:\WINDOWS\system32\igfxsrvc.dll (Intel Corporation)
O24 - Desktop Components:0 (My Current Home Page) - About:Home
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - Autorun File - C:\AUTOEXEC.BAT () - [ NTFS ]
O32 - Autorun File - D:\AUTOEXEC.BAT () - [ FAT32 ]
O32 - Autorun File - D:\Autorun.inf () - [ FAT32 ]
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found

========== Files/Folders - Created Within 30 Days ==========

[1 C:\WINDOWS\System32\*.tmp files]
[2 C:\WINDOWS\*.tmp files]
[2009/04/28 15:37:30 | 00,000,000 | ---D | C] -- C:\Rooter$
[2009/04/28 07:44:13 | 00,023,152 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2009/04/28 07:44:13 | 00,001,720 | ---- | C] () -- C:\DOCUME~1\ALLUSE~1\Desktop\avast! Antivirus.lnk
[2009/04/28 07:44:12 | 00,051,376 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2009/04/28 07:44:12 | 00,026,944 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2009/04/28 07:44:10 | 00,114,768 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2009/04/28 07:44:10 | 00,097,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr
[2009/04/28 07:44:10 | 00,094,032 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2009/04/28 07:44:10 | 00,093,296 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2009/04/28 07:44:10 | 00,020,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2009/04/28 07:43:53 | 01,256,296 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2009/04/28 07:43:53 | 00,380,928 | ---- | C] () -- C:\WINDOWS\System32\actskin4.ocx
[2009/04/28 07:43:50 | 00,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2009/04/27 23:51:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Application Data\Malwarebytes
[2009/04/27 23:51:05 | 00,015,504 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009/04/27 23:51:05 | 00,000,707 | ---- | C] () -- C:\DOCUME~1\ALLUSE~1\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/04/27 23:51:03 | 00,038,496 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009/04/27 23:44:56 | 00,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2009/04/27 23:44:40 | 00,000,778 | ---- | C] () -- C:\Documents and Settings\Owner.HOME\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk
[2009/04/27 23:44:30 | 00,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2009/04/27 22:14:27 | 00,000,486 | ---- | C] () -- C:\WINDOWS\tasks\1-Click Maintenance.job
[2009/04/27 22:14:25 | 00,027,904 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll
[2009/04/27 22:14:22 | 00,362,240 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TuneUpDefragService.exe
[2009/04/16 19:58:59 | 00,283,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pdh.dll
[2009/04/16 19:58:59 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\colbact.dll
[2009/04/16 19:58:58 | 00,723,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll
[2009/04/16 19:58:58 | 00,473,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fastprox.dll
[2009/04/16 19:58:58 | 00,453,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprvsd.dll
[2009/04/16 19:58:58 | 00,399,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcss.dll
[2009/04/16 19:58:58 | 00,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprvse.exe
[2009/04/16 19:58:58 | 00,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\services.exe
[2009/04/16 19:58:57 | 00,616,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\advapi32.dll
[2009/04/16 19:58:56 | 00,714,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntdll.dll
[2009/04/16 19:58:20 | 01,193,414 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sysmain.sdb
[2009/04/16 19:58:19 | 00,215,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wordpad.exe
[2009/04/15 12:29:38 | 00,000,806 | ---- | C] () -- C:\DOCUME~1\ALLUSE~1\Desktop\DivX Player.lnk
[2009/04/15 12:29:28 | 00,000,842 | ---- | C] () -- C:\DOCUME~1\ALLUSE~1\Desktop\DivX Converter.lnk
[2009/04/15 12:29:02 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\DivX Shared
[2009/04/13 17:32:55 | 01,970,176 | ---- | C] () -- C:\WINDOWS\System32\d3dx9.dll
[2009/04/13 17:32:55 | 00,679,936 | ---- | C] (Generated by JEDI) -- C:\WINDOWS\System32\D3DX81ab.dll
[2009/04/13 17:32:55 | 00,000,000 | ---D | C] -- C:\Program Files\Cheat Engine
[2009/04/12 09:35:26 | 01,089,601 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ntprint.cat
[2009/04/11 19:31:44 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Application Data\Canneverbe_Limited
[2009/04/11 19:31:29 | 00,001,615 | ---- | C] () -- C:\DOCUME~1\ALLUSE~1\Desktop\CDBurnerXP.lnk
[2009/04/11 19:31:28 | 00,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP
[2009/04/11 18:59:22 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2009/04/11 18:59:10 | 00,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2009/04/11 18:59:06 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2009/04/11 18:58:48 | 00,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2009/04/11 18:55:57 | 00,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe
[2009/04/11 18:55:57 | 00,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll
[2009/04/11 18:55:57 | 00,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll
[2009/04/11 18:55:56 | 00,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsshhdr.dll
[2009/04/11 18:55:56 | 00,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll
[2009/04/11 18:55:55 | 01,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll
[2009/04/11 18:55:55 | 01,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll
[2009/04/11 08:22:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Application Data\LimeWire
[2009/04/10 09:18:19 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusb.dll
[2009/04/10 09:18:18 | 00,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusd.dll
[2009/04/08 17:26:27 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2009/04/08 17:26:20 | 00,001,747 | ---- | C] () -- C:\DOCUME~1\ALLUSE~1\Desktop\Windows Live Messenger.lnk
[2009/04/08 17:26:08 | 00,000,000 | ---D | C] -- C:\Program Files\MSN Messenger
[2009/04/08 17:18:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Local Settings\Application Data\Identities
[2009/04/08 06:55:05 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot_bak
[2009/04/08 06:53:52 | 00,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2009/04/08 06:53:22 | 00,357,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxtmsft.dll
[2009/04/08 06:53:22 | 00,251,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iepeers.dll
[2009/04/08 06:53:22 | 00,205,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxtrans.dll
[2009/04/08 06:53:22 | 00,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\extmgr.dll
[2009/04/08 06:53:22 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedw.exe
[2009/04/08 06:53:22 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsproxy.dll
[2009/04/08 06:53:21 | 00,659,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wininet.dll
[2009/04/08 06:53:21 | 00,449,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtmled.dll
[2009/04/08 06:53:21 | 00,351,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp3res.dll
[2009/04/08 06:53:21 | 00,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrating.dll
[2009/04/08 06:53:21 | 00,096,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inseng.dll
[2009/04/08 06:53:20 | 00,616,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll
[2009/04/08 06:53:20 | 00,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pngfilt.dll
[2009/04/08 06:53:19 | 01,023,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browseui.dll
[2009/04/08 06:53:19 | 00,474,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shlwapi.dll
[2009/04/08 06:53:19 | 00,151,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdfview.dll
[2009/04/08 06:53:18 | 01,054,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\danim.dll
[2009/04/08 06:53:18 | 00,532,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstime.dll
[2009/04/08 06:53:17 | 01,495,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shdocvw.dll
[2009/04/08 06:52:37 | 02,136,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2009/04/08 06:52:35 | 02,180,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2009/04/08 06:52:34 | 02,015,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2009/04/08 06:52:33 | 02,057,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe
[2009/04/08 06:52:28 | 03,059,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll
[2009/04/08 06:52:01 | 00,453,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2009/04/08 06:51:58 | 00,333,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys
[2009/04/08 06:51:56 | 00,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll
[2009/04/08 06:51:38 | 00,683,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll
[2009/04/08 06:51:28 | 00,247,326 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\strmdll.dll
[2009/04/08 06:51:27 | 00,332,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll
[2009/04/08 06:51:26 | 01,106,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml3.dll
[2009/04/08 05:52:38 | 00,603,904 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TUProgSt.exe
[2009/04/08 05:52:13 | 00,001,617 | ---- | C] () -- C:\DOCUME~1\ALLUSE~1\Desktop\TuneUp 1-Click Maintenance.lnk
[2009/04/08 05:51:32 | 00,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2009
[2009/04/08 05:45:55 | 00,034,296 | ---- | C] () -- C:\Documents and Settings\Owner.HOME\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2009/04/08 05:44:13 | 00,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2009/04/07 18:25:37 | 00,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logman.exe
[2009/04/07 18:25:37 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\proxycfg.exe
[2009/04/07 18:25:31 | 00,044,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\agpcpq.sys
[2009/04/07 18:25:31 | 00,042,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\alim1541.sys
[2009/04/07 18:25:31 | 00,042,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\agp440.sys
[2009/04/07 18:25:30 | 00,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
[2009/04/07 18:25:30 | 00,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthenum.sys
[2009/04/07 18:25:29 | 00,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthport.sys
[2009/04/07 18:25:29 | 00,263,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\http.sys
[2009/04/07 18:25:29 | 00,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2009/04/07 18:25:29 | 00,124,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\fltmgr.sys
[2009/04/07 18:25:29 | 00,100,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthpan.sys
[2009/04/07 18:25:29 | 00,046,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\gagp30kx.sys
[2009/04/07 18:25:29 | 00,038,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthmodem.sys
[2009/04/07 18:25:29 | 00,036,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\intelppm.sys
[2009/04/07 18:25:29 | 00,035,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthprint.sys
[2009/04/07 18:25:29 | 00,029,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ip6fw.sys
[2009/04/07 18:25:29 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidbth.sys
[2009/04/07 18:25:29 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthusb.sys
[2009/04/07 18:25:29 | 00,015,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mssmbios.sys
[2009/04/07 18:25:29 | 00,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidir.sys
[2009/04/07 18:25:28 | 00,078,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbvideo.sys
[2009/04/07 18:25:28 | 00,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2009/04/07 18:25:28 | 00,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sdbus.sys
[2009/04/07 18:25:28 | 00,059,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rfcomm.sys
[2009/04/07 18:25:28 | 00,044,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\uagp35.sys
[2009/04/07 18:25:28 | 00,042,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\viaagp.sys
[2009/04/07 18:25:28 | 00,030,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rndismpx.sys
[2009/04/07 18:25:28 | 00,013,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wacompen.sys
[2009/04/07 18:25:28 | 00,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usb8023x.sys
[2009/04/07 18:25:28 | 00,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mutohpen.sys
[2009/04/07 18:25:28 | 00,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sffdisk.sys
[2009/04/07 18:25:28 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sffp_sd.sys
[2009/04/07 18:25:28 | 00,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\smbali.sys
[2009/04/07 18:25:27 | 00,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bthprops.cpl
[2009/04/07 18:25:27 | 00,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\blastcln.exe
[2009/04/07 18:25:27 | 00,050,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\btpanui.dll
[2009/04/07 18:25:27 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bthserv.dll
[2009/04/07 18:25:27 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bthci.dll
[2009/04/07 18:25:27 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\auditusr.exe
[2009/04/07 18:25:27 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmsetacl.dll
[2009/04/07 18:25:26 | 00,369,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\html.iec
[2009/04/07 18:25:26 | 00,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fsquirt.exe
[2009/04/07 18:25:26 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ieencode.dll
[2009/04/07 18:25:26 | 00,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\firewall.cpl
[2009/04/07 18:25:26 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fwcfg.dll
[2009/04/07 18:25:26 | 00,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\extmgr.dll
[2009/04/07 18:25:26 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\httpapi.dll
[2009/04/07 18:25:26 | 00,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltmc.exe
[2009/04/07 18:25:26 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltlib.dll
[2009/04/07 18:25:25 | 00,380,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irprops.cpl
[2009/04/07 18:25:25 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsmsno.dll
[2009/04/07 18:25:25 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsmsfi.dll
[2009/04/07 18:25:25 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdukx.dll
[2009/04/07 18:25:25 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdno1.dll
[2009/04/07 18:25:25 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdfi1.dll
[2009/04/07 18:25:25 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdinmal.dll
[2009/04/07 18:25:25 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdinben.dll
[2009/04/07 18:25:25 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmlt48.dll
[2009/04/07 18:25:25 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmlt47.dll
[2009/04/07 18:25:25 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdinbe1.dll
[2009/04/07 18:25:25 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmaori.dll
[2009/04/07 18:25:24 | 00,118,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdadiag.dll
[2009/04/07 18:25:24 | 00,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\p2p.dll
[2009/04/07 18:25:24 | 00,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\p2pgasvc.dll
[2009/04/07 18:25:24 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netsetup.cpl
[2009/04/07 18:25:23 | 00,526,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\p2psvc.dll
[2009/04/07 18:25:23 | 00,312,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\p2pgraph.dll
[2009/04/07 18:25:23 | 00,088,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\p2pnetsh.dll
[2009/04/07 18:25:23 | 00,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\powercfg.exe
[2009/04/07 18:25:23 | 00,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\pnrpnsp.dll
[2009/04/07 18:25:22 | 00,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sdhcinst.dll
[2009/04/07 18:25:21 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smbinst.exe
[2009/04/07 18:25:20 | 00,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\strmfilt.dll
[2009/04/07 18:25:20 | 00,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\twext.dll
[2009/04/07 18:25:20 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax
[2009/04/07 18:25:20 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winshfhc.dll
[2009/04/07 18:25:20 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\w3ssl.dll
[2009/04/07 18:25:18 | 00,148,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wscui.cpl
[2009/04/07 18:25:18 | 00,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xmlprov.dll
[2009/04/07 18:25:18 | 00,108,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wshbth.dll
[2009/04/07 18:25:18 | 00,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wscsvc.dll
[2009/04/07 18:25:18 | 00,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xmlprovi.dll
[2009/04/07 18:25:18 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wscntfy.exe
[2009/04/07 17:41:12 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\STKIT432.DLL
[2009/04/07 17:05:32 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Application Data\WinRAR
[2009/04/07 16:43:49 | 00,000,438 | ---- | C] () -- C:\WINDOWS\tasks\RegCure Program Check.job
[2009/04/07 16:43:48 | 00,000,372 | ---- | C] () -- C:\WINDOWS\tasks\RegCure.job
[2009/04/07 16:43:39 | 00,000,627 | ---- | C] () -- C:\DOCUME~1\ALLUSE~1\Desktop\RegCure.lnk
[2009/04/07 16:43:39 | 00,000,000 | ---D | C] -- C:\Program Files\RegCure
[2009/04/07 13:02:49 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Blizzard Entertainment
[2009/04/05 22:10:20 | 00,000,000 | ---D | C] -- C:\Program Files\CleanUp!
[2009/04/04 11:59:23 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData
[2009/04/04 11:39:55 | 00,000,763 | ---- | C] () -- C:\DOCUME~1\ALLUSE~1\Desktop\Lexmark Imaging Studio - 5400 Series.LNK
[2009/04/04 11:38:02 | 00,339,968 | ---- | C] (Data Techniques, Inc.) -- C:\WINDOWS\System32\IMGMAN32.DLL
[2009/04/04 11:38:02 | 00,098,345 | ---- | C] (Data Techniques, Inc.) -- C:\WINDOWS\System32\IMHOST32.DLL
[2009/04/04 11:38:02 | 00,098,304 | ---- | C] (Data Techniques, Inc.) -- C:\WINDOWS\System32\IM31XPNG.DEL
[2009/04/04 11:38:02 | 00,069,632 | ---- | C] (Data Techniques, Inc.) -- C:\WINDOWS\System32\IM31XTIF.DEL
[2009/04/04 11:38:02 | 00,049,152 | ---- | C] (Data Techniques, Inc.) -- C:\WINDOWS\System32\IM31IMG.DIL
[2009/04/04 11:38:02 | 00,045,056 | ---- | C] () -- C:\WINDOWS\System32\lxctpmon.dll
[2009/04/04 11:38:02 | 00,032,768 | ---- | C] () -- C:\WINDOWS\System32\LXCTFXPU.DLL
[2009/04/04 11:37:18 | 00,000,000 | ---D | C] -- C:\Program Files\Lexmark 5400 Series
[2009/04/04 11:37:10 | 00,323,584 | ---- | C] ( ) -- C:\WINDOWS\System32\LXCThcp.dll
[2009/04/04 11:37:10 | 00,274,432 | ---- | C] () -- C:\WINDOWS\System32\LXCTinst.dll
[2009/04/04 11:36:46 | 00,021,142 | ---- | C] () -- C:\WINDOWS\System32\LexFiles.ulf
[2009/04/04 11:36:31 | 00,344,064 | R--- | C] () -- C:\WINDOWS\System32\lxctcoin.dll
[2009/04/04 11:36:31 | 00,001,811 | R--- | C] () -- C:\WINDOWS\System32\lxct.loc
[2009/04/04 11:35:35 | 00,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wiafbdrv.dll
[2009/04/04 11:35:35 | 00,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbscan.sys
[2009/04/04 11:26:53 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2009/04/04 11:25:55 | 00,026,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe
[2009/04/04 11:10:38 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2009/04/04 11:00:27 | 00,438,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpob2res.dll
[2009/04/04 11:00:27 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll
[2009/04/04 11:00:27 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll
[2009/04/04 11:00:27 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll
[2009/04/04 11:00:26 | 00,351,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winhttp.dll
[2009/04/04 10:43:43 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2009/04/04 10:40:25 | 00,213,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaucpl.cpl
[2009/04/04 10:40:25 | 00,202,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuweb.dll
[2009/04/04 10:40:25 | 00,186,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll
[2009/04/04 10:40:24 | 00,561,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll
[2009/04/04 10:40:24 | 00,323,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll
[2009/04/04 10:40:24 | 00,167,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe
[2009/04/04 10:40:24 | 00,034,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll
[2009/04/04 10:12:47 | 00,000,000 | ---D | C] -- C:\Program Files\Conduit
[2009/04/04 10:12:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Local Settings\Application Data\The_Pirate_Bay
[2009/04/04 10:12:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Local Settings\Application Data\Conduit
[2009/04/04 10:12:44 | 00,000,000 | ---D | C] -- C:\Program Files\The_Pirate_Bay
[2009/04/04 10:10:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Application Data\Macromedia
[2009/04/04 10:10:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Application Data\Adobe
[2009/04/04 10:03:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Local Settings\Application Data\Opera
[2009/04/04 10:03:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Application Data\Opera
[2009/04/04 10:03:00 | 00,000,603 | ---- | C] () -- C:\DOCUME~1\ALLUSE~1\Desktop\Opera.lnk
[2009/04/04 09:32:16 | 00,000,196 | RHS- | C] () -- C:\BOOT.BAK
[2009/04/04 09:32:01 | 00,000,000 | RHSD | C] -- C:\cmdcons
[2009/04/04 09:31:30 | 00,000,000 | ---D | C] -- C:\WINDOWS\setupupd
[2009/04/04 04:54:34 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\Owner.HOME\Application Data\desktop.ini
[2009/04/04 04:54:33 | 02,113,066 | -H-- | C] () -- C:\Documents and Settings\Owner.HOME\Local Settings\Application Data\IconCache.db
[2009/04/04 04:54:33 | 00,000,128 | ---- | C] () -- C:\Documents and Settings\Owner.HOME\Local Settings\Application Data\fusioncache.dat
[2009/04/04 04:54:31 | 00,000,084 | -HS- | C] () -- C:\Documents and Settings\Owner.HOME\Start Menu\Programs\Startup\desktop.ini
[2009/04/04 04:54:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Application Data\interMute
[2009/04/04 04:54:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Application Data\Identities
[2009/04/04 04:54:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Application Data\5400 Series
[2009/04/04 04:54:30 | 00,000,000 | --SD | C] -- C:\Documents and Settings\Owner.HOME\Application Data\Microsoft
[2009/04/04 04:54:30 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Local Settings\Application Data\Microsoft
[2009/04/04 04:54:30 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Local Settings\Application Data\ApplicationHistory
[2009/04/04 04:54:30 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Local Settings\Application Data\{7148F0A6-6813-11D6-A77B-00B0D0142030}
[2009/04/04 04:54:30 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Application Data\Symantec
[2009/04/04 04:54:30 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Application Data\Sun
[2009/04/04 04:54:30 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Application Data\Sonic
[2009/04/04 04:54:30 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Application Data\SampleView
[2009/04/04 04:54:15 | 53,620,3264 | -HS- | C] () -- C:\hiberfil.sys
[2009/04/04 04:52:29 | 00,001,659 | ---- | C] () -- C:\DOCUME~1\ALLUSE~1\Desktop\America Online.lnk
[2009/04/04 04:52:29 | 00,001,467 | ---- | C] () -- C:\DOCUME~1\ALLUSE~1\Desktop\Quicken 2004.lnk
[2009/04/04 04:52:29 | 00,000,731 | ---- | C] () -- C:\DOCUME~1\ALLUSE~1\Desktop\Software Repair Wizard.lnk
[2009/04/04 04:52:29 | 00,000,104 | ---- | C] () -- C:\DOCUME~1\ALLUSE~1\Desktop\Help and Support.lnk
[2009/04/04 04:52:21 | 00,001,635 | ---- | C] () -- C:\DOCUME~1\ALLUSE~1\Desktop\Easy Internet Sign-up.lnk
[2009/04/04 04:52:02 | 00,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2009/04/04 04:52:02 | 00,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2009/04/04 04:52:02 | 00,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2009/04/04 04:52:02 | 00,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2009/04/04 04:52:02 | 00,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2009/04/04 04:52:02 | 00,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2009/04/04 04:50:49 | 00,145,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys
[2009/04/04 04:50:49 | 00,145,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys
[2009/04/04 04:50:49 | 00,060,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys
[2009/04/04 04:50:49 | 00,060,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys
[2009/04/04 04:50:49 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wdmaud.drv
[2009/04/04 04:50:10 | 00,010,920 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu
[2009/04/04 04:49:32 | 00,052,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\i8042prt.sys
[2009/04/04 04:49:32 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\kbdclass.sys
[2009/04/04 04:45:00 | 00,009,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidusb.sys
[2009/04/04 04:44:59 | 00,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbprint.sys
[2009/04/04 04:44:58 | 00,026,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbstor.sys
[2009/04/04 04:44:57 | 00,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\swmidi.sys
[2009/04/04 04:44:57 | 00,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\dmusic.sys
[2009/04/04 04:44:57 | 00,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmkaud.sys
[2009/04/04 04:44:56 | 00,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sysaudio.sys
[2009/04/04 04:44:41 | 00,061,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ohci1394.sys
[2009/04/04 04:44:41 | 00,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\enum1394.sys
[2009/04/04 03:23:51 | 00,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2009/04/04 02:58:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Application Data\TuneUp Software
[2009/04/04 02:31:28 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Local Settings\Application Data\Mozilla
[2009/04/04 02:31:28 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner.HOME\Application Data\Mozilla
[2009/04/04 02:16:27 | 00,003,584 | ---- | C] () -- C:\Documents and Settings\Owner.HOME\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/04/04 01:55:09 | 00,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpns.dll
[2009/04/04 01:55:09 | 00,185,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iuengine.dll
[2009/04/04 01:55:09 | 00,185,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iuengine.dll
[2009/04/04 01:54:51 | 00,004,250 | RHS- | C] () -- C:\WINDOWS\System32\drivers\HP_DW234A-ABA A530N_YC_Pavi_QMXK415_E42NAheBLU4_4_IDiablo_SASUSTeK Computer INC._VRev 1.xx_B3.07_T040313_WXH1_L409_M512_J200_7AMD_8Athlon 64 3200+_92_1104C8023_N10DE00D6_P_Z11C1044C_K_A10DE00DA_U10DE00D7_G10DE0322.MRK
[2008/09/04 23:59:24 | 00,000,021 | ---- | C] () -- C:\WINDOWS\atid.ini
[2008/07/15 20:10:48 | 00,000,079 | ---- | C] () -- C:\WINDOWS\SuperUtil.ini
[2008/03/16 10:40:03 | 00,000,121 | ---- | C] () -- C:\WINDOWS\bdagent.INI
[2007/10/06 20:14:55 | 00,000,025 | ---- | C] () -- C:\WINDOWS\ckmem.INI
[2006/11/13 03:30:54 | 00,204,800 | ---- | C] () -- C:\WINDOWS\System32\lxctgrd.dll
[2006/11/06 10:37:46 | 00,643,072 | ---- | C] ( ) -- C:\WINDOWS\System32\lxctpmui.dll
[2006/11/06 10:35:50 | 01,224,704 | ---- | C] ( ) -- C:\WINDOWS\System32\lxctserv.dll
[2006/11/06 10:28:08 | 00,421,888 | ---- | C] ( ) -- C:\WINDOWS\System32\lxctcomm.dll
[2006/11/06 10:26:14 | 00,585,728 | ---- | C] ( ) -- C:\WINDOWS\System32\lxctlmpm.dll
[2006/11/06 10:24:44 | 00,397,312 | ---- | C] ( ) -- C:\WINDOWS\System32\lxctiesc.dll
[2006/11/06 10:21:48 | 00,094,208 | ---- | C] ( ) -- C:\WINDOWS\System32\lxctpplc.dll
[2006/11/06 10:20:48 | 00,684,032 | ---- | C] ( ) -- C:\WINDOWS\System32\lxctcomc.dll
[2006/11/06 10:20:14 | 00,163,840 | ---- | C] ( ) -- C:\WINDOWS\System32\lxctprox.dll
[2006/11/06 10:12:44 | 00,413,696 | ---- | C] ( ) -- C:\WINDOWS\System32\lxctinpa.dll
[2006/11/06 10:11:58 | 00,991,232 | ---- | C] ( ) -- C:\WINDOWS\System32\lxctusb1.dll
[2006/11/06 10:07:04 | 00,696,320 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcthbn3.dll
[2006/08/14 11:17:14 | 00,065,536 | ---- | C] () -- C:\WINDOWS\System32\lxctcaps.dll
[2006/08/08 09:58:04 | 00,692,224 | ---- | C] () -- C:\WINDOWS\System32\lxctdrs.dll
[2006/07/11 06:22:11 | 00,000,138 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2006/07/11 06:16:25 | 00,000,086 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2006/07/02 12:27:31 | 00,000,025 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2006/05/18 20:46:54 | 00,000,031 | ---- | C] () -- C:\WINDOWS\warhead.ini
[2006/05/18 20:39:06 | 00,000,000 | ---- | C] () -- C:\WINDOWS\PestPatrol5.INI
[2006/05/03 08:31:04 | 00,061,440 | ---- | C] () -- C:\WINDOWS\System32\lxctcnv4.dll
[2006/04/24 21:11:18 | 00,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxctvs.dll
[2006/02/26 14:31:16 | 00,000,095 | ---- | C] () -- C:\WINDOWS\usrwiz.ini
[2005/09/18 16:28:11 | 00,000,583 | ---- | C] () -- C:\WINDOWS\QIII.INI
[2005/02/05 13:46:00 | 00,004,608 | ---- | C] () -- C:\WINDOWS\fgexec.dll
[2005/01/01 18:27:26 | 00,001,125 | ---- | C] () -- C:\WINDOWS\winamp.ini
[2004/12/29 23:46:35 | 00,007,287 | ---- | C] () -- C:\WINDOWS\hpdj5100.ini
[2004/12/29 23:46:11 | 00,000,470 | ---- | C] () -- C:\WINDOWS\hpbvspst.ini
[2004/12/29 21:47:31 | 00,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2004/01/22 03:26:03 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\VGAunistlog.ini
[2004/01/22 03:26:02 | 00,000,451 | ---- | C] () -- C:\WINDOWS\VGAsetup.ini
[2004/01/21 04:04:38 | 00,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2004/01/21 03:52:52 | 00,000,051 | ---- | C] () -- C:\WINDOWS\System32\mshrml.ini
[2004/01/20 22:08:05 | 00,028,672 | ---- | C] () -- C:\WINDOWS\System32\JAWTAccessBridge.dll
[2004/01/20 22:07:21 | 00,094,208 | ---- | C] () -- C:\WINDOWS\System32\PcdrKernelModeServices.dll
[2004/01/20 22:07:21 | 00,077,824 | ---- | C] () -- C:\WINDOWS\System32\ProgressTrace.dll
[2004/01/20 22:02:24 | 00,167,936 | ---- | C] () -- C:\WINDOWS\System32\PCDrJNI_1_1.dll
[2004/01/20 21:56:41 | 00,030,197 | ---- | C] () -- C:\WINDOWS\System32\CHODDI.SYS
[2004/01/20 21:56:16 | 00,024,576 | ---- | C] () -- C:\WINDOWS\System32\syscontr.dll
[2004/01/20 21:55:38 | 00,045,056 | ---- | C] () -- C:\WINDOWS\System32\hpreg.dll
[2004/01/20 21:42:36 | 00,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2004/01/20 21:34:02 | 00,000,907 | ---- | C] () -- C:\WINDOWS\QUICKEN.INI
[2004/01/20 20:21:37 | 00,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2004/01/20 19:47:52 | 00,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2004/01/20 19:38:07 | 00,299,073 | ---- | C] () -- C:\WINDOWS\System32\PythonCOM22.dll
[2004/01/20 19:38:07 | 00,065,536 | ---- | C] () -- C:\WINDOWS\System32\PyWinTypes22.dll
[2004/01/20 19:37:39 | 00,016,896 | ---- | C] () -- C:\WINDOWS\System32\bcbmm.dll
[2004/01/20 19:20:37 | 00,000,802 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2004/01/20 18:05:12 | 00,000,549 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2004/01/20 18:04:50 | 00,000,603 | ---- | C] () -- C:\WINDOWS\win.ini
[2004/01/20 18:04:46 | 00,000,231 | ---- | C] () -- C:\WINDOWS\system.ini
[2003/09/23 02:19:42 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2003/03/07 00:53:16 | 00,012,288 | ---- | C] () -- C:\WINDOWS\System32\hpnvr82.dll
[2003/01/08 00:05:08 | 00,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI

========== Files - Modified Within 30 Days ==========

[1 C:\WINDOWS\System32\*.tmp files]
[2 C:\WINDOWS\*.tmp files]
[2009/04/28 15:00:00 | 00,000,486 | ---- | M] () -- C:\WINDOWS\tasks\1-Click Maintenance.job
[2009/04/28 14:30:35 | 00,000,438 | ---- | M] () -- C:\WINDOWS\tasks\RegCure Program Check.job
[2009/04/28 14:30:33 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009/04/28 14:30:29 | 00,000,248 | ---- | M] () -- C:\WINDOWS\System\hpsysdrv.dat
[2009/04/28 14:30:25 | 53,620,3264 | -HS- | M] () -- C:\hiberfil.sys
[2009/04/28 14:30:25 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009/04/28 07:44:13 | 00,001,720 | ---- | M] () -- C:\DOCUME~1\ALLUSE~1\Desktop\avast! Antivirus.lnk
[2009/04/28 07:44:10 | 00,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2009/04/27 23:51:05 | 00,000,707 | ---- | M] () -- C:\DOCUME~1\ALLUSE~1\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/04/27 23:44:40 | 00,000,778 | ---- | M] () -- C:\Documents and Settings\Owner.HOME\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk
[2009/04/27 22:14:29 | 00,603,904 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\TUProgSt.exe
[2009/04/27 22:14:23 | 00,362,240 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\TuneUpDefragService.exe
[2009/04/27 22:14:17 | 00,001,617 | ---- | M] () -- C:\DOCUME~1\ALLUSE~1\Desktop\TuneUp 1-Click Maintenance.lnk
[2009/04/27 22:14:17 | 00,001,545 | ---- | M] () -- C:\DOCUME~1\ALLUSE~1\Desktop\TuneUp Utilities 2009.lnk
[2009/04/27 20:29:46 | 00,000,268 | -H-- | M] () -- C:\sqmdata03.sqm
[2009/04/27 20:29:45 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt03.sqm
[2009/04/27 11:22:33 | 00,000,268 | -H-- | M] () -- C:\sqmdata02.sqm
[2009/04/27 11:22:33 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt02.sqm
[2009/04/26 23:16:14 | 00,000,268 | -H-- | M] () -- C:\sqmdata01.sqm
[2009/04/26 23:16:14 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt01.sqm
[2009/04/26 15:50:20 | 00,000,268 | -H-- | M] () -- C:\sqmdata00.sqm
[2009/04/26 15:50:20 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt00.sqm
[2009/04/26 14:50:40 | 00,000,268 | -H-- | M] () -- C:\sqmdata19.sqm
[2009/04/26 14:50:40 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt19.sqm
[2009/04/26 13:43:23 | 00,000,268 | -H-- | M] () -- C:\sqmdata18.sqm
[2009/04/26 13:43:23 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt18.sqm
[2009/04/26 01:14:20 | 00,000,268 | -H-- | M] () -- C:\sqmdata17.sqm
[2009/04/26 01:14:20 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt17.sqm
[2009/04/25 21:53:35 | 00,000,268 | -H-- | M] () -- C:\sqmdata16.sqm
[2009/04/25 21:53:35 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt16.sqm
[2009/04/25 16:50:43 | 00,000,268 | -H-- | M] () -- C:\sqmdata15.sqm
[2009/04/25 16:50:43 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt15.sqm
[2009/04/25 13:16:16 | 00,000,268 | -H-- | M] () -- C:\sqmdata14.sqm
[2009/04/25 13:16:16 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt14.sqm
[2009/04/25 11:36:13 | 00,000,268 | -H-- | M] () -- C:\sqmdata13.sqm
[2009/04/25 11:36:13 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt13.sqm
[2009/04/24 23:53:26 | 00,000,268 | -H-- | M] () -- C:\sqmdata12.sqm
[2009/04/24 23:53:26 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt12.sqm
[2009/04/24 18:28:00 | 00,000,270 | ---- | M] () -- C:\WINDOWS\tasks\Uniblue SpeedUpMyPC Nag.job
[2009/04/24 00:03:19 | 00,000,268 | -H-- | M] () -- C:\sqmdata11.sqm
[2009/04/24 00:03:19 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt11.sqm
[2009/04/23 19:35:02 | 00,000,268 | -H-- | M] () -- C:\sqmdata10.sqm
[2009/04/23 19:35:02 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt10.sqm
[2009/04/23 09:08:39 | 00,000,268 | -H-- | M] () -- C:\sqmdata09.sqm
[2009/04/23 09:08:39 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt09.sqm
[2009/04/17 09:25:12 | 00,524,016 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009/04/17 09:25:12 | 00,442,796 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009/04/17 09:25:12 | 00,071,936 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009/04/17 00:23:06 | 00,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2009/04/15 12:29:38 | 00,000,806 | ---- | M] () -- C:\DOCUME~1\ALLUSE~1\Desktop\DivX Player.lnk
[2009/04/15 12:29:28 | 00,000,842 | ---- | M] () -- C:\DOCUME~1\ALLUSE~1\Desktop\DivX Converter.lnk
[2009/04/11 19:31:46 | 00,034,296 | ---- | M] () -- C:\Documents and Settings\Owner.HOME\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2009/04/11 19:31:29 | 00,001,615 | ---- | M] () -- C:\DOCUME~1\ALLUSE~1\Desktop\CDBurnerXP.lnk
[2009/04/11 19:14:08 | 00,155,568 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009/04/08 17:26:20 | 00,001,747 | ---- | M] () -- C:\DOCUME~1\ALLUSE~1\Desktop\Windows Live Messenger.lnk
[2009/04/08 06:22:07 | 00,028,256 | ---- | M] (MusicMatch, Inc.) -- C:\WINDOWS\System32\drivers\MxlW2k.sys
[2009/04/08 05:45:50 | 00,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009/04/08 05:45:07 | 00,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2009/04/07 18:26:16 | 00,000,283 | RHS- | M] () -- C:\boot.ini
[2009/04/07 18:21:45 | 00,250,032 | RHS- | M] () -- C:\ntldr
[2009/04/07 18:21:45 | 00,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2009/04/07 17:41:13 | 00,000,749 | ---- | M] () -- C:\DOCUME~1\ALLUSE~1\Desktop\Registry Mechanic.lnk
[2009/04/07 17:10:42 | 00,000,627 | ---- | M] () -- C:\DOCUME~1\ALLUSE~1\Desktop\RegCure.lnk
[2009/04/07 16:43:51 | 00,000,372 | ---- | M] () -- C:\WINDOWS\tasks\RegCure.job
[2009/04/06 15:32:54 | 00,038,496 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009/04/06 15:32:46 | 00,015,504 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009/04/04 11:39:55 | 00,000,763 | ---- | M] () -- C:\DOCUME~1\ALLUSE~1\Desktop\Lexmark Imaging Studio - 5400 Series.LNK
[2009/04/04 11:38:47 | 00,021,142 | ---- | M] () -- C:\WINDOWS\System32\LexFiles.ulf
[2009/04/04 10:09:22 | 00,000,376 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[2009/04/04 10:03:00 | 00,000,603 | ---- | M] () -- C:\DOCUME~1\ALLUSE~1\Desktop\Opera.lnk
[2009/04/04 04:53:14 | 00,000,993 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2009/04/04 04:52:21 | 00,001,635 | ---- | M] () -- C:\DOCUME~1\ALLUSE~1\Desktop\Easy Internet Sign-up.lnk
[2009/04/04 04:49:27 | 00,000,196 | RHS- | M] () -- C:\BOOT.BAK
[2009/04/04 04:45:14 | 00,000,231 | ---- | M] () -- C:\WINDOWS\system.ini
[2009/04/04 03:28:56 | 02,113,066 | -H-- | M] () -- C:\Documents and Settings\Owner.HOME\Local Settings\Application Data\IconCache.db
[2009/04/04 02:32:16 | 00,003,584 | ---- | M] () -- C:\Documents and Settings\Owner.HOME\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/04/04 01:54:51 | 00,004,250 | RHS- | M] () -- C:\WINDOWS\System32\drivers\HP_DW234A-ABA A530N_YC_Pavi_QMXK415_E42NAheBLU4_4_IDiablo_SASUSTeK Computer INC._VRev 1.xx_B3.07_T040313_WXH1_L409_M512_J200_7AMD_8Athlon 64 3200+_92_1104C8023_N10DE00D6_P_Z11C1044C_K_A10DE00DA_U10DE00D7_G10DE0322.MRK

========== Alternate Data Streams ==========

@Alternate Data Stream - 163 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D1B5B4F1
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:13EDD51B
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:242231A9
@Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C980DA7D
@Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0B9D8E22
@Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7E95B6FD
< End of report >



I tried all the programs on this link with no success I still cant access the account
http://www.geekstogo...uide-t2852.html
  • 0

Advertisements


#2
Laztug

Laztug

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts
:)

Well I was told of a way to open up the main account but i am still unable to open the files. I am sure i still have malware/trojan in there but i am unable to take it out Avira AntiVir, Avast, Malwarebytes all came out empty handed.

But Avira AntiVir does detect them

Virus or unwanted program 'SPR/Swizzor.A [riskware]'
detected in file 'C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP63\A0012376.exe.
Action performed: Deny access

I searched for it under the run setting and sent it to quarentine. But i STILL can not open up the files in my main account. :) I can see them taking up space i can see them there but i am unable to open them.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP