Thank you for the response. Here are the scans which you have asked for.
aswMBR.txt log:
aswMBR version 0.9.5.256 Copyright© 2011 AVAST Software
Run date: 2011-06-04 21:58:58
-----------------------------
21:58:58.437 OS Version: Windows 5.1.2600 Service Pack 2
21:58:58.437 Number of processors: 1 586 0x801
21:58:58.437 ComputerName: JADEZAZALEE UserName:
21:58:59.781 Initialize success
21:59:13.593 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
21:59:13.593 Disk 0 Vendor: Maxtor_4R120L0 RAMB1TU0 Size: 117246MB BusType: 3
21:59:15.640 Disk 0 MBR read successfully
21:59:15.640 Disk 0 MBR scan
21:59:15.640 Disk 0 Windows XP default MBR code
21:59:17.640 Disk 0 scanning sectors +240091425
21:59:17.671 Disk 0 scanning C:\WINDOWS\system32\drivers
21:59:26.750 Service scanning
21:59:28.000 Disk 0 trace - called modules:
21:59:28.015 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys viaide.sys PCIIDEX.SYS
21:59:28.015 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8a6c4ab8]
21:59:28.015 3 CLASSPNP.SYS[f763805b] -> nt!IofCallDriver -> \Device\0000005d[0x8a6251a0]
21:59:28.015 5 ACPI.sys[f75ae620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x8a6c5d98]
21:59:28.015 Scan finished successfully
OTL.txt logOTL logfile created on: 6/4/2011 10:02:38 PM - Run 1
OTL by OldTimer - Version 3.2.23.0 Folder = C:\Documents and Settings\Justin White\My Documents\Downloads
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.00 Gb Total Physical Memory | 1.56 Gb Available Physical Memory | 77.87% Memory free
1.85 Gb Paging File | 1.62 Gb Available in Paging File | 87.58% Paging File free
Paging file location(s): [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 114.48 Gb Total Space | 53.15 Gb Free Space | 46.42% Space Free | Partition Type: NTFS
Drive F: | 671.44 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: JADEZAZALEE | User Name: Justin White | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ========== PRC - [2011/06/04 22:01:11 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Justin White\My Documents\Downloads\OTL.exe
PRC - [2010/01/18 15:00:49 | 000,019,968 | ---- | M] () -- C:\WINDOWS\system32\smss32.exe
PRC - [2010/01/15 08:49:20 | 000,255,536 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
PRC - [2010/01/10 23:57:02 | 000,908,248 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2008/11/09 16:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
PRC - [2007/06/13 06:23:07 | 001,033,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
========== Modules (SafeList) ========== MOD - [2011/06/04 22:01:11 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Justin White\My Documents\Downloads\OTL.exe
MOD - [2007/03/08 11:36:28 | 000,169,472 | ---- | M] () -- C:\WINDOWS\ifibifuyiwog.dll
MOD - [2006/08/25 11:45:55 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
========== Win32 Services (SafeList) ========== SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2010/01/15 08:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService)
SRV - [2008/11/09 16:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
SRV - [2008/02/01 18:32:49 | 001,251,720 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe -- (Symantec Core LC)
SRV - [2006/11/03 19:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV - [2005/07/13 21:18:10 | 000,065,536 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\VentSrv\ventrilo_svc.exe -- (Ventrilo)
SRV - [2004/08/11 00:46:56 | 000,483,328 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- c:\Program Files\Windows Media Connect\mswmccds.exe -- (WmcCds) Windows Media Connect (WMC)
SRV - [2004/08/10 21:50:42 | 000,028,160 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Media Connect\mswmcls.exe -- (WmcCdsLs) Windows Media Connect (WMC)
========== Driver Services (SafeList) ========== DRV - [2008/10/15 04:00:00 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2008/02/26 01:51:43 | 002,863,616 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2005/12/02 19:03:33 | 000,097,792 | ---- | M] (Protect Software GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ACEDRV05.sys -- (ACEDRV05)
DRV - [2005/11/22 20:18:22 | 000,010,344 | ---- | M] (Symantec Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\symlcbrd.sys -- (symlcbrd)
DRV - [2005/07/01 17:48:42 | 000,043,008 | ---- | M] (D-Link ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dlkfet5b.sys -- (FETNDISB)
DRV - [2004/08/03 19:08:22 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2004/05/18 02:25:00 | 000,016,880 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctpdusb.sys -- (Jukebox3)
DRV - [2004/05/04 21:25:00 | 000,239,488 | R--- | M] (Ralink Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\rt2500usb.sys -- (WUSB54GPV4SRV)
DRV - [2004/03/10 04:18:13 | 000,031,744 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Documents and Settings\Justin White\Local Settings\Temp\jatmlano.sys -- (jatmlano)
DRV - [2003/09/25 22:15:32 | 000,015,872 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\GTNDIS5.sys -- (GTNDIS5)
DRV - [2003/07/02 04:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys -- (viaagp1)
DRV - [2001/08/17 10:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://red.clientapp...//www.yahoo.comIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomSearch =
http://red.clientapp.../search/ie.html IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
http://red.clientapp...//www.yahoo.comIE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://www.aol.com/?src=aimIE - HKCU\..\URLSearchHook: {54EB34EA-E6BE-4CFD-9F4F-C4A0C2EAFA22} - C:\Program Files\AIM Search\AOLSearch.dll (America Online, Inc.)
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1;*.local
========== FireFox ========== FF - prefs.js..browser.search.param.yahoo-fr: "chrf-ytbm"
FF - prefs.js..browser.search.param.yahoo-fr-cjkt: "chrf-ytbm"
FF - prefs.js..browser.search.param.yahoo-type: "${8}"
FF - prefs.js..browser.startup.homepage: "
http://www.aol.com/?src=aim"FF - prefs.js..extensions.enabledItems: {EF3548C2-8CB5-4495-9557-65BFDC7E8FEC}:1.9.1
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.1.20091029021655
FF - HKLM\software\mozilla\Firefox\Extensions\\{EF3548C2-8CB5-4495-9557-65BFDC7E8FEC}: C:\Documents and Settings\Justin White\Local Settings\Application Data\{EF3548C2-8CB5-4495-9557-65BFDC7E8FEC} [2010/01/18 15:04:45 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/01/10 23:57:09 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/01/10 23:57:09 | 000,000,000 | ---D | M]
[2009/09/29 18:32:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Justin White\Application Data\Mozilla\Extensions
[2011/06/04 14:24:15 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Justin White\Application Data\Mozilla\Firefox\Profiles\kt55a2yk.default\extensions
[2009/09/29 18:33:21 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Justin White\Application Data\Mozilla\Firefox\Profiles\kt55a2yk.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/01/05 19:17:57 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Justin White\Application Data\Mozilla\Firefox\Profiles\kt55a2yk.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2009/09/29 18:32:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/01/18 15:04:45 | 000,000,000 | ---D | M] (XULRunner) -- C:\DOCUMENTS AND SETTINGS\JUSTIN WHITE\LOCAL SETTINGS\APPLICATION DATA\{EF3548C2-8CB5-4495-9557-65BFDC7E8FEC}
O1 HOSTS File: ([2004/08/04 08:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AOLSearchHook Class) - {54EB34EA-E6BE-4CFD-9F4F-C4A0C2EAFA22} - C:\Program Files\AIM Search\AOLSearch.dll (America Online, Inc.)
O2 - BHO: (no name) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - No CLSID value found.
O2 - BHO: (no name) - {65D886A2-7CA7-479B-BB95-14D1EFB7946A} - No CLSID value found.
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {C4069E3A-68F1-403E-B40E-20066696354B} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found.
O4 - HKLM..\Run: [Rtidatepinu] C:\WINDOWS\ifibifuyiwog.dll ()
O4 - HKLM..\Run: [smss32.exe] C:\WINDOWS\system32\smss32.exe ()
O4 - HKCU..\Run: [AntiMalware] File not found
O4 - HKCU..\Run: [richtx64.exe] File not found
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe (McAfee, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetActiveDesktop = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll (Google Inc.)
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\npjpi160_03.dll (Sun Microsystems, Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\System32\helper32.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\WINDOWS\System32\helper32.dll ()
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\PLUGINS\NPDocBox.dll (InterTrust Technologies Corporation, Inc.)
O15 - HKCU\..Trusted Domains: aol.com ([free] http in Trusted sites)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700}
http://go.microsoft....k/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {25FD7375-AB50-4EE1-8D4E-F76ECAC680B2}
http://www.playfirst...4C.1.0.0.50.cab (CPlayFirstC4CControl Object)
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616}
http://download.divx...owserPlugin.cab (DivXBrowserPlugin Object)
O16 - DPF: {6A344D34-5231-452A-8A57-D064AC9B7862}
https://webdl.symant...ex/symdlmgr.cab (Symantec Download Manager)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3}
http://update.micros...b?1134232234081 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_03)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
http://fpdownload.ma...t/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592}
http://cdn2.zone.msn...ro.cab56649.cab (MSN Games - Installer)
O16 - DPF: {BAE1D8DF-0B35-47E3-A1E7-EEB3FF2ECD19}
http://www.playfirst...tg.1.0.0.32.cab (CPlayFirstddfotgControl Object)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_03)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000}
http://download.macr...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6}
http://www.playfirst...sh.1.0.0.93.cab (CPlayFirstDinerDashControl Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\winlogon32.exe) - C:\WINDOWS\system32\winlogon32.exe ()
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop WallPaper:
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Justin White\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2005/05/24 19:28:59 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2003/10/14 11:06:53 | 000,061,440 | R--- | M] () - F:\autoplay.exe -- [ CDFS ]
O32 - AutoRun File - [2002/06/11 12:13:52 | 000,000,047 | R--- | M] () - F:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{55a36baa-8358-11dc-961c-000b6ab292fb}\Shell\AutoRun\command - "" = F:\InstallTomTomHOME.exe
O33 - MountPoints2\{9f41ff9e-a2e1-11de-a0c8-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{9f41ff9e-a2e1-11de-a0c8-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9f41ff9e-a2e1-11de-a0c8-806d6172696f}\Shell\AutoRun\command - "" = F:\autoplay.exe -- [2003/10/14 11:06:53 | 000,061,440 | R--- | M] ()
O33 - MountPoints2\{d05aea6a-bf0f-11db-94d0-000b6ab292fb}\Shell - "" = AutoRun
O33 - MountPoints2\{d05aea6a-bf0f-11db-94d0-000b6ab292fb}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{d05aea6a-bf0f-11db-94d0-000b6ab292fb}\Shell\AutoRun\command - "" = D:\LaunchU3.exe -a
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\autoplay.exe -- [2003/10/14 11:06:53 | 000,061,440 | R--- | M] ()
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (54619756233228288)
========== Files/Folders - Created Within 30 Days ========== [2011/06/04 15:23:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Justin White\Desktop\SmitfraudFix
[2011/06/04 15:07:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Reimage Repair
[2011/06/04 15:07:25 | 000,000,000 | ---D | C] -- C:\rei
[2011/06/04 15:07:19 | 000,000,000 | ---D | C] -- C:\Program Files\Reimage
[2011/06/04 15:06:20 | 000,261,368 | ---- | C] (Reimage®) -- C:\Documents and Settings\Justin White\Desktop\ReimageRepair.exe
[2011/06/04 15:02:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Justin White\Desktop\lspfix
[2011/06/04 14:59:00 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2011/06/04 14:59:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Justin White\Start Menu\Programs\HiJackThis
[2011/06/04 04:52:44 | 000,000,000 | ---D | C] -- C:\86d255cac6e7c223774ccd90843b1d
[2011/06/04 04:50:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\McAfee Security Scan Plus
[2011/06/04 04:32:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Temp
[2009/10/25 06:15:08 | 002,521,682 | ---- | C] (Emiel Bruijntjes) -- C:\Program Files\DominateGame.exe
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files - Modified Within 30 Days ========== [2011/06/04 22:00:00 | 000,000,512 | ---- | M] () -- C:\Documents and Settings\Justin White\My Documents\MBR.dat
[2011/06/04 21:48:34 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\5436.exe
[2011/06/04 21:28:34 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\4827.exe
[2011/06/04 21:27:00 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/06/04 21:08:34 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\11942.exe
[2011/06/04 20:48:34 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\2995.exe
[2011/06/04 20:28:33 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\491.exe
[2011/06/04 20:08:33 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\9961.exe
[2011/06/04 19:48:33 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\16827.exe
[2011/06/04 19:28:33 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\23281.exe
[2011/06/04 19:08:33 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\28145.exe
[2011/06/04 18:48:32 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\5705.exe
[2011/06/04 18:28:32 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\24464.exe
[2011/06/04 18:08:32 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\26962.exe
[2011/06/04 17:48:32 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\29358.exe
[2011/06/04 17:28:31 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\11478.exe
[2011/06/04 17:08:31 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\15724.exe
[2011/06/04 16:48:31 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\19169.exe
[2011/06/04 16:28:31 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\26500.exe
[2011/06/04 16:08:31 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\6334.exe
[2011/06/04 15:48:30 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\18467.exe
[2011/06/04 15:40:11 | 000,002,461 | ---- | M] () -- C:\Documents and Settings\Justin White\Desktop\HiJackThis.lnk
[2011/06/04 15:28:30 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\41.exe
[2011/06/04 15:28:29 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\IS15.exe
[2011/06/04 15:28:24 | 000,002,931 | ---- | M] () -- C:\WINDOWS\System32\warning.html
[2011/06/04 15:27:58 | 000,001,374 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/06/04 15:27:44 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/06/04 15:27:34 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/06/04 15:27:29 | 2147,012,608 | -HS- | M] () -- C:\hiberfil.sys
[2011/06/04 15:26:35 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2011/06/04 15:19:55 | 001,885,088 | ---- | M] () -- C:\Documents and Settings\Justin White\Desktop\SmitfraudFix_v2.423.exe
[2011/06/04 15:08:44 | 000,000,286 | ---- | M] () -- C:\WINDOWS\reimage.ini
[2011/06/04 15:08:26 | 000,000,288 | ---- | M] () -- C:\WINDOWS\tasks\Reimage Reminder.job
[2011/06/04 15:07:26 | 000,001,749 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\PC Scan & Repair by Reimage.lnk
[2011/06/04 15:06:35 | 000,261,368 | ---- | M] (Reimage®) -- C:\Documents and Settings\Justin White\Desktop\ReimageRepair.exe
[2011/06/04 15:02:04 | 000,201,030 | ---- | M] () -- C:\Documents and Settings\Justin White\Desktop\lspfix.zip
[2011/06/04 14:58:38 | 001,402,880 | ---- | M] () -- C:\Documents and Settings\Justin White\Desktop\HijackThis.msi
[2011/06/04 14:47:08 | 000,000,552 | ---- | M] () -- C:\WINDOWS\System32\d3d8caps.dat
[2011/06/04 05:00:40 | 000,441,124 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/06/04 05:00:40 | 000,071,060 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/06/04 04:55:24 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
[2011/06/04 04:50:00 | 000,001,619 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\McAfee Security Scan Plus.lnk
[2011/06/04 04:50:00 | 000,001,611 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2011/06/04 04:09:02 | 000,000,463 | ---- | M] () -- C:\WINDOWS\SIERRA.INI
[2011/06/04 04:06:54 | 000,002,137 | ---- | M] () -- C:\Documents and Settings\Justin White\Desktop\iTunes.lnk
[2011/06/04 04:04:32 | 000,000,184 | ---- | M] () -- C:\WINDOWS\War3Unin.bat
[2011/06/04 03:52:32 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Rribikehe.bin
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files Created - No Company Name ========== [2011/06/04 22:00:00 | 000,000,512 | ---- | C] () -- C:\Documents and Settings\Justin White\My Documents\MBR.dat
[2011/06/04 15:27:29 | 2147,012,608 | -HS- | C] () -- C:\hiberfil.sys
[2011/06/04 15:19:45 | 001,885,088 | ---- | C] () -- C:\Documents and Settings\Justin White\Desktop\SmitfraudFix_v2.423.exe
[2011/06/04 15:08:25 | 000,000,288 | ---- | C] () -- C:\WINDOWS\tasks\Reimage Reminder.job
[2011/06/04 15:08:22 | 000,000,286 | ---- | C] () -- C:\WINDOWS\reimage.ini
[2011/06/04 15:07:26 | 000,001,749 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\PC Scan & Repair by Reimage.lnk
[2011/06/04 15:02:03 | 000,201,030 | ---- | C] () -- C:\Documents and Settings\Justin White\Desktop\lspfix.zip
[2011/06/04 14:59:00 | 000,002,461 | ---- | C] () -- C:\Documents and Settings\Justin White\Desktop\HiJackThis.lnk
[2011/06/04 14:58:33 | 001,402,880 | ---- | C] () -- C:\Documents and Settings\Justin White\Desktop\HijackThis.msi
[2011/06/04 14:47:08 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2011/06/04 04:50:00 | 000,001,619 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\McAfee Security Scan Plus.lnk
[2011/06/04 04:50:00 | 000,001,611 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2011/06/04 04:04:32 | 000,000,184 | ---- | C] () -- C:\WINDOWS\War3Unin.bat
[2010/01/19 00:43:10 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\19895.exe
[2010/01/19 00:23:09 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\19718.exe
[2010/01/19 00:03:09 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\18716.exe
[2010/01/18 23:43:09 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\17421.exe
[2010/01/18 23:23:08 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\12382.exe
[2010/01/18 23:03:08 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\292.exe
[2010/01/18 22:43:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\153.exe
[2010/01/18 22:23:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\3902.exe
[2010/01/18 22:03:06 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\14604.exe
[2010/01/18 21:42:57 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\32391.exe
[2010/01/18 21:22:56 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\5436.exe
[2010/01/18 21:02:56 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\4827.exe
[2010/01/18 20:42:56 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\11942.exe
[2010/01/18 20:22:52 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\2995.exe
[2010/01/18 20:02:52 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\491.exe
[2010/01/18 19:42:51 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\9961.exe
[2010/01/18 19:22:48 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\16827.exe
[2010/01/18 19:02:44 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\23281.exe
[2010/01/18 18:42:44 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\28145.exe
[2010/01/18 18:22:34 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\5705.exe
[2010/01/18 18:02:31 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\24464.exe
[2010/01/18 17:42:30 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\26962.exe
[2010/01/18 17:22:27 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\29358.exe
[2010/01/18 17:02:27 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\11478.exe
[2010/01/18 16:42:23 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\15724.exe
[2010/01/18 16:22:14 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\19169.exe
[2010/01/18 16:02:13 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\26500.exe
[2010/01/18 15:42:10 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\6334.exe
[2010/01/18 15:21:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\18467.exe
[2010/01/18 15:04:48 | 000,000,120 | ---- | C] () -- C:\WINDOWS\Nkabujecazuwipi.dat
[2010/01/18 15:04:48 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Rribikehe.bin
[2010/01/18 15:01:08 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\41.exe
[2010/01/18 15:01:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\IS15.exe
[2010/01/18 15:01:03 | 000,018,944 | ---- | C] () -- C:\WINDOWS\System32\helper32.dll
[2010/01/18 15:00:59 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\winlogon32.exe
[2010/01/18 15:00:59 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\smss32.exe
[2010/01/09 20:48:31 | 000,000,008 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\sysReserve.ini
[2009/12/28 08:27:45 | 000,015,387 | ---- | C] () -- C:\WINDOWS\z879backdoor9516.dll
[2009/12/27 07:37:17 | 000,003,919 | ---- | C] () -- C:\WINDOWS\System32\55dvir9641z.exe
[2009/12/15 05:47:24 | 000,014,897 | ---- | C] () -- C:\WINDOWS\System32\296859zo5249.dll
[2009/12/09 08:11:51 | 000,002,558 | ---- | C] () -- C:\WINDOWS\System32\3271zs9y1ef5.bin
[2009/12/04 00:23:10 | 000,010,294 | ---- | C] () -- C:\WINDOWS\System32\25353virus69ez.dll
[2009/12/02 01:36:21 | 000,006,764 | ---- | C] () -- C:\WINDOWS\z70thi9f5191.dll
[2009/12/01 17:33:43 | 000,012,921 | ---- | C] () -- C:\WINDOWS\System32\4506spywzre2691.dll
[2009/12/01 13:50:54 | 000,017,517 | ---- | C] () -- C:\WINDOWS\306z9ha5ktool99.dll
[2009/11/22 10:50:20 | 000,008,872 | ---- | C] () -- C:\WINDOWS\System32\3849noz-a-vir59529.bin
[2009/11/21 16:09:27 | 000,008,838 | ---- | C] () -- C:\WINDOWS\System32\7403hazktoo5901.exe
[2009/11/21 11:16:27 | 000,011,270 | ---- | C] () -- C:\WINDOWS\System32\51ffazdwar51191.dll
[2009/11/20 10:29:00 | 000,003,257 | ---- | C] () -- C:\WINDOWS\z45fth9ef2868.exe
[2009/11/15 18:01:29 | 000,003,678 | ---- | C] () -- C:\WINDOWS\System32\1642t9ief262z5.bin
[2009/11/13 12:57:47 | 000,009,567 | ---- | C] () -- C:\WINDOWS\55cz9ddwa5e59.bin
[2009/11/07 23:43:39 | 000,017,662 | ---- | C] () -- C:\WINDOWS\System32\3ffeazdwar912095.bin
[2009/11/06 05:48:33 | 000,004,800 | ---- | C] () -- C:\WINDOWS\9976z5irus5a9.bin
[2009/11/02 04:57:18 | 000,012,230 | ---- | C] () -- C:\WINDOWS\System32\21491ha9kzool7565.dll
[2009/10/27 06:00:10 | 000,017,545 | ---- | C] () -- C:\WINDOWS\System32\659zthreat22960.bin
[2009/10/25 06:11:22 | 000,016,267 | ---- | C] () -- C:\WINDOWS\System32\94825zr1990.exe
[2009/10/25 06:11:21 | 000,017,553 | ---- | C] () -- C:\WINDOWS\73a5dow5loade92068z.bin
[2009/10/25 06:11:21 | 000,015,589 | ---- | C] () -- C:\WINDOWS\System32\2955wo5m4z39.exe
[2009/10/25 06:11:21 | 000,014,664 | ---- | C] () -- C:\WINDOWS\5780wo9m7z1.bin
[2009/10/25 06:11:21 | 000,013,840 | ---- | C] () -- C:\WINDOWS\5z405wormee9.bin
[2009/10/25 06:11:21 | 000,003,034 | ---- | C] () -- C:\WINDOWS\System32\5005tr9j17z.dll
[2009/10/25 06:11:21 | 000,002,705 | ---- | C] () -- C:\WINDOWS\780zs95ware2719.exe
[2009/10/25 06:11:20 | 000,014,322 | ---- | C] () -- C:\WINDOWS\System32\51992zorm1.dll
[2009/10/25 06:11:20 | 000,014,067 | ---- | C] () -- C:\WINDOWS\2z096worm754.bin
[2009/10/25 06:11:19 | 000,013,147 | ---- | C] () -- C:\WINDOWS\18344virus954z.exe
[2009/10/25 06:11:19 | 000,012,311 | ---- | C] () -- C:\WINDOWS\35409pyware2z55.dll
[2009/10/25 06:11:18 | 000,011,369 | ---- | C] () -- C:\WINDOWS\9594stzal2264.dll
[2009/10/25 06:11:18 | 000,005,884 | ---- | C] () -- C:\WINDOWS\2d9fsparsez45.bin
[2009/10/25 06:11:17 | 000,017,535 | ---- | C] () -- C:\WINDOWS\System32\6955thze9t259185.dll
[2009/10/25 06:11:17 | 000,016,208 | ---- | C] () -- C:\WINDOWS\19659hacktozl12a.bin
[2009/10/25 06:11:17 | 000,015,362 | ---- | C] () -- C:\WINDOWS\System32\za3vir5159.exe
[2009/10/25 06:11:17 | 000,014,513 | ---- | C] () -- C:\WINDOWS\20845zac5t9ol56.bin
[2009/10/25 06:11:17 | 000,013,262 | ---- | C] () -- C:\WINDOWS\4939st5alz460.exe
[2009/10/25 06:11:17 | 000,005,766 | ---- | C] () -- C:\WINDOWS\52d6downl9adez10725.bin
[2009/10/25 06:11:17 | 000,004,509 | ---- | C] () -- C:\WINDOWS\System32\14517viru549z.bin
[2009/10/25 06:11:17 | 000,002,666 | ---- | C] () -- C:\WINDOWS\System32\5e70d5wnloader98z0.bin
[2009/10/25 06:11:16 | 000,012,800 | ---- | C] () -- C:\WINDOWS\30258sp51cz9.exe
[2009/10/25 06:11:16 | 000,009,592 | ---- | C] () -- C:\WINDOWS\15d9sparsz1781.exe
[2009/10/25 06:11:16 | 000,009,338 | ---- | C] () -- C:\WINDOWS\29919z5rm78e.exe
[2009/10/25 06:11:16 | 000,003,890 | ---- | C] () -- C:\WINDOWS\4z425ack9oor2519.bin
[2009/10/25 06:11:15 | 000,014,456 | ---- | C] () -- C:\WINDOWS\System32\969azackdoor19305.exe
[2009/10/25 06:11:14 | 000,013,816 | ---- | C] () -- C:\WINDOWS\System32\595bviz2535.bin
[2009/10/25 06:11:14 | 000,012,518 | ---- | C] () -- C:\WINDOWS\57efthz9at20675.exe
[2009/10/25 06:11:14 | 000,009,027 | ---- | C] () -- C:\WINDOWS\System32\407zvirus9c45.exe
[2009/10/25 06:11:14 | 000,007,113 | ---- | C] () -- C:\WINDOWS\System32\156a9pywaze612.bin
[2009/10/25 06:11:14 | 000,006,490 | ---- | C] () -- C:\WINDOWS\System32\203725a9ktool3afz.bin
[2009/10/25 06:11:14 | 000,006,455 | ---- | C] () -- C:\WINDOWS\2z4aad9war52558.exe
[2009/10/25 06:11:14 | 000,004,261 | ---- | C] () -- C:\WINDOWS\System32\16367hazkto5l6c9.exe
[2009/10/25 06:11:13 | 000,012,414 | ---- | C] () -- C:\WINDOWS\System32\44d4thre5t22932z.exe
[2009/10/25 06:11:13 | 000,012,361 | ---- | C] () -- C:\WINDOWS\1bc6backd5or99z.dll
[2009/10/25 06:11:13 | 000,012,080 | ---- | C] () -- C:\WINDOWS\22495not-5-vzrus6859.exe
[2009/10/25 06:11:13 | 000,011,606 | ---- | C] () -- C:\WINDOWS\1845spy5aze798.exe
[2009/10/25 06:11:13 | 000,004,444 | ---- | C] () -- C:\WINDOWS\34zcth5eat30950.dll
[2009/10/25 06:11:12 | 000,018,255 | ---- | C] () -- C:\WINDOWS\System32\2f55spar9e1229z.bin
[2009/10/25 06:11:12 | 000,013,296 | ---- | C] () -- C:\WINDOWS\System32\25908hacztool324.dll
[2009/10/25 06:11:12 | 000,012,809 | ---- | C] () -- C:\WINDOWS\6160sz9rse5515.exe
[2009/10/25 06:11:12 | 000,012,690 | ---- | C] () -- C:\WINDOWS\8z72v9rus405.dll
[2009/10/25 06:11:12 | 000,012,551 | ---- | C] () -- C:\WINDOWS\51925zorm954.dll
[2009/10/25 06:11:12 | 000,012,335 | ---- | C] () -- C:\WINDOWS\System32\1799a95wzre2319.dll
[2009/10/25 06:11:12 | 000,008,378 | ---- | C] () -- C:\WINDOWS\System32\7695sp5mbot5z.dll
[2009/10/25 06:11:12 | 000,005,360 | ---- | C] () -- C:\WINDOWS\5459vzr505.dll
[2009/10/25 06:11:11 | 000,015,777 | ---- | C] () -- C:\WINDOWS\System32\2b8cbac5dzo93238.exe
[2009/10/25 06:11:11 | 000,011,151 | ---- | C] () -- C:\WINDOWS\System32\3166n5t-azvir9s314.exe
[2009/10/25 06:11:11 | 000,011,038 | ---- | C] () -- C:\WINDOWS\66f3do5nl9aderz066.exe
[2009/10/25 06:11:11 | 000,009,954 | ---- | C] () -- C:\WINDOWS\31379not-azvirus485.dll
[2009/10/25 06:11:11 | 000,008,703 | ---- | C] () -- C:\WINDOWS\System32\2z639v5r9s4f0.bin
[2009/10/25 06:11:11 | 000,004,598 | ---- | C] () -- C:\WINDOWS\System32\339avi515z0.bin
[2009/10/25 06:11:10 | 000,014,441 | ---- | C] () -- C:\WINDOWS\System32\32z93wor57d1.dll
[2009/10/25 06:11:10 | 000,007,888 | ---- | C] () -- C:\WINDOWS\System32\3357zr951a5.bin
[2009/10/25 06:11:09 | 000,015,972 | ---- | C] () -- C:\WINDOWS\5c2f5tz9l1981.exe
[2009/10/25 06:11:09 | 000,014,785 | ---- | C] () -- C:\WINDOWS\4935no5-a-vzrus996.exe
[2009/10/25 06:11:09 | 000,013,154 | ---- | C] () -- C:\WINDOWS\25858s9z531.exe
[2009/10/25 06:11:09 | 000,007,357 | ---- | C] () -- C:\WINDOWS\16185n9z-a-virus555.exe
[2009/10/25 06:11:08 | 000,016,571 | ---- | C] () -- C:\WINDOWS\79cthi5f2z00.exe
[2009/10/25 06:11:08 | 000,014,922 | ---- | C] () -- C:\WINDOWS\3e03a9dwaze1957.bin
[2009/10/25 06:11:08 | 000,013,627 | ---- | C] () -- C:\WINDOWS\System32\27b7zackdoo51079.dll
[2009/10/25 06:11:08 | 000,009,675 | ---- | C] () -- C:\WINDOWS\System32\z853downloade51921.exe
[2009/10/25 06:11:08 | 000,005,896 | ---- | C] () -- C:\WINDOWS\50e9spywaze2365.exe
[2009/10/25 06:11:07 | 000,017,845 | ---- | C] () -- C:\WINDOWS\6566thi9fz855.bin
[2009/10/25 06:11:07 | 000,017,333 | ---- | C] () -- C:\WINDOWS\System32\91889i5zs9d.bin
[2009/10/25 06:11:07 | 000,010,692 | ---- | C] () -- C:\WINDOWS\6077not-a-v9zu567d.bin
[2009/10/25 06:11:07 | 000,008,031 | ---- | C] () -- C:\WINDOWS\System32\11911troz7f5.exe
[2009/10/25 06:11:07 | 000,007,434 | ---- | C] () -- C:\WINDOWS\2bd9zpy5are1357.exe
[2009/10/25 06:11:07 | 000,006,205 | ---- | C] () -- C:\WINDOWS\6559vir10z.bin
[2009/10/25 06:11:07 | 000,004,670 | ---- | C] () -- C:\WINDOWS\297z59or57b2.dll
[2009/10/25 06:11:07 | 000,002,601 | ---- | C] () -- C:\WINDOWS\System32\5576vzr2639.dll
[2009/10/23 04:38:24 | 000,008,695 | ---- | C] () -- C:\WINDOWS\System32\19723no5-a-vzrus59c.bin
[2009/10/20 12:15:57 | 000,007,823 | ---- | C] () -- C:\WINDOWS\System32\b959teaz3211.dll
[2009/10/20 07:33:21 | 000,006,083 | ---- | C] () -- C:\WINDOWS\24estea5729z.exe
[2009/10/19 23:45:08 | 000,005,754 | ---- | C] () -- C:\WINDOWS\51734s9y4cz.bin
[2009/10/16 15:25:47 | 000,004,761 | ---- | C] () -- C:\WINDOWS\4871a5dwarez935.dll
[2009/10/12 05:44:46 | 000,013,359 | ---- | C] () -- C:\WINDOWS\System32\z5bavir32159.exe
[2009/10/10 10:40:08 | 000,002,902 | ---- | C] () -- C:\WINDOWS\System32\25z65h9cktool279.bin
[2009/10/08 15:33:05 | 000,015,825 | ---- | C] () -- C:\WINDOWS\System32\259bthiefz95.exe
[2009/10/08 14:01:47 | 000,010,674 | ---- | C] () -- C:\WINDOWS\System32\z5566troj195.bin
[2009/10/07 19:58:41 | 000,014,249 | ---- | C] () -- C:\WINDOWS\System32\5476w59m6z5.dll
[2009/10/07 05:09:16 | 000,018,235 | ---- | C] () -- C:\WINDOWS\System32\51388virusz69.dll
[2009/10/07 05:04:38 | 000,008,963 | ---- | C] () -- C:\WINDOWS\System32\3a439hrez517067.bin
[2009/10/07 04:33:53 | 000,010,856 | ---- | C] () -- C:\WINDOWS\7557bac9door6z9.exe
[2009/10/06 14:38:15 | 000,013,559 | ---- | C] () -- C:\WINDOWS\System32\244855ozm799.exe
[2009/10/06 07:20:08 | 000,007,722 | ---- | C] () -- C:\WINDOWS\System32\5898vi51z07.bin
[2009/10/02 14:26:58 | 000,012,237 | ---- | C] () -- C:\WINDOWS\5834doznloader22395.exe
[2009/10/02 01:31:04 | 000,015,541 | ---- | C] () -- C:\WINDOWS\System32\2592sp5zbot471.dll
[2009/09/29 18:32:18 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009/09/27 19:11:24 | 000,000,196 | ---- | C] () -- C:\Program Files\quest-helper.ccip
[2009/09/27 10:39:28 | 000,009,847 | ---- | C] () -- C:\WINDOWS\System32\48d7b9ck5oorz145.bin
[2009/09/27 02:02:06 | 000,002,900 | ---- | C] () -- C:\WINDOWS\9de5thief5z5.exe
[2009/09/22 16:37:20 | 000,008,649 | ---- | C] () -- C:\WINDOWS\9111spyz955.exe
[2009/09/20 23:43:02 | 000,004,933 | ---- | C] () -- C:\WINDOWS\9398w9rm535z.bin
[2009/09/18 16:36:25 | 000,016,809 | ---- | C] () -- C:\WINDOWS\System32\2489zddwa9e20795.dll
[2009/09/13 18:24:47 | 000,004,999 | ---- | C] () -- C:\WINDOWS\60za9ownload5r1770.exe
[2009/09/10 22:43:48 | 000,005,227 | ---- | C] () -- C:\WINDOWS\System32\4f9zspyware5022.dll
[2009/09/09 08:17:59 | 000,005,442 | ---- | C] () -- C:\WINDOWS\System32\29465nzt9a-virus5b5.bin
[2009/09/05 11:07:29 | 000,007,983 | ---- | C] () -- C:\WINDOWS\System32\dabback9oor2805z.exe
[2009/09/01 01:55:51 | 000,014,835 | ---- | C] () -- C:\WINDOWS\5z11t5reat19962.bin
[2009/08/24 05:15:12 | 000,010,892 | ---- | C] () -- C:\WINDOWS\System32\20z5spyware2092.dll
[2009/08/23 22:35:16 | 000,010,860 | ---- | C] () -- C:\WINDOWS\System32\569hacktool3fz.exe
[2009/08/23 22:11:12 | 000,005,130 | ---- | C] () -- C:\WINDOWS\4d15h9efz4.exe
[2009/08/21 12:27:23 | 000,009,609 | ---- | C] () -- C:\WINDOWS\System32\2519h95ztool59a.dll
[2009/08/19 16:31:30 | 000,007,299 | ---- | C] () -- C:\WINDOWS\System32\32511not9a-virzs45f.bin
[2009/08/17 18:51:39 | 000,012,683 | ---- | C] () -- C:\WINDOWS\System32\20bbtzreat7759.bin
[2009/08/10 19:30:42 | 000,012,910 | ---- | C] () -- C:\WINDOWS\417do5nlo9der1z54.dll
[2009/08/06 02:44:03 | 000,004,312 | ---- | C] () -- C:\WINDOWS\System32\139025zy29f.exe
[2009/08/05 06:53:32 | 000,009,740 | ---- | C] () -- C:\WINDOWS\System32\27215vizus29.bin
[2009/08/04 00:28:11 | 000,009,737 | ---- | C] () -- C:\WINDOWS\21897zpamb597.dll
[2009/08/02 17:20:11 | 000,004,574 | ---- | C] () -- C:\WINDOWS\System32\519z5py4c7.exe
[2009/08/01 08:12:45 | 000,003,419 | ---- | C] () -- C:\WINDOWS\System32\z7549ir656.exe
[2009/07/27 21:30:20 | 000,012,325 | ---- | C] () -- C:\WINDOWS\System32\243z3not9a-vi5us140.dll
[2009/07/26 16:55:18 | 000,006,054 | ---- | C] () -- C:\WINDOWS\5569s9arse114z.bin
[2009/07/26 15:49:15 | 000,006,370 | ---- | C] () -- C:\WINDOWS\76649h5ez2777.dll
[2009/07/25 01:13:36 | 000,013,663 | ---- | C] () -- C:\WINDOWS\System32\299055zrusfc.exe
[2009/07/24 08:05:00 | 000,015,799 | ---- | C] () -- C:\WINDOWS\System32\927a5pywzre2195.exe
[2009/07/17 21:43:03 | 000,005,040 | ---- | C] () -- C:\WINDOWS\System32\3d2sparse9151z.exe
[2009/07/17 08:49:17 | 000,008,586 | ---- | C] () -- C:\WINDOWS\180z0vi5u9645.exe
[2009/07/15 21:54:10 | 000,002,771 | ---- | C] () -- C:\WINDOWS\System32\122z1vir9s5f9.bin
[2009/07/12 09:46:45 | 000,005,217 | ---- | C] () -- C:\WINDOWS\System32\5903s9ywaz52213.bin
[2009/07/11 20:06:54 | 000,013,439 | ---- | C] () -- C:\WINDOWS\System32\507z2w9rm77c.exe
[2009/07/11 17:57:40 | 000,011,635 | ---- | C] () -- C:\WINDOWS\System32\5c429own5oadez1235.bin
[2009/07/11 00:06:43 | 000,006,639 | ---- | C] () -- C:\WINDOWS\60z4st9a5632.exe
[2009/07/09 18:01:08 | 000,008,565 | ---- | C] () -- C:\WINDOWS\35ffdownzoader21839.dll
[2009/07/07 23:49:14 | 000,013,049 | ---- | C] () -- C:\WINDOWS\System32\2088959rm62z.dll
[2009/07/07 19:09:00 | 000,007,789 | ---- | C] () -- C:\WINDOWS\5099s5ambot61z.bin
[2009/07/06 14:19:39 | 000,007,530 | ---- | C] () -- C:\WINDOWS\System32\5dzfs5ywa9e975.dll
[2009/06/26 01:58:44 | 000,005,023 | ---- | C] () -- C:\WINDOWS\2599ste5l99z.bin
[2009/06/25 12:39:17 | 000,004,434 | ---- | C] () -- C:\WINDOWS\z959t9oj35a.dll
[2009/06/25 07:13:38 | 000,011,901 | ---- | C] () -- C:\WINDOWS\4f5c9ownl5adzr2135.exe
[2009/06/24 21:32:30 | 000,011,707 | ---- | C] () -- C:\WINDOWS\150519irusez.bin
[2009/06/24 02:18:06 | 000,002,719 | ---- | C] () -- C:\WINDOWS\2z404hacktoo5619.dll
[2009/06/20 18:44:29 | 000,010,165 | ---- | C] () -- C:\WINDOWS\29681notza-5iruse5.dll
[2009/06/20 05:05:02 | 000,005,246 | ---- | C] () -- C:\WINDOWS\191z3spambot56a.bin
[2009/06/15 21:22:25 | 000,011,002 | ---- | C] () -- C:\WINDOWS\9197hacktool2z5.exe
[2009/06/15 01:50:52 | 000,003,081 | ---- | C] () -- C:\WINDOWS\23675s9amb5t7b5z.bin
[2009/06/11 14:15:13 | 000,015,746 | ---- | C] () -- C:\WINDOWS\353709py399z.bin
[2009/06/10 13:10:32 | 000,017,615 | ---- | C] () -- C:\WINDOWS\5999troj2ez.dll
[2009/06/06 09:02:15 | 000,003,190 | ---- | C] () -- C:\WINDOWS\System32\169zown9oader13945.bin
[2009/06/05 13:12:50 | 000,014,922 | ---- | C] () -- C:\WINDOWS\System32\7az9sparse5485.bin
[2009/05/26 14:27:19 | 000,006,049 | ---- | C] () -- C:\WINDOWS\System32\26dbazdwa9e5377.dll
[2009/05/25 09:01:35 | 000,018,089 | ---- | C] () -- C:\WINDOWS\System32\32151spam9z5693.dll
[2009/05/22 06:56:24 | 000,005,708 | ---- | C] () -- C:\WINDOWS\68c35ddwa9e138z.exe
[2009/05/22 00:17:13 | 000,008,056 | ---- | C] () -- C:\WINDOWS\System32\5zd9t5ief3047.bin
[2009/05/21 10:00:31 | 000,005,975 | ---- | C] () -- C:\WINDOWS\6559zackdoor32019.bin
[2009/05/18 20:42:45 | 000,002,797 | ---- | C] () -- C:\WINDOWS\System32\5079vzr557.dll
[2009/05/17 01:52:58 | 000,010,489 | ---- | C] () -- C:\WINDOWS\System32\zd93addware2295.dll
[2009/05/16 03:09:00 | 000,004,875 | ---- | C] () -- C:\WINDOWS\System32\289935pamb9z4c5.dll
[2009/05/15 09:20:23 | 000,008,949 | ---- | C] () -- C:\WINDOWS\System32\341zadd9are659.bin
[2009/05/14 03:39:03 | 000,016,579 | ---- | C] () -- C:\WINDOWS\586cspaz592636.bin
[2009/05/13 03:32:53 | 000,010,134 | ---- | C] () -- C:\WINDOWS\33ezv9r5972.bin
[2009/05/13 03:05:47 | 000,018,378 | ---- | C] () -- C:\WINDOWS\System32\15025troz9ad.bin
[2009/05/12 23:35:21 | 000,017,237 | ---- | C] () -- C:\WINDOWS\System32\7279vz9507.exe
[2009/05/12 14:02:11 | 000,018,402 | ---- | C] () -- C:\WINDOWS\System32\69z7add5are1542.dll
[2009/05/11 15:47:48 | 000,014,360 | ---- | C] () -- C:\WINDOWS\53aesparse10z9.dll
[2009/05/10 19:01:14 | 000,012,412 | ---- | C] () -- C:\WINDOWS\449czdd5are1199.exe
[2009/05/06 01:16:16 | 000,004,243 | ---- | C] () -- C:\WINDOWS\29310trojz5.exe
[2009/05/05 12:23:01 | 000,004,069 | ---- | C] () -- C:\WINDOWS\System32\55c45zief1292.bin
[2009/05/03 05:02:31 | 000,016,680 | ---- | C] () -- C:\WINDOWS\System32\z8850not-9-virus298.exe
[2009/05/01 13:33:42 | 000,016,828 | ---- | C] () -- C:\WINDOWS\System32\2df759zware1864.dll
[2009/04/27 18:54:05 | 000,018,253 | ---- | C] () -- C:\WINDOWS\5235spambzt9a.bin
[2009/04/24 23:40:17 | 000,012,113 | ---- | C] () -- C:\WINDOWS\3571spz9se2731.dll
[2009/04/24 21:22:37 | 000,012,599 | ---- | C] () -- C:\WINDOWS\System32\9902ha59tzol18b.exe
[2009/04/24 03:49:55 | 000,017,098 | ---- | C] () -- C:\WINDOWS\System32\2899zv5rus775.exe
[2009/04/21 17:29:11 | 000,009,092 | ---- | C] () -- C:\WINDOWS\System32\269z5wo9m429.exe
[2009/04/21 02:26:28 | 000,010,411 | ---- | C] () -- C:\WINDOWS\129z9s5y228.dll
[2009/04/20 18:40:26 | 000,007,971 | ---- | C] () -- C:\WINDOWS\459cvzr2758.dll
[2009/04/18 11:49:12 | 000,004,727 | ---- | C] () -- C:\WINDOWS\System32\76z1back9o5r2541.exe
[2009/04/16 23:32:25 | 000,005,344 | ---- | C] () -- C:\WINDOWS\9c3zaddw5re158.exe
[2009/04/16 05:21:47 | 000,002,685 | ---- | C] () -- C:\WINDOWS\195705py93z.dll
[2009/04/15 12:27:22 | 000,004,527 | ---- | C] () -- C:\WINDOWS\System32\3ed5vir29z2.bin
[2009/04/15 07:27:54 | 000,013,108 | ---- | C] () -- C:\WINDOWS\System32\zdc8th9e51272.bin
[2009/04/15 00:51:00 | 000,014,843 | ---- | C] () -- C:\WINDOWS\8939pazb5t3d9.bin
[2009/04/13 15:41:51 | 000,008,141 | ---- | C] () -- C:\WINDOWS\29z769ack5ool639.bin
[2009/04/12 11:11:46 | 000,007,516 | ---- | C] () -- C:\WINDOWS\bb5sp5ware649z.exe
[2009/04/10 05:07:37 | 000,014,933 | ---- | C] () -- C:\WINDOWS\System32\12819w5rm28z.exe
[2009/04/09 11:31:36 | 000,007,326 | ---- | C] () -- C:\WINDOWS\e45spar9z2771.bin
[2009/04/09 11:14:02 | 000,008,133 | ---- | C] () -- C:\WINDOWS\5f45s5zrse1947.exe
[2009/04/04 04:28:08 | 000,009,040 | ---- | C] () -- C:\WINDOWS\System32\4zcb5ckdoor1529.exe
[2009/04/03 23:15:38 | 000,006,145 | ---- | C] () -- C:\WINDOWS\System32\2540viruszed9.exe
[2009/04/03 02:35:50 | 000,004,571 | ---- | C] () -- C:\WINDOWS\System32\7za35ir2981.exe
[2009/04/03 01:50:14 | 000,004,477 | ---- | C] () -- C:\WINDOWS\93555spambzt3.dll
[2009/04/02 21:35:15 | 000,017,874 | ---- | C] () -- C:\WINDOWS\13945spambot1e2z.dll
[2009/04/01 21:25:50 | 000,007,323 | ---- | C] () -- C:\WINDOWS\System32\a59backdzor6605.exe
[2009/04/01 05:50:44 | 000,011,245 | ---- | C] () -- C:\WINDOWS\3a4zthreat52962.dll
[2009/03/24 11:57:49 | 000,009,645 | ---- | C] () -- C:\WINDOWS\System32\93695hacktool4zc5.dll
[2009/03/19 17:23:09 | 000,007,209 | ---- | C] () -- C:\WINDOWS\System32\52z7vi99935.exe
[2009/03/19 10:05:24 | 000,011,173 | ---- | C] () -- C:\WINDOWS\z45509irus6ad.exe
[2009/03/14 08:57:54 | 000,003,004 | ---- | C] () -- C:\WINDOWS\5071zor9622.bin
[2009/03/14 01:45:05 | 000,003,246 | ---- | C] () -- C:\WINDOWS\552cth9eat89z0.dll
[2009/03/12 08:39:20 | 000,015,152 | ---- | C] () -- C:\WINDOWS\19072not-a-5irus7cz.exe
[2009/03/11 04:12:27 | 000,017,990 | ---- | C] () -- C:\WINDOWS\7356nzt-a-vir9s17d.exe
[2009/03/07 04:17:46 | 000,017,832 | ---- | C] () -- C:\WINDOWS\5299hrzat32548.bin
[2009/03/06 23:35:09 | 000,005,107 | ---- | C] () -- C:\WINDOWS\1z519troj491.bin
[2009/03/05 07:07:28 | 000,003,289 | ---- | C] () -- C:\WINDOWS\25z31virus69a.dll
[2009/03/04 16:34:21 | 000,007,249 | ---- | C] () -- C:\WINDOWS\86zteal9765.dll
[2009/03/03 00:35:22 | 000,014,909 | ---- | C] () -- C:\WINDOWS\System32\f6bs5z9l1398.bin
[2009/03/02 07:55:46 | 000,013,256 | ---- | C] () -- C:\WINDOWS\925vir59z.exe
[2009/03/01 05:52:52 | 000,013,572 | ---- | C] () -- C:\WINDOWS\1z868wo95734.exe
[2009/02/25 10:19:57 | 000,009,981 | ---- | C] () -- C:\WINDOWS\System32\397d9hi5f14z4.bin
[2009/02/22 03:05:23 | 000,008,159 | ---- | C] () -- C:\WINDOWS\5e12szeal9656.bin
[2009/02/20 16:21:11 | 000,007,682 | ---- | C] () -- C:\WINDOWS\System32\22579tezl3223.exe
[2009/02/20 05:06:15 | 000,005,456 | ---- | C] () -- C:\WINDOWS\System32\7587steaz29935.exe
[2009/02/19 15:53:14 | 000,003,929 | ---- | C] () -- C:\WINDOWS\373czhreat59839.bin
[2009/02/16 06:28:19 | 000,018,202 | ---- | C] () -- C:\WINDOWS\29709zro5610.dll
[2009/02/13 16:49:11 | 000,006,461 | ---- | C] () -- C:\WINDOWS\System32\7b9a5pywarez788.exe
[2009/02/13 09:48:16 | 000,013,868 | ---- | C] () -- C:\WINDOWS\11947ha5ktoolz90.dll
[2009/02/07 06:43:17 | 000,010,682 | ---- | C] () -- C:\WINDOWS\12935not-a-vi5us20z.bin
[2009/02/06 13:18:38 | 000,010,031 | ---- | C] () -- C:\WINDOWS\595avir3109z.bin
[2009/02/04 10:03:47 | 000,016,741 | ---- | C] () -- C:\WINDOWS\System32\2947spzrs52833.dll
[2009/02/03 12:59:08 | 000,007,602 | ---- | C] () -- C:\WINDOWS\System32\3a51zh9eat31159.exe
[2009/02/03 01:18:18 | 000,015,915 | ---- | C] () -- C:\WINDOWS\System32\70z7threa95625.dll
[2009/01/27 19:17:40 | 000,005,076 | ---- | C] () -- C:\WINDOWS\System32\76z75ot-a-virus593.exe
[2009/01/25 21:10:37 | 000,017,540 | ---- | C] () -- C:\WINDOWS\System32\95579worm5bcz.bin
[2009/01/24 14:47:00 | 000,010,888 | ---- | C] () -- C:\WINDOWS\System32\31517sp5mbzt590.exe
[2009/01/23 23:30:21 | 000,004,912 | ---- | C] () -- C:\WINDOWS\System32\z25steal9651.dll
[2009/01/23 14:55:18 | 000,017,747 | ---- | C] () -- C:\WINDOWS\System32\23035rzj1c39.dll
[2009/01/19 16:49:43 | 000,002,567 | ---- | C] () -- C:\WINDOWS\System32\4z9fsparse1955.dll
[2009/01/17 18:38:58 | 000,003,336 | ---- | C] () -- C:\WINDOWS\System32\45dbthrzat94728.dll
[2009/01/16 04:28:06 | 000,005,237 | ---- | C] () -- C:\WINDOWS\58cbspar5z22429.dll
[2009/01/16 03:58:17 | 000,002,657 | ---- | C] () -- C:\WINDOWS\2379zspy7505.bin
[2009/01/15 23:39:52 | 000,018,338 | ---- | C] () -- C:\WINDOWS\6519vizus550.bin
[2009/01/15 10:29:25 | 000,015,054 | ---- | C] () -- C:\WINDOWS\System32\53973trojz41.dll
[2009/01/14 16:16:25 | 000,004,469 | ---- | C] () -- C:\WINDOWS\39202troj5az.bin
[2009/01/14 11:23:43 | 000,003,784 | ---- | C] () -- C:\WINDOWS\System32\4658szy9a5e1985.dll
[2009/01/12 08:07:38 | 000,017,828 | ---- | C] () -- C:\WINDOWS\596aaddwa5ez795.exe
[2009/01/11 03:42:12 | 000,009,833 | ---- | C] () -- C:\WINDOWS\System32\57a9thief22z85.bin
[2009/01/09 12:25:55 | 000,007,395 | ---- | C] () -- C:\WINDOWS\2111znot-a9v5rusfe.exe
[2009/01/07 07:21:57 | 000,013,648 | ---- | C] () -- C:\WINDOWS\System32\74z9no5-a-virus2a6.exe
[2009/01/06 03:41:15 | 000,016,624 | ---- | C] () -- C:\WINDOWS\5z1ethr9at156495.dll
[2009/01/05 12:36:01 | 000,003,243 | ---- | C] () -- C:\WINDOWS\System32\99382hackto5l1z3.dll
[2009/01/04 06:04:14 | 000,015,179 | ---- | C] () -- C:\WINDOWS\54a6vi5912z.exe
[2009/01/03 07:40:22 | 000,003,021 | ---- | C] () -- C:\WINDOWS\System32\4adownlo5der459z.dll
[2009/01/02 12:40:04 | 000,015,510 | ---- | C] () -- C:\WINDOWS\System32\zc5fsparse629.exe
[2009/01/01 06:15:13 | 000,010,524 | ---- | C] () -- C:\WINDOWS\System32\919baczdoor653.dll
[2008/12/25 10:24:23 | 000,016,285 | ---- | C] () -- C:\WINDOWS\System32\z027thi5f972.exe
[2008/12/22 05:15:58 | 000,010,765 | ---- | C] () -- C:\WINDOWS\95z1downloader1155.dll
[2008/12/21 17:49:19 | 000,014,126 | ---- | C] () -- C:\WINDOWS\System32\8727zot-a5vi9us138.exe
[2008/12/19 02:45:13 | 000,012,303 | ---- | C] () -- C:\WINDOWS\System32\3deabackd9or505z.exe
[2008/12/16 18:00:59 | 000,008,976 | ---- | C] () -- C:\WINDOWS\System32\98977worm55z.bin
[2008/12/16 12:48:12 | 000,008,608 | ---- | C] () -- C:\WINDOWS\System32\65z3spa9se2279.bin
[2008/12/15 01:29:36 | 000,013,975 | ---- | C] () -- C:\WINDOWS\System32\9259spyza5e2057.exe
[2008/12/11 20:29:11 | 000,013,756 | ---- | C] () -- C:\WINDOWS\9b5dszars5723.bin
[2008/12/10 09:15:23 | 000,004,285 | ---- | C] () -- C:\WINDOWS\System32\30197h9cktool65z.bin
[2008/12/05 07:13:46 | 000,014,300 | ---- | C] () -- C:\WINDOWS\System32\z0173no9-a-virus295.dll
[2008/12/04 15:25:26 | 000,014,079 | ---- | C] () -- C:\WINDOWS\System32\17215zroj509.dll
[2008/12/03 08:13:44 | 000,011,206 | ---- | C] () -- C:\WINDOWS\System32\8194zpy4c5.exe
[2008/12/02 08:43:09 | 000,010,540 | ---- | C] () -- C:\WINDOWS\40485zckdoor1398.bin
[2008/11/28 15:39:20 | 000,007,203 | ---- | C] () -- C:\WINDOWS\2z549s59343.bin
[2008/11/28 08:00:22 | 000,005,905 | ---- | C] () -- C:\WINDOWS\15757tro94ez.dll
[2008/11/27 21:50:08 | 000,018,383 | ---- | C] () -- C:\WINDOWS\System32\299255pyz8d.dll
[2008/11/24 13:43:52 | 000,003,833 | ---- | C] () -- C:\WINDOWS\7fdfstza92356.bin
[2008/11/21 22:05:53 | 000,002,520 | ---- | C] () -- C:\WINDOWS\20242zpambot659.bin
[2008/11/21 20:32:07 | 000,003,362 | ---- | C] () -- C:\WINDOWS\System32\6864h9ck5zol2e1.exe
[2008/11/21 19:55:08 | 000,761,072 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\LuUninstall.LiveUpdate
[2008/11/17 10:05:38 | 000,011,523 | ---- | C] () -- C:\WINDOWS\9z59no5-a-virus729.bin
[2008/11/17 05:34:14 | 000,003,328 | ---- | C] () -- C:\WINDOWS\System32\749dsparsz22835.exe
[2008/11/13 10:51:30 | 000,008,585 | ---- | C] () -- C:\WINDOWS\System32\29d4spywa5e28z2.bin
[2008/11/12 05:41:33 | 000,010,582 | ---- | C] () -- C:\WINDOWS\31409not-a-5izus639.bin
[2008/11/10 16:13:32 | 000,013,036 | ---- | C] () -- C:\WINDOWS\System32\3z41stea9526.bin
[2008/10/28 05:39:51 | 000,015,814 | ---- | C] () -- C:\WINDOWS\System32\6959backdoorz0095.exe
[2008/10/25 18:15:56 | 000,008,847 | ---- | C] () -- C:\WINDOWS\4dc5ste9l3z82.exe
[2008/10/18 23:53:35 | 000,017,026 | ---- | C] () -- C:\WINDOWS\System32\39526wormze4.bin
[2008/10/18 04:08:54 | 000,010,731 | ---- | C] () -- C:\WINDOWS\System32\15920zacktool168.bin
[2008/10/15 00:41:42 | 000,008,007 | ---- | C] () -- C:\WINDOWS\b96s5zal1612.bin
[2008/10/06 22:13:19 | 000,006,486 | ---- | C] () -- C:\WINDOWS\51133ziru95fc.exe
[2008/09/28 17:36:09 | 000,017,314 | ---- | C] () -- C:\WINDOWS\175569p5mbot4z8.exe
[2008/09/28 08:26:57 | 000,014,692 | ---- | C] () -- C:\WINDOWS\System32\1594zt59j6e0.exe
[2008/09/27 01:58:20 | 000,017,902 | ---- | C] () -- C:\WINDOWS\System32\z06539pam5ot535.dll
[2008/09/23 08:12:36 | 000,012,187 | ---- | C] () -- C:\WINDOWS\System32\9c0zspar5e1645.bin
[2008/09/20 22:57:00 | 000,013,610 | ---- | C] () -- C:\WINDOWS\System32\5f5zs9eal2035.bin
[2008/09/18 13:44:57 | 000,018,369 | ---- | C] () -- C:\WINDOWS\32737spa9bzt756.bin
[2008/09/16 18:10:46 | 000,017,733 | ---- | C] () -- C:\WINDOWS\System32\21414spz3059.dll
[2008/09/14 22:17:04 | 000,018,313 | ---- | C] () -- C:\WINDOWS\System32\17962notza-vir9s153.dll
[2008/09/13 06:32:36 | 000,016,830 | ---- | C] () -- C:\WINDOWS\92582trojz30.exe
[2008/09/10 08:35:52 | 000,010,585 | ---- | C] () -- C:\WINDOWS\775szeal3299.bin
[2008/09/07 07:28:10 | 000,005,998 | ---- | C] () -- C:\WINDOWS\24154vizus5099.dll
[2008/09/04 17:47:20 | 000,012,508 | ---- | C] () -- C:\WINDOWS\5183troz7955.exe
[2008/09/04 10:19:41 | 000,010,833 | ---- | C] () -- C:\WINDOWS\53604zot-a-virus92d.exe
[2008/09/02 02:55:21 | 000,004,446 | ---- | C] () -- C:\WINDOWS\System32\21541spambzt297.bin
[2008/09/01 21:31:11 | 000,011,695 | ---- | C] () -- C:\WINDOWS\52962virus6zf.dll
[2008/08/22 03:32:32 | 000,017,084 | ---- | C] () -- C:\WINDOWS\System32\9z3troj5.bin
[2008/08/22 00:08:07 | 000,003,827 | ---- | C] () -- C:\WINDOWS\89z2spa9bot25b.exe
[2008/08/18 01:27:33 | 000,006,326 | ---- | C] () -- C:\WINDOWS\System32\69z8addw95e150.dll
[2008/08/15 18:26:42 | 000,011,726 | ---- | C] () -- C:\WINDOWS\5939haz9tool5dc.exe
[2008/08/15 12:17:36 | 000,002,727 | ---- | C] () -- C:\WINDOWS\645dszarse15239.bin
[2008/08/15 00:00:21 | 000,015,007 | ---- | C] () -- C:\WINDOWS\System32\5568sparze1999.bin
[2008/08/06 16:23:23 | 000,017,213 | ---- | C] () -- C:\WINDOWS\2dzdsp5ware99.exe
[2008/08/05 05:48:41 | 000,012,412 | ---- | C] () -- C:\WINDOWS\System32\4ze6back5oo93091.bin
[2008/07/31 23:18:48 | 000,007,697 | ---- | C] () -- C:\WINDOWS\22551sza5bo9303.exe
[2008/07/28 14:15:39 | 000,017,253 | ---- | C] () -- C:\WINDOWS\System32\9basp5rsez286.bin
[2008/07/27 12:04:53 | 000,003,700 | ---- | C] () -- C:\WINDOWS\System32\9018zp9e5.exe
[2008/07/27 00:29:26 | 000,008,659 | ---- | C] () -- C:\WINDOWS\9e84addware4z5.bin
[2008/07/26 22:46:19 | 000,015,642 | ---- | C] () -- C:\WINDOWS\z299sparse525.dll
[2008/07/26 17:18:53 | 000,009,778 | ---- | C] () -- C:\WINDOWS\System32\5812vir61z9.exe
[2008/07/26 15:46:52 | 000,013,418 | ---- | C] () -- C:\WINDOWS\System32\95e5backdzor2147.bin
[2008/07/24 21:11:02 | 000,006,928 | ---- | C] () -- C:\WINDOWS\6c48spar5914z2.exe
[2008/07/24 11:01:42 | 000,006,804 | ---- | C] () -- C:\WINDOWS\57819hacktool9f3z.bin
[2008/07/24 03:34:14 | 000,011,747 | ---- | C] () -- C:\WINDOWS\System32\30690hacktool1ez5.bin
[2008/07/20 07:14:45 | 000,010,434 | ---- | C] () -- C:\WINDOWS\System32\5fb6add5zre2901.dll
[2008/07/20 02:16:06 | 000,010,400 | ---- | C] () -- C:\WINDOWS\System32\21267hzckt9ol32e5.dll
[2008/07/19 19:46:22 | 000,017,708 | ---- | C] () -- C:\WINDOWS\System32\659zir3952.exe
[2008/07/15 20:21:41 | 000,002,818 | ---- | C] () -- C:\WINDOWS\System32\638zthi9f508.bin
[2008/07/12 10:54:29 | 000,006,134 | ---- | C] () -- C:\WINDOWS\5336thie95079z.dll
[2008/07/10 21:11:14 | 000,004,721 | ---- | C] () -- C:\WINDOWS\7e97backzoor3535.exe
[2008/07/10 00:45:39 | 000,005,704 | ---- | C] () -- C:\WINDOWS\594d5hief170z.bin
[2008/07/05 16:26:47 | 000,003,883 | ---- | C] () -- C:\WINDOWS\System32\11282wo5m9z9.exe
[2008/07/03 12:07:19 | 000,003,572 | ---- | C] () -- C:\WINDOWS\System32\4b6cdownlzad591677.bin
[2008/07/02 00:10:08 | 000,011,077 | ---- | C] () -- C:\WINDOWS\65cza9dware3250.bin
[2008/07/01 07:11:12 | 000,013,880 | ---- | C] () -- C:\WINDOWS\9a7dstezl357.exe
[2008/06/27 03:49:27 | 000,012,955 | ---- | C] () -- C:\WINDOWS\System32\z0991spy459.exe
[2008/06/23 21:54:14 | 000,010,405 | ---- | C] () -- C:\WINDOWS\System32\2ac19zr5at17851.bin
[2008/06/22 03:26:02 | 000,017,402 | ---- | C] () -- C:\WINDOWS\92145zorm523.exe
[2008/06/21 15:37:02 | 000,014,386 | ---- | C] () -- C:\WINDOWS\System32\5966vir1z809.dll
[2008/06/19 19:52:58 | 000,009,247 | ---- | C] () -- C:\WINDOWS\14z449ot-a-viru5581.dll
[2008/06/15 21:30:14 | 000,016,962 | ---- | C] () -- C:\WINDOWS\System32\54zvi91906.exe
[2008/06/12 23:13:43 | 000,012,083 | ---- | C] () -- C:\WINDOWS\6755virus449z.bin
[2008/06/05 17:42:43 | 000,017,860 | ---- | C] () -- C:\WINDOWS\System32\559vir585z.dll
[2008/06/05 16:40:35 | 000,005,886 | ---- | C] () -- C:\WINDOWS\19052sp9zbot7f4.bin
[2008/06/05 10:06:59 | 000,006,144 | ---- | C] () -- C:\WINDOWS\7582za9kdoor2595.bin
[2008/06/03 20:45:13 | 000,013,884 | ---- | C] () -- C:\WINDOWS\24z77spa9bot18a5.dll
[2008/05/25 17:29:58 | 000,017,403 | ---- | C] () -- C:\WINDOWS\8063t5zj1959.bin
[2008/05/23 09:57:41 | 000,012,650 | ---- | C] () -- C:\WINDOWS\5820addza9e1243.bin
[2008/05/23 05:47:01 | 000,009,541 | ---- | C] () -- C:\WINDOWS\22207z5oj769.dll
[2008/05/19 23:19:14 | 000,002,645 | ---- | C] () -- C:\WINDOWS\7150dow9loa5ez2972.dll
[2008/05/19 08:25:26 | 000,012,886 | ---- | C] () -- C:\WINDOWS\System32\259z5sp9mbot7d5.exe
[2008/05/15 21:58:06 | 000,015,155 | ---- | C] () -- C:\WINDOWS\System32\3997sp95se124z.bin
[2008/05/14 23:13:04 | 000,012,223 | ---- | C] () -- C:\WINDOWS\22789virzs6e5.dll
[2008/05/14 20:38:16 | 000,010,614 | ---- | C] () -- C:\WINDOWS\135039o5z724.exe
[2008/05/14 01:57:28 | 000,005,127 | ---- | C] () -- C:\WINDOWS\193669zy545.dll
[2008/05/13 06:15:50 | 000,006,403 | ---- | C] () -- C:\WINDOWS\28394ziru5198.dll
[2008/05/13 02:56:55 | 000,016,941 | ---- | C] () -- C:\WINDOWS\System32\2148s5za91271.exe
[2008/05/06 17:15:17 | 000,010,163 | ---- | C] () -- C:\WINDOWS\99545wormze7.exe
[2008/05/05 18:23:19 | 000,013,421 | ---- | C] () -- C:\WINDOWS\157159iruszd5.exe
[2008/05/05 05:27:07 | 000,014,102 | ---- | C] () -- C:\WINDOWS\3eb9b5ckdoo92z59.bin
[2008/05/03 21:33:51 | 000,003,069 | ---- | C] () -- C:\WINDOWS\System32\3f93s9zrse5647.bin
[2008/04/28 16:55:08 | 000,006,621 | ---- | C] () -- C:\WINDOWS\9d8spzrse551.bin
[2008/04/27 11:38:12 | 000,007,479 | ---- | C] () -- C:\WINDOWS\System32\27490not-a-z9rus6c5.exe
[2008/04/26 08:46:21 | 000,004,338 | ---- | C] () -- C:\WINDOWS\5cczv95292.bin
[2008/04/26 06:59:58 | 000,009,937 | ---- | C] () -- C:\WINDOWS\System32\8177virus3z59.bin
[2008/04/25 17:32:12 | 000,018,242 | ---- | C] () -- C:\WINDOWS\z23spyware3059.dll
[2008/04/22 14:40:19 | 000,015,228 | ---- | C] () -- C:\WINDOWS\System32\12505zr395.bin
[2008/04/19 12:33:47 | 000,003,283 | ---- | C] () -- C:\WINDOWS\System32\1299hreatz8351.dll
[2008/04/18 18:49:51 | 000,017,512 | ---- | C] () -- C:\WINDOWS\System32\5013troj9z5.dll
[2008/04/15 15:44:22 | 000,017,129 | ---- | C] () -- C:\WINDOWS\6850hazkto5l96.bin
[2008/04/11 11:04:32 | 000,018,249 | ---- | C] () -- C:\WINDOWS\23381not-z-viru93bb5.bin
[2008/04/10 19:49:27 | 000,013,758 | ---- | C] () -- C:\WINDOWS\19718n9tza-virus6b05.exe
[2008/04/09 21:53:26 | 000,011,480 | ---- | C] () -- C:\WINDOWS\System32\14885w9rmzf3.exe
[2008/04/09 11:13:35 | 000,012,017 | ---- | C] () -- C:\WINDOWS\1f51spzware1890.dll
[2008/04/05 22:26:06 | 000,015,869 | ---- | C] () -- C:\WINDOWS\System32\29daszea51798.dll
[2008/04/05 21:29:53 | 000,003,915 | ---- | C] () -- C:\WINDOWS\18de5t9alz163.bin
[2008/04/05 20:33:45 | 000,007,909 | ---- | C] () -- C:\WINDOWS\29628vir5s40az.bin
[2008/04/05 18:15:57 | 000,017,541 | ---- | C] () -- C:\WINDOWS\781aspywar9500z.dll
[2008/03/28 04:15:29 | 000,005,670 | ---- | C] () -- C:\WINDOWS\System32\9475sp9mbo52a5z.bin
[2008/03/27 20:10:08 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2008/03/27 09:27:09 | 000,002,775 | ---- | C] () -- C:\WINDOWS\System32\z39spam95t122.exe
[2008/03/27 06:27:14 | 000,010,442 | ---- | C] () -- C:\WINDOWS\System32\20396w5rz2a8.bin
[2008/03/26 22:24:33 | 000,016,584 | ---- | C] () -- C:\WINDOWS\133369zcktoo55a7.dll
[2008/03/19 18:56:28 | 000,013,687 | ---- | C] () -- C:\WINDOWS\System32\12949zot-a-virus5035.bin
[2008/03/12 03:01:28 | 000,009,438 | ---- | C] () -- C:\WINDOWS\System32\151z7sp93a.bin
[2008/03/11 06:35:14 | 000,009,562 | ---- | C] () -- C:\WINDOWS\13587n5t-a-virusz4c9.exe
[2008/03/03 02:09:31 | 000,009,248 | ---- | C] () -- C:\WINDOWS\96eatz5ef1556.exe
[2008/02/27 20:13:07 | 000,008,655 | ---- | C] () -- C:\WINDOWS\5ee4vz93125.dll
[2008/02/26 19:53:33 | 000,013,680 | ---- | C] () -- C:\WINDOWS\3e19backd5oz9245.dll
[2008/02/25 22:41:28 | 003,107,788 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2008/02/25 22:41:28 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2008/02/25 05:54:02 | 000,014,179 | ---- | C] () -- C:\WINDOWS\System32\dd9thr9at2z958.bin
[2008/02/23 22:14:46 | 000,012,975 | ---- | C] () -- C:\WINDOWS\System32\77559zeal188.dll
[2008/02/23 14:00:20 | 000,008,246 | ---- | C] () -- C:\WINDOWS\System32\67zbspy59re255.bin
[2008/02/22 21:12:43 | 000,009,137 | ---- | C] () -- C:\WINDOWS\59a1addw5re2899z.bin
[2008/02/21 19:09:39 | 000,014,811 | ---- | C] () -- C:\WINDOWS\System32\9442not-a-vir5s32fz.bin
[2008/02/20 01:04:44 | 000,009,314 | ---- | C] () -- C:\WINDOWS\System32\160z9vi9us3165.bin
[2008/02/07 02:06:29 | 000,010,069 | ---- | C] () -- C:\WINDOWS\145cth9zat23140.dll
[2008/02/01 06:15:44 | 000,016,416 | ---- | C] () -- C:\WINDOWS\3a8thz5a928586.dll
[2008/01/28 07:07:54 | 000,016,446 | ---- | C] () -- C:\WINDOWS\25965trzj354.bin
[2008/01/27 07:46:25 | 000,011,285 | ---- | C] () -- C:\WINDOWS\System32\7559threat535z.exe
[2008/01/26 22:52:47 | 000,006,538 | ---- | C] () -- C:\WINDOWS\1caf9ackzoor2515.dll
[2008/01/25 07:44:54 | 000,013,008 | ---- | C] () -- C:\WINDOWS\21794noz-a-viru5159.bin
[2008/01/25 07:13:20 | 000,008,926 | ---- | C] () -- C:\WINDOWS\zb34spy9a5e93.bin
[2008/01/25 00:39:04 | 000,004,462 | ---- | C] () -- C:\WINDOWS\55z7spa9bot119.dll
[2008/01/24 18:11:55 | 000,009,490 | ---- | C] () -- C:\WINDOWS\System32\2988thze562.exe
[2008/01/24 04:28:25 | 000,007,112 | ---- | C] () -- C:\WINDOWS\78adspa5se2679z.bin
[2008/01/24 04:13:22 | 000,017,957 | ---- | C] () -- C:\WINDOWS\System32\fazspars514899.dll
[2008/01/19 10:04:36 | 000,007,161 | ---- | C] () -- C:\WINDOWS\194viru55z7.dll
[2008/01/18 18:34:14 | 000,005,771 | ---- | C] () -- C:\WINDOWS\System32\307notza-5irus7f9.exe
[2008/01/18 09:26:53 | 000,005,889 | ---- | C] () -- C:\WINDOWS\System32\1945spyware1137z.bin
[2008/01/18 05:03:55 | 000,015,805 | ---- | C] () -- C:\WINDOWS\6790zir2572.exe
[2008/01/16 10:07:44 | 000,015,751 | ---- | C] () -- C:\WINDOWS\System32\637zspa9se5075.bin
[2008/01/16 06:30:50 | 000,014,430 | ---- | C] () -- C:\WINDOWS\52e9thi5f190z.exe
[2008/01/11 17:37:55 | 000,003,796 | ---- | C] () -- C:\WINDOWS\System32\2558downlzader964.exe
[2008/01/09 06:47:16 | 000,006,858 | ---- | C] () -- C:\WINDOWS\System32\7dz9stea51085.bin
[2008/01/08 07:49:06 | 000,012,323 | ---- | C] () -- C:\WINDOWS\95206spy45z5.exe
[2008/01/01 18:29:02 | 000,017,173 | ---- | C] () -- C:\WINDOWS\6d09a59ware2897z.dll
[2007/12/31 21:10:17 | 000,004,025 | ---- | C] () -- C:\WINDOWS\System32\9a5vir48z9.dll
[2007/07/11 22:25:51 | 000,000,393 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2007/06/20 18:56:20 | 000,000,556 | ---- | C] () -- C:\Documents and Settings\Justin White\Application Data\internaldb8467.dat
[2007/06/20 18:56:20 | 000,000,374 | ---- | C] () -- C:\Documents and Settings\Justin White\Application Data\internaldb6334.dat
[2007/06/20 18:56:17 | 000,018,432 | ---- | C] () -- C:\Documents and Settings\Justin White\Application Data\internaldb41.dat
[2007/03/11 00:44:08 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
[2007/02/02 15:40:11 | 003,107,788 | ---- | C] () -- C:\WINDOWS\System32\ativvaxx.dat
[2007/01/30 12:21:34 | 000,166,450 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2006/11/11 19:52:50 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\YCRWin32.dll
[2006/11/11 19:28:06 | 000,006,550 | ---- | C] () -- C:\WINDOWS\jautoexp.dat
[2006/08/17 15:59:42 | 000,001,755 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2006/01/02 00:08:25 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2005/12/29 20:01:27 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\PdeSrvps.dll
[2005/12/29 20:01:26 | 000,149,504 | ---- | C] () -- C:\WINDOWS\UNWISE.EXE
[2005/12/22 19:04:25 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\Justin White\Local Settings\Application Data\dlm.dat
[2005/12/13 17:24:39 | 000,000,181 | ---- | C] () -- C:\WINDOWS\civ.ini
[2005/11/27 16:45:49 | 000,000,463 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2005/11/22 19:17:14 | 042,028,382 | ---- | C] () -- C:\Program Files\NIS06900.exe
[2005/10/28 21:59:28 | 000,000,548 | ---- | C] () -- C:\WINDOWS\checkip.dat
[2005/10/28 19:18:24 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\GTW32N50.dll
[2005/08/02 17:06:36 | 000,000,179 | ---- | C] () -- C:\WINDOWS\Quicken.ini
[2005/06/01 12:31:21 | 000,027,136 | ---- | C] () -- C:\Documents and Settings\Justin White\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2005/05/29 13:48:04 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI
[2005/05/27 21:58:43 | 000,004,096 | ---- | C] () -- C:\WINDOWS\d3dx.dat
[2005/05/26 16:13:26 | 000,233,472 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.exe
[2005/05/26 16:13:26 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.dll
[2005/05/26 16:13:15 | 000,000,092 | ---- | C] () -- C:\WINDOWS\CMISETUP.INI
[2005/05/26 16:13:14 | 000,000,026 | ---- | C] () -- C:\WINDOWS\CMCDPLAY.INI
[2005/05/26 16:13:12 | 000,000,010 | ---- | C] () -- C:\WINDOWS\Wininit.ini
[2005/05/26 16:13:06 | 000,266,240 | ---- | C] () -- C:\WINDOWS\CMIUninstall.exe
[2005/05/26 16:13:06 | 000,225,280 | ---- | C] () -- C:\WINDOWS\CmiRmRedundDir.exe
[2005/05/26 16:13:06 | 000,028,672 | ---- | C] () -- C:\WINDOWS\CMIRmDriver.dll
[2005/05/25 18:29:27 | 000,003,054 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2005/05/25 18:29:26 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2005/05/25 18:12:27 | 000,000,135 | ---- | C] () -- C:\Documents and Settings\Justin White\Local Settings\Application Data\fusioncache.dat
[2005/05/25 03:17:09 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2005/05/25 03:15:50 | 000,130,096 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2005/05/24 19:32:14 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2005/05/24 19:25:33 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2004/09/17 18:37:42 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\vuins32.dll
[2004/08/04 08:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2004/08/04 08:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004/08/04 08:00:00 | 000,441,124 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004/08/04 08:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004/08/04 08:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004/08/04 08:00:00 | 000,169,472 | ---- | C] () -- C:\WINDOWS\ifibifuyiwog.dll
[2004/08/04 08:00:00 | 000,071,060 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004/08/04 08:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004/08/04 08:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004/08/04 08:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004/08/04 08:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2004/08/04 08:00:00 | 000,001,788 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2004/08/04 08:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
========== LOP Check ========== [2007/04/16 21:09:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PlayFirst
[2007/06/08 09:49:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sandlot Games
[2007/07/01 19:10:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2007/12/07 19:19:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2007/02/21 22:05:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Justin White\Application Data\GetRightToGo
[2005/05/26 16:20:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Justin White\Application Data\InterTrust
[2009/07/20 09:29:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Justin White\Application Data\LimeWire
[2006/01/02 00:12:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Justin White\Application Data\MSNInstaller
[2007/04/16 21:09:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Justin White\Application Data\PlayFirst
[2007/06/08 09:49:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Justin White\Application Data\Sandlot Games
[2007/06/14 18:36:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Justin White\Application Data\Simple Star
[2006/07/15 11:16:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Justin White\Application Data\Template
[2007/10/25 21:43:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Justin White\Application Data\TomTom
[2007/03/15 20:21:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Justin White\Application Data\Turbine
[2007/12/22 15:16:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Justin White\Application Data\Walgreens
[2010/01/18 03:23:20 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
[2011/06/04 15:08:26 | 000,000,288 | ---- | M] () -- C:\WINDOWS\Tasks\Reimage Reminder.job
========== Purity Check ========== ========== Custom Scans ========== < %SYSTEMDRIVE%\*.exe > < MD5 for: EXPLORER.EXE >[2008/04/13 20:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\explorer.exe
[2007/06/13 07:26:03 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=7712DF0CDDE3A5AC89843E61CD5B3658 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007/06/13 06:23:07 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=97BD6515465659FF8F3B7BE375B2EA87 -- C:\WINDOWS\explorer.exe
[2007/06/13 06:23:07 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=97BD6515465659FF8F3B7BE375B2EA87 -- C:\WINDOWS\system32\dllcache\explorer.exe
[2004/08/04 08:00:00 | 001,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- C:\WINDOWS\$NtUninstallKB938828$\explorer.exe
< MD5 for: SVCHOST.EXE >[2008/04/13 20:12:36 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\svchost.exe
[2004/08/04 08:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- C:\WINDOWS\system32\dllcache\svchost.exe
[2004/08/04 08:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- C:\WINDOWS\system32\svchost.exe
< MD5 for: USERINIT.EXE >[2004/08/04 08:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\WINDOWS\system32\dllcache\userinit.exe
[2004/08/04 08:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\WINDOWS\system32\userinit.exe
[2008/04/13 20:12:38 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\userinit.exe
< MD5 for: WINLOGON.EXE >[2004/08/04 08:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=01C3346C241652F43AED8E2149881BFE -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2004/08/04 08:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=01C3346C241652F43AED8E2149881BFE -- C:\WINDOWS\system32\winlogon.exe
[2008/04/13 20:12:39 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\winlogon.exe
< %systemroot%\*. /mp /s > < hklm\software\clients\startmenuinternet|command /rs >HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2010/01/10 23:57:04 | 000,552,160 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2010/01/10 23:57:04 | 000,552,160 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2010/01/10 23:57:04 | 000,552,160 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2010/01/10 23:57:02 | 000,908,248 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2010/01/10 23:57:02 | 000,908,248 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2010/01/10 23:57:02 | 000,908,248 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand: "C:\Program Files\Google\Chrome\Application\chrome.exe" --show-icons [2011/05/20 01:54:14 | 001,010,232 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand: "C:\Program Files\Google\Chrome\Application\chrome.exe" --hide-icons [2011/05/20 01:54:14 | 001,010,232 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand: "C:\Program Files\Google\Chrome\Application\chrome.exe" --make-default-browser [2011/05/20 01:54:14 | 001,010,232 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\: "C:\Program Files\Google\Chrome\Application\chrome.exe" [2011/05/20 01:54:14 | 001,010,232 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\system32\ie4uinit.exe" -reinstall [2009/10/28 10:40:47 | 000,173,056 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -hide [2009/10/28 10:40:47 | 000,173,056 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -show [2009/10/28 10:40:47 | 000,173,056 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2009/03/08 14:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2009/03/08 14:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation)
========== Alternate Data Streams ========== @Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CAAA7DD7
Extras.txt logOTL Extras logfile created on: 6/4/2011 10:02:38 PM - Run 1
OTL by OldTimer - Version 3.2.23.0 Folder = C:\Documents and Settings\Justin White\My Documents\Downloads
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.00 Gb Total Physical Memory | 1.56 Gb Available Physical Memory | 77.87% Memory free
1.85 Gb Paging File | 1.62 Gb Available in Paging File | 87.58% Paging File free
Paging file location(s): [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 114.48 Gb Total Space | 53.15 Gb Free Space | 46.42% Space Free | Partition Type: NTFS
Drive F: | 671.44 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: JADEZAZALEE | User Name: Justin White | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 1
"UpdatesDisableNotify" = 1
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Yahoo!\Messenger\YPager.exe" = C:\Program Files\Yahoo!\Messenger\YPager.exe:*:Enabled:Yahoo! Messenger
"C:\Program Files\Yahoo!\Messenger\YServer.exe" = C:\Program Files\Yahoo!\Messenger\YServer.exe:*:Enabled:Yahoo! FT Server
"C:\Program Files\Common Files\AOL\Loader\aolload.exe" = C:\Program Files\Common Files\AOL\Loader\aolload.exe:*:Enabled:AOL Loader
"C:\Program Files\Curse\CurseClient.exe" = C:\Program Files\Curse\CurseClient.exe:*:Enabled:Curse Client
"C:\Program Files\AIM\aim.exe" = C:\Program Files\AIM\aim.exe:*:Enabled:AIM
"C:\Program Files\Steam\Steam.exe" = C:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)
"C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Disabled:LimeWire -- (Lime Wire, LLC)
"C:\Program Files\Turbine\The Lord of the Rings Online\TurbineInvoker.exe" = C:\Program Files\Turbine\The Lord of the Rings Online\TurbineInvoker.exe:*:Enabled:The Lord of the Rings Online -- (Turbine, Inc.)
"C:\Program Files\Turbine\The Lord of the Rings Online\lotroclient.exe" = C:\Program Files\Turbine\The Lord of the Rings Online\lotroclient.exe:*:Enabled:lotroclient.exe -- (Turbine, Inc.)
"C:\Program Files\Turbine\The Lord of the Rings Online\TurbineLauncher.exe" = C:\Program Files\Turbine\The Lord of the Rings Online\TurbineLauncher.exe:*:Enabled:TurbineLauncher.exe -- (Turbine, Inc.)
"C:\Program Files\Steam\steamapps\trufollyman\counter-strike\hl.exe" = C:\Program Files\Steam\steamapps\trufollyman\counter-strike\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Program Files\Steam\steamapps\common\the settlers heritage of kings\bin\SettlersHoK.exe" = C:\Program Files\Steam\steamapps\common\the settlers heritage of kings\bin\SettlersHoK.exe:*:Enabled:The Settlers - Heritage of Kings -- (Blue Byte Software)
"C:\Program Files\Steam\steamapps\trufollyman\counter-strike source\hl2.exe" = C:\Program Files\Steam\steamapps\trufollyman\counter-strike source\hl2.exe:*:Enabled:hl2 -- ()
"C:\Program Files\Steam\steamapps\trufollyman\condition zero\hl.exe" = C:\Program Files\Steam\steamapps\trufollyman\condition zero\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Program Files\Steam\steamapps\common\the settlers 6 gold\base\bin\S6MapEditor.exe" = C:\Program Files\Steam\steamapps\common\the settlers 6 gold\base\bin\S6MapEditor.exe:*:Enabled:The Settlers 6 - Gold Editor -- (Blue Byte GmbH)
"C:\Program Files\Steam\steamapps\common\the settlers 6 gold\extra1\bin\S6MapEditor.exe" = C:\Program Files\Steam\steamapps\common\the settlers 6 gold\extra1\bin\S6MapEditor.exe:*:Enabled:The Settlers 6 - Gold Editor -- (Blue Byte GmbH)
"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" = C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger
========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1D46A3A0-B37D-423A-91C2-101A49E2FF80}" = Ventrilo Server
"{1EECBA68-8BE4-4076-94DF-E9ED206B1D21}" = Star Wars Jedi Knight Jedi Academy
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{3248F0A8-6813-11D6-A77B-00B0D0160030}" = Java 6 Update 3
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3CBBEE47-C8F4-316A-92FF-ED7E3DFAE41E}" = ccc-core-static
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{47BF1BD6-DCAC-468F-A0AD-E5DECC2211C3}" = Bonjour
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{6EC874C2-F950-4B7E-A5B7-B1066D6B74AA}" = QuickTime
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo Client
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{A06275F4-324B-4E85-95E6-87B2CD729401}" = Windows Defender
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1033-7B44-A91000000001}" = Adobe Reader 9.1
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Plus Web Player
"{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}" = Apple Software Update
"{B85C4D19-6CEB-48CF-BD98-C887AC8C6F94}" = iTunes
"{BCE72AED-3332-4863-9567-C5DCB9052CA2}" = Netflix Movie Viewer
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C4124E95-5061-4776-8D5D-E3D931C778E1}" = Microsoft VC9 runtime libraries
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D8AB8F0C-CEEB-4A29-8EF5-219B064813F4}" = Apple Mobile Device Support
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AIM Search" = AIM Search
"am-risk" = Risk
"ATI Display Driver" = ATI Display Driver
"Google Chrome" = Google Chrome
"ie8" = Windows Internet Explorer 8
"IExplorer Security Plug-in" = IExplorer Security Plug-in
"LimeWire" = LimeWire 4.16.4
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.5.7)" = Mozilla Firefox (3.5.7)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Reimage Repair" = Reimage Repair
"Sierra Uninstall" = Sierra On-Line Games (Remove only)
"SoftwareUpdUtility" = Download Updater (AOL LLC)
"Steam App 10" = Counter-Strike
"Steam App 15310" = The Settlers - Heritage of Kings
"Steam App 15330" = The Settlers - Rise of an Empire
"Steam App 19930" = The Settlers VI - Gold
"Steam App 240" = Counter-Strike: Source
"Steam App 80" = Condition Zero
"UpMedia" = Uptown Engine
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows Safety Alert" = Windows Safety Alert
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Yahoo! Software Update" = Yahoo! Software Update
========== Last 10 Event Log Errors ========== [ Application Events ]
Error - 6/4/2011 3:47:35 AM | Computer Name = JADEZAZALEE | Source = Google Update | ID = 20
Description =
Error - 6/4/2011 4:01:50 AM | Computer Name = JADEZAZALEE | Source = Google Update | ID = 20
Description =
Error - 6/4/2011 4:15:42 AM | Computer Name = JADEZAZALEE | Source = Google Update | ID = 20
Description =
Error - 6/4/2011 4:27:05 AM | Computer Name = JADEZAZALEE | Source = Google Update | ID = 20
Description =
Error - 6/4/2011 4:30:05 AM | Computer Name = JADEZAZALEE | Source = Google Update | ID = 20
Description =
Error - 6/4/2011 4:28:16 AM | Computer Name = JADEZAZALEE | Source = crypt32 | ID = 131083
Description = Failed extract of third-party root list from auto update cab at: <
http://www.download....uthrootstl.cab> with error: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file.
Error - 6/4/2011 4:28:16 AM | Computer Name = JADEZAZALEE | Source = crypt32 | ID = 131083
Description = Failed extract of third-party root list from auto update cab at: <
http://www.download....uthrootstl.cab> with error: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file.
Error - 6/4/2011 4:28:24 AM | Computer Name = JADEZAZALEE | Source = crypt32 | ID = 131083
Description = Failed extract of third-party root list from auto update cab at: <
http://www.download....uthrootstl.cab> with error: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file.
Error - 6/4/2011 4:28:24 AM | Computer Name = JADEZAZALEE | Source = crypt32 | ID = 131083
Description = Failed extract of third-party root list from auto update cab at: <
http://www.download....uthrootstl.cab> with error: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file.
Error - 6/4/2011 4:46:53 AM | Computer Name = JADEZAZALEE | Source = Application Hang | ID = 1002
Description = Hanging application firefox.exe, version 1.9.1.3642, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.
[ System Events ]
Error - 6/4/2011 2:45:03 PM | Computer Name = JADEZAZALEE | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service StiSvc with
arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
Error - 6/4/2011 2:51:48 PM | Computer Name = JADEZAZALEE | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service StiSvc with
arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
Error - 6/4/2011 2:54:48 PM | Computer Name = JADEZAZALEE | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 6/4/2011 3:22:27 PM | Computer Name = JADEZAZALEE | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 6/4/2011 3:23:10 PM | Computer Name = JADEZAZALEE | Source = Service Control Manager | ID = 7001
Description = The DHCP Client service depends on the NetBios over Tcpip service
which failed to start because of the following error: %%31
Error - 6/4/2011 3:23:10 PM | Computer Name = JADEZAZALEE | Source = Service Control Manager | ID = 7001
Description = The DNS Client service depends on the TCP/IP Protocol Driver service
which failed to start because of the following error: %%31
Error - 6/4/2011 3:23:10 PM | Computer Name = JADEZAZALEE | Source = Service Control Manager | ID = 7001
Description = The TCP/IP NetBIOS Helper service depends on the AFD service which
failed to start because of the following error: %%31
Error - 6/4/2011 3:23:10 PM | Computer Name = JADEZAZALEE | Source = Service Control Manager | ID = 7001
Description = The IPSEC Services service depends on the IPSEC driver service which
failed to start because of the following error: %%31
Error - 6/4/2011 3:23:10 PM | Computer Name = JADEZAZALEE | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
AFD AmdK7 eeCtrl Fips IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss Tcpip WS2IFSL
Error - 6/4/2011 3:26:38 PM | Computer Name = JADEZAZALEE | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Not sure if this is exactly what you need, but I thank you for your time in helping me.
/edit
Edited by follyman, 04 June 2011 - 11:32 AM.