Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Spoofed email address

Started by muggspongedice , Jun 04 2011 06:57 PM

  • Please log in to reply

#1
muggspongedice
Posted 04 June 2011 - 06:57 PM

muggspongedice

    New Member

  • Member
  • Pip
  • 1 posts
OTL logfile created on: 6/4/2011 5:36:43 PM - Run 1
OTL by OldTimer - Version 3.2.23.0 Folder = I:\Documents and Settings\Owner\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.00 Gb Total Physical Memory | 1.31 Gb Available Physical Memory | 43.69% Memory free
4.84 Gb Paging File | 2.90 Gb Available in Paging File | 59.99% Paging File free
Paging file location(s): I:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = I: | %SystemRoot% = I:\WINDOWS | %ProgramFiles% = I:\Program Files
Drive D: | 372.61 Gb Total Space | 372.05 Gb Free Space | 99.85% Space Free | Partition Type: NTFS
Drive I: | 298.08 Gb Total Space | 240.39 Gb Free Space | 80.65% Space Free | Partition Type: NTFS

Computer Name: OWNER-5329474AC | User Name: Owner | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/06/04 17:36:24 | 000,580,096 | ---- | M] (OldTimer Tools) -- I:\Documents and Settings\Owner\Desktop\OTL-www.geekstogo.com
PRC - [2011/03/12 19:48:21 | 000,273,544 | ---- | M] (RealNetworks, Inc.) -- I:\Program Files\Real\RealPlayer\Update\realsched.exe
PRC - [2010/11/30 14:20:36 | 000,997,408 | ---- | M] (Microsoft Corporation) -- I:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2010/11/11 13:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) -- I:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2010/09/28 13:38:42 | 001,048,576 | ---- | M] (Xmarks.com) -- I:\Program Files\Xmarks\IE Extension\xmarkssync.exe
PRC - [2010/08/04 14:55:36 | 000,692,317 | ---- | M] ( ) -- I:\Program Files\SAMSUNG\FW LiveUpdate\FWManager.exe
PRC - [2010/02/10 04:23:08 | 000,611,696 | ---- | M] (Juniper Networks) -- I:\Program Files\Juniper Networks\Common Files\dsNcService.exe
PRC - [2009/12/22 12:31:50 | 000,024,576 | ---- | M] () -- I:\Program Files\LG Soft India\EasySetPackage\bin\TestDDCCI.exe
PRC - [2009/12/22 12:30:54 | 000,159,744 | ---- | M] () -- I:\Program Files\LG Soft India\EasySetPackage\bin\EasySetPackage.exe
PRC - [2009/11/01 18:30:00 | 002,508,104 | ---- | M] (CANON INC.) -- I:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
PRC - [2009/09/08 14:12:51 | 000,116,104 | ---- | M] () -- I:\Program Files\Canon\IJPLM\ijplmsvc.exe
PRC - [2009/08/24 12:27:05 | 000,297,984 | ---- | M] (MoRUN.net) -- I:\Program Files\ClearAllHistory\cah.exe
PRC - [2009/07/20 07:22:52 | 000,045,056 | ---- | M] () -- I:\WINDOWS\system32\UTSCSI.EXE
PRC - [2009/05/01 05:01:01 | 000,451,584 | ---- | M] (MoRUN.net) -- I:\Program Files\DeleteFilesPermanently\DFP.exe
PRC - [2009/03/05 17:07:20 | 002,260,480 | ---- | M] (Safer-Networking Ltd.) -- I:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2008/12/16 21:59:50 | 000,150,040 | ---- | M] (Logitech Inc.) -- I:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
PRC - [2008/05/03 17:16:59 | 000,036,864 | ---- | M] (Logitech) -- I:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
PRC - [2008/04/13 17:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- I:\WINDOWS\explorer.exe
PRC - [2008/01/22 10:13:32 | 001,201,448 | ---- | M] (Nero AG) -- I:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
PRC - [2008/01/22 10:13:20 | 000,152,872 | ---- | M] (Nero AG) -- I:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2007/11/26 14:54:12 | 001,554,728 | ---- | M] (Nero AG) -- I:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
PRC - [2007/09/04 19:25:44 | 000,131,072 | ---- | M] (NVIDIA) -- I:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
PRC - [2007/07/16 11:58:02 | 001,524,512 | ---- | M] (Cisco Systems, Inc.) -- I:\Program Files\Cisco Systems\VPN Client\cvpnd.exe


========== Modules (SafeList) ==========

MOD - [2011/06/04 17:36:24 | 000,580,096 | ---- | M] (OldTimer Tools) -- I:\Documents and Settings\Owner\Desktop\OTL-www.geekstogo.com
MOD - [2010/08/23 09:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- I:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2009/12/22 12:30:36 | 000,057,344 | ---- | M] () -- I:\Program Files\LG Soft India\EasySetPackage\bin\Hook.dll
MOD - [2009/08/24 09:52:10 | 000,057,344 | ---- | M] () -- I:\Program Files\ClearAllHistory\hook.dll
MOD - [2009/02/22 09:37:28 | 000,057,344 | ---- | M] () -- I:\Program Files\DeleteFilesPermanently\hook.dll
MOD - [2008/05/03 17:16:55 | 000,024,613 | ---- | M] (BackWeb) -- I:\Documents and Settings\Owner\Local Settings\Temp\IadHide5.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2010/11/16 02:10:14 | 000,267,568 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- I:\Program Files\Microsoft Fix it Center\Matsvc.exe -- (MatSvc)
SRV - [2010/11/11 13:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- I:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2010/04/16 10:03:12 | 000,386,424 | ---- | M] (SupportSoft, Inc.) [Auto | Stopped] -- I:\Program Files\Common Files\Supportsoft\bin\ssrc.exe -- (SupportSoft RemoteAssist)
SRV - [2010/02/10 04:23:08 | 000,611,696 | ---- | M] (Juniper Networks) [Auto | Running] -- I:\Program Files\Juniper Networks\Common Files\dsNcService.exe -- (dsNcService)
SRV - [2009/09/08 14:12:51 | 000,116,104 | ---- | M] () [Auto | Running] -- I:\Program Files\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
SRV - [2009/07/20 07:22:52 | 000,045,056 | ---- | M] () [Auto | Running] -- I:\WINDOWS\system32\UTSCSI.EXE -- (UTSCSI)
SRV - [2008/12/16 21:59:50 | 000,150,040 | ---- | M] (Logitech Inc.) [Auto | Running] -- I:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
SRV - [2007/11/26 14:54:12 | 001,554,728 | ---- | M] (Nero AG) [Auto | Running] -- I:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe -- (InCDsrv)
SRV - [2007/09/04 19:25:44 | 000,131,072 | ---- | M] (NVIDIA) [Auto | Running] -- I:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe -- (nTuneService)
SRV - [2007/07/16 11:58:02 | 001,524,512 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- I:\Program Files\Cisco Systems\VPN Client\cvpnd.exe -- (CVPND)


========== Driver Services (SafeList) ==========

DRV - [2011/06/04 02:18:26 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- I:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{7E10C887-1F92-4052-8FC4-E72C3121C243}\MpKsl2297a1b7.sys -- (MpKsl2297a1b7)
DRV - [2011/03/19 16:45:37 | 000,231,248 | ---- | M] (TrueCrypt Foundation) [Kernel | System | Running] -- I:\WINDOWS\system32\drivers\truecrypt.sys -- (truecrypt)
DRV - [2010/04/28 08:44:02 | 000,054,760 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- I:\WINDOWS\system32\drivers\fssfltr_tdi.sys -- (fssfltr)
DRV - [2010/02/10 03:19:10 | 000,023,552 | ---- | M] (Juniper Networks) [Kernel | On_Demand | Running] -- I:\WINDOWS\system32\drivers\dsNcAdpt.sys -- (dsNcAdpt)
DRV - [2009/12/22 12:30:46 | 000,019,456 | ---- | M] (LG Soft India) [Kernel | On_Demand | Stopped] -- I:\WINDOWS\system32\LGPII2CDriver.sys -- (LGII2CDevice)
DRV - [2009/12/22 12:30:36 | 000,016,384 | ---- | M] (LG Soft India) [Kernel | On_Demand | Running] -- I:\WINDOWS\system32\LGI2CDriver.sys -- (LGDDCDevice)
DRV - [2008/12/16 23:02:06 | 000,023,832 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- I:\WINDOWS\system32\drivers\lvuvcflt.sys -- (FilterService)
DRV - [2008/12/16 23:01:42 | 006,364,440 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- I:\WINDOWS\system32\drivers\lvuvc.sys -- (LVUVC) QuickCam Orbit/Sphere MP(UVC)
DRV - [2008/12/16 23:01:20 | 000,041,752 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- I:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2008/12/16 23:00:34 | 000,066,456 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- I:\WINDOWS\system32\drivers\lvselsus.sys -- (lvselsus)
DRV - [2008/12/16 23:00:12 | 000,768,024 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- I:\WINDOWS\system32\drivers\lvrs.sys -- (LVRS)
DRV - [2008/12/16 22:58:30 | 000,114,712 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- I:\WINDOWS\system32\drivers\lvpopflt.sys -- (lvpopflt)
DRV - [2008/12/16 21:58:54 | 000,025,624 | ---- | M] () [Kernel | On_Demand | Running] -- I:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
DRV - [2008/08/26 14:44:48 | 000,073,600 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | On_Demand | Running] -- I:\WINDOWS\system32\drivers\DlinkUDSMBus.sys -- (DlinkUDSMBus)
DRV - [2008/08/26 14:44:42 | 000,097,536 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- I:\WINDOWS\system32\drivers\DlinkUDSTcpBus.sys -- (DlinkUDSTcpBus)
DRV - [2008/04/21 14:44:18 | 000,015,600 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | On_Demand | Stopped] -- I:\WINDOWS\gdrv.sys -- (gdrv)
DRV - [2008/02/27 13:49:00 | 000,003,840 | ---- | M] () [Kernel | System | Running] -- I:\WINDOWS\System32\Drivers\BANTExt.sys -- (BANTExt)
DRV - [2008/01/25 02:12:34 | 000,025,088 | ---- | M] (TeamViewer GmbH) [Kernel | On_Demand | Stopped] -- I:\WINDOWS\system32\drivers\teamviewervpn.sys -- (teamviewervpn)
DRV - [2007/11/26 14:54:12 | 000,038,440 | ---- | M] (Nero AG) [Kernel | System | Running] -- I:\WINDOWS\system32\drivers\InCDRm.sys -- (incdrm)
DRV - [2007/11/26 14:54:12 | 000,036,776 | ---- | M] (Nero AG) [Kernel | System | Running] -- I:\WINDOWS\system32\drivers\InCDPass.sys -- (InCDPass)
DRV - [2007/11/26 14:54:02 | 000,118,952 | ---- | M] (Nero AG) [File_System | Disabled | Running] -- I:\WINDOWS\system32\drivers\InCDfs.sys -- (InCDfs)
DRV - [2007/09/04 19:26:32 | 000,029,696 | ---- | M] (NVidia Corp.) [Kernel | On_Demand | Running] -- I:\WINDOWS\nvoclock.sys -- (NVR0Dev)
DRV - [2007/08/07 02:40:38 | 000,098,944 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- I:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2007/07/18 04:26:04 | 004,547,584 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- I:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007/07/16 11:57:12 | 000,306,299 | ---- | M] (Cisco Systems, Inc.) [Kernel | Auto | Running] -- I:\WINDOWS\system32\drivers\CVPNDRVA.sys -- (CVPNDRVA)
DRV - [2007/01/31 13:45:06 | 000,127,376 | ---- | M] (Deterministic Networks, Inc.) [Kernel | On_Demand | Running] -- I:\WINDOWS\system32\drivers\dne2000.sys -- (DNE)
DRV - [2007/01/18 15:28:02 | 000,005,275 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- I:\WINDOWS\system32\drivers\CVirtA.sys -- (CVirtA)
DRV - [2005/01/26 09:22:20 | 000,280,344 | ---- | M] (Zone Labs LLC) [Kernel | On_Demand | Stopped] -- I:\WINDOWS\system32\vsdatant.sys -- (vsdatant)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\URLSearchHook: {472734EA-242A-422b-ADF8-83D1E48CC825} - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {CA3EB689-8F09-4026-AA10-B9534C691CE0} - I:\Program Files\Search Toolbar\tbhelper.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.msn.com/"
FF - prefs.js..extensions.enabledItems: [email protected]:2.0.5
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {896642E4-C556-4ED3-85D1-9AC431603E7D}:1.0.4
FF - prefs.js..extensions.enabledItems: [email protected]:3.9.2
FF - prefs.js..extensions.enabledItems: [email protected]:1.2
FF - prefs.js..keyword.URL: "http://bing.zugotool...s&site=Bing&q="


FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: I:\Program Files\Mozilla Firefox\components [2011/03/12 19:48:37 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: I:\Program Files\Mozilla Firefox\plugins [2011/03/12 19:48:55 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 2.0.0.21\extensions\\Components: I:\Program Files\Mozilla Thunderbird\components [2011/03/12 19:48:37 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 2.0.0.21\extensions\\Plugins: I:\Program Files\Mozilla Thunderbird\plugins [2011/03/12 19:48:55 | 000,000,000 | ---D | M]

[2009/05/24 12:59:43 | 000,000,000 | ---D | M] (No name found) -- I:\Documents and Settings\Owner\Application Data\Mozilla\Extensions
[2011/05/20 23:43:46 | 000,000,000 | ---D | M] (No name found) -- I:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\hvv559z7.default\extensions
[2010/04/28 08:34:03 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- I:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\hvv559z7.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/05/20 23:43:47 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- I:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\hvv559z7.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2010/02/05 20:10:53 | 000,000,000 | ---D | M] (Search Toolbar) -- I:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\hvv559z7.default\extensions\{896642E4-C556-4ED3-85D1-9AC431603E7D}
[2010/03/19 23:42:24 | 000,000,000 | ---D | M] ("CyberSearch") -- I:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\hvv559z7.default\extensions\[email protected]
[2010/09/29 18:30:30 | 000,000,000 | ---D | M] ("Xmarks") -- I:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\hvv559z7.default\extensions\[email protected]
[2010/09/21 04:53:07 | 000,000,000 | ---D | M] (Advertising Cookie Opt-out) -- I:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\hvv559z7.default\extensions\[email protected]
[2010/02/08 18:40:29 | 000,002,188 | ---- | M] () -- I:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\hvv559z7.default\searchplugins\bing-ff.xml
[2011/01/20 13:54:20 | 000,002,282 | ---- | M] () -- I:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\hvv559z7.default\searchplugins\surf-canyon.xml
[2011/01/15 09:15:34 | 000,000,000 | ---D | M] (No name found) -- I:\Program Files\Mozilla Firefox\extensions
[2011/01/11 05:28:28 | 000,000,000 | ---D | M] (No name found) -- I:\Program Files\Mozilla Firefox\extensions(2)
[2011/01/10 20:06:31 | 000,000,000 | ---D | M] (Default) -- I:\Program Files\Mozilla Firefox\extensions(2)\{972ce4c6-7e08-4474-a285-3208198ce6fd}(2)
[2008/12/17 22:33:27 | 000,000,000 | ---D | M] (Java Quick Starter) -- I:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF

O1 HOSTS File: ([2011/03/31 20:06:30 | 000,431,524 | R--- | M]) - I:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 14854 more lines...
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - I:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - I:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - File not found
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - I:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - I:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Advertising Cookie Opt-out) - {8E425EB4-ADBD-4816-B1E8-49BB9DECF034} - I:\Program Files\Google\Advertising Cookie Opt-out\opt_out.dll (Google Inc)
O2 - BHO: (&UpdateCheck.dll) - {B8E3C08D-BFB2-4BE1-9C9D-74BB99923FDB} - File not found
O2 - BHO: (TBSB05974 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - I:\Program Files\Search Toolbar\tbcore3.dll ()
O3 - HKLM\..\Toolbar: (Search Toolbar) - {0C8413C1-FAD1-446C-8584-BE50576F863E} - I:\Program Files\Search Toolbar\tbcore3.dll ()
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - I:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKCU\..\Toolbar\WebBrowser: (Search Toolbar) - {0C8413C1-FAD1-446C-8584-BE50576F863E} - I:\Program Files\Search Toolbar\tbcore3.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - I:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O4 - HKLM..\Run: [CanonMyPrinter] I:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenu] I:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4 - HKLM..\Run: [D-Link Network USB Utility] I:\Program Files\D-Link\SharePort Network USB Utility\SharePort Network USB Utility.exe ()
O4 - HKLM..\Run: [D-Link SharePort] I:\Program Files\D-Link\SharePort\SharePort.exe (D-Link Corporation)
O4 - HKLM..\Run: [MSC] I:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Name of App] I:\Program Files\SAMSUNG\FW LiveUpdate\FWManager.exe ( )
O4 - HKLM..\Run: [NeroFilterCheck] I:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] I:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] I:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [TkBellExe] I:\Program Files\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.)
O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] I:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKCU..\Run: [ClearAllHistory] I:\Program Files\ClearAllHistory\cah.exe (MoRUN.net)
O4 - HKCU..\Run: [DeleteFilesPermanently] I:\Program Files\DeleteFilesPermanently\DFP.exe (MoRUN.net)
O4 - HKCU..\Run: [Google Update] File not found
O4 - HKCU..\Run: [HideMyBrowserFree] File not found
O4 - HKCU..\Run: [I:!Documents and Settings!Owner!Local Settings!Application Data!Google!Chrome!User Data_service_run] I:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (Google Inc.)
O4 - HKCU..\Run: [LDM] I:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Logitech)
O4 - HKCU..\Run: [Messenger (Yahoo!)] File not found
O4 - HKCU..\Run: [NVIDIA nTune] I:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe (NVIDIA)
O4 - HKCU..\Run: [SpybotSD TeaTimer] I:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - HKCU..\Run: [Xmarks] I:\Program Files\Xmarks\IE Extension\xmarkssync.exe (Xmarks.com)
O4 - HKLM..\RunOnce: [index] I:\Program Files\ClearAllHistory\index.bat ()
O4 - HKCU..\RunOnce: [FlashPlayerUpdate] I:\WINDOWS\System32\Macromed\Flash\FlashUtil10p_ActiveX.exe (Adobe Systems, Inc.)
O4 - Startup: I:\Documents and Settings\All Users\Start Menu\Programs\Startup\AutorunsDisabled [2009/03/29 12:22:50 | 000,000,000 | -H-D | M]
O4 - Startup: I:\Documents and Settings\All Users\Start Menu\Programs\Startup\EasySetPackage.lnk = I:\Program Files\LG Soft India\EasySetPackage\bin\EasySetPackage.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - I:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - I:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O15 - HKCU\..Trusted Domains: //@install.mar@/ ([]msni in My Computer)
O15 - HKCU\..Trusted Domains: //@mail.mar@/ ([]msni in Local intranet)
O15 - HKCU\..Trusted Domains: localhost ([]http in Local intranet)
O15 - HKCU\..Trusted Ranges: GD ([http] in Local intranet)
O16 - DPF: {01113300-3E00-11D2-8470-0060089874ED} https://supportcente...oad/tgctlcm.cab (Support.com Configuration Class)
O16 - DPF: {3D3B42C2-11BF-4732-A304-A01384B70D68} http://picasaweb.goo...0/uploader2.cab (UploadListView Class)
O16 - DPF: {474F00F5-3853-492C-AC3A-476512BBC336} http://picasaweb.goo...8/uploader2.cab (UploadListView Class)
O16 - DPF: {58857C81-376A-43F5-9BCF-506F98132422} http://www.opiron.ne...viceManager.cab (DeviceManager Control)
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} http://cdn.scan.onec...lscbase5036.cab (Windows Live Safety Center Base Module)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_11)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_05)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_11)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_11)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (Reg Error: Value error.)
O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://juniper.net/...SetupClient.cab (JuniperSetupClientControl Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\belarc {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - I:\Program Files\Belarc\Advisor\System\BAVoilaX.dll (Belarc, Inc.)
O18 - Protocol\Handler\bw+0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw+0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw-0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw00 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw00s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw-0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw10 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw10s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw20 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw20s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw30 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw30s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw40 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw40s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw50 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw50s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw60 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw60s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw70 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw70s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw80 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw80s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw90 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw90s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwa0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwa0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwb0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwb0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwc0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwc0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwd0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwd0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwe0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwe0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwf0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwf0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwg0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwg0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwh0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwh0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwi0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwi0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwj0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwj0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwk0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwk0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwl0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwl0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwm0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwm0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwn0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwn0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwo0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwo0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwp0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwp0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwq0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwq0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwr0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwr0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bws0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bws0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwt0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwt0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwu0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwu0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwv0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwv0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bww0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bww0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwx0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwx0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwy0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwy0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwz0 {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwz0s {76628a91-7dd2-473f-9ccd-aab948e8f091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\offline-8876480 {76628A91-7DD2-473F-9CCD-AAB948E8F091} - I:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O20 - AppInit_DLLs: (I:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL) - I:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - I:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: I:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: I:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - I:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{0bf4b06c-100d-11dd-baaa-001a4d4d99c5}\Shell - "" = AutoRun
O33 - MountPoints2\{0bf4b06c-100d-11dd-baaa-001a4d4d99c5}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{0bf4b06c-100d-11dd-baaa-001a4d4d99c5}\Shell\AutoRun\command - "" = E:\launcher.exe
O33 - MountPoints2\{479ead9c-13e7-11dd-bab3-001a4d4d99c5}\Shell - "" = AutoRun
O33 - MountPoints2\{479ead9c-13e7-11dd-bab3-001a4d4d99c5}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{479ead9c-13e7-11dd-bab3-001a4d4d99c5}\Shell\AutoRun\command - "" = E:\launcher.exe
O33 - MountPoints2\{a92ddcc8-2c8b-11de-bb96-001a4d4d99c5}\Shell - "" = AutoRun
O33 - MountPoints2\{a92ddcc8-2c8b-11de-bb96-001a4d4d99c5}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{a92ddcc8-2c8b-11de-bb96-001a4d4d99c5}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O33 - MountPoints2\{cb6acbae-738f-11e0-bcb0-001a4d4d99c5}\Shell - "" = AutoRun
O33 - MountPoints2\{cb6acbae-738f-11e0-bcb0-001a4d4d99c5}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{cb6acbae-738f-11e0-bcb0-001a4d4d99c5}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O33 - MountPoints2\{efd0e636-0fed-11dd-baa6-001a4d4d99c5}\Shell - "" = AutoRun
O33 - MountPoints2\{efd0e636-0fed-11dd-baa6-001a4d4d99c5}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{efd0e636-0fed-11dd-baa6-001a4d4d99c5}\Shell\AutoRun\command - "" = E:\launcher.exe
O33 - MountPoints2\{efd0e637-0fed-11dd-baa6-001a4d4d99c5}\Shell\AutoRun\command - "" = C:\xp19.com
O33 - MountPoints2\{efd0e637-0fed-11dd-baa6-001a4d4d99c5}\Shell\explore\Command - "" = C:\xp19.com
O33 - MountPoints2\{efd0e637-0fed-11dd-baa6-001a4d4d99c5}\Shell\open\Command - "" = C:\xp19.com
O33 - MountPoints2\E\Shell - "" = AutoRun
O33 - MountPoints2\E\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\launcher.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/06/04 17:36:09 | 000,580,096 | ---- | C] (OldTimer Tools) -- I:\Documents and Settings\Owner\Desktop\OTL-www.geekstogo.com
[2011/05/31 18:48:46 | 000,000,000 | RH-D | C] -- I:\Documents and Settings\Owner\Recent
[2011/05/28 15:56:30 | 000,000,000 | ---D | C] -- I:\Documents and Settings\Owner\My Documents\Privacy for COPS
[2011/05/26 18:24:18 | 000,000,000 | ---D | C] -- I:\Program Files\Citrix
[2011/05/14 10:10:29 | 000,000,000 | ---D | C] -- I:\Documents and Settings\Owner\Application Data\Yahoo!
[2011/05/14 10:10:29 | 000,000,000 | ---D | C] -- I:\Documents and Settings\Owner\Local Settings\Application Data\Yahoo
[6 I:\WINDOWS\System32\*.tmp files -> I:\WINDOWS\System32\*.tmp -> ]
[6 I:\WINDOWS\*.tmp files -> I:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/06/04 17:36:24 | 000,580,096 | ---- | M] (OldTimer Tools) -- I:\Documents and Settings\Owner\Desktop\OTL-www.geekstogo.com
[2011/06/04 17:29:00 | 000,000,886 | ---- | M] () -- I:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/06/04 17:22:00 | 000,000,978 | ---- | M] () -- I:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1004336348-1177238915-682003330-1003UA.job
[2011/06/04 16:12:48 | 000,000,422 | -H-- | M] () -- I:\WINDOWS\tasks\User_Feed_Synchronization-{6AA84047-C8CB-41B4-8149-F08C17A188F2}.job
[2011/06/04 14:55:00 | 000,000,580 | -H-- | M] () -- I:\WINDOWS\tasks\DataUpload.job
[2011/06/04 11:22:00 | 000,000,926 | ---- | M] () -- I:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1004336348-1177238915-682003330-1003Core.job
[2011/06/04 08:29:00 | 000,000,882 | ---- | M] () -- I:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/06/04 02:16:55 | 000,000,424 | -H-- | M] () -- I:\WINDOWS\tasks\MP Scheduled Scan.job
[2011/06/03 19:40:10 | 000,000,474 | -H-- | M] () -- I:\WINDOWS\tasks\Norton Security Scan for Owner.job
[2011/06/01 20:42:00 | 000,000,286 | ---- | M] () -- I:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-1004336348-1177238915-682003330-1003.job
[2011/06/01 00:18:40 | 000,000,462 | ---- | M] () -- I:\Documents and Settings\Owner\Application Data\SamsungLiveUpdateConfig.ini
[2011/05/31 21:25:59 | 000,000,069 | ---- | M] () -- I:\WINDOWS\NeroDigital.ini
[2011/05/31 19:13:29 | 000,054,156 | -H-- | M] () -- I:\WINDOWS\QTFont.qfn
[2011/05/31 18:57:29 | 000,000,616 | -H-- | M] () -- I:\WINDOWS\tasks\ConfigExec.job
[2011/05/31 18:57:29 | 000,000,278 | ---- | M] () -- I:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-1004336348-1177238915-682003330-1003.job
[2011/05/31 18:57:17 | 000,002,048 | --S- | M] () -- I:\WINDOWS\bootstat.dat
[2011/05/31 18:57:13 | 000,000,000 | ---- | M] () -- I:\WINDOWS\System32\drivers\lvuvc.hs
[2011/05/31 18:57:10 | 000,000,000 | ---- | M] () -- I:\WINDOWS\System32\drivers\logiflt.iad
[2011/05/31 18:51:19 | 000,013,646 | ---- | M] () -- I:\WINDOWS\System32\wpa.dbl
[2011/05/31 05:06:05 | 000,029,090 | ---- | M] () -- I:\Documents and Settings\Owner\My Documents\Jessie Tues May 31 2011-2..jpg
[2011/05/31 04:56:10 | 000,009,844 | ---- | M] () -- I:\Documents and Settings\Owner\My Documents\Jessie Tues May 31 2011..jpg
[2011/05/28 17:53:58 | 000,170,496 | ---- | M] () -- I:\Documents and Settings\Owner\My Documents\Golden Gate Bridge begins march to 75th.msg
[2011/05/26 18:24:10 | 000,103,784 | ---- | M] () -- I:\Documents and Settings\Owner\GoToAssistDownloadHelper.exe
[2011/05/23 20:24:06 | 000,001,409 | ---- | M] () -- I:\WINDOWS\QTFont.for
[2011/05/15 08:53:39 | 000,000,177 | ---- | M] () -- I:\Documents and Settings\Owner\default.pls
[2011/05/08 10:02:02 | 000,041,472 | ---- | M] () -- I:\Documents and Settings\Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[6 I:\WINDOWS\System32\*.tmp files -> I:\WINDOWS\System32\*.tmp -> ]
[6 I:\WINDOWS\*.tmp files -> I:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/05/31 05:06:01 | 000,029,090 | ---- | C] () -- I:\Documents and Settings\Owner\My Documents\Jessie Tues May 31 2011-2..jpg
[2011/05/31 04:56:07 | 000,009,844 | ---- | C] () -- I:\Documents and Settings\Owner\My Documents\Jessie Tues May 31 2011..jpg
[2011/05/28 17:53:58 | 000,170,496 | ---- | C] () -- I:\Documents and Settings\Owner\My Documents\Golden Gate Bridge begins march to 75th.msg
[2011/05/26 18:24:09 | 000,103,784 | ---- | C] () -- I:\Documents and Settings\Owner\GoToAssistDownloadHelper.exe
[2011/05/23 20:24:06 | 000,054,156 | -H-- | C] () -- I:\WINDOWS\QTFont.qfn
[2011/05/23 20:24:06 | 000,001,409 | ---- | C] () -- I:\WINDOWS\QTFont.for
[2011/01/11 06:16:19 | 000,041,472 | ---- | C] () -- I:\Documents and Settings\Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/08/15 21:45:25 | 000,000,462 | ---- | C] () -- I:\Documents and Settings\Owner\Application Data\SamsungLiveUpdateConfig.ini
[2010/08/01 16:57:57 | 000,065,536 | ---- | C] () -- I:\WINDOWS\System32\LGErrorHandler.dll
[2010/06/26 13:58:21 | 000,073,220 | ---- | C] () -- I:\WINDOWS\System32\EPPICPrinterDB.dat
[2010/06/26 13:58:21 | 000,021,021 | ---- | C] () -- I:\WINDOWS\System32\EPPICPattern3.dat
[2010/06/26 13:58:21 | 000,015,670 | ---- | C] () -- I:\WINDOWS\System32\EPPICPattern5.dat
[2010/06/26 13:58:21 | 000,010,673 | ---- | C] () -- I:\WINDOWS\System32\EPPICPattern4.dat
[2010/06/26 13:58:21 | 000,004,943 | ---- | C] () -- I:\WINDOWS\System32\EPPICPattern6.dat
[2010/06/26 13:58:21 | 000,001,140 | ---- | C] () -- I:\WINDOWS\System32\EPPICPresetData_PT.dat
[2010/06/26 13:58:21 | 000,001,140 | ---- | C] () -- I:\WINDOWS\System32\EPPICPresetData_BP.dat
[2010/06/26 13:58:21 | 000,001,137 | ---- | C] () -- I:\WINDOWS\System32\EPPICPresetData_ES.dat
[2010/06/26 13:58:21 | 000,001,130 | ---- | C] () -- I:\WINDOWS\System32\EPPICPresetData_FR.dat
[2010/06/26 13:58:21 | 000,001,130 | ---- | C] () -- I:\WINDOWS\System32\EPPICPresetData_CF.dat
[2010/06/26 13:58:21 | 000,001,104 | ---- | C] () -- I:\WINDOWS\System32\EPPICPresetData_EN.dat
[2010/06/26 13:58:21 | 000,000,097 | ---- | C] () -- I:\WINDOWS\System32\PICSDK.ini
[2010/06/26 13:58:20 | 000,031,053 | ---- | C] () -- I:\WINDOWS\System32\EPPICPattern131.dat
[2010/06/26 13:58:20 | 000,029,114 | ---- | C] () -- I:\WINDOWS\System32\EPPICPattern1.dat
[2010/06/26 13:58:20 | 000,027,417 | ---- | C] () -- I:\WINDOWS\System32\EPPICPattern121.dat
[2010/06/26 13:58:20 | 000,013,280 | ---- | C] () -- I:\WINDOWS\System32\EPPICPattern2.dat
[2010/06/05 09:34:01 | 000,000,306 | ---- | C] () -- I:\WINDOWS\wininit.ini
[2010/01/24 01:37:07 | 000,000,046 | ---- | C] () -- I:\WINDOWS\System32\DonationCoder_findrunrobot_InstallInfo.dat
[2009/08/16 17:14:31 | 008,892,928 | ---- | C] () -- I:\Documents and Settings\All Users\Application Data\atscie.msi
[2009/07/20 11:13:32 | 000,417,792 | ---- | C] () -- I:\WINDOWS\UDLL.dll
[2009/07/20 11:13:32 | 000,221,184 | ---- | C] () -- I:\WINDOWS\System32\Opiron_SEM08.dll
[2009/07/20 11:13:32 | 000,024,576 | ---- | C] () -- I:\WINDOWS\System32\GetDeviceInfo.dll
[2009/07/20 11:13:31 | 000,163,840 | ---- | C] () -- I:\WINDOWS\MU828it.dll
[2009/07/20 11:13:31 | 000,155,648 | ---- | C] () -- I:\WINDOWS\OPDSL.dll
[2009/07/20 07:22:52 | 000,045,056 | ---- | C] () -- I:\WINDOWS\System32\UTSCSI.EXE
[2009/05/24 12:59:43 | 000,000,000 | ---- | C] () -- I:\WINDOWS\nsreg.dat
[2008/12/25 10:21:23 | 000,007,680 | ---- | C] () -- I:\WINDOWS\System32\ff_vfw.dll
[2008/12/16 21:58:54 | 000,025,624 | ---- | C] () -- I:\WINDOWS\System32\drivers\LVPr2Mon.sys
[2008/12/16 21:50:56 | 000,013,584 | ---- | C] () -- I:\WINDOWS\System32\drivers\iKeyLgFT.dll
[2008/06/08 13:13:55 | 000,000,288 | ---- | C] () -- I:\WINDOWS\ODBC.INI
[2008/05/26 21:59:42 | 000,018,904 | ---- | C] () -- I:\WINDOWS\System32\structuredqueryschematrivial.bin
[2008/05/26 21:59:40 | 000,106,605 | ---- | C] () -- I:\WINDOWS\System32\structuredqueryschema.bin
[2008/05/20 05:14:11 | 000,000,151 | ---- | C] () -- I:\WINDOWS\PhotoSnapViewer.INI
[2008/05/19 16:28:04 | 000,000,069 | ---- | C] () -- I:\WINDOWS\NeroDigital.ini
[2008/05/03 17:22:02 | 000,081,110 | ---- | C] () -- I:\WINDOWS\System32\lvcoinst.ini
[2008/05/03 17:16:55 | 000,118,784 | R--- | C] () -- I:\WINDOWS\bwUnin-7.2.0.157-8876480SL.exe
[2008/04/29 19:06:25 | 000,000,000 | ---- | C] () -- I:\WINDOWS\hpqEmlSz.INI
[2008/04/29 18:19:17 | 000,000,128 | ---- | C] () -- I:\Documents and Settings\Owner\Local Settings\Application Data\fusioncache.dat
[2008/04/28 19:49:33 | 000,128,905 | ---- | C] () -- I:\WINDOWS\hpwins10.dat
[2008/04/28 19:49:33 | 000,000,771 | ---- | C] () -- I:\WINDOWS\hpwmdl10.dat
[2008/04/28 19:49:27 | 000,077,824 | R--- | C] () -- I:\WINDOWS\System32\hpzids01.dll
[2008/04/23 04:04:22 | 000,003,840 | ---- | C] () -- I:\WINDOWS\System32\drivers\BANTExt.sys
[2008/04/21 14:42:21 | 000,049,152 | R--- | C] () -- I:\WINDOWS\System32\ChCfg.exe
[2008/04/16 14:26:53 | 000,002,048 | --S- | C] () -- I:\WINDOWS\bootstat.dat
[2008/04/16 14:22:41 | 000,021,640 | ---- | C] () -- I:\WINDOWS\System32\emptyregdb.dat
[2008/04/16 07:09:11 | 000,004,161 | ---- | C] () -- I:\WINDOWS\ODBCINST.INI
[2008/04/16 07:08:02 | 000,150,792 | ---- | C] () -- I:\WINDOWS\System32\FNTCACHE.DAT
[2007/12/06 22:51:00 | 001,703,936 | ---- | C] () -- I:\WINDOWS\System32\nvwdmcpl.dll
[2007/12/06 22:51:00 | 001,626,112 | ---- | C] () -- I:\WINDOWS\System32\nwiz.exe
[2007/12/06 22:51:00 | 001,474,560 | ---- | C] () -- I:\WINDOWS\System32\nview.dll
[2007/12/06 22:51:00 | 001,339,392 | ---- | C] () -- I:\WINDOWS\System32\nvdspsch.exe
[2007/12/06 22:51:00 | 001,019,904 | ---- | C] () -- I:\WINDOWS\System32\nvwimg.dll
[2007/12/06 22:51:00 | 000,466,944 | ---- | C] () -- I:\WINDOWS\System32\nvshell.dll
[2007/12/06 22:51:00 | 000,442,368 | ---- | C] () -- I:\WINDOWS\System32\nvappbar.exe
[2007/12/06 22:51:00 | 000,425,984 | ---- | C] () -- I:\WINDOWS\System32\keystone.exe
[2007/12/06 22:51:00 | 000,286,720 | ---- | C] () -- I:\WINDOWS\System32\nvnt4cpl.dll
[2007/09/27 10:51:02 | 000,020,698 | ---- | C] () -- I:\WINDOWS\System32\idxcntrs.ini
[2007/09/27 10:48:48 | 000,030,628 | ---- | C] () -- I:\WINDOWS\System32\gsrvctr.ini
[2007/09/27 10:48:28 | 000,031,698 | ---- | C] () -- I:\WINDOWS\System32\gthrctr.ini
[2007/07/16 11:58:10 | 000,197,408 | ---- | C] () -- I:\WINDOWS\System32\vpnapi.dll
[2007/07/16 11:58:00 | 000,193,312 | ---- | C] () -- I:\WINDOWS\System32\CSGina.dll
[2007/03/12 12:01:30 | 000,217,088 | ---- | C] () -- I:\WINDOWS\NVGfxOgl.dll
[2006/12/10 23:29:33 | 000,008,558 | ---- | C] () -- I:\WINDOWS\hpwscr10.dat
[2006/07/30 22:59:36 | 000,000,338 | ---- | C] () -- I:\WINDOWS\scrub2k.ini
[2006/07/30 22:59:34 | 000,065,536 | ---- | C] () -- I:\WINDOWS\scrub2k.exe
[2006/02/28 05:00:00 | 013,107,200 | ---- | C] () -- I:\WINDOWS\System32\oembios.bin
[2006/02/28 05:00:00 | 000,755,200 | ---- | C] () -- I:\WINDOWS\System32\ir50_32.dll
[2006/02/28 05:00:00 | 000,673,088 | ---- | C] () -- I:\WINDOWS\System32\mlang.dat
[2006/02/28 05:00:00 | 000,465,404 | ---- | C] () -- I:\WINDOWS\System32\perfh009.dat
[2006/02/28 05:00:00 | 000,338,432 | ---- | C] () -- I:\WINDOWS\System32\ir41_qcx.dll
[2006/02/28 05:00:00 | 000,272,128 | ---- | C] () -- I:\WINDOWS\System32\perfi009.dat
[2006/02/28 05:00:00 | 000,218,003 | ---- | C] () -- I:\WINDOWS\System32\dssec.dat
[2006/02/28 05:00:00 | 000,200,192 | ---- | C] () -- I:\WINDOWS\System32\ir50_qc.dll
[2006/02/28 05:00:00 | 000,183,808 | ---- | C] () -- I:\WINDOWS\System32\ir50_qcx.dll
[2006/02/28 05:00:00 | 000,120,320 | ---- | C] () -- I:\WINDOWS\System32\ir41_qc.dll
[2006/02/28 05:00:00 | 000,079,306 | ---- | C] () -- I:\WINDOWS\System32\perfc009.dat
[2006/02/28 05:00:00 | 000,046,258 | ---- | C] () -- I:\WINDOWS\System32\mib.bin
[2006/02/28 05:00:00 | 000,028,626 | ---- | C] () -- I:\WINDOWS\System32\perfd009.dat
[2006/02/28 05:00:00 | 000,004,569 | ---- | C] () -- I:\WINDOWS\System32\secupd.dat
[2006/02/28 05:00:00 | 000,004,461 | ---- | C] () -- I:\WINDOWS\System32\oembios.dat
[2006/02/28 05:00:00 | 000,001,804 | ---- | C] () -- I:\WINDOWS\System32\dcache.bin
[2006/02/28 05:00:00 | 000,000,741 | ---- | C] () -- I:\WINDOWS\System32\noise.dat

========== Alternate Data Streams ==========

@Alternate Data Stream - 164 bytes -> I:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2
@Alternate Data Stream - 109 bytes -> I:\Documents and Settings\All Users\Application Data\TEMP:A8ADE5D8
@Alternate Data Stream - 102 bytes -> I:\Documents and Settings\All Users\Application Data\TEMP:430C6D84

< End of report >
  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP