Few hours ago, my AVG Antivirus Resident Shield pop up and it says "Threat Removed" that just means to say that It detected a virus or something. This happened after I extracted files from a compressed file a winrar type. It is a .exe file which was removed by AVG. By the way that file is a download from the internet. When I look into the virus vault of AVG i didn't read the details but its related from the files I extracted before. Instead of deleting the files in the virus vault, I restored it. I just did that on purpose because I really wanted that program to work. If it is removed as a threat then I cannot launch the program with that file inside the virus vault. So I restored it. After that worse things happened. My AVG Resident Shield keeps on showing pop up message saying "Threat Removed". After that I knew I made a wrong decision on restoring that file. I stop from surfing the internet because I was alerted from the AVG resident shield popping up "threat removed". Then I looked in the "resident shield detection" on AVG, and I saw many files being detected. From 22 files to 433 files recorded in just a few hours. I didn't do anything like deleting the infection or healing it, because almost all the files with infected virus are .exe. By the way the infection names are the following:
1. Virus identified Win32/Tanatos.M
2. May be infected by unknown virus Win32/DH.CAFF8200D7
3. Trojan horse SpamTool.JFC
4. May be infected by unknown virus Win32/DH.CAFF82025D
5. Virus IDENTIFIED Win32/Vitru.G
6. Virus identified Worm/AutoRun.MB
7. Trojan horse Agent.AADR
8. Trojan horse SpamTool.JFC
9. Virus identified Win32/Vitru.Ma
10. Virus identified Worm/AutoRun.IT
11. Virus identified Win32/Vitru.D
12. Trojan horse BackDoor.Generic13.AJKM
13. Virus found Win32/Heur
14. Virus found Win32/NSAnti
every infection are paired to a program which has an .exe file on the last. It seems the virus target are the executable files.
My computer is a Lenovo3000N100 and running on OS Windows Xp. After these detection my computer gradually slow down. It takes a minute or more than to response on my command. Because of that I shut down the computer and wait for hours before I turned it on again. Current I'm doing nothing to removed the virus cause I know it will do some minor perhaps it could lead to serious damage to the system of the computer. I cannot run some of my programs and says something like
" the registry refers to a nonexistent Java Runtime Environment installation or the runtime is corrupted. The system cannot find the file specified." Google Chrome is not working which is my default browser. I'm using firefox for now.
I know i shouldn't restored an infected file just for the program to work. I just don't want to lose the time again to download it. I did restored the file because on my experience. Some site that i downloaded for the program except this "one" says that if the AVG or your antivirus program detected a virus, just disable or manage an exception so that it would work. Now you know why I did this thing. And here is my punishment. For now it seems my AVG Resident Shield stops from removing threat. While I'm typing this i disconnected from the internet. After finishing this I will connect again.
I will really appreciate the help Geek to Go. Somehow I manage to download the OTL.SCR and run it.
Here's the result of OTR
OTL logfile created on: 11/24/2011 23:04:54 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\johnnie fritz\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
1022.11 Mb Total Physical Memory | 130.20 Mb Available Physical Memory | 12.74% Memory free
2.40 Gb Paging File | 1.49 Gb Available in Paging File | 62.34% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 69.33 Gb Total Space | 3.64 Gb Free Space | 5.25% Space Free | Partition Type: NTFS
Drive G: | 21.03 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: HOAH | User Name: johnnie fritz | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011/11/24 23:04:33 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\johnnie fritz\Desktop\OTL.com
PRC - [2011/11/24 18:10:04 | 000,904,704 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011/10/25 01:08:00 | 002,078,048 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe
PRC - [2010/12/02 07:47:58 | 000,621,920 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2010/12/02 07:46:21 | 000,725,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2010/07/17 02:34:59 | 000,515,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2010/07/17 02:34:45 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2010/07/17 02:33:37 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2010/05/30 11:44:36 | 000,086,016 | ---- | M] () -- C:\Program Files\Sun Broadband Wireless\Sun Broadband Wireless.exe
PRC - [2010/05/10 11:33:42 | 000,110,592 | ---- | M] (WDC) -- C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
PRC - [2010/05/10 11:32:36 | 001,858,048 | ---- | M] () -- C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
PRC - [2010/05/10 11:32:06 | 000,482,304 | ---- | M] () -- C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
PRC - [2008/04/14 08:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006/05/20 01:39:16 | 000,057,344 | ---- | M] (Lenovo) -- C:\WINDOWS\system32\PMSveH.exe
PRC - [2006/04/18 04:13:00 | 000,094,208 | ---- | M] (Lenovo) -- C:\Program Files\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe
PRC - [2006/04/18 04:12:28 | 000,151,552 | ---- | M] (Lenovo) -- C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe
PRC - [2006/04/18 04:12:26 | 000,040,960 | ---- | M] () -- C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
PRC - [2006/04/18 04:09:10 | 000,409,600 | ---- | M] (Lenovo) -- C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe
PRC - [2006/04/18 03:59:10 | 000,098,304 | ---- | M] (Lenovo) -- C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe
PRC - [2006/02/28 15:20:44 | 002,076,672 | ---- | M] () -- C:\Program Files\Softex\OmniPass\scureapp.exe
PRC - [2006/02/28 15:20:02 | 000,013,312 | ---- | M] () -- C:\Program Files\Softex\OmniPass\OPXPApp.exe
PRC - [2006/02/28 15:18:32 | 000,032,768 | ---- | M] (Softex Inc.) -- C:\Program Files\Softex\OmniPass\OmniServ.exe
PRC - [2006/01/18 01:45:32 | 000,618,557 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
PRC - [2006/01/18 01:43:58 | 001,396,820 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\Lenovo\Bluetooth Software\BTStackServer.exe
PRC - [2006/01/18 01:37:24 | 000,266,295 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\Lenovo\Bluetooth Software\bin\btwdins.exe
PRC - [2005/12/22 09:34:58 | 000,077,824 | ---- | M] () -- C:\Program Files\IBM ThinkVantage\Common\Scheduler\tvtsched.exe
PRC - [2005/12/22 09:27:00 | 000,032,768 | ---- | M] () -- C:\Program Files\IBM ThinkVantage\Common\Logger\logmon.exe
PRC - [2005/12/22 09:20:56 | 001,384,448 | ---- | M] () -- C:\Program Files\IBM ThinkVantage\Rescue and Recovery\rrservice.exe
PRC - [2005/12/22 09:08:06 | 001,988,144 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\IBM ThinkVantage\Client Security Solution\cssauthe.exe
PRC - [2005/12/15 02:51:12 | 000,622,700 | ---- | M] (Diskeeper Corporation) -- C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
PRC - [2005/12/07 16:00:00 | 000,106,496 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\LenovoCare\LPMGR.EXE
PRC - [2005/10/21 05:18:50 | 000,442,368 | ---- | M] (Sonix) -- C:\WINDOWS\vsnp2std.exe
PRC - [2005/08/02 08:32:40 | 000,040,960 | ---- | M] () -- C:\Program Files\ThinkVantage\SystemUpdate\UCLauncherService.exe
PRC - [2005/03/03 21:04:48 | 000,122,880 | R--- | M] () -- C:\Program Files\FarStone\VDPBS\Vhd\RDTask.exe
========== Modules (No Company Name) ==========
MOD - [2011/05/30 23:47:17 | 000,212,992 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\e0d56c0582316e9ecb4c18186e37217c\System.ServiceProcess.ni.dll
MOD - [2011/05/30 23:46:45 | 000,771,584 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\1d03df7f7548613e8beab2cc21e57910\System.Runtime.Remoting.ni.dll
MOD - [2011/05/30 23:46:43 | 000,627,712 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\ff5c7a52497d892f3a3206384d46b5e7\System.EnterpriseServices.ni.dll
MOD - [2011/05/30 23:46:41 | 000,627,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Transactions\990d96810a21e0fa95f916ffc66f3a94\System.Transactions.ni.dll
MOD - [2011/05/30 23:46:30 | 000,998,400 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Management\042658de519bb1e22ec5925092061892\System.Management.ni.dll
MOD - [2011/05/30 23:46:16 | 000,971,264 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\3d6b4509225efde2a4e3db77205f8a51\System.Configuration.ni.dll
MOD - [2011/05/30 23:41:36 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\b06e49ed8cbe07dbb90e313fa634b27b\System.Xml.ni.dll
MOD - [2011/05/30 23:40:36 | 006,616,576 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Data\1337829e3df6888464a17aab78bb9b8f\System.Data.ni.dll
MOD - [2011/05/30 23:38:35 | 002,933,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
MOD - [2011/05/30 23:38:16 | 000,261,632 | ---- | M] () -- C:\WINDOWS\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
MOD - [2011/05/30 23:36:17 | 007,949,824 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\f02cf6430a9fc77908a74ab6925cb73c\System.ni.dll
MOD - [2011/05/30 23:36:06 | 011,490,816 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\62d5f089dd51f18472a7caf1593d9f6b\mscorlib.ni.dll
MOD - [2010/07/17 06:24:45 | 001,015,768 | ---- | M] () -- C:\Program Files\Mozilla Firefox\js3250.dll
MOD - [2010/07/17 06:24:10 | 005,612,496 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2010/05/30 11:44:36 | 000,086,016 | ---- | M] () -- C:\Program Files\Sun Broadband Wireless\Sun Broadband Wireless.exe
MOD - [2010/05/10 11:32:36 | 001,858,048 | ---- | M] () -- C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
MOD - [2010/05/10 11:32:06 | 000,482,304 | ---- | M] () -- C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
MOD - [2010/03/15 11:28:22 | 000,141,824 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2008/06/30 16:19:48 | 000,397,312 | ---- | M] () -- C:\Program Files\Sun Broadband Wireless\atcomm.dll
MOD - [2008/06/30 16:19:48 | 000,135,168 | ---- | M] () -- C:\Program Files\Sun Broadband Wireless\SMSPlugin.dll
MOD - [2008/06/30 16:19:48 | 000,126,976 | ---- | M] () -- C:\Program Files\Sun Broadband Wireless\LocaleMgrPlugin.dll
MOD - [2008/06/30 16:19:48 | 000,122,880 | ---- | M] () -- C:\Program Files\Sun Broadband Wireless\DetectDev.dll
MOD - [2008/06/30 16:19:48 | 000,114,688 | ---- | M] () -- C:\Program Files\Sun Broadband Wireless\DeviceMgrUIPlugin.dll
MOD - [2008/06/30 16:19:48 | 000,098,304 | ---- | M] () -- C:\Program Files\Sun Broadband Wireless\NetInfoPlugin.dll
MOD - [2008/06/30 16:19:48 | 000,098,304 | ---- | M] () -- C:\Program Files\Sun Broadband Wireless\DeviceMgrPlugin.dll
MOD - [2008/06/30 16:19:48 | 000,090,112 | ---- | M] () -- C:\Program Files\Sun Broadband Wireless\FileManager.dll
MOD - [2008/06/30 16:19:48 | 000,086,016 | ---- | M] () -- C:\Program Files\Sun Broadband Wireless\DialUpPlugin.dll
MOD - [2008/06/30 16:19:48 | 000,057,344 | ---- | M] () -- C:\Program Files\Sun Broadband Wireless\ConfigFilePlugin.dll
MOD - [2008/06/30 16:19:48 | 000,036,864 | ---- | M] () -- C:\Program Files\Sun Broadband Wireless\XCodec.dll
MOD - [2008/06/30 16:19:48 | 000,032,768 | ---- | M] () -- C:\Program Files\Sun Broadband Wireless\NotifyServicePlugin.dll
MOD - [2008/06/30 16:19:48 | 000,025,600 | ---- | M] () -- C:\Program Files\Sun Broadband Wireless\DeviceOperate.dll
MOD - [2008/06/30 16:19:48 | 000,014,848 | ---- | M] () -- C:\Program Files\Sun Broadband Wireless\isaputrace.dll
MOD - [2006/04/18 04:13:16 | 000,192,512 | ---- | M] () -- C:\Program Files\ThinkPad\ConnectUtilities\AcGolan.dll
MOD - [2006/04/18 04:12:32 | 000,114,688 | ---- | M] () -- C:\Program Files\ThinkPad\ConnectUtilities\AcLocMigrator.dll
MOD - [2006/04/18 04:12:26 | 000,040,960 | ---- | M] () -- C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
MOD - [2006/04/18 04:12:24 | 000,413,696 | ---- | M] () -- C:\Program Files\ThinkPad\ConnectUtilities\AcSvcHlpr.dll
MOD - [2006/04/18 04:12:22 | 000,077,824 | ---- | M] () -- C:\Program Files\ThinkPad\ConnectUtilities\AcAdaptersInfo.dll
MOD - [2006/04/18 04:12:18 | 000,532,480 | ---- | M] () -- C:\Program Files\ThinkPad\ConnectUtilities\ACon.dll
MOD - [2006/04/18 03:47:38 | 000,094,208 | ---- | M] () -- C:\Program Files\ThinkPad\ConnectUtilities\ThinQCon.dll
MOD - [2006/04/18 03:47:18 | 000,090,112 | ---- | M] () -- C:\Program Files\ThinkPad\ConnectUtilities\AcSvcStub.dll
MOD - [2006/04/18 03:44:32 | 000,007,680 | ---- | M] () -- C:\Program Files\ThinkPad\ConnectUtilities\ACTurinSupport.dll
MOD - [2006/04/18 03:44:28 | 000,143,360 | ---- | M] () -- C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgr.dll
MOD - [2006/04/18 03:44:22 | 000,151,552 | ---- | M] () -- C:\Program Files\ThinkPad\ConnectUtilities\AcLocSettings.dll
MOD - [2006/04/18 03:43:44 | 000,077,824 | ---- | M] () -- C:\Program Files\ThinkPad\ConnectUtilities\AcCryptHlpr.dll
MOD - [2006/04/18 03:43:38 | 000,077,824 | ---- | M] () -- C:\Program Files\ThinkPad\ConnectUtilities\ACHelper.dll
MOD - [2006/02/28 15:21:50 | 000,025,024 | ---- | M] () -- C:\Program Files\Softex\OmniPass\hdddrv.dll
MOD - [2006/02/28 15:21:08 | 000,049,152 | ---- | M] () -- C:\Program Files\Softex\OmniPass\OPXPGina.dll
MOD - [2006/02/28 15:20:44 | 002,076,672 | ---- | M] () -- C:\Program Files\Softex\OmniPass\scureapp.exe
MOD - [2006/02/28 15:20:02 | 000,013,312 | ---- | M] () -- C:\Program Files\Softex\OmniPass\OPXPApp.exe
MOD - [2006/02/28 15:19:40 | 000,122,880 | ---- | M] () -- C:\Program Files\Softex\OmniPass\ginastub.dll
MOD - [2006/02/28 15:15:26 | 000,053,248 | ---- | M] () -- C:\Program Files\Softex\OmniPass\scuredll.dll
MOD - [2006/02/28 15:14:56 | 000,327,680 | ---- | M] () -- C:\Program Files\Softex\OmniPass\userdata.dll
MOD - [2006/02/28 15:14:46 | 000,061,440 | ---- | M] () -- C:\Program Files\Softex\OmniPass\opfsdll.dll
MOD - [2006/02/28 15:14:40 | 000,790,528 | ---- | M] () -- C:\Program Files\Softex\OmniPass\autheng.dll
MOD - [2006/02/28 15:14:30 | 000,012,288 | ---- | M] () -- C:\Program Files\Softex\OmniPass\cryptodll.dll
MOD - [2006/02/28 15:14:28 | 000,434,176 | ---- | M] () -- C:\Program Files\Softex\OmniPass\storeng.dll
MOD - [2006/02/28 15:14:12 | 000,010,752 | ---- | M] () -- C:\Program Files\Softex\OmniPass\SSPLogon.dll
MOD - [2006/02/28 15:10:46 | 002,179,504 | ---- | M] () -- C:\Program Files\Softex\OmniPass\sftxtgp.dll
MOD - [2006/01/18 01:46:48 | 000,053,248 | ---- | M] () -- C:\Program Files\Lenovo\Bluetooth Software\BTKeyInd.dll
MOD - [2005/12/29 03:11:34 | 000,876,544 | ---- | M] () -- C:\Program Files\Intel\Wireless\Bin\Libeay32.dll
MOD - [2005/12/29 03:11:34 | 000,208,965 | ---- | M] () -- C:\Program Files\Intel\Wireless\Bin\iWMSProv.dll
MOD - [2005/12/29 03:11:34 | 000,053,322 | ---- | M] () -- C:\Program Files\Intel\Wireless\Bin\IntStngs.dll
MOD - [2005/12/22 09:34:58 | 000,077,824 | ---- | M] () -- C:\Program Files\IBM ThinkVantage\Common\Scheduler\tvtsched.exe
MOD - [2005/12/22 09:27:00 | 000,032,768 | ---- | M] () -- C:\Program Files\IBM ThinkVantage\Common\Logger\logmon.exe
MOD - [2005/12/22 09:23:06 | 000,139,264 | ---- | M] () -- C:\Program Files\IBM ThinkVantage\Rescue and Recovery\CDRecord.dll
MOD - [2005/12/22 09:20:56 | 001,384,448 | ---- | M] () -- C:\Program Files\IBM ThinkVantage\Rescue and Recovery\rrservice.exe
MOD - [2005/12/22 09:19:10 | 000,155,648 | ---- | M] () -- C:\Program Files\IBM ThinkVantage\Rescue and Recovery\ui.dll
MOD - [2005/12/22 09:19:02 | 000,069,632 | ---- | M] () -- C:\Program Files\IBM ThinkVantage\Rescue and Recovery\zlib.dll
MOD - [2005/12/22 09:15:14 | 000,671,744 | ---- | M] () -- C:\Program Files\IBM ThinkVantage\Rescue and Recovery\rr_res.dll
MOD - [2005/12/21 11:46:04 | 000,024,576 | ---- | M] () -- C:\WINDOWS\system32\tphklock.dll
MOD - [2005/12/07 16:00:00 | 000,057,344 | ---- | M] () -- C:\Program Files\Lenovo\LenovoCare\US\LPRESMGR.DLL
MOD - [2005/12/05 08:33:00 | 000,466,944 | ---- | M] () -- C:\WINDOWS\system32\nvshell.dll
MOD - [2005/08/16 16:14:36 | 000,401,408 | R--- | M] () -- C:\Program Files\FarStone\VDPBS\DVDCreator\CDBLib.dll
MOD - [2005/08/13 00:53:12 | 000,106,496 | ---- | M] () -- C:\Program Files\FarStone\VDPBS\Vhd\RDTask_RC.dll
MOD - [2005/08/13 00:52:46 | 000,028,672 | ---- | M] () -- C:\WINDOWS\system32\ComRc.dll
MOD - [2005/08/09 18:35:12 | 000,655,360 | R--- | M] () -- C:\Program Files\FarStone\VDPBS\DVDCreator\UdfFormat.dll
MOD - [2005/08/04 00:43:28 | 000,122,880 | R--- | M] () -- C:\Program Files\FarStone\VDPBS\DVDCreator\UDFGen.dll
MOD - [2005/08/02 08:32:40 | 000,040,960 | ---- | M] () -- C:\Program Files\ThinkVantage\SystemUpdate\UCLauncherService.exe
MOD - [2005/08/02 08:32:36 | 000,147,456 | ---- | M] () -- C:\Program Files\ThinkVantage\SystemUpdate\UCLauncherCommon.dll
MOD - [2005/07/22 21:14:32 | 000,122,940 | R--- | M] () -- C:\Program Files\FarStone\VDPBS\DVDCreator\ListCtrl.dll
MOD - [2005/07/20 18:34:28 | 000,126,976 | ---- | M] () -- C:\Program Files\ThinkVantage\AMSG\ahlprunl.dll
MOD - [2005/07/16 22:54:46 | 000,081,920 | ---- | M] () -- C:\Program Files\FarStone\VDPBS\VDP\VDExt900.dll
MOD - [2005/07/01 17:45:42 | 000,049,152 | R--- | M] () -- C:\Program Files\FarStone\VDPBS\DVDCreator\BurnInterface.dll
MOD - [2005/06/30 18:54:50 | 000,180,224 | ---- | M] () -- C:\Program Files\ThinkVantage\AMSG\AcpPollingEngine.dll
MOD - [2005/06/01 22:35:58 | 000,020,480 | R--- | M] () -- C:\Program Files\FarStone\VDPBS\DVDCreator\WriteLog.dll
MOD - [2005/06/01 22:35:48 | 000,131,130 | R--- | M] () -- C:\Program Files\FarStone\VDPBS\DVDCreator\CDInfo.dll
MOD - [2005/04/27 22:47:04 | 000,065,536 | R--- | M] () -- C:\Program Files\FarStone\VDPBS\DVDCreator\ExportFile.dll
MOD - [2005/03/03 21:04:48 | 000,122,880 | R--- | M] () -- C:\Program Files\FarStone\VDPBS\Vhd\RDTask.exe
MOD - [2005/03/03 21:04:46 | 000,077,824 | R--- | M] () -- C:\Program Files\FarStone\VDPBS\Vhd\RDrv2KInterface.dll
MOD - [2004/08/11 00:23:46 | 000,077,824 | R--- | M] () -- C:\Program Files\FarStone\VDPBS\DVDCreator\LogDLL.dll
MOD - [2004/08/11 00:23:44 | 000,024,576 | R--- | M] () -- C:\Program Files\FarStone\VDPBS\DVDCreator\FsLodLib.dll
MOD - [2004/06/29 01:03:56 | 000,028,672 | R--- | M] () -- C:\Program Files\FarStone\VDPBS\Vhd\RDrvInterface.dll
MOD - [2003/06/06 23:57:02 | 000,024,576 | R--- | M] () -- C:\Program Files\FarStone\VDPBS\Vhd\FsLodLib.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [On_Demand | Stopped] -- -- (PsaSrv)
SRV - File not found [On_Demand | Stopped] -- -- (AVG Security Toolbar Service)
SRV - [2010/07/17 02:34:45 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2010/05/10 11:33:42 | 000,110,592 | ---- | M] (WDC) [Auto | Running] -- C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe -- (WDDMService)
SRV - [2010/05/10 11:32:36 | 001,858,048 | ---- | M] () [Auto | Running] -- C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe -- (WDFME)
SRV - [2010/05/10 11:32:06 | 000,482,304 | ---- | M] () [Auto | Running] -- C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe -- (WDSC)
SRV - [2008/07/04 12:52:18 | 000,014,336 | ---- | M] (Vodafone) [Disabled | Stopped] -- C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe -- (VMCService)
SRV - [2006/11/03 18:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV - [2006/05/20 01:39:16 | 000,057,344 | ---- | M] (Lenovo) [Auto | Running] -- C:\WINDOWS\system32\PMSveH.exe -- (PMSveH)
SRV - [2006/04/18 04:12:28 | 000,151,552 | ---- | M] (Lenovo) [Auto | Running] -- C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe -- (AcSvc)
SRV - [2006/04/18 04:12:26 | 000,040,960 | ---- | M] () [Auto | Running] -- C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe -- (AcPrfMgrSvc)
SRV - [2006/02/28 15:18:32 | 000,032,768 | ---- | M] (Softex Inc.) [Auto | Running] -- C:\Program Files\Softex\OmniPass\OmniServ.exe -- (omniserv)
SRV - [2006/01/18 01:37:24 | 000,266,295 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\Lenovo\Bluetooth Software\bin\btwdins.exe -- (btwdins)
SRV - [2005/12/22 09:34:58 | 000,077,824 | ---- | M] () [Auto | Running] -- C:\Program Files\IBM ThinkVantage\Common\Scheduler\tvtsched.exe -- (TVT Scheduler)
SRV - [2005/12/22 09:20:56 | 001,384,448 | ---- | M] () [Auto | Running] -- C:\Program Files\IBM ThinkVantage\Rescue and Recovery\rrservice.exe -- (TVT Backup Service)
SRV - [2005/12/15 02:51:12 | 000,622,700 | ---- | M] (Diskeeper Corporation) [Auto | Running] -- C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe -- (Diskeeper)
SRV - [2005/08/02 08:32:40 | 000,040,960 | ---- | M] () [Auto | Running] -- C:\Program Files\ThinkVantage\SystemUpdate\UCLauncherService.exe -- (UCLauncherService)
========== Driver Services (SafeList) ==========
DRV - [2011/09/30 15:55:44 | 000,029,712 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2011/05/31 01:10:17 | 000,243,152 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2011/03/19 00:08:54 | 000,025,240 | ---- | M] (Almico Software) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)
DRV - [2010/07/17 02:33:44 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2010/06/03 19:23:14 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010/05/30 05:12:40 | 000,016,256 | ---- | M] (Lenovo) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\psadd.sys -- (psadd)
DRV - [2009/02/13 12:02:52 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wdcsam.sys -- (WDC_SAM)
DRV - [2008/11/12 13:50:52 | 000,110,080 | R--- | M] (ZTE Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbnet.sys -- (ZTEusbnet)
DRV - [2008/11/12 13:50:52 | 000,105,344 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbnmea.sys -- (ZTEusbnmea)
DRV - [2008/11/12 13:50:52 | 000,104,960 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\zteusbvoice.sys -- (ZTEusbvoice)
DRV - [2008/11/12 13:50:52 | 000,104,960 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbser6k.sys -- (ZTEusbser6k)
DRV - [2008/11/12 13:50:52 | 000,104,960 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbmdm6k.sys -- (ZTEusbmdm6k)
DRV - [2008/11/12 13:50:52 | 000,007,680 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\massfilter.sys -- (massfilter)
DRV - [2008/09/26 18:01:12 | 000,113,664 | R--- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbnet.sys -- (ewusbnet)
DRV - [2008/09/26 18:01:00 | 000,101,376 | R--- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2008/09/09 14:35:08 | 000,119,936 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sshsmdm.sys -- (sshsmdm)
DRV - [2008/09/09 14:35:08 | 000,091,776 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sshsbus.sys -- (sshsbus) SAMSUNG Mobile USB Multi-Device driver (WDM)
DRV - [2008/09/09 14:35:08 | 000,014,976 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sshsmdfl.sys -- (sshsmdfl)
DRV - [2006/04/17 09:58:12 | 000,048,896 | ---- | M] (Prolific Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ser2pl.sys -- (Ser2pl)
DRV - [2006/02/27 20:46:20 | 000,081,408 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2006/01/18 01:21:52 | 000,328,061 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (btaudio)
DRV - [2006/01/18 01:18:22 | 000,850,474 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL)
DRV - [2006/01/18 01:15:36 | 000,030,459 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver)
DRV - [2006/01/18 01:14:52 | 000,065,688 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB)
DRV - [2006/01/18 01:11:56 | 000,148,900 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btwdndis.sys -- (BTWDNDIS)
DRV - [2006/01/13 15:33:22 | 000,006,016 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\IBMBLDID.sys -- (IBMTPCHK)
DRV - [2006/01/11 17:42:00 | 000,007,168 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\TSMAPIP.SYS -- (TSMAPIP)
DRV - [2005/12/29 04:22:08 | 000,013,568 | ---- | M] (Intel Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\s24trans.sys -- (s24trans)
DRV - [2005/12/22 08:14:58 | 000,012,544 | ---- | M] (IBM) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\ibmfilter.sys -- (ibmfilter)
DRV - [2005/12/22 05:09:50 | 000,010,240 | ---- | M] (Lenovo ) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\PMHler.sys -- (PMHler)
DRV - [2005/12/13 07:08:44 | 001,124,097 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2005/12/05 15:55:30 | 001,428,096 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\w39n51.sys -- (w39n51) Intel®
DRV - [2005/11/17 11:28:32 | 000,028,928 | ---- | M] (REDC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2005/11/09 00:27:20 | 000,011,520 | ---- | M] (IBM Corp.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ANC.sys -- (ANC)
DRV - [2005/11/02 09:08:00 | 000,308,992 | ---- | M] (REDC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2005/11/02 08:54:50 | 000,051,584 | ---- | M] (REDC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2005/10/18 07:16:50 | 010,446,592 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\snp2sxp.sys -- (SNP2STD) USB2.0 PC Camera (SNP2STD)
DRV - [2005/08/10 23:01:34 | 000,020,864 | R--- | M] () [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\DVDRC.sys -- (DVDRC)
DRV - [2005/08/06 01:41:12 | 000,138,496 | ---- | M] (Farstone Corporation) [File_System | Boot | Running] -- C:\WINDOWS\System32\drivers\fsUdf.sys -- (FsUdf)
DRV - [2005/07/16 00:07:00 | 000,064,868 | R--- | M] (FarStone Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\fvdscsi.sys -- (fvdscsi)
DRV - [2005/03/30 09:02:22 | 000,116,594 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ATSwpDrv.sys -- (ATSWPDRV) AuthenTec TruePrint USB Driver (AES2500)
DRV - [2005/01/08 08:07:16 | 000,145,920 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Hdaudio.sys -- (HdAudAddService)
DRV - [2004/09/22 03:46:26 | 000,037,409 | R--- | M] (FarStone) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\fsRamDsk.sys -- (fsRamDsk)
DRV - [2003/08/06 16:46:12 | 000,010,899 | R--- | M] (FarStone Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\fcdabus.sys -- (fcdabus)
DRV - [1996/04/04 03:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoo...earchTerms}&f=4
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.msn.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.co...ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.facemoods.com/?a=ddr
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "AVG Secure Search"
FF - prefs.js..browser.search.selectedEngine: "AVG Secure Search"
FF - prefs.js..browser.startup.homepage: "http://start.facemoo...ods.com/?a=ddr"
FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:9.0.0.911
FF - prefs.js..extensions.enabledItems: avg@igeared:7.007.026.001
FF - prefs.js..extensions.enabledItems: {4BBDD651-70CF-4821-84F8-2B918CF89CA3}:6.3.3.2
FF - prefs.js..extensions.enabledItems: {DB9127A2-3381-41ec-82B3-1B6ED4C6F29A}:1.0
FF - prefs.js..extensions.enabledItems: {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.3.0.6
FF - prefs.js..extensions.enabledItems: {02450954-cdd9-410f-b1da-db804e18c671}:0.96.3
FF - prefs.js..extensions.enabledItems: [email protected]:1.8.17.30
FF - prefs.js..extensions.enabledItems: {73a6fe31-595d-460b-a920-fcc0f8843232}:2.1.2.5
FF - prefs.js..extensions.enabledItems: [email protected]:4.5.6
FF - prefs.js..extensions.enabledItems: {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}:0.9.7
FF - prefs.js..extensions.enabledItems: [email protected]:1.9.1
FF - prefs.js..extensions.enabledItems: {c50ca3c4-5656-43c2-a061-13e717f73fc8}:4.1.3
FF - prefs.js..extensions.enabledItems: [email protected]:2.4.3
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: [email protected]:1.2.1
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.7.0.8773
FF - prefs.js..extensions.enabledItems: {33e0daa6-3af3-d8b5-6752-10e949c61516}:1.1
FF - prefs.js..extensions.enabledItems: {75656794-AB59-4712-BFBC-5D816D56F3BC}:1.1.7
FF - prefs.js..keyword.URL: "http://search.avg.co...s&lng=en-US&q="
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpWinExt,version=5.0: C:\Program Files\MSN Toolbar\Platform\5.0.1449.0\npwinext.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.3: C:\Documents and Settings\johnnie fritz\Application Data\Facebook\npfbplugin_1_0_3.dll ( )
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\johnnie fritz\Local Settings\Application Data\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\johnnie fritz\Local Settings\Application Data\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2011/09/30 21:00:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared [2011/08/16 01:47:41 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\MSN Toolbar\Platform\5.0.1449.0\Firefox [2010/06/14 20:49:36 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\FlashCatch\firefox [2010/06/16 15:55:37 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{27182e60-b5f3-411c-b545-b44205977502}: C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension\ [2010/06/25 07:54:23 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/07/28 21:55:51 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/09/30 18:33:14 | 000,000,000 | ---D | M]
[2010/06/13 15:41:39 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\johnnie fritz\Application Data\Mozilla\Extensions
[2011/11/24 22:51:05 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\johnnie fritz\Application Data\Mozilla\Firefox\Profiles\6vx66vga.default\extensions
[2010/06/14 11:03:40 | 000,000,000 | ---D | M] (Screengrab) -- C:\Documents and Settings\johnnie fritz\Application Data\Mozilla\Firefox\Profiles\6vx66vga.default\extensions\{02450954-cdd9-410f-b1da-db804e18c671}
[2011/08/31 11:58:46 | 000,000,000 | ---D | M] (FlashGot) -- C:\Documents and Settings\johnnie fritz\Application Data\Mozilla\Firefox\Profiles\6vx66vga.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}
[2011/11/18 21:41:18 | 000,000,000 | ---D | M] (Complitly - Speed up your search with your personal search suggestions tool) -- C:\Documents and Settings\johnnie fritz\Application Data\Mozilla\Firefox\Profiles\6vx66vga.default\extensions\{33e0daa6-3af3-d8b5-6752-10e949c61516}
[2010/06/14 09:39:19 | 000,000,000 | ---D | M] (FEBE) -- C:\Documents and Settings\johnnie fritz\Application Data\Mozilla\Firefox\Profiles\6vx66vga.default\extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}
[2011/08/16 00:46:31 | 000,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\johnnie fritz\Application Data\Mozilla\Firefox\Profiles\6vx66vga.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}
[2011/11/18 21:40:00 | 000,000,000 | ---D | M] (WebScout FileBulldog Toolbar) -- C:\Documents and Settings\johnnie fritz\Application Data\Mozilla\Firefox\Profiles\6vx66vga.default\extensions\{75656794-AB59-4712-BFBC-5D816D56F3BC}
[2011/08/31 11:58:45 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\johnnie fritz\Application Data\Mozilla\Firefox\Profiles\6vx66vga.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2011/08/31 11:58:17 | 000,000,000 | ---D | M] (Fast Video Download (with SearchMenu)) -- C:\Documents and Settings\johnnie fritz\Application Data\Mozilla\Firefox\Profiles\6vx66vga.default\extensions\{c50ca3c4-5656-43c2-a061-13e717f73fc8}
[2010/07/29 06:51:45 | 000,000,000 | ---D | M] (Download Statusbar) -- C:\Documents and Settings\johnnie fritz\Application Data\Mozilla\Firefox\Profiles\6vx66vga.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}
[2010/06/14 10:36:43 | 000,000,000 | ---D | M] (flashget3 Extension) -- C:\Documents and Settings\johnnie fritz\Application Data\Mozilla\Firefox\Profiles\6vx66vga.default\extensions\{DB9127A2-3381-41ec-82B3-1B6ED4C6F29A}
[2011/08/31 11:58:15 | 000,000,000 | ---D | M] (Ant Video Downloader) -- C:\Documents and Settings\johnnie fritz\Application Data\Mozilla\Firefox\Profiles\6vx66vga.default\extensions\[email protected]
[2011/09/30 18:25:11 | 000,000,000 | ---D | M] (Facemoods) -- C:\Documents and Settings\johnnie fritz\Application Data\Mozilla\Firefox\Profiles\6vx66vga.default\extensions\[email protected]
[2011/08/31 11:58:24 | 000,000,000 | ---D | M] ("NetVideoHunter") -- C:\Documents and Settings\johnnie fritz\Application Data\Mozilla\Firefox\Profiles\6vx66vga.default\extensions\[email protected]
[2010/06/14 11:13:56 | 000,000,000 | ---D | M] (ScrapBook Plus) -- C:\Documents and Settings\johnnie fritz\Application Data\Mozilla\Firefox\Profiles\6vx66vga.default\extensions\[email protected]
[2011/08/31 11:58:39 | 000,000,000 | ---D | M] (FastestFox) -- C:\Documents and Settings\johnnie fritz\Application Data\Mozilla\Firefox\Profiles\6vx66vga.default\extensions\[email protected]
[2011/11/24 22:51:05 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/11/21 16:53:52 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2011/09/30 18:33:18 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011/09/30 21:00:04 | 000,000,000 | ---D | M] (AVG Safe Search) -- C:\PROGRAM FILES\AVG\AVG9\FIREFOX
[2011/08/16 01:47:41 | 000,000,000 | ---D | M] ("urn:mozilla:install-manifest" em:id="avg@igeared" em:name="AVG Security Toolbar" em:version="7.007.026.001" em:displayname="AVG Security Toolbar" em:iconURL="chrome://tavgp/skin/logo.ico" em:creator="AVG Technologies" em:description="AVG Security Toolbar" em:homepageURL="http://www.avg.com" >) -- C:\PROGRAM FILES\AVG\AVG9\TOOLBAR\FIREFOX\AVG@IGEARED
[2011/09/30 18:32:52 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2010/07/17 11:03:50 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2011/09/30 18:32:49 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011/09/30 18:25:28 | 000,002,046 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fcmdSrchddr.xml
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\johnnie fritz\Local Settings\Application Data\Google\Chrome\Application\15.0.874.121\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: Java Deployment Toolkit 6.0.220.4 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java Platform SE 6 U22 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\johnnie fritz\Local Settings\Application Data\Google\Chrome\Application\15.0.874.121\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\johnnie fritz\Local Settings\Application Data\Google\Chrome\Application\15.0.874.121\pdf.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Facebook Plugin (Enabled) = C:\Documents and Settings\johnnie fritz\Application Data\Facebook\npfbplugin_1_0_3.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\johnnie fritz\Local Settings\Application Data\Google\Update\1.3.21.69\npGoogleUpdate3.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files\Google\Picasa3\npPicasa3.dll
CHR - plugin: Bing Bar (Enabled) = C:\Program Files\MSN Toolbar\Platform\5.0.1449.0\npwinext.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: Complitly plugin for chrome = C:\Documents and Settings\johnnie fritz\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda\1.1_0\
CHR - Extension: Gears of War 3 Marcus Theme (1280 x 1024) = C:\Documents and Settings\johnnie fritz\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dopmcmgofkgjegfnegcnempkikpkdccb\1_0\
CHR - Extension: Facemoods = C:\Documents and Settings\johnnie fritz\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.4.0_0\
CHR - Extension: Skype Click to Call = C:\Documents and Settings\johnnie fritz\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.7.0.8773_0\
CHR - Extension: WebScout = C:\Documents and Settings\johnnie fritz\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\mpcknfcdcgpffjddjeceioobdelceffo\1.0.0\
CHR - Extension: WebScout = C:\Documents and Settings\johnnie fritz\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\mpcknfcdcgpffjddjeceioobdelceffo\1.0.0\.svn\text-base\.svn-base
O1 HOSTS File: ([2010/12/03 04:39:15 | 000,426,615 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 14694 more lines...
O2 - BHO: (Complitly) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Documents and Settings\johnnie fritz\Application Data\Complitly\Complitly.dll (SimplyGen)
O2 - BHO: (FGCatchUrl) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll File not found
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (CescrtHlpr Object) - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files\facemoods.com\facemoods\1.4.17.5\bh\facemoods.dll (facemoods.com BHO)
O2 - BHO: (FlashCatchBHO Class) - {88618A96-6D8A-42E7-B932-9073D5B2080F} - C:\Program Files\FlashCatch\flashcatch.dll (Level 9 Technology, Inc.)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (FlashGetBHO) - {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} - C:\Documents and Settings\johnnie fritz\Application Data\FlashGetBHO\FlashGetBHO3.dll (Trend Media Group)
O2 - BHO: (FlashGet GetFlash Class) - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll (www.flashget.com)
O2 - BHO: (SMTTB2009 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\WebScout FileBulldog Toolbar\tbcore3.dll ()
O3 - HKLM\..\Toolbar: (FlashCatch) - {10CECF4F-A96E-4803-8AC2-F565FB29FF47} - C:\Program Files\FlashCatch\flashcatch.dll (Level 9 Technology, Inc.)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (WebScout FileBulldog Toolbar) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\WebScout FileBulldog Toolbar\tbcore3.dll ()
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (facemoods Toolbar) - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files\facemoods.com\facemoods\1.4.17.5\facemoodsTlbr.dll (facemoods.com)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (FlashCatch) - {10CECF4F-A96E-4803-8AC2-F565FB29FF47} - C:\Program Files\FlashCatch\flashcatch.dll (Level 9 Technology, Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [ACTray] C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe (Lenovo)
O4 - HKLM..\Run: [ACWLIcon] C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe (Lenovo)
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [Corel Photo Downloader] C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe File not found
O4 - HKLM..\Run: [cssauthe] C:\Program Files\IBM ThinkVantage\Client Security Solution\cssauthe.exe (Lenovo Group Limited)
O4 - HKLM..\Run: [DiskeeperSystray] "C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe" File not found
O4 - HKLM..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe File not found
O4 - HKLM..\Run: [LPManager] C:\Program Files\Lenovo\LenovoCare\LPMGR.EXE (Lenovo Group Limited)
O4 - HKLM..\Run: [Microsoft Default Manager] "C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] nwiz.exe /install File not found
O4 - HKLM..\Run: [OmniPass] C:\Program Files\Softex\OmniPass\scureapp.exe ()
O4 - HKLM..\Run: [RAMDrive] C:\Program Files\FarStone\VDPBS\VHD\RDTask.exe ()
O4 - HKLM..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe (Sonix)
O4 - HKLM..\Run: [suScheduler] C:\Program Files\ThinkVantage\SystemUpdate\UCLauncher.exe ()
O4 - HKLM..\Run: [TPHOTKEY] C:\Program Files\Lenovo\HOTKEY\TPHKMGR.exe ()
O4 - HKLM..\Run: [TPWAUDAP] C:\Program Files\Lenovo\HOTKEY\TpWAudAp.exe ()
O4 - HKLM..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide File not found
O4 - HKCU..\Run: [Google Update] "C:\Documents and Settings\johnnie fritz\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c File not found
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Bluetooth.lnk = C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 4192
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 1
O8 - Extra context menu item: &Download All with FlashGet - C:\Program Files\FlashGet\JC_ALL.HTM ()
O8 - Extra context menu item: &Download with FlashGet - C:\Program Files\FlashGet\JC_LINK.HTM ()
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Download all by FlashGet3 - C:\Documents and Settings\johnnie fritz\Application Data\FlashGetBHO\GetAllUrl.htm ()
O8 - Extra context menu item: Download by FlashGet3 - C:\Documents and Settings\johnnie fritz\Application Data\FlashGetBHO\GetUrl.htm ()
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm ()
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\flashget.exe (FlashGet.com)
O9 - Extra 'Tools' menuitem : FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\flashget.exe (FlashGet.com)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe File not found
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe File not found
O9 - Extra Button: PDFill PDF Editor - {FB858B22-55E2-413f-87F5-30ADC5552151} - C:\Program Files\PlotSoft\PDFill\DownloadPDF.exe (PlotSoft LLC)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKCU\..Trusted Domains: localhost ([]http in Local intranet)
O15 - HKCU\..Trusted Ranges: Range1 ([http] in Local intranet)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E19395AC-2F3B-404C-B80B-4A9F01CAFB4F}: NameServer = 202.126.40.5 222.127.143.5
O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL) -C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\ACNotify: DllName - (ACNotify.dll) - C:\PROGRAM FILES\THINKPAD\CONNECTUTILITIES\ACNotify.dll (Lenovo)
O20 - Winlogon\Notify\avgrsstarter: DllName - (avgrsstx.dll) - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - Winlogon\Notify\OPXPGina: DllName - (C:\Program Files\Softex\OmniPass\opxpgina.dll) - C:\Program Files\Softex\OmniPass\OPXPGina.dll ()
O20 - Winlogon\Notify\tphotkey: DllName - (tphklock.dll) - C:\WINDOWS\System32\tphklock.dll ()
O22 - SharedTaskScheduler: {1984DD45-52CF-49cd-AB77-18F378FEA264} - FencesShellExt - C:\Program Files\Stardock\Fences\FencesMenu.dll (Stardock)
O24 - Desktop WallPaper: C:\Documents and Settings\johnnie fritz\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\johnnie fritz\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/05/30 05:37:36 | 000,000,000 | -H-- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2008/04/24 21:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.) - G:\AutoRun.exe -- [ CDFS ]
O32 - AutoRun File - [2007/11/07 23:41:52 | 000,000,047 | R--- | M] () - G:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{19b219fa-7a82-11df-86a7-000fb0c995c2}\Shell - "" = AutoRun
O33 - MountPoints2\{19b219fa-7a82-11df-86a7-000fb0c995c2}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{19b219fa-7a82-11df-86a7-000fb0c995c2}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{4644f3de-8878-11df-86ba-000fb0c995c2}\Shell - "" = AutoRun
O33 - MountPoints2\{4644f3de-8878-11df-86ba-000fb0c995c2}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{4644f3de-8878-11df-86ba-000fb0c995c2}\Shell\AutoRun\command - "" = G:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{62c1bd8c-7077-11df-8685-000fb0c995c2}\Shell\AutoRun\command - "" = F:\setupSNK.exe
O33 - MountPoints2\{759e0ed6-89f1-11e0-8706-000fb0c995c2}\Shell - "" = AutoRun
O33 - MountPoints2\{759e0ed6-89f1-11e0-8706-000fb0c995c2}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{759e0ed6-89f1-11e0-8706-000fb0c995c2}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{8958d8a5-9ee4-11df-86c1-000fb0c995c2}\Shell - "" = AutoRun
O33 - MountPoints2\{8958d8a5-9ee4-11df-86c1-000fb0c995c2}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{8958d8a5-9ee4-11df-86c1-000fb0c995c2}\Shell\AutoRun\command - "" = F:\unlock.exe autoplay=true
O33 - MountPoints2\{91c1ab5d-f81e-11df-86d4-0016cef3369d}\Shell - "" = AutoRun
O33 - MountPoints2\{91c1ab5d-f81e-11df-86d4-0016cef3369d}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{91c1ab5d-f81e-11df-86d4-0016cef3369d}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{935e9975-7a04-11df-86a6-000fb0c995c2}\Shell - "" = AutoRun
O33 - MountPoints2\{935e9975-7a04-11df-86a6-000fb0c995c2}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{935e9975-7a04-11df-86a6-000fb0c995c2}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{935e9978-7a04-11df-86a6-000fb0c995c2}\Shell - "" = AutoRun
O33 - MountPoints2\{935e9978-7a04-11df-86a6-000fb0c995c2}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{935e9978-7a04-11df-86a6-000fb0c995c2}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9f161925-6b9c-11df-8664-000fb0c995c2}\Shell - "" = AutoRun
O33 - MountPoints2\{9f161925-6b9c-11df-8664-000fb0c995c2}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9f161925-6b9c-11df-8664-000fb0c995c2}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{9f161928-6b9c-11df-8664-000fb0c995c2}\Shell - "" = AutoRun
O33 - MountPoints2\{9f161928-6b9c-11df-8664-000fb0c995c2}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9f161928-6b9c-11df-8664-000fb0c995c2}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{b9da1279-97f8-11e0-8738-0016cef3369d}\Shell - "" = AutoRun
O33 - MountPoints2\{b9da1279-97f8-11e0-8738-0016cef3369d}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{b9da1279-97f8-11e0-8738-0016cef3369d}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- [2008/04/24 21:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{d151807a-0817-11e1-88e2-0016cef3369d}\Shell - "" = AutoRun
O33 - MountPoints2\{d151807a-0817-11e1-88e2-0016cef3369d}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{d151807a-0817-11e1-88e2-0016cef3369d}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{d151807b-0817-11e1-88e2-0016cef3369d}\Shell - "" = AutoRun
O33 - MountPoints2\{d151807b-0817-11e1-88e2-0016cef3369d}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{d151807b-0817-11e1-88e2-0016cef3369d}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{e3b758ec-c16c-11e0-87b1-0016cef3369d}\Shell - "" = AutoRun
O33 - MountPoints2\{e3b758ec-c16c-11e0-87b1-0016cef3369d}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e3b758ec-c16c-11e0-87b1-0016cef3369d}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- [2008/04/24 21:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{e3b758ef-c16c-11e0-87b1-0016cef3369d}\Shell - "" = AutoRun
O33 - MountPoints2\{e3b758ef-c16c-11e0-87b1-0016cef3369d}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e3b758ef-c16c-11e0-87b1-0016cef3369d}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- [2008/04/24 21:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{fbe95d76-ffde-11e0-88ba-0016cef3369d}\Shell - "" = AutoRun
O33 - MountPoints2\{fbe95d76-ffde-11e0-88ba-0016cef3369d}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{fbe95d76-ffde-11e0-88ba-0016cef3369d}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- [2008/04/24 21:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{ff66b365-fe55-11df-86d6-0016cef3369d}\Shell - "" = AutoRun
O33 - MountPoints2\{ff66b365-fe55-11df-86d6-0016cef3369d}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{ff66b365-fe55-11df-86d6-0016cef3369d}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- [2008/04/24 21:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011/11/24 23:09:00 | 000,057,344 | ---- | C] (Agere Systems) -- C:\WINDOWS\3e370e72-fbf2-46cc-a609-7ef67ad8ed55
[2011/11/24 23:04:23 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\johnnie fritz\Desktop\OTL.com
[2011/11/24 23:03:24 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\johnnie fritz\Desktop\OTL.scr
[2011/11/24 17:16:12 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\johnnie fritz\Desktop\OTL.exe
[2011/11/24 16:39:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\johnnie fritz\Desktop\Please help! Infected with Win32 Heur and Win32 Tanatos.M [RESOLVE - Geeks to Go Forums - Page 2_files
[2011/11/24 16:22:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\johnnie fritz\Desktop\Please help! Infected with Win32 Heur and Win32 Tanatos.M [RESOLVE - Geeks to Go Forums_files
[2011/11/23 22:53:06 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\johnnie fritz\Recent
[2011/11/23 18:49:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\johnnie fritz\My Documents\Gerald Games 2011
[2011/11/22 12:49:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\microsoft
[2011/11/22 12:37:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xlive
[2011/11/22 12:37:43 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games for Windows - LIVE
[2011/11/22 12:32:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Zuxxez
[2011/11/22 12:25:31 | 000,000,000 | ---D | C] -- C:\Program Files\Zuxxez
[2011/11/21 23:47:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\johnnie fritz\Start Menu\Programs\LIMBO
[2011/11/21 23:47:01 | 000,000,000 | ---D | C] -- C:\Program Files\LIMBO
[2011/11/21 16:53:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\johnnie fritz\Application Data\Skype
[2011/11/21 16:51:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Skype
[2011/11/21 16:51:58 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2011/11/21 16:51:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2011/11/21 16:51:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Skype
[2011/11/21 13:46:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\johnnie fritz\Desktop\Review
[2011/11/21 12:10:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\johnnie fritz\Saved Games
[2011/11/21 12:05:08 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft XNA
[2011/11/21 12:04:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WB Games
[2011/11/21 11:54:07 | 000,000,000 | ---D | C] -- C:\Program Files\WB Games
[2011/11/19 10:02:38 | 000,000,000 | ---D | C] -- C:\Program Files\Frozen Synapse
[2011/11/19 00:02:28 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\johnnie fritz\Application Data\pcouffin.sys
[2011/11/19 00:02:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\johnnie fritz\My Documents\PcSetup
[2011/11/18 23:50:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\johnnie fritz\Application Data\Vso
[2011/11/18 22:25:49 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab
[2011/11/18 22:23:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\johnnie fritz\Application Data\SystemRequirementsLab
[2011/11/18 22:22:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2011/11/18 21:41:05 | 000,000,000 | ---D | C] -- C:\Program Files\Complitly
[2011/11/18 21:41:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\johnnie fritz\Application Data\Complitly
[2011/11/18 21:40:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\johnnie fritz\Application Data\Toolbar4
[2011/11/18 21:40:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\johnnie fritz\Local Settings\Application Data\Somoto
[2011/11/18 21:39:39 | 000,000,000 | ---D | C] -- C:\Program Files\WebScout FileBulldog Toolbar
[2011/11/18 21:39:13 | 000,000,000 | ---D | C] -- C:\Program Files\WireBooster
[2011/11/15 22:54:56 | 000,000,000 | ---D | C] -- C:\Program Files\Ultra PSP Movie Converter
[2011/11/15 11:39:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\johnnie fritz\Application Data\vlc
[2011/11/15 11:38:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\VideoLAN
[2011/11/13 21:56:17 | 000,000,000 | ---D | C] -- C:\Program Files\CDisplay
[2011/11/13 21:56:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\CDisplay
[2011/11/07 14:25:31 | 000,000,000 | ---D | C] -- C:\Program Files\SpeedFan
[2011/11/06 20:23:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\johnnie fritz\Start Menu\Programs\The KMPlayer
[2011/11/06 20:23:11 | 000,000,000 | ---D | C] -- C:\Program Files\The KMPlayer
[2011/11/06 12:27:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\johnnie fritz\Desktop\beast mode
[2011/11/06 09:35:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\johnnie fritz\Desktop\3 Idiots 2009 Hindi DVDRip XviD E-SuB xRG
[2011/10/31 12:11:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\johnnie fritz\Desktop\Kingston
[2011/10/31 11:51:38 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF
[2011/10/29 19:49:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\johnnie fritz\My Documents\Rhiannon - Big Fish Edition
[2011/10/29 15:55:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\johnnie fritz\My Documents\ProjectBlackSun
[2011/10/29 15:53:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\johnnie fritz\Start Menu\Programs\Project Black Sun
[2011/10/29 15:53:44 | 000,000,000 | ---D | C] -- C:\Program Files\Project Black Sun
[2011/10/29 04:00:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\johnnie fritz\My Documents\My Saved Games
[2011/10/29 03:58:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Gemini Rue
[2011/10/29 03:57:12 | 000,000,000 | ---D | C] -- C:\Program Files\Gemini Rue
[2010/05/30 04:44:48 | 000,122,880 | ---- | C] ( ) -- C:\WINDOWS\System32\rsnp2std.dll
[2010/05/30 04:44:48 | 000,061,440 | ---- | C] ( ) -- C:\WINDOWS\System32\csnp2std.dll
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2011/11/24 23:12:24 | 000,058,880 | ---- | M] () -- C:\Documents and Settings\johnnie fritz\My Documents\flashgetfor ie8.exe
[2011/11/24 23:08:59 | 000,057,344 | ---- | M] (Agere Systems) -- C:\WINDOWS\3e370e72-fbf2-46cc-a609-7ef67ad8ed55
[2011/11/24 23:04:33 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\johnnie fritz\Desktop\OTL.com
[2011/11/24 23:01:17 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\johnnie fritz\Desktop\OTL.scr
[2011/11/24 22:45:43 | 000,043,616 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2011/11/24 22:45:30 | 000,002,278 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/11/24 22:44:02 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/11/24 22:43:58 | 1071,828,992 | -HS- | M] () -- C:\hiberfil.sys
[2011/11/24 17:24:01 | 000,001,010 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1379659331-1222129270-24395848-1005UA.job
[2011/11/24 16:45:47 | 089,524,648 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2011/11/24 16:36:56 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\johnnie fritz\Desktop\OTL.exe
[2011/11/24 01:56:03 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2011/11/23 18:24:05 | 000,000,958 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1379659331-1222129270-24395848-1005Core.job
[2011/11/23 15:36:43 | 000,000,786 | ---- | M] () -- C:\Documents and Settings\johnnie fritz\Desktop\Bastion.lnk
[2011/11/23 04:21:04 | 000,084,480 | ---- | M] () -- C:\Documents and Settings\johnnie fritz\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/11/22 12:55:59 | 000,000,889 | ---- | M] () -- C:\Documents and Settings\johnnie fritz\Desktop\ Battle vs. Chess.lnk
[2011/11/22 01:09:43 | 000,000,946 | ---- | M] () -- C:\Documents and Settings\johnnie fritz\Desktop\Terraria.lnk
[2011/11/22 00:58:29 | 000,505,328 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/11/22 00:58:29 | 000,088,626 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/11/21 23:47:10 | 000,000,649 | ---- | M] () -- C:\Documents and Settings\johnnie fritz\Desktop\LIMBO.lnk
[2011/11/21 18:41:32 | 000,001,878 | ---- | M] () -- C:\Documents and Settings\johnnie fritz\Application Data\Microsoft\Internet Explorer\Quick Launch\Skype.lnk
[2011/11/21 16:51:59 | 000,001,878 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2011/11/21 16:32:34 | 000,001,730 | -H-- | M] () -- C:\Documents and Settings\johnnie fritz\My Documents\Default.rdp
[2011/11/20 23:04:07 | 000,001,582 | ---- | M] () -- C:\Documents and Settings\johnnie fritz\Desktop\VisualBoy Advance.lnk
[2011/11/19 10:04:50 | 000,000,760 | ---- | M] () -- C:\Documents and Settings\johnnie fritz\Desktop\Frozen Synapse.lnk
[2011/11/19 00:02:28 | 000,047,360 | ---- | M] (VSO Software) -- C:\Documents and Settings\johnnie fritz\Application Data\pcouffin.sys
[2011/11/19 00:02:28 | 000,007,887 | ---- | M] () -- C:\Documents and Settings\johnnie fritz\Application Data\pcouffin.cat
[2011/11/19 00:02:28 | 000,001,144 | ---- | M] () -- C:\Documents and Settings\johnnie fritz\Application Data\pcouffin.inf
[2011/11/19 00:02:05 | 000,001,185 | ---- | M] () -- C:\Documents and Settings\johnnie fritz\Application Data\vso_ts_preview.xml
[2011/11/17 22:20:00 | 000,000,350 | ---- | M] () -- C:\WINDOWS\tasks\At1.job
[2011/11/16 01:30:58 | 000,000,161 | ---- | M] () -- C:\WINDOWS\System32\temp_0000_85-18.aok
[2011/11/16 01:30:13 | 000,000,162 | ---- | M] () -- C:\WINDOWS\System32\test.aok
[2011/11/15 11:49:53 | 000,000,730 | ---- | M] () -- C:\Documents and Settings\johnnie fritz\Application Data\Microsoft\Internet Explorer\Quick Launch\VLC media player.lnk
[2011/11/15 11:38:07 | 000,000,730 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk
[2011/11/13 21:56:17 | 000,000,641 | ---- | M] () -- C:\Documents and Settings\johnnie fritz\Desktop\CDisplay.lnk
[2011/11/13 21:24:05 | 000,000,873 | ---- | M] () -- C:\Documents and Settings\johnnie fritz\Desktop\Sun Broadband.lnk
[2011/11/07 14:25:29 | 000,000,045 | ---- | M] () -- C:\WINDOWS\System32\initdebug.nfo
[2011/11/07 00:46:41 | 000,000,721 | ---- | M] () -- C:\Documents and Settings\johnnie fritz\Application Data\Microsoft\Internet Explorer\Quick Launch\KMPlayer.lnk
[2011/11/06 20:24:32 | 000,000,721 | ---- | M] () -- C:\Documents and Settings\johnnie fritz\Desktop\KMPlayer.lnk
[2011/11/06 17:27:02 | 011,873,864 | ---- | M] () -- C:\Documents and Settings\johnnie fritz\My Documents\vlc-1.1.11-win32.exe
[2011/11/02 02:45:42 | 000,001,342 | ---- | M] () -- C:\Documents and Settings\johnnie fritz\Desktop\Rhiannon.lnk
[2011/10/29 15:53:47 | 000,000,791 | ---- | M] () -- C:\Documents and Settings\johnnie fritz\Desktop\Project Black Sun.lnk
[2011/10/29 03:59:20 | 000,000,717 | ---- | M] () -- C:\Documents and Settings\johnnie fritz\Desktop\Gemini Rue.lnk
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011/11/23 15:36:43 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\johnnie fritz\Desktop\Bastion.lnk
[2011/11/22 12:55:59 | 000,000,889 | ---- | C] () -- C:\Documents and Settings\johnnie fritz\Desktop\ Battle vs. Chess.lnk
[2011/11/22 01:09:43 | 000,000,946 | ---- | C] () -- C:\Documents and Settings\johnnie fritz\Desktop\Terraria.lnk
[2011/11/21 23:47:10 | 000,000,649 | ---- | C] () -- C:\Documents and Settings\johnnie fritz\Desktop\LIMBO.lnk
[2011/11/21 18:41:32 | 000,001,878 | ---- | C] () -- C:\Documents and Settings\johnnie fritz\Application Data\Microsoft\Internet Explorer\Quick Launch\Skype.lnk
[2011/11/21 16:51:59 | 000,001,878 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2011/11/21 13:24:42 | 000,001,342 | ---- | C] () -- C:\Documents and Settings\johnnie fritz\Desktop\Rhiannon.lnk
[2011/11/21 13:24:42 | 000,000,791 | ---- | C] () -- C:\Documents and Settings\johnnie fritz\Desktop\Project Black Sun.lnk
[2011/11/21 13:24:42 | 000,000,717 | ---- | C] () -- C:\Documents and Settings\johnnie fritz\Desktop\Gemini Rue.lnk
[2011/11/21 13:23:29 | 000,000,760 | ---- | C] () -- C:\Documents and Settings\johnnie fritz\Desktop\Frozen Synapse.lnk
[2011/11/19 00:02:28 | 000,169,528 | ---- | C] () -- C:\Documents and Settings\johnnie fritz\Application Data\inst.exe
[2011/11/19 00:02:28 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\johnnie fritz\Application Data\pcouffin.cat
[2011/11/19 00:02:28 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\johnnie fritz\Application Data\pcouffin.inf
[2011/11/18 23:50:32 | 000,001,185 | ---- | C] () -- C:\Documents and Settings\johnnie fritz\Application Data\vso_ts_preview.xml
[2011/11/15 23:13:43 | 000,000,161 | ---- | C] () -- C:\WINDOWS\System32\temp_0000_85-18.aok
[2011/11/15 23:12:09 | 000,000,162 | ---- | C] () -- C:\WINDOWS\System32\test.aok
[2011/11/15 11:49:53 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\johnnie fritz\Application Data\Microsoft\Internet Explorer\Quick Launch\VLC media player.lnk
[2011/11/15 11:38:07 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk
[2011/11/13 21:56:17 | 000,000,641 | ---- | C] () -- C:\Documents and Settings\johnnie fritz\Desktop\CDisplay.lnk
[2011/11/13 21:24:05 | 000,000,873 | ---- | C] () -- C:\Documents and Settings\johnnie fritz\Desktop\Sun Broadband.lnk
[2011/11/07 14:25:27 | 000,000,045 | ---- | C] () -- C:\WINDOWS\System32\initdebug.nfo
[2011/11/07 00:46:41 | 000,000,721 | ---- | C] () -- C:\Documents and Settings\johnnie fritz\Application Data\Microsoft\Internet Explorer\Quick Launch\KMPlayer.lnk
[2011/11/06 20:24:32 | 000,000,721 | ---- | C] () -- C:\Documents and Settings\johnnie fritz\Desktop\KMPlayer.lnk
[2011/11/06 17:21:35 | 011,873,864 | ---- | C] () -- C:\Documents and Settings\johnnie fritz\My Documents\vlc-1.1.11-win32.exe
[2011/10/14 11:53:56 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2011/10/02 23:28:01 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll
[2011/10/02 23:28:01 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll
[2011/10/02 23:28:01 | 000,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll
[2011/08/26 20:51:35 | 000,001,195 | ---- | C] () -- C:\WINDOWS\eReg.dat
[2011/08/10 10:40:02 | 000,000,046 | ---- | C] () -- C:\WINDOWS\KeySkill.ini
[2011/08/10 10:38:14 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Sunburst Internet Installer.ini
[2011/06/05 13:16:17 | 000,524,288 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2011/06/05 13:16:17 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2011/05/26 12:50:41 | 000,008,192 | ---- | C] () -- C:\WINDOWS\d3dx.dat
[2010/08/08 09:53:30 | 000,373,600 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2010/08/02 19:24:12 | 000,000,145 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\Microsoft.SqlServer.Compact.351.32.bc
[2010/07/14 11:21:42 | 000,061,440 | ---- | C] () -- C:\WINDOWS\eject_proj.exe
[2010/07/14 11:21:42 | 000,006,656 | ---- | C] () -- C:\WINDOWS\ewalkrun.exe
[2010/06/22 12:52:54 | 000,000,232 | ---- | C] () -- C:\WINDOWS\Mgr.INI
[2010/06/22 12:51:49 | 000,000,105 | ---- | C] () -- C:\WINDOWS\System32\config.ini
[2010/06/22 12:23:50 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\VDPross.dat
[2010/06/22 12:22:42 | 000,014,496 | R--- | C] () -- C:\WINDOWS\System32\VDI08X.dat
[2010/06/22 12:20:04 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\unVHDDrvExe.exe
[2010/06/22 12:20:04 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\inVHDDrvExe.exe
[2010/06/14 10:36:12 | 000,001,744 | ---- | C] () -- C:\WINDOWS\System32\secustat.dat
[2010/06/14 10:34:38 | 000,010,267 | ---- | C] () -- C:\WINDOWS\System32\secushr.dat
[2010/06/14 10:33:03 | 000,000,025 | ---- | C] () -- C:\WINDOWS\libem.INI
[2010/06/13 15:41:22 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010/05/30 18:02:09 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini
[2010/05/30 05:59:17 | 000,084,480 | ---- | C] () -- C:\Documents and Settings\johnnie fritz\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/05/30 05:37:36 | 000,009,089 | R--- | C] () -- C:\WINDOWS\System32\Mfcuiz32.dll
[2010/05/30 05:37:36 | 000,006,925 | R--- | C] () -- C:\WINDOWS\System32\Wpwizapi.dll
[2010/05/30 05:37:36 | 000,004,726 | R--- | C] () -- C:\WINDOWS\System32\Dpxsockw.dll
[2010/05/30 05:37:31 | 000,000,136 | ---- | C] () -- C:\Documents and Settings\johnnie fritz\Local Settings\Application Data\fusioncache.dat
[2010/05/30 05:16:58 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2010/05/30 05:16:15 | 000,006,016 | ---- | C] () -- C:\WINDOWS\System32\drivers\IBMBLDID.sys
[2010/05/30 05:12:40 | 000,032,256 | ---- | C] () -- C:\WINDOWS\System32\drivers\psasrv.exe
[2010/05/30 05:01:26 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2010/05/30 05:01:25 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2010/05/30 05:01:25 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2010/05/30 05:01:25 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2010/05/30 05:01:25 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2010/05/30 05:01:25 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2010/05/30 05:00:58 | 000,114,688 | ---- | C] () -- C:\WINDOWS\desktopset.exe
[2010/05/30 05:00:43 | 000,028,848 | ---- | C] () -- C:\WINDOWS\System32\drivers\USBkey.sys
[2010/05/30 04:58:55 | 000,000,032 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2010/05/30 04:44:49 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\tsnp2std.exe
[2010/05/30 04:44:49 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\SNCTRL.exe
[2010/05/30 04:44:48 | 010,446,592 | ---- | C] () -- C:\WINDOWS\System32\drivers\snp2sxp.sys
[2010/05/30 04:44:48 | 000,015,497 | ---- | C] () -- C:\WINDOWS\snp2std.ini
[2010/05/30 04:44:47 | 000,020,480 | ---- | C] () -- C:\WINDOWS\usnp2std.exe
[2010/05/30 04:28:52 | 000,002,481 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2010/05/30 04:05:38 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\tphklock.dll
[2010/05/29 23:45:42 | 000,000,137 | ---- | C] () -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\fusioncache.dat
[2010/04/02 17:17:34 | 000,179,091 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2008/06/23 13:02:02 | 000,097,410 | R--- | C] () -- C:\Documents and Settings\All Users\Application Data\DeviceManager.xml.rc4
[2008/05/23 17:48:50 | 000,020,270 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\DeviceInstaller.xml
[2006/05/21 01:42:18 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\PMEBLib.dll
[2006/02/09 00:42:14 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\PMHlerIO.dll
[2006/01/20 03:46:22 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2006/01/18 01:31:30 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\btprn2k.dll
[2005/08/13 00:52:46 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\ComRc.dll
[2005/08/10 23:01:34 | 000,020,864 | R--- | C] () -- C:\WINDOWS\System32\drivers\DVDRC.sys
[2005/05/23 23:22:24 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\OEMBIOS.BIN
[2005/05/23 23:22:24 | 000,004,547 | ---- | C] () -- C:\WINDOWS\System32\OEMBIOS.DAT
[2004/08/11 00:23:46 | 000,118,784 | ---- | C] () -- C:\WINDOWS\System32\mp3dec.dll
[2004/08/10 02:03:43 | 000,000,885 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2004/08/10 02:01:40 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2004/08/10 01:51:56 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2004/08/10 01:46:20 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2004/08/10 01:45:31 | 000,326,704 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2004/02/04 18:05:40 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\VDExt800.dll
[2003/09/19 00:03:12 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\GDExt800.dll
[2003/09/04 03:49:42 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\VDExt712.dll
[2003/08/15 17:52:42 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\GDExt712.dll
[2003/07/29 17:19:24 | 000,006,397 | R--- | C] () -- C:\WINDOWS\System32\drivers\SmartCd.sys
[2003/06/06 23:57:02 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\FsLodLib.dll
[2003/05/31 02:23:56 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\dcmesbox.dll
[2003/02/14 00:56:14 | 000,016,384 | ---- | C] () -- C:\WINDOWS\FSRunCmd.exe
[2001/11/15 03:56:00 | 001,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll
[2001/05/05 01:55:32 | 000,232,448 | ---- | C] () -- C:\WINDOWS\System32\UNLHA32.DLL
[1996/04/04 03:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys
[1980/01/01 15:00:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[1980/01/01 15:00:00 | 001,466,368 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[1980/01/01 15:00:00 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[1980/01/01 15:00:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[1980/01/01 15:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[1980/01/01 15:00:00 | 000,573,440 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[1980/01/01 15:00:00 | 000,505,328 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[1980/01/01 15:00:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[1980/01/01 15:00:00 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[1980/01/01 15:00:00 | 000,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[1980/01/01 15:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[1980/01/01 15:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[1980/01/01 15:00:00 | 000,157,836 | ---- | C] () -- C:\WINDOWS\AGRSMMSG.exe
[1980/01/01 15:00:00 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[1980/01/01 15:00:00 | 000,088,626 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[1980/01/01 15:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[1980/01/01 15:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[1980/01/01 15:00:00 | 000,016,480 | ---- | C] () -- C:\WINDOWS\System32\rixdicon.dll
[1980/01/01 15:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[1980/01/01 15:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[1980/01/01 15:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
========== LOP Check ==========
[2010/06/14 20:58:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar
[2011/11/24 23:07:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\avg9
[2010/05/30 04:56:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Borland
[2011/08/15 20:55:58 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
[2011/05/31 04:08:35 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2010/06/03 19:22:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2011/06/01 16:43:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\GarenaMessenger
[2010/12/09 20:56:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Growl
[2011/06/01 18:22:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Individual Software
[2011/09/01 20:57:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IObit
[2010/05/30 05:01:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Lenovo
[2010/11/11 18:28:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PCDr
[2010/06/05 18:17:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PlotSoft
[2011/08/17 00:53:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SlySoft
[2011/08/08 18:37:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2010/05/30 05:38:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ThinkVantage
[2010/07/28 14:10:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Vodafone
[2010/08/02 19:24:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Western Digital
[2010/05/31 18:08:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2010/12/09 20:38:06 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{A3A26C56-02C3-4F76-A033-12EE2FB52AE6}
[2011/08/22 21:30:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\.minecraft
[2010/12/09 21:01:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\AnvSoft
[2011/07/16 20:59:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\AVG9
[2011/10/14 16:10:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\BITS
[2011/11/18 21:41:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\Complitly
[2010/06/03 19:32:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\DAEMON Tools Lite
[2010/06/17 21:22:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\Facebook
[2011/09/30 21:02:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\facemoods.com
[2010/06/22 12:30:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\FarStone
[2010/06/14 10:32:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\FlashGet
[2010/06/14 10:32:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\FlashGetBHO
[2010/05/30 04:59:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\IBM
[2010/05/30 20:23:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\InterVideo
[2010/05/30 20:13:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\Leadertech
[2011/09/04 10:19:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\PSPDocMaker
[2011/08/13 18:07:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\Rovio
[2010/12/09 20:38:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\Stardock
[2011/11/18 22:23:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\SystemRequirementsLab
[2011/01/17 19:27:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\TeamViewer
[2010/05/30 05:38:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\ThinkVantage
[2011/11/18 21:40:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\Toolbar4
[2011/11/22 14:22:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\uTorrent
[2010/07/07 15:11:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\Vodafone
[2011/11/19 00:02:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\johnnie fritz\Application Data\Vso
[2011/11/17 22:20:00 | 000,000,350 | ---- | M] () -- C:\WINDOWS\Tasks\At1.job
[2011/11/24 01:56:03 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5C321E34
< End of report >
Thanks.