Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

How-to get rid of malware Bandoo searchqu toolbar

Started by balooba123 , Mar 12 2011 04:42 AM

Please log in to reply

#1
balooba123

Posted 12 March 2011 - 04:42 AM

New Member

Member
3 posts

Dear Staff,

After several attempts in trying to remove any related symptoms to searchqu toolbar within Firefox I ask you for help.
So far I have been going through the usual Win XP uninstallation process (Control Panel -> Uninstall programs ...).
The response I get is that that Searchqu has been uninstalled successfully but each time after re-boot it's all there again.

I got this mean [bleep] through an email with smileys containing hidden message which I thought was coming from sender, who is a friend of mine.
I clicked and followed some installation procedure and here I am ... :-o

Here's my log:

OTL logfile created on: 2011-03-12 11:28:51 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\w70fa-zconma00p\My Documents\Hämtade filer
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 0000041D | Country: Sweden | Language: SVE | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 54,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 80,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINNT | %ProgramFiles% = C:\Program Files
Drive C: | 232,88 Gb Total Space | 149,35 Gb Free Space | 64,13% Space Free | Partition Type: NTFS
Unable to calculate disk information.

Computer Name: E7SFN-11424 | User Name: W70FA-zconma00p | NOT logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011-03-12 11:28:32 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\w70fa-zconma00p\My Documents\Hämtade filer\OTL.exe
PRC - [2011-03-11 18:33:06 | 001,086,288 | ---- | M] (Technology Nexus AB) -- C:\Program Files\Personal\bin\Personal.exe
PRC - [2011-03-08 07:42:45 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011-03-02 15:15:13 | 001,115,536 | ---- | M] (Discordia, LTD) -- C:\Program Files\Windows Searchqu Toolbar\Datamngr\datamngrUI.exe
PRC - [2010-12-21 11:53:40 | 001,483,264 | ---- | M] (Nokia) -- C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
PRC - [2010-12-08 14:31:06 | 000,628,736 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
PRC - [2010-11-16 14:48:32 | 000,152,576 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
PRC - [2010-10-15 21:54:20 | 000,866,592 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\OfficeScan NT\PccNTMon.exe
PRC - [2010-10-14 17:40:16 | 001,349,920 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\OfficeScan NT\TmListen.exe
PRC - [2010-10-14 17:30:20 | 001,418,672 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\OfficeScan NT\NTRtScan.exe
PRC - [2010-10-12 11:40:52 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre1.6.0_22\bin\jqs.exe
PRC - [2010-08-17 11:15:43 | 000,458,752 | ---- | M] (Siemens AG - SIS GO CS BAS C DT) -- C:\WINNT\CATPC\mosaic\MBEService\MBESrvS.exe
PRC - [2010-07-23 15:34:26 | 000,345,424 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\BM\TMBMSRV.exe
PRC - [2010-05-25 17:13:34 | 000,131,072 | ---- | M] (Siemens AG) -- C:\Program Files\Siemens\CardOS API\bin\siecacst.exe
PRC - [2010-04-16 13:00:10 | 000,946,176 | ---- | M] (Siemens IT Solutions and Services) -- C:\Program Files\Windows Desktop Firewall Monitor\WDFMON.exe
PRC - [2010-01-07 11:42:50 | 000,689,416 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\OfficeScan NT\TmProxy.exe
PRC - [2009-12-12 00:56:46 | 005,114,208 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office Communicator\communicator.exe
PRC - [2009-11-13 02:59:02 | 000,132,392 | ---- | M] (Juniper Networks) -- C:\Program Files\Common Files\Juniper Networks\JUNS\dsAccessService.exe
PRC - [2009-10-27 09:15:02 | 000,120,832 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
PRC - [2009-10-27 09:13:44 | 000,090,112 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclIrSrv.exe
PRC - [2009-09-18 04:00:00 | 000,764,768 | ---- | M] (Microsoft Corporation) -- C:\WINNT\system32\CCM\CcmExec.exe
PRC - [2009-05-20 10:04:32 | 000,176,128 | ---- | M] (Fujitsu Technology Solutions) -- C:\Program Files\Fujitsu\Mobile Software Suite\Common\UiMdmTip\UIMdmTip.exe
PRC - [2009-05-20 09:57:14 | 000,557,056 | ---- | M] (Fujitsu Technology Solutions) -- C:\Program Files\Common Files\Fujitsu\Manageability\HaMDevMg.exe\1.01\HaMDevMg.exe
PRC - [2009-05-20 09:56:04 | 000,335,872 | ---- | M] (Fujitsu Technology Solutions) -- C:\Program Files\Common Files\Fujitsu\Manageability\CnMdKHkH.exe\1.01\CnMdKHkH.exe
PRC - [2009-04-02 16:20:04 | 000,435,584 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\OfficeScan NT\CNTAoSMgr.exe
PRC - [2008-12-18 12:00:40 | 002,360,648 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
PRC - [2008-12-12 18:17:34 | 000,357,704 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
PRC - [2008-12-11 11:23:38 | 000,308,552 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHSP.exe
PRC - [2008-10-10 23:17:50 | 000,132,456 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
PRC - [2008-09-16 14:18:32 | 000,024,653 | ---- | M] (Utimaco Safeware AG) -- C:\Program Files\Utimaco\SafeGuard Easy\ecview.exe
PRC - [2008-09-16 14:11:58 | 000,163,931 | ---- | M] (Utimaco Safeware AG) -- C:\Program Files\Utimaco\SafeGuard Easy\WksCfgSrv.exe
PRC - [2008-09-16 14:11:22 | 000,114,773 | ---- | M] (Utimaco Safeware AG) -- C:\Program Files\Utimaco\SafeGuard Easy\SgeCtl.exe
PRC - [2008-08-29 12:57:34 | 000,372,736 | ---- | M] (Siemens E GIOIT SHS61) -- C:\WINNT\CATPC\pgservice\SIMService.exe
PRC - [2008-08-16 17:45:42 | 000,607,544 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Citrix\ICA Client\pnamain.exe
PRC - [2008-08-16 17:44:08 | 000,070,968 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Citrix\ICA Client\ssonsvr.exe
PRC - [2008-07-24 11:24:24 | 000,083,272 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
PRC - [2008-07-02 13:25:52 | 000,607,744 | ---- | M] (Siemens AG) -- C:\WINNT\CATPC\CATSYS\CatSystemSvc.exe
PRC - [2008-06-17 12:08:34 | 001,664,248 | ---- | M] (AuthenTec, Inc.) -- C:\Program Files\Fingerprint Sensor\AtService.exe
PRC - [2008-06-17 12:08:34 | 000,124,152 | ---- | M] (AuthenTec, Inc.) -- C:\Program Files\Fingerprint Sensor\ATSwpNav.exe
PRC - [2008-04-14 04:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINNT\explorer.exe
PRC - [2008-03-18 10:27:12 | 000,013,312 | ---- | M] (Agere Systems) -- C:\WINNT\system32\agrsmsvc.exe
PRC - [2008-02-08 15:31:02 | 000,058,760 | ---- | M] (IBM Corp) -- C:\Program Files\IBM\Lotus\Notes\ntmulti.exe
PRC - [2006-04-20 09:57:32 | 000,102,400 | ---- | M] () -- C:\WINNT\CATPC\pgservice\PGSensCom.exe
PRC - [2005-11-21 10:12:02 | 000,299,008 | ---- | M] (Siemens Business Services GmbH & Co OHG SBS SI SWE3) -- C:\Program Files\Trusted Applications\CORINA\Corina_service.exe
PRC - [2003-11-14 15:58:30 | 000,253,952 | ---- | M] (Siemens AG) -- C:\Program Files\Siemens\CAT Bulletin Board\CBB.exe
PRC - [2002-06-20 18:52:30 | 000,065,536 | ---- | M] () -- C:\Program Files\Siemens\CAT Bulletin Board\CBBS.exe

========== Modules (SafeList) ==========

MOD - [2011-03-12 11:28:32 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\w70fa-zconma00p\My Documents\Hämtade filer\OTL.exe
MOD - [2010-08-23 17:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINNT\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2008-09-16 14:11:18 | 000,028,752 | ---- | M] (Utimaco Safeware AG) -- C:\Program Files\Utimaco\SafeGuard Easy\SgMsgBhk.dll

========== Win32 Services (SafeList) ==========

SRV - [2010-12-08 14:31:06 | 000,628,736 | ---- | M] (Nokia) [On_Demand | Running] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010-10-14 17:40:16 | 001,349,920 | ---- | M] (Trend Micro Inc.) [Auto | Running] -- C:\Program Files\OfficeScan NT\tmlisten.exe -- (tmlisten)
SRV - [2010-10-14 17:30:20 | 001,418,672 | ---- | M] (Trend Micro Inc.) [Auto | Running] -- C:\Program Files\OfficeScan NT\ntrtscan.exe -- (ntrtscan)
SRV - [2010-10-12 11:40:52 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] -- C:\Program Files\Java\jre1.6.0_22\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2010-08-17 11:15:43 | 000,458,752 | ---- | M] (Siemens AG - SIS GO CS BAS C DT) [Auto | Running] -- C:\WINNT\CATPC\mosaic\MBEService\MBESrvS.exe -- (MBEService)
SRV - [2010-07-23 15:34:26 | 000,345,424 | ---- | M] (Trend Micro Inc.) [On_Demand | Running] -- C:\Program Files\BM\TMBMSRV.exe -- (TMBMServer)
SRV - [2010-01-07 11:42:50 | 000,689,416 | ---- | M] (Trend Micro Inc.) [On_Demand | Running] -- C:\Program Files\OfficeScan NT\TmProxy.exe -- (TmProxy)
SRV - [2009-11-13 02:59:02 | 000,132,392 | ---- | M] (Juniper Networks) [Auto | Running] -- C:\Program Files\Common Files\Juniper Networks\JUNS\dsAccessService.exe -- (JuniperAccessService)
SRV - [2009-09-18 04:00:00 | 000,764,768 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINNT\system32\CCM\CcmExec.exe -- (CcmExec)
SRV - [2009-09-18 04:00:00 | 000,246,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINNT\System32\CCM\TSManager.exe -- (smstsmgr)
SRV - [2009-05-20 09:57:14 | 000,557,056 | ---- | M] (Fujitsu Technology Solutions) [Auto | Running] -- C:\Program Files\Common Files\Fujitsu\Manageability\HaMDevMg.exe\1.01\HaMDevMg.exe -- (HaMDevMg.1.01)
SRV - [2008-10-10 23:17:50 | 000,132,456 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe -- (TOSHIBA Bluetooth Service)
SRV - [2008-09-16 14:11:58 | 000,163,931 | ---- | M] (Utimaco Safeware AG) [Auto | Running] -- C:\Program Files\Utimaco\SafeGuard Easy\WksCfgSrv.exe -- (WksCfgSrv)
SRV - [2008-09-16 14:11:22 | 000,114,773 | ---- | M] (Utimaco Safeware AG) [Auto | Running] -- C:\Program Files\Utimaco\SafeGuard Easy\SgeCtl.exe -- (SgeCtl)
SRV - [2008-08-29 12:57:34 | 000,372,736 | ---- | M] (Siemens E GIOIT SHS61) [Auto | Running] -- C:\WINNT\CATPC\pgservice\SIMService.exe -- (SIMService)
SRV - [2008-07-02 13:25:52 | 000,607,744 | ---- | M] (Siemens AG) [Auto | Running] -- C:\WINNT\CATPC\CATSYS\CatSystemSvc.exe -- (CatSystemSvc)
SRV - [2008-06-17 12:08:34 | 001,664,248 | ---- | M] (AuthenTec, Inc.) [Auto | Running] -- C:\Program Files\Fingerprint Sensor\AtService.exe -- (ATService)
SRV - [2008-03-18 10:27:12 | 000,013,312 | ---- | M] (Agere Systems) [Auto | Running] -- C:\WINNT\system32\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2008-02-08 15:31:02 | 000,058,760 | ---- | M] (IBM Corp) [Auto | Running] -- C:\Program Files\IBM\Lotus\Notes\ntmulti.exe -- (Multi-user Cleanup Service)
SRV - [2005-11-21 10:12:02 | 000,299,008 | ---- | M] (Siemens Business Services GmbH & Co OHG SBS SI SWE3) [Auto | Running] -- C:\Program Files\Trusted Applications\CORINA\Corina_service.exe -- (CorinaService)
SRV - [2002-06-20 18:52:30 | 000,065,536 | ---- | M] () [Auto | Running] -- C:\Program Files\Siemens\CAT Bulletin Board\CBBS.exe -- (CBBS)

========== Driver Services (SafeList) ==========

DRV - [2010-11-08 19:05:38 | 000,090,448 | ---- | M] (Trend Micro Inc.) [Kernel | System | Running] -- C:\WINNT\system32\drivers\tmtdi.sys -- (tmtdi)
DRV - [2010-10-20 18:45:16 | 000,249,424 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Running] -- C:\Program Files\OfficeScan NT\TmXpflt.sys -- (TmFilter)
DRV - [2010-10-20 18:45:06 | 000,036,432 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Running] -- C:\Program Files\OfficeScan NT\TmPreflt.sys -- (TmPreFilter)
DRV - [2010-10-20 18:30:02 | 001,331,384 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Running] -- C:\Program Files\OfficeScan NT\VsapiNT.sys -- (VSApiNt)
DRV - [2010-07-30 14:16:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINNT\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2010-07-30 14:16:44 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINNT\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2010-07-30 14:16:42 | 000,023,040 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINNT\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2010-07-30 14:16:38 | 000,018,048 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINNT\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2010-07-23 15:25:46 | 000,062,032 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Running] -- C:\WINNT\system32\drivers\tmactmon.sys -- (tmactmon)
DRV - [2010-07-23 15:25:38 | 000,052,304 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Running] -- C:\WINNT\system32\drivers\tmevtmgr.sys -- (tmevtmgr)
DRV - [2010-07-23 15:25:30 | 000,163,920 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Running] -- C:\WINNT\system32\drivers\tmcomm.sys -- (tmcomm)
DRV - [2009-09-18 04:00:00 | 000,020,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINNT\system32\CCM\PrepDrv.sys -- (prepdrvr)
DRV - [2009-06-03 22:05:26 | 001,570,240 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINNT\system32\drivers\athw.sys -- (AR5416)
DRV - [2009-05-05 12:09:08 | 000,012,288 | ---- | M] (Fujitsu Technology Solutions) [Kernel | On_Demand | Running] -- C:\WINNT\system32\drivers\FscGabi.sys -- (FscGabi)
DRV - [2009-03-30 03:09:28 | 000,239,336 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\WINNT\system32\drivers\RsFx0103.sys -- (RsFx0103)
DRV - [2009-03-10 12:51:06 | 000,015,360 | ---- | M] (Fujitsu) [Kernel | On_Demand | Running] -- C:\WINNT\system32\drivers\FSCSLII.sys -- (FSCSLII)
DRV - [2008-10-20 20:08:06 | 000,012,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINNT\system32\drivers\smsmdm.sys -- (smsmdd)
DRV - [2008-09-23 08:24:00 | 000,042,368 | ---- | M] (Todos Data System AB) [Kernel | On_Demand | Stopped] -- C:\WINNT\system32\drivers\shbecr.sys -- (Tdsshbecr)
DRV - [2008-09-16 14:19:16 | 000,019,712 | ---- | M] (Utimaco Safeware AG) [Kernel | Boot | Running] -- C:\WINNT\SYSTEM32\DRIVERS\AES256.SYS -- (AES-256)
DRV - [2008-09-16 14:19:12 | 000,063,488 | ---- | M] (Utimaco Safeware AG) [Kernel | Boot | Running] -- C:\WINNT\SYSTEM32\DRIVERS\SGEFLT.SYS -- (SgeFlt)
DRV - [2008-08-26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINNT\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008-08-22 13:50:34 | 000,064,000 | ---- | M] (TOSHIBA Corporation) [Kernel | System | Running] -- C:\WINNT\system32\drivers\tosrfcom.sys -- (Tosrfcom)
DRV - [2008-06-27 10:24:56 | 004,742,656 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINNT\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008-06-17 13:16:22 | 000,476,672 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Running] -- C:\WINNT\system32\drivers\ATSwpWDF.sys -- (ATSwpWDF)
DRV - [2008-03-27 10:42:00 | 000,244,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINNT\system32\drivers\e1y5132.sys -- (e1yexpress) Intel®
DRV - [2008-03-26 12:12:56 | 000,040,832 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINNT\system32\drivers\HECI.sys -- (HECI) Intel®
DRV - [2008-03-21 10:13:00 | 001,203,776 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINNT\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2007-12-24 08:18:48 | 000,068,696 | ---- | M] (O2Micro) [Kernel | On_Demand | Running] -- C:\WINNT\system32\drivers\oz776.sys -- (guardian2)
DRV - [2007-06-01 09:29:04 | 000,210,736 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINNT\system32\DRIVERS\Si3531.sys -- (Si3531)
DRV - [2007-05-25 08:41:00 | 000,017,328 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINNT\system32\DRIVERS\SiWinAcc.sys -- (SiFilter)
DRV - [2007-05-25 08:40:58 | 000,012,464 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINNT\system32\DRIVERS\SiRemFil.sys -- (SiRemFil)
DRV - [2007-05-04 18:20:22 | 000,023,552 | ---- | M] (ITE Tech. Inc.) [Kernel | On_Demand | Running] -- C:\WINNT\system32\drivers\ITEirda.sys -- (ITEIRDA)
DRV - [2007-04-04 09:16:20 | 000,041,216 | ---- | M] (Infineon Technologies AG) [Kernel | On_Demand | Running] -- C:\WINNT\system32\drivers\ifxtpm.sys -- (IFXTPM)
DRV - [2007-02-15 18:00:00 | 000,026,624 | ---- | M] (DameWare) [Kernel | System | Running] -- C:\WINNT\system32\drivers\dwvkbd.sys -- (dwvkbd)
DRV - [2007-02-07 18:00:00 | 000,002,944 | ---- | M] (DameWare Development, Inc.) [Kernel | On_Demand | Running] -- C:\WINNT\system32\drivers\DamewareMini.sys -- (DwMirror)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://iww.pg.fsp.siemens.se
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://intranet.siemens.com/energy

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINNT\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.searchqu.com/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>;*.local
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "AutoConfigURL" = http://proxyconf.ww007.siemens.net/

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Web Search"
FF - prefs.js..browser.search.order.1: "Web Search"
FF - prefs.js..browser.search.selectedEngine: "Web Search"
FF - prefs.js..browser.startup.homepage: "http://mail.google.com"
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: [email protected]:1.19.1
FF - prefs.js..extensions.enabledItems: [email protected]:1.0.0.736
FF - prefs.js..extensions.enabledItems: {1FD91A9C-410C-4090-BBCC-55D3450EF433}:1.0
FF - prefs.js..keyword.URL: "http://www.searchqu....ystemid=101&q="
FF - prefs.js..network.proxy.backup.ftp: "proxy.erlm.siemens.de"
FF - prefs.js..network.proxy.backup.ftp_port: 81
FF - prefs.js..network.proxy.backup.gopher: "proxy.erlm.siemens.de"
FF - prefs.js..network.proxy.backup.gopher_port: 81
FF - prefs.js..network.proxy.backup.socks: "proxy.erlm.siemens.de"
FF - prefs.js..network.proxy.backup.socks_port: 81
FF - prefs.js..network.proxy.backup.ssl: "proxy.erlm.siemens.de"
FF - prefs.js..network.proxy.backup.ssl_port: 81
FF - prefs.js..network.proxy.ftp: "proxy.erlm.siemens.de"
FF - prefs.js..network.proxy.ftp_port: 81
FF - prefs.js..network.proxy.gopher: "proxy.erlm.siemens.de"
FF - prefs.js..network.proxy.gopher_port: 81
FF - prefs.js..network.proxy.http: "proxy.erlm.siemens.de"
FF - prefs.js..network.proxy.http_port: 81
FF - prefs.js..network.proxy.share_proxy_settings: true
FF - prefs.js..network.proxy.socks: "proxy.erlm.siemens.de"
FF - prefs.js..network.proxy.socks_port: 81
FF - prefs.js..network.proxy.ssl: "proxy.erlm.siemens.de"
FF - prefs.js..network.proxy.ssl_port: 81
FF - prefs.js..network.proxy.type: 0

FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Java\jre1.6.0_22\lib\deploy\jqs\ff [2011-02-14 19:26:21 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2011-03-03 07:43:03 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.15\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-03-08 08:06:08 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.15\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-03-08 08:06:08 | 000,000,000 | ---D | M]

[2011-03-11 18:42:40 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Mozilla\Extensions
[2011-03-12 11:05:39 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Mozilla\Firefox\Profiles\qrs5r9gg.default\extensions
[2011-03-12 11:05:35 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Mozilla\Firefox\Profiles\qrs5r9gg.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2011-02-18 19:16:29 | 000,000,000 | ---D | M] (British English Dictionary) -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Mozilla\Firefox\Profiles\qrs5r9gg.default\extensions\[email protected]
[2010-09-02 09:09:41 | 000,005,529 | ---- | M] () -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Mozilla\Firefox\Profiles\qrs5r9gg.default\searchplugins\SearchquWebSearch.xml
[2011-03-12 11:02:03 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011-02-14 19:26:21 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE1.6.0_22\LIB\DEPLOY\JQS\FF
[2011-03-03 07:43:03 | 000,000,000 | ---D | M] (PC Sync 2 Synchronisation Extension) -- C:\PROGRAM FILES\NOKIA\NOKIA PC SUITE 7\BKMRKSYNC
[2011-03-11 18:42:40 | 000,000,000 | ---D | M] (DataMngr) -- C:\PROGRAM FILES\WINDOWS SEARCHQU TOOLBAR\DATAMNGR\FIREFOXEXTENSION
[2010-12-03 18:57:35 | 000,001,470 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allaannonser-sv-SE.xml
[2010-12-03 18:57:35 | 000,002,670 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\prisjakt-sv-SE.xml
[2010-09-02 09:09:41 | 000,005,529 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\SearchquWebSearch.xml
[2010-12-03 18:57:35 | 000,000,948 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\tyda-sv-SE.xml
[2010-12-03 18:57:35 | 000,001,174 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-sv-SE.xml
[2010-12-03 18:57:35 | 000,000,951 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-sv-SE.xml

O1 HOSTS File: ([2001-08-23 13:00:00 | 000,000,734 | ---- | M]) - C:\WINNT\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - No CLSID value found.
O2 - BHO: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\Program Files\Windows Searchqu Toolbar\ToolBar\searchqudtx.dll ()
O2 - BHO: (UrlHelper Class) - {A40DC6C5-79D0-4ca8-A185-8FF989AF1115} - C:\Program Files\Windows Searchqu Toolbar\Datamngr\IEBHO.dll (Discordia, LTD)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.6.0_22\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre1.6.0_22\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\Program Files\Windows Searchqu Toolbar\ToolBar\searchqudtx.dll ()
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O4 - HKLM..\Run: [Alcmtr] C:\WINNT\ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [ATSwpNav] C:\Program Files\Fingerprint Sensor\ATSwpNav.exe (AuthenTec, Inc.)
O4 - HKLM..\Run: [CfgDownload] C:\Program Files\IXOS\bin\CfgDownload.exe (IXOS SOFTWARE AG)
O4 - HKLM..\Run: [COMImpersonator] C:\Program Files\Fujitsu\Mobile Software Suite\Common\UiMdmTip\UIMdmTip.exe (Fujitsu Technology Solutions)
O4 - HKLM..\Run: [Communicator] C:\Program Files\Microsoft Office Communicator\communicator.exe (Microsoft Corporation)
O4 - HKLM..\Run: [DATAMNGR] C:\Program Files\Windows Searchqu Toolbar\Datamngr\datamngrUI.exe (Discordia, LTD)
O4 - HKLM..\Run: [EdWizard] C:\Program Files\Utimaco\SafeGuard Easy\EdWizard.exe (Utimaco Safeware AG)
O4 - HKLM..\Run: [ITSecMng] C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe (TOSHIBA CORPORATION)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINNT\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINNT\System32\nwiz.exe ()
O4 - HKLM..\Run: [OfficeScanNT Monitor] C:\Program Files\OfficeScan NT\pccntmon.exe (Trend Micro Inc.)
O4 - HKLM..\Run: [SgeEcView] C:\Program Files\Utimaco\SafeGuard Easy\Ecview.exe (Utimaco Safeware AG)
O4 - HKLM..\Run: [SIECAST] C:\Program Files\Siemens\CardOS API\bin\siecacst.exe (Siemens AG)
O4 - HKLM..\Run: [USM] C:\Program Files\Siemens\USM\USM.exe (Siemens AG)
O4 - HKLM..\Run: [WDF_Mon] C:\Program Files\Windows Desktop Firewall Monitor\WDFMON.EXE (Siemens IT Solutions and Services)
O4 - HKCU..\Run: [CatUserRun] C:\Program Files\CatPC\bin\exec32.exe ()
O4 - HKCU..\Run: [PC Suite Tray] C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\BankID Security Application.lnk = C:\Program Files\Personal\bin\Personal.exe (Technology Nexus AB)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Bluetooth Manager.lnk = C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng1.exe (TOSHIBA CORPORATION.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Citrix XenApp.lnk = C:\WINNT\Installer\{388C130B-0079-46B4-A0D5-DC2DD7A89A7B}\pnaico.exe.20FBBF0A_A7E5_4BDE_9798_9811C3D135AC.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Download present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Main present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\New Windows present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\PhishingFilter present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\SearchScopes present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Security present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\SQM present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPublishingWizard = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWebServices = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoOnlinePrintsWizard = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoInternetOpenWith = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWelcomeScreen = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoMSAppLogo5ChannelNotify = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: disablecad = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: nointernetopenwith = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunLogonScriptSync = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunStartupScriptSync = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: MaxGPOScriptWait = 1800
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Main present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Security present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKLM\..Trusted Domains: bmw.de ([ikom] * is out of zone range - 6)
O15 - HKLM\..Trusted Domains: click-and-procure.com ([*.training] * is out of zone range - 6)
O15 - HKLM\..Trusted Domains: englishtown.com ([*.siemens] * is out of zone range - 6)
O15 - HKLM\..Trusted Domains: englishtown.com ([siemens] http is out of zone range - 6)
O15 - HKLM\..Trusted Domains: framatome-anp.de ([intranet] * in Trusted sites)
O15 - HKLM\..Trusted Domains: gepas.com ([*.erl] * in Trusted sites)
O15 - HKLM\..Trusted Domains: gsf.de ([awst] * is out of zone range - 6)
O15 - HKLM\..Trusted Domains: microsoft.com ([]* is out of zone range - 6)
O15 - HKLM\..Trusted Domains: NETgLearning.com ([]* is out of zone range - 6)
O15 - HKLM\..Trusted Domains: peopleclick.com ([]* is out of zone range - 6)
O15 - HKLM\..Trusted Domains: peopleclick.com ([my] * in Trusted sites)
O15 - HKLM\..Trusted Domains: sap.com ([]* is out of zone range - 6)
O15 - HKLM\..Trusted Domains: sap-ag.de ([]* is out of zone range - 6)
O15 - HKLM\..Trusted Domains: sbs.de ([]* in Trusted sites)
O15 - HKLM\..Trusted Domains: siemens.com ([]* in Local intranet)
O15 - HKLM\..Trusted Domains: siemens.com ([*.aphr] * in Trusted sites)
O15 - HKLM\..Trusted Domains: siemens.com ([*.cltw] * in Trusted sites)
O15 - HKLM\..Trusted Domains: siemens.de ([]* in Local intranet)
O15 - HKLM\..Trusted Domains: siemens.de ([*.erlm] * in Trusted sites)
O15 - HKLM\..Trusted Domains: siemens.de ([*.khe] * in Trusted sites)
O15 - HKLM\..Trusted Domains: siemens.de ([*.kwu] * in Trusted sites)
O15 - HKLM\..Trusted Domains: siemens.de ([*.kwu.erl] * in Trusted sites)
O15 - HKLM\..Trusted Domains: siemens.de ([*.kwu.off] * in Trusted sites)
O15 - HKLM\..Trusted Domains: siemens.de ([*.kwuf.erl] * in Trusted sites)
O15 - HKLM\..Trusted Domains: siemens.de ([*.pg.erl] * in Trusted sites)
O15 - HKLM\..Trusted Domains: siemens.de ([liveservices] * in Trusted sites)
O15 - HKLM\..Trusted Domains: siemens.de ([pacserver.kwu.erl] http is out of zone range - 5)
O15 - HKLM\..Trusted Domains: siemens.de ([pacserver.pg.erl] http is out of zone range - 5)
O15 - HKLM\..Trusted Domains: siemens.de ([scc.kwu.erl] * is out of zone range - 5)
O15 - HKLM\..Trusted Domains: siemens.de ([scc.pg.erl] * is out of zone range - 5)
O15 - HKLM\..Trusted Domains: siemens.net ([]* in Local intranet)
O15 - HKLM\..Trusted Domains: siemens.net ([*.chk.ww007] * is out of zone range - 6)
O15 - HKLM\..Trusted Domains: siemens.net ([*.scc.ww007] * is out of zone range - 5)
O15 - HKLM\..Trusted Domains: siemens.net ([*.ww007] * in Trusted sites)
O15 - HKLM\..Trusted Domains: sitest.net ([]* in Local intranet)
O15 - HKLM\..Trusted Domains: sitest.net ([*.chk.tww007] * is out of zone range - 6)
O15 - HKLM\..Trusted Domains: sitest.net ([*.scc.tww007] * is out of zone range - 5)
O15 - HKLM\..Trusted Domains: sitest.net ([*.tww007] * in Trusted sites)
O15 - HKLM\..Trusted Domains: smartforce.com ([]* is out of zone range - 6)
O15 - HKLM\..Trusted Domains: softwarespectrum.com ([shop] * in Trusted sites)
O15 - HKLM\..Trusted Domains: sun.com ([]* is out of zone range - 6)
O15 - HKLM\..Trusted Domains: xtremelearning.com ([]* is out of zone range - 6)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {8B4067F6-E530-4312-9FC6-970D3FADE6A8} http://fsps1bfa.ww00...s/OSSPlugin.cab (OSSCtrl Class)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {E5F5D008-DD2C-4D32-977D-1A0ADF03058B} https://juniper.net/...perSetupSP1.cab (JuniperSetupControlXP Class)
O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://juniper.net/...SetupClient.cab (JuniperSetupClientControl Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = ww007.siemens.net
O18 - Protocol\Handler\saphtmlp {D1F8BD1E-7967-11D2-B43A-006094B9EADB} - c:\Program Files\SAP\Frontend\SAPgui\SAPHTMLP.DLL (SAP AG, Walldorf)
O18 - Protocol\Handler\sapr3 {D1F8BD1E-7967-11D2-B43A-006094B9EADB} - c:\Program Files\SAP\Frontend\SAPgui\SAPHTMLP.DLL (SAP AG, Walldorf)
O20 - AppInit_DLLs: (c:\progra~1\wi9130~1\datamngr\datamngr.dll) - c:\Program Files\Windows Searchqu Toolbar\Datamngr\datamngr.dll (Discordia, LTD)
O20 - AppInit_DLLs: (c:\progra~1\wi9130~1\datamngr\iebho.dll) - c:\Program Files\Windows Searchqu Toolbar\Datamngr\IEBHO.dll (Discordia, LTD)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINNT\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (CatUInit) - C:\WINNT\System32\CatUInit.exe (Siemens AG)
O24 - Desktop WallPaper: C:\WINNT\Web\Wallpaper\Bliss.bmp
O24 - Desktop BackupWallPaper: C:\WINNT\Web\Wallpaper\Bliss.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011-02-14 18:13:57 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011-03-12 11:05:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Google
[2011-03-11 18:42:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\searchqutoolbar
[2011-03-11 18:42:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Local Settings\Application Data\Identities
[2011-03-11 18:42:11 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Searchqu Toolbar
[2011-03-11 18:33:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Personal
[2011-03-11 18:33:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\BankID Security Application 4.17.0
[2011-03-11 18:33:04 | 000,000,000 | ---D | C] -- C:\Program Files\Personal
[2011-03-11 18:32:39 | 000,042,368 | ---- | C] (Todos Data System AB) -- C:\WINNT\System32\drivers\shbecr.sys
[2011-03-11 18:32:37 | 000,000,000 | ---D | C] -- C:\Program Files\Handelsbankens kortläsare
[2011-03-11 18:32:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\InstallShield
[2011-03-11 15:17:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\My Documents\Book1_Temp
[2011-03-10 00:06:11 | 000,000,000 | ---D | C] -- C:\WINNT\ms
[2011-03-10 00:06:11 | 000,000,000 | ---D | C] -- C:\WINNT\System32\CCM
[2011-03-10 00:05:14 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Imaging
[2011-03-10 00:04:58 | 000,000,000 | -H-D | C] -- C:\WINNT\$UninstallRDC$
[2011-03-10 00:04:06 | 000,000,000 | ---D | C] -- C:\WINNT\System32\ccmsetup
[2011-03-09 10:44:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\ICAClient
[2011-03-09 10:44:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Juniper Networks
[2011-03-08 20:47:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\My Documents\Visual Studio 2005
[2011-03-08 20:47:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\My Documents\Visual Studio 2008
[2011-03-08 20:05:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\XnView
[2011-03-08 20:05:12 | 000,000,000 | ---D | C] -- C:\Program Files\XnView
[2011-03-08 20:04:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SmartCVS 7.1
[2011-03-08 20:04:09 | 000,000,000 | ---D | C] -- C:\Program Files\SmartCVS 7.1
[2011-03-08 20:01:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\GIMP
[2011-03-08 20:01:16 | 000,000,000 | ---D | C] -- C:\Program Files\GIMP-2.0
[2011-03-08 20:00:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\CamStudio
[2011-03-08 20:00:47 | 000,000,000 | ---D | C] -- C:\Program Files\CamStudio
[2011-03-08 20:00:31 | 000,000,000 | ---D | C] -- C:\Program Files\Audacity
[2011-03-08 19:56:55 | 000,000,000 | ---D | C] -- C:\Program Files\Illustrate
[2011-03-08 19:56:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\dBpoweramp Music Converter
[2011-03-08 08:07:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Apple Computer
[2011-03-08 08:07:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\iTunes
[2011-03-08 08:06:46 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011-03-08 08:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011-03-08 08:06:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2011-03-08 08:05:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\QuickTime
[2011-03-08 08:05:39 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2011-03-08 08:05:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple Computer
[2011-03-08 08:05:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Local Settings\Application Data\Apple
[2011-03-08 08:05:23 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2011-03-08 08:04:35 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2011-03-08 08:04:21 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2011-03-08 08:04:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple
[2011-03-08 08:03:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Local Settings\Application Data\Apple Computer
[2011-03-04 11:38:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Local Settings\Application Data\siemens
[2011-03-03 15:45:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Silverlight
[2011-03-03 12:08:58 | 000,000,000 | ---D | C] -- C:\Program Files\Trusted Applications
[2011-03-03 07:50:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Nokia
[2011-03-03 07:50:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Nokia
[2011-03-03 07:47:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Local Settings\Application Data\Downloaded Installations
[2011-03-03 07:43:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Nokia
[2011-03-03 07:43:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\PC Suite
[2011-03-03 07:43:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PC Suite
[2011-03-03 07:43:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Nokia PC Suite
[2011-03-03 07:43:04 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PCSuite
[2011-03-03 07:42:59 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nokia
[2011-03-03 07:42:49 | 000,018,816 | ---- | C] (Nokia) -- C:\WINNT\System32\drivers\pccsmcfd.sys
[2011-03-03 07:42:49 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2011-03-03 07:42:37 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution
[2011-03-03 07:42:28 | 000,008,192 | ---- | C] (Nokia) -- C:\WINNT\System32\drivers\usbser_lowerfltj.sys
[2011-03-03 07:42:27 | 000,023,040 | ---- | C] (Nokia) -- C:\WINNT\System32\drivers\ccdcmbo.sys
[2011-03-03 07:42:27 | 000,008,192 | ---- | C] (Nokia) -- C:\WINNT\System32\drivers\usbser_lowerflt.sys
[2011-03-03 07:42:25 | 000,604,160 | ---- | C] (Nokia) -- C:\WINNT\System32\nmwcdcocls.dll
[2011-03-03 07:42:25 | 000,111,104 | ---- | C] (Nokia) -- C:\WINNT\System32\ccdcmbwu.dll
[2011-03-03 07:42:25 | 000,075,264 | ---- | C] (Nokia) -- C:\WINNT\System32\nmwcdcls.dll
[2011-03-03 07:42:25 | 000,018,048 | ---- | C] (Nokia) -- C:\WINNT\System32\drivers\ccdcmb.sys
[2011-03-03 07:42:24 | 000,000,000 | ---D | C] -- C:\Program Files\Nokia
[2011-03-03 07:40:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Installations
[2011-03-02 10:31:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\SapWorkDir
[2011-03-02 10:31:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\SAP
[2011-03-02 08:51:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\nView_Profiles
[2011-02-20 18:59:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\uTorrent
[2011-02-20 14:23:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Google
[2011-02-20 14:20:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Google
[2011-02-20 14:19:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Google Earth
[2011-02-20 14:18:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Local Settings\Application Data\Temp
[2011-02-20 14:18:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Google
[2011-02-20 14:18:38 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2011-02-20 14:18:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Local Settings\Application Data\Google
[2011-02-18 08:33:34 | 000,000,000 | -H-D | C] -- C:\WINNT\System32\dwrcssft
[2011-02-18 08:33:32 | 000,233,472 | ---- | C] (DameWare Development LLC) -- C:\WINNT\System32\DWRCSET.DLL
[2011-02-18 08:33:32 | 000,078,848 | ---- | C] (DameWare Development) -- C:\WINNT\System32\DWRCST.EXE
[2011-02-18 08:33:32 | 000,061,440 | ---- | C] (DameWare Development LLC) -- C:\WINNT\System32\DWRCSh32.dll
[2011-02-18 08:33:32 | 000,053,248 | ---- | C] (DameWare Development LLC) -- C:\WINNT\System32\DWRCK.DLL
[2011-02-18 08:33:31 | 000,231,936 | ---- | C] (DameWare Development LLC) -- C:\WINNT\System32\DWRCS.EXE
[2011-02-18 08:17:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Local Settings\Application Data\Adobe
[2011-02-17 14:52:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\My Documents\Visual Studio 2010
[2011-02-17 12:32:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Start Menu\Programs\Notepad++
[2011-02-17 12:32:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Notepad++
[2011-02-17 12:32:30 | 000,000,000 | ---D | C] -- C:\Program Files\Notepad++
[2011-02-17 12:32:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Notepad++
[2011-02-17 09:00:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\vlc
[2011-02-17 09:00:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\VideoLAN
[2011-02-17 09:00:02 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2011-02-17 08:48:05 | 000,000,000 | R--D | C] -- C:\Documents and Settings\w70fa-zconma00p\My Documents\My Videos
[2011-02-16 11:19:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\My Documents\Hämtade filer
[2011-02-16 11:18:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Local Settings\Application Data\Mozilla
[2011-02-16 11:18:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Mozilla
[2011-02-16 11:18:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox
[2011-02-16 11:18:05 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2011-02-16 11:15:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Adobe
[2011-02-16 10:53:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Macromedia
[2011-02-16 10:52:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Tracing
[2011-02-16 10:52:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Sun
[2011-02-16 10:52:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Local Settings\Application Data\Toshiba
[2011-02-16 10:49:11 | 000,000,000 | R--D | C] -- C:\Documents and Settings\w70fa-zconma00p\My Documents\My Music
[2011-02-16 10:48:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Local Settings\Application Data\Microsoft
[2011-02-16 10:48:13 | 000,000,000 | --SD | C] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Microsoft
[2011-02-16 10:48:13 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\w70fa-zconma00p\SendTo
[2011-02-16 10:48:13 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\w70fa-zconma00p\Recent
[2011-02-16 10:48:13 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\w70fa-zconma00p\Application Data
[2011-02-16 10:48:13 | 000,000,000 | R--D | C] -- C:\Documents and Settings\w70fa-zconma00p\Start Menu\Programs\Startup
[2011-02-16 10:48:13 | 000,000,000 | R--D | C] -- C:\Documents and Settings\w70fa-zconma00p\Start Menu
[2011-02-16 10:48:13 | 000,000,000 | R--D | C] -- C:\Documents and Settings\w70fa-zconma00p\My Documents\My Pictures
[2011-02-16 10:48:13 | 000,000,000 | R--D | C] -- C:\Documents and Settings\w70fa-zconma00p\My Documents
[2011-02-16 10:48:13 | 000,000,000 | R--D | C] -- C:\Documents and Settings\w70fa-zconma00p\Favorites
[2011-02-16 10:48:13 | 000,000,000 | R--D | C] -- C:\Documents and Settings\w70fa-zconma00p\Start Menu\Programs\Accessories
[2011-02-16 10:48:13 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\w70fa-zconma00p\Cookies
[2011-02-16 10:48:13 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\w70fa-zconma00p\Templates
[2011-02-16 10:48:13 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\w70fa-zconma00p\PrintHood
[2011-02-16 10:48:13 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\w70fa-zconma00p\NetHood
[2011-02-16 10:48:13 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\w70fa-zconma00p\Local Settings
[2011-02-16 10:48:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Desktop
[2011-02-16 10:48:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\CatPC
[2011-02-15 16:43:46 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2011-02-15 16:43:46 | 000,000,000 | ---D | C] -- C:\Program Files\Utimaco
[2011-02-15 14:55:34 | 000,000,000 | ---D | C] -- C:\WINNT\System32\RsFx
[2011-02-15 14:51:24 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server
[2011-02-15 14:50:44 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Sync Framework
[2011-02-15 14:50:26 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Synchronization Services
[2011-02-15 14:50:25 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2011-02-15 14:48:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PreEmptive Solutions
[2011-02-15 14:44:25 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2011-02-15 14:41:08 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft ASP.NET
[2011-02-15 14:40:58 | 000,000,000 | ---D | C] -- C:\Program Files\IIS
[2011-02-15 14:23:00 | 000,000,000 | ---D | C] -- C:\WINNT\symbols
[2011-02-15 14:22:29 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 10.0
[2011-02-15 14:22:29 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SDKs
[2011-02-15 14:22:29 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Help Viewer
[2011-02-15 14:22:29 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft F#
[2011-02-15 14:22:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Merge Modules
[2011-02-15 14:22:29 | 000,000,000 | ---D | C] -- C:\Program Files\HTML Help Workshop
[2011-02-15 14:05:26 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 9.0
[2011-02-15 13:25:59 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\UGS Shared
[2011-02-15 12:54:35 | 000,000,000 | ---D | C] -- C:\Program Files\UGS
[2011-02-15 08:39:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TOSHIBA
[2011-02-15 01:53:52 | 000,476,672 | ---- | C] (AuthenTec, Inc.) -- C:\WINNT\System32\drivers\ATSwpWDF.sys
[2011-02-15 01:53:43 | 000,119,848 | ---- | C] (Silicon Image) -- C:\WINNT\System32\SilSupp.dll
[2011-02-15 01:53:43 | 000,017,328 | ---- | C] (Silicon Image, Inc.) -- C:\WINNT\System32\drivers\SiWinAcc.sys
[2011-02-15 01:53:43 | 000,012,464 | ---- | C] (Silicon Image, Inc.) -- C:\WINNT\System32\drivers\SiRemFil.sys
[2011-02-15 01:53:42 | 000,210,736 | ---- | C] (Silicon Image, Inc) -- C:\WINNT\System32\drivers\Si3531.sys
[2011-02-15 01:53:42 | 000,023,552 | ---- | C] (ITE Tech. Inc.) -- C:\WINNT\System32\drivers\ITEirda.sys
[2011-02-15 01:53:21 | 000,068,696 | ---- | C] (O2Micro) -- C:\WINNT\System32\drivers\oz776.sys
[2011-02-15 01:53:21 | 000,015,360 | ---- | C] (Fujitsu) -- C:\WINNT\System32\drivers\FSCSLII.sys
[2011-02-15 01:53:21 | 000,012,288 | ---- | C] (Fujitsu Technology Solutions) -- C:\WINNT\System32\drivers\FscGabi.sys
[2011-02-15 01:53:19 | 001,203,776 | ---- | C] (Agere Systems) -- C:\WINNT\System32\drivers\AGRSM.sys
[2011-02-15 01:53:19 | 000,054,824 | ---- | C] (Agere Systems) -- C:\WINNT\agrsmdel.exe
[2011-02-15 01:53:19 | 000,013,312 | ---- | C] (Agere Systems) -- C:\WINNT\System32\agrsmsvc.exe
[2011-02-15 01:53:19 | 000,013,312 | ---- | C] (Agere Systems) -- C:\WINNT\System32\agrscoin.dll
[2011-02-15 01:53:18 | 001,570,240 | ---- | C] (Atheros Communications, Inc.) -- C:\WINNT\System32\drivers\athw.sys
[2011-02-15 01:53:03 | 002,808,832 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINNT\ALCWZRD.EXE
[2011-02-15 01:53:03 | 000,041,216 | ---- | C] (Infineon Technologies AG) -- C:\WINNT\System32\drivers\ifxtpm.sys
[2011-02-15 01:51:54 | 003,374,640 | ---- | C] (Macromedia, Inc.) -- C:\WINNT\System32\dllcache\tourW.exe
[2011-02-15 01:51:32 | 000,427,008 | ---- | C] (Корпорация Майкрософт) -- C:\WINNT\System32\dllcache\obrb0419.dll
[2011-02-15 01:51:31 | 000,627,200 | ---- | C] (Корпорация Майкрософт) -- C:\WINNT\System32\dllcache\sprc0419.dll
[2011-02-15 01:51:30 | 000,736,768 | ---- | C] (Корпорация Майкрософт) -- C:\WINNT\System32\dllcache\sprb0419.dll
[2011-02-15 01:51:28 | 000,192,512 | ---- | C] (Корпорация Майкрософт) -- C:\WINNT\System32\dllcache\spra0419.dll
[2011-02-14 20:47:28 | 000,159,744 | ---- | C] (Siemens and Partners) -- C:\WINNT\System32\mosaicCC.dll
[2011-02-14 20:47:28 | 000,155,648 | ---- | C] (Siemens and Partners) -- C:\WINNT\System32\mcc.dll
[2011-02-14 20:41:45 | 000,000,000 | ---D | C] -- C:\Program Files\Robocopy
[2011-02-14 20:41:45 | 000,000,000 | ---D | C] -- C:\Data
[2011-02-14 20:40:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Fujitsu
[2011-02-14 20:40:03 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Fujitsu
[2011-02-14 20:39:57 | 000,000,000 | ---D | C] -- C:\Program Files\Fujitsu
[2011-02-14 19:49:47 | 000,106,496 | ---- | C] (SAP AG) -- C:\WINNT\System32\libsapu16vc80.dll
[2011-02-14 19:49:46 | 004,542,464 | ---- | C] (SAP AG) -- C:\WINNT\System32\librfc32u.dll
[2011-02-14 19:49:32 | 003,149,824 | ---- | C] (SAP Technology,Inc) -- C:\Program Files\Common Files\sapxlhelper.dll
[2011-02-14 19:49:31 | 000,626,688 | ---- | C] (SAP AG) -- C:\Program Files\Common Files\sapconsaccess.dll
[2011-02-14 19:49:31 | 000,192,512 | ---- | C] (SAP Tech Inc.) -- C:\Program Files\Common Files\sapconsr3.dll
[2011-02-14 19:49:30 | 000,040,960 | ---- | C] (SAP-TECHNOLOGY) -- C:\Program Files\Common Files\DigitalSignature.ocx
[2011-02-14 19:49:26 | 000,068,640 | ---- | C] (MicroHelp, Inc.) -- C:\WINNT\System32\Gauge32.OCX
[2011-02-14 19:48:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Business Explorer
[2011-02-14 19:48:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ESRI
[2011-02-14 19:48:22 | 001,228,800 | ---- | C] (SAP AG, Walldorf) -- C:\WINNT\System32\wdba.dll
[2011-02-14 19:47:29 | 000,483,328 | ---- | C] (SAP AG, Walldorf) -- C:\WINNT\System32\sapfcpl.cpl
[2011-02-14 19:46:52 | 000,114,688 | ---- | C] (heilerSoftware) -- C:\WINNT\System32\h5dlg32.dll
[2011-02-14 19:46:47 | 001,683,456 | ---- | C] (SAP AG, Walldorf) -- C:\WINNT\System32\SAPbtmp.dll
[2011-02-14 19:46:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SAP Shared
[2011-02-14 19:46:21 | 003,940,352 | ---- | C] (SAP AG) -- C:\WINNT\System32\librfc32.dll
[2011-02-14 19:46:07 | 000,000,000 | ---D | C] -- C:\Program Files\SAP
[2011-02-14 19:45:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\WordFinder Software
[2011-02-14 19:45:27 | 000,000,000 | ---D | C] -- C:\Program Files\Wfwin
[2011-02-14 19:45:00 | 000,000,000 | ---D | C] -- C:\Program Files\HARDCOPY
[2011-02-14 19:42:58 | 000,000,000 | ---D | C] -- C:\Program Files\InterVideo
[2011-02-14 19:42:09 | 000,000,000 | ---D | C] -- C:\Program Files\IXOS
[2011-02-14 19:36:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lotus
[2011-02-14 19:36:56 | 000,000,000 | ---D | C] -- C:\Program Files\IBM
[2011-02-14 19:34:56 | 000,000,000 | ---D | C] -- C:\Program Files\Citrix
[2011-02-14 19:34:21 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Desktop Firewall Monitor
[2011-02-14 19:34:15 | 000,000,000 | ---D | C] -- C:\Program Files\JOConnell
[2011-02-14 19:34:09 | 000,000,000 | ---D | C] -- C:\Program Files\FileSync
[2011-02-14 19:33:51 | 000,000,000 | ---D | C] -- C:\Program Files\Program Files
[2011-02-14 19:32:52 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office Communicator
[2011-02-14 19:32:40 | 000,000,000 | ---D | C] -- C:\Program Files\WinZip
[2011-02-14 19:25:39 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2011-02-14 19:25:27 | 000,000,000 | ---D | C] -- C:\Program Files\UDSolutions
[2011-02-14 19:24:53 | 000,000,000 | ---D | C] -- C:\Program Files\TrustedCA Client
[2011-02-14 19:23:47 | 000,000,000 | ---D | C] -- C:\WINNT\System32\log
[2011-02-14 19:22:27 | 000,062,032 | ---- | C] (Trend Micro Inc.) -- C:\WINNT\System32\drivers\tmactmon.sys
[2011-02-14 19:22:27 | 000,052,304 | ---- | C] (Trend Micro Inc.) -- C:\WINNT\System32\drivers\tmevtmgr.sys
[2011-02-14 19:22:27 | 000,000,000 | ---D | C] -- C:\Program Files\BM
[2011-02-14 19:17:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2011-02-14 19:17:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2011-02-14 19:17:01 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2011-02-14 19:16:24 | 000,000,000 | ---D | C] -- C:\WINNT\System32\Adobe
[2011-02-14 19:16:05 | 000,163,920 | ---- | C] (Trend Micro Inc.) -- C:\WINNT\System32\drivers\tmcomm.sys
[2011-02-14 19:15:24 | 000,000,000 | ---D | C] -- C:\Program Files\OfficeScan NT
[2011-02-14 19:07:52 | 000,000,000 | ---D | C] -- C:\WINNT\System32\RTCOM
[2011-02-14 19:06:54 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\L&H
[2011-02-14 19:06:34 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft ActiveSync
[2011-02-14 19:06:25 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2011-02-14 19:06:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2011-02-14 19:06:14 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2011-02-14 19:06:04 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2011-02-14 19:06:00 | 000,000,000 | ---D | C] -- C:\WINNT\nview
[2011-02-14 19:05:44 | 000,000,000 | ---D | C] -- C:\WINNT\SHELLNEW
[2011-02-14 19:05:33 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2011-02-14 19:05:33 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2011-02-14 19:04:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2011-02-14 19:03:23 | 000,000,000 | -HSD | C] -- C:\WINNT\Installer
[2011-02-14 19:03:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2011-02-14 19:03:21 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2011-02-14 19:03:20 | 000,000,000 | ---D | C] -- C:\Program Files
[2011-02-14 19:03:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2011-02-14 19:03:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2011-02-14 19:03:05 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup
[2011-02-14 19:03:05 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu
[2011-02-14 19:03:05 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents
[2011-02-14 19:03:05 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Templates
[2011-02-14 19:03:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Favorites
[2011-02-14 19:03:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Desktop
[2011-02-14 19:02:53 | 000,000,000 | ---D | C] -- C:\WINNT\System32\CatRoot2
[2011-02-14 19:02:53 | 000,000,000 | ---D | C] -- C:\WINNT\System32\CatRoot
[2011-02-14 19:02:46 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2011-02-14 19:02:46 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data
[2011-02-14 19:02:43 | 000,000,000 | ---D | C] -- C:\WINNT\System32\3082
[2011-02-14 19:02:33 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2011-02-14 19:02:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2011-02-14 19:01:27 | 000,000,000 | ---D | C] -- C:\WINNT\CATPC
[2011-02-14 19:00:15 | 000,000,000 | R-SD | C] -- C:\WINNT\Fonts
[2011-02-14 19:00:15 | 000,000,000 | RHSD | C] -- C:\WINNT\System32\dllcache
[2011-02-14 19:00:15 | 000,000,000 | R--D | C] -- C:\WINNT\Web
[2011-02-14 19:00:15 | 000,000,000 | -H-D | C] -- C:\WINNT\inf
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\WinSxS
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\wins
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\wbem
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\usmt
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\twain_32
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\Temp
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\system32
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\system
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\spool
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\ShellExt
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\Setup
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\security
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\scripting
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\Resources
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\repair
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\ras
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\Provisioning
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\PeerNet
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\pchealth
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\oobe
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\npp
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\Network Diagnostic
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\mui
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\mui
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\msapps
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\msagent
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\Media
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\L2Schemas
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\java
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\inetsrv
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\IME
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\ime
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\icsxml
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\ias
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\Help
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\export
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\drivers\etc
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\en
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\ehome
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\drivers
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\Driver Cache
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\drivers\disdn
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\dhcp
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\Debug
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\Cursors
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\Connection Wizard
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\config
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\Config
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\AppPatch
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\addins
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\3com_dmi
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\3076
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\2052
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\1054
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\1042
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\1041
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\1037
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\1033
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\1031
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\1028
[2011-02-14 19:00:15 | 000,000,000 | ---D | C] -- C:\WINNT\System32\1025
[2011-02-14 19:00:10 | 000,000,000 | ---D | C] -- C:\WINNT\System32\1036
[2011-02-14 18:56:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Juniper Networks
[2011-02-14 18:56:52 | 000,000,000 | ---D | C] -- C:\Program Files\Juniper Networks
[2011-02-14 18:56:52 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Juniper Networks
[2011-02-14 18:47:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows PowerShell 1.0
[2011-02-14 18:47:19 | 000,000,000 | ---D | C] -- C:\WINNT\System32\windowspowershell
[2011-02-14 18:46:39 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2011-02-14 18:44:35 | 000,000,000 | ---D | C] -- C:\WINNT\System32\XPSViewer
[2011-02-14 18:43:56 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2011-02-14 18:39:16 | 000,000,000 | ---D | C] -- C:\WINNT\System32\SoftwareDistribution
[2011-02-14 18:35:31 | 000,000,000 | ---D | C] -- C:\Program Files\Siemens
[2011-02-14 18:35:26 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2011-02-14 18:35:01 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2011-02-14 18:34:17 | 000,000,000 | ---D | C] -- C:\WINNT\System32\drivers\UMDF
[2011-02-14 18:34:17 | 000,000,000 | ---D | C] -- C:\WINNT\System32\LogFiles
[2011-02-14 18:33:43 | 000,000,000 | ---D | C] -- C:\WINNT\System32\tr-tr
[2011-02-14 18:33:42 | 000,000,000 | ---D | C] -- C:\WINNT\System32\th-th
[2011-02-14 18:33:41 | 000,000,000 | ---D | C] -- C:\WINNT\System32\sv-se
[2011-02-14 18:33:39 | 000,000,000 | ---D | C] -- C:\WINNT\System32\sk-sk
[2011-02-14 18:33:38 | 000,000,000 | ---D | C] -- C:\WINNT\System32\sl-si
[2011-02-14 18:33:36 | 000,000,000 | ---D | C] -- C:\WINNT\System32\ru-ru
[2011-02-14 18:33:35 | 000,000,000 | ---D | C] -- C:\WINNT\System32\ro-ro
[2011-02-14 18:33:34 | 000,000,000 | ---D | C] -- C:\WINNT\System32\pt-pt
[2011-02-14 18:33:33 | 000,000,000 | ---D | C] -- C:\WINNT\System32\pt-br
[2011-02-14 18:33:31 | 000,000,000 | ---D | C] -- C:\WINNT\System32\pl-pl
[2011-02-14 18:33:30 | 000,000,000 | ---D | C] -- C:\WINNT\System32\nb-no
[2011-02-14 18:33:29 | 000,000,000 | ---D | C] -- C:\WINNT\System32\nl-nl
[2011-02-14 18:33:27 | 000,000,000 | ---D | C] -- C:\WINNT\System32\lv-lv
[2011-02-14 18:33:25 | 000,000,000 | ---D | C] -- C:\WINNT\System32\lt-lt
[2011-02-14 18:33:24 | 000,000,000 | ---D | C] -- C:\WINNT\System32\ko-kr
[2011-02-14 18:33:22 | 000,000,000 | ---D | C] -- C:\WINNT\System32\ja-jp
[2011-02-14 18:33:21 | 000,000,000 | ---D | C] -- C:\WINNT\System32\it-it
[2011-02-14 18:33:20 | 000,000,000 | ---D | C] -- C:\WINNT\System32\hu-hu
[2011-02-14 18:33:18 | 000,000,000 | ---D | C] -- C:\WINNT\System32\hr-hr
[2011-02-14 18:33:16 | 000,000,000 | ---D | C] -- C:\WINNT\System32\he-il
[2011-02-14 18:33:13 | 000,000,000 | ---D | C] -- C:\WINNT\System32\fr-fr
[2011-02-14 18:33:12 | 000,000,000 | ---D | C] -- C:\WINNT\System32\fi-fi
[2011-02-14 18:33:11 | 000,000,000 | ---D | C] -- C:\WINNT\System32\et-ee
[2011-02-14 18:33:10 | 000,000,000 | ---D | C] -- C:\WINNT\System32\es-es
[2011-02-14 18:33:09 | 000,000,000 | ---D | C] -- C:\WINNT\System32\el-gr
[2011-02-14 18:33:07 | 000,000,000 | ---D | C] -- C:\WINNT\System32\de-de
[2011-02-14 18:33:06 | 000,000,000 | ---D | C] -- C:\WINNT\System32\da-dk
[2011-02-14 18:33:04 | 000,000,000 | ---D | C] -- C:\WINNT\System32\cs-cz
[2011-02-14 18:33:03 | 000,000,000 | ---D | C] -- C:\WINNT\System32\zh-tw
[2011-02-14 18:33:02 | 000,000,000 | ---D | C] -- C:\WINNT\System32\zh-cn
[2011-02-14 18:33:01 | 000,000,000 | ---D | C] -- C:\WINNT\System32\bg-bg
[2011-02-14 18:32:59 | 000,000,000 | ---D | C] -- C:\WINNT\System32\ar-sa
[2011-02-14 18:32:44 | 000,000,000 | ---D | C] -- C:\WINNT\ie7updates
[2011-02-14 18:30:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\~Backup
[2011-02-14 18:29:56 | 000,000,000 | ---D | C] -- C:\WINNT\WBEM
[2011-02-14 18:28:53 | 000,000,000 | -H-D | C] -- C:\WINNT\ie7
[2011-02-14 18:28:42 | 000,000,000 | -H-D | C] -- C:\WINNT\$NtServicePackUninstallIDNMitigationAPIs$
[2011-02-14 18:28:31 | 000,000,000 | -H-D | C] -- C:\WINNT\$NtServicePackUninstallNLSDownlevelMapping$
[2011-02-14 18:26:09 | 000,000,000 | R-SD | C] -- C:\WINNT\assembly
[2011-02-14 18:26:09 | 000,000,000 | ---D | C] -- C:\WINNT\Microsoft.NET
[2011-02-14 18:26:08 | 000,000,000 | ---D | C] -- C:\WINNT\System32\URTTemp
[2011-02-14 18:24:18 | 000,000,000 | ---D | C] -- C:\Program Files\STMicroelectronics
[2011-02-14 18:23:56 | 000,000,000 | ---D | C] -- C:\Program Files\Fingerprint Sensor
[2011-02-14 18:23:53 | 000,000,000 | ---D | C] -- C:\WINNT\Downloaded Installations
[2011-02-14 18:22:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Bluetooth
[2011-02-14 18:22:48 | 000,000,000 | ---D | C] -- C:\Program Files\Toshiba
[2011-02-14 18:22:42 | 000,000,000 | ---D | C] -- C:\WINNT\System32\ReinstallBackups
[2011-02-14 18:22:39 | 000,000,000 | ---D | C] -- C:\WINNT\System32\DRVSTORE
[2011-02-14 18:22:36 | 000,000,000 | ---D | C] -- C:\Program Files\O2Micro OZ776 SCR Driver
[2011-02-14 18:22:22 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2011-02-14 18:22:22 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2011-02-14 18:22:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\InstallShield
[2011-02-14 18:20:08 | 000,000,000 | -HSD | C] -- C:\Recycler
[2011-02-14 18:20:08 | 000,000,000 | -H-D | C] -- C:\temp
[2011-02-14 18:19:50 | 000,000,000 | ---D | C] -- C:\WINNT\System32\Lang
[2011-02-14 18:19:31 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2011-02-14 18:19:03 | 000,000,000 | -HSD | C] -- C:\WINNT\CSC
[2011-02-14 18:18:42 | 000,375,296 | ---- | C] (Siemens AG) -- C:\WINNT\System32\CatSetup.dll
[2011-02-14 18:18:42 | 000,172,032 | ---- | C] (Siemens AG) -- C:\WINNT\System32\CatCSub2.dll
[2011-02-14 18:18:42 | 000,122,880 | ---- | C] (Siemens AG) -- C:\WINNT\System32\CatUInit.exe
[2011-02-14 18:18:41 | 000,000,000 | -H-D | C] -- C:\WINNT\System32\GroupPolicy
[2011-02-14 18:18:38 | 000,000,000 | ---D | C] -- C:\Program Files\CatPC
[2011-02-14 18:18:36 | 000,000,000 | ---D | C] -- C:\WINNT\dot3svc
[2011-02-14 18:18:22 | 000,000,000 | ---D | C] -- C:\WINNT\SchCache
[2011-02-14 18:18:01 | 000,000,000 | ---D | C] -- C:\WINNT\SoftwareDistribution
[2011-02-14 18:17:20 | 000,000,000 | --SD | C] -- C:\WINNT\System32\Microsoft
[2011-02-14 18:17:20 | 000,000,000 | ---D | C] -- C:\WINNT\Prefetch
[2011-02-14 18:17:17 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2011-02-14 18:17:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2011-02-14 18:17:08 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2011-02-14 18:17:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2011-02-14 18:15:24 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINNT\System32\dllcache\rwia330.dll
[2011-02-14 18:15:24 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINNT\System32\dllcache\rwia001.dll
[2011-02-14 18:15:24 | 000,029,184 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINNT\System32\dllcache\rw330ext.dll
[2011-02-14 18:15:19 | 000,281,088 | ---- | C] (Cinematronics) -- C:\WINNT\System32\dllcache\pinball.exe
[2011-02-14 18:14:39 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINNT\System32\dllcache\cap7146.sys
[2011-02-14 18:14:24 | 000,000,000 | ---D | C] -- C:\WINNT\System32\xircom
[2011-02-14 18:14:24 | 000,000,000 | ---D | C] -- C:\Program Files\xerox
[2011-02-14 18:14:24 | 000,000,000 | ---D | C] -- C:\Program Files\msn gaming zone
[2011-02-14 18:14:24 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2011-02-14 18:14:08 | 000,000,000 | -H-D | C] -- C:\WINNT\$hf_mig$
[2011-02-14 18:13:04 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2011-02-14 18:12:55 | 000,000,000 | --SD | C] -- C:\WINNT\Downloaded Program Files
[2011-02-14 18:12:55 | 000,000,000 | R--D | C] -- C:\WINNT\Offline Web Pages
[2011-02-14 18:12:47 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2011-02-14 18:12:42 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services
[2011-02-14 18:12:33 | 000,000,000 | ---D | C] -- C:\WINNT\System32\DirectX
[2011-02-14 18:12:31 | 000,000,000 | --SD | C] -- C:\WINNT\Tasks
[2011-02-14 18:12:31 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2011-02-14 18:12:31 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2011-02-14 18:12:30 | 000,000,000 | ---D | C] -- C:\WINNT\srchasst
[2011-02-14 18:12:30 | 000,000,000 | ---D | C] -- C:\WINNT\System32\Macromed
[2011-02-14 18:12:28 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2011-02-14 18:12:24 | 000,000,000 | ---D | C] -- C:\WINNT\System32\Restore
[2011-02-14 18:12:23 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2011-02-14 18:12:22 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2011-02-14 18:12:21 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2011-02-14 18:12:21 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2011-02-14 18:12:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Pictures
[2011-02-14 18:11:45 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2011-02-14 18:11:37 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools
[2011-02-14 18:11:37 | 000,000,000 | ---D | C] -- C:\WINNT\Registration
[2011-02-14 18:11:28 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music
[2011-02-14 18:11:28 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2011-02-14 18:11:20 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
[2011-02-14 18:11:16 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2011-02-14 18:11:16 | 000,000,000 | ---D | C] -- C:\WINNT\System32\en-US
[2011-02-14 18:11:13 | 000,000,000 | ---D | C] -- C:\WINNT\System32\MsDtc
[2011-02-14 18:11:13 | 000,000,000 | ---D | C] -- C:\WINNT\System32\Com
[2011-02-14 18:11:11 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Videos
[2011-02-14 18:09:56 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Accessories
[4 C:\WINNT\*.tmp files -> C:\WINNT\*.tmp -> ]
[1 C:\WINNT\System32\*.tmp files -> C:\WINNT\System32\*.tmp -> ]
[1 C:\Documents and Settings\w70fa-zconma00p\Local Settings\Application Data\*.tmp files -> C:\Documents and Settings\w70fa-zconma00p\Local Settings\Application Data\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011-03-12 11:23:00 | 000,000,956 | ---- | M] () -- C:\WINNT\tasks\GoogleUpdateTaskMachineUA.job
[2011-03-12 11:00:38 | 000,000,473 | ---- | M] () -- C:\WINNT\SMSCFG.ini
[2011-03-12 10:59:57 | 000,002,443 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Citrix XenApp.lnk
[2011-03-12 10:59:20 | 000,001,024 | ---- | M] () -- C:\Documents and Settings\w70fa-zconma00p\.rnd
[2011-03-12 10:59:20 | 000,001,024 | ---- | M] () -- C:\.rnd
[2011-03-12 10:59:04 | 000,035,834 | ---- | M] () -- C:\WINNT\System32\nvwsapps.xml
[2011-03-12 10:58:48 | 000,000,002 | ---- | M] () -- C:\Documents and Settings\w70fa-zconma00p\ntuser.ok
[2011-03-12 10:58:45 | 000,000,952 | ---- | M] () -- C:\WINNT\tasks\GoogleUpdateTaskMachineCore.job
[2011-03-12 10:56:41 | 000,002,048 | --S- | M] () -- C:\WINNT\bootstat.dat
[2011-03-11 18:33:06 | 000,001,733 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\BankID Security Application.lnk
[2011-03-11 17:27:34 | 000,001,713 | ---- | M] () -- C:\Documents and Settings\w70fa-zconma00p\Desktop\E7SFN-11424 W70FA-zconma00p.lnk
[2011-03-11 17:25:39 | 000,002,206 | ---- | M] () -- C:\WINNT\System32\wpa.dbl
[2011-03-11 16:15:31 | 000,016,593 | ---- | M] () -- C:\WINNT\cfgall.ini
[2011-03-11 15:49:16 | 000,120,202 | RHS- | M] () -- C:\Documents and Settings\All Users\ntuser.pol
[2011-03-11 15:26:00 | 000,003,172 | RHS- | M] () -- C:\Documents and Settings\w70fa-zconma00p\ntuser.pol
[2011-03-11 12:07:07 | 000,000,474 | ---- | M] () -- C:\WINNT\System32\mapisvc.inf
[2011-03-10 08:49:31 | 000,000,000 | -H-- | M] () -- C:\WINNT\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf
[2011-03-10 00:07:01 | 000,577,036 | ---- | M] () -- C:\WINNT\System32\perfh009.dat
[2011-03-10 00:07:01 | 000,114,820 | ---- | M] () -- C:\WINNT\System32\perfc009.dat
[2011-03-10 00:07:01 | 000,004,764 | ---- | M] () -- C:\WINNT\System32\CcmFramework.ini
[2011-03-10 00:07:01 | 000,000,621 | ---- | M] () -- C:\WINNT\System32\CcmFramework.h
[2011-03-08 20:50:29 | 000,007,168 | ---- | M] () -- C:\Documents and Settings\w70fa-zconma00p\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-03-08 20:05:15 | 000,001,475 | ---- | M] () -- C:\Documents and Settings\w70fa-zconma00p\Desktop\XnView.lnk
[2011-03-08 20:04:16 | 000,000,723 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\SmartCVS 7.1.lnk
[2011-03-08 20:01:43 | 000,000,803 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\GIMP 2.lnk
[2011-03-08 20:00:55 | 000,000,700 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CamStudio.lnk
[2011-03-08 19:56:56 | 000,003,018 | ---- | M] () -- C:\WINNT\System32\SpoonUninstall-dBpoweramp FLAC Codec.dat
[2011-03-08 19:56:33 | 000,033,846 | ---- | M] () -- C:\WINNT\System32\SpoonUninstall-dBpoweramp FLAC Codec.bmp
[2011-03-08 08:07:41 | 000,001,549 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2011-03-08 08:05:59 | 000,001,611 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\QuickTime Player.lnk
[2011-03-03 15:36:35 | 000,297,256 | ---- | M] () -- C:\WINNT\System32\FNTCACHE.DAT
[2011-03-03 15:21:24 | 000,001,789 | ---- | M] () -- C:\WINNT\imsins.BAK
[2011-03-03 07:50:01 | 000,001,862 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Nokia Software Updater.lnk
[2011-03-03 07:45:00 | 000,000,000 | -H-- | M] () -- C:\WINNT\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf
[2011-03-03 07:44:59 | 000,000,000 | -H-- | M] () -- C:\WINNT\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2011-03-03 07:43:05 | 000,001,770 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Nokia PC Suite.lnk
[2011-03-02 15:48:13 | 000,002,385 | ---- | M] () -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2011-03-02 10:31:49 | 000,017,873 | ---- | M] () -- C:\WINNT\System32\drivers\etc\services
[2011-02-20 19:01:27 | 000,000,705 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\µTorrent.lnk
[2011-02-18 16:11:27 | 000,001,324 | ---- | M] () -- C:\WINNT\System32\d3d9caps.dat
[2011-02-17 09:00:31 | 000,000,730 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk
[2011-02-16 11:21:56 | 000,000,803 | ---- | M] () -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Microsoft Office Outlook.lnk
[2011-02-16 11:18:47 | 000,000,000 | ---- | M] () -- C:\WINNT\nsreg.dat
[2011-02-16 11:18:13 | 000,001,631 | ---- | M] () -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011-02-16 11:18:13 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2011-02-16 10:56:16 | 000,000,370 | ---- | M] () -- C:\WINNT\ODBC.INI
[2011-02-16 10:50:35 | 000,000,826 | ---- | M] () -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011-02-16 10:48:50 | 000,000,744 | ---- | M] () -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Microsoft\Internet Explorer\Quick Launch\__Show Desktop.lnk
[2011-02-16 10:48:48 | 000,001,468 | ---- | M] () -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Microsoft\Internet Explorer\Quick Launch\_Explorer.lnk
[2011-02-15 13:52:04 | 000,000,161 | ---- | M] () -- C:\WINNT\System32\spupdsvc.inf
[2011-02-15 13:05:36 | 000,001,467 | ---- | M] () -- C:\WINNT\System32\setacl.bat
[2011-02-14 19:24:11 | 000,023,392 | ---- | M] () -- C:\WINNT\System32\nscompat.tlb
[2011-02-14 19:24:11 | 000,016,832 | ---- | M] () -- C:\WINNT\System32\amcompat.tlb
[2011-02-14 19:07:33 | 000,000,000 | -H-- | M] () -- C:\WINNT\System32\drivers\Msft_Kernel_ATSwpWDF_01005.Wdf
[2011-02-14 19:07:32 | 000,000,000 | -H-- | M] () -- C:\WINNT\System32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
[2011-02-14 19:03:27 | 000,004,444 | ---- | M] () -- C:\WINNT\System32\pid.PNF
[2011-02-14 18:56:44 | 000,000,078 | ---- | M] () -- C:\WINNT\init.ini
[2011-02-14 18:34:18 | 000,000,000 | -H-- | M] () -- C:\WINNT\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2011-02-14 18:23:35 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Bluetooth Manager.lnk
[2011-02-14 18:22:45 | 000,000,206 | ---- | M] () -- C:\WINNT\hbcikrnl.ini
[2011-02-14 18:19:51 | 000,940,794 | ---- | M] () -- C:\WINNT\System32\LoopyMusic.wav
[2011-02-14 18:19:51 | 000,146,650 | ---- | M] () -- C:\WINNT\System32\BuzzingBee.wav
[2011-02-14 18:17:11 | 000,008,192 | ---- | M] () -- C:\WINNT\REGLOCS.OLD
[2011-02-14 18:13:57 | 000,002,577 | ---- | M] () -- C:\WINNT\System32\CONFIG.NT
[2011-02-14 18:13:57 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2011-02-14 18:13:57 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2011-02-14 18:13:57 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2011-02-14 18:13:57 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2011-02-14 18:13:54 | 000,316,640 | ---- | M] () -- C:\WINNT\WMSysPr9.prx
[2011-02-14 18:13:43 | 000,004,073 | ---- | M] () -- C:\WINNT\ODBCINST.INI
[2011-02-14 18:11:56 | 000,021,640 | ---- | M] () -- C:\WINNT\System32\emptyregdb.dat
[2011-02-14 18:08:43 | 000,000,207 | -HS- | M] () -- C:\boot.ini
[4 C:\WINNT\*.tmp files -> C:\WINNT\*.tmp -> ]
[1 C:\WINNT\System32\*.tmp files -> C:\WINNT\System32\*.tmp -> ]
[1 C:\Documents and Settings\w70fa-zconma00p\Local Settings\Application Data\*.tmp files -> C:\Documents and Settings\w70fa-zconma00p\Local Settings\Application Data\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011-03-12 10:59:20 | 000,001,024 | ---- | C] () -- C:\.rnd
[2011-03-11 18:33:06 | 000,001,733 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\BankID Security Application.lnk
[2011-03-10 08:49:31 | 000,000,000 | -H-- | C] () -- C:\WINNT\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf
[2011-03-10 00:07:01 | 000,004,764 | ---- | C] () -- C:\WINNT\System32\CcmFramework.ini
[2011-03-10 00:07:01 | 000,000,621 | ---- | C] () -- C:\WINNT\System32\CcmFramework.h
[2011-03-10 00:06:11 | 000,000,473 | ---- | C] () -- C:\WINNT\SMSCFG.ini
[2011-03-08 20:05:15 | 000,001,475 | ---- | C] () -- C:\Documents and Settings\w70fa-zconma00p\Desktop\XnView.lnk
[2011-03-08 20:04:16 | 000,000,723 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\SmartCVS 7.1.lnk
[2011-03-08 20:01:43 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\GIMP 2.lnk
[2011-03-08 20:00:55 | 000,000,700 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\CamStudio.lnk
[2011-03-08 20:00:32 | 000,000,647 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Audacity.lnk
[2011-03-08 19:56:56 | 000,522,928 | ---- | C] () -- C:\WINNT\System32\SpoonUninstall.exe
[2011-03-08 19:56:56 | 000,033,846 | ---- | C] () -- C:\WINNT\System32\SpoonUninstall-dBpoweramp FLAC Codec.bmp
[2011-03-08 19:56:56 | 000,003,018 | ---- | C] () -- C:\WINNT\System32\SpoonUninstall-dBpoweramp FLAC Codec.dat
[2011-03-08 08:07:41 | 000,001,549 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2011-03-08 08:05:59 | 000,001,611 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\QuickTime Player.lnk
[2011-03-08 08:05:25 | 000,001,826 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Apple Software Update.lnk
[2011-03-06 13:02:59 | 000,001,713 | ---- | C] () -- C:\Documents and Settings\w70fa-zconma00p\Desktop\E7SFN-11424 W70FA-zconma00p.lnk
[2011-03-03 07:50:01 | 000,001,862 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Nokia Software Updater.lnk
[2011-03-03 07:45:00 | 000,000,000 | -H-- | C] () -- C:\WINNT\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf
[2011-03-03 07:44:59 | 000,000,000 | -H-- | C] () -- C:\WINNT\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2011-03-03 07:43:05 | 000,001,770 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Nokia PC Suite.lnk
[2011-03-02 15:48:13 | 000,002,385 | ---- | C] () -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2011-02-21 20:31:44 | 000,007,168 | ---- | C] () -- C:\Documents and Settings\w70fa-zconma00p\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-02-20 19:01:27 | 000,000,705 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\µTorrent.lnk
[2011-02-20 14:18:46 | 000,000,956 | ---- | C] () -- C:\WINNT\tasks\GoogleUpdateTaskMachineUA.job
[2011-02-20 14:18:45 | 000,000,952 | ---- | C] () -- C:\WINNT\tasks\GoogleUpdateTaskMachineCore.job
[2011-02-19 08:49:53 | 000,001,024 | ---- | C] () -- C:\Documents and Settings\w70fa-zconma00p\.rnd
[2011-02-17 09:00:31 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk
[2011-02-16 11:21:56 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Microsoft Office Outlook.lnk
[2011-02-16 11:18:47 | 000,000,000 | ---- | C] () -- C:\WINNT\nsreg.dat
[2011-02-16 11:18:13 | 000,001,631 | ---- | C] () -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011-02-16 11:18:13 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2011-02-16 10:50:35 | 000,000,826 | ---- | C] () -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011-02-16 10:50:35 | 000,000,814 | ---- | C] () -- C:\Documents and Settings\w70fa-zconma00p\Start Menu\Programs\Internet Explorer.lnk
[2011-02-16 10:48:50 | 000,000,744 | ---- | C] () -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Microsoft\Internet Explorer\Quick Launch\__Show Desktop.lnk
[2011-02-16 10:48:48 | 000,001,468 | ---- | C] () -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Microsoft\Internet Explorer\Quick Launch\_Explorer.lnk
[2011-02-16 10:48:34 | 000,000,002 | ---- | C] () -- C:\Documents and Settings\w70fa-zconma00p\ntuser.ok
[2011-02-16 10:48:26 | 000,003,172 | RHS- | C] () -- C:\Documents and Settings\w70fa-zconma00p\ntuser.pol
[2011-02-16 10:48:15 | 000,000,347 | ---- | C] () -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Microsoft\Internet Explorer\Quick Launch\Shortcut to My Documents.lnk
[2011-02-16 10:48:13 | 000,000,749 | ---- | C] () -- C:\Documents and Settings\w70fa-zconma00p\Start Menu\Programs\Outlook Express.lnk
[2011-02-15 13:52:04 | 000,000,161 | ---- | C] () -- C:\WINNT\System32\spupdsvc.inf
[2011-02-15 13:05:36 | 000,001,467 | ---- | C] () -- C:\WINNT\System32\setacl.bat
[2011-02-15 09:57:18 | 000,102,400 | ---- | C] () -- C:\WINNT\System32\barcode.dll
[2011-02-15 01:53:39 | 001,630,208 | ---- | C] () -- C:\WINNT\System32\nwiz.exe
[2011-02-15 01:53:37 | 001,703,936 | ---- | C] () -- C:\WINNT\System32\nvwdmcpl.dll
[2011-02-15 01:53:37 | 001,019,904 | ---- | C] () -- C:\WINNT\System32\nvwimg.dll
[2011-02-15 01:53:35 | 000,466,944 | ---- | C] () -- C:\WINNT\System32\nvshell.dll
[2011-02-15 01:53:35 | 000,073,728 | ---- | C] () -- C:\WINNT\System32\nvtuicpl.cpl
[2011-02-15 01:53:32 | 001,486,848 | ---- | C] () -- C:\WINNT\System32\nview.dll
[2011-02-15 01:53:31 | 001,339,392 | ---- | C] () -- C:\WINNT\System32\nvdspsch.exe
[2011-02-15 01:53:25 | 000,442,368 | ---- | C] () -- C:\WINNT\System32\nvappbar.exe
[2011-02-15 01:53:17 | 000,002,900 | ---- | C] () -- C:\WINNT\System32\e1y5132.din
[2011-02-15 01:52:33 | 000,000,207 | -HS- | C] () -- C:\boot.ini
[2011-02-15 01:52:11 | 000,844,314 | ---- | C] () -- C:\WINNT\System32\msdxm.ocx
[2011-02-15 01:52:11 | 000,844,314 | ---- | C] () -- C:\WINNT\System32\dllcache\msdxm.ocx
[2011-02-15 01:52:11 | 000,004,126 | ---- | C] () -- C:\WINNT\System32\dllcache\msdxmlc.dll
[2011-02-15 01:52:10 | 000,498,742 | ---- | C] () -- C:\WINNT\System32\dllcache\dxmasf.dll
[2011-02-15 01:51:47 | 000,250,048 | RHS- | C] () -- C:\ntldr
[2011-02-15 01:51:47 | 000,047,564 | RHS- | C] () -- C:\NTDETECT.COM
[2011-02-15 01:51:40 | 000,127,213 | ---- | C] () -- C:\WINNT\System32\ega.cpi
[2011-02-15 01:51:39 | 000,082,944 | ---- | C] () -- C:\WINNT\clock.avi
[2011-02-15 01:51:37 | 000,072,387 | ---- | C] () -- C:\WINNT\System32\dllcache\archvapp.inf
[2011-02-15 01:51:27 | 000,001,696 | ---- | C] () -- C:\WINNT\System32\noise.cht
[2011-02-15 01:51:26 | 000,001,696 | ---- | C] () -- C:\WINNT\System32\noise.chs
[2011-02-15 01:51:19 | 000,000,697 | ---- | C] () -- C:\WINNT\System32\noise.tha
[2011-02-15 01:51:07 | 000,164,352 | ---- | C] () -- C:\WINNT\System32\wstpager.ax
[2011-02-15 01:51:07 | 000,164,352 | ---- | C] () -- C:\WINNT\System32\dllcache\wstpager.ax
[2011-02-15 01:51:06 | 000,002,206 | ---- | C] () -- C:\WINNT\System32\wpa.dbl
[2011-02-15 01:51:02 | 000,040,448 | ---- | C] () -- C:\WINNT\System32\wiasf.ax
[2011-02-15 01:51:02 | 000,040,448 | ---- | C] () -- C:\WINNT\System32\dllcache\wiasf.ax
[2011-02-15 01:51:02 | 000,013,312 | ---- | C] () -- C:\WINNT\System32\dllcache\win87em.dll
[2011-02-15 01:51:01 | 001,326,080 | ---- | C] () -- C:\WINNT\System32\webfldrs.msi
[2011-02-15 01:51:00 | 000,937,984 | ---- | C] () -- C:\WINNT\System32\wbdbase.sve
[2011-02-15 01:51:00 | 000,004,096 | ---- | C] () -- C:\WINNT\System32\wdl.trm
[2011-02-15 01:50:59 | 001,095,680 | ---- | C] () -- C:\WINNT\System32\wbdbase.nld
[2011-02-15 01:50:59 | 000,957,440 | ---- | C] () -- C:\WINNT\System32\wbdbase.enu
[2011-02-15 01:50:59 | 000,867,840 | ---- | C] () -- C:\WINNT\System32\wbdbase.ita
[2011-02-15 01:50:59 | 000,786,944 | ---- | C] () -- C:\WINNT\System32\wbdbase.fra
[2011-02-15 01:50:59 | 000,750,080 | ---- | C] () -- C:\WINNT\System32\wbdbase.esn
[2011-02-15 01:50:58 | 001,309,184 | ---- | C] () -- C:\WINNT\System32\wbdbase.deu
[2011-02-15 01:50:58 | 000,065,489 | ---- | C] () -- C:\WINNT\System32\wbcache.sve
[2011-02-15 01:50:58 | 000,065,489 | ---- | C] () -- C:\WINNT\System32\wbcache.nld
[2011-02-15 01:50:58 | 000,065,489 | ---- | C] () -- C:\WINNT\System32\wbcache.ita
[2011-02-15 01:50:58 | 000,065,489 | ---- | C] () -- C:\WINNT\System32\wbcache.fra
[2011-02-15 01:50:58 | 000,065,489 | ---- | C] () -- C:\WINNT\System32\wbcache.esn
[2011-02-15 01:50:58 | 000,065,489 | ---- | C] () -- C:\WINNT\System32\wbcache.enu
[2011-02-15 01:50:58 | 000,065,489 | ---- | C] () -- C:\WINNT\System32\wbcache.deu
[2011-02-15 01:50:57 | 000,001,129 | ---- | C] () -- C:\WINNT\System32\dllcache\vwipxspx.exe
[2011-02-15 01:50:56 | 000,053,248 | ---- | C] () -- C:\WINNT\System32\vbicodec.ax
[2011-02-15 01:50:56 | 000,053,248 | ---- | C] () -- C:\WINNT\System32\dllcache\vbicodec.ax
[2011-02-15 01:50:56 | 000,018,832 | ---- | C] () -- C:\WINNT\System32\v7vga.rom
[2011-02-15 01:50:54 | 000,279,040 | ---- | C] () -- C:\WINNT\System32\dllcache\tshoot.dll
[2011-02-15 01:50:53 | 000,015,360 | ---- | C] () -- C:\WINNT\System32\dllcache\tsd32.dll
[2011-02-15 01:50:51 | 000,000,862 | ---- | C] () -- C:\WINNT\System32\termcap
[2011-02-15 01:50:50 | 000,383,804 | ---- | C] () -- C:\WINNT\System32\dllcache\tahoma.ttf
[2011-02-15 01:50:50 | 000,355,680 | ---- | C] () -- C:\WINNT\System32\dllcache\tahomabd.ttf
[2011-02-15 01:50:49 | 000,003,577 | ---- | C] () -- C:\WINNT\System32\sysprtj.sep
[2011-02-15 01:50:49 | 000,003,214 | ---- | C] () -- C:\WINNT\System32\sysprint.sep
[2011-02-15 01:50:47 | 000,033,280 | ---- | C] () -- C:\WINNT\System32\dllcache\sstub.dll
[2011-02-15 01:50:46 | 000,046,133 | ---- | C] () -- C:\WINNT\System32\sqlsodbc.chm
[2011-02-15 01:50:37 | 000,034,816 | ---- | C] () -- C:\WINNT\System32\dllcache\sniffpol.dll
[2011-02-15 01:50:34 | 000,000,882 | ---- | C] () -- C:\WINNT\System32\dllcache\share.exe
[2011-02-15 01:50:33 | 000,240,120 | ---- | C] () -- C:\WINNT\System32\setup.bmp
[2011-02-15 01:50:33 | 000,059,167 | ---- | C] () -- C:\WINNT\System\setup.inf
[2011-02-15 01:50:33 | 000,036,364 | ---- | C] () -- C:\WINNT\System32\secpol.msc
[2011-02-15 01:50:33 | 000,033,464 | ---- | C] () -- C:\WINNT\System32\services.msc
[2011-02-15 01:50:33 | 000,017,873 | ---- | C] () -- C:\WINNT\System32\drivers\etc\services
[2011-02-15 01:50:33 | 000,007,208 | ---- | C] () -- C:\WINNT\System32\secupd.sig
[2011-02-15 01:50:33 | 000,007,208 | ---- | C] () -- C:\WINNT\System32\dllcache\secupd.sig
[2011-02-15 01:50:33 | 000,004,569 | ---- | C] () -- C:\WINNT\System32\secupd.dat
[2011-02-15 01:50:33 | 000,004,569 | ---- | C] () -- C:\WINNT\System32\dllcache\secupd.dat
[2011-02-15 01:50:32 | 000,270,848 | ---- | C] () -- C:\WINNT\System32\dllcache\sbe.dll
[2011-02-15 01:50:32 | 000,010,240 | ---- | C] () -- C:\WINNT\System32\dllcache\scriptpw.dll
[2011-02-15 01:50:30 | 000,044,451 | R--- | C] () -- C:\WINNT\System32\rsop.msc
[2011-02-15 01:50:30 | 000,003,178 | ---- | C] () -- C:\WINNT\System32\rsvpcnts.h
[2011-02-15 01:50:29 | 000,003,167 | ---- | C] () -- C:\WINNT\System32\rsaci.rat
[2011-02-15 01:50:27 | 000,003,338 | ---- | C] () -- C:\WINNT\System32\dllcache\redir.exe
[2011-02-15 01:50:26 | 000,001,818 | ---- | C] () -- C:\WINNT\System32\rasctrnm.h
[2011-02-15 01:50:25 | 001,291,776 | ---- | C] () -- C:\WINNT\System32\dllcache\quartz.dll
[2011-02-15 01:50:25 | 000,733,696 | ---- | C] () -- C:\WINNT\System32\dllcache\qedwipes.dll
[2011-02-15 01:50:25 | 000,562,176 | ---- | C] () -- C:\WINNT\System32\dllcache\qedit.dll
[2011-02-15 01:50:25 | 000,386,048 | ---- | C] () -- C:\WINNT\System32\dllcache\qdvd.dll
[2011-02-15 01:50:25 | 000,279,040 | ---- | C] () -- C:\WINNT\System32\dllcache\qdv.dll
[2011-02-15 01:50:25 | 000,192,512 | ---- | C] () -- C:\WINNT\System32\dllcache\qcap.dll
[2011-02-15 01:50:24 | 000,035,755 | ---- | C] () -- C:\WINNT\System32\prncnfg.vbs
[2011-02-15 01:50:24 | 000,035,755 | ---- | C] () -- C:\WINNT\System32\dllcache\prncnfg.vbs
[2011-02-15 01:50:24 | 000,032,546 | ---- | C] () -- C:\WINNT\System32\prnmngr.vbs
[2011-02-15 01:50:24 | 000,032,546 | ---- | C] () -- C:\WINNT\System32\dllcache\prnmngr.vbs
[2011-02-15 01:50:24 | 000,029,454 | ---- | C] () -- C:\WINNT\System32\prnport.vbs
[2011-02-15 01:50:24 | 000,029,454 | ---- | C] () -- C:\WINNT\System32\dllcache\prnport.vbs
[2011-02-15 01:50:24 | 000,025,415 | ---- | C] () -- C:\WINNT\System32\prndrvr.vbs
[2011-02-15 01:50:24 | 000,025,415 | ---- | C] () -- C:\WINNT\System32\dllcache\prndrvr.vbs
[2011-02-15 01:50:24 | 000,021,527 | ---- | C] () -- C:\WINNT\System32\prnjobs.vbs
[2011-02-15 01:50:24 | 000,021,527 | ---- | C] () -- C:\WINNT\System32\dllcache\prnjobs.vbs
[2011-02-15 01:50:24 | 000,015,860 | ---- | C] () -- C:\WINNT\System32\prnqctl.vbs
[2011-02-15 01:50:24 | 000,015,860 | ---- | C] () -- C:\WINNT\System32\dllcache\prnqctl.vbs
[2011-02-15 01:50:24 | 000,003,708 | ---- | C] () -- C:\WINNT\System32\pubprn.vbs
[2011-02-15 01:50:24 | 000,003,708 | ---- | C] () -- C:\WINNT\System32\dllcache\pubprn.vbs
[2011-02-15 01:50:24 | 000,003,010 | ---- | C] () -- C:\WINNT\System32\pschdcnt.h
[2011-02-15 01:50:24 | 000,000,799 | ---- | C] () -- C:\WINNT\System32\drivers\etc\protocol
[2011-02-15 01:50:24 | 000,000,051 | ---- | C] () -- C:\WINNT\System32\pscript.sep
[2011-02-15 01:50:23 | 000,577,036 | ---- | C] () -- C:\WINNT\System32\perfh009.dat
[2011-02-15 01:50:23 | 000,272,128 | ---- | C] () -- C:\WINNT\System32\perfi009.dat
[2011-02-15 01:50:23 | 000,114,820 | ---- | C] () -- C:\WINNT\System32\perfc009.dat
[2011-02-15 01:50:23 | 000,058,273 | R--- | C] () -- C:\WINNT\System32\perfmon.msc
[2011-02-15 01:50:23 | 000,028,626 | ---- | C] () -- C:\WINNT\System32\perfd009.dat
[2011-02-15 01:50:23 | 000,000,974 | ---- | C] () -- C:\WINNT\System32\pid.inf
[2011-02-15 01:50:23 | 000,000,974 | ---- | C] () -- C:\WINNT\System32\dllcache\pid.inf
[2011-02-15 01:50:23 | 000,000,435 | ---- | C] () -- C:\WINNT\System32\perfwci.h
[2011-02-15 01:50:23 | 000,000,427 | ---- | C] () -- C:\WINNT\System32\perfci.h
[2011-02-15 01:50:23 | 000,000,140 | ---- | C] () -- C:\WINNT\System32\perffilt.h
[2011-02-15 01:50:22 | 000,000,114 | ---- | C] () -- C:\WINNT\System32\pcl.sep
[2011-02-15 01:50:20 | 000,006,761 | ---- | C] () -- C:\WINNT\System32\oembios.sig
[2011-02-15 01:50:20 | 000,006,761 | ---- | C] () -- C:\WINNT\System32\dllcache\oembios.sig
[2011-02-15 01:50:20 | 000,004,463 | ---- | C] () -- C:\WINNT\System32\oembios.dat
[2011-02-15 01:50:20 | 000,004,463 | ---- | C] () -- C:\WINNT\System32\dllcache\oembios.dat
[2011-02-15 01:50:16 | 013,107,200 | ---- | C] () -- C:\WINNT\System32\oembios.bin
[2011-02-15 01:50:16 | 013,107,200 | ---- | C] () -- C:\WINNT\System32\dllcache\oembios.bin
[2011-02-15 01:50:15 | 000,004,310 | ---- | C] () -- C:\WINNT\System32\odbcconf.rsp
[2011-02-15 01:50:15 | 000,004,310 | ---- | C] () -- C:\WINNT\System32\dllcache\odbcconf.rsp
[2011-02-15 01:50:15 | 000,003,252 | ---- | C] () -- C:\WINNT\System32\dllcache\nw16.exe
[2011-02-15 01:50:13 | 000,048,794 | ---- | C] () -- C:\WINNT\System32\ntimage.gif
[2011-02-15 01:50:13 | 000,035,648 | ---- | C] () -- C:\WINNT\System32\dllcache\ntio411.sys
[2011-02-15 01:50:13 | 000,035,424 | ---- | C] () -- C:\WINNT\System32\dllcache\ntio412.sys
[2011-02-15 01:50:13 | 000,034,560 | ---- | C] () -- C:\WINNT\System32\dllcache\ntio804.sys
[2011-02-15 01:50:13 | 000,034,560 | ---- | C] () -- C:\WINNT\System32\dllcache\ntio404.sys
[2011-02-15 01:50:13 | 000,033,840 | ---- | C] () -- C:\WINNT\System32\dllcache\ntio.sys
[2011-02-15 01:50:13 | 000,032,968 | ---- | C] () -- C:\WINNT\System32\ntmsoprq.msc
[2011-02-15 01:50:13 | 000,026,209 | ---- | C] () -- C:\WINNT\System32\ntmsmgr.msc
[2011-02-15 01:50:12 | 000,029,370 | ---- | C] () -- C:\WINNT\System32\dllcache\ntdos411.sys
[2011-02-15 01:50:12 | 000,029,274 | ---- | C] () -- C:\WINNT\System32\dllcache\ntdos412.sys
[2011-02-15 01:50:12 | 000,029,146 | ---- | C] () -- C:\WINNT\System32\dllcache\ntdos804.sys
[2011-02-15 01:50:12 | 000,029,146 | ---- | C] () -- C:\WINNT\System32\dllcache\ntdos404.sys
[2011-02-15 01:50:12 | 000,027,866 | ---- | C] () -- C:\WINNT\System32\dllcache\ntdos.sys
[2011-02-15 01:50:11 | 000,149,848 | ---- | C] () -- C:\WINNT\System32\noise.deu
[2011-02-15 01:50:11 | 000,049,196 | ---- | C] () -- C:\WINNT\System32\noise.fra
[2011-02-15 01:50:11 | 000,019,684 | ---- | C] () -- C:\WINNT\System32\noise.esn
[2011-02-15 01:50:11 | 000,019,618 | ---- | C] () -- C:\WINNT\System32\noise.ita
[2011-02-15 01:50:11 | 000,013,730 | ---- | C] () -- C:\WINNT\System32\noise.sve
[2011-02-15 01:50:11 | 000,013,256 | ---- | C] () -- C:\WINNT\System32\noise.nld
[2011-02-15 01:50:11 | 000,000,751 | ---- | C] () -- C:\WINNT\System32\noise.enu
[2011-02-15 01:50:11 | 000,000,751 | ---- | C] () -- C:\WINNT\System32\noise.eng
[2011-02-15 01:50:11 | 000,000,741 | ---- | C] () -- C:\WINNT\System32\noise.dat
[2011-02-15 01:50:10 | 000,007,052 | ---- | C] () -- C:\WINNT\System32\dllcache\nlsfunc.exe
[2011-02-15 01:50:09 | 000,000,407 | ---- | C] () -- C:\WINNT\System32\drivers\etc\networks
[2011-02-15 01:50:01 | 000,204,396 | ---- | C] () -- C:\WINNT\System32\dllcache\msimain.sdb
[2011-02-15 01:49:59 | 000,014,336 | ---- | C] () -- C:\WINNT\System32\dllcache\msdmo.dll
[2011-02-15 01:49:59 | 000,000,817 | ---- | C] () -- C:\WINNT\System32\dllcache\mscdexnt.exe
[2011-02-15 01:49:58 | 000,002,755 | ---- | C] () -- C:\WINNT\System32\mqprfsym.h
[2011-02-15 01:49:57 | 000,148,992 | ---- | C] () -- C:\WINNT\System32\mpg2splt.ax
[2011-02-15 01:49:57 | 000,148,992 | ---- | C] () -- C:\WINNT\System32\dllcache\mpg2splt.ax
[2011-02-15 01:49:57 | 000,118,272 | ---- | C] () -- C:\WINNT\System32\dllcache\mpg2data.ax
[2011-02-15 01:49:57 | 000,118,272 | ---- | C] () -- C:\WINNT\System32\mpeg2data.ax
[2011-02-15 01:49:56 | 000,001,492 | ---- | C] () -- C:\WINNT\System32\mmdriver.inf
[2011-02-15 01:49:55 | 000,673,088 | ---- | C] () -- C:\WINNT\System32\mlang.dat
[2011-02-15 01:49:55 | 000,673,088 | ---- | C] () -- C:\WINNT\System32\dllcache\mlang.dat
[2011-02-15 01:49:55 | 000,461,672 | ---- | C] () -- C:\WINNT\System32\dllcache\micross.ttf
[2011-02-15 01:49:55 | 000,046,258 | ---- | C] () -- C:\WINNT\System32\mib.bin
[2011-02-15 01:49:53 | 000,039,274 | ---- | C] () -- C:\WINNT\System32\dllcache\mem.exe
[2011-02-15 01:49:52 | 000,035,328 | ---- | C] () -- C:\WINNT\System32\dllcache\mciqtz32.dll
[2011-02-15 01:49:51 | 000,042,166 | ---- | C] () -- C:\WINNT\System32\lusrmgr.msc
[2011-02-15 01:49:51 | 000,024,124 | ---- | C] () -- C:\WINNT\System32\dllcache\marlett.ttf
[2011-02-15 01:49:50 | 000,003,683 | ---- | C] () -- C:\WINNT\System32\drivers\etc\lmhosts.sam
[2011-02-15 01:49:50 | 000,000,487 | ---- | C] () -- C:\WINNT\System32\login.cmd
[2011-02-15 01:49:48 | 000,042,809 | ---- | C] () -- C:\WINNT\System32\dllcache\key01.sys
[2011-02-15 01:49:48 | 000,042,537 | ---- | C] () -- C:\WINNT\System32\dllcache\keyboard.sys
[2011-02-15 01:49:45 | 000,956,990 | ---- | C] () -- C:\WINNT\System32\instcat.sql
[2011-02-15 01:49:42 | 000,056,700 | ---- | C] () -- C:\WINNT\System32\ieuinit.inf
[2011-02-15 01:49:40 | 000,000,929 | ---- | C] () -- C:\WINNT\System32\homepage.inf
[2011-02-15 01:49:40 | 000,000,734 | ---- | C] () -- C:\WINNT\System32\drivers\etc\hosts
[2011-02-15 01:49:38 | 000,004,768 | ---- | C] () -- C:\WINNT\System32\dllcache\himem.sys
[2011-02-15 01:49:37 | 000,034,871 | ---- | C] () -- C:\WINNT\System32\gpedit.msc
[2011-02-15 01:49:37 | 000,021,232 | ---- | C] () -- C:\WINNT\System32\graphics.pro
[2011-02-15 01:49:36 | 003,440,660 | ---- | C] () -- C:\WINNT\System32\drivers\gm.dls
[2011-02-15 01:49:36 | 003,440,660 | ---- | C] () -- C:\WINNT\System32\dllcache\gm.dls
[2011-02-15 01:49:34 | 000,152,844 | ---- | C] () -- C:\WINNT\System32\dllcache\framdit.ttf
[2011-02-15 01:49:34 | 000,135,984 | ---- | C] () -- C:\WINNT\System32\dllcache\framd.ttf
[2011-02-15 01:49:34 | 000,032,760 | ---- | C] () -- C:\WINNT\System32\fsmgmt.msc
[2011-02-15 01:49:33 | 000,000,882 | ---- | C] () -- C:\WINNT\System32\dllcache\fastopen.exe
[2011-02-15 01:49:33 | 000,000,080 | ---- | C] () -- C:\WINNT\explorer.scf
[2011-02-15 01:49:32 | 000,056,678 | ---- | C] () -- C:\WINNT\System32\eventvwr.msc
[2011-02-15 01:49:32 | 000,008,424 | ---- | C] () -- C:\WINNT\System32\dllcache\exe2bin.exe
[2011-02-15 01:49:31 | 000,186,880 | ---- | C] () -- C:\WINNT\System32\dllcache\encdec.dll
[2011-02-15 01:49:31 | 000,006,708 | ---- | C] () -- C:\WINNT\System32\esentprf.hxx
[2011-02-15 01:49:30 | 000,012,642 | ---- | C] () -- C:\WINNT\System32\dllcache\edlin.exe
[2011-02-15 01:49:28 | 000,218,003 | ---- | C] () -- C:\WINNT\System32\dssec.dat
[2011-02-15 01:49:28 | 000,009,424 | ---- | C] () -- C:\WINNT\System32\dllcache\drvmain.sdb
[2011-02-15 01:49:28 | 000,000,081 | ---- | C] () -- C:\WINNT\System32\dsound.vxd
[2011-02-15 01:49:05 | 000,053,840 | ---- | C] () -- C:\WINNT\System32\dllcache\dosx.exe
[2011-02-15 01:49:04 | 000,033,673 | ---- | C] () -- C:\WINNT\System32\diskmgmt.msc
[2011-02-15 01:49:03 | 000,059,904 | ---- | C] () -- C:\WINNT\System32\dllcache\devenum.dll
[2011-02-15 01:49:03 | 000,041,397 | ---- | C] () -- C:\WINNT\System32\dfrg.msc
[2011-02-15 01:49:03 | 000,033,079 | ---- | C] () -- C:\WINNT\System32\devmgmt.msc
[2011-02-15 01:49:03 | 000,020,634 | ---- | C] () -- C:\WINNT\System32\dllcache\debug.exe
[2011-02-15 01:49:03 | 000,001,804 | ---- | C] () -- C:\WINNT\System32\Dcache.bin
[2011-02-15 01:49:00 | 000,027,097 | ---- | C] () -- C:\WINNT\System32\dllcache\country.sys
[2011-02-15 01:48:59 | 000,252,928 | ---- | C] () -- C:\WINNT\System32\dllcache\compatui.dll
[2011-02-15 01:48:59 | 000,038,302 | ---- | C] () -- C:\WINNT\System32\compmgmt.msc
[2011-02-15 01:48:58 | 000,071,859 | ---- | C] () -- C:\WINNT\System32\cliconf.chm
[2011-02-15 01:48:58 | 000,040,505 | ---- | C] () -- C:\WINNT\System32\cmdlib.wsc
[2011-02-15 01:48:58 | 000,000,064 | ---- | C] () -- C:\WINNT\System32\cmos.ram
[2011-02-15 01:48:57 | 000,355,112 | ---- | C] () -- C:\WINNT\System32\dllcache\msjetol1.dll
[2011-02-15 01:48:57 | 000,239,616 | ---- | C] () -- C:\WINNT\System32\dllcache\wstrendr.ax
[2011-02-15 01:48:57 | 000,239,616 | ---- | C] () -- C:\WINNT\System32\wstrenderer.ax
[2011-02-15 01:48:57 | 000,167,219 | ---- | C] () -- C:\WINNT\System32\pagefileconfig.vbs
[2011-02-15 01:48:57 | 000,167,219 | ---- | C] () -- C:\WINNT\System32\dllcache\pagefile.vbs
[2011-02-15 01:48:57 | 000,097,965 | ---- | C] () -- C:\WINNT\System32\dllcache\evtquery.vbs
[2011-02-15 01:48:57 | 000,097,965 | ---- | C] () -- C:\WINNT\System32\eventquery.vbs
[2011-02-15 01:48:57 | 000,042,339 | ---- | C] () -- C:\WINNT\System32\certmgr.msc
[2011-02-15 01:48:57 | 000,041,762 | ---- | C] () -- C:\WINNT\System32\ciadv.msc
[2011-02-15 01:48:57 | 000,000,075 | ---- | C] () -- C:\WINNT\System32\View Channels.scf
[2011-02-15 01:48:53 | 000,028,420 | ---- | C] () -- C:\WINNT\System32\bios1.rom
[2011-02-15 01:48:53 | 000,008,191 | ---- | C] () -- C:\WINNT\System32\bios4.rom
[2011-02-15 01:48:51 | 000,080,546 | ---- | C] () -- C:\WINNT\System32\dllcache\apps.chm
[2011-02-15 01:48:50 | 000,785,972 | ---- | C] () -- C:\WINNT\System32\dllcache\apph_sp.sdb
[2011-02-15 01:48:50 | 000,218,134 | ---- | C] () -- C:\WINNT\System32\dllcache\apphelp.sdb
[2011-02-15 01:48:50 | 000,070,656 | ---- | C] () -- C:\WINNT\System32\dllcache\amstream.dll
[2011-02-15 01:48:50 | 000,012,498 | ---- | C] () -- C:\WINNT\System32\dllcache\append.exe
[2011-02-15 01:48:50 | 000,009,029 | ---- | C] () -- C:\WINNT\System32\dllcache\ansi.sys
[2011-02-15 01:48:48 | 000,002,233 | ---- | C] () -- C:\WINNT\System32\dllcache\12520850.cpx
[2011-02-15 01:48:48 | 000,002,233 | ---- | C] () -- C:\WINNT\System32\12520850.cpx
[2011-02-15 01:48:48 | 000,002,151 | ---- | C] () -- C:\WINNT\System32\dllcache\12520437.cpx
[2011-02-15 01:48:48 | 000,002,151 | ---- | C] () -- C:\WINNT\System32\12520437.cpx
[2011-02-15 01:48:48 | 000,000,707 | ---- | C] () -- C:\WINNT\_default.pif
[2011-02-14 19:49:30 | 001,167,872 | ---- | C] () -- C:\Program Files\Common Files\SAPActiveXL.xlt
[2011-02-14 19:49:30 | 000,949,760 | ---- | C] () -- C:\Program Files\Common Files\SAPActiveXL_nosig.xlt
[2011-02-14 19:46:53 | 000,175,616 | ---- | C] () -- C:\WINNT\System32\h5menu32.dll
[2011-02-14 19:46:53 | 000,095,744 | ---- | C] () -- C:\WINNT\System32\h5rtf32.dll
[2011-02-14 19:46:53 | 000,051,200 | ---- | C] () -- C:\WINNT\System32\h5tool32.dll
[2011-02-14 19:46:52 | 001,064,960 | ---- | C] () -- C:\WINNT\System32\h5krnl32.dll
[2011-02-14 19:46:52 | 000,188,928 | ---- | C] () -- C:\WINNT\System32\h5icon32.dll
[2011-02-14 19:35:02 | 000,002,443 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Citrix XenApp.lnk
[2011-02-14 19:33:40 | 000,000,474 | ---- | C] () -- C:\WINNT\System32\mapisvc.inf
[2011-02-14 19:18:37 | 000,016,593 | ---- | C] () -- C:\WINNT\cfgall.ini
[2011-02-14 19:07:33 | 000,000,000 | -H-- | C] () -- C:\WINNT\System32\drivers\Msft_Kernel_ATSwpWDF_01005.Wdf
[2011-02-14 19:07:32 | 000,000,370 | ---- | C] () -- C:\WINNT\ODBC.INI
[2011-02-14 19:07:32 | 000,000,000 | -H-- | C] () -- C:\WINNT\System32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
[2011-02-14 19:06:03 | 000,189,853 | ---- | C] () -- C:\WINNT\System32\nvapps.xml
[2011-02-14 19:06:03 | 000,035,834 | ---- | C] () -- C:\WINNT\System32\nvwsapps.xml
[2011-02-14 19:06:00 | 000,018,335 | ---- | C] () -- C:\WINNT\System32\nvdisp.nvu
[2011-02-14 19:03:27 | 000,004,444 | ---- | C] () -- C:\WINNT\System32\pid.PNF
[2011-02-14 19:03:26 | 000,001,789 | ---- | C] () -- C:\WINNT\imsins.BAK
[2011-02-14 19:03:22 | 000,004,073 | ---- | C] () -- C:\WINNT\ODBCINST.INI
[2011-02-14 19:03:21 | 001,685,606 | ---- | C] () -- C:\WINNT\System32\dllcache\sam.spd
[2011-02-14 19:03:21 | 000,643,717 | ---- | C] () -- C:\WINNT\System32\dllcache\ltts1033.lxa
[2011-02-14 19:03:21 | 000,605,050 | ---- | C] () -- C:\WINNT\System32\dllcache\r1033tts.lxa
[2011-02-14 19:03:21 | 000,000,888 | ---- | C] () -- C:\WINNT\System32\dllcache\sam.sdf
[2011-02-14 19:03:14 | 000,001,688 | ---- | C] () -- C:\WINNT\System32\AUTOEXEC.NT
[2011-02-14 19:03:03 | 002,144,487 | ---- | C] () -- C:\WINNT\System32\dllcache\NT5.CAT
[2011-02-14 19:03:03 | 001,296,669 | ---- | C] () -- C:\WINNT\System32\dllcache\SP3.CAT
[2011-02-14 19:03:03 | 000,797,189 | ---- | C] () -- C:\WINNT\System32\dllcache\NT5IIS.CAT
[2011-02-14 19:03:03 | 000,522,220 | ---- | C] () -- C:\WINNT\System32\dllcache\NT5INF.CAT
[2011-02-14 19:03:03 | 000,399,645 | ---- | C] () -- C:\WINNT\System32\dllcache\MAPIMIG.CAT
[2011-02-14 19:03:03 | 000,144,484 | ---- | C] () -- C:\WINNT\System32\dllcache\netfx.cat
[2011-02-14 19:03:03 | 000,112,918 | ---- | C] () -- C:\WINNT\System32\dllcache\tabletpc.cat
[2011-02-14 19:03:03 | 000,037,484 | ---- | C] () -- C:\WINNT\System32\dllcache\MW770.CAT
[2011-02-14 19:03:03 | 000,034,747 | ---- | C] () -- C:\WINNT\System32\dllcache\mediactr.cat
[2011-02-14 19:03:03 | 000,034,063 | ---- | C] () -- C:\WINNT\System32\dllcache\FP4.CAT
[2011-02-14 19:03:03 | 000,026,991 | ---- | C] () -- C:\WINNT\System32\dllcache\msn7.cat
[2011-02-14 19:03:03 | 000,016,535 | ---- | C] () -- C:\WINNT\System32\dllcache\IMS.CAT
[2011-02-14 19:03:03 | 000,014,433 | ---- | C] () -- C:\WINNT\System32\dllcache\msn9.cat
[2011-02-14 19:03:03 | 000,013,472 | ---- | C] () -- C:\WINNT\System32\dllcache\HPCRDP.CAT
[2011-02-14 19:03:03 | 000,012,363 | ---- | C] () -- C:\WINNT\System32\dllcache\MSMSGS.CAT
[2011-02-14 19:03:03 | 000,010,027 | ---- | C] () -- C:\WINNT\System32\dllcache\MSTSWEB.CAT
[2011-02-14 19:03:03 | 000,008,574 | ---- | C] () -- C:\WINNT\System32\dllcache\IASNT4.CAT
[2011-02-14 19:03:03 | 000,007,382 | ---- | C] () -- C:\WINNT\System32\dllcache\OEMBIOS.CAT
[2011-02-14 19:03:03 | 000,007,334 | ---- | C] () -- C:\WINNT\System32\dllcache\wmerrenu.cat
[2011-02-14 19:02:32 | 000,297,256 | ---- | C] () -- C:\WINNT\System32\FNTCACHE.DAT
[2011-02-14 19:00:11 | 000,039,340 | ---- | C] () -- C:\WINNT\WMPrfFRA.prx
[2011-02-14 18:57:48 | 000,034,818 | ---- | C] () -- C:\WINNT\WMPrfDeu.prx
[2011-02-14 18:56:44 | 000,000,078 | ---- | C] () -- C:\WINNT\init.ini
[2011-02-14 18:34:18 | 000,000,000 | -H-- | C] () -- C:\WINNT\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2011-02-14 18:23:35 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Bluetooth Manager.lnk
[2011-02-14 18:22:36 | 000,000,206 | ---- | C] () -- C:\WINNT\hbcikrnl.ini
[2011-02-14 18:19:51 | 000,940,794 | ---- | C] () -- C:\WINNT\System32\LoopyMusic.wav
[2011-02-14 18:19:51 | 000,146,650 | ---- | C] () -- C:\WINNT\System32\BuzzingBee.wav
[2011-02-14 18:18:42 | 000,221,184 | ---- | C] () -- C:\WINNT\System32\zLibDll.dll
[2011-02-14 18:18:42 | 000,122,880 | ---- | C] () -- C:\WINNT\System32\zLibDllA.dll
[2011-02-14 18:18:24 | 000,120,202 | RHS- | C] () -- C:\Documents and Settings\All Users\ntuser.pol
[2011-02-14 18:17:11 | 000,008,192 | ---- | C] () -- C:\WINNT\REGLOCS.OLD
[2011-02-14 18:15:53 | 000,002,048 | --S- | C] () -- C:\WINNT\bootstat.dat
[2011-02-14 18:14:51 | 000,094,208 | ---- | C] () -- C:\WINNT\System32\dllcache\fpencode.dll
[2011-02-14 18:13:57 | 000,002,577 | ---- | C] () -- C:\WINNT\System32\CONFIG.NT
[2011-02-14 18:13:57 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2011-02-14 18:13:57 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2011-02-14 18:13:57 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2011-02-14 18:13:57 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2011-02-14 18:13:54 | 000,023,392 | ---- | C] () -- C:\WINNT\System32\nscompat.tlb
[2011-02-14 18:13:54 | 000,016,832 | ---- | C] () -- C:\WINNT\System32\amcompat.tlb
[2011-02-14 18:13:53 | 000,316,640 | ---- | C] () -- C:\WINNT\WMSysPr9.prx
[2011-02-14 18:12:46 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Movie Maker.lnk
[2011-02-14 18:12:35 | 004,399,505 | ---- | C] () -- C:\WINNT\System32\dllcache\nls302en.lex
[2011-02-14 18:12:32 | 000,048,680 | -HS- | C] () -- C:\WINNT\winnt256.bmp
[2011-02-14 18:12:32 | 000,048,680 | -HS- | C] () -- C:\WINNT\winnt.bmp
[2011-02-14 18:12:32 | 000,000,984 | ---- | C] () -- C:\WINNT\System32\dllcache\srframe.mmf
[2011-02-14 18:12:25 | 000,376,832 | ---- | C] () -- C:\WINNT\System32\dllcache\msinfo.dll
[2011-02-14 18:11:56 | 000,021,640 | ---- | C] () -- C:\WINNT\System32\emptyregdb.dat
[2011-02-14 18:11:18 | 000,065,978 | ---- | C] () -- C:\WINNT\Soap Bubbles.bmp
[2011-02-14 18:11:18 | 000,065,954 | ---- | C] () -- C:\WINNT\Prairie Wind.bmp
[2011-02-14 18:11:18 | 000,065,832 | ---- | C] () -- C:\WINNT\Santa Fe Stucco.bmp
[2011-02-14 18:11:18 | 000,026,680 | ---- | C] () -- C:\WINNT\River Sumida.bmp
[2011-02-14 18:11:18 | 000,026,582 | ---- | C] () -- C:\WINNT\Greenstone.bmp
[2011-02-14 18:11:18 | 000,017,362 | ---- | C] () -- C:\WINNT\Rhododendron.bmp
[2011-02-14 18:11:18 | 000,017,336 | ---- | C] () -- C:\WINNT\Gone Fishing.bmp
[2011-02-14 18:11:18 | 000,017,062 | ---- | C] () -- C:\WINNT\Coffee Bean.bmp
[2011-02-14 18:11:18 | 000,016,730 | ---- | C] () -- C:\WINNT\FeatherTexture.bmp
[2011-02-14 18:11:18 | 000,009,522 | ---- | C] () -- C:\WINNT\Zapotec.bmp
[2011-02-14 18:11:18 | 000,003,286 | ---- | C] () -- C:\WINNT\System32\tslabels.h
[2011-02-14 18:11:18 | 000,001,272 | ---- | C] () -- C:\WINNT\Blue Lace 16.bmp
[2011-02-14 18:11:18 | 000,001,161 | ---- | C] () -- C:\WINNT\System32\usrlogon.cmd
[2011-02-14 18:11:17 | 000,000,768 | ---- | C] () -- C:\WINNT\System32\msdtcprf.h
[2011-02-14 18:11:16 | 000,063,488 | ---- | C] () -- C:\WINNT\System32\wmimgmt.msc
[2010-10-12 11:41:38 | 000,001,324 | ---- | C] () -- C:\WINNT\System32\d3d9caps.dat
[2008-04-18 15:56:18 | 000,311,296 | ---- | C] () -- C:\WINNT\System32\siecaces.dll
[2007-04-16 13:01:06 | 000,184,320 | ---- | C] () -- C:\WINNT\System32\gmp4_2_1.dll
[2007-04-12 08:48:40 | 000,028,672 | ---- | C] () -- C:\WINNT\System32\siecacsp.dll
[2005-11-28 13:39:06 | 000,045,056 | ---- | C] () -- C:\WINNT\System32\CorinaSecure.dll
[2003-01-07 15:05:08 | 000,002,695 | ---- | C] () -- C:\WINNT\System32\OUTLPERF.INI
[2000-12-10 01:25:52 | 000,000,067 | ---- | C] () -- C:\WINNT\System32\OEMINFO.INI

========== LOP Check ==========

[2011-03-03 07:49:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Installations
[2011-02-14 18:56:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Juniper Networks
[2011-02-14 19:36:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Lotus
[2011-03-03 07:50:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nokia
[2011-03-03 07:43:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Suite
[2011-02-15 14:48:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PreEmptive Solutions
[2011-02-15 08:39:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TOSHIBA
[2011-03-08 08:07:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2011-02-14 20:47:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\CatPC
[2011-03-09 10:44:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\ICAClient
[2011-03-09 10:44:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Juniper Networks
[2011-03-10 08:49:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Nokia
[2011-02-18 11:59:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Notepad++
[2011-03-10 08:49:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\PC Suite
[2011-03-11 18:33:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\Personal
[2011-03-02 10:31:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\SAP
[2011-03-11 18:42:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\searchqutoolbar
[2011-02-21 21:48:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\w70fa-zconma00p\Application Data\uTorrent

========== Purity Check ==========

< End of report >

#2
balooba123

Posted 12 March 2011 - 04:53 AM

New Member

Topic Starter
Member
3 posts

Here's some additional information regarding the uninstallation of Searchqu (by using their own uninstaller)

uninstall: restore appinit to
uninstall: get MAIN_FOLDER=C:\Program Files\Windows Searchqu Toolbar DATAMNGR_FOLDER=C:\Program Files\Windows Searchqu Toolbar\Datamngr TOOLBAR_FOLDER=
uninstall: get TOOLBAR_FOLDER=C:\Program Files\Windows Searchqu Toolbar\ToolBar
ExecTimeout C:\Program Files\Windows Searchqu Toolbar\ToolBar\Uninstall.exe /S Exit Code: 0
Delete file: C:\Program Files\Windows Searchqu Toolbar\uninstall.exe
uninstall: remove registry Software\Microsoft\Windows\CurrentVersion\Uninstall\Searchqu 101 MediaBar
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\as_guid.dat
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\bandoocode.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\data\search\engines.xml
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\data\search\search.xsl
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\data\search\
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\data\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\imeshcode.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\lib\about.xml
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\lib\bandoocode.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\lib\dtxpanel.xul
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\lib\dtxpanelwin.xul
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\lib\dtxprefwin.xul
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\lib\dtxtransparentwin.xul
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\lib\dtxwin.xul
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\lib\emailnotifierproviders.xml
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\lib\external.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\lib\imeshcode.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\lib\neterror.xhtml
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\lib\nsDragAndDrop.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\lib\vmncode.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\lib\wmpstreamer.html
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\lib\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\modules\datastore.jsm
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\modules\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\neterror.xhtml
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\partner.coupons.xml
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\preferences.xml
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\radiobeta.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\template.xml
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\toolbar.htm
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\toolbar.xul
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\vmncode.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\vmnrsswin.xml
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\alert_coupon.css
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\arrow-next-off.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\arrow-next.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\arrow-previous-off.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\arrow-previous.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\bg-coupon-blue.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\bg-save.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\btn-getcoupon.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\btn-next-blue.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\btn-previous-blue.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\btn-wide-close-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\btn-wide-close.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\coupon-activated.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\couponTooltip.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\css\dialog.css
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\css\ie7style.css
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\css\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\ico-coupon.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\ico-dollar.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\arrow-grey.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\arrows_grey-left.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\arrows_grey-right.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\bg_top.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\btn-back.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\btn-getcoupon.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\btn-search.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\coupon-activated.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\delete.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\loader.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\scrollb-disable.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\scrollb-down.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\scrollb.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\scrollt-disable.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\scrollt-down.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\scrollt.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\sprite.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\tab-arrow-hover.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\tab-arrow.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\tab-off-l.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\tab-off-l_BAK.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\tab-off-r.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\tab-off-r_BAK.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\tab-on-l.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\tab-on-r.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\tab-over-l.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\tab-over-r.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\tab-white-left.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\tab-white-mdl.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\tab-white-right.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\vid-bg.png
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\images\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\index.html
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\jquery.contextMenu.css
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\jquery.contextMenu.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\js\jquery-1.4.2.min.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\js\jquery.event.wheel.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\js\jquery.scrollTo-min.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\js\JSON.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\js\listnav.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\js\main.js
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\js\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\page_white_copy.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\panel.html
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\partner.xml
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\placeholder-logo.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\skin\css\dialog.css
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\skin\css\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\skin\images\bg.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\skin\images\btn-wide-close-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\skin\images\btn-wide-close.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\skin\images\default.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\skin\images\transparent.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\skin\images\win-btm-left.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\skin\images\win-btm-mdl.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\skin\images\win-btm-right-resize.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\skin\images\win-btm-right.png
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\skin\images\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\skin\main.html
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\skin\scripts\defscript.js
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\skin\scripts\
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\skin\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\tb_icon.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\widget.jsw
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\widget.xml
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\widget_version.txt
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Coupons_v2\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\css\dialog.css
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\css\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\arrow-grey.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\arrows_grey-left.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\arrows_grey-right.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\back.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\btn-search-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\btn-search.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\delete.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\scrollb-disable.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\scrollb-down.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\scrollb.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\scrollt-disable.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\scrollt-down.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\scrollt.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-arrow-hover.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-arrow.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-off-l.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-off-r.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-on-l.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-on-r.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-over-l.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-over-r.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-red-left.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-red-mdl.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-red-right.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-white-left.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-white-mdl.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-white-right.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\throbber.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\vid-bg.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\youtube.png
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\index.html
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\js\function.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\js\jquery-1.4.2.min.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\js\JSON.js
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\js\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\css\dialog.css
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\css\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\bg-facebook.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\blank.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\btn-wide-close-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\btn-wide-close.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\default.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\transparent.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\win-btm-left.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\win-btm-mdl.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\win-btm-right-resize.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\win-btm-right.png
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\main.html
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\scripts\defscript.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\scripts\jquery-1.4.2.min.js
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\scripts\
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\tb_icon.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\widget.jsw
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\widget.xml
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\widget_version.txt
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.MyStartFacebook\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.PPCBully\tb_icon.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.PPCBully\widget.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.PPCBully\widget.xml
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.PPCBully\widget_version
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.PPCBully\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\css\twitter.css
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\css\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\images\btn-login-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\images\btn-login.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\images\btn-submit.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\images\loginbg.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\images\refresh-over.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\images\refresh.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\images\scrollbottom-disable.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\images\scrollbottom-down.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\images\scrollbottom-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\images\scrollbottom.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\images\scrolltop-disable.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\images\scrolltop-down.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\images\scrolltop-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\images\scrolltop.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\images\tab-off-l.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\images\tab-off-r.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\images\tab-on-l.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\images\tab-on-r.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\images\throbber.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\images\twitter-logo48.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\images\twitter_top.png
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\images\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\js\jquery.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\js\scripts.js
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\js\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\skin\css\dialog.css
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\skin\css\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\skin\images\bg.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\skin\images\btn-wide-close-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\skin\images\btn-wide-close.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\skin\images\default.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\skin\images\transparent.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\skin\images\win-btm-left.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\skin\images\win-btm-mdl.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\skin\images\win-btm-right-resize.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\skin\images\win-btm-right.png
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\skin\images\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\skin\main.html
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\skin\scripts\defscript.js
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\skin\scripts\
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\skin\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\tb_icon.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\widget.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\widget.xml
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\widget_version.txt
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.Twitter\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\css\autocomplete.css
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\css\dialog.css
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\css\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\images\arrow-grey.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\images\arrows_grey-left.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\images\arrows_grey-right.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\images\bg.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\images\btn-search-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\images\btn-search.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\images\powered-by-youtube.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-off-l.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-off-r.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-on-l.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-on-r.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-red-left.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-red-mdl.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-red-right.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-white-left.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-white-mdl.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-white-right.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\images\throbber.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\images\vid-bg.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\images\youtube.png
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\images\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\index.html
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\js\autocomplete.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\js\jquery-1.4.3.min.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\js\paginator.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\js\youtube.js
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\js\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\css\dialog.css
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\css\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\bg.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\btn-search.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\btn-wide-close-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\btn-wide-close.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\default.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\tab-off-l.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\tab-off-r.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\tab-on-l.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\tab-on-r.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\transparent.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\win-btm-left.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\win-btm-mdl.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\win-btm-right-resize.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\win-btm-right.png
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\main.html
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\scripts\defscript.js
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\scripts\
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\tb_icon.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\widget.jsw
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\widget.xml
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\widget_version.txt
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\net.vmn.www.YouTube_v2\
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\widgets\
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\content\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\babylon_logo.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\bandoo.css
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\bluelite.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\bluesky.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\btn-search-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\btn-search.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\btn-settings-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\btn-settings.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\btn-widgets-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\btn-widgets.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\btn_settings.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\ca.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\dictionary.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\divider.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\downloadcom.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\dtxlogo.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\ebay.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\email.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\email_on.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\facebook.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\games.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\graphred0.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\graphred0_5.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\graphred1.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\graphred1_5.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\graphred2.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\graphred2_5.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\graphred3.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\graphred3_5.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\graphred4.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\graphred4_5.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\graphred5.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\graphredna.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\grey.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\ico-shield.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\icon_radio_png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\icon_seperator_png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\images.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\imesh.css
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\add.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\aol.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\arrow-dn.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\arrow-right-disabled.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\arrow-right.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\arrow-up.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\bg-btn-divider.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\bg-btn-end.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\bg-btn-mdl.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\bg-btn-mdl_ff.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\bg-btn-start.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\bg-btnover-divider.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\bg-btnover-end.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\bg-btnover-mdl.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\bg-btnover-mdl_ff.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\bg-btnover-start.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\blank.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\btn-widgets-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\btn-widgets.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\btnback-down-vista.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\btnback-vista.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\btnleft-down-vista.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\btnleft-vista.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\btnright-down-vista.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\btnright-vista.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\btn_slider.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\button-splitter-down-vista.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\button-splitter-vista.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\checkmark.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\chevron.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\collapse.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\comcast.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\dtx.css
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\edit-back-hot.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\edit-back.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\expand.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\found.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\gmail.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\highlight.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\highlight_blue.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\highlight_cyan.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\highlight_lime.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\highlight_magenta.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\highlight_yellow.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\hotmail.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\ico-check.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\imap.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\lastsearch-thumb-back.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\loadingMid.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\lock.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\logo-separator.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\mailcom.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\menuitem-splitter.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\menuitemback-down-vista.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\menuitemback-vista.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\menuitemleft-down-vista.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\menuitemleft-vista.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\menuitemright-down-vista.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\menuitemright-vista.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\menu_bg-basic.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\menu_separator_bar.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\menu_separator_white.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\modify.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\move.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\movetarget.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\css\panels.css
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\css\popupAbout.css
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\css\popupGames.css
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\css\popupRSS.css
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\css\popupWidgets.css
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\css\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\css\dialog.css
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\css\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\images\bg.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\images\btn-search.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\images\btn-wide-close-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\images\btn-wide-close.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\images\default.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\images\tab-off-l.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\images\tab-off-r.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\images\tab-on-l.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\images\tab-on-r.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\images\transparent.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\images\ttlbar-left.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\images\ttlbar-mdl.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\images\ttlbar-right.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\images\win-btm-left.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\images\win-btm-mdl.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\images\win-btm-right-resize.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\images\win-btm-right.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\images\win-left.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\images\win-right.png
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\images\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\main.html
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\scripts\defscript.js
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\scripts\
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\default\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\footer.htm
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\gamecategory.xsl
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\gameData.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\gameList.xsl
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\games.xsl
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\gametype.xsl
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\arrow-dn.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\arrow-sml-drop.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\arrow-sml.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\arrow-up.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\arrowr-bluew5.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\bg-aboutbox.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\bg-btnover.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\bg-pnl520x390.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\btn-addtoolbar-left-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\btn-addtoolbar-left.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\btn-addtoolbar-right.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\btn-back.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\btn-close-grey.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\btn-close-greyover.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\btn-drag.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\btn-mdl-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\btn-mdl.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\btn-moredetails.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\btn-next-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\btn-next.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\btn-play-left-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\btn-play-left.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\btn-previous-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\btn-previous.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\btn-right-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\btn-search-pnlbtm-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\btn-search-pnlbtm.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\btn-try-left-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\btn-try-left.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\bullet-orange.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\gamethumb-on.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\gamethumb2-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\ico-calendar.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\ico-dollar.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\ico-download.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\ico-joystick24.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\ico-news24.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\ico-play.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\ico-tags.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\icon-Add.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\icon-download.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\icon-Info.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\icon-play.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\icon-shop.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\menul-bgon.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\menul-bgover.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\panel-botm-noscroll.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\scroll-bg-206.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\scroll-bg.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\scroll-topwin.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\scrollb-disable.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\scrollb-down.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\scrollb-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\scrollb.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\scrollt-disable.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\scrollt-down.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\scrollt-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\scrollt.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\searchbox-pnlbtm.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\star_x_grey.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\star_x_orange.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\TRUSTe_about.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\view-detailed-on.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\view-detailed-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\view-thumb-on.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\view-thumb-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\widgets-square-16px.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\widgets-square-24px.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\widgets.png
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\images\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\initHTML.html
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\popupGames.html
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\popupHTML.html
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\popupRSS.html
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\popupWidgets.html
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\scroll.png
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\panels\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\pop.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\css\manager.css
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\css\slider.css
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\css\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\bg-pnl.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\btn-close-grey.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\btn-close-greyover.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\collapsed_button.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\expanded_button.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\ico-playstation-down.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\ico-playstation-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\ico-playstation.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\ico-radio.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\music-note.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\radio-btn-pause-on.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\radio-btn-pause.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\radio-btn-play-on.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\radio-btn-play.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\radio-eq-bg.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\radio-eq-buffer.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\radio-eq-busy.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\radio-eq-off.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\radio-eq-on.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\radio-eq-warning.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\radio-options-design-on.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\radio-options-design.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\radio-options-on.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\radio-options.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\radio-volume-0.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\radio-volume-1.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\radio-volume-2.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\radio-volume-3.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\radio-volume-mute.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\scrollbar-handle.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\scrollbar-track.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\slider.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\slideron.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\track.png
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\images\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\managerpanel.html
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\volumeslider.html
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radio.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radiobeta-buffering.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radiobeta-connecting.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radiobeta-playing.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radiobeta-stopped.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\radiobeta.ico
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\reload.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\remove.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\rename.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\resize-box.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\rss.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\rsschannelback.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\RSSLogo.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\rsstabdivider.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\scroll-left.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\scroll-right.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\search-go.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\search.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\text-ellipsis.xml
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\throbber.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\toolbarsplitter.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\transparent_1px.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\border_02.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\border_03.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\border_04.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\border_06.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\border_07.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\border_08.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\border_09.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\border_10.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\border_11.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\border_12.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\border_13.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\border_14.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\border_15.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\border_16.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\border_18.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\border_19.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\border_20.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\border_21.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\btn-close-grey.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\btn-close-greyover.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\close-hot.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\close-normal.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\loadingMid.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\proxy.html
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\template.html
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\template.xml
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\templateFF.html
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\throbber.gif
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\uwa\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\icons\cond999.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\icons\icons.xml
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\icons\na-s.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\icons\na-t.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\icons\na.png
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\icons\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\add.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\arrowr-bluew5.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\bg-pnl.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\bg-pnl520x350.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\bg-pnl520x350blue-whitebg.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\bg-pnl520x350blue.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\box-check.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\box-uncheck.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btn-close-grey.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btn-close-greyover.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btn-delete.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btn-search-pnlbtm-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btn-search-pnlbtm.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btnarrow-next-off.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btnarrow-next.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btnarrow-previous-off.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btnarrow-previous.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\ico-check.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\ico-hotandhumid-s.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\ico-hotandhumid.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\options-weather.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\over-blue.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\over-orange.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\powered-by-weatherbug.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\powered-by-weatherbug2.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\radio-checked.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\radio-unchecked.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\searchbox-pnlbtm.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\weather-contour.png
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\images\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\popupWeather.css
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\popupWeather.html
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\panels\
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\weatherbutton\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\yahoo.png
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lib\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\lichen.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\logo-about.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\logo-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\logo-separator.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\logo.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\mail.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\maps.bmp
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\menuseparatorback.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\modify-save.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\modify.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\modifyhot.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\music.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\news.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\options\options-main.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\options\options-search.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\options\options-weather.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\options\options-weather.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\options\options-widgets.png
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\options\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\orange.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\pixsy.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\protect-id.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\radiobeta-buffering.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\radiobeta-connecting.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\radiobeta-playing.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\radiobeta-stopped.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\radiobeta.ico
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\relatedlinks.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\rss-collapse.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\rss-delete.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\rss-expand.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\rss-feed.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\rss-folder-remove.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\rss-folder-rename.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\rss-folder.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\rss-found.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\rss-reload.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\rss-subscribe.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\rss.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\rssback.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\rsstopback.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\search-over.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\search.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\searchbar\searchbar-background-left.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\searchbar\searchbar-background-middle.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\searchbar\searchbar-background-right.png
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\searchbar\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\search_button_over_png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\search_button_png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\settings.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\shopping.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\siteinfo.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\skin-bluelite.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\skin-bluesky.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\skin-grey.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\skin-lichen.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\skin-orange.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\skin-yellow.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\skin.xml
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\technorati.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\throbber.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\toolbarsplitter.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\translate.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\video.bmp
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\vmn.css
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\vmn.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\weather.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\web.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\widgets-square-16px.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\wikipedia.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\yahoosearch.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\yellow.gif
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\youtube.png
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\zoom.png
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\skin\
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\chrome\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\components\windowmediator.js
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\components\
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\dtUser.exe
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\manifest.xml
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\searchquband.dll
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\searchqudtx.dll
Delete file: C:\Program Files\Windows Searchqu Toolbar\ToolBar\uninstall.exe
Remove folder: C:\Program Files\Windows Searchqu Toolbar\ToolBar\
ExecTimeout regsvr32.exe /s /u C:\PROGRA~1\WI9130~1\Datamngr\IEBHO.dll Exit Code: 0
Delete file: C:\Program Files\Windows Searchqu Toolbar\Datamngr\datamngrUI.exe
Delete file: C:\Program Files\Windows Searchqu Toolbar\Datamngr\IEBHO.dll
Delete file: C:\Documents and Settings\w70fa-zconma00p\Application Data\Mozilla\Extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}
Delete file: C:\Program Files\Mozilla Firefox\extensions\\{1FD91A9C-410C-4090-BBCC-55D3450EF433}
*0***0=Software\DataMngr_Toolbar 1=SOFTWARE\Microsoft\Internet Explorer\Toolbar
*1***EnumRegKey HKCU Software\DataMngr_Toolbar 0
uninstall: Delete C:\Program Files\Windows Searchqu Toolbar\Datamngr\ files
Delete file: C:\Program Files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\chrome.manifest
Delete file: C:\Program Files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlp.xpt
Delete file: C:\Program Files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\content\DataMngr.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\content\FFBHO.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\content\overlay.js
Delete file: C:\Program Files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\content\overlay.xul
Delete file: C:\Program Files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\content\Settings.xml
Remove folder: C:\Program Files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\content\
Delete file: C:\Program Files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\install.rdf
uninstall: rmove C:\Program Files\Windows Searchqu Toolbar\Datamngr C:\Program Files\Windows Searchqu Toolbar\ToolBar MAIN_FOLDER=C:\Program Files\Windows Searchqu Toolbar
Completed