OTL logfile created on: 6/30/2011 9:07:41 PM - Run 1
OTL by OldTimer - Version 3.2.25.0 Folder = C:\Documents and Settings\tara\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.00 Gb Total Physical Memory | 1.47 Gb Available Physical Memory | 73.76% Memory free
3.85 Gb Paging File | 3.27 Gb Available in Paging File | 84.95% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232.88 Gb Total Space | 220.91 Gb Free Space | 94.86% Space Free | Partition Type: NTFS
Drive D: | 70.25 Gb Total Space | 69.55 Gb Free Space | 99.00% Space Free | Partition Type: NTFS
Computer Name: TARA-HOME | User Name: tara | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011/06/30 21:07:11 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\tara\Desktop\OTL.exe
PRC - [2011/06/30 07:50:31 | 002,424,192 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
PRC - [2011/06/28 20:24:33 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2011/04/27 16:00:37 | 000,136,360 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2010/11/03 14:31:49 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2010/01/14 22:11:00 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2008/04/14 06:00:00 | 001,033,728 | -H-- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2005/11/15 13:49:44 | 005,238,272 | ---- | M] (Linksys) -- C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WMP54Gv4.exe
PRC - [2004/02/06 22:56:14 | 000,041,025 | ---- | M] (GEMTEKS) -- C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe
========== Modules (SafeList) ==========
MOD - [2011/06/30 21:07:11 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\tara\Desktop\OTL.exe
MOD - [2010/08/23 10:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [Auto | Running] -- -- (WMP54Gv4SVC)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011/06/28 20:24:33 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011/04/27 16:00:37 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
========== Driver Services (SafeList) ==========
DRV - [2011/06/28 20:24:34 | 000,138,192 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2011/06/28 20:24:34 | 000,066,616 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2011/05/29 09:11:30 | 000,039,984 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2010/05/10 12:41:30 | 000,067,656 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010/02/17 12:25:48 | 000,012,872 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2009/05/11 12:49:19 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2009/05/11 10:12:49 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2006/03/17 17:18:58 | 000,392,960 | ---- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (SenFiltService)
DRV - [2006/01/27 14:04:16 | 000,099,584 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata)
DRV - [2005/10/27 15:06:30 | 000,356,096 | ---- | M] (Ralink Technology Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rt61.sys -- (RT61) Linksys Wireless-G PCI Adapter Driver(RT61)
DRV - [2005/02/01 18:18:38 | 000,017,992 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\bcm42rly.sys -- (BCM42RLY)
DRV - [2003/09/25 22:15:32 | 000,015,872 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\GTNDIS5.sys -- (GTNDIS5)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.mytelus....rtal/index.aspx
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
O1 HOSTS File: ([2011/06/30 20:11:20 | 000,000,098 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll (Google Inc.)
O2 - BHO: (FrostWire Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (FrostWire Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKCU\..\Toolbar\WebBrowser: (FrostWire Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [SKDaemon.exe] C:\Program Files\Lenovo\Productivity Keyboard\Skdaemon.exe (LITE-ON TECHNOLOGY CORP.)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Recovery present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: =
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D1E1F7ED622A0E5D.dll (Google Inc.)
O16 - DPF: {0449A3DB-050C-4895-9236-D9B11778459B} http://content.dll1....nPrinterVig.cab (SmartCouponPrinter Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {BEA7310D-06C4-4339-A784-DC3804819809} http://www.walmartph...veX_Control.cab (Photo Upload Plugin Class)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: Garmin Communicator Plug-In https://static.garmi...inAxControl.CAB (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/09/14 22:39:45 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011/06/30 21:07:06 | 000,580,096 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\tara\Desktop\OTL.exe
[2011/06/30 20:23:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tara\Desktop\tdsskiller
[2011/06/30 20:21:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tara\Desktop\GooredFix Backups
[2011/06/30 20:21:01 | 000,071,398 | ---- | C] (jpshortstuff) -- C:\Documents and Settings\tara\Desktop\GooredFix.exe
[2011/06/30 20:11:19 | 000,000,000 | ---D | C] -- C:\_OTM
[2011/06/30 20:10:15 | 000,522,752 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\tara\Desktop\OTM.exe
[2011/06/30 20:09:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011/06/30 16:58:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SUPERAntiSpyware
[2011/06/30 16:58:34 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2011/06/29 10:04:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Hitman Pro
[2011/06/29 10:04:48 | 006,556,992 | ---- | C] (SurfRight B.V.) -- C:\Program Files\HitmanPro35.exe
[2011/06/28 19:13:28 | 001,448,752 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\tara\Desktop\TDSSKiller.exe
[2011/06/24 12:56:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tara\Application Data\Uxonna
[2011/06/24 12:56:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tara\Application Data\Feicop
[2011/06/23 20:18:33 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2011/06/17 14:26:04 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2011/06/17 14:23:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2011/06/17 14:23:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2011/06/17 12:11:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tara\My Documents\OneNote Notebooks
[2011/06/17 03:02:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel
[2011/06/11 11:01:46 | 000,000,000 | R--D | C] -- C:\Documents and Settings\tara\Recent
[2011/06/11 10:30:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tara\Application Data\SUPERAntiSpyware.com
[2011/06/11 10:30:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
[2011/06/11 09:32:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tara\Application Data\Malwarebytes
[2011/06/11 09:32:48 | 000,039,984 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011/06/11 09:32:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/06/11 09:32:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2011/06/11 09:32:43 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
========== Files - Modified Within 30 Days ==========
[2011/06/30 21:07:11 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\tara\Desktop\OTL.exe
[2011/06/30 21:01:01 | 000,000,232 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2011/06/30 20:50:00 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/06/30 20:50:00 | 000,000,878 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/06/30 20:45:19 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011/06/30 20:40:58 | 000,020,552 | ---- | M] () -- C:\WINDOWS\System32\drivers\hitmanpro35.sys
[2011/06/30 20:22:48 | 001,317,103 | ---- | M] () -- C:\Documents and Settings\tara\Desktop\tdsskiller.zip
[2011/06/30 20:21:02 | 000,071,398 | ---- | M] (jpshortstuff) -- C:\Documents and Settings\tara\Desktop\GooredFix.exe
[2011/06/30 20:18:40 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/06/30 20:11:20 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2011/06/30 20:10:22 | 000,522,752 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\tara\Desktop\OTM.exe
[2011/06/30 20:08:27 | 000,513,320 | ---- | M] () -- C:\Documents and Settings\tara\Desktop\erunt.zip
[2011/06/30 18:04:44 | 000,000,281 | ---- | M] () -- C:\Documents and Settings\tara\Desktop\Shortcut to xp_exe_fix.reg.lnk
[2011/06/30 16:58:44 | 000,001,678 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
[2011/06/30 16:42:51 | 000,011,850 | -HS- | M] () -- C:\Documents and Settings\tara\Local Settings\Application Data\k5ihj1v20246mi
[2011/06/30 16:42:51 | 000,011,850 | -HS- | M] () -- C:\Documents and Settings\All Users\Application Data\k5ihj1v20246mi
[2011/06/30 16:09:43 | 000,000,353 | ---- | M] () -- C:\Documents and Settings\tara\Desktop\fix.reg
[2011/06/30 14:56:24 | 000,507,904 | ---- | M] () -- C:\Documents and Settings\tara\Local Settings\Application Data\gvc.dl_
[2011/06/30 08:47:38 | 000,000,279 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2011/06/29 10:06:25 | 006,556,992 | ---- | M] (SurfRight B.V.) -- C:\Program Files\HitmanPro35.exe
[2011/06/29 06:05:26 | 000,405,320 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/06/29 06:05:26 | 000,054,472 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/06/28 23:44:50 | 000,013,710 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/06/28 20:24:34 | 000,138,192 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys
[2011/06/28 20:24:34 | 000,066,616 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys
[2011/06/28 19:13:28 | 001,448,752 | ---- | M] (Kaspersky Lab ZAO) -- C:\Documents and Settings\tara\Desktop\TDSSKiller.exe
[2011/06/26 17:43:55 | 000,099,188 | ---- | M] () -- C:\Documents and Settings\tara\My Documents\Coupon_Fashion_Biore_EN.pdf
[2011/06/26 17:41:23 | 000,292,964 | ---- | M] () -- C:\Documents and Settings\tara\My Documents\JohnsonsMoonWebCouponPDF.pdf
[2011/06/23 20:19:02 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 8.lnk
[2011/06/23 03:02:10 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011/06/17 14:26:21 | 000,000,800 | ---- | M] () -- C:\Documents and Settings\tara\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2011/06/17 14:26:19 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2011/06/17 14:26:19 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2011/06/17 14:25:04 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2011/06/17 14:24:06 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2011/06/17 12:11:05 | 000,000,947 | ---- | M] () -- C:\Documents and Settings\tara\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
[2011/06/17 08:07:38 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2011/06/15 17:22:47 | 000,000,242 | ---- | M] () -- C:\Documents and Settings\tara\My Documents\AntiVir Desktop.lnk
[2011/06/15 17:22:08 | 000,000,246 | ---- | M] () -- C:\Security Center.lnk
[2011/06/15 17:21:27 | 000,000,281 | ---- | M] () -- C:\Shortcut to HD III (D).lnk
[2011/06/15 17:10:34 | 000,005,644 | ---- | M] () -- C:\Documents and Settings\tara\My Documents\i69 ,4u8erj7u7u7 tyfrdggghjm hyu u.Theme
[2011/06/14 16:23:13 | 000,001,725 | ---- | M] () -- C:\Documents and Settings\tara\Desktop\Start AntiVir.lnk
[2011/06/11 09:32:48 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
========== Files Created - No Company Name ==========
[2011/06/30 20:22:48 | 001,317,103 | ---- | C] () -- C:\Documents and Settings\tara\Desktop\tdsskiller.zip
[2011/06/30 20:08:24 | 000,513,320 | ---- | C] () -- C:\Documents and Settings\tara\Desktop\erunt.zip
[2011/06/30 18:04:44 | 000,000,281 | ---- | C] () -- C:\Documents and Settings\tara\Desktop\Shortcut to xp_exe_fix.reg.lnk
[2011/06/30 16:58:44 | 000,001,678 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
[2011/06/30 16:00:12 | 000,000,353 | ---- | C] () -- C:\Documents and Settings\tara\Desktop\fix.reg
[2011/06/30 14:56:29 | 000,011,850 | -HS- | C] () -- C:\Documents and Settings\tara\Local Settings\Application Data\k5ihj1v20246mi
[2011/06/30 14:56:29 | 000,011,850 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\k5ihj1v20246mi
[2011/06/30 14:56:23 | 000,507,904 | ---- | C] () -- C:\Documents and Settings\tara\Local Settings\Application Data\gvc.dl_
[2011/06/30 08:47:38 | 000,000,279 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2011/06/29 10:08:20 | 000,020,552 | ---- | C] () -- C:\WINDOWS\System32\drivers\hitmanpro35.sys
[2011/06/26 17:43:55 | 000,099,188 | ---- | C] () -- C:\Documents and Settings\tara\My Documents\Coupon_Fashion_Biore_EN.pdf
[2011/06/26 17:41:23 | 000,292,964 | ---- | C] () -- C:\Documents and Settings\tara\My Documents\JohnsonsMoonWebCouponPDF.pdf
[2011/06/23 20:19:02 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 8.lnk
[2011/06/23 20:19:01 | 000,001,804 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader 8.lnk
[2011/06/17 14:26:11 | 000,000,800 | ---- | C] () -- C:\Documents and Settings\tara\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2011/06/17 14:24:06 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2011/06/17 12:11:05 | 000,000,947 | ---- | C] () -- C:\Documents and Settings\tara\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
[2011/06/17 03:00:59 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2011/06/15 17:22:47 | 000,000,242 | ---- | C] () -- C:\Documents and Settings\tara\My Documents\AntiVir Desktop.lnk
[2011/06/15 17:22:08 | 000,000,246 | ---- | C] () -- C:\Security Center.lnk
[2011/06/15 17:21:27 | 000,000,281 | ---- | C] () -- C:\Shortcut to HD III (D).lnk
[2011/06/15 17:10:34 | 000,005,644 | ---- | C] () -- C:\Documents and Settings\tara\My Documents\i69 ,4u8erj7u7u7 tyfrdggghjm hyu u.Theme
[2011/06/14 16:23:13 | 000,001,725 | ---- | C] () -- C:\Documents and Settings\tara\Desktop\Start AntiVir.lnk
[2011/06/11 11:07:20 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\tara\Desktop\Adobe Reader 8.lnk
[2011/06/11 11:06:21 | 000,000,984 | ---- | C] () -- C:\Documents and Settings\tara\Desktop\HP Solution Center.lnk
[2011/06/11 09:32:48 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/05/26 16:01:32 | 000,000,168 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\~21094180r
[2011/05/26 16:01:31 | 000,000,144 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\~21094180
[2011/05/26 16:01:28 | 000,000,336 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\21094180
[2010/11/02 08:17:01 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2010/10/03 14:05:14 | 000,005,120 | ---- | C] () -- C:\Documents and Settings\tara\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/09/16 14:07:30 | 000,135,150 | ---- | C] () -- C:\WINDOWS\hpwins10.dat
[2010/09/16 07:46:51 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/09/15 10:07:36 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\GTW32N50.dll
[2010/09/15 10:07:21 | 000,000,920 | ---- | C] () -- C:\WINDOWS\System32\WLAN.INI
[2010/09/14 22:42:32 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010/09/14 22:34:47 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010/09/14 16:12:42 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010/09/14 16:09:32 | 000,143,624 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2008/04/14 06:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2008/04/14 06:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2008/04/14 06:00:00 | 000,405,320 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2008/04/14 06:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2008/04/14 06:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2008/04/14 06:00:00 | 000,054,472 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2008/04/14 06:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2008/04/14 06:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2008/04/14 06:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2008/04/14 06:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2008/04/14 06:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2008/04/14 06:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2007/03/08 04:43:03 | 000,010,335 | ---- | C] () -- C:\WINDOWS\hpwscr10.dat
[2007/02/27 20:19:55 | 000,001,042 | ---- | C] () -- C:\WINDOWS\hpwmdl10.dat
========== LOP Check ==========
[2011/06/10 22:34:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Big Fish Games
[2011/01/18 20:28:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DigiCont
[2011/02/19 09:45:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FarmFrenzy_Rome
[2011/06/29 11:42:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Hitman Pro
[2010/10/27 12:44:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TELUS media player
[2011/04/02 15:38:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2010/10/03 17:42:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Visan
[2011/06/29 09:44:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tara\Application Data\Feicop
[2011/06/11 11:01:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tara\Application Data\FrostWire
[2010/12/28 22:06:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tara\Application Data\GARMIN
[2010/11/07 21:50:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tara\Application Data\Image Zone Express
[2011/04/02 15:38:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tara\Application Data\MysteryStudio
[2010/11/02 08:16:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tara\Application Data\Pogo Games
[2010/10/03 17:34:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tara\Application Data\Printer Info Cache
[2011/06/11 11:29:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tara\Application Data\TELUS media player
[2011/06/29 11:17:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tara\Application Data\Uxonna
[2011/06/30 21:01:01 | 000,000,232 | ---- | M] () -- C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 219 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:32A82570
@Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A1023D41
@Alternate Data Stream - 136 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4149A170
< End of report >