Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

3 problems that started at the same time...


  • Please log in to reply

#1
Ashitaga

Ashitaga

    Member

  • Member
  • PipPip
  • 25 posts
So i have been haveing three problems going on on my laptop. The first one is a file keeps poping up onto my desktop. No matter how many times i delete it it wont go away, it is called mwigwwwukx.tmp . Then the next problem i have is almost everytime i click on a link in a any search engine i get redirected to weird websites. And the last problem is my built in webcam isnt working. When i try to open it or use it on skype it says "Webcam is either not installed or being used by another program"


OTL logfile created on: 7/24/2011 12:31:28 PM - Run 2
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\Shane Soliday\Desktop\Virus Protection
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,013.00 Mb Total Physical Memory | 388.00 Mb Available Physical Memory | 38.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 68.00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 138.05 Gb Total Space | 111.92 Gb Free Space | 81.07% Space Free | Partition Type: NTFS

Computer Name: SHANES | User Name: Shane Soliday | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/07/23 20:39:56 | 000,793,088 | ---- | M] (DelphiDabbler) -- C:\WINDOWS\system32\servdeps32.exe
PRC - [2011/07/23 20:39:56 | 000,793,088 | ---- | M] (DelphiDabbler) -- C:\WINDOWS\system32\basesrv32.exe
PRC - [2011/07/06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011/06/30 17:38:56 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2011/05/15 11:18:29 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Shane Soliday\Desktop\Virus Protection\OTL.exe
PRC - [2011/04/27 16:58:08 | 000,136,360 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2011/03/21 13:56:16 | 001,230,704 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2011/03/04 14:36:51 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2010/08/05 09:46:02 | 000,583,640 | ---- | M] (PC Tools) -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
PRC - [2010/05/12 21:05:00 | 000,051,712 | ---- | M] (ALi) -- C:\WINDOWS\WebCam\S6000\S6000Mnt.exe
PRC - [2010/04/07 23:18:40 | 000,908,368 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\LManager.exe
PRC - [2010/04/07 23:18:40 | 000,312,400 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\dsiwmis.exe
PRC - [2010/04/07 23:18:40 | 000,298,064 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\LMworker.exe
PRC - [2010/01/28 18:27:36 | 000,243,232 | ---- | M] (Acer Group) -- C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe
PRC - [2010/01/14 21:11:00 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2009/06/04 21:03:32 | 000,186,904 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2009/06/04 21:03:06 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2008/04/14 07:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (SafeList) ==========

MOD - [2011/05/15 11:18:29 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Shane Soliday\Desktop\Virus Protection\OTL.exe
MOD - [2010/08/23 11:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011/07/23 20:39:56 | 000,793,088 | ---- | M] (DelphiDabbler) [Auto | Running] -- C:\WINDOWS\system32\servdeps32.exe -- (WmiApSrv32)
SRV - [2011/07/06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011/06/30 17:38:56 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011/04/27 16:58:08 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2010/10/17 14:38:42 | 000,742,912 | ---- | M] (FileZilla Project) [On_Demand | Stopped] -- C:\Program Files\FileZilla Server\FileZilla Server.exe -- (FileZilla Server)
SRV - [2010/10/12 12:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
SRV - [2010/08/05 09:46:02 | 000,583,640 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe -- (PCToolsSSDMonitorSvc)
SRV - [2010/04/07 23:18:40 | 000,312,400 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files\Launch Manager\dsiwmis.exe -- (DsiWMIService)
SRV - [2010/01/28 18:27:36 | 000,243,232 | ---- | M] (Acer Group) [Auto | Running] -- C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe -- (Updater Service)
SRV - [2009/06/04 21:03:06 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel®


========== Driver Services (SafeList) ==========

DRV - [2011/07/06 19:52:42 | 000,041,272 | ---- | M] (Malwarebytes Corporation) [Kernel | Disabled | Running] -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2011/07/06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011/06/30 17:38:58 | 000,138,192 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2011/06/30 17:38:58 | 000,066,616 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2010/06/17 14:27:22 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010/06/17 14:27:12 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2010/05/14 11:49:02 | 003,221,120 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\S6000KNT.sys -- (S6000KNT)
DRV - [2010/04/13 01:16:50 | 000,252,536 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2010/03/12 16:41:22 | 005,867,040 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2010/03/04 04:53:16 | 000,060,456 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\l1c51x86.sys -- (L1c)
DRV - [2010/01/04 19:54:48 | 001,602,856 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\athw.sys -- (AR5416)
DRV - [2009/11/17 18:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2009/11/17 18:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.emac...44wuj5r4692r772
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.emac...44wuj5r4692r772

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.emac...44wuj5r4692r772
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.fmylife.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 90 4C 81 02 8E 75 6E 44 B5 DF A6 51 8F 53 9F 1F [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1

FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\MyWebSearch\bar\1.bin
FF - HKLM\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video [2011/05/15 06:14:50 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{6904342A-8307-11DF-A508-4AE2DFD72085}: C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa [2011/05/15 06:14:51 | 000,000,000 | ---D | M]


O1 HOSTS File: ([2008/04/14 07:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {02814C90-758E-446E-B5DF-A6518F539F1f} - C:\WINDOWS\system32\basesrv32.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [AzMixerSel] C:\Program Files\Realtek\Audio\Drivers\AzMixerSel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [IMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [MSPY2002] C:\WINDOWS\System32\IME\PINTLGNT\ImScInst.exe ()
O4 - HKLM..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [S6000Mnt] File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Shane Soliday\Start Menu\Programs\IMVU\Run IMVU.lnk ()
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.micr...heckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {9C65AB3E-C9A8-4789-AE24-B365A1C4A6F9} http://emachines-us....tivex/snret.cab (SNRet Control)
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} http://trial.trymicr...osoft/wrc32.ocx (WRC Class)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_03)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_23)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 24.220.0.10 24.220.0.11
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKCU Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper:
O24 - Desktop BackupWallPaper:
O32 - Unable to read "AutoRun" value or value not present!
O32 - AutoRun File - [2010/05/03 21:23:35 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/07/23 20:40:00 | 000,793,088 | ---- | C] (DelphiDabbler) -- C:\WINDOWS\System32\basesrv32.exe
[2011/07/23 20:39:59 | 000,793,088 | ---- | C] (DelphiDabbler) -- C:\WINDOWS\System32\servdeps32.exe
[2011/07/23 00:52:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Skype
[2011/07/23 00:52:22 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2011/07/17 21:49:03 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft
[2011/07/17 21:48:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Live
[2011/06/28 19:55:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Shane Soliday\Start Menu\Programs\IMVU
[2011/06/25 14:00:50 | 000,038,320 | ---- | C] (FunWebProducts.com) -- C:\WINDOWS\System32\f3PSSavr.scr
[8 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Documents and Settings\Shane Soliday\Desktop\*.tmp files -> C:\Documents and Settings\Shane Soliday\Desktop\*.tmp -> ]
[1 C:\Documents and Settings\Shane Soliday\*.tmp files -> C:\Documents and Settings\Shane Soliday\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/07/24 12:29:04 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/07/23 20:39:58 | 000,000,067 | ---- | M] () -- C:\WINDOWS\System32\1951401684
[2011/07/23 20:39:56 | 000,793,088 | ---- | M] (DelphiDabbler) -- C:\WINDOWS\System32\servdeps32.exe
[2011/07/23 20:39:56 | 000,793,088 | ---- | M] (DelphiDabbler) -- C:\WINDOWS\System32\basesrv32.exe
[2011/07/23 19:00:00 | 000,000,282 | ---- | M] () -- C:\WINDOWS\tasks\RMSchedule.job
[2011/07/23 16:29:01 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/07/23 00:52:48 | 000,002,265 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2011/07/21 16:04:24 | 000,361,472 | ---- | M] () -- C:\WINDOWS\System32\basesrv32.dll
[2011/07/18 18:11:15 | 000,446,384 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/07/18 18:11:15 | 000,073,424 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/07/18 18:07:04 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/07/18 18:07:02 | 1062,305,792 | -HS- | M] () -- C:\hiberfil.sys
[2011/07/17 21:49:22 | 000,001,841 | ---- | M] () -- C:\Documents and Settings\Shane Soliday\Desktop\Windows Live Messenger .lnk
[2011/07/14 22:49:47 | 000,367,304 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/07/14 20:24:11 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011/07/10 14:24:12 | 000,074,672 | ---- | M] () -- C:\Documents and Settings\Shane Soliday\Desktop\tumblr_l2hbd5oicX1qc1p4ko1_500.jpg
[2011/07/09 00:09:53 | 000,058,439 | ---- | M] () -- C:\Documents and Settings\Shane Soliday\Desktop\Resume.pdf
[2011/07/07 22:24:40 | 000,017,350 | ---- | M] () -- C:\Documents and Settings\Shane Soliday\Application Data\D210.67D
[2011/07/06 19:52:42 | 000,041,272 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011/07/06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011/07/06 09:53:43 | 000,002,333 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\eBay.lnk
[2011/06/30 17:38:58 | 000,138,192 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys
[2011/06/30 17:38:58 | 000,066,616 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys
[2011/06/25 14:00:26 | 000,038,320 | ---- | M] (FunWebProducts.com) -- C:\WINDOWS\System32\f3PSSavr.scr
[8 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Documents and Settings\Shane Soliday\Desktop\*.tmp files -> C:\Documents and Settings\Shane Soliday\Desktop\*.tmp -> ]
[1 C:\Documents and Settings\Shane Soliday\*.tmp files -> C:\Documents and Settings\Shane Soliday\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/07/23 00:52:28 | 000,002,265 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2011/07/21 16:04:24 | 000,361,472 | ---- | C] () -- C:\WINDOWS\System32\basesrv32.dll
[2011/07/17 21:49:22 | 000,001,841 | ---- | C] () -- C:\Documents and Settings\Shane Soliday\Desktop\Windows Live Messenger .lnk
[2011/07/16 23:16:26 | 000,000,067 | ---- | C] () -- C:\WINDOWS\System32\1951401684
[2011/07/10 14:24:19 | 000,074,672 | ---- | C] () -- C:\Documents and Settings\Shane Soliday\Desktop\tumblr_l2hbd5oicX1qc1p4ko1_500.jpg
[2011/07/09 00:09:49 | 000,058,439 | ---- | C] () -- C:\Documents and Settings\Shane Soliday\Desktop\Resume.pdf
[2011/07/03 13:45:38 | 000,017,350 | ---- | C] () -- C:\Documents and Settings\Shane Soliday\Application Data\D210.67D
[2011/06/12 16:43:50 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011/05/15 08:06:59 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2011/05/15 06:10:18 | 000,014,336 | ---- | C] () -- C:\Documents and Settings\Shane Soliday\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/01/06 19:59:53 | 000,037,336 | ---- | C] () -- C:\WINDOWS\System32\CleanMFT32.exe
[2010/06/21 06:27:00 | 000,076,288 | ---- | C] () -- C:\WINDOWS\System32\S6000DIF.dll
[2010/06/21 06:27:00 | 000,015,190 | ---- | C] () -- C:\WINDOWS\S6000Twn.ini
[2010/05/03 23:40:39 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2010/05/03 22:42:38 | 000,000,168 | ---- | C] () -- C:\WINDOWS\ZH.INI
[2010/05/03 22:42:38 | 000,000,168 | ---- | C] () -- C:\WINDOWS\S3.INI
[2010/05/03 22:42:38 | 000,000,168 | ---- | C] () -- C:\WINDOWS\FR-CA.INI
[2010/05/03 22:42:38 | 000,000,168 | ---- | C] () -- C:\WINDOWS\EN-GB.INI
[2010/05/03 22:42:38 | 000,000,168 | ---- | C] () -- C:\WINDOWS\EN-CA.INI
[2010/05/03 22:41:22 | 000,361,808 | ---- | C] () -- C:\WINDOWS\EMCRI_E.dll
[2010/05/03 22:38:16 | 000,231,056 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTConvEQ.dat
[2010/05/03 22:38:16 | 000,030,856 | ---- | C] () -- C:\WINDOWS\System32\drivers\RtPCEE3.DAT
[2010/05/03 22:38:16 | 000,001,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\RtHdatEx.dat
[2010/05/03 22:38:16 | 000,000,520 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTEQEX3.dat
[2010/05/03 22:38:16 | 000,000,520 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTEQEX2.dat
[2010/05/03 22:38:16 | 000,000,520 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTEQEX1.dat
[2010/05/03 22:38:16 | 000,000,520 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTEQEX0.dat
[2010/05/03 22:38:16 | 000,000,176 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTHDAEQ1.dat
[2010/05/03 22:38:16 | 000,000,024 | ---- | C] () -- C:\WINDOWS\System32\drivers\rtkhdaud.dat
[2010/05/03 21:59:51 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2010/05/03 21:59:49 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2010/05/03 21:59:49 | 000,446,384 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2010/05/03 21:59:49 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2010/05/03 21:59:49 | 000,073,424 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2010/05/03 21:59:49 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2010/05/03 21:59:49 | 000,004,524 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2010/05/03 21:59:48 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2010/05/03 21:59:45 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2010/05/03 21:59:45 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2010/05/03 21:59:40 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2010/05/03 21:59:38 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2010/05/03 21:26:26 | 000,032,768 | ---- | C] () -- C:\WINDOWS\AMove.exe
[2010/05/03 21:26:26 | 000,024,264 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2010/05/03 21:25:31 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010/05/03 21:21:44 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010/05/03 21:20:50 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2010/05/03 14:18:37 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010/05/03 14:17:52 | 000,367,304 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT

========== LOP Check ==========

[2011/07/13 15:56:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\boost_interprocess
[2010/05/03 22:54:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\eMachines
[2011/06/03 14:18:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IsolatedStorage
[2011/05/06 18:38:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MakeMusic
[2011/01/14 16:35:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Partner
[2011/04/10 19:36:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2011/06/09 02:48:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WildTangent
[2011/05/21 10:37:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WinZip
[2011/05/15 06:16:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Shane Soliday\Application Data\DDMSettings
[2011/06/03 14:17:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Shane Soliday\Application Data\EasyPCTexting
[2011/07/01 00:12:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Shane Soliday\Application Data\Liteon
[2011/05/06 18:39:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Shane Soliday\Application Data\MakeMusic
[2011/06/09 20:16:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Shane Soliday\Application Data\PriceGong
[2011/04/27 09:18:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Shane Soliday\Application Data\SmartDraw
[2011/01/15 15:12:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Shane Soliday\Application Data\Tific
[2011/06/03 15:54:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Shane Soliday\Application Data\Unity
[2011/07/23 19:00:00 | 000,000,282 | ---- | M] () -- C:\WINDOWS\Tasks\RMSchedule.job

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D1B5B4F1

< End of report >
  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP