Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

XP Home Security 2011 virus


  • Please log in to reply

#1
garfluver

garfluver

    Member

  • Member
  • PipPipPip
  • 103 posts
Yesterday, I got and thought I removed the XP Home Security 2011 virus. I keep getting a red shield with the message..."Your computer might be at risk. Automatic updates is turned off. Click this balloon to fix this problem." I do that, but says I have to manual change the feature. I go to control panel and systems. The auto update is already turned on. So I was hoping someone could check out my system to see if anything is still lingering. I used Windows Security Essentials and Malwarebytes to remove the virus. I had a nasty virus a week or so ago...and a friend had to remove everything and then reinstalled windows, ie, etc.

Here's my OTL:

OTL logfile created on: 5/28/2011 7:14:41 AM - Run 1
OTL by OldTimer - Version 3.2.23.0 Folder = C:\Documents and Settings\Tonya\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

511.23 Mb Total Physical Memory | 257.93 Mb Available Physical Memory | 50.45% Memory free
1.22 Gb Paging File | 0.98 Gb Available in Paging File | 80.65% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 70.98 Gb Total Space | 61.20 Gb Free Space | 86.22% Space Free | Partition Type: NTFS

Computer Name: TONYA-V9M5UOV14 | User Name: Tonya | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/05/28 07:12:57 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Tonya\Desktop\OTL.exe
PRC - [2010/11/11 12:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2008/04/14 05:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004/01/13 15:15:20 | 000,376,832 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\ZCfgSvc.exe


========== Modules (SafeList) ==========

MOD - [2011/05/28 07:12:57 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Tonya\Desktop\OTL.exe
MOD - [2010/08/23 11:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - File not found [Disabled | Stopped] -- -- (AppMgmt)
SRV - [2010/11/11 12:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2004/01/13 15:08:12 | 000,311,363 | ---- | M] (Intel Corporation ) [Auto | Stopped] -- C:\WINDOWS\system32\S24EvMon.exe -- (S24EventMonitor)
SRV - [2004/01/13 15:07:04 | 000,122,880 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\WINDOWS\system32\RegSrvc.exe -- (RegSrvc)


========== Driver Services (SafeList) ==========

DRV - [2011/05/17 21:11:14 | 000,014,037 | ---- | M] (Meetinghouse Data Communications) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\mdc8021x.sys -- (MDC8021X) AEGIS Protocol (IEEE 802.1x)
DRV - [2004/05/12 20:30:14 | 000,258,704 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\stac97.sys -- (STAC97) Audio Driver (WDM)
DRV - [2004/01/14 05:58:26 | 001,648,640 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\w22n51.sys -- (w22n51) Intel®
DRV - [2003/09/15 10:20:18 | 000,011,258 | ---- | M] (Intel Corporation) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\s24trans.sys -- (s24trans)
DRV - [2003/08/29 05:59:24 | 001,101,696 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\BCMSM.sys -- (BCMModem)
DRV - [2003/05/15 18:09:32 | 000,043,136 | R--- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\bcm4sbxp.sys -- (bcm4sbxp)
DRV - [2001/08/22 08:42:58 | 000,013,632 | ---- | M] (Dell Computer Corporation) [Kernel | System | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\OMCI.SYS -- (OMCI)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========


FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/05/18 22:53:11 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2011/05/18 22:54:32 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Tonya\Application Data\Mozilla\Extensions
[2011/05/21 07:58:04 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/05/21 07:58:07 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
File not found (No name found) --
[2011/05/18 19:23:12 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011/04/14 11:26:02 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
[2010/01/01 03:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\bing.xml

O1 HOSTS File: ([2003/07/16 15:29:34 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [PRONoMgr.exe] c:\Program Files\Intel\PROSetWireless\NCS\PROSet\PRONoMgr.exe (Intel® Corporation)
O4 - HKLM..\Run: [SigmaTel StacMon] C:\Program Files\SigmaTel\SigmaTel AC97 Audio Drivers\stacmon.exe (SigmaTel Inc.)
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.micros...b?1305686717643 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.micros...b?1305686407387 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.100.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\Sebring: DllName - c:\WINDOWS\System32\LgNotify.dll - C:\WINDOWS\system32\LgNotify.dll (Intel Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/05/17 20:33:13 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O35 - HKCU\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/05/28 07:12:46 | 000,580,096 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Tonya\Desktop\OTL.exe
[2011/05/27 20:02:39 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Tonya\Recent
[2011/05/25 17:55:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Hoyle®
[2011/05/25 17:55:02 | 000,000,000 | ---D | C] -- C:\Program Files\WON
[2011/05/25 17:55:02 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Sierra On-Line
[2011/05/25 17:49:55 | 000,000,000 | ---D | C] -- C:\Program Files\Games
[2011/05/24 16:24:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2011/05/21 07:59:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Application Data\skypePM
[2011/05/21 07:59:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Skype Extras
[2011/05/21 07:58:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Application Data\Skype
[2011/05/21 07:57:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2011/05/21 07:57:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Skype
[2011/05/21 07:57:32 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2011/05/21 07:57:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Skype
[2011/05/18 22:55:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Local Settings\Application Data\Identities
[2011/05/18 22:54:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Local Settings\Application Data\Mozilla
[2011/05/18 22:54:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Application Data\Mozilla
[2011/05/18 22:53:07 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2011/05/18 22:49:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Application Data\Malwarebytes
[2011/05/18 22:48:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/05/18 22:48:50 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011/05/18 22:48:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2011/05/18 22:48:43 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011/05/18 22:48:42 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/05/18 22:41:42 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Tonya\My Documents\My Videos
[2011/05/18 22:41:42 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Videos
[2011/05/18 22:39:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Local Settings\Application Data\Temp
[2011/05/18 22:38:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Silverlight
[2011/05/18 22:37:17 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2011/05/18 22:35:57 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2011/05/18 22:32:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2011/05/18 19:50:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office
[2011/05/18 19:50:16 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft ActiveSync
[2011/05/18 19:50:03 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2011/05/18 19:48:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2011/05/18 19:47:16 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2011/05/18 19:45:16 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2011/05/18 19:40:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Application Data\Apple Computer
[2011/05/18 19:39:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\iTunes
[2011/05/18 19:36:35 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011/05/18 19:36:03 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011/05/18 19:36:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2011/05/18 19:34:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\QuickTime
[2011/05/18 19:32:54 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2011/05/18 19:32:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple Computer
[2011/05/18 19:32:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Local Settings\Application Data\Apple
[2011/05/18 19:31:56 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2011/05/18 19:31:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2011/05/18 19:30:28 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2011/05/18 19:29:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2011/05/18 19:29:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple
[2011/05/18 19:29:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Local Settings\Application Data\Apple Computer
[2011/05/18 19:24:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2011/05/18 19:24:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011/05/18 19:22:56 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2011/05/18 19:22:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Application Data\Sun
[2011/05/18 19:18:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe
[2011/05/18 19:09:51 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2011/05/18 19:05:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2011/05/18 19:05:42 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2011/05/18 19:05:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2011/05/18 19:05:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Application Data\Macromedia
[2011/05/18 19:05:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Local Settings\Application Data\Adobe
[2011/05/18 19:05:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Application Data\Adobe
[2011/05/18 17:55:56 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2011/05/18 17:55:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2011/05/18 17:51:42 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Tonya\IECompatCache
[2011/05/18 17:51:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Tonya\PrivacIE
[2011/05/18 17:34:38 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Tonya\IETldCache
[2011/05/18 17:31:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2011/05/18 17:30:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2011/05/18 17:28:56 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2011/05/18 17:19:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2011/05/18 17:11:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us
[2011/05/18 17:11:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting
[2011/05/18 17:10:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2011/05/18 17:10:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en
[2011/05/18 17:04:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2011/05/18 06:12:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Defraggler
[2011/05/18 06:12:58 | 000,000,000 | ---D | C] -- C:\Program Files\Defraggler
[2011/05/18 06:08:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\CCleaner
[2011/05/18 06:08:28 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011/05/18 06:07:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\My Documents\Downloads
[2011/05/18 06:03:56 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Tonya\Start Menu\Programs\Administrative Tools
[2011/05/17 23:57:58 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2011/05/17 23:16:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\peernet
[2011/05/17 23:16:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\provisioning
[2011/05/17 23:13:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2011/05/17 23:05:35 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2011/05/17 23:05:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\EHome
[2011/05/17 21:48:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2011/05/17 21:48:37 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2011/05/17 21:47:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2011/05/17 21:45:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2011/05/17 21:40:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2011/05/17 21:39:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Tonya\UserData
[2011/05/17 21:27:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview
[2011/05/17 21:25:24 | 000,000,000 | ---D | C] -- C:\Program Files\SigmaTel
[2011/05/17 21:23:48 | 000,000,000 | ---D | C] -- C:\WUTemp
[2011/05/17 21:13:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2011/05/17 21:12:09 | 000,000,000 | ---D | C] -- C:\Program Files\Broadcom
[2011/05/17 21:11:29 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Tonya\WLANProfiles
[2011/05/17 21:11:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Intel Network Adapters
[2011/05/17 21:11:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2011/05/17 21:10:44 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2011/05/17 21:08:35 | 000,446,464 | R--- | C] (Blue Sky Software Corporation.) -- C:\WINDOWS\System32\hhactivex.dll
[2011/05/17 21:08:34 | 000,328,480 | ---- | C] (Sheridan Software Systems, Inc.) -- C:\WINDOWS\System32\ssa3d30.ocx
[2011/05/17 21:08:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Dell Accessories
[2011/05/17 21:08:31 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2011/05/17 21:08:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2011/05/17 20:57:31 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2011/05/17 20:50:20 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2011/05/17 20:50:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Application Data\Identities
[2011/05/17 20:50:08 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2011/05/17 20:50:06 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Tonya\My Documents\My Pictures
[2011/05/17 20:50:06 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Tonya\My Documents\My Music
[2011/05/17 20:50:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Local Settings\Application Data\Microsoft
[2011/05/17 20:50:02 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Tonya\Application Data\Microsoft
[2011/05/17 20:50:02 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Tonya\SendTo
[2011/05/17 20:50:02 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Tonya\Application Data
[2011/05/17 20:50:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Tonya\Start Menu\Programs\Startup
[2011/05/17 20:50:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Tonya\Start Menu
[2011/05/17 20:50:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Tonya\My Documents
[2011/05/17 20:50:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Tonya\Favorites
[2011/05/17 20:50:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Tonya\Start Menu\Programs\Accessories
[2011/05/17 20:50:02 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Tonya\Cookies
[2011/05/17 20:50:02 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Tonya\Templates
[2011/05/17 20:50:02 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Tonya\PrintHood
[2011/05/17 20:50:02 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Tonya\NetHood
[2011/05/17 20:50:02 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Tonya\Local Settings
[2011/05/17 20:50:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Desktop
[2011/05/17 20:48:59 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2011/05/17 20:48:57 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2011/05/17 20:48:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2011/05/17 20:48:56 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2011/05/17 20:48:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2011/05/17 20:39:13 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2011/05/17 20:39:13 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2011/05/17 20:37:53 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2011/05/17 20:37:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2011/05/17 20:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\xerox
[2011/05/17 20:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2011/05/17 20:37:27 | 000,000,000 | ---D | C] -- C:\DELL
[2011/05/17 20:32:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2011/05/17 20:32:04 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2011/05/17 20:32:04 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2011/05/17 20:31:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2011/05/17 20:30:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2011/05/17 20:30:44 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2011/05/17 20:30:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2011/05/17 20:30:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2011/05/17 20:30:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2011/05/17 20:30:33 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2011/05/17 20:30:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2011/05/17 20:30:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\PCHealth
[2011/05/17 20:30:24 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2011/05/17 20:30:23 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2011/05/17 20:30:19 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2011/05/17 20:30:15 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2011/05/17 20:30:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Pictures
[2011/05/17 20:30:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music
[2011/05/17 20:29:57 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2011/05/17 20:29:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools
[2011/05/17 20:29:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2011/05/17 20:29:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Games
[2011/05/17 20:29:17 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2011/05/17 20:29:17 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services
[2011/05/17 20:29:16 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2011/05/17 20:29:10 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
[2011/05/17 20:29:04 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2011/05/17 20:28:28 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2011/05/17 20:28:28 | 000,000,000 | ---D | C] -- C:\Program Files\MSN
[2011/05/17 20:28:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2011/05/17 20:28:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2011/05/17 20:19:19 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Accessories
[2011/05/17 15:15:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2011/05/17 15:15:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2011/05/17 15:15:11 | 000,000,000 | R--D | C] -- C:\Program Files
[2011/05/17 15:15:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2011/05/17 15:15:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2011/05/17 15:14:44 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup
[2011/05/17 15:14:44 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu
[2011/05/17 15:14:44 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents
[2011/05/17 15:14:44 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Templates
[2011/05/17 15:14:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Favorites
[2011/05/17 15:14:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Desktop
[2011/05/17 15:14:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2011/05/17 15:14:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2011/05/17 15:14:27 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2011/05/17 15:14:27 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data
[2011/05/17 15:14:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2011/05/17 15:01:54 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2011/05/17 15:01:54 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2011/05/17 15:01:54 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2011/05/17 15:01:54 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/05/28 07:12:57 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Tonya\Desktop\OTL.exe
[2011/05/28 06:56:15 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2011/05/28 06:50:45 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/05/28 06:48:08 | 000,011,289 | ---- | M] () -- C:\WINDOWS\System32\nvModes.001
[2011/05/27 19:23:03 | 000,001,580 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Defraggler.lnk
[2011/05/27 18:03:28 | 000,017,112 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2011/05/27 17:21:42 | 000,012,868 | -HS- | M] () -- C:\Documents and Settings\All Users\Application Data\n0368d1iqo7nlqsvcyi6cpt0vpg0j68prb6ldrhq
[2011/05/27 17:21:41 | 000,012,868 | -HS- | M] () -- C:\Documents and Settings\Tonya\Local Settings\Application Data\n0368d1iqo7nlqsvcyi6cpt0vpg0j68prb6ldrhq
[2011/05/25 17:55:02 | 000,000,228 | ---- | M] () -- C:\WINDOWS\SIERRA.INI
[2011/05/25 17:37:21 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011/05/21 07:59:18 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat
[2011/05/21 07:57:37 | 000,001,878 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2011/05/19 19:42:46 | 000,001,680 | ---- | M] () -- C:\Documents and Settings\Tonya\Desktop\Microsoft Security Essentials.lnk
[2011/05/19 19:42:05 | 000,000,803 | ---- | M] () -- C:\Documents and Settings\Tonya\Desktop\Internet Explorer.lnk
[2011/05/18 22:54:23 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat
[2011/05/18 22:53:18 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\Tonya\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/05/18 22:53:18 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2011/05/18 22:48:51 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/05/18 22:41:05 | 000,000,800 | ---- | M] () -- C:\Documents and Settings\Tonya\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2011/05/18 22:40:29 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/05/18 22:36:32 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2011/05/18 22:36:32 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2011/05/18 22:32:18 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2011/05/18 21:57:05 | 000,312,172 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/05/18 21:57:05 | 000,040,394 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/05/18 21:54:22 | 000,112,584 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/05/18 19:53:02 | 000,000,376 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[2011/05/18 19:39:34 | 000,001,542 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2011/05/18 19:34:03 | 000,001,604 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\QuickTime Player.lnk
[2011/05/18 19:32:14 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/05/18 19:12:58 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader X.lnk
[2011/05/18 17:57:06 | 000,001,945 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2011/05/18 17:34:52 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\Tonya\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/05/18 17:21:28 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2011/05/18 17:03:36 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2011/05/18 06:08:29 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
[2011/05/17 23:17:27 | 000,000,211 | RHS- | M] () -- C:\boot.ini
[2011/05/17 23:09:51 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2011/05/17 23:00:17 | 000,011,289 | ---- | M] () -- C:\WINDOWS\System32\nvModes.dat
[2011/05/17 20:50:26 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\Tonya\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2011/05/17 20:50:16 | 000,025,065 | ---- | M] () -- C:\WINDOWS\System32\wmpscheme.xml
[2011/05/17 20:48:37 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2011/05/17 20:39:54 | 000,000,237 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2011/05/17 20:33:13 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011/05/17 20:33:13 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2011/05/17 20:33:13 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2011/05/17 20:33:13 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2011/05/17 20:33:13 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2011/05/17 20:33:10 | 000,299,552 | ---- | M] () -- C:\WINDOWS\WMSysPrx.prx
[2011/05/17 20:33:01 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2011/05/17 20:30:11 | 000,021,640 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/05/27 06:22:54 | 000,012,868 | -HS- | C] () -- C:\Documents and Settings\Tonya\Local Settings\Application Data\n0368d1iqo7nlqsvcyi6cpt0vpg0j68prb6ldrhq
[2011/05/27 06:22:54 | 000,012,868 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\n0368d1iqo7nlqsvcyi6cpt0vpg0j68prb6ldrhq
[2011/05/25 17:47:46 | 000,000,228 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2011/05/25 17:37:21 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011/05/21 07:59:18 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2011/05/21 07:57:37 | 000,001,878 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2011/05/19 19:42:46 | 000,001,680 | ---- | C] () -- C:\Documents and Settings\Tonya\Desktop\Microsoft Security Essentials.lnk
[2011/05/19 19:42:05 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\Tonya\Desktop\Internet Explorer.lnk
[2011/05/18 22:54:23 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2011/05/18 22:53:18 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\Tonya\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/05/18 22:53:17 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk
[2011/05/18 22:53:17 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2011/05/18 22:48:51 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/05/18 22:41:05 | 000,000,800 | ---- | C] () -- C:\Documents and Settings\Tonya\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2011/05/18 22:32:18 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2011/05/18 19:53:02 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2011/05/18 19:39:34 | 000,001,542 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2011/05/18 19:34:03 | 000,001,604 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\QuickTime Player.lnk
[2011/05/18 19:32:14 | 000,000,284 | ---- | C] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/05/18 19:32:02 | 000,001,830 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Apple Software Update.lnk
[2011/05/18 19:12:57 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader X.lnk
[2011/05/18 19:12:56 | 000,002,315 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader X.lnk
[2011/05/18 18:01:51 | 000,000,424 | -H-- | C] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2011/05/18 17:57:06 | 000,001,945 | ---- | C] () -- C:\WINDOWS\epplauncher.mif
[2011/05/18 17:56:23 | 000,001,680 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Security Essentials.lnk
[2011/05/18 17:11:30 | 000,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta
[2011/05/18 17:11:30 | 000,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css
[2011/05/18 17:11:30 | 000,000,855 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf
[2011/05/18 17:11:30 | 000,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js
[2011/05/18 17:11:29 | 000,613,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm
[2011/05/18 17:11:29 | 000,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav
[2011/05/18 17:11:29 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav
[2011/05/18 17:11:29 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav
[2011/05/18 17:11:29 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav
[2011/05/18 17:11:29 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav
[2011/05/18 17:11:29 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav
[2011/05/18 17:11:29 | 000,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav
[2011/05/18 17:11:29 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav
[2011/05/18 17:11:29 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav
[2011/05/18 17:11:29 | 000,069,612 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm
[2011/05/18 17:11:29 | 000,029,070 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmp.inf
[2011/05/18 17:11:29 | 000,023,195 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplay.chm
[2011/05/18 17:11:28 | 000,017,272 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf
[2011/05/18 17:11:28 | 000,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif
[2011/05/18 17:11:28 | 000,006,769 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf
[2011/05/18 17:11:27 | 000,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv
[2011/05/18 17:11:27 | 000,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv
[2011/05/18 17:11:27 | 000,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv
[2011/05/18 17:11:27 | 000,077,307 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm
[2011/05/18 17:11:27 | 000,066,725 | ---- | C] () -- C:\WINDOWS\System32\dllcache\revert.wmz
[2011/05/18 17:11:27 | 000,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif
[2011/05/18 17:11:27 | 000,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip
[2011/05/18 17:11:27 | 000,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif
[2011/05/18 17:11:27 | 000,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif
[2011/05/18 17:11:27 | 000,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif
[2011/05/18 17:11:27 | 000,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif
[2011/05/18 17:11:27 | 000,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif
[2011/05/18 17:11:27 | 000,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif
[2011/05/18 17:11:27 | 000,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif
[2011/05/18 17:11:27 | 000,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif
[2011/05/18 17:11:27 | 000,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif
[2011/05/18 17:11:27 | 000,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js
[2011/05/18 17:11:27 | 000,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif
[2011/05/18 17:11:27 | 000,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif
[2011/05/18 17:11:27 | 000,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif
[2011/05/18 17:11:27 | 000,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif
[2011/05/18 17:11:27 | 000,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif
[2011/05/18 17:11:27 | 000,001,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst6.wpl
[2011/05/18 17:11:27 | 000,001,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst5.wpl
[2011/05/18 17:11:27 | 000,001,474 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst3.wpl
[2011/05/18 17:11:27 | 000,001,451 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst12.wpl
[2011/05/18 17:11:27 | 000,001,448 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst4.wpl
[2011/05/18 17:11:27 | 000,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif
[2011/05/18 17:11:27 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif
[2011/05/18 17:11:27 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif
[2011/05/18 17:11:27 | 000,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif
[2011/05/18 17:11:27 | 000,001,250 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst1.wpl
[2011/05/18 17:11:27 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm
[2011/05/18 17:11:27 | 000,001,049 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst2.wpl
[2011/05/18 17:11:27 | 000,001,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst7.wpl
[2011/05/18 17:11:27 | 000,001,036 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst8.wpl
[2011/05/18 17:11:27 | 000,000,908 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf
[2011/05/18 17:11:27 | 000,000,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst11.wpl
[2011/05/18 17:11:27 | 000,000,787 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst10.wpl
[2011/05/18 17:11:27 | 000,000,784 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst9.wpl
[2011/05/18 17:11:27 | 000,000,783 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst13.wpl
[2011/05/18 17:11:27 | 000,000,775 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst14.wpl
[2011/05/18 17:11:27 | 000,000,733 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst15.wpl
[2011/05/18 17:11:27 | 000,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip
[2011/05/18 17:11:26 | 000,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv
[2011/05/18 17:11:26 | 000,018,286 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf
[2011/05/18 17:11:26 | 000,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js
[2011/05/18 17:11:26 | 000,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif
[2011/05/18 17:11:26 | 000,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif
[2011/05/18 17:11:25 | 000,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv
[2011/05/18 17:11:25 | 000,184,959 | ---- | C] () -- C:\WINDOWS\System32\dllcache\compact.wmz
[2011/05/18 17:11:25 | 000,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css
[2011/05/18 17:11:25 | 000,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm
[2011/05/18 17:11:25 | 000,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js
[2011/05/18 17:11:25 | 000,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif
[2011/05/18 17:11:25 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif
[2011/05/18 17:11:25 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif
[2011/05/18 17:11:25 | 000,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif
[2011/05/18 17:11:25 | 000,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif
[2011/05/18 17:11:25 | 000,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif
[2011/05/18 17:06:41 | 000,498,742 | ---- | C] () -- C:\WINDOWS\System32\dllcache\dxmasf.dll
[2011/05/18 17:06:37 | 000,844,314 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdxm.ocx
[2011/05/18 17:06:37 | 000,004,126 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdxmlc.dll
[2011/05/18 06:12:58 | 000,001,580 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Defraggler.lnk
[2011/05/18 06:08:29 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
[2011/05/17 23:17:12 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2011/05/17 22:40:40 | 000,013,866 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu
[2011/05/17 22:21:54 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2011/05/17 22:21:54 | 000,007,208 | ---- | C] () -- C:\WINDOWS\System32\secupd.sig
[2011/05/17 22:21:54 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2011/05/17 21:37:29 | 000,011,289 | ---- | C] () -- C:\WINDOWS\System32\nvModes.001
[2011/05/17 21:37:27 | 000,011,289 | ---- | C] () -- C:\WINDOWS\System32\nvModes.dat
[2011/05/17 20:50:26 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\Tonya\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2011/05/17 20:50:15 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\Tonya\Start Menu\Programs\Outlook Express.lnk
[2011/05/17 20:50:08 | 000,000,815 | ---- | C] () -- C:\Documents and Settings\Tonya\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/05/17 20:50:08 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\Tonya\Start Menu\Programs\Internet Explorer.lnk
[2011/05/17 20:50:03 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Tonya\Start Menu\Programs\Remote Assistance.lnk
[2011/05/17 20:50:03 | 000,000,788 | ---- | C] () -- C:\Documents and Settings\Tonya\Start Menu\Programs\Windows Media Player.lnk
[2011/05/17 20:48:37 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2011/05/17 20:39:50 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011/05/17 20:39:05 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2011/05/17 20:38:40 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2011/05/17 20:38:32 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2011/05/17 20:38:31 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2011/05/17 20:38:28 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2011/05/17 20:38:20 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2011/05/17 20:38:15 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2011/05/17 20:37:57 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2011/05/17 20:33:13 | 000,002,577 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2011/05/17 20:33:13 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2011/05/17 20:33:13 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2011/05/17 20:33:13 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2011/05/17 20:33:13 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2011/05/17 20:33:12 | 000,025,065 | ---- | C] () -- C:\WINDOWS\System32\wmpscheme.xml
[2011/05/17 20:33:11 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2011/05/17 20:33:11 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2011/05/17 20:33:10 | 000,299,552 | ---- | C] () -- C:\WINDOWS\WMSysPrx.prx
[2011/05/17 20:31:37 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex
[2011/05/17 20:30:58 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp
[2011/05/17 20:30:58 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp
[2011/05/17 20:30:52 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf
[2011/05/17 20:30:11 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2011/05/17 20:29:18 | 000,000,829 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Messenger.lnk
[2011/05/17 20:29:17 | 000,001,846 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\MSN Explorer.lnk
[2011/05/17 20:28:50 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp
[2011/05/17 20:28:49 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Soap Bubbles.bmp
[2011/05/17 20:28:49 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Prairie Wind.bmp
[2011/05/17 20:28:49 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe Stucco.bmp
[2011/05/17 20:28:49 | 000,026,680 | ---- | C] () -- C:\WINDOWS\River Sumida.bmp
[2011/05/17 20:28:49 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Greenstone.bmp
[2011/05/17 20:28:49 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp
[2011/05/17 20:28:49 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Gone Fishing.bmp
[2011/05/17 20:28:49 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Coffee Bean.bmp
[2011/05/17 20:28:49 | 000,016,730 | ---- | C] () -- C:\WINDOWS\FeatherTexture.bmp
[2011/05/17 20:28:49 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Blue Lace 16.bmp
[2011/05/17 20:28:46 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2011/05/17 20:28:46 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2011/05/17 20:28:44 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2011/05/17 20:28:35 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2011/05/17 15:15:15 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011/05/17 15:15:13 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd
[2011/05/17 15:15:13 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf
[2011/05/17 15:15:12 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa
[2011/05/17 15:15:12 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa
[2011/05/17 15:14:55 | 000,001,688 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2011/05/17 15:14:43 | 000,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2011/05/17 15:14:43 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2011/05/17 15:14:43 | 000,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2011/05/17 15:14:43 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2011/05/17 15:14:43 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2011/05/17 15:14:43 | 000,007,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2011/05/17 15:14:02 | 000,112,584 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/05/17 15:05:41 | 000,000,211 | RHS- | C] () -- C:\boot.ini
[2011/05/17 15:05:37 | 000,000,237 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2003/07/16 15:54:55 | 000,004,594 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2003/07/16 15:54:54 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2003/07/16 15:41:25 | 000,312,172 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2003/07/16 15:41:25 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2003/07/16 15:41:23 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2003/07/16 15:41:21 | 000,040,394 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2003/07/16 15:39:07 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2003/07/16 15:33:50 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2003/07/16 15:33:39 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2003/07/16 15:27:41 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2003/07/16 15:26:37 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2003/04/17 12:35:00 | 000,651,264 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2003/04/17 12:35:00 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2003/01/07 15:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI

========== LOP Check ==========

[2011/05/18 19:39:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2011/05/28 06:56:15 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job

========== Purity Check ==========



< End of report >



Thanks for any help!
Garfluver

Edited by garfluver, 28 May 2011 - 07:01 AM.

  • 0

Advertisements


#2
garfluver

garfluver

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 103 posts
I think I posted the wrong thing earlier...hope this is what you need. ~Garfluver


OTL logfile created on: 5/28/2011 7:14:41 AM - Run 1
OTL by OldTimer - Version 3.2.23.0 Folder = C:\Documents and Settings\Tonya\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

511.23 Mb Total Physical Memory | 257.93 Mb Available Physical Memory | 50.45% Memory free
1.22 Gb Paging File | 0.98 Gb Available in Paging File | 80.65% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 70.98 Gb Total Space | 61.20 Gb Free Space | 86.22% Space Free | Partition Type: NTFS

Computer Name: TONYA-V9M5UOV14 | User Name: Tonya | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/05/28 07:12:57 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Tonya\Desktop\OTL.exe
PRC - [2010/11/11 12:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2008/04/14 05:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004/01/13 15:15:20 | 000,376,832 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\ZCfgSvc.exe


========== Modules (SafeList) ==========

MOD - [2011/05/28 07:12:57 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Tonya\Desktop\OTL.exe
MOD - [2010/08/23 11:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - File not found [Disabled | Stopped] -- -- (AppMgmt)
SRV - [2010/11/11 12:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2004/01/13 15:08:12 | 000,311,363 | ---- | M] (Intel Corporation ) [Auto | Stopped] -- C:\WINDOWS\system32\S24EvMon.exe -- (S24EventMonitor)
SRV - [2004/01/13 15:07:04 | 000,122,880 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\WINDOWS\system32\RegSrvc.exe -- (RegSrvc)


========== Driver Services (SafeList) ==========

DRV - [2011/05/17 21:11:14 | 000,014,037 | ---- | M] (Meetinghouse Data Communications) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\mdc8021x.sys -- (MDC8021X) AEGIS Protocol (IEEE 802.1x)
DRV - [2004/05/12 20:30:14 | 000,258,704 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\stac97.sys -- (STAC97) Audio Driver (WDM)
DRV - [2004/01/14 05:58:26 | 001,648,640 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\w22n51.sys -- (w22n51) Intel®
DRV - [2003/09/15 10:20:18 | 000,011,258 | ---- | M] (Intel Corporation) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\s24trans.sys -- (s24trans)
DRV - [2003/08/29 05:59:24 | 001,101,696 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\BCMSM.sys -- (BCMModem)
DRV - [2003/05/15 18:09:32 | 000,043,136 | R--- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\bcm4sbxp.sys -- (bcm4sbxp)
DRV - [2001/08/22 08:42:58 | 000,013,632 | ---- | M] (Dell Computer Corporation) [Kernel | System | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\OMCI.SYS -- (OMCI)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========


FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/05/18 22:53:11 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2011/05/18 22:54:32 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Tonya\Application Data\Mozilla\Extensions
[2011/05/21 07:58:04 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/05/21 07:58:07 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
File not found (No name found) --
[2011/05/18 19:23:12 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011/04/14 11:26:02 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
[2010/01/01 03:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\bing.xml

O1 HOSTS File: ([2003/07/16 15:29:34 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [PRONoMgr.exe] c:\Program Files\Intel\PROSetWireless\NCS\PROSet\PRONoMgr.exe (Intel® Corporation)
O4 - HKLM..\Run: [SigmaTel StacMon] C:\Program Files\SigmaTel\SigmaTel AC97 Audio Drivers\stacmon.exe (SigmaTel Inc.)
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.micros...b?1305686717643 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.micros...b?1305686407387 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.100.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\Sebring: DllName - c:\WINDOWS\System32\LgNotify.dll - C:\WINDOWS\system32\LgNotify.dll (Intel Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/05/17 20:33:13 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O35 - HKCU\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/05/28 07:12:46 | 000,580,096 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Tonya\Desktop\OTL.exe
[2011/05/27 20:02:39 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Tonya\Recent
[2011/05/25 17:55:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Hoyle®
[2011/05/25 17:55:02 | 000,000,000 | ---D | C] -- C:\Program Files\WON
[2011/05/25 17:55:02 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Sierra On-Line
[2011/05/25 17:49:55 | 000,000,000 | ---D | C] -- C:\Program Files\Games
[2011/05/24 16:24:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2011/05/21 07:59:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Application Data\skypePM
[2011/05/21 07:59:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Skype Extras
[2011/05/21 07:58:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Application Data\Skype
[2011/05/21 07:57:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2011/05/21 07:57:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Skype
[2011/05/21 07:57:32 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2011/05/21 07:57:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Skype
[2011/05/18 22:55:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Local Settings\Application Data\Identities
[2011/05/18 22:54:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Local Settings\Application Data\Mozilla
[2011/05/18 22:54:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Application Data\Mozilla
[2011/05/18 22:53:07 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2011/05/18 22:49:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Application Data\Malwarebytes
[2011/05/18 22:48:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/05/18 22:48:50 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011/05/18 22:48:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2011/05/18 22:48:43 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011/05/18 22:48:42 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/05/18 22:41:42 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Tonya\My Documents\My Videos
[2011/05/18 22:41:42 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Videos
[2011/05/18 22:39:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Local Settings\Application Data\Temp
[2011/05/18 22:38:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Silverlight
[2011/05/18 22:37:17 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2011/05/18 22:35:57 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2011/05/18 22:32:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2011/05/18 19:50:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office
[2011/05/18 19:50:16 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft ActiveSync
[2011/05/18 19:50:03 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2011/05/18 19:48:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2011/05/18 19:47:16 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2011/05/18 19:45:16 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2011/05/18 19:40:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Application Data\Apple Computer
[2011/05/18 19:39:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\iTunes
[2011/05/18 19:36:35 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011/05/18 19:36:03 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011/05/18 19:36:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2011/05/18 19:34:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\QuickTime
[2011/05/18 19:32:54 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2011/05/18 19:32:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple Computer
[2011/05/18 19:32:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Local Settings\Application Data\Apple
[2011/05/18 19:31:56 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2011/05/18 19:31:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2011/05/18 19:30:28 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2011/05/18 19:29:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2011/05/18 19:29:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple
[2011/05/18 19:29:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Local Settings\Application Data\Apple Computer
[2011/05/18 19:24:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2011/05/18 19:24:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011/05/18 19:22:56 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2011/05/18 19:22:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Application Data\Sun
[2011/05/18 19:18:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe
[2011/05/18 19:09:51 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2011/05/18 19:05:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2011/05/18 19:05:42 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2011/05/18 19:05:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2011/05/18 19:05:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Application Data\Macromedia
[2011/05/18 19:05:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Local Settings\Application Data\Adobe
[2011/05/18 19:05:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Application Data\Adobe
[2011/05/18 17:55:56 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2011/05/18 17:55:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2011/05/18 17:51:42 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Tonya\IECompatCache
[2011/05/18 17:51:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Tonya\PrivacIE
[2011/05/18 17:34:38 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Tonya\IETldCache
[2011/05/18 17:31:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2011/05/18 17:30:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2011/05/18 17:28:56 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2011/05/18 17:19:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2011/05/18 17:11:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us
[2011/05/18 17:11:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting
[2011/05/18 17:10:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2011/05/18 17:10:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en
[2011/05/18 17:04:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2011/05/18 06:12:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Defraggler
[2011/05/18 06:12:58 | 000,000,000 | ---D | C] -- C:\Program Files\Defraggler
[2011/05/18 06:08:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\CCleaner
[2011/05/18 06:08:28 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011/05/18 06:07:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\My Documents\Downloads
[2011/05/18 06:03:56 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Tonya\Start Menu\Programs\Administrative Tools
[2011/05/17 23:57:58 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2011/05/17 23:16:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\peernet
[2011/05/17 23:16:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\provisioning
[2011/05/17 23:13:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2011/05/17 23:05:35 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2011/05/17 23:05:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\EHome
[2011/05/17 21:48:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2011/05/17 21:48:37 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2011/05/17 21:47:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2011/05/17 21:45:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2011/05/17 21:40:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2011/05/17 21:39:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Tonya\UserData
[2011/05/17 21:27:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview
[2011/05/17 21:25:24 | 000,000,000 | ---D | C] -- C:\Program Files\SigmaTel
[2011/05/17 21:23:48 | 000,000,000 | ---D | C] -- C:\WUTemp
[2011/05/17 21:13:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2011/05/17 21:12:09 | 000,000,000 | ---D | C] -- C:\Program Files\Broadcom
[2011/05/17 21:11:29 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Tonya\WLANProfiles
[2011/05/17 21:11:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Intel Network Adapters
[2011/05/17 21:11:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2011/05/17 21:10:44 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2011/05/17 21:08:35 | 000,446,464 | R--- | C] (Blue Sky Software Corporation.) -- C:\WINDOWS\System32\hhactivex.dll
[2011/05/17 21:08:34 | 000,328,480 | ---- | C] (Sheridan Software Systems, Inc.) -- C:\WINDOWS\System32\ssa3d30.ocx
[2011/05/17 21:08:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Dell Accessories
[2011/05/17 21:08:31 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2011/05/17 21:08:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2011/05/17 20:57:31 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2011/05/17 20:50:20 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2011/05/17 20:50:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Application Data\Identities
[2011/05/17 20:50:08 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2011/05/17 20:50:06 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Tonya\My Documents\My Pictures
[2011/05/17 20:50:06 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Tonya\My Documents\My Music
[2011/05/17 20:50:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Local Settings\Application Data\Microsoft
[2011/05/17 20:50:02 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Tonya\Application Data\Microsoft
[2011/05/17 20:50:02 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Tonya\SendTo
[2011/05/17 20:50:02 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Tonya\Application Data
[2011/05/17 20:50:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Tonya\Start Menu\Programs\Startup
[2011/05/17 20:50:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Tonya\Start Menu
[2011/05/17 20:50:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Tonya\My Documents
[2011/05/17 20:50:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Tonya\Favorites
[2011/05/17 20:50:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Tonya\Start Menu\Programs\Accessories
[2011/05/17 20:50:02 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Tonya\Cookies
[2011/05/17 20:50:02 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Tonya\Templates
[2011/05/17 20:50:02 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Tonya\PrintHood
[2011/05/17 20:50:02 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Tonya\NetHood
[2011/05/17 20:50:02 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Tonya\Local Settings
[2011/05/17 20:50:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonya\Desktop
[2011/05/17 20:48:59 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2011/05/17 20:48:57 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2011/05/17 20:48:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2011/05/17 20:48:56 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2011/05/17 20:48:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2011/05/17 20:39:13 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2011/05/17 20:39:13 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2011/05/17 20:37:53 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2011/05/17 20:37:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2011/05/17 20:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\xerox
[2011/05/17 20:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2011/05/17 20:37:27 | 000,000,000 | ---D | C] -- C:\DELL
[2011/05/17 20:32:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2011/05/17 20:32:04 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2011/05/17 20:32:04 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2011/05/17 20:31:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2011/05/17 20:30:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2011/05/17 20:30:44 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2011/05/17 20:30:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2011/05/17 20:30:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2011/05/17 20:30:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2011/05/17 20:30:33 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2011/05/17 20:30:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2011/05/17 20:30:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\PCHealth
[2011/05/17 20:30:24 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2011/05/17 20:30:23 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2011/05/17 20:30:19 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2011/05/17 20:30:15 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2011/05/17 20:30:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Pictures
[2011/05/17 20:30:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music
[2011/05/17 20:29:57 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2011/05/17 20:29:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools
[2011/05/17 20:29:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2011/05/17 20:29:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Games
[2011/05/17 20:29:17 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2011/05/17 20:29:17 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services
[2011/05/17 20:29:16 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2011/05/17 20:29:10 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
[2011/05/17 20:29:04 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2011/05/17 20:28:28 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2011/05/17 20:28:28 | 000,000,000 | ---D | C] -- C:\Program Files\MSN
[2011/05/17 20:28:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2011/05/17 20:28:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2011/05/17 20:19:19 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Accessories
[2011/05/17 15:15:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2011/05/17 15:15:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2011/05/17 15:15:11 | 000,000,000 | R--D | C] -- C:\Program Files
[2011/05/17 15:15:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2011/05/17 15:15:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2011/05/17 15:14:44 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup
[2011/05/17 15:14:44 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu
[2011/05/17 15:14:44 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents
[2011/05/17 15:14:44 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Templates
[2011/05/17 15:14:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Favorites
[2011/05/17 15:14:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Desktop
[2011/05/17 15:14:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2011/05/17 15:14:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2011/05/17 15:14:27 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2011/05/17 15:14:27 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data
[2011/05/17 15:14:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2011/05/17 15:01:54 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2011/05/17 15:01:54 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2011/05/17 15:01:54 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2011/05/17 15:01:54 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2011/05/17 15:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/05/28 07:12:57 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Tonya\Desktop\OTL.exe
[2011/05/28 06:56:15 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2011/05/28 06:50:45 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/05/28 06:48:08 | 000,011,289 | ---- | M] () -- C:\WINDOWS\System32\nvModes.001
[2011/05/27 19:23:03 | 000,001,580 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Defraggler.lnk
[2011/05/27 18:03:28 | 000,017,112 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2011/05/27 17:21:42 | 000,012,868 | -HS- | M] () -- C:\Documents and Settings\All Users\Application Data\n0368d1iqo7nlqsvcyi6cpt0vpg0j68prb6ldrhq
[2011/05/27 17:21:41 | 000,012,868 | -HS- | M] () -- C:\Documents and Settings\Tonya\Local Settings\Application Data\n0368d1iqo7nlqsvcyi6cpt0vpg0j68prb6ldrhq
[2011/05/25 17:55:02 | 000,000,228 | ---- | M] () -- C:\WINDOWS\SIERRA.INI
[2011/05/25 17:37:21 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011/05/21 07:59:18 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat
[2011/05/21 07:57:37 | 000,001,878 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2011/05/19 19:42:46 | 000,001,680 | ---- | M] () -- C:\Documents and Settings\Tonya\Desktop\Microsoft Security Essentials.lnk
[2011/05/19 19:42:05 | 000,000,803 | ---- | M] () -- C:\Documents and Settings\Tonya\Desktop\Internet Explorer.lnk
[2011/05/18 22:54:23 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat
[2011/05/18 22:53:18 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\Tonya\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/05/18 22:53:18 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2011/05/18 22:48:51 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/05/18 22:41:05 | 000,000,800 | ---- | M] () -- C:\Documents and Settings\Tonya\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2011/05/18 22:40:29 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/05/18 22:36:32 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2011/05/18 22:36:32 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2011/05/18 22:32:18 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2011/05/18 21:57:05 | 000,312,172 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/05/18 21:57:05 | 000,040,394 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/05/18 21:54:22 | 000,112,584 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/05/18 19:53:02 | 000,000,376 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[2011/05/18 19:39:34 | 000,001,542 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2011/05/18 19:34:03 | 000,001,604 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\QuickTime Player.lnk
[2011/05/18 19:32:14 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/05/18 19:12:58 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader X.lnk
[2011/05/18 17:57:06 | 000,001,945 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2011/05/18 17:34:52 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\Tonya\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/05/18 17:21:28 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2011/05/18 17:03:36 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2011/05/18 06:08:29 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
[2011/05/17 23:17:27 | 000,000,211 | RHS- | M] () -- C:\boot.ini
[2011/05/17 23:09:51 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2011/05/17 23:00:17 | 000,011,289 | ---- | M] () -- C:\WINDOWS\System32\nvModes.dat
[2011/05/17 20:50:26 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\Tonya\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2011/05/17 20:50:16 | 000,025,065 | ---- | M] () -- C:\WINDOWS\System32\wmpscheme.xml
[2011/05/17 20:48:37 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2011/05/17 20:39:54 | 000,000,237 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2011/05/17 20:33:13 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011/05/17 20:33:13 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2011/05/17 20:33:13 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2011/05/17 20:33:13 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2011/05/17 20:33:13 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2011/05/17 20:33:10 | 000,299,552 | ---- | M] () -- C:\WINDOWS\WMSysPrx.prx
[2011/05/17 20:33:01 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2011/05/17 20:30:11 | 000,021,640 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/05/27 06:22:54 | 000,012,868 | -HS- | C] () -- C:\Documents and Settings\Tonya\Local Settings\Application Data\n0368d1iqo7nlqsvcyi6cpt0vpg0j68prb6ldrhq
[2011/05/27 06:22:54 | 000,012,868 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\n0368d1iqo7nlqsvcyi6cpt0vpg0j68prb6ldrhq
[2011/05/25 17:47:46 | 000,000,228 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2011/05/25 17:37:21 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011/05/21 07:59:18 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2011/05/21 07:57:37 | 000,001,878 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2011/05/19 19:42:46 | 000,001,680 | ---- | C] () -- C:\Documents and Settings\Tonya\Desktop\Microsoft Security Essentials.lnk
[2011/05/19 19:42:05 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\Tonya\Desktop\Internet Explorer.lnk
[2011/05/18 22:54:23 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2011/05/18 22:53:18 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\Tonya\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/05/18 22:53:17 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk
[2011/05/18 22:53:17 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2011/05/18 22:48:51 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/05/18 22:41:05 | 000,000,800 | ---- | C] () -- C:\Documents and Settings\Tonya\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2011/05/18 22:32:18 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2011/05/18 19:53:02 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2011/05/18 19:39:34 | 000,001,542 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2011/05/18 19:34:03 | 000,001,604 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\QuickTime Player.lnk
[2011/05/18 19:32:14 | 000,000,284 | ---- | C] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/05/18 19:32:02 | 000,001,830 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Apple Software Update.lnk
[2011/05/18 19:12:57 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader X.lnk
[2011/05/18 19:12:56 | 000,002,315 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader X.lnk
[2011/05/18 18:01:51 | 000,000,424 | -H-- | C] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2011/05/18 17:57:06 | 000,001,945 | ---- | C] () -- C:\WINDOWS\epplauncher.mif
[2011/05/18 17:56:23 | 000,001,680 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Security Essentials.lnk
[2011/05/18 17:11:30 | 000,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta
[2011/05/18 17:11:30 | 000,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css
[2011/05/18 17:11:30 | 000,000,855 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf
[2011/05/18 17:11:30 | 000,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js
[2011/05/18 17:11:29 | 000,613,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm
[2011/05/18 17:11:29 | 000,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav
[2011/05/18 17:11:29 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav
[2011/05/18 17:11:29 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav
[2011/05/18 17:11:29 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav
[2011/05/18 17:11:29 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav
[2011/05/18 17:11:29 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav
[2011/05/18 17:11:29 | 000,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav
[2011/05/18 17:11:29 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav
[2011/05/18 17:11:29 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav
[2011/05/18 17:11:29 | 000,069,612 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm
[2011/05/18 17:11:29 | 000,029,070 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmp.inf
[2011/05/18 17:11:29 | 000,023,195 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplay.chm
[2011/05/18 17:11:28 | 000,017,272 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf
[2011/05/18 17:11:28 | 000,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif
[2011/05/18 17:11:28 | 000,006,769 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf
[2011/05/18 17:11:27 | 000,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv
[2011/05/18 17:11:27 | 000,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv
[2011/05/18 17:11:27 | 000,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv
[2011/05/18 17:11:27 | 000,077,307 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm
[2011/05/18 17:11:27 | 000,066,725 | ---- | C] () -- C:\WINDOWS\System32\dllcache\revert.wmz
[2011/05/18 17:11:27 | 000,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif
[2011/05/18 17:11:27 | 000,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip
[2011/05/18 17:11:27 | 000,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif
[2011/05/18 17:11:27 | 000,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif
[2011/05/18 17:11:27 | 000,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif
[2011/05/18 17:11:27 | 000,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif
[2011/05/18 17:11:27 | 000,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif
[2011/05/18 17:11:27 | 000,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif
[2011/05/18 17:11:27 | 000,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif
[2011/05/18 17:11:27 | 000,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif
[2011/05/18 17:11:27 | 000,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif
[2011/05/18 17:11:27 | 000,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js
[2011/05/18 17:11:27 | 000,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif
[2011/05/18 17:11:27 | 000,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif
[2011/05/18 17:11:27 | 000,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif
[2011/05/18 17:11:27 | 000,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif
[2011/05/18 17:11:27 | 000,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif
[2011/05/18 17:11:27 | 000,001,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst6.wpl
[2011/05/18 17:11:27 | 000,001,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst5.wpl
[2011/05/18 17:11:27 | 000,001,474 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst3.wpl
[2011/05/18 17:11:27 | 000,001,451 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst12.wpl
[2011/05/18 17:11:27 | 000,001,448 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst4.wpl
[2011/05/18 17:11:27 | 000,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif
[2011/05/18 17:11:27 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif
[2011/05/18 17:11:27 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif
[2011/05/18 17:11:27 | 000,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif
[2011/05/18 17:11:27 | 000,001,250 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst1.wpl
[2011/05/18 17:11:27 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm
[2011/05/18 17:11:27 | 000,001,049 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst2.wpl
[2011/05/18 17:11:27 | 000,001,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst7.wpl
[2011/05/18 17:11:27 | 000,001,036 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst8.wpl
[2011/05/18 17:11:27 | 000,000,908 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf
[2011/05/18 17:11:27 | 000,000,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst11.wpl
[2011/05/18 17:11:27 | 000,000,787 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst10.wpl
[2011/05/18 17:11:27 | 000,000,784 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst9.wpl
[2011/05/18 17:11:27 | 000,000,783 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst13.wpl
[2011/05/18 17:11:27 | 000,000,775 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst14.wpl
[2011/05/18 17:11:27 | 000,000,733 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst15.wpl
[2011/05/18 17:11:27 | 000,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip
[2011/05/18 17:11:26 | 000,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv
[2011/05/18 17:11:26 | 000,018,286 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf
[2011/05/18 17:11:26 | 000,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js
[2011/05/18 17:11:26 | 000,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif
[2011/05/18 17:11:26 | 000,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif
[2011/05/18 17:11:25 | 000,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv
[2011/05/18 17:11:25 | 000,184,959 | ---- | C] () -- C:\WINDOWS\System32\dllcache\compact.wmz
[2011/05/18 17:11:25 | 000,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css
[2011/05/18 17:11:25 | 000,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm
[2011/05/18 17:11:25 | 000,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js
[2011/05/18 17:11:25 | 000,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif
[2011/05/18 17:11:25 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif
[2011/05/18 17:11:25 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif
[2011/05/18 17:11:25 | 000,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif
[2011/05/18 17:11:25 | 000,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif
[2011/05/18 17:11:25 | 000,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif
[2011/05/18 17:06:41 | 000,498,742 | ---- | C] () -- C:\WINDOWS\System32\dllcache\dxmasf.dll
[2011/05/18 17:06:37 | 000,844,314 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdxm.ocx
[2011/05/18 17:06:37 | 000,004,126 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdxmlc.dll
[2011/05/18 06:12:58 | 000,001,580 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Defraggler.lnk
[2011/05/18 06:08:29 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
[2011/05/17 23:17:12 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2011/05/17 22:40:40 | 000,013,866 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu
[2011/05/17 22:21:54 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2011/05/17 22:21:54 | 000,007,208 | ---- | C] () -- C:\WINDOWS\System32\secupd.sig
[2011/05/17 22:21:54 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2011/05/17 21:37:29 | 000,011,289 | ---- | C] () -- C:\WINDOWS\System32\nvModes.001
[2011/05/17 21:37:27 | 000,011,289 | ---- | C] () -- C:\WINDOWS\System32\nvModes.dat
[2011/05/17 20:50:26 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\Tonya\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2011/05/17 20:50:15 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\Tonya\Start Menu\Programs\Outlook Express.lnk
[2011/05/17 20:50:08 | 000,000,815 | ---- | C] () -- C:\Documents and Settings\Tonya\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/05/17 20:50:08 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\Tonya\Start Menu\Programs\Internet Explorer.lnk
[2011/05/17 20:50:03 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Tonya\Start Menu\Programs\Remote Assistance.lnk
[2011/05/17 20:50:03 | 000,000,788 | ---- | C] () -- C:\Documents and Settings\Tonya\Start Menu\Programs\Windows Media Player.lnk
[2011/05/17 20:48:37 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2011/05/17 20:39:50 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011/05/17 20:39:05 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2011/05/17 20:38:40 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2011/05/17 20:38:32 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2011/05/17 20:38:31 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2011/05/17 20:38:28 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2011/05/17 20:38:20 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2011/05/17 20:38:15 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2011/05/17 20:37:57 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2011/05/17 20:33:13 | 000,002,577 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2011/05/17 20:33:13 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2011/05/17 20:33:13 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2011/05/17 20:33:13 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2011/05/17 20:33:13 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2011/05/17 20:33:12 | 000,025,065 | ---- | C] () -- C:\WINDOWS\System32\wmpscheme.xml
[2011/05/17 20:33:11 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2011/05/17 20:33:11 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2011/05/17 20:33:10 | 000,299,552 | ---- | C] () -- C:\WINDOWS\WMSysPrx.prx
[2011/05/17 20:31:37 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex
[2011/05/17 20:30:58 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp
[2011/05/17 20:30:58 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp
[2011/05/17 20:30:52 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf
[2011/05/17 20:30:11 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2011/05/17 20:29:18 | 000,000,829 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Messenger.lnk
[2011/05/17 20:29:17 | 000,001,846 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\MSN Explorer.lnk
[2011/05/17 20:28:50 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp
[2011/05/17 20:28:49 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Soap Bubbles.bmp
[2011/05/17 20:28:49 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Prairie Wind.bmp
[2011/05/17 20:28:49 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe Stucco.bmp
[2011/05/17 20:28:49 | 000,026,680 | ---- | C] () -- C:\WINDOWS\River Sumida.bmp
[2011/05/17 20:28:49 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Greenstone.bmp
[2011/05/17 20:28:49 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp
[2011/05/17 20:28:49 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Gone Fishing.bmp
[2011/05/17 20:28:49 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Coffee Bean.bmp
[2011/05/17 20:28:49 | 000,016,730 | ---- | C] () -- C:\WINDOWS\FeatherTexture.bmp
[2011/05/17 20:28:49 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Blue Lace 16.bmp
[2011/05/17 20:28:46 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2011/05/17 20:28:46 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2011/05/17 20:28:44 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2011/05/17 20:28:35 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2011/05/17 15:15:15 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011/05/17 15:15:13 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd
[2011/05/17 15:15:13 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf
[2011/05/17 15:15:12 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa
[2011/05/17 15:15:12 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa
[2011/05/17 15:14:55 | 000,001,688 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2011/05/17 15:14:43 | 000,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2011/05/17 15:14:43 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2011/05/17 15:14:43 | 000,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2011/05/17 15:14:43 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2011/05/17 15:14:43 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2011/05/17 15:14:43 | 000,007,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2011/05/17 15:14:02 | 000,112,584 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/05/17 15:05:41 | 000,000,211 | RHS- | C] () -- C:\boot.ini
[2011/05/17 15:05:37 | 000,000,237 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2003/07/16 15:54:55 | 000,004,594 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2003/07/16 15:54:54 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2003/07/16 15:41:25 | 000,312,172 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2003/07/16 15:41:25 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2003/07/16 15:41:23 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2003/07/16 15:41:21 | 000,040,394 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2003/07/16 15:39:07 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2003/07/16 15:33:50 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2003/07/16 15:33:39 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2003/07/16 15:27:41 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2003/07/16 15:26:37 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2003/04/17 12:35:00 | 000,651,264 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2003/04/17 12:35:00 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2003/01/07 15:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI

========== LOP Check ==========

[2011/05/18 19:39:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2011/05/28 06:56:15 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job

========== Purity Check ==========



< End of report >
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP