Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Help! My computer is acting weird

Started by tessfetiza , Jun 17 2011 05:12 AM

  • Please log in to reply

#1
tessfetiza
Posted 17 June 2011 - 05:12 AM

tessfetiza

    New Member

  • Member
  • Pip
  • 2 posts
I have a new computer and I installed all the softwares that I need. After I installed the HP Printer driver from my old usb, the AVG free trial software that I have downloaded from the net detected so many different viruses from the file system. When I tried to removed the infected files, it has a warning that removing the file/s will possibly cause damaged or crushed system. There is also a message like the system is locked and I cannot abort the operation. Help! I am a novice user. Thank you in advance! I hope you can help me fix my problem.
  • 0

Advertisements

#2
tessfetiza
Posted 17 June 2011 - 05:26 AM

tessfetiza

    New Member

  • Topic Starter
  • Member
  • Pip
  • 2 posts
I have a new computer and I have installed the softwares that I most needed from the old one that I used. Since I installed the printer driver from the disc provided by HP, the AVG free trial version I've downloaded online starts warning me that viruses are found from the file system, and removing them will possibly cause damage or crush the system itself. If I will try to abort the operation, the system is locked and error occured. What will I do to remove the viruses from the file system without removing the files. Please help. Thanks in advance for helping. I have attached the OTL file from the notepad for your reference. Attached File  OTL.Txt   115.69KB   88 downloads

OTL logfile created on: 10/8/2011 6:53:37 PM - Run 2
OTL by OldTimer - Version 3.2.24.0 Folder = C:\Documents and Settings\WINDOWS XP\My Documents\Downloads
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

767.30 Mb Total Physical Memory | 524.27 Mb Available Physical Memory | 68.33% Memory free
1.83 Gb Paging File | 1.33 Gb Available in Paging File | 72.88% Paging File free
Paging file location(s): C:\pagefile.sys 1152 2304 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 298.08 Gb Total Space | 289.03 Gb Free Space | 96.96% Space Free | Partition Type: NTFS
Drive D: | 23.23 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive E: | 1.90 Gb Total Space | 0.03 Gb Free Space | 1.59% Space Free | Partition Type: FAT32

Computer Name: WINDOWS-8DCC9AF | User Name: WINDOWS XP | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/10/08 18:34:55 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\WINDOWS XP\My Documents\Downloads\OTL.exe
PRC - [2011/04/18 17:40:08 | 002,334,560 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgtray.exe
PRC - [2011/04/18 17:39:42 | 007,398,752 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
PRC - [2011/04/14 05:36:42 | 001,080,672 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgnsx.exe
PRC - [2011/03/28 03:00:52 | 000,351,072 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgcsrvx.exe
PRC - [2011/03/16 16:05:14 | 000,656,736 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgchsvx.exe
PRC - [2011/02/10 07:55:18 | 001,148,256 | ---- | M] () -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
PRC - [2011/02/08 05:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe
PRC - [2011/02/08 05:33:20 | 000,658,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgrsx.exe
PRC - [2011/01/10 14:23:41 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2011/01/10 14:23:30 | 000,267,944 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2011/01/10 14:23:29 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2010/01/14 21:11:00 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2008/04/14 05:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006/12/15 03:23:27 | 000,075,520 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe


========== Modules (SafeList) ==========

MOD - [2011/10/08 18:34:55 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\WINDOWS XP\My Documents\Downloads\OTL.exe
MOD - [2010/08/23 09:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (Microsoft Office Groove Audit Service)
SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011/05/30 11:33:54 | 001,025,352 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service)
SRV - [2011/04/18 17:39:42 | 007,398,752 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2011/02/08 05:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd)
SRV - [2011/01/10 14:23:41 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2011/01/10 14:23:30 | 000,267,944 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2004/09/29 12:14:36 | 000,069,632 | ---- | M] (HP) [Auto | Stopped] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)


========== Driver Services (SafeList) ==========

DRV - [2011/04/14 21:28:42 | 000,134,480 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV - [2011/04/05 00:59:56 | 000,297,168 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2011/03/16 16:03:20 | 000,032,592 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86)
DRV - [2011/03/01 14:25:18 | 000,034,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2011/02/22 08:13:02 | 000,022,992 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH)
DRV - [2011/02/10 07:53:54 | 000,027,216 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSShim.sys -- (AVGIDSShim)
DRV - [2011/02/10 07:53:52 | 000,024,144 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV - [2011/01/10 14:23:53 | 000,135,096 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2011/01/10 14:23:53 | 000,061,960 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2011/01/07 06:41:46 | 000,248,656 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2010/06/17 14:27:22 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010/06/17 14:27:12 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2009/08/05 17:38:22 | 005,874,176 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2009/07/28 09:55:00 | 000,143,360 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2008/08/24 12:22:40 | 000,014,208 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvsmu.sys -- (nvsmu)
DRV - [2008/08/18 03:54:24 | 000,145,952 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvgts.sys -- (nvgts)
DRV - [2008/08/05 20:10:12 | 001,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2006/01/04 15:41:48 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: {1E73965B-8B48-48be-9C8D-68B920ABC1C4}:10.0.0.1374
FF - prefs.js..extensions.enabledItems: avg@igeared:7.005.030.004
FF - prefs.js..network.proxy.type: 0

FF - HKLM\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG10\Firefox4\ [2011/10/08 17:06:08 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared [2011/10/08 17:06:15 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/10/06 16:44:03 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/10/06 11:09:16 | 000,000,000 | ---D | M]

[2011/10/06 16:44:12 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\WINDOWS XP\Application Data\Mozilla\Extensions
[2011/10/06 16:44:12 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\WINDOWS XP\Application Data\Mozilla\Firefox\Profiles\fhn6ogf3.default\extensions
[2011/10/06 11:05:39 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/10/08 17:06:08 | 000,000,000 | ---D | M] (AVG Safe Search) -- C:\PROGRAM FILES\AVG\AVG10\FIREFOX4
[2011/10/08 17:06:15 | 000,000,000 | ---D | M] ("urn:mozilla:install-manifest" em:id="avg@igeared" em:name="AVG Security Toolbar" em:version="7.005.030.004" em:displayname="AVG Security Toolbar" em:iconURL="chrome://tavgp/skin/logo.ico" em:creator="AVG Technologies" em:description="AVG Security Toolbar" em:homepageURL="http://www.avg.com" >) -- C:\PROGRAM FILES\AVG\AVG10\TOOLBAR\FIREFOX\AVG@IGEARED

O1 HOSTS File: ([2008/04/14 05:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] File not found
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Image Zone Fast Start.lnk = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\NPJPI150_11.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - File not found
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - File not found
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_11)
O16 - DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_11)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_11)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\WINDOWS XP\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\WINDOWS XP\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/10/06 10:53:23 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2007/07/09 03:43:47 | 000,000,028 | R--- | M] () - D:\Autorun.inf -- [ CDFS ]
O33 - MountPoints2\{75fd6836-f007-11e0-87ad-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{75fd6836-f007-11e0-87ad-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{75fd6836-f007-11e0-87ad-806d6172696f}\Shell\AutoRun\command - "" = D:\setup.exe
O33 - MountPoints2\{862d1128-f045-11e0-8488-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{862d1128-f045-11e0-8488-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{862d1128-f045-11e0-8488-806d6172696f}\Shell\AutoRun\command - "" = D:\kav.en.msi -- [2007/07/04 12:55:27 | 024,285,696 | R--- | M] ()
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync) - C:\Program Files\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/10/08 18:22:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\WINDOWS XP\Local Settings\Application Data\AVG Security Toolbar
[2011/10/08 17:31:40 | 000,000,000 | -H-D | C] -- C:\$AVG
[2011/10/08 17:29:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\WINDOWS XP\Application Data\AVG10
[2011/10/08 17:06:22 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2011/10/08 17:06:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar
[2011/10/08 17:06:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\AVG 2011
[2011/10/08 17:05:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVG10
[2011/10/08 17:05:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\AVG
[2011/10/08 17:05:18 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2011/10/08 16:44:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2011/10/08 15:20:59 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2011/10/08 14:24:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\WINDOWS XP\Application Data\KewlBoxPrefs
[2011/10/08 14:20:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\WINDOWS XP\My Documents\Downloads
[2011/10/08 14:03:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2011/10/08 14:03:45 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2011/10/08 13:28:45 | 000,000,000 | ---D | C] -- C:\Program Files\Comprehensive Review 3e
[2011/10/08 13:28:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Comprehensive Review 3e
[2011/10/08 13:28:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\WINDOWS XP\Application Data\Avira
[2011/10/08 12:02:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData
[2011/10/08 11:43:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2011/10/08 07:43:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\HP
[2011/10/08 07:43:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Sonic Shared
[2011/10/08 07:43:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sonic
[2011/10/08 07:42:54 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP
[2011/10/08 07:42:04 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2011/10/08 07:42:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\HP
[2011/10/08 07:41:28 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2011/10/08 07:41:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET
[2011/10/08 07:41:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTemp
[2011/10/08 07:41:02 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard
[2011/10/08 07:37:59 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2011/10/08 07:37:17 | 000,000,000 | -H-D | C] -- C:\Config.Msi
[2011/10/08 07:37:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\WINDOWS XP\Application Data\HP
[2011/10/08 06:46:21 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\WINDOWS XP\InstallAnywhere
[2011/10/06 17:30:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\WINDOWS XP\Local Settings\Application Data\Adobe
[2011/10/06 17:30:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\WINDOWS XP\My Documents\The KMPlayer
[2011/10/06 16:44:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\WINDOWS XP\Local Settings\Application Data\Mozilla
[2011/10/06 16:44:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\WINDOWS XP\Application Data\Mozilla
[2011/10/06 16:35:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Delmar Learning
[2011/10/06 16:35:51 | 000,000,000 | ---D | C] -- C:\Program Files\NCLEX_RN
[2011/10/06 16:35:38 | 000,307,200 | ---- | C] (Able Computer Consulting) -- C:\WINDOWS\Setup1.exe
[2011/10/06 16:13:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PopCap Games
[2011/10/06 11:15:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\WINDOWS XP\Local Settings\Application Data\Game Mill Files
[2011/10/06 11:13:59 | 000,000,000 | ---D | C] -- C:\plant vs zombies
[2011/10/06 11:13:40 | 000,000,000 | ---D | C] -- C:\games
[2011/10/06 11:13:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Avira
[2011/10/06 11:13:03 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys
[2011/10/06 11:13:02 | 000,135,096 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys
[2011/10/06 11:13:02 | 000,061,960 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys
[2011/10/06 11:13:02 | 000,045,416 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntdd.sys
[2011/10/06 11:13:02 | 000,022,360 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntmgr.sys
[2011/10/06 11:13:02 | 000,000,000 | ---D | C] -- C:\Program Files\Avira
[2011/10/06 11:13:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Avira
[2011/10/06 11:10:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office
[2011/10/06 11:09:16 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2011/10/06 11:09:11 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2011/10/06 11:09:00 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2011/10/06 11:09:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2011/10/06 11:07:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2011/10/06 11:07:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\WINDOWS XP\Local Settings\Application Data\Microsoft Help
[2011/10/06 11:07:05 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2011/10/06 11:07:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft Help
[2011/10/06 11:06:54 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2011/10/06 11:06:53 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2011/10/06 11:06:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\CyberLink PowerDVD
[2011/10/06 11:06:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\CyberLink
[2011/10/06 11:06:27 | 000,000,000 | ---D | C] -- C:\Program Files\CyberLink
[2011/10/06 11:06:16 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2011/10/06 11:06:16 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011/10/06 11:06:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\WINDOWS XP\Local Settings\Application Data\Sun
[2011/10/06 11:06:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2011/10/06 11:06:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\WINDOWS XP\Application Data\Macromedia
[2011/10/06 11:05:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\WINDOWS XP\Application Data\Adobe
[2011/10/06 11:05:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\WINDOWS XP\Start Menu\Programs\The KMPlayer
[2011/10/06 11:05:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Nero
[2011/10/06 11:05:51 | 000,000,000 | ---D | C] -- C:\Program Files\The KMPlayer
[2011/10/06 11:05:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox
[2011/10/06 11:05:38 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2011/10/06 11:05:16 | 000,000,000 | R--D | C] -- C:\Documents and Settings\WINDOWS XP\My Documents\My Videos
[2011/10/06 11:05:16 | 000,000,000 | ---D | C] -- C:\Program Files\DivX
[2011/10/06 11:05:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\DivX
[2011/10/06 11:05:13 | 000,106,496 | ---- | C] (Pegasus Software) -- C:\WINDOWS\System32\TwnLib20.dll
[2011/10/06 11:05:12 | 000,476,320 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXpr7.dll
[2011/10/06 11:05:12 | 000,471,040 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXRA7.dll
[2011/10/06 11:05:12 | 000,262,144 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXR7.dll
[2011/10/06 11:05:11 | 001,568,768 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagX7.dll
[2011/10/06 11:05:11 | 000,155,648 | ---- | C] (Ahead Software Gmbh) -- C:\WINDOWS\System32\NeroCheck.exe
[2011/10/06 11:05:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead
[2011/10/06 11:05:07 | 000,000,000 | ---D | C] -- C:\Program Files\Ahead
[2011/10/06 11:05:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2011/10/06 11:05:04 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2011/10/06 11:05:04 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2011/10/06 11:03:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang
[2011/10/06 11:02:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM
[2011/10/06 11:02:20 | 000,290,816 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe
[2011/10/06 11:02:19 | 000,122,880 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe
[2011/10/06 11:02:18 | 002,808,832 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE
[2011/10/06 11:02:18 | 001,684,736 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys
[2011/10/06 11:02:14 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2011/10/06 11:01:28 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2011/10/06 11:01:27 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2011/10/06 11:00:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview
[2011/10/06 11:00:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2011/10/06 10:56:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\WINDOWS XP\Application Data\Identities
[2011/10/06 10:56:36 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2011/10/06 10:56:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\WINDOWS XP\My Documents\My Pictures
[2011/10/06 10:56:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\WINDOWS XP\My Documents\My Music
[2011/10/06 10:56:32 | 000,000,000 | --SD | C] -- C:\Documents and Settings\WINDOWS XP\Application Data\Microsoft
[2011/10/06 10:56:32 | 000,000,000 | --SD | C] -- C:\Documents and Settings\WINDOWS XP\Cookies
[2011/10/06 10:56:32 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\WINDOWS XP\SendTo
[2011/10/06 10:56:32 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\WINDOWS XP\Recent
[2011/10/06 10:56:32 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\WINDOWS XP\Application Data
[2011/10/06 10:56:32 | 000,000,000 | R--D | C] -- C:\Documents and Settings\WINDOWS XP\Start Menu\Programs\Startup
[2011/10/06 10:56:32 | 000,000,000 | R--D | C] -- C:\Documents and Settings\WINDOWS XP\Start Menu
[2011/10/06 10:56:32 | 000,000,000 | R--D | C] -- C:\Documents and Settings\WINDOWS XP\My Documents
[2011/10/06 10:56:32 | 000,000,000 | R--D | C] -- C:\Documents and Settings\WINDOWS XP\Favorites
[2011/10/06 10:56:32 | 000,000,000 | R--D | C] -- C:\Documents and Settings\WINDOWS XP\Start Menu\Programs\Accessories
[2011/10/06 10:56:32 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\WINDOWS XP\Templates
[2011/10/06 10:56:32 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\WINDOWS XP\PrintHood
[2011/10/06 10:56:32 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\WINDOWS XP\NetHood
[2011/10/06 10:56:32 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\WINDOWS XP\Local Settings
[2011/10/06 10:56:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\WINDOWS XP\Local Settings\Application Data\Microsoft
[2011/10/06 10:56:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\WINDOWS XP\Desktop
[2011/10/06 10:56:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2011/10/06 10:56:04 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2011/10/06 10:56:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2011/10/06 10:56:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2011/10/06 10:56:03 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2011/10/06 10:55:36 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2011/10/06 10:55:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2011/10/06 10:54:32 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2011/10/06 10:54:32 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2011/10/06 10:54:32 | 000,029,184 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2011/10/06 10:53:49 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2011/10/06 10:53:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2011/10/06 10:53:31 | 000,000,000 | ---D | C] -- C:\Program Files\xerox
[2011/10/06 10:53:31 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2011/10/06 10:52:40 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2011/10/06 10:52:33 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2011/10/06 10:52:33 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2011/10/06 10:52:25 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2011/10/06 10:52:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2011/10/06 10:51:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2011/10/06 10:51:53 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2011/10/06 10:51:52 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2011/10/06 10:51:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2011/10/06 10:51:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2011/10/06 10:51:43 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2011/10/06 10:51:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2011/10/06 10:51:23 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2011/10/06 10:51:21 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2011/10/06 10:51:16 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2011/10/06 10:51:13 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2011/10/06 10:51:12 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Pictures
[2011/10/06 10:51:02 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2011/10/06 10:50:57 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools
[2011/10/06 10:50:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2011/10/06 10:50:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music
[2011/10/06 10:50:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Games
[2011/10/06 10:50:35 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2011/10/06 10:50:35 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services
[2011/10/06 10:50:31 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
[2011/10/06 10:50:28 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2011/10/06 10:50:01 | 000,281,088 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe
[2011/10/06 10:50:01 | 000,000,000 | ---D | C] -- C:\Program Files\MSN
[2011/10/06 10:50:00 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2011/10/06 10:49:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2011/10/06 10:49:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2011/10/06 10:49:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2011/10/06 10:49:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Accessories
[2011/10/06 03:46:06 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2011/10/06 03:46:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2011/10/06 03:46:03 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2011/10/06 03:46:03 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2011/10/06 03:46:02 | 000,000,000 | R--D | C] -- C:\Program Files
[2011/10/06 03:46:02 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2011/10/06 03:45:43 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup
[2011/10/06 03:45:43 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu
[2011/10/06 03:45:43 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents
[2011/10/06 03:45:43 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Templates
[2011/10/06 03:45:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Favorites
[2011/10/06 03:45:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Desktop
[2011/10/06 03:45:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2011/10/06 03:45:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2011/10/06 03:45:26 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2011/10/06 03:45:26 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data
[2011/10/06 03:45:06 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2011/10/06 03:45:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2011/10/06 03:39:56 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2011/10/06 03:39:56 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2011/10/06 03:39:56 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2011/10/06 03:39:56 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2011/10/06 03:39:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/10/08 18:03:57 | 000,188,791 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2011/10/08 18:03:46 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/10/08 17:31:52 | 001,630,208 | ---- | M] () -- C:\WINDOWS\System32\nwiz.exe
[2011/10/08 17:31:43 | 000,155,648 | ---- | M] (Ahead Software Gmbh) -- C:\WINDOWS\System32\NeroCheck.exe
[2011/10/08 17:31:25 | 118,878,779 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2011/10/08 17:06:10 | 000,000,690 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\AVG 2011.lnk
[2011/10/08 15:31:57 | 000,380,350 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/10/08 15:31:57 | 000,052,764 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/10/08 15:27:35 | 000,272,576 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/10/08 15:26:17 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011/10/08 12:14:37 | 000,013,736 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/10/08 12:14:37 | 000,013,736 | ---- | M] () -- C:\WINDOWS\System32\wpa.bak
[2011/10/08 12:12:44 | 000,005,208 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2011/10/08 07:44:23 | 000,000,302 | ---- | M] () -- C:\WINDOWS\tasks\WebReg psc 1400 series.job
[2011/10/08 07:44:05 | 000,112,449 | ---- | M] () -- C:\WINDOWS\hpoins07.dat
[2011/10/08 07:43:26 | 000,001,894 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\HP Document Viewer.lnk
[2011/10/08 07:43:00 | 000,000,898 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\HP Image Zone.lnk
[2011/10/08 07:43:00 | 000,000,798 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Image Zone Fast Start.lnk
[2011/10/08 07:42:32 | 000,001,808 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
[2011/10/08 07:42:09 | 000,000,984 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\HP Solution Center.lnk
[2011/10/07 16:51:35 | 000,000,360 | ---- | M] () -- C:\Documents and Settings\WINDOWS XP\My Documents\spider.sav
[2011/10/07 16:43:26 | 000,002,473 | ---- | M] () -- C:\Documents and Settings\WINDOWS XP\Desktop\Microsoft Office Excel 2007.lnk
[2011/10/07 16:43:03 | 000,000,025 | ---- | M] () -- C:\WINDOWS\popcinfot.dat
[2011/10/06 17:17:10 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\WINDOWS XP\Desktop\Internet.lnk
[2011/10/06 16:44:05 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat
[2011/10/06 16:42:45 | 000,001,857 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\MSN Installer.lnk
[2011/10/06 16:35:38 | 000,307,200 | ---- | M] (Able Computer Consulting) -- C:\WINDOWS\Setup1.exe
[2011/10/06 16:14:43 | 000,000,025 | ---- | M] () -- C:\popcinfot.dat
[2011/10/06 11:14:57 | 000,000,746 | ---- | M] () -- C:\Documents and Settings\WINDOWS XP\Desktop\Shortcut to CivilWar.lnk
[2011/10/06 11:14:23 | 000,000,554 | ---- | M] () -- C:\Documents and Settings\WINDOWS XP\Desktop\Shortcut to Game.lnk
[2011/10/06 11:13:08 | 000,001,707 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Avira AntiVir Control Center.lnk
[2011/10/06 11:10:51 | 000,002,515 | ---- | M] () -- C:\Documents and Settings\WINDOWS XP\Desktop\Microsoft Office Word 2007.lnk
[2011/10/06 11:10:45 | 000,002,551 | ---- | M] () -- C:\Documents and Settings\WINDOWS XP\Desktop\Microsoft Office PowerPoint 2007.lnk
[2011/10/06 11:10:43 | 000,002,517 | ---- | M] () -- C:\Documents and Settings\WINDOWS XP\Desktop\Microsoft Office Publisher 2007.lnk
[2011/10/06 11:06:31 | 000,001,684 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\PowerDVD.lnk
[2011/10/06 11:06:07 | 000,000,734 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Acrobat.com.lnk
[2011/10/06 11:05:58 | 000,000,710 | ---- | M] () -- C:\Documents and Settings\WINDOWS XP\Desktop\KMPlayer.lnk
[2011/10/06 11:05:56 | 000,001,257 | ---- | M] () -- C:\Documents and Settings\WINDOWS XP\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart.lnk
[2011/10/06 11:05:56 | 000,001,239 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Nero StartSmart.lnk
[2011/10/06 11:05:45 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2011/10/06 11:05:40 | 000,001,620 | ---- | M] () -- C:\Documents and Settings\WINDOWS XP\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/10/06 11:05:40 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2011/10/06 11:05:10 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2011/10/06 11:03:58 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2011/10/06 11:03:58 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2011/10/06 10:56:43 | 000,000,779 | ---- | M] () -- C:\Documents and Settings\WINDOWS XP\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/10/06 10:56:42 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\WINDOWS XP\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2011/10/06 10:55:39 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2011/10/06 10:55:01 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2011/10/06 10:53:23 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011/10/06 10:53:23 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2011/10/06 10:53:23 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2011/10/06 10:53:23 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2011/10/06 10:53:23 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2011/10/06 10:53:15 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2011/10/06 10:53:15 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2011/10/06 10:53:07 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2011/10/06 10:51:10 | 000,021,640 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2011/10/06 10:49:01 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/10/08 17:31:25 | 118,878,779 | ---- | C] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2011/10/08 17:06:10 | 000,000,690 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\AVG 2011.lnk
[2011/10/08 12:14:38 | 000,013,736 | ---- | C] () -- C:\WINDOWS\System32\wpa.bak
[2011/10/08 07:44:22 | 000,000,302 | ---- | C] () -- C:\WINDOWS\tasks\WebReg psc 1400 series.job
[2011/10/08 07:43:26 | 000,001,894 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\HP Document Viewer.lnk
[2011/10/08 07:43:00 | 000,000,898 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\HP Image Zone.lnk
[2011/10/08 07:43:00 | 000,000,798 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Image Zone Fast Start.lnk
[2011/10/08 07:42:35 | 000,000,731 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\I.R.I.S. OCR Registration.lnk
[2011/10/08 07:42:32 | 000,001,808 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
[2011/10/08 07:42:09 | 000,000,984 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\HP Solution Center.lnk
[2011/10/08 07:37:08 | 000,112,449 | ---- | C] () -- C:\WINDOWS\hpoins07.dat
[2011/10/08 07:37:08 | 000,021,124 | ---- | C] () -- C:\WINDOWS\hpomdl07.dat
[2011/10/06 19:20:55 | 000,000,360 | ---- | C] () -- C:\Documents and Settings\WINDOWS XP\My Documents\spider.sav
[2011/10/06 17:17:10 | 000,000,104 | ---- | C] () -- C:\Documents and Settings\WINDOWS XP\Desktop\Internet.lnk
[2011/10/06 16:44:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2011/10/06 16:42:45 | 000,001,857 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\MSN Installer.lnk
[2011/10/06 16:14:42 | 000,000,025 | ---- | C] () -- C:\WINDOWS\popcinfot.dat
[2011/10/06 16:14:42 | 000,000,025 | ---- | C] () -- C:\popcinfot.dat
[2011/10/06 11:14:57 | 000,000,746 | ---- | C] () -- C:\Documents and Settings\WINDOWS XP\Desktop\Shortcut to CivilWar.lnk
[2011/10/06 11:14:23 | 000,000,554 | ---- | C] () -- C:\Documents and Settings\WINDOWS XP\Desktop\Shortcut to Game.lnk
[2011/10/06 11:13:08 | 000,001,707 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Avira AntiVir Control Center.lnk
[2011/10/06 11:10:47 | 000,002,473 | ---- | C] () -- C:\Documents and Settings\WINDOWS XP\Desktop\Microsoft Office Excel 2007.lnk
[2011/10/06 11:10:45 | 000,002,551 | ---- | C] () -- C:\Documents and Settings\WINDOWS XP\Desktop\Microsoft Office PowerPoint 2007.lnk
[2011/10/06 11:10:43 | 000,002,517 | ---- | C] () -- C:\Documents and Settings\WINDOWS XP\Desktop\Microsoft Office Publisher 2007.lnk
[2011/10/06 11:10:42 | 000,002,515 | ---- | C] () -- C:\Documents and Settings\WINDOWS XP\Desktop\Microsoft Office Word 2007.lnk
[2011/10/06 11:06:31 | 000,001,684 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\PowerDVD.lnk
[2011/10/06 11:06:07 | 000,000,740 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Acrobat.com.lnk
[2011/10/06 11:06:07 | 000,000,734 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Acrobat.com.lnk
[2011/10/06 11:05:58 | 000,000,710 | ---- | C] () -- C:\Documents and Settings\WINDOWS XP\Desktop\KMPlayer.lnk
[2011/10/06 11:05:56 | 000,001,257 | ---- | C] () -- C:\Documents and Settings\WINDOWS XP\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart.lnk
[2011/10/06 11:05:56 | 000,001,239 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Nero StartSmart.lnk
[2011/10/06 11:05:40 | 000,001,620 | ---- | C] () -- C:\Documents and Settings\WINDOWS XP\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/10/06 11:05:40 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2011/10/06 11:05:10 | 000,002,311 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader 9.lnk
[2011/10/06 11:05:10 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2011/10/06 11:04:27 | 000,598,711 | ---- | C] () -- C:\WINDOWS\1179336508536ww6wz6.jpg
[2011/10/06 11:03:58 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2011/10/06 11:03:58 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2011/10/06 11:01:38 | 000,073,728 | R--- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll
[2011/10/06 11:00:59 | 000,188,791 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml
[2011/10/06 11:00:26 | 000,018,335 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu
[2011/10/06 11:00:06 | 000,007,143 | R--- | C] () -- C:\WINDOWS\System32\nvide.nvu
[2011/10/06 10:59:56 | 000,000,898 | R--- | C] () -- C:\WINDOWS\System32\nvsmu.nvu
[2011/10/06 10:59:54 | 000,002,344 | R--- | C] () -- C:\WINDOWS\System32\nvsmb.nvu
[2011/10/06 10:56:42 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\WINDOWS XP\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2011/10/06 10:56:37 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\WINDOWS XP\Start Menu\Programs\Outlook Express.lnk
[2011/10/06 10:56:36 | 000,000,779 | ---- | C] () -- C:\Documents and Settings\WINDOWS XP\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/10/06 10:56:36 | 000,000,767 | ---- | C] () -- C:\Documents and Settings\WINDOWS XP\Start Menu\Programs\Internet Explorer.lnk
[2011/10/06 10:56:32 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\WINDOWS XP\Start Menu\Programs\Remote Assistance.lnk
[2011/10/06 10:56:32 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\WINDOWS XP\Start Menu\Programs\Windows Media Player.lnk
[2011/10/06 10:55:39 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2011/10/06 10:55:01 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011/10/06 10:54:27 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2011/10/06 10:54:15 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2011/10/06 10:54:10 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2011/10/06 10:54:09 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2011/10/06 10:54:08 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2011/10/06 10:54:04 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2011/10/06 10:54:01 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2011/10/06 10:53:59 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll
[2011/10/06 10:53:51 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2011/10/06 10:53:23 | 000,002,577 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2011/10/06 10:53:23 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2011/10/06 10:53:23 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2011/10/06 10:53:23 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2011/10/06 10:53:23 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2011/10/06 10:53:15 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2011/10/06 10:53:15 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2011/10/06 10:53:14 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2011/10/06 10:52:24 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Movie Maker.lnk
[2011/10/06 10:52:15 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex
[2011/10/06 10:52:03 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp
[2011/10/06 10:52:03 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp
[2011/10/06 10:51:58 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf
[2011/10/06 10:51:28 | 000,376,832 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll
[2011/10/06 10:51:10 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2011/10/06 10:50:35 | 000,000,609 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Messenger.lnk
[2011/10/06 10:50:16 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp
[2011/10/06 10:50:15 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Soap Bubbles.bmp
[2011/10/06 10:50:15 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Prairie Wind.bmp
[2011/10/06 10:50:15 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe Stucco.bmp
[2011/10/06 10:50:15 | 000,026,680 | ---- | C] () -- C:\WINDOWS\River Sumida.bmp
[2011/10/06 10:50:15 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Greenstone.bmp
[2011/10/06 10:50:15 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp
[2011/10/06 10:50:15 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Gone Fishing.bmp
[2011/10/06 10:50:15 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Coffee Bean.bmp
[2011/10/06 10:50:15 | 000,016,730 | ---- | C] () -- C:\WINDOWS\FeatherTexture.bmp
[2011/10/06 10:50:15 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Blue Lace 16.bmp
[2011/10/06 10:50:13 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2011/10/06 10:50:12 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2011/10/06 10:50:11 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2011/10/06 10:50:07 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2011/10/06 03:48:56 | 000,005,208 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF
[2011/10/06 03:46:08 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2011/10/06 03:46:05 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011/10/06 03:46:04 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd
[2011/10/06 03:46:04 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf
[2011/10/06 03:46:03 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa
[2011/10/06 03:46:03 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa
[2011/10/06 03:45:50 | 000,001,688 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2011/10/06 03:45:42 | 002,144,487 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2011/10/06 03:45:42 | 001,296,669 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT
[2011/10/06 03:45:42 | 000,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2011/10/06 03:45:42 | 000,402,264 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2011/10/06 03:45:42 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2011/10/06 03:45:42 | 000,171,588 | ---- | C] () -- C:\WINDOWS\System32\dllcache\startoc.cat
[2011/10/06 03:45:42 | 000,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2011/10/06 03:45:42 | 000,034,063 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2011/10/06 03:45:42 | 000,026,991 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn7.cat
[2011/10/06 03:45:42 | 000,016,535 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2011/10/06 03:45:42 | 000,014,433 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn9.cat
[2011/10/06 03:45:42 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2011/10/06 03:45:42 | 000,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2011/10/06 03:45:42 | 000,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2011/10/06 03:45:42 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2011/10/06 03:45:42 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2011/10/06 03:45:42 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2011/10/06 03:45:05 | 000,272,576 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/10/06 03:44:20 | 000,000,211 | -HS- | C] () -- C:\boot.ini
[2011/10/06 03:44:18 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2008/07/31 23:48:00 | 001,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2008/07/31 23:48:00 | 001,630,208 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2008/07/31 23:48:00 | 001,486,848 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2008/07/31 23:48:00 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2008/07/31 23:48:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2008/07/31 23:48:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2008/07/31 23:48:00 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2008/07/31 23:48:00 | 000,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[2008/07/31 23:48:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2008/04/14 05:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2008/04/14 05:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2008/04/14 05:00:00 | 000,380,350 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2008/04/14 05:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2008/04/14 05:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2008/04/14 05:00:00 | 000,052,764 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2008/04/14 05:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2008/04/14 05:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2008/04/14 05:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2008/04/14 05:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2008/04/14 05:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2008/04/14 05:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2008/02/05 18:12:58 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2008/02/05 18:10:58 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll
[2001/07/06 15:30:00 | 000,003,399 | ---- | C] () -- C:\WINDOWS\System32\hptcpmon.ini

========== LOP Check ==========

[2011/10/08 17:06:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar
[2011/10/08 17:35:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG10
[2011/10/08 17:06:22 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2011/10/08 17:29:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2011/10/06 16:13:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PopCap Games
[2011/10/08 17:29:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\WINDOWS XP\Application Data\AVG10
[2011/10/08 14:30:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\WINDOWS XP\Application Data\KewlBoxPrefs

========== Purity Check ==========



< End of report >
  • 0

#3
Jintan
Posted 20 June 2011 - 07:52 PM

Jintan

    Trusted Helper

  • Malware Removal
  • 904 posts
Welcome to Geeks To Go tessfetiza,

I merged your two topics - if you need to add more info to a thread, just click the Add Reply button at the bottom to post it.

No infection here, but your computer has two antivirus programs, with both AVG and AntiVir. Systems can only have one installed, due to slowness and cross-corruption of each. Us trying to check any further, with these installed and damaged, would not have much meaning. You will need to uninstall both, then decide what antivirus program you would prefer.

Temp disable all security software, then uninstall AVG. Reboot, and then go here and download and run the AVG uninstaller.

Reboot, then uninstall AntiVir, and yes, reboot after that.

Then post an update back here on what issues still remain we need to address please. If you would, don't install a new antivirus program until we review the situation further. You should be okay for a brief period of time, and you and I are reviewing here for malware issues anyway.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP