Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Please help..weird virus....

Started by johnny99 , Jul 23 2009 12:09 PM

  • Please log in to reply

#1
johnny99
Posted 23 July 2009 - 12:09 PM

johnny99

    New Member

  • Member
  • Pip
  • 4 posts
Hi! I was going to watch scary movie 2 online, but the website is bad. my anti-virus software showed it found virus right away. the virus is: Trojan. win32.obfuscated.fse. my anti-virus says it deleted the virus but it just kept showing up...
right now, every time i turned on the pc, i get the same virus warning, and i keep hearing the IE clicking sound, but i dont use IE at all. i downloaded the combofix but it would not active. and sometime an ad would pop up on ie.
please help! and another thing: my keyboard is not working...i split water on it...
Thank you!!
  • 0

Advertisements

#2
johnny99
Posted 23 July 2009 - 12:14 PM

johnny99

    New Member

  • Topic Starter
  • Member
  • Pip
  • 4 posts
also, i always get an error message about google downloader
  • 0

#3
johnny99
Posted 23 July 2009 - 12:45 PM

johnny99

    New Member

  • Topic Starter
  • Member
  • Pip
  • 4 posts
here's the OTS report:
OTS logfile created on: 7/23/2009 1:39:55 PM - Run 1
OTS by OldTimer - Version 3.0.10.0	 Folder = C:\Documents and Settings\John Vincent\My Documents\Downloads
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
1.99 Gb Total Physical Memory | 0.95 Gb Available Physical Memory | 47.64% Memory free
3.84 Gb Paging File | 2.85 Gb Available in Paging File | 74.06% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 111.54 Gb Total Space | 4.77 Gb Free Space | 4.27% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 658.78 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: TONY
Current User Name: John Vincent
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: Off
File Age = 30 Days
 
[Processes - Safe List]
agrsmmsg.exe -> C:\WINDOWS\AGRSMMSG.exe -> [2005/10/15 09:29:08 | 00,088,203 | ---- | M] (Agere Systems)
aim6.exe -> C:\Program Files\AIM6\aim6.exe -> [2009/05/19 00:23:16 | 00,049,968 | ---- | M] (AOL LLC)
aimtbserver.exe -> c:\program files\aim toolbar\aimtbServer.exe -> [2009/05/06 13:14:28 | 00,140,584 | ---- | M] (AOL LLC.)
aolacsd.exe -> C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe -> [2004/10/20 08:40:04 | 00,010,328 | R--- | M] (America Online)
aolsoftware.exe -> C:\Program Files\AIM6\aolsoftware.exe -> [2008/11/06 12:33:00 | 00,041,264 | ---- | M] (AOL LLC)
aoltpspd.exe -> C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltpspd.exe -> [2004/10/15 15:54:12 | 00,046,768 | ---- | M] (America Online Inc)
aoltsmon.exe -> C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe -> [2004/10/15 15:54:14 | 00,100,016 | ---- | M] (America Online, Inc)
applemobiledeviceservice.exe -> C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -> [2009/06/05 11:48:14 | 00,144,712 | ---- | M] (Apple Inc.)
bjmyprt.exe -> C:\Program Files\Canon\MyPrinter\BJMyPrt.exe -> [2006/03/21 20:30:00 | 01,191,936 | ---- | M] (CANON INC.)
ccenter.exe -> C:\Rising\Rav\CCENTER.EXE -> [2008/12/30 12:32:58 | 00,113,264 | ---- | M] (Beijing Rising Information Technology Co., Ltd.)
cfsvcs.exe -> C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe -> [2005/01/17 19:38:38 | 00,040,960 | ---- | M] (TOSHIBA CORPORATION)
conime.exe -> C:\WINDOWS\System32\conime.exe -> [2008/04/13 19:12:15 | 00,027,648 | ---- | M] (Microsoft Corporation)
daemon.exe -> C:\Programs\D-Tools\daemon.exe -> [2004/08/22 17:05:02 | 00,081,920 | ---- | M] (DAEMON'S HOME)
dlactrlw.exe -> C:\WINDOWS\System32\dla\DLACTRLW.exe -> [2005/10/06 08:20:00 | 00,122,940 | ---- | M] (Sonic Solutions)
domino.exe -> C:\WINDOWS\Domino.exe -> [2006/07/04 01:16:32 | 00,049,152 | ---- | M] ()
dot1xcfg.exe -> C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe -> [2005/11/28 13:37:52 | 00,397,381 | ---- | M] (Intel Corporation)
dvdramsv.exe -> C:\WINDOWS\System32\DVDRAMSV.exe -> [2004/08/28 03:33:00 | 00,110,592 | ---- | M] (Matsushita Electric Industrial Co., Ltd.)
ehmsas.exe -> C:\WINDOWS\eHome\ehmsas.exe -> [2005/08/05 16:56:28 | 00,046,592 | ---- | M] (Microsoft Corporation)
ehrecvr.exe -> C:\WINDOWS\eHome\ehRecvr.exe -> [2005/10/11 11:40:32 | 00,237,568 | ---- | M] (Microsoft Corporation)
ehsched.exe -> C:\WINDOWS\eHome\ehSched.exe -> [2005/08/05 16:56:32 | 00,102,912 | ---- | M] (Microsoft Corporation)
ehtray.exe -> C:\WINDOWS\ehome\ehtray.exe -> [2005/08/05 16:56:34 | 00,064,512 | ---- | M] (Microsoft Corporation)
evteng.exe -> C:\Program Files\Intel\Wireless\Bin\EvtEng.exe -> [2005/11/28 13:29:00 | 00,114,753 | ---- | M] (Intel Corporation)
explorer.exe -> C:\WINDOWS\explorer.exe -> [2008/04/13 19:12:19 | 01,033,728 | ---- | M] (Microsoft Corporation)
firefox.exe -> C:\Program Files\Mozilla Firefox\firefox.exe -> [2009/07/15 15:30:39 | 00,908,280 | ---- | M] (Mozilla Corporation)
googledesktop.exe -> C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe -> [2008/11/10 21:22:34 | 00,030,192 | ---- | M] (Google)
googlepinyindaemon.exe -> C:\Google\Google Pinyin\GooglePinyinDaemon.exe -> [2008/10/17 03:38:36 | 00,308,720 | ---- | M] (Google Inc.)
hkcmd.exe -> C:\WINDOWS\System32\hkcmd.exe -> [2005/11/28 00:52:00 | 00,077,824 | ---- | M] (Intel Corporation)
ifrmewrk.exe -> C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe -> [2005/11/28 13:41:50 | 00,602,182 | ---- | M] (Intel Corporation)
igfxpers.exe -> C:\WINDOWS\System32\igfxpers.exe -> [2005/11/28 00:55:58 | 00,118,784 | ---- | M] (Intel Corporation)
igfxtray.exe -> C:\WINDOWS\System32\igfxtray.exe -> [2005/11/28 00:55:14 | 00,098,304 | ---- | M] (Intel Corporation)
ipodservice.exe -> C:\Program Files\iPod\bin\iPodService.exe -> [2009/07/13 14:02:50 | 00,542,496 | ---- | M] (Apple Inc.)
ituneshelper.exe -> C:\iTunes\iTunesHelper.exe -> [2009/07/13 14:03:10 | 00,292,128 | ---- | M] (Apple Inc.)
j2gdllcmd.exe -> C:\Program Files\j2 Messenger 4.4\J2GDllCmd.exe -> [2008/10/07 16:53:53 | 00,095,744 | ---- | M] (j2 Global Communications, Inc.)
j2gtray.exe -> C:\Program Files\j2 Messenger 4.4\J2GTray.exe -> [2008/10/07 16:58:33 | 00,656,896 | ---- | M] (j2 Global Communications, Inc.)
jqs.exe -> C:\Program Files\Java\jre6\bin\jqs.exe -> [2008/08/26 18:23:34 | 00,147,456 | ---- | M] (Sun Microsystems, Inc.)
jusched.exe -> C:\Program Files\Java\jre6\bin\jusched.exe -> [2008/08/26 18:23:35 | 00,144,792 | ---- | M] (Sun Microsystems, Inc.)
linkmagic.exe -> C:\Program Files\LINKMAGIC\LINKMAGIC.EXE -> [2006/03/10 17:58:26 | 01,822,720 | ---- | M] (Konica Minolta)
ltmoh.exe -> C:\Program Files\ltmoh\Ltmoh.exe -> [2004/08/18 06:37:44 | 00,184,320 | ---- | M] (Agere Systems)
mcrdsvc.exe -> C:\WINDOWS\ehome\mcrdsvc.exe -> [2005/08/05 16:27:08 | 00,099,328 | ---- | M] (Microsoft Corporation)
mdnsresponder.exe -> C:\Program Files\Bonjour\mDNSResponder.exe -> [2008/12/12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.)
msa.exe -> C:\WINDOWS\msa.exe -> [2009/07/22 23:37:59 | 00,137,728 | ---- | M] ()
msmsgs.exe -> C:\Program Files\Messenger\msmsgs.exe -> [2008/04/13 19:12:28 | 01,695,232 | ---- | M] (Microsoft Corporation)
msswchx.exe -> C:\WINDOWS\System32\MSSWCHX.EXE -> [2004/08/10 07:00:00 | 00,006,656 | ---- | M] (Microsoft Corporation)
ndstray.exe -> C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe -> [2005/11/02 19:41:04 | 00,978,944 | ---- | M] (TOSHIBA CORPORATION)
onenotem.exe -> C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE -> [2007/04/19 13:49:52 | 00,064,864 | ---- | M] (Microsoft Corporation)
opwarese4.exe -> C:\ScanSoft\OmniPageSE4.0\OpwareSE4.exe -> [2006/03/21 13:19:40 | 00,069,632 | ---- | M] (ScanSoft, Inc.)
osk.exe -> C:\WINDOWS\System32\osk.exe -> [2008/04/13 19:12:31 | 00,215,552 | ---- | M] (Microsoft Corporation)
ots.exe -> C:\Documents and Settings\John Vincent\My Documents\Downloads\OTS.exe -> [2009/07/23 13:39:45 | 00,514,560 | ---- | M] (OldTimer Tools)
pinger.exe -> C:\toshiba\ivp\ism\pinger.exe -> [2005/03/17 20:37:26 | 00,151,552 | ---- | M] (TOSHIBA Corporation)
psqltray.exe -> C:\Program Files\Protector Suite QL\psqltray.exe -> [2005/12/21 23:33:02 | 00,046,592 | ---- | M] (UPEK Inc.)
qttask.exe -> C:\Program Files\QuickTime\QTTask.exe -> [2009/05/26 17:18:30 | 00,413,696 | ---- | M] (Apple Inc.)
ramasst.exe -> C:\WINDOWS\System32\RAMASST.exe -> [2004/08/28 03:37:00 | 00,155,648 | ---- | M] (Matsushita Electric Industrial Co., Ltd.)
ravmond.exe -> C:\Rising\Rav\RavMonD.exe -> [2009/05/11 23:49:48 | 00,133,744 | ---- | M] (Beijing Rising Information Technology Co., Ltd.)
ravtask.exe -> C:\Rising\Rav\RavTask.exe -> [2009/04/13 19:37:11 | 00,129,648 | ---- | M] (Beijing Rising Information Technology Co., Ltd.)
realsched.exe -> C:\Program Files\Common Files\Real\Update_OB\realsched.exe -> [2009/02/21 01:21:35 | 00,198,160 | ---- | M] (RealNetworks, Inc.)
regsrvc.exe -> C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe -> [2005/11/28 13:28:14 | 00,217,164 | ---- | M] (Intel Corporation)
rocketdock.exe -> C:\RocketDock\RocketDock.exe -> [2007/09/02 14:58:52 | 00,495,616 | ---- | M] ()
rsnetsvr.exe -> C:\Rising\Rav\rsnetsvr.exe -> [2009/03/16 10:39:33 | 00,494,192 | ---- | M] (Beijing Rising Information Technology Co., Ltd.)
rstray.exe -> C:\Rising\Rav\RsTray.exe -> [2009/01/08 19:08:40 | 00,141,936 | ---- | M] (Beijing Rising Information Technology Co., Ltd.)
s24evmon.exe -> C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe -> [2005/11/28 13:31:32 | 00,540,745 | ---- | M] (Intel Corporation )
scanfrm.exe -> C:\Rising\Rav\ScanFrm.exe -> [2009/06/30 02:18:26 | 00,051,824 | ---- | M] (Beijing Rising Information Technology Co., Ltd.)
smoothview.exe -> C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe -> [2005/04/26 19:13:20 | 00,122,880 | ---- | M] (TOSHIBA Corporation)
stmgr.exe -> C:\StormII\stMgr.exe -> [2009/07/06 10:52:28 | 00,727,136 | ---- | M] (北京暴风网际科技有限公司)
stormliv.exe -> C:\StormII\stormliv.exe -> [2009/05/13 17:31:40 | 00,596,064 | ---- | M] (北京暴风网际科技有限公司)
swupdtmr.exe -> c:\TOSHIBA\IVP\swupdate\swupdtmr.exe -> [2005/07/12 20:14:42 | 00,040,960 | ---- | M] ()
syntpenh.exe -> C:\Program Files\Synaptics\SynTP\SynTPEnh.exe -> [2005/12/16 03:32:58 | 00,761,945 | ---- | M] (Synaptics, Inc.)
syntplpr.exe -> C:\Program Files\Synaptics\SynTP\SynTPLpr.exe -> [2005/12/16 03:34:16 | 00,082,009 | ---- | M] (Synaptics, Inc.)
tappsrv.exe -> C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe -> [2005/12/20 14:22:14 | 00,035,328 | ---- | M] (TOSHIBA Corp.)
tdispvol.exe -> C:\WINDOWS\System32\TDispVol.exe -> [2005/03/11 18:03:16 | 00,073,728 | ---- | M] (TOSHIBA Corporation)
thotkey.exe -> C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe -> [2006/01/05 17:02:24 | 00,352,256 | ---- | M] (TOSHIBA)
toscdspd.exe -> C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe -> [2004/12/30 03:32:20 | 00,065,536 | ---- | M] (TOSHIBA)
toshiba.exe -> C:\Program Files\Synaptics\SynTP\Toshiba.exe -> [2005/12/16 03:21:00 | 00,151,552 | ---- | M] (Synaptics, Inc.)
tpsbattm.exe -> C:\WINDOWS\System32\TPSBattM.exe -> [2005/05/31 23:59:58 | 00,045,056 | ---- | M] (TOSHIBA Corporation)
tvstray.exe -> C:\Program Files\Toshiba\Tvs\TvsTray.exe -> [2005/11/30 15:25:22 | 00,073,728 | ---- | M] (TOSHIBA Corporation)
zcfgsvc.exe -> C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe -> [2005/12/05 14:37:40 | 00,667,718 | ---- | M] (Intel Corporation)
zssnp211.exe -> C:\WINDOWS\ZSSnp211.exe -> [2006/08/08 05:05:08 | 00,049,152 | ---- | M] (Vimicro)
 
[Win32 Services - Safe List]
(AOL ACS) AOL Connectivity Service [Win32_Own | Auto | Running] -> C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe -> [2004/10/20 08:40:04 | 00,010,328 | R--- | M] (America Online)
(AOL TopSpeedMonitor) AOL TopSpeed Monitor [Win32_Own | Auto | Running] -> C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe -> [2004/10/15 15:54:14 | 00,100,016 | ---- | M] (America Online, Inc)
(Apple Mobile Device) Apple Mobile Device [Win32_Own | Auto | Running] -> C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -> [2009/06/05 11:48:14 | 00,144,712 | ---- | M] (Apple Inc.)
(aspnet_state) ASP.NET State Service [Win32_Own | On_Demand | Stopped] -> C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -> [2007/10/24 01:47:22 | 00,033,800 | ---- | M] (Microsoft Corporation)
(Bonjour Service) Bonjour Service [Win32_Own | Auto | Running] -> C:\Program Files\Bonjour\mDNSResponder.exe -> [2008/12/12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.)
(ccosm) Contrl Center of Storm Media [Win32_Own | Auto | Running] -> C:\StormII\stormliv.exe -> [2009/05/13 17:31:40 | 00,596,064 | ---- | M] (北京暴风网际科技有限公司)
(CFSvcs) ConfigFree Service [Win32_Own | Auto | Running] -> C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe -> [2005/01/17 19:38:38 | 00,040,960 | ---- | M] (TOSHIBA CORPORATION)
(clr_optimization_v2.0.50727_32) .NET Runtime Optimization Service v2.0.50727_X86 [Win32_Own | On_Demand | Stopped] -> C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -> [2007/10/24 01:47:40 | 00,070,144 | ---- | M] (Microsoft Corporation)
(DVD-RAM_Service) DVD-RAM_Service [Win32_Own | Auto | Running] -> C:\WINDOWS\System32\DVDRAMSV.exe -> [2004/08/28 03:33:00 | 00,110,592 | ---- | M] (Matsushita Electric Industrial Co., Ltd.)
(ehRecvr) Media Center Receiver Service [Win32_Own | Auto | Running] -> C:\WINDOWS\eHome\ehRecvr.exe -> [2005/10/11 11:40:32 | 00,237,568 | ---- | M] (Microsoft Corporation)
(ehSched) Media Center Scheduler Service [Win32_Own | Auto | Running] -> C:\WINDOWS\eHome\ehSched.exe -> [2005/08/05 16:56:32 | 00,102,912 | ---- | M] (Microsoft Corporation)
(EvtEng) Intel(R) PROSet/Wireless Event Log [Win32_Own | Auto | Running] -> C:\Program Files\Intel\Wireless\Bin\EvtEng.exe -> [2005/11/28 13:29:00 | 00,114,753 | ---- | M] (Intel Corporation)
(GoogleDesktopManager-092308-165331) Google Desktop Manager 5.8.809.23506 [Win32_Own | On_Demand | Stopped] -> C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe -> [2008/11/10 21:22:34 | 00,030,192 | ---- | M] (Google)
(gupdate1c92757b4c87b26) Google Update Service (gupdate1c92757b4c87b26) [Win32_Own | Auto | Stopped] -> C:\Program Files\Google\Update\GoogleUpdate.exe -> [2008/10/05 21:03:12 | 00,133,104 | ---- | M] (Google Inc.)
(gusvc) Google Software Updater [Win32_Own | Auto | Stopped] -> C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -> [2009/03/23 23:04:17 | 00,183,280 | ---- | M] (Google)
(helpsvc) Help and Support [Win32_Shared | Auto | Running] -> C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -> [2008/04/13 19:12:02 | 00,038,400 | ---- | M] (Microsoft Corporation)
(IDriverT) InstallDriver Table Manager [Win32_Own | On_Demand | Stopped] -> C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -> [2005/04/04 00:41:10 | 00,069,632 | ---- | M] (Macrovision Corporation)
(iPod Service) iPod Service [Win32_Own | On_Demand | Running] -> C:\Program Files\iPod\bin\iPodService.exe -> [2009/07/13 14:02:50 | 00,542,496 | ---- | M] (Apple Inc.)
(JavaQuickStarterService) Java Quick Starter [Win32_Own | Auto | Running] -> C:\Program Files\Java\jre6\bin\jqs.exe -> [2008/08/26 18:23:34 | 00,147,456 | ---- | M] (Sun Microsystems, Inc.)
(McrdSvc) Media Center Extender Service [Win32_Own | Auto | Running] -> C:\WINDOWS\ehome\mcrdsvc.exe -> [2005/08/05 16:27:08 | 00,099,328 | ---- | M] (Microsoft Corporation)
(MHN) MHN [Win32_Shared | On_Demand | Stopped] -> C:\WINDOWS\System32\mhn.dll -> [2004/08/10 07:11:50 | 00,085,504 | ---- | M] (Microsoft Corporation)
(ose) Office Source Engine [Win32_Own | On_Demand | Stopped] -> C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -> [2003/07/28 15:28:22 | 00,089,136 | ---- | M] (Microsoft Corporation)
(RavCCenter) Rav Process Communication Center [Win32_Own | Auto | Stopped] -> C:\Rising\Rav\CCENTER.EXE -> [2008/12/30 12:32:58 | 00,113,264 | ---- | M] (Beijing Rising Information Technology Co., Ltd.)
(RavTask) Rising RavTask Manager [Win32_Own | Auto | Running] -> C:\Rising\Rav\RavTask.exe -> [2009/04/13 19:37:11 | 00,129,648 | ---- | M] (Beijing Rising Information Technology Co., Ltd.)
(RegSrvc) Intel(R) PROSet/Wireless Registry Service [Win32_Own | Auto | Running] -> C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe -> [2005/11/28 13:28:14 | 00,217,164 | ---- | M] (Intel Corporation)
(RsRavMon) Rising RealTime Monitor [Win32_Own | Auto | Stopped] -> C:\Rising\Rav\RavMonD.exe -> [2009/05/11 23:49:48 | 00,133,744 | ---- | M] (Beijing Rising Information Technology Co., Ltd.)
(RsScanSrv) Rising Scan Service [Win32_Own | Auto | Stopped] -> C:\Rising\Rav\ScanFrm.exe -> [2009/06/30 02:18:26 | 00,051,824 | ---- | M] (Beijing Rising Information Technology Co., Ltd.)
(S24EventMonitor) Intel(R) PROSet/Wireless Service [Win32_Own | Auto | Running] -> C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe -> [2005/11/28 13:31:32 | 00,540,745 | ---- | M] (Intel Corporation )
(Swupdtmr) Swupdtmr [Win32_Own | Auto | Running] -> c:\TOSHIBA\IVP\swupdate\swupdtmr.exe -> [2005/07/12 20:14:42 | 00,040,960 | ---- | M] ()
(TAPPSRV) TOSHIBA Application Service [Win32_Own | Auto | Running] -> C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe -> [2005/12/20 14:22:14 | 00,035,328 | ---- | M] (TOSHIBA Corp.)
(UMWdf) Windows User Mode Driver Framework [Win32_Own | On_Demand | Stopped] -> C:\WINDOWS\System32\wdfmgr.exe -> [2005/08/03 21:29:52 | 00,038,912 | ---- | M] (Microsoft Corporation)
(Viewpoint Manager Service) Viewpoint Manager Service [Win32_Own | Auto | Stopped] -> C:\Program Files\Viewpoint\Common\ViewpointService.exe -> [2007/01/04 16:38:08 | 00,024,652 | ---- | M] (Viewpoint Corporation)
 
[Driver Services - Safe List]
(AegisP) AEGIS Protocol (IEEE 802.1x) v3.4.9.0 [Kernel | Auto | Running] -> C:\WINDOWS\System32\DRIVERS\AegisP.sys -> [2008/05/05 22:03:56 | 00,021,275 | ---- | M] (Meetinghouse Data Communications)
(AgereSoftModem) TOSHIBA V92 Software Modem [Kernel | On_Demand | Running] -> C:\WINDOWS\System32\DRIVERS\AGRSM.sys -> [2005/11/15 12:00:22 | 01,122,656 | ---- | M] (Agere Systems)
(d347bus) d347bus [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\d347bus.sys -> [2004/08/22 16:31:10 | 00,155,136 | ---- | M] ( )
(d347prt) d347prt [Kernel | Boot | Running] -> C:\WINDOWS\System32\Drivers\d347prt.sys -> [2004/08/22 16:31:48 | 00,005,248 | ---- | M] ( )
(DLABOIOM) DLABOIOM [File_System | Auto | Running] -> C:\WINDOWS\System32\DLA\DLABOIOM.SYS -> [2005/10/06 08:20:00 | 00,025,628 | ---- | M] (Sonic Solutions)
(DLACDBHM) DLACDBHM [File_System | System | Running] -> C:\WINDOWS\System32\Drivers\DLACDBHM.SYS -> [2005/08/25 15:16:52 | 00,005,628 | ---- | M] (Sonic Solutions)
(DLADResN) DLADResN [File_System | Auto | Running] -> C:\WINDOWS\System32\DLA\DLADResN.SYS -> [2005/10/06 08:20:00 | 00,002,496 | ---- | M] (Sonic Solutions)
(DLAIFS_M) DLAIFS_M [File_System | Auto | Running] -> C:\WINDOWS\System32\DLA\DLAIFS_M.SYS -> [2005/10/06 08:20:00 | 00,086,524 | ---- | M] (Sonic Solutions)
(DLAOPIOM) DLAOPIOM [File_System | Auto | Running] -> C:\WINDOWS\System32\DLA\DLAOPIOM.SYS -> [2005/10/06 08:20:00 | 00,014,684 | ---- | M] (Sonic Solutions)
(DLAPoolM) DLAPoolM [File_System | Auto | Running] -> C:\WINDOWS\System32\DLA\DLAPoolM.SYS -> [2005/10/06 08:20:00 | 00,006,364 | ---- | M] (Sonic Solutions)
(DLARTL_N) DLARTL_N [File_System | System | Running] -> C:\WINDOWS\System32\Drivers\DLARTL_N.SYS -> [2005/08/25 15:16:16 | 00,022,684 | ---- | M] (Sonic Solutions)
(DLAUDFAM) DLAUDFAM [File_System | Auto | Running] -> C:\WINDOWS\System32\DLA\DLAUDFAM.SYS -> [2005/10/06 08:20:00 | 00,094,332 | ---- | M] (Sonic Solutions)
(DLAUDF_M) DLAUDF_M [File_System | Auto | Running] -> C:\WINDOWS\System32\DLA\DLAUDF_M.SYS -> [2005/10/06 08:20:00 | 00,087,036 | ---- | M] (Sonic Solutions)
(DRVMCDB) DRVMCDB [Kernel | Boot | Running] -> C:\WINDOWS\System32\Drivers\DRVMCDB.SYS -> [2005/09/12 06:30:00 | 00,089,264 | ---- | M] (Sonic Solutions)
(DRVNDDM) DRVNDDM [File_System | Auto | Running] -> C:\WINDOWS\System32\Drivers\DRVNDDM.SYS -> [2005/08/12 08:20:00 | 00,040,544 | ---- | M] (Sonic Solutions)
(e1express) Intel(R) PRO/1000 PCI Express Network Connection Driver [Kernel | On_Demand | Running] -> C:\WINDOWS\System32\DRIVERS\e1e5132.sys -> [2005/09/14 05:24:08 | 00,179,200 | ---- | M] (Intel Corporation)
(FdRedir) FdRedir [File_System | Auto | Running] -> C:\Program Files\Common Files\Protector Suite QL\Drivers\FdRedir.sys -> [2005/12/21 23:55:50 | 00,013,568 | ---- | M] (UPEK Inc.)
(FileDisk2) FileDisk Protector Kernel Driver [Kernel | Auto | Running] -> C:\Program Files\Common Files\Protector Suite QL\Drivers\filedisk.sys -> [2005/12/21 23:55:34 | 00,033,024 | ---- | M] (UPEK Inc.)
(FsVga) FsVga [Kernel | System | Running] -> C:\WINDOWS\System32\DRIVERS\fsvga.sys -> [2004/08/10 07:00:00 | 00,012,160 | ---- | M] (Microsoft Corporation)
(GEARAspiWDM) GEAR ASPI Filter Driver [Kernel | On_Demand | Running] -> C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys -> [2009/03/19 16:32:48 | 00,023,400 | ---- | M] (GEAR Software Inc.)
(HDAudBus) Microsoft UAA Bus Driver for High Definition Audio [Kernel | On_Demand | Running] -> C:\WINDOWS\System32\DRIVERS\HDAudBus.sys -> [2008/04/13 11:36:05 | 00,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider)
(hookcont) hookcont [Kernel | System | Running] -> C:\WINDOWS\System32\drivers\HookCont.sys -> [2008/12/30 12:32:47 | 00,015,216 | ---- | M] (Beijing Rising Information Technology Co., Ltd.)
(hooksys) hooksys [Kernel | System | Running] -> C:\WINDOWS\System32\drivers\HookSys.sys -> [2009/06/19 13:32:39 | 00,143,856 | ---- | M] (Beijing Rising Information Technology Co., Ltd.)
(ialm) ialm [Kernel | On_Demand | Running] -> C:\WINDOWS\System32\DRIVERS\ialmnt5.sys -> [2005/11/28 01:20:20 | 01,353,820 | ---- | M] (Intel Corporation)
(IntcAzAudAddService) Service for Realtek HD Audio (WDM) [Kernel | On_Demand | Running] -> C:\WINDOWS\System32\drivers\RtkHDAud.sys -> [2005/12/09 19:48:40 | 04,123,136 | ---- | M] (Realtek Semiconductor Corp.)
(Iviaspi) IVI ASPI Shell [Kernel | On_Demand | Running] -> C:\WINDOWS\System32\drivers\iviaspi.sys -> [2003/09/11 02:36:54 | 00,021,060 | ---- | M] (InterVideo, Inc.)
(KR10N) KR10N [Kernel | Boot | Running] -> C:\WINDOWS\system32\drivers\KR10N.sys -> [2005/01/12 03:05:46 | 00,204,160 | ---- | M] (TOSHIBA CORPORATION)
(meiudf) meiudf [File_System | System | Running] -> C:\WINDOWS\System32\Drivers\meiudf.sys -> [2005/06/02 06:33:00 | 00,102,384 | ---- | M] (Matsushita Electric Industrial Co.,Ltd.)
(Netdevio) TOSHIBA Network Device Usermode I/O Protocol [Kernel | Auto | Running] -> C:\WINDOWS\System32\DRIVERS\netdevio.sys -> [2003/01/29 17:35:00 | 00,012,032 | ---- | M] (TOSHIBA Corporation.)
(NPPTNT2) NPPTNT2 [Kernel | On_Demand | Stopped] -> C:\WINDOWS\System32\npptNT2.sys -> [2005/01/03 19:43:08 | 00,004,682 | ---- | M] (INCA Internet Co., Ltd.)
(Pfc) Padus ASPI Shell [Kernel | On_Demand | Running] -> C:\WINDOWS\System32\drivers\pfc.sys -> [2003/09/19 04:47:00 | 00,010,368 | ---- | M] (Padus, Inc.)
(Ptilink) Direct Parallel Link Driver [Kernel | On_Demand | Running] -> C:\WINDOWS\System32\DRIVERS\ptilink.sys -> [2004/08/10 07:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.)
(PxHelp20) PxHelp20 [Kernel | Boot | Running] -> C:\WINDOWS\System32\Drivers\PxHelp20.sys -> [2007/11/14 03:00:00 | 00,043,840 | ---- | M] (Sonic Solutions)
(QV2KUX) Casio Digital Camera [Kernel | On_Demand | Stopped] -> C:\WINDOWS\System32\DRIVERS\qv2kux.sys -> [2001/08/17 14:53:32 | 00,003,328 | ---- | M] (Microsoft Corporation)
(RsNTGDI) RsNTGDI [Kernel | Boot | Running] -> C:\WINDOWS\system32\Drivers\RsNTGdi.sys -> [2008/12/30 12:32:49 | 00,010,832 | ---- | M] (Beijing Rising Information Technology Co., Ltd.)
(s24trans) WLAN Transport [Kernel | Auto | Running] -> C:\WINDOWS\System32\DRIVERS\s24trans.sys -> [2005/11/28 14:09:26 | 00,013,568 | ---- | M] (Intel Corporation)
(SCREAMINGBDRIVER) Screaming Bee Audio [Kernel | On_Demand | Running] -> C:\WINDOWS\System32\drivers\ScreamingBAudio.sys -> [2007/12/19 02:09:06 | 00,021,920 | ---- | M] (Screaming Bee LLC)
(Secdrv) Secdrv [Kernel | On_Demand | Stopped] -> C:\WINDOWS\System32\DRIVERS\secdrv.sys -> [2007/11/13 05:25:53 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
(sfdrv01) StarForce Protection Environment Driver (version 1.x) [Kernel | Boot | Running] -> C:\WINDOWS\System32\drivers\sfdrv01.sys -> [2004/12/09 10:25:49 | 00,047,104 | ---- | M] (Protection Technology)
(sfhlp02) StarForce Protection Helper Driver (version 2.x) [Kernel | Boot | Running] -> C:\WINDOWS\System32\drivers\sfhlp02.sys -> [2004/10/28 05:47:59 | 00,006,656 | ---- | M] (Protection Technology)
(sfsync02) StarForce Protection Synchronization Driver (version 2.x) [Kernel | Boot | Running] -> C:\WINDOWS\System32\drivers\sfsync02.sys -> [2004/12/03 05:20:41 | 00,020,544 | ---- | M] (Protection Technology)
(smihlp) SMI helper driver [Kernel | Auto | Running] -> C:\Program Files\Protector Suite QL\smihlp.sys -> [2005/12/21 23:25:32 | 00,003,456 | ---- | M] (UPEK Inc.)
(SynTP) Synaptics TouchPad Driver [Kernel | On_Demand | Running] -> C:\WINDOWS\System32\DRIVERS\SynTP.sys -> [2005/12/16 03:15:06 | 00,191,936 | ---- | M] (Synaptics, Inc.)
(tbiosdrv) Toshiba Logical Tbios Device [Kernel | On_Demand | Running] -> C:\WINDOWS\System32\DRIVERS\tbiosdrv.sys -> [2005/08/24 18:20:28 | 00,009,472 | ---- | M] ()
(TcUsb) TC USB Kernel Driver [Kernel | On_Demand | Running] -> C:\WINDOWS\System32\Drivers\tcusb.sys -> [2005/12/21 23:37:32 | 00,028,800 | ---- | M] (UPEK Inc.)
(tifm21) tifm21 [Kernel | On_Demand | Running] -> C:\WINDOWS\System32\drivers\tifm21.sys -> [2005/11/30 13:12:00 | 00,162,560 | ---- | M] (Texas Instruments)
(tosrfec) Bluetooth ACPI from TOSHIBA [Kernel | On_Demand | Stopped] -> C:\WINDOWS\System32\DRIVERS\tosrfec.sys -> [2005/09/09 17:47:10 | 00,009,344 | ---- | M] (TOSHIBA Corporation)
(TVALD) Toshiba Mobile PC Service [Kernel | On_Demand | Running] -> C:\WINDOWS\System32\DRIVERS\NBSMI.sys -> [2005/10/20 17:03:42 | 00,006,144 | ---- | M] (Toshiba Corporation)
(Tvs) TOSHIBA Virtual Sound with SRS technologies [Kernel | On_Demand | Running] -> C:\WINDOWS\System32\DRIVERS\Tvs.sys -> [2005/11/30 14:01:02 | 00,043,392 | ---- | M] (TOSHIBA Corporation)
(USBAAPL) Apple Mobile USB Driver [Kernel | On_Demand | Stopped] -> C:\WINDOWS\System32\Drivers\usbaapl.sys -> [2009/06/05 11:42:38 | 00,039,424 | ---- | M] (Apple, Inc.)
(usbser) Motorola USB Modem Driver [Kernel | On_Demand | Stopped] -> C:\WINDOWS\System32\DRIVERS\usbser.sys -> [2008/04/13 13:45:36 | 00,026,112 | ---- | M] (Microsoft Corporation)
(w39n51) Intel(R) PRO/Wireless 3945ABG Adapter Driver [Kernel | On_Demand | Running] -> C:\WINDOWS\System32\DRIVERS\w39n51.sys -> [2005/12/04 12:55:30 | 01,428,096 | ---- | M] (Intel® Corporation)
(wanatw) WAN Miniport (ATW) [Kernel | On_Demand | Running] -> C:\WINDOWS\System32\DRIVERS\wanatw4.sys -> [2003/01/10 15:13:04 | 00,033,588 | R--- | M] (America Online, Inc.)
(WinDriver) WinDriver [Kernel | Auto | Running] -> C:\WINDOWS\System32\drivers\WINDRVR.SYS -> [2002/05/06 09:39:40 | 00,205,188 | ---- | M] (Jungo)
(ZSMC211) USB PC Camera  [Kernel | On_Demand | Stopped] -> C:\WINDOWS\System32\Drivers\ZS211.sys -> [2006/08/07 22:29:10 | 00,391,836 | ---- | M] (ZSMC Corporation)
 
[Registry - Safe List]
< Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> -> 
HKEY_LOCAL_MACHINE\: Main\\"Default_Page_URL" -> http://go.microsoft.com/fwlink/?LinkId=69157 -> 
HKEY_LOCAL_MACHINE\: Main\\"Default_Search_URL" -> http://go.microsoft.com/fwlink/?LinkId=54896 -> 
HKEY_LOCAL_MACHINE\: Main\\"Default_Secondary_Page_URL" ->  [binary data] -> 
HKEY_LOCAL_MACHINE\: Main\\"Extensions Off Page" -> about:NoAdd-ons -> 
HKEY_LOCAL_MACHINE\: Main\\"Local Page" -> C:\WINDOWS\system32\blank.htm -> 
HKEY_LOCAL_MACHINE\: Main\\"Search Page" -> http://go.microsoft.com/fwlink/?LinkId=54896 -> 
HKEY_LOCAL_MACHINE\: Main\\"Security Risk Page" -> about:SecurityRisk -> 
HKEY_LOCAL_MACHINE\: Main\\"Start Page" -> http://go.microsoft.com/fwlink/?LinkId=69157 -> 
HKEY_LOCAL_MACHINE\: Search\\"CustomizeSearch" -> http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm -> 
HKEY_LOCAL_MACHINE\: Search\\"SearchAssistant" -> http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm -> 
HKEY_LOCAL_MACHINE\: URLSearchHooks\\"{03402f96-3dc7-4285-bc50-9e81fefafe43}" [HKLM] -> C:\Program Files\AIM Toolbar\aimtb.dll [AIM Toolbar Search Class] -> [2009/05/06 13:14:26 | 01,279,272 | ---- | M] (AOL LLC.)
< Internet Explorer Settings [HKEY_CURRENT_USER\] > -> -> 
HKEY_CURRENT_USER\: Main\\"Local Page" -> C:\WINDOWS\system32\blank.htm -> 
HKEY_CURRENT_USER\: Main\\"Search Page" -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch -> 
HKEY_CURRENT_USER\: Main\\"Start Page" -> http://www.kuuboo.com/ -> 
HKEY_CURRENT_USER\: URLSearchHooks\\"{03402f96-3dc7-4285-bc50-9e81fefafe43}" [HKLM] -> C:\Program Files\AIM Toolbar\aimtb.dll [AIM Toolbar Search Class] -> [2009/05/06 13:14:26 | 01,279,272 | ---- | M] (AOL LLC.)
HKEY_CURRENT_USER\: "ProxyEnable" -> 0 -> 
HKEY_CURRENT_USER\: "ProxyOverride" -> local -> 
< FireFox Settings [Prefs.js] > -> C:\Documents and Settings\John Vincent\Application Data\Mozilla\FireFox\Profiles\y5m5qk2y.default\prefs.js -> 
browser.search.defaultenginename -> "AIM Search" ->
browser.search.defaulturl -> "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2706&invocationType=tb50fftrie7&query=" ->
browser.search.order.1 -> "Yahoo" ->
browser.search.param.yahoo-fr -> "megaup" ->
browser.search.param.yahoo-fr-cjkt -> "megaup" ->
browser.search.selectedEngine -> "Google" ->
browser.search.useDBForOrder -> true ->
browser.startup.homepage -> "http://www.google.com/" ->
extensions.enabledItems -> {c2f863cd-0429-48c7-bb54-db756a951760}:5.21.1.1 ->
extensions.enabledItems -> {000a9d1c-beef-4f90-9363-039d445309b8}:0.5.30.0 ->
extensions.enabledItems -> {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}:6.0.07 ->
extensions.enabledItems -> {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}:6.0.10 ->
extensions.enabledItems -> [email protected]:1.0 ->
extensions.enabledItems -> [email protected]:1.0.0.071303000006 ->
extensions.enabledItems -> {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.1 ->
keyword.URL -> "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2706&invocationType=tb50fftrab&query=" ->
network.proxy.autoconfig_url -> "http://127.0.0.1:9415/tudouva.pac" ->
network.proxy.type -> 2 ->
< FireFox Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla
HKLM\software\mozilla\Firefox\Extensions ->  -> 
HKLM\software\mozilla\Firefox\Extensions\\[email protected] -> C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF] -> [2008/08/26 18:23:38 | 00,000,000 | ---D | M]
HKLM\software\mozilla\Firefox\Extensions\\{000a9d1c-beef-4f90-9363-039d445309b8} -> C:\PROGRAM FILES\GOOGLE\GOOGLE GEARS\FIREFOX [C:\PROGRAM FILES\GOOGLE\GOOGLE GEARS\FIREFOX\] -> [2009/07/17 21:23:07 | 00,000,000 | ---D | M]
HKLM\software\mozilla\Mozilla Firefox 3.5.1\extensions ->  -> 
HKLM\software\mozilla\Mozilla Firefox 3.5.1\extensions\\Components -> C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS [C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS] -> [2009/07/23 12:48:02 | 00,000,000 | ---D | M]
HKLM\software\mozilla\Mozilla Firefox 3.5.1\extensions\\Plugins -> C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS [C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS] -> [2009/07/22 12:31:59 | 00,000,000 | ---D | M]
< FireFox Extensions [User Folders] > -> 
 -> C:\Documents and Settings\John Vincent\Application Data\mozilla\Extensions -> [2009/07/02 21:34:19 | 00,000,000 | ---D | M]
 -> C:\Documents and Settings\John Vincent\Application Data\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} -> [2009/07/02 21:34:19 | 00,000,000 | ---D | M]
 -> C:\Documents and Settings\John Vincent\Application Data\mozilla\Firefox\Profiles\y5m5qk2y.default\extensions -> [2009/07/23 12:50:07 | 00,105,444 | ---- | M] ()
 -> C:\Documents and Settings\John Vincent\Application Data\mozilla\Firefox\Profiles\y5m5qk2y.default\extensions\{1B33E42F-EF14-4cd3-B6DC-174571C4349C} -> [2009/07/23 12:50:07 | 00,105,444 | ---- | M] ()
 -> C:\Documents and Settings\John Vincent\Application Data\mozilla\Firefox\Profiles\y5m5qk2y.default\extensions\{a33fa729-d155-4b23-842b-2c665ecabdb6} -> [2009/07/23 12:50:07 | 00,105,444 | ---- | M] ()
 -> C:\Documents and Settings\John Vincent\Application Data\mozilla\Firefox\Profiles\y5m5qk2y.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB} -> [2009/07/23 12:50:07 | 00,105,444 | ---- | M] ()
 -> C:\Documents and Settings\John Vincent\Application Data\mozilla\Firefox\Profiles\y5m5qk2y.default\extensions\{c2f863cd-0429-48c7-bb54-db756a951760} -> [2009/07/23 12:50:07 | 00,105,444 | ---- | M] ()
 -> C:\Documents and Settings\John Vincent\Application Data\mozilla\Firefox\Profiles\y5m5qk2y.default\extensions\[email protected] -> [2009/07/23 12:50:07 | 00,105,444 | ---- | M] ()
 -> C:\Documents and Settings\John Vincent\Application Data\mozilla\Firefox\Profiles\y5m5qk2y.default\extensions\staged-xpis -> [2009/07/23 12:50:07 | 00,105,444 | ---- | M] ()
< FireFox SearchPlugins [User Folders] > -> 
C:\Documents and Settings\John Vincent\Application Data\Mozilla\FireFox\Profiles\y5m5qk2y.default\searchplugins\ -> C:\Documents and Settings\John Vincent\Application Data\Mozilla\FireFox\Profiles\y5m5qk2y.default\searchplugins -> [2009/06/12 10:39:47 | 00,000,000 | ---D | M]
aim-search.xml -> C:\Documents and Settings\John Vincent\Application Data\Mozilla\FireFox\Profiles\y5m5qk2y.default\searchplugins\aim-search.xml -> [2009/06/12 10:39:47 | 00,004,207 | ---- | M] ()
conduit.xml -> C:\Documents and Settings\John Vincent\Application Data\Mozilla\FireFox\Profiles\y5m5qk2y.default\searchplugins\conduit.xml -> [2009/01/15 10:23:14 | 00,000,890 | ---- | M] ()
< FireFox Extensions [Program Folders] > -> 
 -> C:\PROGRAM FILES\MOZILLA FIREFOX\extensions -> [2009/07/15 15:30:52 | 10,764,792 | ---- | M] (Mozilla Foundation)
 -> C:\PROGRAM FILES\MOZILLA FIREFOX\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} -> [2009/07/15 15:30:52 | 10,764,792 | ---- | M] (Mozilla Foundation)
 -> C:\PROGRAM FILES\MOZILLA FIREFOX\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} -> [2009/07/15 15:30:52 | 10,764,792 | ---- | M] (Mozilla Foundation)
 -> C:\PROGRAM FILES\MOZILLA FIREFOX\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} -> [2009/07/15 15:30:52 | 10,764,792 | ---- | M] (Mozilla Foundation)
< FireFox Components [Program Folders] > -> 
C:\PROGRAM FILES\MOZILLA FIREFOX\components\ -> C:\PROGRAM FILES\MOZILLA FIREFOX\components -> [2009/07/23 12:48:02 | 00,000,000 | ---D | M]
browserdirprovider.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\components\browserdirprovider.dll -> [2009/07/15 15:30:53 | 00,023,544 | ---- | M] (Mozilla Foundation)
brwsrcmp.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\components\brwsrcmp.dll -> [2009/07/15 15:30:54 | 00,137,208 | ---- | M] (Mozilla Foundation)
CheckTudouVa.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\components\CheckTudouVa.dll -> [2008/07/03 21:33:04 | 00,024,576 | ---- | M] ()
GoogleDesktopMozilla.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\components\GoogleDesktopMozilla.dll -> [2008/11/10 21:22:49 | 00,122,880 | ---- | M] (Google)
NsThunderLoader.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\components\NsThunderLoader.dll -> [2008/07/29 16:40:28 | 00,036,864 | ---- | M] (迅雷网络)
ThunderComponent.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\components\ThunderComponent.dll -> [2008/07/29 16:40:28 | 00,053,248 | ---- | M] (Thunder Networking Technologies,LTD)
< FireFox Plugins [Program Folders] > -> 
C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\ -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins -> [2009/07/22 12:31:59 | 00,000,000 | ---D | M]
install.rdf -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\install.rdf -> [2008/09/08 13:15:54 | 00,000,803 | ---- | M] ()
np-mswmp.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\np-mswmp.dll -> [2008/06/13 09:47:06 | 00,163,256 | ---- | M] (Microsoft Corporation)
np32dsw.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\np32dsw.dll -> [2008/12/05 23:52:44 | 00,114,688 | ---- | M] (Adobe Systems, Inc.)
npBitCometAgent.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npBitCometAgent.dll -> [2008/01/23 01:20:30 | 00,491,520 | ---- | M] (BitComet)
npDapCtrlFirefox.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npDapCtrlFirefox.dll -> [2008/07/29 16:40:28 | 00,032,768 | ---- | M] (Xunlei Networking Technologies,LTD)
npdeploytk.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npdeploytk.dll -> [2008/08/26 18:23:36 | 00,410,976 | ---- | M] (Sun Microsystems, Inc.)
npdjvu.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npdjvu.dll -> [2004/11/04 16:56:50 | 01,482,752 | ---- | M] (LizardTech)
npdnu.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npdnu.dll -> [2008/09/26 11:40:34 | 00,053,248 | ---- | M] (AOL LLC)
npdnu.xpt -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npdnu.xpt -> [2008/09/26 11:40:34 | 00,000,170 | ---- | M] ()
npLegitCheckPlugin.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npLegitCheckPlugin.dll -> [2008/06/27 16:03:12 | 01,446,440 | ---- | M] (Microsoft Corporation)
npnul32.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npnul32.dll -> [2009/07/15 15:30:55 | 00,065,016 | ---- | M] (mozilla.org)
NPOFFICE.DLL -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\NPOFFICE.DLL -> [2007/03/22 19:23:30 | 00,017,248 | ---- | M] (Microsoft Corporation)
nppdf32.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\nppdf32.dll -> [2009/02/27 12:13:42 | 00,103,792 | ---- | M] (Adobe Systems Inc.)
npqtplugin.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin.dll -> [2009/07/09 00:07:28 | 00,143,360 | ---- | M] (Apple Inc.)
npqtplugin2.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin2.dll -> [2009/07/09 00:07:28 | 00,143,360 | ---- | M] (Apple Inc.)
npqtplugin3.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin3.dll -> [2009/07/09 00:07:29 | 00,143,360 | ---- | M] (Apple Inc.)
npqtplugin4.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin4.dll -> [2009/07/09 00:07:29 | 00,143,360 | ---- | M] (Apple Inc.)
npqtplugin5.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin5.dll -> [2009/07/09 00:07:29 | 00,143,360 | ---- | M] (Apple Inc.)
npqtplugin6.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin6.dll -> [2009/07/09 00:07:29 | 00,143,360 | ---- | M] (Apple Inc.)
npqtplugin7.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin7.dll -> [2009/07/09 00:07:29 | 00,143,360 | ---- | M] (Apple Inc.)
NPTURNMED.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\NPTURNMED.dll -> [2008/09/06 14:33:13 | 00,221,184 | ---- | M] (CNN)
npViewpoint.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npViewpoint.dll -> [2007/04/16 12:07:12 | 00,180,293 | ---- | M] ()
npViewpoint.xpt -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npViewpoint.xpt -> [2006/10/09 13:26:35 | 00,000,266 | ---- | M] ()
QuickTimePlugin.class -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\QuickTimePlugin.cla -> [2009/07/09 00:07:28 | 00,004,208 | ---- | M] ()
ShockwavePlugin.class -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\ShockwavePlugin.cla -> [2008/12/05 23:22:26 | 00,001,144 | ---- | M] ()
< FireFox SearchPlugins [Program Folders] > -> 
C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\ -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins -> [2009/07/22 12:22:11 | 00,000,000 | ---D | M]
amazondotcom.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\amazondotcom.xml -> [2009/07/15 13:10:00 | 00,001,394 | ---- | M] ()
answers.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\answers.xml -> [2009/07/15 13:10:00 | 00,002,193 | ---- | M] ()
creativecommons.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\creativecommons.xml -> [2009/07/15 13:10:00 | 00,001,534 | ---- | M] ()
eBay.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\eBay.xml -> [2009/07/15 13:10:00 | 00,002,344 | ---- | M] ()
google.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\google.xml -> [2009/07/15 13:10:00 | 00,002,371 | ---- | M] ()
wikipedia.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\wikipedia.xml -> [2009/07/15 13:10:00 | 00,001,178 | ---- | M] ()
yahoo.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\yahoo.xml -> [2009/07/15 13:10:00 | 00,000,792 | ---- | M] ()
< HOSTS File > (734 bytes and 19 lines) -> C:\WINDOWS\System32\drivers\etc\Hosts -> 
Reset Hosts
127.0.0.1	   localhost
< BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ -> 
{01443AEC-0FD1-40fd-9C87-E93D1494C233} [HKLM] -> C:\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll [ThunderAtOnce Class] -> [2008/06/13 09:43:58 | 00,177,616 | ---- | M] (Thunder Networking Technologies,LTD)
{18DF081C-E8AD-4283-A596-FA578C2EBDC3} [HKLM] -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [Adobe PDF Link Helper] -> [2009/02/27 12:07:26 | 00,075,128 | ---- | M] (Adobe Systems Incorporated)
{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} [HKLM] -> C:\programs\BitComet\tools\BitCometBHO_1.2.2.28.dll [BitComet Helper] -> [2008/02/29 03:49:22 | 00,468,280 | ---- | M] (BitComet)
{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} [HKLM] -> C:\Program Files\AVG\AVG8\avgssie.dll [AVG Safe Search] -> File not found
{43BEAFD9-E005-483D-A367-146BA6C8A32E} [HKLM] -> C:\Tudou\飞速Tudou\tudouDetector.dll [WebDetectorBHO Class] -> [2008/12/24 01:14:56 | 00,083,352 | ---- | M] (土豆网)
{5CA3D70E-1895-11CF-8E15-001234567890} [HKLM] -> C:\WINDOWS\System32\DLA\DLASHX_W.DLL [DriveLetterAccess] -> [2005/10/06 08:20:00 | 00,110,652 | ---- | M] (Sonic Solutions)
{68F9551E-0411-48E4-9AAF-4BC42A6A46BE} [HKLM] -> C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll [EWPBrowseObject Class] -> [2006/04/18 19:04:14 | 00,034,304 | ---- | M] ()
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} [HKLM] -> C:\Program Files\Java\jre6\bin\ssv.dll [SSVHelper Class] -> [2008/08/26 18:23:37 | 00,320,920 | ---- | M] (Sun Microsystems, Inc.)
{7F76F60B-FF04-4E59-8C6B-B9B53B6EA368} [HKLM] -> C:\WINDOWS\System32\qesagesesq.dll [] -> File not found
{889D2FEB-5411-4565-8998-1DD2C5261283} [HKLM] -> C:\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll [Thunder Browser Helper] -> [2008/06/13 09:43:58 | 00,198,096 | ---- | M] (Thunder Networking Technologies,LTD)
{98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} [HKLM] -> C:\WINDOWS\System32\UrlFilter.dll [卡卡上网安全助手] -> File not found
{A986E409-30CC-4185-89BB-AB212C104524} [HKLM] -> C:\Program Files\PPLiveVA\DownloaderManager.dll [Download_Bho Class] -> [2009/05/20 22:54:12 | 00,509,208 | ---- | M] (Synacast)
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} [HKLM] -> C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll [Google Toolbar Notifier BHO] -> [2009/03/23 23:04:31 | 00,668,656 | ---- | M] (Google Inc.)
{b0cda128-b425-4eef-a174-61a11ac5dbf8} [HKLM] -> C:\Program Files\AIM Toolbar\aimtb.dll [AIM Toolbar Loader] -> [2009/05/06 13:14:26 | 01,279,272 | ---- | M] (AOL LLC.)
{bf00e119-21a3-4fd1-b178-3b8537e75c92} [HKLM] -> C:\Megaupload\Mega Manager\MegaIEMn.dll [IeMonitorBho Class] -> [2008/06/23 16:41:14 | 00,110,592 | ---- | M] (Megaupload Limited)
{DBC80044-A445-435b-BC74-9C25C1C588A9} [HKLM] -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [Java(tm) Plug-In 2 SSV Helper] -> [2008/08/26 18:23:34 | 00,034,816 | ---- | M] (Sun Microsystems, Inc.)
{DC888631-57F5-4AF4-86B3-BDE5F854DCBF} [HKLM] -> C:\WINDOWS\System32\pwfsh.dll [PowerFlash Class] -> [2008/06/19 23:54:00 | 00,000,000 | ---- | M] ()
{E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} [HKLM] -> C:\Program Files\Google\Google Gears\Internet Explorer\0.5.30.0\gears.dll [Google Gears Helper] -> [2009/07/17 12:51:32 | 02,097,152 | ---- | M] (Google Inc.)
{E7E6F031-17CE-4C07-BC86-EABFE594F69C} [HKLM] -> C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [JQSIEStartDetectorImpl Class] -> [2008/08/26 18:23:38 | 00,073,728 | ---- | M] (Sun Microsystems, Inc.)
< Internet Explorer ToolBars [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar -> 
"{327C2873-E90D-4c37-AA9D-10AC9BABA46C}" [HKLM] -> C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [Easy-WebPrint] -> [2006/04/18 19:05:46 | 00,552,960 | ---- | M] ()
"{61539ecd-cc67-4437-a03c-9aaccbd14326}" [HKLM] -> C:\Program Files\AIM Toolbar\aimtb.dll [AIM Toolbar] -> [2009/05/06 13:14:26 | 01,279,272 | ---- | M] (AOL LLC.)
< Internet Explorer ToolBars [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ -> 
WebBrowser\\"{2318C2B1-4965-11D4-9B18-009027A5CD4F}" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
WebBrowser\\"{61539ECD-CC67-4437-A03C-9AACCBD14326}" [HKLM] -> C:\Program Files\AIM Toolbar\aimtb.dll [AIM Toolbar] -> [2009/05/06 13:14:26 | 01,279,272 | ---- | M] (AOL LLC.)
WebBrowser\\"{A057A204-BACC-4D26-C39E-35F1D2A32EC8}" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
< Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> 
"Adobe Reader Speed Launcher" -> C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe ["C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"] -> [2009/02/27 17:10:28 | 00,035,696 | ---- | M] (Adobe Systems Incorporated)
"AGRSMMSG" -> C:\WINDOWS\agrsmmsg.exe [AGRSMMSG.exe] -> [2005/10/15 09:29:08 | 00,088,203 | ---- | M] (Agere Systems)
"CanonMyPrinter" -> C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon] -> [2006/03/21 20:30:00 | 01,191,936 | ---- | M] (CANON INC.)
"CFSServ.exe" ->  [CFSServ.exe -NoClient] -> File not found
"DAEMON Tools-2052" -> C:\Programs\D-Tools\daemon.exe ["C:\Programs\D-Tools\daemon.exe"  -lang 2052] -> [2004/08/22 17:05:02 | 00,081,920 | ---- | M] (DAEMON'S HOME)
"dla" -> C:\WINDOWS\System32\dla\DLACTRLW.exe [C:\WINDOWS\system32\dla\DLACTRLW.exe] -> [2005/10/06 08:20:00 | 00,122,940 | ---- | M] (Sonic Solutions)
"Domino" -> C:\WINDOWS\Domino.exe [C:\WINDOWS\Domino.exe] -> [2006/07/04 01:16:32 | 00,049,152 | ---- | M] ()
"ehTray" -> C:\WINDOWS\ehome\ehtray.exe [C:\WINDOWS\ehome\ehtray.exe] -> [2005/08/05 16:56:34 | 00,064,512 | ---- | M] (Microsoft Corporation)
"Google Desktop Search" ->  ["C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup] -> File not found
"Google IME Autoupdater" -> C:\Google\Google Pinyin\GooglePinyinDaemon.exe ["C:\Google\Google Pinyin\GooglePinyinDaemon.exe"] -> [2008/10/17 03:38:36 | 00,308,720 | ---- | M] (Google Inc.)
"googletalk" -> C:\Program Files\Google\Google Talk\googletalk.exe [C:\Program Files\Google\Google Talk\googletalk.exe /autostart] -> [2007/01/01 16:22:02 | 03,739,648 | ---- | M] (Google)
"igfxhkcmd" -> C:\WINDOWS\System32\hkcmd.exe [C:\WINDOWS\system32\hkcmd.exe] -> [2005/11/28 00:52:00 | 00,077,824 | ---- | M] (Intel Corporation)
"igfxpers" -> C:\WINDOWS\System32\igfxpers.exe [C:\WINDOWS\system32\igfxpers.exe] -> [2005/11/28 00:55:58 | 00,118,784 | ---- | M] (Intel Corporation)
"igfxtray" -> C:\WINDOWS\System32\igfxtray.exe [C:\WINDOWS\system32\igfxtray.exe] -> [2005/11/28 00:55:14 | 00,098,304 | ---- | M] (Intel Corporation)
"IMEKRMIG6.1" -> C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE [C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE] -> [2004/08/10 07:00:00 | 00,044,032 | ---- | M] (Microsoft Corporation)
"IMJPMIG8.1" -> C:\WINDOWS\imjpmig.exe ["C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32] -> File not found
"IntelWireless" -> C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe ["C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless] -> [2005/11/28 13:41:50 | 00,602,182 | ---- | M] (Intel Corporation)
"IntelZeroConfig" -> C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe ["C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"] -> [2005/12/05 14:37:40 | 00,667,718 | ---- | M] (Intel Corporation)
"iTunesHelper" -> C:\iTunes\iTunesHelper.exe ["C:\iTunes\iTunesHelper.exe"] -> [2009/07/13 14:03:10 | 00,292,128 | ---- | M] (Apple Inc.)
"LtMoh" -> C:\Program Files\ltmoh\Ltmoh.exe [C:\Program Files\ltmoh\Ltmoh.exe] -> [2004/08/18 06:37:44 | 00,184,320 | ---- | M] (Agere Systems)
"MSPY2002" ->  [C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC] -> File not found
"NDSTray.exe" ->  [NDSTray.exe] -> File not found
"OpwareSE4" -> C:\ScanSoft\OmniPageSE4.0\OpwareSE4.exe ["C:\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"] -> [2006/03/21 13:19:40 | 00,069,632 | ---- | M] (ScanSoft, Inc.)
"PHIME2002A" -> C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE [C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName] -> [2004/08/10 07:00:00 | 00,455,168 | ---- | M] (Microsoft Corporation)
"PHIME2002ASync" ->  [C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC] -> File not found
"Pinger" -> c:\toshiba\ivp\ism\pinger.exe [c:\toshiba\ivp\ism\pinger.exe /run] -> [2005/03/17 20:37:26 | 00,151,552 | ---- | M] (TOSHIBA Corporation)
"PSQLLauncher" ->  ["C:\Program Files\Protector Suite QL\launcher.exe" /startup] -> File not found
"QuickTime Task" -> C:\Program Files\QuickTime\QTTask.exe ["C:\Program Files\QuickTime\QTTask.exe" -atboottime] -> [2009/05/26 17:18:30 | 00,413,696 | ---- | M] (Apple Inc.)
"RavTray" -> C:\Rising\Rav\RsTray.exe ["C:\Rising\Rav\RsTray.exe" -system] -> [2009/01/08 19:08:40 | 00,141,936 | ---- | M] (Beijing Rising Information Technology Co., Ltd.)
"SmoothView" -> C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe [C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe] -> [2005/04/26 19:13:20 | 00,122,880 | ---- | M] (TOSHIBA Corporation)
"SSBkgdUpdate" -> C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe ["C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot] -> [2003/09/30 00:14:58 | 00,155,648 | R--- | M] (Scansoft, Inc.)
"SunJavaUpdateSched" -> C:\Program Files\Java\jre6\bin\jusched.exe ["C:\Program Files\Java\jre6\bin\jusched.exe"] -> [2008/08/26 18:23:35 | 00,144,792 | ---- | M] (Sun Microsystems, Inc.)
"SynTPEnh" -> C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [C:\Program Files\Synaptics\SynTP\SynTPEnh.exe] -> [2005/12/16 03:32:58 | 00,761,945 | ---- | M] (Synaptics, Inc.)
"SynTPLpr" -> C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [C:\Program Files\Synaptics\SynTP\SynTPLpr.exe] -> [2005/12/16 03:34:16 | 00,082,009 | ---- | M] (Synaptics, Inc.)
"TDispVol" -> C:\WINDOWS\System32\TDispVol.exe [TDispVol.exe] -> [2005/03/11 18:03:16 | 00,073,728 | ---- | M] (TOSHIBA Corporation)
"TFncKy" ->  [TFncKy.exe] -> File not found
"THotkey" -> C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe [C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe] -> [2006/01/05 17:02:24 | 00,352,256 | ---- | M] (TOSHIBA)
"TkBellExe" -> C:\Program Files\Common Files\Real\Update_OB\realsched.exe ["C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot] -> [2009/02/21 01:21:35 | 00,198,160 | ---- | M] (RealNetworks, Inc.)
"TPSMain" -> C:\WINDOWS\System32\TPSMain.exe [TPSMain.exe] -> [2005/06/01 00:00:12 | 00,282,624 | ---- | M] (TOSHIBA Corporation)
"Tvs" -> C:\Program Files\Toshiba\Tvs\TvsTray.exe [C:\Program Files\Toshiba\Tvs\TvsTray.exe] -> [2005/11/30 15:25:22 | 00,073,728 | ---- | M] (TOSHIBA Corporation)
"ZSSnp211" -> C:\WINDOWS\ZSSnp211.exe [C:\WINDOWS\ZSSnp211.exe] -> [2006/08/08 05:05:08 | 00,049,152 | ---- | M] (Vimicro)
< Run [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> 
"Aim6" -> C:\Program Files\AIM6\aim6.exe ["C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp] -> [2009/05/19 00:23:16 | 00,049,968 | ---- | M] (AOL LLC)
"Google Update" -> C:\Documents and Settings\John Vincent\Local Settings\Application Data\Google\Update\GoogleUpdate.exe ["C:\Documents and Settings\John Vincent\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c] -> [2008/10/18 11:34:38 | 00,133,104 | ---- | M] (Google Inc.)
"j2 4.4" -> C:\Program Files\j2 Messenger 4.4\J2GDllCmd.exe ["C:\Program Files\j2 Messenger 4.4\J2GDllCmd.exe" /R] -> [2008/10/07 16:53:53 | 00,095,744 | ---- | M] (j2 Global Communications, Inc.)
"Monopod" -> C:\DOCUME~1\JOHNVI~1\LOCALS~1\Temp\b.exe [C:\DOCUME~1\JOHNVI~1\LOCALS~1\Temp\b.exe] -> File not found
"MSMSGS" -> C:\Program Files\Messenger\msmsgs.exe ["C:\Program Files\Messenger\msmsgs.exe" /background] -> [2008/04/13 19:12:28 | 01,695,232 | ---- | M] (Microsoft Corporation)
"PPLiveVA" ->  [C:\Program Files\PPLiveVA\PPLiveVA.exe /LoadModule PPVA.DLL /M REAL /S 0 /T 0] -> File not found
"RocketDock" -> C:\RocketDock\RocketDock.exe ["C:\RocketDock\RocketDock.exe"] -> [2007/09/02 14:58:52 | 00,495,616 | ---- | M] ()
"TOSCDSPD" -> C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe [C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe] -> [2004/12/30 03:32:20 | 00,065,536 | ---- | M] (TOSHIBA)
< All Users Startup Folder > -> C:\Documents and Settings\All Users\Start Menu\Programs\Startup -> 
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\LINKMAGIC.lnk -> C:\Program Files\LINKMAGIC\LINKMAGIC.EXE -> [2006/03/10 17:58:26 | 01,822,720 | ---- | M] (Konica Minolta)
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Powerword 2006.lnk -> C:\WINDOWS\Installer\{1D44EA4F-C446-4C4F-92F7-02F72E589989}\XDict1.exe_8BCAA7D371F34097857E7B78CBAEF505.EXE -> [2009/03/18 19:55:18 | 00,065,536 | R--- | M] (InstallShield Software Corp.)
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\RAMASST.lnk -> C:\WINDOWS\System32\RAMASST.exe -> [2004/08/28 03:37:00 | 00,155,648 | ---- | M] (Matsushita Electric Industrial Co., Ltd.)
< John Vincent Startup Folder > -> C:\Documents and Settings\John Vincent\Start Menu\Programs\Startup -> 
C:\Documents and Settings\John Vincent\Start Menu\Programs\Startup\jConnect 4.4.lnk -> C:\Program Files\j2 Messenger 4.4\J2GTray.exe -> [2008/10/07 16:58:33 | 00,656,896 | ---- | M] (j2 Global Communications, Inc.)
C:\Documents and Settings\John Vincent\Start Menu\Programs\Startup\Microsoft Office OneNote 2003 Quick Launch.lnk -> C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE -> [2007/04/19 13:49:52 | 00,064,864 | ---- | M] (Microsoft Corporation)
C:\Documents and Settings\John Vincent\Start Menu\Programs\Startup\启动飞速土豆.lnk -> C:\Tudou\飞速Tudou\TudouVa.exe -> [2008/12/29 22:43:38 | 01,122,304 | ---- | M] (土豆网)
< CurrentVersion Policy Settings - Explorer [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
\\"HonorAutoRunSetting" ->  [1] -> File not found
\\"NoCDBurning" ->  [0] -> File not found
< CurrentVersion Policy Settings - System [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System
\\"dontdisplaylastusername" ->  [0] -> File not found
\\"legalnoticecaption" ->  [] -> File not found
\\"legalnoticetext" ->  [] -> File not found
\\"shutdownwithoutlogon" ->  [1] -> File not found
\\"undockwithoutlogon" ->  [1] -> File not found
\\"InstallVisualStyle" -> C:\WINDOWS\Resources\Themes\Royale\Royale.mss [C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles] -> File not found
\\"InstallTheme" -> C:\WINDOWS\Resources\Themes\Royale.the [C:\WINDOWS\Resources\Themes\Royale.theme] -> File not found
< CurrentVersion Policy Settings - Explorer [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer -> 
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
\\"NoDriveTypeAutoRun" ->  [145] -> File not found
< CurrentVersion Policy Settings - System [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System -> 
< Internet Explorer Menu Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\ -> 
&AIM Toolbar Search -> C:\Documents and Settings\All Users\Application Data\AIM Toolbar\ieToolbar\resources\en-US\local\search.html [C:\Documents and Settings\All Users\Application Data\AIM Toolbar\ieToolbar\resources\en-US\local\search.html] -> [2008/05/22 09:44:38 | 00,000,747 | ---- | M] ()
&D&ownload &with BitComet -> C:\programs\BitComet\BitComet.exe [res://C:\programs\BitComet\BitComet.exe/AddLink.htm] -> [2008/05/05 04:02:40 | 02,334,520 | ---- | M] (www.BitComet.com)
&D&ownload all video with BitComet -> C:\programs\BitComet\BitComet.exe [res://C:\programs\BitComet\BitComet.exe/AddVideo.htm] -> [2008/05/05 04:02:40 | 02,334,520 | ---- | M] (www.BitComet.com)
&D&ownload all with BitComet -> C:\programs\BitComet\BitComet.exe [res://C:\programs\BitComet\BitComet.exe/AddAllLink.htm] -> [2008/05/05 04:02:40 | 02,334,520 | ---- | M] (www.BitComet.com)
Add to Google Photos Screensa&ver -> C:\WINDOWS\System32\GPhotos.scr [res://C:\WINDOWS\system32\GPhotos.scr/200] -> [2007/09/28 13:42:38 | 02,790,976 | ---- | M] (Google Inc.)
E&xport to Microsoft Excel -> C:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE [res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000] -> [2009/04/21 22:43:04 | 10,351,936 | ---- | M] (Microsoft Corporation)
Easy-WebPrint Add To Print List -> C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_AddToList.html] -> [2006/04/18 19:05:46 | 00,552,960 | ---- | M] ()
Easy-WebPrint High Speed Print -> C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_HSPrint.html] -> [2006/04/18 19:05:46 | 00,552,960 | ---- | M] ()
Easy-WebPrint Preview -> C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Preview.html] -> [2006/04/18 19:05:46 | 00,552,960 | ---- | M] ()
Easy-WebPrint Print -> C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Print.html] -> [2006/04/18 19:05:46 | 00,552,960 | ---- | M] ()
使用迅雷下载 -> C:\Thunder Network\Thunder\Program\geturl.htm [C:\Thunder Network\Thunder\Program\geturl.htm] -> [2008/06/13 09:55:40 | 00,003,946 | ---- | M] ()
使用迅雷下载全部链接 -> C:\Thunder Network\Thunder\Program\getallurl.htm [C:\Thunder Network\Thunder\Program\getallurl.htm] -> [2008/06/13 09:55:40 | 00,001,673 | ---- | M] ()
< Internet Explorer Extensions [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ -> 
{06926B30-424E-4f1c-8EE3-543CD96573DC}:Exec [HKLM] ->  [Button: 知识库] -> File not found
{08B0E5C0-4FCB-11CF-AAA5-00401C608501}:{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC} [HKLM] -> C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll [Menu: Sun Java Console] -> [2008/06/10 04:27:02 | 00,132,496 | ---- | M] (Sun Microsystems, Inc.)
{09BA8F6D-CB54-424B-839C-C2A6C8E6B436}:Exec [HKLM] -> C:\Thunder Network\Thunder\Thunder.exe [Button: 启动迅雷5] -> [2008/07/10 21:15:00 | 00,045,056 | ---- | M] (Thunder Networking Technologies,LTD)
{09BA8F6D-CB54-424B-839C-C2A6C8E6B436}:Exec [HKLM] -> C:\Thunder Network\Thunder\Thunder.exe [Menu: 启动迅雷5] -> [2008/07/10 21:15:00 | 00,045,056 | ---- | M] (Thunder Networking Technologies,LTD)
{09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5}:{0B4350D1-055F-47A3-B112-5F2F2B0D6F08} [HKLM] -> C:\Program Files\Google\Google Gears\Internet Explorer\0.5.30.0\gears.dll [Menu: &Gears Settings] -> [2009/07/17 12:51:32 | 02,097,152 | ---- | M] (Google Inc.)
{0b83c99c-1efa-4259-858f-bcb33e007a5b}:{61539ecd-cc67-4437-a03c-9aaccbd14326} [HKLM] -> C:\Program Files\AIM Toolbar\aimtb.dll [Button: AIM Toolbar] -> [2009/05/06 13:14:26 | 01,279,272 | ---- | M] (AOL LLC.)
{92780B25-18CC-41C8-B9BE-3C9C571A8263}:{FF059E31-CC5A-4E2E-BF3B-96E929D65503} [HKLM] -> C:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL [Button: Research] -> [2007/04/19 14:10:18 | 00,063,840 | ---- | M] (Microsoft Corporation)
{95B3F550-91C4-4627-BCC4-521288C52977}:Exec [HKLM] -> C:\PPLive\PPLive.exe [Button: PPLive] -> [2009/06/03 15:45:41 | 00,156,976 | ---- | M] ( )
{95B3F550-91C4-4627-BCC4-521288C52977}:Exec [HKLM] -> C:\PPLive\PPLive.exe [Menu: PPLive] -> [2009/06/03 15:45:41 | 00,156,976 | ---- | M] ( )
{D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A}:res://C:\programs\BitComet\tools\BitCometBHO_1.2.2.28.dll/206 [HKLM] -> C:\programs\BitComet\tools\BitCometBHO_1.2.2.28.dll [Button: BitComet] -> [2008/02/29 03:49:22 | 00,468,280 | ---- | M] (BitComet)
{d9288080-1baa-4bc4-9cf8-a92d743db949}:Exec [HKLM] -> C:\Documents and Settings\John Vincent\Start Menu\Programs\IMVU\Run IMVU.lnk [Button: Run IMVU] -> [2009/03/20 21:50:37 | 00,001,988 | ---- | M] ()
{e2e2dd38-d088-4134-82b7-f2ba38496583}:Exec [HKLM] -> C:\WINDOWS\Network Diagnostic\xpnetdiag.exe [Menu: @xpsp3res.dll,-20001] -> [2008/04/13 13:53:32 | 00,558,080 | ---- | M] (Microsoft Corporation)
{FB5F1910-F110-11d2-BB9E-00C04F795683}:Exec [HKLM] -> C:\Program Files\Messenger\msmsgs.exe [Button: Messenger] -> [2008/04/13 19:12:28 | 01,695,232 | ---- | M] (Microsoft Corporation)
{FB5F1910-F110-11d2-BB9E-00C04F795683}:Exec [HKLM] -> C:\Program Files\Messenger\msmsgs.exe [Menu: Windows Messenger] -> [2008/04/13 19:12:28 | 01,695,232 | ---- | M] (Microsoft Corporation)
< Internet Explorer Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\ -> 
CmdMapping\\"{06926B30-424E-4f1c-8EE3-543CD96573DC}" [HKLM] ->  [知识库] -> File not found
CmdMapping\\"{08B0E5C0-4FCB-11CF-AAA5-00401C608501}" [HKLM] -> C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll [Sun Java Console] -> [2008/06/10 04:27:02 | 00,132,496 | ---- | M] (Sun Microsystems, Inc.)
CmdMapping\\"{0b83c99c-1efa-4259-858f-bcb33e007a5b}" [HKLM] -> C:\Program Files\AIM Toolbar\aimtb.dll [AIM Toolbar] -> [2009/05/06 13:14:26 | 01,279,272 | ---- | M] (AOL LLC.)
CmdMapping\\"{92780B25-18CC-41C8-B9BE-3C9C571A8263}" [HKLM] -> C:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL [Research] -> [2007/04/19 14:10:18 | 00,063,840 | ---- | M] (Microsoft Corporation)
CmdMapping\\"{CD67F990-D8E9-11d2-98FE-00C0F0318AFE}" [HKLM] ->  [Reg Error: Value error.] -> File not found
CmdMapping\\"{e2e2dd38-d088-4134-82b7-f2ba38496583}" [HKLM] -> C:\WINDOWS\Network Diagnostic\xpnetdiag.exe [@xpsp3res.dll,-20001] -> [2008/04/13 13:53:32 | 00,558,080 | ---- | M] (Microsoft Corporation)
CmdMapping\\"{FB5F1910-F110-11d2-BB9E-00C04F795683}" [HKLM] -> C:\Program Files\Messenger\msmsgs.exe [Messenger] -> [2008/04/13 19:12:28 | 01,695,232 | ---- | M] (Microsoft Corporation)
< Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ -> 
PluginsPageFriendlyName -> Microsoft ActiveX Gallery -> 
PluginsPage -> http://activex.microsoft.com/controls/find.asp?ext=%s&mime=%s -> 
< Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix
"" -> http://
< Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 1 domain(s) found. -> 
1 domain(s) and sub-domain(s) not assigned to a zone.
< Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> 
< Trusted Sites Domains [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> 
< Trusted Sites Ranges [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> 
< Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ -> 
{31435657-9980-0010-8000-00AA00389B71} [HKLM] -> http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab [Reg Error: Key error.] -> 
{8AD9C840-044E-11D1-B3E9-00805F499D93} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab [Java Plug-in 1.6.0_10] -> 
{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.5.0/jinstall-1_5_0_04-windows-i586.cab [Java Plug-in 1.5.0_04] -> 
{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab [Java Plug-in 1.6.0_07] -> 
{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab [Java Plug-in 1.6.0_10] -> 
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab [Java Plug-in 1.6.0_10] -> 
{D27CDB6E-AE6D-11CF-96B8-444553540000} [HKLM] -> http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab [Shockwave Flash Object] -> 
< Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\ -> 
DhcpNameServer -> 68.105.28.11 68.105.29.11 68.105.28.12 -> 
< Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ -> 
{E4680F19-C0CB-42A5-9C02-A9564C3AFC64}\\DhcpNameServer -> 68.105.28.11 68.105.29.11 68.105.28.12   (Intel(R) PRO/1000 PL Network Connection) -> 
< Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> 
*Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell -> 
Explorer.exe -> C:\WINDOWS\explorer.exe -> [2008/04/13 19:12:19 | 01,033,728 | ---- | M] (Microsoft Corporation)
*MultiFile Done* -> -> 
< Winlogon\Notify settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ -> 
igfxcui -> C:\WINDOWS\System32\igfxdev.dll -> [2005/11/28 00:51:04 | 00,135,168 | ---- | M] (Intel Corporation)
psfus -> C:\WINDOWS\System32\psqlpwd.dll -> [2005/12/21 23:42:30 | 00,040,448 | ---- | M] (UPEK Inc.)
< ShellExecuteHooks [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks -> 
"{32CD708B-60A7-4C00-9377-D73EAA495F0F}" [HKLM] -> C:\WINDOWS\System32\RavExt.dll [Rising Execute File Exts hook] -> [2008/12/30 12:33:36 | 00,146,032 | ---- | M] (Beijing Rising Information Technology Co., Ltd.)
< Domain Profile Authorized Applications List > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List -> 
"%windir%\Network Diagnostic\xpnetdiag.exe" -> C:\WINDOWS\Network Diagnostic\xpnetdiag.exe [%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000] -> [2008/04/13 13:53:32 | 00,558,080 | ---- | M] (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" -> C:\WINDOWS\System32\sessmgr.exe [%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019] -> [2008/04/13 19:12:34 | 00,141,312 | ---- | M] (Microsoft Corporation)
< Standard Profile Authorized Applications List > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List -> 
"%windir%\Network Diagnostic\xpnetdiag.exe" -> C:\WINDOWS\Network Diagnostic\xpnetdiag.exe [%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000] -> [2008/04/13 13:53:32 | 00,558,080 | ---- | M] (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" -> C:\WINDOWS\System32\sessmgr.exe [%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019] -> [2008/04/13 19:12:34 | 00,141,312 | ---- | M] (Microsoft Corporation)
"C:\baidu\Baiduhi\BaiduHi.exe" -> C:\baidu\Baiduhi\BaiduHi.exe [C:\baidu\Baiduhi\BaiduHi.exe:*:Enabled:BaiduHi] -> [2009/07/04 12:01:19 | 05,290,592 | ---- | M] (Baidu.com, Inc.)
"C:\Documents and Settings\John Vincent\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\octoshape\octoshape.exe" -> C:\Documents and Settings\John Vincent\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\octoshape\octoshape.exe [C:\Documents and Settings\John Vincent\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\octoshape\octoshape.exe:*:Enabled:Octoshape add-in for Adobe Flash Player] -> [2009/03/18 17:47:46 | 00,319,488 | ---- | M] (Octoshape ApS)
"C:\Documents and Settings\John Vincent\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.dll" -> C:\Documents and Settings\John Vincent\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.dll [C:\Documents and Settings\John Vincent\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.dll:*:Enabled:Google Talk Plugin] -> [2009/06/22 15:23:06 | 03,995,120 | ---- | M] (Google)
"C:\Documents and Settings\John Vincent\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe" -> C:\Documents and Settings\John Vincent\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe [C:\Documents and Settings\John Vincent\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe:*:Enabled:Google Talk Plugin] -> [2009/06/22 14:57:54 | 00,083,440 | ---- | M] (Google)
"C:\iTunes\iTunes.exe" -> C:\iTunes\iTunes.exe [C:\iTunes\iTunes.exe:*:Enabled:iTunes] -> [2009/07/13 14:02:56 | 14,074,656 | ---- | M] (Apple Inc.)
"C:\PPLive\PPLive.exe" -> C:\PPLive\PPLive.exe [C:\PPLive\PPLive.exe:*:Enabled:PPLive] -> [2009/06/03 15:45:41 | 00,156,976 | ---- | M] ( )
"C:\Program Files\AIM6\aim6.exe" -> C:\Program Files\AIM6\aim6.exe [C:\Program Files\AIM6\aim6.exe:*:Enabled:AIM] -> [2009/05/19 00:23:16 | 00,049,968 | ---- | M] (AOL LLC)
"C:\Program Files\America Online 9.0\waol.exe" -> C:\Program Files\America Online 9.0\waol.exe [C:\Program Files\America Online 9.0\waol.exe:*:Enabled:AOL] -> [2005/08/18 12:28:37 | 00,037,464 | ---- | M] (America Online, Inc.)
"C:\Program Files\Bonjour\mDNSResponder.exe" -> C:\Program Files\Bonjour\mDNSResponder.exe [C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour] -> [2008/12/12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.)
"C:\Program Files\Common Files\AOL\1140083713\EE\AOLServiceHost.exe" -> C:\Program Files\Common Files\AOL\1140083713\EE\AOLServiceHost.exe [C:\Program Files\Common Files\AOL\1140083713\EE\AOLServiceHost.exe:*:Enabled:AOL] -> [2004/11/03 16:03:00 | 00,110,680 | ---- | M] (America Online, Inc.)
"C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe" -> C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe [C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe:*:Enabled:AOL] -> [2004/10/20 08:40:04 | 00,010,328 | R--- | M] (America Online)
"C:\Program Files\Common Files\AOL\ACS\AOLDial.exe" -> C:\Program Files\Common Files\AOL\ACS\AOLDial.exe [C:\Program Files\Common Files\AOL\ACS\AOLDial.exe:*:Enabled:AOL] -> [2004/10/20 08:40:04 | 00,034,904 | R--- | M] (America Online)
"C:\Program Files\Common Files\AOL\AOL Spyware Protection\AOLSP Scheduler.exe" -> C:\Program Files\Common Files\AOL\AOL Spyware Protection\AOLSP Scheduler.exe [C:\Program Files\Common Files\AOL\AOL Spyware Protection\AOLSP Scheduler.exe:*:Enabled:AOL] -> [2004/10/18 20:42:18 | 00,079,448 | ---- | M] ()
"C:\Program Files\Common Files\AOL\AOL Spyware Protection\asp.exe" -> C:\Program Files\Common Files\AOL\AOL Spyware Protection\asp.exe [C:\Program Files\Common Files\AOL\AOL Spyware Protection\asp.exe:*:Enabled:AOL] -> [2004/10/15 15:16:06 | 03,040,856 | ---- | M] (AOL Spyware Protection)
"C:\Program Files\Common Files\AOL\Loader\aolload.exe" -> C:\Program Files\Common Files\AOL\Loader\aolload.exe [C:\Program Files\Common Files\AOL\Loader\aolload.exe:*:Enabled:AOL Application Loader] -> [2006/11/03 02:17:27 | 00,010,800 | ---- | M] (AOL LLC)
"C:\Program Files\Common Files\AOL\System Information\sinf.exe" -> C:\Program Files\Common Files\AOL\System Information\sinf.exe [C:\Program Files\Common Files\AOL\System Information\sinf.exe:*:Enabled:AOL] -> [2005/04/05 19:06:43 | 00,140,888 | ---- | M] (America Online Inc.)
"C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltpspd.exe" -> C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltpspd.exe [C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltpspd.exe:*:Enabled:AOLTopSpeed] -> [2004/10/15 15:54:12 | 00,046,768 | ---- | M] (America Online Inc)
"C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe" -> C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe [C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe:*:Enabled:AOLTsMon] -> [2004/10/15 15:54:14 | 00,100,016 | ---- | M] (America Online, Inc)
"C:\Program Files\Common Files\AolCoach\en_en\player\AOLNySEV.exe" -> C:\Program Files\Common Files\AolCoach\en_en\player\AOLNySEV.exe [C:\Program Files\Common Files\AolCoach\en_en\player\AOLNySEV.exe:*:Enabled:AOL] -> [2004/10/14 19:34:06 | 00,059,992 | ---- | M] (Gteko Ltd.)
"C:\Program Files\Google\Google Talk\googletalk.exe" -> C:\Program Files\Google\Google Talk\googletalk.exe [C:\Program Files\Google\Google Talk\googletalk.exe:*:Enabled:Google Talk] -> [2007/01/01 16:22:02 | 03,739,648 | ---- | M] (Google)
"C:\Program Files\Internet Explorer\iexplore.exe" -> C:\Program Files\Internet Explorer\iexplore.exe [C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer] -> [2009/03/08 14:09:26 | 00,638,816 | ---- | M] (Microsoft Corporation)
"C:\Program Files\Kingsoft\PowerWord 2006\update.exe" -> C:\Program Files\Kingsoft\PowerWord 2006\update.exe [C:\Program Files\Kingsoft\PowerWord 2006\update.exe:*:Enabled:Kingsoft PowerWord Online Update] -> [2008/02/19 06:48:00 | 00,296,960 | ---- | M] (Kingsoft)
"C:\Program Files\Kingsoft\PowerWord 2006\xdict.exe" -> C:\Program Files\Kingsoft\PowerWord 2006\xdict.exe [C:\Program Files\Kingsoft\PowerWord 2006\xdict.exe:*:Enabled:Kingsoft PowerWord] -> [2005/09/28 21:25:10 | 00,508,928 | ---- | M] (Kingsoft Co, Ltd.)
"C:\Program Files\Messenger\msmsgs.exe" -> C:\Program Files\Messenger\msmsgs.exe [C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger] -> [2008/04/13 19:12:28 | 01,695,232 | ---- | M] (Microsoft Corporation)
"C:\Program Files\Mozilla Firefox\firefox.exe" -> C:\Program Files\Mozilla Firefox\firefox.exe [C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox] -> [2009/07/15 15:30:39 | 00,908,280 | ---- | M] (Mozilla Corporation)
"C:\Program Files\PPLiveVA\PPLiveVA.exe" -> C:\Program Files\PPLiveVA\PPLiveVA.exe [C:\Program Files\PPLiveVA\PPLiveVA.exe:*:Enabled:PPLiveVA] -> [2009/06/25 00:47:04 | 00,197,968 | ---- | M] (Synacast)
"C:\programs\Kingsoft\PowerWord 2006\update.exe" -> C:\programs\Kingsoft\PowerWord 2006\update.exe [C:\programs\Kingsoft\PowerWord 2006\update.exe:*:Enabled:Kingsoft PowerWord Online Update] -> File not found
"C:\programs\Kingsoft\PowerWord 2006\xdict.exe" -> C:\programs\Kingsoft\PowerWord 2006\xdict.exe [C:\programs\Kingsoft\PowerWord 2006\xdict.exe:*:Enabled:Kingsoft PowerWord] -> File not found
"C:\Rising\Rav\CopyRun\RavCopy.exe" -> C:\Rising\Rav\CopyRun\RavCopy.exe [C:\Rising\Rav\CopyRun\RavCopy.exe:*:Enabled:Rising update] -> [2009/07/23 11:45:08 | 00,473,752 | ---- | M] (Beijing Rising Information Technology Co., Ltd.)
"C:\SopCast\adv\SopAdver.exe" -> C:\SopCast\adv\SopAdver.exe [C:\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver] -> [2007/03/07 05:27:12 | 00,567,384 | ---- | M] (www.sopcast.com)
"C:\SopCast\SopCast.exe" -> C:\SopCast\SopCast.exe [C:\SopCast\SopCast.exe:*:Enabled:SopCast Main Application] -> [2007/12/13 02:37:56 | 01,888,256 | ---- | M] (www.sopcast.com)
"C:\StormII\Box\Stline.exe" -> C:\StormII\Box\Stline.exe [C:\StormII\Box\Stline.exe:*:Enabled:暴风影视] -> [2009/06/30 18:51:50 | 00,759,896 | ---- | M] (北京暴风网际科技有限公司)
"C:\StormII\Storm.exe" -> C:\StormII\Storm.exe [C:\StormII\Storm.exe:*:Enabled:暴风影音] -> [2009/07/06 19:56:14 | 02,152,544 | ---- | M] (北京暴风网际科技有限公司)
"C:\StormII\stormliv.exe" -> C:\StormII\stormliv.exe [C:\StormII\stormliv.exe:*:Enabled:暴风影音媒体控制中心] -> [2009/05/13 17:31:40 | 00,596,064 | ---- | M] (北京暴风网际科技有限公司)
"C:\TDDOWNLOAD\soccer\[红色派系].RFPG\RFPG\redfac\rf.exe" -> C:\TDDOWNLOAD\soccer\[红色派系].RFPG\RFPG\redfac\rf.exe [C:\TDDOWNLOAD\soccer\[红色派系].RFPG\RFPG\redfac\rf.exe:*:Enabled:rf] -> File not found
"C:\Tencent\QQ2009\Bin\auclt.exe" -> C:\Tencent\QQ2009\Bin\auclt.exe [C:\Tencent\QQ2009\Bin\auclt.exe:*:Enabled:QQ2009] -> [2009/07/08 13:40:11 | 00,619,848 | ---- | M] (Tencent)
"C:\Tencent\QQ2009\Bin\QQ.exe" -> C:\Tencent\QQ2009\Bin\QQ.exe [C:\Tencent\QQ2009\Bin\QQ.exe:*:Enabled:QQ2009] -> [2009/01/25 15:03:26 | 00,136,512 | ---- | M] (Tencent)
"C:\Tencent\QQ2009\Plugin\Com.Tencent.QQPet\bin\QQPet\QQPetAgent.exe" -> C:\Tencent\QQ2009\Plugin\Com.Tencent.QQPet\bin\QQPet\QQPetAgent.exe [C:\Tencent\QQ2009\Plugin\Com.Tencent.QQPet\bin\QQPet\QQPetAgent.exe:*:Enabled:QQ宠物启动程序] -> [2009/01/25 15:03:26 | 00,505,264 | ---- | M] (腾讯科技(深圳)有限公司)
"C:\Tencent\QQLive\QQLive.exe" -> C:\Tencent\QQLive\QQLive.exe [C:\Tencent\QQLive\QQLive.exe:*:Enabled:QQLive] -> File not found
"C:\Thunder Network\Thunder\Program\Thunder5.exe" -> C:\Thunder Network\Thunder\Program\Thunder5.exe [C:\Thunder Network\Thunder\Program\Thunder5.exe:*:Enabled:Thunder] -> [2008/07/29 16:41:06 | 01,863,680 | ---- | M] (Thunder Networking Technologies,LTD)
"C:\TOSHIBA\Ivp\ISM\pinger.exe" -> C:\TOSHIBA\IVP\ISM\pinger.exe [C:\TOSHIBA\IVP\ISM\pinger.exe:*:Enabled:Toshiba Software Upgrades Pinger] -> [2005/03/17 20:37:26 | 00,151,552 | ---- | M] (TOSHIBA Corporation)
"C:\TOSHIBA\ivp\NetInt\Netint.exe" -> C:\TOSHIBA\ivp\NetInt\Netint.exe [C:\TOSHIBA\ivp\NetInt\Netint.exe:*:Enabled:NIE - Toshiba Software Upgrade Engine] -> [2004/11/03 18:06:34 | 00,462,848 | ---- | M] (TOSHIBA Corporation)
"C:\Tudou\飞速Tudou\TudouVa.exe" -> C:\Tudou\飞速Tudou\TudouVa.exe [C:\Tudou\飞速Tudou\TudouVa.exe:*:Enabled:飞速土豆1.12] -> [2008/12/29 22:43:38 | 01,122,304 | ---- | M] (土豆网)
"C:\WINDOWS\system32\oobe\5090\svchost.exe" -> C:\WINDOWS\System32\oobe\5090\svchost.exe [C:\WINDOWS\system32\oobe\5090\svchost.exe:*:Enabled:svchost] -> [2008/05/11 14:11:37 | 00,742,400 | ---- | M] ()
< SafeBoot AlternateShell [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot -> 
"AlternateShell" -> cmd.exe -> 
< CDROM Autorun Setting [HKEY_LOCAL_MACHINE]> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom ->
"AutoRun" -> 1 -> 
"DisplayName" -> CD-ROM Driver -> 
"ImagePath" ->  [system32\DRIVERS\cdrom.sys] -> File not found
< Drives with AutoRun files > ->  -> 
C:\AUTOEXEC.BAT [] -> C:\AUTOEXEC.BAT [ NTFS ] -> [2006/02/15 10:38:58 | 00,000,000 | ---- | M] ()
E:\Autorun.exe [MZ | ] -> E:\Autorun.exe [ CDFS ] -> [2001/08/13 16:05:24 | 01,572,864 | R--- | M] ()
E:\Autorun.inf [[autorun] | open=autorun.exe | icon=.\install\RA2MD.ICO, 0 | shell\readit\command=notepad readme.doc | shell\readit=Yuri's Revenge &ReadMe | ] -> E:\Autorun.inf [ CDFS ] -> [2001/07/25 17:36:12 | 00,000,135 | R--- | M] ()
< MountPoints2 [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2 -> 
\{6871cc67-3e85-11dd-9113-00038a000015}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6871cc67-3e85-11dd-9113-00038a000015}\Shell
\{6871cc67-3e85-11dd-9113-00038a000015}\Shell\\"" ->  [AutoRun] -> File not found
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6871cc67-3e85-11dd-9113-00038a000015}\Shell\Auto\command
\{6871cc67-3e85-11dd-9113-00038a000015}\Shell\Auto\command\\"" -> F:\jqx.exe [F:\jqx.exe] -> File not found
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6871cc67-3e85-11dd-9113-00038a000015}\Shell\AutoRun
\{6871cc67-3e85-11dd-9113-00038a000015}\Shell\AutoRun\\"" ->  [Auto&Play] -> File not found
\{8a6bb240-3e81-11dd-9112-00038a000015}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8a6bb240-3e81-11dd-9112-00038a000015}\Shell
\{8a6bb240-3e81-11dd-9112-00038a000015}\Shell\\"" ->  [AutoRun] -> File not found
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8a6bb240-3e81-11dd-9112-00038a000015}\Shell\Auto\command
\{8a6bb240-3e81-11dd-9112-00038a000015}\Shell\Auto\command\\"" -> G:\ubi.exe [G:\ubi.exe] -> File not found
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8a6bb240-3e81-11dd-9112-00038a000015}\Shell\AutoRun
\{8a6bb240-3e81-11dd-9112-00038a000015}\Shell\AutoRun\\"" ->  [Auto&Play] -> File not found
 
 
[Files/Folders - Created Within 30 Days]
2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> 
CF29356.exe -> C:\WINDOWS\System32\CF29356.exe -> [2009/07/23 13:29:42 | 00,389,120 | ---- | C] (Microsoft Corporation)
Qoobox -> C:\Qoobox -> [2009/07/23 13:29:02 | 00,000,000 | ---D | C]
AIM Toolbar -> C:\Documents and Settings\John Vincent\Local Settings\Application Data\AIM Toolbar -> [2009/07/23 11:57:22 | 00,000,000 | ---D | C]
ERDNT -> C:\ERDNT -> [2009/07/23 11:52:12 | 00,000,000 | ---D | C]
ERUNT -> C:\WINDOWS\ERUNT -> [2009/07/23 11:52:07 | 00,000,000 | ---D | C]
ERDNT -> C:\WINDOWS\ERDNT -> [2009/07/23 11:52:07 | 00,000,000 | ---D | C]
!FixIEDef -> C:\!FixIEDef -> [2009/07/23 11:52:04 | 00,000,000 | ---D | C]
KakaTool.dll -> C:\WINDOWS\System32\KakaTool.dll -> [2009/07/22 23:54:47 | 00,096,880 | ---- | C] (Beijing Rising Information Technology Co., Ltd.)
Downloads -> C:\Documents and Settings\John Vincent\My Documents\Downloads -> [2009/07/22 23:52:57 | 00,000,000 | ---D | C]
msa.exe -> C:\WINDOWS\msa.exe -> [2009/07/22 23:38:07 | 00,137,728 | ---- | C] ()
{5B57CF47-0BFA-43c6-ACF9-3B3653DCADBA}.job -> C:\WINDOWS\tasks\{5B57CF47-0BFA-43c6-ACF9-3B3653DCADBA}.job -> [2009/07/22 23:38:03 | 00,000,254 | -H-- | C] ()
{BB65B0FB-5712-401b-B616-E69AC55E2757}.job -> C:\WINDOWS\tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job -> [2009/07/22 23:37:59 | 00,000,298 | -H-- | C] ()
msxml71.dll -> C:\WINDOWS\System32\msxml71.dll -> [2009/07/22 23:37:57 | 00,143,364 | ---- | C] ()
My Safe -> C:\Documents and Settings\John Vincent\My Documents\My Safe -> [2009/07/22 12:32:11 | 00,000,000 | R-SD | C]
ptpusb.dll -> C:\WINDOWS\System32\ptpusb.dll -> [2009/07/17 21:27:48 | 00,005,632 | ---- | C] (Microsoft Corporation)
ptpusd.dll -> C:\WINDOWS\System32\ptpusd.dll -> [2009/07/17 21:27:46 | 00,159,232 | ---- | C] (Microsoft Corporation)
iTunes.lnk -> C:\Documents and Settings\All Users\Desktop\iTunes.lnk -> [2009/07/17 20:48:41 | 00,002,035 | ---- | C] ()
iPod -> C:\Program Files\iPod -> [2009/07/17 20:47:57 | 00,000,000 | ---D | C]
iTunes -> C:\iTunes -> [2009/07/17 20:47:36 | 00,000,000 | ---D | C]
Anna-Faris-382.jpg -> C:\Documents and Settings\John Vincent\Desktop\Anna-Faris-382.jpg -> [2009/07/17 00:59:37 | 00,264,827 | ---- | C] ()
eSellerateEngine.dll -> C:\WINDOWS\eSellerateEngine.dll -> [2009/07/16 14:24:19 | 00,360,580 | ---- | C] (eSellerate Inc.)
Album Cover Finder.lnk -> C:\Documents and Settings\John Vincent\Desktop\Album Cover Finder.lnk -> [2009/07/16 14:24:19 | 00,000,594 | ---- | C] ()
AlbumCoverFider -> C:\AlbumCoverFider -> [2009/07/16 14:24:17 | 00,000,000 | ---D | C]
itunesorgin -> C:\itunesorgin -> [2009/07/16 14:23:39 | 00,000,000 | ---D | C]
tunelyrics -> C:\tunelyrics -> [2009/07/16 14:19:19 | 00,000,000 | ---D | C]
FrontEndCD.ini -> C:\Documents and Settings\John Vincent\Application Data\FrontEndCD.ini -> [2009/07/16 14:09:46 | 00,000,001 | ---- | C] ()
FeConvertDrop -> C:\FeConvertDrop -> [2009/07/16 13:58:42 | 00,000,000 | ---D | C]
WindowsMediaUpdate -> C:\Program Files\WindowsMediaUpdate -> [2009/07/12 12:49:59 | 00,000,000 | -H-D | C]
acccore -> C:\Documents and Settings\John Vincent\Application Data\acccore -> [2009/07/10 19:45:33 | 00,000,000 | ---D | C]
AOL -> C:\Documents and Settings\John Vincent\Local Settings\Application Data\AOL -> [2009/07/10 19:41:20 | 00,000,000 | ---D | C]
{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906} -> C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906} -> [2009/07/09 00:09:54 | 00,000,000 | ---D | C]
Bonjour -> C:\Program Files\Bonjour -> [2009/07/09 00:08:04 | 00,000,000 | ---D | C]
QuickTime -> C:\Program Files\QuickTime -> [2009/07/09 00:06:52 | 00,000,000 | ---D | C]
070709SS -> C:\Documents and Settings\John Vincent\My Documents\070709SS -> [2009/07/07 20:55:36 | 00,000,000 | ---D | C]
Oceans.13.Eng.srt -> C:\Documents and Settings\John Vincent\Desktop\Oceans.13.Eng.srt -> [2009/07/07 14:45:24 | 00,125,300 | ---- | C] ()
Temp -> C:\Documents and Settings\John Vincent\Local Settings\Application Data\Temp -> [2009/07/02 21:33:07 | 00,000,000 | ---D | C]
%E6%85%88%E6%BA%AA+%E8%81%8C%E9%AB%98+%E6%91%B8%E5%A5%B6%E9%97%A8 -> C:\Documents and Settings\John Vincent\Desktop\%E6%85%88%E6%BA%AA+%E8%81%8C%E9%AB%98+%E6%91%B8%E5%A5%B6%E9%97%A8 -> [2009/07/02 12:58:14 | 00,000,000 | ---D | C]
%E6%85%88%E6%BA%AA+%E8%81%8C%E9%AB%98+%E6%91%B8%E5%A5%B6%E9%97%A8.rar -> C:\Documents and Settings\John Vincent\Desktop\%E6%85%88%E6%BA%AA+%E8%81%8C%E9%AB%98+%E6%91%B8%E5%A5%B6%E9%97%A8.rar -> [2009/07/02 12:57:50 | 03,506,853 | ---- | C] ()
GoogleUpdateTaskMachineUA.job -> C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job -> [2009/06/30 23:15:21 | 00,000,886 | ---- | C] ()
GoogleUpdateTaskMachineCore.job -> C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job -> [2009/06/30 23:15:20 | 00,000,882 | ---- | C] ()
GoogleUpdateTaskUserS-1-5-21-1362922413-4107504593-73232713-1005UA.job -> C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1362922413-4107504593-73232713-1005UA.job -> [2009/06/30 02:28:23 | 00,001,006 | ---- | C] ()
GoogleUpdateTaskUserS-1-5-21-1362922413-4107504593-73232713-1005Core.job -> C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1362922413-4107504593-73232713-1005Core.job -> [2009/06/30 02:28:22 | 00,000,954 | ---- | C] ()
237903.rar -> C:\Documents and Settings\John Vincent\Desktop\237903.rar -> [2009/06/28 23:10:55 | 00,021,586 | ---- | C] ()
Angels.and.Demons.R5.LiNE.XviD-DEViSE.srt -> C:\Documents and Settings\John Vincent\Desktop\Angels.and.Demons.R5.LiNE.XviD-DEViSE.srt -> [2009/06/28 18:15:05 | 00,097,172 | ---- | C] ()
SopCast.lnk -> C:\Documents and Settings\John Vincent\Desktop\SopCast.lnk -> [2009/06/24 14:42:31 | 00,000,341 | ---- | C] ()
SopCast -> C:\SopCast -> [2009/06/24 14:42:31 | 00,000,000 | ---D | C]
tv -> C:\tv -> [2009/06/24 14:41:26 | 00,000,000 | ---D | C]
QQVideo.Cache -> C:\QQVideo.Cache -> [2009/06/24 14:37:45 | 00,000,000 | ---D | C]
atid.ini -> C:\WINDOWS\atid.ini -> [2009/06/12 10:38:23 | 00,000,021 | ---- | C] ()
lame_enc.dll -> C:\WINDOWS\System32\lame_enc.dll -> [2009/04/26 00:28:35 | 00,484,352 | ---- | C] ()
cdplayer.ini -> C:\WINDOWS\cdplayer.ini -> [2009/02/21 01:22:34 | 00,000,025 | ---- | C] ()
BsMain.ini -> C:\WINDOWS\System32\BsMain.ini -> [2008/12/30 12:38:18 | 00,000,132 | ---- | C] ()
TLTitleData.ini -> C:\WINDOWS\TLTitleData.ini -> [2008/11/22 23:54:23 | 00,001,871 | ---- | C] ()
RSBDBACKUP.DLL -> C:\WINDOWS\RSBDBACKUP.DLL -> [2008/08/18 11:27:32 | 00,000,016 | ---- | C] ()
Rav.ini -> C:\WINDOWS\Rav.ini -> [2008/08/18 07:21:17 | 00,000,065 | ---- | C] ()
pwfsh.dll -> C:\WINDOWS\System32\pwfsh.dll -> [2008/06/19 23:54:00 | 00,000,000 | ---- | C] ()
NeroDigital.ini -> C:\WINDOWS\NeroDigital.ini -> [2008/06/12 07:59:28 | 00,000,047 | ---- | C] ()
install.ini -> C:\WINDOWS\install.ini -> [2008/06/12 03:48:01 | 00,000,130 | ---- | C] ()
SP701ALM.dll -> C:\WINDOWS\System32\SP701ALM.dll -> [2008/06/12 03:48:00 | 00,057,344 | ---- | C] ()
Cm3.ini -> C:\WINDOWS\Cm3.ini -> [2008/06/12 03:48:00 | 00,000,764 | ---- | C] ()
80838b8c91.dll -> C:\WINDOWS\System32\80838b8c91.dll -> [2008/05/25 12:30:17 | 00,000,287 | ---- | C] ()
d347bus.sys -> C:\WINDOWS\System32\drivers\d347bus.sys -> [2008/05/24 21:01:33 | 00,155,136 | ---- | C] ( )
d347prt.sys -> C:\WINDOWS\System32\drivers\d347prt.sys -> [2008/05/24 21:01:33 | 00,005,248 | ---- | C] ( )
c0c145c648.dll -> C:\WINDOWS\System32\c0c145c648.dll -> [2008/05/17 18:24:21 | 00,000,331 | ---- | C] ()
MAXLINK.INI -> C:\WINDOWS\MAXLINK.INI -> [2008/05/17 18:11:41 | 00,000,391 | ---- | C] ()
31f8e6e900.dll -> C:\WINDOWS\System32\31f8e6e900.dll -> [2008/05/17 18:08:33 | 00,000,000 | ---- | C] ()
2837e6b048.dll -> C:\WINDOWS\2837e6b048.dll -> [2008/05/11 14:11:42 | 00,000,012 | ---- | C] ()
c0bd45c648.dll -> C:\WINDOWS\System32\c0bd45c648.dll -> [2008/05/11 14:11:36 | 00,000,377 | ---- | C] ()
acdsee321.dll -> C:\WINDOWS\acdsee321.dll -> [2008/05/10 18:53:21 | 00,000,000 | ---- | C] ()
resiifers.ini -> C:\WINDOWS\System32\resiifers.ini -> [2008/05/10 18:45:34 | 00,000,118 | ---- | C] ()
XDICT.INI -> C:\WINDOWS\XDICT.INI -> [2008/05/10 18:44:14 | 00,000,067 | ---- | C] ()
AdvConfig.ini -> C:\WINDOWS\AdvConfig.ini -> [2008/05/10 18:30:22 | 00,000,027 | ---- | C] ()
smscfg.ini -> C:\WINDOWS\smscfg.ini -> [2008/05/06 00:57:13 | 00,000,061 | ---- | C] ()
TDispVol.dll -> C:\WINDOWS\System32\TDispVol.dll -> [2006/02/24 23:28:54 | 00,045,056 | ---- | C] ()
dirsaver.ini -> C:\WINDOWS\dirsaver.ini -> [2006/02/16 10:07:58 | 00,000,012 | ---- | C] ()
wininit.ini -> C:\WINDOWS\wininit.ini -> [2006/02/16 04:50:52 | 00,000,222 | ---- | C] ()
IVIresizeW7.dll -> C:\WINDOWS\System32\IVIresizeW7.dll -> [2006/02/16 04:25:21 | 00,204,800 | ---- | C] ()
IVIresizeA6.dll -> C:\WINDOWS\System32\IVIresizeA6.dll -> [2006/02/16 04:25:21 | 00,200,704 | ---- | C] ()
IVIresizeP6.dll -> C:\WINDOWS\System32\IVIresizeP6.dll -> [2006/02/16 04:25:21 | 00,192,512 | ---- | C] ()
IVIresizeM6.dll -> C:\WINDOWS\System32\IVIresizeM6.dll -> [2006/02/16 04:25:21 | 00,192,512 | ---- | C] ()
IVIresizePX.dll -> C:\WINDOWS\System32\IVIresizePX.dll -> [2006/02/16 04:25:21 | 00,188,416 | ---- | C] ()
IVIresize.dll -> C:\WINDOWS\System32\IVIresize.dll -> [2006/02/16 04:25:21 | 00,020,480 | ---- | C] ()
CSIIDecoder_kern_i386.sys -> C:\WINDOWS\System32\drivers\CSIIDecoder_kern_i386.sys -> [2006/02/15 11:41:53 | 00,036,736 | ---- | C] ()
TSXT_kern_i386.sys -> C:\WINDOWS\System32\drivers\TSXT_kern_i386.sys -> [2006/02/15 11:41:53 | 00,029,184 | ---- | C] ()
NDSTray.INI -> C:\WINDOWS\NDSTray.INI -> [2006/02/15 11:40:07 | 00,000,000 | ---- | C] ()
csellang.ini -> C:\WINDOWS\System32\csellang.ini -> [2006/02/15 11:28:50 | 00,128,113 | ---- | C] ()
csellang.dll -> C:\WINDOWS\System32\csellang.dll -> [2006/02/15 11:28:50 | 00,045,056 | ---- | C] ()
tosmreg.ini -> C:\WINDOWS\System32\tosmreg.ini -> [2006/02/15 11:28:50 | 00,010,165 | ---- | C] ()
cseltbl.ini -> C:\WINDOWS\System32\cseltbl.ini -> [2006/02/15 11:28:50 | 00,007,671 | ---- | C] ()
TCtrlIO.dll -> C:\WINDOWS\System32\TCtrlIO.dll -> [2006/02/15 11:25:00 | 00,118,784 | ---- | C] ()
DLLVGA.dll -> C:\WINDOWS\System32\DLLVGA.dll -> [2006/02/15 11:25:00 | 00,053,248 | ---- | C] ( )
RtlCPAPI.dll -> C:\WINDOWS\System32\RtlCPAPI.dll -> [2006/02/15 11:21:53 | 00,135,168 | ---- | C] ()
ODBC.INI -> C:\WINDOWS\ODBC.INI -> [2006/02/15 10:44:19 | 00,000,376 | ---- | C] ()
fxsperf.ini -> C:\WINDOWS\System32\fxsperf.ini -> [2006/02/15 10:34:07 | 00,001,793 | ---- | C] ()
OEMINFO.INI -> C:\WINDOWS\System32\OEMINFO.INI -> [2006/02/15 09:09:00 | 00,000,341 | ---- | C] ()
win.ini -> C:\WINDOWS\win.ini -> [2006/02/15 09:04:21 | 00,001,092 | ---- | C] ()
system.ini -> C:\WINDOWS\system.ini -> [2006/02/15 09:04:05 | 00,000,231 | ---- | C] ()
msrxdlv4.dll -> C:\WINDOWS\System32\msrxdlv4.dll -> [2006/02/15 09:03:20 | 00,001,088 | ---- | C] ()
px.ini -> C:\WINDOWS\System32\px.ini -> [2005/11/28 23:33:56 | 00,000,000 | ---- | C] ()
TosBtAcc.dll -> C:\WINDOWS\System32\TosBtAcc.dll -> [2005/09/02 17:44:08 | 00,110,592 | ---- | C] ()
tbiosdrv.sys -> C:\WINDOWS\System32\drivers\tbiosdrv.sys -> [2005/08/24 18:20:28 | 00,009,472 | ---- | C] ()
psisdecd.dll -> C:\WINDOWS\System32\psisdecd.dll -> [2005/08/05 17:01:54 | 00,239,104 | ---- | C] ()
TosCommAPI.dll -> C:\WINDOWS\System32\TosCommAPI.dll -> [2005/07/23 00:30:20 | 00,065,536 | ---- | C] ()
daemon.dll -> C:\WINDOWS\daemon.dll -> [2004/08/22 17:04:56 | 00,069,120 | ---- | C] ()
TosBtHcrpAPI.dll -> C:\WINDOWS\System32\TosBtHcrpAPI.dll -> [2004/07/20 20:04:02 | 00,094,208 | ---- | C] ()
TBTMonUI.dll -> C:\WINDOWS\System32\TBTMonUI.dll -> [2004/01/15 17:43:28 | 00,114,688 | ---- | C] ()
OUTLPERF.INI -> C:\WINDOWS\System32\OUTLPERF.INI -> [2003/01/07 18:05:08 | 00,002,695 | ---- | C] ()
 
[Files/Folders - Modified Within 30 Days]
1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> 
96 C:\Documents and Settings\John Vincent\Local Settings\Temp\*.tmp files -> C:\Documents and Settings\John Vincent\Local Settings\Temp\*.tmp -> 
12 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> 
a.dat -> C:\Documents and Settings\John Vincent\Local Settings\Temp\a.dat -> [2009/07/23 13:41:50 | 00,077,288 | ---- | M] ()
GoogleUpdateTaskUserS-1-5-21-1362922413-4107504593-73232713-1005UA.job -> C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1362922413-4107504593-73232713-1005UA.job -> [2009/07/23 13:33:07 | 00,001,006 | ---- | M] ()
cmd.execf -> C:\Documents and Settings\John Vincent\Local Settings\Temp\cmd.execf -> [2009/07/23 13:29:23 | 00,389,120 | ---- | M] (Microsoft Corporation)
CF29356.exe -> C:\WINDOWS\System32\CF29356.exe -> [2009/07/23 13:29:23 | 00,389,120 | ---- | M] (Microsoft Corporation)
GoogleUpdateTaskMachineUA.job -> C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job -> [2009/07/23 13:20:09 | 00,000,886 | ---- | M] ()
{5B57CF47-0BFA-43c6-ACF9-3B3653DCADBA}.job -> C:\WINDOWS\tasks\{5B57CF47-0BFA-43c6-ACF9-3B3653DCADBA}.job -> [2009/07/23 13:00:07 | 00,000,254 | -H-- | M] ()
{BB65B0FB-5712-401b-B616-E69AC55E2757}.job -> C:\WINDOWS\tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job -> [2009/07/23 13:00:02 | 00,000,298 | -H-- | M] ()
passport.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\passport.dll -> [2009/07/23 12:48:19 | 00,417,792 | ---- | M] (Kingsoft Corporation)
Perflib_Perfdata_ac8.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_ac8.dat -> [2009/07/23 12:47:02 | 00,016,384 | ---- | M] ()
启动飞速土豆.lnk -> C:\Documents and Settings\John Vincent\Start Menu\Programs\Startup\启动飞速土豆.lnk -> [2009/07/23 12:47:01 | 00,000,653 | ---- | M] ()
Google Software Updater.job -> C:\WINDOWS\tasks\Google Software Updater.job -> [2009/07/23 12:46:59 | 00,000,868 | ---- | M] ()
Powerword 2006.lnk -> C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Powerword 2006.lnk -> [2009/07/23 12:46:15 | 00,002,327 | ---- | M] ()
GoogleUpdateTaskMachineCore.job -> C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job -> [2009/07/23 12:45:23 | 00,000,882 | ---- | M] ()
SA.DAT -> C:\WINDOWS\tasks\SA.DAT -> [2009/07/23 12:45:20 | 00,000,006 | -H-- | M] ()
bootstat.dat -> C:\WINDOWS\bootstat.dat -> [2009/07/23 12:45:12 | 00,002,048 | --S- | M] ()
hiberfil.sys -> C:\hiberfil.sys -> [2009/07/23 12:45:11 | 21,370,51136 | -HS- | M] ()
Perflib_Perfdata_180.dat -> C:\Documents and Settings\John Vincent\Local Settings\Temp\Perflib_Perfdata_180.dat -> [2009/07/23 12:36:29 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_994.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_994.dat -> [2009/07/23 12:36:12 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_b9c.dat -> C:\Documents and Settings\John Vincent\Local Settings\Temp\Perflib_Perfdata_b9c.dat -> [2009/07/23 12:28:05 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_e1c.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_e1c.dat -> [2009/07/23 12:27:27 | 00,016,384 | ---- | M] ()
BsMain.ini -> C:\WINDOWS\System32\BsMain.ini -> [2009/07/23 11:46:32 | 00,000,132 | ---- | M] ()
Rav.inf -> C:\WINDOWS\Rav.inf -> [2009/07/23 11:46:30 | 00,000,368 | ---- | M] ()
Perflib_Perfdata_a40.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_a40.dat -> [2009/07/23 11:40:18 | 00,016,384 | ---- | M] ()
KakaTool.dll -> C:\WINDOWS\System32\KakaTool.dll -> [2009/07/22 23:55:49 | 00,096,880 | ---- | M] (Beijing Rising Information Technology Co., Ltd.)
index2.dat -> C:\Documents and Settings\John Vincent\Local Settings\Temp\tddcdat\index2.dat -> [2009/07/22 23:49:53 | 00,000,222 | ---- | M] ()
xlhcc.dat -> C:\WINDOWS\System32\xlhcc.dat -> [2009/07/22 23:49:43 | 00,000,026 | ---- | M] ()
cid_store.dat -> C:\WINDOWS\System32\cid_store.dat -> [2009/07/22 23:49:36 | 00,118,559 | ---- | M] ()
Rav.ini -> C:\WINDOWS\Rav.ini -> [2009/07/22 23:45:59 | 00,000,065 | ---- | M] ()
Perflib_Perfdata_a80.dat -> C:\Documents and Settings\John Vincent\Local Settings\Temp\Perflib_Perfdata_a80.dat -> [2009/07/22 23:42:31 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_358.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_358.dat -> [2009/07/22 23:42:03 | 00,016,384 | ---- | M] ()
msa.exe -> C:\WINDOWS\msa.exe -> [2009/07/22 23:37:59 | 00,137,728 | ---- | M] ()
c.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\c.exe -> [2009/07/22 23:37:59 | 00,137,728 | ---- | M] ()
msxml71.dll -> C:\WINDOWS\System32\msxml71.dll -> [2009/07/22 23:37:57 | 00,143,364 | ---- | M] ()
a.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\a.exe -> [2009/07/22 23:37:56 | 00,173,060 | ---- | M] ()
iTunes.lnk -> C:\Documents and Settings\All Users\Desktop\iTunes.lnk -> [2009/07/22 23:29:36 | 00,002,035 | ---- | M] ()
Perflib_Perfdata_f0c.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_f0c.dat -> [2009/07/22 12:32:44 | 00,016,384 | ---- | M] ()
NTUSER.DAT -> C:\Documents and Settings\John Vincent\NTUSER.DAT -> [2009/07/22 12:31:08 | 08,388,608 | -H-- | M] ()
ntuser.ini -> C:\Documents and Settings\John Vincent\ntuser.ini -> [2009/07/22 12:31:02 | 00,000,278 | -HS- | M] ()
Mozilla Firefox.lnk -> C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk -> [2009/07/22 12:22:15 | 00,001,613 | ---- | M] ()
Microsoft Office Word 2003.lnk -> C:\Documents and Settings\John Vincent\Desktop\Microsoft Office Word 2003.lnk -> [2009/07/21 11:35:32 | 00,002,497 | ---- | M] ()
peer.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\peer.dll -> [2009/07/21 11:25:20 | 01,897,752 | ---- | M] (Synacast)
TipsClient.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\TipsClient.dll -> [2009/07/21 11:25:07 | 00,155,648 | ---- | M] ()
Rising Antivirus.lnk -> C:\Documents and Settings\All Users\Desktop\Rising Antivirus.lnk -> [2009/07/21 00:20:59 | 00,001,637 | ---- | M] ()
Account Protection.lnk -> C:\Documents and Settings\All Users\Desktop\Account Protection.lnk -> [2009/07/21 00:20:59 | 00,000,747 | ---- | M] ()
PPVAUpdate.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\PPVAUpdate.exe -> [2009/07/20 23:16:42 | 01,943,664 | ---- | M] ()
DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> C:\Documents and Settings\John Vincent\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> [2009/07/17 21:40:53 | 00,054,272 | ---- | M] ()
qmgr0.dat -> C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat -> [2009/07/17 21:22:05 | 00,004,232 | ---- | M] ()
qmgr1.dat -> C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat -> [2009/07/17 21:22:04 | 00,005,896 | ---- | M] ()
AppleSoftwareUpdate.job -> C:\WINDOWS\tasks\AppleSoftwareUpdate.job -> [2009/07/17 20:40:16 | 00,000,284 | ---- | M] ()
Perflib_Perfdata_db8.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_db8.dat -> [2009/07/17 20:38:22 | 00,016,384 | ---- | M] ()
Anna-Faris-382.jpg -> C:\Documents and Settings\John Vincent\Desktop\Anna-Faris-382.jpg -> [2009/07/17 00:59:44 | 00,264,827 | ---- | M] ()
It Ain't Easy.mp3 -> C:\Documents and Settings\John Vincent\Desktop\It Ain't Easy.mp3 -> [2009/07/16 15:29:18 | 04,150,811 | ---- | M] ()
Album Cover Finder.lnk -> C:\Documents and Settings\John Vincent\Desktop\Album Cover Finder.lnk -> [2009/07/16 14:24:19 | 00,000,594 | ---- | M] ()
FrontEndCD.ini -> C:\Documents and Settings\John Vincent\Application Data\FrontEndCD.ini -> [2009/07/16 14:13:07 | 00,000,001 | ---- | M] ()
imsins.BAK -> C:\WINDOWS\imsins.BAK -> [2009/07/16 00:53:38 | 00,001,374 | ---- | M] ()
IPH.PH -> C:\IPH.PH -> [2009/07/14 21:41:32 | 00,002,630 | -H-- | M] ()
wpa.dbl -> C:\WINDOWS\System32\wpa.dbl -> [2009/07/12 12:45:47 | 00,001,158 | ---- | M] ()
SP701ASM.dat -> C:\WINDOWS\System32\SP701ASM.dat -> [2009/07/07 20:51:39 | 00,000,494 | ---- | M] ()
MRT.exe -> C:\WINDOWS\System32\MRT.exe -> [2009/07/07 10:10:56 | 24,539,592 | ---- | M] (Microsoft Corporation)
GoogleUpdateTaskUserS-1-5-21-1362922413-4107504593-73232713-1005Core.job -> C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1362922413-4107504593-73232713-1005Core.job -> [2009/07/06 02:33:00 | 00,000,954 | ---- | M] ()
MsnView.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\Baidu\AutoUpdate\Plugins\MsnView\MsnView.dll -> [2009/07/02 17:32:28 | 01,490,944 | ---- | M] ()
MsnNet.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\Baidu\AutoUpdate\Plugins\MsnView\MsnNet.dll -> [2009/07/02 17:32:28 | 00,798,720 | ---- | M] (TODO: <Company name>)
msnuninst.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\Baidu\AutoUpdate\Plugins\MsnView\msnuninst.exe -> [2009/07/02 17:32:28 | 00,092,384 | ---- | M] ()
MsnEngine.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\Baidu\AutoUpdate\Plugins\MsnView\MsnEngine.dll -> [2009/07/02 17:32:26 | 00,432,640 | ---- | M] ()
launchadmin.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\Baidu\AutoUpdate\launchadmin.exe -> [2009/07/02 17:32:26 | 00,068,704 | ---- | M] ()
%E6%85%88%E6%BA%AA+%E8%81%8C%E9%AB%98+%E6%91%B8%E5%A5%B6%E9%97%A8.rar -> C:\Documents and Settings\John Vincent\Desktop\%E6%85%88%E6%BA%AA+%E8%81%8C%E9%AB%98+%E6%91%B8%E5%A5%B6%E9%97%A8.rar -> [2009/07/02 12:58:06 | 03,506,853 | ---- | M] ()
Dear Alana.doc -> C:\Documents and Settings\John Vincent\Desktop\Dear Alana.doc -> [2009/07/01 17:06:53 | 00,023,040 | ---- | M] ()
XDICT.INI -> C:\WINDOWS\XDICT.INI -> [2009/06/30 13:01:58 | 00,000,067 | ---- | M] ()
237903.rar -> C:\Documents and Settings\John Vincent\Desktop\237903.rar -> [2009/06/28 23:10:56 | 00,021,586 | ---- | M] ()
Angels.and.Demons.R5.LiNE.XviD-DEViSE.srt -> C:\Documents and Settings\John Vincent\Desktop\Angels.and.Demons.R5.LiNE.XviD-DEViSE.srt -> [2009/06/27 01:05:48 | 00,097,172 | ---- | M] ()
serverconfig.dat -> C:\Documents and Settings\John Vincent\Local Settings\Temp\Baidu\AutoUpdate\serverconfig.dat -> [2009/06/26 17:45:42 | 00,009,824 | ---- | M] ()
mlfcache.dat -> C:\WINDOWS\System32\mlfcache.dat -> [2009/06/25 21:30:16 | 00,046,488 | -H-- | M] ()
SopCast.lnk -> C:\Documents and Settings\John Vincent\Desktop\SopCast.lnk -> [2009/06/24 14:42:31 | 00,000,341 | ---- | M] ()
alsetup.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\alsetup.exe -> [2009/05/19 00:36:04 | 00,142,040 | ---- | M] (AOL LLC)
vwpt.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\vwpt.exe -> [2009/05/19 00:36:03 | 02,884,832 | ---- | M] ()
toolbar.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\toolbar.exe -> [2009/05/19 00:36:03 | 01,484,856 | ---- | M] (AOL LLC.)
bsetutil.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\bsetutil.exe -> [2009/05/19 00:36:03 | 00,097,072 | ---- | M] ()
Uninstaller.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\Uninstaller.exe -> [2009/05/19 00:36:01 | 00,030,512 | ---- | M] ()
AOLSearch.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\AOLSearch.dll -> [2009/05/19 00:36:00 | 00,111,920 | ---- | M] (America Online, Inc.)
tbinst.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\tbinst.dll -> [2009/05/19 00:35:58 | 00,011,568 | ---- | M] (AOL LLC)
tbsetup.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\tbsetup.exe -> [2009/05/19 00:35:56 | 00,383,128 | ---- | M] (AOL LLC)
unagi3.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\unagi3.exe -> [2009/05/19 00:35:55 | 00,376,568 | ---- | M] ()
instSup.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\instSup.dll -> [2009/05/19 00:35:54 | 00,074,536 | ---- | M] (AOL LLC)
ocpinst.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\ocpinst.exe -> [2009/05/19 00:35:53 | 04,480,040 | ---- | M] (AOL LLC)
ocpchk.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\ocpchk.dll -> [2009/05/19 00:35:53 | 00,015,144 | ---- | M] (AOL LLC)
msvc9rt.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\msvc9rt.exe -> [2009/05/19 00:35:52 | 01,225,352 | ---- | M] (AOL LLC.)
migrator.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\migrator.exe -> [2009/05/19 00:35:51 | 00,231,216 | ---- | M] ()
amos.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\amos.exe -> [2009/05/19 00:35:51 | 00,069,104 | ---- | M] ()
amoinst.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\amoinst.exe -> [2009/05/19 00:35:51 | 00,037,888 | ---- | M] ()
imappver.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\imappver.dll -> [2009/05/19 00:35:49 | 00,010,544 | ---- | M] (AOL LLC)
AIMLang.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\AIMLang.exe -> [2009/05/19 00:35:48 | 00,550,024 | ---- | M] (AOL LLC)
AIMinst.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\AIMinst.exe -> [2009/05/19 00:35:46 | 02,402,104 | ---- | M] (AOL LLC)
gui.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\gui.dll -> [2009/05/19 00:35:44 | 01,025,328 | ---- | M] ()
AOLFirewallMgr.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\AOLFirewallMgr.dll -> [2009/05/19 00:35:44 | 00,095,792 | ---- | M] (AOL LLC)
postproc.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\postproc.exe -> [2009/05/19 00:35:43 | 00,036,704 | ---- | M] (AOL LLC.)
ProgUpd.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\ProgUpd.dll -> [2009/05/19 00:35:42 | 00,083,752 | ---- | M] (AOL LLC.)
setup.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\AIM_6.9.15.1\setup.exe -> [2009/05/19 00:35:41 | 00,172,840 | ---- | M] (AOL LLC.)
goopdateres_ta.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_ta.dll -> [2009/05/06 21:07:12 | 00,028,656 | ---- | M] (Google Inc.)
goopdateres_tr.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_tr.dll -> [2009/05/06 21:07:12 | 00,028,144 | ---- | M] (Google Inc.)
goopdateres_te.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_te.dll -> [2009/05/06 21:07:12 | 00,028,144 | ---- | M] (Google Inc.)
goopdateres_ur.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_ur.dll -> [2009/05/06 21:07:12 | 00,027,632 | ---- | M] (Google Inc.)
goopdateres_uk.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_uk.dll -> [2009/05/06 21:07:12 | 00,027,632 | ---- | M] (Google Inc.)
goopdateres_vi.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_vi.dll -> [2009/05/06 21:07:12 | 00,027,120 | ---- | M] (Google Inc.)
goopdateres_sv.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_sv.dll -> [2009/05/06 21:07:12 | 00,027,120 | ---- | M] (Google Inc.)
goopdateres_th.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_th.dll -> [2009/05/06 21:07:12 | 00,026,608 | ---- | M] (Google Inc.)
goopdateres_zh-TW.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_zh-TW.dll -> [2009/05/06 21:07:12 | 00,020,976 | ---- | M] (Google Inc.)
goopdateres_zh-CN.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_zh-CN.dll -> [2009/05/06 21:07:12 | 00,020,976 | ---- | M] (Google Inc.)
goopdateres_ml.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_ml.dll -> [2009/05/06 21:07:11 | 00,030,192 | ---- | M] (Google Inc.)
goopdateres_ro.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_ro.dll -> [2009/05/06 21:07:11 | 00,028,656 | ---- | M] (Google Inc.)
goopdateres_pl.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_pl.dll -> [2009/05/06 21:07:11 | 00,028,656 | ---- | M] (Google Inc.)
goopdateres_nl.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_nl.dll -> [2009/05/06 21:07:11 | 00,028,656 | ---- | M] (Google Inc.)
goopdateres_it.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_it.dll -> [2009/05/06 21:07:11 | 00,028,656 | ---- | M] (Google Inc.)
goopdateres_hu.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_hu.dll -> [2009/05/06 21:07:11 | 00,028,656 | ---- | M] (Google Inc.)
goopdateres_sr.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_sr.dll -> [2009/05/06 21:07:11 | 00,028,144 | ---- | M] (Google Inc.)
goopdateres_sl.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_sl.dll -> [2009/05/06 21:07:11 | 00,028,144 | ---- | M] (Google Inc.)
goopdateres_sk.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_sk.dll -> [2009/05/06 21:07:11 | 00,028,144 | ---- | M] (Google Inc.)
goopdateres_pt-PT.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_pt-PT.dll -> [2009/05/06 21:07:11 | 00,028,144 | ---- | M] (Google Inc.)
goopdateres_pt-BR.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_pt-BR.dll -> [2009/05/06 21:07:11 | 00,028,144 | ---- | M] (Google Inc.)
goopdateres_or.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_or.dll -> [2009/05/06 21:07:11 | 00,028,144 | ---- | M] (Google Inc.)
goopdateres_no.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_no.dll -> [2009/05/06 21:07:11 | 00,028,144 | ---- | M] (Google Inc.)
goopdateres_lv.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_lv.dll -> [2009/05/06 21:07:11 | 00,028,144 | ---- | M] (Google Inc.)
goopdateres_hr.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_hr.dll -> [2009/05/06 21:07:11 | 00,028,144 | ---- | M] (Google Inc.)
goopdateres_ms.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_ms.dll -> [2009/05/06 21:07:11 | 00,027,632 | ---- | M] (Google Inc.)
goopdateres_hi.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_hi.dll -> [2009/05/06 21:07:11 | 00,027,632 | ---- | M] (Google Inc.)
goopdateres_gu.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_gu.dll -> [2009/05/06 21:07:11 | 00,027,632 | ---- | M] (Google Inc.)
goopdateres_ru.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_ru.dll -> [2009/05/06 21:07:11 | 00,027,120 | ---- | M] (Google Inc.)
goopdateres_mr.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_mr.dll -> [2009/05/06 21:07:11 | 00,027,120 | ---- | M] (Google Inc.)
goopdateres_kn.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_kn.dll -> [2009/05/06 21:07:11 | 00,027,120 | ---- | M] (Google Inc.)
goopdateres_is.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_is.dll -> [2009/05/06 21:07:11 | 00,027,120 | ---- | M] (Google Inc.)
goopdateres_id.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_id.dll -> [2009/05/06 21:07:11 | 00,027,120 | ---- | M] (Google Inc.)
goopdateres_lt.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_lt.dll -> [2009/05/06 21:07:11 | 00,027,120 | ---- | M] („Google Inc.“)
goopdateres_iw.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_iw.dll -> [2009/05/06 21:07:11 | 00,025,072 | ---- | M] (Google Inc.)
goopdateres_ja.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_ja.dll -> [2009/05/06 21:07:11 | 00,023,536 | ---- | M] (Google Inc.)
goopdateres_ko.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_ko.dll -> [2009/05/06 21:07:11 | 00,023,024 | ---- | M] (Google Inc)
npGoogleOneClick8.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\npGoogleOneClick8.dll -> [2009/05/06 21:07:10 | 00,223,216 | ---- | M] (Google Inc.)
GoopdateBho.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\GoopdateBho.dll -> [2009/05/06 21:07:10 | 00,138,224 | ---- | M] (Google Inc.)
goopdateres_es.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_es.dll -> [2009/05/06 21:07:10 | 00,029,680 | ---- | M] (Google Inc.)
goopdateres_el.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_el.dll -> [2009/05/06 21:07:10 | 00,029,680 | ---- | M] (Google Inc.)
goopdateres_fr.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_fr.dll -> [2009/05/06 21:07:10 | 00,029,168 | ---- | M] (Google Inc.)
goopdateres_fil.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_fil.dll -> [2009/05/06 21:07:10 | 00,029,168 | ---- | M] (Google Inc.)
goopdateres_de.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_de.dll -> [2009/05/06 21:07:10 | 00,029,168 | ---- | M] (Google Inc.)
goopdateres_bg.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_bg.dll -> [2009/05/06 21:07:10 | 00,029,168 | ---- | M] (Google Inc.)
goopdateres_ca.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_ca.dll -> [2009/05/06 21:07:10 | 00,028,656 | ---- | M] (Google Inc.)
goopdateres_es-419.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_es-419.dll -> [2009/05/06 21:07:10 | 00,028,144 | ---- | M] (Google Inc.)
goopdateres_fi.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_fi.dll -> [2009/05/06 21:07:10 | 00,027,632 | ---- | M] (Google Inc.)
goopdateres_et.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_et.dll -> [2009/05/06 21:07:10 | 00,027,632 | ---- | M] (Google Inc.)
goopdateres_da.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_da.dll -> [2009/05/06 21:07:10 | 00,027,632 | ---- | M] (Google Inc.)
goopdateres_cs.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_cs.dll -> [2009/05/06 21:07:10 | 00,027,632 | ---- | M] (Google Inc.)
goopdateres_bn.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_bn.dll -> [2009/05/06 21:07:10 | 00,027,632 | ---- | M] (Google Inc.)
goopdateres_en-GB.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_en-GB.dll -> [2009/05/06 21:07:10 | 00,026,608 | ---- | M] (Google Inc.)
goopdateres_en.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_en.dll -> [2009/05/06 21:07:10 | 00,026,608 | ---- | M] (Google Inc.)
goopdateres_fa.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_fa.dll -> [2009/05/06 21:07:10 | 00,026,096 | ---- | M] (Google Inc.)
goopdateres_ar.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdateres_ar.dll -> [2009/05/06 21:07:10 | 00,025,584 | ---- | M] (Google Inc.)
goopdate.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\goopdate.dll -> [2009/05/06 21:07:09 | 00,669,168 | ---- | M] (Google Inc.)
GoogleUpdate.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\{5F6DF2CE-1835-41F7-8F9E-87B9B3BBB3EC}\GoogleUpdate.exe -> [2009/05/06 21:07:09 | 00,133,104 | ---- | M] (Google Inc.)
Perflib_Perfdata_884.dat -> C:\Documents and Settings\John Vincent\Local Settings\Temp\Perflib_Perfdata_884.dat -> [2009/05/02 01:24:22 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_e5c.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_e5c.dat -> [2009/05/01 19:11:30 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_2f0.dat -> C:\Documents and Settings\John Vincent\Local Settings\Temp\Perflib_Perfdata_2f0.dat -> [2009/04/28 21:48:30 | 00,016,384 | ---- | M] ()
selfupdate.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\selfupdate.exe -> [2009/04/27 21:41:46 | 00,031,048 | ---- | M] (Tencent)
KillProcDLL.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\nsm16C.tmp\KillProcDLL.dll -> [2009/04/19 11:01:00 | 00,004,608 | ---- | M] ()
CmdLine.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\nsm16C.tmp\CmdLine.dll -> [2009/04/19 11:01:00 | 00,004,608 | ---- | M] ()
jre-6u13-windows-i586-p-iftw.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\jre-6u13-windows-i586-p-iftw.exe -> [2009/03/25 02:02:45 | 00,607,640 | ---- | M] (Sun Microsystems, Inc.)
GoogleUpdaterSetup.exe -> C:\WINDOWS\Temp\gis19a76\2.4.1536.6592\GoogleUpdaterSetup.exe -> [2009/03/23 23:03:44 | 00,176,112 | ---- | M] (Google Inc.)
GoogleUpdater.exe -> C:\WINDOWS\Temp\gis19a76\GoogleUpdater.exe -> [2009/03/23 23:03:44 | 00,161,776 | ---- | M] (Google)
GoogleUpdaterService.exe -> C:\WINDOWS\Temp\gis19a76\GoogleUpdaterService.exe -> [2009/03/23 23:03:43 | 00,183,280 | ---- | M] (Google)
cires.dll -> C:\WINDOWS\Temp\gis19a76\2.4.1536.6592\cires.dll -> [2009/03/23 23:03:43 | 00,100,848 | ---- | M] ()
npCIDetect13.dll -> C:\WINDOWS\Temp\gis19a76\2.4.1536.6592\npCIDetect13.dll -> [2009/03/23 23:03:28 | 00,099,824 | ---- | M] (Google)
GoogleUpdaterInstallMgr.exe -> C:\WINDOWS\Temp\gis19a76\2.4.1536.6592\GoogleUpdaterInstallMgr.exe -> [2009/03/23 23:03:27 | 00,169,968 | ---- | M] (Google)
ci.dll -> C:\WINDOWS\Temp\gis19a76\2.4.1536.6592\ci.dll -> [2009/03/23 23:03:26 | 01,204,208 | ---- | M] (Google)
GoogleUpdaterAdminPrefs.exe -> C:\WINDOWS\Temp\gis19a76\2.4.1536.6592\GoogleUpdaterAdminPrefs.exe -> [2009/03/23 23:03:12 | 00,227,824 | ---- | M] (Google)
Perflib_Perfdata_1054.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_1054.dat -> [2009/03/09 18:38:03 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_ae4.dat -> C:\Documents and Settings\John Vincent\Local Settings\Temp\Perflib_Perfdata_ae4.dat -> [2009/03/09 18:34:37 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_b14.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_b14.dat -> [2009/03/09 18:32:28 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_cc.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_cc.dat -> [2009/03/01 12:11:42 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_768.dat -> C:\Documents and Settings\John Vincent\Local Settings\Temp\Perflib_Perfdata_768.dat -> [2009/03/01 12:10:07 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_e24.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_e24.dat -> [2009/03/01 12:07:28 | 00,016,384 | ---- | M] ()
ppliveva_setup_s.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\ppliveva_setup_s.exe -> [2009/02/24 15:43:07 | 02,814,464 | ---- | M] ()
Perflib_Perfdata_eb8.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_eb8.dat -> [2009/02/23 20:07:46 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_d48.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_d48.dat -> [2009/02/23 20:03:57 | 00,016,384 | ---- | M] ()
index.dat -> C:\WINDOWS\Temp\Temporary Internet Files\Content.IE5\index.dat -> [2009/02/20 21:40:01 | 03,620,864 | ---- | M] ()
index.dat -> C:\WINDOWS\Temp\History\History.IE5\index.dat -> [2009/02/20 21:40:01 | 00,606,208 | ---- | M] ()
index.dat -> C:\WINDOWS\Temp\Cookies\index.dat -> [2009/02/20 21:40:01 | 00,098,304 | ---- | M] ()
Perflib_Perfdata_d64.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_d64.dat -> [2009/02/19 16:59:18 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_dc8.dat -> C:\Documents and Settings\John Vincent\Local Settings\Temp\Perflib_Perfdata_dc8.dat -> [2009/02/19 16:58:49 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_1e0.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_1e0.dat -> [2009/02/19 16:55:24 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_c5c.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_c5c.dat -> [2009/02/16 12:48:30 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_1274.dat -> C:\Documents and Settings\John Vincent\Local Settings\Temp\Perflib_Perfdata_1274.dat -> [2009/02/15 20:01:17 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_9cc.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_9cc.dat -> [2009/02/15 18:17:58 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_ee4.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_ee4.dat -> [2009/02/15 16:08:34 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_900.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_900.dat -> [2009/02/15 16:05:59 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_bf4.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_bf4.dat -> [2009/02/15 15:17:51 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_c0c.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_c0c.dat -> [2009/02/15 15:14:49 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_fd8.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_fd8.dat -> [2009/02/08 16:18:18 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_d10.dat -> C:\Documents and Settings\John Vincent\Local Settings\Temp\Perflib_Perfdata_d10.dat -> [2009/02/08 16:15:49 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_8c.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_8c.dat -> [2009/02/08 15:21:02 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_e9c.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_e9c.dat -> [2009/02/08 15:12:59 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_1fc.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_1fc.dat -> [2009/02/08 15:09:53 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_f20.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_f20.dat -> [2009/02/08 13:48:41 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_dbc.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_dbc.dat -> [2009/01/26 14:22:33 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_944.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_944.dat -> [2009/01/17 12:19:04 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_16dc.dat -> C:\Documents and Settings\John Vincent\Local Settings\Temp\Perflib_Perfdata_16dc.dat -> [2009/01/12 21:59:49 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_ae8.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_ae8.dat -> [2009/01/12 20:39:20 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_304.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_304.dat -> [2009/01/01 00:50:27 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_f74.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_f74.dat -> [2008/12/28 20:51:56 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_af8.dat -> C:\Documents and Settings\John Vincent\Local Settings\Temp\Perflib_Perfdata_af8.dat -> [2008/12/28 20:50:53 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_6bc.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_6bc.dat -> [2008/12/28 20:48:53 | 00,016,384 | ---- | M] ()
setup.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\setup.exe -> [2008/12/26 11:21:08 | 09,516,472 | ---- | M] ()
Perflib_Perfdata_f04.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_f04.dat -> [2008/12/23 10:24:35 | 00,016,384 | ---- | M] ()
CalMRU.dat -> C:\Documents and Settings\All Users\Application Data\Microsoft\Works\CalMRU.dat -> [2008/11/28 14:55:05 | 00,002,060 | ---- | M] ()
Perflib_Perfdata_988.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_988.dat -> [2008/11/28 10:22:27 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_a30.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_a30.dat -> [2008/11/02 13:10:54 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_920.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_920.dat -> [2008/10/10 11:19:53 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_fdc.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_fdc.dat -> [2008/09/20 11:38:31 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_4d4.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_4d4.dat -> [2008/09/20 11:35:01 | 00,016,384 | ---- | M] ()
gtapi.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\IMVU\gtapi.dll -> [2008/09/08 11:15:38 | 00,045,680 | ---- | M] ()
GoogleToolbarInstaller_en_signed.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\IMVU\GoogleToolbarInstaller_en_signed.exe -> [2008/09/08 11:15:36 | 01,145,896 | ---- | M] (Google)
Perflib_Perfdata_9c4.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_9c4.dat -> [2008/08/17 21:09:24 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_b7c.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_b7c.dat -> [2008/08/17 09:19:57 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_1f0.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_1f0.dat -> [2008/06/13 01:06:03 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_26c.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_26c.dat -> [2008/06/12 21:09:59 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_208.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_208.dat -> [2008/06/08 22:53:50 | 00,016,384 | ---- | M] ()
Perflib_Perfdata_b24.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_b24.dat -> [2008/05/29 10:48:10 | 00,016,384 | ---- | M] ()
MaBey76886_1.dat -> C:\WINDOWS\Temp\MaBey76886_1.dat -> [2008/05/17 22:11:14 | 00,016,974 | ---- | M] ()
opa11.dat -> C:\Documents and Settings\All Users\Application Data\Microsoft\OFFICE\DATA\opa11.dat -> [2008/05/10 18:32:59 | 00,011,104 | ---- | M] ()
wklntsk1.dat -> C:\Documents and Settings\All Users\Application Data\Microsoft\Works\wklntsk1.dat -> [2008/05/08 19:23:12 | 00,162,475 | ---- | M] ()
wkcalcat.dat -> C:\Documents and Settings\All Users\Application Data\Microsoft\Works\wkcalcat.dat -> [2008/05/08 19:22:23 | 00,016,384 | ---- | M] ()
Au_.exe -> C:\Documents and Settings\John Vincent\Local Settings\Temp\~nsu.tmp\Au_.exe -> [2008/04/30 13:16:40 | 00,106,859 | ---- | M] (MEGAUPLOAD)
kcheck.dll -> C:\Documents and Settings\John Vincent\Local Settings\Temp\kcheck.dll -> [2007/01/10 03:28:10 | 00,003,584 | ---- | M] ()
 
[Files/Folders - Unicode - All]
C:\Documents and Settings\All Users\Desktop\MyConnect? Special Offer.lnk -> C:\Documents and Settings\All Users\Desktop\MyConnect™ Special Offer.lnk -> [2006/02/16 04:59:33 | 00,001,904 | ---- | C] ()
C:\Documents and Settings\All Users\Desktop\MyConnect? Special Offer.lnk -> C:\Documents and Settings\All Users\Desktop\MyConnect™ Special Offer.lnk -> [2006/02/16 04:59:33 | 00,001,904 | ---- | M] ()
< End of report >

  • 0

#4
johnny99
Posted 23 July 2009 - 07:36 PM

johnny99

    New Member

  • Topic Starter
  • Member
  • Pip
  • 4 posts
no one knows?
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP