Rootkit scan 2010-10-18 14:29:19
Windows 5.1.2600 Service Pack 3
Running: gmer.exe; Driver: C:\DOCUME~1\A\LOCALS~1\Temp\pxtdypow.sys
---- System - GMER 1.0.15 ----
SSDT 821E14A0 ZwAlertResumeThread
SSDT 82313600 ZwAlertThread
SSDT 8220F630 ZwAllocateVirtualMemory
SSDT 82231DC8 ZwCreateMutant
SSDT 82218538 ZwCreateThread
SSDT 8221DA00 ZwFreeVirtualMemory
SSDT 822A4E48 ZwImpersonateAnonymousToken
SSDT 821E81B8 ZwImpersonateThread
SSDT 82215560 ZwMapViewOfSection
SSDT 82314500 ZwOpenEvent
SSDT 82189EF8 ZwOpenProcessToken
SSDT 82310E28 ZwOpenThreadToken
SSDT 82221F00 ZwResumeThread
SSDT 82215528 ZwSetContextThread
SSDT 8221E820 ZwSetInformationProcess
SSDT 8221E370 ZwSetInformationThread
SSDT 82314C18 ZwSuspendProcess
SSDT 821B42C0 ZwSuspendThread
SSDT 82309C88 ZwTerminateProcess
SSDT 82218500 ZwTerminateThread
SSDT 822A9688 ZwUnmapViewOfSection
SSDT 8221DA90 ZwWriteVirtualMemory
---- Kernel code sections - GMER 1.0.15 ----
.text ntkrnlpa.exe!ZwCallbackReturn + 2714 80501F4C 8 Bytes CALL 63C0A172
---- User code sections - GMER 1.0.15 ----
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtCreateFile + 6 7C90D0B4 4 Bytes [28, 00, 16, 00]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtCreateFile + B 7C90D0B9 1 Byte [E2]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtMapViewOfSection + 6 7C90D524 1 Byte [28]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtMapViewOfSection + 6 7C90D524 4 Bytes [28, 03, 16, 00]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtMapViewOfSection + B 7C90D529 1 Byte [E2]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtOpenFile + 6 7C90D5A4 4 Bytes [68, 00, 16, 00]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtOpenFile + B 7C90D5A9 1 Byte [E2]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtOpenProcess + 6 7C90D604 4 Bytes [A8, 01, 16, 00]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtOpenProcess + B 7C90D609 1 Byte [E2]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtOpenProcessToken + 6 7C90D614 4 Bytes CALL 7B90EC1A
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtOpenProcessToken + B 7C90D619 1 Byte [E2]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtOpenProcessTokenEx + 6 7C90D624 4 Bytes [A8, 02, 16, 00]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtOpenProcessTokenEx + B 7C90D629 1 Byte [E2]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtOpenThread + 6 7C90D664 4 Bytes [68, 01, 16, 00]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtOpenThread + B 7C90D669 1 Byte [E2]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtOpenThreadToken + 6 7C90D674 4 Bytes [68, 02, 16, 00]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtOpenThreadToken + B 7C90D679 1 Byte [E2]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtOpenThreadTokenEx + 6 7C90D684 4 Bytes CALL 7B90EC8B
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtOpenThreadTokenEx + B 7C90D689 1 Byte [E2]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtQueryAttributesFile + 6 7C90D714 4 Bytes [A8, 00, 16, 00]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtQueryAttributesFile + B 7C90D719 1 Byte [E2]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtQueryFullAttributesFile + 6 7C90D7B4 4 Bytes CALL 7B90EDB9
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtQueryFullAttributesFile + B 7C90D7B9 1 Byte [E2]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtSetInformationFile + 6 7C90DC64 4 Bytes [28, 01, 16, 00]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtSetInformationFile + B 7C90DC69 1 Byte [E2]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtSetInformationThread + 6 7C90DCB4 4 Bytes [28, 02, 16, 00]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtSetInformationThread + B 7C90DCB9 1 Byte [E2]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtUnmapViewOfSection + 6 7C90DF14 1 Byte [68]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtUnmapViewOfSection + 6 7C90DF14 4 Bytes [68, 03, 16, 00]
.text C:\Documents and Settings\A\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[1628] ntdll.dll!NtUnmapViewOfSection + B 7C90DF19 1 Byte [E2]
.text C:\WINDOWS\system32\SearchIndexer.exe[2760] kernel32.dll!WriteFile 7C810E27 7 Bytes JMP 00585C0C C:\WINDOWS\system32\MSSRCH.DLL (mssrch.dll/Microsoft Corporation)
---- Devices - GMER 1.0.15 ----
AttachedDevice \Driver\Kbdclass \Device\KeyboardClass0 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.)
AttachedDevice \Driver\Kbdclass \Device\KeyboardClass1 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.)
---- EOF - GMER 1.0.15 ----
OTL logfile created on: 10/18/2010 2:33:22 PM - Run 1
OTL by OldTimer - Version 3.2.15.2 Folder = C:\Documents and Settings\A\Desktop
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
502.00 Mb Total Physical Memory | 207.00 Mb Available Physical Memory | 41.00% Memory free
1.00 Gb Paging File | 1.00 Gb Available in Paging File | 66.00% Paging File free
Paging file location(s): C:\pagefile.sys 756 1512 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232.88 Gb Total Space | 222.82 Gb Free Space | 95.68% Space Free | Partition Type: NTFS
Computer Name: JJ | User Name: A | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 90 Days
========== Processes (SafeList) ==========
PRC - [2010/10/18 12:39:28 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\A\Desktop\OTL.exe
PRC - [2010/08/27 11:44:11 | 000,593,920 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\LManager.exe
PRC - [2010/08/26 16:03:08 | 000,507,904 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Documents and Settings\A\Local Settings\Temp\RtkBtMnt.exe
PRC - [2010/05/18 13:28:32 | 000,115,560 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccApp.exe
PRC - [2010/05/18 13:28:32 | 000,108,392 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
PRC - [2010/05/18 13:28:30 | 001,459,528 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe
PRC - [2010/05/18 13:28:28 | 001,881,368 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe
PRC - [2010/05/18 13:28:28 | 001,831,024 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe
PRC - [2010/04/10 08:45:46 | 000,979,344 | ---- | M] (The Eraser Project) -- C:\Program Files\Eraser\Eraser.exe
PRC - [2008/04/13 19:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006/03/23 12:17:42 | 000,094,208 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxext.exe
PRC - [2006/02/10 07:56:12 | 000,479,232 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
PRC - [2006/01/17 10:45:32 | 000,618,557 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2005/09/21 13:48:42 | 000,425,984 | ---- | M] (Acer Inc.) -- C:\Program Files\Acer\Acer eConsole\MediaSync.exe
PRC - [2005/09/21 13:46:56 | 000,438,272 | ---- | M] (Acer Inc.) -- C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
========== Modules (SafeList) ==========
MOD - [2010/10/18 12:39:28 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\A\Desktop\OTL.exe
MOD - [2008/04/13 19:10:20 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
========== Win32 Services (SafeList) ==========
SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - [2010/05/18 13:28:32 | 000,108,392 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccSetMgr)
SRV - [2010/05/18 13:28:32 | 000,108,392 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccEvtMgr)
SRV - [2010/05/18 13:28:30 | 000,349,512 | ---- | M] (Symantec Corporation) [Disabled | Stopped] -- C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE -- (SNAC)
SRV - [2010/05/18 13:28:28 | 001,881,368 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe -- (SmcService)
SRV - [2010/05/18 13:28:28 | 001,831,024 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe -- (Symantec AntiVirus)
SRV - [2010/03/18 16:47:22 | 000,035,160 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe -- (aspnet_state)
SRV - [2010/03/18 13:16:28 | 000,753,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/18 13:16:28 | 000,124,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2010/02/17 10:53:18 | 003,093,880 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_3.EXE -- (LiveUpdate)
SRV - [2006/03/03 21:03:10 | 000,069,632 | ---- | M] (HP) [Unknown | Stopped] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
SRV - [2005/09/21 13:46:56 | 000,438,272 | ---- | M] (Acer Inc.) [Auto | Running] -- C:\Program Files\Acer\Acer eConsole\MediaServerService.exe -- (Acer Media Server)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\UIUSYS.SYS -- (UIUSys)
DRV - [2010/09/28 03:00:00 | 001,371,184 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20101018.002\NAVEX15.SYS -- (NAVEX15)
DRV - [2010/09/28 03:00:00 | 000,086,064 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20101018.002\NAVENG.SYS -- (NAVENG)
DRV - [2010/08/27 18:28:36 | 000,124,976 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2010/08/27 12:03:09 | 000,988,800 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV)
DRV - [2010/08/27 12:03:09 | 000,730,112 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2010/08/27 12:03:09 | 000,209,664 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys -- (HSFHWAZL)
DRV - [2010/08/19 03:00:00 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2010/08/19 03:00:00 | 000,102,448 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2010/05/18 13:28:34 | 000,320,944 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\srtspl.sys -- (SRTSPL)
DRV - [2010/05/18 13:28:34 | 000,283,184 | ---- | M] (Symantec Corporation) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\srtsp.sys -- (SRTSP)
DRV - [2010/05/18 13:28:34 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\srtspx.sys -- (SRTSPX)
DRV - [2010/05/18 13:28:22 | 000,421,424 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)
DRV - [2010/05/18 13:28:22 | 000,023,888 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\COH_Mon.sys -- (COH_Mon)
DRV - [2008/04/13 11:36:05 | 000,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2006/06/28 16:25:24 | 004,304,384 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006/06/16 19:17:38 | 000,074,752 | R--- | M] (ENE Technology Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ESM7SK.sys -- (ESMCR)
DRV - [2006/06/16 19:17:38 | 000,040,064 | R--- | M] (ENE Technology Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ESD7SK.sys -- (ESDCR)
DRV - [2006/06/16 19:17:36 | 000,061,056 | R--- | M] (ENE Technology Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\EMS7SK.sys -- (EMSCR)
DRV - [2006/03/03 12:52:30 | 000,192,672 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SynTP.sys -- (SynTP)
DRV - [2006/01/17 10:21:52 | 000,328,061 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (btaudio)
DRV - [2006/01/17 10:19:46 | 000,023,271 | ---- | M] (Broadcom Corporation.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\btserial.sys -- (BTSERIAL)
DRV - [2006/01/17 10:18:22 | 000,850,474 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL)
DRV - [2006/01/17 10:15:36 | 000,030,459 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver)
DRV - [2006/01/17 10:11:56 | 000,148,900 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwdndis.sys -- (BTWDNDIS)
DRV - [2005/11/02 13:24:24 | 000,424,320 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2005/10/31 14:17:00 | 000,045,312 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\bcm4sbxp.sys -- (bcm4sbxp)
DRV - [2004/12/08 14:10:00 | 000,016,896 | ---- | M] (Dritek System Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\DKbFltr.SYS -- (DKbFltr)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/09/29 23:44:47 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/10/05 22:22:23 | 000,000,000 | ---D | M]
[2010/08/27 18:49:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\A\Application Data\Mozilla\Extensions
[2010/10/18 11:52:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\A\Application Data\Mozilla\Firefox\Profiles\8fc8d5y1.default\extensions
[2010/09/17 18:32:11 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\A\Application Data\Mozilla\Firefox\Profiles\8fc8d5y1.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010/08/27 18:48:47 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[1999/12/31 17:00:00 | 000,166,168 | ---- | M] (Tracker Software Products Ltd.) -- C:\Program Files\Mozilla Firefox\plugins\npPDFXCviewNPPlugin.dll
O1 HOSTS File: ([2010/10/17 23:42:06 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [Eraser] C:\Program Files\Eraser\Eraser.exe (The Eraser Project)
O4 - HKLM..\Run: [INPROCOMMWireless] C:\Program Files\Atheros\Wireless\Utility\WlanUtil.exe File not found
O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exe (Acer Inc.)
O4 - HKLM..\Run: [SkyTel] C:\WINDOWS\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Bluetooth.lnk = C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Empowering Technology Launcher.lnk = C:\Acer\Empowering Technology\eAPLauncher.exe (Acer Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Photosmart Premier Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe (Hewlett-Packard Development Company, L.P.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme ()
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.micr...heckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\A\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\A\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/08/26 09:15:33 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: HidServ - C:\WINDOWS\System32\hidserv.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FFDS - C:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.LEAD - LCODCCMP.DLL File not found
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (16902109354000384)
========== Files/Folders - Created Within 90 Days ==========
[2010/10/18 14:00:34 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\A\Recent
[2010/10/18 12:39:22 | 000,574,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\A\Desktop\OTL.exe
[2010/10/17 23:33:09 | 000,082,944 | ---- | C] (S!Ri.URZ) -- C:\WINDOWS\System32\IEDFix.C.exe
[2010/10/17 23:33:09 | 000,080,384 | ---- | C] (S!Ri.URZ) -- C:\WINDOWS\System32\o4Patch.exe
[2010/10/17 23:33:09 | 000,078,336 | ---- | C] (S!Ri.URZ) -- C:\WINDOWS\System32\Agent.OMZ.Fix.exe
[2010/10/17 23:33:08 | 000,289,144 | ---- | C] (S!Ri) -- C:\WINDOWS\System32\VCCLSID.exe
[2010/10/17 23:33:08 | 000,087,552 | ---- | C] (S!Ri.URZ) -- C:\WINDOWS\System32\VACFix.exe
[2010/10/17 23:33:08 | 000,082,944 | ---- | C] (S!Ri.URZ) -- C:\WINDOWS\System32\IEDFix.exe
[2010/10/17 23:33:08 | 000,082,432 | ---- | C] (S!Ri.URZ) -- C:\WINDOWS\System32\404Fix.exe
[2010/10/17 23:33:07 | 000,288,417 | ---- | C] (S!Ri) -- C:\WINDOWS\System32\SrchSTS.exe
[2010/10/17 23:33:07 | 000,135,168 | ---- | C] (SteelWerX) -- C:\WINDOWS\System32\swreg.exe
[2010/10/17 23:33:07 | 000,079,360 | ---- | C] (SteelWerX) -- C:\WINDOWS\System32\swxcacls.exe
[2010/10/17 23:33:07 | 000,053,248 | ---- | C] (http://www.beyondlogic.org) -- C:\WINDOWS\System32\Process.exe
[2010/10/17 22:53:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2010/10/16 21:40:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Desktop\bb
[2010/10/09 16:32:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Desktop\3L fall semester
[2010/09/29 23:44:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Application Data\vlc
[2010/09/29 23:42:22 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2010/09/20 16:19:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\My Documents\My Scans
[2010/09/17 21:28:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Local Settings\Application Data\Eraser 6
[2010/09/17 21:26:15 | 000,000,000 | ---D | C] -- C:\Program Files\Eraser
[2010/09/17 21:02:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Application Data\WinRAR
[2010/09/17 21:01:29 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2010/09/17 18:38:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Local Settings\Application Data\Temp
[2010/09/17 18:38:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Local Settings\Application Data\Google
[2010/09/02 21:18:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\My Documents\3L fall semester
[2010/09/02 21:17:28 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010/09/01 10:25:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Local Settings\Application Data\IsolatedStorage
[2010/09/01 10:23:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Local Settings\Application Data\HP
[2010/08/31 11:39:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Desktop\HP
[2010/08/31 11:37:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Application Data\HP
[2010/08/31 11:36:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\HP
[2010/08/31 11:34:38 | 000,000,000 | ---D | C] -- C:\bin
[2010/08/31 11:33:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sonic
[2010/08/31 11:33:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Sonic Shared
[2010/08/31 11:30:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP
[2010/08/31 11:27:43 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2010/08/31 11:27:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard
[2010/08/30 12:15:18 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2010/08/30 12:15:05 | 000,000,000 | -H-D | C] -- C:\Config.Msi
[2010/08/30 12:13:59 | 000,098,304 | ---- | C] (Hewlett Packard Company) -- C:\WINDOWS\System32\hpzjsn01.dll
[2010/08/28 22:49:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Local Settings\Application Data\Opera
[2010/08/28 22:49:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Application Data\Opera
[2010/08/28 22:49:35 | 000,000,000 | ---D | C] -- C:\Program Files\Opera
[2010/08/28 22:19:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Application Data\Windows Search
[2010/08/28 22:11:06 | 000,000,000 | ---D | C] -- C:\Program Files\Tracker Software
[2010/08/28 22:08:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Azem\My Documents\Downloads
[2010/08/27 23:19:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2010/08/27 23:18:59 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2010/08/27 23:18:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2010/08/27 23:18:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Local Settings\Application Data\Adobe
[2010/08/27 18:48:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Local Settings\Application Data\Mozilla
[2010/08/27 18:48:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Application Data\Mozilla
[2010/08/27 18:48:45 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2010/08/27 18:30:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Local Settings\Application Data\Symantec
[2010/08/27 18:28:28 | 000,124,976 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS
[2010/08/27 18:28:28 | 000,060,808 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\S32EVNT1.DLL
[2010/08/27 18:27:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
[2010/08/27 18:27:30 | 000,000,000 | ---D | C] -- C:\Program Files\Symantec
[2010/08/27 18:27:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Symantec
[2010/08/27 18:26:27 | 000,000,000 | ---D | C] -- C:\Symantec_Endpoint_Protection11.0.6005
[2010/08/27 16:48:07 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2010/08/27 16:47:51 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2010/08/27 16:46:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2010/08/27 16:45:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Local Settings\Application Data\Microsoft Help
[2010/08/27 16:44:27 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010/08/27 16:44:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft Help
[2010/08/27 16:43:16 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2010/08/27 12:31:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\eConsole
[2010/08/27 12:30:24 | 000,000,000 | ---D | C] -- C:\Program Files\Acer
[2010/08/27 12:23:36 | 001,323,008 | ---- | C] (Acer inc.) -- C:\WINDOWS\System32\Acer.Empowering.Windows.Forms.dll
[2010/08/27 12:23:36 | 000,053,248 | ---- | C] ( ) -- C:\WINDOWS\System32\Interop.Shell32.dll
[2010/08/27 12:16:42 | 000,000,000 | R--D | C] -- C:\Documents and Settings\A\My Documents\My Videos
[2010/08/27 12:15:53 | 000,000,000 | ---D | C] -- C:\Program Files\ffdshow
[2010/08/27 12:12:25 | 000,000,000 | ---D | C] -- C:\DECCHECK
[2010/08/27 12:08:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Application Data\Macromedia
[2010/08/27 12:08:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Application Data\Adobe
[2010/08/27 12:04:01 | 000,000,000 | ---D | C] -- C:\Program Files\CONEXANT
[2010/08/27 11:56:50 | 000,000,000 | ---D | C] -- C:\Acer
[2010/08/27 11:48:14 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Documents\MCE Logs
[2010/08/27 11:48:04 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010/08/27 11:44:27 | 000,000,000 | ---D | C] -- C:\Program Files\Launch Manager
[2010/08/26 17:50:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Application Data\Malwarebytes
[2010/08/26 17:50:44 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/08/26 17:50:43 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/08/26 17:50:43 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/08/26 17:50:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010/08/26 16:29:19 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2010/08/26 16:18:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\WindowsPowerShell
[2010/08/26 16:18:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\winrm
[2010/08/26 16:18:11 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$968930Uinstall_KB968930$
[2010/08/26 16:10:58 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2010/08/26 16:09:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2010/08/26 16:09:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2010/08/26 16:03:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang
[2010/08/26 15:57:16 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2010/08/26 15:52:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2010/08/26 15:52:10 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2010/08/26 15:52:04 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2010/08/26 15:51:38 | 000,000,000 | ---D | C] -- C:\23348f02cdd77ec020213bb4
[2010/08/26 15:47:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages
[2010/08/26 15:43:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Local Settings\Application Data\ApplicationHistory
[2010/08/26 15:43:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Local Settings\Application Data\Identities
[2010/08/26 15:42:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Application Data\Windows Desktop Search
[2010/08/26 15:42:33 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Desktop Search
[2010/08/26 15:42:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\GroupPolicy
[2010/08/26 15:40:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTemp
[2010/08/26 15:34:12 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\A\IECompatCache
[2010/08/26 15:34:00 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\A\PrivacIE
[2010/08/26 15:32:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM
[2010/08/26 15:26:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010/08/26 15:15:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting
[2010/08/26 15:15:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2010/08/26 15:15:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en
[2010/08/26 15:15:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2010/08/26 15:12:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2010/08/26 15:08:19 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2010/08/26 14:54:45 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\A\IETldCache
[2010/08/26 14:45:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2010/08/26 14:45:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2010/08/26 14:44:06 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2010/08/26 14:44:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2010/08/26 11:12:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2010/08/26 11:00:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2010/08/26 10:56:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2010/08/26 10:56:44 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2010/08/26 10:56:20 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
[2010/08/26 10:54:30 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Azem\UserData
[2010/08/26 10:53:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2010/08/26 10:50:39 | 000,000,000 | ---D | C] -- C:\Program Files\Broadcom
[2010/08/26 10:23:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\SMSC
[2010/08/26 10:08:00 | 000,074,752 | R--- | C] (ENE Technology Inc.) -- C:\WINDOWS\System32\drivers\ESM7SK.sys
[2010/08/26 10:07:59 | 000,061,056 | R--- | C] (ENE Technology Inc.) -- C:\WINDOWS\System32\drivers\EMS7SK.sys
[2010/08/26 10:07:57 | 000,040,064 | R--- | C] (ENE Technology Inc.) -- C:\WINDOWS\System32\drivers\ESD7SK.sys
[2010/08/26 10:02:02 | 000,000,000 | ---D | C] -- C:\Program Files\WIDCOMM
[2010/08/26 09:55:04 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2010/08/26 09:51:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2010/08/26 09:51:29 | 000,192,672 | ---- | C] (Synaptics, Inc.) -- C:\WINDOWS\System32\drivers\SynTP.sys
[2010/08/26 09:51:29 | 000,114,688 | ---- | C] (Synaptics, Inc.) -- C:\WINDOWS\System32\SynCtrl.dll
[2010/08/26 09:51:29 | 000,094,298 | ---- | C] (Synaptics, Inc.) -- C:\WINDOWS\System32\SynTPAPI.dll
[2010/08/26 09:51:29 | 000,082,013 | ---- | C] (Synaptics, Inc.) -- C:\WINDOWS\System32\SynCOM.dll
[2010/08/26 09:51:29 | 000,081,920 | ---- | C] (Synaptics, Inc.) -- C:\WINDOWS\System32\SynTPCo2.dll
[2010/08/26 09:51:29 | 000,069,722 | ---- | C] (Synaptics, Inc.) -- C:\WINDOWS\System32\SynTPFcs.dll
[2010/08/26 09:51:29 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2010/08/26 09:27:02 | 000,000,000 | ---D | C] -- C:\Drivers
[2010/08/26 09:23:42 | 000,488,448 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\drivers\ar5211.sys
[2010/08/26 09:23:42 | 000,028,544 | ---- | C] (Inprocomm, Inc.) -- C:\WINDOWS\System32\drivers\callistx.sys
[2010/08/26 09:23:42 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2010/08/26 09:23:42 | 000,000,000 | ---D | C] -- C:\Program Files\Atheros
[2010/08/26 09:23:31 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2010/08/26 09:20:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Application Data\Identities
[2010/08/26 09:20:55 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2010/08/26 09:20:53 | 000,000,000 | R--D | C] -- C:\Documents and Settings\A\My Documents\My Pictures
[2010/08/26 09:20:53 | 000,000,000 | R--D | C] -- C:\Documents and Settings\A\My Documents\My Music
[2010/08/26 09:20:49 | 000,000,000 | --SD | C] -- C:\Documents and Settings\A\Application Data\Microsoft
[2010/08/26 09:20:49 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\A\SendTo
[2010/08/26 09:20:49 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\A\Application Data
[2010/08/26 09:20:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\A\Start Menu
[2010/08/26 09:20:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\A\My Documents
[2010/08/26 09:20:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\A\Favorites
[2010/08/26 09:20:49 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\A\Cookies
[2010/08/26 09:20:49 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\A\Templates
[2010/08/26 09:20:49 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\A\PrintHood
[2010/08/26 09:20:49 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\A\NetHood
[2010/08/26 09:20:49 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\A\Local Settings
[2010/08/26 09:20:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Local Settings\Application Data\Microsoft
[2010/08/26 09:20:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\A\Desktop
[2010/08/26 09:19:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Recorded TV
[2010/08/26 09:19:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2010/08/26 09:19:42 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2010/08/26 09:19:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2010/08/26 09:19:41 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2010/08/26 09:19:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2010/08/26 09:19:23 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2010/08/26 09:17:52 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2010/08/26 09:17:52 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2010/08/26 09:16:29 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2010/08/26 09:15:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2010/08/26 09:15:52 | 000,000,000 | ---D | C] -- C:\Program Files\xerox
[2010/08/26 09:15:52 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2010/08/26 09:14:06 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2010/08/26 09:13:54 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2010/08/26 09:13:54 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2010/08/26 09:13:42 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2010/08/26 09:13:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2010/08/26 09:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2010/08/26 09:12:36 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2010/08/26 09:12:35 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2010/08/26 09:12:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2010/08/26 09:12:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2010/08/26 09:12:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2010/08/26 09:12:05 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2010/08/26 09:12:01 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2010/08/26 09:11:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2010/08/26 09:11:51 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2010/08/26 09:03:51 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music
[2010/08/26 09:03:16 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2010/08/26 09:02:39 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2010/08/26 09:02:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2010/08/26 09:02:24 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services
[2010/08/26 09:02:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET
[2010/08/26 09:01:58 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2010/08/26 09:01:35 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Plus
[2010/08/26 09:01:18 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2010/08/26 09:00:19 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Pictures
[2010/08/26 08:59:23 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
[2010/08/26 08:59:19 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2010/08/26 08:58:32 | 000,000,000 | ---D | C] -- C:\Program Files\MSN
[2010/08/26 08:58:30 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2010/08/26 08:58:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2010/08/26 08:58:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2010/08/26 08:58:09 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Videos
[2010/08/26 03:51:52 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2010/08/26 03:51:51 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2010/08/26 03:51:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2010/08/26 03:51:47 | 000,000,000 | R--D | C] -- C:\Program Files
[2010/08/26 03:51:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2010/08/26 03:51:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2010/08/26 03:51:20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu
[2010/08/26 03:51:20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents
[2010/08/26 03:51:20 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Templates
[2010/08/26 03:51:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Favorites
[2010/08/26 03:51:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Desktop
[2010/08/26 03:51:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2010/08/26 03:51:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2010/08/26 03:51:01 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2010/08/26 03:51:01 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data
[2010/08/26 03:50:33 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2010/08/26 03:50:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2010/08/26 03:42:27 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2010/08/26 03:42:27 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2010/08/26 03:42:27 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2010/08/26 03:42:27 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2010/08/26 03:42:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[13 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 90 Days ==========
[2010/10/18 14:36:00 | 000,000,278 | -H-- | M] () -- C:\WINDOWS\tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
[2010/10/18 14:29:00 | 000,000,278 | -H-- | M] () -- C:\WINDOWS\tasks\{BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A}.job
[2010/10/18 14:22:53 | 000,000,278 | -H-- | M] () -- C:\WINDOWS\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
[2010/10/18 14:22:49 | 000,000,296 | -HS- | M] () -- C:\WINDOWS\tasks\Ijggjcv.job
[2010/10/18 14:22:21 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/10/18 14:22:16 | 526,503,936 | -HS- | M] () -- C:\hiberfil.sys
[2010/10/18 14:07:16 | 000,000,302 | ---- | M] () -- C:\WINDOWS\tasks\WebReg officejet 6300 series.job
[2010/10/18 13:48:00 | 000,000,974 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-448539723-73586283-725345543-1003UA.job
[2010/10/18 12:39:28 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\A\Desktop\OTL.exe
[2010/10/18 10:48:01 | 000,000,922 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-448539723-73586283-725345543-1003Core.job
[2010/10/17 23:42:14 | 000,002,354 | ---- | M] () -- C:\WINDOWS\System32\tmp.reg
[2010/10/17 23:42:06 | 000,000,734 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010/10/17 20:29:48 | 000,070,144 | RHS- | M] () -- C:\WINDOWS\System32\c_869W.dll
[2010/10/17 15:33:23 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/10/15 18:05:50 | 000,293,376 | ---- | M] () -- C:\Documents and Settings\A\Desktop\gmer.exe
[2010/10/09 17:15:10 | 000,004,603 | ---- | M] () -- C:\Documents and Settings\A\My Documents\Untitled.pdf
[2010/10/04 22:39:47 | 000,868,639 | ---- | M] () -- C:\Documents and Settings\A\Desktop\ft 21.pdf
[2010/10/04 10:30:56 | 000,000,000 | ---- | M] () -- C:\t1ec.1
[2010/10/04 00:55:28 | 000,005,120 | ---- | M] () -- C:\Documents and Settings\A\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/10/01 22:20:51 | 000,021,032 | ---- | M] () -- C:\Documents and Settings\A\Desktop\hm.docx
[2010/09/22 17:45:44 | 000,055,188 | ---- | M] () -- C:\Documents and Settings\A\Desktop\fmla.pdf
[2010/09/18 20:56:25 | 000,014,267 | ---- | M] () -- C:\Documents and Settings\A\Desktop\jag cover letter.docx
[2010/09/17 19:02:32 | 000,010,160 | ---- | M] () -- C:\Documents and Settings\A\Desktop\Leadership resonsibiity discipline.docx
[2010/09/17 18:43:48 | 000,002,255 | ---- | M] () -- C:\Documents and Settings\A\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2010/09/11 16:22:45 | 000,011,833 | ---- | M] () -- C:\Documents and Settings\A\Desktop\AHPandFAQ.pdf
[2010/09/07 00:20:39 | 000,523,434 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/09/07 00:20:39 | 000,094,802 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010/09/01 10:22:05 | 000,161,136 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/08/31 11:38:31 | 000,117,390 | ---- | M] () -- C:\WINDOWS\hpoins11.dat
[2010/08/31 11:32:25 | 000,000,798 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Photosmart Premier Fast Start.lnk
[2010/08/31 11:30:11 | 000,001,808 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
[2010/08/28 22:49:39 | 000,000,610 | ---- | M] () -- C:\Documents and Settings\A\Application Data\Microsoft\Internet Explorer\Quick Launch\Opera.lnk
[2010/08/27 18:48:59 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat
[2010/08/27 18:48:48 | 000,001,620 | ---- | M] () -- C:\Documents and Settings\A\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010/08/27 18:48:48 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2010/08/27 18:28:36 | 000,124,976 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS
[2010/08/27 18:28:36 | 000,060,808 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\S32EVNT1.DLL
[2010/08/27 18:28:36 | 000,007,456 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT
[2010/08/27 18:28:36 | 000,000,806 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF
[2010/08/27 12:23:40 | 000,001,607 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Empowering Technology Launcher.lnk
[2010/08/27 12:16:33 | 000,000,800 | ---- | M] () -- C:\Documents and Settings\A\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2010/08/27 12:03:09 | 000,144,201 | ---- | M] () -- C:\WINDOWS\System32\drivers\HSFProf.cty
[2010/08/27 11:48:13 | 000,000,127 | ---- | M] () -- C:\Documents and Settings\A\Local Settings\Application Data\fusioncache.dat
[2010/08/27 11:44:28 | 000,000,083 | ---- | M] () -- C:\WINDOWS\LManager.UNI
[2010/08/27 11:44:12 | 000,147,456 | ---- | M] (Dritek System Inc.) -- C:\WINDOWS\UNINST32.EXE
[2010/08/26 16:11:10 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010/08/26 16:11:10 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010/08/26 16:09:34 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2010/08/26 16:03:16 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2010/08/26 16:03:16 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2010/08/26 16:02:38 | 000,001,478 | ---- | M] () -- C:\Documents and Settings\Azem\Application Data\Microsoft\Internet Explorer\Quick Launch\Media Center.lnk
[2010/08/26 15:47:33 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010/08/26 15:42:40 | 000,001,787 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Windows Search.lnk
[2010/08/26 15:12:08 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2010/08/26 14:55:13 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\A\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/08/26 10:54:12 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.bak
[2010/08/26 10:02:05 | 000,000,637 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Bluetooth.lnk
[2010/08/26 09:21:05 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\A\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2010/08/26 09:19:27 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2010/08/26 09:18:39 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2010/08/26 09:15:33 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010/08/26 09:15:33 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010/08/26 09:15:33 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010/08/26 09:15:33 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010/08/26 09:15:33 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010/08/26 09:15:13 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2010/08/26 09:02:49 | 000,021,640 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010/08/26 08:58:09 | 000,000,209 | -HS- | M] () -- C:\boot.ini
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[13 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010/10/18 14:13:22 | 000,293,376 | ---- | C] () -- C:\Documents and Settings\A\Desktop\gmer.exe
[2010/10/18 14:07:11 | 000,000,302 | ---- | C] () -- C:\WINDOWS\tasks\WebReg officejet 6300 series.job
[2010/10/17 23:38:29 | 000,002,354 | ---- | C] () -- C:\WINDOWS\System32\tmp.reg
[2010/10/17 23:33:08 | 000,075,776 | ---- | C] () -- C:\WINDOWS\System32\WS2Fix.exe
[2010/10/17 23:33:07 | 000,051,200 | ---- | C] () -- C:\WINDOWS\System32\dumphive.exe
[2010/10/17 23:33:07 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\swsc.exe
[2010/10/17 20:29:54 | 000,000,278 | -H-- | C] () -- C:\WINDOWS\tasks\{BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A}.job
[2010/10/17 20:29:52 | 000,000,296 | -HS- | C] () -- C:\WINDOWS\tasks\Ijggjcv.job
[2010/10/17 20:29:47 | 000,070,144 | RHS- | C] () -- C:\WINDOWS\System32\c_869W.dll
[2010/10/17 20:29:26 | 000,000,278 | -H-- | C] () -- C:\WINDOWS\tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
[2010/10/17 20:29:21 | 000,000,278 | -H-- | C] () -- C:\WINDOWS\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
[2010/10/09 17:15:09 | 000,004,603 | ---- | C] () -- C:\Documents and Settings\Azem\My Documents\Untitled.pdf
[2010/10/04 22:39:46 | 000,868,639 | ---- | C] () -- C:\Documents and Settings\Azem\Desktop\ft 21.pdf
[2010/10/04 10:30:56 | 000,000,000 | ---- | C] () -- C:\t1ec.1
[2010/10/01 22:20:46 | 000,021,032 | ---- | C] () -- C:\Documents and Settings\A\Desktop\hm.docx
[2010/09/22 17:45:44 | 000,055,188 | ---- | C] () -- C:\Documents and Settings\A\Desktop\fmla.pdf
[2010/09/19 17:51:06 | 000,005,120 | ---- | C] () -- C:\Documents and Settings\A\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/09/18 15:53:22 | 000,014,267 | ---- | C] () -- C:\Documents and Settings\A\Desktop\jag cover letter.docx
[2010/09/17 19:02:29 | 000,010,160 | ---- | C] () -- C:\Documents and Settings\A\Desktop\Leadership resonsibiity discipline.docx
[2010/09/17 18:43:48 | 000,002,255 | ---- | C] () -- C:\Documents and Settings\A\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2010/09/17 18:38:42 | 000,000,974 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-448539723-73586283-725345543-1003UA.job
[2010/09/17 18:38:41 | 000,000,922 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-448539723-73586283-725345543-1003Core.job
[2010/09/11 16:22:44 | 000,011,833 | ---- | C] () -- C:\Documents and Settings\A\Desktop\AHPandFAQ.pdf
[2010/08/31 11:32:25 | 000,000,798 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Photosmart Premier Fast Start.lnk
[2010/08/31 11:30:11 | 000,001,808 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
[2010/08/31 11:20:23 | 000,117,390 | ---- | C] () -- C:\WINDOWS\hpoins11.dat
[2010/08/30 12:13:59 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\HPZIDS01.dll
[2010/08/30 11:52:10 | 000,002,889 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log
[2010/08/28 22:49:39 | 000,000,610 | ---- | C] () -- C:\Documents and Settings\A\Application Data\Microsoft\Internet Explorer\Quick Launch\Opera.lnk
[2010/08/27 18:48:59 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010/08/27 18:48:48 | 000,001,620 | ---- | C] () -- C:\Documents and Settings\A\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010/08/27 18:48:48 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2010/08/27 18:28:28 | 000,007,456 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT
[2010/08/27 18:28:28 | 000,000,806 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF
[2010/08/27 12:33:41 | 526,503,936 | -HS- | C] () -- C:\hiberfil.sys
[2010/08/27 12:23:36 | 000,331,776 | ---- | C] () -- C:\WINDOWS\System32\ScrollBarLib.dll
[2010/08/27 12:16:33 | 000,000,800 | ---- | C] () -- C:\Documents and Settings\A\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2010/08/27 12:15:54 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010/08/27 11:56:59 | 000,001,607 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Empowering Technology Launcher.lnk
[2010/08/27 11:48:13 | 000,000,127 | ---- | C] () -- C:\Documents and Settings\A\Local Settings\Application Data\fusioncache.dat
[2010/08/27 11:44:28 | 000,000,083 | ---- | C] () -- C:\WINDOWS\LManager.UNI
[2010/08/26 16:09:34 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2010/08/26 16:03:16 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2010/08/26 16:03:14 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2010/08/26 16:02:37 | 000,001,478 | ---- | C] () -- C:\Documents and Settings\A\Application Data\Microsoft\Internet Explorer\Quick Launch\Media Center.lnk
[2010/08/26 15:58:22 | 000,135,168 | R--- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2010/08/26 15:58:22 | 000,040,960 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2010/08/26 15:42:40 | 000,001,787 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Windows Search.lnk
[2010/08/26 11:21:42 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2010/08/26 11:21:16 | 000,000,974 | ---- | C] () -- C:\WINDOWS\System32\pid.inf
[2010/08/26 11:21:05 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2010/08/26 11:21:01 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
[2010/08/26 10:54:13 | 000,013,646 | ---- | C] () -- C:\WINDOWS\System32\wpa.bak
[2010/08/26 10:07:58 | 000,356,352 | R--- | C] () -- C:\WINDOWS\EMCRI.dll
[2010/08/26 10:02:05 | 000,000,637 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Bluetooth.lnk
[2010/08/26 09:21:05 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\A\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2010/08/26 09:20:55 | 000,000,815 | ---- | C] () -- C:\Documents and Settings\A\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/08/26 09:19:27 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2010/08/26 09:18:39 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010/08/26 09:17:45 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2010/08/26 09:17:23 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2010/08/26 09:17:15 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2010/08/26 09:17:14 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2010/08/26 09:17:11 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2010/08/26 09:16:58 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2010/08/26 09:16:50 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2010/08/26 09:16:32 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2010/08/26 09:15:33 | 000,002,577 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2010/08/26 09:15:33 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010/08/26 09:15:33 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010/08/26 09:15:33 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2010/08/26 09:15:33 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2010/08/26 09:15:22 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2010/08/26 09:15:22 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2010/08/26 09:15:21 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2010/08/26 09:13:28 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex
[2010/08/26 09:12:49 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp
[2010/08/26 09:12:49 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp
[2010/08/26 09:12:42 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf
[2010/08/26 09:02:49 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010/08/26 09:01:35 | 000,011,452 | ---- | C] () -- C:\WINDOWS\System32\mypixdx.chm
[2010/08/26 09:00:12 | 010,604,352 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ehcir.ird
[2010/08/26 08:59:00 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Prairie Wind.bmp
[2010/08/26 08:59:00 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe Stucco.bmp
[2010/08/26 08:59:00 | 000,026,680 | ---- | C] () -- C:\WINDOWS\River Sumida.bmp
[2010/08/26 08:59:00 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Greenstone.bmp
[2010/08/26 08:59:00 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp
[2010/08/26 08:59:00 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Gone Fishing.bmp
[2010/08/26 08:59:00 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp
[2010/08/26 08:58:59 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Soap Bubbles.bmp
[2010/08/26 08:58:59 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Coffee Bean.bmp
[2010/08/26 08:58:59 | 000,016,730 | ---- | C] () -- C:\WINDOWS\FeatherTexture.bmp
[2010/08/26 08:58:59 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Blue Lace 16.bmp
[2010/08/26 08:58:56 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2010/08/26 08:58:56 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2010/08/26 08:58:54 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2010/08/26 08:58:47 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2010/08/26 03:51:51 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010/08/26 03:51:49 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd
[2010/08/26 03:51:49 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa
[2010/08/26 03:51:49 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf
[2010/08/26 03:51:48 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa
[2010/08/26 03:51:29 | 000,001,688 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2010/08/26 03:51:20 | 000,077,881 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plus.cat
[2010/08/26 03:51:20 | 000,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2010/08/26 03:51:20 | 000,017,916 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sonic.cat
[2010/08/26 03:51:20 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2010/08/26 03:51:20 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2010/08/26 03:51:20 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2010/08/26 03:51:20 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2010/08/26 03:51:19 | 000,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2010/08/26 03:51:19 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2010/08/26 03:51:19 | 000,106,147 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT
[2010/08/26 03:50:32 | 000,161,136 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/08/26 03:49:59 | 000,000,209 | -HS- | C] () -- C:\boot.ini
[2010/08/26 03:49:55 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2007/09/27 10:51:02 | 000,020,698 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2007/09/27 10:48:48 | 000,030,628 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2007/09/27 10:48:28 | 000,031,698 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2006/01/17 10:31:30 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\btprn2k.dll
[2005/11/11 20:40:50 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\preflib.dll
[2005/11/11 20:40:48 | 000,757,760 | ---- | C] () -- C:\WINDOWS\System32\bcm1xsup.dll
[2005/08/05 14:01:54 | 000,235,008 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2001/11/14 12:56:00 | 001,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll
[2001/07/07 03:00:00 | 000,003,399 | ---- | C] () -- C:\WINDOWS\System32\hptcpmon.ini
========== LOP Check ==========
[2010/08/27 12:31:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\eConsole
[2010/10/17 23:49:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2010/08/28 22:49:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\A\Application Data\Opera
[2010/08/26 15:42:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\A\Application Data\Windows Desktop Search
[2010/08/28 22:19:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\A\Application Data\Windows Search
[2010/10/18 14:22:49 | 000,000,296 | -HS- | M] () -- C:\WINDOWS\Tasks\Ijggjcv.job
[2010/10/18 14:36:00 | 000,000,278 | -H-- | M] () -- C:\WINDOWS\Tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
[2010/10/18 14:22:53 | 000,000,278 | -H-- | M] () -- C:\WINDOWS\Tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
[2010/10/18 14:29:00 | 000,000,278 | -H-- | M] () -- C:\WINDOWS\Tasks\{BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A}.job
========== Purity Check ==========
========== Custom Scans ==========
< %SYSTEMDRIVE%\*.* >
[2010/08/26 09:15:33 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010/08/26 08:58:09 | 000,000,209 | -HS- | M] () -- C:\boot.ini
[2010/08/26 09:15:33 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010/10/18 14:22:16 | 526,503,936 | -HS- | M] () -- C:\hiberfil.sys
[2010/08/26 09:15:33 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010/08/26 09:15:33 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2004/08/10 07:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2010/08/26 15:12:08 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2010/10/18 14:22:15 | 792,723,456 | -HS- | M] () -- C:\pagefile.sys
[2010/10/17 23:44:56 | 000,002,407 | ---- | M] () -- C:\rapport.txt
[2010/10/04 10:30:56 | 000,000,000 | ---- | M] () -- C:\t1ec.1
< %systemroot%\*. /mp /s >
< %systemroot%\System32\config\*.sav >
[2010/08/26 03:49:58 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2010/08/26 03:49:58 | 000,659,456 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2010/08/26 03:49:58 | 000,897,024 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >
< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2010-08-26 21:50:34
========== Alternate Data Streams ==========
@Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2
@Alternate Data Stream - 12 bytes -> C:\WINDOWS\system32:{4B9A1497-0817-47C4-9612-D6A1C53ACF57}
< End of report >
OTL Extras logfile created on: 10/18/2010 2:33:22 PM - Run 1
OTL by OldTimer - Version 3.2.15.2 Folder = C:\Documents and Settings\A\Desktop
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
502.00 Mb Total Physical Memory | 207.00 Mb Available Physical Memory | 41.00% Memory free
1.00 Gb Paging File | 1.00 Gb Available in Paging File | 66.00% Paging File free
Paging file location(s): C:\pagefile.sys 756 1512 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232.88 Gb Total Space | 222.82 Gb Free Space | 95.68% Space Free | Partition Type: NTFS
Computer Name: JJ | User Name: A | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 90 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"5985:TCP" = 5985:TCP:*:Disabled:Windows Remote Management
"80:TCP" = 80:TCP:*:Disabled:Windows Remote Management - Compatibility Mode (HTTP-In)
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Acer\Acer eConsole\MediaSync.exe" = C:\Program Files\Acer\Acer eConsole\MediaSync.exe:LocalSubNet:Enabled:Media Synchoronizer -- (Acer Inc.)
"C:\Program Files\Acer\Acer eConsole\eConsole.exe" = C:\Program Files\Acer\Acer eConsole\eConsole.exe:LocalSubNet:Enabled:eConsole -- (Acer Inc.)
"C:\Program Files\Acer\Acer eConsole\MediaServerService.exe" = C:\Program Files\Acer\Acer eConsole\MediaServerService.exe:LocalSubNet:Enabled:Acer Media Server -- (Acer Inc.)
"C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe" = C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe:*:Enabled:SMC Service -- (Symantec Corporation)
"C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE" = C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE:*:Enabled:SNAC Service -- (Symantec Corporation)
"C:\Program Files\Common Files\Symantec Shared\ccApp.exe" = C:\Program Files\Common Files\Symantec Shared\ccApp.exe:*:Enabled:Symantec Email -- (Symantec Corporation)
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe" = C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" = C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe" = C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe" = C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe:*:Enabled:hpqdia.exe -- ( )
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Disabled:Firefox -- (Mozilla Corporation)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0A65A3BD-54B5-4d0d-B084-7688507813F5}" = SlideShow
"{15C0AF59-4877-49B6-B8C6-A61CE54515F5}" = cp_OnlineProjectsConfig
"{2376813B-2E5A-4641-B7B3-A0D5ADB55229}" = HPPhotoSmartExpress
"{2F58D60D-2BFD-4467-9B4D-64E7355C329D}" = Sonic_PrimoSDK
"{33BF0960-DBA3-4187-B6CC-C969FCFA2D25}" = SkinsHP1
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{363790D2-DA98-41DD-9C9F-69FA36B169DE}" = PanoStandAlone
"{38BA2875-D7AD-4611-ABA3-C385051ADF42}" = Eraser 6.0.7.1893
"{3C1AE512-3C37-44FA-BA42-ABB721EC5B1D}" = Symantec Endpoint Protection
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3F4EC965-28EF-45C3-B063-04B25D4E9679}" = WIDCOMM Bluetooth Software
"{41E776A5-9B12-416D-9A12-B4F7B044EBED}" = CP_Package_Basic1
"{4462265B-3DC7-44AD-B56D-D09BA67BA422}" = 6300
"{45B8A76B-57EC-4242-B019-066400CD8428}" = BufferChm
"{4EA684E9-5C81-4033-A696-3019EC57AC3A}" = HPProductAssistant
"{53EE9E42-CECB-4C92-BF76-9CA65DAF8F1C}" = FullDPAppQFolder
"{66910000-8B30-4973-A159-6371345AFFA5}" = WebReg
"{6696D9A4-28A8-4F5A-8E9A-2E8974C8C39C}" = RandMap
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{68763C27-235D-4165-A961-FDEA228CE504}" = AiOSoftwareNPI
"{6909F917-5499-482e-9AA1-FAD06A99F231}" = Toolbox
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{736C803C-DD3B-4015-BC51-AFB9E67B9076}" = Readme
"{7C03270C-4FAB-4F5C-B10D-52FEDA190790}" = DocumentViewerQFolder
"{7E7B7865-6C80-4373-8BC1-C2EB9431F9DE}" = ProductContextNPI
"{8331C3EA-0C91-43AA-A4D4-27221C631139}" = Status
"{87E2B986-07E8-477a-93DC-AF0B6758B192}" = DocProcQFolder
"{8A4CE7FD-9657-4B06-9943-E1819F3D5D67}" = DocProc
"{8A708DD8-A5E6-11D4-A706-000629E95E20}" = Intel® Graphics Media Accelerator Driver
"{8CE4E6E9-9D55-43FB-9DDB-688C976BFC05}" = Unload
"{8D273DE5-ABFA-4BD0-A9D7-EE9C971438C4}_is1" = PDF-Viewer
"{90120000-0010-0409-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (English) 12
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{996512CF-F35B-48DE-9291-557FA5316967}" = ScannerCopy
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A29800BA-0BF1-4E63-9F31-DF05A87F4104}" = InstantShareDevices
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AB6097D9-D722-4987-BD9E-A076E2848EE2}" = Acer Empowering Technology
"{B194272D-1F92-46DF-99EB-8D5CE91CB4EC}" = Adobe AIR
"{B2157760-AA3C-4E2E-BFE6-D20BC52495D9}" = cp_PosterPrintConfig
"{B6286A44-7505-471A-A72B-04EC2DB2F442}" = CueTour
"{B69CFE29-FD03-4E0A-87A7-6ED97F98E5B3}" = CP_Panorama1Config
"{BB7DEA41-298E-450B-9C3A-E7B48D9D021B}" = 6300_Help
"{BB85ED9C-AFC9-43BD-B8DC-258C3C7DF72E}" = HP Software Update
"{BDBE2F3E-42DB-4d4a-8CB1-19BA765DBC6C}" = HP Photosmart, Officejet and Deskjet 7.0.A
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C1C6767D-B395-43CB-BF99-051B58B86DA6}" = PhotoGallery
"{C7F54CF8-D6FB-4E0A-93A3-E68AE0D6C476}" = SolutionCenter
"{C8753E28-2680-49BF-BD48-DD38FD086EFE}" = AiO_Scan_CDA
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D70DE630-0D13-4394-A15B-5ACE6CF2A18D}" = Atheros Wireless LAN
"{DBC20735-34E6-4E97-A9E5-2066B66B243D}" = TrayApp
"{E1B80DEE-A795-4258-8445-074C06AE3AB8}" = MarketResearch
"{EC028E6B-F3F1-4192-B63E-A7C97302ED5A}" = Acer eConsole
"{ED2C557E-9C18-41FF-B58E-A05EEF0B3B5F}" = CP_CalendarTemplates1
"{F07737AC-C218-4272-A678-26CA5F6CD8DF}" = Opera 10.61
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F157460F-720E-482f-8625-AD7843891E5F}" = InstantShareDevicesMFC
"{F1B8DB67-D30E-4FF9-A85F-3CEE51825AA2}" = SMSC IrCC V5.1.3600.5 SP2
"{F2AB49F2-D632-446C-9A6E-5B4A98DFF13B}" = 6300Trb
"{F3760724-B29D-465B-BC53-E5D72095BCC4}" = Scan
"{F6076EF9-08E1-442F-B6A2-BFB61B295A14}" = Fax_CDA
"{FB15E224-67C3-491F-9F5C-F257BC418412}" = Destinations
"{FBB980B0-63F8-4B48-8D65-90F1D9F81D9F}" = NewCopy_CDA
"{FE7E1DD7-EBCE-4696-ADE2-22BDBF2372DA}" = DocumentViewer
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Broadcom 802.11b Network Adapter" = Broadcom 802.11 Network Adapter
"CCleaner" = CCleaner
"CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFAOR2C06_118" = HDAUDIO Soft Data Fax Modem with SmartCP
"DECCHECK" = Microsoft Windows XP Video Decoder Checkup Utility
"ffdshow_is1" = ffdshow
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"HP Document Viewer" = HP Document Viewer 7.0
"HP Imaging Device Functions" = HP Imaging Device Functions 7.0
"HP Photo & Imaging" = HP Photosmart Premier Software 6.5
"HP Solution Center & Imaging Support Tools" = HP Solution Center 7.0
"HPExtendedCapabilities" = HP Customer Participation Program 7.0
"HPOCR" = OCR Software by I.R.I.S 7.0
"ie8" = Windows Internet Explorer 8
"LiveUpdate" = LiveUpdate 3.3 (Symantec Corporation)
"LManager" = Launch Manager
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Mozilla Firefox (3.6.10)" = Mozilla Firefox (3.6.10)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"VLC media player" = VLC media player 1.1.4
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR archiver
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 9/15/2010 10:52:56 AM | Computer Name = A-CE904CE34B | Source = Windows Search Service | ID = 3013
Description = The entry <C:\DOCUMENTS AND SETTINGS\A\RECENT\TRUSTS AND ESTATES.LNK>
in the hash map cannot be updated. Context: Application, SystemIndex Catalog Details:
A
device attached to the system is not functioning. (0x8007001f)
Error - 9/15/2010 10:52:56 AM | Computer Name = A-CE904CE34B | Source = Windows Search Service | ID = 3013
Description = The entry <C:\DOCUMENTS AND SETTINGS\A\RECENT\TNE PROBLEM SET FOR
FALL 2010 FINAL THRU CHAP 11.LNK> in the hash map cannot be updated. Context: Application,
SystemIndex Catalog Details: A device attached to the system is not functioning.
(0x8007001f)
Error - 9/15/2010 10:52:56 AM | Computer Name = A-CE904CE34B | Source = Windows Search Service | ID = 3013
Description = The entry <C:\DOCUMENTS AND SETTINGS\A\RECENT\TNE PROBLEM SET FOR
FALL 2010 FINAL THRU CHAP 11.LNK> in the hash map cannot be updated. Context: Application,
SystemIndex Catalog Details: A device attached to the system is not functioning.
(0x8007001f)
Error - 9/15/2010 10:52:56 AM | Computer Name = A-CE904CE34B | Source = Windows Search Service | ID = 3013
Description = The entry <C:\DOCUMENTS AND SETTINGS\A\MY DOCUMENTS\3L FALL SEMESTER\TRUSTS
AND ESTATES\~$E PROBLEM SET FOR FALL 2010 FINAL THRU CHAP 11.DOCX> in the hash
map cannot be updated. Context: Application, SystemIndex Catalog Details: A device
attached to the system is not functioning. (0x8007001f)
Error - 9/16/2010 5:39:39 PM | Computer Name = A-CE904CE34B | Source = SescLU | ID = 13
Description = LiveUpdate returned a non-critical error. Available content updates
may have failed to install.
Error - 9/23/2010 4:43:06 PM | Computer Name = A-CE904CE34B | Source = Google Update | ID = 20
Description =
Error - 9/24/2010 12:17:15 AM | Computer Name = A-CE904CE34B | Source = SescLU | ID = 13
Description = LiveUpdate returned a non-critical error. Available content updates
may have failed to install.
Error - 9/24/2010 1:51:38 PM | Computer Name = A-CE904CE34B | Source = Windows Search Service | ID = 3013
Description = The entry <C:\DOCUMENTS AND SETTINGS\A\RECENT\DESKTOP.INI> in the
hash map cannot be updated. Context: Application, SystemIndex Catalog Details: A
device attached to the system is not functioning. (0x8007001f)
Error - 9/24/2010 1:51:39 PM | Computer Name = A-CE904CE34B | Source = Windows Search Service | ID = 3013
Description = The entry <C:\DOCUMENTS AND SETTINGS\A\RECENT\DESKTOP.INI> in the
hash map cannot be updated. Context: Application, SystemIndex Catalog Details: A
device attached to the system is not functioning. (0x8007001f)
Error - 9/24/2010 1:51:43 PM | Computer Name = A-CE904CE34B | Source = Windows Search Service | ID = 3013
Description = The entry <C:\DOCUMENTS AND SETTINGS\A\RECENT\DESKTOP.INI> in the
hash map cannot be updated. Context: Application, SystemIndex Catalog Details: A
device attached to the system is not functioning. (0x8007001f)
[ System Events ]
Error - 10/14/2010 7:59:05 PM | Computer Name = A-CE904CE34B | Source = Dhcp | ID = 1000
Description = Your computer has lost the lease to its IP address 72.33.93.68 on
the Network Card with network address 0016CFCDE1D2.
< End of report >
I have posted Gmer scan and OTL scan, with Extras.
My browser is being hijacked and the computer shuts down randomly. Please Help.
Thank you for your assistance.
Edited by jamesjj, 20 October 2010 - 12:25 PM.
Sign In
Create Account
