Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

lsass.exe cpu 100% no networking


  • This topic is locked This topic is locked

#31
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0

Advertisements


#32
Salagubang

Salagubang

    Trusted Helper

  • Malware Removal
  • 3,891 posts
Hi johonn,

Can you update of the remaining issues.

Open OTL again.
  • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • Under the Custom Scan box paste this in

    netsvcs
    drivers32
    /md5start
    svchost.exe
    /md5stop
    %SYSTEMDRIVE%\*.*
    %systemroot%\*. /mp /s
    CREATERESTOREPOINT
    %systemroot%\System32\config\*.sav
    HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs

  • Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
  • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post them if you need to start a new topic.

  • 0

#33
johonn

johonn

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 120 posts
Here is the OTL.txt file. it didn't make an extras file. Also, I have cut and paste, drag and drop now.


OTL logfile created on: 10/5/2004 3:58:28 PM - Run 5
OTL by OldTimer - Version 3.2.12.0 Folder = H:\_OTL
Windows XP Home Edition Service Pack 1 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2800.1106)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 80.00% Memory free
4.00 Gb Paging File | 4.00 Gb Available in Paging File | 94.00% Paging File free
Paging file location(s): g:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = G: | %SystemRoot% = G:\WINDOWS | %ProgramFiles% = G:\Program Files
Drive C: | 465.76 Gb Total Space | 166.92 Gb Free Space | 35.84% Space Free | Partition Type: NTFS
Drive D: | 698.64 Gb Total Space | 184.56 Gb Free Space | 26.42% Space Free | Partition Type: NTFS
Drive E: | 55.83 Gb Total Space | 8.55 Gb Free Space | 15.32% Space Free | Partition Type: NTFS
Drive F: | 57.26 Gb Total Space | 56.56 Gb Free Space | 98.78% Space Free | Partition Type: NTFS
Drive G: | 152.66 Gb Total Space | 129.63 Gb Free Space | 84.91% Space Free | Partition Type: NTFS
Drive H: | 1.96 Gb Total Space | 1.87 Gb Free Space | 95.62% Space Free | Partition Type: FAT
I: Drive not present or media not loaded

Computer Name: DEEPWOOD
Current User Name: Donovan Gerrans
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2010/09/14 20:23:10 | 000,576,000 | ---- | M] (OldTimer Tools) -- H:\_OTL\OTL.exe
PRC - [2010/09/07 08:12:02 | 002,838,912 | ---- | M] (AVAST Software) -- G:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010/09/07 08:11:59 | 000,040,384 | ---- | M] (AVAST Software) -- G:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010/01/08 00:51:02 | 000,380,928 | ---- | M] (Spigot, Inc.) -- G:\Program Files\Application Updater\ApplicationUpdater.exe
PRC - [2008/05/26 22:19:14 | 000,123,904 | ---- | M] (Microsoft Corporation) -- G:\Program Files\Windows Desktop Search\WindowsSearch.exe
PRC - [2004/02/29 23:00:00 | 000,024,576 | ---- | M] (Oki Data Corporation) -- G:\WINDOWS\system32\spool\drivers\w32x86\3\OPHALDCS.EXE
PRC - [2002/09/03 09:32:50 | 001,004,032 | ---- | M] (Microsoft Corporation) -- G:\WINDOWS\explorer.exe


========== Modules (SafeList) ==========

MOD - [2010/09/14 20:23:10 | 000,576,000 | ---- | M] (OldTimer Tools) -- H:\_OTL\OTL.exe
MOD - [2002/09/03 09:46:11 | 000,106,547 | ---- | M] (Microsoft Corporation) -- G:\WINDOWS\system32\msscript.ocx
MOD - [2002/09/03 09:45:00 | 000,143,872 | ---- | M] (Microsoft Corporation) -- G:\WINDOWS\system32\MSIMTF.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- G:\WINDOWS\System32\appmgmts.dll -- (AppMgmt)
SRV - [2010/09/07 08:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- G:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV - [2010/09/07 08:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- G:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV - [2010/09/07 08:11:59 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- G:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010/06/10 21:03:08 | 000,144,176 | ---- | M] (Apple Inc.) [Auto | Stopped] -- G:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/03/25 21:40:44 | 000,017,904 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- G:\Program Files\Microsoft Security Essentials\MsMpEng.exe -- (MsMpSvc)
SRV - [2010/01/08 00:51:02 | 000,380,928 | ---- | M] (Spigot, Inc.) [Auto | Running] -- G:\Program Files\Application Updater\ApplicationUpdater.exe -- (Application Updater)
SRV - [2009/08/18 11:29:22 | 001,529,728 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- G:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc)
SRV - [2004/02/29 23:00:00 | 000,024,576 | ---- | M] (Oki Data Corporation) [Auto | Running] -- G:\WINDOWS\system32\spool\drivers\w32x86\3\OPHALDCS.EXE -- (DCSLoader)
SRV - [2002/09/03 10:06:31 | 000,019,456 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\WINDOWS\system32\tcpsvcs.exe -- (LPDSVC)
SRV - [2002/09/03 10:03:10 | 000,029,696 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- G:\WINDOWS\system32\snmp.exe -- (SNMP)
SRV - [2002/09/03 09:45:54 | 000,047,104 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\WINDOWS\system32\mspmspsv.dll -- (WmdmPmSp)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- G:\DOCUME~1\DONOVA~1\LOCALS~1\Temp\catchme.sys -- (catchme)
DRV - [2010/09/07 07:52:25 | 000,046,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- G:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2010/09/07 07:52:03 | 000,165,584 | ---- | M] (AVAST Software) [Kernel | System | Running] -- G:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2010/09/07 07:47:46 | 000,023,376 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- G:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2010/09/07 07:47:19 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- G:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2010/09/07 07:47:07 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Stopped] -- G:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010/09/07 07:46:51 | 000,028,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- G:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2010/03/25 21:30:22 | 000,151,216 | ---- | M] (Microsoft Corporation) [File_System | System | Stopped] -- G:\WINDOWS\system32\drivers\MpFilter.sys -- (MpFilter)
DRV - [2009/10/22 12:54:18 | 000,037,392 | ---- | M] (Kaspersky Lab) [Kernel | Boot | Running] -- G:\WINDOWS\System32\DRIVERS\54320612.sys -- (54320612)
DRV - [2009/09/25 16:59:42 | 000,128,016 | ---- | M] (Kaspersky Lab) [Kernel | System | Running] -- G:\WINDOWS\system32\drivers\54320611.sys -- (54320611)
DRV - [2009/05/09 01:14:20 | 000,014,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\nuidfltr.sys -- (NuidFltr)
DRV - [2003/08/29 04:59:24 | 001,101,696 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\BCMSM.sys -- (BCMModem)
DRV - [2003/04/24 16:58:00 | 001,271,706 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2001/08/22 08:42:58 | 000,013,632 | ---- | M] (Dell Computer Corporation) [Kernel | System | Running] -- G:\WINDOWS\SYSTEM32\DRIVERS\OMCI.SYS -- (OMCI)
DRV - [2001/08/17 13:58:00 | 000,019,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\hidbatt.sys -- (HidBatt)
DRV - [2001/08/17 07:05:16 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\OVCD.sys -- (QCDonner)
DRV - [2001/08/17 06:57:38 | 000,016,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\MODEMCSA.sys -- (MODEMCSA)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\..\URLSearchHook: {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=302398"
FF - prefs.js..browser.startup.homepage: "http://en-US.start3....en-US:official"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8
FF - prefs.js..extensions.enabledItems: [email protected]:1.2.1
FF - prefs.js..extensions.enabledItems: [email protected]:1.1.2
FF - prefs.js..extensions.enabledItems: [email protected]:1.2.3
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.1.5
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.2.1.30
FF - prefs.js..extensions.enabledItems: {DDC359D1-844A-42a7-9AA1-88A850A938A8}:1.1.10
FF - prefs.js..extensions.enabledItems: {07b2a769-ed19-4483-87ce-c643914c81bb}:3.0.0.91

FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: G:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/07/26 16:39:38 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.9\extensions\\Components: G:\Program Files\Mozilla Firefox\components [2010/09/11 22:15:00 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.9\extensions\\Plugins: G:\Program Files\Mozilla Firefox\plugins [2010/09/08 14:55:33 | 000,000,000 | ---D | M]

[2010/06/14 01:39:23 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Mozilla\Extensions
[2010/09/09 22:21:00 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Mozilla\Firefox\Profiles\e7oi83pg.default\extensions
[2010/06/23 18:50:32 | 000,000,000 | ---D | M] (Vista-aero) -- G:\Documents and Settings\Donovan Gerrans\Application Data\Mozilla\Firefox\Profiles\e7oi83pg.default\extensions\{07b2a769-ed19-4483-87ce-c643914c81bb}
[2010/08/31 20:02:47 | 000,000,000 | ---D | M] (FlashGot) -- G:\Documents and Settings\Donovan Gerrans\Application Data\Mozilla\Firefox\Profiles\e7oi83pg.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}
[2010/06/30 18:26:03 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- G:\Documents and Settings\Donovan Gerrans\Application Data\Mozilla\Firefox\Profiles\e7oi83pg.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/07/27 18:29:45 | 000,000,000 | ---D | M] (DownloadHelper) -- G:\Documents and Settings\Donovan Gerrans\Application Data\Mozilla\Firefox\Profiles\e7oi83pg.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2010/09/07 19:57:27 | 000,000,000 | ---D | M] (DownThemAll!) -- G:\Documents and Settings\Donovan Gerrans\Application Data\Mozilla\Firefox\Profiles\e7oi83pg.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}
[2010/06/24 16:41:55 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Mozilla\Firefox\Profiles\e7oi83pg.default\extensions\[email protected]
[2010/06/23 18:50:31 | 000,000,000 | ---D | M] (No name found) -- G:\Documents and Settings\Donovan Gerrans\Application Data\Mozilla\Firefox\Profiles\e7oi83pg.default\extensions\{07b2a769-ed19-4483-87ce-c643914c81bb}\chrome\mozapps\extensions
[2010/09/09 13:54:29 | 000,000,000 | ---D | M] -- G:\Program Files\Mozilla Firefox\extensions
[2010/05/24 18:49:08 | 000,000,000 | ---D | M] (Java Console) -- G:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2004/09/27 07:52:48 | 000,000,000 | ---D | M] (Java Console) -- G:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010/07/17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- G:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010/03/31 07:09:22 | 010,437,264 | ---- | M] (PDFTron Systems Inc.) -- G:\Program Files\Mozilla Firefox\plugins\PDFNetC.dll
[2010/04/08 09:36:02 | 000,107,760 | ---- | M] () -- G:\Program Files\Mozilla Firefox\plugins\ScorchPDFWrapper.dll

O1 HOSTS File: ([2010/10/18 22:24:04 | 000,000,027 | ---- | M]) - G:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - G:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O3 - HKLM\..\Toolbar: (&Radio) - {8E718888-423F-11D2-876E-00A0C9082467} - G:\WINDOWS\system32\msdxm.ocx ()
O4 - HKLM..\Run: [avast5] G:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [LogonStudio] G:\Program Files\WinCustomize\LogonStudio\logonstudio.exe (Stardock and Luca Saggese)
O4 - HKLM..\Run: [MSSE] G:\Program Files\Microsoft Security Essentials\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NvCplDaemon] G:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [SearchSettings] G:\Program Files\pdfforge Toolbar\SearchSettings.exe (Spigot, Inc.)
O4 - Startup: G:\Documents and Settings\All Users\Start Menu\Programs\Startup\Windows Search.lnk = G:\Program Files\Windows Desktop Search\WindowsSearch.exe (Microsoft Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&xport to Microsoft Excel - G:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: En&queue current page with Bulk Image Downloader - G:\Program Files\Bulk Image Downloader\iemenu\iebidqueue.htm ()
O8 - Extra context menu item: Enqueue link target with Bulk Ima&ge Downloader - G:\Program Files\Bulk Image Downloader\iemenu\iebidlinkqueue.htm ()
O8 - Extra context menu item: Open &link target with Bulk Image Downloader - G:\Program Files\Bulk Image Downloader\iemenu\iebidlink.htm ()
O8 - Extra context menu item: Open current page with Bulk I&mage Downloader - G:\Program Files\Bulk Image Downloader\iemenu\iebid.htm ()
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - G:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: @shdoclc.dll,-866 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - G:\WINDOWS\Web\related.htm ()
O9 - Extra 'Tools' menuitem : @shdoclc.dll,-864 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - G:\WINDOWS\Web\related.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - G:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.micros...b?1276501468140 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: DirectAnimation Java Classes file://G:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://G:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - G:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\vnd.ms.radio {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - G:\WINDOWS\system32\msdxm.ocx ()
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - G:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - G:\WINDOWS\explorer.exe (Microsoft Corporation)
O22 - SharedTaskScheduler: {1984DD45-52CF-49cd-AB77-18F378FEA264} - FencesShellExt - G:\Program Files\Stardock\Fences\FencesMenu.dll (Stardock)
O24 - Desktop WallPaper: G:\Documents and Settings\Donovan Gerrans\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: G:\Documents and Settings\Donovan Gerrans\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - G:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/06/13 22:56:44 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2008/07/29 14:54:51 | 000,000,000 | ---D | M] - D:\Autodesk Architectural Desktop 2004 -- [ NTFS ]
O32 - AutoRun File - [2006/10/29 11:41:34 | 000,000,000 | ---- | M] () - E:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - G:\WINDOWS\System32\appmgmts.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: Wmi - G:\WINDOWS\System32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - G:\WINDOWS\system32\mspmspsv.dll (Microsoft Corporation)

Drivers32: msacm.ac3filter - G:\WINDOWS\System32\ac3filter.acm ()
Drivers32: msacm.l3acm - G:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - G:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - G:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - G:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - G:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FFDS - G:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: vidc.iv31 - G:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - G:\WINDOWS\System32\ir32_32.dll ()
Drivers32: wave - G:\WINDOWS\System32\serwvdrv.dll (Microsoft Corporation)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (16620634377289728)

========== Files/Folders - Created Within 90 Days ==========

[2010/10/18 22:08:04 | 000,212,480 | ---- | C] (SteelWerX) -- G:\WINDOWS\SWXCACLS.exe
[2010/10/18 22:08:04 | 000,161,792 | ---- | C] (SteelWerX) -- G:\WINDOWS\SWREG.exe
[2010/10/18 22:08:04 | 000,136,704 | ---- | C] (SteelWerX) -- G:\WINDOWS\SWSC.exe
[2010/10/18 22:08:04 | 000,031,232 | ---- | C] (NirSoft) -- G:\WINDOWS\NIRCMD.exe
[2010/10/18 22:07:58 | 000,000,000 | ---D | C] -- G:\ComboFix
[2010/10/18 21:48:01 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\CatRoot2
[2010/10/05 21:27:05 | 000,000,000 | ---D | C] -- G:\WINDOWS\setup.pss
[2010/09/20 22:21:00 | 000,000,000 | ---D | C] -- G:\Qoobox
[2010/09/20 21:22:19 | 001,293,400 | ---- | C] (Kaspersky Lab ZAO) -- G:\Documents and Settings\Donovan Gerrans\Desktop\TDSSKiller.exe
[2010/09/14 21:01:55 | 000,165,584 | ---- | C] (AVAST Software) -- G:\WINDOWS\System32\drivers\aswSP.sys
[2010/09/14 21:01:55 | 000,017,744 | ---- | C] (AVAST Software) -- G:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010/09/14 21:01:53 | 000,023,376 | ---- | C] (AVAST Software) -- G:\WINDOWS\System32\drivers\aswRdr.sys
[2010/09/14 21:01:51 | 000,046,672 | ---- | C] (AVAST Software) -- G:\WINDOWS\System32\drivers\aswTdi.sys
[2010/09/14 21:01:48 | 000,100,176 | ---- | C] (AVAST Software) -- G:\WINDOWS\System32\drivers\aswmon2.sys
[2010/09/14 21:01:48 | 000,094,544 | ---- | C] (AVAST Software) -- G:\WINDOWS\System32\drivers\aswmon.sys
[2010/09/14 21:01:48 | 000,028,880 | ---- | C] (AVAST Software) -- G:\WINDOWS\System32\drivers\aavmker4.sys
[2010/09/14 21:01:07 | 000,038,848 | ---- | C] (AVAST Software) -- G:\WINDOWS\avastSS.scr
[2010/09/14 21:01:06 | 000,167,592 | ---- | C] (AVAST Software) -- G:\WINDOWS\System32\aswBoot.exe
[2010/09/14 20:35:00 | 000,000,000 | -HSD | C] -- G:\Documents and Settings\Donovan Gerrans\IECompatCache
[2010/09/12 08:40:01 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- G:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/09/12 08:40:00 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- G:\WINDOWS\System32\drivers\mbam.sys
[2010/09/11 22:35:32 | 000,000,000 | ---D | C] -- G:\WINDOWS\ERDNT
[2010/09/11 22:34:56 | 000,000,000 | ---D | C] -- G:\Program Files\ERUNT
[2010/09/10 22:12:04 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Local Settings\Application Data\PCHealth
[2010/09/02 22:55:37 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\ArcSoft
[2010/09/02 21:03:09 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Thinstall
[2010/08/16 22:07:24 | 000,000,000 | ---D | C] -- G:\Documents and Settings\All Users\Application Data\SlySoft
[2010/08/16 22:05:33 | 000,000,000 | ---D | C] -- G:\Program Files\SlySoft
[2010/07/30 19:53:14 | 000,000,000 | ---D | C] -- G:\Program Files\DCoder Image Source
[2010/07/30 19:53:01 | 000,000,000 | ---D | C] -- G:\Program Files\FFMPEG Core Files
[2010/07/30 19:52:51 | 000,000,000 | ---D | C] -- G:\Program Files\SHOUTcast Source
[2010/07/30 19:52:50 | 000,000,000 | ---D | C] -- G:\Program Files\MONOGRAM AMR SplitterDecoder
[2010/07/30 19:52:48 | 000,000,000 | ---D | C] -- G:\Program Files\CD Audio Reader Filter
[2010/07/30 19:52:47 | 000,000,000 | ---D | C] -- G:\Program Files\OpenSource AVI Splitter
[2010/07/30 19:52:45 | 000,000,000 | ---D | C] -- G:\Program Files\Gabest MPEG Splitter
[2010/07/30 19:52:43 | 000,000,000 | ---D | C] -- G:\Program Files\OpenSource DTSAC3DD+ Source Filter
[2010/07/30 19:52:35 | 000,000,000 | ---D | C] -- G:\Program Files\RealMedia
[2010/07/30 19:52:14 | 000,000,000 | ---D | C] -- G:\Program Files\DScaler5
[2010/07/30 19:52:07 | 000,000,000 | ---D | C] -- G:\Program Files\AC3Filter
[2010/07/30 19:51:55 | 000,000,000 | ---D | C] -- G:\Program Files\OpenSource Flash Video Splitter
[2010/07/30 19:51:51 | 000,000,000 | ---D | C] -- G:\Program Files\DirectVobSub
[2010/07/30 19:51:46 | 000,000,000 | ---D | C] -- G:\Program Files\Haali
[2010/07/30 19:51:32 | 000,000,000 | ---D | C] -- G:\Program Files\Bass Audio Decoder
[2010/07/30 19:51:03 | 000,000,000 | ---D | C] -- G:\Program Files\ffdshow
[2010/07/30 18:21:27 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\HpUpdate
[2010/07/30 18:21:25 | 000,000,000 | ---D | C] -- G:\WINDOWS\Hewlett-Packard
[2010/07/30 13:17:58 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Google
[2010/07/26 16:39:11 | 000,000,000 | ---D | C] -- G:\Program Files\Common Files\xing shared
[2010/07/26 16:38:45 | 000,000,000 | ---D | C] -- G:\Program Files\Real
[2010/07/26 16:38:44 | 000,000,000 | ---D | C] -- G:\Program Files\Common Files\Real
[2010/07/26 16:38:44 | 000,000,000 | ---D | C] -- G:\Documents and Settings\All Users\Application Data\Real
[2010/07/26 16:38:42 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Real
[2010/07/26 16:35:03 | 000,000,000 | ---D | C] -- G:\Program Files\iPod
[2010/07/16 18:06:35 | 000,000,000 | ---D | C] -- G:\WINDOWS\Sun
[2010/07/16 18:06:28 | 000,000,000 | ---D | C] -- G:\Documents and Settings\All Users\Application Data\Sun
[2010/07/16 18:02:48 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Sun
[2010/07/12 20:41:09 | 000,000,000 | ---D | C] -- G:\Documents and Settings\All Users\Documents\microsoft
[2010/07/12 20:40:00 | 000,000,000 | ---D | C] -- G:\Program Files\MSECache
[2010/07/09 15:55:53 | 000,000,000 | ---D | C] -- G:\WINDOWS\Minidump
[2010/07/09 03:00:24 | 000,000,000 | ---D | C] -- G:\Program Files\MSXML 4.0
[2010/07/07 21:48:32 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\HP
[2010/07/07 21:37:27 | 000,000,000 | ---D | C] -- G:\Program Files\Common Files\HP
[2010/07/07 21:36:06 | 000,000,000 | ---D | C] -- G:\Documents and Settings\All Users\Application Data\HP Product Assistant
[2010/07/07 21:36:05 | 000,000,000 | ---D | C] -- G:\Documents and Settings\All Users\Application Data\HP
[2010/07/07 21:35:06 | 000,000,000 | ---D | C] -- G:\Program Files\Common Files\Hewlett-Packard
[2010/07/07 21:35:05 | 000,000,000 | ---D | C] -- G:\Program Files\Hewlett-Packard
[2010/07/07 21:34:25 | 000,000,000 | ---D | C] -- G:\Program Files\HP
[2010/07/06 14:46:36 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Search Settings
[2010/07/06 14:46:34 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\pdfforge
[2010/07/06 14:20:39 | 000,000,000 | ---D | C] -- G:\Program Files\Application Updater
[2010/07/06 14:20:38 | 000,000,000 | ---D | C] -- G:\Program Files\pdfforge Toolbar
[2010/07/06 14:20:05 | 000,000,000 | ---D | C] -- G:\Program Files\PDFCreator
[2010/07/01 21:52:08 | 000,000,000 | ---D | C] -- G:\spoolerlogs
[2010/06/29 22:21:44 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Local Settings\Application Data\Aston2
[2010/06/29 22:21:44 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Aston2
[2010/06/29 21:58:57 | 000,012,288 | ---- | C] (Oki Data Corporation) -- G:\WINDOWS\System32\okComDLL.dll
[2010/06/29 21:58:56 | 000,245,760 | ---- | C] (Oki Data Corporation) -- G:\WINDOWS\System32\OkDrtPrn.exe
[2010/06/29 21:58:56 | 000,126,976 | ---- | C] (Oki Data Corporation) -- G:\WINDOWS\System32\OkDrtPrn.dll
[2010/06/29 21:58:56 | 000,012,288 | ---- | C] (Oki Data Corporation) -- G:\WINDOWS\System32\fxComDLL.dll
[2010/06/29 21:58:56 | 000,012,288 | ---- | C] (Oki Data Corporation) -- G:\WINDOWS\System32\efComDLL.dll
[2010/06/29 21:58:30 | 000,102,400 | ---- | C] (Oki Data Corporation) -- G:\WINDOWS\System32\opnetext.dll
[2010/06/29 21:58:05 | 000,086,016 | ---- | C] (Oki Data Corporation) -- G:\WINDOWS\System32\oklpinst.dll
[2010/06/29 21:58:05 | 000,040,960 | ---- | C] (Oki Data Corporation) -- G:\WINDOWS\System32\oklprrsc.dll
[2010/06/29 21:58:05 | 000,023,552 | ---- | C] (Oki Data Corporation) -- G:\WINDOWS\System32\oklprmon.dll
[2010/06/29 21:48:16 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\OkiData
[2010/06/29 21:43:11 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\InstallShield
[2010/06/29 21:36:18 | 000,000,000 | ---D | C] -- G:\Program Files\PhotoZoom Pro 3
[2010/06/29 16:48:18 | 000,000,000 | ---D | C] -- G:\Program Files\WinCustomize
[2010/06/29 16:48:18 | 000,000,000 | ---D | C] -- G:\Program Files\Common Files\Stardock
[2010/06/28 19:10:40 | 000,000,000 | ---D | C] -- G:\Program Files\PowerZip
[2010/06/28 18:25:54 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Windows Search
[2010/06/27 21:30:12 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Local Settings\Application Data\Kolor
[2010/06/27 21:14:24 | 000,000,000 | ---D | C] -- G:\Program Files\Kolor
[2010/06/27 21:09:58 | 000,000,000 | ---D | C] -- G:\Program Files\MosaicCreator
[2010/06/27 06:56:20 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\BID
[2010/06/27 05:45:05 | 000,000,000 | R--D | C] -- G:\Documents and Settings\Donovan Gerrans\My Documents\My Videos
[2010/06/27 05:45:05 | 000,000,000 | R--D | C] -- G:\Documents and Settings\All Users\Documents\My Videos
[2010/06/25 20:53:26 | 000,000,000 | ---D | C] -- G:\Program Files\Windows Media Connect 2
[2010/06/25 20:50:47 | 000,000,000 | ---D | C] -- G:\Documents and Settings\All Users\Application Data\xml_param
[2010/06/25 20:49:23 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\drivers\UMDF
[2010/06/25 20:49:23 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\LogFiles
[2010/06/25 20:43:49 | 000,000,000 | ---D | C] -- G:\WINDOWS\XSxS
[2010/06/25 20:43:49 | 000,000,000 | ---D | C] -- G:\Program Files\Xenocode
[2010/06/25 20:43:49 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Local Settings\Application Data\Xenocode
[2010/06/24 20:16:03 | 000,000,000 | ---D | C] -- G:\Program Files\Intel
[2010/06/24 17:31:50 | 000,090,112 | R--- | C] (Okidata Corporation) -- G:\WINDOWS\System32\OPDMN014.DLL
[2010/06/24 17:31:50 | 000,069,632 | R--- | C] (Oki Data Corporation) -- G:\WINDOWS\System32\OPUSB010.DLL
[2010/06/24 17:31:50 | 000,065,536 | R--- | C] (Oki Data Corporation) -- G:\WINDOWS\System32\OPM01LOC.DLL
[2010/06/24 17:31:50 | 000,057,344 | R--- | C] (Oki Data Corporation) -- G:\WINDOWS\System32\OPSLD010.DLL
[2010/06/24 17:31:50 | 000,049,152 | R--- | C] (Okidata Corporation) -- G:\WINDOWS\System32\OPS01LOC.DLL
[2010/06/24 17:31:50 | 000,045,132 | R--- | C] (Oki Data Corporation) -- G:\WINDOWS\System32\OPCLB012.DLL
[2010/06/24 17:31:50 | 000,040,960 | R--- | C] (Oki Data Corporation) -- G:\WINDOWS\System32\OPDVA012.DLL
[2010/06/23 22:21:21 | 000,065,536 | R--- | C] (Oki Data Corporation) -- G:\WINDOWS\System32\OPEXTUAC.DLL
[2010/06/23 22:21:21 | 000,053,248 | R--- | C] (Oki Data Corporation) -- G:\WINDOWS\System32\OPUSBEXT.DLL
[2010/06/23 22:21:21 | 000,040,960 | ---- | C] (Oki Data Corporation) -- G:\WINDOWS\System32\OKLMON32.DLL
[2010/06/22 14:44:37 | 000,000,000 | ---D | C] -- G:\Program Files\Bonjour
[2010/06/21 11:42:01 | 000,000,000 | ---D | C] -- G:\Documents and Settings\NetworkService\Local Settings\Application Data\Apple
[2010/06/19 22:50:44 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\dwhelper
[2010/06/19 22:13:06 | 000,049,152 | ---- | C] (Analog Devices Inc.) -- G:\WINDOWS\System32\DSndUp.exe
[2010/06/19 22:13:06 | 000,045,056 | ---- | C] (adi) -- G:\WINDOWS\System32\CleanUp.exe
[2010/06/19 22:13:06 | 000,000,000 | ---D | C] -- G:\Program Files\Analog Devices
[2010/06/19 21:58:45 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Local Settings\Application Data\Font Fitting Room Deluxe
[2010/06/19 21:58:39 | 000,000,000 | ---D | C] -- G:\Program Files\Font Fitting Room Deluxe
[2010/06/19 21:15:39 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Azureus
[2010/06/19 20:58:06 | 000,000,000 | ---D | C] -- G:\Program Files\Microsoft
[2010/06/19 20:57:39 | 000,000,000 | ---D | C] -- G:\Program Files\Microsoft Silverlight
[2010/06/19 20:56:18 | 000,000,000 | ---D | C] -- G:\Program Files\Vuze
[2010/06/19 20:56:18 | 000,000,000 | ---D | C] -- G:\Program Files\Common Files\i4j_jres
[2010/06/19 20:56:17 | 000,000,000 | ---D | C] -- G:\Program Files\Bing Bar Installer
[2010/06/17 21:04:18 | 000,000,000 | ---D | C] -- G:\Documents and Settings\LocalService\Local Settings\Application Data\Adobe
[2010/06/17 06:27:30 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\scripting
[2010/06/17 06:27:29 | 000,000,000 | ---D | C] -- G:\WINDOWS\l2schemas
[2010/06/17 06:27:28 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\en
[2010/06/17 06:23:11 | 000,000,000 | ---D | C] -- G:\WINDOWS\network diagnostic
[2010/06/16 18:43:42 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\XPSViewer
[2010/06/16 18:43:23 | 000,000,000 | ---D | C] -- G:\Program Files\Reference Assemblies
[2010/06/16 18:38:58 | 000,000,000 | ---D | C] -- G:\Program Files\MSXML 6.0
[2010/06/16 18:32:54 | 000,000,000 | ---D | C] -- G:\Program Files\Microsoft.NET
[2010/06/16 17:12:17 | 000,000,000 | ---D | C] -- G:\Program Files\Common Files\DESIGNER
[2010/06/16 17:12:01 | 000,000,000 | ---D | C] -- G:\Program Files\MSBuild
[2010/06/16 17:11:47 | 000,000,000 | ---D | C] -- G:\Program Files\Microsoft Visual Studio
[2010/06/15 22:35:53 | 000,000,000 | ---D | C] -- G:\Documents and Settings\All Users\Application Data\InstallShield
[2010/06/15 22:35:28 | 000,000,000 | ---D | C] -- G:\Program Files\Common Files\Jasc Software Inc
[2010/06/15 22:35:06 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\My Documents\My PSP Files
[2010/06/15 22:35:06 | 000,000,000 | ---D | C] -- G:\Program Files\Jasc Software Inc
[2010/06/15 22:35:06 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Jasc Software Inc
[2010/06/15 22:32:46 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Local Settings\Application Data\Identities
[2010/06/15 22:32:43 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Windows Desktop Search
[2010/06/15 22:21:13 | 000,000,000 | ---D | C] -- G:\Program Files\Windows Desktop Search
[2010/06/15 22:21:13 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\GroupPolicy
[2010/06/15 22:04:44 | 000,000,000 | -H-D | C] -- G:\Documents and Settings\All Users\Application Data\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}
[2010/06/15 17:55:15 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Apple Computer
[2010/06/15 17:54:47 | 000,000,000 | ---D | C] -- G:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2010/06/15 17:53:32 | 000,000,000 | ---D | C] -- G:\Program Files\QuickTime
[2010/06/15 17:53:27 | 000,000,000 | ---D | C] -- G:\Documents and Settings\All Users\Application Data\Apple Computer
[2010/06/15 17:53:10 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Local Settings\Application Data\Apple
[2010/06/15 17:53:06 | 000,000,000 | ---D | C] -- G:\Program Files\Apple Software Update
[2010/06/15 17:52:53 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\DRVSTORE
[2010/06/15 17:52:01 | 000,000,000 | ---D | C] -- G:\Program Files\Common Files\Apple
[2010/06/15 17:52:01 | 000,000,000 | ---D | C] -- G:\Documents and Settings\All Users\Application Data\Apple
[2010/06/15 17:50:30 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Local Settings\Application Data\Apple Computer
[2010/06/15 16:40:45 | 000,000,000 | -HSD | C] -- G:\Documents and Settings\Donovan Gerrans\PrivacIE
[2010/06/15 06:28:40 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Stardock
[2010/06/15 06:28:22 | 000,000,000 | ---D | C] -- G:\Documents and Settings\All Users\Application Data\Stardock
[2010/06/15 06:24:51 | 000,000,000 | R-SD | C] -- G:\WINDOWS\assembly
[2010/06/15 06:24:20 | 000,000,000 | ---D | C] -- G:\WINDOWS\Microsoft.NET
[2010/06/14 23:20:47 | 000,000,000 | ---D | C] -- G:\Program Files\Microsoft Works
[2010/06/14 23:16:15 | 000,000,000 | -H-D | C] -- G:\WINDOWS\ShellNew
[2010/06/14 23:15:53 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Local Settings\Application Data\Microsoft Help
[2010/06/14 23:15:48 | 000,000,000 | ---D | C] -- G:\Documents and Settings\All Users\Application Data\Microsoft Help
[2010/06/14 22:47:07 | 000,000,000 | -HSD | C] -- G:\Documents and Settings\Donovan Gerrans\IETldCache
[2010/06/14 22:42:12 | 000,000,000 | ---D | C] -- G:\Program Files\Common Files\Adobe
[2010/06/14 22:42:01 | 000,000,000 | ---D | C] -- G:\WINDOWS\ie8updates
[2010/06/14 22:41:11 | 000,000,000 | ---D | C] -- G:\WINDOWS\WBEM
[2010/06/14 22:41:04 | 000,000,000 | ---D | C] -- G:\Documents and Settings\All Users\Application Data\Adobe
[2010/06/14 22:41:02 | 000,000,000 | ---D | C] -- G:\Program Files\Adobe
[2010/06/14 22:40:58 | 000,000,000 | ---D | C] -- G:\Program Files\Common Files\Adobe AIR
[2010/06/14 22:39:18 | 000,000,000 | -H-D | C] -- G:\WINDOWS\ie8
[2010/06/14 22:39:18 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\en-US
[2010/06/14 22:39:03 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Local Settings\Application Data\Adobe
[2010/06/14 22:38:25 | 000,000,000 | ---D | C] -- G:\Documents and Settings\All Users\Application Data\NOS
[2010/06/14 22:18:16 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Local Settings\Application Data\PackageAware
[2010/06/14 21:21:20 | 000,000,000 | ---D | C] -- G:\Documents and Settings\NetworkService\Local Settings\Application Data\Temp
[2010/06/14 01:41:25 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Macromedia
[2010/06/14 01:41:25 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Adobe
[2010/06/14 01:39:19 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Local Settings\Application Data\Mozilla
[2010/06/14 01:39:19 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Mozilla
[2010/06/14 01:21:00 | 000,000,000 | ---D | C] -- G:\Documents and Settings\NetworkService\Local Settings\Application Data\Google
[2010/06/14 01:17:59 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\My Documents\Downloads
[2010/06/14 01:16:04 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Local Settings\Application Data\Temp
[2010/06/14 01:16:04 | 000,000,000 | ---D | C] -- G:\Documents and Settings\LocalService\Local Settings\Application Data\Google
[2010/06/14 01:15:58 | 000,000,000 | ---D | C] -- G:\Program Files\Google
[2010/06/14 01:15:58 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Local Settings\Application Data\Google
[2010/06/14 01:15:32 | 000,000,000 | ---D | C] -- G:\Documents and Settings\All Users\Application Data\Alwil Software
[2010/06/14 01:04:51 | 000,000,000 | ---D | C] -- G:\WINDOWS\peernet
[2010/06/14 01:04:50 | 000,000,000 | ---D | C] -- G:\WINDOWS\provisioning
[2010/06/14 01:03:53 | 000,000,000 | ---D | C] -- G:\WINDOWS\ServicePackFiles
[2010/06/14 01:02:41 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\ReinstallBackups
[2010/06/14 01:01:28 | 000,000,000 | ---D | C] -- G:\WINDOWS\EHome
[2010/06/14 00:51:41 | 000,000,000 | ---D | C] -- G:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2010/06/14 00:47:38 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\PreInstall
[2010/06/14 00:47:36 | 000,000,000 | -H-D | C] -- G:\WINDOWS\$hf_mig$
[2010/06/14 00:47:27 | 000,000,000 | -H-D | C] -- G:\WINDOWS\$MSI31Uninstall_KB893803v2$
[2010/06/14 00:47:17 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\bits
[2010/06/14 00:44:40 | 000,000,000 | ---D | C] -- G:\WINDOWS\SoftwareDistribution
[2010/06/14 00:43:51 | 000,000,000 | -HSD | C] -- G:\Documents and Settings\Donovan Gerrans\UserData
[2010/06/14 00:41:57 | 000,000,000 | --SD | C] -- G:\WINDOWS\System32\Microsoft
[2010/06/14 00:22:45 | 000,000,000 | ---D | C] -- G:\drvrtmp
[2010/06/14 00:20:54 | 000,446,464 | R--- | C] (Blue Sky Software Corporation.) -- G:\WINDOWS\System32\hhactivex.dll
[2010/06/14 00:20:54 | 000,328,480 | ---- | C] (Sheridan Software Systems, Inc.) -- G:\WINDOWS\System32\ssa3d30.ocx
[2010/06/14 00:20:52 | 000,000,000 | -H-D | C] -- G:\Program Files\InstallShield Installation Information
[2010/06/14 00:20:46 | 000,000,000 | ---D | C] -- G:\Program Files\Common Files\InstallShield
[2010/06/13 23:42:44 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\FxsTmp
[2010/06/13 23:04:07 | 000,000,000 | -HSD | C] -- G:\WINDOWS\Installer
[2010/06/13 23:04:04 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Identities
[2010/06/13 23:03:59 | 000,000,000 | -H-D | C] -- G:\Program Files\Uninstall Information
[2010/06/13 23:03:58 | 000,000,000 | R--D | C] -- G:\Documents and Settings\Donovan Gerrans\My Documents\My Pictures
[2010/06/13 23:03:58 | 000,000,000 | R--D | C] -- G:\Documents and Settings\Donovan Gerrans\My Documents\My Music
[2010/06/13 23:03:57 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Local Settings\Application Data\Microsoft
[2010/06/13 23:03:56 | 000,000,000 | --SD | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft
[2010/06/13 23:03:56 | 000,000,000 | --SD | C] -- G:\Documents and Settings\Donovan Gerrans\Cookies
[2010/06/13 23:03:56 | 000,000,000 | RH-D | C] -- G:\Documents and Settings\Donovan Gerrans\SendTo
[2010/06/13 23:03:56 | 000,000,000 | RH-D | C] -- G:\Documents and Settings\Donovan Gerrans\Recent
[2010/06/13 23:03:56 | 000,000,000 | RH-D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data
[2010/06/13 23:03:56 | 000,000,000 | R--D | C] -- G:\Documents and Settings\Donovan Gerrans\Start Menu
[2010/06/13 23:03:56 | 000,000,000 | R--D | C] -- G:\Documents and Settings\Donovan Gerrans\My Documents
[2010/06/13 23:03:56 | 000,000,000 | R--D | C] -- G:\Documents and Settings\Donovan Gerrans\Favorites
[2010/06/13 23:03:56 | 000,000,000 | -H-D | C] -- G:\Documents and Settings\Donovan Gerrans\Templates
[2010/06/13 23:03:56 | 000,000,000 | -H-D | C] -- G:\Documents and Settings\Donovan Gerrans\PrintHood
[2010/06/13 23:03:56 | 000,000,000 | -H-D | C] -- G:\Documents and Settings\Donovan Gerrans\NetHood
[2010/06/13 23:03:56 | 000,000,000 | -H-D | C] -- G:\Documents and Settings\Donovan Gerrans\Local Settings
[2010/06/13 23:03:56 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Desktop
[2010/06/13 22:59:23 | 000,000,000 | --SD | C] -- G:\Documents and Settings\NetworkService\Application Data\Microsoft
[2010/06/13 22:59:23 | 000,000,000 | --SD | C] -- G:\Documents and Settings\LocalService\Application Data\Microsoft
[2010/06/13 22:59:23 | 000,000,000 | ---D | C] -- G:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2010/06/13 22:59:23 | 000,000,000 | ---D | C] -- G:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2010/06/13 22:56:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\xircom
[2010/06/13 22:56:56 | 000,000,000 | ---D | C] -- G:\Program Files\xerox
[2010/06/13 22:56:56 | 000,000,000 | ---D | C] -- G:\Program Files\microsoft frontpage
[2010/06/13 22:56:49 | 000,000,000 | ---D | C] -- G:\DELL
[2010/06/13 22:56:00 | 000,000,000 | -HSD | C] -- G:\Documents and Settings\All Users\DRM
[2010/06/13 22:55:52 | 000,000,000 | --SD | C] -- G:\WINDOWS\Downloaded Program Files
[2010/06/13 22:55:52 | 000,000,000 | R--D | C] -- G:\WINDOWS\Offline Web Pages
[2010/06/13 22:55:29 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\DirectX
[2010/06/13 22:54:59 | 000,000,000 | ---D | C] -- G:\Program Files\Common Files\Services
[2010/06/13 22:54:55 | 000,000,000 | --SD | C] -- G:\WINDOWS\Tasks
[2010/06/13 22:54:53 | 000,000,000 | ---D | C] -- G:\Program Files\Common Files\MSSoap
[2010/06/13 22:54:49 | 000,000,000 | ---D | C] -- G:\WINDOWS\srchasst
[2010/06/13 22:54:49 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\Macromed
[2010/06/13 22:54:48 | 000,000,000 | ---D | C] -- G:\Program Files\Movie Maker
[2010/06/13 22:54:45 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\Restore
[2010/06/13 22:54:45 | 000,000,000 | ---D | C] -- G:\WINDOWS\PCHealth
[2010/06/13 22:54:42 | 000,000,000 | ---D | C] -- G:\Program Files\NetMeeting
[2010/06/13 22:54:41 | 000,000,000 | ---D | C] -- G:\Program Files\Outlook Express
[2010/06/13 22:54:37 | 000,000,000 | ---D | C] -- G:\Program Files\Common Files\System
[2010/06/13 22:54:36 | 000,000,000 | ---D | C] -- G:\Program Files\Internet Explorer
[2010/06/13 22:54:35 | 000,000,000 | R--D | C] -- G:\Documents and Settings\All Users\Documents\My Pictures
[2010/06/13 22:54:35 | 000,000,000 | R--D | C] -- G:\Documents and Settings\All Users\Documents\My Music
[2010/06/13 22:54:33 | 000,000,000 | ---D | C] -- G:\Program Files\ComPlus Applications
[2010/06/13 22:54:31 | 000,000,000 | ---D | C] -- G:\WINDOWS\Registration
[2010/06/13 22:54:11 | 000,000,000 | -H-D | C] -- G:\Program Files\WindowsUpdate
[2010/06/13 22:54:11 | 000,000,000 | ---D | C] -- G:\Program Files\Windows Media Player
[2010/06/13 22:54:11 | 000,000,000 | ---D | C] -- G:\Program Files\Online Services
[2010/06/13 22:54:08 | 000,000,000 | ---D | C] -- G:\Program Files\Messenger
[2010/06/13 22:54:04 | 000,000,000 | ---D | C] -- G:\Program Files\MSN Gaming Zone
[2010/06/13 22:53:35 | 000,000,000 | ---D | C] -- G:\Program Files\Windows NT
[2010/06/13 22:53:35 | 000,000,000 | ---D | C] -- G:\Program Files\MSN
[2010/06/13 22:53:31 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\MsDtc
[2010/06/13 22:53:30 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\Com
[2010/06/13 15:50:48 | 000,871,388 | ---- | C] (BCM) -- G:\WINDOWS\System32\drivers\BCMDM.sys
[2010/06/13 15:47:03 | 000,000,000 | ---D | C] -- G:\Program Files\Common Files\ODBC
[2010/06/13 15:47:00 | 000,000,000 | ---D | C] -- G:\Program Files\Common Files\SpeechEngines
[2010/06/13 15:46:59 | 000,000,000 | ---D | C] -- G:\Program Files\Common Files\Microsoft Shared
[2010/06/13 15:46:59 | 000,000,000 | ---D | C] -- G:\Program Files\Common Files
[2010/06/13 15:46:40 | 000,000,000 | R--D | C] -- G:\Documents and Settings\All Users\Start Menu
[2010/06/13 15:46:40 | 000,000,000 | R--D | C] -- G:\Documents and Settings\All Users\Documents
[2010/06/13 15:46:40 | 000,000,000 | -H-D | C] -- G:\Documents and Settings\All Users\Templates
[2010/06/13 15:46:40 | 000,000,000 | ---D | C] -- G:\Documents and Settings\All Users\Favorites
[2010/06/13 15:46:40 | 000,000,000 | ---D | C] -- G:\Documents and Settings\All Users\Desktop
[2010/06/13 15:46:28 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\CatRoot
[2010/06/13 15:46:22 | 000,000,000 | --SD | C] -- G:\Documents and Settings\All Users\Application Data\Microsoft
[2010/06/13 15:46:22 | 000,000,000 | RH-D | C] -- G:\Documents and Settings\All Users\Application Data
[2010/06/13 15:30:42 | 000,000,000 | ---D | C] -- G:\Documents and Settings
[2010/06/13 15:23:56 | 000,000,000 | R-SD | C] -- G:\WINDOWS\Fonts
[2010/06/13 15:23:56 | 000,000,000 | R--D | C] -- G:\WINDOWS\Web
[2010/06/13 15:23:56 | 000,000,000 | -H-D | C] -- G:\WINDOWS\inf
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\WinSxS
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\wins
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\wbem
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\usmt
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\twain_32
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\Temp
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\system32
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\system
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\spool
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\ShellExt
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\Setup
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\security
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\Resources
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\repair
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\ras
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\oobe
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\npp
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\mui
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\mui
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\msapps
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\msagent
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\Media
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\java
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\inetsrv
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\IME
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\ime
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\icsxml
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\ias
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\Help
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\export
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\drivers\etc
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\drivers
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\Driver Cache
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\dllcache
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\drivers\disdn
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\dhcp
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\Debug
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\Cursors
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\Connection Wizard
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\config
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\Config
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\AppPatch
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\addins
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\3com_dmi
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\3076
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\2052
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\1054
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\1042
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\1041
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\1037
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\1033
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\1031
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\1028
[2010/06/13 15:23:56 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\1025
[2010/06/08 19:19:08 | 000,000,000 | ---D | C] -- G:\Config.Msi
[2010/05/28 16:49:28 | 000,000,000 | ---D | C] -- G:\Program Files\Digital Clock 3D Screensaver
[2010/04/27 20:15:04 | 000,000,000 | ---D | C] -- G:\Program Files\iTunes
[2010/03/31 18:51:34 | 000,000,000 | ---D | C] -- G:\Program Files\Noteworthy Software
[2010/03/28 09:57:04 | 000,000,000 | ---D | C] -- G:\Program Files\Eusing Free Registry Cleaner
[2010/03/28 09:47:20 | 000,000,000 | ---D | C] -- G:\Program Files\CCleaner
[2010/01/28 16:59:44 | 000,000,000 | ---D | C] -- G:\Program Files\Logitech
[2009/12/29 17:03:27 | 000,000,000 | ---D | C] -- G:\Program Files\Battleship Chess v2.1
[2009/12/17 18:21:03 | 000,000,000 | ---D | C] -- G:\Program Files\Musicnotes
[2009/12/03 19:47:57 | 000,000,000 | ---D | C] -- G:\Program Files\PDFZilla
[2009/11/26 21:09:04 | 000,000,000 | ---D | C] -- G:\Program Files\MyHeritage
[2009/11/25 19:56:19 | 000,000,000 | ---D | C] -- G:\Program Files\Helicon Software
[2009/11/25 18:31:55 | 000,000,000 | ---D | C] -- G:\Program Files\Foto-Mosaik-Edda
[2009/11/09 18:42:14 | 000,000,000 | ---D | C] -- G:\Program Files\Fireplace 3D Screensaver
[2009/10/25 20:19:04 | 000,000,000 | ---D | C] -- G:\Program Files\Microsoft Office
[2009/10/25 20:18:28 | 000,000,000 | R--D | C] -- G:\MSOCache
[2009/09/29 18:47:40 | 000,000,000 | ---D | C] -- G:\Program Files\Caribbean Islands 3D Screensaver
[2009/08/29 13:40:05 | 000,000,000 | ---D | C] -- G:\Program Files\OLYMPUS
[2009/07/31 16:47:21 | 000,000,000 | ---D | C] -- G:\Program Files\FLV Player
[2009/07/27 19:57:44 | 000,000,000 | ---D | C] -- G:\Program Files\Malwarebytes' Anti-Malware
[2009/07/27 19:55:49 | 000,000,000 | ---D | C] -- G:\Program Files\Alwil Software
[2009/06/07 19:20:05 | 000,000,000 | ---D | C] -- G:\Program Files\3planesoft 3D Screensavers [36-in-1] 32-bit
[2009/06/07 19:18:07 | 000,000,000 | ---D | C] -- G:\Program Files\Fog Lake Screensaver
[2009/06/02 13:37:28 | 000,000,000 | ---D | C] -- G:\Program Files\WinLibre
[2009/05/19 18:03:52 | 000,000,000 | ---D | C] -- G:\Program Files\PHOTORECOVERY-LE
[2009/05/19 14:00:56 | 000,000,000 | ---D | C] -- G:\Program Files\Corel
[2009/05/02 18:34:33 | 000,000,000 | ---D | C] -- G:\Program Files\Canon
[2009/04/24 18:09:08 | 000,000,000 | ---D | C] -- G:\Program Files\Bulk Image Downloader
[2009/03/29 10:31:15 | 000,000,000 | ---D | C] -- G:\Program Files\Quintessential Player
[2009/03/02 22:09:35 | 000,000,000 | ---D | C] -- G:\Program Files\Object Desktop
[2009/03/02 14:56:52 | 000,000,000 | ---D | C] -- G:\Program Files\SysMetrix
[2009/03/01 21:27:48 | 000,000,000 | ---D | C] -- G:\Program Files\Maxthon2
[2009/02/27 14:17:44 | 000,000,000 | R--D | C] -- G:\Program Files\Aston
[2009/02/26 19:40:24 | 000,000,000 | R--D | C] -- G:\Program Files\Aston2 Menu
[2009/02/26 19:19:22 | 000,000,000 | R--D | C] -- G:\Program Files\Aston2
[2009/02/14 18:38:40 | 000,000,000 | ---D | C] -- G:\Program Files\QO Developments
[2009/02/14 18:19:14 | 000,000,000 | ---D | C] -- G:\Program Files\QO Labs
[2009/02/14 16:17:25 | 000,000,000 | ---D | C] -- G:\Program Files\Caricature Studio 3.0
[2009/02/10 19:11:59 | 000,000,000 | ---D | C] -- G:\Program Files\TGTSoft
[2009/02/10 19:10:45 | 000,000,000 | ---D | C] -- G:\Program Files\Talisman
[2009/02/10 18:49:53 | 000,000,000 | ---D | C] -- G:\Program Files\Stardock
[2009/02/02 18:11:06 | 000,000,000 | ---D | C] -- G:\Program Files\Illustrate
[2009/02/01 14:07:39 | 000,000,000 | ---D | C] -- G:\Program Files\Xilisoft
[2009/01/25 13:11:56 | 000,000,000 | ---D | C] -- G:\Program Files\Dexpot
[2009/01/20 20:50:01 | 000,000,000 | ---D | C] -- G:\Program Files\Mozilla Firefox
[2009/01/20 19:44:23 | 000,000,000 | ---D | C] -- G:\Program Files\Urban Twilight Studios
[2008/12/26 18:48:31 | 000,000,000 | ---D | C] -- G:\Program Files\DivX
[2008/11/27 13:48:42 | 000,000,000 | ---D | C] -- G:\Program Files\Java
[2008/11/22 20:32:19 | 000,000,000 | ---D | C] -- G:\Program Files\EASEUS
[2008/11/21 18:25:20 | 000,000,000 | ---D | C] -- G:\Program Files\Winamp503
[2008/11/09 14:54:54 | 000,000,000 | ---D | C] -- G:\Program Files\Winamp
[2008/10/30 16:12:09 | 000,000,000 | ---D | C] -- G:\Webshots Data
[2008/10/19 18:51:26 | 000,000,000 | ---D | C] -- G:\Program Files\ArcSoft
[2008/10/18 17:09:45 | 000,000,000 | ---D | C] -- G:\Program Files\eMule
[2008/09/28 13:08:44 | 000,000,000 | ---D | C] -- G:\Program Files\Yahoo!
[2008/09/28 12:07:37 | 000,000,000 | ---D | C] -- G:\Program Files\Styler
[2008/09/28 12:05:33 | 000,000,000 | ---D | C] -- G:\Program Files\RocketDock
[2008/09/15 17:19:27 | 000,000,000 | ---D | C] -- G:\Program Files\Spybot - Search & Destroy
[2008/09/13 13:37:47 | 000,000,000 | ---D | C] -- G:\OKIDATA
[2008/09/13 12:50:40 | 000,000,000 | ---D | C] -- G:\Program Files\OKIDATA
[2008/08/25 15:07:48 | 000,000,000 | ---D | C] -- G:\Program Files\STOIK
[2008/08/25 15:02:21 | 000,000,000 | ---D | C] -- G:\Program Files\7-Zip
[2008/08/15 17:25:32 | 000,000,000 | ---D | C] -- G:\My PSP Files
[2008/08/15 17:25:32 | 000,000,000 | ---D | C] -- G:\Program Files\JASC
[2008/08/14 18:46:32 | 000,000,000 | R--D | C] -- G:\Program Files
[2008/08/14 18:46:32 | 000,000,000 | ---D | C] -- G:\Program Files\Zoom Player
[2008/08/11 18:44:15 | 000,000,000 | ---D | C] -- G:\Downloaded Program Updates
[2008/08/04 14:49:24 | 000,000,000 | -HSD | C] -- G:\System Volume Information
[2004/10/13 22:57:33 | 000,315,408 | ---- | C] (Kaspersky Lab) -- G:\WINDOWS\System32\drivers\5432061.sys
[2004/10/13 22:57:33 | 000,128,016 | ---- | C] (Kaspersky Lab) -- G:\WINDOWS\System32\drivers\54320611.sys
[2004/10/13 22:57:33 | 000,037,392 | ---- | C] (Kaspersky Lab) -- G:\WINDOWS\System32\drivers\54320612.sys
[2004/10/05 22:27:39 | 000,000,000 | -H-D | C] -- G:\Documents and Settings\All Users\Application Data\{20DDC8CD-A1C6-490B-A1B4-40CAFFE3B669}
[2004/10/05 22:27:37 | 000,000,000 | ---D | C] -- G:\Program Files\Apophysis 7x
[2004/10/05 22:05:25 | 000,000,000 | ---D | C] -- G:\Program Files\Apophysis 2.0
[2004/10/02 05:35:36 | 000,000,000 | ---D | C] -- G:\52ef4a00d8211435570f23
[2004/10/02 05:27:07 | 000,000,000 | ---D | C] -- G:\e175c9fc1305e340271a
[2004/10/02 05:22:42 | 000,000,000 | ---D | C] -- G:\Program Files\Microsoft Security Essentials
[2004/10/02 05:09:27 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Malwarebytes
[2004/10/02 05:09:16 | 000,000,000 | ---D | C] -- G:\Documents and Settings\All Users\Application Data\Malwarebytes
[2004/10/02 03:53:51 | 000,000,000 | -HSD | C] -- G:\RECYCLER
[2004/10/01 03:00:29 | 000,000,000 | ---D | C] -- G:\WINDOWS\Prefetch
[2004/10/01 02:54:58 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- G:\WINDOWS\System32\dllcache\rwia330.dll
[2004/10/01 02:54:58 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- G:\WINDOWS\System32\dllcache\rwia001.dll
[2004/10/01 02:54:58 | 000,026,624 | ---- | C] (Ricoh Co., Ltd.) -- G:\WINDOWS\System32\dllcache\rw330ext.dll
[2004/10/01 02:53:54 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- G:\WINDOWS\System32\dllcache\cap7146.sys
[2004/10/01 02:50:16 | 000,272,896 | ---- | C] (Cinematronics) -- G:\WINDOWS\System32\dllcache\pinball.exe
[2004/09/27 07:58:05 | 000,000,000 | ---D | C] -- G:\WINDOWS\System32\Adobe
[2004/09/27 07:53:16 | 000,000,000 | ---D | C] -- G:\Program Files\Common Files\Java
[3 G:\WINDOWS\*.tmp files -> G:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 90 Days ==========

[2010/10/18 22:24:04 | 000,000,027 | ---- | M] () -- G:\WINDOWS\System32\drivers\etc\hosts
[2010/10/11 21:51:33 | 000,002,155 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\iTunes.lnk
[2010/10/05 22:36:34 | 000,002,533 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Word 2007.lnk
[2010/10/04 21:26:45 | 000,397,071 | ---- | M] () -- G:\WINDOWS\setupapi.old
[2010/09/24 20:58:16 | 000,002,523 | ---- | M] () -- G:\Documents and Settings\All Users\Desktop\Jasc Paint Shop Pro 9.lnk
[2010/09/14 21:01:56 | 000,001,710 | ---- | M] () -- G:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2010/09/14 21:01:49 | 000,002,626 | ---- | M] () -- G:\WINDOWS\System32\CONFIG.NT
[2010/09/12 08:40:03 | 000,000,724 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2010/09/12 08:40:03 | 000,000,706 | ---- | M] () -- G:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/09/12 07:26:05 | 000,000,904 | ---- | M] () -- G:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010/09/11 22:34:58 | 000,000,621 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Desktop\NTREGOPT.lnk
[2010/09/11 22:34:58 | 000,000,602 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Desktop\ERUNT.lnk
[2010/09/10 19:06:20 | 000,002,461 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Publisher 2007.lnk
[2010/09/09 22:22:50 | 000,000,306 | ---- | M] () -- G:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-507921405-362288127-682003330-1004.job
[2010/09/07 14:44:52 | 001,293,400 | ---- | M] (Kaspersky Lab ZAO) -- G:\Documents and Settings\Donovan Gerrans\Desktop\TDSSKiller.exe
[2010/09/07 08:12:17 | 000,038,848 | ---- | M] (AVAST Software) -- G:\WINDOWS\avastSS.scr
[2010/09/07 08:11:54 | 000,167,592 | ---- | M] (AVAST Software) -- G:\WINDOWS\System32\aswBoot.exe
[2010/09/07 07:52:25 | 000,046,672 | ---- | M] (AVAST Software) -- G:\WINDOWS\System32\drivers\aswTdi.sys
[2010/09/07 07:52:03 | 000,165,584 | ---- | M] (AVAST Software) -- G:\WINDOWS\System32\drivers\aswSP.sys
[2010/09/07 07:47:46 | 000,023,376 | ---- | M] (AVAST Software) -- G:\WINDOWS\System32\drivers\aswRdr.sys
[2010/09/07 07:47:19 | 000,100,176 | ---- | M] (AVAST Software) -- G:\WINDOWS\System32\drivers\aswmon2.sys
[2010/09/07 07:47:16 | 000,094,544 | ---- | M] (AVAST Software) -- G:\WINDOWS\System32\drivers\aswmon.sys
[2010/09/07 07:47:07 | 000,017,744 | ---- | M] (AVAST Software) -- G:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010/09/07 07:46:51 | 000,028,880 | ---- | M] (AVAST Software) -- G:\WINDOWS\System32\drivers\aavmker4.sys
[2010/09/03 04:20:50 | 000,000,664 | ---- | M] () -- G:\WINDOWS\System32\d3d9caps.dat
[2010/09/02 22:56:05 | 000,000,863 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Shortcut to PMK.exe.lnk
[2010/08/31 20:28:45 | 000,088,596 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\My Documents\Photo of Gerrans, the Villa...tif
[2010/08/22 08:54:32 | 004,316,946 | -H-- | M] () -- G:\Documents and Settings\Donovan Gerrans\Local Settings\Application Data\IconCache.db
[2010/08/21 20:39:30 | 000,001,739 | ---- | M] () -- G:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2010/07/30 18:57:19 | 000,000,050 | ---- | M] () -- G:\WINDOWS\cdplayer.ini
[2010/07/30 17:15:57 | 000,000,054 | ---- | M] () -- G:\WINDOWS\JascCmdFile.INI
[2010/07/26 16:35:35 | 000,001,804 | ---- | M] () -- G:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2010/07/26 11:42:02 | 000,000,284 | ---- | M] () -- G:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010/07/21 21:34:20 | 000,442,095 | ---- | M] () -- G:\WINDOWS\P3190450aw.JPG
[2010/07/21 20:52:51 | 000,257,312 | ---- | M] () -- G:\WINDOWS\P5290002w.jpg
[2010/07/21 20:50:23 | 000,187,190 | ---- | M] () -- G:\WINDOWS\P5290001w.JPG
[2010/07/14 03:02:17 | 000,002,555 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Access 2007.lnk
[2010/07/07 21:43:01 | 000,127,757 | ---- | M] () -- G:\WINDOWS\hpgins23.dat.temp
[2010/07/07 21:43:01 | 000,127,757 | ---- | M] () -- G:\WINDOWS\hpgins23.dat
[2010/07/07 21:37:27 | 000,001,897 | ---- | M] () -- G:\Documents and Settings\All Users\Desktop\HP Photosmart Essential.lnk
[2010/07/07 21:36:22 | 000,000,994 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\HP Solution Center.lnk
[2010/07/07 21:36:22 | 000,000,994 | ---- | M] () -- G:\Documents and Settings\All Users\Desktop\HP Solution Center.lnk
[2010/07/06 14:20:14 | 000,000,734 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\PDFCreator.lnk
[2010/07/04 19:23:29 | 000,002,491 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Excel 2007.lnk
[2010/07/02 17:55:05 | 000,427,920 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010/07/01 21:47:05 | 000,000,106 | ---- | M] () -- G:\WINDOWS\OPHA.ini
[2010/07/01 21:45:16 | 000,017,468 | ---- | M] () -- G:\WINDOWS\System32\OPC5150N.cah
[2010/07/01 21:28:14 | 000,000,216 | ---- | M] () -- G:\WINDOWS\OPPB.INI
[2010/06/29 22:21:39 | 000,000,676 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Desktop\Aston2.lnk
[2010/06/29 21:57:05 | 000,017,780 | ---- | M] () -- G:\WINDOWS\System32\OP8800.cah
[2010/06/29 21:57:05 | 000,013,332 | ---- | M] () -- G:\WINDOWS\System32\OPPB_M00.cah
[2010/06/29 21:36:30 | 000,001,442 | ---- | M] () -- G:\WINDOWS\cnzsdw-m64.ini
[2010/06/29 21:36:22 | 000,000,778 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Desktop\PhotoZoom Pro 3.lnk
[2010/06/27 21:25:34 | 000,000,893 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Autopano Giga 2.lnk
[2010/06/25 20:50:23 | 000,316,640 | ---- | M] () -- G:\WINDOWS\WMSysPr9.prx
[2010/06/25 20:49:25 | 000,000,000 | -H-- | M] () -- G:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2010/06/24 17:52:40 | 000,034,640 | ---- | M] () -- G:\WINDOWS\System32\OPHA_M00.cah
[2010/06/21 18:18:16 | 000,048,106 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\My Documents\Melaleuca 2010 06 21.TIF
[2010/06/19 21:58:40 | 000,000,775 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Desktop\FFR Deluxe.lnk
[2010/06/19 20:57:37 | 000,001,515 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk
[2010/06/19 20:57:37 | 000,001,515 | ---- | M] () -- G:\Documents and Settings\All Users\Desktop\Vuze.lnk
[2010/06/17 21:55:52 | 000,000,000 | ---- | M] () -- G:\WINDOWS\nsreg.dat
[2010/06/17 20:38:05 | 000,002,599 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office InfoPath 2007.lnk
[2010/06/16 18:33:29 | 000,002,557 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office PowerPoint 2007.lnk
[2010/06/15 22:21:20 | 000,001,797 | ---- | M] () -- G:\Documents and Settings\All Users\Start Menu\Programs\Startup\Windows Search.lnk
[2010/06/15 22:07:20 | 000,001,677 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Desktop\Customize Fences.lnk
[2010/06/14 22:47:23 | 000,000,825 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/06/14 03:05:41 | 000,000,000 | -H-- | M] () -- G:\WINDOWS\System32\drivers\Msft_Kernel_NuidFltr_01005.Wdf
[2010/06/14 03:05:39 | 000,000,000 | -H-- | M] () -- G:\WINDOWS\System32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
[2010/06/14 01:39:11 | 000,001,630 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010/06/14 01:39:11 | 000,001,612 | ---- | M] () -- G:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2010/06/13 23:45:33 | 000,000,104 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\My Computer.lnk
[2010/06/13 23:04:10 | 000,000,079 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2010/06/13 22:59:07 | 000,008,192 | ---- | M] () -- G:\WINDOWS\REGLOCS.OLD
[2010/06/13 22:56:45 | 000,000,000 | ---- | M] () -- G:\WINDOWS\control.ini
[2010/06/13 22:54:32 | 000,000,037 | ---- | M] () -- G:\WINDOWS\vbaddin.ini
[2010/06/13 22:54:32 | 000,000,036 | ---- | M] () -- G:\WINDOWS\vb.ini
[2010/06/13 22:54:11 | 000,001,508 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Calculator.lnk
[2010/04/29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- G:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/04/29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- G:\WINDOWS\System32\drivers\mbam.sys
[2010/04/26 15:58:12 | 000,256,512 | ---- | M] () -- G:\WINDOWS\PEV.exe
[2010/01/10 18:09:36 | 000,444,524 | ---- | M] () -- G:\WINDOWS\P1060004b.JPG
[2010/01/10 18:01:13 | 000,415,881 | ---- | M] () -- G:\WINDOWS\P1060004aw.JPG
[2009/11/03 19:34:38 | 000,085,504 | ---- | M] () -- G:\WINDOWS\System32\ff_vfw.dll
[2009/10/25 06:11:34 | 000,077,312 | ---- | M] () -- G:\WINDOWS\MBR.exe
[2009/10/22 12:54:18 | 000,037,392 | ---- | M] (Kaspersky Lab) -- G:\WINDOWS\System32\drivers\54320612.sys
[2009/10/09 22:31:10 | 000,315,408 | ---- | M] (Kaspersky Lab) -- G:\WINDOWS\System32\drivers\5432061.sys
[2009/09/25 16:59:42 | 000,128,016 | ---- | M] (Kaspersky Lab) -- G:\WINDOWS\System32\drivers\54320611.sys
[2009/08/11 21:18:28 | 000,497,664 | ---- | M] () -- G:\WINDOWS\System32\ac3filter.acm
[2009/04/20 12:56:28 | 000,031,232 | ---- | M] (NirSoft) -- G:\WINDOWS\NIRCMD.exe
[2009/02/12 22:20:42 | 000,005,630 | ---- | M] () -- G:\WINDOWS\System32\IE8Eula.rtf
[2009/01/07 18:20:36 | 000,066,384 | ---- | M] () -- G:\WINDOWS\System32\normnfkc.nls
[2009/01/07 18:20:36 | 000,060,294 | ---- | M] () -- G:\WINDOWS\System32\normnfkd.nls
[2009/01/07 18:20:36 | 000,059,342 | ---- | M] () -- G:\WINDOWS\System32\normidna.nls
[2009/01/07 18:20:36 | 000,045,794 | ---- | M] () -- G:\WINDOWS\System32\normnfc.nls
[2009/01/07 18:20:36 | 000,039,284 | ---- | M] () -- G:\WINDOWS\System32\normnfd.nls
[2009/01/07 18:20:20 | 000,008,798 | ---- | M] () -- G:\WINDOWS\System32\icrav03.rat
[2009/01/07 18:20:20 | 000,001,988 | ---- | M] () -- G:\WINDOWS\System32\ticrf.rat
[2008/05/26 21:59:42 | 000,018,904 | ---- | M] () -- G:\WINDOWS\System32\structuredqueryschematrivial.bin
[2008/05/26 21:59:40 | 000,106,605 | ---- | M] () -- G:\WINDOWS\System32\structuredqueryschema.bin
[2008/04/13 17:12:42 | 000,118,272 | ---- | M] () -- G:\WINDOWS\System32\mpeg2data.ax
[2007/09/27 10:51:02 | 000,020,698 | ---- | M] () -- G:\WINDOWS\System32\idxcntrs.ini
[2007/09/27 10:51:02 | 000,004,640 | ---- | M] () -- G:\WINDOWS\System32\idxcntrs.h
[2007/09/27 10:48:48 | 000,030,628 | ---- | M] () -- G:\WINDOWS\System32\gsrvctr.ini
[2007/09/27 10:48:48 | 000,002,590 | ---- | M] () -- G:\WINDOWS\System32\gsrvctr.h
[2007/09/27 10:48:28 | 000,031,698 | ---- | M] () -- G:\WINDOWS\System32\gthrctr.ini
[2007/09/27 10:48:28 | 000,003,100 | ---- | M] () -- G:\WINDOWS\System32\gthrctr.h
[2007/09/17 01:48:10 | 000,001,261 | ---- | M] () -- G:\WINDOWS\System32\pid.inf
[2007/07/10 17:10:12 | 000,000,547 | ---- | M] () -- G:\WINDOWS\System32\ff_vfw.dll.manifest
[2007/04/27 06:05:50 | 000,000,280 | ---- | M] () -- G:\WINDOWS\hpgmdl23.dat.temp
[2007/04/27 06:05:50 | 000,000,280 | ---- | M] () -- G:\WINDOWS\hpgmdl23.dat
[2007/04/06 09:48:22 | 000,245,760 | ---- | M] (Oki Data Corporation) -- G:\WINDOWS\System32\OkDrtPrn.exe
[2007/04/06 02:52:24 | 000,032,768 | R--- | M] () -- G:\WINDOWS\System32\OkDPnRes.dll
[2007/03/14 10:57:14 | 000,065,536 | R--- | M] (Oki Data Corporation) -- G:\WINDOWS\System32\OPEXTUAC.DLL
[2007/02/19 16:51:20 | 000,040,960 | ---- | M] (Oki Data Corporation) -- G:\WINDOWS\System32\oklprrsc.dll
[2007/02/06 01:15:00 | 000,102,400 | ---- | M] (Oki Data Corporation) -- G:\WINDOWS\System32\opnetext.dll
[2007/01/15 01:14:00 | 000,003,036 | ---- | M] () -- G:\WINDOWS\System32\opnedef.str
[2006/12/07 06:33:36 | 000,053,248 | R--- | M] (Oki Data Corporation) -- G:\WINDOWS\System32\OPUSBEXT.DLL
[2006/11/29 07:43:04 | 000,040,960 | ---- | M] (Oki Data Corporation) -- G:\WINDOWS\System32\OKLMON32.DLL
[2006/10/30 10:53:48 | 000,012,288 | ---- | M] (Oki Data Corporation) -- G:\WINDOWS\System32\fxComDLL.dll
[2006/10/13 16:13:46 | 000,012,288 | ---- | M] (Oki Data Corporation) -- G:\WINDOWS\System32\okComDLL.dll
[2006/10/13 16:13:46 | 000,012,288 | ---- | M] (Oki Data Corporation) -- G:\WINDOWS\System32\efComDLL.dll
[2006/06/13 16:34:08 | 000,126,976 | ---- | M] (Oki Data Corporation) -- G:\WINDOWS\System32\OkDrtPrn.dll
[2006/04/03 11:26:10 | 000,086,016 | ---- | M] (Oki Data Corporation) -- G:\WINDOWS\System32\oklpinst.dll
[2005/12/21 01:39:34 | 000,012,288 | R--- | M] () -- G:\WINDOWS\System32\hpnvr82.dll
[2005/12/19 01:12:00 | 000,010,245 | ---- | M] () -- G:\WINDOWS\System32\OPNETEXT.HLP
[2005/11/30 01:12:00 | 000,000,131 | ---- | M] () -- G:\WINDOWS\System32\opnetext.cnt
[2005/03/07 03:53:16 | 000,025,468 | R--- | M] () -- G:\WINDOWS\System32\OKDRTPRN.HLP
[2004/10/13 04:04:46 | 000,000,180 | -HS- | M] () -- G:\Documents and Settings\Donovan Gerrans\ntuser.ini
[2004/10/05 22:27:38 | 000,000,687 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Apophysis 7x.lnk
[2004/10/05 22:05:43 | 000,000,734 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Desktop\Apophysis 2.02.lnk
[2004/10/05 15:59:09 | 007,340,032 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\ntuser.dat
[2004/10/04 16:06:41 | 000,002,539 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Outlook 2007.lnk
[2004/10/03 01:32:47 | 000,000,408 | -H-- | M] () -- G:\WINDOWS\tasks\MP Scheduled Scan.job
[2004/10/02 05:22:43 | 000,000,830 | ---- | M] () -- G:\Documents and Settings\All Users\Desktop\Microsoft Security Essentials.lnk
[2004/10/01 13:28:03 | 000,238,080 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2004/10/01 12:59:40 | 000,002,541 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Jasc Paint Shop Pro 9.lnk
[2004/10/01 03:06:02 | 000,000,814 | ---- | M] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2004/10/01 03:05:59 | 000,025,065 | ---- | M] () -- G:\WINDOWS\System32\wmpscheme.xml
[2004/10/01 03:01:20 | 000,544,432 | ---- | M] () -- G:\WINDOWS\System32\PerfStringBackup.INI
[2004/10/01 03:01:20 | 000,457,646 | ---- | M] () -- G:\WINDOWS\System32\perfh009.dat
[2004/10/01 03:01:20 | 000,075,882 | ---- | M] () -- G:\WINDOWS\System32\perfc009.dat
[2004/10/01 02:58:21 | 001,175,136 | ---- | M] () -- G:\WINDOWS\System32\FNTCACHE.DAT
[2004/10/01 02:57:02 | 000,004,878 | ---- | M] () -- G:\WINDOWS\imsins.BAK
[2004/10/01 02:57:02 | 000,000,264 | ---- | M] () -- G:\WINDOWS\System32\$winnt$.inf
[2004/10/01 02:53:06 | 000,000,608 | ---- | M] () -- G:\WINDOWS\win.ini
[2004/10/01 02:53:02 | 000,023,392 | ---- | M] () -- G:\WINDOWS\System32\nscompat.tlb
[2004/10/01 02:53:02 | 000,016,832 | ---- | M] () -- G:\WINDOWS\System32\amcompat.tlb
[2004/10/01 02:53:01 | 000,299,552 | ---- | M] () -- G:\WINDOWS\WMSysPrx.prx
[2004/10/01 02:52:49 | 000,004,161 | ---- | M] () -- G:\WINDOWS\ODBCINST.INI
[2004/10/01 02:52:04 | 000,000,488 | RH-- | M] () -- G:\WINDOWS\System32\WindowsLogon.manifest
[2004/10/01 02:52:04 | 000,000,488 | RH-- | M] () -- G:\WINDOWS\System32\logonui.exe.manifest
[2004/10/01 02:51:58 | 000,000,749 | RH-- | M] () -- G:\WINDOWS\System32\wuaucpl.cpl.manifest
[2004/10/01 02:51:58 | 000,000,749 | RH-- | M] () -- G:\WINDOWS\WindowsShell.Manifest
[2004/10/01 02:51:58 | 000,000,749 | RH-- | M] () -- G:\WINDOWS\System32\sapi.cpl.manifest
[2004/10/01 02:51:58 | 000,000,749 | RH-- | M] () -- G:\WINDOWS\System32\nwc.cpl.manifest
[2004/10/01 02:51:58 | 000,000,749 | RH-- | M] () -- G:\WINDOWS\System32\ncpa.cpl.manifest
[2004/10/01 02:51:58 | 000,000,749 | RH-- | M] () -- G:\WINDOWS\System32\cdplayer.exe.manifest
[2004/10/01 02:50:56 | 000,022,720 | ---- | M] () -- G:\WINDOWS\System32\emptyregdb.dat
[2004/10/01 02:50:17 | 000,000,535 | ---- | M] () -- G:\WINDOWS\System32\mapisvc.inf
[2004/10/01 02:43:55 | 000,000,227 | ---- | M] () -- G:\WINDOWS\system.ini
[2004/09/30 14:35:45 | 000,000,024 | ---- | M] () -- G:\WINDOWS\LogonStudio.ini
[2004/09/30 14:35:28 | 000,000,900 | ---- | M] () -- G:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2004/09/30 14:35:28 | 000,000,298 | ---- | M] () -- G:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-507921405-362288127-682003330-1004.job
[2004/09/30 14:34:47 | 000,000,006 | -H-- | M] () -- G:\WINDOWS\tasks\SA.DAT
[2004/09/30 14:33:21 | 000,002,048 | --S- | M] () -- G:\WINDOWS\bootstat.dat
[2004/09/27 00:02:28 | 000,002,206 | ---- | M] () -- G:\WINDOWS\System32\wpa.dbl
[2004/07/17 22:55:22 | 000,129,045 | ---- | M] () -- G:\WINDOWS\System32\drivers\cxthsfs2.cty
[2004/07/17 11:36:22 | 000,064,352 | ---- | M] () -- G:\WINDOWS\System32\drivers\ativmc20.cod
[3 G:\WINDOWS\*.tmp files -> G:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/10/18 22:08:04 | 000,256,512 | ---- | C] () -- G:\WINDOWS\PEV.exe
[2010/10/18 22:08:04 | 000,098,816 | ---- | C] () -- G:\WINDOWS\sed.exe
[2010/10/18 22:08:04 | 000,080,412 | ---- | C] () -- G:\WINDOWS\grep.exe
[2010/10/18 22:08:04 | 000,077,312 | ---- | C] () -- G:\WINDOWS\MBR.exe
[2010/10/18 22:08:04 | 000,068,096 | ---- | C] () -- G:\WINDOWS\zip.exe
[2010/09/14 21:01:56 | 000,001,710 | ---- | C] () -- G:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2010/09/12 08:45:19 | 000,127,757 | ---- | C] () -- G:\WINDOWS\hpgins23.dat.temp
[2010/09/12 08:45:19 | 000,000,280 | ---- | C] () -- G:\WINDOWS\hpgmdl23.dat.temp
[2010/09/12 08:40:03 | 000,000,724 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2010/09/12 08:40:03 | 000,000,706 | ---- | C] () -- G:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/09/11 22:34:58 | 000,000,621 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Desktop\NTREGOPT.lnk
[2010/09/11 22:34:58 | 000,000,602 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Desktop\ERUNT.lnk
[2010/09/07 19:08:33 | 000,002,155 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\iTunes.lnk
[2010/09/02 22:56:05 | 000,000,863 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Shortcut to PMK.exe.lnk
[2010/08/31 20:28:43 | 000,088,596 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\My Documents\Photo of Gerrans, the Villa...tif
[2010/08/21 20:39:30 | 000,001,739 | ---- | C] () -- G:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2010/07/30 19:52:08 | 000,497,664 | ---- | C] () -- G:\WINDOWS\System32\ac3filter.acm
[2010/07/30 19:51:06 | 000,000,547 | ---- | C] () -- G:\WINDOWS\System32\ff_vfw.dll.manifest
[2010/07/30 19:51:05 | 000,085,504 | ---- | C] () -- G:\WINDOWS\System32\ff_vfw.dll
[2010/07/30 18:57:18 | 000,000,050 | ---- | C] () -- G:\WINDOWS\cdplayer.ini
[2010/07/26 16:39:40 | 000,000,298 | ---- | C] () -- G:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-507921405-362288127-682003330-1004.job
[2010/07/26 16:39:38 | 000,000,306 | ---- | C] () -- G:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-507921405-362288127-682003330-1004.job
[2010/07/26 16:35:35 | 000,001,804 | ---- | C] () -- G:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2010/07/19 22:07:19 | 000,000,664 | ---- | C] () -- G:\WINDOWS\System32\d3d9caps.dat
[2010/07/07 21:48:23 | 000,000,994 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\HP Solution Center.lnk
[2010/07/07 21:37:27 | 000,001,897 | ---- | C] () -- G:\Documents and Settings\All Users\Desktop\HP Photosmart Essential.lnk
[2010/07/07 21:36:22 | 000,000,994 | ---- | C] () -- G:\Documents and Settings\All Users\Desktop\HP Solution Center.lnk
[2010/07/07 21:32:01 | 000,004,480 | ---- | C] () -- G:\Documents and Settings\All Users\Application Data\hpzinstall.log
[2010/07/07 21:31:59 | 000,127,757 | ---- | C] () -- G:\WINDOWS\hpgins23.dat
[2010/07/07 21:31:59 | 000,000,280 | ---- | C] () -- G:\WINDOWS\hpgmdl23.dat
[2010/07/06 19:57:08 | 000,000,054 | ---- | C] () -- G:\WINDOWS\JascCmdFile.INI
[2010/07/06 14:20:13 | 000,000,734 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\PDFCreator.lnk
[2010/07/06 14:20:08 | 000,116,224 | ---- | C] () -- G:\WINDOWS\System32\pdfcmnnt.dll
[2010/07/01 21:47:05 | 000,000,106 | ---- | C] () -- G:\WINDOWS\OPHA.ini
[2010/06/29 22:21:39 | 000,000,676 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Desktop\Aston2.lnk
[2010/06/29 21:58:56 | 000,032,768 | R--- | C] () -- G:\WINDOWS\System32\OkDPnRes.dll
[2010/06/29 21:58:56 | 000,025,468 | R--- | C] () -- G:\WINDOWS\System32\OKDRTPRN.HLP
[2010/06/29 21:58:56 | 000,000,121 | R--- | C] () -- G:\WINDOWS\System32\OkDrtPrn.cnt
[2010/06/29 21:58:30 | 000,010,245 | ---- | C] () -- G:\WINDOWS\System32\OPNETEXT.HLP
[2010/06/29 21:58:30 | 000,003,036 | ---- | C] () -- G:\WINDOWS\System32\opnedef.str
[2010/06/29 21:58:30 | 000,000,131 | ---- | C] () -- G:\WINDOWS\System32\opnetext.cnt
[2010/06/29 21:58:30 | 000,000,000 | ---- | C] () -- G:\WINDOWS\System32\opnetext.gid
[2010/06/29 21:57:05 | 000,017,780 | ---- | C] () -- G:\WINDOWS\System32\OP8800.cah
[2010/06/29 21:57:05 | 000,013,332 | ---- | C] () -- G:\WINDOWS\System32\OPPB_M00.cah
[2010/06/29 21:57:05 | 000,000,216 | ---- | C] () -- G:\WINDOWS\OPPB.INI
[2010/06/29 21:44:11 | 007,340,032 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\ntuser.dat
[2010/06/29 21:36:30 | 000,001,442 | ---- | C] () -- G:\WINDOWS\cnzsdw-m64.ini
[2010/06/29 21:36:22 | 000,000,778 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Desktop\PhotoZoom Pro 3.lnk
[2010/06/29 16:49:49 | 000,000,024 | ---- | C] () -- G:\WINDOWS\LogonStudio.ini
[2010/06/29 16:48:19 | 000,187,392 | ---- | C] () -- G:\WINDOWS\System32\JPGUtils.dll
[2010/06/27 21:14:27 | 000,000,893 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Autopano Giga 2.lnk
[2010/06/25 20:57:59 | 000,397,071 | ---- | C] () -- G:\WINDOWS\setupapi.old
[2010/06/25 20:49:25 | 000,000,000 | -H-- | C] () -- G:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2010/06/24 17:52:40 | 000,034,640 | ---- | C] () -- G:\WINDOWS\System32\OPHA_M00.cah
[2010/06/24 17:52:40 | 000,017,468 | ---- | C] () -- G:\WINDOWS\System32\OPC5150N.cah
[2010/06/21 18:18:15 | 000,048,106 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\My Documents\Melaleuca 2010 06 21.TIF
[2010/06/19 21:58:40 | 000,000,775 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Desktop\FFR Deluxe.lnk
[2010/06/19 21:25:45 | 000,238,080 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/06/19 20:57:37 | 000,001,515 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk
[2010/06/19 20:57:37 | 000,001,515 | ---- | C] () -- G:\Documents and Settings\All Users\Desktop\Vuze.lnk
[2010/06/17 21:55:52 | 000,000,000 | ---- | C] () -- G:\WINDOWS\nsreg.dat
[2010/06/16 18:55:40 | 000,002,539 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Outlook 2007.lnk
[2010/06/16 06:12:58 | 000,001,261 | ---- | C] () -- G:\WINDOWS\System32\pid.inf
[2010/06/15 22:37:20 | 000,002,541 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Jasc Paint Shop Pro 9.lnk
[2010/06/15 22:37:20 | 000,002,523 | ---- | C] () -- G:\Documents and Settings\All Users\Desktop\Jasc Paint Shop Pro 9.lnk
[2010/06/15 22:21:20 | 000,001,797 | ---- | C] () -- G:\Documents and Settings\All Users\Start Menu\Programs\Startup\Windows Search.lnk
[2010/06/15 22:13:20 | 000,002,599 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office InfoPath 2007.lnk
[2010/06/15 22:13:20 | 000,002,557 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office PowerPoint 2007.lnk
[2010/06/15 22:13:20 | 000,002,555 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Access 2007.lnk
[2010/06/15 22:13:20 | 000,002,533 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Word 2007.lnk
[2010/06/15 22:13:20 | 000,002,491 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Excel 2007.lnk
[2010/06/15 22:13:20 | 000,002,461 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Publisher 2007.lnk
[2010/06/15 22:07:20 | 000,001,677 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Desktop\Customize Fences.lnk
[2010/06/15 17:53:11 | 000,000,284 | ---- | C] () -- G:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010/06/14 03:05:41 | 000,000,000 | -H-- | C] () -- G:\WINDOWS\System32\drivers\Msft_Kernel_NuidFltr_01005.Wdf
[2010/06/14 03:05:39 | 000,000,000 | -H-- | C] () -- G:\WINDOWS\System32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
[2010/06/14 01:39:11 | 000,001,630 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010/06/14 01:39:11 | 000,001,612 | ---- | C] () -- G:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2010/06/14 01:16:01 | 000,000,904 | ---- | C] () -- G:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010/06/14 01:16:01 | 000,000,900 | ---- | C] () -- G:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010/06/14 01:05:39 | 000,316,640 | ---- | C] () -- G:\WINDOWS\WMSysPr9.prx
[2010/06/14 00:59:22 | 000,067,866 | ---- | C] () -- G:\WINDOWS\System32\drivers\netwlan5.img
[2010/06/14 00:22:47 | 000,005,110 | R--- | C] () -- G:\WINDOWS\System32\e100b325.din
[2010/06/14 00:22:45 | 000,012,288 | ---- | C] () -- G:\WINDOWS\System32\e100bmsg.dll
[2010/06/13 23:45:33 | 000,000,104 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\My Computer.lnk
[2010/06/13 23:42:40 | 000,000,535 | ---- | C] () -- G:\WINDOWS\System32\mapisvc.inf
[2010/06/13 23:42:39 | 000,107,882 | ---- | C] () -- G:\WINDOWS\System32\mib_ii.mib
[2010/06/13 23:42:39 | 000,049,275 | ---- | C] () -- G:\WINDOWS\System32\wfospf.mib
[2010/06/13 23:42:39 | 000,048,593 | ---- | C] () -- G:\WINDOWS\System32\hostmib.mib
[2010/06/13 23:42:39 | 000,038,608 | ---- | C] () -- G:\WINDOWS\System32\nipx.mib
[2010/06/13 23:42:39 | 000,034,317 | ---- | C] () -- G:\WINDOWS\System32\msiprip2.mib
[2010/06/13 23:42:39 | 000,030,448 | ---- | C] () -- G:\WINDOWS\System32\mcastmib.mib
[2010/06/13 23:42:39 | 000,026,236 | ---- | C] () -- G:\WINDOWS\System32\wins.mib
[2010/06/13 23:42:39 | 000,026,100 | ---- | C] () -- G:\WINDOWS\System32\lmmib2.mib
[2010/06/13 23:42:39 | 000,021,386 | ---- | C] () -- G:\WINDOWS\System32\mipx.mib
[2010/06/13 23:42:39 | 000,015,799 | ---- | C] () -- G:\WINDOWS\System32\ipforwd.mib
[2010/06/13 23:42:39 | 000,013,767 | ---- | C] () -- G:\WINDOWS\System32\msipbtp.mib
[2010/06/13 23:42:39 | 000,010,313 | ---- | C] () -- G:\WINDOWS\System32\mripsap.mib
[2010/06/13 23:42:39 | 000,004,332 | ---- | C] () -- G:\WINDOWS\System32\smi.mib
[2010/06/13 23:42:39 | 000,000,581 | ---- | C] () -- G:\WINDOWS\System32\msft.mib
[2010/06/13 23:42:38 | 000,016,617 | ---- | C] () -- G:\WINDOWS\System32\authserv.mib
[2010/06/13 23:42:38 | 000,015,597 | ---- | C] () -- G:\WINDOWS\System32\accserv.mib
[2010/06/13 23:42:38 | 000,004,597 | ---- | C] () -- G:\WINDOWS\System32\dhcp.mib
[2010/06/13 23:42:37 | 000,001,793 | ---- | C] () -- G:\WINDOWS\System32\fxsperf.ini
[2010/06/13 23:42:37 | 000,001,361 | ---- | C] () -- G:\WINDOWS\System32\fxscount.h
[2010/06/13 23:04:10 | 000,000,079 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2010/06/13 23:04:02 | 000,000,814 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2010/06/13 23:03:59 | 000,000,825 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/06/13 23:03:57 | 000,024,576 | -H-- | C] () -- G:\Documents and Settings\Donovan Gerrans\ntuser.dat.LOG
[2010/06/13 23:03:57 | 000,000,180 | -HS- | C] () -- G:\Documents and Settings\Donovan Gerrans\ntuser.ini
[2010/06/13 22:59:07 | 000,008,192 | ---- | C] () -- G:\WINDOWS\REGLOCS.OLD
[2010/06/13 22:58:18 | 000,002,048 | --S- | C] () -- G:\WINDOWS\bootstat.dat
[2010/06/13 22:56:45 | 000,002,626 | ---- | C] () -- G:\WINDOWS\System32\CONFIG.NT
[2010/06/13 22:56:43 | 000,025,065 | ---- | C] () -- G:\WINDOWS\System32\wmpscheme.xml
[2010/06/13 22:56:42 | 000,023,392 | ---- | C] () -- G:\WINDOWS\System32\nscompat.tlb
[2010/06/13 22:56:42 | 000,016,832 | ---- | C] () -- G:\WINDOWS\System32\amcompat.tlb
[2010/06/13 22:56:41 | 000,299,552 | ---- | C] () -- G:\WINDOWS\WMSysPrx.prx
[2010/06/13 22:55:52 | 000,000,488 | RH-- | C] () -- G:\WINDOWS\System32\WindowsLogon.manifest
[2010/06/13 22:55:45 | 000,000,749 | RH-- | C] () -- G:\WINDOWS\System32\nwc.cpl.manifest
[2010/06/13 22:55:45 | 000,000,749 | RH-- | C] () -- G:\WINDOWS\System32\cdplayer.exe.manifest
[2010/06/13 22:55:35 | 004,399,505 | ---- | C] () -- G:\WINDOWS\System32\dllcache\nls302en.lex
[2010/06/13 22:55:06 | 000,048,680 | -HS- | C] () -- G:\WINDOWS\winnt256.bmp
[2010/06/13 22:55:06 | 000,048,680 | -HS- | C] () -- G:\WINDOWS\winnt.bmp
[2010/06/13 22:55:01 | 000,000,984 | ---- | C] () -- G:\WINDOWS\System32\dllcache\srframe.mmf
[2010/06/13 22:54:34 | 000,022,720 | ---- | C] () -- G:\WINDOWS\System32\emptyregdb.dat
[2010/06/13 22:54:11 | 000,001,508 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Calculator.lnk
[2010/06/13 22:53:51 | 000,065,954 | ---- | C] () -- G:\WINDOWS\Prairie Wind.bmp
[2010/06/13 22:53:51 | 000,065,832 | ---- | C] () -- G:\WINDOWS\Santa Fe Stucco.bmp
[2010/06/13 22:53:51 | 000,026,680 | ---- | C] () -- G:\WINDOWS\River Sumida.bmp
[2010/06/13 22:53:51 | 000,017,362 | ---- | C] () -- G:\WINDOWS\Rhododendron.bmp
[2010/06/13 22:53:51 | 000,009,522 | ---- | C] () -- G:\WINDOWS\Zapotec.bmp
[2010/06/13 22:53:50 | 000,093,702 | ---- | C] () -- G:\WINDOWS\System32\subrange.uce
[2010/06/13 22:53:50 | 000,065,978 | ---- | C] () -- G:\WINDOWS\Soap Bubbles.bmp
[2010/06/13 22:53:50 | 000,060,458 | ---- | C] () -- G:\WINDOWS\System32\ideograf.uce
[2010/06/13 22:53:50 | 000,026,582 | ---- | C] () -- G:\WINDOWS\Greenstone.bmp
[2010/06/13 22:53:50 | 000,017,336 | ---- | C] () -- G:\WINDOWS\Gone Fishing.bmp
[2010/06/13 22:53:50 | 000,017,062 | ---- | C] () -- G:\WINDOWS\Coffee Bean.bmp
[2010/06/13 22:53:50 | 000,016,740 | ---- | C] () -- G:\WINDOWS\System32\shiftjis.uce
[2010/06/13 22:53:50 | 000,016,730 | ---- | C] () -- G:\WINDOWS\FeatherTexture.bmp
[2010/06/13 22:53:50 | 000,012,876 | ---- | C] () -- G:\WINDOWS\System32\korean.uce
[2010/06/13 22:53:50 | 000,008,484 | ---- | C] () -- G:\WINDOWS\System32\kanji_2.uce
[2010/06/13 22:53:50 | 000,006,948 | ---- | C] () -- G:\WINDOWS\System32\kanji_1.uce
[2010/06/13 22:53:50 | 000,001,272 | ---- | C] () -- G:\WINDOWS\Blue Lace 16.bmp
[2010/06/13 22:53:49 | 000,024,006 | ---- | C] () -- G:\WINDOWS\System32\gb2312.uce
[2010/06/13 22:53:49 | 000,022,984 | ---- | C] () -- G:\WINDOWS\System32\bopomofo.uce
[2010/06/13 22:53:48 | 000,003,286 | ---- | C] () -- G:\WINDOWS\System32\tslabels.h
[2010/06/13 22:53:48 | 000,001,161 | ---- | C] () -- G:\WINDOWS\System32\usrlogon.cmd
[2010/06/13 22:53:46 | 000,000,768 | ---- | C] () -- G:\WINDOWS\System32\msdtcprf.h
[2010/06/13 22:53:39 | 000,063,488 | ---- | C] () -- G:\WINDOWS\System32\wmimgmt.msc
[2010/06/13 15:47:06 | 000,004,878 | ---- | C] () -- G:\WINDOWS\imsins.BAK
[2010/06/13 15:47:01 | 001,685,606 | ---- | C] () -- G:\WINDOWS\System32\dllcache\sam.spd
[2010/06/13 15:47:01 | 000,000,888 | ---- | C] () -- G:\WINDOWS\System32\dllcache\sam.sdf
[2010/06/13 15:47:00 | 000,643,717 | ---- | C] () -- G:\WINDOWS\System32\dllcache\ltts1033.lxa
[2010/06/13 15:47:00 | 000,605,050 | ---- | C] () -- G:\WINDOWS\System32\dllcache\r1033tts.lxa
[2010/06/13 15:46:58 | 000,066,082 | ---- | C] () -- G:\WINDOWS\System32\c_28603.nls
[2010/06/13 15:46:57 | 000,066,082 | ---- | C] () -- G:\WINDOWS\System32\c_28599.nls
[2010/06/13 15:46:55 | 000,066,082 | ---- | C] () -- G:\WINDOWS\System32\C_28595.NLS
[2010/06/13 15:46:53 | 000,066,082 | ---- | C] () -- G:\WINDOWS\System32\C_28597.NLS
[2010/06/13 15:46:52 | 000,066,082 | ---- | C] () -- G:\WINDOWS\System32\C_28594.NLS
[2010/06/13 15:46:48 | 000,066,082 | ---- | C] () -- G:\WINDOWS\System32\c_20127.nls
[2010/06/13 15:46:45 | 000,001,688 | ---- | C] () -- G:\WINDOWS\System32\AUTOEXEC.NT
[2010/06/13 15:46:39 | 000,390,168 | ---- | C] () -- G:\WINDOWS\System32\dllcache\WFC.CAT
[2010/06/13 15:46:39 | 000,022,151 | ---- | C] () -- G:\WINDOWS\System32\dllcache\TCLASSES.CAT
[2010/06/13 15:46:39 | 000,021,281 | ---- | C] () -- G:\WINDOWS\System32\dllcache\XMLDSOC.CAT
[2010/06/13 15:30:41 | 001,175,136 | ---- | C] () -- G:\WINDOWS\System32\FNTCACHE.DAT
[2010/06/13 15:27:06 | 000,000,264 | ---- | C] () -- G:\WINDOWS\System32\$winnt$.inf
[2009/02/12 22:20:42 | 000,005,630 | ---- | C] () -- G:\WINDOWS\System32\IE8Eula.rtf
[2009/01/07 18:20:36 | 000,066,384 | ---- | C] () -- G:\WINDOWS\System32\normnfkc.nls
[2009/01/07 18:20:36 | 000,060,294 | ---- | C] () -- G:\WINDOWS\System32\normnfkd.nls
[2009/01/07 18:20:36 | 000,059,342 | ---- | C] () -- G:\WINDOWS\System32\normidna.nls
[2009/01/07 18:20:36 | 000,045,794 | ---- | C] () -- G:\WINDOWS\System32\normnfc.nls
[2009/01/07 18:20:36 | 000,039,284 | ---- | C] () -- G:\WINDOWS\System32\normnfd.nls
[2009/01/07 18:20:20 | 000,008,798 | ---- | C] () -- G:\WINDOWS\System32\icrav03.rat
[2009/01/07 18:20:20 | 000,001,988 | ---- | C] () -- G:\WINDOWS\System32\ticrf.rat
[2008/05/26 21:59:42 | 000,018,904 | ---- | C] () -- G:\WINDOWS\System32\structuredqueryschematrivial.bin
[2008/05/26 21:59:40 | 000,106,605 | ---- | C] () -- G:\WINDOWS\System32\structuredqueryschema.bin
[2007/09/27 10:51:02 | 000,020,698 | ---- | C] () -- G:\WINDOWS\System32\idxcntrs.ini
[2007/09/27 10:51:02 | 000,004,640 | ---- | C] () -- G:\WINDOWS\System32\idxcntrs.h
[2007/09/27 10:48:48 | 000,030,628 | ---- | C] () -- G:\WINDOWS\System32\gsrvctr.ini
[2007/09/27 10:48:48 | 000,002,590 | ---- | C] () -- G:\WINDOWS\System32\gsrvctr.h
[2007/09/27 10:48:28 | 000,031,698 | ---- | C] () -- G:\WINDOWS\System32\gthrctr.ini
[2007/09/27 10:48:28 | 000,003,100 | ---- | C] () -- G:\WINDOWS\System32\gthrctr.h
[2005/12/21 01:39:34 | 000,012,288 | R--- | C] () -- G:\WINDOWS\System32\hpnvr82.dll
[2004/10/05 22:37:08 | 000,000,687 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Application Data\Microsoft\Internet Explorer\Quick Launch\Apophysis 7x.lnk
[2004/10/05 22:05:43 | 000,000,734 | ---- | C] () -- G:\Documents and Settings\Donovan Gerrans\Desktop\Apophysis 2.02.lnk
[2004/10/02 05:27:58 | 000,000,408 | -H-- | C] () -- G:\WINDOWS\tasks\MP Scheduled Scan.job
[2004/10/02 05:22:43 | 000,000,830 | ---- | C] () -- G:\Documents and Settings\All Users\Desktop\Microsoft Security Essentials.lnk
[2004/10/01 13:07:14 | 000,444,524 | ---- | C] () -- G:\WINDOWS\P1060004b.JPG
[2004/10/01 13:07:14 | 000,442,095 | ---- | C] () -- G:\WINDOWS\P3190450aw.JPG
[2004/10/01 13:07:14 | 000,415,881 | ---- | C] () -- G:\WINDOWS\P1060004aw.JPG
[2004/10/01 13:07:14 | 000,257,312 | ---- | C] () -- G:\WINDOWS\P5290002w.jpg
[2004/10/01 13:07:14 | 000,187,190 | ---- | C] () -- G:\WINDOWS\P5290001w.JPG
[2004/10/01 02:54:52 | 000,175,104 | ---- | C] () -- G:\WINDOWS\System32\dllcache\pintlcsa.dll
[2004/10/01 02:54:34 | 001,158,818 | ---- | C] () -- G:\WINDOWS\System32\dllcache\korwbrkr.lex
[2004/10/01 02:54:26 | 000,059,392 | ---- | C] () -- G:\WINDOWS\System32\dllcache\imscinst.exe
[2004/10/01 02:54:25 | 000,196,666 | ---- | C] () -- G:\WINDOWS\System32\dllcache\imjpinst.exe
[2004/10/01 02:54:23 | 000,134,339 | ---- | C] () -- G:\WINDOWS\System32\dllcache\imekr.lex
[2004/10/01 02:54:15 | 013,463,552 | ---- | C] () -- G:\WINDOWS\System32\dllcache\hwxjpn.dll
[2004/10/01 02:54:11 | 000,108,827 | ---- | C] () -- G:\WINDOWS\System32\dllcache\hanja.lex
[2004/10/01 02:54:09 | 000,094,208 | ---- | C] () -- G:\WINDOWS\System32\dllcache\fpencode.dll
[2004/10/01 02:53:56 | 000,173,568 | ---- | C] () -- G:\WINDOWS\System32\dllcache\chtskf.dll
[2004/10/01 02:52:04 | 000,000,488 | RH-- | C] () -- G:\WINDOWS\System32\logonui.exe.manifest
[2004/10/01 02:51:58 | 000,000,749 | RH-- | C] () -- G:\WINDOWS\System32\wuaucpl.cpl.manifest
[2004/10/01 02:51:58 | 000,000,749 | RH-- | C] () -- G:\WINDOWS\WindowsShell.Manifest
[2004/10/01 02:51:58 | 000,000,749 | RH-- | C] () -- G:\WINDOWS\System32\sapi.cpl.manifest
[2004/10/01 02:51:58 | 000,000,749 | RH-- | C] () -- G:\WINDOWS\System32\ncpa.cpl.manifest
[2004/10/01 02:51:40 | 000,348,160 | ---- | C] () -- G:\WINDOWS\System32\dllcache\msinfo.dll
[2004/10/01 02:51:27 | 000,004,639 | ---- | C] () -- G:\WINDOWS\System32\dllcache\mplayer2.exe
[2004/10/01 02:43:31 | 000,037,484 | ---- | C] () -- G:\WINDOWS\System32\dllcache\MW770.CAT
[2004/10/01 02:43:31 | 000,008,574 | ---- | C] () -- G:\WINDOWS\System32\dllcache\IASNT4.CAT
[2004/10/01 02:43:31 | 000,007,369 | ---- | C] () -- G:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2004/10/01 02:43:31 | 000,007,046 | ---- | C] () -- G:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2004/10/01 02:43:30 | 000,797,189 | ---- | C] () -- G:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2004/10/01 02:43:30 | 000,657,548 | ---- | C] () -- G:\WINDOWS\System32\dllcache\CLASSES.CAT
[2004/10/01 02:43:30 | 000,399,645 | ---- | C] () -- G:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2004/10/01 02:43:30 | 000,056,081 | ---- | C] () -- G:\WINDOWS\System32\dllcache\DAJAVAC.CAT
[2004/10/01 02:43:30 | 000,052,311 | ---- | C] () -- G:\WINDOWS\System32\dllcache\DX3.CAT
[2004/10/01 02:43:30 | 000,031,405 | ---- | C] () -- G:\WINDOWS\System32\dllcache\FP4.CAT
[2004/10/01 02:43:30 | 000,014,031 | ---- | C] () -- G:\WINDOWS\System32\dllcache\MSJDBC.CAT
[2004/10/01 02:43:30 | 000,013,608 | ---- | C] () -- G:\WINDOWS\System32\dllcache\IMS.CAT
[2004/10/01 02:43:30 | 000,013,472 | ---- | C] () -- G:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2004/10/01 02:43:30 | 000,010,881 | ---- | C] () -- G:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2004/10/01 02:43:29 | 002,049,999 | ---- | C] () -- G:\WINDOWS\System32\dllcache\NT5.CAT
[2004/10/01 02:43:29 | 000,342,618 | ---- | C] () -- G:\WINDOWS\System32\dllcache\NT5INF.CAT
[2004/08/04 00:56:57 | 000,118,272 | ---- | C] () -- G:\WINDOWS\System32\mpeg2data.ax
[2004/07/17 22:55:22 | 000,129,045 | ---- | C] () -- G:\WINDOWS\System32\drivers\cxthsfs2.cty
[2004/07/17 11:36:22 | 000,064,352 | ---- | C] () -- G:\WINDOWS\System32\drivers\ativmc20.cod
[2002/09/03 09:58:49 | 000,027,440 | ---- | C] () -- G:\WINDOWS\System32\drivers\secdrv.sys
[2002/09/03 09:53:16 | 000,152,576 | ---- | C] () -- G:\WINDOWS\System32\qasf.dll

========== LOP Check ==========

[2010/06/14 01:15:32 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Application Data\Alwil Software
[2010/08/16 22:07:24 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Application Data\SlySoft
[2010/06/15 06:28:22 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Application Data\Stardock
[2010/06/26 03:03:54 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Application Data\xml_param
[2004/10/05 22:27:39 | 000,000,000 | -H-D | M] -- G:\Documents and Settings\All Users\Application Data\{20DDC8CD-A1C6-490B-A1B4-40CAFFE3B669}
[2010/06/15 17:55:02 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2010/06/15 22:04:44 | 000,000,000 | -H-D | M] -- G:\Documents and Settings\All Users\Application Data\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}
[2010/06/30 21:08:29 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Aston2
[2010/06/29 22:31:46 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Azureus
[2010/07/17 20:48:53 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Donovan Gerrans\Application Data\BID
[2010/07/06 14:46:34 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Donovan Gerrans\Application Data\pdfforge
[2010/07/06 14:46:36 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Search Settings
[2010/06/15 06:29:07 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Stardock
[2010/09/02 21:03:09 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Thinstall
[2010/06/15 22:32:43 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Windows Desktop Search
[2010/06/28 18:25:54 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Donovan Gerrans\Application Data\Windows Search
[2004/10/03 01:32:47 | 000,000,408 | -H-- | M] () -- G:\WINDOWS\Tasks\MP Scheduled Scan.job

========== Purity Check ==========



========== Custom Scans ==========



< MD5 for: SVCHOST.EXE >
[2002/09/03 10:05:32 | 000,012,800 | ---- | M] (Microsoft Corporation) MD5=0F7D9C87B0CE1FA520473119752C6F79 -- G:\WINDOWS\system32\dllcache\svchost.exe
[2002/09/03 10:05:32 | 000,012,800 | ---- | M] (Microsoft Corporation) MD5=0F7D9C87B0CE1FA520473119752C6F79 -- G:\WINDOWS\system32\svchost.exe

< %SYSTEMDRIVE%\*.* >
[2010/10/18 22:35:16 | 000,053,275 | ---- | M] () -- G:\ComboFix.txt
[2004/10/07 02:50:58 | 000,001,209 | ---- | M] () -- G:\johonn.log
[2004/09/30 14:33:19 | 2145,386,496 | -HS- | M] () -- G:\pagefile.sys
[2010/09/20 21:27:32 | 000,041,578 | ---- | M] () -- G:\TDSSKiller.2.4.2.1_20.09.2010_21.22.40_log.txt

< %systemroot%\*. /mp /s >

< %systemroot%\System32\config\*.sav >
[2004/09/30 19:40:17 | 000,286,720 | ---- | M] () -- G:\WINDOWS\system32\config\default.sav
[2004/10/01 02:29:49 | 000,262,144 | ---- | M] () -- G:\WINDOWS\system32\config\security.sav
[2004/09/30 19:40:17 | 030,408,704 | ---- | M] () -- G:\WINDOWS\system32\config\software.sav
[2004/09/30 19:40:17 | 006,029,312 | ---- | M] () -- G:\WINDOWS\system32\config\system.sav

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2010-09-03 08:12:28
< End of report >
  • 0

#34
Salagubang

Salagubang

    Trusted Helper

  • Malware Removal
  • 3,891 posts
Still no internet and copy/paste?
  • 0

#35
Salagubang

Salagubang

    Trusted Helper

  • Malware Removal
  • 3,891 posts
Hi johonn,

Can you confirm if you have internet working on the ailing machine?
  • 0

#36
johonn

johonn

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 120 posts
I have copy/paste, but no internet or network. When I go to network connections, it shows a local area connections that is enabled, but I can not do anything with it.
  • 0

#37
johonn

johonn

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 120 posts
I have not done the process with the registry from your instructions. Should I do that now?
  • 0

#38
Salagubang

Salagubang

    Trusted Helper

  • Malware Removal
  • 3,891 posts
Yes and follow the instruction for reinstalling your network card drivers. Please update me if the issue remains.
  • 0

#39
johonn

johonn

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 120 posts
What about that all the stuff that AVP found? Do I need to do something about them?
  • 0

#40
Salagubang

Salagubang

    Trusted Helper

  • Malware Removal
  • 3,891 posts
Hi johonn,

What about that all the stuff that AVP found? Do I need to do something about them?


I will include their removal in my next fix.

Were you able to follow my last instruction? Kindly confirm if internet/network connection is still an issue.
  • 0

Advertisements


#41
johonn

johonn

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 120 posts
yes network is still an issue. Also, I restarted my pc, and now it comes into the desktop and locks up. I ran the reg thing, and deleted the network driver reference. It did say it found a network card. It keeps popping up with 'can't find windows search point'. and something about avast, and another little window notification. I can't do anything on there now, unless maybe it will work in safe mode, I don't know.
  • 0

#42
Salagubang

Salagubang

    Trusted Helper

  • Malware Removal
  • 3,891 posts
Did you reinstall the network card drivers?
  • 0

#43
johonn

johonn

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 120 posts
As I mentioned, everything is locking up. I have lost copy and paste, drag and drop again, even in safe mode. How do I get it back to how it was before I restarted after running the reg file? It seems like the reg file caused a problem. Maybe I should not have run it, since copy and paste were working. also, my task bar is not working either now, so I can't even use the start button, etc. The pc seems very sluggish, and before, it was quite fast, and I could open and use programs with hardly any problems. I couldn't use search in windows explorer though. Now, I can hardly even open programs. This is far worse than it was before. How can I restore my reg file to how it was?
  • 0

#44
Salagubang

Salagubang

    Trusted Helper

  • Malware Removal
  • 3,891 posts
Hi johonn,

Ok, that didn't work quite well as expected.

After consulting with an expert, the surest way to get this resolved is to do a Full Reinstall. It's always my last resort, but occasionally that's what it requires. If you would like me to, I can always go through the process of reinstalling Windows on your PC, just let me know if you need any assistance.

How can I restore my reg file to how it was?


To restore changes made into the registry, all you have to do is get to the C:\Windows\ERUNT folder and click on the ERDNT.exe and it will restore your registry to the date the folder was made. This will help you back-up some files if proceeding with reintall.


The steps for performing a full reinstall can be found here.

Summary of what you need to do when reinstalling:

Backup any data that you want to save onto external media such as DVD's, USB Sticks, External HDD's etc
Reinstall Windows (using the disc)
Install all the drivers (so your Sound, Ethernet port, Graphics etc work as they should)
Download any remaining Windows Updates
Copy your data back over to the Hard Drive and reinstall any programs that you want back on


Another guide on reinstalling XP is found here and that contains good details on the steps and shows you screenshots as well. You would just need to read from the Steps to Clean Install XP section on that webpage.

Remember though, backup your data before reinstalling as they will all be removed as part of the reinstallation. Most people will backup items such as Pictures, Documents, Music, Favourites, Emails etc. You can't backup programs though, as the files associated with the programs are installed in a number of different places on the PC, including the registry. So programs such as Digital Camera software, printer software, Office programs etc will need to be installed from a disc or downloaded, once XP has been reinstalled.

Let me know how you get on or if you have any questions.

Edited by Salagubang, 21 November 2010 - 08:18 AM.

  • 0

#45
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP