Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

System Refuses to Boot


  • This topic is locked This topic is locked

#1
clutsta

clutsta

    Member

  • Member
  • PipPip
  • 28 posts
Hello geeks to go,

My name is Andre and yesterday I tried to open some pdf's which wouldn't open. I did a quick restart and boom! The system refuses to boot in any mode, and comes up with the dreaded BSOD.

Here's what is listed in the Technical Information:

STOP: 0x0000007B (0xF78A2524, 0xc0000034, 0x00000000, 0x00000000)


After doing a little googling, I inserted my original copy of XP, and performed CHKDSK, Repair, FIXMBR and FIXBOOT, with no success.

I then made a Rescue CD from AVG (you can all flame me for using AVG later) which I updated, and found 4 viruses which were deleted. I have only recently read that I was supposed to re-name, not delete these viruses. Perhaps that could be part of my problem? Instincts got the better of me I think.

Anyway, I did some more internet exploring and found this thread: http://www.geekstogo...top-0x0000007b/ (which is how I found this site) which sounded alot like the issues I am having. I could be completely incorrect though as i'm somewhat of a noob when it comes to all of this. I followed the MBR repair fix and mounted the NTBR_CD iso, and it runs perfectly until this error pops up after the language selection screen:

Can't open CD driver CDRCACH

SHSUCDX can't install.

ERROR: Failure loading; unable to find CD-ROM drive!

ERROR: If you have multiple CD-ROM drives, please remove the other

ERROR: CD-ROM discs and try again. Otherwise your disc may be corrupt

ERROR: or the CD-ROM driver does not correctly support your system.

ERROR:

ERROR: Please reboot your computer now.



Before you ask- yes I do have the boot sequence correct.

Any help will be greatly appreciated. I'm pulling my hair out over here!

Thanks in advance,



Andre

Edited by clutsta, 23 February 2011 - 06:13 PM.

  • 0

Advertisements


#2
clutsta

clutsta

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
Here's my OTL log file:


OTL logfile created on: 2/24/2011 7:25:52 PM - Run
OTLPE by OldTimer - Version 3.1.44.3 Folder = X:\Programs\OTLPE
Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 86.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 97.00% Paging File free
Paging file location(s): C:\pagefile.sys 1500 3048 [binary data]

%SystemDrive% = D: | %SystemRoot% = D:\WINDOWS | %ProgramFiles% = D:\Program Files
Drive C: | 465.75 Gb Total Space | 46.91 Gb Free Space | 10.07% Space Free | Partition Type: NTFS
Drive D: | 148.97 Gb Total Space | 54.40 Gb Free Space | 36.52% Space Free | Partition Type: NTFS
Drive E: | 3.73 Gb Total Space | 3.73 Gb Free Space | 100.00% Space Free | Partition Type: FAT32
Drive X: | 284.08 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet001

========== Win32 Services (SafeList) ==========

SRV - [2009/08/20 17:56:01 | 000,908,056 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto] -- D:\Program Files\AVG\AVG8\avgemc.exe -- (avg8emc)
SRV - [2009/08/20 17:55:55 | 000,297,752 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto] -- D:\Program Files\AVG\AVG8\avgwdsvc.exe -- (avg8wd)
SRV - [2009/03/03 20:25:12 | 000,621,056 | ---- | M] (Nokia.) [On_Demand] -- D:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2008/12/16 05:59:50 | 000,150,040 | ---- | M] (Logitech Inc.) [Auto] -- D:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
SRV - [2007/06/04 22:20:32 | 000,177,704 | ---- | M] () [Auto] -- D:\WINDOWS\system32\PSIService.exe -- (ProtexisLicensing)
SRV - [2006/06/08 11:02:50 | 000,069,632 | ---- | M] (Creative Labs) [On_Demand] -- D:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe -- (Creative Labs Licensing Service)
SRV - [2006/02/03 05:58:20 | 000,086,016 | ---- | M] (Logitech Inc.) [Auto] -- D:\Program Files\Common Files\Logitech\Bluetooth\LBTSERV.EXE -- (LBTServ)
SRV - [2004/09/20 02:29:48 | 000,139,264 | ---- | M] (OTi) [Auto] -- D:\WINDOWS\System32\UStorSrv.exe -- (UStorage Server Service)
SRV - [2002/12/17 02:26:22 | 007,520,337 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe -- (MSSQL$SONY_MEDIAMGR)
SRV - [2002/12/17 02:23:30 | 000,311,872 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE -- (SQLAgent$SONY_MEDIAMGR)


========== Driver Services (All) ==========

DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand] -- -- (USBAAPL)
DRV - File not found [Kernel | On_Demand] -- -- (SymIMMP)
DRV - File not found [Kernel | On_Demand] -- -- (SymIM)
DRV - File not found [Kernel | Disabled] -- -- (Simbad)
DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
DRV - File not found [Kernel | On_Demand] -- -- (Pcouffin)
DRV - File not found [Kernel | System] -- -- (PCIDump)
DRV - File not found [Kernel | On_Demand] -- -- (PalmUSBD)
DRV - File not found [Kernel | System] -- -- (lbrtfdc)
DRV - File not found [Kernel | On_Demand] -- -- (cpuz132)
DRV - File not found [Kernel | System] -- -- (Changer)
DRV - File not found [Kernel | On_Demand] -- -- (bvrp_pci)
DRV - File not found [Kernel | Disabled] -- -- (Atdisk)
DRV - File not found [Kernel | Disabled] -- -- (Abiosdsk)
DRV - [2010/11/02 10:17:02 | 000,040,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\ndproxy.sys -- (NDProxy)
DRV - [2010/10/16 13:55:00 | 009,623,680 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2010/08/26 08:39:50 | 000,357,248 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- D:\WINDOWS\system32\drivers\srv.sys -- (Srv)
DRV - [2010/05/10 13:41:30 | 000,067,656 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System] -- D:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010/02/24 08:11:07 | 000,455,680 | ---- | M] (Microsoft Corporation) [File_System | System] -- D:\WINDOWS\system32\drivers\mrxsmb.sys -- (MRxSmb)
DRV - [2010/02/17 13:25:48 | 000,012,872 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System] -- D:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2009/10/20 11:20:16 | 000,265,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\http.sys -- (HTTP)
DRV - [2009/08/20 17:56:04 | 000,335,240 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System] -- D:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2009/08/20 17:56:04 | 000,027,784 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System] -- D:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2009/06/24 06:18:41 | 000,092,928 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\WINDOWS\System32\drivers\ksecdd.sys -- (KSecDD)
DRV - [2009/05/11 18:29:16 | 000,108,552 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System] -- D:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2009/03/19 01:32:48 | 000,023,400 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV - [2009/03/18 22:48:18 | 000,136,704 | ---- | M] (Nokia) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\nmwcdnsu.sys -- (nmwcdnsu)
DRV - [2009/03/18 22:48:12 | 000,008,320 | ---- | M] (Nokia) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc)
DRV - [2009/02/08 16:37:56 | 000,007,808 | ---- | M] (Nokia) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2009/02/08 16:37:48 | 000,007,808 | ---- | M] (Nokia) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2009/02/08 16:37:46 | 000,022,016 | ---- | M] (Nokia) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2009/02/08 16:37:46 | 000,017,664 | ---- | M] (Nokia) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2009/01/19 07:01:16 | 000,717,296 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot] -- D:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2008/12/17 01:01:20 | 000,041,752 | ---- | M] (Logitech Inc.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2008/12/17 01:00:12 | 000,768,024 | ---- | M] (Logitech Inc.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\lvrs.sys -- (LVRS)
DRV - [2008/12/17 00:53:44 | 002,686,104 | ---- | M] (Logitech Inc.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\LV302V32.SYS -- (PID_PEPI) Logitech QuickCam IM(PID_PEPI)
DRV - [2008/12/17 00:53:22 | 000,013,848 | ---- | M] (Logitech Inc.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\lv302af.sys -- (pepifilter)
DRV - [2008/12/16 05:58:54 | 000,025,624 | ---- | M] () [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
DRV - [2008/08/25 19:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008/08/14 05:04:36 | 000,138,496 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\System32\drivers\afd.sys -- (AFD)
DRV - [2008/06/25 11:47:00 | 000,036,864 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\l1e51x86.sys -- (L1e)
DRV - [2008/06/20 06:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\system32\drivers\tcpip.sys -- (Tcpip)
DRV - [2008/06/13 04:11:16 | 004,754,944 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008/04/13 19:13:22 | 000,139,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\rdpwd.sys -- (RDPWD)
DRV - [2008/04/13 19:13:21 | 000,021,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\tdtcp.sys -- (TDTCP)
DRV - [2008/04/13 19:13:20 | 000,040,840 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\system32\drivers\termdd.sys -- (TermDD)
DRV - [2008/04/13 19:13:20 | 000,012,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\tdpipe.sys -- (TDPIPE)
DRV - [2008/04/13 14:45:36 | 000,026,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\usbser.sys -- (usbser)
DRV - [2008/04/13 14:45:34 | 000,015,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\usbscan.sys -- (usbscan)
DRV - [2008/04/13 14:28:39 | 000,175,744 | ---- | M] (Microsoft Corporation) [File_System | System] -- D:\WINDOWS\system32\drivers\rdbss.sys -- (Rdbss)
DRV - [2008/04/13 14:21:00 | 000,162,816 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\system32\drivers\netbt.sys -- (NetBT)
DRV - [2008/04/13 14:20:42 | 000,091,520 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\ndiswan.sys -- (NdisWan)
DRV - [2008/04/13 14:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\WINDOWS\System32\drivers\ndis.sys -- (NDIS)
DRV - [2008/04/13 14:19:48 | 000,048,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\raspptp.sys -- (PptpMiniport) WAN Miniport (PPTP)
DRV - [2008/04/13 14:19:43 | 000,051,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\rasl2tp.sys -- (Rasl2tp) WAN Miniport (L2TP)
DRV - [2008/04/13 14:19:42 | 000,075,264 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\system32\drivers\ipsec.sys -- (IPSec)
DRV - [2008/04/13 14:18:00 | 000,052,480 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\system32\drivers\i8042prt.sys -- (i8042prt)
DRV - [2008/04/13 14:17:18 | 000,083,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\wdmaud.sys -- (wdmaud)
DRV - [2008/04/13 14:17:05 | 000,105,344 | ---- | M] (Microsoft Corporation) [File_System | Boot] -- D:\WINDOWS\System32\drivers\mup.sys -- (Mup)
DRV - [2008/04/13 14:15:55 | 000,060,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\sysaudio.sys -- (sysaudio)
DRV - [2008/04/13 14:15:53 | 000,574,976 | ---- | M] (Microsoft Corporation) [File_System | Disabled] -- D:\WINDOWS\System32\drivers\ntfs.sys -- (Ntfs)
DRV - [2008/04/13 14:15:45 | 000,064,512 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\system32\drivers\serial.sys -- (Serial)
DRV - [2008/04/13 14:14:29 | 000,143,744 | ---- | M] (Microsoft Corporation) [File_System | Disabled] -- D:\WINDOWS\System32\drivers\fastfat.sys -- (Fastfat)
DRV - [2008/04/13 14:14:21 | 000,063,744 | ---- | M] (Microsoft Corporation) [File_System | Disabled] -- D:\WINDOWS\System32\drivers\cdfs.sys -- (Cdfs)
DRV - [2008/04/13 14:00:19 | 000,030,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\modem.sys -- (Modem)
DRV - [2008/04/13 13:57:32 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\raspppoe.sys -- (RasPppoe)
DRV - [2008/04/13 13:57:27 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\asyncmac.sys -- (AsyncMac)
DRV - [2008/04/13 13:57:27 | 000,010,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\ndistapi.sys -- (NdisTapi)
DRV - [2008/04/13 13:57:21 | 000,034,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\wanarp.sys -- (Wanarp)
DRV - [2008/04/13 13:57:15 | 000,152,832 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\ipnat.sys -- (IpNat)
DRV - [2008/04/13 13:57:07 | 000,020,864 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\ipinip.sys -- (IpInIp)
DRV - [2008/04/13 13:56:49 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\usb8023x.sys -- (usb_rndisx)
DRV - [2008/04/13 13:56:49 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\usb8023.sys -- (USB_RNDIS)
DRV - [2008/04/13 13:56:38 | 000,069,120 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\psched.sys -- (PSched)
DRV - [2008/04/13 13:56:32 | 000,035,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\msgpc.sys -- (Gpc)
DRV - [2008/04/13 13:56:02 | 000,034,688 | ---- | M] (Microsoft Corporation) [File_System | System] -- D:\WINDOWS\system32\drivers\netbios.sys -- (NetBIOS)
DRV - [2008/04/13 13:55:58 | 000,014,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\ndisuio.sys -- (Ndisuio)
DRV - [2008/04/13 13:54:28 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\irenum.sys -- (IRENUM)
DRV - [2008/04/13 13:53:34 | 000,036,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\ip6fw.sys -- (Ip6Fw)
DRV - [2008/04/13 13:51:25 | 000,061,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\nic1394.sys -- (NIC1394)
DRV - [2008/04/13 13:51:25 | 000,060,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\arp1394.sys -- (Arp1394)
DRV - [2008/04/13 13:51:25 | 000,059,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\atmarpc.sys -- (Atmarpc)
DRV - [2008/04/13 13:47:37 | 000,025,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\usbprint.sys -- (usbprint)
DRV - [2008/04/13 13:46:25 | 000,085,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\nabtsfec.sys -- (NABTSFEC)
DRV - [2008/04/13 13:46:24 | 000,019,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\wstcodec.sys -- (WSTCODEC)
DRV - [2008/04/13 13:46:23 | 000,017,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\ccdecode.sys -- (CCDECODE)
DRV - [2008/04/13 13:46:23 | 000,011,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\slip.sys -- (SLIP)
DRV - [2008/04/13 13:46:22 | 000,010,880 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\ndisip.sys -- (NdisIP)
DRV - [2008/04/13 13:46:21 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\streamip.sys -- (streamip)
DRV - [2008/04/13 13:46:20 | 000,121,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\usbvideo.sys -- (usbvideo) USB Video Device (WDM)
DRV - [2008/04/13 13:46:18 | 000,061,696 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\WINDOWS\system32\drivers\ohci1394.sys -- (ohci1394)
DRV - [2008/04/13 13:45:40 | 000,032,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\usbccgp.sys -- (usbccgp)
DRV - [2008/04/13 13:45:38 | 000,059,520 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\usbhub.sys -- (usbhub)
DRV - [2008/04/13 13:45:38 | 000,026,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\usbstor.sys -- (USBSTOR)
DRV - [2008/04/13 13:45:36 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\usbehci.sys -- (usbehci)
DRV - [2008/04/13 13:45:36 | 000,020,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\usbuhci.sys -- (usbuhci)
DRV - [2008/04/13 13:45:27 | 000,010,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\hidusb.sys -- (HidUsb)
DRV - [2008/04/13 13:45:13 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\drmkaud.sys -- (drmkaud)
DRV - [2008/04/13 13:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) USB Audio Driver (WDM)
DRV - [2008/04/13 13:45:09 | 000,172,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\kmixer.sys -- (kmixer)
DRV - [2008/04/13 13:45:09 | 000,056,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\swmidi.sys -- (swmidi)
DRV - [2008/04/13 13:45:07 | 000,006,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\splitter.sys -- (splitter)
DRV - [2008/04/13 13:45:01 | 000,052,864 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\dmusic.sys -- (DMusic)
DRV - [2008/04/13 13:44:48 | 000,799,744 | ---- | M] (Microsoft Corp., Veritas Software) [Kernel | Disabled] -- D:\WINDOWS\system32\drivers\dmboot.sys -- (dmboot)
DRV - [2008/04/13 13:44:46 | 000,153,344 | ---- | M] (Microsoft Corp., Veritas Software) [Kernel | Disabled] -- D:\WINDOWS\system32\drivers\dmio.sys -- (dmio)
DRV - [2008/04/13 13:44:40 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\System32\drivers\vga.sys -- (VgaSave)
DRV - [2008/04/13 13:41:22 | 000,018,560 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\i2omp.sys -- (i2omp)
DRV - [2008/04/13 13:41:22 | 000,008,576 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\System32\drivers\i2omgmt.sys -- (i2omgmt)
DRV - [2008/04/13 13:41:01 | 000,052,352 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\WINDOWS\System32\drivers\volsnap.sys -- (VolSnap)
DRV - [2008/04/13 13:40:58 | 000,042,112 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\system32\drivers\imapi.sys -- (Imapi)
DRV - [2008/04/13 13:40:49 | 000,019,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\WINDOWS\System32\drivers\partmgr.sys -- (PartMgr)
DRV - [2008/04/13 13:40:48 | 000,011,392 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\System32\drivers\sfloppy.sys -- (Sfloppy)
DRV - [2008/04/13 13:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\WINDOWS\system32\drivers\disk.sys -- (Disk)
DRV - [2008/04/13 13:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\system32\drivers\cdrom.sys -- (Cdrom)
DRV - [2008/04/13 13:40:31 | 000,005,376 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\viaide.sys -- (ViaIde)
DRV - [2008/04/13 13:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\WINDOWS\system32\drivers\atapi.sys -- (atapi)
DRV - [2008/04/13 13:40:29 | 000,005,504 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\WINDOWS\system32\drivers\intelide.sys -- (IntelIde)
DRV - [2008/04/13 13:40:27 | 000,057,600 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\system32\drivers\redbook.sys -- (redbook)
DRV - [2008/04/13 13:40:25 | 000,027,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\fdc.sys -- (Fdc)
DRV - [2008/04/13 13:40:25 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\flpydisk.sys -- (Flpydisk)
DRV - [2008/04/13 13:40:12 | 000,015,744 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\serenum.sys -- (serenum)
DRV - [2008/04/13 13:40:10 | 000,080,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\parport.sys -- (Parport)
DRV - [2008/04/13 13:39:53 | 000,004,352 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\swenum.sys -- (swenum)
DRV - [2008/04/13 13:39:52 | 000,007,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\mskssrv.sys -- (MSKSSRV)
DRV - [2008/04/13 13:39:51 | 000,004,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\mspqm.sys -- (MSPQM)
DRV - [2008/04/13 13:39:50 | 000,005,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\mstee.sys -- (MSTEE)
DRV - [2008/04/13 13:39:50 | 000,005,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\mspclock.sys -- (MSPCLOCK)
DRV - [2008/04/13 13:39:48 | 000,014,592 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\system32\drivers\kbdhid.sys -- (kbdhid)
DRV - [2008/04/13 13:39:47 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\system32\drivers\kbdclass.sys -- (Kbdclass)
DRV - [2008/04/13 13:39:47 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\system32\drivers\mouclass.sys -- (Mouclass)
DRV - [2008/04/13 13:39:46 | 000,384,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\update.sys -- (Update)
DRV - [2008/04/13 13:39:46 | 000,042,368 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\WINDOWS\System32\drivers\mountmgr.sys -- (MountMgr)
DRV - [2008/04/13 13:36:52 | 000,073,472 | ---- | M] (Microsoft Corporation) [File_System | Boot] -- D:\WINDOWS\system32\drivers\sr.sys -- (sr)
DRV - [2008/04/13 13:36:46 | 000,015,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\mssmbios.sys -- (mssmbios)
DRV - [2008/04/13 13:36:44 | 000,068,224 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\WINDOWS\system32\drivers\pci.sys -- (PCI)
DRV - [2008/04/13 13:36:43 | 000,120,192 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\System32\drivers\pcmcia.sys -- (Pcmcia)
DRV - [2008/04/13 13:36:42 | 000,037,248 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\WINDOWS\system32\drivers\isapnp.sys -- (isapnp)
DRV - [2008/04/13 13:36:40 | 000,042,240 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\viaagp.sys -- (viaagp)
DRV - [2008/04/13 13:36:39 | 000,044,928 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\agpCPQ.sys -- (agpCPQ)
DRV - [2008/04/13 13:36:39 | 000,043,008 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\amdagp.sys -- (amdagp)
DRV - [2008/04/13 13:36:39 | 000,040,960 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\sisagp.sys -- (sisagp)
DRV - [2008/04/13 13:36:38 | 000,042,752 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\alim1541.sys -- (alim1541)
DRV - [2008/04/13 13:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\agp440.sys -- (agp440)
DRV - [2008/04/13 13:36:35 | 000,187,776 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\WINDOWS\system32\drivers\acpi.sys -- (ACPI)
DRV - [2008/04/13 13:33:28 | 000,044,544 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\System32\drivers\fips.sys -- (Fips)
DRV - [2008/04/13 13:32:59 | 000,129,792 | ---- | M] (Microsoft Corporation) [File_System | Boot] -- D:\WINDOWS\system32\drivers\fltmgr.sys -- (FltMgr)
DRV - [2008/04/13 13:32:51 | 000,196,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\rdpdr.sys -- (rdpdr)
DRV - [2008/04/13 13:32:44 | 000,180,608 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- D:\WINDOWS\system32\drivers\mrxdav.sys -- (MRxDAV)
DRV - [2008/04/13 13:32:39 | 000,030,848 | ---- | M] (Microsoft Corporation) [File_System | System] -- D:\WINDOWS\System32\drivers\npfs.sys -- (Npfs)
DRV - [2008/04/13 13:32:39 | 000,019,072 | ---- | M] (Microsoft Corporation) [File_System | System] -- D:\WINDOWS\System32\drivers\msfs.sys -- (Msfs)
DRV - [2008/04/13 13:32:36 | 000,066,048 | ---- | M] (Microsoft Corporation) [File_System | Disabled] -- D:\WINDOWS\System32\drivers\udfs.sys -- (Udfs)
DRV - [2008/04/13 13:31:32 | 000,036,352 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\system32\drivers\intelppm.sys -- (intelppm)
DRV - [2008/04/13 11:39:23 | 000,142,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\aec.sys -- (aec)
DRV - [2008/04/13 11:36:05 | 000,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2008/03/27 01:27:46 | 000,503,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\wdf01000.sys -- (Wdf01000)
DRV - [2007/12/17 04:14:06 | 000,012,400 | ---- | M] () [Kernel | System] -- D:\WINDOWS\system32\drivers\AsIO.sys -- (AsIO)
DRV - [2007/11/13 05:25:53 | 000,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | Auto] -- D:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2006/09/15 07:30:10 | 000,082,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\WudfRd.sys -- (WudfRd)
DRV - [2006/09/15 07:29:52 | 000,076,544 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\WINDOWS\system32\drivers\WudfPf.sys -- (WudfPf)
DRV - [2006/04/10 02:05:10 | 000,104,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\wceusbsh.sys -- (wceusbsh)
DRV - [2006/03/27 01:53:28 | 000,167,808 | ---- | M] (NETGEAR Inc.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\wg111v2.sys -- (RTLWUSB)
DRV - [2006/02/01 01:17:12 | 000,428,269 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\btaudio.sys -- (btaudio)
DRV - [2006/02/01 01:13:50 | 000,854,154 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL)
DRV - [2006/02/01 01:11:14 | 000,030,363 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\btport.sys -- (BTDriver)
DRV - [2006/02/01 01:10:32 | 000,064,344 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB)
DRV - [2006/02/01 01:06:30 | 000,045,475 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\btwhid.sys -- (btwhid)
DRV - [2005/12/20 03:54:34 | 000,027,008 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\LHidKE.Sys -- (LHidKe)
DRV - [2005/12/20 03:54:28 | 000,069,376 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\LMOUKE.sys -- (LMouKE)
DRV - [2005/10/14 01:15:18 | 001,302,812 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\ialmnt5.sys -- (ialm)
DRV - [2005/09/21 03:14:32 | 001,350,784 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\sigfilt.sys -- (sigfilt)
DRV - [2005/08/16 23:41:08 | 001,022,040 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2005/05/25 02:34:00 | 000,158,464 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\CTUSFSYN.SYS -- (CTUSFSYN)
DRV - [2005/01/10 04:15:00 | 000,138,752 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\CTSFM2K.SYS -- (ctsfm2k)
DRV - [2005/01/10 04:15:00 | 000,106,496 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\CTOSS2K.SYS -- (ossrv)
DRV - [2004/12/22 05:58:00 | 000,008,704 | ---- | M] (Creative Technology Ltd.) [Kernel | Auto] -- D:\WINDOWS\system32\drivers\PFModNT.sys -- (PfModNT)
DRV - [2004/10/13 12:30:46 | 000,155,648 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\e100b325.sys -- (E100B) Intel®
DRV - [2004/08/03 16:00:00 | 000,032,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\ipfltdrv.sys -- (IpFilterDriver)
DRV - [2004/08/03 16:00:00 | 000,032,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\nwlnkfwd.sys -- (NwlnkFwd)
DRV - [2004/08/03 16:00:00 | 000,018,688 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\System32\drivers\cdaudio.sys -- (Cdaudio)
DRV - [2004/08/03 16:00:00 | 000,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)
DRV - [2004/08/03 16:00:00 | 000,016,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\raspti.sys -- (Raspti)
DRV - [2004/08/03 16:00:00 | 000,012,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\nwlnkflt.sys -- (NwlnkFlt)
DRV - [2004/08/03 16:00:00 | 000,012,032 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\System32\drivers\ws2ifsl.sys -- (WS2IFSL)
DRV - [2004/08/03 16:00:00 | 000,011,648 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\System32\drivers\acpiec.sys -- (ACPIEC)
DRV - [2004/08/03 16:00:00 | 000,008,832 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\system32\drivers\rasacd.sys -- (RasAcd)
DRV - [2004/08/03 16:00:00 | 000,007,936 | ---- | M] (Microsoft Corporation) [Recognizer | System] -- D:\WINDOWS\System32\drivers\fs_rec.sys -- (Fs_Rec)
DRV - [2004/08/03 16:00:00 | 000,006,784 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\System32\drivers\parvdm.sys -- (ParVdm)
DRV - [2004/08/03 16:00:00 | 000,005,888 | ---- | M] (Microsoft Corp., Veritas Software.) [Kernel | Disabled] -- D:\WINDOWS\system32\drivers\dmload.sys -- (dmload)
DRV - [2004/08/03 16:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\system32\drivers\rdpcdd.sys -- (RDPCDD)
DRV - [2004/08/03 16:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\System32\drivers\mnmdd.sys -- (mnmdd)
DRV - [2004/08/03 16:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\System32\drivers\beep.sys -- (Beep)
DRV - [2004/08/03 16:00:00 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\System32\drivers\null.sys -- (Null)
DRV - [2004/08/03 16:00:00 | 000,002,864 | ---- | M] (Microsoft Corporation) [Adapter | On_Demand] -- D:\WINDOWS\System32\winsock.dll -- (Winsock)
DRV - [2003/11/17 01:59:20 | 000,212,224 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\HSFHWBS2.sys -- (HSFHWBS2)
DRV - [2003/11/17 01:58:02 | 000,680,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2003/11/17 01:56:26 | 001,042,432 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\HSF_DP.sys -- (HSF_DP)
DRV - [2003/04/08 22:48:08 | 000,011,043 | ---- | M] (Conexant) [Kernel | Auto] -- D:\WINDOWS\system32\drivers\mdmxsdk.sys -- (mdmxsdk)
DRV - [2002/05/05 20:01:08 | 000,017,005 | ---- | M] (Adaptec) [Kernel | Auto] -- D:\WINDOWS\System32\drivers\ASPI32.SYS -- (Aspi32)
DRV - [2002/04/08 11:44:22 | 000,039,552 | ---- | M] (Prolific Technology Inc.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\ser2pl.sys -- (Ser2pl)
DRV - [2001/08/17 01:07:44 | 000,025,952 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\hpn.sys -- (hpn)
DRV - [2001/08/17 01:07:44 | 000,020,192 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\dpti2o.sys -- (dpti2o)
DRV - [2001/08/17 01:07:44 | 000,019,072 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\sparrow.sys -- (Sparrow)
DRV - [2001/08/17 01:07:42 | 000,030,688 | ---- | M] (LSI Logic) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\sym_u3.sys -- (sym_u3)
DRV - [2001/08/17 01:07:42 | 000,005,504 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\perc2hib.sys -- (perc2hib)
DRV - [2001/08/17 01:07:40 | 000,028,384 | ---- | M] (LSI Logic) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\sym_hi.sys -- (sym_hi)
DRV - [2001/08/17 01:07:40 | 000,027,296 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\perc2.sys -- (perc2)
DRV - [2001/08/17 01:07:38 | 000,056,960 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\aic78xx.sys -- (aic78xx)
DRV - [2001/08/17 01:07:36 | 000,055,168 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\aic78u2.sys -- (aic78u2)
DRV - [2001/08/17 01:07:36 | 000,032,640 | ---- | M] (LSI Logic) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\symc8xx.sys -- (symc8xx)
DRV - [2001/08/17 01:07:34 | 000,016,256 | ---- | M] (Symbios Logic Inc.) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\symc810.sys -- (symc810)
DRV - [2001/08/17 01:07:32 | 000,101,888 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\adpu160m.sys -- (adpu160m)
DRV - [2001/08/17 00:59:44 | 000,003,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\audstub.sys -- (audstub)
DRV - [2001/08/17 00:57:38 | 000,016,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\MODEMCSA.sys -- (MODEMCSA)
DRV - [2001/08/17 00:52:50 | 000,125,056 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\WINDOWS\system32\drivers\ftdisk.sys -- (Ftdisk)
DRV - [2001/08/17 00:52:22 | 000,036,736 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\ultra.sys -- (ultra)
DRV - [2001/08/17 00:52:20 | 000,045,312 | ---- | M] (QLogic Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\ql12160.sys -- (ql12160)
DRV - [2001/08/17 00:52:20 | 000,040,320 | ---- | M] (QLogic Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\ql1080.sys -- (ql1080)
DRV - [2001/08/17 00:52:18 | 000,049,024 | ---- | M] (QLogic Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\ql1280.sys -- (ql1280)
DRV - [2001/08/17 00:52:16 | 000,179,584 | ---- | M] (Mylex Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\dac2w2k.sys -- (dac2w2k)
DRV - [2001/08/17 00:52:16 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\ql1240.sys -- (ql1240)
DRV - [2001/08/17 00:52:16 | 000,033,152 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\ql10wnt.sys -- (Ql10wnt)
DRV - [2001/08/17 00:52:16 | 000,014,720 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\dac960nt.sys -- (dac960nt)
DRV - [2001/08/17 00:52:12 | 000,017,280 | ---- | M] (American Megatrends Inc.) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\mraid35x.sys -- (mraid35x)
DRV - [2001/08/17 00:52:08 | 000,016,000 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\ini910u.sys -- (ini910u)
DRV - [2001/08/17 00:52:08 | 000,013,952 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\System32\drivers\cbidf2k.sys -- (cbidf2k)
DRV - [2001/08/17 00:52:08 | 000,013,952 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\cbidf2k.sys -- (cbidf)
DRV - [2001/08/17 00:52:06 | 000,014,976 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\cpqarray.sys -- (Cpqarray)
DRV - [2001/08/17 00:52:06 | 000,007,680 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\cd20xrnt.sys -- (cd20xrnt)
DRV - [2001/08/17 00:52:04 | 000,022,400 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\asc3350p.sys -- (asc3350p)
DRV - [2001/08/17 00:52:04 | 000,012,032 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\amsint.sys -- (amsint)
DRV - [2001/08/17 00:52:02 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\aha154x.sys -- (Aha154x)
DRV - [2001/08/17 00:52:00 | 000,026,496 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\asc.sys -- (asc)
DRV - [2001/08/17 00:52:00 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\ABP480N5.SYS -- (abp480n5)
DRV - [2001/08/17 00:51:58 | 000,014,848 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\asc3550.sys -- (asc3550)
DRV - [2001/08/17 00:51:56 | 000,005,248 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\aliide.sys -- (AliIde)
DRV - [2001/08/17 00:51:56 | 000,004,992 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\toside.sys -- (TosIde)
DRV - [2001/08/17 00:51:54 | 000,006,656 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled] -- D:\WINDOWS\system32\DRIVERS\cmdide.sys -- (CmdIde)
DRV - [2001/08/17 00:48:00 | 000,012,160 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\mouhid.sys -- (mouhid)
DRV - [2001/08/16 22:53:32 | 000,003,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\qv2kux.sys -- (QV2KUX)
DRV - [2001/08/16 21:56:16 | 000,007,552 | ---- | M] (Sony Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\SONYPVU1.SYS -- (SONYPVU1) Sony USB Filter Driver (SONYPVU1)
DRV - [2001/08/16 21:51:52 | 000,003,328 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\WINDOWS\system32\drivers\pciide.sys -- (PCIIde)
DRV - [2001/08/16 21:48:00 | 000,017,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\sermouse.sys -- (sermouse)


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www1.ap.dell....c=au&l=en&s=gen
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft...=ie&ar=iesearch
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www1.ap.dell....c=au&l=en&s=gen
IE - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn...st/srchcust.htm
IE - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn...st/srchasst.htm


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\CLuTsTa_ON_D\Software\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKU\CLuTsTa_ON_D\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
IE - HKU\CLuTsTa_ON_D\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com.au/
IE - HKU\CLuTsTa_ON_D\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - D:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
IE - HKU\CLuTsTa_ON_D\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\CLuTsTa_ON_D\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local




========== FireFox ==========

FF - prefs.js..browser.search.defaultthis.engineName: "TranslatorBar 5 Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.condui...={searchTerms}"
FF - prefs.js..browser.startup.homepage: "www.google.com.au"
FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:8.5.0.429
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}:6.0.03
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}:6.0.16
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {b9b97401-98e1-4942-930d-c36652dab7f2}:2.7.2.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: [email protected]:2.1.1
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.13
FF - prefs.js..keyword.URL: "http://search.condui...d=CT2642706&q="

FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG8\Firefox [2009/12/21 16:35:05 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2010/07/12 12:18:59 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2010/03/30 07:16:04 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/01/03 00:40:43 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/02/08 23:59:33 | 000,000,000 | ---D | M]

[2009/10/23 17:06:27 | 000,000,000 | ---D | M] (No name found) -- D:\Documents and Settings\CLuTsTa\Application Data\Mozilla\Extensions
[2009/05/23 18:45:38 | 000,000,000 | ---D | M] (No name found) -- D:\Documents and Settings\CLuTsTa\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/10/23 17:06:27 | 000,000,000 | ---D | M] (No name found) -- D:\Documents and Settings\CLuTsTa\Application Data\Mozilla\Extensions\[email protected]
[2009/06/05 12:22:24 | 000,000,000 | ---D | M] (No name found) -- D:\Documents and Settings\CLuTsTa\Application Data\Mozilla\Extensions\[email protected]
[2011/01/16 02:02:31 | 000,000,000 | ---D | M] (No name found) -- D:\Documents and Settings\CLuTsTa\Application Data\Mozilla\Firefox\Profiles\yt6qxmus.default\extensions
[2010/06/26 12:27:22 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- D:\Documents and Settings\CLuTsTa\Application Data\Mozilla\Firefox\Profiles\yt6qxmus.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/09/03 17:38:21 | 000,000,000 | ---D | M] (TranslatorBar 5 Toolbar) -- D:\Documents and Settings\CLuTsTa\Application Data\Mozilla\Firefox\Profiles\yt6qxmus.default\extensions\{b9b97401-98e1-4942-930d-c36652dab7f2}
[2011/01/16 02:02:26 | 000,000,000 | ---D | M] (English (Australian) Dictionary) -- D:\Documents and Settings\CLuTsTa\Application Data\Mozilla\Firefox\Profiles\yt6qxmus.default\extensions\[email protected]
[2010/08/27 00:49:26 | 000,000,933 | ---- | M] () -- D:\Documents and Settings\CLuTsTa\Application Data\Mozilla\Firefox\Profiles\yt6qxmus.default\searchplugins\conduit.xml
[2011/01/16 02:02:31 | 000,000,000 | ---D | M] (No name found) -- D:\Program Files\Mozilla Firefox\extensions
[2011/01/03 00:40:33 | 000,000,000 | ---D | M] (Default) -- D:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2008/01/27 19:49:46 | 000,000,000 | ---D | M] (Java Console) -- D:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
[2010/03/30 07:16:17 | 000,000,000 | ---D | M] (Java Console) -- D:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}
[2010/03/30 07:23:39 | 000,000,000 | ---D | M] (Java Console) -- D:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
[2010/04/29 16:59:12 | 000,000,000 | ---D | M] (Java Console) -- D:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/09/13 18:04:05 | 000,000,000 | ---D | M] (Java Console) -- D:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\CLUTSTA\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\YT6QXMUS.DEFAULT\EXTENSIONS\{B9B97401-98E1-4942-930D-C36652DAB7F2}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\CLUTSTA\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\YT6QXMUS.DEFAULT\EXTENSIONS\[email protected]
File not found (No name found) -- C:\PROGRAM FILES\AVG\AVG8\FIREFOX
File not found (No name found) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2011/01/03 00:40:31 | 000,025,048 | ---- | M] (Mozilla Foundation) -- D:\Program Files\Mozilla Firefox\components\browserdirprovider.dll
[2011/01/03 00:40:31 | 000,140,248 | ---- | M] (Mozilla Foundation) -- D:\Program Files\Mozilla Firefox\components\brwsrcmp.dll
[2010/07/16 14:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- D:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2006/12/11 19:48:22 | 001,440,560 | ---- | M] (Microsoft Corporation) -- D:\Program Files\Mozilla Firefox\plugins\npLegitCheckPlugin.dll
[2007/04/13 03:23:49 | 000,114,688 | ---- | M] () -- D:\Program Files\Mozilla Firefox\plugins\npmozax.dll
[2011/01/03 00:40:37 | 000,066,520 | ---- | M] (mozilla.org) -- D:\Program Files\Mozilla Firefox\plugins\npnul32.dll
[2006/10/26 05:12:16 | 000,016,192 | ---- | M] (Microsoft Corporation) -- D:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
[2007/05/10 07:52:34 | 000,095,864 | ---- | M] (Adobe Systems Inc.) -- D:\Program Files\Mozilla Firefox\plugins\nppdf32.dll
[2010/10/01 16:35:26 | 000,143,360 | ---- | M] (Apple Inc.) -- D:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
[2010/10/01 16:35:26 | 000,143,360 | ---- | M] (Apple Inc.) -- D:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
[2010/10/01 16:35:27 | 000,143,360 | ---- | M] (Apple Inc.) -- D:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
[2010/10/01 16:35:27 | 000,143,360 | ---- | M] (Apple Inc.) -- D:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
[2010/10/01 16:35:27 | 000,143,360 | ---- | M] (Apple Inc.) -- D:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
[2010/10/01 16:35:27 | 000,143,360 | ---- | M] (Apple Inc.) -- D:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
[2010/10/01 16:35:27 | 000,143,360 | ---- | M] (Apple Inc.) -- D:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
[2011/01/03 00:40:39 | 000,001,394 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\amazondotcom.xml
[2011/01/03 00:40:39 | 000,002,193 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\answers.xml
[2011/01/03 00:40:39 | 000,001,534 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\creativecommons.xml
[2011/01/03 00:40:39 | 000,002,344 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\eBay.xml
[2011/01/03 00:40:39 | 000,002,371 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\google.xml
[2007/07/23 20:35:03 | 000,009,216 | -HS- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\Thumbs.db
[2011/01/03 00:40:39 | 000,001,178 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\wikipedia.xml
[2011/01/03 00:40:39 | 000,001,096 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\yahoo.xml

O1 HOSTS File: ([2010/05/18 08:29:51 | 000,395,194 | ---- | M]) - D:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 13648 more lines...
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - D:\Program Files\AVG\AVG8\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {41196A87-6649-48EB-B29C-5D590B50FE7A} - No CLSID value found.
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - D:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (no name) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - No CLSID value found.
O2 - BHO: (no name) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - No CLSID value found.
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - D:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKU\CLuTsTa_ON_D\..\Toolbar\ShellBrowser: (&Address) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - D:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O3 - HKU\CLuTsTa_ON_D\..\Toolbar\WebBrowser: (&Address) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - D:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O3 - HKU\CLuTsTa_ON_D\..\Toolbar\WebBrowser: (&Links) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - D:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O4 - HKU\CLuTsTa_ON_D..\Run: [AdobeUpdater] D:\Program Files\Common Files\Adobe\Updater\AdobeUpdater.exe (Adobe Systems Incorporated)
O4 - HKU\CLuTsTa_ON_D..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe (Microsoft Corporation)
O4 - HKU\.DEFAULT..\RunOnce: [] File not found
O4 - HKU\CLuTsTa_ON_D..\RunOnce: [FlashPlayerUpdate] D:\WINDOWS\System32\Macromed\Flash\FlashUtil10l_Plugin.exe (Adobe Systems, Inc.)
O4 - HKU\LocalService_ON_D..\RunOnce: [] File not found
O4 - HKU\NetworkService_ON_D..\RunOnce: [] File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKU\CLuTsTa_ON_D\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\LocalService_ON_D\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\LocalService_ON_D\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKU\NetworkService_ON_D\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\NetworkService_ON_D\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O8 - Extra context menu item: E&xport to Microsoft Excel - D:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Send to &Bluetooth Device... - D:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\network diagnostic\xpnetdiag.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - D:\WINDOWS\system32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - D:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - D:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - D:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000025 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000027 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000028 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000029 - D:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O16 - DPF: {41564D57-9980-0010-8000-00AA00389B71} http://download.micr...01F/wmvadvd.cab (Reg Error: Key error.)
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} http://download.mcaf...01/mcinsctl.cab (McAfee.com Operating System Class)
O16 - DPF: {78AEEDE8-7345-4FB5-A8FE-4BFF16EF25FC} http://mvt.mcafee.co...3,0,1,0/mvt.cab (McAfee Virtual Technician Control Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macr...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.1.1.1
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - D:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - D:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - D:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - D:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - D:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - D:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - D:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - D:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - D:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - D:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - D:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - D:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - D:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - D:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - D:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - D:\Program Files\AVG\AVG8\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - D:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - D:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - D:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - D:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - D:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - D:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - D:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - D:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - D:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - D:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - D:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - D:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - D:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - D:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - D:\WINDOWS\system32\wiascr.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - D:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - D:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - D:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - D:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - D:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - D:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - D:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - D:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - D:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - D:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - D:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (logonui.exe) - D:\WINDOWS\System32\logonui.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - D:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - D:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL - D:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - D:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - Winlogon\Notify\awvtt: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\crypt32chain: DllName - crypt32.dll - D:\WINDOWS\System32\crypt32.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cryptnet: DllName - cryptnet.dll - D:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cscdll: DllName - cscdll.dll - D:\WINDOWS\System32\cscdll.dll (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - %SystemRoot%\System32\dimsntfy.dll - D:\WINDOWS\system32\dimsntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - D:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\LBTWlgn: DllName - c:\program files\common files\logitech\bluetooth\LBTWlgn.dll - D:\Program Files\Common Files\Logitech\Bluetooth\LBTWlgn.DLL (Logitech Inc.)
O20 - Winlogon\Notify\ScCertProp: DllName - wlnotify.dll - D:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\Schedule: DllName - wlnotify.dll - D:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\sclgntfy: DllName - sclgntfy.dll - D:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\SensLogn: DllName - WlNotify.dll - D:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\termsrv: DllName - wlnotify.dll - D:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\WgaLogon: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\wlballoon: DllName - wlnotify.dll - D:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\yabxywu: DllName - yabxywu.dll - File not found
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - D:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - D:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - D:\WINDOWS\system32\stobject.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - D:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - D:\WINDOWS\system32\WPDShServiceObj.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - D:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Component Categories cache daemon - D:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O24 - Desktop Components:0 (My Current Home Page) - About:Home
O24 - Desktop WallPaper: B:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: B:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - D:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - D:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msapsspc.dll) - D:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (schannel.dll) - D:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digest.dll) - D:\WINDOWS\System32\digest.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msnsspc.dll) - D:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - D:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - D:\WINDOWS\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - D:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - D:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - D:\WINDOWS\System32\wdigest.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007/01/15 04:44:02 | 000,000,050 | ---- | M] () - D:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 06:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{0cba94ca-bea1-11de-8d00-00235404deb4}\Shell\AutoRun\command - "" = G:\InstallTomTomHOME.exe
O33 - MountPoints2\{3449c919-05da-11e0-8d73-00235404deb4}\Shell\AuToPlAy\command - "" = G:\bmuigm.pif
O33 - MountPoints2\{3449c919-05da-11e0-8d73-00235404deb4}\Shell\AutoRun\command - "" = G:\bmuigm.pif
O33 - MountPoints2\{3449c919-05da-11e0-8d73-00235404deb4}\Shell\exPlORe\COMMAnd - "" = G:\bmuigm.pif
O33 - MountPoints2\{3449c919-05da-11e0-8d73-00235404deb4}\Shell\Open\comMaNd - "" = G:\bmuigm.pif
O33 - MountPoints2\{8d712d14-1188-11e0-8d76-002401b2914f}\Shell - "" = AutoRun
O33 - MountPoints2\{8d712d14-1188-11e0-8d76-002401b2914f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{8d712d14-1188-11e0-8d76-002401b2914f}\Shell\AutoRun\command - "" = G:\setup_vmb_lite.exe /checkApplicationPresence
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/02/22 14:20:14 | 000,000,000 | -HSD | C] -- D:\found.000
[2011/02/21 00:17:19 | 000,000,000 | ---D | C] -- D:\Documents and Settings\CLuTsTa\Desktop\WinZip 15 Pro + 100% working key
[2011/02/19 23:08:37 | 000,000,000 | ---D | C] -- D:\Documents and Settings\CLuTsTa\Desktop\asamov_-_and_now-retail-2005-ysp
[2011/02/19 22:36:13 | 000,000,000 | ---D | C] -- D:\Documents and Settings\CLuTsTa\Desktop\DJ Spinna - Best Of Sade Mix-MIXFIEND
[2011/02/18 23:10:07 | 000,000,000 | ---D | C] -- D:\Documents and Settings\CLuTsTa\Desktop\Sepultura MP3
[2011/02/17 02:23:49 | 000,000,000 | ---D | C] -- D:\Documents and Settings\CLuTsTa\Desktop\Portishead-Discography
[2011/02/13 03:08:16 | 000,000,000 | ---D | C] -- D:\Documents and Settings\CLuTsTa\Desktop\Sublime Studio Discography
[1 D:\WINDOWS\System32\*.tmp files -> D:\WINDOWS\System32\*.tmp -> ]
[1 D:\WINDOWS\*.tmp files -> D:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2027/01/22 00:18:23 | 000,003,120 | ---- | M] () -- D:\WINDOWS\33orpae.tpi
[2011/02/21 20:44:35 | 000,002,048 | --S- | M] () -- D:\WINDOWS\bootstat.dat
[2011/02/21 19:09:10 | 000,000,868 | ---- | M] () -- D:\WINDOWS\tasks\Google Software Updater.job
[2011/02/21 16:36:42 | 071,479,637 | ---- | M] () -- D:\WINDOWS\System32\drivers\Avg\incavi.avm
[2011/02/21 04:07:22 | 000,000,116 | ---- | M] () -- D:\WINDOWS\NeroDigital.ini
[2011/02/21 01:20:33 | 001,373,161 | ---- | M] () -- D:\Documents and Settings\CLuTsTa\Desktop\IMG_2139.jpg
[2011/02/21 01:20:21 | 001,433,706 | ---- | M] () -- D:\Documents and Settings\CLuTsTa\Desktop\IMG_2138.jpg
[2011/02/21 01:20:08 | 001,365,283 | ---- | M] () -- D:\Documents and Settings\CLuTsTa\Desktop\IMG_2137.jpg
[2011/02/21 01:19:52 | 001,280,161 | ---- | M] () -- D:\Documents and Settings\CLuTsTa\Desktop\IMG_2136.jpg
[2011/02/21 00:12:16 | 745,615,946 | ---- | M] () -- D:\Documents and Settings\CLuTsTa\Desktop\The Adjustment Bureau [2011] Eng.DvDrip Full Movie.rar
[2011/02/17 01:05:36 | 000,193,536 | ---- | M] () -- D:\Documents and Settings\CLuTsTa\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/02/10 23:15:44 | 000,453,494 | ---- | M] () -- D:\WINDOWS\System32\perfh009.dat
[2011/02/10 23:15:44 | 000,076,282 | ---- | M] () -- D:\WINDOWS\System32\perfc009.dat
[2011/02/09 17:30:01 | 000,000,211 | RHS- | M] () -- D:\boot.ini
[2011/02/09 16:23:38 | 000,002,422 | ---- | M] () -- D:\WINDOWS\System32\wpa.dbl
[2011/02/09 16:23:30 | 2146,480,128 | -HS- | M] () -- D:\hiberfil.sys
[2011/02/09 16:23:30 | 000,309,992 | ---- | M] () -- D:\WINDOWS\System32\FNTCACHE.DAT
[2011/02/09 16:06:15 | 000,001,374 | ---- | M] () -- D:\WINDOWS\imsins.BAK
[1 D:\WINDOWS\System32\*.tmp files -> D:\WINDOWS\System32\*.tmp -> ]
[1 D:\WINDOWS\*.tmp files -> D:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2027/01/22 00:18:23 | 000,003,120 | ---- | C] () -- D:\WINDOWS\33orpae.tpi
[2011/02/21 01:20:33 | 001,373,161 | ---- | C] () -- D:\Documents and Settings\CLuTsTa\Desktop\IMG_2139.jpg
[2011/02/21 01:20:21 | 001,433,706 | ---- | C] () -- D:\Documents and Settings\CLuTsTa\Desktop\IMG_2138.jpg
[2011/02/21 01:20:08 | 001,365,283 | ---- | C] () -- D:\Documents and Settings\CLuTsTa\Desktop\IMG_2137.jpg
[2011/02/21 01:19:52 | 001,280,161 | ---- | C] () -- D:\Documents and Settings\CLuTsTa\Desktop\IMG_2136.jpg
[2011/02/20 02:38:22 | 745,615,946 | ---- | C] () -- D:\Documents and Settings\CLuTsTa\Desktop\The Adjustment Bureau [2011] Eng.DvDrip Full Movie.rar
[2010/12/26 19:06:38 | 000,138,416 | ---- | C] () -- D:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010/12/26 19:06:37 | 000,138,056 | ---- | C] () -- D:\Documents and Settings\CLuTsTa\Application Data\PnkBstrK.sys
[2010/08/17 02:10:08 | 000,176,235 | ---- | C] () -- D:\WINDOWS\System32\Primomonnt.dll
[2010/04/11 08:17:48 | 000,014,942 | -HS- | C] () -- D:\Documents and Settings\CLuTsTa\Local Settings\Application Data\4121217452
[2010/04/11 08:05:44 | 000,014,954 | -HS- | C] () -- D:\Documents and Settings\CLuTsTa\Local Settings\Application Data\3GQbYP0I
[2009/05/07 00:57:56 | 000,024,576 | ---- | C] () -- D:\WINDOWS\System32\AsIO.dll
[2009/05/07 00:57:56 | 000,012,400 | ---- | C] () -- D:\WINDOWS\System32\drivers\AsIO.sys
[2009/04/27 19:07:32 | 000,139,264 | ---- | C] () -- D:\WINDOWS\System32\OPDSL.DLL
[2009/01/19 03:06:52 | 000,000,029 | ---- | C] () -- D:\WINDOWS\ASAMAIN.ini
[2008/12/31 01:04:42 | 000,691,560 | ---- | C] () -- D:\WINDOWS\System32\OGACheckControl.dll
[2008/12/20 07:17:03 | 000,033,252 | ---- | C] () -- D:\WINDOWS\Ascd_log.ini
[2008/12/20 07:16:06 | 000,032,363 | ---- | C] () -- D:\WINDOWS\Ascd_tmp.ini
[2008/12/20 07:16:06 | 000,010,296 | ---- | C] () -- D:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2008/12/20 02:45:27 | 000,008,192 | ---- | C] () -- D:\WINDOWS\System32\drivers\ASACPI.sys
[2008/12/19 10:15:58 | 004,338,246 | ---- | C] () -- D:\WINDOWS\System32\libavcodec.dll
[2008/12/17 11:59:54 | 000,560,802 | ---- | C] () -- D:\WINDOWS\System32\libmplayer.dll
[2008/12/16 05:58:54 | 000,025,624 | ---- | C] () -- D:\WINDOWS\System32\drivers\LVPr2Mon.sys
[2008/12/16 05:50:56 | 000,013,584 | ---- | C] () -- D:\WINDOWS\System32\drivers\iKeyLgFT.dll
[2008/09/17 07:55:00 | 000,286,720 | ---- | C] () -- D:\WINDOWS\System32\nvnt4cpl.dll
[2008/06/18 20:46:26 | 000,010,752 | ---- | C] () -- D:\WINDOWS\System32\BASSMOD.dll
[2008/06/18 07:17:26 | 088,144,689 | ---- | C] () -- D:\Documents and Settings\CLuTsTa\My Documents.rar
[2008/06/10 17:02:34 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2008/06/10 17:02:34 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelSwedish.dll
[2008/06/10 17:02:34 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelSpanish.dll
[2008/06/10 17:02:34 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2008/06/10 17:02:34 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelPortugese.dll
[2008/06/10 17:02:34 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelKorean.dll
[2008/06/10 17:02:32 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelJapanese.dll
[2008/06/10 17:02:32 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelGerman.dll
[2008/06/10 17:02:32 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelFrench.dll
[2008/05/19 05:25:42 | 000,000,019 | ---- | C] () -- D:\WINDOWS\SoundConverter.INI
[2007/07/19 08:42:28 | 000,001,928 | ---- | C] () -- D:\WINDOWS\Palm OS Emulator.ini
[2007/06/25 09:41:43 | 000,000,345 | -HS- | C] () -- D:\WINDOWS\System32\cojpeytj.ini
[2007/06/24 09:43:10 | 000,000,345 | -HS- | C] () -- D:\WINDOWS\System32\crcmnvjb.ini
[2007/06/23 09:43:04 | 000,000,345 | -HS- | C] () -- D:\WINDOWS\System32\tclnexrp.ini
[2007/06/22 09:43:57 | 000,900,773 | -HS- | C] () -- D:\WINDOWS\System32\rbgiwiws.ini
[2007/06/21 09:37:58 | 000,900,713 | -HS- | C] () -- D:\WINDOWS\System32\vfayolyx.ini
[2007/06/20 09:41:11 | 000,900,681 | -HS- | C] () -- D:\WINDOWS\System32\dcxxuhil.ini
[2007/06/19 09:38:19 | 000,900,534 | -HS- | C] () -- D:\WINDOWS\System32\xuckkhku.ini
[2007/06/18 09:36:35 | 000,930,718 | -HS- | C] () -- D:\WINDOWS\System32\gqygnxpy.ini
[2007/06/17 09:37:14 | 000,922,009 | -HS- | C] () -- D:\WINDOWS\System32\aulhbhpo.ini
[2007/06/16 09:37:13 | 000,921,908 | -HS- | C] () -- D:\WINDOWS\System32\ygdifxep.ini
[2007/06/15 09:36:35 | 000,921,830 | -HS- | C] () -- D:\WINDOWS\System32\chxthlxu.ini
[2007/06/14 01:23:52 | 000,894,707 | -HS- | C] () -- D:\WINDOWS\System32\hlpbpcyx.ini
[2007/06/13 01:18:47 | 000,932,761 | -HS- | C] () -- D:\WINDOWS\System32\tkfqxabo.ini
[2007/06/12 01:20:07 | 000,948,083 | -HS- | C] () -- D:\WINDOWS\System32\dennysqv.ini
[2007/06/12 01:17:13 | 000,000,000 | -H-- | C] () -- D:\Documents and Settings\CLuTsTa\S-1-5-21-867479323-834159104-2347132788-1006.rrr.LOG
[2007/06/12 01:17:13 | 000,000,000 | -H-- | C] () -- D:\Documents and Settings\LocalService\S-1-5-19.rrr.LOG
[2007/06/12 01:17:12 | 000,000,000 | -H-- | C] () -- D:\Documents and Settings\NetworkService\S-1-5-20.rrr.LOG
[2007/03/26 00:24:45 | 000,002,508 | ---- | C] () -- D:\Documents and Settings\LocalService\Application Data\$_hpcst$.hpc
[2007/02/02 17:59:04 | 000,081,110 | ---- | C] () -- D:\WINDOWS\System32\lvcoinst.ini
[2007/01/24 21:20:14 | 000,000,107 | ---- | C] () -- D:\Documents and Settings\CLuTsTa\default.pls
[2007/01/24 09:30:59 | 000,000,116 | ---- | C] () -- D:\WINDOWS\NeroDigital.ini
[2007/01/10 03:16:01 | 000,000,000 | ---- | C] () -- D:\WINDOWS\QuickInstall.INI
[2006/12/14 19:55:07 | 000,002,508 | ---- | C] () -- D:\Documents and Settings\CLuTsTa\Application Data\$_hpcst$.hpc
[2006/08/15 08:53:07 | 000,000,002 | ---- | C] () -- D:\WINDOWS\msoffice.ini
[2006/08/02 21:48:20 | 000,007,680 | ---- | C] () -- D:\WINDOWS\System32\CNMVS66.DLL
[2006/07/18 00:07:50 | 000,000,130 | ---- | C] () -- D:\Documents and Settings\CLuTsTa\Local Settings\Application Data\fusioncache.dat
[2006/06/29 01:40:21 | 000,193,536 | ---- | C] () -- D:\Documents and Settings\CLuTsTa\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2006/06/29 01:13:49 | 000,000,072 | ---- | C] () -- D:\WINDOWS\sbwin.ini
[2006/06/08 11:14:06 | 000,000,061 | ---- | C] () -- D:\WINDOWS\smscfg.ini
[2006/06/08 11:11:50 | 000,000,285 | ---- | C] () -- D:\WINDOWS\wininit.ini
[2006/06/08 11:03:54 | 000,005,811 | ---- | C] () -- D:\WINDOWS\System32\CTSBMB.INI
[2006/06/08 10:44:29 | 000,006,999 | ---- | C] () -- D:\WINDOWS\System32\Sigfilt.ini
[2006/06/08 10:44:29 | 000,000,029 | ---- | C] () -- D:\WINDOWS\System32\ctzapxx.ini
[2006/06/08 10:44:14 | 001,345,520 | ---- | C] () -- D:\WINDOWS\System32\CTMBHA.DLL
[2006/06/08 10:42:20 | 000,000,436 | ---- | C] () -- D:\WINDOWS\System32\OEMINFO.INI
[2006/02/01 01:22:36 | 000,090,112 | ---- | C] () -- D:\WINDOWS\System32\btprn2k.dll
[2004/08/10 00:12:05 | 000,000,780 | ---- | C] () -- D:\WINDOWS\orun32.ini
[2004/08/10 00:01:18 | 000,001,793 | ---- | C] () -- D:\WINDOWS\System32\fxsperf.ini
[2004/08/09 23:57:52 | 000,004,161 | ---- | C] () -- D:\WINDOWS\ODBCINST.INI
[2001/11/13 23:56:00 | 001,802,240 | ---- | C] () -- D:\WINDOWS\System32\lcppn21.dll

========== LOP Check ==========


========== Purity Check ==========



========== Custom Scans ==========




< MD5 for: AGP440.SYS >
[2004/08/03 10:05:44 | 018,738,937 | ---- | M] () .cab file -- D:\4e78a4828593e2a7bc07e3f0335379\i386\sp2.cab:AGP440.sys
[2004/08/03 16:00:00 | 018,738,937 | ---- | M] () .cab file -- D:\i386\sp2.cab:AGP440.sys
[2004/08/03 16:00:00 | 018,738,937 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008/12/20 05:45:08 | 023,852,652 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008/12/20 05:45:08 | 023,852,652 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008/04/13 13:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- D:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008/04/13 13:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- D:\WINDOWS\system32\drivers\agp440.sys
[2004/08/03 10:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- D:\i386\AGP440.SYS
[2004/08/03 10:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- D:\WINDOWS\$NtServicePackUninstall$\agp440.sys

< MD5 for: ATAPI.SYS >
[2004/08/03 10:05:44 | 018,738,937 | ---- | M] () .cab file -- D:\4e78a4828593e2a7bc07e3f0335379\i386\sp2.cab:atapi.sys
[2004/08/03 16:00:00 | 018,738,937 | ---- | M] () .cab file -- D:\i386\sp2.cab:atapi.sys
[2004/08/03 16:00:00 | 018,738,937 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008/12/20 05:45:08 | 023,852,652 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008/12/20 05:45:08 | 023,852,652 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008/04/13 13:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- D:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008/04/13 13:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- D:\WINDOWS\system32\dllcache\atapi.sys
[2008/04/13 13:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- D:\WINDOWS\system32\drivers\atapi.sys
[2008/04/13 13:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- D:\WINDOWS\system32\drivers\system32\drivers\atapi.sys
[2008/04/13 13:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- D:\WINDOWS\system32\ReinstallBackups\0026\DriverFiles\i386\atapi.sys
[2008/04/13 13:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- D:\WINDOWS\system32\ReinstallBackups\0027\DriverFiles\i386\atapi.sys
[2004/08/03 09:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- D:\i386\atapi.sys
[2004/08/03 09:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- D:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2004/08/03 09:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- D:\WINDOWS\system32\ReinstallBackups\0003\DriverFiles\i386\atapi.sys
[2004/08/03 09:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- D:\WINDOWS\system32\ReinstallBackups\0012\DriverFiles\i386\atapi.sys

< MD5 for: EVENTLOG.DLL >
[2008/04/13 19:11:53 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- D:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008/04/13 19:11:53 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- D:\WINDOWS\system32\eventlog.dll
[2004/08/03 16:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- D:\i386\eventlog.dll
[2004/08/03 16:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- D:\WINDOWS\$NtServicePackUninstall$\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2008/04/13 19:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- D:\WINDOWS\explorer.exe
[2008/04/13 19:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- D:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2007/06/13 06:26:03 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=7712DF0CDDE3A5AC89843E61CD5B3658 -- D:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007/06/13 05:23:07 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=97BD6515465659FF8F3B7BE375B2EA87 -- D:\WINDOWS\$NtServicePackUninstall$\explorer.exe
[2004/08/03 16:00:00 | 001,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- D:\WINDOWS\$NtUninstallKB938828$\explorer.exe

< MD5 for: NETLOGON.DLL >
[2008/04/13 19:12:01 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- D:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008/04/13 19:12:01 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- D:\WINDOWS\system32\netlogon.dll
[2004/08/03 16:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- D:\i386\netlogon.dll
[2004/08/03 16:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- D:\WINDOWS\$NtServicePackUninstall$\netlogon.dll

< MD5 for: NTOSKRNL.EXE >
[2004/08/03 10:05:44 | 018,738,937 | ---- | M] () .cab file -- D:\4e78a4828593e2a7bc07e3f0335379\i386\sp2.cab:ntoskrnl.exe
[2004/08/03 16:00:00 | 018,738,937 | ---- | M] () .cab file -- D:\i386\sp2.cab:ntoskrnl.exe
[2004/08/03 16:00:00 | 018,738,937 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:ntoskrnl.exe
[2008/12/20 05:45:08 | 023,852,652 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:ntoskrnl.exe
[2008/12/20 05:45:08 | 023,852,652 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp3.cab:ntoskrnl.exe
[2010/02/16 09:08:49 | 002,146,304 | ---- | M] (Microsoft Corporation) MD5=048DB3459FAB4CA741DCC84E1F374D65 -- D:\WINDOWS\$NtUninstallKB981852$\ntoskrnl.exe
[2009/12/08 07:52:36 | 002,189,312 | ---- | M] (Microsoft Corporation) MD5=05BE3D9A71972223AFF6A3C823BA51B1 -- D:\WINDOWS\$hf_mig$\KB977165\SP3QFE\ntoskrnl.exe
[2008/04/13 14:27:53 | 002,188,928 | ---- | M] (Microsoft Corporation) MD5=0C89243C7C3EE199B96FCC16990E0679 -- D:\WINDOWS\ServicePackFiles\i386\ntoskrnl.exe
[2009/02/06 06:06:41 | 002,145,280 | ---- | M] (Microsoft Corporation) MD5=0CBA44D0938D57F334C0862424148B70 -- D:\WINDOWS\$NtUninstallKB971486$\ntoskrnl.exe
[2005/03/01 20:04:22 | 002,179,456 | ---- | M] (Microsoft Corporation) MD5=28187802B7C368C0D3AEF7D4C382AABB -- D:\WINDOWS\$hf_mig$\KB890859\SP2QFE\ntoskrnl.exe
[2008/08/14 00:11:10 | 002,189,184 | ---- | M] (Microsoft Corporation) MD5=31914172342BFF330063F343AC6958FE -- D:\WINDOWS\$hf_mig$\KB956841\SP3QFE\ntoskrnl.exe
[2008/04/13 14:24:37 | 002,145,280 | ---- | M] (Microsoft Corporation) MD5=40F8880122A030A7E9E1FEDEA833B33D -- D:\WINDOWS\$NtUninstallKB956841$\ntoskrnl.exe
[2010/04/27 08:59:13 | 002,146,304 | ---- | M] (Microsoft Corporation) MD5=466A3E1239F4A9428797730E81A7A865 -- D:\WINDOWS\$NtUninstallKB2393802$\ntoskrnl.exe
[2005/06/22 19:30:54 | 002,136,064 | ---- | M] (Microsoft Corporation) MD5=5611F453C6D20AB0552956F39BCDDB88 -- D:\i386\ntoskrnl.exe
[2005/06/22 19:30:54 | 002,136,064 | ---- | M] (Microsoft Corporation) MD5=5611F453C6D20AB0552956F39BCDDB88 -- D:\WINDOWS\$NtUninstallKB929338$\ntoskrnl.exe
[2006/12/19 11:49:02 | 002,137,600 | ---- | M] (Microsoft Corporation) MD5=57B9D140E1EB8B0EA06DF927B63B0EEE -- D:\WINDOWS\$NtUninstallKB931784$\ntoskrnl.exe
[2008/08/14 04:55:01 | 002,142,720 | ---- | M] (Microsoft Corporation) MD5=60794EA12961B7341AD54C731B50AE15 -- D:\WINDOWS\$NtServicePackUninstall$\ntoskrnl.exe
[2010/12/09 08:42:26 | 002,148,864 | ---- | M] (Microsoft Corporation) MD5=60E16152D847D7A7B7D3DA4C4B8E2120 -- D:\WINDOWS\system32\ntoskrnl.exe
[2010/12/09 08:38:47 | 002,192,768 | ---- | M] (Microsoft Corporation) MD5=64C1ADF6DF629F340C5A439FE0EF8ED1 -- D:\WINDOWS\Driver Cache\i386\ntoskrnl.exe
[2010/12/09 08:38:47 | 002,192,768 | ---- | M] (Microsoft Corporation) MD5=64C1ADF6DF629F340C5A439FE0EF8ED1 -- D:\WINDOWS\system32\dllcache\ntoskrnl.exe
[2009/08/04 10:13:08 | 002,145,280 | ---- | M] (Microsoft Corporation) MD5=78FCC97CD878D4CF5B5D2158A5A7CF92 -- D:\WINDOWS\$NtUninstallKB977165$\ntoskrnl.exe
[2009/12/08 14:26:15 | 002,145,280 | ---- | M] (Microsoft Corporation) MD5=9696C553F994340CD6AA5C5A724C3A19 -- D:\WINDOWS\$NtUninstallKB979683$\ntoskrnl.exe
[2010/04/27 08:50:44 | 002,190,080 | ---- | M] (Microsoft Corporation) MD5=A2ABBEC40CDB57454645D06B7EBD22F5 -- D:\WINDOWS\$hf_mig$\KB981852\SP3QFE\ntoskrnl.exe
[2010/12/09 08:43:18 | 002,192,768 | ---- | M] (Microsoft Corporation) MD5=A531BBD3DE13121C1380ED7DC99082DB -- D:\WINDOWS\$hf_mig$\KB2393802\SP3QFE\ntoskrnl.exe
[2010/02/16 07:52:12 | 002,190,080 | ---- | M] (Microsoft Corporation) MD5=E1F653A542449D54FA2D27463D99B6B6 -- D:\WINDOWS\$hf_mig$\KB979683\SP3QFE\ntoskrnl.exe
[2007/02/28 04:53:04 | 002,137,600 | ---- | M] (Microsoft Corporation) MD5=E6679C3023B17D8B78946BC5DF53FA20 -- D:\WINDOWS\$NtUninstallKB956841_0$\ntoskrnl.exe
[2008/08/14 05:11:02 | 002,189,184 | ---- | M] (Microsoft Corporation) MD5=EEAF32F8E15A24F62BECB1BD403BB5C5 -- D:\WINDOWS\$hf_mig$\KB956841\SP3GDR\ntoskrnl.exe
[2009/02/07 04:35:26 | 002,189,184 | ---- | M] (Microsoft Corporation) MD5=EFE8EACE83EAAD5849A7A548FB75B584 -- D:\WINDOWS\$hf_mig$\KB956572\SP3QFE\ntoskrnl.exe
[2008/08/14 05:09:26 | 002,145,280 | ---- | M] (Microsoft Corporation) MD5=F6F8245B3A2E9CA834DD318E7AE0C6D0 -- D:\WINDOWS\$NtUninstallKB956572$\ntoskrnl.exe
[2009/08/04 08:56:10 | 002,189,312 | ---- | M] (Microsoft Corporation) MD5=FDE779EA1A564EBFE16F4E0F82B61BAD -- D:\WINDOWS\$hf_mig$\KB971486\SP3QFE\ntoskrnl.exe

< MD5 for: SCECLI.DLL >
[2004/08/03 16:00:00 | 000,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- D:\i386\scecli.dll
[2004/08/03 16:00:00 | 000,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- D:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008/04/13 19:12:05 | 000,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- D:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008/04/13 19:12:05 | 000,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- D:\WINDOWS\system32\scecli.dll

< MD5 for: USERINIT.EXE >
[2004/08/03 16:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- D:\i386\userinit.exe
[2004/08/03 16:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- D:\WINDOWS\$NtServicePackUninstall$\userinit.exe
[2008/04/13 19:12:38 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- D:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008/04/13 19:12:38 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- D:\WINDOWS\system32\userinit.exe

< MD5 for: UXTHEME.DLL >
[2004/08/03 16:00:00 | 000,218,624 | ---- | M] (Microsoft Corporation) MD5=2CDE496666A975A2CE8F969F3042C8DB -- D:\i386\uxtheme.dll
[2004/08/03 16:00:00 | 000,218,624 | ---- | M] (Microsoft Corporation) MD5=2CDE496666A975A2CE8F969F3042C8DB -- D:\WINDOWS\$NtServicePackUninstall$\uxtheme.dll
[2008/04/13 19:12:08 | 000,218,624 | ---- | M] (Microsoft Corporation) MD5=7A2CC3719B255E6B5D74396183B7715B -- D:\WINDOWS\ServicePackFiles\i386\uxtheme.dll
[2008/04/13 19:12:08 | 000,218,624 | ---- | M] (Microsoft Corporation) MD5=7A2CC3719B255E6B5D74396183B7715B -- D:\WINDOWS\system32\uxtheme.dll

< MD5 for: WINLOGON.EXE >
[2004/08/03 16:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=01C3346C241652F43AED8E2149881BFE -- D:\i386\winlogon.exe
[2004/08/03 16:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=01C3346C241652F43AED8E2149881BFE -- D:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008/04/13 19:12:39 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- D:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008/04/13 19:12:39 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- D:\WINDOWS\system32\winlogon.exe

< %SYSTEMDRIVE%\*.* >
[2007/01/15 04:44:02 | 000,000,050 | ---- | M] () -- D:\AUTOEXEC.BAT
[2011/02/09 17:30:01 | 000,000,211 | RHS- | M] () -- D:\boot.ini
[2011/02/22 15:48:11 | 000,003,564 | ---- | M] () -- D:\bootex.log
[2001/09/12 23:59:20 | 012,544,000 | ---- | M] () -- D:\CLuTZ- mini mix.mp3
[2004/08/10 00:04:08 | 000,000,000 | ---- | M] () -- D:\CONFIG.SYS
[2006/06/08 10:45:48 | 000,005,052 | RH-- | M] () -- D:\dell.sdr
[2010/04/18 07:39:28 | 000,009,830 | ---- | M] () -- D:\exefix.reg
[2011/02/09 16:23:30 | 2146,480,128 | -HS- | M] () -- D:\hiberfil.sys
[2006/06/28 23:41:23 | 000,004,128 | ---- | M] () -- D:\INFCACHE.1
[2004/08/10 00:04:08 | 000,000,000 | -H-- | M] () -- D:\IO.SYS
[2006/06/08 11:07:09 | 000,000,302 | -H-- | M] () -- D:\IPH.PH
[2008/04/07 20:17:13 | 000,000,589 | ---- | M] () -- D:\irunin.ini
[2004/08/10 00:04:08 | 000,000,000 | -H-- | M] () -- D:\MSDOS.SYS
[2004/08/03 16:00:00 | 000,047,564 | RHS- | M] () -- D:\NTDETECT.COM
[2008/12/20 05:48:07 | 000,250,048 | RHS- | M] () -- D:\ntldr
[2010/04/18 07:34:13 | 000,009,830 | ---- | M] () -- D:\prob anne
[2010/08/05 21:01:32 | 000,000,388 | ---- | M] () -- D:\rkill.log
[2006/12/14 19:41:39 | 000,000,298 | ---- | M] () -- D:\RUU.log
[2007/07/25 11:55:09 | 000,000,136 | ---- | M] () -- D:\SerialSync.txt
[2009/05/07 01:03:21 | 000,000,046 | -H-- | M] () -- D:\splash.idx
[2006/07/08 04:46:12 | 000,000,232 | -H-- | M] () -- D:\sqmdata00.sqm
[2006/07/08 04:46:14 | 000,000,232 | -H-- | M] () -- D:\sqmdata01.sqm
[2006/07/08 04:47:36 | 000,000,232 | -H-- | M] () -- D:\sqmdata02.sqm
[2006/07/08 04:47:45 | 000,000,232 | -H-- | M] () -- D:\sqmdata03.sqm
[2006/10/25 02:10:03 | 000,000,268 | -H-- | M] () -- D:\sqmdata04.sqm
[2007/03/14 11:06:21 | 000,000,268 | -H-- | M] () -- D:\sqmdata05.sqm
[2007/03/14 20:38:35 | 000,000,268 | -H-- | M] () -- D:\sqmdata06.sqm
[2007/07/10 15:13:39 | 000,000,232 | -H-- | M] () -- D:\sqmdata07.sqm
[2007/10/16 02:33:21 | 000,000,268 | -H-- | M] () -- D:\sqmdata08.sqm
[2007/10/16 03:23:21 | 000,000,268 | -H-- | M] () -- D:\sqmdata09.sqm
[2007/11/02 06:16:32 | 000,000,232 | -H-- | M] () -- D:\sqmdata10.sqm
[2008/04/13 21:30:18 | 000,000,268 | -H-- | M] () -- D:\sqmdata11.sqm
[2008/12/20 02:47:22 | 000,000,268 | -H-- | M] () -- D:\sqmdata12.sqm
[2009/01/11 04:46:22 | 000,000,268 | -H-- | M] () -- D:\sqmdata13.sqm
[2009/03/11 19:54:21 | 000,000,268 | -H-- | M] () -- D:\sqmdata14.sqm
[2009/03/29 18:50:55 | 000,000,268 | -H-- | M] () -- D:\sqmdata15.sqm
[2006/07/08 04:46:12 | 000,000,244 | -H-- | M] () -- D:\sqmnoopt00.sqm
[2006/07/08 04:46:14 | 000,000,244 | -H-- | M] () -- D:\sqmnoopt01.sqm
[2006/07/08 04:47:36 | 000,000,244 | -H-- | M] () -- D:\sqmnoopt02.sqm
[2006/07/08 04:47:45 | 000,000,244 | -H-- | M] () -- D:\sqmnoopt03.sqm
[2006/10/25 02:10:03 | 000,000,244 | -H-- | M] () -- D:\sqmnoopt04.sqm
[2007/03/14 11:06:21 | 000,000,244 | -H-- | M] () -- D:\sqmnoopt05.sqm
[2007/03/14 20:38:35 | 000,000,244 | -H-- | M] () -- D:\sqmnoopt06.sqm
[2007/07/10 15:13:38 | 000,000,244 | -H-- | M] () -- D:\sqmnoopt07.sqm
[2007/10/16 02:33:21 | 000,000,244 | -H-- | M] () -- D:\sqmnoopt08.sqm
[2007/10/16 03:23:21 | 000,000,244 | -H-- | M] () -- D:\sqmnoopt09.sqm
[2007/11/02 06:16:32 | 000,000,244 | -H-- | M] () -- D:\sqmnoopt10.sqm
[2008/04/13 21:30:18 | 000,000,244 | -H-- | M] () -- D:\sqmnoopt11.sqm
[2008/12/20 02:47:21 | 000,000,244 | -H-- | M] () -- D:\sqmnoopt12.sqm
[2009/01/11 04:46:22 | 000,000,244 | -H-- | M] () -- D:\sqmnoopt13.sqm
[2009/03/11 19:54:20 | 000,000,244 | -H-- | M] () -- D:\sqmnoopt14.sqm
[2009/03/29 18:50:54 | 000,000,244 | -H-- | M] () -- D:\sqmnoopt15.sqm
[2008/07/08 21:07:10 | 000,005,552 | -H-- | M] () -- D:\version

< %systemroot%\*. /mp /s >

< %systemroot%\System32\config\*.sav >
[2004/08/09 23:56:48 | 000,094,208 | ---- | M] () -- D:\WINDOWS\system32\config\default.sav
[2004/08/09 23:56:46 | 000,634,880 | ---- | M] () -- D:\WINDOWS\system32\config\software.sav
[2004/08/09 23:56:46 | 000,872,448 | ---- | M] () -- D:\WINDOWS\system32\config\system.sav
< End of report >
  • 0

#3
clutsta

clutsta

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
Should I open it up to other forums?
  • 0

#4
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,018 posts
Hi and :D

What would happen if you remove the CD_ROM from your computer and boot in Normal Mode.
  • 0

#5
clutsta

clutsta

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
Hey there, thanks very much for your time to reply!

The Windows XP splash screen loads and the load bar makes it from the left to the right before it goes to the BSOD with the same error messages as posted in the first post in this thread :D :D
  • 0

#6
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,018 posts
While in the Reatogo environment, browse to the D:\Windows folder. See if there is a minidump folder within. If present, copy the last five minidump files to a new folder in your USB drive, zip that folder and attach it to a reply.

What is on the C:\ drive?
  • 0

#7
clutsta

clutsta

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
Hi again,

I am a little worried about the mini dump files as they are dated from 2007-2009. I'm not sure if that makes a difference. I have attached the last 5 (in time, not list) for you anyway.

C:\ Drive is pretty much all mp3's.

Edited by clutsta, 25 February 2011 - 02:56 PM.

  • 0

#8
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,018 posts
While in the Reatogo environment, browse to the D:\Windows folder. See if there is a ntbtlog.txt file within. If present, delete the file.

Boot the computer normally. Tap on F8 at startup to reach the startup menu, then select Enable Bootlogging. Let it boot to the BSOD. Then boot back to the Reatogo environment. Browse to the D:\Windows folder. See if there is a ntbtlog.txt file within. If present, post its contents in your next reply.

Also, there should be a boot.ini file in both drives, C: and D. Open these files in Notepad and post their contents in a reply (You will need to do some tweaking as both files are labeled with the same name). Do not rename the files in the hard drive.
  • 0

#9
clutsta

clutsta

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts

While in the Reatogo environment, browse to the D:\Windows folder. See if there is a ntbtlog.txt file within. If present, delete the file.

Boot the computer normally. Tap on F8 at startup to reach the startup menu, then select Enable Bootlogging. Let it boot to the BSOD. Then boot back to the Reatogo environment. Browse to the D:\Windows folder. See if there is a ntbtlog.txt file within. If present, post its contents in your next reply.

Also, there should be a boot.ini file in both drives, C: and D. Open these files in Notepad and post their contents in a reply (You will need to do some tweaking as both files are labeled with the same name). Do not rename the files in the hard drive.


Okay, there was no ntbtlog.txt in D:\ Windows. I then went and enabled bootlogging. After returning to the D:\ Windows folder, there was still no ntbtlog.txt. I searched the whole of D:\ and it still came up with nothing.

Then I tried to source the boot.ini files. There is no such file in C:\. Here's the one for D:\

[boot loader]
timeout=30
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
[operating systems]
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Home Edition" /fastdetect /NoExecute=OptIn


  • 0

#10
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,018 posts
The operating system is running from a secondary partition in the same drive. As far as I know, both the boot loader and the boot.ini should be running from the first partition. If you ran MBRWORK as posted in that thread, you wrote a sector at the beginning of the hard drive, which would appear to be the first partition, C:.

Restart the computer back to the OTLPE CD.
  • Double-click on the OTLPE icon.
  • When asked "Do you wish to load the remote registry", select Yes
  • When asked "Do you wish to load remote user profile(s) for scanning", select Yes
  • Ensure the box "Automatically Load All Remaining Users" is checked and press OK
  • OTL should now start.
    • Set all to None to reduce the the scan time
    • Under the Custom Scan box paste this in


      C:\*.*
      Dir /a:d C:\ /c
      D:\*.*
      Dir /a:d D:\ /c

  • Press Run Scan to start the scan.
  • When finished, the file will be saved in drive C:\OTL.txt
  • Copy this file to your USB drive.
  • Please post the contents of the C:\OTL.txt file in your next reply.

  • 0

Advertisements


#11
clutsta

clutsta

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
OTL logfile created on: 2/26/2011 2:34:43 PM - Run
OTLPE by OldTimer - Version 3.1.44.3 Folder = X:\Programs\OTLPE
Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 84.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 95.00% Paging File free
Paging file location(s): C:\pagefile.sys 1500 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 148.97 Gb Total Space | 54.40 Gb Free Space | 36.52% Space Free | Partition Type: NTFS
Drive D: | 465.75 Gb Total Space | 46.91 Gb Free Space | 10.07% Space Free | Partition Type: NTFS
Drive E: | 3.73 Gb Total Space | 3.73 Gb Free Space | 99.98% Space Free | Partition Type: FAT32
Drive X: | 284.08 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet001

========== Files/Folders - Created Within 30 Days ==========

[2011/02/22 14:20:14 | 000,000,000 | -HSD | C] -- C:\found.000
[2011/02/19 23:08:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CLuTsTa\Desktop\asamov_-_and_now-retail-2005-ysp
[2011/02/19 22:36:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CLuTsTa\Desktop\DJ Spinna - Best Of Sade Mix-MIXFIEND
[2011/02/18 23:10:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CLuTsTa\Desktop\Sepultura MP3
[2011/02/17 02:23:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CLuTsTa\Desktop\Portishead-Discography
[2011/02/13 03:08:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CLuTsTa\Desktop\Sublime Studio Discography
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2027/01/22 00:18:23 | 000,003,120 | ---- | M] () -- C:\WINDOWS\33orpae.tpi
[2011/02/21 20:44:35 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/02/21 19:09:10 | 000,000,868 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2011/02/21 16:36:42 | 071,479,637 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2011/02/21 04:07:22 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011/02/21 01:20:33 | 001,373,161 | ---- | M] () -- C:\Documents and Settings\CLuTsTa\Desktop\IMG_2139.jpg
[2011/02/21 01:20:21 | 001,433,706 | ---- | M] () -- C:\Documents and Settings\CLuTsTa\Desktop\IMG_2138.jpg
[2011/02/21 01:20:08 | 001,365,283 | ---- | M] () -- C:\Documents and Settings\CLuTsTa\Desktop\IMG_2137.jpg
[2011/02/21 01:19:52 | 001,280,161 | ---- | M] () -- C:\Documents and Settings\CLuTsTa\Desktop\IMG_2136.jpg
[2011/02/17 01:05:36 | 000,193,536 | ---- | M] () -- C:\Documents and Settings\CLuTsTa\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/02/10 23:15:44 | 000,453,494 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/02/10 23:15:44 | 000,076,282 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/02/09 17:30:01 | 000,000,211 | RHS- | M] () -- C:\boot.ini
[2011/02/09 16:23:38 | 000,002,422 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/02/09 16:23:30 | 2146,480,128 | -HS- | M] () -- C:\hiberfil.sys
[2011/02/09 16:23:30 | 000,309,992 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/02/09 16:06:15 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2027/01/22 00:18:23 | 000,003,120 | ---- | C] () -- C:\WINDOWS\33orpae.tpi
[2011/02/21 01:20:33 | 001,373,161 | ---- | C] () -- C:\Documents and Settings\CLuTsTa\Desktop\IMG_2139.jpg
[2011/02/21 01:20:21 | 001,433,706 | ---- | C] () -- C:\Documents and Settings\CLuTsTa\Desktop\IMG_2138.jpg
[2011/02/21 01:20:08 | 001,365,283 | ---- | C] () -- C:\Documents and Settings\CLuTsTa\Desktop\IMG_2137.jpg
[2011/02/21 01:19:52 | 001,280,161 | ---- | C] () -- C:\Documents and Settings\CLuTsTa\Desktop\IMG_2136.jpg
[2010/12/26 19:06:38 | 000,138,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010/12/26 19:06:37 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\CLuTsTa\Application Data\PnkBstrK.sys
[2010/08/17 02:10:08 | 000,176,235 | ---- | C] () -- C:\WINDOWS\System32\Primomonnt.dll
[2010/04/11 08:17:48 | 000,014,942 | -HS- | C] () -- C:\Documents and Settings\CLuTsTa\Local Settings\Application Data\4121217452
[2010/04/11 08:05:44 | 000,014,954 | -HS- | C] () -- C:\Documents and Settings\CLuTsTa\Local Settings\Application Data\3GQbYP0I
[2009/05/07 00:57:56 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\AsIO.dll
[2009/05/07 00:57:56 | 000,012,400 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys
[2009/04/27 19:07:32 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\OPDSL.DLL
[2009/01/19 03:06:52 | 000,000,029 | ---- | C] () -- C:\WINDOWS\ASAMAIN.ini
[2008/12/31 01:04:42 | 000,691,560 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2008/12/20 07:17:03 | 000,033,252 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2008/12/20 07:16:06 | 000,032,363 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2008/12/20 07:16:06 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2008/12/20 02:45:27 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2008/12/19 10:15:58 | 004,338,246 | ---- | C] () -- C:\WINDOWS\System32\libavcodec.dll
[2008/12/17 11:59:54 | 000,560,802 | ---- | C] () -- C:\WINDOWS\System32\libmplayer.dll
[2008/12/16 05:58:54 | 000,025,624 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPr2Mon.sys
[2008/12/16 05:50:56 | 000,013,584 | ---- | C] () -- C:\WINDOWS\System32\drivers\iKeyLgFT.dll
[2008/09/17 07:55:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2008/06/18 20:46:26 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2008/06/18 07:17:26 | 088,144,689 | ---- | C] () -- C:\Documents and Settings\CLuTsTa\My Documents.rar
[2008/06/10 17:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2008/06/10 17:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2008/06/10 17:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2008/06/10 17:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2008/06/10 17:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2008/06/10 17:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2008/06/10 17:02:32 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2008/06/10 17:02:32 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2008/06/10 17:02:32 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2008/05/19 05:25:42 | 000,000,019 | ---- | C] () -- C:\WINDOWS\SoundConverter.INI
[2007/07/19 08:42:28 | 000,001,928 | ---- | C] () -- C:\WINDOWS\Palm OS Emulator.ini
[2007/06/25 09:41:43 | 000,000,345 | -HS- | C] () -- C:\WINDOWS\System32\cojpeytj.ini
[2007/06/24 09:43:10 | 000,000,345 | -HS- | C] () -- C:\WINDOWS\System32\crcmnvjb.ini
[2007/06/23 09:43:04 | 000,000,345 | -HS- | C] () -- C:\WINDOWS\System32\tclnexrp.ini
[2007/06/22 09:43:57 | 000,900,773 | -HS- | C] () -- C:\WINDOWS\System32\rbgiwiws.ini
[2007/06/21 09:37:58 | 000,900,713 | -HS- | C] () -- C:\WINDOWS\System32\vfayolyx.ini
[2007/06/20 09:41:11 | 000,900,681 | -HS- | C] () -- C:\WINDOWS\System32\dcxxuhil.ini
[2007/06/19 09:38:19 | 000,900,534 | -HS- | C] () -- C:\WINDOWS\System32\xuckkhku.ini
[2007/06/18 09:36:35 | 000,930,718 | -HS- | C] () -- C:\WINDOWS\System32\gqygnxpy.ini
[2007/06/17 09:37:14 | 000,922,009 | -HS- | C] () -- C:\WINDOWS\System32\aulhbhpo.ini
[2007/06/16 09:37:13 | 000,921,908 | -HS- | C] () -- C:\WINDOWS\System32\ygdifxep.ini
[2007/06/15 09:36:35 | 000,921,830 | -HS- | C] () -- C:\WINDOWS\System32\chxthlxu.ini
[2007/06/14 01:23:52 | 000,894,707 | -HS- | C] () -- C:\WINDOWS\System32\hlpbpcyx.ini
[2007/06/13 01:18:47 | 000,932,761 | -HS- | C] () -- C:\WINDOWS\System32\tkfqxabo.ini
[2007/06/12 01:20:07 | 000,948,083 | -HS- | C] () -- C:\WINDOWS\System32\dennysqv.ini
[2007/06/12 01:17:13 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\CLuTsTa\S-1-5-21-867479323-834159104-2347132788-1006.rrr.LOG
[2007/06/12 01:17:13 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\LocalService\S-1-5-19.rrr.LOG
[2007/06/12 01:17:12 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\NetworkService\S-1-5-20.rrr.LOG
[2007/03/26 00:24:45 | 000,002,508 | ---- | C] () -- C:\Documents and Settings\LocalService\Application Data\$_hpcst$.hpc
[2007/02/02 17:59:04 | 000,081,110 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
[2007/01/24 21:20:14 | 000,000,107 | ---- | C] () -- C:\Documents and Settings\CLuTsTa\default.pls
[2007/01/24 09:30:59 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2007/01/10 03:16:01 | 000,000,000 | ---- | C] () -- C:\WINDOWS\QuickInstall.INI
[2006/12/14 19:55:07 | 000,002,508 | ---- | C] () -- C:\Documents and Settings\CLuTsTa\Application Data\$_hpcst$.hpc
[2006/08/15 08:53:07 | 000,000,002 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2006/08/02 21:48:20 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\CNMVS66.DLL
[2006/07/18 00:07:50 | 000,000,130 | ---- | C] () -- C:\Documents and Settings\CLuTsTa\Local Settings\Application Data\fusioncache.dat
[2006/06/29 01:40:21 | 000,193,536 | ---- | C] () -- C:\Documents and Settings\CLuTsTa\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2006/06/29 01:13:49 | 000,000,072 | ---- | C] () -- C:\WINDOWS\sbwin.ini
[2006/06/08 11:14:06 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2006/06/08 11:11:50 | 000,000,285 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2006/06/08 11:03:54 | 000,005,811 | ---- | C] () -- C:\WINDOWS\System32\CTSBMB.INI
[2006/06/08 10:44:29 | 000,006,999 | ---- | C] () -- C:\WINDOWS\System32\Sigfilt.ini
[2006/06/08 10:44:29 | 000,000,029 | ---- | C] () -- C:\WINDOWS\System32\ctzapxx.ini
[2006/06/08 10:44:14 | 001,345,520 | ---- | C] () -- C:\WINDOWS\System32\CTMBHA.DLL
[2006/06/08 10:42:20 | 000,000,436 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2006/02/01 01:22:36 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\btprn2k.dll
[2004/08/10 00:12:05 | 000,000,780 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2004/08/10 00:01:18 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2004/08/09 23:57:52 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2001/11/13 23:56:00 | 001,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll

========== LOP Check ==========

[2010/05/19 22:51:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\Softland
[2007/10/11 09:53:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Ableton
[2011/01/07 10:22:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Camfrog
[2010/05/19 03:15:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Canon
[2009/01/28 05:54:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\DAEMON Tools
[2009/01/19 07:01:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\DAEMON Tools Lite
[2009/01/28 05:54:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\DAEMON Tools Pro
[2008/01/28 00:03:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\eBay
[2010/06/28 01:29:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Error Fix
[2010/06/15 07:58:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Facebook
[2009/05/16 04:48:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\GetRightToGo
[2007/06/25 11:34:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Grisoft
[2011/01/03 00:09:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\id Software
[2009/10/11 06:37:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\ImTOO Software Studio
[2006/07/02 10:44:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Leadertech
[2009/06/07 09:12:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\LimeWire
[2010/11/23 06:12:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\MSNInstaller
[2009/05/24 22:16:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Nokia
[2006/08/08 21:00:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Opera
[2009/05/24 21:15:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\PC Suite
[2010/08/17 02:11:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\PrimoPDF
[2006/09/21 11:00:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Publish Providers
[2010/05/19 22:51:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Softland
[2006/09/21 10:58:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Sony
[2007/04/04 21:30:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Template
[2009/10/23 17:06:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\TomTom
[2008/06/18 20:49:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\TuneUp Software
[2010/02/21 09:34:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\URSoft
[2011/02/21 00:49:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\uTorrent
[2006/07/16 08:06:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Vso
[2008/02/26 18:49:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\WholeSecurity
[2007/06/18 10:28:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\WinPatrol

========== Purity Check ==========



========== Custom Scans ==========


< C:\*.* >
[2007/01/15 04:44:02 | 000,000,050 | ---- | M] () -- C:\AUTOEXEC.BAT
[2011/02/09 17:30:01 | 000,000,211 | RHS- | M] () -- C:\boot.ini
[2011/02/22 15:48:11 | 000,003,564 | ---- | M] () -- C:\bootex.log
[2001/09/12 23:59:20 | 012,544,000 | ---- | M] () -- C:\CLuTZ- mini mix.mp3
[2004/08/10 00:04:08 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2006/06/08 10:45:48 | 000,005,052 | RH-- | M] () -- C:\dell.sdr
[2010/04/18 07:39:28 | 000,009,830 | ---- | M] () -- C:\exefix.reg
[2011/02/09 16:23:30 | 2146,480,128 | -HS- | M] () -- C:\hiberfil.sys
[2006/06/28 23:41:23 | 000,004,128 | ---- | M] () -- C:\INFCACHE.1
[2004/08/10 00:04:08 | 000,000,000 | -H-- | M] () -- C:\IO.SYS
[2006/06/08 11:07:09 | 000,000,302 | -H-- | M] () -- C:\IPH.PH
[2008/04/07 20:17:13 | 000,000,589 | ---- | M] () -- C:\irunin.ini
[2004/08/10 00:04:08 | 000,000,000 | -H-- | M] () -- C:\MSDOS.SYS
[2004/08/03 16:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2008/12/20 05:48:07 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2011/02/26 14:34:10 | 000,069,938 | ---- | M] () -- C:\OTL.Txt
[2010/04/18 07:34:13 | 000,009,830 | ---- | M] () -- C:\prob anne
[2010/08/05 21:01:32 | 000,000,388 | ---- | M] () -- C:\rkill.log
[2006/12/14 19:41:39 | 000,000,298 | ---- | M] () -- C:\RUU.log
[2007/07/25 11:55:09 | 000,000,136 | ---- | M] () -- C:\SerialSync.txt
[2009/05/07 01:03:21 | 000,000,046 | -H-- | M] () -- C:\splash.idx
[2006/07/08 04:46:12 | 000,000,232 | -H-- | M] () -- C:\sqmdata00.sqm
[2006/07/08 04:46:14 | 000,000,232 | -H-- | M] () -- C:\sqmdata01.sqm
[2006/07/08 04:47:36 | 000,000,232 | -H-- | M] () -- C:\sqmdata02.sqm
[2006/07/08 04:47:45 | 000,000,232 | -H-- | M] () -- C:\sqmdata03.sqm
[2006/10/25 02:10:03 | 000,000,268 | -H-- | M] () -- C:\sqmdata04.sqm
[2007/03/14 11:06:21 | 000,000,268 | -H-- | M] () -- C:\sqmdata05.sqm
[2007/03/14 20:38:35 | 000,000,268 | -H-- | M] () -- C:\sqmdata06.sqm
[2007/07/10 15:13:39 | 000,000,232 | -H-- | M] () -- C:\sqmdata07.sqm
[2007/10/16 02:33:21 | 000,000,268 | -H-- | M] () -- C:\sqmdata08.sqm
[2007/10/16 03:23:21 | 000,000,268 | -H-- | M] () -- C:\sqmdata09.sqm
[2007/11/02 06:16:32 | 000,000,232 | -H-- | M] () -- C:\sqmdata10.sqm
[2008/04/13 21:30:18 | 000,000,268 | -H-- | M] () -- C:\sqmdata11.sqm
[2008/12/20 02:47:22 | 000,000,268 | -H-- | M] () -- C:\sqmdata12.sqm
[2009/01/11 04:46:22 | 000,000,268 | -H-- | M] () -- C:\sqmdata13.sqm
[2009/03/11 19:54:21 | 000,000,268 | -H-- | M] () -- C:\sqmdata14.sqm
[2009/03/29 18:50:55 | 000,000,268 | -H-- | M] () -- C:\sqmdata15.sqm
[2006/07/08 04:46:12 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt00.sqm
[2006/07/08 04:46:14 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt01.sqm
[2006/07/08 04:47:36 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt02.sqm
[2006/07/08 04:47:45 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt03.sqm
[2006/10/25 02:10:03 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt04.sqm
[2007/03/14 11:06:21 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt05.sqm
[2007/03/14 20:38:35 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt06.sqm
[2007/07/10 15:13:38 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt07.sqm
[2007/10/16 02:33:21 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt08.sqm
[2007/10/16 03:23:21 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt09.sqm
[2007/11/02 06:16:32 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt10.sqm
[2008/04/13 21:30:18 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt11.sqm
[2008/12/20 02:47:21 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt12.sqm
[2009/01/11 04:46:22 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt13.sqm
[2009/03/11 19:54:20 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt14.sqm
[2009/03/29 18:50:54 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt15.sqm
[2008/07/08 21:07:10 | 000,005,552 | -H-- | M] () -- C:\version

< Dir /a:d C:\ /c >
Volume in drive C is system
Volume Serial Number is 105B-8DAD
Directory of C:\
02/14/2011 01:10 PM <DIR> $AVG8.VAULT$
06/18/2008 04:08 AM <DIR> 4e78a4828593e2a7bc07e3f0335379
02/11/2007 11:00 PM <DIR> Application Data
02/22/2011 01:19 PM <DIR> ASUS.000
05/07/2009 01:03 AM <DIR> ASUS.SYS
02/08/2009 08:40 PM <DIR> BJPrinter
06/19/2007 07:36 AM <DIR> BMW
04/07/2008 11:59 PM <DIR> caps
02/09/2011 04:03 PM <DIR> Config.Msi
07/06/2006 07:26 AM <DIR> dell
02/11/2007 11:00 PM <DIR> Documents and Settings
01/15/2007 03:25 AM <DIR> drivers
05/18/2007 02:41 PM <DIR> DVR110D
05/07/2007 01:48 PM <DIR> DVR111D
10/04/2007 07:42 AM <DIR> etax2007
02/21/2010 09:59 AM <DIR> etax2008
02/22/2011 02:20 PM <DIR> found.000
01/10/2011 04:27 AM <DIR> i386
12/20/2008 07:30 AM <DIR> Intel
01/19/2009 03:06 AM <DIR> MMC
10/11/2007 09:08 PM <DIR> MSOCache
04/14/2007 11:08 AM <DIR> New Folder
12/26/2010 07:15 PM <DIR> NVIDIA
06/18/2008 07:41 AM <DIR> PASEN
04/14/2008 04:02 AM <DIR> perftrns.pti
01/10/2011 09:29 AM <DIR> Program Files
04/26/2007 01:03 AM <DIR> Programme
02/24/2011 07:36 PM <DIR> RECYCLER
06/28/2006 11:40 PM <DIR> System Volume Information
06/18/2008 07:41 AM <DIR> WINCAPS
02/09/2011 04:24 PM <DIR> WINDOWS
0 File(s) 0 bytes
31 Dir(s) 58,412,843,008 bytes free

< D:\*.* >
[2009/05/26 19:34:29 | 000,000,372 | ---- | M] () -- D:\Shortcut to Desktop.lnk
[2009/05/26 19:33:13 | 000,000,384 | ---- | M] () -- D:\Shortcut to DOWNLOADS.lnk
[2009/05/16 03:01:09 | 000,000,367 | ---- | M] () -- D:\Shortcut to Movies.lnk
[2009/01/14 04:37:36 | 000,000,350 | ---- | M] () -- D:\Shortcut to MUSIC.lnk

< Dir /a:d D:\ /c >
Volume in drive D is big boiiii
Volume Serial Number is CCB7-230B
Directory of D:\
12/16/2010 06:51 AM <DIR> $AVG8.VAULT$
06/24/2009 07:30 AM <DIR> Desktop
02/07/2009 11:00 PM <DIR> Desktops
02/01/2011 04:50 AM <DIR> DOWNLOADS
01/29/2009 01:24 AM <DIR> drivers
08/08/2009 05:03 PM <DIR> eaec6abbe0d6052bc3d4fc
01/29/2009 04:31 PM <DIR> leftovers
12/25/2010 03:38 AM <DIR> MAME
02/20/2011 04:20 PM <DIR> Movies
12/15/2009 09:29 AM <DIR> MUSIC
05/26/2009 06:58 PM <DIR> My Received Files
02/26/2011 09:10 AM <DIR> RECYCLER
01/12/2009 09:19 AM <DIR> REST
07/14/2009 10:04 PM <DIR> saved
12/20/2008 01:06 AM <DIR> System Volume Information
0 File(s) 0 bytes
15 Dir(s) 50,368,503,808 bytes free
< End of report >
  • 0

#12
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,018 posts
Lets attempt a manual fix. As you notice, if you compare with the first scan, the drive letters switched.

Boot to the Reatogo desktop. Browse to the Windows folder in the hard drive. Click on the System32 folder and look for the ntoskrnl.exe file. Right click on it and rename it to ntoskrnl.exe.vir. Click on the dllcache folder within the system32 folder. Locate the ntoskrnl.exe file. Right click on it and select Copy. Go back to the system32 folder. Rightclick on an empty space and select Paste. That should replace the ntoskrnl.exe with a fresh copy.

Boot in Normal Mode and let me know the outcome.
  • 0

#13
clutsta

clutsta

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
Okay I tried that, and am still getting a BSOD. This time the 'tech info' is different:

STOP: 0x0000007B (0xB84c7524, 0xc0000034, 0x00000000, 0x00000000)


  • 0

#14
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,018 posts
We need another scan. In order to obtain a uniform scan, you must follow the same process every time you run OTLPE. That will allow us to manipulate the contents of the drive based on its assigned letter. There is an infection in the system. Lets deal with that first, and if after removing the bad files the computer wont boot, there is always an alternative.

Restart the computer back to the OTLPE CD.
  • Double-click on the OTLPE icon.
  • When asked "Do you wish to load the remote registry", select Yes
  • When asked "Do you wish to load remote user profile(s) for scanning", select Yes
  • Ensure the box "Automatically Load All Remaining Users" is checked and press OK
  • OTL should now start. Change the following settings
    • Change Drivers to All
    • Change Standard Registry to All
    • Under the Custom Scan box paste this in

      /md5start
      UXTHEME.DLL
      eventlog.dll
      scecli.dll
      netlogon.dll
      cngaudit.dll
      sceclt.dll
      ntelogon.dll
      logevent.dll
      iaStor.sys
      nvstor.sys
      atapi.sys
      IdeChnDr.sys
      viasraid.sys
      AGP440.sys
      vaxscsi.sys
      nvatabus.sys
      viamraid.sys
      nvata.sys
      nvgts.sys
      iastorv.sys
      ViPrt.sys
      eNetHook.dll
      ahcix86.sys
      KR10N.sys
      nvstor32.sys
      ahcix86s.sys
      nvrd32.sys
      Userinit.exe
      Explorer.exe
      SCLWAPI.dll
      /md5stop
      %SYSTEMDRIVE%\*.*
      %systemroot%\System32\config\*.sav
      %systemroot%\*. /mp /s
      %systemroot%\system32\*.dll /lockedfiles
      %systemroot%\Tasks\*.job

  • Press Run Scan to start the scan.
  • When finished, the file will be saved in drive C:\OTL.txt or D:\OTL.txt.
  • Copy this file to your USB drive.
  • Please post the contents of the C:\OTL.txt or D:\OTL.txt file which ever may be the case in your next reply.

  • 0

#15
clutsta

clutsta

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
C:\OTL.txt:




OTL logfile created on: 2/27/2011 8:12:30 AM - Run
OTLPE by OldTimer - Version 3.1.44.3 Folder = X:\Programs\OTLPE
Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 86.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 97.00% Paging File free
Paging file location(s): C:\pagefile.sys 1500 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 148.97 Gb Total Space | 54.40 Gb Free Space | 36.52% Space Free | Partition Type: NTFS
Drive D: | 465.75 Gb Total Space | 46.91 Gb Free Space | 10.07% Space Free | Partition Type: NTFS
Drive E: | 3.73 Gb Total Space | 3.73 Gb Free Space | 99.98% Space Free | Partition Type: FAT32
Drive X: | 284.08 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet001

========== Win32 Services (SafeList) ==========

SRV - [2009/08/20 17:56:01 | 000,908,056 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto] -- C:\Program Files\AVG\AVG8\avgemc.exe -- (avg8emc)
SRV - [2009/08/20 17:55:55 | 000,297,752 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto] -- C:\Program Files\AVG\AVG8\avgwdsvc.exe -- (avg8wd)
SRV - [2009/03/03 20:25:12 | 000,621,056 | ---- | M] (Nokia.) [On_Demand] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2008/12/16 05:59:50 | 000,150,040 | ---- | M] (Logitech Inc.) [Auto] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
SRV - [2007/06/04 22:20:32 | 000,177,704 | ---- | M] () [Auto] -- C:\WINDOWS\system32\PSIService.exe -- (ProtexisLicensing)
SRV - [2006/06/08 11:02:50 | 000,069,632 | ---- | M] (Creative Labs) [On_Demand] -- C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe -- (Creative Labs Licensing Service)
SRV - [2006/02/03 05:58:20 | 000,086,016 | ---- | M] (Logitech Inc.) [Auto] -- C:\Program Files\Common Files\Logitech\Bluetooth\LBTSERV.EXE -- (LBTServ)
SRV - [2004/09/20 02:29:48 | 000,139,264 | ---- | M] (OTi) [Auto] -- C:\WINDOWS\System32\UStorSrv.exe -- (UStorage Server Service)
SRV - [2002/12/17 02:26:22 | 007,520,337 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe -- (MSSQL$SONY_MEDIAMGR)
SRV - [2002/12/17 02:23:30 | 000,311,872 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE -- (SQLAgent$SONY_MEDIAMGR)


========== Driver Services (All) ==========

DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand] -- -- (USBAAPL)
DRV - File not found [Kernel | On_Demand] -- -- (SymIMMP)
DRV - File not found [Kernel | On_Demand] -- -- (SymIM)
DRV - File not found [Kernel | Disabled] -- -- (Simbad)
DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
DRV - File not found [Kernel | On_Demand] -- -- (Pcouffin)
DRV - File not found [Kernel | System] -- -- (PCIDump)
DRV - File not found [Kernel | On_Demand] -- -- (PalmUSBD)
DRV - File not found [Kernel | System] -- -- (lbrtfdc)
DRV - File not found [Kernel | On_Demand] -- -- (cpuz132)
DRV - File not found [Kernel | System] -- -- (Changer)
DRV - File not found [Kernel | On_Demand] -- -- (bvrp_pci)
DRV - File not found [Kernel | Disabled] -- -- (Atdisk)
DRV - File not found [Kernel | Disabled] -- -- (Abiosdsk)
DRV - [2010/11/02 10:17:02 | 000,040,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\System32\drivers\ndproxy.sys -- (NDProxy)
DRV - [2010/10/16 13:55:00 | 009,623,680 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2010/08/26 08:39:50 | 000,357,248 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\WINDOWS\system32\drivers\srv.sys -- (Srv)
DRV - [2010/05/10 13:41:30 | 000,067,656 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010/02/24 08:11:07 | 000,455,680 | ---- | M] (Microsoft Corporation) [File_System | System] -- C:\WINDOWS\system32\drivers\mrxsmb.sys -- (MRxSmb)
DRV - [2010/02/17 13:25:48 | 000,012,872 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2009/10/20 11:20:16 | 000,265,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\http.sys -- (HTTP)
DRV - [2009/08/20 17:56:04 | 000,335,240 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System] -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2009/08/20 17:56:04 | 000,027,784 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System] -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2009/06/24 06:18:41 | 000,092,928 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\WINDOWS\System32\drivers\ksecdd.sys -- (KSecDD)
DRV - [2009/05/11 18:29:16 | 000,108,552 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System] -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2009/03/19 01:32:48 | 000,023,400 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV - [2009/03/18 22:48:18 | 000,136,704 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\nmwcdnsu.sys -- (nmwcdnsu)
DRV - [2009/03/18 22:48:12 | 000,008,320 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc)
DRV - [2009/02/08 16:37:56 | 000,007,808 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2009/02/08 16:37:48 | 000,007,808 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2009/02/08 16:37:46 | 000,022,016 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2009/02/08 16:37:46 | 000,017,664 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2009/01/19 07:01:16 | 000,717,296 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2008/12/17 01:01:20 | 000,041,752 | ---- | M] (Logitech Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2008/12/17 01:00:12 | 000,768,024 | ---- | M] (Logitech Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\lvrs.sys -- (LVRS)
DRV - [2008/12/17 00:53:44 | 002,686,104 | ---- | M] (Logitech Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LV302V32.SYS -- (PID_PEPI) Logitech QuickCam IM(PID_PEPI)
DRV - [2008/12/17 00:53:22 | 000,013,848 | ---- | M] (Logitech Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\lv302af.sys -- (pepifilter)
DRV - [2008/12/16 05:58:54 | 000,025,624 | ---- | M] () [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
DRV - [2008/08/25 19:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008/08/14 05:04:36 | 000,138,496 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\System32\drivers\afd.sys -- (AFD)
DRV - [2008/06/25 11:47:00 | 000,036,864 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\l1e51x86.sys -- (L1e)
DRV - [2008/06/20 06:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\tcpip.sys -- (Tcpip)
DRV - [2008/06/13 04:11:16 | 004,754,944 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008/04/13 19:13:22 | 000,139,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\System32\drivers\rdpwd.sys -- (RDPWD)
DRV - [2008/04/13 19:13:21 | 000,021,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\System32\drivers\tdtcp.sys -- (TDTCP)
DRV - [2008/04/13 19:13:20 | 000,040,840 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\termdd.sys -- (TermDD)
DRV - [2008/04/13 19:13:20 | 000,012,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\System32\drivers\tdpipe.sys -- (TDPIPE)
DRV - [2008/04/13 14:45:36 | 000,026,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usbser.sys -- (usbser)
DRV - [2008/04/13 14:45:34 | 000,015,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usbscan.sys -- (usbscan)
DRV - [2008/04/13 14:28:39 | 000,175,744 | ---- | M] (Microsoft Corporation) [File_System | System] -- C:\WINDOWS\system32\drivers\rdbss.sys -- (Rdbss)
DRV - [2008/04/13 14:21:00 | 000,162,816 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\netbt.sys -- (NetBT)
DRV - [2008/04/13 14:20:42 | 000,091,520 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ndiswan.sys -- (NdisWan)
DRV - [2008/04/13 14:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\WINDOWS\System32\drivers\ndis.sys -- (NDIS)
DRV - [2008/04/13 14:19:48 | 000,048,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\raspptp.sys -- (PptpMiniport) WAN Miniport (PPTP)
DRV - [2008/04/13 14:19:43 | 000,051,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\rasl2tp.sys -- (Rasl2tp) WAN Miniport (L2TP)
DRV - [2008/04/13 14:19:42 | 000,075,264 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\ipsec.sys -- (IPSec)
DRV - [2008/04/13 14:18:00 | 000,052,480 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\i8042prt.sys -- (i8042prt)
DRV - [2008/04/13 14:17:18 | 000,083,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\wdmaud.sys -- (wdmaud)
DRV - [2008/04/13 14:17:05 | 000,105,344 | ---- | M] (Microsoft Corporation) [File_System | Boot] -- C:\WINDOWS\System32\drivers\mup.sys -- (Mup)
DRV - [2008/04/13 14:15:55 | 000,060,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\sysaudio.sys -- (sysaudio)
DRV - [2008/04/13 14:15:53 | 000,574,976 | ---- | M] (Microsoft Corporation) [File_System | Disabled] -- C:\WINDOWS\System32\drivers\ntfs.sys -- (Ntfs)
DRV - [2008/04/13 14:15:45 | 000,064,512 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\serial.sys -- (Serial)
DRV - [2008/04/13 14:14:29 | 000,143,744 | ---- | M] (Microsoft Corporation) [File_System | Disabled] -- C:\WINDOWS\System32\drivers\fastfat.sys -- (Fastfat)
DRV - [2008/04/13 14:14:21 | 000,063,744 | ---- | M] (Microsoft Corporation) [File_System | Disabled] -- C:\WINDOWS\System32\drivers\cdfs.sys -- (Cdfs)
DRV - [2008/04/13 14:00:19 | 000,030,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\System32\drivers\modem.sys -- (Modem)
DRV - [2008/04/13 13:57:32 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\raspppoe.sys -- (RasPppoe)
DRV - [2008/04/13 13:57:27 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\asyncmac.sys -- (AsyncMac)
DRV - [2008/04/13 13:57:27 | 000,010,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ndistapi.sys -- (NdisTapi)
DRV - [2008/04/13 13:57:21 | 000,034,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\wanarp.sys -- (Wanarp)
DRV - [2008/04/13 13:57:15 | 000,152,832 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ipnat.sys -- (IpNat)
DRV - [2008/04/13 13:57:07 | 000,020,864 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ipinip.sys -- (IpInIp)
DRV - [2008/04/13 13:56:49 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usb8023x.sys -- (usb_rndisx)
DRV - [2008/04/13 13:56:49 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usb8023.sys -- (USB_RNDIS)
DRV - [2008/04/13 13:56:38 | 000,069,120 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\psched.sys -- (PSched)
DRV - [2008/04/13 13:56:32 | 000,035,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\msgpc.sys -- (Gpc)
DRV - [2008/04/13 13:56:02 | 000,034,688 | ---- | M] (Microsoft Corporation) [File_System | System] -- C:\WINDOWS\system32\drivers\netbios.sys -- (NetBIOS)
DRV - [2008/04/13 13:55:58 | 000,014,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ndisuio.sys -- (Ndisuio)
DRV - [2008/04/13 13:54:28 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\irenum.sys -- (IRENUM)
DRV - [2008/04/13 13:53:34 | 000,036,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ip6fw.sys -- (Ip6Fw)
DRV - [2008/04/13 13:51:25 | 000,061,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\nic1394.sys -- (NIC1394)
DRV - [2008/04/13 13:51:25 | 000,060,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\arp1394.sys -- (Arp1394)
DRV - [2008/04/13 13:51:25 | 000,059,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atmarpc.sys -- (Atmarpc)
DRV - [2008/04/13 13:47:37 | 000,025,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usbprint.sys -- (usbprint)
DRV - [2008/04/13 13:46:25 | 000,085,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\nabtsfec.sys -- (NABTSFEC)
DRV - [2008/04/13 13:46:24 | 000,019,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\wstcodec.sys -- (WSTCODEC)
DRV - [2008/04/13 13:46:23 | 000,017,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ccdecode.sys -- (CCDECODE)
DRV - [2008/04/13 13:46:23 | 000,011,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\slip.sys -- (SLIP)
DRV - [2008/04/13 13:46:22 | 000,010,880 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ndisip.sys -- (NdisIP)
DRV - [2008/04/13 13:46:21 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\streamip.sys -- (streamip)
DRV - [2008/04/13 13:46:20 | 000,121,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usbvideo.sys -- (usbvideo) USB Video Device (WDM)
DRV - [2008/04/13 13:46:18 | 000,061,696 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\ohci1394.sys -- (ohci1394)
DRV - [2008/04/13 13:45:40 | 000,032,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usbccgp.sys -- (usbccgp)
DRV - [2008/04/13 13:45:38 | 000,059,520 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usbhub.sys -- (usbhub)
DRV - [2008/04/13 13:45:38 | 000,026,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usbstor.sys -- (USBSTOR)
DRV - [2008/04/13 13:45:36 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usbehci.sys -- (usbehci)
DRV - [2008/04/13 13:45:36 | 000,020,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usbuhci.sys -- (usbuhci)
DRV - [2008/04/13 13:45:27 | 000,010,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\hidusb.sys -- (HidUsb)
DRV - [2008/04/13 13:45:13 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\drmkaud.sys -- (drmkaud)
DRV - [2008/04/13 13:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) USB Audio Driver (WDM)
DRV - [2008/04/13 13:45:09 | 000,172,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\kmixer.sys -- (kmixer)
DRV - [2008/04/13 13:45:09 | 000,056,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\swmidi.sys -- (swmidi)
DRV - [2008/04/13 13:45:07 | 000,006,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\splitter.sys -- (splitter)
DRV - [2008/04/13 13:45:01 | 000,052,864 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\dmusic.sys -- (DMusic)
DRV - [2008/04/13 13:44:48 | 000,799,744 | ---- | M] (Microsoft Corp., Veritas Software) [Kernel | Disabled] -- C:\WINDOWS\system32\drivers\dmboot.sys -- (dmboot)
DRV - [2008/04/13 13:44:46 | 000,153,344 | ---- | M] (Microsoft Corp., Veritas Software) [Kernel | Disabled] -- C:\WINDOWS\system32\drivers\dmio.sys -- (dmio)
DRV - [2008/04/13 13:44:40 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\System32\drivers\vga.sys -- (VgaSave)
DRV - [2008/04/13 13:41:22 | 000,018,560 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\i2omp.sys -- (i2omp)
DRV - [2008/04/13 13:41:22 | 000,008,576 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\System32\drivers\i2omgmt.sys -- (i2omgmt)
DRV - [2008/04/13 13:41:01 | 000,052,352 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\WINDOWS\System32\drivers\volsnap.sys -- (VolSnap)
DRV - [2008/04/13 13:40:58 | 000,042,112 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\imapi.sys -- (Imapi)
DRV - [2008/04/13 13:40:49 | 000,019,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\WINDOWS\System32\drivers\partmgr.sys -- (PartMgr)
DRV - [2008/04/13 13:40:48 | 000,011,392 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\System32\drivers\sfloppy.sys -- (Sfloppy)
DRV - [2008/04/13 13:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\disk.sys -- (Disk)
DRV - [2008/04/13 13:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\cdrom.sys -- (Cdrom)
DRV - [2008/04/13 13:40:31 | 000,005,376 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\viaide.sys -- (ViaIde)
DRV - [2008/04/13 13:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\atapi.sys -- (atapi)
DRV - [2008/04/13 13:40:29 | 000,005,504 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\intelide.sys -- (IntelIde)
DRV - [2008/04/13 13:40:27 | 000,057,600 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\redbook.sys -- (redbook)
DRV - [2008/04/13 13:40:25 | 000,027,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\fdc.sys -- (Fdc)
DRV - [2008/04/13 13:40:25 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\flpydisk.sys -- (Flpydisk)
DRV - [2008/04/13 13:40:12 | 000,015,744 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\serenum.sys -- (serenum)
DRV - [2008/04/13 13:40:10 | 000,080,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\parport.sys -- (Parport)
DRV - [2008/04/13 13:39:53 | 000,004,352 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\swenum.sys -- (swenum)
DRV - [2008/04/13 13:39:52 | 000,007,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\mskssrv.sys -- (MSKSSRV)
DRV - [2008/04/13 13:39:51 | 000,004,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\mspqm.sys -- (MSPQM)
DRV - [2008/04/13 13:39:50 | 000,005,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\mstee.sys -- (MSTEE)
DRV - [2008/04/13 13:39:50 | 000,005,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\mspclock.sys -- (MSPCLOCK)
DRV - [2008/04/13 13:39:48 | 000,014,592 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\kbdhid.sys -- (kbdhid)
DRV - [2008/04/13 13:39:47 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\kbdclass.sys -- (Kbdclass)
DRV - [2008/04/13 13:39:47 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\mouclass.sys -- (Mouclass)
DRV - [2008/04/13 13:39:46 | 000,384,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\update.sys -- (Update)
DRV - [2008/04/13 13:39:46 | 000,042,368 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\WINDOWS\System32\drivers\mountmgr.sys -- (MountMgr)
DRV - [2008/04/13 13:36:52 | 000,073,472 | ---- | M] (Microsoft Corporation) [File_System | Boot] -- C:\WINDOWS\system32\drivers\sr.sys -- (sr)
DRV - [2008/04/13 13:36:46 | 000,015,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\mssmbios.sys -- (mssmbios)
DRV - [2008/04/13 13:36:44 | 000,068,224 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\pci.sys -- (PCI)
DRV - [2008/04/13 13:36:43 | 000,120,192 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\System32\drivers\pcmcia.sys -- (Pcmcia)
DRV - [2008/04/13 13:36:42 | 000,037,248 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\isapnp.sys -- (isapnp)
DRV - [2008/04/13 13:36:40 | 000,042,240 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\viaagp.sys -- (viaagp)
DRV - [2008/04/13 13:36:39 | 000,044,928 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\agpCPQ.sys -- (agpCPQ)
DRV - [2008/04/13 13:36:39 | 000,043,008 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\amdagp.sys -- (amdagp)
DRV - [2008/04/13 13:36:39 | 000,040,960 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\sisagp.sys -- (sisagp)
DRV - [2008/04/13 13:36:38 | 000,042,752 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\alim1541.sys -- (alim1541)
DRV - [2008/04/13 13:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\agp440.sys -- (agp440)
DRV - [2008/04/13 13:36:35 | 000,187,776 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\acpi.sys -- (ACPI)
DRV - [2008/04/13 13:33:28 | 000,044,544 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\System32\drivers\fips.sys -- (Fips)
DRV - [2008/04/13 13:32:59 | 000,129,792 | ---- | M] (Microsoft Corporation) [File_System | Boot] -- C:\WINDOWS\system32\drivers\fltmgr.sys -- (FltMgr)
DRV - [2008/04/13 13:32:51 | 000,196,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\rdpdr.sys -- (rdpdr)
DRV - [2008/04/13 13:32:44 | 000,180,608 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\WINDOWS\system32\drivers\mrxdav.sys -- (MRxDAV)
DRV - [2008/04/13 13:32:39 | 000,030,848 | ---- | M] (Microsoft Corporation) [File_System | System] -- C:\WINDOWS\System32\drivers\npfs.sys -- (Npfs)
DRV - [2008/04/13 13:32:39 | 000,019,072 | ---- | M] (Microsoft Corporation) [File_System | System] -- C:\WINDOWS\System32\drivers\msfs.sys -- (Msfs)
DRV - [2008/04/13 13:32:36 | 000,066,048 | ---- | M] (Microsoft Corporation) [File_System | Disabled] -- C:\WINDOWS\System32\drivers\udfs.sys -- (Udfs)
DRV - [2008/04/13 13:31:32 | 000,036,352 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\intelppm.sys -- (intelppm)
DRV - [2008/04/13 11:39:23 | 000,142,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\aec.sys -- (aec)
DRV - [2008/04/13 11:36:05 | 000,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2008/03/27 01:27:46 | 000,503,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\wdf01000.sys -- (Wdf01000)
DRV - [2007/12/17 04:14:06 | 000,012,400 | ---- | M] () [Kernel | System] -- C:\WINDOWS\system32\drivers\AsIO.sys -- (AsIO)
DRV - [2007/11/13 05:25:53 | 000,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2006/09/15 07:30:10 | 000,082,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\WudfRd.sys -- (WudfRd)
DRV - [2006/09/15 07:29:52 | 000,076,544 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\WudfPf.sys -- (WudfPf)
DRV - [2006/04/10 02:05:10 | 000,104,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\wceusbsh.sys -- (wceusbsh)
DRV - [2006/03/27 01:53:28 | 000,167,808 | ---- | M] (NETGEAR Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\wg111v2.sys -- (RTLWUSB)
DRV - [2006/02/01 01:17:12 | 000,428,269 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (btaudio)
DRV - [2006/02/01 01:13:50 | 000,854,154 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL)
DRV - [2006/02/01 01:11:14 | 000,030,363 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver)
DRV - [2006/02/01 01:10:32 | 000,064,344 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB)
DRV - [2006/02/01 01:06:30 | 000,045,475 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btwhid.sys -- (btwhid)
DRV - [2005/12/20 03:54:34 | 000,027,008 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LHidKE.Sys -- (LHidKe)
DRV - [2005/12/20 03:54:28 | 000,069,376 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LMOUKE.sys -- (LMouKE)
DRV - [2005/10/14 01:15:18 | 001,302,812 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ialmnt5.sys -- (ialm)
DRV - [2005/09/21 03:14:32 | 001,350,784 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\sigfilt.sys -- (sigfilt)
DRV - [2005/08/16 23:41:08 | 001,022,040 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2005/05/25 02:34:00 | 000,158,464 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\CTUSFSYN.SYS -- (CTUSFSYN)
DRV - [2005/01/10 04:15:00 | 000,138,752 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\CTSFM2K.SYS -- (ctsfm2k)
DRV - [2005/01/10 04:15:00 | 000,106,496 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\CTOSS2K.SYS -- (ossrv)
DRV - [2004/12/22 05:58:00 | 000,008,704 | ---- | M] (Creative Technology Ltd.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\PFModNT.sys -- (PfModNT)
DRV - [2004/10/13 12:30:46 | 000,155,648 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\e100b325.sys -- (E100B) Intel®
DRV - [2004/08/03 16:00:00 | 000,032,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ipfltdrv.sys -- (IpFilterDriver)
DRV - [2004/08/03 16:00:00 | 000,032,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\nwlnkfwd.sys -- (NwlnkFwd)
DRV - [2004/08/03 16:00:00 | 000,018,688 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\System32\drivers\cdaudio.sys -- (Cdaudio)
DRV - [2004/08/03 16:00:00 | 000,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)
DRV - [2004/08/03 16:00:00 | 000,016,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\raspti.sys -- (Raspti)
DRV - [2004/08/03 16:00:00 | 000,012,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\nwlnkflt.sys -- (NwlnkFlt)
DRV - [2004/08/03 16:00:00 | 000,012,032 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\System32\drivers\ws2ifsl.sys -- (WS2IFSL)
DRV - [2004/08/03 16:00:00 | 000,011,648 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\System32\drivers\acpiec.sys -- (ACPIEC)
DRV - [2004/08/03 16:00:00 | 000,008,832 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\rasacd.sys -- (RasAcd)
DRV - [2004/08/03 16:00:00 | 000,007,936 | ---- | M] (Microsoft Corporation) [Recognizer | System] -- C:\WINDOWS\System32\drivers\fs_rec.sys -- (Fs_Rec)
DRV - [2004/08/03 16:00:00 | 000,006,784 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\System32\drivers\parvdm.sys -- (ParVdm)
DRV - [2004/08/03 16:00:00 | 000,005,888 | ---- | M] (Microsoft Corp., Veritas Software.) [Kernel | Disabled] -- C:\WINDOWS\system32\drivers\dmload.sys -- (dmload)
DRV - [2004/08/03 16:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\rdpcdd.sys -- (RDPCDD)
DRV - [2004/08/03 16:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\System32\drivers\mnmdd.sys -- (mnmdd)
DRV - [2004/08/03 16:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\System32\drivers\beep.sys -- (Beep)
DRV - [2004/08/03 16:00:00 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\System32\drivers\null.sys -- (Null)
DRV - [2004/08/03 16:00:00 | 000,002,864 | ---- | M] (Microsoft Corporation) [Adapter | On_Demand] -- C:\WINDOWS\System32\winsock.dll -- (Winsock)
DRV - [2003/11/17 01:59:20 | 000,212,224 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\HSFHWBS2.sys -- (HSFHWBS2)
DRV - [2003/11/17 01:58:02 | 000,680,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2003/11/17 01:56:26 | 001,042,432 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\HSF_DP.sys -- (HSF_DP)
DRV - [2003/04/08 22:48:08 | 000,011,043 | ---- | M] (Conexant) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\mdmxsdk.sys -- (mdmxsdk)
DRV - [2002/05/05 20:01:08 | 000,017,005 | ---- | M] (Adaptec) [Kernel | Auto] -- C:\WINDOWS\System32\drivers\ASPI32.SYS -- (Aspi32)
DRV - [2002/04/08 11:44:22 | 000,039,552 | ---- | M] (Prolific Technology Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ser2pl.sys -- (Ser2pl)
DRV - [2001/08/17 01:07:44 | 000,025,952 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\hpn.sys -- (hpn)
DRV - [2001/08/17 01:07:44 | 000,020,192 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\dpti2o.sys -- (dpti2o)
DRV - [2001/08/17 01:07:44 | 000,019,072 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\sparrow.sys -- (Sparrow)
DRV - [2001/08/17 01:07:42 | 000,030,688 | ---- | M] (LSI Logic) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys -- (sym_u3)
DRV - [2001/08/17 01:07:42 | 000,005,504 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\perc2hib.sys -- (perc2hib)
DRV - [2001/08/17 01:07:40 | 000,028,384 | ---- | M] (LSI Logic) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\sym_hi.sys -- (sym_hi)
DRV - [2001/08/17 01:07:40 | 000,027,296 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\perc2.sys -- (perc2)
DRV - [2001/08/17 01:07:38 | 000,056,960 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\aic78xx.sys -- (aic78xx)
DRV - [2001/08/17 01:07:36 | 000,055,168 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\aic78u2.sys -- (aic78u2)
DRV - [2001/08/17 01:07:36 | 000,032,640 | ---- | M] (LSI Logic) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\symc8xx.sys -- (symc8xx)
DRV - [2001/08/17 01:07:34 | 000,016,256 | ---- | M] (Symbios Logic Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\symc810.sys -- (symc810)
DRV - [2001/08/17 01:07:32 | 000,101,888 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\adpu160m.sys -- (adpu160m)
DRV - [2001/08/17 00:59:44 | 000,003,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\audstub.sys -- (audstub)
DRV - [2001/08/17 00:57:38 | 000,016,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\MODEMCSA.sys -- (MODEMCSA)
DRV - [2001/08/17 00:52:50 | 000,125,056 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\ftdisk.sys -- (Ftdisk)
DRV - [2001/08/17 00:52:22 | 000,036,736 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\ultra.sys -- (ultra)
DRV - [2001/08/17 00:52:20 | 000,045,312 | ---- | M] (QLogic Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\ql12160.sys -- (ql12160)
DRV - [2001/08/17 00:52:20 | 000,040,320 | ---- | M] (QLogic Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\ql1080.sys -- (ql1080)
DRV - [2001/08/17 00:52:18 | 000,049,024 | ---- | M] (QLogic Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\ql1280.sys -- (ql1280)
DRV - [2001/08/17 00:52:16 | 000,179,584 | ---- | M] (Mylex Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\dac2w2k.sys -- (dac2w2k)
DRV - [2001/08/17 00:52:16 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\ql1240.sys -- (ql1240)
DRV - [2001/08/17 00:52:16 | 000,033,152 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\ql10wnt.sys -- (Ql10wnt)
DRV - [2001/08/17 00:52:16 | 000,014,720 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\dac960nt.sys -- (dac960nt)
DRV - [2001/08/17 00:52:12 | 000,017,280 | ---- | M] (American Megatrends Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\mraid35x.sys -- (mraid35x)
DRV - [2001/08/17 00:52:08 | 000,016,000 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\ini910u.sys -- (ini910u)
DRV - [2001/08/17 00:52:08 | 000,013,952 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\System32\drivers\cbidf2k.sys -- (cbidf2k)
DRV - [2001/08/17 00:52:08 | 000,013,952 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\cbidf2k.sys -- (cbidf)
DRV - [2001/08/17 00:52:06 | 000,014,976 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\cpqarray.sys -- (Cpqarray)
DRV - [2001/08/17 00:52:06 | 000,007,680 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys -- (cd20xrnt)
DRV - [2001/08/17 00:52:04 | 000,022,400 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\asc3350p.sys -- (asc3350p)
DRV - [2001/08/17 00:52:04 | 000,012,032 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\amsint.sys -- (amsint)
DRV - [2001/08/17 00:52:02 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\aha154x.sys -- (Aha154x)
DRV - [2001/08/17 00:52:00 | 000,026,496 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\asc.sys -- (asc)
DRV - [2001/08/17 00:52:00 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS -- (abp480n5)
DRV - [2001/08/17 00:51:58 | 000,014,848 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\asc3550.sys -- (asc3550)
DRV - [2001/08/17 00:51:56 | 000,005,248 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\aliide.sys -- (AliIde)
DRV - [2001/08/17 00:51:56 | 000,004,992 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\toside.sys -- (TosIde)
DRV - [2001/08/17 00:51:54 | 000,006,656 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\cmdide.sys -- (CmdIde)
DRV - [2001/08/17 00:48:00 | 000,012,160 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\mouhid.sys -- (mouhid)
DRV - [2001/08/16 22:53:32 | 000,003,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\qv2kux.sys -- (QV2KUX)
DRV - [2001/08/16 21:56:16 | 000,007,552 | ---- | M] (Sony Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\SONYPVU1.SYS -- (SONYPVU1) Sony USB Filter Driver (SONYPVU1)
DRV - [2001/08/16 21:51:52 | 000,003,328 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\pciide.sys -- (PCIIde)
DRV - [2001/08/16 21:48:00 | 000,017,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\sermouse.sys -- (sermouse)


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www1.ap.dell....c=au&l=en&s=gen
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft...=ie&ar=iesearch
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www1.ap.dell....c=au&l=en&s=gen
IE - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn...st/srchcust.htm
IE - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn...st/srchasst.htm


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\CLuTsTa_ON_C\Software\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKU\CLuTsTa_ON_C\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
IE - HKU\CLuTsTa_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com.au/
IE - HKU\CLuTsTa_ON_C\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
IE - HKU\CLuTsTa_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\CLuTsTa_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local




========== FireFox ==========

FF - prefs.js..browser.search.defaultthis.engineName: "TranslatorBar 5 Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.condui...={searchTerms}"
FF - prefs.js..browser.startup.homepage: "www.google.com.au"
FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:8.5.0.429
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}:6.0.03
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}:6.0.16
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {b9b97401-98e1-4942-930d-c36652dab7f2}:2.7.2.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: [email protected]:2.1.1
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.13
FF - prefs.js..keyword.URL: "http://search.condui...d=CT2642706&q="

FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG8\Firefox [2009/12/21 16:35:05 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2010/07/12 12:18:59 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2010/03/30 07:16:04 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/01/03 00:40:43 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/02/08 23:59:33 | 000,000,000 | ---D | M]

[2009/10/23 17:06:27 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\CLuTsTa\Application Data\Mozilla\Extensions
[2009/05/23 18:45:38 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\CLuTsTa\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/10/23 17:06:27 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\CLuTsTa\Application Data\Mozilla\Extensions\[email protected]
[2009/06/05 12:22:24 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\CLuTsTa\Application Data\Mozilla\Extensions\[email protected]
[2011/01/16 02:02:31 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\CLuTsTa\Application Data\Mozilla\Firefox\Profiles\yt6qxmus.default\extensions
[2010/06/26 12:27:22 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\CLuTsTa\Application Data\Mozilla\Firefox\Profiles\yt6qxmus.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/09/03 17:38:21 | 000,000,000 | ---D | M] (TranslatorBar 5 Toolbar) -- C:\Documents and Settings\CLuTsTa\Application Data\Mozilla\Firefox\Profiles\yt6qxmus.default\extensions\{b9b97401-98e1-4942-930d-c36652dab7f2}
[2011/01/16 02:02:26 | 000,000,000 | ---D | M] (English (Australian) Dictionary) -- C:\Documents and Settings\CLuTsTa\Application Data\Mozilla\Firefox\Profiles\yt6qxmus.default\extensions\[email protected]
[2010/08/27 00:49:26 | 000,000,933 | ---- | M] () -- C:\Documents and Settings\CLuTsTa\Application Data\Mozilla\Firefox\Profiles\yt6qxmus.default\searchplugins\conduit.xml
[2011/01/16 02:02:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/01/03 00:40:33 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2008/01/27 19:49:46 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
[2010/03/30 07:16:17 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}
[2010/03/30 07:23:39 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
[2010/04/29 16:59:12 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/09/13 18:04:05 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2009/12/21 16:35:05 | 000,000,000 | ---D | M] (AVG Safe Search) -- C:\PROGRAM FILES\AVG\AVG8\FIREFOX
[2010/03/30 07:16:04 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011/01/03 00:40:31 | 000,025,048 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browserdirprovider.dll
[2011/01/03 00:40:31 | 000,140,248 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\brwsrcmp.dll
[2010/07/16 14:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2006/12/11 19:48:22 | 001,440,560 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\plugins\npLegitCheckPlugin.dll
[2007/04/13 03:23:49 | 000,114,688 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npmozax.dll
[2011/01/03 00:40:37 | 000,066,520 | ---- | M] (mozilla.org) -- C:\Program Files\Mozilla Firefox\plugins\npnul32.dll
[2006/10/26 05:12:16 | 000,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
[2007/05/10 07:52:34 | 000,095,864 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll
[2010/10/01 16:35:26 | 000,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
[2010/10/01 16:35:26 | 000,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
[2010/10/01 16:35:27 | 000,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
[2010/10/01 16:35:27 | 000,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
[2010/10/01 16:35:27 | 000,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
[2010/10/01 16:35:27 | 000,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
[2010/10/01 16:35:27 | 000,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
[2011/01/03 00:40:39 | 000,001,394 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazondotcom.xml
[2011/01/03 00:40:39 | 000,002,193 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\answers.xml
[2011/01/03 00:40:39 | 000,001,534 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\creativecommons.xml
[2011/01/03 00:40:39 | 000,002,344 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay.xml
[2011/01/03 00:40:39 | 000,002,371 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.xml
[2007/07/23 20:35:03 | 000,009,216 | -HS- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\Thumbs.db
[2011/01/03 00:40:39 | 000,001,178 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia.xml
[2011/01/03 00:40:39 | 000,001,096 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo.xml

O1 HOSTS File: ([2010/05/18 08:29:51 | 000,395,194 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 13648 more lines...
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {41196A87-6649-48EB-B29C-5D590B50FE7A} - No CLSID value found.
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (no name) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - No CLSID value found.
O2 - BHO: (no name) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - No CLSID value found.
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKU\CLuTsTa_ON_C\..\Toolbar\ShellBrowser: (&Address) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O3 - HKU\CLuTsTa_ON_C\..\Toolbar\WebBrowser: (&Address) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O3 - HKU\CLuTsTa_ON_C\..\Toolbar\WebBrowser: (&Links) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O4 - HKU\CLuTsTa_ON_C..\Run: [AdobeUpdater] C:\Program Files\Common Files\Adobe\Updater\AdobeUpdater.exe (Adobe Systems Incorporated)
O4 - HKU\CLuTsTa_ON_C..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (Microsoft Corporation)
O4 - HKU\.DEFAULT..\RunOnce: [] File not found
O4 - HKU\CLuTsTa_ON_C..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\System32\Macromed\Flash\FlashUtil10l_Plugin.exe (Adobe Systems, Inc.)
O4 - HKU\LocalService_ON_C..\RunOnce: [] File not found
O4 - HKU\NetworkService_ON_C..\RunOnce: [] File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKU\CLuTsTa_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000025 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000027 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000028 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000029 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O16 - DPF: {41564D57-9980-0010-8000-00AA00389B71} http://download.micr...01F/wmvadvd.cab (Reg Error: Key error.)
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} http://download.mcaf...01/mcinsctl.cab (McAfee.com Operating System Class)
O16 - DPF: {78AEEDE8-7345-4FB5-A8FE-4BFF16EF25FC} http://mvt.mcafee.co...3,0,1,0/mvt.cab (McAfee Virtual Technician Control Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macr...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.1.1.1
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (logonui.exe) - C:\WINDOWS\System32\logonui.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - Winlogon\Notify\awvtt: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\crypt32chain: DllName - crypt32.dll - C:\WINDOWS\System32\crypt32.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cryptnet: DllName - cryptnet.dll - C:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cscdll: DllName - cscdll.dll - C:\WINDOWS\System32\cscdll.dll (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - %SystemRoot%\System32\dimsntfy.dll - C:\WINDOWS\system32\dimsntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\LBTWlgn: DllName - c:\program files\common files\logitech\bluetooth\LBTWlgn.dll - C:\Program Files\Common Files\Logitech\Bluetooth\LBTWlgn.DLL (Logitech Inc.)
O20 - Winlogon\Notify\ScCertProp: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\Schedule: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\sclgntfy: DllName - sclgntfy.dll - C:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\SensLogn: DllName - WlNotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\termsrv: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\WgaLogon: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\wlballoon: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\yabxywu: DllName - yabxywu.dll - File not found
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Component Categories cache daemon - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O24 - Desktop Components:0 (My Current Home Page) - About:Home
O24 - Desktop WallPaper: B:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: B:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msapsspc.dll) - C:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (schannel.dll) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digest.dll) - C:\WINDOWS\System32\digest.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msnsspc.dll) - C:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\WINDOWS\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\WINDOWS\System32\wdigest.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007/01/15 04:44:02 | 000,000,050 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 06:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{0cba94ca-bea1-11de-8d00-00235404deb4}\Shell\AutoRun\command - "" = G:\InstallTomTomHOME.exe
O33 - MountPoints2\{3449c919-05da-11e0-8d73-00235404deb4}\Shell\AuToPlAy\command - "" = G:\bmuigm.pif
O33 - MountPoints2\{3449c919-05da-11e0-8d73-00235404deb4}\Shell\AutoRun\command - "" = G:\bmuigm.pif
O33 - MountPoints2\{3449c919-05da-11e0-8d73-00235404deb4}\Shell\exPlORe\COMMAnd - "" = G:\bmuigm.pif
O33 - MountPoints2\{3449c919-05da-11e0-8d73-00235404deb4}\Shell\Open\comMaNd - "" = G:\bmuigm.pif
O33 - MountPoints2\{8d712d14-1188-11e0-8d76-002401b2914f}\Shell - "" = AutoRun
O33 - MountPoints2\{8d712d14-1188-11e0-8d76-002401b2914f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{8d712d14-1188-11e0-8d76-002401b2914f}\Shell\AutoRun\command - "" = G:\setup_vmb_lite.exe /checkApplicationPresence
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/02/26 16:28:09 | 002,192,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ntoskrnl.exe
[2011/02/22 14:20:14 | 000,000,000 | -HSD | C] -- C:\found.000
[2011/02/19 23:08:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CLuTsTa\Desktop\asamov_-_and_now-retail-2005-ysp
[2011/02/19 22:36:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CLuTsTa\Desktop\DJ Spinna - Best Of Sade Mix-MIXFIEND
[2011/02/18 23:10:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CLuTsTa\Desktop\Sepultura MP3
[2011/02/17 02:23:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CLuTsTa\Desktop\Portishead-Discography
[2011/02/13 03:08:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CLuTsTa\Desktop\Sublime Studio Discography
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2027/01/22 00:18:23 | 000,003,120 | ---- | M] () -- C:\WINDOWS\33orpae.tpi
[2011/02/21 20:44:35 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/02/21 19:09:10 | 000,000,868 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2011/02/21 16:36:42 | 071,479,637 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2011/02/21 04:07:22 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011/02/21 01:20:33 | 001,373,161 | ---- | M] () -- C:\Documents and Settings\CLuTsTa\Desktop\IMG_2139.jpg
[2011/02/21 01:20:21 | 001,433,706 | ---- | M] () -- C:\Documents and Settings\CLuTsTa\Desktop\IMG_2138.jpg
[2011/02/21 01:20:08 | 001,365,283 | ---- | M] () -- C:\Documents and Settings\CLuTsTa\Desktop\IMG_2137.jpg
[2011/02/21 01:19:52 | 001,280,161 | ---- | M] () -- C:\Documents and Settings\CLuTsTa\Desktop\IMG_2136.jpg
[2011/02/17 01:05:36 | 000,193,536 | ---- | M] () -- C:\Documents and Settings\CLuTsTa\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/02/10 23:15:44 | 000,453,494 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/02/10 23:15:44 | 000,076,282 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/02/09 17:30:01 | 000,000,211 | RHS- | M] () -- C:\boot.ini
[2011/02/09 16:23:38 | 000,002,422 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/02/09 16:23:30 | 2146,480,128 | -HS- | M] () -- C:\hiberfil.sys
[2011/02/09 16:23:30 | 000,309,992 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/02/09 16:06:15 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2027/01/22 00:18:23 | 000,003,120 | ---- | C] () -- C:\WINDOWS\33orpae.tpi
[2011/02/21 01:20:33 | 001,373,161 | ---- | C] () -- C:\Documents and Settings\CLuTsTa\Desktop\IMG_2139.jpg
[2011/02/21 01:20:21 | 001,433,706 | ---- | C] () -- C:\Documents and Settings\CLuTsTa\Desktop\IMG_2138.jpg
[2011/02/21 01:20:08 | 001,365,283 | ---- | C] () -- C:\Documents and Settings\CLuTsTa\Desktop\IMG_2137.jpg
[2011/02/21 01:19:52 | 001,280,161 | ---- | C] () -- C:\Documents and Settings\CLuTsTa\Desktop\IMG_2136.jpg
[2010/12/26 19:06:38 | 000,138,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010/12/26 19:06:37 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\CLuTsTa\Application Data\PnkBstrK.sys
[2010/08/17 02:10:08 | 000,176,235 | ---- | C] () -- C:\WINDOWS\System32\Primomonnt.dll
[2010/04/11 08:17:48 | 000,014,942 | -HS- | C] () -- C:\Documents and Settings\CLuTsTa\Local Settings\Application Data\4121217452
[2010/04/11 08:05:44 | 000,014,954 | -HS- | C] () -- C:\Documents and Settings\CLuTsTa\Local Settings\Application Data\3GQbYP0I
[2009/05/07 00:57:56 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\AsIO.dll
[2009/05/07 00:57:56 | 000,012,400 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys
[2009/04/27 19:07:32 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\OPDSL.DLL
[2009/01/19 03:06:52 | 000,000,029 | ---- | C] () -- C:\WINDOWS\ASAMAIN.ini
[2008/12/31 01:04:42 | 000,691,560 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2008/12/20 07:17:03 | 000,033,252 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2008/12/20 07:16:06 | 000,032,363 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2008/12/20 07:16:06 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2008/12/20 02:45:27 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2008/12/19 10:15:58 | 004,338,246 | ---- | C] () -- C:\WINDOWS\System32\libavcodec.dll
[2008/12/17 11:59:54 | 000,560,802 | ---- | C] () -- C:\WINDOWS\System32\libmplayer.dll
[2008/12/16 05:58:54 | 000,025,624 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPr2Mon.sys
[2008/12/16 05:50:56 | 000,013,584 | ---- | C] () -- C:\WINDOWS\System32\drivers\iKeyLgFT.dll
[2008/09/17 07:55:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2008/06/18 20:46:26 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2008/06/18 07:17:26 | 088,144,689 | ---- | C] () -- C:\Documents and Settings\CLuTsTa\My Documents.rar
[2008/06/10 17:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2008/06/10 17:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2008/06/10 17:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2008/06/10 17:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2008/06/10 17:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2008/06/10 17:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2008/06/10 17:02:32 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2008/06/10 17:02:32 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2008/06/10 17:02:32 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2008/05/19 05:25:42 | 000,000,019 | ---- | C] () -- C:\WINDOWS\SoundConverter.INI
[2007/07/19 08:42:28 | 000,001,928 | ---- | C] () -- C:\WINDOWS\Palm OS Emulator.ini
[2007/06/25 09:41:43 | 000,000,345 | -HS- | C] () -- C:\WINDOWS\System32\cojpeytj.ini
[2007/06/24 09:43:10 | 000,000,345 | -HS- | C] () -- C:\WINDOWS\System32\crcmnvjb.ini
[2007/06/23 09:43:04 | 000,000,345 | -HS- | C] () -- C:\WINDOWS\System32\tclnexrp.ini
[2007/06/22 09:43:57 | 000,900,773 | -HS- | C] () -- C:\WINDOWS\System32\rbgiwiws.ini
[2007/06/21 09:37:58 | 000,900,713 | -HS- | C] () -- C:\WINDOWS\System32\vfayolyx.ini
[2007/06/20 09:41:11 | 000,900,681 | -HS- | C] () -- C:\WINDOWS\System32\dcxxuhil.ini
[2007/06/19 09:38:19 | 000,900,534 | -HS- | C] () -- C:\WINDOWS\System32\xuckkhku.ini
[2007/06/18 09:36:35 | 000,930,718 | -HS- | C] () -- C:\WINDOWS\System32\gqygnxpy.ini
[2007/06/17 09:37:14 | 000,922,009 | -HS- | C] () -- C:\WINDOWS\System32\aulhbhpo.ini
[2007/06/16 09:37:13 | 000,921,908 | -HS- | C] () -- C:\WINDOWS\System32\ygdifxep.ini
[2007/06/15 09:36:35 | 000,921,830 | -HS- | C] () -- C:\WINDOWS\System32\chxthlxu.ini
[2007/06/14 01:23:52 | 000,894,707 | -HS- | C] () -- C:\WINDOWS\System32\hlpbpcyx.ini
[2007/06/13 01:18:47 | 000,932,761 | -HS- | C] () -- C:\WINDOWS\System32\tkfqxabo.ini
[2007/06/12 01:20:07 | 000,948,083 | -HS- | C] () -- C:\WINDOWS\System32\dennysqv.ini
[2007/06/12 01:17:13 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\CLuTsTa\S-1-5-21-867479323-834159104-2347132788-1006.rrr.LOG
[2007/06/12 01:17:13 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\LocalService\S-1-5-19.rrr.LOG
[2007/06/12 01:17:12 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\NetworkService\S-1-5-20.rrr.LOG
[2007/03/26 00:24:45 | 000,002,508 | ---- | C] () -- C:\Documents and Settings\LocalService\Application Data\$_hpcst$.hpc
[2007/02/02 17:59:04 | 000,081,110 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
[2007/01/24 21:20:14 | 000,000,107 | ---- | C] () -- C:\Documents and Settings\CLuTsTa\default.pls
[2007/01/24 09:30:59 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2007/01/10 03:16:01 | 000,000,000 | ---- | C] () -- C:\WINDOWS\QuickInstall.INI
[2006/12/14 19:55:07 | 000,002,508 | ---- | C] () -- C:\Documents and Settings\CLuTsTa\Application Data\$_hpcst$.hpc
[2006/08/15 08:53:07 | 000,000,002 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2006/08/02 21:48:20 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\CNMVS66.DLL
[2006/07/18 00:07:50 | 000,000,130 | ---- | C] () -- C:\Documents and Settings\CLuTsTa\Local Settings\Application Data\fusioncache.dat
[2006/06/29 01:40:21 | 000,193,536 | ---- | C] () -- C:\Documents and Settings\CLuTsTa\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2006/06/29 01:13:49 | 000,000,072 | ---- | C] () -- C:\WINDOWS\sbwin.ini
[2006/06/08 11:14:06 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2006/06/08 11:11:50 | 000,000,285 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2006/06/08 11:03:54 | 000,005,811 | ---- | C] () -- C:\WINDOWS\System32\CTSBMB.INI
[2006/06/08 10:44:29 | 000,006,999 | ---- | C] () -- C:\WINDOWS\System32\Sigfilt.ini
[2006/06/08 10:44:29 | 000,000,029 | ---- | C] () -- C:\WINDOWS\System32\ctzapxx.ini
[2006/06/08 10:44:14 | 001,345,520 | ---- | C] () -- C:\WINDOWS\System32\CTMBHA.DLL
[2006/06/08 10:42:20 | 000,000,436 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2006/02/01 01:22:36 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\btprn2k.dll
[2004/08/10 00:12:05 | 000,000,780 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2004/08/10 00:01:18 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2004/08/09 23:57:52 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2001/11/13 23:56:00 | 001,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll

========== LOP Check ==========

[2010/05/19 22:51:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\Softland
[2007/10/11 09:53:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Ableton
[2011/01/07 10:22:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Camfrog
[2010/05/19 03:15:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Canon
[2009/01/28 05:54:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\DAEMON Tools
[2009/01/19 07:01:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\DAEMON Tools Lite
[2009/01/28 05:54:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\DAEMON Tools Pro
[2008/01/28 00:03:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\eBay
[2010/06/28 01:29:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Error Fix
[2010/06/15 07:58:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Facebook
[2009/05/16 04:48:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\GetRightToGo
[2007/06/25 11:34:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Grisoft
[2011/01/03 00:09:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\id Software
[2009/10/11 06:37:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\ImTOO Software Studio
[2006/07/02 10:44:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Leadertech
[2009/06/07 09:12:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\LimeWire
[2010/11/23 06:12:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\MSNInstaller
[2009/05/24 22:16:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Nokia
[2006/08/08 21:00:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Opera
[2009/05/24 21:15:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\PC Suite
[2010/08/17 02:11:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\PrimoPDF
[2006/09/21 11:00:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Publish Providers
[2010/05/19 22:51:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Softland
[2006/09/21 10:58:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Sony
[2007/04/04 21:30:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Template
[2009/10/23 17:06:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\TomTom
[2008/06/18 20:49:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\TuneUp Software
[2010/02/21 09:34:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\URSoft
[2011/02/21 00:49:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\uTorrent
[2006/07/16 08:06:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\Vso
[2008/02/26 18:49:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\WholeSecurity
[2007/06/18 10:28:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CLuTsTa\Application Data\WinPatrol

========== Purity Check ==========



========== Custom Scans ==========



< MD5 for: AGP440.SYS >
[2004/08/03 10:05:44 | 018,738,937 | ---- | M] () .cab file -- C:\4e78a4828593e2a7bc07e3f0335379\i386\sp2.cab:AGP440.sys
[2004/08/03 16:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\i386\sp2.cab:AGP440.sys
[2004/08/03 16:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008/12/20 05:45:08 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008/12/20 05:45:08 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008/04/13 13:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008/04/13 13:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
[2004/08/03 10:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\i386\AGP440.SYS
[2004/08/03 10:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\$NtServicePackUninstall$\agp440.sys

< MD5 for: ATAPI.SYS >
[2004/08/03 10:05:44 | 018,738,937 | ---- | M] () .cab file -- C:\4e78a4828593e2a7bc07e3f0335379\i386\sp2.cab:atapi.sys
[2004/08/03 16:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\i386\sp2.cab:atapi.sys
[2004/08/03 16:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008/12/20 05:45:08 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008/12/20 05:45:08 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008/04/13 13:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008/04/13 13:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\dllcache\atapi.sys
[2008/04/13 13:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008/04/13 13:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\system32\drivers\atapi.sys
[2008/04/13 13:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0026\DriverFiles\i386\atapi.sys
[2008/04/13 13:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0027\DriverFiles\i386\atapi.sys
[2004/08/03 09:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\i386\atapi.sys
[2004/08/03 09:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2004/08/03 09:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0003\DriverFiles\i386\atapi.sys
[2004/08/03 09:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0012\DriverFiles\i386\atapi.sys

< MD5 for: EVENTLOG.DLL >
[2008/04/13 19:11:53 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008/04/13 19:11:53 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\system32\eventlog.dll
[2004/08/03 16:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\i386\eventlog.dll
[2004/08/03 16:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2008/04/13 19:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\explorer.exe
[2008/04/13 19:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2007/06/13 06:26:03 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=7712DF0CDDE3A5AC89843E61CD5B3658 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007/06/13 05:23:07 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=97BD6515465659FF8F3B7BE375B2EA87 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
[2004/08/03 16:00:00 | 001,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- C:\WINDOWS\$NtUninstallKB938828$\explorer.exe

< MD5 for: NETLOGON.DLL >
[2008/04/13 19:12:01 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008/04/13 19:12:01 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\system32\netlogon.dll
[2004/08/03 16:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\i386\netlogon.dll
[2004/08/03 16:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll

< MD5 for: SCECLI.DLL >
[2004/08/03 16:00:00 | 000,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\i386\scecli.dll
[2004/08/03 16:00:00 | 000,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008/04/13 19:12:05 | 000,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008/04/13 19:12:05 | 000,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: USERINIT.EXE >
[2004/08/03 16:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\i386\userinit.exe
[2004/08/03 16:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
[2008/04/13 19:12:38 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008/04/13 19:12:38 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\system32\userinit.exe

< MD5 for: UXTHEME.DLL >
[2004/08/03 16:00:00 | 000,218,624 | ---- | M] (Microsoft Corporation) MD5=2CDE496666A975A2CE8F969F3042C8DB -- C:\i386\uxtheme.dll
[2004/08/03 16:00:00 | 000,218,624 | ---- | M] (Microsoft Corporation) MD5=2CDE496666A975A2CE8F969F3042C8DB -- C:\WINDOWS\$NtServicePackUninstall$\uxtheme.dll
[2008/04/13 19:12:08 | 000,218,624 | ---- | M] (Microsoft Corporation) MD5=7A2CC3719B255E6B5D74396183B7715B -- C:\WINDOWS\ServicePackFiles\i386\uxtheme.dll
[2008/04/13 19:12:08 | 000,218,624 | ---- | M] (Microsoft Corporation) MD5=7A2CC3719B255E6B5D74396183B7715B -- C:\WINDOWS\system32\uxtheme.dll

< %SYSTEMDRIVE%\*.* >
[2007/01/15 04:44:02 | 000,000,050 | ---- | M] () -- C:\AUTOEXEC.BAT
[2011/02/09 17:30:01 | 000,000,211 | RHS- | M] () -- C:\boot.ini
[2011/02/22 15:48:11 | 000,003,564 | ---- | M] () -- C:\bootex.log
[2001/09/12 23:59:20 | 012,544,000 | ---- | M] () -- C:\CLuTZ- mini mix.mp3
[2004/08/10 00:04:08 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2006/06/08 10:45:48 | 000,005,052 | RH-- | M] () -- C:\dell.sdr
[2010/04/18 07:39:28 | 000,009,830 | ---- | M] () -- C:\exefix.reg
[2011/02/09 16:23:30 | 2146,480,128 | -HS- | M] () -- C:\hiberfil.sys
[2006/06/28 23:41:23 | 000,004,128 | ---- | M] () -- C:\INFCACHE.1
[2004/08/10 00:04:08 | 000,000,000 | -H-- | M] () -- C:\IO.SYS
[2006/06/08 11:07:09 | 000,000,302 | -H-- | M] () -- C:\IPH.PH
[2008/04/07 20:17:13 | 000,000,589 | ---- | M] () -- C:\irunin.ini
[2004/08/10 00:04:08 | 000,000,000 | -H-- | M] () -- C:\MSDOS.SYS
[2004/08/03 16:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2008/12/20 05:48:07 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2011/02/26 14:35:29 | 000,044,078 | ---- | M] () -- C:\OTL.Txt
[2010/04/18 07:34:13 | 000,009,830 | ---- | M] () -- C:\prob anne
[2010/08/05 21:01:32 | 000,000,388 | ---- | M] () -- C:\rkill.log
[2006/12/14 19:41:39 | 000,000,298 | ---- | M] () -- C:\RUU.log
[2007/07/25 11:55:09 | 000,000,136 | ---- | M] () -- C:\SerialSync.txt
[2009/05/07 01:03:21 | 000,000,046 | -H-- | M] () -- C:\splash.idx
[2006/07/08 04:46:12 | 000,000,232 | -H-- | M] () -- C:\sqmdata00.sqm
[2006/07/08 04:46:14 | 000,000,232 | -H-- | M] () -- C:\sqmdata01.sqm
[2006/07/08 04:47:36 | 000,000,232 | -H-- | M] () -- C:\sqmdata02.sqm
[2006/07/08 04:47:45 | 000,000,232 | -H-- | M] () -- C:\sqmdata03.sqm
[2006/10/25 02:10:03 | 000,000,268 | -H-- | M] () -- C:\sqmdata04.sqm
[2007/03/14 11:06:21 | 000,000,268 | -H-- | M] () -- C:\sqmdata05.sqm
[2007/03/14 20:38:35 | 000,000,268 | -H-- | M] () -- C:\sqmdata06.sqm
[2007/07/10 15:13:39 | 000,000,232 | -H-- | M] () -- C:\sqmdata07.sqm
[2007/10/16 02:33:21 | 000,000,268 | -H-- | M] () -- C:\sqmdata08.sqm
[2007/10/16 03:23:21 | 000,000,268 | -H-- | M] () -- C:\sqmdata09.sqm
[2007/11/02 06:16:32 | 000,000,232 | -H-- | M] () -- C:\sqmdata10.sqm
[2008/04/13 21:30:18 | 000,000,268 | -H-- | M] () -- C:\sqmdata11.sqm
[2008/12/20 02:47:22 | 000,000,268 | -H-- | M] () -- C:\sqmdata12.sqm
[2009/01/11 04:46:22 | 000,000,268 | -H-- | M] () -- C:\sqmdata13.sqm
[2009/03/11 19:54:21 | 000,000,268 | -H-- | M] () -- C:\sqmdata14.sqm
[2009/03/29 18:50:55 | 000,000,268 | -H-- | M] () -- C:\sqmdata15.sqm
[2006/07/08 04:46:12 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt00.sqm
[2006/07/08 04:46:14 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt01.sqm
[2006/07/08 04:47:36 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt02.sqm
[2006/07/08 04:47:45 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt03.sqm
[2006/10/25 02:10:03 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt04.sqm
[2007/03/14 11:06:21 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt05.sqm
[2007/03/14 20:38:35 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt06.sqm
[2007/07/10 15:13:38 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt07.sqm
[2007/10/16 02:33:21 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt08.sqm
[2007/10/16 03:23:21 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt09.sqm
[2007/11/02 06:16:32 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt10.sqm
[2008/04/13 21:30:18 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt11.sqm
[2008/12/20 02:47:21 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt12.sqm
[2009/01/11 04:46:22 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt13.sqm
[2009/03/11 19:54:20 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt14.sqm
[2009/03/29 18:50:54 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt15.sqm
[2008/07/08 21:07:10 | 000,005,552 | -H-- | M] () -- C:\version

< %systemroot%\System32\config\*.sav >
[2004/08/09 23:56:48 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2004/08/09 23:56:46 | 000,634,880 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2004/08/09 23:56:46 | 000,872,448 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2008/06/20 12:46:57 | 000,147,968 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\dnsapi.dll
[2008/04/13 19:12:00 | 000,274,944 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\mstask.dll
[2008/04/13 19:12:02 | 000,067,072 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\ntdsapi.dll
[2010/12/20 17:15:52 | 001,510,400 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\shdocvw.dll
[2011/01/21 09:44:37 | 008,462,336 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\shell32.dll
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job >
[2011/02/21 19:09:10 | 000,000,868 | ---- | M] () -- C:\WINDOWS\Tasks\Google Software Updater.job
[2010/05/19 22:59:17 | 000,000,304 | -H-- | M] () -- C:\WINDOWS\Tasks\Microsoft_Hardware_Launch_IType_exe.job
< End of report >
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP