Need help with unremovable virus infection( Win32)

Alright, originally I thought that my problem is due to window error, but after some time, I suspect the real cause behind it is virus. Here is the link to the previous post about my problem in another section:click here.

I had run a thorough scan with Avast and detected several viruses with the names Win32:Vitro, Win32:Adware-gen and Win32:Trojan-gen. All of them cannot be repaired, so I moved all of them to chest.

This is the log of malwarebytes:
Malwarebytes' Anti-Malware 1.36
Database version: 2072
Windows 6.0.6001 Service Pack 1

4/5/2009 12:51:14 PM
mbam-log-2009-05-04 (12-51-14).txt

Scan type: Quick Scan
Objects scanned: 86565
Time elapsed: 2 minute(s), 47 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

This is the log of Rooter:
Microsoft Windows Vista Home Edition (6.0.6001) Service Pack 1

C:\ [Fixed] - NTFS - (Total:461530 Mo/Free:4 Mo)
D:\ [Fixed] - NTFS - (Total:15359 Mo/Free:1133 Mo)
E:\ [CD-Rom] (Total:0 Mo/Free:0 Mo)
F:\ [CD-Rom] (Total:0 Mo/Free:0 Mo)
G:\ [CD-Rom] (Total:0 Mo/Free:0 Mo)

04/05/2009 Mon|12:52

----------------------\\ Processes..

--Locked-- [System Process]
--Locked-- System
---------- \SystemRoot\System32\smss.exe
---------- C:\Windows\system32\csrss.exe
---------- C:\Windows\system32\wininit.exe
---------- C:\Windows\system32\csrss.exe
---------- C:\Windows\system32\services.exe
---------- C:\Windows\system32\lsass.exe
---------- C:\Windows\system32\lsm.exe
---------- C:\Windows\system32\svchost.exe
---------- C:\Windows\system32\winlogon.exe
---------- C:\Windows\system32\nvvsvc.exe
---------- C:\Windows\system32\svchost.exe
---------- C:\Windows\System32\svchost.exe
---------- C:\Windows\System32\svchost.exe
---------- C:\Windows\System32\svchost.exe
---------- C:\Windows\system32\svchost.exe
--Locked-- audiodg.exe
---------- C:\Windows\system32\svchost.exe
---------- C:\Windows\system32\SLsvc.exe
---------- C:\Windows\system32\svchost.exe
---------- C:\Windows\system32\svchost.exe
---------- C:\Windows\system32\rundll32.exe
---------- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
---------- C:\Program Files\Alwil Software\Avast4\ashServ.exe
---------- C:\Windows\system32\WUDFHost.exe
---------- C:\Windows\Explorer.EXE
---------- C:\Windows\System32\spoolsv.exe
---------- C:\Windows\system32\svchost.exe
---------- C:\Windows\system32\taskeng.exe
---------- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
---------- C:\Windows\system32\taskeng.exe
---------- C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
---------- C:\Users\Edmond\Desktop\utorrent.exe
---------- C:\Program Files\DAEMON Tools Pro\DTProAgent.exe
---------- C:\Program Files\Advanced System Optimizer\wallpaper.exe
---------- C:\Program Files\Systweak\Advanced Vista Optimizer 2009\AVO.exe
---------- C:\Program Files\Sandboxie\SbieCtrl.exe
---------- C:\Program Files\SpywareGuard\sgmain.exe
---------- C:\Windows\ehome\ehtray.exe
---------- C:\Program Files\Windows Media Player\wmpnscfg.exe
---------- C:\Program Files\Windows Defender\MSASCui.exe
---------- C:\Windows\ehome\ehmsas.exe
---------- C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
---------- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
---------- C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe
---------- C:\Windows\system32\CTsvcCDA.exe
---------- C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
---------- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
---------- C:\Windows\system32\rundll32.exe
---------- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
---------- C:\Windows\system32\PnkBstrA.exe
---------- C:\Windows\system32\svchost.exe
---------- C:\Program Files\Sandboxie\SbieSvc.exe
---------- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
---------- C:\Program Files\Dell Support Center\bin\sprtsvc.exe
---------- C:\Windows\system32\STacSV.exe
---------- C:\Program Files\SpywareGuard\sgbhp.exe
---------- C:\Windows\system32\svchost.exe
---------- C:\Windows\System32\svchost.exe
---------- C:\Windows\system32\SearchIndexer.exe
---------- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
---------- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
---------- C:\Program Files\Windows Media Player\wmpnetwk.exe
---------- C:\Program Files\filehippo.com\UpdateChecker.exe
---------- C:\Windows\system32\taskeng.exe
---------- C:\Program Files\Thunder5.8.8.653\Thunder\Program\Thunder5.exe
---------- C:\Program Files\Mozilla Firefox\firefox.exe
---------- C:\Windows\system32\conime.exe
---------- C:\Windows\system32\msiexec.exe
---------- C:\Program Files\Alwil Software\Avast4\ashLogV.exe
---------- C:\Windows\system32\NOTEPAD.EXE
---------- C:\Windows\system32\DllHost.exe
---------- C:\Windows\system32\DllHost.exe
---------- C:\Users\Edmond\Desktop\Programs\Rooter.exe
---------- C:\Windows\system32\cmd.exe
---------- C:\Rooter$\RK.exe

----------------------\\ Search..

----------------------\\ ROOTKIT !!

1 - "C:\Rooter$\Rooter_1.txt" - 04/05/2009 Mon|12:52

----------------------\\ Scan completed at 12:52

This is the log of OTListIt.txt:
OTListIt logfile created on: 4/5/2009 12:54:45 PM - Run 1
OTListIt2 by OldTimer - Version 2.0.14.0 Folder = C:\Users\Edmond\Desktop\Programs
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00004409 | Country: Malaysia | Language: ENM | Date Format: d/M/yyyy

2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 100.00% Memory free
4.00 Gb Paging File | 4.00 Gb Available in Paging File | 100.00% Paging File free
Paging file location(s): ?:\pagefile.sys;

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 450.71 Gb Total Space | 144.00 Gb Free Space | 31.95% Space Free | Partition Type: NTFS
Drive D: | 15.00 Gb Total Space | 5.11 Gb Free Space | 34.04% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: EDMOND-PC
Current User Name: Edmond
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Output = Minimal
File Age = 30 Days
Company Name Whitelist: On

========== Processes (SafeList) ==========

PRC - C:\Windows\system32\nvvsvc.exe (NVIDIA Corporation)
PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
PRC - C:\Windows\system32\WUDFHost.exe (Microsoft Corporation)
PRC - C:\Windows\Explorer.EXE (Microsoft Corporation)
PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
PRC - C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation)
PRC - C:\Users\Edmond\Desktop\utorrent.exe (BitTorrent, Inc.)
PRC - C:\Program Files\DAEMON Tools Pro\DTProAgent.exe (DT Soft Ltd.)
PRC - C:\Program Files\Advanced System Optimizer\wallpaper.exe (Systweak Inc)
PRC - C:\Program Files\Systweak\Advanced Vista Optimizer 2009\AVO.exe (Systweak Inc.)
PRC - C:\Program Files\Sandboxie\SbieCtrl.exe (tzuk)
PRC - C:\Program Files\SpywareGuard\sgmain.exe ()
PRC - C:\Windows\ehome\ehtray.exe (Microsoft Corporation)
PRC - C:\Program Files\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
PRC - C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
PRC - C:\Windows\ehome\ehmsas.exe (Microsoft Corporation)
PRC - C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe ()
PRC - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
PRC - C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe (Creative Labs)
PRC - C:\Windows\system32\CTsvcCDA.exe (Creative Technology Ltd)
PRC - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe (Intel Corporation)
PRC - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe ()
PRC - C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE (Microsoft Corporation)
PRC - C:\Windows\system32\PnkBstrA.exe ()
PRC - C:\Program Files\Sandboxie\SbieSvc.exe (tzuk)
PRC - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corp.)
PRC - C:\Program Files\Dell Support Center\bin\sprtsvc.exe (SupportSoft, Inc.)
PRC - C:\Windows\system32\STacSV.exe (SigmaTel, Inc.)
PRC - C:\Program Files\SpywareGuard\sgbhp.exe ()
PRC - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
PRC - C:\Program Files\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
PRC - C:\Program Files\filehippo.com\UpdateChecker.exe (FileHippo.com)
PRC - C:\Program Files\Thunder5.8.8.653\Thunder\Program\Thunder5.exe (Thunder Networking Technologies,LTD)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Windows\system32\conime.exe (Microsoft Corporation)
PRC - C:\Program Files\Alwil Software\Avast4\ashLogV.exe (ALWIL Software)
PRC - C:\Users\Edmond\Desktop\Programs\OTListIt2.exe (OldTimer Tools)

========== Win32 Services (SafeList) ==========

SRV - (0133501241405017mcinstcleanup [Auto | Stopped]) -- File not found
SRV - (0268521210934798mcinstcleanup [Auto | Stopped]) -- File not found
SRV - (AdobeActiveFileMonitor6.0 [Auto | Running]) -- C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe ()
SRV - (Apple Mobile Device [Auto | Running]) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (aswUpdSv [Auto | Running]) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
SRV - (avast! Antivirus [Auto | Running]) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
SRV - (avast! Mail Scanner [On_Demand | Running]) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
SRV - (avast! Web Scanner [On_Demand | Running]) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
SRV - (Bonjour Service [Disabled | Stopped]) -- C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
SRV - (clr_optimization_v2.0.50727_32 [On_Demand | Stopped]) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (Creative Labs Licensing Service [Auto | Running]) -- C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe (Creative Labs)
SRV - (Creative Service for CDROM Access [Auto | Running]) -- C:\Windows\system32\CTsvcCDA.exe (Creative Technology Ltd)
SRV - (DFSR [On_Demand | Stopped]) -- File not found
SRV - (ehRecvr [On_Demand | Stopped]) -- C:\Windows\ehome\ehRecvr.exe (Microsoft Corporation)
SRV - (ehSched [On_Demand | Stopped]) -- C:\Windows\ehome\ehsched.exe (Microsoft Corporation)
SRV - (ehstart [Auto | Stopped]) -- C:\Windows\ehome\ehstart.dll (Microsoft Corporation)
SRV - (FLEXnet Licensing Service [On_Demand | Stopped]) -- File not found
SRV - (FontCache3.0.0.0 [On_Demand | Stopped]) -- C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation)
SRV - (fsssvc [On_Demand | Stopped]) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe (Microsoft Corporation)
SRV - (IAANTMON [Auto | Running]) -- C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe (Intel Corporation)
SRV - (IDriverT [On_Demand | Stopped]) -- C:\Program Files\Roxio\Roxio MyDVD Premier\InstallShield\Driver\1050\Intel 32\IDriverT.exe (Macrovision Corporation)
SRV - (idsvc [Unknown | Stopped]) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe (Microsoft Corporation)
SRV - (McAfee SiteAdvisor Service [Auto | Running]) -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe ()
SRV - (MDM [Auto | Running]) -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE (Microsoft Corporation)
SRV - (Microsoft Office Groove Audit Service [On_Demand | Stopped]) -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe (Microsoft Corporation)
SRV - (NetTcpPortSharing [Disabled | Stopped]) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe (Microsoft Corporation)
SRV - (nvsvc [Auto | Running]) -- C:\Windows\system32\nvvsvc.exe (NVIDIA Corporation)
SRV - (odserv [On_Demand | Stopped]) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (ose [On_Demand | Stopped]) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (PnkBstrA [Auto | Running]) -- C:\Windows\system32\PnkBstrA.exe ()
SRV - (RoxMediaDB9 [On_Demand | Stopped]) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe (Sonic Solutions)
SRV - (SbieSvc [Auto | Running]) -- C:\Program Files\Sandboxie\SbieSvc.exe (tzuk)
SRV - (SeaPort [Auto | Running]) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corp.)
SRV - (ServiceLayer [On_Demand | Stopped]) -- File not found
SRV - (sprtsvc_dellsupportcenter [Auto | Running]) -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe (SupportSoft, Inc.)
SRV - (STacSV [Auto | Running]) -- C:\Windows\system32\STacSV.exe (SigmaTel, Inc.)
SRV - (stllssvr [On_Demand | Stopped]) -- C:\Program Files\Common Files\SureThing Shared\stllssvr.exe (MicroVision Development, Inc.)
SRV - (WinDefend [Auto | Running]) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV - (WLSetupSvc [On_Demand | Stopped]) -- C:\Program Files\Windows Live\installer\WLSetupSvc.exe (Microsoft Corporation)
SRV - (WMPNetworkSvc [On_Demand | Running]) -- C:\Program Files\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)

========== Driver Services (SafeList) ==========

DRV - (adp94xx [Disabled | Stopped]) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.)
DRV - (adpahci [Disabled | Stopped]) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.)
DRV - (adpu160m [Disabled | Stopped]) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.)
DRV - (adpu320 [Disabled | Stopped]) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.)
DRV - (aic78xx [Disabled | Stopped]) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.)
DRV - (aliide [Disabled | Stopped]) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.)
DRV - (arc [Disabled | Stopped]) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.)
DRV - (arcsas [Disabled | Stopped]) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.)
DRV - (aswFsBlk [Auto | Running]) -- C:\Windows\system32\DRIVERS\aswFsBlk.sys (ALWIL Software)
DRV - (aswMonFlt [Auto | Running]) -- C:\Windows\system32\DRIVERS\aswMonFlt.sys (ALWIL Software)
DRV - (aswRdr [System | Running]) -- C:\Windows\System32\drivers\aswRdr.sys (ALWIL Software)
DRV - (aswSP [System | Running]) -- C:\Windows\System32\drivers\aswSP.sys (ALWIL Software)
DRV - (aswTdi [System | Running]) -- C:\Windows\System32\drivers\aswTdi.sys (ALWIL Software)
DRV - (atksgt [Auto | Running]) -- C:\Windows\system32\DRIVERS\atksgt.sys ()
DRV - (BrFiltLo [On_Demand | Stopped]) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.)
DRV - (BrFiltUp [On_Demand | Stopped]) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.)
DRV - (Brserid [Disabled | Stopped]) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.)
DRV - (BrSerWdm [Disabled | Stopped]) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.)
DRV - (BrUsbMdm [Disabled | Stopped]) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.)
DRV - (BrUsbSer [On_Demand | Stopped]) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.)
DRV - (cmdide [Disabled | Stopped]) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.)
DRV - (CnxTrLan [On_Demand | Stopped]) -- C:\Windows\system32\DRIVERS\CnxTrLan.sys (Conexant)
DRV - (CnxTrUsb [On_Demand | Stopped]) -- C:\Windows\system32\DRIVERS\CnxTrUsb.sys (Conexant)
DRV - (e1express [On_Demand | Running]) -- C:\Windows\system32\DRIVERS\e1e6032.sys (Intel Corporation)
DRV - (E1G60 [On_Demand | Stopped]) -- C:\Windows\system32\DRIVERS\E1G60I32.sys (Intel Corporation)
DRV - (elxstor [Disabled | Stopped]) -- C:\Windows\system32\drivers\elxstor.sys (Emulex)
DRV - (fssfltr [On_Demand | Stopped]) -- C:\Windows\system32\DRIVERS\fssfltr.sys (Microsoft Corporation)
DRV - (HpCISSs [Disabled | Stopped]) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company)
DRV - (iaStor [Boot | Running]) -- C:\Windows\system32\drivers\iastor.sys (Intel Corporation)
DRV - (iaStorV [Disabled | Stopped]) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation)
DRV - (iirsp [Disabled | Stopped]) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (iteatapi [Disabled | Stopped]) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
DRV - (iteraid [Disabled | Stopped]) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.)
DRV - (lirsgt [Auto | Running]) -- C:\Windows\system32\DRIVERS\lirsgt.sys ()
DRV - (LSI_FC [Disabled | Stopped]) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic)
DRV - (LSI_SAS [Disabled | Stopped]) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic)
DRV - (LSI_SCSI [Disabled | Stopped]) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic)
DRV - (megasas [Disabled | Stopped]) -- C:\Windows\system32\drivers\megasas.sys (LSI Logic Corporation)
DRV - (Mraid35x [Disabled | Stopped]) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation)
DRV - (nfrd960 [Disabled | Stopped]) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation)
DRV - (nmwcd [On_Demand | Stopped]) -- C:\Windows\system32\drivers\ccdcmb.sys (Nokia)
DRV - (nmwcdc [On_Demand | Stopped]) -- C:\Windows\system32\drivers\ccdcmbo.sys (Nokia)
DRV - (ntrigdigi [Disabled | Stopped]) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies)
DRV - (nvlddmkm [On_Demand | Running]) -- C:\Windows\system32\DRIVERS\nvlddmkm.sys (NVIDIA Corporation)
DRV - (nvraid [Disabled | Stopped]) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation)
DRV - (nvstor [Disabled | Stopped]) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation)
DRV - (pccsmcfd [On_Demand | Stopped]) -- C:\Windows\system32\DRIVERS\pccsmcfd.sys (Nokia)
DRV - (pmxmouse [On_Demand | Stopped]) -- C:\Windows\system32\DRIVERS\pmxmouse.sys (Primax Electronics Ltd.)
DRV - (pmxusblf [On_Demand | Stopped]) -- C:\Windows\system32\DRIVERS\pmxusblf.sys (Primax Electronics Ltd.)
DRV - (PxHelp20 [Boot | Running]) -- C:\Windows\System32\Drivers\PxHelp20.sys (Sonic Solutions)
DRV - (ql2300 [Disabled | Stopped]) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation)
DRV - (ql40xx [Disabled | Stopped]) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation)
DRV - (s116bus [On_Demand | Stopped]) -- C:\Windows\system32\DRIVERS\s116bus.sys (MCCI Corporation)
DRV - (s116mdfl [On_Demand | Stopped]) -- C:\Windows\system32\DRIVERS\s116mdfl.sys (MCCI Corporation)
DRV - (s116mdm [On_Demand | Stopped]) -- C:\Windows\system32\DRIVERS\s116mdm.sys (MCCI Corporation)
DRV - (s116mgmt [On_Demand | Stopped]) -- C:\Windows\system32\DRIVERS\s116mgmt.sys (MCCI Corporation)
DRV - (s116nd5 [On_Demand | Stopped]) -- C:\Windows\system32\DRIVERS\s116nd5.sys (MCCI Corporation)
DRV - (s116obex [On_Demand | Stopped]) -- C:\Windows\system32\DRIVERS\s116obex.sys (MCCI Corporation)
DRV - (s116unic [On_Demand | Stopped]) -- C:\Windows\system32\DRIVERS\s116unic.sys (MCCI Corporation)
DRV - (SbieDrv [On_Demand | Running]) -- C:\Program Files\Sandboxie\SbieDrv.sys (tzuk)
DRV - (secdrv [Auto | Running]) -- C:\Windows\System32\drivers\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
DRV - (SiSRaid2 [Disabled | Stopped]) -- C:\Windows\system32\drivers\sisraid2.sys (Silicon Integrated Systems Corp.)
DRV - (SiSRaid4 [Disabled | Stopped]) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems)
DRV - (sonypvf3 [System | Running]) -- C:\Windows\System32\drivers\sonypvf3.sys (Sony Corporation)
DRV - (sonypvl3 [Boot | Running]) -- C:\Windows\System32\drivers\sonypvl3.sys (Sony Corporation)
DRV - (sonypvt3 [System | Running]) -- C:\Windows\System32\drivers\sonypvt3.sys (Sony Corporation)
DRV - (sptd [Boot | Running]) -- C:\Windows\System32\Drivers\sptd.sys ()
DRV - (STEC3 [Auto | Running]) -- C:\Windows\system32\STEC3.sys (AntiCracking)
DRV - (STHDA [On_Demand | Running]) -- C:\Windows\system32\drivers\stwrt.sys (SigmaTel, Inc.)
DRV - (Symc8xx [Disabled | Stopped]) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic)
DRV - (Sym_hi [Disabled | Stopped]) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic)
DRV - (Sym_u3 [Disabled | Stopped]) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic)
DRV - (uliahci [Disabled | Stopped]) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.)
DRV - (UlSata [Disabled | Stopped]) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.)
DRV - (ulsata2 [Disabled | Stopped]) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.)
DRV - (upperdev [On_Demand | Stopped]) -- C:\Windows\system32\DRIVERS\usbser_lowerflt.sys (Windows ® Codename Longhorn DDK provider)
DRV - (usbser [On_Demand | Stopped]) -- C:\Windows\system32\DRIVERS\usbser.sys (Microsoft Corporation)
DRV - (viaide [Disabled | Stopped]) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.)
DRV - (vsmraid [Disabled | Stopped]) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (WinUsb [On_Demand | Running]) -- C:\Windows\system32\DRIVERS\WinUSB.SYS (Microsoft Corporation)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www1.ap.dell....s...;l=en&s=gen
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.cuteworm.com/

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www1.ap.dell....s...;l=en&s=gen
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com.my/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Google"
FF - prefs.js..browser.search.defaulturl: "http://www.google.co...-8&oe=UTF-8&q="
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}:6.0.12
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13
FF - prefs.js..extensions.enabledItems: {E9A1DEE0-C623-4439-8932-001E7D17607D}:2.1.0.5
FF - prefs.js..extensions.enabledItems: {B7082FAA-CB62-4872-9106-E42DD88EDE45}:2.9
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.10

FF - HKLM\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\PROGRAM FILES\MCAFEE\SITEADVISOR [2009/05/04 12:16:41 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Components: C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS [2009/04/29 17:41:28 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Plugins: C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS [2009/05/04 12:03:10 | 00,000,000 | ---D | M]

[2009/04/24 12:25:07 | 00,000,000 | ---D | M] -- C:\Users\Edmond\AppData\Roaming\mozilla\Extensions
[2009/04/24 12:25:07 | 00,000,000 | ---D | M] -- C:\Users\Edmond\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/05/04 12:22:48 | 00,000,000 | ---D | M] -- C:\Users\Edmond\AppData\Roaming\mozilla\Firefox\Profiles\7np21zst.default\extensions
[2009/04/24 12:09:39 | 00,000,000 | ---D | M] -- C:\Users\Edmond\AppData\Roaming\mozilla\Firefox\Profiles\7np21zst.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2009/04/24 12:09:39 | 00,000,000 | ---D | M] -- C:\Users\Edmond\AppData\Roaming\mozilla\Firefox\Profiles\7np21zst.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}-trash
[2009/05/04 10:59:04 | 00,000,000 | ---D | M] -- C:\Users\Edmond\AppData\Roaming\mozilla\Firefox\Profiles\7np21zst.default\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
[2009/05/03 15:30:23 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2008/04/18 00:43:31 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2009/04/29 16:16:19 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2009/03/10 16:32:29 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}
[2009/03/25 16:50:01 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
[2008/09/04 17:00:07 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\[email protected]
[2009/04/29 16:16:14 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009/04/29 16:16:14 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2009/04/23 10:38:23 | 00,001,394 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom.xml
[2009/04/23 10:38:24 | 00,002,193 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\answers.xml
[2009/04/23 10:38:24 | 00,001,534 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
[2009/04/23 10:38:24 | 00,002,343 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay.xml
[2009/04/23 10:38:24 | 00,001,706 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2009/04/24 13:18:43 | 00,002,221 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\SafeSearch.xml
[2009/04/23 10:38:25 | 00,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia.xml
[2009/04/23 10:38:25 | 00,000,792 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo.xml

O1 - HOSTS File: (258240 bytes) - C:\Windows\System32\Drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.1001-search.info
O1 - Hosts: 127.0.0.1 1001-search.info
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.123topsearch.com
O1 - Hosts: 127.0.0.1 123topsearch.com
O1 - Hosts: 127.0.0.1 www.132.com
O1 - Hosts: 127.0.0.1 132.com
O1 - Hosts: 127.0.0.1 www.136136.net
O1 - Hosts: 127.0.0.1 136136.net
O1 - Hosts: 8976 more lines...
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (AskBar BHO) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - Reg Error: Value error. File not found
O2 - BHO: (SpywareGuardDLBLOCK.CBrowserHelper) - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll ()
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - Reg Error: Key error. File not found
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll (Microsoft Corp.)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll ()
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll ()
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Foxit Toolbar) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - Reg Error: Key error. File not found
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Reg Error: Key error. File not found
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKCU..\Run: [AVO Ram Optimizer] c:\program files\systweak\advanced vista optimizer 2009\AVO.exe -s (Systweak Inc.)
O4 - HKCU..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTProAgent.exe" (DT Soft Ltd.)
O4 - HKCU..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe (Microsoft Corporation)
O4 - HKCU..\Run: [EleFunAnimatedWallpaper] File not found
O4 - HKCU..\Run: [filehippo.com] "C:\Program Files\filehippo.com\UpdateChecker.exe" /background (FileHippo.com)
O4 - HKCU..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler (Macrovision Corporation)
O4 - HKCU..\Run: [SandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe" (tzuk)
O4 - HKCU..\Run: [Systweak Wallpaper Changer] C:\Program Files\Advanced System Optimizer\wallpaper.exe -minimize (Systweak Inc)
O4 - HKCU..\Run: [uTorrent] "C:\Users\Edmond\Desktop\utorrent.exe" (BitTorrent, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetActiveDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisallowRun = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetActiveDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisallowRun: 3 = zion2wc.exe
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisallowRun: 1 = zion-3-setup-wmirc.exe
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisallowRun: 2 = zionle.exe
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 0
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [@%SystemRoot%\system32\nlasvc.dll,-1000] - C:\Windows\system32\NLAapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [@%SystemRoot%\system32\napinsp.dll,-1000] - C:\Windows\system32\napinsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [@%SystemRoot%\system32\pnrpnsp.dll,-1000] - C:\Windows\system32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [@%SystemRoot%\system32\pnrpnsp.dll,-1001] - C:\Windows\system32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [mdnsNSP] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: 25 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {99FE5072-78AA-4FEE-89BA-69A5FA55343F} http://download.micr...44/igdtoolx.cab (IGDTester Class)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_05)
O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_13)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll ()
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter: - text/xml - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {81559C35-8464-49F7-BB0E-07A383BEF910} - C:\Program Files\SpywareGuard\spywareguard.dll ()
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - Autorun File - C:\autoexec.bat () - [ NTFS ]
O33 - MountPoints2\{0dfd4f44-02e7-11dd-a5bd-001ec929587e}\Shell - "" = AutoRun
O33 - MountPoints2\{0dfd4f44-02e7-11dd-a5bd-001ec929587e}\Shell\AutoRun\command - "" = H:\start.exe -- File not found
O33 - MountPoints2\{3a56c638-df8f-11dd-b855-a9a86def88e5}\Shell\AutoRun\command - "" = 108ce.bat
O33 - MountPoints2\{3a56c638-df8f-11dd-b855-a9a86def88e5}\Shell\explore\Command - "" = 108ce.bat
O33 - MountPoints2\{3a56c638-df8f-11dd-b855-a9a86def88e5}\Shell\open\Command - "" = 108ce.bat
O33 - MountPoints2\{699abca8-175d-11dd-88aa-001ec929587e}\Shell\Explore\command - "" = Flash.10.Setup.exe
O33 - MountPoints2\{699abca8-175d-11dd-88aa-001ec929587e}\Shell\Open\command - "" = Flash.10.Setup.exe
O33 - MountPoints2\{699abca8-175d-11dd-88aa-001ec929587e}\Shell\Scan for Viruses\command - "" = Scanner.exe
O33 - MountPoints2\{98b7ff6d-091a-11de-b244-a3aaf10cffd4}\Shell\AutoRun\command - "" = wd_windows_tools\WDSetup.exe
O33 - MountPoints2\{98b7ff6f-091a-11de-b244-a3aaf10cffd4}\Shell\Auto\command - "" = Start.exe
O33 - MountPoints2\{98b7ff74-091a-11de-b244-a3aaf10cffd4}\Shell\Auto\command - "" = Start.exe
O33 - MountPoints2\{98b7ff77-091a-11de-b244-a3aaf10cffd4}\Shell\Auto\command - "" = Start.exe
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\Windows\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
O34 - HKLM BootExecute: (sasnative32) - File not found
O34 - HKLM BootExecute: (aswBoot.exe) - C:\Windows\system32\aswBoot.exe (ALWIL Software)
O34 - HKLM BootExecute: (/A:"*") - File not found
O34 - HKLM BootExecute: (/L:"English") - File not found
O34 - HKLM BootExecute: (/RA:repair) - File not found
O34 - HKLM BootExecute: (/archives) - File not found
O34 - HKLM BootExecute: (/KBD:2) - File not found

========== Files/Folders - Created Within 30 Days ==========

[6 C:\Windows\System32\*.tmp files]
[1 C:\Windows\*.tmp files]
[2009/05/04 12:52:32 | 00,000,000 | ---D | C] -- C:\Rooter$
[2009/05/04 12:06:47 | 00,000,000 | ---D | C] -- C:\Program Files\Sunbelt Software
[2009/05/04 11:37:19 | 00,000,000 | ---D | C] -- C:\Sandbox
[2009/05/04 11:36:53 | 00,001,702 | ---- | C] () -- C:\Windows\Sandboxie.ini
[2009/05/04 11:36:00 | 00,000,000 | ---D | C] -- C:\Program Files\Sandboxie
[2009/05/04 11:21:10 | 00,274,224 | ---- | C] (BitTorrent, Inc.) -- C:\Users\Edmond\Desktop\utorrent.exe
[2009/05/04 11:04:05 | 00,000,000 | ---D | C] -- C:\Program Files\filehippo.com
[2009/05/04 10:59:04 | 00,000,000 | ---D | C] -- C:\Program Files\AskBarDis
[2009/05/04 10:58:47 | 00,000,000 | ---D | C] -- C:\Users\Edmond\AppData\Roaming\Foxit
[2009/05/04 10:58:47 | 00,000,000 | ---D | C] -- C:\Program Files\Foxit Software
[2009/05/04 10:54:31 | 00,000,000 | ---D | C] -- C:\Program Files\SpywareBlaster
[2009/05/04 10:49:23 | 00,000,798 | ---- | C] () -- C:\Users\Edmond\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SpywareGuard.lnk
[2009/05/04 10:49:22 | 00,000,000 | ---D | C] -- C:\Program Files\SpywareGuard
[2009/05/04 10:43:37 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\McAfee
[2009/05/04 10:43:24 | 00,000,000 | ---D | C] -- C:\Program Files\McAfee
[2009/05/03 15:38:42 | 00,114,768 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswSP.sys
[2009/05/03 15:38:42 | 00,097,480 | ---- | C] (ALWIL Software) -- C:\Windows\System32\AvastSS.scr
[2009/05/03 15:38:42 | 00,051,376 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2009/05/03 15:38:42 | 00,023,152 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2009/05/03 15:38:42 | 00,020,560 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
[2009/05/03 15:38:22 | 01,256,296 | ---- | C] (ALWIL Software) -- C:\Windows\System32\aswBoot.exe
[2009/05/03 15:38:22 | 00,380,928 | ---- | C] () -- C:\Windows\System32\actskin4.ocx
[2009/05/03 15:38:22 | 00,051,792 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2009/05/03 15:38:20 | 00,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2009/05/03 14:04:50 | 00,000,000 | ---D | C] -- C:\Avenger
[2009/04/30 20:41:41 | 00,000,000 | ---D | C] -- C:\Windows\ERDNT
[2009/04/30 20:40:15 | 00,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2009/04/30 20:32:32 | 00,000,000 | ---D | C] -- C:\Users\Edmond\AppData\Roaming\Malwarebytes
[2009/04/30 20:32:31 | 00,015,504 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2009/04/30 20:32:28 | 00,038,496 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2009/04/30 20:32:26 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009/04/30 20:30:12 | 00,000,000 | R--D | C] -- C:\Users\Edmond\Desktop\Programs
[2009/04/29 17:39:59 | 00,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2009/04/29 17:39:20 | 00,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2009/04/29 17:37:44 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2009/04/29 11:06:50 | 00,000,000 | ---D | C] -- C:\Users\Edmond\AppData\Roaming\Uniblue
[2009/04/29 11:06:50 | 00,000,000 | ---D | C] -- C:\Program Files\Uniblue
[2009/04/28 23:27:34 | 00,168,448 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2009/04/28 23:27:28 | 00,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\Windows\System32\lameACM.acm
[2009/04/28 23:27:28 | 00,000,414 | ---- | C] () -- C:\Windows\System32\lame_acm.xml
[2009/04/28 23:27:26 | 00,118,784 | ---- | C] (fccHandler) -- C:\Windows\System32\ac3acm.acm
[2009/04/28 23:27:26 | 00,039,936 | ---- | C] (Disappearing Inc.) -- C:\Windows\System32\huffyuv.dll
[2009/04/28 23:27:25 | 00,630,784 | ---- | C] (On2.com) -- C:\Windows\System32\vp7vfw.dll
[2009/04/28 23:27:25 | 00,217,088 | ---- | C] (www.helixcommunity.org) -- C:\Windows\System32\yv12vfw.dll
[2009/04/28 23:27:24 | 00,438,272 | ---- | C] (On2.com) -- C:\Windows\System32\vp6vfw.dll
[2009/04/28 23:27:21 | 00,795,648 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2009/04/28 23:27:21 | 00,130,048 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2009/04/28 23:27:20 | 03,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2009/04/28 23:27:20 | 00,086,016 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\dpl100.dll
[2009/04/28 23:27:19 | 00,684,032 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\divx.dll
[2009/04/28 23:27:16 | 00,000,547 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll.manifest
[2009/04/28 23:27:15 | 00,067,584 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2009/04/28 23:27:13 | 00,060,273 | ---- | C] (Open Source Software community project) -- C:\Windows\System32\pthreadGC2.dll
[2009/04/28 23:27:12 | 00,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack
[2009/04/26 20:39:26 | 03,062,761 | -H-- | C] () -- C:\Users\Edmond\AppData\Local\IconCache.db
[2009/04/26 13:44:21 | 00,643,072 | ---- | C] (NuMedia Soft, Inc.) -- C:\Windows\System32\DVDProX2.dll
[2009/04/26 13:44:21 | 00,497,496 | ---- | C] (Xceed Software Inc (450) 442-2626 [email protected] www.xceedsoft.com) -- C:\Windows\System32\XceedZip.dll
[2009/04/26 13:44:21 | 00,292,696 | ---- | C] (Xceed Software Inc (450) 442-2626 [email protected] www.xceedsoft.com) -- C:\Windows\System32\XceedFtp.dll
[2009/04/26 13:44:20 | 00,506,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml.dll
[2009/04/26 13:44:20 | 00,349,224 | ---- | C] (Infragistics, Inc.) -- C:\Windows\System32\IGThreed40.ocx
[2009/04/26 13:44:20 | 00,244,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msflxgrd.ocx
[2009/04/26 13:44:20 | 00,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VB6STKIT.DLL
[2009/04/26 13:44:20 | 00,079,088 | ---- | C] (Systweak.com) -- C:\Windows\System32\OBTaskSched.dll
[2009/04/26 13:44:19 | 00,260,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\richtx32.ocx
[2009/04/26 12:30:09 | 00,000,607 | ---- | C] () -- C:\Windows\Uninstall Manager.INI
[2009/04/26 10:45:16 | 00,208,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WinFXDocObj.exe
[2009/04/26 10:45:16 | 00,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe
[2009/04/26 10:45:12 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2009/04/26 10:45:05 | 00,169,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe
[2009/04/26 10:45:05 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshta.exe
[2009/04/26 10:45:04 | 00,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2009/04/26 10:45:04 | 00,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PDMSetup.exe
[2009/04/26 10:45:04 | 00,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2009/04/26 10:45:04 | 00,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe
[2009/04/26 10:45:04 | 00,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SetDepNx.exe
[2009/04/26 10:45:02 | 00,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2009/04/26 10:30:45 | 00,000,000 | ---D | C] -- C:\Windows\System32\AGEIA
[2009/04/26 10:30:45 | 00,000,000 | ---D | C] -- C:\Program Files\AGEIA Technologies
[2009/04/26 10:30:34 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2009/04/26 10:28:20 | 00,000,000 | ---D | C] -- C:\NVIDIA
[2009/04/26 10:14:32 | 00,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab
[2009/04/26 10:14:26 | 00,000,000 | ---D | C] -- C:\Users\Edmond\AppData\Roaming\SystemRequirementsLab
[2009/04/25 23:36:47 | 00,000,000 | ---D | C] -- C:\Windows\Repair
[2009/04/25 23:36:15 | 00,000,000 | ---D | C] -- C:\Users\Edmond\AppData\Roaming\Systweak
[2009/04/25 23:35:58 | 00,000,000 | ---D | C] -- C:\Program Files\Advanced System Optimizer
[2009/04/25 23:34:06 | 00,000,000 | ---D | C] -- C:\Program Files\Systweak
[2009/04/25 10:28:44 | 00,000,000 | ---D | C] -- C:\Users\Edmond\AppData\Roaming\WinRAR
[2009/04/25 09:52:55 | 00,000,000 | ---D | C] -- C:\Program Files\Registry Easy
[2009/04/24 21:09:56 | 00,000,000 | ---D | C] -- C:\Users\Edmond\AppData\Roaming\The Creative Assembly
[2009/04/24 18:17:57 | 00,000,000 | ---D | C] -- C:\Users\Edmond\AppData\Roaming\Creative
[2009/04/24 17:48:22 | 00,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2009/04/24 17:48:22 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iashost.exe
[2009/04/24 17:44:29 | 00,000,000 | ---D | C] -- C:\Users\Edmond\Documents\Thunder
[2009/04/24 17:31:52 | 00,000,000 | ---D | C] -- C:\Users\Edmond\Documents\My Chat Logs
[2009/04/24 17:30:47 | 00,118,624 | ---- | C] () -- C:\Users\Edmond\AppData\Local\GDIPFONTCACHEV1.DAT
[2009/04/24 13:25:49 | 00,000,424 | ---- | C] () -- C:\Windows\tasks\Norton Internet Security - Edmond - Full System Scan.job
[2009/04/24 12:26:44 | 00,000,000 | ---D | C] -- C:\Users\Edmond\AppData\Roaming\Macromedia
[2009/04/24 12:20:32 | 00,000,000 | ---D | C] -- C:\Users\Edmond\AppData\Roaming\Media Player Classic
[2009/04/23 21:15:20 | 00,000,000 | ---D | C] -- C:\Program Files\NortonSecurityScan
[2009/04/23 10:15:40 | 00,000,000 | ---D | C] -- C:\Program Files\Zone Labs
[2009/04/23 01:09:26 | 00,000,000 | ---D | C] -- C:\Windows\Internet Logs
[2009/04/22 22:53:07 | 00,891,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\tcpip.copy
[2009/04/21 08:05:44 | 00,000,000 | ---D | C] -- C:\Windows\System32\3361
[2009/04/21 08:05:43 | 00,108,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSWINSCK.OCX
[2009/04/21 08:05:16 | 00,020,480 | ---- | C] ( ) -- C:\Windows\System32\xz.exe
[2009/04/18 22:23:36 | 00,084,111 | ---- | C] () -- C:\Windows\System32\MRT.INI
[2009/04/18 16:47:17 | 00,000,000 | ---D | C] -- C:\Program Files\Codemasters
[2009/04/18 14:36:29 | 01,255,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll
[2009/04/18 14:36:29 | 00,888,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kernel32.dll
[2009/04/18 14:36:29 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secur32.dll
[2009/04/18 14:36:29 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amxread.dll
[2009/04/18 14:36:29 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apilogen.dll
[2009/04/18 12:43:29 | 00,000,000 | ---D | C] -- C:\Program Files\OpenAL
[2009/04/18 12:32:44 | 03,599,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2009/04/18 12:32:44 | 00,551,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rpcss.dll
[2009/04/18 12:32:43 | 03,547,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2009/04/18 12:32:36 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2009/04/18 12:32:35 | 00,183,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdohlp.dll
[2009/04/18 12:32:34 | 00,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrecst.dll
[2009/04/18 12:32:34 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasads.dll
[2009/04/18 12:32:34 | 00,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasdatastore.dll
[2009/04/18 12:19:59 | 00,562,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll
[2009/04/18 12:19:59 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xolehlp.dll
[2009/04/18 11:58:44 | 00,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winhttp.dll
[2009/04/17 11:49:13 | 00,000,001 | ---- | C] () -- C:\Windows\System32\uniq.tll
[2009/04/16 21:15:18 | 00,000,000 | ---D | C] -- C:\Program Files\Empire Total War
[2009/04/16 15:47:15 | 00,000,000 | ---D | C] -- C:\ndesmume
[2009/04/11 20:37:03 | 00,000,000 | -HSD | C] -- C:\found.000
[2009/04/11 00:58:22 | 00,027,070 | ---- | C] () -- C:\Windows\System32\t1p0_474824202408.b1k
[2009/04/06 11:51:14 | 00,000,000 | ---D | C] -- C:\Windows\dhcp
[2009/04/05 22:03:52 | 00,000,000 | ---D | C] -- C:\Program Files\Total Video Converter
[2009/04/04 22:14:26 | 00,000,000 | ---D | C] -- C:\Windows\System32\vmm32
[2008/12/31 17:04:42 | 00,691,560 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2008/10/28 17:40:48 | 00,173,552 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2008/10/07 09:13:30 | 00,197,912 | ---- | C] () -- C:\Windows\System32\physxcudart_20.dll
[2008/10/07 09:13:22 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelTraditionalChinese.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSwedish.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSpanish.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSimplifiedChinese.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelPortugese.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelKorean.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelJapanese.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelGerman.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelFrench.dll
[2008/09/16 08:12:02 | 00,000,416 | ---- | C] () -- C:\Windows\System32\dtu100.dll.manifest
[2008/09/16 08:12:02 | 00,000,416 | ---- | C] () -- C:\Windows\System32\dpl100.dll.manifest
[2008/09/13 04:10:16 | 00,052,736 | ---- | C] () -- C:\Windows\System32\brcplsdw.dll
[2008/07/27 21:02:53 | 00,000,000 | ---- | C] () -- C:\Windows\Irremote.ini
[2008/04/28 17:17:48 | 00,717,296 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2008/04/27 17:56:59 | 00,271,360 | ---- | C] () -- C:\Windows\System32\drivers\atksgt.sys
[2008/04/27 17:56:58 | 00,018,048 | ---- | C] () -- C:\Windows\System32\drivers\lirsgt.sys
[2008/04/27 12:42:14 | 00,022,328 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2008/04/27 12:41:54 | 00,000,319 | ---- | C] () -- C:\Windows\game.ini
[2008/04/25 18:37:20 | 00,043,520 | ---- | C] () -- C:\Windows\System32\CmdLineExt03.dll
[2008/04/17 18:43:26 | 00,161,280 | ---- | C] () -- C:\Windows\System32\MetaLib.dll
[2008/04/05 21:49:19 | 00,217,088 | ---- | C] () -- C:\Windows\System32\libmySQL.dll
[2008/04/05 21:47:40 | 00,000,637 | ---- | C] () -- C:\Windows\SIERRA.INI
[2008/04/05 17:27:47 | 00,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2008/04/05 16:14:28 | 00,000,426 | ---- | C] () -- C:\Windows\BRWMARK.INI
[2008/04/05 16:13:19 | 00,077,824 | ---- | C] () -- C:\Windows\System32\BROSNMP.DLL
[2008/04/05 16:13:19 | 00,026,624 | ---- | C] () -- C:\Windows\System32\BRGSRC32.DLL
[2008/04/05 16:13:19 | 00,004,608 | ---- | C] () -- C:\Windows\System32\BRGSRC16.DLL
[2008/04/05 16:13:19 | 00,000,190 | ---- | C] () -- C:\Windows\BRVIDEO.INI
[2008/04/05 16:13:19 | 00,000,065 | ---- | C] () -- C:\Windows\Brownie.ini
[2008/04/05 16:13:19 | 00,000,036 | ---- | C] () -- C:\Windows\TMTDIAG.INI
[2008/04/05 16:13:19 | 00,000,000 | ---- | C] () -- C:\Windows\brmx2001.ini
[2008/04/05 16:13:18 | 00,008,995 | ---- | C] () -- C:\Windows\FX-203A.INI
[2008/03/28 15:44:08 | 00,101,376 | ---- | C] () -- C:\Windows\System32\APOMngr.dll
[2008/03/28 15:44:08 | 00,066,560 | ---- | C] () -- C:\Windows\System32\CmdRtr.dll
[2008/03/28 15:44:08 | 00,000,628 | ---- | C] () -- C:\Windows\System32\PCI_VEN_1102&DEV_FF05&SUBSYS_00001102.ini
[2008/03/28 15:42:48 | 00,131,062 | ---- | C] () -- C:\Windows\System32\DellPM.ini
[2007/03/29 23:00:40 | 00,203,264 | R--- | C] () -- C:\Windows\System32\CddbCdda.dll
[2006/11/02 20:35:32 | 00,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 18:23:31 | 00,000,331 | ---- | C] () -- C:\Windows\win.ini
[2006/11/02 18:23:31 | 00,000,219 | ---- | C] () -- C:\Windows\system.ini
[2006/11/02 15:40:29 | 00,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini

========== Files - Modified Within 30 Days ==========

[6 C:\Windows\System32\*.tmp files]
[1 C:\Windows\*.tmp files]
[2009/05/04 12:40:40 | 00,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2009/05/04 12:33:04 | 00,065,536 | ---- | M] () -- C:\Windows\System32\Ikeext.etl
[2009/05/04 12:32:54 | 00,004,080 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009/05/04 12:32:54 | 00,004,080 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009/05/04 12:32:54 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009/05/04 12:32:50 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009/05/04 12:28:57 | 03,062,761 | -H-- | M] () -- C:\Users\Edmond\AppData\Local\IconCache.db
[2009/05/04 12:07:25 | 00,001,702 | ---- | M] () -- C:\Windows\Sandboxie.ini
[2009/05/04 11:21:24 | 00,274,224 | ---- | M] (BitTorrent, Inc.) -- C:\Users\Edmond\Desktop\utorrent.exe
[2009/05/04 10:49:23 | 00,000,798 | ---- | M] () -- C:\Users\Edmond\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SpywareGuard.lnk
[2009/05/03 14:10:06 | 00,000,420 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{414BDA09-DE7B-473E-9E66-B9C74FBE08B3}.job
[2009/05/01 05:37:31 | 00,000,424 | ---- | M] () -- C:\Windows\tasks\Norton Internet Security - Edmond - Full System Scan.job
[2009/04/30 09:55:28 | 00,118,624 | ---- | M] () -- C:\Users\Edmond\AppData\Local\GDIPFONTCACHEV1.DAT
[2009/04/30 03:08:23 | 00,426,048 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/04/29 18:37:59 | 00,000,331 | ---- | M] () -- C:\Windows\win.ini
[2009/04/29 18:17:24 | 00,707,452 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009/04/29 18:17:24 | 00,598,212 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009/04/29 18:17:24 | 00,105,586 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009/04/28 23:37:41 | 00,057,344 | ---- | M] () -- C:\Users\Edmond\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/04/26 20:21:55 | 00,000,607 | ---- | M] () -- C:\Windows\Uninstall Manager.INI
[2009/04/26 12:11:39 | 00,002,527 | ---- | M] () -- C:\Users\Public\Desktop\Dell Support Center.lnk
[2009/04/24 15:34:13 | 00,729,088 | ---- | M] (Indigo Rose Corporation) -- C:\Windows\iun6002.exe
[2009/04/24 15:33:18 | 00,002,560 | ---- | M] () -- C:\Windows\_MSRSTRT.EXE
[2009/04/24 15:22:11 | 00,000,000 | ---- | M] () -- C:\Windows\hh.exe
[2009/04/24 15:09:50 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\winhlp32.exe
[2009/04/24 15:09:29 | 00,031,232 | ---- | M] (Twain Working Group) -- C:\Windows\twunk_32.exe
[2009/04/24 15:09:24 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\fveupdate.exe
[2009/04/24 15:08:13 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xcopy.exe
[2009/04/24 15:08:13 | 00,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ocsetup.exe
[2009/04/24 15:08:12 | 00,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbcad32.exe
[2009/04/24 15:08:12 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbcconf.exe
[2009/04/24 15:08:12 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dllhst3g.exe
[2009/04/24 15:08:07 | 00,215,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\certreq.exe
[2009/04/24 15:08:06 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfpmp.exe
[2009/04/24 15:08:06 | 00,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CertEnrollCtrl.exe
[2009/04/24 15:08:05 | 00,040,960 | ---- | M] (Primax Electronics Ltd.) -- C:\Windows\System32\LaunHelp.exe
[2009/04/24 15:08:05 | 00,020,480 | ---- | M] ( ) -- C:\Windows\System32\xz.exe
[2009/04/24 15:08:04 | 00,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MuiUnattend.exe
[2009/04/24 15:08:03 | 00,179,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lpksetup.exe
[2009/04/24 15:08:03 | 00,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lpremove.exe
[2009/04/24 15:08:03 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\label.exe
[2009/04/24 15:08:02 | 00,038,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AdapterTroubleshooter.exe
[2009/04/24 15:08:02 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\LogonUI.exe
[2009/04/24 15:08:01 | 00,139,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wusa.exe
[2009/04/24 15:08:01 | 00,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ACW.exe
[2009/04/24 15:08:01 | 00,056,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\logman.exe
[2009/04/24 15:08:00 | 00,155,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscript.exe
[2009/04/24 15:08:00 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2009/04/24 15:07:59 | 00,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSManHTTPConfig.exe
[2009/04/24 15:07:59 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WPDShextAutoplay.exe
[2009/04/24 15:07:58 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpnpinst.exe
[2009/04/24 15:07:58 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\write.exe
[2009/04/24 15:07:57 | 00,176,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpcumi.exe
[2009/04/24 15:07:57 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpcer.exe
[2009/04/24 15:07:56 | 00,034,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlrmdr.exe
[2009/04/24 15:07:55 | 00,244,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wisptis.exe
[2009/04/24 15:07:54 | 00,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanext.exe
[2009/04/24 15:07:54 | 00,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winrshost.exe
[2009/04/24 15:07:54 | 00,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winver.exe
[2009/04/24 15:07:53 | 00,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winrs.exe
[2009/04/24 15:07:52 | 00,218,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsAnytimeUpgrade.exe
[2009/04/24 15:07:52 | 00,036,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\where.exe
[2009/04/24 15:07:51 | 00,088,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wiaacmgr.exe
[2009/04/24 15:07:50 | 00,056,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wermgr.exe
[2009/04/24 15:07:50 | 00,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\whoami.exe
[2009/04/24 15:07:47 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vdsldr.exe
[2009/04/24 15:07:46 | 00,217,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WerFault.exe
[2009/04/24 15:07:46 | 00,163,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtutil.exe
[2009/04/24 15:07:40 | 00,163,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wecutil.exe
[2009/04/24 15:07:39 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\systray.exe
[2009/04/24 15:07:30 | 00,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\waitfor.exe
[2009/04/24 15:07:29 | 00,093,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vssadmin.exe
[2009/04/24 15:07:29 | 00,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\w32tm.exe
[2009/04/24 15:07:28 | 00,599,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vsp1cln.exe
[2009/04/24 15:07:26 | 00,112,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\verifier.exe
[2009/04/24 15:07:23 | 00,028,672 | ---- | M] (Primax Electronics Ltd.) -- C:\Windows\System32\UnInst.exe
[2009/04/24 15:07:23 | 00,028,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\unattendedjoin.exe
[2009/04/24 15:07:23 | 00,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\upnpcont.exe
[2009/04/24 15:07:22 | 00,045,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ucsvc.exe
[2009/04/24 15:07:22 | 00,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\unlodctr.exe
[2009/04/24 15:07:21 | 00,063,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tscupgrd.exe
[2009/04/24 15:07:21 | 00,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TSTheme.exe
[2009/04/24 15:07:21 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TRACERT.EXE
[2009/04/24 15:07:19 | 00,337,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tracerpt.exe
[2009/04/24 15:07:18 | 00,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TpmInit.exe
[2009/04/24 15:07:18 | 00,028,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\timeout.exe
[2009/04/24 15:07:17 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tcmsetup.exe
[2009/04/24 15:07:17 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TCPSVCS.EXE
[2009/04/24 15:07:16 | 00,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskmgr.exe
[2009/04/24 15:07:16 | 00,080,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tasklist.exe
[2009/04/24 15:07:16 | 00,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskkill.exe
[2009/04/24 15:07:15 | 00,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tabcal.exe
[2009/04/24 15:07:15 | 00,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\syskey.exe
[2009/04/24 15:07:15 | 00,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TapiUnattend.exe
[2009/04/24 15:07:14 | 00,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\takeown.exe
[2009/04/24 15:07:13 | 00,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sxstrace.exe
[2009/04/24 15:07:13 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\subst.exe
[2009/04/24 15:07:12 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SystemPropertiesComputerName.exe
[2009/04/24 15:07:12 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SystemPropertiesAdvanced.exe
[2009/04/24 15:07:11 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SystemPropertiesRemote.exe
[2009/04/24 15:07:11 | 00,076,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\systeminfo.exe
[2009/04/24 15:07:10 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SystemPropertiesProtection.exe
[2009/04/24 15:07:10 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SystemPropertiesPerformance.exe
[2009/04/24 15:07:09 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SystemPropertiesHardware.exe
[2009/04/24 15:07:09 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SystemPropertiesDataExecutionPrevention.exe
[2009/04/24 15:07:06 | 00,127,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SoundRecorder.exe
[2009/04/24 15:07:05 | 00,197,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SndVol.exe
[2009/04/24 15:07:05 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sort.exe
[2009/04/24 15:07:03 | 00,354,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLUI.exe
[2009/04/24 15:07:03 | 00,186,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLLUA.exe
[2009/04/24 15:07:02 | 00,067,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sigverif.exe
[2009/04/24 15:07:01 | 00,396,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shrpubw.exe
[2009/04/24 15:07:01 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\setupSNK.exe
[2009/04/24 15:07:00 | 00,046,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\setx.exe
[2009/04/24 15:07:00 | 00,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SecEdit.exe
[2009/04/24 15:06:59 | 00,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\setupugc.exe
[2009/04/24 15:06:58 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdbinst.exe
[2009/04/24 15:06:57 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\scrnsave.scr
[2009/04/24 15:06:55 | 00,082,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdchange.exe
[2009/04/24 15:06:54 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secinit.exe
[2009/04/24 15:06:53 | 00,038,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\runonce.exe
[2009/04/24 15:06:53 | 00,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sc.exe
[2009/04/24 15:06:53 | 00,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pcalua.exe
[2009/04/24 15:06:52 | 00,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RunLegacyCPLElevated.exe
[2009/04/24 15:06:52 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ROUTE.EXE
[2009/04/24 15:06:51 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sbunattend.exe
[2009/04/24 15:06:50 | 00,087,552 | ---- | M] (Microsoft) -- C:\Windows\System32\Robocopy.exe
[2009/04/24 15:06:49 | 00,318,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rstrui.exe
[2009/04/24 15:06:48 | 00,053,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rrinstaller.exe
[2009/04/24 15:06:48 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RmClient.exe
[2009/04/24 15:06:47 | 00,346,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe
[2009/04/24 15:06:47 | 00,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RpcPing.exe
[2009/04/24 15:06:44 | 00,347,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe
[2009/04/24 15:06:43 | 00,140,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RelPost.exe
[2009/04/24 15:06:42 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\relog.exe
[2009/04/24 15:06:41 | 00,523,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe
[2009/04/24 15:06:39 | 00,510,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe
[2009/04/24 15:06:38 | 00,042,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rekeywiz.exe
[2009/04/24 15:06:37 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\replace.exe
[2009/04/24 15:06:36 | 00,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\reg.exe
[2009/04/24 15:06:36 | 00,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\regini.exe
[2009/04/24 15:06:35 | 00,193,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\recdisc.exe
[2009/04/24 15:06:35 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\recover.exe
[2009/04/24 15:06:34 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rdrleakdiag.exe
[2009/04/24 15:06:34 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\regedt32.exe
[2009/04/24 15:06:33 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasphone.exe
[2009/04/24 15:06:32 | 00,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\raserver.exe
[2009/04/24 15:06:32 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasautou.exe
[2009/04/24 15:06:30 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasdial.exe
[2009/04/24 15:06:29 | 00,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\prevhost.exe
[2009/04/24 15:06:29 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\print.exe
[2009/04/24 15:06:28 | 00,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\powercfg.exe
[2009/04/24 15:06:27 | 00,160,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PresentationSettings.exe
[2009/04/24 15:06:24 | 00,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PkgMgr.exe
[2009/04/24 15:06:23 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PnPutil.exe
[2009/04/24 15:06:21 | 00,058,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PnPUnattend.exe
[2009/04/24 15:06:21 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PING.EXE
[2009/04/24 15:06:20 | 00,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\plasrv.exe
[2009/04/24 15:06:15 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pcaui.exe
[2009/04/24 15:06:15 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PATHPING.EXE
[2009/04/24 15:06:14 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pcaelv.exe
[2009/04/24 15:06:13 | 00,192,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\p2phost.exe
[2009/04/24 15:06:11 | 00,182,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\osk.exe
[2009/04/24 15:06:10 | 00,097,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\OptionalFeatures.exe
[2009/04/24 15:06:09 | 00,062,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\openfiles.exe
[2009/04/24 15:06:03 | 00,520,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntvdm.exe
[2009/04/24 15:06:01 | 00,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntprint.exe
[2009/04/24 15:06:00 | 00,082,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nslookup.exe
[2009/04/24 15:05:59 | 00,151,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\notepad.exe
[2009/04/24 15:05:59 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\runas.exe
[2009/04/24 15:05:58 | 00,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NETSTAT.EXE
[2009/04/24 15:05:57 | 00,031,232 | ---- | M] (NirSoft) -- C:\Windows\System32\nircmd.exe
[2009/04/24 15:05:56 | 00,098,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netsh.exe
[2009/04/24 15:05:55 | 00,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netiougc.exe
[2009/04/24 15:05:51 | 00,089,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NetProj.exe
[2009/04/24 15:05:50 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netcfg.exe
[2009/04/24 15:05:49 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Netplwiz.exe
[2009/04/24 15:05:49 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netbtugc.exe
[2009/04/24 15:05:48 | 00,158,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\net1.exe
[2009/04/24 15:05:47 | 00,048,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\net.exe
[2009/04/24 15:05:46 | 00,677,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mstsc.exe
[2009/04/24 15:05:43 | 00,408,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msinfo32.exe
[2009/04/24 15:05:42 | 00,162,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdt.exe
[2009/04/24 15:05:41 | 00,227,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msconfig.exe
[2009/04/24 15:05:40 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mountvol.exe
[2009/04/24 15:05:39 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MRINFO.EXE
[2009/04/24 15:05:34 | 00,095,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mobsync.exe
[2009/04/24 15:05:29 | 00,128,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MdSched.exe
[2009/04/24 15:05:28 | 00,939,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mblctr.exe
[2009/04/24 15:05:26 | 00,088,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MdRes.exe
[2009/04/24 15:05:24 | 00,275,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mcbuilder.exe
[2009/04/24 15:05:23 | 00,098,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\makecab.exe
[2009/04/24 15:05:22 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ktmutil.exe
[2009/04/24 15:04:22 | 00,144,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iscsicli.exe
[2009/04/24 15:04:22 | 00,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ipconfig.exe
[2009/04/24 15:04:21 | 00,165,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\irftp.exe
[2009/04/24 15:04:20 | 00,120,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iscsicpl.exe
[2009/04/24 15:04:20 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\InfDefaultInstall.exe
[2009/04/24 15:04:09 | 00,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\icacls.exe
[2009/04/24 15:04:09 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\icsunattend.exe
[2009/04/24 15:04:08 | 00,080,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hdwwiz.exe
[2009/04/24 15:04:08 | 00,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\HOSTNAME.EXE
[2009/04/24 15:04:08 | 00,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\help.exe
[2009/04/24 15:04:07 | 00,128,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gpresult.exe
[2009/04/24 15:04:07 | 00,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\getmac.exe
[2009/04/24 15:04:07 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\grpconv.exe
[2009/04/24 15:04:06 | 00,079,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\eventvwr.exe
[2009/04/24 15:04:06 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2009/04/24 15:04:06 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gpupdate.exe
[2009/04/24 15:04:05 | 00,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ftp.exe
[2009/04/24 15:04:04 | 00,055,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fsutil.exe
[2009/04/24 15:04:02 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fltMC.exe
[2009/04/24 15:04:02 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\finger.exe
[2009/04/24 15:04:01 | 00,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\findstr.exe
[2009/04/24 15:04:01 | 00,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\forfiles.exe
[2009/04/24 15:04:00 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fixmapi.exe
[2009/04/24 15:03:59 | 00,263,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FirewallSettings.exe
[2009/04/24 15:03:59 | 00,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fontview.exe
[2009/04/24 15:03:59 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\find.exe
[2009/04/24 15:03:57 | 02,585,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FirewallControlPanel.exe
[2009/04/24 15:03:52 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\efsui.exe
[2009/04/24 15:03:51 | 00,053,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\extrac32.exe
[2009/04/24 15:03:51 | 00,052,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\expand.exe
[2009/04/24 15:03:50 | 00,252,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxdiag.exe
[2009/04/24 15:03:50 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fc.exe
[2009/04/24 15:03:49 | 00,104,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWWIN.EXE
[2009/04/24 15:03:48 | 00,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drvinst.exe
[2009/04/24 15:03:48 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dvdplay.exe
[2009/04/24 15:00:55 | 00,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\driverquery.exe
[2009/04/24 15:00:54 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dpnsvr.exe
[2009/04/24 15:00:54 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dplaysvr.exe
[2009/04/24 15:00:51 | 00,160,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DpiScaling.exe
[2009/04/24 15:00:50 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\doskey.exe
[2009/04/24 15:00:49 | 00,230,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\diskraid.exe
[2009/04/24 15:00:48 | 00,121,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dispdiag.exe
[2009/04/24 15:00:47 | 00,120,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\diskpart.exe
[2009/04/24 15:00:46 | 00,671,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dfrgui.exe
[2009/04/24 15:00:44 | 00,094,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\diantz.exe
[2009/04/24 15:00:42 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dialer.exe
[2009/04/24 15:00:41 | 00,068,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DFDWiz.exe
[2009/04/24 15:00:40 | 00,163,840 | ---- | M] (Microsoft Corp.) -- C:\Windows\System32\DfrgNtfs.exe
[2009/04/24 15:00:39 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DeviceProperties.exe
[2009/04/24 15:00:33 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DeviceEject.exe
[2009/04/24 15:00:32 | 00,058,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dfrgifc.exe
[2009/04/24 15:00:31 | 00,096,768 | ---- | M] (Microsoft Corp.) -- C:\Windows\System32\dfrgfat.exe
[2009/04/24 15:00:29 | 00,226,816 | ---- | M] (Microsoft Corp.) -- C:\Windows\System32\Defrag.exe
[2009/04/24 15:00:27 | 00,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dcomcnfg.exe
[2009/04/24 15:00:25 | 00,046,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\csrstub.exe
[2009/04/24 15:00:24 | 00,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ctfmon.exe
[2009/04/24 15:00:23 | 00,135,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cscript.exe
[2009/04/24 15:00:19 | 00,211,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\control.exe
[2009/04/24 15:00:19 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2009/04/24 15:00:19 | 00,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\convert.exe
[2009/04/24 14:58:06 | 00,018,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\compact.exe
[2009/04/24 14:58:05 | 00,036,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ComputerDefaults.exe
[2009/04/24 14:58:04 | 00,145,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CompMgmtLauncher.exe
[2009/04/24 14:58:03 | 00,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmmon32.exe
[2009/04/24 14:58:02 | 00,084,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\colorcpl.exe
[2009/04/24 14:58:01 | 00,318,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmd.exe
[2009/04/24 14:58:00 | 00,084,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmstp.exe
[2009/04/24 14:57:59 | 00,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmdl32.exe
[2009/04/24 14:57:59 | 00,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\clip.exe
[2009/04/24 14:57:58 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmdkey.exe
[2009/04/24 14:57:57 | 00,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\choice.exe
[2009/04/24 14:57:56 | 00,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cliconfg.exe
[2009/04/24 14:57:55 | 00,058,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cipher.exe
[2009/04/24 14:57:55 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\chkntfs.exe
[2009/04/24 14:57:54 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\chkdsk.exe
[2009/04/24 14:57:53 | 00,178,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cleanmgr.exe
[2009/04/24 14:57:52 | 00,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cbsra.exe
[2009/04/24 14:55:59 | 00,073,728 | ---- | M] (Brother Industries Ltd) -- C:\Windows\System32\BRRBTOOL.EXE
[2009/04/24 14:55:58 | 00,176,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\calc.exe
[2009/04/24 14:55:58 | 00,034,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bthudtask.exe
[2009/04/24 14:55:56 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cacls.exe
[2009/04/24 14:55:56 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bridgeunattend.exe
[2009/04/24 14:55:55 | 00,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bootcfg.exe
[2009/04/24 14:55:54 | 00,192,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bitsadmin.exe
[2009/04/24 14:55:53 | 00,334,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bcdedit.exe
[2009/04/24 14:55:52 | 00,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\auditpol.exe
[2009/04/24 14:55:52 | 00,028,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AtBroker.exe
[2009/04/24 14:55:51 | 00,143,360 | ---- | M] (Primax Electronics Ltd.) -- C:\Windows\System32\ApSwitch.exe
[2009/04/24 14:55:51 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\at.exe
[2009/04/24 14:55:50 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\comp.exe
[2009/04/24 14:55:50 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ARP.EXE
[2009/04/24 14:55:50 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\attrib.exe
[2009/04/24 14:55:49 | 00,154,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\charmap.exe
[2009/04/24 14:55:47 | 01,376,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Aurora.scr
[2009/04/24 14:55:44 | 00,267,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NAPSTAT.EXE
[2009/04/24 14:55:43 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nbtstat.exe
[2009/04/24 14:55:42 | 00,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\eventcreate.exe
[2009/04/24 14:55:42 | 00,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\proquota.exe
[2009/04/24 14:55:41 | 00,205,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\eudcedit.exe
[2009/04/24 14:55:40 | 00,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printui.exe
[2009/04/24 14:55:34 | 00,040,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lodctr.exe
[2009/04/24 14:55:34 | 00,040,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lnkstub.exe
[2009/04/24 14:55:33 | 00,093,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\esentutl.exe
[2009/04/24 14:55:12 | 00,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\ST5UNST.EXE
[2009/04/24 14:53:04 | 00,134,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\regedit.exe
[2009/04/24 14:53:03 | 00,151,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\notepad.exe
[2009/04/24 14:53:02 | 00,031,232 | ---- | M] (NirSoft) -- C:\Windows\nircmd.exe
[2009/04/24 14:51:40 | 00,058,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\bfsvc.exe
[2009/04/24 14:51:38 | 00,991,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Narrator.exe
[2009/04/24 14:10:09 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RacAgent.exe
[2009/04/24 14:00:03 | 00,192,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wsqmcons.exe
[2009/04/24 13:34:19 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\verclsid.exe
[2009/04/24 13:16:22 | 00,000,368 | -HS- | M] () -- C:\Users\Public\Desktop\desktop.ini
[2009/04/24 12:52:28 | 05,714,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\logon.scr
[2009/04/24 12:52:13 | 00,289,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\StikyNot.exe
[2009/04/24 12:52:12 | 00,275,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SnippingTool.exe
[2009/04/24 12:49:56 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\regsvr32.exe
[2009/04/24 12:49:55 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\userinit.exe
[2009/04/24 12:49:53 | 00,059,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\alg.exe
[2009/04/24 12:49:53 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\snmptrap.exe
[2009/04/24 12:49:52 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dllhost.exe
[2009/04/24 12:49:51 | 00,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msiexec.exe
[2009/04/24 12:49:51 | 00,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Locator.exe
[2009/04/24 12:49:50 | 00,382,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vds.exe
[2009/04/24 12:49:50 | 00,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UI0Detect.exe
[2009/04/24 12:49:49 | 01,054,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\VSSVC.exe
[2009/04/24 12:49:43 | 00,105,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdtc.exe
[2009/04/24 12:49:41 | 00,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conime.exe
[2009/04/22 22:53:53 | 00,882,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\tcpip.sys
[2009/04/21 08:05:44 | 00,108,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MSWINSCK.OCX
[2009/04/18 22:24:05 | 00,084,111 | ---- | M] () -- C:\Windows\System32\MRT.INI
[2009/04/18 17:21:32 | 00,444,952 | ---- | M] (Creative Labs) -- C:\Windows\System32\wrap_oal.dll
[2009/04/18 17:21:31 | 00,109,080 | ---- | M] (Portions © Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\System32\OpenAL32.dll
[2009/04/17 11:49:13 | 00,000,001 | ---- | M] () -- C:\Windows\System32\uniq.tll
[2009/04/11 00:58:22 | 00,027,070 | ---- | M] () -- C:\Windows\System32\t1p0_474824202408.b1k
[2009/04/06 22:57:24 | 24,921,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mrt.exe
[2009/04/06 15:32:54 | 00,038,496 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2009/04/06 15:32:46 | 00,015,504 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2009/04/04 21:14:54 | 00,000,209 | ---- | M] () -- C:\Windows\ODBCINST.INI
< End of report >

This is the list of Extras.Txt:
OTListIt Extras logfile created on: 4/5/2009 12:54:45 PM - Run 1
OTListIt2 by OldTimer - Version 2.0.14.0 Folder = C:\Users\Edmond\Desktop\Programs
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00004409 | Country: Malaysia | Language: ENM | Date Format: d/M/yyyy

2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 100.00% Memory free
4.00 Gb Paging File | 4.00 Gb Available in Paging File | 100.00% Paging File free
Paging file location(s): ?:\pagefile.sys;

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 450.71 Gb Total Space | 144.00 Gb Free Space | 31.95% Space Free | Partition Type: NTFS
Drive D: | 15.00 Gb Total Space | 5.11 Gb Free Space | 34.04% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: EDMOND-PC
Current User Name: Edmond
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Output = Minimal
File Age = 30 Days
Company Name Whitelist: On

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- C:\Windows\hh.exe ()
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiSpyware]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" =
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
C:\Windows\system32\3361\svchost.exe:*:Enabled:SVCHOST.EXE File not found

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01814653-7875-4F3B-8935-787C376A335A}" = Fuji Xerox DocuPrint 203A
"{01CA733E-106E-4129-806B-60575CF29387}" = Call of Duty - World at War
"{0224CACC-994D-45F8-B973-D65056EA9C2F}" = Adobe XMP DVA Panels CS3
"{02E89EFC-7B07-4D5A-AA03-9EC0902914EE}" = VC 9.0 Runtime
"{0327FA9D-975C-448C-A086-577D57BB25B8}" = Adobe Soundbooth CS3 Codecs
"{0394CDC8-FABD-4ED8-B104-03393876DFDF}" = Roxio Creator Tools
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{07159635-9DFE-4105-BFC0-2817DB540C68}" = Roxio Activation Module
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{08B3869E-D282-424C-9AFC-870E04A4BA14}" = Rockstar Games Social Club
"{0AAA9C97-74D4-47CE-B089-0B147EF3553C}" = Windows Live Messenger
"{0AF33416-8B8B-44F2-A593-98A5B61C7371}" = 式神
"{0D397393-9B50-4C52-84D5-77E344289F87}" = Roxio Creator Data
"{11F93B4B-48F0-4A4E-AE77-DFA96A99664B}" = Roxio EasyArchive
"{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{1B0FBB9A-995D-47cd-87CD-13E68B676E4F}" = Mass Effect
"{1E2F8AE3-3437-44E6-BB75-E95751D6B83F}" = Picture Package
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}" = QuickTime
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2315B23D-3E21-4920-837D-AE6460934ECB}" = FIFA 09
"{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}" = Adobe ExtendScript Toolkit 2
"{259C0ABB-A3B2-4D70-008F-BF7EE491B70B}" = Need for Speed™ Carbon
"{26A24AE4-039D-4CA4-87B4-2F83216012FF}" = Java™ 6 Update 13
"{2B653229-9854-4989-B780-D978F5F13EAB}" = FEAR
"{2B8BEBBF-73A0-497D-9900-8474D022AB3F}" = Nokia PC Suite
"{2FFE93F0-BB72-4E52-8761-354D1AAA9387}" = Sony Ericsson PC Suite
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Roxio Update Manager
"{3248F0A8-6813-11D6-A77B-00B0D0160000}" = Java™ SE Runtime Environment 6
"{3248F0A8-6813-11D6-A77B-00B0D0160050}" = Java™ 6 Update 5
"{32C32B46-41C3-438F-94F6-55FE150D50D8}" = ImageMixer EasyStepDVD
"{32E4F0D2-C135-475E-A841-1D59A0D22989}" = Sid Meier's Civilization 4 - Beyond the Sword
"{341201D4-4F61-4ADB-987E-9CCE4D83A58D}" = Windows Live Toolbar Extension (Windows Live Toolbar)
"{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}" = McAfee SiteAdvisor
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3BD633E0-4BF8-4499-9149-88F0767D449C}" = Call of Duty® 4 - Modern Warfare™ 1.4 Patch
"{3C52E7DA-C431-4239-B66B-1BF703D5B194}" = Windows Live Photo Gallery
"{3E2C691B-B7E6-4053-B5C3-94B8BC407E7A}" = Adobe Premiere Elements 4.0
"{3E4B349F-10B5-4586-9D99-489A90A8B228}" = Sid Meier's Civilization 4 - Warlords
"{42929F0F-CE14-47AF-9FC7-FF297A603021}" = Dell Resource CD
"{4377F918-E6C9-4ECA-A7F5-754B310B7ED8}" = Sid Meier's Civilization 4
"{448E2D77-E504-4221-B2C2-93646B344729}" = Mouse Suite for Desktop Computers
"{455EE66A-17E3-4E66-9D3C-D630723C3B00}" = 戦女神ZERO
"{4AA3D64E-9EC3-4B0F-AB91-5885AC55641F}" = Microsoft Games for Windows - LIVE
"{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}" = Junk Mail filter update
"{53C6D09E-EAB6-49E5-BA4C-BA7FF13830FB}" = Sound Blaster Audigy ADVANCED MB
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{579BA58C-F33D-4970-9953-B94B43768AC3}" = Grand Theft Auto IV
"{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3
"{5A0B7BA5-4682-4273-81C2-69B17E649103}" = GRID
"{5BCE1D7F-C274-49B3-AD34-B1BF22B7FA25}" = みんな大好き子づくりばんちょう
"{5CD29180-A95E-11D3-A4EB-00C04F7BDB2C}" = User's Guides
"{619CDD8A-14B6-43A1-AB6C-0F4EE48CE048}" = Roxio Creator Copy
"{634F6989-4BB5-4EF2-AF6F-C15700F81494}}_is1" = Advanced System Optimizer
"{63C1109E-D977-49ED-BCE3-D00D0BF187D6}" = Windows Live Mail
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6A92E5C5-0578-443D-91F3-92ECE5F2CAE2}" = Windows Live Writer
"{6D316D67-DA52-4659-9C98-F479963534D6}" = Audiosurf
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{76CD2979-09C0-493A-84B3-8FD97EF4BCEA}" = Windows Live Family Safety
"{777CA40C-0206-4EF6-A0FC-618BF06BF8D0}" = Intel® PRO Network Connections 12.1.12.4
"{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}" = Windows Live Favorites for Windows Live Toolbar
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{8027B590-CD2B-3C7E-9F00-CDC0916CC915}" = Microsoft .NET Framework 3.5 Language Pack - jpn
"{83FFCFC7-88C6-41C6-8752-958A45325C82}" = Roxio Creator Audio
"{84D58782-A2F0-47D4-A557-3041363893CF}" = Adobe Setup
"{8503C901-85D7-4262-88D2-8D8B2A7B08B8}" = Call of Duty® 4 - Modern Warfare™ 1.5 Patch
"{89C89156-A70F-4C6D-9CAE-2EA71F1396FE}" = Garena
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty® 4 - Modern Warfare™ 1.6 Patch
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8D337F77-BE7F-41A2-A7CB-D5A63FD7049B}" = Sonic CinePlayer Decoder Pack
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{8FF800ED-97BB-4F68-AC79-A3CD20496157}" = SchoolDays
"{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{92A300C0-E97B-48CC-9702-AB1AAED167E1}" = Adobe Soundbooth CS3 Scores
"{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty® 4 - Modern Warfare™ 1.7 Patch
"{9422C8EA-B0C6-4197-B8FC-DC797658CA00}" = Windows Live Sign-in Assistant
"{943B1807-B16E-4D80-A938-0A76DE4945EA}" = 戦女神ZERO Ver1.01 Update
"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95120000-0120-0409-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{974C4B12-4D02-4879-85E0-61C95CC63E9E}" = Fallout 3
"{983CE4AE-052A-4AD6-92ED-177DFC85DAE5}" = Warcraft III 1.22 Patch
"{995F1E2E-F542-4310-8E1D-9926F5A279B3}" = Windows Live Toolbar
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9C7C8898-DC29-4E8B-9E77-55A77C3250F6}" = PC Connectivity Solution
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}" = Microsoft Search Enhancement Pack
"{9DF0196F-B6B8-4C3A-8790-DE42AA530101}" = SPORE
"{A1BF9950-8CDB-468E-83FA-EACFB00EA7D5}" = Windows Live Sync
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A360821C-6B51-4EE4-A7E5-5E14B15004CD}" = Sony DVD Handycam USB Driver 2
"{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}" = SigmaTel Audio
"{A5C4AD72-25FE-4899-B6DF-6D8DF63C93CF}" = Highlight Viewer (Windows Live Toolbar)
"{A6B23EFA-6590-482C-A11F-5ACE1B91F5B9}" = Adobe Soundbooth CS3
"{AAC90D5F-B8B1-4A06-B888-F3A241124D0D}" = ERROR:unable to read certificate file
"{AC76BA86-7AD7-1033-7B44-A91000000001}" = Adobe Reader 9.1
"{AC76BA86-7AD7-5464-3428-800000000003}" = Spelling Dictionaries Support For Adobe Reader 8
"{ACF1EA08-516F-400C-9CA5-C0FB4809FD45}" = LOVERS ～恋に落ちたら…～
"{AFA20D47-69C3-4030-8DF8-D37466E70F13}" = Apple Mobile Device Support
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B148AB4B-C8FA-474B-B981-F2943C5B5BCD}" = OGA Notifier 1.7.0105.35.0
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}" = Adobe Setup
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}" = Creative MediaSource 5
"{C127414C-A625-4E0A-8AC1-F970F9E566A3}" = Adobe Elements Studio Launcher
"{C3F19A5F-35A8-4FDB-A6ED-0F4CE398DA48}" = Nokia Connectivity Cable Driver
"{C427E746-4EC9-4E3C-AACB-C6BB1F714D7F}" = Uniblue DriverScanner 2009
"{C6CA8874-5F22-4AF0-9BE3-016BF299C536}" = Windows Live Essentials
"{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}" = Roxio Creator Premier
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CFBCE791-2D53-4FCE-B3FB-D6E01F4112E8}" = Sid Meier's Civilization 4
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D1E1F028-1953-43A3-BFD8-D2A00EC06E36}" = ILLUSION RapeLay
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{D5A31AB1-345D-47C7-A87B-036A669F6DF1}" = Adobe XMP Panels CS3
"{DD1865F0-AD73-40FB-B23E-1822E02396FF}" = NVIDIA PhysX
"{E3BFEE55-39E2-4BE0-B966-89FE583822C1}" = Dell Support Center (Support Software)
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty® 4 - Modern Warfare™
"{E4D02EF2-6F12-4BE9-9928-2F27DA01A915}" = ILLUSION 人工少女3
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{ECE0113B-23D0-4DD8-89E6-D2F026CABF03}" = ACDSee 7.0
"{F084395C-40FB-4DB3-981C-B51E74E1E83D}" = Smart Menus (Windows Live Toolbar)
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F54AC413-D2C6-4A24-B324-370C223C6250}" = Adobe Photoshop Elements 6.0
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"{F85C7118-F3DC-4ED9-AB27-3E7931EA3D88}" = Adobe Premiere Elements 4.0 Templates
"{FD052FB9-FE90-4438-B355-15EDC89D8FB1}" = Microsoft Games for Windows - LIVE Redistributable
"{FE0646A7-19D0-41B4-A2BB-2C35D644270D}" = Windows Live OneCare safety scanner
"{FFAB5ABB-8AAB-42E2-847F-1743E51E01E9}" = Disc2Phone
"3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F" = Windows Driver Package - Nokia pccsmcfd (10/12/2007 6.85.4.0)
"9CD348AE9C64C4B939B624E8E24F3903EFDFC82B" = Windows Driver Package - Nokia Modem (05/22/2008 7.00.0.1)
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop Elements 6" = Adobe Photoshop Elements 6.0
"Adobe_19c4ee81f9cc4b3dffb9a17d9b648b2" = Adobe Soundbooth CS3
"Adobe_3e054d2218e7aa282c2369d939e58ff" = Adobe ExtendScript Toolkit 2
"Advanced Vista Optimizer 2009_is1" = Advanced Vista Optimizer 2009
"Ask Toolbar_is1" = Foxit Toolbar
"avast!" = avast! Antivirus
"C5A76DC11BABDA0A881E7BE8DDEB641365A77FFD" = Windows Driver Package - Nokia Modem (05/22/2008 3.8)
"Conexant USB Network" = Conexant USB Network Adapter
"EasyEmailBackup_312B2478-3EA4-4e76-BED7-F460AB3BA64E_is1" = Advanced Email Backup
"EAX™ Unified (SHELL)" = EAX™ Unified (SHELL)
"EF" = エターナルファンタジー
"ENTERPRISE" = Microsoft Office Enterprise 2007
"ERUNT_is1" = ERUNT 1.1j
"filehippo.com" = filehippo.com Update Checker
"Foxit Reader" = Foxit Reader
"Half-Life" = Half-Life
"Half-Life: Opposing Force" = Half-Life: Opposing Force
"InstallShield_{3BD633E0-4BF8-4499-9149-88F0767D449C}" = Call of Duty® 4 - Modern Warfare™ 1.4 Patch
"InstallShield_{455EE66A-17E3-4E66-9D3C-D630723C3B00}" = 戦女神ZERO
"InstallShield_{5BCE1D7F-C274-49B3-AD34-B1BF22B7FA25}" = みんな大好き子づくりばんちょう
"InstallShield_{8503C901-85D7-4262-88D2-8D8B2A7B08B8}" = Call of Duty® 4 - Modern Warfare™ 1.5 Multiplayer Patch
"InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty® 4 - Modern Warfare™ 1.6 Patch
"InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty® 4 - Modern Warfare™ 1.7 Patch
"InstallShield_{943B1807-B16E-4D80-A938-0A76DE4945EA}" = 戦女神ZERO Ver1.01 Update
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty® 4 - Modern Warfare™
"KLiteCodecPack_is1" = K-Lite Codec Pack 4.7.5 (Full)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Messenger Plus! Live" = Messenger Plus! Live
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack - jpn" = Microsoft .NET Framework 3.5 Language Pack - 日本語
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.0.10)" = Mozilla Firefox (3.0.10)
"Nokia PC Suite" = Nokia PC Suite
"NVIDIA Drivers" = NVIDIA Drivers
"OpenAL" = OpenAL
"PhotoStudio_4281508C_4DA1_4d4e_81EB_725D55EC30DC_is1" = Systweak PhotoStudio 2.1
"PremElem40" = Adobe Premiere Elements 4.0
"PremElem40Templates" = Adobe Premiere Elements 4.0 Templates
"PROSetDX" = Intel® PRO Network Connections 12.1.12.4
"RealPlayer 6.0" = RealPlayer
"Sandboxie" = Sandboxie 3.36.04
"Sierra Utilities" = Sierra Utilities
"SpywareBlaster_is1" = SpywareBlaster 4.2
"SpywareGuard_is1" = SpywareGuard v2.2
"ST5UNST #1" = WinChart
"SystemRequirementsLab" = System Requirements Lab
"Total Video Converter 3.21_is1" = Total Video Converter 3.21 090220
"Uniblue DriverScanner 2009" = Uniblue DriverScanner 2009
"Update Service" = Update Service
"WinAce Archiver" = WinAce Archiver
"Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"股人タクシー２" = 股人タクシー２

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"uTorrent" = µTorrent

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 4/5/2009 12:01:06 AM | Computer Name = Edmond-PC | Source = Microsoft-Windows-CAPI2 | ID = 131585
Description =

Error - 4/5/2009 12:06:30 AM | Computer Name = Edmond-PC | Source = Microsoft-Windows-CAPI2 | ID = 131585
Description =

Error - 4/5/2009 12:18:21 AM | Computer Name = Edmond-PC | Source = Microsoft-Windows-CAPI2 | ID = 131585
Description =

Error - 4/5/2009 12:19:09 AM | Computer Name = Edmond-PC | Source = MsiInstaller | ID = 11706
Description =

Error - 4/5/2009 12:28:12 AM | Computer Name = Edmond-PC | Source = Microsoft-Windows-CAPI2 | ID = 131585
Description =

Error - 4/5/2009 12:33:28 AM | Computer Name = Edmond-PC | Source = Microsoft-Windows-CAPI2 | ID = 131585
Description =

Error - 4/5/2009 12:34:03 AM | Computer Name = Edmond-PC | Source = MsiInstaller | ID = 11706
Description =

Error - 4/5/2009 12:35:03 AM | Computer Name = Edmond-PC | Source = Windows Search Service | ID = 3024
Description =

Error - 4/5/2009 12:44:10 AM | Computer Name = Edmond-PC | Source = Microsoft-Windows-CAPI2 | ID = 131585
Description =

Error - 4/5/2009 12:44:18 AM | Computer Name = Edmond-PC | Source = MsiInstaller | ID = 11706
Description =

[ Media Center Events ]
Error - 23/5/2008 10:46:42 AM | Computer Name = Edmond-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package MCESpotlight.

Error - 26/5/2008 2:24:31 AM | Computer Name = Edmond-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package MCESpotlight.

Error - 27/5/2008 11:43:49 AM | Computer Name = Edmond-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package MCESpotlight.

Error - 28/5/2008 10:48:13 AM | Computer Name = Edmond-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package MCESpotlight.

Error - 1/6/2008 3:37:33 AM | Computer Name = Edmond-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package MCESpotlight.

Error - 3/6/2008 5:54:52 AM | Computer Name = Edmond-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package MCESpotlight.

Error - 4/6/2008 5:03:09 AM | Computer Name = Edmond-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package MCESpotlight.

Error - 28/8/2008 9:50:18 AM | Computer Name = Edmond-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.

Error - 17/2/2009 2:10:11 AM | Computer Name = Edmond-PC | Source = Media Center Guide | ID = 0
Description = Event Info: ERROR: SqmApiWrapper.TimerRecord failed; Win32 GetLastError
returned 10000105 Process: DefaultDomain Object Name: Media Center Guide

Error - 24/3/2009 12:02:00 AM | Computer Name = Edmond-PC | Source = Media Center Guide | ID = 0
Description = Event Info: ERROR: SqmApiWrapper.TimerRecord failed; Win32 GetLastError
returned 10000105 Process: DefaultDomain Object Name: Media Center Guide

[ System Events ]
Error - 3/5/2009 3:12:25 PM | Computer Name = Edmond-PC | Source = Service Control Manager | ID = 7026
Description =

Error - 3/5/2009 10:44:21 PM | Computer Name = Edmond-PC | Source = DCOM | ID = 10001
Description =

Error - 4/5/2009 12:02:26 AM | Computer Name = Edmond-PC | Source = DCOM | ID = 10005
Description =

Error - 4/5/2009 12:02:26 AM | Computer Name = Edmond-PC | Source = Service Control Manager | ID = 7009
Description =

Error - 4/5/2009 12:02:26 AM | Computer Name = Edmond-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 4/5/2009 12:15:37 AM | Computer Name = Edmond-PC | Source = DCOM | ID = 10010
Description =

Error - 4/5/2009 12:17:09 AM | Computer Name = Edmond-PC | Source = HTTP | ID = 15016
Description =

Error - 4/5/2009 12:18:11 AM | Computer Name = Edmond-PC | Source = Service Control Manager | ID = 7026
Description =

Error - 4/5/2009 12:32:54 AM | Computer Name = Edmond-PC | Source = HTTP | ID = 15016
Description =

Error - 4/5/2009 12:33:38 AM | Computer Name = Edmond-PC | Source = Service Control Manager | ID = 7026
Description =

< End of report >

Hopefull with these informations someone can help me fixed the problem.

Edited by Mr Frustrated, 03 May 2009 - 11:17 PM.

#1
Mr Frustrated

Posted 03 May 2009 - 11:15 PM

Advertisements

Similar Topics

0 user(s) are reading this topic

As Featured On:

Forums

Downloads

Members

Connect With Us