Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

unknown bug

Started by bustermoves , Nov 11 2010 06:25 PM

  • Please log in to reply

#1
bustermoves
Posted 11 November 2010 - 06:25 PM

bustermoves

    Member

  • Member
  • PipPip
  • 82 posts
have beeen having random crashes and slow performance over the last few weeks.ran eset online scanner(found nothing)mabam,sas(also found nothing)and my regular av,avira(found nothing as well).several times now,iye gotten on the puter,and there will be a bunch of little windows wit red x's,some thing about unexpected error,or something along that line,then a couple of ballons from winpatrol,and at the bottom of the heap,something from truevector(zone alarm i belive)about registration.dont know if i got some weird bug,hardware issues,or something inbetween.anywho,heres the otl log,and thanks for your help in advance.......OTL logfile created on: 11/11/2010 6:02:23 PM - Run 2
OTL by OldTimer - Version 3.2.17.2 Folder = C:\Documents and Settings\JOHN\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 46.00% Memory free
5.00 Gb Paging File | 3.00 Gb Available in Paging File | 55.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS.1 | %ProgramFiles% = C:\Program Files
Drive C: | 189.91 Gb Total Space | 128.44 Gb Free Space | 67.63% Space Free | Partition Type: NTFS
Drive D: | 677.54 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: JOHNSPC | User Name: JOHN | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 90 Days

========== Processes (SafeList) ==========

PRC - [2010/11/11 17:48:18 | 004,663,855 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Application Data\BOINC\projects\milkyway.cs.rpi.edu_milkyway\milkyway_nbody_0.21_windows_intelx86__sse2.exe
PRC - [2010/11/10 18:49:36 | 002,995,712 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Application Data\BOINC\projects\abcathome.com\abc_sieve_2.10_windows_intelx86.exe
PRC - [2010/11/05 03:44:11 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\JOHN\Desktop\OTL.exe
PRC - [2010/11/02 19:45:15 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2010/11/02 19:45:15 | 000,267,944 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2010/11/02 19:45:15 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2010/11/02 14:29:17 | 001,861,120 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Application Data\BOINC\projects\www.freehal.net_freehal_at_home\freehalboinc_1.87_windows_intelx86.exe
PRC - [2010/10/31 13:02:44 | 000,016,856 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
PRC - [2010/10/31 13:02:42 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010/10/29 16:49:37 | 000,329,096 | ---- | M] (BillP Studios) -- C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe
PRC - [2010/10/25 12:46:59 | 002,424,560 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
PRC - [2010/10/20 12:12:46 | 000,495,616 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Application Data\BOINC\projects\vcsc.cs.uh.edu_virtual-prairie\virtual_prairie_multi_0.11_windows_intelx86.exe
PRC - [2010/09/02 08:22:30 | 002,435,592 | ---- | M] (Check Point Software Technologies LTD) -- C:\WINDOWS.1\system32\ZoneLabs\vsmon.exe
PRC - [2010/09/02 08:21:04 | 001,043,968 | ---- | M] (Check Point Software Technologies LTD) -- C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
PRC - [2010/09/01 16:59:48 | 000,506,880 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Application Data\BOINC\projects\escatter11.fullerton.edu_nfs\lasievee_1.08_windows_intelx86.exe
PRC - [2010/07/01 12:27:06 | 004,862,720 | ---- | M] (Space Sciences Laboratory) -- C:\Program Files\BOINC\boincmgr.exe
PRC - [2010/07/01 12:27:04 | 000,058,112 | ---- | M] (Space Sciences Laboratory) -- C:\Program Files\BOINC\boinctray.exe
PRC - [2010/07/01 12:27:02 | 000,840,448 | ---- | M] (Space Sciences Laboratory) -- C:\Program Files\BOINC\boinc.exe
PRC - [2010/01/14 21:11:00 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2009/03/05 15:07:20 | 002,260,480 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2009/01/14 16:53:02 | 000,226,656 | ---- | M] (Microsoft Corp.) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
PRC - [2008/04/13 22:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\explorer.exe
PRC - [2007/04/09 12:32:32 | 000,019,456 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS.1\system32\CtHelper.exe


========== Modules (SafeList) ==========

MOD - [2010/11/05 03:44:11 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\JOHN\Desktop\OTL.exe
MOD - [2010/08/23 10:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2009/07/19 16:03:54 | 000,062,776 | ---- | M] (BillP Studios) -- C:\Program Files\BillP Studios\WinPatrol\patrolpro.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- C:\WINDOWS.1\System32\hidserv.dll -- (HidServ)
SRV - [2010/11/02 19:45:15 | 000,267,944 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2010/11/02 19:45:15 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2010/09/02 08:22:30 | 002,435,592 | ---- | M] (Check Point Software Technologies LTD) [Auto | Running] -- C:\WINDOWS.1\System32\ZoneLabs\vsmon.exe -- (vsmon)
SRV - [2010/04/28 06:44:02 | 000,704,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe -- (fsssvc)
SRV - [2010/03/29 07:51:54 | 000,068,000 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper) getPlus®
SRV - [2010/03/18 16:47:22 | 000,035,160 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS.1\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe -- (aspnet_state)
SRV - [2010/03/18 13:16:28 | 000,753,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS.1\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS.1\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/18 13:16:28 | 000,124,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS.1\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2009/08/10 13:19:30 | 000,093,848 | ---- | M] (SiSoftware) [On_Demand | Stopped] -- C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2010\RpcAgentSrv.exe -- (SandraAgentSrv)
SRV - [2009/01/14 16:53:02 | 000,226,656 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\System32\DRIVERS\TMPassthru.sys -- (TMPassthruMP)
DRV - File not found [Kernel | Boot | Stopped] -- C:\WINDOWS.1\System32\ZoneLabs\srescan.sys -- (srescan)
DRV - [2010/11/02 19:45:15 | 000,126,856 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS.1\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2010/11/02 19:45:15 | 000,060,936 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS.1\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2010/09/10 20:19:16 | 005,417,472 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2010/05/13 09:02:32 | 000,532,224 | ---- | M] (Check Point Software Technologies LTD) [Kernel | System | Running] -- C:\WINDOWS.1\system32\vsdatant.sys -- (vsdatant)
DRV - [2010/05/10 12:41:30 | 000,067,656 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010/04/28 06:44:02 | 000,054,760 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS.1\system32\drivers\fssfltr_tdi.sys -- (fssfltr)
DRV - [2010/02/17 12:25:48 | 000,012,872 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2009/11/18 15:24:26 | 000,095,232 | ---- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - [2009/08/21 19:24:12 | 000,057,248 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\nvhda32.sys -- (NVHDA)
DRV - [2009/08/07 22:46:56 | 000,023,112 | ---- | M] (SiSoftware) [Kernel | On_Demand | Stopped] -- C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2010\WNt500x86\sandra.sys -- (SANDRA)
DRV - [2009/05/11 11:49:19 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2009/05/11 09:12:49 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS.1\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2008/09/24 09:40:22 | 004,122,368 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2008/08/01 17:36:26 | 000,022,016 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2008/08/01 17:36:20 | 000,054,784 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2008/05/08 07:23:22 | 000,238,080 | R--- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\viahduaa.sys -- (VIAHdAudAddService)
DRV - [2008/04/13 15:06:06 | 000,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2008/02/14 00:12:00 | 001,389,056 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\monfilt.sys -- (monfilt)
DRV - [2007/12/17 03:14:06 | 000,012,400 | R--- | M] () [Kernel | System | Running] -- C:\WINDOWS.1\system32\drivers\AsIO.sys -- (AsIO)
DRV - [2007/10/12 02:53:10 | 000,013,312 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\nvsmu.sys -- (nvsmu)
DRV - [2007/04/18 08:59:40 | 000,098,600 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\system32\COMMONFX.DLL -- (COMMONFX.DLL)
DRV - [2007/04/16 15:46:34 | 000,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS.1\system32\drivers\AmdPPM.sys -- (AmdPPM)
DRV - [2007/04/12 08:10:26 | 000,164,608 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\system32\CT20XUT.DLL -- (CT20XUT.DLL)
DRV - [2007/04/12 08:10:26 | 000,066,816 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\system32\CTHWIUT.DLL -- (CTHWIUT.DLL)
DRV - [2007/04/12 08:10:24 | 001,317,632 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\system32\CTEXFIFX.DLL -- (CTEXFIFX.DLL)
DRV - [2007/04/12 08:10:22 | 000,323,328 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\system32\CTEDSPSY.DLL -- (CTEDSPSY.DLL)
DRV - [2007/04/12 08:10:22 | 000,128,768 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\system32\CTEDSPIO.DLL -- (CTEDSPIO.DLL)
DRV - [2007/04/12 08:10:20 | 000,280,320 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\system32\CTEDSPFX.DLL -- (CTEDSPFX.DLL)
DRV - [2007/04/12 08:10:20 | 000,094,976 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\system32\CTERFXFX.DLL -- (CTERFXFX.DLL)
DRV - [2007/04/12 08:10:18 | 000,168,192 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\system32\CTEAPSFX.DLL -- (CTEAPSFX.DLL)
DRV - [2007/04/12 08:10:16 | 000,560,384 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\system32\CTSBLFX.DLL -- (CTSBLFX.DLL)
DRV - [2007/04/12 08:10:16 | 000,546,048 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\system32\CTAUDFX.DLL -- (CTAUDFX.DLL)
DRV - [2007/04/10 06:00:24 | 000,157,480 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\system32\drivers\ctsfm2k.sys -- (ctsfm2k)
DRV - [2007/04/10 05:59:04 | 000,126,760 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\system32\drivers\ctoss2k.sys -- (ossrv)
DRV - [2007/04/10 04:32:06 | 000,189,736 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\system32\drivers\haP17v2k.sys -- (hap17v2k)
DRV - [2007/04/10 04:31:18 | 000,163,112 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\system32\drivers\haP16v2k.sys -- (hap16v2k)
DRV - [2007/04/10 04:29:10 | 000,797,992 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\system32\drivers\ha10kx2k.sys -- (ha10kx2k)
DRV - [2007/04/10 04:28:36 | 000,092,968 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\system32\drivers\emupia2k.sys -- (emupia)
DRV - [2007/04/10 04:25:46 | 000,014,632 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\system32\drivers\ctprxy2k.sys -- (ctprxy2k)
DRV - [2007/04/10 04:21:06 | 000,347,128 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\system32\drivers\ctdvda2k.sys -- (ctdvda2k)
DRV - [2007/04/10 04:20:38 | 000,520,488 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\system32\drivers\ctaud2k.sys -- (ctaud2k) Creative Audio Driver (WDM)
DRV - [2007/04/10 04:19:30 | 000,511,272 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\system32\drivers\ctac32k.sys -- (ctac32k)
DRV - [2006/09/24 07:28:46 | 000,005,248 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS.1\system32\speedfan.sys -- (speedfan)
DRV - [2005/04/24 21:43:58 | 000,013,225 | ---- | M] (Razer (Asia-Pacific) Pte Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS.1\system32\drivers\Razerlow.sys -- (Razerlow)
DRV - [2004/08/12 04:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [1996/04/03 13:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS.1\system32\giveio.sys -- (giveio)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS.1\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS.1\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.google.com/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.1
FF - prefs.js..extensions.enabledItems: [email protected]:1.2.1
FF - prefs.js..extensions.enabledItems: {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}:0.9.7
FF - prefs.js..network.proxy.type: 0

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/10/31 13:02:48 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/10/31 13:02:48 | 000,000,000 | ---D | M]

[2009/09/15 19:10:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Extensions
[2010/11/10 19:24:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\48g691tz.default\extensions
[2010/11/07 08:20:52 | 000,000,000 | ---D | M] (FlashGot) -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\48g691tz.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}
[2010/10/30 19:51:05 | 000,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\48g691tz.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}
[2010/11/04 19:37:49 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\48g691tz.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010/10/08 03:37:20 | 000,000,000 | ---D | M] (Download Statusbar) -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\48g691tz.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}
[2010/01/26 17:42:46 | 000,000,000 | ---D | M] (Tweak Network) -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\48g691tz.default\extensions\{DAD0F81A-CF67-4eed-98D6-26F6E47274CA}
[2010/02/09 04:32:41 | 000,000,000 | ---D | M] (Adobe DLM (powered by getPlus®)) -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\48g691tz.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}
[2010/11/07 08:20:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\48g691tz.default\extensions\[email protected]
[2010/09/18 17:18:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\48g691tz.default\extensions\[email protected]
[2010/11/04 19:37:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\48g691tz.default\extensions\[email protected]
[2009/12/20 05:55:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\48g691tz.default\extensions\[email protected]
[2010/09/07 19:46:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\48g691tz.default\extensions\[email protected]
[2010/10/11 19:48:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\48g691tz.default\extensions\[email protected]
[2010/11/10 19:24:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\48g691tz.default\extensions\[email protected]
[2010/07/24 20:41:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\t4et8gf1.default\extensions
[2010/07/24 15:32:41 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\t4et8gf1.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010/07/24 16:13:18 | 000,000,000 | ---D | M] (Download Statusbar) -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\t4et8gf1.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}
[2010/07/24 15:35:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\t4et8gf1.default\extensions\[email protected]
[2010/11/10 18:53:32 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/10/14 10:41:39 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2008/12/16 18:22:10 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\defaults\ipplsyxm.default\extensions
[2008/12/16 18:22:09 | 000,000,000 | ---D | M] (Flagfox) -- C:\Program Files\Mozilla Firefox\defaults\ipplsyxm.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}(2)
[2008/12/16 18:22:09 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Program Files\Mozilla Firefox\defaults\ipplsyxm.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2008/12/16 18:22:08 | 000,000,000 | ---D | M] (NoScript) -- C:\Program Files\Mozilla Firefox\defaults\ipplsyxm.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}(2)
[2008/12/16 18:22:08 | 000,000,000 | ---D | M] (PitchDark) -- C:\Program Files\Mozilla Firefox\defaults\ipplsyxm.default\extensions\{c1dffba0-628e-11d9-9669-0800200c9a66}
[2008/12/16 18:22:08 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Program Files\Mozilla Firefox\defaults\ipplsyxm.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2008/12/16 18:22:06 | 000,000,000 | ---D | M] (Download Statusbar) -- C:\Program Files\Mozilla Firefox\defaults\ipplsyxm.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}
[2008/12/16 18:21:56 | 000,000,000 | ---D | M] (Scribblies Brite) -- C:\Program Files\Mozilla Firefox\defaults\ipplsyxm.default\extensions\{F587B2D4-7C09-4a23-AC4A-8D6E3CE8C7DA}
[2008/12/16 18:21:50 | 000,000,000 | ---D | M] (QuickRestart) -- C:\Program Files\Mozilla Firefox\defaults\ipplsyxm.default\extensions\{F645A8C9-E969-42D9-B3F3-F325537222FD}
[2008/12/16 18:22:11 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\defaults\ipplsyxm.default\extensions\[email protected]
[2008/12/16 18:22:10 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\defaults\ipplsyxm.default\extensions\[email protected]
[2008/12/16 18:22:10 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\defaults\ipplsyxm.default\extensions\[email protected]
[2010/10/14 10:41:22 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll

O1 HOSTS File: ([2010/11/10 19:33:04 | 000,425,435 | R--- | M]) - C:\WINDOWS.1\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 mpa.one.microsoft.com
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 14659 more lines...
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll (Microsoft Corp.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [boincmgr] C:\Program Files\BOINC\boincmgr.exe (Space Sciences Laboratory)
O4 - HKLM..\Run: [boinctray] C:\Program Files\BOINC\boinctray.exe (Space Sciences Laboratory)
O4 - HKLM..\Run: [CTHelper] C:\WINDOWS.1\System32\CtHelper.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [CTxfiHlp] C:\WINDOWS.1\System32\Ctxfihlp.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe (BillP Studios)
O4 - HKLM..\Run: [ZoneAlarm Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe (Check Point Software Technologies LTD)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.micr...heckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\common\yinsthelper.dll (YInstStarter Class)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (get_atlcom Class)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS.1\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS.1\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS.1\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop WallPaper: C:\WINDOWS.1\Web\Wallpaper\Bliss.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS.1\Web\Wallpaper\Bliss.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/02/15 14:39:18 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2002/06/14 14:27:24 | 000,914,498 | R--- | M] () - D:\Autorun.dat -- [ CDFS ]
O32 - AutoRun File - [2002/04/11 17:02:58 | 000,192,512 | R--- | M] (Interplay Entertainment Corp.) - D:\Autorun.exe -- [ CDFS ]
O32 - AutoRun File - [2002/06/13 18:49:22 | 000,000,141 | R--- | M] () - D:\Autorun.inf -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 90 Days ==========

[2010/11/11 17:40:22 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\JOHN\Recent
[2010/11/10 04:59:44 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2010/11/05 03:44:10 | 000,576,000 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\JOHN\Desktop\OTL.exe
[2010/11/03 10:47:26 | 000,103,936 | ---- | C] (Check Point Software Technologies LTD) -- C:\WINDOWS.1\System32\zlcommdb.dll
[2010/11/03 10:47:26 | 000,069,120 | ---- | C] (Check Point Software Technologies LTD) -- C:\WINDOWS.1\System32\zlcomm.dll
[2010/11/03 10:47:20 | 000,043,008 | ---- | C] (Check Point Software Technologies LTD) -- C:\WINDOWS.1\System32\vswmi.dll
[2010/11/03 10:47:19 | 001,238,528 | ---- | C] (Check Point Software Technologies LTD) -- C:\WINDOWS.1\System32\zpeng25.dll
[2010/10/29 17:32:17 | 005,190,926 | ---- | C] (Black Isle ) -- C:\Documents and Settings\JOHN\Desktop\IWD2Patch201.exe
[2010/10/28 10:46:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Application Data\InstallMate
[2010/10/28 10:42:12 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2010/10/24 05:41:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Application Data\ATI
[2010/10/24 05:35:38 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Stream
[2010/10/21 10:28:11 | 000,000,000 | R-SD | C] -- C:\Documents and Settings\JOHN\My Documents\My Stationery
[2010/10/15 04:04:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JOHN\Application Data\WinRAR
[2010/10/15 04:03:39 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2010/10/15 04:02:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JOHN\Local Settings\Application Data\WinZip
[2010/10/15 04:01:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Application Data\WinZip
[2010/10/15 04:01:51 | 000,000,000 | ---D | C] -- C:\Program Files\WinZip
[2010/10/14 10:41:36 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\javaws.exe
[2010/10/14 10:41:36 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\javaw.exe
[2010/10/14 10:41:36 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\java.exe
[2010/10/14 10:41:36 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\javacpl.cpl
[2010/10/13 19:18:23 | 000,000,000 | ---D | C] -- C:\Program Files\File Extension Finder
[2010/10/12 17:16:58 | 000,306,688 | ---- | C] (InstallShield Software Corporation) -- C:\WINDOWS.1\IsUninst.exe
[2010/09/28 03:58:07 | 000,054,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\drivers\fssfltr_tdi.sys
[2010/09/28 03:56:56 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Sync Framework
[2010/09/19 10:29:34 | 000,000,000 | ---D | C] -- C:\Program Files\directx
[2010/09/14 18:35:19 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\XAudio2_7.dll
[2010/09/14 18:35:19 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\XAPOFX1_5.dll
[2010/09/14 18:35:18 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\xactengine3_7.dll
[2010/09/14 18:35:17 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\D3DCompiler_43.dll
[2010/09/14 18:35:16 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\d3dcsx_43.dll
[2010/09/14 18:35:15 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\d3dx10_43.dll
[2010/09/14 18:35:15 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\d3dx11_43.dll
[2010/09/14 18:35:14 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\D3DX9_43.dll
[2010/09/08 10:17:46 | 000,094,208 | ---- | C] (Apple Inc.) -- C:\WINDOWS.1\System32\QuickTimeVR.qtx
[2010/09/08 10:17:46 | 000,069,632 | ---- | C] (Apple Inc.) -- C:\WINDOWS.1\System32\QuickTime.qts
[2010/09/04 06:29:55 | 000,000,000 | ---D | C] -- C:\Program Files\_uninstallation_info
[2010/08/28 13:54:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Application Data\SUPERAntiSpyware.com
[2007/04/09 12:32:58 | 000,034,816 | ---- | C] ( ) -- C:\WINDOWS.1\System32\a3d.dll
[8 C:\Documents and Settings\All Users.WINDOWS.1\Application Data\*.tmp files -> C:\Documents and Settings\All Users.WINDOWS.1\Application Data\*.tmp -> ]

========== Files - Modified Within 90 Days ==========

[2010/11/11 17:47:14 | 000,524,974 | ---- | M] () -- C:\WINDOWS.1\System32\perfh009.dat
[2010/11/11 17:47:14 | 000,096,572 | ---- | M] () -- C:\WINDOWS.1\System32\perfc009.dat
[2010/11/11 17:43:03 | 000,002,206 | ---- | M] () -- C:\WINDOWS.1\System32\wpa.dbl
[2010/11/11 17:42:04 | 000,002,048 | --S- | M] () -- C:\WINDOWS.1\bootstat.dat
[2010/11/11 11:40:03 | 000,002,445 | ---- | M] () -- C:\Documents and Settings\JOHN\Desktop\HiJackThis.lnk
[2010/11/10 20:14:51 | 000,364,032 | ---- | M] () -- C:\Documents and Settings\JOHN\Desktop\rkill.com
[2010/11/10 20:14:42 | 000,294,400 | ---- | M] () -- C:\Documents and Settings\JOHN\Desktop\exeHelper.com
[2010/11/10 19:33:04 | 000,425,435 | R--- | M] () -- C:\WINDOWS.1\System32\drivers\etc\hosts
[2010/11/05 03:44:11 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\JOHN\Desktop\OTL.exe
[2010/11/04 10:33:33 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\JOHN\Desktop\SpeedFan.lnk
[2010/11/04 10:33:33 | 000,000,045 | ---- | M] () -- C:\WINDOWS.1\System32\initdebug.nfo
[2010/11/04 10:33:01 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Desktop\CCleaner.lnk
[2010/11/04 10:31:38 | 000,424,723 | R--- | M] () -- C:\WINDOWS.1\System32\drivers\etc\hosts.20101110-193304.backup
[2010/11/03 16:33:10 | 000,000,929 | ---- | M] () -- C:\Documents and Settings\JOHN\Desktop\Revo Uninstaller.lnk
[2010/11/03 10:48:19 | 000,421,533 | ---- | M] () -- C:\WINDOWS.1\System32\vsconfig.xml
[2010/11/03 10:47:32 | 000,004,212 | -H-- | M] () -- C:\WINDOWS.1\System32\zllictbl.dat
[2010/11/03 10:47:32 | 000,000,731 | ---- | M] () -- C:\Documents and Settings\JOHN\Desktop\ZoneAlarm Security.lnk
[2010/11/02 19:45:15 | 000,126,856 | ---- | M] (Avira GmbH) -- C:\WINDOWS.1\System32\drivers\avipbb.sys
[2010/11/02 19:45:15 | 000,060,936 | ---- | M] (Avira GmbH) -- C:\WINDOWS.1\System32\drivers\avgntflt.sys
[2010/11/02 16:05:34 | 000,424,229 | R--- | M] () -- C:\WINDOWS.1\System32\drivers\etc\hosts.20101104-113138.backup
[2010/10/29 17:32:24 | 005,190,926 | ---- | M] (Black Isle ) -- C:\Documents and Settings\JOHN\Desktop\IWD2Patch201.exe
[2010/10/28 10:42:15 | 000,001,678 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Desktop\SUPERAntiSpyware Free Edition.lnk
[2010/10/27 10:32:29 | 000,424,229 | R--- | M] () -- C:\WINDOWS.1\System32\drivers\etc\hosts.20101102-170534.backup
[2010/10/26 03:53:28 | 004,183,499 | ---- | M] () -- C:\Documents and Settings\JOHN\Desktop\Lunatics_Win32v0.37_AP505r409_AKv8b_Cudax32f.exe
[2010/10/25 17:05:49 | 000,125,461 | ---- | M] () -- C:\Documents and Settings\JOHN\Desktop\icewind_dale_2_a.zip
[2010/10/20 10:33:47 | 000,423,253 | R--- | M] () -- C:\WINDOWS.1\System32\drivers\etc\hosts.20101027-113229.backup
[2010/10/16 17:08:15 | 000,001,724 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Desktop\Icewind Dale II.lnk
[2010/10/15 17:32:56 | 000,000,882 | ---- | M] () -- C:\WINDOWS.1\tasks\GoogleUpdateTaskMachineCore1cb6cc14bb723d4.job
[2010/10/15 04:03:59 | 000,000,692 | ---- | M] () -- C:\Documents and Settings\JOHN\Desktop\WinRAR.lnk
[2010/10/15 04:02:20 | 000,001,736 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Desktop\WinZip.lnk
[2010/10/14 16:29:39 | 000,422,443 | R--- | M] () -- C:\WINDOWS.1\System32\drivers\etc\hosts.20101020-113347.backup
[2010/10/14 10:41:21 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\deployJava1.dll
[2010/10/14 10:41:21 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\javaws.exe
[2010/10/14 10:41:21 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\javaw.exe
[2010/10/14 10:41:21 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\java.exe
[2010/10/14 10:41:21 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\javacpl.cpl
[2010/10/14 04:06:11 | 000,422,443 | R--- | M] () -- C:\WINDOWS.1\System32\drivers\etc\hosts.20101014-172939.backup
[2010/10/13 02:24:08 | 000,121,336 | ---- | M] () -- C:\WINDOWS.1\System32\FNTCACHE.DAT
[2010/10/12 18:36:49 | 000,355,001 | ---- | M] () -- C:\Documents and Settings\JOHN\Desktop\icewind_dale.zip
[2010/10/08 03:59:37 | 000,421,643 | R--- | M] () -- C:\WINDOWS.1\System32\drivers\etc\hosts.20101014-050611.backup
[2010/10/08 03:40:21 | 000,003,584 | ---- | M] () -- C:\Documents and Settings\JOHN\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/10/03 12:35:21 | 000,040,748 | ---- | M] () -- C:\Documents and Settings\JOHN\Desktop\icewind_dale_a.zip
[2010/09/30 03:57:05 | 000,420,609 | R--- | M] () -- C:\WINDOWS.1\System32\drivers\etc\hosts.20101008-045937.backup
[2010/09/22 19:00:30 | 000,419,441 | R--- | M] () -- C:\WINDOWS.1\System32\drivers\etc\hosts.20100930-045705.backup
[2010/09/18 11:23:26 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\mfc42u.dll
[2010/09/18 11:23:26 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\mfc42u.dll
[2010/09/18 00:53:25 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\mfc42.dll
[2010/09/18 00:53:25 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\mfc42.dll
[2010/09/18 00:53:25 | 000,954,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\mfc40.dll
[2010/09/18 00:53:25 | 000,954,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\mfc40.dll
[2010/09/18 00:53:25 | 000,953,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\mfc40u.dll
[2010/09/18 00:53:25 | 000,953,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\mfc40u.dll
[2010/09/15 16:18:27 | 000,419,373 | R--- | M] () -- C:\WINDOWS.1\System32\drivers\etc\hosts.20100922-200030.backup
[2010/09/14 18:33:59 | 000,000,990 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Desktop\SiSoftware Sandra Lite 2010.SP3.lnk
[2010/09/10 20:19:16 | 005,417,472 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\drivers\ati2mtag.sys
[2010/09/10 20:19:16 | 005,417,472 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\dllcache\ati2mtag.sys
[2010/09/10 19:57:20 | 000,057,344 | ---- | M] (Advanced Micro Devices Inc.) -- C:\WINDOWS.1\System32\aticalrt.dll
[2010/09/10 19:57:14 | 000,053,248 | ---- | M] (Advanced Micro Devices Inc.) -- C:\WINDOWS.1\System32\aticalcl.dll
[2010/09/10 19:56:02 | 004,419,584 | ---- | M] (Advanced Micro Devices Inc.) -- C:\WINDOWS.1\System32\aticaldd.dll
[2010/09/10 19:54:56 | 016,248,832 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\WINDOWS.1\System32\atioglxx.dll
[2010/09/10 19:50:34 | 000,311,296 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\atiiiexx.dll
[2010/09/10 19:43:44 | 000,450,560 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\WINDOWS.1\System32\ATIDEMGX.dll
[2010/09/10 19:42:48 | 000,300,544 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\ati2dvag.dll
[2010/09/10 19:39:06 | 003,942,880 | ---- | M] (ATI Technologies Inc. ) -- C:\WINDOWS.1\System32\ati3duag.dll
[2010/09/10 19:29:12 | 000,393,216 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\WINDOWS.1\System32\atiok3x2.dll
[2010/09/10 19:26:58 | 000,208,896 | ---- | M] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atipdlxx.dll
[2010/09/10 19:26:46 | 000,155,648 | ---- | M] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\Oemdspif.dll
[2010/09/10 19:26:40 | 000,026,112 | ---- | M] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\Ati2mdxx.exe
[2010/09/10 19:26:34 | 000,043,520 | ---- | M] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\ati2edxx.dll
[2010/09/10 19:26:24 | 000,159,744 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\ati2evxx.dll
[2010/09/10 19:25:38 | 002,669,312 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\WINDOWS.1\System32\ativvaxx.dll
[2010/09/10 19:25:14 | 000,509,696 | ---- | M] () -- C:\WINDOWS.1\System32\ativvaxx.cap
[2010/09/10 19:25:08 | 000,887,724 | ---- | M] () -- C:\WINDOWS.1\System32\ativva6x.dat
[2010/09/10 19:25:08 | 000,000,003 | ---- | M] () -- C:\WINDOWS.1\System32\ativva5x.dat
[2010/09/10 19:24:02 | 000,053,248 | ---- | M] ( ATI Technologies Inc.) -- C:\WINDOWS.1\System32\ATIDDC.DLL
[2010/09/10 19:23:26 | 000,078,496 | ---- | M] () -- C:\WINDOWS.1\System32\atiapfxx.blb
[2010/09/10 19:23:12 | 000,143,360 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\WINDOWS.1\System32\atiapfxx.exe
[2010/09/10 19:19:56 | 000,634,880 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\atikvmag.dll
[2010/09/10 19:18:14 | 000,192,512 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\WINDOWS.1\System32\atiadlxx.dll
[2010/09/10 19:17:56 | 000,017,408 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\atitvo32.dll
[2010/09/10 19:13:12 | 000,696,320 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\ati2cqag.dll
[2010/09/10 19:11:50 | 000,064,512 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\WINDOWS.1\System32\atimpc32.dll
[2010/09/10 19:11:50 | 000,064,512 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\WINDOWS.1\System32\amdpcom32.dll
[2010/09/10 19:11:14 | 000,053,248 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\drivers\ati2erec.dll
[2010/09/10 16:03:31 | 000,419,195 | R--- | M] () -- C:\WINDOWS.1\System32\drivers\etc\hosts.20100915-171827.backup
[2010/09/09 23:58:08 | 005,957,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\mshtml.dll
[2010/09/09 23:58:08 | 001,210,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\urlmon.dll
[2010/09/09 23:58:08 | 000,916,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\wininet.dll
[2010/09/09 23:58:08 | 000,611,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\mstime.dll
[2010/09/09 23:58:08 | 000,611,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\mstime.dll
[2010/09/09 23:58:08 | 000,206,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\occache.dll
[2010/09/09 23:58:08 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\mshtmled.dll
[2010/09/09 23:58:06 | 001,986,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\iertutil.dll
[2010/09/09 23:58:06 | 001,469,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\inetcpl.cpl
[2010/09/09 23:58:06 | 001,469,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\inetcpl.cpl
[2010/09/09 23:58:06 | 000,602,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\msfeeds.dll
[2010/09/09 23:58:06 | 000,602,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\msfeeds.dll
[2010/09/09 23:58:06 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\msfeedsbs.dll
[2010/09/09 23:58:06 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\msfeedsbs.dll
[2010/09/09 23:58:06 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\licmgr10.dll
[2010/09/09 23:58:06 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\licmgr10.dll
[2010/09/09 23:58:06 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\jsproxy.dll
[2010/09/09 23:58:06 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\jsproxy.dll
[2010/09/09 23:58:05 | 011,080,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\ieframe.dll
[2010/09/09 23:58:05 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\iepeers.dll
[2010/09/09 23:58:05 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\iepeers.dll
[2010/09/09 23:58:03 | 000,743,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\iedvtool.dll
[2010/09/09 23:58:03 | 000,387,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\iedkcs32.dll
[2010/09/09 23:58:03 | 000,387,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\iedkcs32.dll
[2010/09/09 14:28:42 | 013,803,520 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Application Data\sandra.mda
[2010/09/08 10:17:46 | 000,094,208 | ---- | M] (Apple Inc.) -- C:\WINDOWS.1\System32\QuickTimeVR.qtx
[2010/09/08 10:17:46 | 000,069,632 | ---- | M] (Apple Inc.) -- C:\WINDOWS.1\System32\QuickTime.qts
[2010/09/02 17:02:41 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\JOHN\Desktop\SpywareBlaster.lnk
[2010/09/02 08:20:54 | 001,238,528 | ---- | M] (Check Point Software Technologies LTD) -- C:\WINDOWS.1\System32\zpeng25.dll
[2010/09/02 08:20:50 | 000,714,240 | ---- | M] (Check Point Software Technologies LTD) -- C:\WINDOWS.1\System32\vsutil.dll
[2010/09/02 08:20:50 | 000,110,080 | ---- | M] (Check Point Software Technologies LTD) -- C:\WINDOWS.1\System32\vsxml.dll
[2010/09/02 08:20:50 | 000,103,936 | ---- | M] (Check Point Software Technologies LTD) -- C:\WINDOWS.1\System32\zlcommdb.dll
[2010/09/02 08:20:50 | 000,069,120 | ---- | M] (Check Point Software Technologies LTD) -- C:\WINDOWS.1\System32\zlcomm.dll
[2010/09/02 08:20:50 | 000,043,008 | ---- | M] (Check Point Software Technologies LTD) -- C:\WINDOWS.1\System32\vswmi.dll
[2010/09/02 08:20:48 | 000,302,592 | ---- | M] (Check Point Software Technologies LTD) -- C:\WINDOWS.1\System32\vspubapi.dll
[2010/09/02 08:20:48 | 000,228,352 | ---- | M] (Check Point Software Technologies LTD) -- C:\WINDOWS.1\System32\vsinit.dll
[2010/09/02 08:20:48 | 000,112,128 | ---- | M] (Check Point Software Technologies LTD) -- C:\WINDOWS.1\System32\vsdata.dll
[2010/09/02 08:20:48 | 000,108,032 | ---- | M] (Check Point Software Technologies LTD) -- C:\WINDOWS.1\System32\vsmonapi.dll
[2010/09/02 08:20:48 | 000,058,368 | ---- | M] (Check Point Software Technologies LTD) -- C:\WINDOWS.1\System32\vsregexp.dll
[2010/09/02 03:58:27 | 000,417,835 | R--- | M] () -- C:\WINDOWS.1\System32\drivers\etc\hosts.20100910-170331.backup
[2010/09/01 05:51:14 | 000,285,824 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS.1\System32\dllcache\atmfd.dll
[2010/09/01 05:51:14 | 000,285,824 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS.1\System32\atmfd.dll
[2010/08/31 07:42:52 | 001,852,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\win32k.sys
[2010/08/31 07:42:52 | 001,852,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\win32k.sys
[2010/08/27 02:02:29 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\t2embed.dll
[2010/08/27 02:02:29 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\t2embed.dll
[2010/08/26 23:57:43 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\srvsvc.dll
[2010/08/26 07:39:50 | 000,357,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\srv.sys
[2010/08/26 06:22:20 | 000,173,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\ie4uinit.exe
[2010/08/26 06:22:20 | 000,173,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\ie4uinit.exe
[2010/08/25 22:36:02 | 010,841,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\wmp.dll
[2010/08/25 18:41:22 | 000,416,924 | R--- | M] () -- C:\WINDOWS.1\System32\drivers\etc\hosts.20100902-045827.backup
[2010/08/23 10:12:04 | 000,617,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\comctl32.dll
[2010/08/18 17:18:18 | 000,416,860 | R--- | M] () -- C:\WINDOWS.1\System32\drivers\etc\hosts.20100825-194122.backup
[2010/08/17 16:23:08 | 000,001,636 | ---- | M] () -- C:\Documents and Settings\JOHN\Desktop\Update Checker.lnk
[2010/08/17 07:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\spoolsv.exe
[2010/08/16 02:45:00 | 000,590,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dllcache\rpcrt4.dll
[2010/08/14 06:29:13 | 000,416,653 | R--- | M] () -- C:\WINDOWS.1\System32\drivers\etc\hosts.20100818-181818.backup
[8 C:\Documents and Settings\All Users.WINDOWS.1\Application Data\*.tmp files -> C:\Documents and Settings\All Users.WINDOWS.1\Application Data\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/11/10 20:14:50 | 000,364,032 | ---- | C] () -- C:\Documents and Settings\JOHN\Desktop\rkill.com
[2010/11/10 20:14:42 | 000,294,400 | ---- | C] () -- C:\Documents and Settings\JOHN\Desktop\exeHelper.com
[2010/11/03 10:47:32 | 000,000,731 | ---- | C] () -- C:\Documents and Settings\JOHN\Desktop\ZoneAlarm Security.lnk
[2010/10/28 10:42:15 | 000,001,678 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Desktop\SUPERAntiSpyware Free Edition.lnk
[2010/10/28 10:39:56 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Desktop\CCleaner.lnk
[2010/10/26 03:53:21 | 004,183,499 | ---- | C] () -- C:\Documents and Settings\JOHN\Desktop\Lunatics_Win32v0.37_AP505r409_AKv8b_Cudax32f.exe
[2010/10/25 17:05:48 | 000,125,461 | ---- | C] () -- C:\Documents and Settings\JOHN\Desktop\icewind_dale_2_a.zip
[2010/10/16 17:08:15 | 000,001,724 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Desktop\Icewind Dale II.lnk
[2010/10/15 17:32:56 | 000,000,882 | ---- | C] () -- C:\WINDOWS.1\tasks\GoogleUpdateTaskMachineCore1cb6cc14bb723d4.job
[2010/10/15 04:03:59 | 000,000,692 | ---- | C] () -- C:\Documents and Settings\JOHN\Desktop\WinRAR.lnk
[2010/10/15 04:02:20 | 000,001,736 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Desktop\WinZip.lnk
[2010/10/12 18:36:47 | 000,355,001 | ---- | C] () -- C:\Documents and Settings\JOHN\Desktop\icewind_dale.zip
[2010/10/03 12:35:20 | 000,040,748 | ---- | C] () -- C:\Documents and Settings\JOHN\Desktop\icewind_dale_a.zip
[2010/09/14 18:33:59 | 000,000,990 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Desktop\SiSoftware Sandra Lite 2010.SP3.lnk
[2010/02/06 20:22:00 | 000,000,000 | ---- | C] () -- C:\WINDOWS.1\EEventManager.INI
[2010/02/06 19:49:32 | 000,000,097 | ---- | C] () -- C:\WINDOWS.1\System32\PICSDK.ini
[2010/02/06 19:45:54 | 000,000,079 | ---- | C] () -- C:\WINDOWS.1\EPNX510.ini
[2010/02/06 11:01:43 | 000,000,010 | ---- | C] () -- C:\WINDOWS.1\WININIT.INI
[2010/01/13 18:13:15 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\JOHN\Local Settings\Application Data\prvlcl.dat
[2009/11/29 05:51:13 | 013,803,520 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Application Data\sandra.mda
[2009/11/22 11:18:00 | 000,033,350 | ---- | C] () -- C:\WINDOWS.1\Ascd_tmp.ini
[2009/09/19 05:39:51 | 000,003,584 | ---- | C] () -- C:\Documents and Settings\JOHN\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/09/16 19:27:21 | 000,000,073 | ---- | C] () -- C:\Documents and Settings\JOHN\Local Settings\Application Data\FASTWiz.log
[2009/09/16 19:09:13 | 000,147,456 | ---- | C] () -- C:\WINDOWS.1\System32\RtlCPAPI.dll
[2009/09/15 21:23:03 | 000,354,816 | ---- | C] () -- C:\WINDOWS.1\System32\psisdecd.dll
[2009/09/15 19:39:37 | 000,024,576 | R--- | C] () -- C:\WINDOWS.1\System32\AsIO.dll
[2009/09/15 19:39:37 | 000,012,400 | R--- | C] () -- C:\WINDOWS.1\System32\drivers\AsIO.sys
[2009/09/15 19:39:34 | 000,011,832 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\AsInsHelp64.sys
[2009/09/15 19:39:34 | 000,010,216 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\AsInsHelp32.sys
[2009/09/15 19:23:28 | 000,033,388 | ---- | C] () -- C:\WINDOWS.1\Ascd_log.ini
[2009/09/15 19:23:19 | 000,005,810 | R--- | C] () -- C:\WINDOWS.1\System32\drivers\ASACPI.sys
[2009/09/15 19:22:44 | 000,010,296 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\ASUSHWIO.SYS
[2009/09/15 11:45:48 | 000,004,249 | ---- | C] () -- C:\WINDOWS.1\ODBCINST.INI
[2007/09/27 09:51:02 | 000,020,698 | ---- | C] () -- C:\WINDOWS.1\System32\idxcntrs.ini
[2007/09/27 09:48:48 | 000,030,628 | ---- | C] () -- C:\WINDOWS.1\System32\gsrvctr.ini
[2007/09/27 09:48:28 | 000,031,698 | ---- | C] () -- C:\WINDOWS.1\System32\gthrctr.ini
[2007/04/12 08:10:28 | 000,105,728 | ---- | C] () -- C:\WINDOWS.1\System32\APOMgrH.dll
[2007/04/09 12:55:14 | 000,097,785 | ---- | C] () -- C:\WINDOWS.1\System32\instwdm.ini
[2007/04/09 12:55:14 | 000,000,054 | ---- | C] () -- C:\WINDOWS.1\System32\ctzapxx.ini
[2007/04/09 12:33:50 | 000,043,520 | ---- | C] () -- C:\WINDOWS.1\System32\CTBurst.dll
[2007/02/05 20:49:47 | 000,066,520 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2006/10/02 09:25:18 | 000,000,307 | ---- | C] () -- C:\WINDOWS.1\System32\kill.ini
[2005/06/16 10:17:16 | 000,071,680 | ---- | C] () -- C:\WINDOWS.1\System32\ctmmactl.dll
[1996/04/03 13:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS.1\System32\giveio.sys

========== Alternate Data Streams ==========

@Alternate Data Stream - 95 bytes -> C:\Documents and Settings\All Users.WINDOWS.1\Application Data\TEMP:5C321E34

< End of report >
  • 0

Advertisements

#2
bustermoves
Posted 12 November 2010 - 05:42 PM

bustermoves

    Member

  • Topic Starter
  • Member
  • PipPip
  • 82 posts
did it again,this is what ballon said:the exception unknown software exception(0x0eedfade)occured inapplication at location 0x7c812afb.know idea what is going on here
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP