Computer freezes when typing

I was told to post here to confirm if this is a malware problem or not, so here goes!

Several days ago, my computer started having a rather annoying problem. Basically, whenever I'm typing something, the computer will randomly freeze. It only lasts for about 20 seconds at most, but it happens constantly, at least once every few minutes. If I continue typing while it is frozen, when it unfreezes the text I typed will be there. (Usually. Occasionally it comes out as a garbled mess, like the cursor was jumping around while I was typing, but more often it's fine.) This happens when I type anywhere, not just in a particular program, and it only happens when I type.

I ran both MBAM and antivirus scans yesterday -- they both found a few problems, but says they were resolved. I ran both scans again today and neither picked up any problems this time.

I attempted to run GMER, but every time I tried, Windows had a system error and gave me a blue screen. (It complained about a file called kwldypod.sys, which I couldn't find anywhere on my system and couldn't learn anything about from Google.) So, no GMER log. I do have an OTL log, though:

OTL logfile created on: 12/22/2009 12:38:18 AM - Run 3
OTL by OldTimer - Version 3.1.19.0 Folder = C:\MCR\Programs
Windows XP Media Center Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 60.00% Memory free
3.00 Gb Paging File | 2.00 Gb Available in Paging File | 75.00% Paging File free
Paging file location(s): C:\pagefile.sys 1344 2688 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 69.82 Gb Total Space | 10.60 Gb Free Space | 15.18% Space Free | Partition Type: NTFS
Drive D: | 7.90 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: SAIORSE
Current User Name: Martha
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2009/12/22 00:37:35 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\MCR\Programs\OTL.exe
PRC - [2009/12/20 21:06:09 | 00,908,248 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009/11/24 18:51:40 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2009/11/24 18:51:35 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2009/11/24 18:51:21 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2009/11/24 18:48:48 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2009/11/24 18:43:56 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2009/06/17 10:18:42 | 06,582,912 | ---- | M] () -- C:\Program Files\MySQL\MySQL Server 5.1\bin\mysqld.exe
PRC - [2008/03/23 11:21:39 | 01,245,064 | ---- | M] () -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
PRC - [2007/08/02 11:33:50 | 00,080,528 | ---- | M] (INCA Internet Co., Ltd.) -- C:\Nexon\Mabinogi\npkcmsvc.exe
PRC - [2007/06/13 05:23:07 | 01,033,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007/05/28 11:57:54 | 00,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
PRC - [2006/10/27 06:12:00 | 02,424,728 | ---- | M] (JGsoft - Just Great Software) -- C:\Program Files\JGsoft\EditPadLite\EditPadLite.exe
PRC - [2006/10/11 20:37:24 | 00,430,080 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe
PRC - [2006/03/11 14:49:16 | 00,221,184 | ---- | M] () -- C:\Program Files\FlashMute\flashmute.exe
PRC - [2006/02/28 11:42:38 | 00,229,376 | ---- | M] (Apple Computer, Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2006/01/02 16:41:22 | 00,045,056 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
PRC - [2005/12/19 16:08:42 | 00,018,944 | ---- | M] () -- C:\WINDOWS\system32\WLTRYSVC.EXE
PRC - [2005/12/19 16:08:40 | 01,200,128 | ---- | M] (Dell Inc.) -- C:\WINDOWS\system32\BCMWLTRY.EXE
PRC - [2004/08/10 06:00:00 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\inetsrv\inetinfo.exe
PRC - [2004/08/10 06:00:00 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe
PRC - [2003/05/12 15:02:32 | 00,303,104 | ---- | M] (Lexmark International, Inc.) -- C:\WINDOWS\system32\LEXBCES.EXE
PRC - [2003/05/12 15:02:32 | 00,174,592 | ---- | M] (Lexmark International, Inc.) -- C:\WINDOWS\system32\LEXPPS.EXE
PRC - [2002/12/19 18:17:56 | 00,057,344 | ---- | M] (Thong Nguyen) -- C:\Program Files\PowerMenu\PowerMenu.exe
PRC - [1999/12/12 20:01:00 | 00,044,032 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\system32\CTSVCCDA.EXE

========== Modules (SafeList) ==========

MOD - [2009/12/22 00:37:35 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\MCR\Programs\OTL.exe
MOD - [2006/08/25 10:45:55 | 01,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
MOD - [2006/03/21 14:33:46 | 00,522,330 | ---- | M] (Stardock Corporation) -- C:\Program Files\Stardock\Object Desktop\WindowBlinds\wblind.dll
MOD - [2006/03/11 14:49:16 | 00,114,688 | ---- | M] () -- C:\Program Files\FlashMute\mutelib.dll
MOD - [2004/09/18 16:37:00 | 00,028,740 | ---- | M] (Stardock.Net, Inc) -- C:\Program Files\Stardock\Object Desktop\WindowBlinds\wbhelp.dll
MOD - [2003/02/26 21:27:44 | 00,036,864 | ---- | M] (Stardock.Net, Inc) -- C:\WINDOWS\system32\wbsys.dll
MOD - [2002/12/19 18:16:50 | 00,073,728 | ---- | M] (Thong Nguyen) -- C:\Program Files\PowerMenu\PowerMenuHook.dll

========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental)
SRV - File not found [On_Demand | Stopped] -- -- (dlcf_device)
SRV - [2009/11/24 18:51:35 | 00,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus)
SRV - [2009/11/24 18:51:21 | 00,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)
SRV - [2009/11/24 18:48:48 | 00,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)
SRV - [2009/11/24 18:43:56 | 00,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv)
SRV - [2009/06/17 10:18:42 | 06,582,912 | ---- | M] () [Auto | Running] -- C:\Program Files\MySQL\MySQL Server 5.1\bin\mysqld.exe -- (MySQL)
SRV - [2009/03/28 22:13:12 | 00,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2008/03/23 11:21:39 | 01,245,064 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe -- (Symantec Core LC)
SRV - [2007/11/02 18:36:32 | 00,504,104 | ---- | M] (Apple Inc.) [On_Demand | Stopped] -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service)
SRV - [2007/08/02 11:33:50 | 00,080,528 | ---- | M] (INCA Internet Co., Ltd.) [Auto | Running] -- C:\Nexon\Mabinogi\npkcmsvc.exe -- (npkcmsvc)
SRV - [2007/05/28 11:57:54 | 00,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2007/01/19 12:54:14 | 00,097,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\MSN Messenger\usnsvc.exe -- (usnjsvc)
SRV - [2006/10/26 19:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2006/10/26 14:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2006/10/11 20:37:24 | 00,430,080 | ---- | M] (ATI Technologies Inc.) [Auto | Running] -- C:\WINDOWS\system32\ati2evxx.exe -- (Ati HotKey Poller)
SRV - [2006/02/28 11:42:38 | 00,229,376 | ---- | M] (Apple Computer, Inc.) [Auto | Running] -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service)
SRV - [2005/12/19 16:08:42 | 00,018,944 | ---- | M] () [Auto | Running] -- C:\WINDOWS\System32\WLTRYSVC.EXE -- (wltrysvc)
SRV - [2005/04/04 00:41:10 | 00,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2004/08/10 06:00:00 | 00,015,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (W3SVC)
SRV - [2004/08/10 06:00:00 | 00,015,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (SMTPSVC) Simple Mail Transfer Protocol (SMTP)
SRV - [2004/08/10 06:00:00 | 00,015,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (IISADMIN)
SRV - [2003/05/12 15:02:32 | 00,303,104 | ---- | M] (Lexmark International, Inc.) [Auto | Running] -- C:\WINDOWS\system32\LEXBCES.EXE -- (LexBceS)
SRV - [1999/12/12 20:01:00 | 00,044,032 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\WINDOWS\system32\CTSVCCDA.EXE -- (Creative Service for CDROM Access)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk-rel&channel=us&ibd=3061211
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = http://search.msn.com/spbasic.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = www.google.com/ig/dell?hl=en&client=dell-usuk-rel&channel=us&ibd=3061211

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk-rel&channel=us&ibd=3061211
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = ;*.local;<local>
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 10.0.1.1:8080

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Yahoo"
FF - prefs.js..browser.search.order.1: "Yahoo"
FF - prefs.js..browser.search.param.yahoo-fr: "megaup"
FF - prefs.js..browser.search.param.yahoo-fr-cjkt: "megaup"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.2
FF - prefs.js..extensions.enabledItems: [email protected]:1.6
FF - prefs.js..extensions.enabledItems: {6AC85730-7D0F-4de0-B3FA-21142DD85326}:2.0.2.1
FF - prefs.js..extensions.enabledItems: {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}:0.9.6.5
FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20091209.4
FF - prefs.js..extensions.enabledItems: {3b56bcc7-54e5-44a2-9b44-66c3ef58c13e}:0.8.5.8
FF - prefs.js..extensions.enabledItems: {ad4ee9e5-49c7-4589-acf3-db9fa76a95c9}:2.1.3
FF - prefs.js..extensions.enabledItems: {75CEEE46-9B64-46f8-94BF-54012DE155F0}:0.3.9
FF - prefs.js..extensions.enabledItems: [email protected]:7
FF - prefs.js..extensions.enabledItems: {566D6332-1439-43bf-857E-7AD5F137AD0C}:1.10
FF - prefs.js..extensions.enabledItems: {37E4D8EA-8BDA-4831-8EA1-89053939A250}:3.0.0.1
FF - prefs.js..extensions.enabledItems: {f284fbe4-1683-461a-bf0e-f1bc2ef28cbf}:0.5.1
FF - prefs.js..extensions.enabledItems: {c45c406e-ab73-11d8-be73-000a95be3b12}:1.1.8
FF - prefs.js..extensions.enabledItems: {d3d70bca-2d54-425e-b02c-b7e2f4b07688}:3.5
FF - prefs.js..keyword.URL: "http://search.yahoo....8&fr=megaup&p="
FF - prefs.js..network.proxy.ftp: "66.160.144.212 "
FF - prefs.js..network.proxy.ftp_port: 8080
FF - prefs.js..network.proxy.gopher: "66.160.144.212 "
FF - prefs.js..network.proxy.gopher_port: 8080
FF - prefs.js..network.proxy.http: "66.160.144.212 "
FF - prefs.js..network.proxy.http_port: 8080
FF - prefs.js..network.proxy.socks: "66.160.144.212 "
FF - prefs.js..network.proxy.socks_port: 8080
FF - prefs.js..network.proxy.ssl: "66.160.144.212 "
FF - prefs.js..network.proxy.ssl_port: 8080

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/12/20 21:06:33 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/12/21 23:47:00 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Sunbird 0.8\extensions\\Components: C:\Program Files\Mozilla Sunbird\components [2008/04/15 08:53:10 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Sunbird 0.8\extensions\\Plugins: C:\Program Files\Mozilla Sunbird\plugins [2009/11/17 17:43:52 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 2.0.0.23\extensions\\Components: C:\PROGRA~1\Mozilla Thunderbird\components [2009/08/27 12:59:31 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 2.0.0.23\extensions\\Plugins: C:\PROGRA~1\Mozilla Thunderbird\plugins [2009/12/21 23:47:00 | 00,000,000 | ---D | M]

[2009/12/09 16:56:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Mozilla\Extensions
[2009/12/08 22:03:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Mozilla\Extensions\[email protected]
[2009/12/09 16:56:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Mozilla\Extensions\[email protected]
[2009/12/22 00:20:21 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Mozilla\Firefox\Profiles\dwtdgp8v.default\extensions
[2008/05/17 11:32:17 | 00,000,000 | ---D | M] (Metal Lion - Brushed iCe) -- C:\Documents and Settings\Martha\Application Data\Mozilla\Firefox\Profiles\dwtdgp8v.default\extensions\{1BF7AC8B-3EE4-46be-AD8B-7F1FA1F3E15D}
[2009/12/13 19:07:49 | 00,000,000 | ---D | M] (PDF Download) -- C:\Documents and Settings\Martha\Application Data\Mozilla\Firefox\Profiles\dwtdgp8v.default\extensions\{37E4D8EA-8BDA-4831-8EA1-89053939A250}
[2009/07/30 00:29:23 | 00,000,000 | ---D | M] (Html Validator) -- C:\Documents and Settings\Martha\Application Data\Mozilla\Firefox\Profiles\dwtdgp8v.default\extensions\{3b56bcc7-54e5-44a2-9b44-66c3ef58c13e}
[2009/09/27 00:35:57 | 00,000,000 | ---D | M] (Big Fish Games Toolbar) -- C:\Documents and Settings\Martha\Application Data\Mozilla\Firefox\Profiles\dwtdgp8v.default\extensions\{6847DFAE-037A-400c-A524-27F0A281B692}
[2009/07/30 00:28:57 | 00,000,000 | ---D | M] (ColorZilla) -- C:\Documents and Settings\Martha\Application Data\Mozilla\Firefox\Profiles\dwtdgp8v.default\extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326}
[2009/07/30 00:28:59 | 00,000,000 | ---D | M] (MeasureIt) -- C:\Documents and Settings\Martha\Application Data\Mozilla\Firefox\Profiles\dwtdgp8v.default\extensions\{75CEEE46-9B64-46f8-94BF-54012DE155F0}
[2009/07/30 00:28:43 | 00,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Martha\Application Data\Mozilla\Firefox\Profiles\dwtdgp8v.default\extensions\{ad4ee9e5-49c7-4589-acf3-db9fa76a95c9}
[2009/07/30 00:29:09 | 00,000,000 | ---D | M] (Web Developer) -- C:\Documents and Settings\Martha\Application Data\Mozilla\Firefox\Profiles\dwtdgp8v.default\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}
[2009/12/13 19:07:48 | 00,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Martha\Application Data\Mozilla\Firefox\Profiles\dwtdgp8v.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009/07/30 00:29:10 | 00,000,000 | ---D | M] (iFox Smooth) -- C:\Documents and Settings\Martha\Application Data\Mozilla\Firefox\Profiles\dwtdgp8v.default\extensions\{d3d70bca-2d54-425e-b02c-b7e2f4b07688}
[2009/05/27 16:57:01 | 00,000,000 | ---D | M] (Download Statusbar) -- C:\Documents and Settings\Martha\Application Data\Mozilla\Firefox\Profiles\dwtdgp8v.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}
[2009/12/13 19:07:43 | 00,000,000 | ---D | M] (Greasemonkey) -- C:\Documents and Settings\Martha\Application Data\Mozilla\Firefox\Profiles\dwtdgp8v.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2009/05/27 16:57:14 | 00,000,000 | ---D | M] (QuickFrame) -- C:\Documents and Settings\Martha\Application Data\Mozilla\Firefox\Profiles\dwtdgp8v.default\extensions\{f284fbe4-1683-461a-bf0e-f1bc2ef28cbf}
[2008/04/13 10:37:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Mozilla\Firefox\Profiles\dwtdgp8v.default\extensions\[email protected]
[2008/12/14 21:04:27 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Mozilla\Firefox\Profiles\dwtdgp8v.default\extensions\[email protected]
[2008/12/13 17:39:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Mozilla\Firefox\Profiles\dwtdgp8v.default\extensions\[email protected]
[2008/04/15 08:53:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Mozilla\Sunbird\Profiles\kapt3j0g.default\extensions
[2009/12/22 00:20:22 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions

O1 HOSTS File: (366494 bytes) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 12613 more lines...
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No CLSID value found.
O2 - BHO: (Big Fish Games Toolbar) - {C7C9FC25-88B0-4682-9C9F-2608E9117647} - C:\Program Files\BfgBar\bfg.dll ()
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (Veoh Web Player Video Finder) - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll (Veoh Networks Inc)
O3 - HKLM\..\Toolbar: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Big Fish Games Toolbar) - {C7C9FC25-88B0-4682-9C9F-2608E9117647} - C:\Program Files\BfgBar\bfg.dll ()
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {9E5BD40E-6287-11D6-9772-0002A5DD2483} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe ()
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [IMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [MSPY2002] C:\WINDOWS\System32\IME\PINTLGNT\ImScInst.exe ()
O4 - HKLM..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKCU..\Run: [AdobeUpdater] C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [FlashMute] C:\Program Files\FlashMute\flashmute.exe ()
O4 - HKCU..\Run: [ProxyWay] C:\Program Files\ProxyWay\proxyway.exe File not found
O4 - Startup: C:\Documents and Settings\Martha\Start Menu\Programs\Startup\PowerMenu.lnk = C:\Program Files\PowerMenu\PowerMenu.exe (Thong Nguyen)
O4 - Startup: C:\Documents and Settings\Martha\Start Menu\Programs\Startup\Seagate 2GHKBLR0 Product Registration.lnk = C:\Documents and Settings\Martha\Application Data\Leadertech\PowerRegister\Seagate 2GHKBLR0 Product Registration.exe (Leader Technologies/Seagate)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme ()
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O15 - HKLM\..Trusted Domains: 58 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKCU\..Trusted Domains: 57 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...t/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://www.creative....15033/CTPID.cab (Creative Software AutoUpdate Support Package)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 63.162.197.69 63.162.197.99
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL) - C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL File not found
O20 - AppInit_DLLs: (wbsys.dll) - C:\WINDOWS\System32\wbsys.dll (Stardock.Net, Inc)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (C:\MCR\Login) - File not found
O20 - HKLM Winlogon: UIHost - (Screens\Firefox\Firefox) - File not found
O20 - HKLM Winlogon: UIHost - (Logon.exe) - File not found
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\WBSrv: DllName - C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\wbsrv.dll - C:\Program Files\Stardock\Object Desktop\WindowBlinds\WbSrv.dll (Stardock)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2005/08/16 05:43:04 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2000/08/17 01:27:06 | 00,000,094 | R--- | M] () - D:\autorun.inf -- [ UDF ]
O33 - MountPoints2\{361ac05d-0e0d-11da-9aa9-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{361ac05d-0e0d-11da-9aa9-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{361ac05d-0e0d-11da-9aa9-806d6172696f}\Shell\AutoRun\command - "" = E:\setup.exe -- File not found
O33 - MountPoints2\{49503342-e378-11de-829b-0015c5c1b976}\Shell\AutoRun\command - "" = H:\Setup.exe -- File not found
O33 - MountPoints2\{59aaee40-ec8f-11dc-b0af-0015c5c1b976}\Shell\AutoRun\command - "" = F:\Autorun.exe -- File not found
O33 - MountPoints2\{59aaee40-ec8f-11dc-b0af-0015c5c1b976}\Shell\Shell00\Command - "" = F:\Autorun.exe -- File not found
O33 - MountPoints2\{59aaee40-ec8f-11dc-b0af-0015c5c1b976}\Shell\Shell01\Command - "" = F:\Autorun.exe -- File not found
O33 - MountPoints2\{59aaee40-ec8f-11dc-b0af-0015c5c1b976}\Shell\Shell02\Command - "" = F:\Autorun.exe -- File not found
O33 - MountPoints2\{6888c91e-92df-11db-af4a-00038a000015}\Shell - "" = AutoRun
O33 - MountPoints2\{6888c91e-92df-11db-af4a-00038a000015}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{6888c91e-92df-11db-af4a-00038a000015}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -- File not found
O33 - MountPoints2\{d5c2ab19-4dc8-11dc-b05b-0015c5c1b976}\Shell - "" = AutoRun
O33 - MountPoints2\{d5c2ab19-4dc8-11dc-b05b-0015c5c1b976}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{d5c2ab19-4dc8-11dc-b05b-0015c5c1b976}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2005/08/16 05:22:48 | 00,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (65587118432321536)

========== Files/Folders - Created Within 14 Days ==========

[2009/12/21 16:59:19 | 00,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2009/12/21 16:46:30 | 00,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2009/12/21 16:46:04 | 00,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2009/12/21 12:19:45 | 00,023,120 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2009/12/21 12:19:44 | 00,048,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2009/12/21 12:19:43 | 00,027,408 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2009/12/21 12:19:41 | 00,097,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr
[2009/12/21 12:19:40 | 00,114,768 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2009/12/21 12:19:40 | 00,094,160 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2009/12/21 12:19:40 | 00,093,424 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2009/12/21 12:19:40 | 00,020,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2009/12/21 12:19:11 | 01,280,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2009/12/21 12:19:08 | 00,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2009/12/21 11:19:27 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Martha\Application Data\Malwarebytes
[2009/12/21 11:19:23 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009/12/21 11:19:21 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009/12/21 11:19:21 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009/12/21 11:19:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2009/12/21 11:03:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2009/12/21 11:03:09 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2009/12/21 11:03:09 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2009/12/21 11:03:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2009/12/20 21:31:48 | 00,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2009/12/20 21:31:48 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
[2009/12/17 23:53:47 | 00,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2009/12/13 16:50:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Martha\Application Data\vlc
[2009/12/10 00:07:33 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Martha\My Documents\NoteBurner
[2009/12/10 00:05:33 | 00,000,000 | ---D | C] -- C:\Program Files\PixiePack Codec Pack
[2009/12/10 00:02:24 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
[2009/12/10 00:01:46 | 00,000,000 | ---D | C] -- C:\Program Files\NCH Swift Sound
[2009/12/10 00:01:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Martha\Application Data\NCH Swift Sound
[2009/12/09 23:56:22 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\RapidSolution
[2009/12/09 23:54:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Martha\Local Settings\Application Data\RapidSolution
[2009/12/09 16:55:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Martha\Local Settings\Application Data\Songbird2
[2009/12/09 16:55:45 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Martha\Application Data\Songbird2
[2009/12/09 16:54:02 | 00,000,000 | ---D | C] -- C:\Program Files\Songbird
[2009/12/09 16:03:33 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Martha\Application Data\tidysongs15.27F6A35B76E5883BF9E6FEE514586561E60595CA.1
[2009/12/08 22:30:37 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Martha\.aTunes
[2009/12/08 22:30:10 | 00,000,000 | ---D | C] -- C:\Program Files\aTunes
[2009/12/08 22:03:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Martha\My Documents\LimeWire
[2009/12/08 22:02:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Martha\Application Data\LimeWire
[2008/12/26 17:12:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\VMware
[2008/11/12 23:14:55 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Help
[2008/11/12 23:14:55 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\Help
[2007/11/14 20:50:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Apple
[2006/12/15 21:12:22 | 36,808,256 | ---- | C] (Apple Computer, Inc.) -- C:\Program Files\iTunesSetup.exe
[2006/12/15 21:05:26 | 06,340,344 | ---- | C] (Mozilla) -- C:\Program Files\Thunderbird Setup 1.5.0.8.exe

========== Files - Modified Within 14 Days ==========

[2009/12/22 00:11:24 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009/12/22 00:09:04 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009/12/22 00:08:55 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009/12/22 00:07:57 | 18,612,224 | -H-- | M] () -- C:\Documents and Settings\Martha\NTUSER.DAT
[2009/12/21 22:52:41 | 00,000,178 | -HS- | M] () -- C:\Documents and Settings\Martha\ntuser.ini
[2009/12/21 12:19:45 | 00,001,709 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\avast! Antivirus.lnk
[2009/12/21 12:19:40 | 00,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2009/12/20 22:27:59 | 05,850,862 | -H-- | M] () -- C:\Documents and Settings\Martha\Local Settings\Application Data\IconCache.db
[2009/12/20 21:41:22 | 00,366,494 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2009/12/18 21:15:47 | 00,491,516 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009/12/18 21:15:47 | 00,088,892 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009/12/18 21:15:44 | 00,591,556 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009/12/18 21:08:39 | 02,480,752 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009/12/17 23:59:30 | 00,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2009/12/17 22:06:38 | 00,112,144 | ---- | M] () -- C:\Documents and Settings\Martha\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2009/12/13 15:14:32 | 00,001,320 | ---- | M] () -- C:\Documents and Settings\Martha\Start Menu\Programs\Startup\Seagate 2GHKBLR0 Product Registration.lnk
[2009/12/10 00:01:54 | 00,000,802 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Switch Sound File Converter.lnk
[2009/12/08 20:17:40 | 00,100,864 | ---- | M] () -- C:\Documents and Settings\Martha\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/12/08 18:31:06 | 00,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn
[2009/12/08 18:31:06 | 00,001,409 | ---- | M] () -- C:\WINDOWS\QTFont.for

========== Files Created - No Company Name ==========

[2009/12/21 12:19:45 | 00,001,709 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\avast! Antivirus.lnk
[2009/12/21 12:19:11 | 00,380,928 | ---- | C] () -- C:\WINDOWS\System32\actskin4.ocx
[2009/12/13 15:14:32 | 00,001,320 | ---- | C] () -- C:\Documents and Settings\Martha\Start Menu\Programs\Startup\Seagate 2GHKBLR0 Product Registration.lnk
[2009/12/10 00:01:54 | 00,000,802 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Switch Sound File Converter.lnk
[2009/12/08 18:30:23 | 00,054,156 | -H-- | C] () -- C:\WINDOWS\QTFont.qfn
[2009/12/08 18:30:23 | 00,001,409 | ---- | C] () -- C:\WINDOWS\QTFont.for
[2009/11/25 19:13:20 | 00,000,016 | ---- | C] () -- C:\WINDOWS\entpack.ini
[2009/11/03 19:56:05 | 00,000,004 | ---- | C] () -- C:\Documents and Settings\Martha\Application Data\ofhvmcbmskhyja1ehttl8okcpqyz0eb
[2009/10/09 22:37:30 | 00,000,000 | ---- | C] () -- C:\WINDOWS\Word Clock.ini
[2009/10/05 22:23:17 | 00,000,000 | ---- | C] () -- C:\WINDOWS\Ransom.INI
[2009/09/23 01:00:00 | 00,000,000 | ---- | C] () -- C:\WINDOWS\Curses.INI
[2009/09/20 16:16:28 | 00,087,552 | ---- | C] () -- C:\WINDOWS\System32\cpwmon2k.dll
[2009/09/07 20:09:08 | 00,000,000 | ---- | C] () -- C:\WINDOWS\ResortingToDanger.INI
[2009/08/12 21:52:09 | 00,018,991 | ---- | C] () -- C:\WINDOWS\System32\Vmscnt3.dll
[2009/05/10 18:59:47 | 00,143,872 | ---- | C] () -- C:\Program Files\Adobe After Effects CS4 お読みください.pdf
[2009/05/10 18:59:47 | 00,085,534 | ---- | C] () -- C:\Program Files\Leggimi di Adobe After Effects CS4.pdf
[2009/05/10 18:59:47 | 00,080,508 | ---- | C] () -- C:\Program Files\Adobe After Effects CS4 - Bitte lesen.pdf
[2009/05/10 18:59:47 | 00,063,669 | ---- | C] () -- C:\Program Files\Adobe After Effects CS4 Read Me.pdf
[2009/05/10 18:59:47 | 00,054,092 | ---- | C] () -- C:\Program Files\Léame de Adobe After Effects CS4.pdf
[2009/03/27 15:02:15 | 00,224,727 | ---- | C] () -- C:\Program Files\Léame de Illustrator CS4.pdf
[2009/03/27 15:02:15 | 00,070,497 | ---- | C] () -- C:\Program Files\Illustrator CS4 Read Me.pdf
[2009/03/23 23:18:39 | 00,000,024 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2009/01/09 15:51:06 | 00,002,828 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\KGyGaAvL.sys
[2009/01/09 15:51:06 | 00,000,088 | RHS- | C] () -- C:\Documents and Settings\All Users\Application Data\1F4E373AF4.sys
[2008/12/04 21:41:43 | 00,001,441 | ---- | C] () -- C:\Documents and Settings\Martha\Application Data\jben.cfg
[2008/11/28 18:39:05 | 00,491,144 | ---- | C] () -- C:\WINDOWS\System32\sqlite3.dll
[2008/11/11 13:19:34 | 00,000,049 | ---- | C] () -- C:\WINDOWS\lexstat.ini
[2008/10/23 17:43:33 | 00,141,612 | ---- | C] () -- C:\WINDOWS\System32\drivers\dump_wmimmc.sys
[2008/05/28 12:46:50 | 00,001,337 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2008/05/09 21:35:57 | 00,000,000 | ---- | C] () -- C:\Program Files\temp01
[2008/01/02 17:33:12 | 00,715,248 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2008/01/01 22:07:04 | 00,000,370 | ---- | C] () -- C:\WINDOWS\dellstat.ini
[2008/01/01 22:06:40 | 00,040,960 | ---- | C] () -- C:\WINDOWS\System32\dlbkvs.dll
[2008/01/01 22:06:12 | 00,000,255 | ---- | C] () -- C:\WINDOWS\System32\dlbkcoin.ini
[2007/09/28 11:07:52 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2007/09/28 11:05:50 | 00,000,416 | ---- | C] () -- C:\WINDOWS\System32\dtu100.dll.manifest
[2007/09/28 11:05:50 | 00,000,416 | ---- | C] () -- C:\WINDOWS\System32\dpl100.dll.manifest
[2007/09/28 11:05:08 | 00,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll
[2007/08/15 17:11:17 | 00,000,002 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2007/07/25 08:24:28 | 01,559,040 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2007/07/04 18:00:22 | 00,000,047 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2007/03/10 06:51:48 | 00,282,624 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2007/03/08 22:43:39 | 00,006,580 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys
[2007/03/08 22:43:39 | 00,000,168 | RHS- | C] () -- C:\WINDOWS\System32\1F4E373AF4.sys
[2007/03/08 22:20:10 | 00,000,064 | ---- | C] () -- C:\WINDOWS\NoTrax.ini
[2007/03/08 22:10:19 | 00,019,328 | ---- | C] () -- C:\WINDOWS\System32\NotSleep.dll
[2007/02/07 18:16:57 | 00,000,568 | ---- | C] () -- C:\Documents and Settings\Martha\Application Data\AutoGK.ini
[2007/02/03 19:03:30 | 00,000,032 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2007/02/01 20:04:57 | 00,001,935 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log
[2007/02/01 20:04:41 | 00,077,824 | R--- | C] () -- C:\WINDOWS\System32\HPZIDS01.dll
[2007/01/14 12:43:13 | 00,021,791 | ---- | C] () -- C:\WINDOWS\System32\smtpctrs.ini
[2007/01/14 12:43:13 | 00,001,037 | ---- | C] () -- C:\WINDOWS\System32\ntfsdrct.ini
[2007/01/14 12:42:47 | 00,038,576 | ---- | C] () -- C:\WINDOWS\System32\w3ctrs.ini
[2007/01/14 12:42:47 | 00,010,225 | ---- | C] () -- C:\WINDOWS\System32\axperf.ini
[2007/01/14 12:42:45 | 00,011,435 | ---- | C] () -- C:\WINDOWS\System32\infoctrs.ini
[2007/01/14 12:31:05 | 00,000,029 | ---- | C] () -- C:\WINDOWS\System32\UNWISE.INI
[2007/01/14 12:29:45 | 00,039,959 | ---- | C] () -- C:\WINDOWS\php.ini
[2007/01/13 14:58:02 | 00,000,000 | ---- | C] () -- C:\WINDOWS\QuickInstall.INI
[2006/12/27 21:16:06 | 00,000,024 | -H-- | C] () -- C:\WINDOWS\msrgctb.ini
[2006/12/27 21:16:06 | 00,000,024 | -H-- | C] () -- C:\WINDOWS\msrgcta.ini
[2006/12/16 18:25:04 | 01,035,271 | ---- | C] () -- C:\Program Files\wrar362.exe
[2006/12/16 18:23:19 | 01,358,363 | ---- | C] () -- C:\Program Files\Lotus_Sage_XP.rar
[2006/12/16 18:14:02 | 00,320,022 | ---- | C] () -- C:\Program Files\LogonLoaderSetup.exe
[2006/12/15 20:54:37 | 00,000,000 | ---- | C] () -- C:\WINDOWS\WB.ini
[2006/12/15 20:49:29 | 00,002,062 | ---- | C] () -- C:\WINDOWS\langorig.ini
[2006/12/15 20:49:01 | 00,020,480 | ---- | C] () -- C:\WINDOWS\System32\wbload.dll
[2006/12/15 19:30:26 | 00,100,864 | ---- | C] () -- C:\Documents and Settings\Martha\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2006/12/15 19:14:03 | 00,000,129 | ---- | C] () -- C:\Documents and Settings\Martha\Local Settings\Application Data\fusioncache.dat
[2006/12/11 08:50:15 | 00,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2006/12/11 08:31:40 | 00,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2006/12/11 08:00:10 | 00,086,016 | ---- | C] () -- C:\WINDOWS\System32\preflib.dll
[2006/12/11 08:00:06 | 00,757,760 | ---- | C] () -- C:\WINDOWS\System32\bcm1xsup.dll
[2006/12/11 07:59:40 | 00,000,390 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2005/08/16 05:37:24 | 00,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2005/08/05 15:01:54 | 00,235,008 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2003/01/07 16:05:08 | 00,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2002/10/15 17:54:04 | 00,153,088 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll

========== LOP Check ==========

[2009/11/15 03:13:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alawar Stargaze
[2009/04/21 21:18:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Autodesk
[2008/08/31 02:26:21 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Azureus
[2009/04/24 01:51:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Big Fish Games Vancouver
[2009/08/17 21:31:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Candy Factory
[2008/05/10 18:04:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\GameTap
[2007/01/13 14:43:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\HotSync
[2007/01/22 20:53:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IconTweaker
[2009/04/04 01:17:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Intenium
[2009/09/27 22:42:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\JollyBear
[2009/10/20 00:28:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Merscom
[2007/08/24 09:45:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Messenger Plus!
[2008/12/30 19:07:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MSScanAppDataDir
[2009/05/04 02:17:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MumboJumbo
[2009/07/30 16:17:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MySQL
[2009/10/24 22:31:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MythPeople
[2009/12/10 00:02:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
[2009/02/07 22:32:47 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nick Chase A Detective Story
[2009/10/17 21:51:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PlayFirst
[2009/03/16 12:06:27 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Playrix Entertainment
[2009/09/07 04:07:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PoBros
[2009/06/02 23:39:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PopCap Games
[2009/04/23 19:12:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\QuickClick
[2009/12/09 23:56:46 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\RapidSolution
[2009/04/05 12:15:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Redrum
[2009/07/05 14:08:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sandlot Games
[2009/06/29 16:21:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Slapdash Games
[2009/11/15 21:45:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2007/01/16 20:00:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Transparent
[2009/06/27 20:27:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\UClick
[2009/12/21 23:47:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2007/08/15 17:43:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\YAHOO
[2008/12/08 02:21:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\.gaim
[2009/06/08 21:32:21 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\.purple
[2009/08/12 23:35:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Aegisub
[2009/07/06 15:57:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Aisle 5 Games, Inc
[2009/10/09 20:22:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Alawar
[2009/09/30 02:03:12 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Amazon
[2009/12/21 23:00:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Aptana
[2009/04/21 21:18:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Autodesk
[2009/10/25 22:04:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Awem
[2008/08/31 16:10:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Azureus
[2009/09/27 22:14:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\BfgBar
[2009/10/25 13:47:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Big Fish Games
[2009/06/01 01:46:55 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Braid
[2009/08/01 13:14:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\de.makesoft.twhirl.0EA062BC275E7ED1E6EC3762EFFD73C7158ADF33.1
[2009/11/03 00:06:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Dekovir
[2006/12/28 19:26:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Diary Defender
[2009/01/29 17:57:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\e
[2009/11/04 00:09:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\ElementalsTheMagicKey
[2009/10/10 16:24:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Enki Games
[2009/08/05 23:38:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Enlightenus
[2009/10/03 23:09:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\ERS G-Studio
[2008/03/30 18:59:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Feedreader
[2009/11/15 19:27:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\FileZilla
[2009/09/26 16:51:05 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\GameInvest
[2008/12/08 15:28:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\gtk-2.0
[2009/01/29 17:41:21 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Helios
[2007/01/13 14:42:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\HotSync
[2007/01/22 20:53:39 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\IconTweaker
[2007/02/03 21:04:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Image Zone Express
[2009/07/01 00:44:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\IronCode
[2008/04/13 11:06:05 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\IsolatedStorage
[2008/05/06 07:10:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Jasc
[2009/01/29 19:18:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\JGsoft
[2007/01/13 14:46:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Leadertech
[2009/12/21 22:55:27 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\LimeWire
[2009/03/16 19:03:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Lost in the City
[2009/10/20 00:28:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Merscom
[2008/12/08 02:55:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Miranda
[2007/01/17 20:24:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\MySQL
[2009/12/10 00:01:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\NCH Swift Sound
[2009/07/30 01:48:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Notepad++
[2007/03/31 11:36:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Opera
[2009/09/26 22:30:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Peace Craft
[2009/07/06 18:24:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Pi Eye Games
[2009/10/17 21:51:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\PlayFirst
[2009/09/07 04:07:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\PoBros
[2009/04/03 00:08:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\SerpentOfIsis
[2008/05/29 19:38:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Simple Sudoku
[2009/05/11 02:25:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Skunk Studios
[2009/12/09 16:55:46 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Songbird2
[2006/12/15 21:07:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Thunderbird
[2009/12/09 16:03:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\tidysongs15.27F6A35B76E5883BF9E6FEE514586561E60595CA.1
[2009/03/22 11:39:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Total Eclipse
[2009/04/03 01:12:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Ubisoft
[2009/06/27 20:27:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\UClick
[2009/08/11 23:30:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Unity
[2009/12/21 22:58:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\uTorrent
[2009/07/12 22:48:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\V-Games
[2009/10/04 23:48:27 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\VampireSaga
[2009/04/21 01:00:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Martha\Application Data\Vogat Interactive

========== Purity Check ==========

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.exe >

< MD5 for: AGP440.SYS >
[2008/04/13 13:36:38 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\cf8ec753e88561d2ddb53e183dc05c3e\agp440.sys
[2004/08/04 00:07:42 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\i386\AGP440.SYS
[2004/08/04 00:07:42 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\system32\drivers\AGP440.SYS

< MD5 for: ATAPI.SYS >
[2008/04/13 13:40:30 | 00,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\cf8ec753e88561d2ddb53e183dc05c3e\atapi.sys
[2004/08/03 23:59:44 | 00,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\i386\atapi.sys
[2004/08/03 23:59:44 | 00,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\atapi.sys

< MD5 for: EVENTLOG.DLL >
[2008/04/13 19:11:53 | 00,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\SoftwareDistribution\Download\cf8ec753e88561d2ddb53e183dc05c3e\eventlog.dll
[2004/08/10 06:00:00 | 00,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\i386\eventlog.dll
[2004/08/10 06:00:00 | 00,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\WINDOWS\system32\eventlog.dll

< MD5 for: NETLOGON.DLL >
[2008/04/13 19:12:01 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\SoftwareDistribution\Download\cf8ec753e88561d2ddb53e183dc05c3e\netlogon.dll
[2009/02/06 13:46:09 | 00,408,064 | ---- | M] (Microsoft Corporation) MD5=6C476D33D82F1054849790181E8F7772 -- C:\WINDOWS\system32\dllcache\netlogon.dll
[2009/02/06 13:46:09 | 00,408,064 | ---- | M] (Microsoft Corporation) MD5=6C476D33D82F1054849790181E8F7772 -- C:\WINDOWS\system32\netlogon.dll
[2004/08/10 06:00:00 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\i386\netlogon.dll
[2004/08/10 06:00:00 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\WINDOWS\$NtUninstallKB968389$\netlogon.dll

< MD5 for: SCECLI.DLL >
[2004/08/10 06:00:00 | 00,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\i386\scecli.dll
[2004/08/10 06:00:00 | 00,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\WINDOWS\system32\scecli.dll
[2008/04/13 19:12:05 | 00,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\SoftwareDistribution\Download\cf8ec753e88561d2ddb53e183dc05c3e\scecli.dll

< %systemroot%\*. /mp /s >

========== Files - Unicode (All) ==========
[2009/05/10 18:59:47 | 00,212,991 | ---- | C] ()(C:\Program Files\Adobe After Effects CS4 ????.pdf) -- C:\Program Files\Adobe After Effects CS4 읽어보기.pdf
[2009/05/10 18:59:47 | 00,080,920 | ---- | C] ()(C:\Program Files\Adobe After Effects CS4 ? Lisez-moi.pdf) -- C:\Program Files\Adobe After Effects CS4 — Lisez-moi.pdf
[2009/03/27 15:02:15 | 00,227,578 | ---- | C] ()(C:\Program Files\Illustrator CS4 ? Lisez-moi.pdf) -- C:\Program Files\Illustrator CS4 — Lisez-moi.pdf
[2008/09/17 01:08:11 | 00,227,578 | ---- | M] ()(C:\Program Files\Illustrator CS4 ? Lisez-moi.pdf) -- C:\Program Files\Illustrator CS4 — Lisez-moi.pdf
[2008/08/28 13:09:49 | 00,212,991 | ---- | M] ()(C:\Program Files\Adobe After Effects CS4 ????.pdf) -- C:\Program Files\Adobe After Effects CS4 읽어보기.pdf
[2008/08/28 13:09:49 | 00,080,920 | ---- | M] ()(C:\Program Files\Adobe After Effects CS4 ? Lisez-moi.pdf) -- C:\Program Files\Adobe After Effects CS4 — Lisez-moi.pdf

========== Alternate Data Streams ==========

@Alternate Data Stream - 98 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:88050731
@Alternate Data Stream - 98 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:12D2EB9C
@Alternate Data Stream - 97 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:28CDD861
@Alternate Data Stream - 96 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:60A4BB64
@Alternate Data Stream - 94 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CF61CE5A
@Alternate Data Stream - 94 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:96C05DC7
@Alternate Data Stream - 252 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:123A86B5
@Alternate Data Stream - 248 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CAF8DAC8
@Alternate Data Stream - 239 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:425759C6
@Alternate Data Stream - 237 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D8F9D810
@Alternate Data Stream - 233 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:1F96ED45
@Alternate Data Stream - 232 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2BC498A4
@Alternate Data Stream - 231 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:6FD3C973
@Alternate Data Stream - 230 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D2397415
@Alternate Data Stream - 228 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:737160C1
@Alternate Data Stream - 225 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C10635F6
@Alternate Data Stream - 225 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:971DCCE2
@Alternate Data Stream - 223 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D31BE97C
@Alternate Data Stream - 223 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:84CFEE62
@Alternate Data Stream - 218 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:61AF2B29
@Alternate Data Stream - 215 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B1FBBD09
@Alternate Data Stream - 214 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:BF07EA98
@Alternate Data Stream - 214 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:98DFF516
@Alternate Data Stream - 213 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:55E1514E
@Alternate Data Stream - 212 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:24FECE50
@Alternate Data Stream - 211 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D1D597D0
@Alternate Data Stream - 207 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A3B8F70C
@Alternate Data Stream - 206 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:70E897B5
@Alternate Data Stream - 204 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5E9B629B
@Alternate Data Stream - 199 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D507B5A8
@Alternate Data Stream - 198 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C22674B6
@Alternate Data Stream - 198 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:54D5DB8A
@Alternate Data Stream - 198 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:02A78DF6
@Alternate Data Stream - 146 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4172F39C
@Alternate Data Stream - 140 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F84B8DB5
@Alternate Data Stream - 139 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0E22C5DB
@Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E7B4296D
@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7FCB9D0D
@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:25249477
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:FED25C29
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E07EA07E
@Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:6017A808
@Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3D36932D
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:97C4F81F
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4A2862FF
@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5EF1AD34
@Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:69AF9D20
@Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:BEB71B81
@Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8DF68137
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B0EB578B
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0D278FB5
@Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D48500F8
@Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E80802C7
@Alternate Data Stream - 111 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A3AE730E
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A7CF0BEA
@Alternate Data Stream - 108 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:9DF07E8F
@Alternate Data Stream - 107 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:45F3AD49
@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0D3CE40A
@Alternate Data Stream - 104 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:90876BA3
@Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:EE39C93C
@Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2F0007D6
@Alternate Data Stream - 102 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E51234A9
@Alternate Data Stream - 102 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:538A9F02
< End of report >

#1
Devian

Posted 21 December 2009 - 11:54 PM

Advertisements

Similar Topics

0 user(s) are reading this topic

As Featured On:

Forums

Downloads

Members

Connect With Us