OTL logfile created on: 5/9/2011 8:14:40 AM - Run 2
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\-Jigsaw-\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 66.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 88.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 596.17 Gb Total Space | 9.65 Gb Free Space | 1.62% Space Free | Partition Type: NTFS
Drive D: | 6.85 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF
Computer Name: JIGSAW | User Name: -Jigsaw- | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ========== PRC - C:\Documents and Settings\-Jigsaw-\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe (Threat Expert Ltd.)
PRC - C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
PRC - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe (Autodesk)
PRC - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (ESET)
PRC - C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
PRC - C:\Program Files\PIXELA\Everio MediaBrowser\MBCameraMonitor.exe (PIXELA CORPORATION)
PRC - C:\Program Files\GIGABYTE\Gamer HUD\HUD.exe ()
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_32server.exe ()
PRC - C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe (Logitech Inc.)
PRC - C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDPop3.exe (Logitech Inc.)
PRC - C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe (Logitech Inc.)
PRC - C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDMedia.exe (Logitech Inc.)
PRC - C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDCountdown.exe (Logitech Inc.)
PRC - C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDClock.exe (Logitech Inc.)
PRC - C:\WINDOWS\system32\HPZipm12.exe (HP)
========== Modules (SafeList) ========== MOD - C:\Documents and Settings\-Jigsaw-\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll (Microsoft Corporation)
========== Win32 Services (SafeList) ========== SRV - (sdCoreService) -- C:\Program Files\Spyware Doctor\pctsSvc.exe (PC Tools)
SRV - (sdAuxService) -- C:\Program Files\Spyware Doctor\pctsAuxs.exe (PC Tools)
SRV - (Browser Defender Update Service) -- C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe (Threat Expert Ltd.)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)
SRV - (Autodesk Licensing Service) -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe (Autodesk)
SRV - (ServiceLayer) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
SRV - (EhttpSrv) -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe (ESET)
SRV - (ekrn) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (ESET)
SRV - (mi-raysat_3dsMax2009_32) -- C:\Program Files\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_32server.exe ()
SRV - (Pml Driver HPZ12) -- C:\WINDOWS\system32\HPZipm12.exe (HP)
========== Driver Services (SafeList) ========== DRV - (ESLWireAC) -- C:\WINDOWS\system32\drivers\ESLWireACD.sys (<Turtle Entertainment>)
DRV - (ESLvnic1) -- C:\WINDOWS\system32\drivers\ESLvnic.sys (Turtle Entertainment GmbH)
DRV - (sptd) -- C:\WINDOWS\System32\Drivers\sptd.sys ()
DRV - (PCTCore) -- C:\WINDOWS\system32\drivers\PCTCore.sys (PC Tools)
DRV - (hamachi) -- C:\WINDOWS\system32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (UsbserFilt) -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys (Nokia)
DRV - (upperdev) -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys (Nokia)
DRV - (nmwcdc) -- C:\WINDOWS\system32\drivers\ccdcmbo.sys (Nokia)
DRV - (nmwcd) -- C:\WINDOWS\system32\drivers\ccdcmb.sys (Nokia)
DRV - (epfwtdir) -- C:\WINDOWS\system32\drivers\epfwtdir.sys (ESET)
DRV - (ehdrv) -- C:\WINDOWS\system32\drivers\ehdrv.sys (ESET)
DRV - (eamon) -- C:\WINDOWS\system32\drivers\eamon.sys (ESET)
DRV - (VCSVADHWSer) Avnex Virtual Audio Device (WDM) -- C:\WINDOWS\system32\drivers\vcsvad.sys (Avnex)
DRV - (RTLE8023xp) -- C:\WINDOWS\system32\drivers\Rtenicxp.sys (Realtek Semiconductor Corporation )
DRV - (pccsmcfd) -- C:\WINDOWS\system32\drivers\pccsmcfd.sys (Nokia)
DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
DRV - (lgmdmdm) -- C:\WINDOWS\system32\drivers\lgmdmdm.sys (MCCI Corporation)
DRV - (lgmdmgmt) LG Mobile USB WMC Device Management Drivers (WDM) -- C:\WINDOWS\system32\drivers\lgmdmgmt.sys (MCCI Corporation)
DRV - (lgmdobex) -- C:\WINDOWS\system32\drivers\lgmdobex.sys (MCCI Corporation)
DRV - (lgmdbus) LG Mobile driver (WDM) -- C:\WINDOWS\system32\drivers\lgmdbus.sys (MCCI Corporation)
DRV - (lgmdmdfl) -- C:\WINDOWS\system32\drivers\lgmdmdfl.sys (MCCI Corporation)
DRV - (Aspi32) -- C:\WINDOWS\system32\drivers\aspi32.sys (Adaptec)
DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.)
========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://www.google.com/IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
========== FireFox ========== FF - prefs.js..browser.search.defaultthis.engineName: "Freecorder Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "
http://search.condui...={searchTerms}"FF - prefs.js..browser.search.update: false
FF - prefs.js..browser.startup.homepage: "www.google.com"
FF - prefs.js..extensions.enabledItems:
[email protected]:1.0
FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20100408.6
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.0
FF - prefs.js..network.proxy.type: 0
FF - HKLM\software\mozilla\Firefox\Extensions\\
[email protected]: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2009/05/01 03:10:55 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/09/29 20:28:52 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/09/17 10:43:39 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\
[email protected]: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2009/04/09 20:59:19 | 000,000,000 | ---D | M]
[2009/04/09 00:03:39 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\-Jigsaw-\Application Data\Mozilla\Extensions
[2011/04/29 22:50:04 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\-Jigsaw-\Application Data\Mozilla\Firefox\Profiles\24mt2the.default\extensions
[2009/09/02 16:06:38 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\-Jigsaw-\Application Data\Mozilla\Firefox\Profiles\24mt2the.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009/11/11 20:33:31 | 000,000,000 | ---D | M] () -- C:\Documents and Settings\-Jigsaw-\Application Data\Mozilla\Firefox\Profiles\24mt2the.default\extensions\{64e8cc5b-20db-4212-8320-178fc5ae71f7}
[2009/11/29 21:30:02 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\-Jigsaw-\Application Data\Mozilla\Firefox\Profiles\24mt2the.default\extensions\{c50ca3c4-5656-43c2-a061-13e717f73fc8}
[2009/11/29 21:30:02 | 000,000,000 | ---D | M] (Fast Video Download (with SearchMenu)) -- C:\Documents and Settings\-Jigsaw-\Application Data\Mozilla\Firefox\Profiles\24mt2the.default\extensions\{c50ca3c4-5656-43c2-a061-13e717f73fc8}(2)
[2010/04/10 02:16:12 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Documents and Settings\-Jigsaw-\Application Data\Mozilla\Firefox\Profiles\24mt2the.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2009/11/29 21:30:06 | 000,000,000 | ---D | M] ("DAEMON Tools Toolbar") -- C:\Documents and Settings\-Jigsaw-\Application Data\Mozilla\Firefox\Profiles\24mt2the.default\extensions\DTToolbar@toolbarnet(2).com
[2009/11/29 21:30:08 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\-Jigsaw-\Application Data\Mozilla\Firefox\Profiles\24mt2the.default\extensions\
[email protected][2010/10/20 13:40:12 | 000,000,923 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\Application Data\Mozilla\Firefox\Profiles\24mt2the.default\searchplugins\conduit.xml
[2009/04/29 08:07:33 | 000,000,523 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\Application Data\Mozilla\Firefox\Profiles\24mt2the.default\searchplugins\daemon-search.xml
[2011/04/29 22:50:04 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2009/11/15 21:53:07 | 000,000,000 | ---D | M] (Burn4Free Toolbar) -- C:\PROGRAM FILES\BURN4FREE TOOLBAR\V3.3.0.3\FIREFOX
[2009/11/16 22:39:00 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\PROGRAM FILES\REAL\REALPLAYER\BROWSERRECORD\FIREFOX\EXT
O1 HOSTS File: ([2011/05/08 13:37:19 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (PC Tools Browser Guard) - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)
O3 - HKLM\..\Toolbar: (Burn4Free Toolbar) - {4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - C:\Program Files\Burn4Free Toolbar\v3.3.0.3\Burn4Free_Toolbar.dll ()
O3 - HKCU\..\Toolbar\ShellBrowser: (Burn4Free Toolbar) - {4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - C:\Program Files\Burn4Free Toolbar\v3.3.0.3\Burn4Free_Toolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (PC Tools Browser Guard) - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Burn4Free Toolbar) - {4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - C:\Program Files\Burn4Free Toolbar\v3.3.0.3\Burn4Free_Toolbar.dll ()
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [Launch LCDMon] C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe (Logitech Inc.)
O4 - HKLM..\Run: [Launch LGDCore] C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe (Logitech Inc.)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKCU..\Run: [DAEMON Tools Pro Agent] C:\Program Files\DAEMON Tools Pro\DTProAgent.exe (DT Soft Ltd)
O4 - Startup: C:\Documents and Settings\-Jigsaw-\Start Menu\Programs\Startup\GIGABYTE Gamer HUD.lnk = C:\Program Files\GIGABYTE\Gamer HUD\HUD.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\MBCameraMonitor.lnk = C:\Program Files\PIXELA\Everio MediaBrowser\MBCameraMonitor.exe (PIXELA CORPORATION)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to AMV Convert Tool... - C:\Program Files\MP3 Player Utilities 4.00\AMVConverter\grab.html ()
O8 - Extra context menu item: Add to Media Manager... - C:\Program Files\MP3 Player Utilities 4.00\MediaManager\grab.html ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501}
http://messenger.zon...kr.cab56986.cab (Checkers Class)
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71}
http://download.micr...78f/wvc1dmo.cab (Reg Error: Key error.)
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24}
http://messenger.zon...1/GAME_UNO1.cab (UnoCtrl Class)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5}
http://download.eset...lineScanner.cab (OnlineScanner Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072}
http://messenger.zon...nt.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48}
http://messenger.zon...er.cab56986.cab (Minesweeper Flags Class)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\-Jigsaw-\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\-Jigsaw-\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/04/08 16:46:51 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O35 - HKCU\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ========== [2011/05/08 16:18:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\-Jigsaw-\Desktop\Logs
[2011/05/08 16:16:47 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\-Jigsaw-\Desktop\OTL.exe
[2011/05/08 14:49:47 | 000,472,064 | ---- | C] ( ) -- C:\Documents and Settings\-Jigsaw-\Desktop\RootRepeal.exe
[2011/05/08 14:35:59 | 000,645,632 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\-Jigsaw-\Desktop\OTS.exe
[2011/05/08 14:21:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SafeReturner
[2011/05/08 14:21:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Safe Returner
[2011/05/08 14:21:49 | 000,000,000 | ---D | C] -- C:\Program Files\Safe Returner
[2011/05/08 14:21:09 | 003,676,946 | ---- | C] (SafeReturner Anti-Malware Studio ) -- C:\Documents and Settings\-Jigsaw-\Desktop\safereturner.exe
[2011/05/08 13:41:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2011/05/08 12:44:43 | 000,000,000 | ---D | C] -- C:\commy
[2011/05/08 12:27:17 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2011/05/08 12:18:02 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2011/05/08 12:18:02 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2011/05/08 12:18:02 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2011/05/08 12:18:02 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2011/05/08 12:17:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011/05/08 12:17:05 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011/05/05 12:50:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\-Jigsaw-\My Documents\Adobe
[2011/05/01 14:21:34 | 001,407,280 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\-Jigsaw-\Desktop\TDSSKiller.exe
[2011/04/25 00:03:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\-Jigsaw-\My Documents\TikGames
[2011/04/25 00:00:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Hasbro
[2011/04/25 00:00:00 | 000,000,000 | ---D | C] -- C:\Program Files\Hasbro
[2011/04/24 09:58:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\-Jigsaw-\My Documents\ESL Match Media
[2011/04/16 20:42:44 | 000,000,000 | ---D | C] -- C:\Program Files\Roadkil.Net
[2011/04/16 20:42:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Roadkil.Net
[2011/04/16 17:57:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Dungeon Siege 2
[2011/04/16 17:39:45 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games
[2011/04/09 15:14:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\-Jigsaw-\Local Settings\Application Data\ESL Wire Game Client
[2011/04/09 15:13:33 | 000,812,448 | ---- | C] (<Turtle Entertainment>) -- C:\WINDOWS\System32\drivers\ESLWireACD.sys
[2011/04/09 15:13:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\ESL Wire
[2011/04/09 15:13:27 | 000,024,504 | ---- | C] (Turtle Entertainment GmbH) -- C:\WINDOWS\System32\drivers\ESLvnic.sys
[2011/04/09 15:13:27 | 000,000,000 | ---D | C] -- C:\Program Files\EslWire
[2011/04/09 15:13:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ESL Wire
[2009/11/15 22:54:26 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\-Jigsaw-\Application Data\pcouffin.sys
[2009/05/14 21:02:10 | 003,392,872 | ---- | C] (Acresso Software Inc.) -- C:\Program Files\Common Files\adlmint_libFNP.dll
[2009/05/14 21:02:10 | 003,298,152 | ---- | C] (Autodesk) -- C:\Program Files\Common Files\adlmint.dll
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[11 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]
========== Files - Modified Within 30 Days ========== [2011/05/08 23:45:12 | 000,255,241 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2011/05/08 17:16:34 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job
[2011/05/08 17:16:21 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/05/08 16:16:53 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\-Jigsaw-\Desktop\OTL.exe
[2011/05/08 15:26:55 | 000,000,015 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\Desktop\settings.dat
[2011/05/08 14:49:52 | 000,472,064 | ---- | M] ( ) -- C:\Documents and Settings\-Jigsaw-\Desktop\RootRepeal.exe
[2011/05/08 14:36:06 | 000,645,632 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\-Jigsaw-\Desktop\OTS.exe
[2011/05/08 14:21:50 | 000,000,675 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Safe Returner.lnk
[2011/05/08 14:21:50 | 000,000,655 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Kill Rogue Process.lnk
[2011/05/08 14:21:37 | 003,676,946 | ---- | M] (SafeReturner Anti-Malware Studio ) -- C:\Documents and Settings\-Jigsaw-\Desktop\safereturner.exe
[2011/05/08 14:20:33 | 003,314,232 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\Desktop\regacesetup.exe
[2011/05/08 13:37:19 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011/05/08 13:11:08 | 004,343,224 | R--- | M] () -- C:\Documents and Settings\-Jigsaw-\Desktop\commy.exe
[2011/05/08 12:27:21 | 000,000,339 | RHS- | M] () -- C:\boot.ini
[2011/05/08 11:51:24 | 000,000,223 | ---- | M] () -- C:\Boot.bak
[2011/05/08 11:43:07 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/05/08 11:16:39 | 000,018,340 | -HS- | M] () -- C:\Documents and Settings\-Jigsaw-\Local Settings\Application Data\mncleotu8bxhx2j6rih3pir8
[2011/05/08 11:16:39 | 000,018,340 | -HS- | M] () -- C:\Documents and Settings\All Users\Application Data\mncleotu8bxhx2j6rih3pir8
[2011/05/07 23:29:01 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/05/07 18:09:49 | 000,113,152 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/05/01 14:21:34 | 001,407,280 | ---- | M] (Kaspersky Lab ZAO) -- C:\Documents and Settings\-Jigsaw-\Desktop\TDSSKiller.exe
[2011/04/26 16:14:58 | 000,053,688 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\demotivation.us_Hold-F11-If-you-laugh-you-are-a-really-bad-person_130017821718.jpg
[2011/04/25 00:00:20 | 000,000,918 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Monopoly by Parker Brothers.lnk
[2011/04/24 09:56:16 | 000,000,649 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\ESL Wire.lnk
[2011/04/23 17:32:14 | 000,155,836 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\cat2.jpg
[2011/04/23 17:11:42 | 000,068,074 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\nyan_cat_timelapse_by_kingaby-d3dygfa.jpg
[2011/04/22 00:43:42 | 000,498,212 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\Myth_Dragon_Wars.jpg
[2011/04/22 00:43:34 | 000,317,528 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\Elektric_HD_desktop_theme.jpg
[2011/04/22 00:42:05 | 000,197,354 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\Fantasy-Dragon-14858-926778.jpeg
[2011/04/22 00:39:33 | 000,566,596 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\games-wallpapers-1920x1080.jpg
[2011/04/22 00:39:15 | 000,298,989 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\hellgate-london-hd-wallpapers.jpg
[2011/04/18 12:10:56 | 000,812,448 | ---- | M] (<Turtle Entertainment>) -- C:\WINDOWS\System32\drivers\ESLWireACD.sys
[2011/04/17 01:06:48 | 000,487,199 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302962153950.jpg
[2011/04/17 01:06:37 | 000,562,830 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302964207168.jpg
[2011/04/17 01:06:33 | 001,459,661 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302964079744.jpg
[2011/04/17 01:04:30 | 000,473,677 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302963759950.jpg
[2011/04/17 01:04:26 | 000,334,263 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302964150158.jpg
[2011/04/17 01:04:19 | 000,150,704 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302963425149.jpg
[2011/04/17 01:04:11 | 000,090,057 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302963975287.jpg
[2011/04/17 01:04:06 | 000,247,065 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302964233096.jpg
[2011/04/17 01:03:06 | 000,229,310 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302958301309.jpg
[2011/04/17 01:02:42 | 000,730,453 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302958479901.jpg
[2011/04/17 01:02:33 | 001,976,541 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302959587377.png
[2011/04/17 01:01:54 | 000,824,091 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302958269992.jpg
[2011/04/17 00:59:58 | 000,313,425 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302958418807.jpg
[2011/04/17 00:58:43 | 000,242,705 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302965889483.jpg
[2011/04/17 00:58:16 | 000,765,869 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302963378886.jpg
[2011/04/17 00:52:48 | 000,028,385 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302954701624.jpg
[2011/04/16 20:42:44 | 000,000,717 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Roadkil's Unstoppable Copier.lnk
[2011/04/16 20:27:17 | 000,001,974 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\Desktop\JFileRecovery.lnk
[2011/04/16 17:57:33 | 000,001,816 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Dungeon Siege 2.lnk
[2011/04/16 17:06:17 | 000,000,150 | ---- | M] () -- C:\WINDOWS\cdplayer.ini
[2011/04/16 16:36:46 | 002,108,104 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/04/15 20:24:35 | 000,443,588 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/04/15 20:24:35 | 000,071,846 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/04/09 15:19:53 | 000,000,817 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\Desktop\UrbanTerror.lnk
[2011/04/09 14:35:32 | 000,018,519 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\x5cg.jpg
[2011/04/09 14:29:56 | 000,012,084 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\x5blacks.jpg
[2011/04/09 14:18:32 | 000,207,076 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\exile52.png
[2011/04/09 14:12:31 | 000,256,840 | ---- | M] () -- C:\Documents and Settings\-Jigsaw-\My Documents\exile5s.png
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[11 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]
========== Files Created - No Company Name ========== [2011/05/08 15:07:29 | 000,000,015 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\Desktop\settings.dat
[2011/05/08 14:21:50 | 000,000,675 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Safe Returner.lnk
[2011/05/08 14:21:50 | 000,000,655 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Kill Rogue Process.lnk
[2011/05/08 14:20:07 | 003,314,232 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\Desktop\regacesetup.exe
[2011/05/08 13:11:07 | 004,343,224 | R--- | C] () -- C:\Documents and Settings\-Jigsaw-\Desktop\commy.exe
[2011/05/08 12:27:21 | 000,000,223 | ---- | C] () -- C:\Boot.bak
[2011/05/08 12:27:18 | 000,260,272 | RHS- | C] () -- C:\cmldr
[2011/05/08 12:18:02 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2011/05/08 12:18:02 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2011/05/08 12:18:02 | 000,089,088 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2011/05/08 12:18:02 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2011/05/08 12:18:02 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2011/05/08 10:24:25 | 000,018,340 | -HS- | C] () -- C:\Documents and Settings\-Jigsaw-\Local Settings\Application Data\mncleotu8bxhx2j6rih3pir8
[2011/05/08 10:24:25 | 000,018,340 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\mncleotu8bxhx2j6rih3pir8
[2011/04/26 16:14:58 | 000,053,688 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\demotivation.us_Hold-F11-If-you-laugh-you-are-a-really-bad-person_130017821718.jpg
[2011/04/25 00:00:20 | 000,000,918 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Monopoly by Parker Brothers.lnk
[2011/04/23 17:32:13 | 000,155,836 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\cat2.jpg
[2011/04/23 17:11:42 | 000,068,074 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\nyan_cat_timelapse_by_kingaby-d3dygfa.jpg
[2011/04/22 00:43:42 | 000,498,212 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\Myth_Dragon_Wars.jpg
[2011/04/22 00:43:34 | 000,317,528 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\Elektric_HD_desktop_theme.jpg
[2011/04/22 00:42:04 | 000,197,354 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\Fantasy-Dragon-14858-926778.jpeg
[2011/04/22 00:39:33 | 000,566,596 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\games-wallpapers-1920x1080.jpg
[2011/04/22 00:39:14 | 000,298,989 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\hellgate-london-hd-wallpapers.jpg
[2011/04/17 01:06:48 | 000,487,199 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302962153950.jpg
[2011/04/17 01:06:37 | 000,562,830 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302964207168.jpg
[2011/04/17 01:06:33 | 001,459,661 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302964079744.jpg
[2011/04/17 01:04:30 | 000,473,677 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302963759950.jpg
[2011/04/17 01:04:26 | 000,334,263 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302964150158.jpg
[2011/04/17 01:04:19 | 000,150,704 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302963425149.jpg
[2011/04/17 01:04:11 | 000,090,057 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302963975287.jpg
[2011/04/17 01:04:05 | 000,247,065 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302964233096.jpg
[2011/04/17 01:03:06 | 000,229,310 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302958301309.jpg
[2011/04/17 01:02:42 | 000,730,453 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302958479901.jpg
[2011/04/17 01:02:33 | 001,976,541 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302959587377.png
[2011/04/17 01:01:54 | 000,824,091 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302958269992.jpg
[2011/04/17 00:59:57 | 000,313,425 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302958418807.jpg
[2011/04/17 00:58:43 | 000,242,705 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302965889483.jpg
[2011/04/17 00:58:16 | 000,765,869 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302963378886.jpg
[2011/04/17 00:52:48 | 000,028,385 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\1302954701624.jpg
[2011/04/16 20:42:44 | 000,000,717 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Roadkil's Unstoppable Copier.lnk
[2011/04/16 20:27:17 | 000,001,974 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\Desktop\JFileRecovery.lnk
[2011/04/16 17:57:33 | 000,001,816 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Dungeon Siege 2.lnk
[2011/04/09 15:13:32 | 000,000,649 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\ESL Wire.lnk
[2011/04/09 14:35:32 | 000,018,519 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\x5cg.jpg
[2011/04/09 14:29:55 | 000,012,084 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\x5blacks.jpg
[2011/04/09 14:18:32 | 000,207,076 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\exile52.png
[2011/04/09 14:12:31 | 000,256,840 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\My Documents\exile5s.png
[2011/03/22 21:39:10 | 000,767,952 | ---- | C] () -- C:\WINDOWS\BDTSupport.dll
[2011/03/20 23:23:39 | 000,018,232 | -HS- | C] () -- C:\Documents and Settings\-Jigsaw-\Local Settings\Application Data\r13fsel453rx
[2011/03/20 23:23:39 | 000,018,232 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\r13fsel453rx
[2011/02/26 11:19:32 | 000,041,872 | ---- | C] () -- C:\WINDOWS\System32\xfcodec.dll
[2011/01/24 15:22:45 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2011/01/24 15:22:29 | 000,000,520 | ---- | C] () -- C:\WINDOWS\System32\drivers\SamSfPa.dat
[2011/01/20 13:13:12 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2010/08/27 18:58:34 | 000,000,706 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\Application Data\MPQEditor.ini
[2010/07/17 06:50:58 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010/07/09 16:29:55 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2010/07/08 16:34:56 | 000,113,152 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/05/19 17:33:59 | 000,000,466 | ---- | C] () -- C:\WINDOWS\ULEAD32.INI
[2010/03/27 23:01:31 | 008,676,883 | ---- | C] () -- C:\WINDOWS\System32\mp3Media2.dll
[2010/03/06 14:02:57 | 001,333,620 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\Application Data\NMM-MetaData.db
[2010/02/22 16:03:09 | 000,000,338 | ---- | C] () -- C:\WINDOWS\kaillera.ini
[2009/12/25 22:20:49 | 000,000,008 | ---- | C] () -- C:\WINDOWS\System32\nvModes.dat
[2009/12/25 21:32:07 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2009/12/25 21:13:39 | 002,293,286 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2009/11/15 22:54:42 | 000,084,480 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2009/11/15 22:54:26 | 000,081,920 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\Application Data\ezpinst.exe
[2009/11/15 22:54:26 | 000,007,176 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\Application Data\pcouffin.cat
[2009/11/15 22:54:26 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\Application Data\pcouffin.inf
[2009/10/23 15:00:41 | 000,000,131 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\Local Settings\Application Data\fusioncache.dat
[2009/10/14 21:21:03 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\rmc_rtspdl.dll
[2009/08/02 23:21:54 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2009/08/02 23:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2009/08/02 23:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2009/08/02 23:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2009/08/02 23:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2009/08/02 23:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2009/08/02 23:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2009/08/02 23:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2009/08/02 23:21:52 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2009/08/02 23:21:52 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2009/08/02 22:56:02 | 000,000,085 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\.zreglib
[2009/07/24 03:43:03 | 000,036,868 | ---- | C] () -- C:\Program Files\uninst-3DStroke.exe
[2009/07/23 23:50:53 | 000,110,415 | ---- | C] () -- C:\WINDOWS\hpoins11.dat
[2009/07/23 23:50:41 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\HPZIDS01.dll
[2009/07/23 23:50:35 | 000,006,947 | ---- | C] () -- C:\WINDOWS\hpomdl11.dat
[2009/06/23 20:03:15 | 000,000,598 | ---- | C] () -- C:\WINDOWS\ae_mini.INI
[2009/06/23 17:52:13 | 000,005,085 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\xpbthzbm.qqq
[2009/06/14 00:23:03 | 000,000,412 | ---- | C] () -- C:\WINDOWS\asr.INI
[2009/04/29 16:56:56 | 000,000,766 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009/04/22 18:23:39 | 001,970,176 | ---- | C] () -- C:\WINDOWS\System32\d3dx9.dll
[2009/04/17 03:20:44 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\-Jigsaw-\Application Data\PnkBstrK.sys
[2009/04/17 03:20:24 | 002,373,712 | ---- | C] () -- C:\WINDOWS\System32\pbsvc.exe
[2009/04/15 23:28:02 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009/04/13 23:14:55 | 000,000,150 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2009/04/10 01:07:07 | 000,107,832 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2009/04/10 01:06:38 | 000,075,064 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2009/04/09 21:34:00 | 000,000,262 | ---- | C] () -- C:\WINDOWS\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
[2009/04/09 19:48:18 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009/04/09 00:03:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009/04/08 19:36:58 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2009/04/08 19:34:04 | 002,108,104 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009/04/08 16:48:26 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2009/04/08 16:44:33 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2008/08/24 14:11:00 | 001,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2008/08/24 14:11:00 | 001,657,376 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2008/08/24 14:11:00 | 001,499,136 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2008/08/24 14:11:00 | 001,346,080 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2008/08/24 14:11:00 | 001,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2008/08/24 14:11:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2008/08/24 14:11:00 | 000,449,056 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2008/08/24 14:11:00 | 000,436,768 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[2007/06/28 19:54:10 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2007/06/28 19:52:18 | 000,765,952 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2007/06/27 16:13:51 | 000,512,000 | ---- | C] () -- C:\WINDOWS\System32\RegisterDialog.dll
[2007/01/10 07:44:26 | 001,457,024 | R--- | C] () -- C:\WINDOWS\System32\SSCProt.dll
[2004/09/16 12:26:40 | 000,012,634 | ---- | C] () -- C:\WINDOWS\System32\drivers\ADFUUD.SYS
[2004/09/16 12:26:40 | 000,012,634 | ---- | C] () -- C:\WINDOWS\ADFUUD.SYS
[2004/08/07 10:17:40 | 000,443,588 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004/08/07 10:17:40 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004/08/07 10:17:39 | 000,071,846 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004/08/07 10:17:39 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004/08/07 10:17:35 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2004/08/07 10:17:34 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2004/08/07 10:17:30 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2004/08/07 10:17:08 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004/08/07 10:17:07 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004/08/07 10:16:26 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004/08/04 15:07:22 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004/08/03 04:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2003/01/07 15:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2002/09/18 00:45:00 | 000,119,808 | ---- | C] () -- C:\WINDOWS\lsb_un20.exe
========== LOP Check ========== [2009/10/02 14:47:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\Autodesk
[2010/05/28 15:26:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\Avnex
[2009/08/10 11:39:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\Blender Foundation
[2009/12/05 00:01:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\Codemasters
[2009/04/29 16:12:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\DAEMON Tools
[2009/04/29 08:02:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\DAEMON Tools Lite
[2010/03/21 16:10:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\DAEMON Tools Pro
[2009/11/25 18:22:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\DVDCreator
[2009/10/03 22:50:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\fltk.org
[2010/07/17 03:56:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\GetRightToGo
[2009/12/13 09:31:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\gnupg
[2009/09/04 17:22:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\id Software
[2009/06/04 20:33:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\Jasc
[2011/02/15 11:40:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\LG Electronics
[2010/04/15 04:52:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\MilkShape 3D 1.x.x
[2011/05/08 22:21:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\Mumble
[2010/10/31 00:32:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\Nokia
[2010/03/06 13:56:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\PC Suite
[2009/06/09 15:35:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\Publish Providers
[2010/03/09 23:27:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\Red Kawa
[2009/05/20 19:29:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\Sony
[2009/04/10 14:57:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\Sony Setup
[2011/05/09 08:14:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\uTorrent
[2009/11/15 22:54:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\-Jigsaw-\Application Data\Vso
[2009/10/02 14:42:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Autodesk
[2009/10/14 04:42:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\CrazyBump
[2009/04/29 08:12:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2010/03/21 16:00:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Pro
[2009/04/09 20:59:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ESET
[2011/04/09 15:13:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ESL Wire
[2010/04/05 13:53:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\id Software
[2009/05/01 03:10:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Installations
[2009/10/14 04:42:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\licensecb
[2009/05/01 03:12:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Suite
[2009/11/06 22:24:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PIXELA
[2011/05/08 14:23:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SafeReturner
[2009/05/20 19:18:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sony
[2010/05/06 22:37:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TechSmith
[2011/05/08 17:16:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2010/02/20 12:31:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WinZip
[2009/04/23 11:43:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2011/05/08 17:16:34 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\WGASetup.job
========== Purity Check ========== ========== Alternate Data Streams ========== @Alternate Data Stream - 487 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:05EE1EEF
@Alternate Data Stream - 190 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2
@Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:888AFB86
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A8ADE5D8
< End of report >