edit: also my sound as been disabled
here is my OTL log
OTL logfile created on: 23/01/2011 12:45:49 PM - Run 1
OTL by OldTimer - Version 3.2.20.4 Folder = C:\Documents and Settings\Kalin\My Documents\Downloads
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy
2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 63.00% Memory free
5.00 Gb Paging File | 4.00 Gb Available in Paging File | 88.00% Paging File free
Paging file location(s): C:\pagefile.sys 3100 3500 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 149.04 Gb Total Space | 19.20 Gb Free Space | 12.88% Space Free | Partition Type: NTFS
Drive D: | 37.27 Gb Total Space | 36.00 Gb Free Space | 96.59% Space Free | Partition Type: FAT32
Computer Name: BRIAN-BZ61G3SF5 | User Name: Kalin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011/01/23 12:44:35 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Kalin\My Documents\Downloads\OTL.exe
PRC - [2011/01/23 12:31:51 | 000,901,352 | ---- | M] (Systweak Inc) -- C:\Documents and Settings\Kalin\My Documents\Downloads\aso3setup(2).exe
PRC - [2011/01/13 07:41:38 | 002,424,560 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
PRC - [2010/12/11 18:27:24 | 000,016,856 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
PRC - [2010/12/11 18:27:21 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010/09/12 13:18:41 | 002,969,496 | ---- | M] () -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
PRC - [2010/08/13 11:58:56 | 000,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2010/04/19 16:15:00 | 000,238,824 | ---- | M] (Systweak Inc., (www.systweak.com)) -- C:\Program Files\Advanced System Optimizer 3\ASO3DefragSrv.exe
PRC - [2009/06/05 12:05:30 | 001,615,232 | ---- | M] (Philips) -- C:\Program Files\Philips\GoGear SA018 Device Manager\GoGear_SA018_DeviceManager.exe
PRC - [2009/02/12 17:28:24 | 001,687,552 | ---- | M] (D-Link Corp.) -- C:\Program Files\D-Link\DWA-160 revA\AirNCFG.exe
PRC - [2009/02/12 09:57:14 | 000,147,456 | ---- | M] () -- C:\WINDOWS\system32\ANIWConnService.exe
PRC - [2008/11/11 14:23:02 | 000,213,552 | ---- | M] (National Instruments Corporation) -- C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe
PRC - [2008/11/11 14:22:48 | 000,050,736 | ---- | M] (National Instruments Corporation) -- C:\WINDOWS\system32\lktsrv.exe
PRC - [2008/11/11 14:22:40 | 000,040,496 | ---- | M] (National Instruments Corporation) -- C:\WINDOWS\system32\lkads.exe
PRC - [2008/04/14 04:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008/04/09 20:42:00 | 000,492,896 | ---- | M] () -- C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
PRC - [2007/11/06 14:07:32 | 000,008,656 | ---- | M] (National Instruments Corporation) -- C:\WINDOWS\system32\nisvcloc.exe
PRC - [2007/10/23 08:20:56 | 000,695,136 | ---- | M] (National Instruments, Inc.) -- C:\WINDOWS\system32\lkcitdl.exe
PRC - [2007/06/05 12:20:32 | 000,177,704 | ---- | M] () -- C:\WINDOWS\system32\PSIService.exe
PRC - [2007/01/19 10:49:04 | 000,049,152 | ---- | M] (Wireless Service) -- C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
PRC - [2005/12/12 14:03:54 | 000,417,855 | ---- | M] (American Power Conversion Corporation) -- C:\Program Files\APC\APC PowerChute Personal Edition\apcsystray.exe
PRC - [2005/12/12 14:02:24 | 000,176,193 | ---- | M] (American Power Conversion Corporation) -- C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
PRC - [2004/10/27 23:09:00 | 000,053,248 | ---- | M] (General) -- C:\WINDOWS\system32\umonit.exe
PRC - [2003/04/01 10:33:00 | 000,053,248 | ---- | M] (ali) -- C:\USBStorage\USBDetector.exe
========== Modules (SafeList) ==========
MOD - [2011/01/23 12:44:35 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Kalin\My Documents\Downloads\OTL.exe
MOD - [2010/08/23 08:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [Auto | Stopped] -- -- (RoxWatch9)
SRV - File not found [Auto | Stopped] -- -- (RoxLiveShare9)
SRV - File not found [On_Demand | Stopped] -- -- (NMIndexingService)
SRV - [2010/11/23 18:21:18 | 000,130,000 | R--- | M] (Symantec Corporation) [Unknown | Stopped] -- C:\Program Files\Norton Internet Security\Engine\18.5.0.125\ccSvcHst.exe -- (NIS)
SRV - [2010/08/13 11:58:56 | 000,144,672 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/05/14 10:00:26 | 000,249,136 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort)
SRV - [2010/04/19 16:15:00 | 000,238,824 | ---- | M] (Systweak Inc., (www.systweak.com)) [Auto | Running] -- C:\Program Files\Advanced System Optimizer 3\ASO3DefragSrv.exe -- (ASO3DiskOptimizer)
SRV - [2010/03/18 13:16:28 | 000,753,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/02/12 09:57:14 | 000,147,456 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\ANIWConnService.exe -- (ANIWConnService)
SRV - [2009/02/06 17:08:58 | 000,533,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe -- (fsssvc)
SRV - [2008/11/11 14:23:02 | 000,213,552 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe -- (NIDomainService)
SRV - [2008/11/11 14:22:48 | 000,050,736 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\WINDOWS\system32\lktsrv.exe -- (lkTimeSync)
SRV - [2008/11/11 14:22:40 | 000,040,496 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\WINDOWS\system32\lkads.exe -- (lkClassAds)
SRV - [2008/04/09 20:42:00 | 000,492,896 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe -- (TryAndDecideService)
SRV - [2008/04/09 19:14:18 | 000,431,384 | ---- | M] (Acronis) [Auto | Stopped] -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2007/11/06 14:07:32 | 000,008,656 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\WINDOWS\System32\nisvcloc.exe -- (niSvcLoc)
SRV - [2007/10/23 08:20:56 | 000,695,136 | ---- | M] (National Instruments, Inc.) [Auto | Running] -- C:\WINDOWS\system32\lkcitdl.exe -- (LkCitadelServer)
SRV - [2007/06/05 12:20:32 | 000,177,704 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\PSIService.exe -- (ProtexisLicensing)
SRV - [2007/01/19 10:49:26 | 000,049,152 | ---- | M] (Wireless Service) [Auto | Stopped] -- C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe -- (ANIWZCSdService)
SRV - [2005/12/12 14:02:24 | 000,176,193 | ---- | M] (American Power Conversion Corporation) [Auto | Running] -- C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe -- (APC UPS Service)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | Unknown | Running] -- -- (SASKUTIL)
DRV - File not found [Kernel | Unknown | Running] -- -- (SASDIFSV)
DRV - File not found [File_System | Disabled | Running] -- -- (pctEFA)
DRV - File not found [Kernel | Disabled | Running] -- -- (pctDS)
DRV - [2011/01/15 11:50:08 | 000,126,512 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2011/01/09 01:00:00 | 001,360,760 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20110121.019\NAVEX15.SYS -- (NAVEX15)
DRV - [2011/01/09 01:00:00 | 000,086,008 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20110121.019\NAVENG.SYS -- (NAVENG)
DRV - [2010/11/30 21:24:00 | 000,368,248 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NIS\1205000.07D\SYMTDI.SYS -- (SYMTDI)
DRV - [2010/11/22 20:21:16 | 000,691,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\BASHDefs\20110114.001\BHDrvx86.sys -- (BHDrvx86)
DRV - [2010/11/22 20:08:31 | 000,509,560 | R--- | M] (Symantec Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\NIS\1205000.07D\SRTSP.SYS -- (SRTSP)
DRV - [2010/11/22 20:08:31 | 000,050,168 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NIS\1205000.07D\SRTSPX.SYS -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV - [2010/11/17 18:59:55 | 000,652,336 | R--- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\NIS\1205000.07D\SYMEFA.SYS -- (SymEFA)
DRV - [2010/11/15 17:45:33 | 000,136,312 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NIS\1205000.07D\Ironx86.SYS -- (SymIRON)
DRV - [2010/11/10 17:46:29 | 000,341,944 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\IPSDefs\20110120.001\IDSXpx86.sys -- (IDSxpx86)
DRV - [2010/11/09 13:56:12 | 000,098,392 | ---- | M] (Sunbelt Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\SBREDrv.sys -- (SBRE)
DRV - [2010/10/20 18:28:36 | 000,340,016 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\NIS\1205000.07D\SYMDS.SYS -- (SymDS)
DRV - [2010/05/30 12:05:37 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2010/05/30 12:05:37 | 000,102,448 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2010/04/03 21:55:32 | 010,232,128 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2010/01/30 14:00:22 | 000,006,656 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\Advanced System Optimizer 3\adasprot32.sys -- (ADASPROT)
DRV - [2009/12/05 19:36:28 | 000,592,384 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dwarusb.sys -- (arusb(Atheros))
DRV - [2009/11/03 16:47:20 | 000,037,920 | ---- | M] (RapidSolution Software AG) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tbhsd.sys -- (tbhsd)
DRV - [2009/09/03 10:37:04 | 000,016,640 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(1).sys -- (WsAudio_DeviceS(1)) WsAudio_DeviceS(1)
DRV - [2009/08/09 13:25:56 | 000,029,696 | ---- | M] (Elaborate Bytes AG) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\VClone.sys -- (VClone)
DRV - [2009/03/27 15:43:42 | 001,529,600 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\athw.sys -- (AR5416)
DRV - [2009/03/05 03:09:14 | 000,450,944 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8192u.sys -- (RTL8192u)
DRV - [2009/02/09 17:10:04 | 000,029,411 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\ANIO.sys -- (ANIO)
DRV - [2009/02/06 17:08:42 | 000,055,152 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys -- (fssfltr)
DRV - [2008/08/20 09:11:57 | 000,441,760 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\timntr.sys -- (timounter)
DRV - [2008/08/20 09:11:57 | 000,044,384 | ---- | M] (Acronis) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter)
DRV - [2008/08/20 09:11:51 | 000,132,224 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\snapman.sys -- (snapman)
DRV - [2008/08/20 09:11:46 | 000,368,480 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\tdrpman.sys -- (tdrpman)
DRV - [2008/07/15 13:18:59 | 000,003,026 | ---- | M] (Logix4u) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\hwinterface.sys -- (hwinterface)
DRV - [2008/04/13 23:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2008/04/07 09:00:00 | 000,004,096 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\cvintdrv.sys -- (cvintdrv)
DRV - [2008/02/29 02:13:24 | 000,036,880 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2008/02/29 02:13:16 | 000,035,344 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2008/02/29 02:12:48 | 000,020,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd)
DRV - [2006/12/02 12:19:30 | 000,050,688 | ---- | M] (Sonic Solutions) [File_System | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\RxFilter.sys -- (RxFilter)
DRV - [2006/11/01 08:59:36 | 000,009,400 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLADResM.SYS -- (DLADResM)
DRV - [2006/11/01 08:59:10 | 000,094,648 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAUDFAM.SYS -- (DLAUDFAM)
DRV - [2006/11/01 08:59:10 | 000,035,064 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLABMFSM.SYS -- (DLABMFSM)
DRV - [2006/11/01 08:59:08 | 000,098,104 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAUDF_M.SYS -- (DLAUDF_M)
DRV - [2006/11/01 08:59:06 | 000,026,744 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAOPIOM.SYS -- (DLAOPIOM)
DRV - [2006/11/01 08:59:04 | 000,032,472 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLABOIOM.SYS -- (DLABOIOM)
DRV - [2006/11/01 08:59:02 | 000,104,760 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAIFS_M.SYS -- (DLAIFS_M)
DRV - [2006/11/01 08:59:02 | 000,014,520 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAPoolM.SYS -- (DLAPoolM)
DRV - [2006/10/25 08:22:22 | 000,099,816 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\DRVMCDB.SYS -- (DRVMCDB)
DRV - [2006/10/18 09:09:26 | 000,986,624 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSX_DPV.sys -- (HSF_DPV)
DRV - [2006/10/18 09:08:18 | 000,258,048 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSXHWBS2.sys -- (HSXHWBS2)
DRV - [2006/10/18 09:08:04 | 000,659,968 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSX_CNXT.sys -- (winachsf)
DRV - [2006/09/15 09:45:24 | 000,012,920 | ---- | M] (Roxio) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\DLACDBHM.SYS -- (DLACDBHM)
DRV - [2006/09/15 09:45:22 | 000,028,184 | ---- | M] (Roxio) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\DLARTL_M.SYS -- (DLARTL_M)
DRV - [2006/09/15 09:42:52 | 000,051,768 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\DRVNDDM.SYS -- (DRVNDDM)
DRV - [2006/08/04 15:39:10 | 000,008,192 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\XAudio.sys -- (XAudio)
DRV - [2006/07/05 04:33:24 | 000,472,000 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WG311T13.sys -- (AR5211)
DRV - [2004/10/27 23:09:00 | 000,006,016 | ---- | M] (Genesys Logic) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\fixustor.sys -- (fixustor)
DRV - [2004/09/17 08:02:54 | 000,732,928 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (senfilt)
DRV - [2004/01/25 13:50:14 | 000,212,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HSFHWBS2.sys -- (HSFHWBS2)
DRV - [2004/01/25 13:47:02 | 001,041,536 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HSF_DP.sys -- (HSF_DP)
DRV - [2003/09/22 11:43:06 | 001,330,048 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\P16X.sys -- (P16X) Creative SB Live! Series (WDM)
DRV - [2003/09/22 07:48:06 | 000,130,192 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctsfm2k.sys -- (ctsfm2k)
DRV - [2003/09/22 07:47:38 | 000,178,672 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv)
DRV - [2002/11/18 14:51:40 | 000,377,358 | ---- | M] (C-Media Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\cmaudio.sys -- (cmpci) C-Media PCI Audio Driver (WDM)
DRV - [2002/08/26 16:29:42 | 000,023,387 | ---- | M] (Magic Control Technology Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\u2s2kxp.sys -- (U2SP) USB to Serial Converter Driver(Philips)
DRV - [2002/04/11 16:43:44 | 000,016,194 | ---- | M] (AMBIT Microsystems Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\AWINDIS5.SYS -- (AWINDIS5)
DRV - [2001/10/02 06:37:40 | 000,017,432 | ---- | M] (lecs Inc.) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\IcRecUsb.sys -- (IcRecUsb)
DRV - [2001/09/20 08:58:48 | 000,153,824 | ---- | M] (Zoran Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NUVvid2.sys -- (nuvvid2)
DRV - [2001/09/20 08:58:48 | 000,153,824 | ---- | M] (Zoran Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NUVvid2.sys -- (NUVision)
DRV - [2001/09/20 08:47:38 | 000,025,184 | ---- | M] (Zoran Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nuvaud2.sys -- (nuvaud2)
DRV - [2001/08/22 08:42:58 | 000,013,632 | ---- | M] (Dell Computer Corporation) [Kernel | System | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\OMCI.SYS -- (OMCI)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.facebook.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ca.msn.com/?l...en-ca&OCID=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-ca
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 42 6D 58 32 6B 8E CA 01 [binary data]
IE - HKCU\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
IE - HKCU\..\URLSearchHook: {472734EA-242A-422b-ADF8-83D1E48CC825} - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {5e5ab302-7f65-44cd-8211-c1d4caaccea3} - C:\Program Files\XfireXO\tbXfi2.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.defaultthis.engineName: "Swag Bucks Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.condui...={searchTerms}"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.ca/"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {5e5ab302-7f65-44cd-8211-c1d4caaccea3}:2.7.2.0
FF - prefs.js..extensions.enabledItems: {8bdea9d6-6f62-45eb-8ee9-8a81af0d2f94}:2.7.2.0
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}:5.5
FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:2.0
FF - prefs.js..keyword.URL: "http://search.condui...d=CT2260173&q="
FF - prefs.js..network.proxy.no_proxies_on: "*.local"
FF - HKLM\software\mozilla\Firefox\extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\IPSFFPlgn\ [2011/01/15 11:58:14 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\coFFPlgn\ [2011/01/15 11:48:27 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/12/19 22:55:26 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/01/15 11:30:40 | 000,000,000 | ---D | M]
[2010/03/02 22:21:23 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Kalin\Application Data\Mozilla\Extensions
[2010/01/05 21:05:37 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Kalin\Application Data\Mozilla\Firefox\extensions
[2010/01/05 21:05:39 | 000,000,000 | ---D | M] (XfireXO Toolbar) -- C:\Documents and Settings\Kalin\Application Data\Mozilla\Firefox\extensions\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}
[2011/01/22 18:57:23 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Kalin\Application Data\Mozilla\Firefox\Profiles\x5q2a0gn.default\extensions
[2010/04/26 17:39:10 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Kalin\Application Data\Mozilla\Firefox\Profiles\x5q2a0gn.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/08/19 11:35:46 | 000,000,000 | ---D | M] (XfireXO Toolbar) -- C:\Documents and Settings\Kalin\Application Data\Mozilla\Firefox\Profiles\x5q2a0gn.default\extensions\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}
[2010/08/09 17:05:53 | 000,000,000 | ---D | M] (Swag Bucks Toolbar) -- C:\Documents and Settings\Kalin\Application Data\Mozilla\Firefox\Profiles\x5q2a0gn.default\extensions\{8bdea9d6-6f62-45eb-8ee9-8a81af0d2f94}
[2010/08/05 20:34:08 | 000,000,923 | ---- | M] () -- C:\Documents and Settings\Kalin\Application Data\Mozilla\Firefox\Profiles\x5q2a0gn.default\searchplugins\conduit.xml
[2011/01/19 17:28:18 | 000,001,540 | ---- | M] () -- C:\Documents and Settings\Kalin\Application Data\Mozilla\Firefox\Profiles\x5q2a0gn.default\searchplugins\swagbuckscom.xml
[2011/01/22 18:57:23 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/05/30 12:54:50 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/08/20 19:13:48 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010/11/04 20:33:26 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011/01/15 11:48:27 | 000,000,000 | ---D | M] (Norton Toolbar) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\COFFPLGN
[2011/01/15 11:58:14 | 000,000,000 | ---D | M] (Norton IPS) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\IPSFFPLGN
[2009/03/22 14:45:37 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2010/09/15 03:50:38 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2008/12/10 13:49:34 | 000,023,040 | ---- | M] (National Instruments) -- C:\Program Files\Mozilla Firefox\plugins\nplv86win32.dll
O1 HOSTS File: ([2008/08/16 12:01:48 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (SnagIt Toolbar Loader) - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\SnagIt 9\SnagitBHO.dll (TechSmith Corporation)
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (XfireXO Toolbar) - {5e5ab302-7f65-44cd-8211-c1d4caaccea3} - C:\Program Files\XfireXO\tbXfi2.dll (Conduit Ltd.)
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\18.5.0.125\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\18.5.0.125\IPS\IPSBHO.dll (Symantec Corporation)
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll (Google Inc.)
O2 - BHO: (FrostWire Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (XfireXO Toolbar) - {5e5ab302-7f65-44cd-8211-c1d4caaccea3} - C:\Program Files\XfireXO\tbXfi2.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\18.5.0.125\CoIEPlg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Snagit) - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 9\SnagitIEAddin.dll (TechSmith Corporation)
O3 - HKLM\..\Toolbar: (FrostWire Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (XfireXO Toolbar) - {5E5AB302-7F65-44CD-8211-C1D4CAACCEA3} - C:\Program Files\XfireXO\tbXfi2.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (FrostWire Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O4 - HKLM..\Run: [ANIWZCS2Service] C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe (Wireless Service)
O4 - HKLM..\Run: [D-Link D-Link Xtreme N Dual Band DWA-160] C:\Program Files\D-Link\DWA-160 revA\AirNCFG.exe (D-Link Corp.)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] File not found
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SystemProtector] C:\Program Files\Advanced System Optimizer 3\SystemProtector.exe (Systweak Inc., (www.systweak.com))
O4 - HKLM..\Run: [UMonit] C:\WINDOWS\system32\umonit.exe (General)
O4 - HKLM..\Run: [USBDetector] C:\USBStorage\USBDetector.exe (ali)
O4 - HKCU..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe ()
O4 - HKCU..\Run: [Steam] C:\program files\steam\steam.exe (Valve Corporation)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\APC UPS Status.lnk = C:\Program Files\APC\APC PowerChute Personal Edition\Display.exe (American Power Conversion Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Philips GoGear SA018 Device Manager.lnk = C:\Program Files\Philips\GoGear SA018 Device Manager\GoGear_SA018_DeviceManager.exe (Philips)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Toolbars present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://appldnld.appl...ex/qtplugin.cab (QuickTime Object)
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.micr.../OGAControl.cab (Office Genuine Advantage Validation Tool)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} http://www.nvidia.co...sreqlab_nvd.cab (System Requirements Lab Class)
O16 - DPF: {40F576AD-8680-4F9E-9490-99D069CD665F} http://srtest-cdn.sy...eqlabdetect.cab (Reg Error: Key error.)
O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.aka...vex-2.2.4.1.cab (DLM Control)
O16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} http://www.creative....101/CTSUEng.cab (Creative Software AutoUpdate)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.mi...b?1216098713903 (MUWebControl Class)
O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20270.www2.h...tDetection2.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {C7DB51B4-BCF7-4923-8874-7F1A0DC92277} http://office.micros...ntent/opuc4.cab (Office Update Installation Engine)
O16 - DPF: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} http://blueheronproj...activex/AMC.cab (AxisMediaControlEmb Class)
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (Reg Error: Value error.)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://www.creative....15106/CTPID.cab (Creative Software AutoUpdate Support Package)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O30 - LSA: Authentication Packages - (relog_ap) - C:\WINDOWS\System32\relog_ap.dll (Acronis)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/10/12 14:00:47 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{4e81bf00-8d20-11df-85e5-1caff7117611}\Shell\AutoRun\command - "" = F:\installer.exe
O33 - MountPoints2\{4e81bf00-8d20-11df-85e5-1caff7117611}\Shell\verb\command - "" = F:\installer.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (sasnative32) - C:\WINDOWS\System32\sasnative32.exe ()
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011/01/23 11:16:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kalin\Start Menu\Programs\SUPERAntiSpyware
[2011/01/23 11:16:45 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2011/01/23 10:53:40 | 000,000,000 | ---D | C] -- C:\Program Files\PC Tools Security
[2011/01/23 10:53:40 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PC Tools
[2011/01/23 10:52:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PC Tools
[2011/01/22 18:47:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kalin\Application Data\SUPERAntiSpyware.com
[2011/01/22 18:47:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
[2011/01/22 11:07:31 | 000,098,392 | ---- | C] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2011/01/22 11:07:31 | 000,027,984 | ---- | C] (Sunbelt Software) -- C:\WINDOWS\System32\sbbd.exe
[2011/01/22 11:07:03 | 000,000,000 | ---D | C] -- C:\VIPRERESCUE
[2011/01/22 10:08:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2011/01/21 18:36:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kalin\Application Data\.minecraft
[2011/01/17 22:04:48 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Kalin\Desktop\shoes essay
[2011/01/15 11:58:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kalin\My Documents\Symantec
[2010/12/28 16:15:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kalin\My Documents\Amnesia
[2010/12/28 00:42:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kalin\Start Menu\Programs\Raptr
[2010/12/26 20:16:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kalin\My Documents\Super Laser Racer
[2010/12/26 19:54:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kalin\My Documents\2K Play
[2010/12/26 18:58:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kalin\My Documents\Osmos
[2010/12/26 18:58:25 | 000,444,952 | ---- | C] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll
[2010/12/26 18:58:25 | 000,000,000 | ---D | C] -- C:\Program Files\OpenAL
[2006/07/11 14:29:00 | 000,028,672 | R--- | C] ( ) -- C:\WINDOWS\System32\DivXGraphBuilderCallback.dll
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2011/01/23 11:16:48 | 000,001,688 | ---- | M] () -- C:\Documents and Settings\Kalin\Desktop\SUPERAntiSpyware Free Edition.lnk
[2011/01/23 10:54:25 | 000,649,676 | ---- | M] () -- C:\WINDOWS\System32\drivers\Cat.DB
[2011/01/23 10:52:23 | 000,512,992 | ---- | M] () -- C:\Documents and Settings\Kalin\Desktop\sdsetup.exe
[2011/01/23 10:51:01 | 000,002,115 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2011/01/23 10:26:46 | 000,003,284 | ---- | M] () -- C:\WINDOWS\System32\ANIWZCS{F25C8AC6-CB04-4620-982E-0937B0DE4A97}
[2011/01/23 10:26:31 | 000,000,006 | ---- | M] () -- C:\WINDOWS\System32\ANIWZCSUSERNAME{F25C8AC6-CB04-4620-982E-0937B0DE4A97}
[2011/01/23 10:26:25 | 000,274,372 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2011/01/23 10:26:22 | 000,000,007 | ---- | M] () -- C:\WINDOWS\System32\ANIWZCSUSERNAME
[2011/01/23 10:03:59 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/01/23 10:03:56 | 2146,504,704 | -HS- | M] () -- C:\hiberfil.sys
[2011/01/22 09:53:20 | 000,048,418 | ---- | M] () -- C:\Documents and Settings\Kalin\My Documents\cc_20110122_095316.reg
[2011/01/22 09:48:17 | 000,000,253 | ---- | M] () -- C:\Documents and Settings\Kalin\Application Data\ANICONFIG_{F25C8AC6-CB04-4620-982E-0937B0DE4A97}.ini
[2011/01/21 23:08:00 | 000,000,422 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{7E60004C-CF9C-40F3-B2CB-FB79394A5166}.job
[2011/01/21 23:05:53 | 000,000,368 | -H-- | M] () -- C:\Documents and Settings\Kalin\Application Data\Kalinlog.dat
[2011/01/21 23:01:04 | 000,000,234 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2011/01/21 22:50:36 | 000,002,137 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2011/01/21 22:42:00 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/01/21 20:10:21 | 000,000,868 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2011/01/21 19:00:00 | 000,000,254 | ---- | M] () -- C:\WINDOWS\tasks\RMSchedule.job
[2011/01/21 18:32:49 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/01/20 21:50:25 | 000,041,984 | ---- | M] () -- C:\Documents and Settings\Kalin\My Documents\Darkness.doc
[2011/01/20 21:31:53 | 000,029,184 | ---- | M] () -- C:\Documents and Settings\Kalin\My Documents\letteressay2.doc
[2011/01/20 21:09:45 | 000,027,136 | ---- | M] () -- C:\Documents and Settings\Kalin\My Documents\Violence Response.doc
[2011/01/20 20:03:03 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/01/20 19:48:23 | 002,563,276 | ---- | M] () -- C:\Documents and Settings\Kalin\Desktop\blu-GNGBNG-MeMix.mp3
[2011/01/20 19:38:27 | 005,535,050 | ---- | M] () -- C:\Documents and Settings\Kalin\Desktop\nas - purple (the quiett blend).mp3
[2011/01/18 18:00:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\Pareto UNS.job
[2011/01/16 00:33:00 | 000,000,416 | ---- | M] () -- C:\WINDOWS\tasks\ParetoLogic Update Version2.job
[2011/01/15 17:04:41 | 000,027,136 | ---- | M] () -- C:\Documents and Settings\Kalin\Desktop\letteressay2.doc
[2011/01/15 16:42:47 | 000,030,208 | ---- | M] () -- C:\Documents and Settings\Kalin\Desktop\Nuclear Weapons Today.doc
[2011/01/15 14:32:01 | 000,000,474 | -H-- | M] () -- C:\WINDOWS\tasks\Norton Security Scan for Kalin.job
[2011/01/15 11:53:03 | 000,001,994 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Norton Internet Security.LNK
[2011/01/15 11:51:52 | 000,649,676 | ---- | M] () -- C:\WINDOWS\System32\drivers\NIS\1205000.07D\Cat.DB
[2011/01/15 11:50:08 | 000,126,512 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS
[2011/01/15 11:50:08 | 000,060,808 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\S32EVNT1.DLL
[2011/01/15 11:50:08 | 000,007,456 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT
[2011/01/15 11:50:08 | 000,000,805 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF
[2011/01/15 11:30:42 | 000,001,739 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2011/01/15 11:29:02 | 000,001,940 | ---- | M] () -- C:\Documents and Settings\Kalin\Local Settings\Application Data\{96C87F53-AC72-4604-A9CC-186A49F17F3C}.ini
[2011/01/12 16:08:05 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/01/09 19:50:21 | 006,093,605 | ---- | M] () -- C:\Documents and Settings\Kalin\Desktop\Your [bleep]ing Song.mp3
[2011/01/05 17:14:59 | 006,259,079 | ---- | M] () -- C:\Documents and Settings\Kalin\Desktop\Pac Div-Let Loose.mp3
[2011/01/04 20:19:08 | 002,647,663 | ---- | M] () -- C:\Documents and Settings\Kalin\Desktop\Avalanche-_-Victory-Lap.mp3
[2011/01/02 18:26:23 | 010,050,275 | ---- | M] () -- C:\Documents and Settings\Kalin\Desktop\Arby Wan Kenobi - Machine Drum - Jelly Ear feat. DOOM (Mash-Up).mp3
[2011/01/02 12:06:46 | 004,074,660 | ---- | M] () -- C:\Documents and Settings\Kalin\Desktop\08 Nothing You Can't Do.mp3
[2011/01/02 12:06:46 | 004,051,255 | ---- | M] () -- C:\Documents and Settings\Kalin\Desktop\01 Don'tcha Wanna Be (my neigh.mp3
[2011/01/02 12:06:46 | 003,935,898 | ---- | M] () -- C:\Documents and Settings\Kalin\Desktop\06 COMIN' & GOIN' f. rhymefest.mp3
[2011/01/02 12:06:46 | 003,253,789 | ---- | M] () -- C:\Documents and Settings\Kalin\Desktop\02 Gotta Get Up.mp3
[2011/01/02 12:06:46 | 003,239,996 | ---- | M] () -- C:\Documents and Settings\Kalin\Desktop\05 In My Mind.mp3
[2011/01/02 12:06:46 | 003,019,313 | ---- | M] () -- C:\Documents and Settings\Kalin\Desktop\04 Break Bread.mp3
[2011/01/02 12:06:46 | 002,336,368 | ---- | M] () -- C:\Documents and Settings\Kalin\Desktop\03 Enforce The Law.mp3
[2010/12/26 21:11:53 | 000,059,650 | ---- | M] () -- C:\Documents and Settings\Kalin\Desktop\bapesponge.JPG
[2010/12/26 21:08:15 | 000,356,281 | ---- | M] () -- C:\Documents and Settings\Kalin\Desktop\bape_x_spongebob_by_last_emp.jpg
[2010/12/26 18:58:25 | 000,444,952 | ---- | M] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011/01/23 11:16:48 | 000,001,688 | ---- | C] () -- C:\Documents and Settings\Kalin\Desktop\SUPERAntiSpyware Free Edition.lnk
[2011/01/23 10:54:01 | 000,649,676 | ---- | C] () -- C:\WINDOWS\System32\drivers\Cat.DB
[2011/01/23 10:52:28 | 000,512,992 | ---- | C] () -- C:\Documents and Settings\Kalin\Desktop\sdsetup.exe
[2011/01/23 10:44:54 | 000,002,115 | ---- | C] () -- C:\WINDOWS\epplauncher.mif
[2011/01/22 10:32:18 | 000,000,828 | ---- | C] () -- C:\Documents and Settings\Kalin\exehelperlog.txt
[2011/01/22 09:53:18 | 000,048,418 | ---- | C] () -- C:\Documents and Settings\Kalin\My Documents\cc_20110122_095316.reg
[2011/01/20 21:50:25 | 000,041,984 | ---- | C] () -- C:\Documents and Settings\Kalin\My Documents\Darkness.doc
[2011/01/20 21:31:53 | 000,029,184 | ---- | C] () -- C:\Documents and Settings\Kalin\My Documents\letteressay2.doc
[2011/01/20 21:09:45 | 000,027,136 | ---- | C] () -- C:\Documents and Settings\Kalin\My Documents\Violence Response.doc
[2011/01/20 19:48:16 | 002,563,276 | ---- | C] () -- C:\Documents and Settings\Kalin\Desktop\blu-GNGBNG-MeMix.mp3
[2011/01/20 19:38:05 | 005,535,050 | ---- | C] () -- C:\Documents and Settings\Kalin\Desktop\nas - purple (the quiett blend).mp3
[2011/01/15 17:04:40 | 000,027,136 | ---- | C] () -- C:\Documents and Settings\Kalin\Desktop\letteressay2.doc
[2011/01/15 11:52:59 | 000,001,994 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Norton Internet Security.LNK
[2011/01/15 11:26:49 | 000,002,347 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader 9.lnk
[2011/01/15 11:26:49 | 000,001,739 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2011/01/14 00:53:09 | 000,030,208 | ---- | C] () -- C:\Documents and Settings\Kalin\Desktop\Nuclear Weapons Today.doc
[2011/01/13 21:49:46 | 000,000,254 | ---- | C] () -- C:\WINDOWS\tasks\RMSchedule.job
[2011/01/09 19:50:02 | 006,093,605 | ---- | C] () -- C:\Documents and Settings\Kalin\Desktop\Your [bleep]ing Song.mp3
[2011/01/05 17:14:34 | 006,259,079 | ---- | C] () -- C:\Documents and Settings\Kalin\Desktop\Pac Div-Let Loose.mp3
[2011/01/04 20:18:48 | 002,647,663 | ---- | C] () -- C:\Documents and Settings\Kalin\Desktop\Avalanche-_-Victory-Lap.mp3
[2011/01/04 17:13:33 | 000,001,940 | ---- | C] () -- C:\Documents and Settings\Kalin\Local Settings\Application Data\{96C87F53-AC72-4604-A9CC-186A49F17F3C}.ini
[2011/01/04 17:08:24 | 000,001,940 | ---- | C] () -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\{96C87F53-AC72-4604-A9CC-186A49F17F3C}.ini
[2011/01/02 18:25:48 | 010,050,275 | ---- | C] () -- C:\Documents and Settings\Kalin\Desktop\Arby Wan Kenobi - Machine Drum - Jelly Ear feat. DOOM (Mash-Up).mp3
[2011/01/02 12:06:46 | 004,074,660 | ---- | C] () -- C:\Documents and Settings\Kalin\Desktop\08 Nothing You Can't Do.mp3
[2011/01/02 12:06:46 | 004,051,255 | ---- | C] () -- C:\Documents and Settings\Kalin\Desktop\01 Don'tcha Wanna Be (my neigh.mp3
[2011/01/02 12:06:46 | 003,935,898 | ---- | C] () -- C:\Documents and Settings\Kalin\Desktop\06 COMIN' & GOIN' f. rhymefest.mp3
[2011/01/02 12:06:46 | 003,253,789 | ---- | C] () -- C:\Documents and Settings\Kalin\Desktop\02 Gotta Get Up.mp3
[2011/01/02 12:06:46 | 003,239,996 | ---- | C] () -- C:\Documents and Settings\Kalin\Desktop\05 In My Mind.mp3
[2011/01/02 12:06:46 | 003,019,313 | ---- | C] () -- C:\Documents and Settings\Kalin\Desktop\04 Break Bread.mp3
[2011/01/02 12:06:46 | 002,336,368 | ---- | C] () -- C:\Documents and Settings\Kalin\Desktop\03 Enforce The Law.mp3
[2010/12/26 21:11:53 | 000,059,650 | ---- | C] () -- C:\Documents and Settings\Kalin\Desktop\bapesponge.JPG
[2010/12/26 21:08:10 | 000,356,281 | ---- | C] () -- C:\Documents and Settings\Kalin\Desktop\bape_x_spongebob_by_last_emp.jpg
[2010/12/19 01:15:07 | 000,258,080 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-515967899-1085031214-682003330-1012-0.dat
[2010/12/19 01:15:05 | 000,194,646 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
[2010/11/29 19:01:58 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2010/09/12 17:56:04 | 000,000,128 | ---- | C] () -- C:\Documents and Settings\Kalin\Local Settings\Application Data\fusioncache.dat
[2010/09/06 15:38:34 | 000,000,253 | ---- | C] () -- C:\Documents and Settings\Kalin\Application Data\ANICONFIG_{F25C8AC6-CB04-4620-982E-0937B0DE4A97}.ini
[2010/05/30 11:28:41 | 000,262,144 | ---- | C] () -- C:\WINDOWS\System32\wlanapp.dll
[2010/05/30 11:28:41 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\aIPH.dll
[2010/05/30 11:28:41 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\JJAKEn.dll
[2010/05/30 11:28:41 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\AQCKGen.dll
[2010/05/30 11:28:41 | 000,045,115 | ---- | C] () -- C:\WINDOWS\System32\ANICtl.dll
[2010/05/30 11:28:20 | 000,048,640 | ---- | C] () -- C:\WINDOWS\System32\ANIO64.sys
[2010/05/30 11:28:20 | 000,029,411 | ---- | C] () -- C:\WINDOWS\System32\ANIO.sys
[2010/05/30 11:28:06 | 000,692,224 | ---- | C] () -- C:\WINDOWS\System32\ANIOWPS.dll
[2010/05/30 11:28:03 | 000,315,392 | ---- | C] () -- C:\WINDOWS\System32\ANIOApi.dll
[2010/05/17 18:10:05 | 000,000,251 | ---- | C] () -- C:\Documents and Settings\Kalin\Application Data\ANICONFIG_{BCFD69E0-FF12-4C4C-A3B8-BCBB8B2A3B7C}.ini
[2010/04/02 16:17:34 | 000,179,091 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2010/01/25 19:16:01 | 000,003,584 | ---- | C] () -- C:\Documents and Settings\Kalin\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/01/20 22:05:56 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\Kalin\Local Settings\Application Data\PUTTY.RND
[2010/01/20 22:03:04 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\Kalin\Application Data\winscp.rnd
[2010/01/07 17:28:08 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2009/10/13 12:49:32 | 000,000,101 | ---- | C] () -- C:\WINDOWS\CMMIXER.INI
[2009/10/12 16:52:40 | 000,020,941 | ---- | C] () -- C:\WINDOWS\cmijack.ini
[2009/10/12 16:52:40 | 000,000,740 | ---- | C] () -- C:\WINDOWS\cmaudio.ini
[2009/10/12 16:52:39 | 000,000,092 | ---- | C] () -- C:\WINDOWS\CMISETUP.INI
[2009/10/12 16:52:39 | 000,000,026 | ---- | C] () -- C:\WINDOWS\CMCDPLAY.INI
[2009/09/23 13:20:24 | 000,000,025 | ---- | C] () -- C:\WINDOWS\mixerdef.ini
[2009/09/21 14:44:04 | 000,002,696 | ---- | C] () -- C:\WINDOWS\MIXDEF.INI
[2009/09/14 07:48:53 | 000,000,059 | ---- | C] () -- C:\WINDOWS\picload.INI
[2009/07/09 17:44:59 | 000,000,015 | ---- | C] () -- C:\WINDOWS\System32\Ve_pm.dll
[2009/07/09 17:44:59 | 000,000,007 | ---- | C] () -- C:\WINDOWS\System32\Voicech.dll
[2009/07/07 09:14:07 | 000,000,175 | ---- | C] () -- C:\WINDOWS\maxlink.ini
[2009/03/02 11:33:32 | 000,067,584 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2009/02/13 22:56:51 | 000,162,304 | ---- | C] () -- C:\Program Files\UNWISE.EXE
[2009/01/13 16:27:48 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2009/01/01 16:15:53 | 000,000,074 | ---- | C] () -- C:\WINDOWS\MPLAYER.INI
[2008/12/30 11:10:08 | 000,106,496 | ---- | C] () -- C:\WINDOWS\rtpmsi32.dll
[2008/11/27 08:59:10 | 000,000,088 | RHS- | C] () -- C:\WINDOWS\System32\A8B3F0B13E.sys
[2008/11/06 15:49:02 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008/11/06 15:26:32 | 000,003,870 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys
[2008/11/06 15:23:19 | 000,000,005 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\DragToDiscUserNameE.txt
[2008/11/06 15:07:11 | 000,056,056 | ---- | C] () -- C:\WINDOWS\System32\DLAAPI_W.DLL
[2008/11/04 15:06:20 | 000,000,044 | ---- | C] () -- C:\WINDOWS\CmdSlideshow.INI
[2008/10/28 20:22:49 | 000,000,607 | ---- | C] () -- C:\WINDOWS\Uninstall Manager.INI
[2008/09/17 22:55:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2008/08/08 14:23:17 | 000,000,035 | ---- | C] () -- C:\WINDOWS\Ulead32.INI
[2008/07/29 18:08:58 | 000,000,056 | ---- | C] () -- C:\WINDOWS\System32\40964FEA11.sys
[2008/07/29 14:43:42 | 000,172,032 | ---- | C] () -- C:\WINDOWS\System32\libssl32.dll
[2008/07/29 14:29:09 | 000,020,531 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\R49LW
[2008/07/29 14:27:52 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\Smdd32.dll
[2008/07/29 14:27:52 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\Smcb32.dll
[2008/07/29 14:27:52 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\Smb832.dll
[2008/07/29 14:27:52 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\Smc732.dll
[2008/07/29 14:27:52 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\smCA32.dll
[2008/07/29 14:27:52 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\Smbd32.dll
[2008/07/29 14:27:51 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\smB332.dll
[2008/07/29 14:27:51 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\Smb432.dll
[2008/07/29 14:27:51 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\Smb032.dll
[2008/07/29 14:27:51 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\Sma332.dll
[2008/07/29 14:27:51 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\Sm9e32.dll
[2008/07/29 14:27:51 | 000,059,904 | ---- | C] () -- C:\WINDOWS\System32\Raven32.dll
[2008/07/29 14:27:51 | 000,054,784 | ---- | C] () -- C:\WINDOWS\System32\Sm9132.dll
[2008/07/29 14:27:51 | 000,038,400 | ---- | C] () -- C:\WINDOWS\System32\Smb632.dll
[2008/07/29 14:27:50 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\Dspimg32.dll
[2008/07/29 14:27:50 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\MS32RES.DLL
[2008/07/29 14:27:50 | 000,036,352 | ---- | C] () -- C:\WINDOWS\System32\Aspi32.dll
[2008/07/29 14:27:50 | 000,000,062 | ---- | C] () -- C:\WINDOWS\System32\mice.ini
[2008/07/29 14:27:49 | 000,348,160 | ---- | C] () -- C:\WINDOWS\System32\MiiDSR.dll
[2008/07/29 14:27:49 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\Mphase32.dll
[2008/07/29 14:27:49 | 000,000,072 | ---- | C] () -- C:\WINDOWS\System32\MSCANDC.INI
[2008/07/29 14:27:49 | 000,000,025 | ---- | C] () -- C:\WINDOWS\System32\MSAPN.INI
[2008/07/18 08:09:52 | 000,000,165 | ---- | C] () -- C:\WINDOWS\startUp manager.INI
[2008/07/17 10:26:22 | 000,002,516 | ---- | C] () -- C:\WINDOWS\System32\P16X.ini
[2008/07/17 10:26:22 | 000,000,026 | ---- | C] () -- C:\WINDOWS\System32\ctzapxx.ini
[2008/07/15 12:55:03 | 000,815,104 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2008/07/15 12:55:02 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008/07/15 12:42:00 | 000,002,939 | ---- | C] () -- C:\WINDOWS\System32\iconcfg.ini
[2008/07/15 11:14:56 | 000,044,491 | ---- | C] () -- C:\WINDOWS\System32\MiiIniFile13.ini
[2008/07/14 22:10:43 | 000,000,168 | RHS- | C] () -- C:\WINDOWS\System32\11EA4F9640.sys
[2008/07/14 21:31:33 | 000,000,099 | ---- | C] () -- C:\WINDOWS\QUICKEN.INI
[2008/07/14 20:52:17 | 000,000,425 | ---- | C] () -- C:\WINDOWS\cfcread.INI
[2008/06/26 22:09:54 | 000,000,680 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2008/06/26 13:28:54 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2008/04/07 09:00:00 | 000,004,096 | ---- | C] () -- C:\WINDOWS\System32\drivers\cvintdrv.sys
[2008/02/04 17:23:10 | 000,693,792 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL
[2007/09/27 09:51:02 | 000,020,698 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2007/09/27 09:48:48 | 000,030,628 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2007/09/27 09:48:28 | 000,031,698 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2007/01/17 09:57:34 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2006/08/09 04:19:50 | 000,520,192 | ---- | C] () -- C:\WINDOWS\System32\CddbPlaylist2Roxio.dll
[2006/08/09 04:19:50 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\CddbFileTaggerRoxio.dll
[2006/08/09 01:00:00 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\besched.dll
[2006/03/17 03:21:59 | 000,000,368 | -H-- | C] () -- C:\Documents and Settings\Kalin\Application Data\Kalinlog.dat
[2005/07/15 10:35:24 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2003/10/02 01:00:00 | 000,208,896 | ---- | C] () -- C:\WINDOWS\System32\lockout.dll
[2003/10/02 01:00:00 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\lockres.dll
[2003/08/12 10:58:40 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\lttls13n.dll
[2003/08/12 10:58:32 | 000,708,608 | ---- | C] () -- C:\WINDOWS\System32\ltcry13n.dll
[2003/08/12 10:58:22 | 000,118,784 | ---- | C] () -- C:\WINDOWS\System32\lfkodak.dll
[2003/08/12 10:58:20 | 000,338,944 | ---- | C] () -- C:\WINDOWS\System32\lffpx7.dll
[2003/07/08 12:41:48 | 000,047,616 | ---- | C] () -- C:\WINDOWS\System32\P16X.dll
[2002/01/14 08:41:55 | 000,001,024 | ---- | C] () -- C:\WINDOWS\System32\vttdrve.dll
========== LOP Check ==========
[2008/08/20 09:12:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Acronis
[2010/01/09 21:05:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Age of Empires 3
[2009/06/17 13:53:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Cached Installations
[2009/10/26 14:22:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DriverCure
[2009/03/31 09:22:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Fellowes
[2008/08/29 19:31:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FileOpen
[2008/12/06 14:22:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\GARMIN
[2009/10/11 13:21:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Laplink
[2008/11/07 10:14:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LightScribe
[2009/01/10 16:39:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Linksys
[2011/01/22 10:08:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2009/10/25 17:52:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MyDefrag
[2009/07/10 15:40:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\National Instruments
[2009/06/17 13:05:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ParetoLogic
[2009/06/17 13:51:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ParetoLogic Anti-Spyware
[2008/07/15 11:06:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Drivers Headquarters
[2009/09/17 09:22:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PCSettings
[2010/12/18 21:04:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PMB Files
[2008/07/28 07:52:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Prevx
[2009/11/16 11:03:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\RapidSolution
[2009/10/24 13:33:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Spearit
[2009/11/15 09:57:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Systweak
[2008/07/15 10:24:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TechSmith
[2011/01/23 11:16:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2009/07/07 09:12:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TextBridge
[2010/11/28 17:45:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TrackMania
[2008/11/04 22:57:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WinZip
[2008/10/06 14:50:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[2010/04/18 12:24:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2010/01/10 19:37:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2011/01/21 18:36:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kalin\Application Data\.minecraft
[2010/01/10 13:16:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kalin\Application Data\FileOpen
[2011/01/21 22:02:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kalin\Application Data\FrostWire
[2010/01/17 20:58:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kalin\Application Data\GrabPro
[2010/06/19 23:22:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kalin\Application Data\LolClient
[2010/08/06 11:31:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kalin\Application Data\Orbit
[2010/08/06 11:26:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kalin\Application Data\ProgSense
[2010/12/28 15:37:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kalin\Application Data\Raptr
[2009/10/24 13:33:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kalin\Application Data\Spearit
[2010/08/24 20:22:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kalin\Application Data\SystemRequirementsLab
[2010/01/11 20:51:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kalin\Application Data\Systweak
[2010/06/27 18:24:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kalin\Application Data\Tific
[2010/01/05 16:56:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kalin\Application Data\Windows Desktop Search
[2010/01/05 16:57:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kalin\Application Data\Windows Search
[2009/10/25 17:54:10 | 000,000,218 | ---- | M] () -- C:\WINDOWS\Tasks\Advanced System Optimizer Scheduler.job
[2010/12/05 04:18:00 | 000,000,448 | ---- | M] () -- C:\WINDOWS\Tasks\Driver Robot.job
[2011/01/18 18:00:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\Pareto UNS.job
[2011/01/16 00:33:00 | 000,000,416 | ---- | M] () -- C:\WINDOWS\Tasks\ParetoLogic Update Version2.job
[2011/01/21 19:00:00 | 000,000,254 | ---- | M] () -- C:\WINDOWS\Tasks\RMSchedule.job
[2011/01/21 23:01:04 | 000,000,234 | ---- | M] () -- C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job
[2011/01/21 23:08:00 | 000,000,422 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{7E60004C-CF9C-40F3-B2CB-FB79394A5166}.job
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 88 bytes -> C:\UFantasy.ini:SummaryInformation
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2
@Alternate Data Stream - 104 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D1B5B4F1
< End of report >
Edited by r1sk, 24 January 2011 - 05:50 PM.