Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

FBI Moneypak Infection [Solved]


  • This topic is locked This topic is locked

#1
boomdog1983

boomdog1983

    Member

  • Member
  • PipPip
  • 18 posts
Greetings all,

As the Topic title suggests my wife's laptop has been infected with the FBI Moneypak ransomware. This laptop is rarely used now that my wife does not use this laptop for work nor does our daughter who used it quite extensively in the past but alas has her own laptop for college. At any rate I had a copy of Panda Global Protection 2013 installed but did my wife or daughter keep it current? No. Hopefully you all can help me clean this one up. I've had good success with G2GO in the past so I thought I'd try here first. Cope of the OTL log attached.

OTL logfile created on: 6/17/2008 12:03:31 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Bibbianna\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.97 Gb Total Physical Memory | 2.48 Gb Available Physical Memory | 62.57% Memory free
7.93 Gb Paging File | 6.48 Gb Available in Paging File | 81.78% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 451.07 Gb Total Space | 325.97 Gb Free Space | 72.26% Space Free | Partition Type: NTFS

Computer Name: BIBBIANNA-PC | User Name: Bibbianna | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2008/06/17 00:03:28 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Bibbianna\Downloads\OTL (1).exe


========== Modules (No Company Name) ==========


========== Services (SafeList) ==========

SRV:64bit: - [2009/07/16 21:06:22 | 000,033,280 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE -- (wltrysvc)
SRV:64bit: - [2009/06/29 00:44:38 | 000,240,128 | ---- | M] (IDT, Inc.) [Auto | Stopped] -- C:\WINDOWS\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\stacsv64.exe -- (STacSV)
SRV:64bit: - [2009/06/25 06:48:28 | 000,203,264 | ---- | M] (AMD) [Auto | Stopped] -- C:\WINDOWS\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2008/12/18 15:05:28 | 000,155,648 | ---- | M] (Stardock Corporation) [Auto | Stopped] -- C:\Program Files\Dell\DellDock\DockLogin.exe -- (DockLoginService)
SRV - [2013/03/17 21:56:56 | 000,253,656 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/11/16 07:52:51 | 000,173,344 | ---- | M] (Panda Security, S.L.) [Auto | Stopped] -- C:\Program Files (x86)\Panda Security\Panda Global Protection 2013\TPSrvWow.exe -- (TPSrv)
SRV - [2012/07/13 13:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/06/19 17:10:52 | 000,177,440 | ---- | M] (Panda Security, S.L.) [Auto | Stopped] -- C:\Program Files (x86)\Panda Security\Panda Global Protection 2013\PsCtrlS.exe -- (Panda Software Controller)
SRV - [2012/06/15 13:16:08 | 000,202,016 | ---- | M] (Panda Security, S.L.) [Auto | Stopped] -- C:\Program Files (x86)\Panda Security\Panda Global Protection 2013\PavFnSvr.exe -- (PAVFNSVR)
SRV - [2011/08/18 11:05:46 | 001,692,480 | ---- | M] (SoftThinks SAS) [Auto | Stopped] -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe -- (SftService)
SRV - [2011/04/13 13:44:10 | 000,313,664 | ---- | M] (Panda Security, S.L.) [Auto | Stopped] -- C:\Program Files (x86)\Panda Security\Panda Global Protection 2013\pavsrvx86.exe -- (PAVSRV)
SRV - [2010/08/16 15:54:46 | 000,028,992 | ---- | M] (Panda Security, S.L.) [Auto | Stopped] -- C:\Program Files (x86)\Panda Security\Panda Global Protection 2013\psksvc.exe -- (PskSvcRetail)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/11/26 18:03:56 | 000,226,560 | ---- | M] (Panda Security International) [Auto | Stopped] -- c:\Program Files (x86)\Panda Security\Panda Global Protection 2013\FIREWALL\PSHost.exe -- (PSHost)
SRV - [2009/10/29 20:53:30 | 000,016,680 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe -- (GoToAssist)
SRV - [2009/09/23 21:59:36 | 001,037,824 | ---- | M] (Hewlett-Packard Co.) [Auto | Stopped] -- C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -- (HPSLPSVC)
SRV - [2009/06/29 00:44:38 | 000,240,128 | ---- | M] (IDT, Inc.) [Auto | Stopped] -- C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe -- (STacSV)
SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/05/21 09:59:08 | 000,206,064 | ---- | M] (SupportSoft, Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_DellSupportCenter)
SRV - [2008/06/19 13:59:50 | 000,108,288 | ---- | M] (Panda Security S.L.) [Auto | Stopped] -- C:\Program Files (x86)\Panda Security\Panda Global Protection 2013\PsImSvc.exe -- (PSIMSVC)
SRV - [2008/02/04 18:26:48 | 000,062,768 | ---- | M] (Panda Security, S.L.) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Panda Security\PavShld\PavPrSrv.exe -- (PavPrSrv)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/11/13 12:51:27 | 000,015,928 | ---- | M] () [Kernel | Auto | Stopped] -- C:\WINDOWS\SysNative\drivers\COMFiltr.sys -- (ComFiltr)
DRV:64bit: - [2012/08/21 14:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/03/26 19:57:36 | 000,071,432 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Stopped] -- C:\WINDOWS\SysNative\drivers\amm6460.sys -- (AmFSM)
DRV:64bit: - [2012/03/01 02:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/03/11 02:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 02:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/01/31 17:41:28 | 000,129,096 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Stopped] -- C:\WINDOWS\SysNative\drivers\APPFLT64.SYS -- (APPFLT)
DRV:64bit: - [2010/12/14 19:51:20 | 000,051,712 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2010/11/20 09:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 07:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 05:37:42 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010/09/09 17:23:00 | 000,078,920 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Stopped] -- C:\WINDOWS\SysNative\drivers\idsflt64.sys -- (IDSFLT)
DRV:64bit: - [2010/09/01 12:09:12 | 000,216,648 | ---- | M] (Panda Security, S.L.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\n64i1644.sys -- (NETIMFLT01060044)
DRV:64bit: - [2010/06/22 19:20:18 | 000,030,792 | ---- | M] (Panda Security, S.L.) [File_System | Boot | Stopped] -- C:\WINDOWS\SysNative\drivers\pavboot64.sys -- (pavboot)
DRV:64bit: - [2010/06/07 16:45:00 | 000,174,848 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\CtClsFlt.sys -- (CtClsFlt)
DRV:64bit: - [2009/10/27 13:07:42 | 000,048,136 | ---- | M] (Panda Security, S.L.) [File_System | System | Stopped] -- C:\WINDOWS\SysNative\drivers\ShldFlt.sys -- (ShldFlt)
DRV:64bit: - [2009/09/25 15:54:08 | 000,074,760 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Stopped] -- C:\WINDOWS\SysNative\drivers\wnmflt64.sys -- (WNMFLT)
DRV:64bit: - [2009/09/25 15:54:06 | 000,170,504 | ---- | M] (Panda Security, S.L.) [TDI Layer] [Kernel | Auto | Stopped] -- C:\WINDOWS\SysNative\drivers\NETTDI64.SYS -- (NETFLTDI)
DRV:64bit: - [2009/09/25 15:54:02 | 000,082,952 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Stopped] -- C:\WINDOWS\SysNative\drivers\dsaflt64.sys -- (DSAFLT)
DRV:64bit: - [2009/09/25 15:54:02 | 000,031,752 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Stopped] -- C:\WINDOWS\SysNative\drivers\fnetm64.sys -- (FNETMON)
DRV:64bit: - [2009/07/16 21:06:20 | 000,022,520 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\bcm42rly.sys -- (BCM42RLY)
DRV:64bit: - [2009/07/16 21:06:18 | 002,769,400 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
DRV:64bit: - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/09 06:00:00 | 000,055,280 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009/06/29 00:44:38 | 000,487,424 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [2009/06/26 00:23:30 | 000,272,432 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2009/06/25 07:24:30 | 006,036,480 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2009/06/25 05:04:20 | 000,067,584 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\WINDOWS\SysNative\drivers\rimmpx64.sys -- (rimmptsk)
DRV:64bit: - [2009/06/25 04:38:52 | 000,057,856 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\WINDOWS\SysNative\drivers\rixdpx64.sys -- (rismxdp)
DRV:64bit: - [2009/06/25 04:13:44 | 000,055,296 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\WINDOWS\SysNative\drivers\rimspx64.sys -- (rimsptsk)
DRV:64bit: - [2009/06/10 16:34:36 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\k57nd60a.sys -- (k57nd60a)
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/06/04 17:20:26 | 000,114,192 | ---- | M] (ATI Research Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2009/01/23 11:49:08 | 000,046,112 | ---- | M] (RapidSolution Software AG) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\tbhsd.sys -- (tbhsd)
DRV:64bit: - [2006/11/01 13:51:00 | 000,151,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV - [2009/07/13 21:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE:64bit: - HKLM\..\SearchScopes\{83AE2AB2-1DDA-495C-9EFF-1E1A4BCC7AA8}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0B4A10D1-FBD6-451d-BFDA-F03252B05984}: "URL" = http://slirsredirect...hromesbox-en-us
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\..\SearchScopes\{73119EE9-1F7D-4020-B4C5-AD28F68E0663}: "URL" = http://www.bing.com/...rc=IE-SearchBox

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/USCON/1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKCU\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...1I7ADFA_enUS361
IE - HKCU\..\SearchScopes\{73119EE9-1F7D-4020-B4C5-AD28F68E0663}: "URL" = http://slirsredirect...u10aiminstabie7
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "AIM Search"
FF - prefs.js..browser.search.defaulturl: "http://aim.search.ao...romesbox-en-us"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:2.0.3
FF - prefs.js..extensions.enabledItems: mo[email protected]:7
FF - prefs.js..extensions.enabledItems: [email protected]:1.4.7600.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.6.0.8153
FF - prefs.js..keyword.URL: "http://slirsredirect...b-en-us&query="


FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_180.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@movenetworks.com/Quantum Media Player: C:\Users\Bibbianna\AppData\Roaming\Move Networks\plugins\npqmp071701000002.dll (Move Networks)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\RapidSolution\Tunebite\plugins\GeckoBased\[email protected]\ [2010/01/09 13:29:48 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.25\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/11/13 11:04:23 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.25\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012/11/13 11:04:23 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Users\Bibbianna\AppData\Roaming\Move Networks [2009/11/24 20:25:21 | 000,000,000 | ---D | M]

[2009/11/08 13:20:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Bibbianna\AppData\Roaming\Mozilla\Extensions
[2012/01/22 23:16:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Bibbianna\AppData\Roaming\Mozilla\Firefox\Profiles\eyeh2zn6.default\extensions
[2012/01/22 23:16:23 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Bibbianna\AppData\Roaming\Mozilla\Firefox\Profiles\eyeh2zn6.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010/10/28 05:58:08 | 000,000,000 | ---D | M] (Adobe DLM (powered by getPlus®)) -- C:\Users\Bibbianna\AppData\Roaming\Mozilla\Firefox\Profiles\eyeh2zn6.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}
[2010/01/30 08:27:29 | 000,004,554 | ---- | M] () -- C:\Users\Bibbianna\AppData\Roaming\Mozilla\Firefox\Profiles\eyeh2zn6.default\searchplugins\aim-search-1.xml
[2010/01/04 20:19:39 | 000,004,554 | ---- | M] () -- C:\Users\Bibbianna\AppData\Roaming\Mozilla\Firefox\Profiles\eyeh2zn6.default\searchplugins\aim-search.xml
[2011/08/26 23:52:15 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2011/08/26 23:52:15 | 000,000,000 | ---D | M] (Click to call with Skype) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2010/05/13 06:46:03 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/08/06 22:22:16 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010/11/24 18:17:21 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2010/12/20 21:41:11 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011/04/25 19:29:18 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2010/01/09 13:29:48 | 000,000,000 | ---D | M] (Tunebite Firefox Surf and Catch Plugin) -- C:\PROGRAM FILES (X86)\RAPIDSOLUTION\TUNEBITE\PLUGINS\GECKOBASED\[email protected]
[2009/11/24 20:25:21 | 000,000,000 | ---D | M] (Move Media Player) -- C:\USERS\BIBBIANNA\APPDATA\ROAMING\MOVE NETWORKS
[2011/02/02 21:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
[2009/10/05 18:24:10 | 000,106,192 | ---- | M] ( ) -- C:\Program Files (x86)\mozilla firefox\plugins\npstrlnk.dll

========== Chrome ==========

CHR - homepage: http://www.google.com/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://www.google.com/
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.64\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Java Deployment Toolkit 6.0.240.7 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U24 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrl.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.64\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.64\pdf.dll
CHR - plugin: Skype Toolbars (Enabled) = C:\Users\Bibbianna\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8153_0\npSkypeChromePlugin.dll
CHR - plugin: NapsterLink (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npstrlnk.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.69\npGoogleUpdate3.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Move Streaming Media Player (Enabled) = C:\Users\Bibbianna\AppData\Roaming\Move Networks\plugins\npqmp071701000002.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: Click to call with Skype = C:\Users\Bibbianna\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8153_0\

O1 HOSTS File: ([2009/06/10 17:00:26 | 000,000,824 | ---- | M]) - C:\WINDOWS\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2 - BHO: (Tunebite_WebRipPlugin Class) - {AA102584-3B97-47e7-B9BC-75D54C110A7D} - C:\Program Files (x86)\RapidSolution\Tunebite\plugins\IE\TB_WebRipIePlugin.dll (RapidSolution Software)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O4:64bit: - HKLM..\Run: [Broadcom Wireless Manager UI] C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE (Dell Inc.)
O4:64bit: - HKLM..\Run: [QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [APVXDWIN] C:\Program Files (x86)\Panda Security\Panda Global Protection 2013\APVXDWIN.EXE (Panda Security, S.L.)
O4 - HKLM..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe ()
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [DellSupportCenter] C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [Desktop Disc Tool] C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe ()
O4 - HKLM..\Run: [PDVDDXSrv] C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [SCANINICIO] C:\Program Files (x86)\Panda Security\Panda Global Protection 2013\Inicio.exe (Panda Security, S.L.)
O4 - HKLM..\Run: [StartCCC] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [ctfmon.exe] C:\ProgramData\e7qedo.dat (Корпорация Майкрософт2)
O4 - HKLM..\RunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe (Dell)
O4 - HKCU..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_180_ActiveX.exe (Adobe Systems Incorporated)
O4 - Startup: C:\Users\Bibbianna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk = File not found
O4 - Startup: C:\Users\Bibbianna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PMB Media Check Tool.lnk = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9 - Extra Button: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_14)
O16:64bit: - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_14)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.micr...heckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} http://ccfiles.creat...101/CTSUEng.cab (Creative Software AutoUpdate)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} https://originhs.web...ex/ieatgpc1.cab (GpcContainer Class)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creat...15112/CTPID.cab (Creative Software AutoUpdate Support Package)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{36E4F1C2-69C7-45B0-984F-421AFEEDA6EB}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F3E37CDB-9458-4661-973E-059C2A5DF02F}: DhcpNameServer = 10.0.0.4
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\WINDOWS\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\avldr: DllName - (avldr64.dll) - C:\Windows\SysNative\avldr64.dll (On-Access Anti-Malware Scanner Sync)
O20:64bit: - Winlogon\Notify\GoToAssist: DllName - (C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (MACHINE BootExecut)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/04/29 13:43:36 | 000,127,488 | ---- | C] (Корпорация Майкрософт2) -- C:\ProgramData\iwivq.dat
[2013/04/29 13:43:35 | 000,127,488 | ---- | C] (Корпорация Майкрософт2) -- C:\ProgramData\e7qedo.dat
[2013/04/29 13:43:35 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\ProgramData\rundll32.exe
[2013/03/18 03:03:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2013/03/18 03:01:51 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2013/03/18 03:01:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2012/11/13 12:51:07 | 000,729,424 | ---- | C] (WeOnlyDo Software) -- C:\Windows\SysWow64\wodSFTP.dll
[2012/11/13 12:51:07 | 000,672,024 | ---- | C] (WeOnlyDo! COM) -- C:\Windows\SysWow64\wodKeys.dll
[2012/11/13 12:51:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Security
[2012/11/13 12:50:56 | 000,082,952 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\dsaflt64.sys
[2012/11/13 12:50:56 | 000,078,920 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\idsflt64.sys
[2012/11/13 12:50:56 | 000,074,760 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\wnmflt64.sys
[2012/11/13 12:50:46 | 000,170,504 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\NETTDI64.SYS
[2012/11/13 12:50:46 | 000,129,096 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\APPFLT64.SYS
[2012/11/13 12:50:46 | 000,031,752 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\fnetm64.sys
[2012/11/13 12:50:42 | 000,030,792 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\pavboot64.sys
[2012/11/13 12:49:52 | 000,046,640 | ---- | C] (Panda Software) -- C:\Windows\SysNative\pavcpl64.cpl
[2012/11/13 12:49:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Global Protection 2013
[2012/11/13 12:49:42 | 000,446,464 | ---- | C] (eHelp Corporation.) -- C:\Windows\SysWow64\HHActiveX.dll
[2012/11/13 12:49:42 | 000,323,392 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\TpUtil64.dll
[2012/11/13 12:49:42 | 000,202,048 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysWow64\TpUtilWow.dll
[2012/11/13 12:49:42 | 000,117,024 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\PavLspHook64.dll
[2012/11/13 12:49:42 | 000,090,944 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\PavIpc64.dll
[2012/11/13 12:49:42 | 000,087,328 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysWow64\PavLspHookWow.dll
[2012/11/13 12:49:42 | 000,066,880 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysWow64\PavIpcWow.dll
[2012/11/13 12:49:42 | 000,025,344 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysWow64\sysHelper32.dll
[2012/11/13 12:49:42 | 000,024,064 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\sysHelper64.dll
[2012/11/13 12:49:41 | 000,837,920 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\PavSHook64.dll
[2012/11/13 12:49:41 | 000,545,056 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysWow64\PavSHookWow.dll
[2012/11/13 12:49:41 | 000,216,648 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\n64i1644.sys
[2012/11/13 12:49:41 | 000,071,432 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\amm6460.sys
[2012/11/13 12:49:41 | 000,064,768 | ---- | C] (On-Access Anti-Malware Scanner Sync) -- C:\Windows\SysNative\avldr64.dll
[2012/11/13 12:49:41 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\PAV
[2012/11/13 12:49:40 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\Panda Security
[2012/11/13 12:49:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Panda Security
[2012/11/13 12:49:32 | 000,048,136 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\ShldFlt.sys
[2012/11/13 12:49:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Panda Security
[2012/11/13 11:04:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2012/11/13 11:03:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2012/11/13 10:58:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
[2012/11/13 10:56:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012/11/13 10:54:48 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012/11/13 10:54:46 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2012/11/13 10:54:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2012/11/13 10:54:46 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
[2012/11/13 10:48:19 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2012/11/13 10:48:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bonjour
[2012/09/29 03:01:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2012/09/29 03:01:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2012/05/04 19:04:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed
[2012/02/17 11:37:15 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\{9B5944BC-D5F0-4CA1-B4E6-A37DBB3FEA78}
[2011/11/15 11:03:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2011/11/15 08:46:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Panda Security
[2011/10/20 19:35:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2011/10/20 19:32:34 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\SL-SL
[2011/08/26 23:54:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2011/07/13 08:19:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SPReview
[2011/07/13 08:17:54 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\EventProviders
[2011/07/11 19:00:23 | 000,116,224 | ---- | C] (Windows ® Codename Longhorn DDK provider) -- C:\Windows\SysNative\fms.dll
[2011/07/11 18:59:45 | 000,093,696 | ---- | C] (Windows ® Codename Longhorn DDK provider) -- C:\Windows\SysWow64\fms.dll
[2011/05/24 10:31:42 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\{123D909A-9690-4934-ACBE-F9CA77BD92CF}
[2011/05/13 21:22:45 | 000,000,000 | ---D | C] -- C:\Panda Software
[2011/04/28 14:13:06 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\{1995E2F3-A222-4DF4-8D59-104D9716A876}
[2011/04/25 19:29:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2011/02/16 20:29:18 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\Apple Computer
[2011/02/16 20:29:08 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE
[2011/02/16 20:28:57 | 000,000,000 | ---D | C] -- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
[2011/02/16 20:26:03 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2011/01/26 22:16:00 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\skypePM
[2011/01/26 22:14:50 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2011/01/26 22:14:49 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\Skype
[2011/01/26 22:14:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2011/01/06 10:43:04 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\Windows Live Writer
[2011/01/06 10:43:04 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\Windows Live Writer
[2010/10/29 20:30:19 | 000,000,000 | ---D | C] -- C:\Windows\en
[2010/10/29 20:30:05 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
[2010/10/29 20:28:48 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2010/10/26 18:08:30 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\Windows Live
[2010/10/21 18:53:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony Corporation
[2010/10/13 09:05:59 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\Tracing
[2010/10/09 13:29:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Creative Live! Cam
[2010/10/07 17:31:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2010/10/01 21:26:47 | 000,000,000 | -HSD | C] -- C:\found.000
[2010/09/30 22:36:39 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\Panda Security
[2010/09/29 15:52:09 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\Sony Corporation
[2010/09/29 15:52:09 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\Documents\Picture Motion Browser
[2010/09/29 15:32:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony Picture Utility
[2010/09/29 15:32:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sony
[2010/08/12 03:02:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0
[2010/08/10 14:49:10 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\HP
[2010/08/10 14:35:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
[2010/08/10 14:35:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\HP
[2010/08/10 14:35:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Hewlett-Packard
[2010/08/10 14:34:50 | 000,233,472 | ---- | C] (Hewlett Packard Corporation) -- C:\Windows\SysWow64\hpzc364w.dll
[2010/07/21 07:54:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Panda Software
[2010/04/16 03:00:52 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2010/04/16 03:00:52 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2010/04/03 20:55:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010/03/31 15:47:19 | 000,000,000 | ---D | C] -- C:\HEGames
[2010/03/31 14:08:56 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\MigWiz
[2010/02/06 17:05:17 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
[2010/02/06 17:05:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CCleaner
[2010/01/30 00:30:34 | 000,000,000 | ---D | C] -- C:\ProgramData\AIM
[2010/01/18 11:31:37 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\Apple Computer
[2010/01/18 09:27:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2010/01/18 09:26:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple
[2010/01/18 09:26:04 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\Apple
[2010/01/18 09:26:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2010/01/13 21:55:33 | 000,000,000 | ---D | C] -- C:\f4a58e41564828eb8a9c08a330
[2010/01/09 15:41:25 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Napster
[2010/01/09 15:37:37 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\WindowsUpdate
[2010/01/09 13:31:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PixiePack Codec Pack
[2010/01/09 13:29:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunebite
[2010/01/09 12:53:47 | 000,000,000 | ---D | C] -- C:\ProgramData\RapidSolution
[2010/01/09 12:53:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RapidSolution
[2010/01/09 12:52:30 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\RapidSolution
[2010/01/06 20:37:51 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\Google
[2010/01/06 20:37:51 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\Google
[2010/01/06 18:29:03 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2010/01/06 18:28:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Google
[2010/01/06 18:28:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2010/01/03 20:03:13 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2010/01/02 01:34:14 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\acccore
[2010/01/02 01:34:13 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\AOL
[2010/01/02 01:34:13 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\AIM
[2010/01/02 01:33:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\AOL
[2009/12/05 13:54:30 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\PowerDVD DX
[2009/12/05 13:54:30 | 000,000,000 | ---D | C] -- C:\ProgramData\CyberLink
[2009/12/04 15:03:37 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2009/12/03 20:35:16 | 000,000,000 | ---D | C] -- C:\Users\Public\Desktop\Adobe Reader 9 Installer
[2009/11/26 13:06:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Napster
[2009/11/26 13:06:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Napster Shared
[2009/11/26 13:05:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Napster
[2009/11/26 13:05:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Napster
[2009/11/26 13:00:14 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\InstallShield
[2009/11/24 20:22:54 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\Move Networks
[2009/11/21 14:27:12 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\Reallusion
[2009/11/21 14:25:38 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\Documents\Dell WebCam Central
[2009/11/21 14:25:38 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\Creative
[2009/11/21 14:25:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Creative
[2009/11/18 16:51:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Hewlett-Packard
[2009/11/18 16:51:36 | 000,233,472 | ---- | C] (Hewlett Packard Corporation) -- C:\Windows\SysWow64\hpzc35ha.dll
[2009/11/18 16:31:57 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\CyberLink
[2009/11/18 16:21:22 | 000,000,000 | ---D | C] -- C:\Windows\braveheart
[2009/11/18 16:20:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HP
[2009/11/18 16:20:55 | 000,000,000 | -H-D | C] -- C:\Config.Msi
[2009/11/18 16:14:19 | 000,000,000 | ---D | C] -- C:\ProgramData\HP
[2009/11/08 18:49:50 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\Adobe
[2009/11/08 14:00:11 | 000,000,000 | ---D | C] -- C:\Windows\FltMgr
[2009/11/08 13:55:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Backup
[2009/11/08 13:55:33 | 000,201,984 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysWow64\TpUtilWow(44).dll
[2009/11/08 13:55:33 | 000,066,816 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysWow64\PavIpcWow(43).dll
[2009/11/08 13:20:10 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\Mozilla
[2009/11/08 13:20:10 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\Mozilla
[2009/11/08 13:20:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox
[2009/11/08 13:20:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2009/11/05 21:13:55 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\Microsoft Games
[2009/11/04 19:35:22 | 000,000,000 | ---D | C] -- C:\Windows\SMINST
[2009/11/04 19:26:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Citrix
[2009/11/04 19:26:19 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\Deployment
[2009/11/04 19:26:19 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\Apps
[2009/11/04 18:53:34 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\Macromedia
[2009/11/04 18:52:54 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\Adobe
[2009/11/04 18:49:08 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2009/11/04 18:38:49 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\My Backup Files
[2009/11/04 18:07:42 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\ElevatedDiagnostics
[2009/11/04 18:03:37 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\Diagnostics
[2009/11/04 18:01:54 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\Dell
[2009/11/04 18:01:41 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\DataSafeOnline
[2009/11/04 18:01:38 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\Stardock_Corporation
[2009/11/04 18:01:35 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\Roxio
[2009/11/04 18:01:32 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\ATI
[2009/11/04 18:01:32 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\ATI
[2009/11/04 18:01:29 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\SupportSoft
[2009/11/04 18:01:09 | 000,000,000 | R--D | C] -- C:\Users\Bibbianna\Searches
[2009/11/04 18:01:09 | 000,000,000 | R--D | C] -- C:\Users\Bibbianna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2009/11/04 18:01:09 | 000,000,000 | -H-D | C] -- C:\Users\Bibbianna\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2009/11/04 18:01:00 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\Identities
[2009/11/04 18:00:53 | 000,000,000 | R--D | C] -- C:\Users\Bibbianna\Contacts
[2009/11/04 18:00:52 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2009/11/04 18:00:50 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\VirtualStore
[2009/11/04 17:58:19 | 000,000,000 | --SD | C] -- C:\Users\Bibbianna\AppData\Roaming\Microsoft
[2009/11/04 17:58:19 | 000,000,000 | R--D | C] -- C:\Users\Bibbianna\Videos
[2009/11/04 17:58:19 | 000,000,000 | R--D | C] -- C:\Users\Bibbianna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2009/11/04 17:58:19 | 000,000,000 | R--D | C] -- C:\Users\Bibbianna\Saved Games
[2009/11/04 17:58:19 | 000,000,000 | R--D | C] -- C:\Users\Bibbianna\Pictures
[2009/11/04 17:58:19 | 000,000,000 | R--D | C] -- C:\Users\Bibbianna\Music
[2009/11/04 17:58:19 | 000,000,000 | R--D | C] -- C:\Users\Bibbianna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2009/11/04 17:58:19 | 000,000,000 | R--D | C] -- C:\Users\Bibbianna\Links
[2009/11/04 17:58:19 | 000,000,000 | R--D | C] -- C:\Users\Bibbianna\Favorites
[2009/11/04 17:58:19 | 000,000,000 | R--D | C] -- C:\Users\Bibbianna\Downloads
[2009/11/04 17:58:19 | 000,000,000 | R--D | C] -- C:\Users\Bibbianna\Documents
[2009/11/04 17:58:19 | 000,000,000 | R--D | C] -- C:\Users\Bibbianna\Desktop
[2009/11/04 17:58:19 | 000,000,000 | R--D | C] -- C:\Users\Bibbianna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2009/11/04 17:58:19 | 000,000,000 | -HSD | C] -- C:\Users\Bibbianna\AppData\Local\Temporary Internet Files
[2009/11/04 17:58:19 | 000,000,000 | -HSD | C] -- C:\Users\Bibbianna\Templates
[2009/11/04 17:58:19 | 000,000,000 | -HSD | C] -- C:\Users\Bibbianna\AppData\Local\Temp
[2009/11/04 17:58:19 | 000,000,000 | -HSD | C] -- C:\Users\Bibbianna\Start Menu
[2009/11/04 17:58:19 | 000,000,000 | -HSD | C] -- C:\Users\Bibbianna\SendTo
[2009/11/04 17:58:19 | 000,000,000 | -HSD | C] -- C:\Users\Bibbianna\Recent
[2009/11/04 17:58:19 | 000,000,000 | -HSD | C] -- C:\Users\Bibbianna\PrintHood
[2009/11/04 17:58:19 | 000,000,000 | -HSD | C] -- C:\Users\Bibbianna\NetHood
[2009/11/04 17:58:19 | 000,000,000 | -HSD | C] -- C:\Users\Bibbianna\Documents\My Videos
[2009/11/04 17:58:19 | 000,000,000 | -HSD | C] -- C:\Users\Bibbianna\Documents\My Pictures
[2009/11/04 17:58:19 | 000,000,000 | -HSD | C] -- C:\Users\Bibbianna\Documents\My Music
[2009/11/04 17:58:19 | 000,000,000 | -HSD | C] -- C:\Users\Bibbianna\My Documents
[2009/11/04 17:58:19 | 000,000,000 | -HSD | C] -- C:\Users\Bibbianna\Local Settings
[2009/11/04 17:58:19 | 000,000,000 | -HSD | C] -- C:\Users\Bibbianna\AppData\Local\History
[2009/11/04 17:58:19 | 000,000,000 | -HSD | C] -- C:\Users\Bibbianna\Cookies
[2009/11/04 17:58:19 | 000,000,000 | -HSD | C] -- C:\Users\Bibbianna\Application Data
[2009/11/04 17:58:19 | 000,000,000 | -HSD | C] -- C:\Users\Bibbianna\AppData\Local\Application Data
[2009/11/04 17:58:19 | 000,000,000 | -H-D | C] -- C:\Users\Bibbianna\AppData
[2009/11/04 17:58:19 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\SoftThinks
[2009/11/04 17:58:19 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Local\Microsoft
[2009/11/04 17:58:19 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\Media Center Programs
[2009/10/29 23:28:11 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2009/10/29 23:23:25 | 000,114,192 | ---- | C] (ATI Research Inc.) -- C:\Windows\SysNative\drivers\AtiHdmi.sys
[2009/10/29 23:23:24 | 000,120,320 | ---- | C] (AMD) -- C:\Windows\SysNative\atitmm64.dll
[2009/10/29 23:23:24 | 000,012,288 | ---- | C] (AMD) -- C:\Windows\SysNative\atimuixx.dll
[2009/10/29 23:23:23 | 000,420,352 | ---- | C] (AMD) -- C:\Windows\SysNative\atieclxx.exe
[2009/10/29 23:23:23 | 000,203,264 | ---- | C] (AMD) -- C:\Windows\SysNative\atiesrxx.exe
[2009/10/29 23:23:15 | 000,272,432 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\drivers\SynTP.sys
[2009/10/29 23:23:15 | 000,203,560 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\SynTPAPI.dll
[2009/10/29 23:23:15 | 000,147,752 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\SynTPCo4.dll
[2009/10/29 23:23:15 | 000,107,816 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysWow64\SynTPCOM.dll
[2009/10/29 23:23:14 | 000,395,048 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\SynCOM.dll
[2009/10/29 23:23:14 | 000,260,904 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\SynCtrl.dll
[2009/10/29 23:23:14 | 000,206,120 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysWow64\SynCtrl.dll
[2009/10/29 23:23:14 | 000,169,256 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysWow64\SynCOM.dll
[2009/10/29 23:23:12 | 000,172,032 | ---- | C] (Ricoh Company,Ltd) -- C:\Windows\SysNative\rixdicon.dll
[2009/10/29 23:23:12 | 000,067,584 | ---- | C] (REDC) -- C:\Windows\SysNative\drivers\rimmpx64.sys
[2009/10/29 23:23:12 | 000,057,856 | ---- | C] (REDC) -- C:\Windows\SysNative\drivers\rixdpx64.sys
[2009/10/29 23:23:12 | 000,055,296 | ---- | C] (REDC) -- C:\Windows\SysNative\drivers\rimspx64.sys
[2009/10/29 23:23:11 | 000,487,424 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\drivers\stwrt64.sys
[2009/10/29 23:23:10 | 001,431,040 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\stapo64.dll
[2009/10/29 23:23:10 | 000,598,016 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\stapi64.dll
[2009/10/29 23:23:10 | 000,431,616 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\stcplx64.dll
[2009/10/29 23:23:10 | 000,209,920 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\st646217.dll
[2009/10/29 23:22:08 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\oem
[2009/10/29 23:22:06 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2009/10/29 23:22:06 | 000,000,000 | ---D | C] -- C:\Drivers
[2009/10/29 23:13:17 | 000,000,000 | ---D | C] -- C:\dell
[2009/10/29 22:39:28 | 000,000,000 | ---D | C] -- C:\Program Files\IDT
[2009/10/29 22:39:26 | 012,151,808 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\idtcpl64.cpl
[2009/10/29 22:39:26 | 003,593,216 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\stlang64.dll
[2009/10/29 22:39:26 | 000,564,224 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\idt64mp1.exe
[2009/10/29 22:39:25 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SRSLabs
[2009/10/29 22:37:36 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2009/10/29 21:24:59 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2009/10/29 21:17:25 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2009/10/29 21:13:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Uninstall
[2009/10/29 21:13:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Sonic
[2009/10/29 21:13:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roxio
[2009/10/29 21:13:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Sonic Shared
[2009/10/29 21:13:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Roxio Shared
[2009/10/29 21:13:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PX Storage Engine
[2009/10/29 21:13:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Roxio
[2009/10/29 21:13:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Macrovision
[2009/10/29 21:11:06 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Reallusion
[2009/10/29 21:10:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Reallusion
[2009/10/29 21:10:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Webcam
[2009/10/29 21:10:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Creative
[2009/10/29 21:10:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dell Webcam
[2009/10/29 21:07:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
[2009/10/29 21:06:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft
[2009/10/29 21:06:27 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft
[2009/10/29 21:06:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live
[2009/10/29 21:03:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Windows Live
[2009/10/29 21:03:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CyberLink
[2009/10/29 21:03:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DELL
[2009/10/29 21:02:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2009/10/29 21:01:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2009/10/29 21:01:44 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2009/10/29 21:01:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2009/10/29 21:00:30 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2009/10/29 21:00:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2009/10/29 20:59:02 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2009/10/29 20:58:34 | 000,000,000 | ---D | C] -- C:\ProgramData\SupportSoft
[2009/10/29 20:58:32 | 000,000,000 | ---D | C] -- C:\ProgramData\PCDr
[2009/10/29 20:58:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Support Center
[2009/10/29 20:58:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\supportsoft
[2009/10/29 20:58:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dell Support Center
[2009/10/29 20:56:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dell DataSafe Local Backup
[2009/10/29 20:56:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell DataSafe
[2009/10/29 20:56:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dell DataSafe Online
[2009/10/29 20:55:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LFLInstall
[2009/10/29 20:53:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Citrix
[2009/10/29 20:53:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
[2009/10/29 20:52:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
[2009/10/29 20:52:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works
[2009/10/29 20:51:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2009/10/29 20:51:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2009/10/29 20:50:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
[2009/10/29 20:50:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
[2009/10/29 20:49:58 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2009/10/29 20:49:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies
[2009/10/29 20:49:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2009/10/29 20:49:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Dell
[2009/10/29 20:49:18 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2009/10/29 20:48:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cisco
[2009/10/29 20:47:42 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Wireless
[2009/10/29 20:47:23 | 000,000,000 | ---D | C] -- C:\Program Files\Dell
[2009/10/29 20:46:31 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2009/10/29 20:45:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2009/10/29 20:45:03 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
[2009/10/29 20:44:59 | 000,000,000 | ---D | C] -- C:\Program Files\Dell Inc
[2009/10/29 20:44:54 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2009/07/14 03:45:58 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Journal
[2009/07/14 03:45:02 | 000,000,000 | ---D | C] -- C:\Windows\ShellNew
[2009/07/14 03:45:02 | 000,000,000 | ---D | C] -- C:\Windows\ehome
[2009/07/14 03:44:38 | 000,000,000 | RH-D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
[2009/07/14 01:37:46 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\winrm
[2009/07/14 01:37:46 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\winrm
[2009/07/14 01:37:46 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\WCN
[2009/07/14 01:37:46 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\UMDF
[2009/07/14 01:37:46 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\sysprep
[2009/07/14 01:37:46 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\slmgr
[2009/07/14 01:37:46 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\slmgr
[2009/07/14 01:37:46 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Printing_Admin_Scripts
[2009/07/14 01:37:46 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\UMDF\en-US
[2009/07/14 01:37:46 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\en-US
[2009/07/14 01:37:46 | 000,000,000 | ---D | C] -- C:\Windows\en-US
[2009/07/14 01:37:46 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\en
[2009/07/14 01:37:46 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\en
[2009/07/14 01:37:46 | 000,000,000 | ---D | C] -- C:\Windows\DigitalLocker
[2009/07/14 01:37:46 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\0409
[2009/07/14 01:37:46 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\0409
[2009/07/14 01:37:45 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\WCN
[2009/07/14 01:37:45 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Printing_Admin_Scripts
[2009/07/14 01:37:45 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\UMDF\en-US
[2009/07/14 01:37:45 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\en-US
[2009/07/14 01:35:51 | 000,003,584 | ---- | C] (SCM Microsystems, Inc.) -- C:\Windows\SysNative\drivers\en-US\pscr.sys.mui
[2009/07/14 01:35:26 | 000,010,240 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\en-US\BrSerIb.sys.mui
[2009/07/14 01:35:25 | 000,010,240 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\en-US\BrSerId.sys.mui
[2009/07/14 01:35:25 | 000,002,560 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\en-US\BrParwdm.sys.mui
[2009/07/14 01:32:38 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
[2009/07/14 01:32:38 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\WindowsPowerShell
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\WindowsPowerShell
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Sidebar
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Sidebar
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Portable Devices
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Portable Devices
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Photo Viewer
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Photo Viewer
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Media Player
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Defender
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Defender
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\WinBioPlugIns
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\WinBioDatabase
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Windows\twain_32
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\restore
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\restore
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Reference Assemblies
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Windows\Performance
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Windows\Offline Web Pages
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSBuild
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\LogFiles
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\FxsTmp
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\FxsTmp
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Program Files\DVD Maker
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Windows\Downloaded Program Files
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Windows\diagnostics
[2009/07/14 01:32:38 | 000,000,000 | ---D | C] -- C:\Windows\addins
[2009/07/14 01:09:26 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2009/07/14 01:08:56 | 000,000,000 | -HSD | C] -- C:\ProgramData\Templates
[2009/07/14 01:08:56 | 000,000,000 | -HSD | C] -- C:\ProgramData\Start Menu
[2009/07/14 01:08:56 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\My Videos
[2009/07/14 01:08:56 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\My Pictures
[2009/07/14 01:08:56 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\My Music
[2009/07/14 01:08:56 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favorites
[2009/07/14 01:08:56 | 000,000,000 | -HSD | C] -- C:\Documents and Settings
[2009/07/14 01:08:56 | 000,000,000 | -HSD | C] -- C:\ProgramData\Documents
[2009/07/14 01:08:56 | 000,000,000 | -HSD | C] -- C:\ProgramData\Desktop
[2009/07/14 01:08:56 | 000,000,000 | -HSD | C] -- C:\ProgramData\Application Data
[2009/07/14 00:57:06 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Uninstall Information
[2009/07/14 00:45:54 | 000,000,000 | ---D | C] -- C:\Windows\debug
[2009/07/14 00:45:50 | 000,000,000 | ---D | C] -- C:\Windows\Setup
[2009/07/14 00:45:47 | 000,000,000 | ---D | C] -- C:\Windows\ServiceProfiles
[2009/07/14 00:45:42 | 000,000,000 | --SD | C] -- C:\Windows\SysNative\Microsoft
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\zh-TW
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\zh-TW
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\zh-HK
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\zh-HK
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\zh-CN
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\zh-CN
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\winsxs
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\winevt
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\wfp
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\Web
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\wdi
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\wdi
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\wbem
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\wbem
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\Vss
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\uk-UA
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\tr-TR
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\tracing
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\th-TH
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\Temp
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\Tasks
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Tasks
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\TAPI
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWOW64
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\sv-SE
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\sr-Latn-CS
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\sppui
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\spp
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Speech
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\sl-SI
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\sk-SK
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Setup
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\ru-RU
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\ro-RO
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Recovery
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\ras
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\pt-PT
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\pt-BR
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\pl-PL
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\oobe
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\nl-NL
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\NetworkList
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\NDF
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\nb-NO
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\MUI
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Msdtc
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\migwiz
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\migration
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\manifeststore
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\lv-LV
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\lt-LT
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\ko-KR
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\ja-JP
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\it-IT
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\InstallShield
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\inetsrv
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\IME
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\icsxml
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\hu-HU
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\hr-HR
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\he-IL
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\GroupPolicyUsers
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\GroupPolicy
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\fr-FR
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\fi-FI
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\et-EE
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\es-ES
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\en-US
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\el-GR
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\DriverStore
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Dism
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\de-DE
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\da-DK
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\cs-CZ
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\config
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\com
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\catroot2
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\catroot
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\bg-BG
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\ar-SA
[2009/07/13 23:20:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\AdvancedInstallers
[2009/07/13 23:20:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\uk-UA
[2009/07/13 23:20:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\tr-TR
[2009/07/13 23:20:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\th-TH
[2009/07/13 23:20:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Tasks
[2009/07/13 23:20:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\sysprep
[2009/07/13 23:20:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\sv-SE
[2009/07/13 23:20:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\sr-Latn-CS
[2009/07/13 23:20:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\sppui
[2009/07/13 23:20:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\spp
[2009/07/13 23:20:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\spool
[2009/07/13 23:20:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Speech
[2009/07/13 23:20:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SMI
[2009/07/13 23:20:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\sl-SI
[2009/07/13 23:20:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\sk-SK
[2009/07/13 23:20:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Setup
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\ru-RU
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\ro-RO
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Recovery
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\ras
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\pt-PT
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\pt-BR
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\pl-PL
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\oobe
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\nl-NL
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\NetworkList
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\NDF
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\nb-NO
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MUI
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Msdtc
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\migwiz
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\migration
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\manifeststore
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\lv-LV
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\lt-LT
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\LogFiles
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\ko-KR
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\ja-JP
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\it-IT
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\inetsrv
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\IME
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\icsxml
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\hu-HU
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\hr-HR
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\he-IL
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\GroupPolicyUsers
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\GroupPolicy
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\fr-FR
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\fi-FI
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\et-EE
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\es-ES
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\en-US
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\el-GR
[2009/07/13 23:20:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DriverStore
[2009/07/13 23:20:10 | 000,000,000 | R-SD | C] -- C:\Windows\Media
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\UMDF
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\System32
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\system
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\Speech
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\servicing
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\security
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\schemas
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\SchCache
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\Resources
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\rescache
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\registration
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\PolicyDefinitions
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\PLA
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\ModemLogs
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\Microsoft.NET
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\Logs
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\LiveKernelReports
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\L2Schemas
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\inf
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\etc
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Dism
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\de-DE
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\da-DK
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\cs-CZ
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\config
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\com
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\CodeIntegrity
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\catroot2
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\catroot
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Boot
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\bg-BG
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\ar-SA
[2009/07/13 23:20:10 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\AdvancedInstallers
[2009/07/13 23:20:09 | 000,000,000 | R-SD | C] -- C:\Windows\Fonts
[2009/07/13 23:20:09 | 000,000,000 | ---D | C] -- C:\Windows\IME
[2009/07/13 23:20:09 | 000,000,000 | ---D | C] -- C:\Windows\Help
[2009/07/13 23:20:09 | 000,000,000 | ---D | C] -- C:\Windows\Globalization
[2009/07/13 23:20:09 | 000,000,000 | ---D | C] -- C:\Windows\Cursors
[2009/07/13 23:20:09 | 000,000,000 | ---D | C] -- C:\Windows\Branding
[2009/07/13 23:20:09 | 000,000,000 | ---D | C] -- C:\Windows\Boot
[2009/07/13 23:20:08 | 000,000,000 | R-SD | C] -- C:\Windows\assembly
[2009/07/13 23:20:08 | 000,000,000 | R--D | C] -- C:\Users
[2009/07/13 23:20:08 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
[2009/07/13 23:20:08 | 000,000,000 | R--D | C] -- C:\Program Files
[2009/07/13 23:20:08 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
[2009/07/13 23:20:08 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
[2009/07/13 23:20:08 | 000,000,000 | -H-D | C] -- C:\ProgramData
[2009/07/13 23:20:08 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2009/07/13 23:20:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows NT
[2009/07/13 23:20:08 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Mail
[2009/07/13 23:20:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Mail
[2009/07/13 23:20:08 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2009/07/13 23:20:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2009/07/13 23:20:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\System
[2009/07/13 23:20:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2009/07/13 23:20:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\SpeechEngines
[2009/07/13 23:20:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2009/07/13 23:20:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Services
[2009/07/13 23:20:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)
[2009/07/13 23:20:08 | 000,000,000 | ---D | C] -- C:\PerfLogs
[2009/07/13 23:20:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2009/07/13 23:20:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\microsoft shared
[2009/07/13 23:20:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft
[2009/07/13 23:20:08 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2009/07/13 23:20:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Internet Explorer
[2009/07/13 23:20:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2009/07/13 23:20:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files
[2009/07/13 23:20:08 | 000,000,000 | ---D | C] -- C:\Windows\AppPatch
[2009/07/13 23:20:08 | 000,000,000 | ---D | C] -- C:\Windows\AppCompat
[2009/07/13 21:20:24 | 000,019,456 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysNative\brcoinst.dll
[2009/07/13 18:53:43 | 000,031,232 | ---- | C] (Hauppauge Computer Works, Inc.) -- C:\Windows\SysNative\drivers\hcw85cir.sys
[2009/07/13 17:59:34 | 000,065,600 | ---- | C] (LSI Corporation) -- C:\Windows\SysNative\drivers\lsi_sas2.sys
[2009/06/10 16:37:35 | 000,194,128 | ---- | C] (AMD Technologies Inc.) -- C:\Windows\SysNative\drivers\amdsbs.sys
[2009/05/03 19:18:00 | 000,000,000 | ---D | C] -- C:\Phillies
[2009/01/23 11:49:08 | 000,046,112 | ---- | C] (RapidSolution Software AG) -- C:\Windows\SysNative\drivers\tbhsd.sys
[2008/12/11 21:58:12 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\Documents\Nero Recode
[2008/06/21 03:28:50 | 000,000,000 | ---D | C] -- C:\Users\Bibbianna\AppData\Roaming\webex
[2008/06/21 03:27:43 | 000,000,000 | ---D | C] -- C:\ProgramData\WebEx

========== Files - Modified Within 30 Days ==========

[2013/04/29 17:25:10 | 000,000,152 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\NetAdapt.cfg
[2013/04/29 17:23:41 | 095,023,320 | ---- | M] () -- C:\ProgramData\odeq7e.pad
[2013/04/29 17:23:41 | 000,286,872 | ---- | M] () -- C:\Windows\SysNative\drivers\APPFCONT.DAT.bck
[2013/04/29 17:23:41 | 000,286,872 | ---- | M] () -- C:\Windows\SysNative\drivers\APPFCONT.DAT
[2013/04/29 17:22:54 | 000,000,068 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\NetFlt.cfg.bck
[2013/04/29 17:22:54 | 000,000,068 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\NetFlt.cfg
[2013/04/29 17:22:39 | 000,000,152 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\NetAdapt.cfg.bck
[2013/04/29 17:22:35 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/04/29 17:22:30 | 000,000,064 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\NetAR.wlt.bck
[2013/04/29 17:22:30 | 000,000,064 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\NetAR.wlt
[2013/04/29 17:15:49 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/04/29 17:15:49 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/04/29 17:14:16 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/04/29 17:14:15 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/04/29 13:50:12 | 000,303,044 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\DsaFlt.rls.bck
[2013/04/29 13:50:12 | 000,303,044 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\DsaFlt.rls
[2013/04/29 13:50:12 | 000,001,132 | ---- | M] () -- C:\Windows\SysNative\drivers\APPFLTR.CFG.bck
[2013/04/29 13:50:12 | 000,001,132 | ---- | M] () -- C:\Windows\SysNative\drivers\APPFLTR.CFG
[2013/04/29 13:50:12 | 000,000,252 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\IdsFlt.cfg.bck
[2013/04/29 13:50:12 | 000,000,252 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\IdsFlt.cfg
[2013/04/29 13:50:12 | 000,000,116 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\NetLoc.wlt.bck
[2013/04/29 13:50:12 | 000,000,116 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\NetLoc.wlt
[2013/04/29 13:50:12 | 000,000,056 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\WnmFlt.cfg.bck
[2013/04/29 13:50:12 | 000,000,056 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\WnmFlt.cfg
[2013/04/29 13:50:12 | 000,000,056 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\DsaFlt.cfg.bck
[2013/04/29 13:50:12 | 000,000,056 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\DsaFlt.cfg
[2013/04/29 13:43:41 | 000,001,031 | ---- | M] () -- C:\Users\Bibbianna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\msconfig.lnk
[2013/04/29 13:43:40 | 095,023,320 | ---- | M] () -- C:\ProgramData\qviwi.pad
[2013/04/29 13:43:39 | 000,000,056 | ---- | M] () -- C:\ProgramData\odeq7e.bat
[2013/04/29 13:43:36 | 000,127,488 | ---- | M] (Корпорация Майкрософт2) -- C:\ProgramData\iwivq.dat
[2013/04/29 13:43:35 | 000,127,488 | ---- | M] (Корпорация Майкрософт2) -- C:\ProgramData\e7qedo.dat
[2013/04/29 13:37:46 | 000,008,627 | ---- | M] () -- C:\Windows\SysWow64\PAV_FOG.OPC
[2013/04/29 13:21:45 | 000,002,145 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/02/14 10:44:08 | 000,007,624 | ---- | M] () -- C:\Users\Bibbianna\AppData\Local\Resmon.ResmonCfg
[2013/02/14 09:10:52 | 000,343,552 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/02/08 11:34:07 | 000,002,245 | ---- | M] () -- C:\Users\Bibbianna\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012/11/20 06:20:53 | 000,545,056 | ---- | M] (Panda Security, S.L.) -- C:\Windows\SysWow64\PavSHookWow.dll
[2012/11/16 06:08:27 | 000,837,920 | ---- | M] (Panda Security, S.L.) -- C:\Windows\SysNative\PavSHook64.dll
[2012/11/13 14:58:13 | 000,035,838 | ---- | M] () -- C:\Users\Bibbianna\Documents\cc_20121113_135752.reg
[2012/11/13 14:39:05 | 000,000,983 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2012/11/13 12:53:55 | 000,000,526 | ---- | M] () -- C:\Windows\tasks\Basic clean-up.job
[2012/11/13 12:51:27 | 000,015,928 | ---- | M] () -- C:\Windows\SysNative\drivers\COMFiltr.sys
[2012/11/13 12:51:13 | 000,002,103 | ---- | M] () -- C:\Users\Bibbianna\Application Data\Microsoft\Internet Explorer\Quick Launch\Panda Global Protection 2013.lnk
[2012/11/13 12:51:13 | 000,000,274 | ---- | M] () -- C:\Windows\SysNative\PavCPL64.dat
[2012/11/13 12:50:43 | 000,002,494 | ---- | M] () -- C:\Users\Public\Desktop\Install remote access.lnk
[2012/11/13 12:50:43 | 000,002,213 | ---- | M] () -- C:\Users\Public\Desktop\Panda Global Protection 2013.lnk
[2012/11/13 11:04:04 | 000,001,807 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012/11/13 11:00:22 | 000,001,976 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2012/11/13 10:56:25 | 000,001,745 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/09/29 03:01:14 | 000,002,515 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2012/07/11 14:39:23 | 000,001,990 | -H-- | M] () -- C:\Users\Bibbianna\Documents\Default.rdp
[2012/06/02 10:57:51 | 000,000,003 | ---- | M] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2012/06/02 10:35:15 | 000,000,003 | ---- | M] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2012/05/22 09:54:21 | 000,087,328 | ---- | M] (Panda Security, S.L.) -- C:\Windows\SysWow64\PavLspHookWow.dll
[2012/05/22 09:52:32 | 000,117,024 | ---- | M] (Panda Security, S.L.) -- C:\Windows\SysNative\PavLspHook64.dll
[2012/04/20 07:42:53 | 000,024,064 | ---- | M] (Panda Security, S.L.) -- C:\Windows\SysNative\sysHelper64.dll
[2012/03/26 19:57:36 | 000,071,432 | ---- | M] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\amm6460.sys
[2012/03/20 08:55:19 | 000,000,116 | ---- | M] () -- C:\Users\Bibbianna\Desktop\#.url
[2012/03/12 10:19:59 | 001,777,412 | ---- | M] () -- C:\Users\Bibbianna\Desktop\MedicareRemitEasyPrint32.zip
[2012/01/22 23:46:14 | 000,004,168 | ---- | M] () -- C:\Users\Bibbianna\Documents\cc_20120122_224609.reg
[2012/01/20 11:01:55 | 000,002,127 | ---- | M] () -- C:\Users\Bibbianna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PMB Media Check Tool.lnk
[2012/01/20 11:01:54 | 000,002,027 | ---- | M] () -- C:\Users\Bibbianna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
[2012/01/20 11:01:27 | 000,003,337 | ---- | M] () -- C:\Users\Bibbianna\Desktop\Napster Download Manager.lnk
[2012/01/20 11:01:26 | 000,002,821 | ---- | M] () -- C:\Users\Bibbianna\Desktop\Microsoft Office Word 2007.lnk
[2012/01/14 11:40:51 | 000,324,207 | ---- | M] () -- C:\Users\Bibbianna\Documents\Van Halen Tickets.xps
[2011/12/24 13:30:46 | 002,536,474 | ---- | M] () -- C:\Users\Bibbianna\Desktop\2010 478.JPG
[2011/12/24 13:30:20 | 002,576,956 | ---- | M] () -- C:\Users\Bibbianna\Desktop\2010 477.JPG
[2011/12/24 13:30:06 | 002,851,174 | ---- | M] () -- C:\Users\Bibbianna\Desktop\2010 476.JPG
[2011/12/24 13:29:56 | 002,487,056 | ---- | M] () -- C:\Users\Bibbianna\Desktop\2010 475.JPG
[2011/12/21 05:59:52 | 002,270,487 | ---- | M] () -- C:\Users\Bibbianna\Desktop\2010 441.JPG
[2011/12/21 05:59:30 | 002,231,629 | ---- | M] () -- C:\Users\Bibbianna\Desktop\2010 439.JPG
[2011/11/15 13:13:59 | 000,001,403 | ---- | M] () -- C:\Users\Bibbianna\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/11/15 13:07:29 | 000,072,822 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2011/11/15 13:07:28 | 000,072,822 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2011/11/15 12:25:35 | 000,095,324 | ---- | M] () -- C:\Users\Bibbianna\Documents\cc_20111115_112511.reg
[2011/10/09 13:29:57 | 000,006,656 | ---- | M] () -- C:\Users\Bibbianna\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/10/08 21:34:43 | 000,086,158 | ---- | M] () -- C:\Users\Bibbianna\Documents\Photo10081835.jpg
[2011/09/20 12:00:58 | 000,072,080 | ---- | M] () -- C:\Users\Bibbianna\g2mdlhlpx.exe
[2011/01/31 17:41:28 | 000,129,096 | ---- | M] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\APPFLT64.SYS
[2011/01/26 22:16:01 | 000,000,056 | -H-- | M] () -- C:\ProgramData\ezsidmv.dat
[2010/11/20 09:26:22 | 000,116,224 | ---- | M] (Windows ® Codename Longhorn DDK provider) -- C:\Windows\SysNative\fms.dll
[2010/11/20 08:19:02 | 000,093,696 | ---- | M] (Windows ® Codename Longhorn DDK provider) -- C:\Windows\SysWow64\fms.dll
[2010/11/09 21:48:34 | 000,010,429 | ---- | M] () -- C:\Windows\SysNative\ScavengeSpace.xml
[2010/11/04 22:20:53 | 000,347,904 | ---- | M] () -- C:\Windows\SysNative\systemsf.ebd
[2010/11/04 22:20:45 | 000,105,559 | ---- | M] () -- C:\Windows\SysWow64\RacRules.xml
[2010/11/04 22:20:45 | 000,105,559 | ---- | M] () -- C:\Windows\SysNative\RacRules.xml
[2010/10/13 14:59:42 | 000,002,610 | ---- | M] () -- C:\Users\Bibbianna\Documents\cc_20101013_145938.reg
[2010/10/09 13:31:38 | 000,000,075 | RHS- | M] () -- C:\Windows\CT4CET.bin
[2010/10/03 11:18:56 | 000,012,282 | ---- | M] () -- C:\Users\Bibbianna\Documents\FBstatslegal.pdf
[2010/09/30 23:23:28 | 000,026,666 | ---- | M] () -- C:\Users\Bibbianna\Documents\cc_20100930_232321.reg
[2010/09/29 15:33:02 | 000,002,220 | ---- | M] () -- C:\Users\Public\Desktop\PMB.lnk
[2010/09/29 15:33:02 | 000,002,134 | ---- | M] () -- C:\Users\Public\Desktop\PMB Launcher.lnk
[2010/09/29 15:33:02 | 000,002,075 | ---- | M] () -- C:\Users\Public\Desktop\PMB Guide.lnk
[2010/09/29 10:20:57 | 003,800,968 | ---- | M] () -- C:\Users\Bibbianna\Documents\DCRSR40-60-80_handbook_EN.pdf
[2010/09/09 17:23:00 | 000,078,920 | ---- | M] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\idsflt64.sys
[2010/09/01 12:09:12 | 000,216,648 | ---- | M] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\n64i1644.sys
[2010/08/17 11:22:32 | 000,003,636 | ---- | M] () -- C:\Users\Bibbianna\Documents\cc_20100817_112226.reg
[2010/08/11 13:55:49 | 000,178,910 | ---- | M] () -- C:\Windows\hpwins14.dat
[2010/06/22 19:20:18 | 000,030,792 | ---- | M] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\pavboot64.sys
[2010/06/21 18:02:10 | 000,202,048 | ---- | M] (Panda Security, S.L.) -- C:\Windows\SysWow64\TpUtilWow.dll
[2010/06/21 18:02:08 | 000,323,392 | ---- | M] (Panda Security, S.L.) -- C:\Windows\SysNative\TpUtil64.dll
[2010/06/21 18:01:40 | 000,066,880 | ---- | M] (Panda Security, S.L.) -- C:\Windows\SysWow64\PavIpcWow.dll
[2010/06/21 18:01:38 | 000,090,944 | ---- | M] (Panda Security, S.L.) -- C:\Windows\SysNative\PavIpc64.dll
[2010/06/09 11:16:07 | 000,005,186 | ---- | M] () -- C:\Users\Bibbianna\Documents\cc_20100609_111600.reg
[2010/05/01 12:29:56 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2010/04/20 19:35:48 | 000,163,840 | ---- | M] () -- C:\Users\Bibbianna\AppData\Roaming\DataSafeDotNet.exe
[2010/04/10 11:43:33 | 000,000,185 | ---- | M] () -- C:\Users\Bibbianna\Desktop\Calvert Lightning.url
[2010/03/31 15:47:48 | 000,033,272 | ---- | M] () -- C:\Windows\SysNative\emptyregdb.dat
[2010/03/31 13:40:27 | 000,000,768 | ---- | M] () -- C:\Users\Public\Desktop\ImageMixer destination folder.lnk
[2010/03/24 13:56:08 | 000,064,768 | ---- | M] (On-Access Anti-Malware Scanner Sync) -- C:\Windows\SysNative\avldr64.dll
[2010/02/17 23:10:20 | 000,001,929 | ---- | M] () -- C:\Users\Bibbianna\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010/01/30 00:30:59 | 000,001,040 | -H-- | M] () -- C:\IPH.PH
[2010/01/21 20:16:59 | 270,746,440 | ---- | M] () -- C:\Users\Bibbianna\Desktop\Live_In_Washington_28_07_2009.zip
[2010/01/21 19:06:29 | 000,000,372 | ---- | M] () -- C:\Users\Bibbianna\Documents\spider.sav
[2010/01/09 13:29:50 | 000,001,065 | ---- | M] () -- C:\Users\Public\Desktop\Tunebite.lnk
[2010/01/08 16:28:36 | 000,000,411 | ---- | M] () -- C:\Windows\hpwmdl14.dat.temp
[2010/01/08 16:28:36 | 000,000,411 | ---- | M] () -- C:\Windows\hpwmdl14.dat
[2009/11/27 10:57:59 | 000,000,162 | -H-- | M] () -- C:\Users\Bibbianna\Documents\~$E Receipt.rtf
[2009/11/26 13:06:23 | 000,001,887 | ---- | M] () -- C:\Users\Public\Desktop\Napster.lnk
[2009/11/21 22:02:55 | 000,000,162 | -H-- | M] () -- C:\Users\Public\Documents\~$sketball Drills.rtf
[2009/11/21 20:02:12 | 008,862,063 | ---- | M] () -- C:\Users\Bibbianna\Documents\ICE Receipt.rtf
[2009/11/19 23:11:30 | 000,036,798 | ---- | M] () -- C:\Users\Public\Documents\Basketball Drills.rtf
[2009/11/18 16:48:14 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2009/11/18 16:22:47 | 000,062,093 | ---- | M] () -- C:\Users\Bibbianna\Desktop\HP Installation Error - XP.html
[2009/11/04 23:06:51 | 000,103,720 | ---- | M] () -- C:\Users\Bibbianna\GoToAssistDownloadHelper (1).exe
[2009/11/04 19:26:27 | 000,061,224 | ---- | M] () -- C:\Users\Bibbianna\GoToAssistDownloadHelper.exe
[2009/11/04 18:51:24 | 000,039,252 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2009/11/04 18:51:24 | 000,039,252 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2009/11/04 18:01:28 | 000,002,154 | ---- | M] () -- C:\Users\Bibbianna\AppData\Roaming\install.dat
[2009/10/29 23:29:03 | 000,003,419 | RH-- | M] () -- C:\dell.sdr
[2009/10/29 23:28:28 | 000,899,942 | ---- | M] () -- C:\Windows\SysNative\oem4.inf
[2009/10/29 23:22:52 | 000,003,419 | ---- | M] () -- C:\Windows\SysWow64\drivers\1028_Dell_STU_1555.mrk
[2009/10/29 23:22:52 | 000,003,419 | ---- | M] () -- C:\Windows\SysNative\drivers\1028_Dell_STU_1555.mrk
[2009/10/29 23:22:40 | 000,060,224 | ---- | M] () -- C:\Windows\SysNative\tcpmon.ini
[2009/10/29 22:39:20 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf
[2009/10/29 22:39:00 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2009/10/29 21:22:42 | 000,787,590 | ---- | M] () -- C:\Windows\SysNative\chklogo6.wtl
[2009/10/29 21:03:06 | 000,002,235 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Office 60 Day Trial - Online.lnk
[2009/10/27 13:07:42 | 000,048,136 | ---- | M] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\ShldFlt.sys
[2009/09/28 19:03:52 | 000,000,159 | ---- | M] () -- C:\Users\Bibbianna\default.pls
[2009/09/25 15:54:08 | 000,074,760 | ---- | M] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\wnmflt64.sys
[2009/09/25 15:54:06 | 000,170,504 | ---- | M] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\NETTDI64.SYS
[2009/09/25 15:54:02 | 000,082,952 | ---- | M] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\dsaflt64.sys
[2009/09/25 15:54:02 | 000,031,752 | ---- | M] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\fnetm64.sys
[2009/08/13 19:07:42 | 000,672,024 | ---- | M] (WeOnlyDo! COM) -- C:\Windows\SysWow64\wodKeys.dll
[2009/08/13 19:07:32 | 000,729,424 | ---- | M] (WeOnlyDo Software) -- C:\Windows\SysWow64\wodSFTP.dll
[2009/08/10 14:46:20 | 000,025,344 | ---- | M] (Panda Security, S.L.) -- C:\Windows\SysWow64\sysHelper32.dll
[2009/07/18 15:59:30 | 000,001,165 | ---- | M] () -- C:\Users\Public\Desktop\Tunebite (1).lnk
[2009/07/16 21:06:20 | 000,058,368 | ---- | M] () -- C:\Windows\SysNative\bcmwlrmt.dll
[2009/07/16 21:06:20 | 000,000,459 | ---- | M] () -- C:\Windows\SysWow64\vcredist_x64.bat
[2009/07/16 21:06:20 | 000,000,457 | ---- | M] () -- C:\Windows\SysNative\vcredist_x64.bat
[2009/07/16 21:06:18 | 000,006,656 | ---- | M] () -- C:\Windows\SysNative\bcmwlrc.dll
[2009/07/15 14:49:10 | 000,057,656 | ---- | M] () -- C:\Windows\SysNative\drivers\FilterPC.bmp
[2009/07/15 14:49:10 | 000,024,995 | ---- | M] () -- C:\Windows\SysNative\drivers\FilterPC.jpg
[2009/07/14 01:14:28 | 000,021,504 | ---- | M] () -- C:\Windows\SysNative\umstartup.etl
[2009/07/14 01:01:51 | 000,009,216 | ---- | M] () -- C:\Windows\SysNative\umstartup000.etl
[2009/07/14 00:57:09 | 000,001,244 | ---- | M] () -- C:\Windows\SysNative\migwiz.lnk
[2009/07/14 00:55:01 | 000,000,535 | ---- | M] () -- C:\Windows\SysWow64\mapisvc.inf
[2009/07/14 00:49:38 | 000,000,290 | ---- | M] () -- C:\Users\Bibbianna\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2009/07/14 00:49:38 | 000,000,272 | ---- | M] () -- C:\Users\Bibbianna\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2009/07/13 22:30:26 | 000,003,584 | ---- | M] (SCM Microsystems, Inc.) -- C:\Windows\SysNative\drivers\en-US\pscr.sys.mui
[2009/07/13 22:30:10 | 000,010,240 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\en-US\BrSerId.sys.mui
[2009/07/13 22:28:30 | 000,002,560 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\en-US\BrParwdm.sys.mui
[2009/07/13 22:25:30 | 000,010,240 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\en-US\BrSerIb.sys.mui
[2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) -- C:\Windows\SysNative\drivers\amdsbs.sys
[2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) -- C:\Windows\SysNative\drivers\lsi_sas2.sys
[2009/07/13 21:40:13 | 000,093,696 | ---- | M] () -- C:\Windows\SysNative\BthpanContextHandler.dll
[2009/07/13 21:40:13 | 000,069,120 | ---- | M] () -- C:\Windows\SysNative\BWContextHandler.dll
[2009/07/13 21:40:12 | 000,019,456 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\SysNative\brcoinst.dll
[2009/07/13 21:15:45 | 000,364,544 | ---- | M] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/07/13 21:15:00 | 000,064,000 | ---- | M] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 21:00:34 | 000,291,294 | ---- | M] () -- C:\Windows\SysNative\perfi009.dat
[2009/07/13 21:00:32 | 000,031,548 | ---- | M] () -- C:\Windows\SysNative\perfd009.dat
[2009/07/13 19:14:22 | 000,000,263 | ---- | M] () -- C:\Windows\SysNative\odbcconf.rsp
[2009/07/13 19:06:54 | 000,043,131 | ---- | M] () -- C:\Windows\mib.bin
[2009/07/13 19:06:14 | 000,004,453 | ---- | M] () -- C:\Windows\SysWow64\odbcconf.rsp
[2009/07/13 17:54:15 | 000,000,614 | ---- | M] () -- C:\Windows\SysNative\WdsUnattendTemplate.xml
[2009/07/13 16:29:26 | 000,000,714 | ---- | M] () -- C:\Windows\SysWow64\RestartManager.mof
[2009/07/13 16:29:26 | 000,000,176 | ---- | M] () -- C:\Windows\SysWow64\RestartManagerUninstall.mof
[2009/07/13 16:23:29 | 000,000,714 | ---- | M] () -- C:\Windows\SysNative\RestartManager.mof
[2009/07/13 16:23:29 | 000,000,176 | ---- | M] () -- C:\Windows\SysNative\RestartManagerUninstall.mof
[2009/06/29 00:44:38 | 012,151,808 | ---- | M] (IDT, Inc.) -- C:\Windows\SysNative\idtcpl64.cpl
[2009/06/29 00:44:38 | 003,593,216 | ---- | M] (IDT, Inc.) -- C:\Windows\SysNative\stlang64.dll
[2009/06/29 00:44:38 | 001,431,040 | ---- | M] (IDT, Inc.) -- C:\Windows\SysNative\stapo64.dll
[2009/06/29 00:44:38 | 000,598,016 | ---- | M] (IDT, Inc.) -- C:\Windows\SysNative\stapi64.dll
[2009/06/29 00:44:38 | 000,564,224 | ---- | M] (IDT, Inc.) -- C:\Windows\SysNative\idt64mp1.exe
[2009/06/29 00:44:38 | 000,487,424 | ---- | M] (IDT, Inc.) -- C:\Windows\SysNative\drivers\stwrt64.sys
[2009/06/29 00:44:38 | 000,431,616 | ---- | M] (IDT, Inc.) -- C:\Windows\SysNative\stcplx64.dll
[2009/06/29 00:44:38 | 000,209,920 | ---- | M] (IDT, Inc.) -- C:\Windows\SysNative\st646217.dll
[2009/06/26 00:23:30 | 000,272,432 | ---- | M] (Synaptics Incorporated) -- C:\Windows\SysNative\drivers\SynTP.sys
[2009/06/26 00:20:38 | 000,107,816 | ---- | M] (Synaptics Incorporated) -- C:\Windows\SysWow64\SynTPCOM.dll
[2009/06/26 00:20:36 | 000,203,560 | ---- | M] (Synaptics Incorporated) -- C:\Windows\SysNative\SynTPAPI.dll
[2009/06/26 00:20:36 | 000,147,752 | ---- | M] (Synaptics Incorporated) -- C:\Windows\SysNative\SynTPCo4.dll
[2009/06/26 00:20:32 | 000,206,120 | ---- | M] (Synaptics Incorporated) -- C:\Windows\SysWow64\SynCtrl.dll
[2009/06/26 00:20:30 | 000,260,904 | ---- | M] (Synaptics Incorporated) -- C:\Windows\SysNative\SynCtrl.dll
[2009/06/26 00:20:30 | 000,169,256 | ---- | M] (Synaptics Incorporated) -- C:\Windows\SysWow64\SynCOM.dll
[2009/06/26 00:20:28 | 000,395,048 | ---- | M] (Synaptics Incorporated) -- C:\Windows\SysNative\SynCOM.dll
[2009/06/25 06:49:02 | 000,420,352 | ---- | M] (AMD) -- C:\Windows\SysNative\atieclxx.exe
[2009/06/25 06:48:28 | 000,203,264 | ---- | M] (AMD) -- C:\Windows\SysNative\atiesrxx.exe
[2009/06/25 06:47:20 | 000,120,320 | ---- | M] (AMD) -- C:\Windows\SysNative\atitmm64.dll
[2009/06/25 06:46:32 | 000,012,288 | ---- | M] (AMD) -- C:\Windows\SysNative\atimuixx.dll
[2009/06/25 06:20:44 | 000,219,120 | ---- | M] () -- C:\Windows\SysNative\atiumd6a.cap
[2009/06/25 06:17:20 | 000,219,120 | ---- | M] () -- C:\Windows\SysWow64\atiumdva.cap
[2009/06/25 05:04:20 | 000,067,584 | ---- | M] (REDC) -- C:\Windows\SysNative\drivers\rimmpx64.sys
[2009/06/25 04:38:52 | 000,057,856 | ---- | M] (REDC) -- C:\Windows\SysNative\drivers\rixdpx64.sys
[2009/06/25 04:13:44 | 000,055,296 | ---- | M] (REDC) -- C:\Windows\SysNative\drivers\rimspx64.sys
[2009/06/18 03:29:04 | 000,197,654 | ---- | M] () -- C:\Windows\SysNative\atiicdxx.dat
[2009/06/16 15:53:12 | 000,018,333 | ---- | M] () -- C:\Windows\atiogl.xml
[2009/06/10 17:47:11 | 000,047,679 | ---- | M] () -- C:\Windows\SysWow64\diskmgmt.msc
[2009/06/10 17:46:08 | 000,145,640 | ---- | M] () -- C:\Windows\SysWow64\devmgmt.msc
[2009/06/10 17:44:34 | 003,170,304 | ---- | M] () -- C:\Windows\SysWow64\boot.sdi
[2009/06/10 17:43:20 | 000,144,862 | ---- | M] () -- C:\Windows\SysWow64\tpm.msc
[2009/06/10 17:42:07 | 000,004,041 | ---- | M] () -- C:\Windows\SysWow64\xwizard.dtd
[2009/06/10 17:41:29 | 000,211,938 | ---- | M] () -- C:\Windows\SysWow64\lcphrase.tbl
[2009/06/10 17:41:29 | 000,024,114 | ---- | M] () -- C:\Windows\SysWow64\lcptr.tbl
[2009/06/10 17:40:47 | 000,201,034 | ---- | M] () -- C:\Windows\SysWow64\winrm.vbs
[2009/06/10 17:40:47 | 000,004,675 | ---- | M] () -- C:\Windows\SysWow64\wsmanconfig_schema.xml
[2009/06/10 17:40:47 | 000,002,426 | ---- | M] () -- C:\Windows\SysWow64\WsmTxt.xsl
[2009/06/10 17:40:47 | 000,001,559 | ---- | M] () -- C:\Windows\SysWow64\WsmPty.xsl
[2009/06/10 17:40:47 | 000,000,035 | ---- | M] () -- C:\Windows\SysWow64\winrm.cmd
[2009/06/10 17:39:59 | 000,001,041 | ---- | M] () -- C:\Windows\SysWow64\tcpbidi.xml
[2009/06/10 17:39:54 | 000,003,577 | ---- | M] () -- C:\Windows\SysWow64\sysprtj.sep
[2009/06/10 17:39:54 | 000,003,214 | ---- | M] () -- C:\Windows\SysWow64\sysprint.sep
[2009/06/10 17:39:53 | 000,000,114 | ---- | M] () -- C:\Windows\SysWow64\pcl.sep
[2009/06/10 17:39:53 | 000,000,051 | ---- | M] () -- C:\Windows\SysWow64\pscript.sep
[2009/06/10 17:39:18 | 000,001,820 | ---- | M] () -- C:\Windows\SysWow64\rasctrnm.h
[2009/06/10 17:38:48 | 000,113,629 | ---- | M] () -- C:\Windows\SysWow64\slmgr.vbs
[2009/06/10 17:38:43 | 000,145,059 | ---- | M] () -- C:\Windows\SysWow64\taskschd.msc
[2009/06/10 17:38:33 | 000,145,127 | ---- | M] () -- C:\Windows\SysWow64\eventvwr.msc
[2009/06/10 17:38:10 | 000,017,935 | ---- | M] () -- C:\Windows\SysWow64\EventViewer_EventDetails.xsl
[2009/06/10 17:36:33 | 000,063,070 | ---- | M] () -- C:\Windows\SysWow64\certmgr.msc
[2009/06/10 17:34:45 | 000,215,943 | ---- | M] () -- C:\Windows\SysWow64\dssec.dat
[2009/06/10 17:32:47 | 000,000,741 | ---- | M] () -- C:\Windows\SysWow64\NOISE.DAT
[2009/06/10 17:32:07 | 000,002,060 | ---- | M] () -- C:\Windows\SysWow64\noise.jpn
[2009/06/10 17:31:26 | 000,145,519 | ---- | M] () -- C:\Windows\SysWow64\perfmon.msc
[2009/06/10 17:29:34 | 000,000,697 | ---- | M] () -- C:\Windows\SysWow64\NOISE.THA
[2009/06/10 17:29:29 | 011,967,524 | ---- | M] () -- C:\Windows\SysWow64\korwbrkr.lex
[2009/06/10 17:29:29 | 000,001,486 | ---- | M] () -- C:\Windows\SysWow64\noise.kor
[2009/06/10 17:29:28 | 000,001,696 | ---- | M] () -- C:\Windows\SysWow64\NOISE.CHT
[2009/06/10 17:29:17 | 000,001,696 | ---- | M] () -- C:\Windows\SysWow64\NOISE.CHS
[2009/06/10 17:27:46 | 000,115,091 | ---- | M] () -- C:\Windows\SysWow64\WF.msc
[2009/06/10 17:26:15 | 000,144,998 | ---- | M] () -- C:\Windows\SysWow64\lusrmgr.msc
[2009/06/10 17:26:10 | 000,673,088 | ---- | M] () -- C:\Windows\SysWow64\mlang.dat
[2009/06/10 17:25:52 | 000,063,411 | ---- | M] () -- C:\Windows\SysWow64\NAPCLCFG.MSC
[2009/06/10 17:21:09 | 000,092,745 | ---- | M] () -- C:\Windows\SysWow64\services.msc
[2009/06/10 17:21:07 | 000,144,909 | ---- | M] () -- C:\Windows\SysWow64\fsmgmt.msc
[2009/06/10 17:21:06 | 000,113,256 | ---- | M] () -- C:\Windows\SysWow64\compmgmt.msc
[2009/06/10 17:21:06 | 000,041,587 | ---- | M] () -- C:\Windows\SysWow64\azman.msc
[2009/06/10 17:18:29 | 000,000,565 | ---- | M] () -- C:\Windows\SysWow64\NdfEventView.xml
[2009/06/10 17:17:44 | 000,124,118 | ---- | M] () -- C:\Windows\SysWow64\comexp.msc
[2009/06/10 17:16:56 | 000,002,233 | ---- | M] () -- C:\Windows\SysWow64\12520850.cpx
[2009/06/10 17:16:56 | 000,002,151 | ---- | M] () -- C:\Windows\SysWow64\12520437.cpx
[2009/06/10 17:16:38 | 000,002,727 | ---- | M] () -- C:\Windows\SysWow64\locationnotificationsview.xml
[2009/06/10 17:15:19 | 000,001,988 | ---- | M] () -- C:\Windows\SysWow64\ticrf.rat
[2009/06/10 17:15:18 | 000,008,798 | ---- | M] () -- C:\Windows\SysWow64\icrav03.rat
[2009/06/10 17:15:06 | 000,076,060 | ---- | M] () -- C:\Windows\SysWow64\xpsrchvw.xml
[2009/06/10 17:14:29 | 003,440,660 | ---- | M] () -- C:\Windows\SysWow64\drivers\gm.dls
[2009/06/10 17:08:37 | 000,047,679 | ---- | M] () -- C:\Windows\SysNative\diskmgmt.msc
[2009/06/10 17:08:17 | 000,008,280 | ---- | M] () -- C:\Windows\SysNative\spcinstrumentation.man
[2009/06/10 17:07:55 | 000,145,640 | ---- | M] () -- C:\Windows\SysNative\devmgmt.msc
[2009/06/10 17:06:00 | 003,170,304 | ---- | M] () -- C:\Windows\SysNative\boot.sdi
[2009/06/10 17:04:41 | 000,000,874 | ---- | M] () -- C:\Windows\SysNative\manage-bde.wsf
[2009/06/10 17:04:39 | 000,144,862 | ---- | M] () -- C:\Windows\SysNative\tpm.msc
[2009/06/10 17:03:33 | 000,000,843 | ---- | M] () -- C:\Windows\SysNative\onlinesetup.cmd
[2009/06/10 17:03:31 | 000,004,041 | ---- | M] () -- C:\Windows\SysNative\xwizard.dtd
[2009/06/10 17:01:55 | 000,211,938 | ---- | M] () -- C:\Windows\SysNative\lcphrase.tbl
[2009/06/10 17:01:55 | 000,024,114 | ---- | M] () -- C:\Windows\SysNative\lcptr.tbl
[2009/06/10 17:01:24 | 000,001,041 | ---- | M] () -- C:\Windows\SysNative\tcpbidi.xml
[2009/06/10 17:01:15 | 000,003,577 | ---- | M] () -- C:\Windows\SysNative\sysprtj.sep
[2009/06/10 17:01:15 | 000,003,214 | ---- | M] () -- C:\Windows\SysNative\sysprint.sep
[2009/06/10 17:01:15 | 000,000,114 | ---- | M] () -- C:\Windows\SysNative\pcl.sep
[2009/06/10 17:01:15 | 000,000,051 | ---- | M] () -- C:\Windows\SysNative\pscript.sep
[2009/06/10 17:00:55 | 000,002,426 | ---- | M] () -- C:\Windows\SysNative\WsmTxt.xsl
[2009/06/10 17:00:55 | 000,001,559 | ---- | M] () -- C:\Windows\SysNative\WsmPty.xsl
[2009/06/10 17:00:54 | 000,201,034 | ---- | M] () -- C:\Windows\SysNative\winrm.vbs
[2009/06/10 17:00:54 | 000,004,675 | ---- | M] () -- C:\Windows\SysNative\wsmanconfig_schema.xml
[2009/06/10 17:00:54 | 000,000,035 | ---- | M] () -- C:\Windows\SysNative\winrm.cmd
[2009/06/10 17:00:26 | 000,017,463 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\services
[2009/06/10 17:00:26 | 000,003,683 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\lmhosts.sam
[2009/06/10 17:00:26 | 000,001,358 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\protocol
[2009/06/10 17:00:26 | 000,000,824 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2009/06/10 17:00:26 | 000,000,407 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\networks
[2009/06/10 16:59:55 | 000,001,820 | ---- | M] () -- C:\Windows\SysNative\rasctrnm.h
[2009/06/10 16:59:46 | 000,144,673 | ---- | M] () -- C:\Windows\SysNative\WmiMgmt.msc
[2009/06/10 16:59:12 | 000,113,629 | ---- | M] () -- C:\Windows\SysNative\slmgr.vbs
[2009/06/10 16:58:11 | 000,145,059 | ---- | M] () -- C:\Windows\SysNative\taskschd.msc
[2009/06/10 16:58:09 | 000,145,127 | ---- | M] () -- C:\Windows\SysNative\eventvwr.msc
[2009/06/10 16:57:45 | 000,017,935 | ---- | M] () -- C:\Windows\SysNative\EventViewer_EventDetails.xsl
[2009/06/10 16:56:28 | 000,063,070 | ---- | M] () -- C:\Windows\SysNative\certmgr.msc
[2009/06/10 16:53:53 | 000,215,943 | ---- | M] () -- C:\Windows\SysNative\dssec.dat
[2009/06/10 16:52:44 | 000,316,640 | ---- | M] () -- C:\Windows\WMSysPr9.prx
[2009/06/10 16:50:40 | 000,000,741 | ---- | M] () -- C:\Windows\SysNative\NOISE.DAT
[2009/06/10 16:50:13 | 000,145,519 | ---- | M] () -- C:\Windows\SysNative\perfmon.msc
[2009/06/10 16:49:51 | 000,002,060 | ---- | M] () -- C:\Windows\SysNative\noise.jpn
[2009/06/10 16:47:18 | 000,000,697 | ---- | M] () -- C:\Windows\SysNative\NOISE.THA
[2009/06/10 16:47:10 | 011,967,524 | ---- | M] () -- C:\Windows\SysNative\korwbrkr.lex
[2009/06/10 16:47:10 | 000,001,486 | ---- | M] () -- C:\Windows\SysNative\noise.kor
[2009/06/10 16:47:09 | 000,001,696 | ---- | M] () -- C:\Windows\SysNative\NOISE.CHT
[2009/06/10 16:47:06 | 000,001,696 | ---- | M] () -- C:\Windows\SysNative\NOISE.CHS
[2009/06/10 16:46:17 | 000,115,091 | ---- | M] () -- C:\Windows\SysNative\WF.msc
[2009/06/10 16:44:14 | 000,144,998 | ---- | M] () -- C:\Windows\SysNative\lusrmgr.msc
[2009/06/10 16:44:02 | 000,673,088 | ---- | M] () -- C:\Windows\SysNative\mlang.dat
[2009/06/10 16:43:53 | 000,063,411 | ---- | M] () -- C:\Windows\SysNative\NAPCLCFG.MSC
[2009/06/10 16:38:36 | 000,092,745 | ---- | M] () -- C:\Windows\SysNative\services.msc
[2009/06/10 16:38:34 | 000,144,909 | ---- | M] () -- C:\Windows\SysNative\fsmgmt.msc
[2009/06/10 16:38:32 | 000,113,256 | ---- | M] () -- C:\Windows\SysNative\compmgmt.msc
[2009/06/10 16:38:32 | 000,041,587 | ---- | M] () -- C:\Windows\SysNative\azman.msc
[2009/06/10 16:36:24 | 000,040,552 | ---- | M] () -- C:\Windows\SysNative\gatherNetworkInfo.vbs
[2009/06/10 16:36:24 | 000,021,812 | ---- | M] () -- C:\Windows\SysNative\NetTrace.PLA.Diagnostics.xml
[2009/06/10 16:35:23 | 000,000,565 | ---- | M] () -- C:\Windows\SysNative\NdfEventView.xml
[2009/06/10 16:34:10 | 000,124,118 | ---- | M] () -- C:\Windows\SysNative\comexp.msc
[2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) -- C:\Windows\SysNative\drivers\hcw85cir.sys
[2009/06/10 16:31:50 | 000,002,727 | ---- | M] () -- C:\Windows\SysNative\locationnotificationsview.xml
[2009/06/10 16:31:13 | 000,001,988 | ---- | M] () -- C:\Windows\SysNative\ticrf.rat
[2009/06/10 16:31:11 | 000,008,798 | ---- | M] () -- C:\Windows\SysNative\icrav03.rat
[2009/06/10 16:31:09 | 000,076,060 | ---- | M] () -- C:\Windows\SysNative\xpsrchvw.xml
[2009/06/10 16:31:02 | 000,048,201 | ---- | M] () -- C:\Windows\Starter.xml
[2009/06/10 16:30:55 | 000,048,265 | ---- | M] () -- C:\Windows\HomePremium.xml
[2009/06/10 16:30:50 | 003,440,660 | ---- | M] () -- C:\Windows\SysNative\drivers\gm.dls
[2009/06/04 17:20:26 | 000,114,192 | ---- | M] (ATI Research Inc.) -- C:\Windows\SysNative\drivers\AtiHdmi.sys
[2009/05/20 16:03:31 | 004,840,017 | ---- | M] () -- C:\Users\Bibbianna\Documents\Tunebite Install error message.rtf
[2009/03/30 18:32:36 | 000,201,984 | ---- | M] (Panda Security, S.L.) -- C:\Windows\SysWow64\TpUtilWow(44).dll
[2009/03/30 18:32:24 | 000,066,816 | ---- | M] (Panda Security, S.L.) -- C:\Windows\SysWow64\PavIpcWow(43).dll
[2009/03/15 15:52:54 | 000,007,803 | ---- | M] () -- C:\Users\Bibbianna\Documents\Sample Parent letter.rtf
[2009/02/18 01:55:24 | 000,332,288 | ---- | M] () -- C:\Windows\SysNative\ATIODE.exe
[2009/02/03 04:52:08 | 000,051,200 | ---- | M] () -- C:\Windows\SysNative\ATIODCLI.exe
[2009/01/23 11:49:08 | 000,046,112 | ---- | M] (RapidSolution Software AG) -- C:\Windows\SysNative\drivers\tbhsd.sys
[2008/12/11 22:34:58 | 000,003,594 | ---- | M] () -- C:\Users\Bibbianna\Documents\Steve Nash.nrd
[2008/08/07 13:04:48 | 000,233,472 | ---- | M] (Hewlett Packard Corporation) -- C:\Windows\SysWow64\hpzc364w.dll
[2008/06/18 15:59:56 | 000,007,680 | ---- | M] () -- C:\Windows\SysWow64\ff_vfw.dll
[2008/06/17 00:06:53 | 000,726,444 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2008/06/17 00:06:53 | 000,624,162 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2008/06/17 00:06:53 | 000,106,538 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2008/06/17 00:01:23 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2008/06/17 00:01:15 | 3193,585,664 | -HS- | M] () -- C:\hiberfil.sys

========== Files Created - No Company Name ==========

[2013/04/29 13:43:41 | 000,001,031 | ---- | C] () -- C:\Users\Bibbianna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\msconfig.lnk
[2013/04/29 13:43:39 | 000,000,056 | ---- | C] () -- C:\ProgramData\odeq7e.bat
[2013/04/29 13:43:36 | 095,023,320 | ---- | C] () -- C:\ProgramData\qviwi.pad
[2013/04/29 13:43:35 | 095,023,320 | ---- | C] () -- C:\ProgramData\odeq7e.pad
[2012/12/11 19:19:11 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2012/12/11 19:06:15 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2012/11/13 14:58:10 | 000,035,838 | ---- | C] () -- C:\Users\Bibbianna\Documents\cc_20121113_135752.reg
[2012/11/13 13:01:47 | 000,000,116 | ---- | C] () -- C:\Windows\SysNative\drivers\etc\NetLoc.wlt.bck
[2012/11/13 13:01:47 | 000,000,116 | ---- | C] () -- C:\Windows\SysNative\drivers\etc\NetLoc.wlt
[2012/11/13 13:01:46 | 000,000,056 | ---- | C] () -- C:\Windows\SysNative\drivers\etc\WnmFlt.cfg.bck
[2012/11/13 13:01:46 | 000,000,056 | ---- | C] () -- C:\Windows\SysNative\drivers\etc\WnmFlt.cfg
[2012/11/13 13:01:46 | 000,000,056 | ---- | C] () -- C:\Windows\SysNative\drivers\etc\DsaFlt.cfg.bck
[2012/11/13 13:01:46 | 000,000,056 | ---- | C] () -- C:\Windows\SysNative\drivers\etc\DsaFlt.cfg
[2012/11/13 13:01:40 | 000,000,252 | ---- | C] () -- C:\Windows\SysNative\drivers\etc\IdsFlt.cfg.bck
[2012/11/13 13:01:40 | 000,000,252 | ---- | C] () -- C:\Windows\SysNative\drivers\etc\IdsFlt.cfg
[2012/11/13 12:54:16 | 000,000,152 | ---- | C] () -- C:\Windows\SysNative\drivers\etc\NetAdapt.cfg.bck
[2012/11/13 12:54:16 | 000,000,152 | ---- | C] () -- C:\Windows\SysNative\drivers\etc\NetAdapt.cfg
[2012/11/13 12:54:12 | 000,000,064 | ---- | C] () -- C:\Windows\SysNative\drivers\etc\NetAR.wlt.bck
[2012/11/13 12:54:12 | 000,000,064 | ---- | C] () -- C:\Windows\SysNative\drivers\etc\NetAR.wlt
[2012/11/13 12:54:04 | 000,000,068 | ---- | C] () -- C:\Windows\SysNative\drivers\etc\NetFlt.cfg.bck
[2012/11/13 12:54:04 | 000,000,068 | ---- | C] () -- C:\Windows\SysNative\drivers\etc\NetFlt.cfg
[2012/11/13 12:51:27 | 000,015,928 | ---- | C] () -- C:\Windows\SysNative\drivers\COMFiltr.sys
[2012/11/13 12:51:13 | 000,002,103 | ---- | C] () -- C:\Users\Bibbianna\Application Data\Microsoft\Internet Explorer\Quick Launch\Panda Global Protection 2013.lnk
[2012/11/13 12:51:13 | 000,000,274 | ---- | C] () -- C:\Windows\SysNative\PavCPL64.dat
[2012/11/13 12:51:05 | 000,286,872 | ---- | C] () -- C:\Windows\SysNative\drivers\APPFCONT.DAT.bck
[2012/11/13 12:51:05 | 000,286,872 | ---- | C] () -- C:\Windows\SysNative\drivers\APPFCONT.DAT
[2012/11/13 12:51:05 | 000,001,132 | ---- | C] () -- C:\Windows\SysNative\drivers\APPFLTR.CFG.bck
[2012/11/13 12:51:05 | 000,001,132 | ---- | C] () -- C:\Windows\SysNative\drivers\APPFLTR.CFG
[2012/11/13 12:51:04 | 000,303,044 | ---- | C] () -- C:\Windows\SysNative\drivers\etc\DsaFlt.rls.bck
[2012/11/13 12:51:04 | 000,303,044 | ---- | C] () -- C:\Windows\SysNative\drivers\etc\DsaFlt.rls
[2012/11/13 12:50:44 | 000,000,526 | ---- | C] () -- C:\Windows\tasks\Basic clean-up.job
[2012/11/13 12:50:43 | 000,002,494 | ---- | C] () -- C:\Users\Public\Desktop\Install remote access.lnk
[2012/11/13 12:50:43 | 000,002,213 | ---- | C] () -- C:\Users\Public\Desktop\Panda Global Protection 2013.lnk
[2012/11/13 11:04:04 | 000,001,807 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012/11/13 10:56:25 | 000,001,745 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/10/05 14:09:43 | 000,000,830 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/06/03 11:10:42 | 002,536,474 | ---- | C] () -- C:\Users\Bibbianna\Desktop\2010 478.JPG
[2012/06/03 11:10:38 | 002,576,956 | ---- | C] () -- C:\Users\Bibbianna\Desktop\2010 477.JPG
[2012/06/03 11:10:35 | 002,851,174 | ---- | C] () -- C:\Users\Bibbianna\Desktop\2010 476.JPG
[2012/06/03 11:10:32 | 002,487,056 | ---- | C] () -- C:\Users\Bibbianna\Desktop\2010 475.JPG
[2012/06/03 11:09:14 | 002,270,487 | ---- | C] () -- C:\Users\Bibbianna\Desktop\2010 441.JPG
[2012/06/03 11:09:10 | 002,231,629 | ---- | C] () -- C:\Users\Bibbianna\Desktop\2010 439.JPG
[2012/03/20 08:55:19 | 000,000,116 | ---- | C] () -- C:\Users\Bibbianna\Desktop\#.url
[2012/03/12 10:19:58 | 001,777,412 | ---- | C] () -- C:\Users\Bibbianna\Desktop\MedicareRemitEasyPrint32.zip
[2012/01/22 23:46:13 | 000,004,168 | ---- | C] () -- C:\Users\Bibbianna\Documents\cc_20120122_224609.reg
[2012/01/22 21:28:17 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
[2012/01/22 21:28:17 | 000,001,976 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2012/01/14 11:40:50 | 000,324,207 | ---- | C] () -- C:\Users\Bibbianna\Documents\Van Halen Tickets.xps
[2011/11/15 13:07:29 | 000,072,822 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2011/11/15 13:07:28 | 000,072,822 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2011/11/15 12:25:31 | 000,095,324 | ---- | C] () -- C:\Users\Bibbianna\Documents\cc_20111115_112511.reg
[2011/11/15 11:03:17 | 000,000,983 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011/10/08 21:34:42 | 000,086,158 | ---- | C] () -- C:\Users\Bibbianna\Documents\Photo10081835.jpg
[2011/09/20 12:00:57 | 000,072,080 | ---- | C] () -- C:\Users\Bibbianna\g2mdlhlpx.exe
[2011/08/26 23:54:44 | 000,002,245 | ---- | C] () -- C:\Users\Bibbianna\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2011/08/26 23:54:44 | 000,002,145 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011/08/26 23:48:28 | 000,002,515 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2011/07/11 19:01:35 | 000,347,904 | ---- | C] () -- C:\Windows\SysNative\systemsf.ebd
[2011/07/11 18:59:13 | 000,010,429 | ---- | C] () -- C:\Windows\SysNative\ScavengeSpace.xml
[2011/07/11 18:58:55 | 000,105,559 | ---- | C] () -- C:\Windows\SysWow64\RacRules.xml
[2011/07/11 18:58:55 | 000,105,559 | ---- | C] () -- C:\Windows\SysNative\RacRules.xml
[2011/07/11 18:58:41 | 000,001,041 | ---- | C] () -- C:\Windows\SysWow64\tcpbidi.xml
[2011/01/26 22:16:01 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/12/26 03:23:43 | 000,000,898 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010/12/26 03:23:38 | 000,000,894 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010/10/29 20:30:02 | 000,001,267 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk
[2010/10/29 20:29:51 | 000,001,336 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk
[2010/10/29 20:29:27 | 000,001,420 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
[2010/10/13 14:59:40 | 000,002,610 | ---- | C] () -- C:\Users\Bibbianna\Documents\cc_20101013_145938.reg
[2010/10/09 13:17:31 | 000,007,062 | ---- | C] () -- C:\Windows\SysWow64\audiopid.vxd
[2010/10/03 11:18:56 | 000,012,282 | ---- | C] () -- C:\Users\Bibbianna\Documents\FBstatslegal.pdf
[2010/09/30 23:23:25 | 000,026,666 | ---- | C] () -- C:\Users\Bibbianna\Documents\cc_20100930_232321.reg
[2010/09/29 15:33:43 | 000,002,127 | ---- | C] () -- C:\Users\Bibbianna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PMB Media Check Tool.lnk
[2010/09/29 15:33:02 | 000,002,220 | ---- | C] () -- C:\Users\Public\Desktop\PMB.lnk
[2010/09/29 15:33:02 | 000,002,134 | ---- | C] () -- C:\Users\Public\Desktop\PMB Launcher.lnk
[2010/09/29 15:33:02 | 000,002,075 | ---- | C] () -- C:\Users\Public\Desktop\PMB Guide.lnk
[2010/09/29 10:20:57 | 003,800,968 | ---- | C] () -- C:\Users\Bibbianna\Documents\DCRSR40-60-80_handbook_EN.pdf
[2010/08/17 11:22:30 | 000,003,636 | ---- | C] () -- C:\Users\Bibbianna\Documents\cc_20100817_112226.reg
[2010/08/10 14:50:09 | 000,000,411 | ---- | C] () -- C:\Windows\hpwmdl14.dat.temp
[2010/08/10 14:33:30 | 000,178,910 | ---- | C] () -- C:\Windows\hpwins14.dat
[2010/08/10 14:33:30 | 000,000,411 | ---- | C] () -- C:\Windows\hpwmdl14.dat
[2010/06/21 20:02:09 | 000,007,624 | ---- | C] () -- C:\Users\Bibbianna\AppData\Local\Resmon.ResmonCfg
[2010/06/09 11:16:04 | 000,005,186 | ---- | C] () -- C:\Users\Bibbianna\Documents\cc_20100609_111600.reg
[2010/05/01 12:29:56 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2010/04/25 16:11:25 | 000,002,821 | ---- | C] () -- C:\Users\Bibbianna\Desktop\Microsoft Office Word 2007.lnk
[2010/04/10 11:43:32 | 000,000,185 | ---- | C] () -- C:\Users\Bibbianna\Desktop\Calvert Lightning.url
[2010/03/31 15:47:48 | 000,033,272 | ---- | C] () -- C:\Windows\SysNative\emptyregdb.dat
[2010/02/17 23:10:20 | 000,001,929 | ---- | C] () -- C:\Users\Bibbianna\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010/01/21 20:16:58 | 270,746,440 | ---- | C] () -- C:\Users\Bibbianna\Desktop\Live_In_Washington_28_07_2009.zip
[2010/01/18 09:26:03 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2010/01/09 15:41:24 | 000,003,337 | ---- | C] () -- C:\Users\Bibbianna\Desktop\Napster Download Manager.lnk
[2010/01/09 13:29:50 | 000,001,065 | ---- | C] () -- C:\Users\Public\Desktop\Tunebite.lnk
[2010/01/06 11:01:14 | 000,163,840 | ---- | C] () -- C:\Users\Bibbianna\AppData\Roaming\DataSafeDotNet.exe
[2010/01/03 05:11:29 | 000,006,656 | ---- | C] () -- C:\Users\Bibbianna\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/01/02 01:33:31 | 000,001,040 | -H-- | C] () -- C:\IPH.PH
[2009/11/27 10:57:59 | 000,000,162 | -H-- | C] () -- C:\Users\Bibbianna\Documents\~$E Receipt.rtf
[2009/11/26 13:06:23 | 000,001,887 | ---- | C] () -- C:\Users\Public\Desktop\Napster.lnk
[2009/11/21 22:02:55 | 000,000,162 | -H-- | C] () -- C:\Users\Public\Documents\~$sketball Drills.rtf
[2009/11/21 20:02:12 | 008,862,063 | ---- | C] () -- C:\Users\Bibbianna\Documents\ICE Receipt.rtf
[2009/11/18 22:53:33 | 000,036,798 | ---- | C] () -- C:\Users\Public\Documents\Basketball Drills.rtf
[2009/11/18 16:48:14 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2009/11/18 16:22:47 | 000,062,093 | ---- | C] () -- C:\Users\Bibbianna\Desktop\HP Installation Error - XP.html
[2009/11/18 16:21:25 | 000,012,998 | R--- | C] () -- C:\Windows\hpwscr14.dat
[2009/11/08 14:16:29 | 000,008,627 | ---- | C] () -- C:\Windows\SysWow64\PAV_FOG.OPC
[2009/11/06 16:00:17 | 000,001,990 | -H-- | C] () -- C:\Users\Bibbianna\Documents\Default.rdp
[2009/11/04 23:06:51 | 000,103,720 | ---- | C] () -- C:\Users\Bibbianna\GoToAssistDownloadHelper (1).exe
[2009/11/04 19:26:26 | 000,061,224 | ---- | C] () -- C:\Users\Bibbianna\GoToAssistDownloadHelper.exe
[2009/11/04 18:48:57 | 3193,585,664 | -HS- | C] () -- C:\hiberfil.sys
[2009/11/04 18:10:14 | 000,001,403 | ---- | C] () -- C:\Users\Bibbianna\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2009/11/04 18:01:40 | 000,002,027 | ---- | C] () -- C:\Users\Bibbianna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
[2009/11/04 18:01:28 | 000,002,154 | ---- | C] () -- C:\Users\Bibbianna\AppData\Roaming\install.dat
[2009/11/04 18:01:17 | 000,002,406 | ---- | C] () -- C:\Users\Bibbianna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[2009/11/04 18:01:11 | 000,002,410 | ---- | C] () -- C:\Users\Bibbianna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2009/11/04 17:58:31 | 000,001,979 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Help Documentation.lnk
[2009/11/04 17:58:19 | 000,000,290 | ---- | C] () -- C:\Users\Bibbianna\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2009/11/04 17:58:19 | 000,000,272 | ---- | C] () -- C:\Users\Bibbianna\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2009/10/29 23:29:03 | 000,003,419 | RH-- | C] () -- C:\dell.sdr
[2009/10/29 23:23:24 | 000,332,288 | ---- | C] () -- C:\Windows\SysNative\ATIODE.exe
[2009/10/29 23:23:24 | 000,219,120 | ---- | C] () -- C:\Windows\SysWow64\atiumdva.cap
[2009/10/29 23:23:24 | 000,219,120 | ---- | C] () -- C:\Windows\SysNative\atiumd6a.cap
[2009/10/29 23:23:24 | 000,051,200 | ---- | C] () -- C:\Windows\SysNative\ATIODCLI.exe
[2009/10/29 23:23:24 | 000,018,333 | ---- | C] () -- C:\Windows\atiogl.xml
[2009/10/29 23:23:23 | 000,197,654 | ---- | C] () -- C:\Windows\SysNative\atiicdxx.dat
[2009/10/29 23:22:52 | 000,003,419 | ---- | C] () -- C:\Windows\SysWow64\drivers\1028_Dell_STU_1555.mrk
[2009/10/29 23:22:52 | 000,003,419 | ---- | C] () -- C:\Windows\SysNative\drivers\1028_Dell_STU_1555.mrk
[2009/10/29 22:40:43 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2009/10/29 22:40:39 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2009/10/29 22:39:20 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf
[2009/10/29 22:39:08 | 000,899,942 | ---- | C] () -- C:\Windows\SysNative\oem4.inf
[2009/10/29 22:39:00 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2009/10/29 21:22:42 | 000,787,590 | ---- | C] () -- C:\Windows\SysNative\chklogo6.wtl
[2009/10/29 21:11:16 | 000,000,075 | RHS- | C] () -- C:\Windows\CT4CET.bin
[2009/10/29 21:10:33 | 000,057,656 | ---- | C] () -- C:\Windows\SysNative\drivers\FilterPC.bmp
[2009/10/29 21:10:33 | 000,024,995 | ---- | C] () -- C:\Windows\SysNative\drivers\FilterPC.jpg
[2009/10/29 21:03:22 | 000,002,084 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerDVD DX.lnk
[2009/10/29 21:03:06 | 000,002,235 | ---- | C] () -- C:\Users\Public\Desktop\Microsoft Office 60 Day Trial - Online.lnk
[2009/10/29 20:53:15 | 000,002,557 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office PowerPoint Viewer 2007.lnk
[2009/10/29 20:52:48 | 000,001,109 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works Task Launcher.lnk
[2009/10/29 20:47:25 | 000,058,368 | ---- | C] () -- C:\Windows\SysNative\bcmwlrmt.dll
[2009/10/29 20:47:25 | 000,006,656 | ---- | C] () -- C:\Windows\SysNative\bcmwlrc.dll
[2009/10/29 20:47:25 | 000,000,459 | ---- | C] () -- C:\Windows\SysWow64\vcredist_x64.bat
[2009/10/29 20:47:24 | 000,000,457 | ---- | C] () -- C:\Windows\SysNative\vcredist_x64.bat
[2009/07/18 15:59:30 | 000,001,165 | ---- | C] () -- C:\Users\Public\Desktop\Tunebite (1).lnk
[2009/07/14 03:47:54 | 000,048,265 | ---- | C] () -- C:\Windows\HomePremium.xml
[2009/07/14 01:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 01:28:38 | 000,048,201 | ---- | C] () -- C:\Windows\Starter.xml
[2009/07/14 01:13:15 | 000,726,444 | ---- | C] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2009/07/14 01:01:34 | 000,039,252 | ---- | C] () -- C:\Windows\SysWow64\license.rtf
[2009/07/14 01:01:34 | 000,039,252 | ---- | C] () -- C:\Windows\SysNative\license.rtf
[2009/07/14 00:57:09 | 000,001,352 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
[2009/07/14 00:57:09 | 000,001,244 | ---- | C] () -- C:\Windows\SysNative\migwiz.lnk
[2009/07/14 00:57:08 | 000,001,330 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
[2009/07/14 00:57:08 | 000,001,246 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
[2009/07/14 00:57:06 | 000,001,547 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
[2009/07/14 00:55:01 | 000,000,535 | ---- | C] () -- C:\Windows\SysWow64\mapisvc.inf
[2009/07/14 00:54:59 | 000,001,210 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
[2009/07/14 00:45:49 | 000,014,240 | -H-- | C] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2009/07/14 00:45:49 | 000,014,240 | -H-- | C] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2009/07/14 00:45:37 | 000,021,504 | ---- | C] () -- C:\Windows\SysNative\umstartup.etl
[2009/07/14 00:45:37 | 000,009,216 | ---- | C] () -- C:\Windows\SysNative\umstartup000.etl
[2009/07/14 00:45:34 | 000,343,552 | ---- | C] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2009/07/13 22:36:59 | 000,624,162 | ---- | C] () -- C:\Windows\SysNative\perfh009.dat
[2009/07/13 22:36:59 | 000,291,294 | ---- | C] () -- C:\Windows\SysNative\perfi009.dat
[2009/07/13 22:36:59 | 000,106,538 | ---- | C] () -- C:\Windows\SysNative\perfc009.dat
[2009/07/13 22:36:59 | 000,031,548 | ---- | C] () -- C:\Windows\SysNative\perfd009.dat
[2009/07/13 22:35:51 | 000,001,486 | ---- | C] () -- C:\Windows\SysNative\noise.kor
[2009/07/13 22:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009/07/13 22:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysNative\NOISE.DAT
[2009/07/13 22:35:51 | 000,000,697 | ---- | C] () -- C:\Windows\SysWow64\NOISE.THA
[2009/07/13 22:35:51 | 000,000,697 | ---- | C] () -- C:\Windows\SysNative\NOISE.THA
[2009/07/13 22:35:50 | 011,967,524 | ---- | C] () -- C:\Windows\SysWow64\korwbrkr.lex
[2009/07/13 22:35:50 | 011,967,524 | ---- | C] () -- C:\Windows\SysNative\korwbrkr.lex
[2009/07/13 22:35:50 | 000,001,696 | ---- | C] () -- C:\Windows\SysWow64\NOISE.CHT
[2009/07/13 22:35:50 | 000,001,696 | ---- | C] () -- C:\Windows\SysNative\NOISE.CHT
[2009/07/13 22:35:50 | 000,001,696 | ---- | C] () -- C:\Windows\SysNative\NOISE.CHS
[2009/07/13 22:35:50 | 000,001,486 | ---- | C] () -- C:\Windows\SysWow64\noise.kor
[2009/07/13 22:35:49 | 000,001,696 | ---- | C] () -- C:\Windows\SysWow64\NOISE.CHS
[2009/07/13 22:35:48 | 000,003,683 | ---- | C] () -- C:\Windows\SysNative\drivers\etc\lmhosts.sam
[2009/07/13 22:34:48 | 000,017,463 | ---- | C] () -- C:\Windows\SysNative\drivers\etc\services
[2009/07/13 22:34:48 | 000,001,358 | ---- | C] () -- C:\Windows\SysNative\drivers\etc\protocol
[2009/07/13 22:34:48 | 000,000,824 | ---- | C] () -- C:\Windows\SysNative\drivers\etc\hosts
[2009/07/13 22:34:48 | 000,000,407 | ---- | C] () -- C:\Windows\SysNative\drivers\etc\networks
[2009/07/13 22:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009/07/13 22:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysNative\dssec.dat
[2009/07/13 22:34:28 | 000,008,798 | ---- | C] () -- C:\Windows\SysWow64\icrav03.rat
[2009/07/13 22:34:28 | 000,008,798 | ---- | C] () -- C:\Windows\SysNative\icrav03.rat
[2009/07/13 22:34:28 | 000,001,988 | ---- | C] () -- C:\Windows\SysWow64\ticrf.rat
[2009/07/13 22:34:28 | 000,001,988 | ---- | C] () -- C:\Windows\SysNative\ticrf.rat
[2009/07/13 20:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/13 20:07:04 | 000,093,696 | ---- | C] () -- C:\Windows\SysNative\BthpanContextHandler.dll
[2009/07/13 19:57:57 | 000,069,120 | ---- | C] () -- C:\Windows\SysNative\BWContextHandler.dll
[2009/07/13 19:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 19:16:33 | 000,003,577 | ---- | C] () -- C:\Windows\SysNative\sysprtj.sep
[2009/07/13 19:16:33 | 000,000,114 | ---- | C] () -- C:\Windows\SysNative\pcl.sep
[2009/07/13 19:16:33 | 000,000,051 | ---- | C] () -- C:\Windows\SysNative\pscript.sep
[2009/07/13 19:14:22 | 000,000,263 | ---- | C] () -- C:\Windows\SysNative\odbcconf.rsp
[2009/07/13 19:08:01 | 000,003,577 | ---- | C] () -- C:\Windows\SysWow64\sysprtj.sep
[2009/07/13 19:08:01 | 000,000,114 | ---- | C] () -- C:\Windows\SysWow64\pcl.sep
[2009/07/13 19:08:01 | 000,000,051 | ---- | C] () -- C:\Windows\SysWow64\pscript.sep
[2009/07/13 19:06:14 | 000,004,453 | ---- | C] () -- C:\Windows\SysWow64\odbcconf.rsp
[2009/07/13 18:53:10 | 000,201,034 | ---- | C] () -- C:\Windows\SysNative\winrm.vbs
[2009/07/13 18:53:10 | 000,004,675 | ---- | C] () -- C:\Windows\SysNative\wsmanconfig_schema.xml
[2009/07/13 18:53:10 | 000,002,426 | ---- | C] () -- C:\Windows\SysNative\WsmTxt.xsl
[2009/07/13 18:53:10 | 000,001,559 | ---- | C] () -- C:\Windows\SysNative\WsmPty.xsl
[2009/07/13 18:41:10 | 000,002,233 | ---- | C] () -- C:\Windows\SysWow64\12520850.cpx
[2009/07/13 18:12:16 | 000,063,411 | ---- | C] () -- C:\Windows\SysWow64\NAPCLCFG.MSC
[2009/07/13 18:11:17 | 000,115,091 | ---- | C] () -- C:\Windows\SysWow64\WF.msc
[2009/07/13 18:06:29 | 000,201,034 | ---- | C] () -- C:\Windows\SysWow64\winrm.vbs
[2009/07/13 18:06:29 | 000,004,675 | ---- | C] () -- C:\Windows\SysWow64\wsmanconfig_schema.xml
[2009/07/13 18:06:29 | 000,002,426 | ---- | C] () -- C:\Windows\SysWow64\WsmTxt.xsl
[2009/07/13 18:06:29 | 000,001,559 | ---- | C] () -- C:\Windows\SysWow64\WsmPty.xsl
[2009/07/13 18:02:47 | 000,063,411 | ---- | C] () -- C:\Windows\SysNative\NAPCLCFG.MSC
[2009/07/13 18:01:54 | 000,115,091 | ---- | C] () -- C:\Windows\SysNative\WF.msc
[2009/07/13 18:01:40 | 000,124,118 | ---- | C] () -- C:\Windows\SysWow64\comexp.msc
[2009/07/13 18:01:19 | 000,021,812 | ---- | C] () -- C:\Windows\SysNative\NetTrace.PLA.Diagnostics.xml
[2009/07/13 17:55:47 | 000,144,998 | ---- | C] () -- C:\Windows\SysWow64\lusrmgr.msc
[2009/07/13 17:54:15 | 000,000,614 | ---- | C] () -- C:\Windows\SysNative\WdsUnattendTemplate.xml
[2009/07/13 17:52:42 | 000,124,118 | ---- | C] () -- C:\Windows\SysNative\comexp.msc
[2009/07/13 17:47:53 | 000,063,070 | ---- | C] () -- C:\Windows\SysWow64\certmgr.msc
[2009/07/13 17:46:53 | 000,144,998 | ---- | C] () -- C:\Windows\SysNative\lusrmgr.msc
[2009/07/13 17:46:10 | 000,145,127 | ---- | C] () -- C:\Windows\SysWow64\eventvwr.msc
[2009/07/13 17:46:10 | 000,017,935 | ---- | C] () -- C:\Windows\SysWow64\EventViewer_EventDetails.xsl
[2009/07/13 17:46:09 | 000,145,059 | ---- | C] () -- C:\Windows\SysWow64\taskschd.msc
[2009/07/13 17:44:22 | 000,144,909 | ---- | C] () -- C:\Windows\SysWow64\fsmgmt.msc
[2009/07/13 17:44:22 | 000,113,256 | ---- | C] () -- C:\Windows\SysWow64\compmgmt.msc
[2009/07/13 17:44:22 | 000,092,745 | ---- | C] () -- C:\Windows\SysWow64\services.msc
[2009/07/13 17:44:22 | 000,041,587 | ---- | C] () -- C:\Windows\SysWow64\azman.msc
[2009/07/13 17:38:38 | 000,024,114 | ---- | C] () -- C:\Windows\SysWow64\lcptr.tbl
[2009/07/13 17:38:17 | 000,063,070 | ---- | C] () -- C:\Windows\SysNative\certmgr.msc
[2009/07/13 17:36:47 | 000,145,127 | ---- | C] () -- C:\Windows\SysNative\eventvwr.msc
[2009/07/13 17:36:47 | 000,145,059 | ---- | C] () -- C:\Windows\SysNative\taskschd.msc
[2009/07/13 17:36:47 | 000,017,935 | ---- | C] () -- C:\Windows\SysNative\EventViewer_EventDetails.xsl
[2009/07/13 17:36:38 | 000,144,673 | ---- | C] () -- C:\Windows\SysNative\WmiMgmt.msc
[2009/07/13 17:34:42 | 000,144,909 | ---- | C] () -- C:\Windows\SysNative\fsmgmt.msc
[2009/07/13 17:34:42 | 000,092,745 | ---- | C] () -- C:\Windows\SysNative\services.msc
[2009/07/13 17:34:41 | 000,113,256 | ---- | C] () -- C:\Windows\SysNative\compmgmt.msc
[2009/07/13 17:34:41 | 000,041,587 | ---- | C] () -- C:\Windows\SysNative\azman.msc
[2009/07/13 17:34:35 | 000,047,679 | ---- | C] () -- C:\Windows\SysWow64\diskmgmt.msc
[2009/07/13 17:33:45 | 000,000,714 | ---- | C] () -- C:\Windows\SysWow64\RestartManager.mof
[2009/07/13 17:33:45 | 000,000,176 | ---- | C] () -- C:\Windows\SysWow64\RestartManagerUninstall.mof
[2009/07/13 17:28:41 | 000,145,519 | ---- | C] () -- C:\Windows\SysWow64\perfmon.msc
[2009/07/13 17:25:31 | 000,024,114 | ---- | C] () -- C:\Windows\SysNative\lcptr.tbl
[2009/07/13 17:23:44 | 000,145,640 | ---- | C] () -- C:\Windows\SysWow64\devmgmt.msc
[2009/07/13 17:20:44 | 000,144,862 | ---- | C] () -- C:\Windows\SysWow64\tpm.msc
[2009/07/13 17:19:46 | 000,047,679 | ---- | C] () -- C:\Windows\SysNative\diskmgmt.msc
[2009/07/13 17:18:33 | 000,000,714 | ---- | C] () -- C:\Windows\SysNative\RestartManager.mof
[2009/07/13 17:18:33 | 000,000,176 | ---- | C] () -- C:\Windows\SysNative\RestartManagerUninstall.mof
[2009/07/13 17:14:23 | 000,145,519 | ---- | C] () -- C:\Windows\SysNative\perfmon.msc
[2009/07/13 17:09:54 | 000,145,640 | ---- | C] () -- C:\Windows\SysNative\devmgmt.msc
[2009/07/13 17:05:46 | 000,144,862 | ---- | C] () -- C:\Windows\SysNative\tpm.msc
[2009/07/13 17:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/07/13 16:24:21 | 000,000,843 | ---- | C] () -- C:\Windows\SysNative\onlinesetup.cmd
[2009/07/13 16:17:48 | 000,000,874 | ---- | C] () -- C:\Windows\SysNative\manage-bde.wsf
[2009/06/10 17:44:34 | 003,170,304 | ---- | C] () -- C:\Windows\SysWow64\boot.sdi
[2009/06/10 17:42:07 | 000,004,041 | ---- | C] () -- C:\Windows\SysWow64\xwizard.dtd
[2009/06/10 17:41:29 | 000,211,938 | ---- | C] () -- C:\Windows\SysWow64\lcphrase.tbl
[2009/06/10 17:40:47 | 000,000,035 | ---- | C] () -- C:\Windows\SysWow64\winrm.cmd
[2009/06/10 17:39:54 | 000,003,214 | ---- | C] () -- C:\Windows\SysWow64\sysprint.sep
[2009/06/10 17:39:18 | 000,001,820 | ---- | C] () -- C:\Windows\SysWow64\rasctrnm.h
[2009/06/10 17:38:48 | 000,113,629 | ---- | C] () -- C:\Windows\SysWow64\slmgr.vbs
[2009/06/10 17:32:07 | 000,002,060 | ---- | C] () -- C:\Windows\SysWow64\noise.jpn
[2009/06/10 17:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2009/06/10 17:18:29 | 000,000,565 | ---- | C] () -- C:\Windows\SysWow64\NdfEventView.xml
[2009/06/10 17:16:56 | 000,002,151 | ---- | C] () -- C:\Windows\SysWow64\12520437.cpx
[2009/06/10 17:16:38 | 000,002,727 | ---- | C] () -- C:\Windows\SysWow64\locationnotificationsview.xml
[2009/06/10 17:15:06 | 000,076,060 | ---- | C] () -- C:\Windows\SysWow64\xpsrchvw.xml
[2009/06/10 17:14:28 | 003,440,660 | ---- | C] () -- C:\Windows\SysWow64\drivers\gm.dls
[2009/06/10 17:08:17 | 000,008,280 | ---- | C] () -- C:\Windows\SysNative\spcinstrumentation.man
[2009/06/10 17:06:00 | 003,170,304 | ---- | C] () -- C:\Windows\SysNative\boot.sdi
[2009/06/10 17:03:31 | 000,004,041 | ---- | C] () -- C:\Windows\SysNative\xwizard.dtd
[2009/06/10 17:01:55 | 000,211,938 | ---- | C] () -- C:\Windows\SysNative\lcphrase.tbl
[2009/06/10 17:01:25 | 000,060,224 | ---- | C] () -- C:\Windows\SysNative\tcpmon.ini
[2009/06/10 17:01:24 | 000,001,041 | ---- | C] () -- C:\Windows\SysNative\tcpbidi.xml
[2009/06/10 17:01:15 | 000,003,214 | ---- | C] () -- C:\Windows\SysNative\sysprint.sep
[2009/06/10 17:00:54 | 000,000,035 | ---- | C] () -- C:\Windows\SysNative\winrm.cmd
[2009/06/10 16:59:55 | 000,001,820 | ---- | C] () -- C:\Windows\SysNative\rasctrnm.h
[2009/06/10 16:59:12 | 000,113,629 | ---- | C] () -- C:\Windows\SysNative\slmgr.vbs
[2009/06/10 16:52:44 | 000,316,640 | ---- | C] () -- C:\Windows\WMSysPr9.prx
[2009/06/10 16:49:51 | 000,002,060 | ---- | C] () -- C:\Windows\SysNative\noise.jpn
[2009/06/10 16:44:02 | 000,673,088 | ---- | C] () -- C:\Windows\SysNative\mlang.dat
[2009/06/10 16:36:24 | 000,040,552 | ---- | C] () -- C:\Windows\SysNative\gatherNetworkInfo.vbs
[2009/06/10 16:35:23 | 000,000,565 | ---- | C] () -- C:\Windows\SysNative\NdfEventView.xml
[2009/06/10 16:31:50 | 000,002,727 | ---- | C] () -- C:\Windows\SysNative\locationnotificationsview.xml
[2009/06/10 16:31:09 | 000,076,060 | ---- | C] () -- C:\Windows\SysNative\xpsrchvw.xml
[2009/06/10 16:30:50 | 003,440,660 | ---- | C] () -- C:\Windows\SysNative\drivers\gm.dls
[2009/05/20 16:03:31 | 004,840,017 | ---- | C] () -- C:\Users\Bibbianna\Documents\Tunebite Install error message.rtf
[2009/03/15 15:52:51 | 000,007,803 | ---- | C] () -- C:\Users\Bibbianna\Documents\Sample Parent letter.rtf
[2008/12/11 22:34:58 | 000,003,594 | ---- | C] () -- C:\Users\Bibbianna\Documents\Steve Nash.nrd
[2008/06/18 15:59:56 | 000,007,680 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2008/06/14 22:40:06 | 000,000,372 | ---- | C] () -- C:\Users\Bibbianna\Documents\spider.sav
[2007/04/08 14:12:23 | 000,000,159 | ---- | C] () -- C:\Users\Bibbianna\default.pls

========== ZeroAccess Check ==========

[2009/07/14 00:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\WINDOWS\SysNative\shell32.dll -- [2012/06/09 01:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 00:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\WINDOWS\SysNative\wbem\fastprox.dll -- [2009/07/13 21:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 08:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\WINDOWS\SysNative\wbem\wbemess.dll -- [2009/07/13 21:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2010/01/02 01:35:20 | 000,000,000 | ---D | M] -- C:\Users\Bibbianna\AppData\Roaming\acccore
[2012/11/13 12:49:40 | 000,000,000 | ---D | M] -- C:\Users\Bibbianna\AppData\Roaming\Panda Security
[2008/06/21 03:28:50 | 000,000,000 | ---D | M] -- C:\Users\Bibbianna\AppData\Roaming\webex
[2011/01/06 10:43:04 | 000,000,000 | ---D | M] -- C:\Users\Bibbianna\AppData\Roaming\Windows Live Writer

========== Purity Check ==========



< End of report >
  • 0

Advertisements


#2
maliprog

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
Hello boomdog1983 and welcome to my office here at G2G! :)

My nick is maliprog and I'll be your technical support on this issue. Before we start please read my notes carefully:

NOTES:
  • Malware removal is NOT instantaneous, most infections require several courses of action to completely eradicate.
  • Absence of symptoms does not always mean the computer is clean
  • Kindly follow my instructions in the order posted. Order is crucial in cleaning process.
  • Please DO NOT run any scans or fix on your own without my direction.
  • Please read all of my response through at least once before attempting to follow the procedures described.
  • If there's anything you don't understand or isn't totally clear, please come back to me for clarification.
  • Please do not attach any log files to your replies unless I specifically ask you. Instead please copy and paste it to include the log in your reply.
  • You must reply within 3 days or your topic will be closed

Step 1

NOTE: This fix is custom made for this system only and for current system state! Don't try to run it on another system!

Please close all running programs and Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    :OTL
    O4 - HKCU..\Run: [ctfmon.exe] C:\ProgramData\e7qedo.dat (Корпорация Майкрософт2)
    [2013/04/29 13:43:36 | 000,127,488 | ---- | C] (Корпорация Майкрософт2) -- C:\ProgramData\iwivq.dat
    [2013/04/29 13:43:35 | 000,127,488 | ---- | C] (Корпорация Майкрософт2) -- C:\ProgramData\e7qedo.dat
    [2013/04/29 13:43:35 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\ProgramData\rundll32.exe
    [2012/11/13 10:54:46 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
    [2012/11/13 10:48:19 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
    [2012/11/13 10:48:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bonjour
    [2013/04/29 13:43:40 | 095,023,320 | ---- | M] () -- C:\ProgramData\qviwi.pad
    [2013/04/29 13:43:39 | 000,000,056 | ---- | M] () -- C:\ProgramData\odeq7e.bat
    [2013/04/29 13:43:36 | 000,127,488 | ---- | M] (Корпорация Майкрософт2) -- C:\ProgramData\iwivq.dat
    [2013/04/29 13:43:35 | 000,127,488 | ---- | M] (Корпорация Майкрософт2) -- C:\ProgramData\e7qedo.dat
    [2013/04/29 13:43:39 | 000,000,056 | ---- | C] () -- C:\ProgramData\odeq7e.bat
    [2013/04/29 13:43:36 | 095,023,320 | ---- | C] () -- C:\ProgramData\qviwi.pad
    [2013/04/29 13:43:35 | 095,023,320 | ---- | C] () -- C:\ProgramData\odeq7e.pad


    :Files
    ipconfig /flushdns /c

    :Commands
    [purity]
    [Reboot]

  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC when it is done
  • Post the fix log it produces in your next reply or you can find it in C:\_OTL\MovedFiles



Step 2

Please download Malwarebytes' Anti-Malware

Double Click mbam-setup.exe to install the application.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish, so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.
Extra Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediately.

Step 3

Please don't forget to include these items in your reply:

  • OTL fix log
  • Malwarebytes log
It would be helpful if you could post each log in separate post using "Add Reply" button
  • 0

#3
boomdog1983

boomdog1983

    Member

  • Topic Starter
  • Member
  • PipPip
  • 18 posts
After some thought I determined that since the laptop is used not so much these days, just idle browsing/accessing e-mail vice being used for my wife's work I went back and used an earlier restore point on the laptop. Followed that up with updating the Panda Global Protection 2013 virus signatures file, downloaded all the Microsoft updates, ran an updated version of Malwarebyte's Anti-Malware, and CCleaner and everything is working fine again. Thanks for the expedient response, kudos to G2GO!
  • 0

#4
maliprog

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
Hi boomdog1983,

Would you like me to check if infection is still there? I don't believe that system restore can remove this infection.
  • 0

#5
maliprog

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. :)

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP