Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

HELP

Started by stequinn , Jul 15 2009 02:33 PM

  • Please log in to reply

#1
stequinn
Posted 15 July 2009 - 02:33 PM

stequinn

    New Member

  • Member
  • Pip
  • 1 posts
OTL logfile created on: 15/07/2009 21:18:47 - Run 1
OTL by OldTimer - Version 3.0.7.1 Folder = C:\Documents and Settings\Owner\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

2.00 Gb Total Physical Memory | 1.25 Gb Available Physical Memory | 62.71% Memory free
1.85 Gb Paging File | 1.22 Gb Available in Paging File | 66.11% Paging File free
Paging file location(s): [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 148.11 Gb Total Space | 36.60 Gb Free Space | 24.71% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: HOST
Current User Name: Owner
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - C:\WINDOWS\System32\nvsvc32.exe (NVIDIA Corporation)
PRC - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (Symantec Corporation)
PRC - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
PRC - C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe (Microsoft Corporation)
PRC - C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
PRC - C:\Program Files\CPUCooL\CooLSrv.exe ()
PRC - C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40ST7.EXE (SEIKO EPSON CORPORATION)
PRC - C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE (SEIKO EPSON CORPORATION)
PRC - C:\Program Files\IObit\IObit Security 360\IS360srv.exe (IObit)
PRC - C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
PRC - c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe (Microsoft Corporation)
PRC - C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe (NVIDIA)
PRC - C:\Program Files\CyberLink\Shared files\RichVideo.exe ()
PRC - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
PRC - C:\WINDOWS\System32\snmp.exe (Microsoft Corporation)
PRC - c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe (Microsoft Corporation)
PRC - c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (Microsoft Corporation)
PRC - C:\Program Files\NVIDIA Corporation\System Update\UpdateCenterService.exe (NVIDIA)
PRC - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation)
PRC - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (Microsoft Corporation)
PRC - C:\WINDOWS\RTHDCPL.EXE (Realtek Semiconductor Corp.)
PRC - C:\Program Files\Microsoft IntelliType Pro\itype.exe (Microsoft Corporation)
PRC - C:\Program Files\Microsoft IntelliPoint\ipoint.exe (Microsoft Corporation)
PRC - C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
PRC - C:\Program Files\IObit\IObit Security 360\IS360tray.exe (IObit)
PRC - C:\Program Files\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
PRC - C:\WINDOWS\System32\taskmgr.exe (Microsoft Corporation)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
PRC - C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
PRC - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
PRC - C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
PRC - C:\Documents and Settings\Owner\Desktop\OTL.exe (OldTimer Tools)

========== Win32 Services (SafeList) ==========

SRV - (Apple Mobile Device [Auto | Running]) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (aspnet_state [On_Demand | Stopped]) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (Microsoft Corporation)
SRV - (BcmSqlStartupSvc [Auto | Running]) -- C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe (Microsoft Corporation)
SRV - (Bonjour Service [Auto | Running]) -- C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
SRV - (ccEvtMgr [Auto | Running]) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (Symantec Corporation)
SRV - (ccSetMgr [Auto | Running]) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (Symantec Corporation)
SRV - (clr_optimization_v2.0.50727_32 [On_Demand | Stopped]) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (CLTNetCnService [Auto | Running]) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (Symantec Corporation)
SRV - (comHost [On_Demand | Stopped]) -- C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe (Symantec Corporation)
SRV - (CPUCooLServer [Auto | Running]) -- C:\Program Files\CPUCooL\CooLSrv.exe ()
SRV - (EPSON_EB_RPCV4_01 [Auto | Running]) -- C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40ST7.EXE (SEIKO EPSON CORPORATION)
SRV - (EPSON_PM_RPCV4_01 [Auto | Running]) -- C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE (SEIKO EPSON CORPORATION)
SRV - (FirebirdServerMAGIXInstance [On_Demand | Stopped]) -- C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe (MAGIX®)
SRV - (FontCache3.0.0.0 [On_Demand | Stopped]) -- c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation)
SRV - (gupdate1c9f68e8217cb9a [Auto | Stopped]) -- C:\Program Files\Google\Update\GoogleUpdate.exe (Google Inc.)
SRV - (gusvc [Auto | Stopped]) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (Google)
SRV - (helpsvc [Disabled | Stopped]) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll (Microsoft Corporation)
SRV - (IDriverT [On_Demand | Stopped]) -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe (Macrovision Corporation)
SRV - (idsvc [Unknown | Stopped]) -- c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe (Microsoft Corporation)
SRV - (iPod Service [On_Demand | Stopped]) -- C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.)
SRV - (IS360service [Auto | Running]) -- C:\Program Files\IObit\IObit Security 360\IS360srv.exe (IObit)
SRV - (JavaQuickStarterService [Auto | Running]) -- C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
SRV - (LiveUpdate [On_Demand | Stopped]) -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_2.EXE (Symantec Corporation)
SRV - (LiveUpdate Notice Ex [Auto | Running]) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (Symantec Corporation)
SRV - (LiveUpdate Notice Service [Auto | Stopped]) -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe (Symantec Corporation)
SRV - (LPDSVC [On_Demand | Stopped]) -- C:\WINDOWS\System32\tcpsvcs.exe (Microsoft Corporation)
SRV - (McShield [Unknown | Stopped]) -- File not found
SRV - (McSysmon [On_Demand | Stopped]) -- File not found
SRV - (MSSQL$SQLEXPRESS [Auto | Running]) -- c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe (Microsoft Corporation)
SRV - (MSSQLServerADHelper100 [Disabled | Stopped]) -- c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE (Microsoft Corporation)
SRV - (Nero BackItUp Scheduler 4.0 [Auto | Stopped]) -- File not found
SRV - (NetTcpPortSharing [Disabled | Stopped]) -- c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe (Microsoft Corporation)
SRV - (nTuneService [Auto | Running]) -- C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe (NVIDIA)
SRV - (nvsvc [Auto | Running]) -- C:\WINDOWS\System32\nvsvc32.exe (NVIDIA Corporation)
SRV - (odserv [On_Demand | Stopped]) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (ose [On_Demand | Stopped]) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (PinnacleUpdateSvc [Auto | Stopped]) -- C:\Program Files\KALiNKOsoft\Pinnacle Game Profiler\pinnacle_updater.exe (KALiNKOsoft)
SRV - (RichVideo [Auto | Running]) -- C:\Program Files\CyberLink\Shared files\RichVideo.exe ()
SRV - (rpcapd [On_Demand | Stopped]) -- C:\Program Files\WinPcap\rpcapd.exe (NetGroup - Politecnico di Torino)
SRV - (SeaPort [Auto | Running]) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
SRV - (SNMP [Auto | Running]) -- C:\WINDOWS\System32\snmp.exe (Microsoft Corporation)
SRV - (SQLAgent$SQLEXPRESS [Disabled | Stopped]) -- c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE (Microsoft Corporation)
SRV - (SQLBrowser [Auto | Running]) -- c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe (Microsoft Corporation)
SRV - (SQLWriter [Auto | Running]) -- c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (Microsoft Corporation)
SRV - (Symantec Core LC [On_Demand | Stopped]) -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe ()
SRV - (UpdateCenterService [Auto | Running]) -- C:\Program Files\NVIDIA Corporation\System Update\UpdateCenterService.exe (NVIDIA)
SRV - (wlidsvc [Auto | Running]) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation)
SRV - (WMPNetworkSvc [Auto | Stopped]) -- C:\Program Files\Windows Media Player\WMPNetwk.exe (Microsoft Corporation)
SRV - (wxpSvc [On_Demand | Stopped]) -- C:\Program Files\wLite\wService.exe (Moonware Studios)

========== Driver Services (SafeList) ==========

DRV - (admjoy [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\admjoy.sys (Aureal, Inc.)
DRV - (AmdK8 [System | Running]) -- C:\WINDOWS\System32\DRIVERS\AmdK8.sys (Advanced Micro Devices)
DRV - (AmdPPM [System | Stopped]) -- C:\WINDOWS\System32\DRIVERS\AmdPPM.sys (Advanced Micro Devices)
DRV - (atksgt [Auto | Running]) -- C:\WINDOWS\System32\DRIVERS\atksgt.sys ()
DRV - (cdrbsvsd [System | Running]) -- C:\WINDOWS\System32\drivers\cdrbsvsd.sys (B.H.A Corporation)
DRV - (eeCtrl [System | Running]) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys (Symantec Corporation)
DRV - (EraserUtilRebootDrv [On_Demand | Running]) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys (Symantec Corporation)
DRV - (gameenum [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\gameenum.sys (Microsoft Corporation)
DRV - (GEARAspiWDM [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\GEARAspiWDM.sys (GEAR Software Inc.)
DRV - (HDAudBus [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\HDAudBus.sys (Windows ® Server 2003 DDK provider)
DRV - (IntcAzAudAddService [On_Demand | Running]) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
DRV - (lirsgt [Auto | Running]) -- C:\WINDOWS\System32\DRIVERS\lirsgt.sys ()
DRV - (mirrorv3 [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\rminiv3.sys (Famatech International Corp.)
DRV - (NAVENG [On_Demand | Running]) -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20090715.016\NAVENG.SYS (Symantec Corporation)
DRV - (NAVEX15 [On_Demand | Running]) -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20090715.016\NAVEX15.SYS (Symantec Corporation)
DRV - (nm [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\NMnt.sys (Microsoft Corporation)
DRV - (NPF [On_Demand | Stopped]) -- C:\WINDOWS\System32\drivers\npf.sys (NetGroup - Politecnico di Torino)
DRV - (ntiomin [System | Running]) -- C:\WINDOWS\System32\drivers\ntiomin.sys ()
DRV - (ntiopnp [System | Running]) -- C:\WINDOWS\System32\drivers\ntiopnp.sys ()
DRV - (nv [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\nv4_mini.sys (NVIDIA Corporation)
DRV - (NVENETFD [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\NVENETFD.sys (NVIDIA Corporation)
DRV - (nvnetbus [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\nvnetbus.sys (NVIDIA Corporation)
DRV - (NVR0Dev [On_Demand | Running]) -- C:\WINDOWS\nvoclock.sys (NVIDIA Corp.)
DRV - (NVR0FLASHDev [Auto | Running]) -- C:\WINDOWS\nvflash.sys (NVidia Corp.)
DRV - (pcouffin [On_Demand | Running]) -- C:\WINDOWS\System32\Drivers\pcouffin.sys (VSO Software)
DRV - (Point32 [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\point32.sys (Microsoft Corporation)
DRV - (Ptilink [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys (Parallel Technologies, Inc.)
DRV - (PxHelp20 [Boot | Running]) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys (Sonic Solutions)
DRV - (RsFx0102 [Disabled | Stopped]) -- C:\WINDOWS\System32\DRIVERS\RsFx0102.sys (Microsoft Corporation)
DRV - (Secdrv [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
DRV - (snapman [Boot | Running]) -- C:\WINDOWS\system32\DRIVERS\snapman.sys (Acronis)
DRV - (sonypvs1 [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\sonypvs1.sys (Sony Corporation)
DRV - (SPBBCDrv [System | Running]) -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys (Symantec Corporation)
DRV - (SRTSP [On_Demand | Running]) -- C:\WINDOWS\System32\Drivers\SRTSP.SYS (Symantec Corporation)
DRV - (SRTSPL [On_Demand | Stopped]) -- C:\WINDOWS\System32\Drivers\SRTSPL.SYS (Symantec Corporation)
DRV - (SRTSPX [System | Running]) -- C:\WINDOWS\System32\Drivers\SRTSPX.SYS (Symantec Corporation)
DRV - (SYMDNS [On_Demand | Running]) -- C:\WINDOWS\System32\Drivers\SYMDNS.SYS (Symantec Corporation)
DRV - (SymEvent [On_Demand | Running]) -- C:\WINDOWS\System32\Drivers\SYMEVENT.SYS (Symantec Corporation)
DRV - (SYMFW [On_Demand | Running]) -- C:\WINDOWS\System32\Drivers\SYMFW.SYS (Symantec Corporation)
DRV - (SYMIDS [On_Demand | Running]) -- C:\WINDOWS\System32\Drivers\SYMIDS.SYS (Symantec Corporation)
DRV - (SYMIDSCO [On_Demand | Running]) -- C:\Program Files\Common Files\Symantec Shared\SymcData\idsdefs\20090710.001\SymIDSco.sys (Symantec Corporation)
DRV - (SYMNDIS [On_Demand | Running]) -- C:\WINDOWS\System32\Drivers\SYMNDIS.SYS (Symantec Corporation)
DRV - (SYMREDRV [On_Demand | Running]) -- C:\WINDOWS\System32\Drivers\SYMREDRV.SYS (Symantec Corporation)
DRV - (SYMTDI [System | Running]) -- C:\WINDOWS\System32\Drivers\SYMTDI.SYS (Symantec Corporation)
DRV - (USBAAPL [On_Demand | Stopped]) -- C:\WINDOWS\System32\Drivers\usbaapl.sys (Apple, Inc.)
DRV - (usbaudio [On_Demand | Stopped]) -- C:\WINDOWS\System32\drivers\usbaudio.sys (Microsoft Corporation)
DRV - (VBoxNetAdp [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\VBoxNetAdp.sys (Sun Microsystems, Inc.)
DRV - (xusb21 [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\xusb21.sys (Microsoft Corporation)

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn...st/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn...st/srchasst.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.sky.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultthis.engineName: "Power Karaoke Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.condui...={searchTerms}"
FF - prefs.js..browser.search.selectedEngine: "Power Karaoke Customized Web Search"
FF - prefs.js..browser.startup.homepage: "http://www.google.com"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.0.2
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.1
FF - prefs.js..extensions.enabledItems: {3303e956-2a3a-48e0-be39-2e0ef11a2f44}:2.0.1.10
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}:6.0.14
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5b99
FF - prefs.js..keyword.URL: "http://search.condui...rchSource=2&q="
FF - prefs.js..network.proxy.type: 4


FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009/06/24 20:30:37 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009/06/20 02:55:45 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Program Files\Real\RealPlayer\browserrecord\firefox\ext [2009/07/01 18:58:43 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/07/01 18:58:28 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/07/12 07:32:02 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5b99\extensions\\Components: C:\Program Files\Mozilla Firefox 3.5 Preview\components [2009/07/02 03:31:25 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5b99\extensions\\Plugins: C:\Program Files\Mozilla Firefox 3.5 Preview\plugins [2009/07/12 07:32:02 | 00,000,000 | ---D | M]

[2009/06/08 19:43:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\mozilla\Extensions
[2009/06/08 19:43:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/07/15 17:01:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\mozilla\Firefox\Profiles\u72w5ugt.default\extensions
[2009/06/26 20:02:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\mozilla\Firefox\Profiles\u72w5ugt.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009/07/03 08:02:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\mozilla\Firefox\Profiles\u72w5ugt.default\extensions\{3303e956-2a3a-48e0-be39-2e0ef11a2f44}
[2009/06/20 15:34:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\mozilla\Firefox\Profiles\u72w5ugt.default\extensions\{a3b24d40-bac4-11dc-95ff-0800200c9a66}
[2009/06/15 22:33:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\mozilla\Firefox\Profiles\u72w5ugt.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009/04/22 16:09:46 | 00,000,888 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\Mozilla\FireFox\Profiles\u72w5ugt.default\searchplugins\conduit.xml
[2009/07/03 08:02:20 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009/06/14 05:03:17 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2009/06/14 05:03:06 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009/06/14 05:03:06 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2009/05/01 22:02:48 | 01,044,480 | ---- | M] (The OpenSSL Project, http://www.openssl.org/) -- C:\Program Files\mozilla firefox\plugins\libdivx.dll
[2009/05/12 19:46:20 | 01,650,992 | ---- | M] (DivX,Inc.) -- C:\Program Files\mozilla firefox\plugins\npdivx32.dll
[2009/05/18 23:41:32 | 00,098,304 | ---- | M] (DivX, Inc) -- C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll
[2009/06/14 05:03:09 | 00,065,528 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2006/10/26 20:12:16 | 00,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL
[2009/02/27 12:13:42 | 00,103,792 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll
[2009/07/01 18:58:26 | 00,136,768 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nppl3260.dll
[2009/06/10 18:29:05 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin.dll
[2009/06/10 18:29:05 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll
[2009/06/10 18:29:05 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll
[2009/06/10 18:29:05 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll
[2009/06/10 18:29:05 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll
[2009/06/10 18:29:05 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll
[2009/06/10 18:29:06 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll
[2009/07/01 18:58:57 | 00,008,192 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprjplug.dll
[2009/07/01 18:58:18 | 00,094,208 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprpjplug.dll
[2009/05/01 22:02:48 | 00,200,704 | ---- | M] (The OpenSSL Project, http://www.openssl.org/) -- C:\Program Files\mozilla firefox\plugins\ssldivx.dll
[2008/01/04 16:36:50 | 00,001,538 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-en-GB.xml
[2006/07/05 19:47:38 | 00,002,193 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\answers.xml
[2008/01/04 16:36:50 | 00,000,947 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\chambers-en-GB.xml
[2008/03/08 10:35:22 | 00,001,534 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
[2008/09/22 20:14:04 | 00,000,759 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-en-GB.xml
[2008/04/16 05:08:20 | 00,001,706 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2009/06/08 19:42:54 | 00,002,221 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\SafeSearch.xml
[2008/03/28 19:11:14 | 00,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia.xml
[2008/01/04 16:36:50 | 00,000,831 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-en-GB.xml

O1 HOSTS File: (304 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 192.168.0.1 192.168.0.1
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll (Symantec Corporation)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll (Google Inc.)
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Show Norton Toolbar) - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [IntelliPoint] c:\Program Files\Microsoft IntelliPoint\ipoint.exe (Microsoft Corporation)
O4 - HKLM..\Run: [IObit Security 360] C:\Program Files\IObit\IObit Security 360\IS360tray.exe (IObit)
O4 - HKLM..\Run: [itype] c:\Program Files\Microsoft IntelliType Pro\itype.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\qttask.exe (Apple Inc.)
O4 - HKLM..\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SkyTel] C:\WINDOWS\SkyTel.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [Symantec PIF AlertEng] C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe (Symantec Corporation)
O4 - HKLM..\Run: [UpdatePDRShortCut] C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKCU..\Run: [Advanced SystemCare 3] File not found
O4 - HKCU..\Run: [msnmsgr] C:\Program Files\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
O4 - HKCU..\Run: [NVIDIA nTune] C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe (NVIDIA)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Reboot.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeAnimation = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStrCmpLogical = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunStartupScriptSync = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: MemCheckBoxInRunDlg = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStrCmpLogical = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskmgr = 0
O8 - Extra context menu item: &Search - Reg Error: Value error. File not found
O9 - Extra Button: Sky - {08E730A4-FB02-45BD-A900-01E4AD8016F6} - File not found
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKCU\..Trusted Domains: internet ([]about in Trusted sites)
O15 - HKCU\..Trusted Domains: mcafee.com ([]http in Trusted sites)
O15 - HKCU\..Trusted Domains: mcafee.com ([]https in Trusted sites)
O15 - HKCU\..Trusted Domains: 7 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} http://security.syma...bin/AvSniff.cab (Symantec AntiVirus scanner)
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} http://cdn.scan.onec...lscbase1140.cab (Windows Live Safety Center Base Module)
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} http://security.syma...n/bin/cabsa.cab (Symantec RuFSI Utility Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter: - text/xml - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter: - x-sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKCU Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (My Current Home Page) - About:Home
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/08 13:12:49 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found

========== Files/Folders - Created Within 30 Days ==========

[2009/07/15 21:17:59 | 00,513,536 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Owner\Desktop\OTL.exe
[2009/07/15 21:15:22 | 00,000,000 | ---D | C] -- C:\Rooter$
[2009/07/15 20:57:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Application Data\Malwarebytes
[2009/07/15 20:57:04 | 00,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/07/15 20:57:02 | 00,038,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009/07/15 20:57:00 | 00,019,096 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009/07/15 20:57:00 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009/07/15 20:57:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2009/07/15 20:56:24 | 00,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2009/07/15 20:56:05 | 00,000,611 | ---- | C] () -- C:\Documents and Settings\Owner\Desktop\NTREGOPT.lnk
[2009/07/15 20:56:05 | 00,000,592 | ---- | C] () -- C:\Documents and Settings\Owner\Desktop\ERUNT.lnk
[2009/07/15 20:56:04 | 00,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2009/07/15 20:53:28 | 00,021,504 | ---- | C] (Doug Knox) -- C:\Documents and Settings\Owner\Desktop\SysRestorePoint.exe
[2009/07/15 19:37:53 | 00,265,216 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Owner\Desktop\TFC.exe
[2009/07/15 19:12:23 | 00,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2009/07/15 19:10:50 | 00,000,388 | ---- | C] () -- C:\WINDOWS\tasks\AWC Update.job
[2009/07/15 17:13:09 | 00,000,390 | ---- | C] () -- C:\WINDOWS\tasks\IObit Security 360.job
[2009/07/15 17:13:04 | 00,000,802 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\IObit Security 360.lnk
[2009/07/13 21:06:41 | 00,212,994 | ---- | C] () -- C:\WINDOWS\System32\lJsjwsC8.exe
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At9.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At8.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At7.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At6.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At5.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At4.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At3.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At24.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At23.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At22.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At21.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At20.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At2.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At19.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At18.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At17.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At16.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At15.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At14.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At13.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At12.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At11.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At10.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | C] () -- C:\WINDOWS\tasks\At1.job
[2009/07/13 12:46:50 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\My Documents\My Chat Logs
[2009/07/13 06:50:56 | 00,000,474 | ---- | C] () -- C:\WINDOWS\tasks\Norton Security Scan for Owner.job
[2009/07/13 06:50:53 | 00,000,979 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Norton Security Scan.lnk
[2009/07/13 06:50:51 | 00,000,172 | ---- | C] () -- C:\WINDOWS\System32\drivers\NSS\0203000.02C\isolate.ini
[2009/07/13 06:50:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NSS\0203000.02C
[2009/07/13 06:50:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NSS
[2009/07/13 06:50:51 | 00,000,000 | ---D | C] -- C:\Program Files\Norton Security Scan
[2009/07/13 06:50:46 | 00,000,000 | ---D | C] -- C:\Program Files\NortonInstaller
[2009/07/13 00:49:24 | 00,023,888 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\COH_Mon.sys
[2009/07/13 00:49:24 | 00,010,537 | ---- | C] () -- C:\WINDOWS\System32\drivers\COH_Mon.cat
[2009/07/13 00:49:24 | 00,000,706 | ---- | C] () -- C:\WINDOWS\System32\drivers\COH_Mon.inf
[2009/07/13 00:28:20 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Symantec
[2009/07/12 23:38:54 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\My Documents\Symantec
[2009/07/12 23:29:14 | 00,000,016 | ---- | C] () -- C:\WINDOWS\System32\coh.cache
[2009/07/12 23:26:45 | 00,001,632 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Norton 360.lnk
[2009/07/12 23:22:35 | 00,000,000 | ---D | C] -- C:\Program Files\Norton 360
[2009/07/12 23:21:40 | 00,124,464 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS
[2009/07/12 23:21:40 | 00,060,808 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\S32EVNT1.DLL
[2009/07/12 23:21:40 | 00,010,635 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT
[2009/07/12 23:21:40 | 00,000,806 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF
[2009/07/12 23:20:40 | 00,000,000 | ---D | C] -- C:\Program Files\Symantec
[2009/07/12 18:20:11 | 28,752,838 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\video.mp4
[2009/07/12 13:47:06 | 00,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel
[2009/07/12 12:40:30 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft_Corporation
[2009/07/12 11:31:18 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Local Settings\Application Data\WMTools Downloaded Files
[2009/07/12 07:38:18 | 00,002,030 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Microsoft Mouse.lnk
[2009/07/12 07:38:06 | 00,027,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\point32.sys
[2009/07/12 07:37:56 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft IntelliPoint
[2009/07/12 07:34:28 | 00,002,056 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Microsoft Keyboard.lnk
[2009/07/12 07:34:10 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft IntelliType Pro
[2009/07/12 03:26:50 | 00,000,025 | ---- | C] () -- C:\WINDOWS\OverlayXP.ini
[2009/07/12 03:10:36 | 11,295,811 | ---- | C] () -- C:\Documents and Settings\Owner\Desktop\KeyLemon_2.0.1.rar
[2009/07/11 19:35:29 | 00,068,608 | ---- | C] () -- C:\WINDOWS\System32\Iforce2.dll
[2009/07/11 19:35:28 | 00,365,568 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\GLIDE2X.DLL
[2009/07/11 19:35:28 | 00,132,096 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\sst1init.dll
[2009/07/11 19:35:28 | 00,116,224 | ---- | C] () -- C:\WINDOWS\System32\edec.dll
[2009/07/11 19:35:28 | 00,093,696 | ---- | C] (Eidos plc) -- C:\WINDOWS\System32\Dec130.dll
[2009/07/11 19:35:28 | 00,088,576 | ---- | C] () -- C:\WINDOWS\System32\winsdec.dll
[2009/07/11 19:35:28 | 00,074,240 | ---- | C] (EIDOS Technologies) -- C:\WINDOWS\System32\winstr.dll
[2009/07/11 19:35:28 | 00,059,392 | ---- | C] (EIDOS Technologies) -- C:\WINDOWS\System32\winplay.dll
[2009/07/11 19:35:27 | 00,263,168 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\glide.dll
[2009/07/11 19:35:27 | 00,007,584 | ---- | C] () -- C:\WINDOWS\System32\FXMEMMAP.VXD
[2009/07/11 19:30:27 | 00,000,000 | ---D | C] -- C:\Program Files\flight2
[2009/07/11 16:36:13 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Application Data\AVS4YOU
[2009/07/11 16:36:13 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVS4YOU
[2009/07/11 16:35:24 | 00,000,946 | ---- | C] () -- C:\Documents and Settings\Owner\Desktop\AVS4YOU Software Navigator.lnk
[2009/07/11 16:35:11 | 00,000,806 | ---- | C] () -- C:\Documents and Settings\Owner\Desktop\AVS DVD Copy.lnk
[2009/07/11 16:35:04 | 00,974,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfc70.dll
[2009/07/11 16:35:04 | 00,487,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcp70.dll
[2009/07/11 16:35:04 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml3a.dll
[2009/07/11 16:35:04 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\AVSMedia
[2009/07/11 16:35:04 | 00,000,000 | ---D | C] -- C:\Program Files\AVS4YOU
[2009/07/11 16:31:57 | 00,000,694 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Burn4Free.lnk
[2009/07/11 16:31:53 | 00,000,000 | ---D | C] -- C:\Program Files\Burn4Free
[2009/07/11 03:36:53 | 00,000,000 | ---D | C] -- C:\OutputFolder
[2009/07/11 03:35:40 | 00,000,730 | ---- | C] () -- C:\Documents and Settings\Owner\Desktop\Allok Video Joiner.lnk
[2009/07/11 03:35:38 | 00,129,024 | ---- | C] () -- C:\WINDOWS\System32\AVERM.dll
[2009/07/11 03:35:38 | 00,028,672 | ---- | C] () -- C:\WINDOWS\System32\AVEQT.dll
[2009/07/11 03:35:36 | 00,000,000 | ---D | C] -- C:\Program Files\Allok Video Joiner
[2009/07/11 01:43:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Local Settings\Application Data\KingJackpot
[2009/07/04 13:50:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Application Data\EPSON
[2009/07/04 09:51:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Application Data\Sony
[2009/07/04 09:51:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sony
[2009/07/04 09:47:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Local Settings\Application Data\Sony
[2009/07/04 09:46:33 | 00,001,849 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Sony Ericsson Media Manager 1.1.lnk
[2009/07/04 09:46:14 | 00,000,000 | ---D | C] -- C:\Program Files\Sony
[2009/07/04 08:31:57 | 00,001,745 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Sony Ericsson PC Suite 4.0.lnk
[2009/07/04 08:25:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Local Settings\Application Data\Sony Ericsson
[2009/07/04 08:23:53 | 00,000,000 | ---D | C] -- C:\Program Files\Avanquest update
[2009/07/04 08:23:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\BVRP Software
[2009/07/04 08:22:14 | 00,000,000 | ---D | C] -- C:\Program Files\Sony Ericsson
[2009/07/04 08:22:14 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sony Ericsson
[2009/07/03 16:28:37 | 00,000,422 | -H-- | C] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{1A6096CA-B84D-4D67-9C57-5CD6324F0733}.job
[2009/07/03 11:30:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SiteAdvisor
[2009/07/03 10:53:10 | 00,000,000 | ---D | C] -- C:\Microgaming
[2009/07/03 10:53:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Microgaming
[2009/07/03 10:53:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\MGS
[2009/07/03 06:31:39 | 00,012,536 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\Mr Stephen Quinnell.docx
[2009/07/03 05:50:52 | 73,441,4848 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\Chip-2009.02-CD.iso
[2009/07/03 03:39:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Application Data\LogoMaker
[2009/07/03 03:12:16 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Reallusion
[2009/07/03 02:32:45 | 00,000,000 | ---D | C] -- C:\Program Files\Erotic Roulette
[2009/07/03 01:14:33 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\McAfee
[2009/07/03 01:06:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\My Documents\Downloads
[2009/07/02 20:48:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Application Data\Audacity
[2009/07/02 20:41:37 | 00,000,000 | ---D | C] -- C:\Program Files\Mr Dj Music Studio 2
[2009/07/02 19:56:05 | 00,000,000 | ---D | C] -- C:\Program Files\KaraFun
[2009/07/02 19:49:55 | 00,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ATL71.DLL
[2009/07/02 19:49:54 | 01,047,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFC71U.DLL
[2009/07/02 19:47:48 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Local Settings\Application Data\Conduit
[2009/07/02 19:47:47 | 00,000,000 | ---D | C] -- C:\Program Files\Conduit
[2009/07/02 19:47:27 | 00,000,000 | ---D | C] -- C:\Program Files\Doblon
[2009/07/02 19:20:57 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Application Data\SingSong
[2009/07/02 17:44:05 | 00,000,874 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Advanced SystemCare.lnk
[2009/07/02 17:44:05 | 00,000,153 | ---- | C] () -- C:\Documents and Settings\Owner\Desktop\IObit Freeware.url
[2009/07/02 17:30:26 | 00,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2009/07/02 16:48:59 | 00,000,480 | ---- | C] () -- C:\WINDOWS\tasks\XrayMyPC.job
[2009/07/02 16:48:53 | 00,831,560 | ---- | C] (Capital Intellect Inc) -- C:\WINDOWS\System32\WINCTL5.OCX
[2009/07/02 16:48:53 | 00,495,689 | ---- | C] (Capital Intellect Inc) -- C:\WINDOWS\System32\WINUTIL6.DLL
[2009/07/02 16:48:53 | 00,393,216 | ---- | C] (Capital Intellect Inc) -- C:\WINDOWS\System32\WINLCTL5.DLL
[2009/07/02 15:08:17 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Windows OneCare Live
[2009/07/02 06:17:36 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Live Safety Center
[2009/07/02 05:24:01 | 00,000,000 | ---D | C] -- C:\.nuke
[2009/07/02 05:17:30 | 00,000,000 | ---D | C] -- C:\Program Files\DC-Sakura
[2009/07/01 23:16:54 | 00,002,242 | ---- | C] () -- C:\WINDOWS\spd2x.ini
[2009/07/01 23:16:53 | 00,001,564 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\ScenePD 2.lnk
[2009/07/01 23:16:48 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\regsvr32.exe
[2009/07/01 23:16:47 | 00,002,458 | ---- | C] () -- C:\WINDOWS\spd2de.ini
[2009/07/01 23:16:47 | 00,000,000 | ---D | C] -- C:\Program Files\Trancite
[2009/07/01 23:05:27 | 00,000,684 | ---- | C] () -- C:\Documents and Settings\Owner\Desktop\Nuke 5.1v3 (32 bit).lnk
[2009/07/01 23:02:58 | 00,000,000 | ---D | C] -- C:\Program Files\The Foundry
[2009/07/01 23:02:58 | 00,000,000 | ---D | C] -- C:\Program Files\Nuke5.1v3
[2009/07/01 22:47:19 | 00,050,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\perf-SQLAgent$SQLEXPRESS-sqlagtctr10.0.1600.22.dll
[2009/07/01 22:46:58 | 00,079,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\perf-MSSQL$SQLEXPRESS-sqlctr10.0.1600.22.dll
[2009/07/01 22:45:29 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\RsFx
[2009/07/01 19:59:19 | 03,724,328 | -H-- | C] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\IconCache.db
[2009/07/01 19:41:50 | 00,000,000 | ---D | C] -- C:\Program Files\MSXML 6.0
[2009/07/01 18:58:44 | 00,000,897 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\RealPlayer SP.lnk
[2009/07/01 18:58:27 | 00,185,920 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll
[2009/07/01 18:58:11 | 00,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll
[2009/07/01 18:58:11 | 00,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll
[2009/07/01 18:58:08 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared
[2009/07/01 09:43:34 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\My Documents\Flight Simulator X Files
[2009/07/01 08:50:28 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Games
[2009/07/01 06:09:53 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Small Business
[2009/07/01 05:54:25 | 00,030,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mdimon.dll
[2009/07/01 05:53:14 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2009/07/01 05:52:16 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2009/07/01 05:52:15 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2009/07/01 05:48:14 | 00,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2009/07/01 05:47:09 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2009/07/01 05:45:49 | 00,000,000 | RH-D | C] -- C:\MSOCache
[2009/07/01 05:34:44 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Application Data\GetRightToGo
[2009/07/01 03:45:32 | 00,001,762 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Google SketchUp 7.lnk
[2009/07/01 02:34:00 | 00,000,884 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2009/07/01 02:33:59 | 00,000,880 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2009/06/30 23:08:24 | 00,564,224 | ---- | C] (Ikysasoft s.r.l. uninominale) -- C:\WINDOWS\System32\b4fm.dll
[2009/06/28 22:00:01 | 00,000,000 | ---D | C] -- C:\IObit
[2009/06/27 21:27:43 | 00,000,000 | ---D | C] -- C:\Program Files\QWD1
[2009/06/27 20:31:21 | 00,000,000 | ---D | C] -- C:\Program Files\Object Software
[2009/06/27 20:19:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Application Data\[email protected]
[2009/06/27 20:18:35 | 00,000,000 | ---D | C] -- C:\Program Files\Badaboom
[2009/06/27 20:18:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Local Settings\Application Data\Badaboom
[2009/06/27 20:16:47 | 00,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Badaboom.lnk
[2009/06/27 18:53:08 | 00,000,000 | ---D | C] -- C:\Program Files\Crazy Machines II + Demo
[2009/06/27 18:41:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\CyberLink
[2009/06/27 18:41:05 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\My Documents\CyberLink
[2009/06/27 18:41:03 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Owner\My Documents\ShadowEditFiles
[2009/06/27 18:40:48 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Application Data\CyberLink
[2009/06/27 18:38:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SmartSound Software Inc
[2009/06/27 18:37:59 | 00,000,000 | ---D | C] -- C:\Program Files\SmartSound Software
[2009/06/27 18:37:45 | 00,001,688 | ---- | C] () -- C:\Documents and Settings\Owner\Desktop\CyberLink PowerDirector.lnk
[2009/06/27 18:36:18 | 00,000,000 | ---D | C] -- C:\Program Files\CyberLink
[2009/06/27 17:34:56 | 00,000,008 | ---- | C] () -- C:\WINDOWS\System32\nvModes.dat
[2009/06/27 17:34:19 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\nView_Profiles
[2009/06/27 14:15:07 | 00,006,109 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\Readme.rtf
[2009/06/27 14:13:08 | 00,000,000 | ---D | C] -- C:\Program Files\Netdevil
[2009/06/27 14:08:32 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Local Settings\Application Data\MotionDSP
[2009/06/27 14:08:03 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\MotionDSP
[2009/06/27 13:39:34 | 00,413,696 | ---- | C] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll
[2009/06/27 13:39:34 | 00,110,592 | ---- | C] (Portions © Creative Labs Inc. and NVIDIA Corp.) -- C:\WINDOWS\System32\OpenAL32.dll
[2009/06/27 13:39:34 | 00,000,000 | ---D | C] -- C:\Program Files\OpenAL
[2009/06/27 13:37:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\BOINC
[2009/06/27 12:53:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\My Documents\ultrastardx-101a-full
[2009/06/27 11:57:07 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Application Data\Download Manager
[2009/06/27 11:42:06 | 00,446,464 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvunrm.exe
[2009/06/27 11:42:06 | 00,006,045 | ---- | C] () -- C:\WINDOWS\System32\nvnrm.nvu
[2009/06/27 11:07:37 | 00,517,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_4.dll
[2009/06/27 11:07:37 | 00,069,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_3.dll
[2009/06/27 11:07:36 | 00,235,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_4.dll
[2009/06/27 11:07:35 | 00,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_6.dll
[2009/06/27 10:55:59 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft XNA
[2009/06/27 10:47:34 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server
[2009/06/27 10:42:17 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\My Documents\Visual Studio 2008
[2009/06/27 10:41:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft Help
[2009/06/27 10:38:21 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2009/06/27 10:38:21 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 9.0
[2009/06/27 10:38:18 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft Help
[2009/06/27 10:37:02 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft SDKs
[2009/06/27 10:28:01 | 00,000,000 | ---D | C] -- C:\183cdc0e02b171cdae
[2009/06/27 10:18:45 | 00,000,000 | ---D | C] -- C:\Program Files\NirSoft
[2009/06/27 09:37:02 | 00,000,759 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Picasa 3.lnk
[2009/06/27 09:30:09 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\IOSUBSYS
[2009/06/27 09:19:24 | 00,117,136 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\drivers\VBoxDrv.sys
[2009/06/27 09:19:14 | 00,091,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\drivers\VBoxNetAdp.sys
[2009/06/27 09:18:48 | 00,041,424 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\drivers\VBoxUSBMon.sys
[2009/06/27 07:39:07 | 01,289,037 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\4521_serena-wp-lean-bpm-era.pdf
[2009/06/27 07:31:26 | 00,153,616 | -H-- | C] () -- C:\WINDOWS\System32\xOx0.dat
[2009/06/27 05:57:31 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\QuickTime
[2009/06/27 03:14:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Application Data\KeyLemon
[2009/06/27 03:12:19 | 00,000,016 | ---- | C] () -- C:\WINDOWS\System32\fltrkl11.dll
[2009/06/27 03:10:05 | 00,000,000 | ---D | C] -- C:\Program Files\KeyLemon
[2009/06/27 02:57:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Application Data\CLiPW
[2009/06/27 02:56:11 | 00,001,987 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Advanced ID Creator Enterprise.lnk
[2009/06/27 02:55:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Xpress Software
[2009/06/27 02:55:55 | 00,000,000 | ---D | C] -- C:\Program Files\Xpress Software
[2009/06/27 02:55:13 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\My Documents\Advanced_ID_Creator_Enterprise_v8.00.51.0_bsa
[2009/06/27 02:55:05 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\My Documents\Feldman_full
[2009/06/27 02:54:15 | 09,641,865 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\Advanced_ID_Creator_Enterprise_v8.00.51.0_bsa.rar
[2009/06/27 01:56:01 | 00,000,220 | -HS- | C] () -- C:\WINDOWS\dwin.sys
[2009/06/27 01:03:19 | 00,000,000 | -HSD | C] -- C:\Config.Msi
[2009/06/27 00:24:05 | 00,000,000 | ---D | C] -- C:\Program Files\Aston2
[2009/06/26 22:10:29 | 00,215,465 | ---- | C] () -- C:\WINDOWS\System32\nvapps.nvb
[2009/06/26 21:52:42 | 00,010,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\gameenum.sys
[2009/06/26 21:52:42 | 00,010,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gameenum.sys
[2009/06/26 19:47:55 | 00,001,836 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Google Earth.lnk
[2009/06/26 19:46:34 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Google Updater
[2009/06/26 19:46:33 | 00,000,868 | ---- | C] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2009/06/26 12:47:18 | 00,000,672 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\MOBILedit!.lnk
[2009/06/26 12:38:42 | 00,026,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\USBSTOR.SYS
[2009/06/26 12:38:42 | 00,026,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbstor.sys
[2009/06/26 12:08:04 | 00,000,000 | ---D | C] -- C:\Program Files\MOBILedit!
[2009/06/26 12:02:59 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe
[2009/06/26 11:59:18 | 00,000,000 | ---D | C] -- C:\Program Files\PC Satellite TV
[2009/06/26 11:54:57 | 00,000,000 | ---D | C] -- C:\hidownload
[2009/06/26 11:50:39 | 11,521,178 | ---- | C] ( ) -- C:\Documents and Settings\Owner\Application Data\for PC ™ 2008 ELITE EDITION.exe
[2009/06/25 21:19:45 | 00,000,000 | ---D | C] -- C:\Program Files\DreaMule
[2009/06/25 15:50:31 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\AGEIA
[2009/06/25 15:50:31 | 00,000,000 | ---D | C] -- C:\Program Files\AGEIA Technologies
[2009/06/25 15:50:17 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2009/06/25 15:49:33 | 00,209,324 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml
[2009/06/25 15:48:53 | 00,000,000 | ---D | C] -- C:\WINDOWS\nview
[2009/06/22 02:33:46 | 00,001,054 | ---- | C] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\aykwy_m2s.xml
[2009/06/22 02:33:07 | 00,001,277 | ---- | C] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\aykwy.dat
[2009/06/21 09:07:46 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Xbox 360 Accessories
[2009/06/21 08:49:58 | 00,010,880 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\drivers\admjoy.sys
[2009/06/21 08:49:58 | 00,010,880 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\admjoy.sys
[2009/06/21 07:55:11 | 00,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_xusb21_01007.Wdf
[2009/06/21 07:55:09 | 00,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
[2009/06/21 07:55:03 | 00,014,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsgXP_2k3.dll
[2009/06/21 07:50:10 | 00,000,000 | ---D | C] -- C:\Program Files\KALiNKOsoft
[2009/06/21 06:29:22 | 00,794,440 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\400_Java_Games_Megapack_176x208176kh220240x320
[2009/06/21 06:14:42 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Documents\KALiNKOsoft
[2009/06/21 06:14:42 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Application Data\KALiNKOsoft
[2009/06/21 06:14:12 | 00,094,208 | R-S- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msstkprp.dll
[2009/06/21 06:14:11 | 00,091,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dsofile.dll
[2009/06/21 06:14:10 | 00,511,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\capicom.dll
[2009/06/21 06:14:10 | 00,212,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RICHTX32.OCX
[2009/06/21 06:14:10 | 00,045,056 | ---- | C] (Microsoft) -- C:\WINDOWS\System32\NTSVC.ocx
[2009/06/21 06:14:10 | 00,040,960 | ---- | C] (vbAccelerator) -- C:\WINDOWS\System32\SSubTmr6.dll
[2009/06/21 06:14:07 | 00,119,296 | ---- | C] () -- C:\WINDOWS\System32\zlib.dll
[2009/06/21 06:14:07 | 00,057,344 | ---- | C] () -- C:\WINDOWS\System32\ADsSecurity.dll
[2009/06/21 06:14:00 | 00,036,864 | ---- | C] () -- C:\WINDOWS\System32\dxinputdll.dll
[2009/06/21 04:28:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Local Settings\Application Data\Collectorz.com
[2009/06/21 04:27:51 | 00,000,908 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Game Collector.lnk
[2009/06/21 04:26:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\My Documents\Game Collector
[2009/06/21 04:26:06 | 00,000,000 | ---D | C] -- C:\Program Files\Collectorz.com
[2009/06/21 04:21:43 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Desktop\Collectorz.com.Game.Collector.Pro.v3.2.1-TE
[2009/06/20 20:14:04 | 00,000,000 | ---D | C] -- C:\ProgramData
[2009/06/20 20:14:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Electronic Arts
[2009/06/20 20:11:19 | 00,447,752 | ---- | C] (On2.com) -- C:\WINDOWS\System32\vp6vfw.dll
[2009/06/20 19:14:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\My Documents\Electronic Arts
[2009/06/20 15:32:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Desktop\JD
[2009/06/20 15:21:15 | 00,000,000 | ---D | C] -- C:\Program Files\FDN
[2009/06/20 04:23:28 | 00,000,000 | ---D | C] -- C:\Program Files\Axis Communications
[2009/06/20 02:56:25 | 00,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2009/06/20 02:56:06 | 00,410,984 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2009/06/20 02:56:06 | 00,148,888 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2009/06/20 02:56:06 | 00,144,792 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2009/06/20 02:56:06 | 00,144,792 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2009/06/20 02:56:06 | 00,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2009/06/20 02:55:38 | 00,000,000 | ---D | C] -- C:\Program Files\Java
[2009/06/20 02:55:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Application Data\Sun
[2009/06/20 02:35:58 | 00,000,000 | ---D | C] -- C:\Program Files\Motherplanet
[2009/06/20 02:01:13 | 00,001,728 | ---- | C] () -- C:\Documents and Settings\Owner\Desktop\World Wind 1.4.lnk
[2009/06/20 00:59:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\InstallShield
[2009/06/20 00:54:17 | 00,000,000 | ---D | C] -- C:\Program Files\Alaplaya
[2009/06/16 20:47:45 | 00,000,000 | ---D | C] -- C:\Downloads
[2009/06/16 03:35:30 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Local Settings\Application Data\RcIncidents
[2009/06/15 22:47:58 | 00,081,920 | ---- | C] () -- C:\WINDOWS\System32\GkSui20.EXE
[2009/06/15 22:47:55 | 00,000,000 | ---D | C] -- C:\Program Files\NIGHTSTUD2 Vv1.0b Shareware
[2009/06/15 18:26:02 | 00,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2009/06/15 13:48:38 | 00,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009/06/15 04:42:57 | 00,000,288 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009/06/14 22:07:55 | 00,000,031 | -H-- | C] () -- C:\WINDOWS\UKCpInfo.sys
[2009/06/14 04:32:11 | 00,000,022 | ---- | C] () -- C:\WINDOWS\System32\Dysst.dll
[2009/06/13 21:24:58 | 00,278,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2009/06/13 21:24:57 | 00,025,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2009/06/11 14:22:17 | 00,000,039 | ---- | C] () -- C:\WINDOWS\Irremote.ini
[2009/06/10 08:29:34 | 01,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2009/06/10 08:29:34 | 01,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2009/06/10 08:29:34 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2009/06/10 08:29:32 | 01,507,328 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2009/06/10 05:43:28 | 00,000,273 | ---- | C] () -- C:\WINDOWS\System32\ctsm32.dll
[2009/06/10 04:07:06 | 00,034,308 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2009/06/10 03:33:14 | 00,000,068 | ---- | C] () -- C:\WINDOWS\RegisterRSM.ini
[2009/06/09 10:03:54 | 00,000,048 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2009/06/09 09:50:18 | 00,000,028 | ---- | C] () -- C:\WINDOWS\Robota.INI
[2009/06/09 09:49:03 | 00,053,248 | ---- | C] () -- C:\WINDOWS\System32\mgxasio2.dll
[2009/06/09 09:48:08 | 00,120,200 | ---- | C] () -- C:\WINDOWS\System32\DLLDEV32i.dll
[2009/06/09 09:47:29 | 00,006,211 | ---- | C] () -- C:\WINDOWS\mgxoschk.ini
[2009/06/09 06:00:25 | 00,139,264 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009/06/08 16:25:25 | 00,003,654 | ---- | C] () -- C:\WINDOWS\System32\drivers\Sonyhcp.dll
[2009/06/08 16:04:51 | 00,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini
[2009/06/08 16:04:11 | 00,000,025 | ---- | C] () -- C:\WINDOWS\CDESX100DEFGIPS.ini
[2009/01/07 10:09:22 | 00,131,072 | ---- | C] () -- C:\WINDOWS\System32\msdunsernm.dll
[2009/01/04 12:16:16 | 00,045,568 | ---- | C] () -- C:\WINDOWS\System32\chckshll.dll
[2008/10/07 09:13:30 | 00,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2008/10/07 09:13:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2008/10/07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2008/05/31 10:09:37 | 00,009,847 | ---- | C] () -- C:\WINDOWS\System32\msw1neo-em.dll
[2008/05/07 02:51:59 | 00,131,072 | ---- | C] () -- C:\WINDOWS\System32\msd1ceo-dm.dll
[2008/04/12 16:40:28 | 00,012,800 | ---- | C] () -- C:\WINDOWS\System32\drivers\ntiopnp.sys
[2008/04/12 16:40:28 | 00,011,392 | ---- | C] () -- C:\WINDOWS\System32\drivers\ntiomin.sys
[2007/10/06 09:38:24 | 01,051,136 | ---- | C] () -- C:\WINDOWS\System32\drivers\CAMTHWDM.sys
[2007/03/12 12:01:30 | 00,217,088 | ---- | C] () -- C:\WINDOWS\NVGfxOgl.dll
[2005/10/14 10:56:50 | 00,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2005/10/14 10:56:50 | 00,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2005/10/14 10:56:50 | 00,344,064 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2005/10/14 10:56:50 | 00,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2005/10/14 10:56:50 | 00,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2005/10/14 10:56:50 | 00,155,136 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2005/10/14 10:56:50 | 00,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2005/10/14 10:56:48 | 00,077,824 | ---- | C] () -- C:\WINDOWS\System32\MMSwitch.dll
[2004/08/04 13:00:00 | 00,000,582 | ---- | C] () -- C:\WINDOWS\win.ini
[2004/08/04 13:00:00 | 00,000,368 | ---- | C] () -- C:\WINDOWS\system.ini
[2004/01/15 07:01:26 | 00,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll
[2002/03/19 18:30:00 | 00,010,752 | ---- | C] () -- C:\WINDOWS\System32\mag.dll
[2002/03/19 17:30:00 | 00,141,824 | ---- | C] () -- C:\WINDOWS\System32\msvdm.dll

========== Files - Modified Within 30 Days ==========

[2009/07/15 21:18:21 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Owner\Desktop\OTL.exe
[2009/07/15 21:13:58 | 00,002,422 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009/07/15 21:07:52 | 00,209,324 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2009/07/15 21:07:46 | 00,000,376 | ---- | M] () -- C:\WINDOWS\tasks\AWC AutoSweep.job
[2009/07/15 21:07:22 | 00,000,868 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2009/07/15 21:07:17 | 00,000,880 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2009/07/15 21:07:16 | 00,000,480 | ---- | M] () -- C:\WINDOWS\tasks\XrayMyPC.job
[2009/07/15 21:07:04 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009/07/15 21:07:00 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009/07/15 21:05:55 | 03,724,328 | -H-- | M] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\IconCache.db
[2009/07/15 21:00:10 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At22.job
[2009/07/15 20:57:04 | 00,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/07/15 20:56:05 | 00,000,611 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\NTREGOPT.lnk
[2009/07/15 20:56:05 | 00,000,592 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\ERUNT.lnk
[2009/07/15 20:53:30 | 00,021,504 | ---- | M] (Doug Knox) -- C:\Documents and Settings\Owner\Desktop\SysRestorePoint.exe
[2009/07/15 20:39:00 | 00,000,884 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2009/07/15 20:00:11 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At21.job
[2009/07/15 19:37:58 | 00,265,216 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Owner\Desktop\TFC.exe
[2009/07/15 19:16:27 | 00,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2009/07/15 19:10:50 | 00,000,388 | ---- | M] () -- C:\WINDOWS\tasks\AWC Update.job
[2009/07/15 19:00:14 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At20.job
[2009/07/15 18:00:11 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At19.job
[2009/07/15 17:13:09 | 00,000,390 | ---- | M] () -- C:\WINDOWS\tasks\IObit Security 360.job
[2009/07/15 17:13:04 | 00,000,802 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\IObit Security 360.lnk
[2009/07/15 17:12:03 | 00,000,153 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\IObit Freeware.url
[2009/07/15 17:00:11 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At18.job
[2009/07/15 16:45:20 | 00,000,422 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{1A6096CA-B84D-4D67-9C57-5CD6324F0733}.job
[2009/07/15 16:41:09 | 00,119,296 | ---- | M] () -- C:\WINDOWS\System32\zlib.dll
[2009/07/14 22:00:10 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At23.job
[2009/07/14 01:00:10 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At2.job
[2009/07/14 00:11:10 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At1.job
[2009/07/13 23:08:12 | 00,212,994 | ---- | M] () -- C:\WINDOWS\System32\lJsjwsC8.exe
[2009/07/13 23:00:10 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At24.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At9.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At8.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At7.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At6.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At5.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At4.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At3.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At17.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At16.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At15.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At14.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At13.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At12.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At11.job
[2009/07/13 21:06:41 | 00,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At10.job
[2009/07/13 15:00:00 | 00,000,474 | ---- | M] () -- C:\WINDOWS\tasks\Norton Security Scan for Owner.job
[2009/07/13 13:36:34 | 00,038,160 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009/07/13 13:36:12 | 00,019,096 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009/07/13 12:22:25 | 00,000,223 | -HS- | M] () -- C:\boot.ini
[2009/07/13 12:22:24 | 00,000,582 | ---- | M] () -- C:\WINDOWS\win.ini
[2009/07/13 12:22:24 | 00,000,368 | ---- | M] () -- C:\WINDOWS\system.ini
[2009/07/13 12:19:39 | 00,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009/07/13 06:50:53 | 00,000,979 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Norton Security Scan.lnk
[2009/07/13 06:50:51 | 00,000,172 | ---- | M] () -- C:\WINDOWS\System32\drivers\NSS\0203000.02C\isolate.ini
[2009/07/13 00:17:07 | 00,010,635 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT
[2009/07/13 00:17:07 | 00,000,806 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF
[2009/07/13 00:17:06 | 00,124,464 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS
[2009/07/13 00:17:06 | 00,060,808 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\S32EVNT1.DLL
[2009/07/12 23:29:15 | 00,000,016 | ---- | M] () -- C:\WINDOWS\System32\coh.cache
[2009/07/12 23:26:45 | 00,001,632 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Norton 360.lnk
[2009/07/12 18:20:12 | 28,752,838 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\video.mp4
[2009/07/12 17:49:23 | 00,012,288 | ---- | M] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/07/12 14:28:58 | 00,004,346 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2009/07/12 12:54:08 | 00,507,474 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009/07/12 12:54:08 | 00,096,212 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009/07/12 09:51:42 | 00,336,256 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009/07/12 07:39:27 | 00,103,904 | ---- | M] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2009/07/12 07:38:18 | 00,002,030 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Microsoft Mouse.lnk
[2009/07/12 07:34:28 | 00,002,056 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Microsoft Keyboard.lnk
[2009/07/12 05:38:26 | 00,000,025 | ---- | M] () -- C:\WINDOWS\OverlayXP.ini
[2009/07/12 03:10:36 | 11,295,811 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\KeyLemon_2.0.1.rar
[2009/07/11 21:56:50 | 00,000,016 | ---- | M] () -- C:\WINDOWS\System32\fltrkl11.dll
[2009/07/11 18:12:40 | 00,001,688 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\CyberLink PowerDirector.lnk
[2009/07/11 16:35:24 | 00,000,946 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\AVS4YOU Software Navigator.lnk
[2009/07/11 16:35:11 | 00,000,806 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\AVS DVD Copy.lnk
[2009/07/11 16:31:57 | 00,000,694 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Burn4Free.lnk
[2009/07/11 10:27:13 | 00,000,671 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\vso_ts_preview.xml
[2009/07/11 03:35:40 | 00,000,730 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\Allok Video Joiner.lnk
[2009/07/07 16:10:56 | 24,539,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MRT.exe
[2009/07/04 09:46:33 | 00,001,849 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Sony Ericsson Media Manager 1.1.lnk
[2009/07/04 08:31:57 | 00,001,745 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Sony Ericsson PC Suite 4.0.lnk
[2009/07/03 06:42:25 | 00,012,536 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\Mr Stephen Quinnell.docx
[2009/07/03 05:55:38 | 73,441,4848 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\Chip-2009.02-CD.iso
[2009/07/02 20:41:54 | 00,000,288 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[2009/07/02 17:44:05 | 00,000,874 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Advanced SystemCare.lnk
[2009/07/02 15:39:00 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2009/07/02 15:27:23 | 00,000,039 | ---- | M] () -- C:\WINDOWS\Irremote.ini
[2009/07/02 05:26:17 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest
[2009/07/02 05:26:17 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2009/07/02 05:26:17 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2009/07/02 05:26:17 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2009/07/02 05:26:17 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2009/07/02 05:26:17 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2009/07/01 23:23:59 | 00,002,458 | ---- | M] () -- C:\WINDOWS\spd2de.ini
[2009/07/01 23:16:57 | 00,002,242 | ---- | M] () -- C:\WINDOWS\spd2x.ini
[2009/07/01 23:16:53 | 00,001,564 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\ScenePD 2.lnk
[2009/07/01 23:05:27 | 00,000,684 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\Nuke 5.1v3 (32 bit).lnk
[2009/07/01 22:47:19 | 00,679,286 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009/07/01 19:32:26 | 00,000,945 | ---- | M] () -- C:\WINDOWS\System32\mapisvc.inf
[2009/07/01 18:59:40 | 00,000,048 | ---- | M] () -- C:\WINDOWS\cdplayer.ini
[2009/07/01 18:58:44 | 00,000,897 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\RealPlayer SP.lnk
[2009/07/01 18:58:27 | 00,185,920 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll
[2009/07/01 18:58:11 | 00,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll
[2009/07/01 18:58:11 | 00,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll
[2009/07/01 18:57:38 | 00,278,528 | ---- | M] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2009/07/01 03:45:32 | 00,001,762 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Google SketchUp 7.lnk
[2009/06/30 23:08:24 | 00,564,224 | ---- | M] (Ikysasoft s.r.l. uninominale) -- C:\WINDOWS\System32\b4fm.dll
[2009/06/27 20:58:12 | 00,000,008 | ---- | M] () -- C:\WINDOWS\System32\nvModes.dat
[2009/06/27 20:18:38 | 00,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Badaboom.lnk
[2009/06/27 18:52:35 | 00,413,696 | ---- | M] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll
[2009/06/27 18:52:35 | 00,110,592 | ---- | M] (Portions © Creative Labs Inc. and NVIDIA Corp.) -- C:\WINDOWS\System32\OpenAL32.dll
[2009/06/27 14:15:08 | 00,006,109 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\Readme.rtf
[2009/06/27 09:37:02 | 00,000,759 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Picasa 3.lnk
[2009/06/27 07:39:09 | 01,289,037 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\4521_serena-wp-lean-bpm-era.pdf
[2009/06/27 07:33:23 | 00,153,616 | -H-- | M] () -- C:\WINDOWS\System32\xOx0.dat
[2009/06/27 06:59:45 | 00,000,273 | ---- | M] () -- C:\WINDOWS\System32\ctsm32.dll
[2009/06/27 02:56:11 | 00,001,987 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Advanced ID Creator Enterprise.lnk
[2009/06/27 02:54:27 | 09,641,865 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\Advanced_ID_Creator_Enterprise_v8.00.51.0_bsa.rar
[2009/06/27 01:56:01 | 00,000,220 | -HS- | M] () -- C:\WINDOWS\dwin.sys
[2009/06/27 00:55:31 | 00,000,795 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\DivX Player.lnk
[2009/06/27 00:55:16 | 00,000,831 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\DivX Converter.lnk
[2009/06/27 00:54:50 | 00,001,469 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\DivX Movies.lnk
[2009/06/26 19:47:55 | 00,001,836 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Google Earth.lnk
[2009/06/26 12:47:18 | 00,000,672 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\MOBILedit!.lnk
[2009/06/26 11:51:43 | 11,521,178 | ---- | M] ( ) -- C:\Documents and Settings\Owner\Application Data\for PC ™ 2008 ELITE EDITION.exe
[2009/06/26 10:41:32 | 00,001,548 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\CCleaner.lnk
[2009/06/24 19:53:08 | 00,000,225 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\default.rss
[2009/06/22 03:09:38 | 00,000,022 | ---- | M] () -- C:\WINDOWS\System32\Dysst.dll
[2009/06/22 02:33:46 | 00,001,054 | ---- | M] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\aykwy_m2s.xml
[2009/06/22 02:33:07 | 00,001,277 | ---- | M] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\aykwy.dat
[2009/06/21 17:54:02 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2009/06/21 07:55:11 | 00,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_xusb21_01007.Wdf
[2009/06/21 07:55:09 | 00,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
[2009/06/21 06:29:22 | 00,794,440 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\400_Java_Games_Megapack_176x208176kh220240x320
[2009/06/21 04:27:51 | 00,000,908 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Game Collector.lnk
[2009/06/20 02:55:42 | 00,410,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2009/06/20 02:55:42 | 00,148,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2009/06/20 02:55:42 | 00,144,792 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2009/06/20 02:55:42 | 00,144,792 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2009/06/20 02:55:42 | 00,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2009/06/20 02:01:13 | 00,001,728 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\World Wind 1.4.lnk
[2009/06/16 19:07:32 | 00,117,136 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\drivers\VBoxDrv.sys
[2009/06/16 19:07:32 | 00,091,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\drivers\VBoxNetAdp.sys
[2009/06/16 19:07:32 | 00,041,424 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\drivers\VBoxUSBMon.sys
[2009/06/16 15:36:30 | 00,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\t2embed.dll
[2009/06/16 15:36:30 | 00,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll
[2009/06/16 15:36:30 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fontsub.dll
[2009/06/16 15:36:30 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll
[2009/06/16 05:36:57 | 00,001,632 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\Update Checker.lnk

========== Alternate Data Streams ==========

@Alternate Data Stream - 943 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:24721E3C
@Alternate Data Stream - 194 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E6E3D650
@Alternate Data Stream - 124 bytes -> C:\WINDOWS\System32\zlib.dll:SummaryInformation
@Alternate Data Stream - 124 bytes -> C:\WINDOWS\System32\zlib.dll:DocumentSummaryInformation
@Alternate Data Stream - 108 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:BACD2458
< End of report >




OTL Extras logfile created on: 15/07/2009 21:18:47 - Run 1
OTL by OldTimer - Version 3.0.7.1 Folder = C:\Documents and Settings\Owner\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

2.00 Gb Total Physical Memory | 1.25 Gb Available Physical Memory | 62.71% Memory free
1.85 Gb Paging File | 1.22 Gb Available in Paging File | 66.11% Paging File free
Paging file location(s): [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 148.11 Gb Total Space | 36.60 Gb Free Space | 24.71% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: HOST
Current User Name: Owner
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"3389:TCP" = 3389:TCP:*:Enabled:@xpsp2res.dll,-22009
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger (Microsoft Corporation)
C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java™ Platform SE binary (Sun Microsystems, Inc.)
C:\Program Files\Sony Ericsson\Sony Ericsson Media Manager\MediaManager.exe:*:Enabled:Sony Ericsson Media Manager 1.1 (Sony Creative Software Inc.)
C:\WINDOWS\system32\ali.exe:*:Enabled:ENABLE File not found
C:\WINDOWS\system32\ftp.exe:*:Enabled:File Transfer Program (Microsoft Corporation)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0096A731-71DB-4969-AF1A-651698B246A5}" = Sony Ericsson Media Manager 1.1
"{022DA2C3-81C7-4003-A6BC-1BB147B20097}" = SuppSoft
"{0556F885-2415-4666-B53E-33727E46AEA1}" = The Movies™
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{0AAA9C97-74D4-47CE-B089-0B147EF3553C}" = Windows Live Messenger
"{0B5154C0-8F00-4616-B0AB-6240AE80D9CE}" = SimCity™ Societies
"{10A44844-4465-456E-8C97-80BDD4F68845}" = Windows Live ID Sign-in Assistant
"{14C35072-D7D0-4B29-B5BF-C94E426D77E9}" = Sky Broadband
"{15047293-954F-45B2-8A7B-D7226D2B6931}" = SyncToy
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{193C41B9-1A0F-45E6-8546-41C91C99A5F8}" = Delta Force Xtreme 2
"{196E77C5-F524-4B50-BD1A-2C21EEE9B8F7}" = Microsoft SQL Server 2008 Common Files
"{1CA941F1-5006-487E-9FD4-09F812A7D6B8}" = Norton 360 Help
"{1CB92574-96F2-467B-B793-5CEB35C40C29}" = Image Resizer Powertoy for Windows XP
"{1E2F8AE3-3437-44E6-BB75-E95751D6B83F}" = Picture Package
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{21829177-4DED-4209-AD08-490B3AC9C01A}" = Norton 360
"{228F6876-A313-40A3-91C0-C3CBE6997D09}" = GearDrvs
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2300EE96-0A41-4FAB-BD03-989EC44577A0}" = Acronis Disk Director Suite
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216014FF}" = Java™ 6 Update 14
"{2D617065-1C52-4240-B5BC-C0AE12157777}" = Norton 360
"{2DA85B02-13C0-4E6D-9A76-22E6B3DD0CB2}" = SymNet
"{2FBF04DC-404C-4FA4-BA28-99903080D2B9}" = Magnifier Powertoy for Windows XP
"{2FFE93F0-BB72-4E52-8761-354D1AAA9387}" = Sony Ericsson PC Suite 4.010.00
"{3074EB89-1BCA-4AEF-AFF4-EFB4634C1923}" = Norton Confidential Web Authentification Component
"{342D4AD7-EC4C-4EC8-AEA6-E70F5905A490}" = SQL Server System CLR Types
"{3499E3F2-F39C-47C7-B3E7-369EF2057DD3}" = Leisure Suit Larry - Box Office Bust
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3C52E7DA-C431-4239-B66B-1BF703D5B194}" = Windows Live Photo Gallery
"{3CCAD2EF-CFF2-4637-82AA-AABF370282D3}" = ccCommon
"{4112625F-2D38-49EF-924F-48511BC5CD34}" = Microsoft SQL Server 2008 Database Engine Services
"{4815BD99-96A4-49FE-A885-DCF06E9E4E78}" = Microsoft SQL Server 2008 Database Engine Shared
"{4843B611-8FCB-4428-8C23-31D0A5EAE164}" = Norton Confidential Browser Component
"{49BF48CC-ABB6-4795-9B35-B5DE005D8612}" = Pinnacle Game Profiler
"{4A6F34E2-09E5-4616-B227-4A26A488A6F9}" = Microsoft SQL Server 2008 Common Files
"{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}" = SmartSound Quicktracks Plugin
"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
"{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}" = Junk Mail filter update
"{4E475FD4-4513-4B1D-8DDA-43912B068C99}" = HTML Slideshow Powertoy for Windows XP
"{50120000-1105-0000-0000-0000000FF1CE}" = Microsoft Office 2007 Primary Interop Assemblies
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5C29CB8B-AC1E-4114-8D68-9CD080140D4A}" = Sony USB Driver
"{63A6E9A9-A190-46D4-9430-2DB28654AFD8}" = Norton 360
"{63C1109E-D977-49ED-BCE3-D00D0BF187D6}" = Windows Live Mail
"{659B48CD-0608-4ED5-94C0-0B6C87114F10}" = Apple Mobile Device Support
"{66F0AC35-4805-44BC-A3D4-347D4196F9B3}" = Microsoft Xbox 360 Accessories 1.1
"{6855CCDD-BDF9-48E4-B80A-80DFB96FE36C}" = CmdHere Powertoy For Windows XP
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6A92E5C5-0578-443D-91F3-92ECE5F2CAE2}" = Windows Live Writer
"{6D8D64BE-F500-55B6-705D-DFD08AFE0624}" = Acrobat.com
"{6F69C969-2942-4E7B-B594-75B37664B8BA}" = NVIDIA System Update
"{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762
"{76C24F39-B161-498F-BD8B-C64789812D13}_is1" = ConvertXtoDVD 3.5.2.137
"{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}" = Avanquest update
"{77772678-817F-4401-9301-ED1D01A8DA56}" = SPBBC 32bit
"{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}" = Text-To-Speech-Runtime
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA nTune
"{7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}" = EPSON Web-To-Page
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard
"{90120000-0010-0409-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (English) 12
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_PROR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_PROR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_PROR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_PROR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_PROR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{907B4640-266B-4A21-92FB-CD1A86CD0F63}" = RollerCoaster Tycoon 3 Platinum
"{90A40409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office 2003 Web Components
"{91120000-0014-0000-0000-0000000FF1CE}" = Microsoft Office Professional 2007
"{91120000-0014-0000-0000-0000000FF1CE}_PROR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{92B1B3CC-EC78-45B8-96D0-8B3F11495864}" = Symantec Technical Support Controls
"{94A065E8-455D-41C1-AF1F-F0C1AF8F50F3}" = Microsoft IntelliType Pro 7.0
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9527A496-5DF9-412A-ADC7-168BA5379CA6}" = Microsoft Flight Simulator X
"{995F1E2E-F542-4310-8E1D-9926F5A279B3}" = Windows Live Toolbar
"{9B0F9788-3141-4009-846E-52E59843E963}" = SimCity™ Societies
"{9E9FDDE6-2C26-492A-85A0-05646B3F2795}" = NeroLiveGadget
"{A1BF9950-8CDB-468E-83FA-EACFB00EA7D5}" = Windows Live Sync
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A7050037-F0EA-4BAB-BCD5-FC05507D6147}" = Alt-Tab Task Switcher Powertoy for Windows XP
"{A743BBCC-3438-4BB3-8397-6C9D9AC125A6}" = Timershot Powertoy for Windows XP
"{A7DA2A99-5FB8-4BC8-BDF4-B89BD9BDAF52}" = Emergency 3
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A939D341-5A04-4E0A-BB55-3E65B386432D}" = Microsoft Office Small Business Connectivity Components
"{AC76BA86-7AD7-1033-7B44-A91000000001}" = Adobe Reader 9.1.2
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint
"{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}" = Microsoft Office Live Add-in 1.4
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B32C4059-6E7A-41EF-AD20-56DF1872B923}" = Business Contact Manager for Outlook 2007 SP2
"{B37C842A-B624-46B8-A727-654E72F1C91A}" = Calculator Powertoy for Windows XP
"{B3E57668-ADC8-4147-8F55-5BE91C2FFDF8}" = Symantec Real Time Storage Protection Component
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{B80CC46C-5839-4A48-B051-3CACF23A2718}_is1" = Eraser 5.8.7
"{B857D868-F8B0-43EE-BC2B-D9E5ED21F237}" = Microsoft SQL Server VSS Writer
"{B8E9F8A1-9F4D-43D5-ABD6-1DF067FAA469}" = Microsoft SQL Server 2008 Database Engine Services
"{B94AA0EE-8F75-4773-A25C-E986D94134B2}" = Microsoft RAW Image Thumbnailer and Viewer for Windows XP
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{BD68F46D-8A82-4664-8E68-F87C55BDEFD4}" = Microsoft SQL Server Native Client
"{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = The Sims™ 3
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C39DE425-6CCF-4B12-A101-3CB5CF3AF3AD}" = Slideshow Generator Powertoy for Windows XP
"{C688457E-03FD-4941-923B-A27F4D42A7DD}" = Microsoft SQL Server 2008 Browser
"{C6CA8874-5F22-4AF0-9BE3-016BF299C536}" = Windows Live Essentials
"{C78EAC6F-7A73-452E-8134-DBB2165C5A68}" = QuickTime
"{C965F01C-76EA-4BD7-973E-46236AE312D7}" = Sql Server Customer Experience Improvement Program
"{C9E4932C-8417-4E4C-A0E3-EE534810AB4D}" = ClearType Tuning Control Panel Applet
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = CyberLink PowerDirector
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC016F21-3970-11DE-B878-005056806466}" = Google Earth
"{CC5702D7-86E2-45A8-99D7-E8B976ADCC56}" = iTunes
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE378F36-E404-4244-A33F-F50A2A6D31BD}" = Microsoft Color Control Panel Applet for Windows XP
"{D1C7BB12-BE01-11DC-AAC9-EEBA55D89593}" = SimCity™ Societies Destinations
"{D353CC51-430D-4C6F-9B7E-52003DA1E05A}" = Norton Confidential Web Protection Component
"{D9D937B0-E842-4130-9588-B948E876904A}" = Microsoft SQL Server 2008 Native Client
"{DBA4DB9D-EE51-4944-A419-98AB1F1249C8}" = LiveUpdate Notice (Symantec Corporation)
"{DEDB47A3-C988-4A43-A645-E2CEA571E680}" = Epson Easy Photo Print 2
"{DF870E60-B945-4D57-8A7D-437A21A73D04}" = ScenePD 2
"{E5D52570-5EF1-4576-A434-6CCD92268F0F}" = Google SketchUp 7
"{E9CFBE78-ED91-4FCF-9E6F-210E477E527D}" = NVIDIA System Monitor
"{EF71A531-5B6C-4B20-8D1E-E6379C7FB6D3}" = Microsoft IntelliPoint 7.0
"{EFB5B3B5-A280-4E25-BE1C-634EEFE32C1B}" = AppCore
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1DC7648-8623-442F-92B7-E118DF61872E}" = Microsoft SQL Server 2008 RsFx Driver
"{F251B999-08A9-4704-999C-9962F0DFD88E}" = Virtual Desktop Manager Powertoy for Windows XP
"{F3494AB6-6900-41C6-AF57-823626827ED8}" = Microsoft SQL Server 2008 Database Engine Shared
"{F3FBC559-ED14-45ea-8341-F1E8992525E1}" = Advanced ID Creator
"{F4DB525F-A986-4249-B98B-42A8066251CA}" = AV
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"53F13DB4D9611FD63BE580F06F0729BF236ABE68" = Windows Driver Package - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Advanced SystemCare 3_is1" = Advanced SystemCare 3
"Allok Video Joiner_is1" = Allok Video Joiner 4.4.0113
"AVS DVD Copy_is1" = AVS DVD Copy version 3.1
"AVS Update Manager_is1" = AVS Update Manager 1.0
"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.3
"AXIS Media Control Embedded" = AXIS Media Control Embedded
"Badaboom" = Badaboom 1.2.0.85
"Burn4Free" = Burn4Free CD and DVD
"Business Contact Manager" = Business Contact Manager for Outlook 2007 SP2
"CCleaner" = CCleaner (remove only)
"CPUCooL" = CPUCooL (remove only)
"Deckadance" = Deckadance
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"EADM" = EA Download Manager
"EPSON Scanner" = EPSON Scan
"EPSON Stylus SX100_TX100 User’s Guide" = EPSON Stylus SX100_TX100 Manual
"EPSON SX100 Series" = EPSON SX100 Series Printer Uninstall
"ERUNT_is1" = ERUNT 1.1j
"filehippo.com" = filehippo.com Update Checker
"Firebird SQL Server UK" = Firebird SQL Server - MAGIX Edition
"Game Booster_is1" = Game Booster
"Google Updater" = Google Updater
"GpsTracker V04R06 for WorldWind 1.4" = GpsTracker V04R06 for WorldWind 1.4
"ie8" = Windows Internet Explorer 8
"InstallShield_{0556F885-2415-4666-B53E-33727E46AEA1}" = The Movies™
"InstallShield_{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}" = SmartSound Quicktracks Plugin
"InstallShield_{6F69C969-2942-4E7B-B594-75B37664B8BA}" = NVIDIA System Update
"InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA nTune
"InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = CyberLink PowerDirector
"InstallShield_{E9CFBE78-ED91-4FCF-9E6F-210E477E527D}" = NVIDIA System Monitor
"IObit Security 360_is1" = IObit Security 360 Beta 2.0
"Knight Rider" = Knight Rider
"LiveUpdate" = LiveUpdate 3.2 (Symantec Corporation)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Messenger Plus! Live" = Messenger Plus! Live
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft SQL Server 10" = Microsoft SQL Server 2008
"Microsoft SQL Server 10 Release" = Microsoft SQL Server 2008
"MOBILedit!" = MOBILedit! 3.1
"Mozilla Firefox (3.0.10)" = Mozilla Firefox (3.0.10)
"Mozilla Firefox (3.5b99)" = Mozilla Firefox (3.5b99)
"NASA World Wind 1.4" = NASA World Wind 1.4
"NSS" = Norton Security Scan
"Nuke 5.1v3_is1" = Nuke 5.1v3
"NVIDIA Drivers" = NVIDIA Drivers
"NVRefreshTool_is1" = NVRefreshTool 2.1a
"OpenAL" = OpenAL
"PacManic_Free_is1" = Pac-Manic Worlds ver 1.0
"Picasa 3" = Picasa 3
"Plato iPod Converter Package_is1" = Plato iPod Converter Package 10.06.01
"PROR" = Microsoft Office Professional 2007 Trial
"RealPlayer 12.0" = RealPlayer
"S2TNG" = The Settlers II - 10th Anniversary
"SymSetup.{2D617065-1C52-4240-B5BC-C0AE12157777}" = Norton 360 (Symantec Corporation)
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"wLite" = webcamXP Lite
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"NAMCO ALL-STARS™: DIG DUG™" = NAMCO ALL-STARS™: DIG DUG™
"NAMCO ALL-STARS™: PAC-MAN™" = NAMCO ALL-STARS™: PAC-MAN™
"Star Trigon" = Star Trigon

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 08/07/2009 13:03:29 | Computer Name = HOST | Source = McLogEvent | ID = 5051
Description =

Error - 08/07/2009 13:03:29 | Computer Name = HOST | Source = McLogEvent | ID = 5051
Description =

Error - 11/07/2009 16:26:32 | Computer Name = HOST | Source = McLogEvent | ID = 5051
Description =

Error - 11/07/2009 16:26:32 | Computer Name = HOST | Source = McLogEvent | ID = 5051
Description =

Error - 11/07/2009 18:21:49 | Computer Name = HOST | Source = McLogEvent | ID = 5051
Description =

Error - 12/07/2009 07:52:36 | Computer Name = HOST | Source = MSDTC | ID = 4163
Description = MS DTC log file not found. After ensuring that all Resource Managers
coordinated by MS DTC have no indoubt transactions, please run msdtc -resetlog
to create the log fil

Error - 12/07/2009 07:52:36 | Computer Name = HOST | Source = MSDTC | ID = 4185
Description = MS DTC Transaction Manager start failed. LogInit returned error 0x

Error - 12/07/2009 07:52:36 | Computer Name = HOST | Source = MSDTC | ID = 4112
Description = Could not start the MS DTC Transaction Manage

Error - 12/07/2009 19:34:37 | Computer Name = HOST | Source = McAfee Backup and Restore | ID = 0
Description = 1) Exception Information *********************************************
Exception
Type: System.InvalidOperationException Message: Your McAfee Backup and Restore user
settings file does not exist. TargetSite: Void SetPaths() HelpLink: NULL Source: MBKSilentInstaller

StackTrace
Information ********************************************* at MBKSilentInstaller.MBKUninstallationWizard.SetPaths()

at MBKSilentInstaller.MBKUninstallationWizard.HandleMBKUninstallation(Form owner)

2)
Exception Information ********************************************* Exception Type:
System.IO.FileNotFoundException Message: Could not find file "C:\Documents and Settings\All
Users\Application Data\McAfee\MBK\UserBindingInfo.xml". FileName: C:\Documents and
Settings\All Users\Application Data\McAfee\MBK\UserBindingInfo.xml FusionLog: NULL
TargetSite:
System.Collections.Hashtable LoadBindingInfo() HelpLink: NULL Source: Arbus.Common

StackTrace
Information ********************************************* at Arbus.Common.UserPathConfigurationHelper.LoadBindingInfo()

at MBKSilentInstaller.MBKUninstallationWizard.SetPaths()

Error - 15/07/2009 12:13:35 | Computer Name = HOST | Source = IS360srv.exe | ID = 0
Description =

[ Application Events ]
Error - 08/07/2009 13:03:29 | Computer Name = HOST | Source = McLogEvent | ID = 5051
Description =

Error - 08/07/2009 13:03:29 | Computer Name = HOST | Source = McLogEvent | ID = 5051
Description =

Error - 11/07/2009 16:26:32 | Computer Name = HOST | Source = McLogEvent | ID = 5051
Description =

Error - 11/07/2009 16:26:32 | Computer Name = HOST | Source = McLogEvent | ID = 5051
Description =

Error - 11/07/2009 18:21:49 | Computer Name = HOST | Source = McLogEvent | ID = 5051
Description =

Error - 12/07/2009 07:52:36 | Computer Name = HOST | Source = MSDTC | ID = 4163
Description = MS DTC log file not found. After ensuring that all Resource Managers
coordinated by MS DTC have no indoubt transactions, please run msdtc -resetlog
to create the log fil

Error - 12/07/2009 07:52:36 | Computer Name = HOST | Source = MSDTC | ID = 4185
Description = MS DTC Transaction Manager start failed. LogInit returned error 0x

Error - 12/07/2009 07:52:36 | Computer Name = HOST | Source = MSDTC | ID = 4112
Description = Could not start the MS DTC Transaction Manage

Error - 12/07/2009 19:34:37 | Computer Name = HOST | Source = McAfee Backup and Restore | ID = 0
Description = 1) Exception Information *********************************************
Exception
Type: System.InvalidOperationException Message: Your McAfee Backup and Restore user
settings file does not exist. TargetSite: Void SetPaths() HelpLink: NULL Source: MBKSilentInstaller

StackTrace
Information ********************************************* at MBKSilentInstaller.MBKUninstallationWizard.SetPaths()

at MBKSilentInstaller.MBKUninstallationWizard.HandleMBKUninstallation(Form owner)

2)
Exception Information ********************************************* Exception Type:
System.IO.FileNotFoundException Message: Could not find file "C:\Documents and Settings\All
Users\Application Data\McAfee\MBK\UserBindingInfo.xml". FileName: C:\Documents and
Settings\All Users\Application Data\McAfee\MBK\UserBindingInfo.xml FusionLog: NULL
TargetSite:
System.Collections.Hashtable LoadBindingInfo() HelpLink: NULL Source: Arbus.Common

StackTrace
Information ********************************************* at Arbus.Common.UserPathConfigurationHelper.LoadBindingInfo()

at MBKSilentInstaller.MBKUninstallationWizard.SetPaths()

Error - 15/07/2009 12:13:35 | Computer Name = HOST | Source = IS360srv.exe | ID = 0
Description =

[ System Events ]
Error - 15/07/2009 15:49:19 | Computer Name = HOST | Source = Service Control Manager | ID = 7031
Description = The Windows Live ID Sign-in Assistant service terminated unexpectedly.
It has done this 1 time(s). The following corrective action will be taken in
10000 milliseconds: Restart the service.

Error - 15/07/2009 15:49:44 | Computer Name = HOST | Source = Service Control Manager | ID = 7034
Description = The Cyberlink RichVideo Service(CRVS) service terminated unexpectedly.
It has done this 1 time(s).

Error - 15/07/2009 15:49:46 | Computer Name = HOST | Source = Service Control Manager | ID = 7031
Description = The Windows Live ID Sign-in Assistant service terminated unexpectedly.
It has done this 2 time(s). The following corrective action will be taken in
10000 milliseconds: Restart the service.

Error - 15/07/2009 15:50:03 | Computer Name = HOST | Source = DCOM | ID = 10010
Description = The server {0002DF01-0000-0000-C000-000000000046} did not register
with DCOM within the required timeout.

Error - 15/07/2009 15:50:04 | Computer Name = HOST | Source = Service Control Manager | ID = 7034
Description = The Java Quick Starter service terminated unexpectedly. It has done
this 1 time(s).

Error - 15/07/2009 15:50:17 | Computer Name = HOST | Source = Service Control Manager | ID = 7034
Description = The Application Layer Gateway Service service terminated unexpectedly.
It has done this 1 time(s).

Error - 15/07/2009 16:07:58 | Computer Name = HOST | Source = Service Control Manager | ID = 7000
Description = The McAfee Real-time Scanner service failed to start due to the following
error: %%3

Error - 15/07/2009 16:07:58 | Computer Name = HOST | Source = Service Control Manager | ID = 7000
Description = The Nero BackItUp Scheduler 4.0 service failed to start due to the
following error: %%2

Error - 15/07/2009 16:07:58 | Computer Name = HOST | Source = Service Control Manager | ID = 7001
Description = The Windows Media Player Network Sharing Service service depends on
the Universal Plug and Play Device Host service which failed to start because of
the following error: %%1058

Error - 15/07/2009 16:08:59 | Computer Name = HOST | Source = Service Control Manager | ID = 7034
Description = The PinnacleUpdate Service service terminated unexpectedly. It has
done this 1 time(s).

[ TuneUp Events ]
Error - 10/06/2009 02:10:15 | Computer Name = STEPHEN-1EA1DB2 | Source = TuneUp Program Statistics | ID = 131840
Description =

Error - 10/06/2009 02:10:15 | Computer Name = STEPHEN-1EA1DB2 | Source = TuneUp Program Statistics | ID = 131840
Description =

Error - 14/06/2009 01:29:12 | Computer Name = STEPHEN-1EA1DB2 | Source = TuneUp Program Statistics | ID = 131840
Description =

Error - 14/06/2009 01:34:52 | Computer Name = STEPHEN-1EA1DB2 | Source = TuneUp Program Statistics | ID = 131840
Description =

Error - 14/06/2009 02:25:54 | Computer Name = STEPHEN-1EA1DB2 | Source = TuneUp Program Statistics | ID = 131840
Description =


< End of report >
rooter report
Rooter.exe (v1.0.2) by Eric_71
.
SeDebugPrivilege granted successfully ...
.
Windows XP Home Edition (5.1.2600) Service Pack 3
[32_bits] - x86 Family 15 Model 107 Stepping 2, AuthenticAMD
.
[wscsvc] (Security Center) RUNNING (state:4)
[SharedAccess] RUNNING (state:4)
Windows Firewall -> Enabled
.
Internet Explorer 8.0.6001.18702
Mozilla Firefox 3.5b99 (en-US)
.
A:\ [Removable]
C:\ [Fixed-NTFS] .. ( Total:148 Go - Free:36 Go )
D:\ [CD_Rom]
.
Scan : 21:15.18
Path : C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\PXJ9KF9X\Rooter[1].exe
User : Owner ( Administrator -> YES )
.
----------------------\\ Processes
.
Locked [System Process] (0)
______ System (4)
______ \SystemRoot\System32\smss.exe (820)
______ \??\C:\WINDOWS\system32\csrss.exe (932)
______ \??\C:\WINDOWS\system32\winlogon.exe (1132)
______ C:\WINDOWS\system32\services.exe (1192)
______ C:\WINDOWS\system32\lsass.exe (1204)
______ C:\WINDOWS\system32\nvsvc32.exe (1388)
______ C:\WINDOWS\system32\svchost.exe (1432)
______ C:\WINDOWS\system32\svchost.exe (1480)
______ C:\WINDOWS\System32\svchost.exe (1576)
______ C:\WINDOWS\system32\svchost.exe (1756)
______ C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (1796)
______ C:\WINDOWS\system32\spoolsv.exe (420)
______ C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (1164)
______ C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe (1324)
______ C:\Program Files\Bonjour\mDNSResponder.exe (1396)
______ C:\Program Files\CPUCooL\CooLSrv.exe (1524)
______ C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40ST7.EXE (1740)
______ C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE (296)
______ C:\WINDOWS\System32\svchost.exe (696)
______ C:\Program Files\IObit\IObit Security 360\IS360srv.exe (740)
______ C:\Program Files\Java\jre6\bin\jqs.exe (208)
______ c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe (216)
______ C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe (1652)
______ C:\Program Files\CyberLink\Shared files\RichVideo.exe (504)
______ C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (836)
______ C:\WINDOWS\System32\snmp.exe (904)
______ c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe (852)
______ c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (988)
______ C:\Program Files\NVIDIA Corporation\System Update\UpdateCenterService.exe (804)
______ C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (1404)
______ C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (3208)
______ C:\WINDOWS\RTHDCPL.EXE (3676)
______ C:\Program Files\Microsoft IntelliType Pro\itype.exe (3784)
______ C:\Program Files\Microsoft IntelliPoint\ipoint.exe (3804)
______ C:\Program Files\Common Files\Symantec Shared\ccApp.exe (3836)
______ C:\Program Files\IObit\IObit Security 360\IS360tray.exe (3972)
______ C:\Program Files\Windows Live\Messenger\msnmsgr.exe (4044)
______ C:\WINDOWS\system32\wuauclt.exe (4092)
______ C:\WINDOWS\System32\alg.exe (3124)
______ C:\WINDOWS\system32\ctfmon.exe (2276)
______ C:\WINDOWS\system32\taskmgr.exe (3624)
______ C:\WINDOWS\explorer.exe (3436)
______ C:\Program Files\Internet Explorer\iexplore.exe (3876)
______ C:\Program Files\Internet Explorer\iexplore.exe (2572)
______ C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (2452)
______ C:\Program Files\Internet Explorer\iexplore.exe (2824)
______ C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\PXJ9KF9X\Rooter[1].exe (1636)
.
----------------------\\ Device\Harddisk0\
.
\Device\Harddisk0 [Sectors : 63 x 512 Bytes]
.
\Device\Harddisk0\Partition1 --[ MBR ]-- (Start_Offset:32256 | Length:159027531264)
.
----------------------\\ Scheduled Tasks
.
C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
C:\WINDOWS\Tasks\At1.job
C:\WINDOWS\Tasks\At10.job
C:\WINDOWS\Tasks\At11.job
C:\WINDOWS\Tasks\At12.job
C:\WINDOWS\Tasks\At13.job
C:\WINDOWS\Tasks\At14.job
C:\WINDOWS\Tasks\At15.job
C:\WINDOWS\Tasks\At16.job
C:\WINDOWS\Tasks\At17.job
C:\WINDOWS\Tasks\At18.job
C:\WINDOWS\Tasks\At19.job
C:\WINDOWS\Tasks\At2.job
C:\WINDOWS\Tasks\At20.job
C:\WINDOWS\Tasks\At21.job
C:\WINDOWS\Tasks\At22.job
C:\WINDOWS\Tasks\At23.job
C:\WINDOWS\Tasks\At24.job
C:\WINDOWS\Tasks\At3.job
C:\WINDOWS\Tasks\At4.job
C:\WINDOWS\Tasks\At5.job
C:\WINDOWS\Tasks\At6.job
C:\WINDOWS\Tasks\At7.job
C:\WINDOWS\Tasks\At8.job
C:\WINDOWS\Tasks\At9.job
C:\WINDOWS\Tasks\AWC AutoSweep.job
C:\WINDOWS\Tasks\AWC Update.job
C:\WINDOWS\Tasks\desktop.ini
C:\WINDOWS\Tasks\Google Software Updater.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\IObit Security 360.job
C:\WINDOWS\Tasks\Norton Security Scan for Owner.job
C:\WINDOWS\Tasks\SA.DAT
C:\WINDOWS\Tasks\User_Feed_Synchronization-{1A6096CA-B84D-4D67-9C57-5CD6324F0733}.job
C:\WINDOWS\Tasks\XrayMyPC.job
.
----------------------\\ Registry
.
.
----------------------\\ Files & Folders
.
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis DiskEditor DIY crack by CW2K.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis DiskEditor v6.0 Shareware crack by FFF.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Server v10.0.2064 keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Server v10.0.2067 German keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Server v10.0.2077 German keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Server v10.0.2077 keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Server v10.0.2089 German keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite 10.0 Build 2077 keygen by ZWT.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v10.0.2064 keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v10.0.2067 German keygen by TBE.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v10.0.2077 German keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v10.0.2077 keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v10.0.2077 Russian keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v10.0.2089 German keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v10.0.2089 keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v9.0 Build 508 keygen by ROR.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v9.0 Build 554 keygen by SSG.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v9.0 keygen by PARADOX.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v9.0.508 keygen by ROR.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v9.0.518 German keygen by SSG.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v9.0.518 keygen by SSG.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v9.0.524 German keygen by SSG.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v9.0.524 keygen by SSG.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v9.0.533 keygen by SSG.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v9.0.534 German keygen by SSG.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v9.0.534 keygen by SSG.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v9.0.537 German keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v9.0.537 keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v9.0.538 German keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v9.0.538 keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v9.0.549 German keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v9.0.549 keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v9.0.553 Czech keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v9.0.553 German keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v9.0.553 keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v9.0.554 German keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v9.0.554 keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Director Suite v9.0.554 Russian keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Editor v6.0 Build 359 keygen by ROR.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Disk Editor v6.0 Build 360 keygen by ROR.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Drive Cleanser v6.0 Build 372 keygen by ROR.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Drive Cleanser v6.0 Build 383 keygen by ROR.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Drive Cleanser v6.0.412 German keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Drive Cleanser v6.0.412 keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Drive Cleanser v6.0.412 Russian keygen by Z.W.T.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Migrate Easy v6.0 Build 371 keygen by ROR.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Migrate Easy v6.0 Build 390 keygen by ROR.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Migrate Easy v6.0 Build 395 keygen by ROR.zip
C:\DOCUME~1\Owner\Desktop\Acronis\acronis_YOMATA\acronis_YOMATA\Acronis\[acronis] Cracks\Acronis Migrate Easy v7.0.619 keygen by AGAiN.zip
C:\DOCUME~1\Owner\Desktop\JD\JDownloader 0.6.193\downloads\norton 360 with 11 yr keygen\U P N 0 R 27 By Wei Woy\360 norton 2007\360 norton\keygen.rar
==> Cracks & Keygens <==
.
----------------------\\ Scan completed at 21:15.46
.
C:\Rooter$\Rooter_1.txt - (15/07/2009 | 21:15.46).c
  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Forum
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP