Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

OTL did a quick scan, now what do I do?

Started by ryansoryson , Mar 30 2011 12:01 PM

  • Please log in to reply

#1
ryansoryson
Posted 30 March 2011 - 12:01 PM

ryansoryson

    New Member

  • Member
  • Pip
  • 1 posts
OTL logfile created on: 3/30/2011 10:39:38 AM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\AA\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8080.16413)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 50.00% Memory free
6.00 Gb Paging File | 5.00 Gb Available in Paging File | 77.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 283.40 Gb Total Space | 202.21 Gb Free Space | 71.35% Space Free | Partition Type: NTFS
Drive E: | 14.65 Gb Total Space | 4.34 Gb Free Space | 29.61% Space Free | Partition Type: NTFS

Computer Name: ASH-PC | User Name: AA | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/03/30 10:14:15 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\AA\Downloads\OTL.exe
PRC - [2011/03/25 02:30:40 | 000,273,544 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe
PRC - [2011/03/23 10:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2011/03/20 01:27:42 | 000,065,536 | ---- | M] () -- C:\WINDOWS\System32\afasrv32.exe
PRC - [2011/01/16 12:47:45 | 000,134,808 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.2.183.39\GoogleCrashHandler.exe
PRC - [2010/08/24 14:57:38 | 000,188,136 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
PRC - [2010/08/24 14:57:38 | 000,141,792 | ---- | M] (McAfee, Inc.) -- C:\WINDOWS\System32\mfevtps.exe
PRC - [2010/04/05 16:46:08 | 000,288,040 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\Apoint.exe
PRC - [2010/03/23 13:22:26 | 000,049,152 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\ApntEx.exe
PRC - [2010/03/15 15:02:36 | 000,366,840 | ---- | M] (PC Tools) -- C:\Program Files\PC Tools Security\pctsAuxs.exe
PRC - [2010/02/17 15:34:40 | 000,054,568 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\ApMsgFwd.exe
PRC - [2009/04/10 23:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2009/04/01 00:00:24 | 000,483,428 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\sttray.exe
PRC - [2009/04/01 00:00:18 | 000,254,042 | ---- | M] (IDT, Inc.) -- C:\WINDOWS\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\stacsv.exe
PRC - [2009/04/01 00:00:04 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) -- C:\WINDOWS\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\AEstSrv.exe
PRC - [2009/03/31 23:18:54 | 000,049,250 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\hidfind.exe
PRC - [2009/02/23 07:49:52 | 000,230,640 | ---- | M] (SoftThinks) -- C:\WINDOWS\SMINST\Components\Upgrade\UpgradePlg.exe
PRC - [2009/02/23 07:49:04 | 000,259,312 | ---- | M] (SOftThinks) -- C:\WINDOWS\SMINST\Components\PSTImageExt\STImageExtPlg.exe
PRC - [2009/02/23 07:48:36 | 000,259,312 | ---- | M] (SoftThinks) -- C:\WINDOWS\SMINST\Components\FileBackup\BackupPlg.exe
PRC - [2009/02/23 07:48:06 | 000,632,048 | ---- | M] (SoftThinks) -- C:\WINDOWS\SMINST\SftService.exe
PRC - [2009/02/23 07:47:40 | 002,016,496 | ---- | M] (SoftThinks - Dell) -- C:\WINDOWS\SMINST\DataSafe.exe
PRC - [2008/12/18 11:05:28 | 000,155,648 | ---- | M] (Stardock Corporation) -- C:\Program Files\Dell\DellDock\DockLogin.exe
PRC - [2008/05/07 15:41:14 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2008/05/07 15:41:12 | 000,178,712 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2008/01/20 19:25:07 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetsrv\inetinfo.exe
PRC - [2008/01/20 19:23:32 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe


========== Modules (SafeList) ==========

MOD - [2011/03/30 10:14:15 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\AA\Downloads\OTL.exe
MOD - [2010/08/31 08:43:52 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - [2011/03/20 01:27:42 | 000,065,536 | ---- | M] () [Auto | Running] -- C:\WINDOWS\System32\afasrv32.exe -- (AfaService)
SRV - [2010/11/19 07:57:14 | 001,150,936 | ---- | M] (PC Tools) [On_Demand | Stopped] -- C:\Program Files\PC Tools Security\pctsSvc.exe -- (sdCoreService)
SRV - [2010/08/24 14:57:38 | 000,188,136 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe -- (mfefire)
SRV - [2010/08/24 14:57:38 | 000,171,168 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe -- (McShield)
SRV - [2010/08/24 14:57:38 | 000,141,792 | ---- | M] (McAfee, Inc.) [Unknown | Running] -- C:\WINDOWS\System32\mfevtps.exe -- (mfevtp)
SRV - [2010/04/21 10:46:17 | 000,373,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\WINDOWS\System32\inetsrv\iisw3adm.dll -- (WAS)
SRV - [2010/04/21 10:46:17 | 000,373,760 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\System32\inetsrv\iisw3adm.dll -- (W3SVC)
SRV - [2010/03/15 15:02:36 | 000,366,840 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files\PC Tools Security\pctsAuxs.exe -- (sdAuxService)
SRV - [2009/06/18 07:02:31 | 000,016,680 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) [On_Demand | Stopped] -- C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe -- (GoToAssist)
SRV - [2009/04/10 23:28:17 | 000,052,224 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\System32\inetsrv\apphostsvc.dll -- (AppHostSvc)
SRV - [2009/04/01 00:00:18 | 000,254,042 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\WINDOWS\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\stacsv.exe -- (STacSV)
SRV - [2009/04/01 00:00:04 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\WINDOWS\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\AEstSrv.exe -- (AESTFilters)
SRV - [2009/02/23 07:48:06 | 000,632,048 | ---- | M] (SoftThinks) [Auto | Running] -- C:\WINDOWS\SMINST\sftservice.EXE -- (SftService)
SRV - [2008/12/18 11:05:28 | 000,155,648 | ---- | M] (Stardock Corporation) [Auto | Running] -- C:\Program Files\Dell\DellDock\DockLogin.exe -- (DockLoginService)
SRV - [2008/05/07 15:41:14 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel®
SRV - [2008/01/20 19:25:08 | 000,011,264 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\System32\inetsrv\WMSvc.exe -- (WMSvc)
SRV - [2008/01/20 19:25:07 | 000,013,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\System32\inetsrv\inetinfo.exe -- (IISADMIN)
SRV - [2008/01/20 19:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/05/31 10:21:24 | 000,379,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2007/05/31 10:21:18 | 000,183,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\WindowsMobile\rapimgr.dll -- (RapiMgr)


========== Driver Services (SafeList) ==========

DRV - [2010/11/25 11:43:00 | 000,239,168 | ---- | M] (PC Tools) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\PCTCore.sys -- (PCTCore)
DRV - [2010/11/17 17:36:02 | 000,021,744 | ---- | M] (PC-Doctor, Inc.) [Kernel | On_Demand | Stopped] -- c:\Program Files\Dell Support Center\pcdsrvc.pkms -- (PCDSRVC{E9D79540-57D5953E-06020101}_0)
DRV - [2010/08/24 14:57:38 | 000,386,712 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\mfehidk.sys -- (mfehidk)
DRV - [2010/08/24 14:57:38 | 000,312,904 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\mfefirek.sys -- (mfefirek)
DRV - [2010/08/24 14:57:38 | 000,164,808 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\mfewfpk.sys -- (mfewfpk)
DRV - [2010/08/24 14:57:38 | 000,152,992 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\mfeavfk.sys -- (mfeavfk)
DRV - [2010/08/24 14:57:38 | 000,095,600 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\mfeapfk.sys -- (mfeapfk)
DRV - [2010/08/24 14:57:38 | 000,084,264 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\mferkdet.sys -- (mferkdet)
DRV - [2010/08/24 14:57:38 | 000,064,304 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\mfenlfk.sys -- (mfenlfk)
DRV - [2010/08/24 14:57:38 | 000,055,840 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\cfwids.sys -- (cfwids)
DRV - [2010/08/24 14:57:38 | 000,052,104 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\mfebopk.sys -- (mfebopk)
DRV - [2010/07/16 15:59:54 | 000,656,320 | ---- | M] (PC Tools) [File_System | Boot | Running] -- C:\Windows\system32\drivers\pctEFA.sys -- (pctEFA)
DRV - [2010/07/16 15:59:54 | 000,338,880 | ---- | M] (PC Tools) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\pctDS.sys -- (pctDS)
DRV - [2010/06/07 17:44:30 | 000,146,272 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\CtClsFlt.sys -- (CtClsFlt)
DRV - [2010/04/15 13:36:40 | 000,252,536 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2009/10/14 08:07:40 | 000,348,160 | ---- | M] (NETGEAR Inc. ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\wg111v3.sys -- (RTL8187B)
DRV - [2009/05/28 11:48:20 | 000,134,144 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\CtAudDrv.sys -- (CtAudDrv)
DRV - [2009/04/10 21:42:52 | 000,031,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\winusb.sys -- (winusb)
DRV - [2009/04/01 00:00:26 | 000,398,336 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\stwrt.sys -- (STHDA)
DRV - [2009/03/19 18:02:00 | 000,271,552 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\OA009Vid.sys -- (OA009Vid)
DRV - [2009/03/06 08:30:08 | 000,133,632 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\OA009Ufd.sys -- (OA009Ufd)
DRV - [2008/12/22 03:32:18 | 000,018,424 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\bcm42rly.sys -- (BCM42RLY)
DRV - [2008/05/27 10:07:58 | 000,050,560 | ---- | M] (Generic USB smartcard reader) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\MHIKEY10.sys -- (MHIKEY10)
DRV - [2008/01/20 19:23:25 | 000,220,672 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\e1e6032.sys -- (e1express) Intel®
DRV - [2007/04/23 10:50:50 | 000,025,896 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\RtlProt.sys -- (RtlProt)
DRV - [2007/01/09 10:22:28 | 000,006,144 | ---- | M] (Chic) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\moufiltr.sys -- (moufiltr)
DRV - [2006/11/02 00:36:43 | 002,028,032 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\atikmdag.sys -- (R300)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/USCON/1
IE - HKLM\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.)


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2343574844-88116428-2406688751-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/USCON/1
IE - HKU\S-1-5-21-2343574844-88116428-2406688751-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-2343574844-88116428-2406688751-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/...UGO&form=ZGAPHP
IE - HKU\S-1-5-21-2343574844-88116428-2406688751-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.google.com/
IE - HKU\S-1-5-21-2343574844-88116428-2406688751-1001\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-2343574844-88116428-2406688751-1001\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-2343574844-88116428-2406688751-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKU\S-1-5-21-2343574844-88116428-2406688751-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>

FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011/03/25 02:32:08 | 000,000,000 | ---D | M]

[2010/09/24 10:45:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\AA\AppData\Roaming\mozilla\Extensions
[2010/09/24 10:45:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\AA\AppData\Roaming\mozilla\Extensions\[email protected]

O1 HOSTS File: ([2006/09/18 14:41:30 | 000,000,761 | ---- | M]) - C:\WINDOWS\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20100924005010.dll (McAfee, Inc.)
O2 - BHO: (no name) - {9D425283-D487-4337-BAB6-AB8354A81457} - No CLSID value found.
O2 - BHO: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (no name) - {9D425283-D487-4337-BAB6-AB8354A81457} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O4 - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM..\Run: [TkBellExe] c:\program files\real\realplayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-2343574844-88116428-2406688751-1001..\Run: [mSpotAT&TRemix] C:\Program Files\mSpot\Music Sync\AT&T\msptcmd.exe (mSpot)
O4 - Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
O4 - Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O7 - HKU\S-1-5-21-2343574844-88116428-2406688751-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O7 - HKU\S-1-5-21-2343574844-88116428-2406688751-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = [binary data]
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O9 - Extra Button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\WINDOWS\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\WINDOWS\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} http://cdn.scan.onec...s/wlscctrl2.cab (Windows Live OneCare safety scanner control)
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creat...13/CTPIDPDE.cab (Creative Software AutoUpdate Support Package 2)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creat...15114/CTPID.cab (Creative Software AutoUpdate Support Package 1)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 209.18.47.61 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~4\GOEC62~1.DLL) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKU\S-1-5-21-2343574844-88116428-2406688751-1001 Winlogon: Shell - (C:\Users\AA\AppData\Roaming\Microsoft\ptupkj.exe) - File not found
O20 - Winlogon\Notify\GoToAssist: DllName - C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll - C:\Program Files\Citrix\GoToAssist\514\g2awinlogon.dll (Citrix Online, a division of Citrix Systems, Inc.)
O24 - Desktop WallPaper: C:\Users\AA\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\AA\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 14:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2004/04/30 14:01:00 | 000,000,053 | -HS- | M] () - E:\AUTORUN.INF -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/03/30 08:51:04 | 000,000,000 | ---D | C] -- C:\Users\AA\Desktop\7
[2011/03/30 07:22:07 | 000,000,000 | ---D | C] -- C:\ProgramData\SupportSoft
[2011/03/30 07:21:51 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Essentials
[2011/03/27 16:28:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Last.fm
[2011/03/27 16:25:13 | 000,000,000 | ---D | C] -- C:\Users\AA\AppData\Local\Last.fm
[2011/03/27 16:25:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Last.fm
[2011/03/27 16:25:07 | 000,000,000 | ---D | C] -- C:\Program Files\Last.fm
[2011/03/27 00:30:22 | 000,000,000 | ---D | C] -- C:\Users\AA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\mSpot
[2011/03/27 00:30:22 | 000,000,000 | ---D | C] -- C:\Users\AA\AppData\Local\mSpot
[2011/03/27 00:30:21 | 000,000,000 | ---D | C] -- C:\Program Files\mSpot
[2011/03/25 02:32:19 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared
[2011/03/25 00:33:53 | 000,000,000 | ---D | C] -- C:\Windows\System32\custom matrices
[2011/03/25 00:33:52 | 000,000,000 | ---D | C] -- C:\Windows\System32\QuickTime
[2011/03/21 07:26:22 | 000,000,000 | ---D | C] -- C:\Users\AA\AppData\Roaming\BitZipper
[2011/03/21 07:26:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitZipper
[2011/03/21 07:26:20 | 000,000,000 | ---D | C] -- C:\Program Files\BitZipper
[2011/03/20 02:14:50 | 000,000,000 | ---D | C] -- C:\Users\AA\AppData\Local\ElevatedDiagnostics
[2011/03/20 02:14:20 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft ATS
[2011/03/20 01:01:08 | 000,000,000 | ---D | C] -- C:\Users\AA\AppData\Local\{3B5E7F9D-A5D8-4418-B002-2DF0904BA842}
[2011/03/20 01:01:07 | 000,000,000 | ---D | C] -- C:\Users\AA\AppData\Local\{FD96B5FA-9FD5-4126-AE4B-6AB55C69F5A2}
[2011/03/20 00:43:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bonjour Print Services
[2011/03/20 00:43:46 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour Print Services
[2011/03/18 22:52:59 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011/03/18 22:52:56 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011/03/17 00:40:22 | 000,000,000 | ---D | C] -- C:\Users\AA\Documents\Vuze Downloads
[2011/03/17 00:24:06 | 000,000,000 | ---D | C] -- C:\Users\AA\AppData\Roaming\Azureus
[2011/03/17 00:23:18 | 000,000,000 | ---D | C] -- C:\Program Files\Vuze
[2011/03/17 00:23:04 | 000,000,000 | ---D | C] -- C:\Program Files\Vuze_Remote
[2011/03/17 00:06:40 | 000,000,000 | ---D | C] -- C:\Program Files\USBESTDI
[2011/03/16 23:49:17 | 000,050,560 | ---- | C] (Generic USB smartcard reader) -- C:\Windows\System32\drivers\MHIKEY10.sys
[2011/03/16 23:49:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USIM Editor
[2011/03/16 23:49:10 | 000,000,000 | ---D | C] -- C:\Program Files\USIM Editor
[2011/03/16 18:48:15 | 000,000,000 | ---D | C] -- C:\46bd515dfd1bf3ca3883328ad016ba
[2011/03/04 12:23:41 | 000,000,000 | ---D | C] -- C:\ProgramData\WindowsSearch

========== Files - Modified Within 30 Days ==========

[2011/03/30 09:44:40 | 000,674,918 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/03/30 09:44:40 | 000,129,152 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/03/30 09:34:41 | 000,003,744 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/03/30 09:34:41 | 000,003,744 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/03/30 08:52:00 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2343574844-88116428-2406688751-1001UA.job
[2011/03/30 08:45:00 | 000,000,878 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/03/30 08:17:22 | 000,000,874 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/03/30 07:34:22 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/03/30 07:34:15 | 363,772,747 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2011/03/30 04:56:42 | 000,000,422 | ---- | M] () -- C:\Windows\tasks\SystemToolsDailyTest.job
[2011/03/30 04:48:21 | 000,000,564 | ---- | M] () -- C:\Windows\tasks\PCDoctorBackgroundMonitorTask.job
[2011/03/30 04:23:04 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2011/03/27 16:25:12 | 000,000,735 | ---- | M] () -- C:\Users\Public\Desktop\Last.fm.lnk
[2011/03/27 10:17:01 | 000,000,820 | ---- | M] () -- C:\Users\AA\Desktop\BitZipper.lnk
[2011/03/27 05:43:53 | 2408,565,859 | ---- | M] () -- C:\Users\AA\Desktop\music.zip
[2011/03/27 00:30:23 | 000,001,010 | ---- | M] () -- C:\Users\AA\Desktop\mSpot Music Sync.lnk
[2011/03/25 23:30:32 | 000,000,753 | ---- | M] () -- C:\Users\AA\Desktop\Windows Mobile Device Center.lnk
[2011/03/25 02:33:20 | 000,000,280 | ---- | M] () -- C:\Windows\tasks\RealUpgradeScheduledTaskS-1-5-21-2343574844-88116428-2406688751-1001.job
[2011/03/25 02:32:41 | 000,000,847 | ---- | M] () -- C:\Users\Public\Desktop\RealPlayer.lnk
[2011/03/25 02:30:44 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\Windows\System32\pncrt.dll
[2011/03/24 20:13:54 | 000,000,844 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2343574844-88116428-2406688751-1001Core.job
[2011/03/21 09:03:47 | 000,264,872 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/03/21 07:26:22 | 000,000,842 | ---- | M] () -- C:\Users\AA\Application Data\Microsoft\Internet Explorer\Quick Launch\BitZipper.lnk
[2011/03/20 02:19:21 | 000,006,756 | ---- | M] () -- C:\Users\AA\AppData\Local\d3d9caps.dat
[2011/03/20 01:27:42 | 000,065,536 | ---- | M] () -- C:\Windows\System32\afasrv32.exe
[2011/03/18 22:54:44 | 000,001,666 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011/03/18 22:41:03 | 002,042,840 | ---- | M] () -- C:\Windows\System32\drivers\Cat.DB
[2011/03/17 01:44:48 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_Apfiltr_01009.Wdf
[2011/03/17 00:23:55 | 000,001,635 | ---- | M] () -- C:\Users\AA\Application Data\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk
[2011/03/16 18:03:58 | 108,891,276 | ---- | M] () -- C:\Windows\System32\drivers\AVG\incavi.avm.old
[2011/03/16 14:17:44 | 016,999,816 | ---- | M] () -- C:\Users\AA\Documents\Dell_System-Software_A05_R259999.exe
[2011/02/28 14:29:02 | 000,001,894 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk

========== Files Created - No Company Name ==========

[2011/03/27 16:25:12 | 000,000,735 | ---- | C] () -- C:\Users\Public\Desktop\Last.fm.lnk
[2011/03/27 01:17:59 | 2408,565,859 | ---- | C] () -- C:\Users\AA\Desktop\music.zip
[2011/03/27 00:30:23 | 000,001,010 | ---- | C] () -- C:\Users\AA\Desktop\mSpot Music Sync.lnk
[2011/03/25 02:32:41 | 000,000,847 | ---- | C] () -- C:\Users\Public\Desktop\RealPlayer.lnk
[2011/03/21 07:26:22 | 000,000,842 | ---- | C] () -- C:\Users\AA\Application Data\Microsoft\Internet Explorer\Quick Launch\BitZipper.lnk
[2011/03/21 07:26:22 | 000,000,820 | ---- | C] () -- C:\Users\AA\Desktop\BitZipper.lnk
[2011/03/20 01:27:42 | 000,065,536 | ---- | C] () -- C:\Windows\System32\afasrv32.exe
[2011/03/18 22:54:44 | 000,001,666 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011/03/17 01:44:48 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_Apfiltr_01009.Wdf
[2011/03/17 00:25:51 | 363,772,747 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2011/03/17 00:23:55 | 000,001,635 | ---- | C] () -- C:\Users\AA\Application Data\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk
[2011/03/17 00:23:55 | 000,001,635 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vuze.lnk
[2011/03/16 14:17:10 | 016,999,816 | ---- | C] () -- C:\Users\AA\Documents\Dell_System-Software_A05_R259999.exe
[2011/02/28 14:29:02 | 000,001,894 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2011/02/22 12:39:04 | 000,240,640 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2011/02/20 21:56:31 | 000,000,075 | RHS- | C] () -- C:\Windows\CT4CET.bin
[2011/02/17 16:35:42 | 000,723,294 | ---- | C] () -- C:\Windows\unins000.exe
[2011/02/17 16:35:42 | 000,033,905 | ---- | C] () -- C:\Windows\unins000.dat
[2011/02/09 12:30:31 | 000,000,112 | ---- | C] () -- C:\ProgramData\1jtn63b.dat
[2011/02/07 11:00:08 | 001,529,856 | ---- | C] () -- C:\Windows\System32\ff_samplerate.dll
[2011/02/07 11:00:08 | 000,925,667 | ---- | C] () -- C:\Windows\System32\ffmpegmt.dll
[2011/02/07 11:00:08 | 000,721,798 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2011/02/07 11:00:08 | 000,336,384 | ---- | C] () -- C:\Windows\System32\ff_libfaad2.dll
[2011/02/07 11:00:08 | 000,324,096 | ---- | C] () -- C:\Windows\System32\TomsMoComp_ff.dll
[2011/02/07 11:00:08 | 000,216,576 | ---- | C] () -- C:\Windows\System32\ff_libdts.dll
[2011/02/07 11:00:08 | 000,151,552 | ---- | C] () -- C:\Windows\System32\ff_libmad.dll
[2011/02/07 11:00:08 | 000,145,408 | ---- | C] () -- C:\Windows\System32\libmpeg2_ff.dll
[2011/02/07 11:00:08 | 000,140,800 | ---- | C] () -- C:\Windows\System32\ff_unrar.dll
[2011/02/07 11:00:08 | 000,121,856 | ---- | C] () -- C:\Windows\System32\ff_liba52.dll
[2011/02/07 11:00:08 | 000,100,864 | ---- | C] () -- C:\Windows\System32\ff_wmv9.dll
[2011/02/07 11:00:08 | 000,065,024 | ---- | C] () -- C:\Windows\System32\FLT_ffdshow.dll
[2011/02/07 10:45:52 | 000,080,896 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2011/02/07 10:39:02 | 004,166,551 | ---- | C] () -- C:\Windows\System32\ffmpeg.dll
[2010/12/25 21:46:51 | 000,000,004 | ---- | C] () -- C:\Users\AA\AppData\Roaming\6FC59E
[2010/12/25 21:46:50 | 000,870,128 | ---- | C] () -- C:\Users\AA\AppData\Roaming\mcs.rma
[2010/12/22 03:58:02 | 000,000,146 | ---- | C] () -- C:\Windows\WININIT.INI
[2010/12/11 14:44:18 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat
[2010/11/27 04:33:52 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2010/11/27 04:33:51 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2010/11/24 22:08:59 | 000,000,006 | ---- | C] () -- C:\Users\AA\AppData\Roaming\start
[2010/11/24 22:04:28 | 000,000,006 | ---- | C] () -- C:\Users\AA\AppData\Roaming\completescan
[2010/11/24 21:56:24 | 000,000,010 | ---- | C] () -- C:\Users\AA\AppData\Roaming\install
[2010/10/31 22:32:55 | 000,006,756 | ---- | C] () -- C:\Users\AA\AppData\Local\d3d9caps.dat
[2010/10/19 07:34:25 | 000,023,909 | ---- | C] () -- C:\Users\AA\AppData\Roaming\UserTile.png
[2010/09/23 20:01:48 | 000,039,424 | ---- | C] () -- C:\Users\AA\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/09/23 19:49:32 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2010/08/18 12:56:38 | 000,000,151 | ---- | C] () -- C:\Windows\System32\Registration.ini
[2010/08/14 01:45:18 | 000,249,856 | ---- | C] () -- C:\Windows\System32\dxr.dll
[2010/08/14 01:45:10 | 000,358,400 | ---- | C] () -- C:\Windows\System32\gdsmux.exe
[2010/08/14 01:43:52 | 000,150,528 | ---- | C] () -- C:\Windows\System32\mkx.dll
[2010/08/14 01:43:42 | 000,109,568 | ---- | C] () -- C:\Windows\System32\avi.dll
[2010/08/14 01:43:34 | 000,141,824 | ---- | C] () -- C:\Windows\System32\mp4.dll
[2010/08/14 01:43:22 | 000,123,392 | ---- | C] () -- C:\Windows\System32\ogm.dll
[2010/08/14 01:42:54 | 000,113,152 | ---- | C] () -- C:\Windows\System32\dsmux.exe
[2010/08/14 01:42:48 | 000,154,112 | ---- | C] () -- C:\Windows\System32\ts.dll
[2010/08/14 01:42:10 | 000,097,792 | ---- | C] () -- C:\Windows\System32\avs.dll
[2010/08/14 01:42:06 | 000,137,728 | ---- | C] () -- C:\Windows\System32\mkv2vfr.exe
[2010/08/14 01:41:54 | 000,093,184 | ---- | C] () -- C:\Windows\System32\avss.dll
[2010/08/14 01:40:02 | 000,080,384 | ---- | C] () -- C:\Windows\System32\mkzlib.dll
[2010/08/14 01:39:58 | 000,024,576 | ---- | C] () -- C:\Windows\System32\mkunicode.dll
[2009/08/11 14:21:26 | 000,087,552 | ---- | C] () -- C:\Windows\System32\ac3config.exe
[2009/08/11 14:21:20 | 001,021,440 | ---- | C] () -- C:\Windows\System32\ac3filter_intl.dll
[2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2009/08/03 15:07:42 | 000,230,768 | ---- | C] () -- C:\Windows\System32\OGAEXEC.exe
[2009/06/18 09:28:48 | 000,982,196 | ---- | C] () -- C:\Windows\System32\igkrng500.bin
[2009/06/18 09:28:48 | 000,417,344 | ---- | C] () -- C:\Windows\System32\igcompkrng500.bin
[2009/06/18 09:28:48 | 000,139,824 | ---- | C] () -- C:\Windows\System32\igfcg500.bin
[2009/06/18 09:28:48 | 000,097,448 | ---- | C] () -- C:\Windows\System32\igfcg500m.bin
[2009/06/18 09:24:18 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2009/06/18 07:06:23 | 000,066,048 | ---- | C] () -- C:\Windows\System32\STWiz.dll
[2009/06/18 07:06:22 | 000,471,040 | ---- | C] () -- C:\Windows\System32\PSTImage.dll
[2009/06/18 07:06:22 | 000,385,024 | ---- | C] () -- C:\Windows\System32\STODD.dll
[2009/06/18 07:06:22 | 000,380,928 | ---- | C] () -- C:\Windows\System32\STODDRD.dll
[2009/06/18 07:06:22 | 000,266,240 | ---- | C] () -- C:\Windows\System32\STODDIM.dll
[2009/06/18 07:06:22 | 000,253,952 | ---- | C] () -- C:\Windows\System32\STODDSC.dll
[2009/06/18 07:06:22 | 000,229,376 | ---- | C] () -- C:\Windows\System32\STFiles.dll
[2009/06/18 07:06:22 | 000,122,880 | ---- | C] () -- C:\Windows\System32\STLog.dll
[2009/06/18 07:06:22 | 000,118,784 | ---- | C] () -- C:\Windows\System32\STCrypto.dll
[2009/06/18 07:06:22 | 000,115,712 | ---- | C] () -- C:\Windows\System32\STNLS.dll
[2009/06/18 07:06:22 | 000,110,592 | ---- | C] () -- C:\Windows\System32\PSTVdsDisk.dll
[2009/06/18 07:06:22 | 000,106,496 | ---- | C] () -- C:\Windows\System32\STPE.dll
[2009/06/18 07:06:22 | 000,098,304 | ---- | C] () -- C:\Windows\System32\STFileMonitor.dll
[2009/06/18 07:06:22 | 000,094,208 | ---- | C] () -- C:\Windows\System32\STMsXml.dll
[2009/06/18 07:06:22 | 000,090,112 | ---- | C] () -- C:\Windows\System32\wnaspi32.dll
[2009/06/18 07:06:22 | 000,077,824 | ---- | C] () -- C:\Windows\System32\STLangXml.dll
[2009/06/18 07:06:22 | 000,073,728 | ---- | C] () -- C:\Windows\System32\zlib1.dll
[2009/06/18 07:06:22 | 000,069,632 | ---- | C] () -- C:\Windows\System32\STRegistry.dll
[2009/06/18 07:06:22 | 000,065,536 | ---- | C] () -- C:\Windows\System32\STProcess.dll
[2009/06/18 07:06:21 | 000,126,976 | ---- | C] () -- C:\Windows\System32\STWmiM.dll
[2009/06/18 07:06:20 | 000,102,400 | ---- | C] () -- C:\Windows\System32\STShellVC6.dll
[2009/06/18 07:06:19 | 000,053,248 | ---- | C] () -- C:\Windows\System32\STCoreXml.dll
[2009/06/18 07:06:18 | 001,118,208 | ---- | C] () -- C:\Windows\System32\libxml2.dll
[2009/06/18 06:49:28 | 000,006,656 | ---- | C] () -- C:\Windows\System32\bcmwlrc.dll
[2009/06/18 06:49:27 | 000,054,784 | ---- | C] () -- C:\Windows\System32\bcmwlrmt.dll
[2009/06/18 06:49:27 | 000,026,112 | ---- | C] () -- C:\Windows\System32\WLTRYSVC.EXE
[2009/06/18 06:42:09 | 000,140,288 | ---- | C] () -- C:\Windows\System32\igfxtvcx.dll
[2009/01/10 15:15:44 | 000,159,744 | ---- | C] () -- C:\Windows\System32\mmfinfo.dll
[2008/11/06 08:37:32 | 003,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2008/02/03 16:11:25 | 000,000,000 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2006/11/02 05:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 05:47:37 | 000,264,872 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 05:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 03:33:01 | 000,674,918 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 03:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 03:33:01 | 000,129,152 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 03:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 03:25:44 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2006/11/02 03:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 01:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 01:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 00:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 00:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006/03/03 21:52:00 | 000,088,576 | ---- | C] () -- C:\Windows\System32\OptimFROG.dll

========== LOP Check ==========

[2011/02/16 19:55:56 | 000,000,000 | ---D | M] -- C:\Users\AA\AppData\Roaming\AVG10
[2011/03/17 01:28:36 | 000,000,000 | ---D | M] -- C:\Users\AA\AppData\Roaming\Azureus
[2011/03/27 01:17:21 | 000,000,000 | ---D | M] -- C:\Users\AA\AppData\Roaming\BitZipper
[2011/01/07 00:27:03 | 000,000,000 | ---D | M] -- C:\Users\AA\AppData\Roaming\Camfrog
[2010/11/09 03:50:00 | 000,000,000 | ---D | M] -- C:\Users\AA\AppData\Roaming\com.rdio.desktop.3DBCFCD30911C934939BC57CB763235E8F0B2837.1
[2010/12/31 22:44:05 | 000,000,000 | ---D | M] -- C:\Users\AA\AppData\Roaming\DriverCure
[2011/02/06 10:16:13 | 000,000,000 | ---D | M] -- C:\Users\AA\AppData\Roaming\FrostWire
[2010/11/13 11:22:01 | 000,000,000 | ---D | M] -- C:\Users\AA\AppData\Roaming\GetRightToGo
[2011/01/18 20:51:23 | 000,000,000 | ---D | M] -- C:\Users\AA\AppData\Roaming\Lomux
[2011/01/16 04:52:12 | 000,000,000 | ---D | M] -- C:\Users\AA\AppData\Roaming\ManyCam
[2010/12/31 08:42:50 | 000,000,000 | ---D | M] -- C:\Users\AA\AppData\Roaming\MusicNet
[2011/01/18 21:10:07 | 000,000,000 | ---D | M] -- C:\Users\AA\AppData\Roaming\Ocyf
[2010/12/11 05:01:07 | 000,000,000 | ---D | M] -- C:\Users\AA\AppData\Roaming\PCDr
[2010/10/19 07:34:25 | 000,000,000 | ---D | M] -- C:\Users\AA\AppData\Roaming\PeerNetworking
[2010/09/24 11:08:24 | 000,000,000 | ---D | M] -- C:\Users\AA\AppData\Roaming\Vivox
[2011/02/26 01:55:34 | 000,000,000 | ---D | M] -- C:\Users\AA\AppData\Roaming\Windows Live Writer
[2010/09/23 19:12:54 | 000,000,000 | ---D | M] -- C:\Users\jo\AppData\Roaming\.purple
[2010/10/22 17:08:41 | 000,000,000 | ---D | M] -- C:\Users\jo\AppData\Roaming\F03A962C971CD9E7BA4703E7EB7CC0A5
[2010/09/23 19:13:53 | 000,000,000 | ---D | M] -- C:\Users\jo\AppData\Roaming\LimeWire
[2010/10/22 17:08:47 | 000,000,000 | ---D | M] -- C:\Users\jo\AppData\Roaming\mjusbsp
[2010/10/22 17:08:41 | 000,000,000 | ---D | M] -- C:\Users\jo\AppData\Roaming\MP3 Music Organizer Platinum
[2010/10/22 17:08:47 | 000,000,000 | ---D | M] -- C:\Users\jo\AppData\Roaming\Music Organizer
[2010/10/22 17:08:46 | 000,000,000 | ---D | M] -- C:\Users\jo\AppData\Roaming\Music Organizer Pro
[2010/09/23 19:14:04 | 000,000,000 | ---D | M] -- C:\Users\jo\AppData\Roaming\Paltalk
[2011/03/30 04:48:21 | 000,000,564 | ---- | M] () -- C:\WINDOWS\Tasks\PCDoctorBackgroundMonitorTask.job
[2011/03/30 09:37:40 | 000,032,626 | ---- | M] () -- C:\WINDOWS\Tasks\SCHEDLGU.TXT
[2010/09/21 23:49:45 | 000,032,580 | ---- | M] () -- C:\WINDOWS\Tasks\SCHEDLGU[1].TXT
[2011/03/30 04:56:42 | 000,000,422 | ---- | M] () -- C:\WINDOWS\Tasks\SystemToolsDailyTest.job

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 149 bytes -> C:\ProgramData\TEMP:0B4227B4
@Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:DFC5A2B2

< End of report >
  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP