Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Best version of firefox to use for old pc [Solved]

Started by evolutionpill , Mar 24 2016 04:10 AM

This topic is locked

#61
evolutionpill

Posted 05 April 2016 - 10:30 AM

Member

Topic Starter
Member
127 posts

Thanks for that, just over the last few days i now notice anything out of the ordinary.

When rebooting ( as i use my ipad to reply ur posts- easier) my pc went blue screen within 2 minutes of starting up the home page with the following. c000021a fatal system error, windows subsystem procss terminated unexpectedly with a status of 0xc0000005 (0x75e9ad15 0x03cef240)
I will degrag now.

I ran speedfan

http://www.hddstatus...cation=B135C563

#62
RKinner

Posted 05 April 2016 - 11:18 AM

Malware Expert

Expert
24,624 posts

Download BlueScreenView

http://www.nirsoft.net/utils/blue_screen_view.html

Double click on BlueScreenView.exe file to run the program.

When scanning is done, go Edit, Select All.

Go File, Save Selected Items, and save the report as BSOD.txt.

Open BSOD.txt in Notepad, copy all content, and paste it into your next reply.

#63
evolutionpill

Posted 05 April 2016 - 11:41 AM

Member

Topic Starter
Member
127 posts

Hi, the site won't open...even with VPN Not Found

The requested URL /utils/blue_screen_view.htmlÂ was not found on this server.

Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.

#64
evolutionpill

Posted 05 April 2016 - 11:47 AM

Member

Topic Starter
Member
127 posts

Defrag log

Volume (C:)
Volume size = 19.53 GB
Cluster size = 4 KB
Used space = 11.34 GB
Free space = 8.19 GB
Percent free space = 41 %

Volume fragmentation
Total fragmentation = 9 %
File fragmentation = 19 %
Free space fragmentation = 0 %

File fragmentation
Total files = 39,702
Average file size = 339 KB
Total fragmented files = 5
Total excess fragments = 3,019
Average fragments per file = 1.07

Pagefile fragmentation
Pagefile size = 744 MB
Total fragments = 3

Folder fragmentation
Total folders = 3,977
Fragmented folders = 1
Excess folder fragments = 0

Master File Table (MFT) fragmentation
Total MFT size = 81 MB
MFT record count = 43,839
Percent MFT in use = 52 %
Total MFT fragments = 3

--------------------------------------------------------------------------------
Fragments File Size Files that cannot be defragmented
2,504 316 MB \Documents and Settings\sf\My Documents\downloads\windowsxp-kb936929-sp3-x86-enu_c81472f7eeea2eca421e116cd4c03e2300ebfde4.exe

#65
evolutionpill

Posted 05 April 2016 - 11:57 AM

Member

Topic Starter
Member
127 posts

Figured out, here is blue screen report

==================================================
Dump File : Mini040116-01.dmp
Crash Time : 4/1/2016 10:46:27 AM
Bug Check String : SYSTEM_THREAD_EXCEPTION_NOT_HANDLED
Bug Check Code : 0x1000007e
Parameter 1 : 0x80000003
Parameter 2 : 0x80ac0edd
Parameter 3 : 0xf7b467ac
Parameter 4 : 0xf7b464a8
Caused By Driver : ntoskrnl.exe
Caused By Address : ntoskrnl.exe+beedd
File Description : NT Kernel & System
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Processor : 32-bit
Crash Address : ntoskrnl.exe+beedd
Stack Address 1 : ntoskrnl.exe+bef53
Stack Address 2 : ntoskrnl.exe+b7142
Stack Address 3 : ntoskrnl.exe+b8bb2
Computer Name :
Full Path : C:\WINDOWS\Minidump\Mini040116-01.dmp
Processors Count : 1
Major Version : 12
Minor Version : 2600
Dump File Size : 90,112
Dump File Time : 4/1/2016 11:32:18 AM
==================================================

==================================================
Dump File : Mini033116-01.dmp
Crash Time : 3/31/2016 10:26:05 PM
Bug Check String : SYSTEM_THREAD_EXCEPTION_NOT_HANDLED
Bug Check Code : 0x1000007e
Parameter 1 : 0x80000003
Parameter 2 : 0x80ac0edd
Parameter 3 : 0xf7b527ac
Parameter 4 : 0xf7b524a8
Caused By Driver : ntoskrnl.exe
Caused By Address : ntoskrnl.exe+beedd
File Description : NT Kernel & System
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Processor : 32-bit
Crash Address : ntoskrnl.exe+beedd
Stack Address 1 : ntoskrnl.exe+bef53
Stack Address 2 : ntoskrnl.exe+b7142
Stack Address 3 : ntoskrnl.exe+b8bb2
Computer Name :
Full Path : C:\WINDOWS\Minidump\Mini033116-01.dmp
Processors Count : 1
Major Version : 12
Minor Version : 2600
Dump File Size : 90,112
Dump File Time : 3/31/2016 10:26:50 PM
==================================================

==================================================
Dump File : Mini032916-02.dmp
Crash Time : 3/29/2016 1:08:58 AM
Bug Check String : SYSTEM_THREAD_EXCEPTION_NOT_HANDLED
Bug Check Code : 0x1000007e
Parameter 1 : 0x80000003
Parameter 2 : 0x80ac0edd
Parameter 3 : 0xf7b567ac
Parameter 4 : 0xf7b564a8
Caused By Driver : ntoskrnl.exe
Caused By Address : ntoskrnl.exe+beedd
File Description : NT Kernel & System
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Processor : 32-bit
Crash Address : ntoskrnl.exe+beedd
Stack Address 1 : ntoskrnl.exe+bef53
Stack Address 2 : ntoskrnl.exe+b7142
Stack Address 3 : ntoskrnl.exe+b8bb2
Computer Name :
Full Path : C:\WINDOWS\Minidump\Mini032916-02.dmp
Processors Count : 1
Major Version : 12
Minor Version : 2600
Dump File Size : 90,112
Dump File Time : 3/29/2016 1:10:06 AM
==================================================

==================================================
Dump File : Mini032916-01.dmp
Crash Time : 3/28/2016 11:13:28 PM
Bug Check String : SYSTEM_THREAD_EXCEPTION_NOT_HANDLED
Bug Check Code : 0x1000007e
Parameter 1 : 0x80000003
Parameter 2 : 0x80ac0edd
Parameter 3 : 0xf7b527ac
Parameter 4 : 0xf7b524a8
Caused By Driver : ntoskrnl.exe
Caused By Address : ntoskrnl.exe+beedd
File Description : NT Kernel & System
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Processor : 32-bit
Crash Address : ntoskrnl.exe+beedd
Stack Address 1 : ntoskrnl.exe+bef53
Stack Address 2 : ntoskrnl.exe+b7142
Stack Address 3 : ntoskrnl.exe+b8bb2
Computer Name :
Full Path : C:\WINDOWS\Minidump\Mini032916-01.dmp
Processors Count : 1
Major Version : 12
Minor Version : 2600
Dump File Size : 90,112
Dump File Time : 3/29/2016 1:03:58 AM
==================================================

==================================================
Dump File : Mini032816-03.dmp
Crash Time : 3/28/2016 10:38:46 PM
Bug Check String : SYSTEM_THREAD_EXCEPTION_NOT_HANDLED
Bug Check Code : 0x1000007e
Parameter 1 : 0x80000003
Parameter 2 : 0x80ac0edd
Parameter 3 : 0xf7b4a7ac
Parameter 4 : 0xf7b4a4a8
Caused By Driver : ntoskrnl.exe
Caused By Address : ntoskrnl.exe+beedd
File Description : NT Kernel & System
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Processor : 32-bit
Crash Address : ntoskrnl.exe+beedd
Stack Address 1 : ntoskrnl.exe+bef53
Stack Address 2 : ntoskrnl.exe+b7142
Stack Address 3 : ntoskrnl.exe+b8bb2
Computer Name :
Full Path : C:\WINDOWS\Minidump\Mini032816-03.dmp
Processors Count : 1
Major Version : 12
Minor Version : 2600
Dump File Size : 90,112
Dump File Time : 3/28/2016 10:41:25 PM
==================================================

==================================================
Dump File : Mini032816-01.dmp
Crash Time : 3/28/2016 12:16:38 PM
Bug Check String : SYSTEM_THREAD_EXCEPTION_NOT_HANDLED
Bug Check Code : 0x1000007e
Parameter 1 : 0x80000003
Parameter 2 : 0x80ac0edd
Parameter 3 : 0xf79967ac
Parameter 4 : 0xf79964a8
Caused By Driver : ntoskrnl.exe
Caused By Address : ntoskrnl.exe+beedd
File Description : NT Kernel & System
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Processor : 32-bit
Crash Address : ntoskrnl.exe+beedd
Stack Address 1 : ntoskrnl.exe+bef53
Stack Address 2 : ntoskrnl.exe+b7142
Stack Address 3 : ntoskrnl.exe+b8bb2
Computer Name :
Full Path : C:\WINDOWS\Minidump\Mini032816-01.dmp
Processors Count : 1
Major Version : 12
Minor Version : 2600
Dump File Size : 90,112
Dump File Time : 3/28/2016 12:19:04 PM
==================================================

#66
RKinner

Posted 05 April 2016 - 12:04 PM

Malware Expert

Expert
24,624 posts

ntoskrnl.exe is a windows file. Probably not the culprit. Does Speedfan give you any temps for your PC (other than the HD?) I usually see ntoskrnl.exe errors when the thing is running too hot. Could also be bad memory.

#67
Dakeyras

Posted 08 April 2016 - 06:03 PM

Anti-Malware Mammoth

Expert
9,772 posts

Hi.

RKinner, is currently unavailable...

Do you still require further assistance ? If so please provide a update as best able, thank you.

#68
evolutionpill

Posted 10 April 2016 - 05:27 AM

Member

Topic Starter
Member
127 posts

Yes I certainly do require further assistance. RKinner did inform me he was going to be away and would pass on my posts. He had been incredibly helpful. A brief history for you about the last 3 weeks..

1. I have a old dell inspiron 700m running windows XP SP2. I use this PC as my backup as most my work in do on my pad, so I only need a few programs ( Office suite (i use wps), universal video player (I use fly and media player) and 2/3 other programs. I also use itunes to save things from pad to pc and Firefox only to access my mails.
2. My original post: trying to find out which firefox version was best to use for this old PC, the one i used was not the latest but started to be problematic so I uninstalled and my thinking was that probably the latest was to advanced for this pc, however there are so many older version I was not sure.
3. He recommended I install latest version and then moved my post to malware and started to do some checks. He suggested I download SP3 as some of the programs he recommended would not run on my pc.(combofix, JRT,etc)
4. Installed SP3 and KB 953356 he provided me and then the problems really started. Had to operate in Safe mode as the PC kept self- rebooting and then even in safe mode it rebooted, he suggested i uninstall sp3 and try another version of SP3 “as sometimes it takes a few takes to get it right”. Upon uninstalling I lost most my drivers for dell, including usb and internet and the whole pc has become unstable. I managed to downloaded ALL the drivers from dell and installed them(not knowing which I need or not). The pc seemed more stable however it was.incredibly slow- taking 10-15 seconds to open a window, hanging when more then one program was opened (e.g firefox and wps) and I can no longer connect my pad to either itunes or my pc wont read my pad
5. Just before he departed he suggested I try downloading SP3 from another source. However before installing I should download hiren boot cd. thats basically where we are.

I spent a few days trying to get Hiren to work but I could not get it to work so I abandoned that idea.

Today I have just installed SP3 and it would seem to have installed correctly, PC booted up fine, firefox opens without hanging, windows open a little faster and im able to write this note and no blue screen. My pc still wont read my ipad, still seems slower.

So now Im in your hands......with a working SP3, I would think the objective now:
1. To see if all running well
2. Get ipad to connect.
3. Clean up the PC of all the unwanted stuff and all thats been installed which is not needed or requirednot needed.

Thank you for assisting me.

Im adding an OTL and frst out of habit.

OTL logfile created on: 4/10/2016 7:02:50 PM - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\sf\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

494.42 Mb Total Physical Memory | 103.44 Mb Available Physical Memory | 20.92% Memory free
1.13 Gb Paging File | 0.55 Gb Available in Paging File | 48.92% Paging File free
Paging file location(s): C:\pagefile.sys 744 1488 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19.53 Gb Total Space | 5.85 Gb Free Space | 29.97% Space Free | Partition Type: NTFS
Drive D: | 29.29 Gb Total Space | 5.24 Gb Free Space | 17.87% Space Free | Partition Type: NTFS
Drive E: | 29.29 Gb Total Space | 2.95 Gb Free Space | 10.08% Space Free | Partition Type: NTFS
Drive F: | 33.66 Gb Total Space | 0.34 Gb Free Space | 1.02% Space Free | Partition Type: NTFS

Computer Name: SS | User Name: sf | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2016/04/01 10:35:18 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\sf\Desktop\OTL.exe
PRC - [2016/03/24 22:26:16 | 000,392,136 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2015/10/23 00:42:51 | 000,038,136 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Security Protection\PSUAService.exe
PRC - [2015/10/23 00:42:40 | 000,054,520 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Security Protection\PSUAMain.exe
PRC - [2015/10/18 17:32:44 | 000,142,072 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Security Protection\PSANHost.exe
PRC - [2015/10/03 04:09:08 | 000,254,472 | ---- | M] (Visicom Media Inc.) -- C:\Program Files\Panda Security URL Filtering\Panda_URL_Filtering.exe
PRC - [2014/10/09 15:40:48 | 000,066,808 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe
PRC - [2008/04/14 05:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007/02/21 11:19:58 | 000,819,200 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\ZCfgSvc.exe
PRC - [2007/02/21 11:19:40 | 000,294,912 | ---- | M] (Intel® Corporation) -- C:\Program Files\Intel\Wireless\Bin\WLKEEPER.exe
PRC - [2007/02/21 11:17:42 | 000,970,752 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe
PRC - [2007/02/21 11:13:26 | 000,487,424 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
PRC - [2006/06/09 12:47:52 | 000,047,104 | ---- | M] (Primax Electronics Ltd.) -- C:\WINDOWS\system32\ico.exe

========== Modules (No Company Name) ==========

MOD - [2014/02/12 20:58:32 | 000,073,544 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2014/02/12 20:58:10 | 001,044,808 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2013/04/13 01:23:30 | 000,612,664 | ---- | M] () -- C:\Program Files\Panda Security\Panda Security Protection\sqlite3.dll
MOD - [2008/04/14 05:42:04 | 001,288,192 | ---- | M] () -- C:\WINDOWS\system32\quartz.dll
MOD - [2007/03/16 18:10:48 | 000,757,760 | ---- | M] () -- C:\WINDOWS\system32\bcm1xsup.dll
MOD - [2007/02/21 11:13:02 | 000,118,784 | ---- | M] () -- C:\Program Files\Intel\Wireless\Bin\iWMSProv.dll
MOD - [2006/10/17 16:13:20 | 001,167,360 | ---- | M] () -- C:\Program Files\Intel\Wireless\Bin\acAuth.dll

========== Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- C:\Program Files\Wondershare\TunesGoRetro\DriverInstall.exe -- (WsDrvInst)
SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - [2015/10/23 00:42:51 | 000,038,136 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Security Protection\PSUAService.exe -- (PSUAService)
SRV - [2015/10/18 17:32:44 | 000,142,072 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Security Protection\PSANHost.exe -- (NanoServiceMain)
SRV - [2014/10/09 15:40:48 | 000,066,808 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe -- (PandaAgent)
SRV - [2007/02/21 11:19:40 | 000,294,912 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\Wireless\Bin\WLKEEPER.exe -- (WLANKEEPER)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\UIUSys.sys -- (UIUSys)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Unknown (0) | Unavailable | Unknown] -- -- (msahci)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - [2016/02/21 19:04:10 | 000,013,120 | ---- | M] () [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2015/07/20 00:46:09 | 000,125,176 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\PSINProt.sys -- (PSINProt)
DRV - [2015/07/20 00:46:09 | 000,100,600 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\PSINReg.sys -- (PSINReg)
DRV - [2015/07/20 00:46:08 | 000,172,792 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\PSINKNC.sys -- (PSINKNC)
DRV - [2015/07/20 00:46:08 | 000,114,680 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\PSINProc.sys -- (PSINProc)
DRV - [2015/07/20 00:46:07 | 000,140,792 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\PSINAflt.sys -- (PSINAflt)
DRV - [2015/07/20 00:46:07 | 000,103,288 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\PSINFile.sys -- (PSINFile)
DRV - [2015/07/09 23:37:25 | 000,240,376 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NNSStrm.sys -- (NNSSTRM)
DRV - [2015/07/09 23:37:25 | 000,094,968 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NNStlsc.sys -- (NNSTLSC)
DRV - [2015/07/09 23:37:24 | 000,209,016 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NNSPrv.sys -- (NNSPRV)
DRV - [2015/07/09 23:37:24 | 000,108,408 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NNSSmtp.sys -- (NNSSMTP)
DRV - [2015/07/09 23:37:23 | 000,281,720 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NNSProt.sys -- (NNSPROT)
DRV - [2015/07/09 23:37:23 | 000,120,568 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NNSPop3.sys -- (NNSPOP3)
DRV - [2015/07/09 23:37:22 | 000,102,264 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NNSpicc.sys -- (NNSPICC)
DRV - [2015/07/09 23:37:22 | 000,052,088 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NNSpihs.sys -- (NNSPIHS)
DRV - [2015/07/09 23:37:21 | 000,121,720 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NNSIds.sys -- (NNSIDS)
DRV - [2015/07/09 23:37:21 | 000,109,688 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NNSHttps.sys -- (NNSHTTPS)
DRV - [2015/07/09 23:37:20 | 000,202,104 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NNSHttp.sys -- (NNSHTTP)
DRV - [2015/07/09 23:37:19 | 000,087,032 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NNSAlpc.sys -- (NNSALPC)
DRV - [2015/05/22 16:45:58 | 000,050,832 | ---- | M] (Panda Security, S.L.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\PSKMAD.sys -- (PSKMAD)
DRV - [2015/05/20 18:18:14 | 000,055,216 | ---- | M] (Panda Security, S.L.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NNSNAHS.sys -- (NNSNAHS)
DRV - [2014/03/07 10:18:06 | 000,032,968 | R--- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tap0901.sys -- (tap0901)
DRV - [2013/10/28 16:04:08 | 000,046,160 | ---- | M] (Fuzhou Rockchip Electronics Co,Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\rockusb.sys -- (Rockusb)
DRV - [2012/12/30 04:59:38 | 000,024,184 | ---- | M] (Almico Software) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)
DRV - [2007/02/21 11:16:12 | 000,012,416 | ---- | M] (Intel Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\s24trans.sys -- (s24trans)
DRV - [2007/02/08 13:51:16 | 002,209,408 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\w29n51.sys -- (w29n51)
DRV - [2006/07/21 12:42:08 | 000,055,808 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tifm.sys -- (tifm)
DRV - [2005/05/03 15:09:28 | 001,033,728 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.SYS -- (HSF_DPV)
DRV - [2005/05/03 15:08:50 | 000,208,384 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWICH.sys -- (HSFHWICH)
DRV - [2005/05/03 15:08:44 | 000,705,408 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2004/11/15 15:37:52 | 000,264,440 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\stac97.sys -- (STAC97)
DRV - [2004/08/12 08:44:04 | 000,234,496 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\iwca.sys -- (IWCA)
DRV - [2004/05/26 15:18:18 | 000,044,928 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\bcm4sbxp.sys -- (bcm4sbxp)
DRV - [2003/11/13 18:17:00 | 001,042,816 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HSF_DP.sys -- (HSF_DP)
DRV - [2001/08/22 08:42:58 | 000,013,632 | ---- | M] (Dell Computer Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\omci.sys -- (OMCI)
DRV - [1996/04/04 03:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKCU\..\URLSearchHook: {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files\pandasecuritytb\pandasecurityDx.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.countryCode: "CN"
FF - prefs.js..browser.search.defaultenginename: "Yahoo"
FF - prefs.js..browser.search.hiddenOneOffs: "Google,Twitter"
FF - prefs.js..browser.search.region: "CN"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:45.0.1
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 45.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 45.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2014/10/01 21:27:57 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\sf\Application Data\Mozilla\Extensions
[2016/04/01 20:10:29 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\sf\Application Data\Mozilla\Firefox\Profiles\hgx4pa98.default\extensions
[2014/10/02 00:02:51 | 000,000,000 | ---D | M] ("Web Counselor") -- C:\Documents and Settings\sf\Application Data\Mozilla\Firefox\Profiles\hgx4pa98.default\extensions\{25dd52dc-89a8-469d-9e8f-8d483095d1e8}
[2014/10/02 00:02:00 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\sf\Application Data\Mozilla\Firefox\Profileshgx4pa98.default\extensions
[2014/10/02 00:02:00 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\sf\Application Data\Mozilla\Firefox\Profileshgx4pa98.default\extensions\staged
[2015/06/16 10:49:49 | 000,033,429 | ---- | M] () (No name found) -- C:\Documents and Settings\sf\Application Data\Mozilla\Firefox\Profiles\hgx4pa98.default\extensions\{95ab36d4-fb6f-47b0-8b8d-e5f3bd547953}.xpi
[2015/09/30 21:35:42 | 000,807,071 | ---- | M] () (No name found) -- C:\Documents and Settings\sf\Application Data\Mozilla\Firefox\Profiles\hgx4pa98.default\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}.xpi
[2016/03/24 22:26:38 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions

O1 HOSTS File: ([2004/08/04 20:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (DriveLetterAccess) - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll (Sonic Solutions)
O2 - BHO: (Panda Security Toolbar) - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files\pandasecuritytb\pandasecurityDx.dll ()
O3 - HKLM\..\Toolbar: (Panda Security Toolbar) - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files\pandasecuritytb\pandasecurityDx.dll ()
O4 - HKLM..\Run: [IMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe (Intel Corporation)
O4 - HKLM..\Run: [IntelZeroConfig] C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe (Intel Corporation)
O4 - HKLM..\Run: [Panda Security URL Filtering] C:\Program Files\Panda Security URL Filtering\Panda_URL_Filtering.exe (Visicom Media Inc.)
O4 - HKLM..\Run: [PMX Daemon] C:\WINDOWS\System32\ico.exe (Primax Electronics Ltd.)
O4 - HKLM..\Run: [PSUAMain] C:\Program Files\Panda Security\Panda Security Protection\PSUAMain.exe (Panda Security, S.L.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: RestrictRun = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: MaxGPOScriptWait = 600
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: RestrictRun = 0
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9F97D69D-CCAD-43D1-82EF-AEA478EC3AEE}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FF5F6470-324D-470D-B981-909AF8BD697B}: DhcpNameServer = 192.168.1.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2014/10/01 20:14:58 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2009/03/13 13:44:31 | 000,000,000 | R--D | M] - D:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009/03/13 13:44:31 | 000,000,000 | R--D | M] - E:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009/03/13 13:44:31 | 000,000,000 | R--D | M] - F:\autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2016/04/10 18:35:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2016/04/10 18:02:28 | 001,306,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll
[2016/04/10 18:02:28 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll
[2016/04/10 18:02:17 | 000,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm
[2016/04/10 18:02:15 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm
[2016/04/10 18:02:13 | 000,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\dllcache\l3codeca.acm
[2016/04/10 18:02:01 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpcdll.dll
[2016/04/10 18:01:37 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irbus.sys
[2016/04/10 18:01:36 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwnh.dll
[2016/04/10 18:01:36 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsdupd.exe
[2016/04/10 18:01:35 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smtpapi.dll
[2016/04/10 18:01:30 | 000,229,376 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2cqag.dll
[2016/04/10 18:01:30 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll
[2016/04/10 18:01:29 | 001,888,992 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3duag.dll
[2016/04/10 18:01:29 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3d1ag.dll
[2016/04/10 18:01:29 | 000,377,984 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvaa.dll
[2016/04/10 18:01:29 | 000,201,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvag.dll
[2016/04/10 18:01:29 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativmvxx.ax
[2016/04/10 18:01:29 | 000,009,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativdaxx.ax
[2016/04/10 18:01:28 | 000,516,768 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ativvaxx.dll
[2016/04/10 18:01:28 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll
[2016/04/10 18:01:28 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativtmxx.dll
[2016/04/10 18:01:27 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll
[2016/04/10 18:01:26 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll
[2016/04/10 18:01:25 | 000,650,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll
[2016/04/10 18:01:25 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll
[2016/04/10 18:01:25 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3msm.dll
[2016/04/10 18:01:25 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll
[2016/04/10 18:01:25 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll
[2016/04/10 18:01:23 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll
[2016/04/10 18:01:23 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll
[2016/04/10 18:01:23 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll
[2016/04/10 18:01:23 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll
[2016/04/10 18:01:21 | 000,032,285 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\hsfcisp2.dll
[2016/04/10 18:01:18 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll
[2016/04/10 18:01:17 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll
[2016/04/10 18:01:17 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll
[2016/04/10 18:01:16 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll
[2016/04/10 18:01:16 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll
[2016/04/10 18:01:15 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll
[2016/04/10 18:01:14 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll
[2016/04/10 18:01:14 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll
[2016/04/10 18:01:14 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe
[2016/04/10 18:01:13 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll
[2016/04/10 18:01:13 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll
[2016/04/10 18:01:12 | 001,737,856 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\mtxparhd.dll
[2016/04/10 18:01:12 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll
[2016/04/10 18:01:12 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe
[2016/04/10 18:01:12 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll
[2016/04/10 18:01:11 | 004,274,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll
[2016/04/10 18:01:09 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll
[2016/04/10 18:01:08 | 000,397,056 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\s3gnb.dll
[2016/04/10 18:01:08 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll
[2016/04/10 18:01:08 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll
[2016/04/10 18:01:07 | 000,286,792 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slextspk.dll
[2016/04/10 18:01:07 | 000,188,508 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slgen.dll
[2016/04/10 18:01:07 | 000,073,832 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slcoinst.dll
[2016/04/10 18:01:07 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe
[2016/04/10 18:01:06 | 000,073,796 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slserv.exe
[2016/04/10 18:01:06 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slrundll.exe
[2016/04/10 18:01:05 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll
[2016/04/10 18:01:05 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax
[2016/04/10 18:01:05 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\verclsid.exe
[2016/04/10 18:01:03 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll
[2016/04/10 18:00:58 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\slrundll.exe
[2016/04/10 17:53:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2016/04/10 17:52:50 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlimport.exe
[2016/04/10 17:48:42 | 000,004,255 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv01nt5.dll
[2016/04/10 17:48:41 | 000,003,967 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv02nt5.dll
[2016/04/10 17:48:40 | 000,003,615 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv05nt5.dll
[2016/04/10 17:48:39 | 000,003,647 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv07nt5.dll
[2016/04/10 17:48:38 | 000,003,135 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv08nt5.dll
[2016/04/10 17:48:37 | 000,003,711 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv09nt5.dll
[2016/04/10 17:48:36 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys
[2016/04/10 17:48:36 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys
[2016/04/10 17:48:36 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys
[2016/04/10 17:48:36 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys
[2016/04/10 17:48:36 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys
[2016/04/10 17:48:36 | 000,003,775 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv11nt5.dll
[2016/04/10 17:48:35 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys
[2016/04/10 17:48:35 | 000,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys
[2016/04/10 17:48:35 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys
[2016/04/10 17:48:35 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys
[2016/04/10 17:48:35 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys
[2016/04/10 17:48:35 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys
[2016/04/10 17:48:35 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys
[2016/04/10 17:48:35 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys
[2016/04/10 17:48:35 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys
[2016/04/10 17:48:35 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys
[2016/04/10 17:48:35 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys
[2016/04/10 17:48:35 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys
[2016/04/10 17:48:35 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys
[2016/04/10 17:48:34 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys
[2016/04/10 17:48:34 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys
[2016/04/10 17:48:34 | 000,036,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthprint.sys
[2016/04/10 17:48:34 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys
[2016/04/10 17:48:34 | 000,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv04nt5.dll
[2016/04/10 17:48:34 | 000,021,183 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv01nt5.dll
[2016/04/10 17:48:34 | 000,017,279 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv10nt5.dll
[2016/04/10 17:48:34 | 000,014,143 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv06nt5.dll
[2016/04/10 17:48:34 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys
[2016/04/10 17:48:34 | 000,011,359 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv02nt5.dll
[2016/04/10 17:48:33 | 000,015,423 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\ch7xxnt5.dll
[2016/04/10 17:48:32 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys
[2016/04/10 17:48:31 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys
[2016/04/10 17:48:31 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys
[2016/04/10 17:48:31 | 000,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys
[2016/04/10 17:48:31 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys
[2016/04/10 17:48:31 | 000,030,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rndismpx.sys
[2016/04/10 17:48:31 | 000,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\recagent.sys
[2016/04/10 17:48:31 | 000,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mutohpen.sys
[2016/04/10 17:48:30 | 000,003,901 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\siint5.dll
[2016/04/10 17:48:29 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys
[2016/04/10 17:48:29 | 000,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnt7554.sys
[2016/04/10 17:48:29 | 000,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnthal.sys
[2016/04/10 17:48:29 | 000,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slwdmsup.sys
[2016/04/10 17:48:29 | 000,005,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\smbali.sys
[2016/04/10 17:48:28 | 000,022,271 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\watv06nt.sys
[2016/04/10 17:48:28 | 000,011,935 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv11nt.sys
[2016/04/10 17:48:28 | 000,011,871 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv09nt.sys
[2016/04/10 17:48:28 | 000,011,807 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv07nt.sys
[2016/04/10 17:48:28 | 000,011,325 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\vchnt5.dll
[2016/04/10 17:48:28 | 000,011,295 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv08nt.sys
[2016/04/10 17:48:27 | 000,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\watv10nt.sys
[2016/04/10 17:39:39 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2016/04/10 17:13:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\sf\Application Data\InfraRecorder
[2016/04/10 17:13:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\InfraRecorder
[2016/04/10 17:13:29 | 000,000,000 | ---D | C] -- C:\Program Files\InfraRecorder
[2016/04/10 16:41:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited
[2016/04/10 16:40:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\sf\Application Data\Canneverbe Limited
[2016/04/10 16:39:41 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP
[2016/04/10 14:54:11 | 000,050,832 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\PSKMAD.sys
[2016/04/05 17:50:44 | 000,135,168 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxres.dll
[2016/04/05 17:37:07 | 000,055,808 | ---- | C] (Texas Instruments) -- C:\WINDOWS\System32\drivers\tifm.sys
[2016/04/05 17:37:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\tiinst
[2016/04/05 17:32:43 | 001,033,728 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\drivers\HSF_DPV.SYS
[2016/04/05 17:32:43 | 000,042,858 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\hsfci014.dll
[2016/04/05 17:23:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Dell Wireless
[2016/04/05 17:23:00 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ATL71.DLL
[2016/04/05 17:23:00 | 000,033,664 | ---- | C] (CACE Technologies) -- C:\WINDOWS\System32\drivers\BCMWLNPF.SYS
[2016/04/05 17:22:58 | 000,069,632 | ---- | C] (CACE Technologies) -- C:\WINDOWS\System32\bcmwlpkt.dll
[2016/04/05 17:22:56 | 002,129,920 | ---- | C] (BCGSoft Ltd) -- C:\WINDOWS\System32\WLBCGCBPRO731.DLL
[2016/04/05 17:20:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Intel PROSet Wireless
[2016/04/05 17:19:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Intel
[2016/04/05 17:19:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Intel
[2016/04/05 17:18:51 | 002,732,032 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\Netw2r32.dll
[2016/04/05 17:18:51 | 000,557,056 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\Netw2c32.dll
[2016/04/05 17:18:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Intel
[2016/04/05 17:18:01 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2016/04/05 17:17:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\sf\Application Data\Intel
[2016/04/05 17:16:18 | 000,000,000 | ---D | C] -- C:\Program Files\Digital Line Detect
[2016/04/05 17:12:11 | 000,098,360 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\dla.exe
[2016/04/05 17:12:11 | 000,061,500 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\tfswapi.dll
[2016/04/05 17:12:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Sonic
[2016/04/05 17:12:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dla
[2016/04/05 17:12:10 | 000,000,000 | ---D | C] -- C:\Program Files\Sonic
[2016/04/05 17:11:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Dell
[2016/04/05 17:10:35 | 000,047,104 | ---- | C] (Primax Electronics Ltd.) -- C:\WINDOWS\System32\ico.exe
[2016/04/05 17:10:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\InstallShield
[2016/04/05 17:10:27 | 002,285,568 | ---- | C] (Primax Electronics Ltd.) -- C:\WINDOWS\System32\DellPM.exe
[2016/04/05 17:10:27 | 000,237,568 | ---- | C] (Primax Electronics Ltd.) -- C:\WINDOWS\System32\pmxutil.dll
[2016/04/05 17:10:27 | 000,143,360 | ---- | C] (Primax Electronics Ltd.) -- C:\WINDOWS\System32\ApSwitch.exe
[2016/04/05 17:10:27 | 000,139,264 | ---- | C] (Primax Electronics Ltd.) -- C:\WINDOWS\System32\pmxmiced.exe
[2016/04/05 17:10:27 | 000,131,072 | ---- | C] (Primax Electronics Ltd.) -- C:\WINDOWS\System32\pmxscrll.dll
[2016/04/05 17:10:27 | 000,094,208 | ---- | C] (Primax Electronics Ltd.) -- C:\WINDOWS\System32\Pelzoom.dll
[2016/04/05 17:10:27 | 000,065,536 | ---- | C] (Primax Electronics Ltd.) -- C:\WINDOWS\System32\pmxhooks.dll
[2016/04/05 17:10:27 | 000,049,152 | ---- | C] (Primax Electronics Ltd.) -- C:\WINDOWS\System32\pmxcomm.dll
[2016/04/05 17:10:27 | 000,047,104 | ---- | C] (Primax Electronics Ltd.) -- C:\WINDOWS\System32\iconspy.exe
[2016/04/05 17:10:27 | 000,040,960 | ---- | C] (Primax Electronics Ltd.) -- C:\WINDOWS\System32\LaunHelp.exe
[2016/04/05 17:10:27 | 000,028,672 | ---- | C] (Primax Electronics Ltd.) -- C:\WINDOWS\System32\UnInst.exe
[2016/04/05 17:10:26 | 001,443,464 | R--- | C] (Macromedia, Inc.) -- C:\WINDOWS\System32\Flash8a.ocx
[2016/04/05 17:10:26 | 001,443,464 | R--- | C] (Macromedia, Inc.) -- C:\WINDOWS\Flash8a.ocx
[2016/04/05 17:10:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Mouse Suite
[2016/04/05 17:10:24 | 000,073,728 | ---- | C] (Macrovision Corporation) -- C:\WINDOWS\System32\ISUSPM.cpl
[2016/04/05 17:10:24 | 000,000,000 | ---D | C] -- C:\Program Files\Dell
[2016/04/03 20:34:46 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2016/04/03 19:52:39 | 003,395,584 | ---- | C] (Dell Inc.) -- C:\WINDOWS\System32\BCMWLCPL.CPL
[2016/04/03 19:52:39 | 001,396,831 | ---- | C] (Meetinghouse Data Communications) -- C:\WINDOWS\System32\AegisE5.dll
[2016/04/03 19:52:39 | 000,770,048 | ---- | C] (Dell Inc.) -- C:\WINDOWS\System32\BCMLogon.dll
[2016/04/03 19:52:39 | 000,044,032 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\wltrynt.dll
[2016/04/03 19:52:35 | 000,069,632 | ---- | C] (Dell Inc) -- C:\WINDOWS\System32\BCMWLD2K.EXE
[2016/04/03 18:33:34 | 000,983,040 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\W20MLRES.DLL
[2016/04/03 18:33:34 | 000,966,656 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\W70MLRES.DLL
[2016/04/03 18:32:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\sf\Local Settings\Application Data\Help
[2016/04/03 18:23:29 | 000,369,024 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\drivers\BCMWL5.SYS
[2016/04/03 18:23:29 | 000,253,952 | ---- | C] (Dell Inc.) -- C:\WINDOWS\System32\bcmwlu00.exe
[2016/04/03 18:16:03 | 000,000,000 | ---D | C] -- C:\Program Files\Broadcom
[2016/04/03 18:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Downloaded Installations
[2016/04/03 18:11:53 | 000,000,000 | ---D | C] -- C:\Program Files\CONEXANT
[2016/04/03 18:11:33 | 001,042,816 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\drivers\HSF_DP.sys
[2016/04/03 18:11:33 | 000,705,408 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\drivers\HSF_CNXT.sys
[2016/04/03 18:11:33 | 000,208,384 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\drivers\HSFHWICH.sys
[2016/04/03 18:11:33 | 000,086,016 | ---- | C] (Conexant) -- C:\WINDOWS\System32\mdmxsdk.dll
[2016/04/03 18:11:33 | 000,032,218 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\HSFCI008.dll
[2016/04/01 21:39:19 | 000,000,000 | ---D | C] -- C:\32788R22FWJFW
[2016/04/01 21:35:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Panda Free Antivirus
[2016/04/01 20:10:58 | 000,000,000 | ---D | C] -- C:\Program Files\Panda Security URL Filtering
[2016/04/01 20:10:27 | 000,000,000 | ---D | C] -- C:\Program Files\pandasecuritytb
[2016/03/31 15:51:43 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\sf\Desktop\OTL.exe
[2016/03/29 01:10:24 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC
[2016/03/29 01:06:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2016/03/28 12:08:17 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
[2016/03/28 12:07:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting
[2016/03/28 12:07:39 | 000,000,000 | ---D | C] -- C:\Program Files\msn
[2016/03/28 12:07:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2016/03/28 12:07:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en
[2016/03/28 12:07:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2016/03/28 12:02:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2016/03/28 11:58:20 | 000,004,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ds16gt.dll
[2016/03/28 11:58:18 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gpkcsp.dll
[2016/03/28 11:58:15 | 000,092,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\krnl386.exe
[2016/03/28 11:58:14 | 000,068,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mmsystem.dll
[2016/03/28 11:57:53 | 000,602,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\autoconv.exe
[2016/03/28 11:57:53 | 000,389,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmd.exe
[2016/03/28 11:57:53 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\desk.cpl
[2016/03/28 11:57:53 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\csrsrv.dll
[2016/03/28 11:57:53 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cacls.exe
[2016/03/28 11:57:52 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ftp.exe
[2016/03/28 11:57:52 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\format.com
[2016/03/28 11:57:52 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mgmtapi.dll
[2016/03/28 11:57:51 | 000,420,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ntvdm.exe
[2016/03/28 11:57:51 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nwprovau.dll
[2016/03/28 11:57:51 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ntprint.dll
[2016/03/28 11:57:51 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nslookup.exe
[2016/03/28 11:57:51 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\perfctrs.dll
[2016/03/28 11:57:51 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\olecnv32.dll
[2016/03/28 11:57:51 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\savedump.exe
[2016/03/28 11:57:50 | 001,845,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\win32k.sys
[2016/03/28 11:57:50 | 000,990,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\syssetup.dll
[2016/03/28 11:57:50 | 000,316,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\untfs.dll
[2016/03/28 11:57:50 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ulib.dll
[2016/03/28 11:57:50 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\atmlane.sys
[2016/03/28 11:57:50 | 000,053,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\1394bus.sys
[2016/03/28 11:57:50 | 000,049,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\classpnp.sys
[2016/03/28 11:57:50 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tcpmonui.dll
[2016/03/28 11:57:50 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\amdk6.sys
[2016/03/28 11:57:50 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\userinit.exe
[2016/03/28 11:57:50 | 000,014,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\diskdump.sys
[2016/03/28 11:57:50 | 000,014,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\battc.sys
[2016/03/28 11:57:49 | 000,141,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ks.sys
[2016/03/28 11:57:49 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\dxg.sys
[2016/03/28 11:57:49 | 000,063,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mf.sys
[2016/03/28 11:57:49 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys
[2016/03/28 11:57:49 | 000,040,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\nmnt.sys
[2016/03/28 11:57:49 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidclass.sys
[2016/03/28 11:57:49 | 000,024,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidparse.sys
[2016/03/28 11:57:48 | 000,225,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tcpip6.sys
[2016/03/28 11:57:48 | 000,202,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rmcast.sys
[2016/03/28 11:57:48 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys
[2016/03/28 11:57:48 | 000,096,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\scsiport.sys
[2016/03/28 11:57:48 | 000,088,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\nwlnkipx.sys
[2016/03/28 11:57:48 | 000,049,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\stream.sys
[2016/03/28 11:57:48 | 000,030,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rndismp.sys
[2016/03/28 11:57:48 | 000,025,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sonydcam.sys
[2016/03/28 11:57:48 | 000,024,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\pciidex.sys
[2016/03/28 11:57:48 | 000,019,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tdi.sys
[2016/03/28 11:57:48 | 000,014,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tape.sys
[2016/03/28 11:57:47 | 002,188,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ntoskrnl.exe
[2016/03/28 11:57:47 | 002,065,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ntkrnlpa.exe
[2016/03/28 11:57:47 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbport.sys
[2016/03/28 11:57:47 | 000,081,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\videoprt.sys
[2016/03/28 11:57:47 | 000,081,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\HAL.DLL
[2016/03/28 11:57:47 | 000,025,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbcamd2.sys
[2016/03/28 11:57:47 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbcamd.sys
[2016/03/28 11:57:47 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbintel.sys
[2016/03/28 11:57:47 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usb8023.sys
[2016/03/28 10:56:38 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2016/03/28 10:56:38 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2016/03/28 10:56:38 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2016/03/28 10:56:38 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2016/03/28 10:56:31 | 000,000,000 | --SD | C] -- C:\ComboFix
[2016/03/28 10:56:26 | 000,000,000 | ---D | C] -- C:\Qoobox
[2016/03/28 10:56:21 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Videos
[2016/03/28 10:56:21 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Pictures
[2016/03/28 10:56:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt
[2016/03/28 10:53:30 | 005,659,241 | R--- | C] (Swearware) -- C:\Documents and Settings\sf\Desktop\ComboFix.exe
[2016/03/28 10:49:30 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music
[2016/03/27 21:26:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\sf\Local Settings\Application Data\Opera Software
[2016/03/27 21:26:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\sf\Application Data\Opera Software
[2016/03/27 21:24:53 | 000,000,000 | ---D | C] -- C:\Program Files\Opera
[2016/03/27 14:35:54 | 005,111,240 | ---- | C] (Piriform Ltd) -- C:\Documents and Settings\sf\Desktop\spsetup129.exe
[2016/03/27 14:31:19 | 002,694,816 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\Documents and Settings\sf\Desktop\procexp.exe
[2016/03/26 20:18:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\188F1432-103A-4ffb-80F1-36B633C5C9E1
[2016/03/26 16:56:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\sf\Local Settings\Application Data\panda
[2016/03/26 16:56:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Panda Security URL Filtering
[2016/03/26 16:55:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\sf\Application Data\pandasecuritytb
[2016/03/26 15:31:48 | 002,310,144 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\iglicd32.dll
[2016/03/26 15:31:47 | 000,524,288 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igldev32.dll
[2016/03/26 15:31:42 | 000,147,456 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnld.lrc
[2016/03/26 15:31:42 | 000,143,360 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrrus.lrc
[2016/03/26 15:31:42 | 000,143,360 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptg.lrc
[2016/03/26 15:31:42 | 000,143,360 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrplk.lrc
[2016/03/26 15:31:42 | 000,143,360 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrhun.lrc
[2016/03/26 15:31:42 | 000,139,264 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsve.lrc
[2016/03/26 15:31:42 | 000,139,264 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnor.lrc
[2016/03/26 15:31:42 | 000,139,264 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfin.lrc
[2016/03/26 15:31:42 | 000,135,168 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtrk.lrc
[2016/03/26 15:31:42 | 000,118,784 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrheb.lrc
[2016/03/26 15:31:41 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrell.lrc
[2016/03/26 15:31:41 | 000,139,264 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdan.lrc
[2016/03/26 15:31:41 | 000,139,264 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcsy.lrc
[2016/03/26 15:31:41 | 000,122,880 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrara.lrc
[2016/03/26 15:31:33 | 000,077,824 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcpl.cpl
[2016/03/26 15:31:31 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuTRK.dll
[2016/03/26 15:31:29 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuTHA.dll
[2016/03/26 15:31:28 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuSVE.dll
[2016/03/26 15:31:27 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuRUS.dll
[2016/03/26 15:31:26 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuPTG.dll
[2016/03/26 15:31:25 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuPTB.dll
[2016/03/26 15:31:24 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuPLK.dll
[2016/03/26 15:31:23 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuNOR.dll
[2016/03/26 15:31:22 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuNLD.dll
[2016/03/26 15:31:21 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuKOR.dll
[2016/03/26 15:31:20 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuJPN.dll
[2016/03/26 15:31:18 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuITA.dll
[2016/03/26 15:31:17 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuHUN.dll
[2016/03/26 15:31:16 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuHEB.dll
[2016/03/26 15:31:15 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuFRC.dll
[2016/03/26 15:31:14 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuFRA.dll
[2016/03/26 15:31:13 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuFIN.dll
[2016/03/26 15:31:12 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuESP.dll
[2016/03/26 15:31:11 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuENG.dll
[2016/03/26 15:31:10 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuELL.dll
[2016/03/26 15:31:09 | 000,114,688 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmudlg.exe
[2016/03/26 15:31:07 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuDEU.dll
[2016/03/26 15:31:06 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuDAN.dll
[2016/03/26 15:31:05 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuCSY.dll
[2016/03/26 15:31:04 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuCHT.dll
[2016/03/26 15:31:03 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuCHS.dll
[2016/03/26 15:31:02 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuARB.dll
[2016/03/26 15:31:01 | 000,040,960 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ialmuARA.dll
[2016/03/26 15:30:53 | 000,061,440 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\iAlmCoIn_v4363.dll
[2016/03/26 11:51:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\iTunes
[2016/03/26 11:50:46 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2016/03/26 11:50:23 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2016/03/26 11:49:39 | 006,112,864 | ---- | C] (Apple, Inc.) -- C:\WINDOWS\System32\usbaaplrc.dll
[2016/03/26 11:48:51 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2016/03/26 00:16:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\7-Zip
[2016/03/26 00:16:06 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2016/03/25 22:38:57 | 000,000,000 | ---D | C] -- C:\FRST
[2016/03/25 22:34:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\sf\Application Data\FLV and Media Player
[2016/03/25 22:22:42 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2016/03/25 22:17:39 | 001,610,352 | ---- | C] (Malwarebytes) -- C:\Documents and Settings\sf\Desktop\JRT.exe
[2016/03/25 22:14:11 | 001,725,440 | ---- | C] (Farbar) -- C:\Documents and Settings\sf\Desktop\FRST.exe
[2016/03/24 22:24:59 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2016/03/24 21:15:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\sf\Application Data\CrystalIdea Software
[2016/03/24 21:14:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\sf\Start Menu\Programs\SpeedFan
[2016/03/24 21:14:27 | 000,000,000 | ---D | C] -- C:\Program Files\SpeedFan
[2016/03/24 16:37:39 | 000,000,000 | R--D | C] -- C:\Documents and Settings\sf\Start Menu\Programs\Administrative Tools
[2016/03/23 18:49:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[2013/10/14 10:44:12 | 002,174,976 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Program Files\Common Files\atimpenc.dll
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2016/04/10 18:40:02 | 000,000,446 | ---- | M] () -- C:\WINDOWS\tasks\WpsUpdateTask_sf.job
[2016/04/10 18:40:01 | 000,000,446 | ---- | M] () -- C:\WINDOWS\tasks\WpsNotifyTask_sf.job
[2016/04/10 18:37:33 | 000,405,888 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2016/04/10 18:37:33 | 000,054,874 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2016/04/10 18:37:25 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2016/04/10 18:36:14 | 000,000,804 | ---- | M] () -- C:\Documents and Settings\sf\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2016/04/10 18:36:05 | 000,000,382 | ---- | M] () -- C:\WINDOWS\tasks\Opera scheduled Autoupdate 1459085101.job
[2016/04/10 18:36:03 | 000,118,400 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2016/04/10 18:35:54 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2016/04/10 18:35:10 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2016/04/10 17:47:53 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2016/04/10 17:13:41 | 000,000,778 | ---- | M] () -- C:\Documents and Settings\sf\Application Data\Microsoft\Internet Explorer\Quick Launch\InfraRecorder.lnk
[2016/04/10 17:13:41 | 000,000,760 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\InfraRecorder.lnk
[2016/04/10 16:40:53 | 000,001,604 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CDBurnerXP.lnk
[2016/04/05 17:19:58 | 000,000,155 | ---- | M] () -- C:\version.ini
[2016/04/05 17:16:18 | 000,000,493 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Digital Line Detect.lnk
[2016/04/05 17:12:29 | 000,000,181 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2016/04/02 11:21:09 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2016/04/02 11:21:09 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2016/04/01 21:40:59 | 005,659,241 | R--- | M] (Swearware) -- C:\Documents and Settings\sf\Desktop\ComboFix.exe
[2016/04/01 12:05:03 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\sf\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2016/04/01 12:04:53 | 000,000,779 | ---- | M] () -- C:\Documents and Settings\sf\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2016/04/01 11:46:10 | 000,007,120 | ---- | M] () -- C:\SIPOBJ.DBG
[2016/04/01 10:35:18 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\sf\Desktop\OTL.exe
[2016/03/29 01:13:37 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2016/03/27 21:25:32 | 000,000,675 | ---- | M] () -- C:\Documents and Settings\sf\Application Data\Microsoft\Internet Explorer\Quick Launch\Opera.lnk
[2016/03/27 21:25:32 | 000,000,675 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Opera.lnk
[2016/03/27 14:37:34 | 005,111,240 | ---- | M] (Piriform Ltd) -- C:\Documents and Settings\sf\Desktop\spsetup129.exe
[2016/03/27 14:32:07 | 002,694,816 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\Documents and Settings\sf\Desktop\procexp.exe
[2016/03/26 20:20:58 | 000,001,542 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2016/03/26 15:31:00 | 000,038,014 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\ialmrnt5.dll
[2016/03/26 15:30:56 | 000,116,859 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\ialmdnt5.dll
[2016/03/26 15:30:54 | 000,899,706 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\ialmdd5.dll
[2016/03/26 15:30:53 | 000,061,440 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\iAlmCoIn_v4363.dll
[2016/03/26 15:30:51 | 000,073,728 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\hccutils.dll
[2016/03/26 14:58:48 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2016/03/25 23:32:09 | 000,061,440 | ---- | M] ( ) -- C:\Documents and Settings\sf\Desktop\VEW.exe
[2016/03/25 22:18:26 | 001,610,352 | ---- | M] (Malwarebytes) -- C:\Documents and Settings\sf\Desktop\JRT.exe
[2016/03/25 22:16:31 | 001,530,368 | ---- | M] () -- C:\Documents and Settings\sf\Desktop\adwcleaner_5.105.exe
[2016/03/25 22:14:52 | 001,725,440 | ---- | M] (Farbar) -- C:\Documents and Settings\sf\Desktop\FRST.exe
[2016/03/24 21:14:39 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\sf\Desktop\SpeedFan.lnk
[2016/03/24 21:14:26 | 000,000,045 | ---- | M] () -- C:\WINDOWS\System32\initdebug.nfo
[2016/03/24 17:07:15 | 000,105,984 | ---- | M] () -- C:\Documents and Settings\sf\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2016/04/10 18:02:22 | 000,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta
[2016/04/10 18:02:22 | 000,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css
[2016/04/10 18:02:22 | 000,000,855 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf
[2016/04/10 18:02:22 | 000,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js
[2016/04/10 18:02:21 | 000,613,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm
[2016/04/10 18:02:21 | 000,067,374 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm
[2016/04/10 18:02:21 | 000,023,195 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplay.chm
[2016/04/10 18:02:20 | 000,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav
[2016/04/10 18:02:20 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav
[2016/04/10 18:02:20 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav
[2016/04/10 18:02:20 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav
[2016/04/10 18:02:20 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav
[2016/04/10 18:02:20 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav
[2016/04/10 18:02:20 | 000,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav
[2016/04/10 18:02:20 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav
[2016/04/10 18:02:20 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav
[2016/04/10 18:02:20 | 000,029,070 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmp.inf
[2016/04/10 18:02:19 | 000,006,769 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf
[2016/04/10 18:02:18 | 000,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv
[2016/04/10 18:02:18 | 000,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif
[2016/04/10 18:02:18 | 000,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif
[2016/04/10 18:02:18 | 000,017,272 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf
[2016/04/10 18:02:18 | 000,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif
[2016/04/10 18:02:18 | 000,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif
[2016/04/10 18:02:18 | 000,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif
[2016/04/10 18:02:18 | 000,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif
[2016/04/10 18:02:18 | 000,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif
[2016/04/10 18:02:18 | 000,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif
[2016/04/10 18:02:18 | 000,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif
[2016/04/10 18:02:18 | 000,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif
[2016/04/10 18:02:18 | 000,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif
[2016/04/10 18:02:18 | 000,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js
[2016/04/10 18:02:18 | 000,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif
[2016/04/10 18:02:18 | 000,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif
[2016/04/10 18:02:18 | 000,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif
[2016/04/10 18:02:18 | 000,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif
[2016/04/10 18:02:18 | 000,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif
[2016/04/10 18:02:18 | 000,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif
[2016/04/10 18:02:18 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif
[2016/04/10 18:02:18 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif
[2016/04/10 18:02:18 | 000,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif
[2016/04/10 18:02:17 | 000,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv
[2016/04/10 18:02:17 | 000,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv
[2016/04/10 18:02:17 | 000,077,307 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm
[2016/04/10 18:02:17 | 000,066,725 | ---- | C] () -- C:\WINDOWS\System32\dllcache\revert.wmz
[2016/04/10 18:02:17 | 000,001,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst6.wpl
[2016/04/10 18:02:17 | 000,001,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst5.wpl
[2016/04/10 18:02:17 | 000,001,474 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst3.wpl
[2016/04/10 18:02:17 | 000,001,451 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst12.wpl
[2016/04/10 18:02:17 | 000,001,448 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst4.wpl
[2016/04/10 18:02:17 | 000,001,250 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst1.wpl
[2016/04/10 18:02:17 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm
[2016/04/10 18:02:17 | 000,001,049 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst2.wpl
[2016/04/10 18:02:17 | 000,001,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst7.wpl
[2016/04/10 18:02:17 | 000,001,036 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst8.wpl
[2016/04/10 18:02:17 | 000,000,908 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf
[2016/04/10 18:02:17 | 000,000,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst11.wpl
[2016/04/10 18:02:17 | 000,000,787 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst10.wpl
[2016/04/10 18:02:17 | 000,000,784 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst9.wpl
[2016/04/10 18:02:17 | 000,000,783 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst13.wpl
[2016/04/10 18:02:17 | 000,000,775 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst14.wpl
[2016/04/10 18:02:17 | 000,000,733 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst15.wpl
[2016/04/10 18:02:16 | 000,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip
[2016/04/10 18:02:16 | 000,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip
[2016/04/10 18:02:14 | 000,018,286 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf
[2016/04/10 18:02:14 | 000,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif
[2016/04/10 18:02:14 | 000,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif
[2016/04/10 18:02:13 | 000,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv
[2016/04/10 18:02:13 | 000,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js
[2016/04/10 18:02:12 | 000,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv
[2016/04/10 18:02:12 | 000,184,959 | ---- | C] () -- C:\WINDOWS\System32\dllcache\compact.wmz
[2016/04/10 18:02:12 | 000,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css
[2016/04/10 18:02:12 | 000,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm
[2016/04/10 18:02:12 | 000,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js
[2016/04/10 18:02:12 | 000,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif
[2016/04/10 18:02:12 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif
[2016/04/10 18:02:12 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif
[2016/04/10 18:02:12 | 000,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif
[2016/04/10 18:02:12 | 000,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif
[2016/04/10 18:02:12 | 000,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif
[2016/04/10 17:48:34 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
[2016/04/10 17:48:33 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2016/04/10 17:48:31 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2016/04/10 17:13:41 | 000,000,778 | ---- | C] () -- C:\Documents and Settings\sf\Application Data\Microsoft\Internet Explorer\Quick Launch\InfraRecorder.lnk
[2016/04/10 17:13:41 | 000,000,760 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\InfraRecorder.lnk
[2016/04/10 16:40:53 | 000,001,604 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\CDBurnerXP.lnk
[2016/04/10 16:40:53 | 000,001,556 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\CDBurnerXP.lnk
[2016/04/10 16:40:05 | 000,013,120 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2016/04/05 17:32:43 | 000,129,405 | ---- | C] () -- C:\WINDOWS\System32\drivers\del1028.cty
[2016/04/05 17:22:59 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\preflib.dll
[2016/04/05 17:22:56 | 000,757,760 | ---- | C] () -- C:\WINDOWS\System32\bcm1xsup.dll
[2016/04/05 17:19:58 | 000,000,155 | ---- | C] () -- C:\version.ini
[2016/04/05 17:16:18 | 000,000,493 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Digital Line Detect.lnk
[2016/04/05 17:12:11 | 000,000,181 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2016/04/05 17:10:27 | 000,131,002 | ---- | C] () -- C:\WINDOWS\System32\DellPM.ini
[2016/04/05 17:10:27 | 000,021,504 | ---- | C] () -- C:\WINDOWS\System32\FontZoom.exe
[2016/04/04 10:55:21 | 000,000,446 | ---- | C] () -- C:\WINDOWS\tasks\WpsUpdateTask_sf.job
[2016/04/04 10:55:21 | 000,000,446 | ---- | C] () -- C:\WINDOWS\tasks\WpsNotifyTask_sf.job
[2016/04/03 19:52:39 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\AegisI5.exe
[2016/04/03 19:52:39 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\WLTRYSVC.EXE
[2016/04/03 18:11:33 | 000,128,480 | ---- | C] () -- C:\WINDOWS\System32\drivers\del5422.cty
[2016/04/01 12:05:03 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\sf\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2016/04/01 12:04:52 | 000,000,779 | ---- | C] () -- C:\Documents and Settings\sf\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2016/04/01 12:04:52 | 000,000,767 | ---- | C] () -- C:\Documents and Settings\sf\Start Menu\Programs\Internet Explorer.lnk
[2016/04/01 12:03:51 | 000,000,804 | ---- | C] () -- C:\Documents and Settings\sf\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2016/03/31 15:43:43 | 000,007,120 | ---- | C] () -- C:\SIPOBJ.DBG
[2016/03/28 11:58:21 | 000,053,840 | ---- | C] () -- C:\WINDOWS\System32\dllcache\dosx.exe
[2016/03/28 11:58:05 | 000,003,338 | ---- | C] () -- C:\WINDOWS\System32\dllcache\redir.exe
[2016/03/28 10:56:38 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2016/03/28 10:56:38 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2016/03/28 10:56:38 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2016/03/28 10:56:38 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2016/03/28 10:56:38 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2016/03/27 21:25:42 | 000,000,382 | ---- | C] () -- C:\WINDOWS\tasks\Opera scheduled Autoupdate 1459085101.job
[2016/03/27 21:25:32 | 000,000,675 | ---- | C] () -- C:\Documents and Settings\sf\Application Data\Microsoft\Internet Explorer\Quick Launch\Opera.lnk
[2016/03/27 21:25:32 | 000,000,675 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Opera.lnk
[2016/03/27 21:25:32 | 000,000,675 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Opera.lnk
[2016/03/26 15:31:49 | 000,524,850 | ---- | C] () -- C:\WINDOWS\System32\igxpxa32.cpa
[2016/03/26 15:31:49 | 000,058,675 | ---- | C] () -- C:\WINDOWS\System32\igxpxk32.vp
[2016/03/26 15:31:49 | 000,018,496 | ---- | C] () -- C:\WINDOWS\System32\igxpxs32.vp
[2016/03/26 15:31:49 | 000,000,900 | ---- | C] () -- C:\WINDOWS\System32\igxpxa32.vp
[2016/03/26 11:51:47 | 000,001,542 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2016/03/25 23:26:46 | 000,061,440 | ---- | C] ( ) -- C:\Documents and Settings\sf\Desktop\VEW.exe
[2016/03/25 22:15:54 | 001,530,368 | ---- | C] () -- C:\Documents and Settings\sf\Desktop\adwcleaner_5.105.exe
[2016/03/24 21:14:38 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\sf\Desktop\SpeedFan.lnk
[2016/03/24 21:14:16 | 000,000,045 | ---- | C] () -- C:\WINDOWS\System32\initdebug.nfo
[2016/02/07 18:00:07 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2016/02/07 17:10:11 | 001,180,048 | ---- | C] () -- C:\WINDOWS\unins000.exe
[2016/02/07 17:10:11 | 000,048,288 | ---- | C] () -- C:\WINDOWS\unins000.dat
[2015/10/25 19:14:26 | 000,118,784 | ---- | C] () -- C:\WINDOWS\System32\DriverCoInstaller.dll
[2015/09/19 21:53:36 | 000,216,064 | ---- | C] ( ) -- C:\WINDOWS\System32\Lagarith.dll
[2015/09/19 21:53:33 | 000,524,288 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2015/09/19 21:53:33 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2015/08/22 05:49:14 | 000,000,289 | ---- | C] () -- C:\Documents and Settings\sf\Application Data\FotoSketcher.ini
[2015/07/24 14:07:16 | 000,000,000 | ---- | C] () -- C:\WINDOWS\popcinfo.dat
[2014/10/17 23:26:02 | 000,945,683 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-1085031214-688789844-1343024091-1003-0.dat
[2014/10/17 23:25:57 | 000,113,618 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
[2014/10/02 03:58:55 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2014/10/02 03:56:14 | 000,118,400 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2014/10/01 21:27:46 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2014/10/01 20:46:05 | 000,105,984 | ---- | C] () -- C:\Documents and Settings\sf\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014/10/01 20:18:38 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2014/10/01 20:09:48 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat

========== ZeroAccess Check ==========

[2012/11/29 14:02:44 | 000,000,227 | ---- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008/04/14 05:42:06 | 001,499,136 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2008/04/14 05:41:54 | 000,472,064 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2008/04/14 05:42:10 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== Alternate Data Streams ==========

@Alternate Data Stream - 135 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:16EAB5F6

< End of report >

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:05-03-2016 01
Ran by sf (administrator) on SS (10-04-2016 19:14:47)
Running from C:\Documents and Settings\sf\Desktop
Loaded Profiles: sf (Available Profiles: sf)
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) Language: English (United States)
Internet Explorer Version 6 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
(Intel Corporation ) C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
(Intel® Corporation) C:\Program Files\Intel\Wireless\Bin\WLKEEPER.exe
() C:\WINDOWS\system32\WLTRYSVC.EXE
(Dell Inc.) C:\WINDOWS\system32\BCMWLTRY.EXE
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Panda Security, S.L.) C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe
(Panda Security, S.L.) C:\Program Files\Panda Security\Panda Security Protection\PSUAService.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
(Panda Security, S.L.) C:\Program Files\Panda Security\Panda Security Protection\PSANHost.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Panda Security, S.L.) C:\Program Files\Panda Security\Panda Security Protection\PSUAMain.exe
(Visicom Media Inc.) C:\Program Files\Panda Security URL Filtering\Panda_URL_Filtering.exe
(Dell Inc.) C:\WINDOWS\system32\WLTRAY.EXE
(Primax Electronics Ltd.) C:\WINDOWS\system32\ico.exe
(Sonic Solutions) C:\WINDOWS\system32\dla\tfswctrl.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\ZCfgSvc.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(BVRP Software) C:\Program Files\Digital Line Detect\DLG.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM\...\Run: [IMJPMIG8.1] => C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [208952 2004-08-04] (Microsoft Corporation)
HKLM\...\Run: [PSUAMain] => C:\Program Files\Panda Security\Panda Security Protection\PSUAMain.exe [54520 2015-10-23] (Panda Security, S.L.)
HKLM\...\Run: [Panda Security URL Filtering] => C:\Program Files\Panda Security URL Filtering\Panda_URL_Filtering.exe [254472 2015-10-03] (Visicom Media Inc.)
HKLM\...\Run: [Dell Wireless Manager UI] => C:\WINDOWS\system32\WLTRAY
HKLM\...\Run: [PMX Daemon] => C:\WINDOWS\system32\ICO.EXE [47104 2006-06-09] (Primax Electronics Ltd.)
HKLM\...\Run: [dla] => C:\WINDOWS\system32\dla\tfswctrl.exe [122941 2005-05-31] (Sonic Solutions)
HKLM\...\Run: [IntelZeroConfig] => C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe [819200 2007-02-21] (Intel Corporation)
HKLM\...\Run: [IntelWireless] => C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe [970752 2007-02-21] (Intel Corporation)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\WINDOWS\system32\WLTRAY.exe [1392640 2007-03-16] (Dell Inc.)
HKLM\...\Run: [igfxhkcmd] => C:\WINDOWS\system32\hkcmd.exe [77824 2016-03-26] (Intel Corporation)
HKLM\...\Run: [igfxpers] => C:\WINDOWS\system32\igfxpers.exe [114688 2005-07-19] (Intel Corporation)
HKLM\...\Policies\Explorer: [RestrictRun] 0
HKLM\...\Policies\Explorer: [NoCDBurning] 0
HKU\S-1-5-21-1085031214-688789844-1343024091-1003\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-1085031214-688789844-1343024091-1003\...\Policies\Explorer: [RestrictRun] 0
HKU\S-1-5-18\...\RunOnce: [panda] => reg.exe delete "HKCU\Software\AppDataLow\Software\panda" /f
HKU\S-1-5-18\...\RunOnce: [panda_XP] => reg.exe delete "HKCU\Software\panda" /f
Lsa: [Notification Packages] scecli scecli scecli
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Digital Line Detect.lnk [2016-04-05]
ShortcutTarget: Digital Line Detect.lnk -> C:\Program Files\Digital Line Detect\DLG.exe (BVRP Software)
GroupPolicyScripts: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9F97D69D-CCAD-43D1-82EF-AEA478EC3AEE}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{FF5F6470-324D-470D-B981-909AF8BD697B}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\S-1-5-21-1085031214-688789844-1343024091-1003\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
URLSearchHook: HKU\S-1-5-21-1085031214-688789844-1343024091-1003 - Panda Security Toolbar - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files\pandasecuritytb\pandasecurityDx.dll ()
URLSearchHook: HKU\S-1-5-21-1085031214-688789844-1343024091-1003 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: DriveLetterAccess -> {5CA3D70E-1895-11CF-8E15-001234567890} -> C:\WINDOWS\system32\dla\tfswshx.dll [2005-05-31] (Sonic Solutions)
BHO: Panda Security Toolbar -> {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} -> C:\Program Files\pandasecuritytb\pandasecurityDx.dll [2015-10-05] ()
Toolbar: HKLM - Panda Security Toolbar - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files\pandasecuritytb\pandasecurityDx.dll [2015-10-05] ()

FireFox:
========
FF ProfilePath: C:\Documents and Settings\sf\Application Data\Mozilla\Firefox\Profiles\hgx4pa98.default
FF DefaultSearchEngine: Yahoo
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2014-02-20] ()
FF Extension: Web Counselor - C:\Documents and Settings\sf\Application Data\Mozilla\Firefox\Profiles\hgx4pa98.default\Extensions\{25dd52dc-89a8-469d-9e8f-8d483095d1e8} [2014-10-02] [not signed]
FF Extension: Flash Block - C:\Documents and Settings\sf\Application Data\Mozilla\Firefox\Profiles\hgx4pa98.default\Extensions\{95ab36d4-fb6f-47b0-8b8d-e5f3bd547953}.xpi [2015-06-16]
FF Extension: Panda Security Toolbar - C:\Documents and Settings\sf\Application Data\Mozilla\Firefox\Profiles\hgx4pa98.default\Extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}.xpi [2015-09-30] [not signed]
FF Extension: Default - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2016-03-24] [not signed]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2014-02-20]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 EvtEng; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [643072 2007-02-21] (Intel Corporation) [File not signed]
R2 NanoServiceMain; C:\Program Files\Panda Security\Panda Security Protection\PSANHost.exe [142072 2015-10-18] (Panda Security, S.L.)
R2 PandaAgent; C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe [66808 2014-10-09] (Panda Security, S.L.)
R2 PSUAService; C:\Program Files\Panda Security\Panda Security Protection\PSUAService.exe [38136 2015-10-23] (Panda Security, S.L.)
R2 RegSrvc; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [327680 2007-02-21] (Intel Corporation) [File not signed]
R2 S24EventMonitor; C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [983040 2007-02-21] (Intel Corporation ) [File not signed]
R2 WLANKEEPER; C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe [294912 2007-02-21] (Intel® Corporation) [File not signed]
R2 wltrysvc; C:\WINDOWS\System32\bcmwltry.exe [1253376 2007-03-16] (Dell Inc.) [File not signed]
S3 WsDrvInst; "C:\Program Files\Wondershare\TunesGoRetro\DriverInstall.exe" [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21425 2016-04-05] (Meetinghouse Data Communications) [File not signed]
R0 drvmcdb; C:\WINDOWS\System32\drivers\drvmcdb.sys [88352 2005-04-22] (Sonic Solutions) [File not signed]
R2 drvnddm; C:\WINDOWS\System32\drivers\drvnddm.sys [40544 2005-04-21] (Sonic Solutions) [File not signed]
R0 giveio; C:\WINDOWS\System32\giveio.sys [5248 1996-04-04] () [File not signed]
R3 HSFHWICH; C:\WINDOWS\System32\DRIVERS\HSFHWICH.sys [208384 2005-05-03] (Conexant Systems, Inc.)
R3 HSF_DPV; C:\WINDOWS\System32\DRIVERS\HSF_DPV.SYS [1033728 2005-05-03] (Conexant Systems, Inc.)
S3 IWCA; C:\WINDOWS\System32\DRIVERS\iwca.sys [234496 2004-08-12] (Intel Corporation) [File not signed]
R1 NNSALPC; C:\WINDOWS\System32\DRIVERS\NNSAlpc.sys [87032 2015-07-09] (Panda Security, S.L.)
R1 NNSHTTP; C:\WINDOWS\System32\DRIVERS\NNSHttp.sys [202104 2015-07-09] (Panda Security, S.L.)
R1 NNSHTTPS; C:\WINDOWS\System32\DRIVERS\NNSHttps.sys [109688 2015-07-09] (Panda Security, S.L.)
R1 NNSIDS; C:\WINDOWS\System32\DRIVERS\NNSIds.sys [121720 2015-07-09] (Panda Security, S.L.)
R3 NNSNAHS; C:\WINDOWS\System32\DRIVERS\NNSNAHS.sys [55216 2015-05-20] (Panda Security, S.L.)
R1 NNSPICC; C:\WINDOWS\System32\DRIVERS\NNSPicc.sys [102264 2015-07-09] (Panda Security, S.L.)
R1 NNSPIHS; C:\WINDOWS\System32\DRIVERS\NNSPihs.sys [52088 2015-07-09] (Panda Security, S.L.)
R1 NNSPOP3; C:\WINDOWS\System32\DRIVERS\NNSPop3.sys [120568 2015-07-09] (Panda Security, S.L.)
R1 NNSPROT; C:\WINDOWS\System32\DRIVERS\NNSProt.sys [281720 2015-07-09] (Panda Security, S.L.)
R1 NNSPRV; C:\WINDOWS\System32\DRIVERS\NNSPrv.sys [209016 2015-07-09] (Panda Security, S.L.)
R1 NNSSMTP; C:\WINDOWS\System32\DRIVERS\NNSSmtp.sys [108408 2015-07-09] (Panda Security, S.L.)
R1 NNSSTRM; C:\WINDOWS\System32\DRIVERS\NNSStrm.sys [240376 2015-07-09] (Panda Security, S.L.)
R1 NNSTLSC; C:\WINDOWS\System32\DRIVERS\NNSTlsc.sys [94968 2015-07-09] (Panda Security, S.L.)
R1 OMCI; C:\WINDOWS\SYSTEM32\DRIVERS\OMCI.SYS [13632 2001-08-22] (Dell Computer Corporation) [File not signed]
R2 PSINAflt; C:\WINDOWS\System32\DRIVERS\PSINAflt.sys [140792 2015-07-20] (Panda Security, S.L.)
R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [103288 2015-07-20] (Panda Security, S.L.)
R1 PSINKNC; C:\WINDOWS\System32\DRIVERS\psinknc.sys [172792 2015-07-20] (Panda Security, S.L.)
R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [114680 2015-07-20] (Panda Security, S.L.)
R2 PSINProt; C:\WINDOWS\System32\DRIVERS\PSINProt.sys [125176 2015-07-20] (Panda Security, S.L.)
R2 PSINReg; C:\WINDOWS\System32\DRIVERS\PSINReg.sys [100600 2015-07-20] (Panda Security, S.L.)
R3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [50832 2015-05-22] (Panda Security, S.L.)
S3 Rockusb; C:\WINDOWS\System32\DRIVERS\rockusb.sys [46160 2013-10-28] (Fuzhou Rockchip Electronics Co,Ltd.)
R2 s24trans; C:\WINDOWS\System32\DRIVERS\s24trans.sys [12416 2007-02-21] (Intel Corporation) [File not signed]
R0 speedfan; C:\WINDOWS\System32\speedfan.sys [24184 2012-12-30] (Almico Software)
R1 sscdbhk5; C:\WINDOWS\System32\drivers\sscdbhk5.sys [5627 2005-05-13] (Sonic Solutions) [File not signed]
R1 ssrtln; C:\WINDOWS\System32\drivers\ssrtln.sys [23545 2005-05-13] (Sonic Solutions) [File not signed]
R3 STAC97; C:\WINDOWS\System32\drivers\stac97.sys [264440 2004-11-15] (SigmaTel, Inc.)
R2 StarOpen; C:\WINDOWS\system32\Drivers\StarOpen.sys [13120 2016-02-21] ()
S3 tap0901; C:\WINDOWS\System32\DRIVERS\tap0901.sys [32968 2014-03-07] (The OpenVPN Project)
R2 tfsnboio; C:\WINDOWS\System32\dla\tfsnboio.sys [25725 2005-05-31] (Sonic Solutions) [File not signed]
R2 tfsncofs; C:\WINDOWS\System32\dla\tfsncofs.sys [34845 2005-05-31] (Sonic Solutions) [File not signed]
R2 tfsndrct; C:\WINDOWS\System32\dla\tfsndrct.sys [4125 2005-05-31] (Sonic Solutions) [File not signed]
R2 tfsndres; C:\WINDOWS\System32\dla\tfsndres.sys [2241 2005-05-31] (Sonic Solutions) [File not signed]
R2 tfsnifs; C:\WINDOWS\System32\dla\tfsnifs.sys [86876 2005-05-31] (Sonic Solutions) [File not signed]
R2 tfsnopio; C:\WINDOWS\System32\dla\tfsnopio.sys [15069 2005-05-31] (Sonic Solutions) [File not signed]
R2 tfsnpool; C:\WINDOWS\System32\dla\tfsnpool.sys [6365 2005-05-31] (Sonic Solutions) [File not signed]
R2 tfsnudf; C:\WINDOWS\System32\dla\tfsnudf.sys [98716 2005-05-31] (Sonic Solutions) [File not signed]
R2 tfsnudfa; C:\WINDOWS\System32\dla\tfsnudfa.sys [100605 2005-05-31] (Sonic Solutions) [File not signed]
R3 tifm; C:\WINDOWS\System32\drivers\tifm.sys [55808 2006-07-21] (Texas Instruments)
R3 w29n51; C:\WINDOWS\System32\DRIVERS\w29n51.sys [2209408 2007-02-08] (Intel® Corporation)
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S3 UIUSys; system32\drivers\UIUSys.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-04-10 19:14 - 2016-04-10 19:14 - 00151526 _____ C:\Documents and Settings\sf\Desktop\OTL5.Txt
2016-04-10 18:05 - 2016-04-10 18:05 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB955704$
2016-04-10 18:05 - 2016-04-10 18:05 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-04-10 18:02 - 2008-04-14 05:42 - 01306624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6.dll
2016-04-10 18:02 - 2008-04-14 05:40 - 00294912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msaud32.acm
2016-04-10 18:02 - 2008-04-14 05:40 - 00102912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpcdll.dll
2016-04-10 18:02 - 2008-04-14 05:40 - 00086016 ____C (Sipro Lab Telecom Inc.) C:\WINDOWS\system32\dllcache\sl_anet.acm
2016-04-10 18:02 - 2008-04-14 05:39 - 00290816 ____C (Fraunhofer Institut Integrierte Schaltungen IIS) C:\WINDOWS\system32\dllcache\l3codeca.acm
2016-04-10 18:02 - 2008-04-13 22:58 - 00184959 ____C C:\WINDOWS\system32\dllcache\compact.wmz
2016-04-10 18:02 - 2008-04-13 22:58 - 00066725 ____C C:\WINDOWS\system32\dllcache\revert.wmz
2016-04-10 18:02 - 2008-04-13 22:57 - 00079872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6r.dll
2016-04-10 18:02 - 2007-06-26 11:30 - 00572557 ____C C:\WINDOWS\system32\dllcache\rtuner.wmv
2016-04-10 18:02 - 2007-06-26 11:30 - 00457607 ____C C:\WINDOWS\system32\dllcache\mdlib.wmv
2016-04-10 18:02 - 2007-06-26 11:30 - 00381425 ____C C:\WINDOWS\system32\dllcache\copycd.wmv
2016-04-10 18:02 - 2007-06-26 11:30 - 00375519 ____C C:\WINDOWS\system32\dllcache\nuskin.wmv
2016-04-10 18:02 - 2007-06-26 11:30 - 00354468 ____C C:\WINDOWS\system32\dllcache\wmpaud1.wav
2016-04-10 18:02 - 2007-06-26 11:30 - 00343204 ____C C:\WINDOWS\system32\dllcache\wmpaud7.wav
2016-04-10 18:02 - 2007-06-26 11:30 - 00343204 ____C C:\WINDOWS\system32\dllcache\wmpaud6.wav
2016-04-10 18:02 - 2007-06-26 11:30 - 00300969 ____C C:\WINDOWS\system32\dllcache\viz.wmv
2016-04-10 18:02 - 2007-06-26 11:30 - 00172196 ____C C:\WINDOWS\system32\dllcache\wmpaud9.wav
2016-04-10 18:02 - 2007-06-26 11:30 - 00172196 ____C C:\WINDOWS\system32\dllcache\wmpaud8.wav
2016-04-10 18:02 - 2007-06-26 11:30 - 00172196 ____C C:\WINDOWS\system32\dllcache\wmpaud3.wav
2016-04-10 18:02 - 2007-06-26 11:30 - 00086196 ____C C:\WINDOWS\system32\dllcache\wmpaud5.wav
2016-04-10 18:02 - 2007-06-26 11:30 - 00086180 ____C C:\WINDOWS\system32\dllcache\wmpaud4.wav
2016-04-10 18:02 - 2007-06-26 11:30 - 00086180 ____C C:\WINDOWS\system32\dllcache\wmpaud2.wav
2016-04-10 18:02 - 2007-06-26 11:30 - 00022060 ____C C:\WINDOWS\system32\dllcache\npds.zip
2016-04-10 18:02 - 2007-06-26 11:30 - 00010457 ____C C:\WINDOWS\system32\dllcache\wmptour.hta
2016-04-10 18:02 - 2007-06-26 11:30 - 00009585 ____C C:\WINDOWS\system32\dllcache\controls.css
2016-04-10 18:02 - 2007-06-26 11:30 - 00008298 ____C C:\WINDOWS\system32\dllcache\contents.htm
2016-04-10 18:02 - 2007-06-26 11:30 - 00006878 ____C C:\WINDOWS\system32\dllcache\controls.js
2016-04-10 18:02 - 2007-06-26 11:30 - 00005971 ____C C:\WINDOWS\system32\dllcache\events.js
2016-04-10 18:02 - 2007-06-26 11:30 - 00003187 ____C C:\WINDOWS\system32\dllcache\tour.js
2016-04-10 18:02 - 2007-06-26 11:30 - 00001771 ____C C:\WINDOWS\system32\dllcache\wmptour.css
2016-04-10 18:02 - 2007-06-26 11:30 - 00001148 ____C C:\WINDOWS\system32\dllcache\snd.htm
2016-04-10 18:02 - 2007-06-26 11:30 - 00000420 ____C C:\WINDOWS\system32\dllcache\wmploc.js
2016-04-10 18:02 - 2007-06-26 11:29 - 00097117 ____C C:\WINDOWS\system32\dllcache\mplayer2.hlp
2016-04-10 18:02 - 2007-06-26 11:29 - 00001885 ____C C:\WINDOWS\system32\dllcache\mplayer2.cnt
2016-04-10 18:02 - 2007-06-26 11:28 - 00613334 ____C C:\WINDOWS\system32\dllcache\wmplayer.chm
2016-04-10 18:02 - 2007-06-26 11:28 - 00067374 ____C C:\WINDOWS\system32\dllcache\wmplayer.adm
2016-04-10 18:02 - 2007-06-26 11:26 - 00077307 ____C C:\WINDOWS\system32\dllcache\plyr_err.chm
2016-04-10 18:02 - 2007-06-26 11:26 - 00001477 ____C C:\WINDOWS\system32\dllcache\plylst6.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00001477 ____C C:\WINDOWS\system32\dllcache\plylst5.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00001474 ____C C:\WINDOWS\system32\dllcache\plylst3.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00001451 ____C C:\WINDOWS\system32\dllcache\plylst12.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00001448 ____C C:\WINDOWS\system32\dllcache\plylst4.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00001250 ____C C:\WINDOWS\system32\dllcache\plylst1.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00001049 ____C C:\WINDOWS\system32\dllcache\plylst2.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00001046 ____C C:\WINDOWS\system32\dllcache\plylst7.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00001036 ____C C:\WINDOWS\system32\dllcache\plylst8.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00000789 ____C C:\WINDOWS\system32\dllcache\plylst11.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00000787 ____C C:\WINDOWS\system32\dllcache\plylst10.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00000784 ____C C:\WINDOWS\system32\dllcache\plylst9.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00000783 ____C C:\WINDOWS\system32\dllcache\plylst13.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00000775 ____C C:\WINDOWS\system32\dllcache\plylst14.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00000733 ____C C:\WINDOWS\system32\dllcache\plylst15.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00000403 ____C C:\WINDOWS\system32\dllcache\npdrmv2.zip
2016-04-10 18:02 - 2007-04-02 23:21 - 00023195 ____C C:\WINDOWS\system32\dllcache\wmplay.chm
2016-04-10 18:01 - 2008-04-14 05:42 - 04274816 ____N (NVIDIA Corporation) C:\WINDOWS\system32\nv4_disp.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 01737856 ____N (Matrox Graphics Inc.) C:\WINDOWS\system32\mtxparhd.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00397056 ____N (S3 Graphics, Inc.) C:\WINDOWS\system32\s3gnb.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00291328 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagentrt.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00290304 ____N (Microsoft Corporation) C:\WINDOWS\system32\rhttpaa.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00286792 ____N (Smart Link) C:\WINDOWS\system32\slextspk.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00193024 ____N (Microsoft Corporation) C:\WINDOWS\system32\napmontr.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00188508 ____N (Smart Link) C:\WINDOWS\system32\slgen.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00176640 ____N (Microsoft Corporation) C:\WINDOWS\system32\napstat.exe
2016-04-10 18:01 - 2008-04-14 05:42 - 00155136 ____N (Microsoft Corporation) C:\WINDOWS\system32\mssha.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00150528 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagent.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00144384 ____N (Microsoft Corporation) C:\WINDOWS\system32\onex.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00076800 ____N (Microsoft Corporation) C:\WINDOWS\system32\qutil.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00073832 ____N (Smart Link) C:\WINDOWS\system32\slcoinst.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00073796 ____N (Smart Link) C:\WINDOWS\system32\slserv.exe
2016-04-10 18:01 - 2008-04-14 05:42 - 00069120 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00062464 ____N (Microsoft Corporation) C:\WINDOWS\system32\qcliprov.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00061952 ____N (Microsoft Corporation) C:\WINDOWS\system32\rasqec.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00060416 ____N (Microsoft Corporation) C:\WINDOWS\system32\tzchange.exe
2016-04-10 18:01 - 2008-04-14 05:42 - 00053248 ____N (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00050688 ____N (Microsoft Corporation) C:\WINDOWS\system32\tspkg.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcperf.exe
2016-04-10 18:01 - 2008-04-14 05:42 - 00032866 ____N (Smart Link) C:\WINDOWS\system32\slrundll.exe
2016-04-10 18:01 - 2008-04-14 05:42 - 00032768 ____N (Microsoft Corporation) C:\WINDOWS\system32\setupn.exe
2016-04-10 18:01 - 2008-04-14 05:42 - 00030208 ____N (Microsoft Corporation) C:\WINDOWS\system32\napipsec.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00028672 ____N (Microsoft Corporation) C:\WINDOWS\system32\vidcap.ax
2016-04-10 18:01 - 2008-04-14 05:42 - 00028672 ____N (Microsoft Corporation) C:\WINDOWS\system32\verclsid.exe
2016-04-10 18:01 - 2008-04-14 05:42 - 00023040 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativmvxx.ax
2016-04-10 18:01 - 2008-04-14 05:42 - 00010752 ____N (Microsoft Corporation) C:\WINDOWS\system32\smtpapi.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00009728 ____N (Microsoft Corporation) C:\WINDOWS\system32\rwnh.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00009728 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativdaxx.ax
2016-04-10 18:01 - 2008-04-14 05:41 - 01888992 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ati3duag.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00870784 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ati3d1ag.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00650752 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00516768 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ativvaxx.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00397312 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcex.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00377984 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2dvaa.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00233472 ____N (Microsoft Corporation) C:\WINDOWS\system32\azroles.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00229376 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2cqag.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00201728 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2dvag.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00184832 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00184320 ____N (Microsoft Corporation) C:\WINDOWS\system32\microsoft.managementconsole.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00180224 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00136192 ____N (Microsoft Corporation) C:\WINDOWS\system32\aaclient.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00132096 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00126976 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00106496 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcfxcommon.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00094208 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00061440 ____N (Microsoft Corporation) C:\WINDOWS\system32\kmsvc.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00059392 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapqec.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00057856 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3cfg.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00056320 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00048640 ____N (Microsoft Corporation) C:\WINDOWS\system32\dhcpqec.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00040960 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3gpclnt.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsroam.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00037376 ____N (Microsoft Corporation) C:\WINDOWS\system32\l2gpstore.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapsvc.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00032768 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativtmxx.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00032285 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\hsfcisp2.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00030720 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapolqec.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00026112 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00019456 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsntfy.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00012800 ____N (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00009216 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3dlg.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00007168 ____N (Microsoft Corporation) C:\WINDOWS\system32\bitsprx4.dll
2016-04-10 18:01 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdpash.dll
2016-04-10 18:01 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdnepr.dll
2016-04-10 18:01 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdiultn.dll
2016-04-10 18:01 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdbhc.dll
2016-04-10 18:01 - 2008-04-14 00:15 - 00046592 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irbus.sys
2016-04-10 18:01 - 2008-04-14 00:13 - 00009728 ____N (Microsoft Corporation) C:\WINDOWS\system32\comsdupd.exe
2016-04-10 18:01 - 2008-04-13 23:45 - 00076800 ____N (Microsoft Corporation) C:\WINDOWS\system32\msshavmsg.dll
2016-04-10 18:00 - 2008-04-14 05:42 - 00121856 ____N (Microsoft Corporation) C:\WINDOWS\system32\xmllite.dll
2016-04-10 18:00 - 2008-04-14 05:42 - 00032866 ____N (Smart Link) C:\WINDOWS\slrundll.exe
2016-04-10 18:00 - 2008-04-13 23:09 - 00689152 ____N (Microsoft Corporation) C:\WINDOWS\system32\xpsp3res.dll
2016-04-10 17:53 - 2016-04-10 18:02 - 00000000 ____D C:\WINDOWS\ServicePackFiles
2016-04-10 17:52 - 2008-04-14 05:42 - 00294912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dlimport.exe
2016-04-10 17:48 - 2008-04-14 05:42 - 00011325 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\vchnt5.dll
2016-04-10 17:48 - 2008-04-14 05:42 - 00003901 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\siint5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00025471 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\atv04nt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00021183 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\atv01nt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00017279 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\atv10nt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00015423 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\ch7xxnt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00014143 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\atv06nt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00011359 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\atv02nt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00004255 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv01nt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00003967 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv02nt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00003775 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv11nt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00003711 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv09nt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00003647 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv07nt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00003615 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv05nt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00003135 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv08nt5.dll
2016-04-10 17:48 - 2008-04-14 00:26 - 00030592 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rndismpx.sys
2016-04-10 17:48 - 2008-04-14 00:26 - 00012800 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023x.sys
2016-04-10 17:48 - 2008-04-14 00:21 - 00101120 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2016-04-10 17:48 - 2008-04-14 00:16 - 00273024 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-04-10 17:48 - 2008-04-14 00:16 - 00121984 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2016-04-10 17:48 - 2008-04-14 00:16 - 00059136 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2016-04-10 17:48 - 2008-04-14 00:16 - 00037888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthmodem.sys
2016-04-10 17:48 - 2008-04-14 00:16 - 00036480 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthprint.sys
2016-04-10 17:48 - 2008-04-14 00:16 - 00025600 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2016-04-10 17:48 - 2008-04-14 00:16 - 00018944 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthusb.sys
2016-04-10 17:48 - 2008-04-14 00:16 - 00017024 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-04-10 17:48 - 2008-04-14 00:15 - 00019200 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidir.sys
2016-04-10 17:48 - 2008-04-14 00:13 - 00014208 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wacompen.sys
2016-04-10 17:48 - 2008-04-14 00:13 - 00012672 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mutohpen.sys
2016-04-10 17:48 - 2008-04-14 00:10 - 00010240 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sffp_mmc.sys
2016-04-10 17:48 - 2008-04-14 00:06 - 00046464 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\gagp30kx.sys
2016-04-10 17:48 - 2008-04-14 00:06 - 00044928 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agpcpq.sys
2016-04-10 17:48 - 2008-04-14 00:06 - 00044672 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uagp35.sys
2016-04-10 17:48 - 2008-04-14 00:06 - 00043008 ____N (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdagp.sys
2016-04-10 17:48 - 2008-04-14 00:06 - 00042752 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\alim1541.sys
2016-04-10 17:48 - 2008-04-14 00:06 - 00042368 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agp440.sys
2016-04-10 17:48 - 2008-04-14 00:06 - 00042240 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\viaagp.sys
2016-04-10 17:48 - 2008-04-14 00:06 - 00040960 ____N (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\Drivers\sisagp.sys
2016-04-10 17:48 - 2008-04-14 00:06 - 00005888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\smbali.sys
2016-04-10 17:48 - 2008-04-13 23:53 - 01309184 ____N (Smart Link) C:\WINDOWS\system32\Drivers\mtlstrm.sys
2016-04-10 17:48 - 2008-04-13 23:53 - 01041536 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfdpsp2.sys
2016-04-10 17:48 - 2008-04-13 23:53 - 00685056 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfcxts2.sys
2016-04-10 17:48 - 2008-04-13 23:53 - 00404990 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slntamr.sys
2016-04-10 17:48 - 2008-04-13 23:53 - 00220032 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfbs2s2.sys
2016-04-10 17:48 - 2008-04-13 23:53 - 00180360 ____N (Smart Link) C:\WINDOWS\system32\Drivers\ntmtlfax.sys
2016-04-10 17:48 - 2008-04-13 23:53 - 00129535 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slnt7554.sys
2016-04-10 17:48 - 2008-04-13 23:53 - 00126686 ____N (Smart Link) C:\WINDOWS\system32\Drivers\mtlmnt5.sys
2016-04-10 17:48 - 2008-04-13 23:53 - 00095424 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slnthal.sys
2016-04-10 17:48 - 2008-04-13 23:53 - 00013776 ____N (Smart Link) C:\WINDOWS\system32\Drivers\recagent.sys
2016-04-10 17:48 - 2008-04-13 23:53 - 00013240 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slwdmsup.sys
2016-04-10 17:48 - 2008-04-13 22:06 - 00144384 ____N (Windows ® Server 2003 DDK provider) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 01897408 ____N (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nv4_mini.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00701440 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati2mtag.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00452736 ____N (Matrox Graphics Inc.) C:\WINDOWS\system32\Drivers\mtxparhm.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00327040 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati2mtaa.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00166912 ____N (S3 Graphics, Inc.) C:\WINDOWS\system32\Drivers\s3gnbm.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00104960 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinrvxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00073216 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atintuxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00063663 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1rvxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00063488 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinxsxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00057856 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinbtxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00056623 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1btxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00052224 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinraxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00036463 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1tuxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00034735 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1xsxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00031744 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinxbxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00030671 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1raxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00029455 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1xbxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00028672 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinsnxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00026367 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1snxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00025471 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\watv10nt.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00022271 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\watv06nt.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00021343 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1ttxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00014336 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinpdxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00013824 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinttxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00013824 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinmdxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00012047 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1pdxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00011935 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\wadv11nt.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00011871 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\wadv09nt.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00011807 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\wadv07nt.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00011615 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1mdxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00011295 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\wadv08nt.sys
2016-04-10 17:48 - 2007-04-02 21:36 - 00129045 ____N C:\WINDOWS\system32\Drivers\cxthsfs2.cty
2016-04-10 17:48 - 2006-12-29 20:21 - 00064352 ____N C:\WINDOWS\system32\Drivers\ativmc20.cod
2016-04-10 17:48 - 2006-12-29 20:02 - 00067866 ____N C:\WINDOWS\system32\Drivers\netwlan5.img
2016-04-10 17:46 - 2006-12-29 00:31 - 00019569 _____ C:\WINDOWS\003058_.tmp
2016-04-10 17:39 - 2016-04-10 17:46 - 00000000 __HDC C:\WINDOWS\$NtServicePackUninstall$
2016-04-10 17:13 - 2016-04-10 17:27 - 00000000 ____D C:\Documents and Settings\sf\Application Data\InfraRecorder
2016-04-10 17:13 - 2016-04-10 17:13 - 00000760 _____ C:\Documents and Settings\All Users\Desktop\InfraRecorder.lnk
2016-04-10 17:13 - 2016-04-10 17:13 - 00000000 ____D C:\Program Files\InfraRecorder
2016-04-10 17:13 - 2016-04-10 17:13 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\InfraRecorder
2016-04-10 16:41 - 2016-04-10 16:41 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Canneverbe Limited
2016-04-10 16:40 - 2016-04-10 16:40 - 00001604 _____ C:\Documents and Settings\All Users\Desktop\CDBurnerXP.lnk
2016-04-10 16:40 - 2016-04-10 16:40 - 00001556 _____ C:\Documents and Settings\All Users\Start Menu\Programs\CDBurnerXP.lnk
2016-04-10 16:40 - 2016-04-10 16:40 - 00000000 ____D C:\Documents and Settings\sf\Application Data\Canneverbe Limited
2016-04-10 16:40 - 2016-02-21 19:04 - 00013120 _____ C:\WINDOWS\system32\Drivers\StarOpen.sys
2016-04-10 16:39 - 2016-04-10 16:40 - 00000000 ____D C:\Program Files\CDBurnerXP
2016-04-10 14:55 - 2016-04-10 14:55 - 00005238 _____ C:\Documents and Settings\sf\Desktop\sfvb5.txt
2016-04-10 14:54 - 2015-05-22 16:45 - 00050832 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSKMAD.sys
2016-04-06 01:53 - 2016-04-06 01:53 - 00013132 _____ C:\Documents and Settings\sf\My Documents\bsod.txt
2016-04-06 01:42 - 2016-04-06 01:42 - 00003352 _____ C:\Documents and Settings\sf\Desktop\defrag.txt
2016-04-05 23:28 - 2016-04-05 23:28 - 00005592 _____ C:\Documents and Settings\sf\Desktop\Hardware Interrupts and DPCs.txt
2016-04-05 21:30 - 2016-04-05 21:30 - 00005304 _____ C:\Documents and Settings\sf\Desktop\Search.txt
2016-04-05 21:25 - 2016-04-05 21:58 - 00012966 _____ C:\Documents and Settings\sf\Desktop\sfvb4.txt
2016-04-05 18:28 - 2016-04-05 18:28 - 00246512 _____ C:\Documents and Settings\sf\Desktop\FRST4.txt
2016-04-05 18:28 - 2016-04-05 18:28 - 00023252 _____ C:\Documents and Settings\sf\Desktop\Addition4.txt
2016-04-05 17:58 - 2016-04-05 17:58 - 00000358 _____ C:\VEW3app.txt
2016-04-05 17:57 - 2016-04-05 17:57 - 00000670 _____ C:\VEW3.txt
2016-04-05 17:50 - 2005-07-19 18:05 - 00135168 _____ (Intel Corporation) C:\WINDOWS\system32\igfxres.dll
2016-04-05 17:37 - 2016-04-05 17:37 - 00000000 ____D C:\WINDOWS\tiinst
2016-04-05 17:37 - 2006-07-21 12:42 - 00055808 _____ (Texas Instruments) C:\WINDOWS\system32\Drivers\tifm.sys
2016-04-05 17:32 - 2005-05-03 15:09 - 01033728 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\HSF_DPV.SYS
2016-04-05 17:32 - 2005-05-03 11:56 - 00129405 _____ C:\WINDOWS\system32\Drivers\del1028.cty
2016-04-05 17:32 - 2005-02-23 15:02 - 00042858 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\hsfci014.dll
2016-04-05 17:23 - 2016-04-05 17:23 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Dell Wireless
2016-04-05 17:23 - 2007-03-16 18:10 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ATL71.DLL
2016-04-05 17:23 - 2007-03-16 18:10 - 00033664 _____ (CACE Technologies) C:\WINDOWS\system32\Drivers\BCMWLNPF.SYS
2016-04-05 17:22 - 2016-04-05 17:22 - 00000010 _____ C:\WINDOWS\BCMWLU00.txt
2016-04-05 17:22 - 2007-03-16 18:10 - 02129920 _____ (BCGSoft Ltd) C:\WINDOWS\system32\WLBCGCBPRO731.DLL
2016-04-05 17:22 - 2007-03-16 18:10 - 00757760 _____ C:\WINDOWS\system32\bcm1xsup.dll
2016-04-05 17:22 - 2007-03-16 18:10 - 00086016 _____ C:\WINDOWS\system32\preflib.dll
2016-04-05 17:22 - 2007-03-16 18:10 - 00069632 _____ (CACE Technologies) C:\WINDOWS\system32\bcmwlpkt.dll
2016-04-05 17:20 - 2016-04-05 17:20 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Intel PROSet Wireless
2016-04-05 17:19 - 2016-04-05 17:19 - 00000472 _____ C:\WINDOWS\system32\results.txt
2016-04-05 17:19 - 2016-04-05 17:19 - 00000155 _____ C:\version.ini
2016-04-05 17:19 - 2016-04-05 17:19 - 00000000 ____D C:\Documents and Settings\NetworkService\Application Data\Intel
2016-04-05 17:19 - 2016-04-05 17:19 - 00000000 ____D C:\Documents and Settings\LocalService\Application Data\Intel
2016-04-05 17:19 - 2016-04-05 17:19 - 00000000 ____D C:\Documents and Settings\Default User\Application Data\Intel
2016-04-05 17:18 - 2016-04-05 17:18 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Intel
2016-04-05 17:18 - 2007-02-12 11:41 - 02732032 _____ (Intel Corporation) C:\WINDOWS\system32\Netw2r32.dll
2016-04-05 17:18 - 2007-02-12 11:40 - 00557056 _____ (Intel Corporation) C:\WINDOWS\system32\Netw2c32.dll
2016-04-05 17:17 - 2016-04-05 17:17 - 00000000 ____D C:\Documents and Settings\sf\Application Data\Intel
2016-04-05 17:16 - 2016-04-05 17:16 - 00000000 ____D C:\Program Files\Digital Line Detect
2016-04-05 17:12 - 2016-04-05 17:50 - 00000000 ____D C:\WINDOWS\system32\dla
2016-04-05 17:12 - 2016-04-05 17:12 - 00000181 _____ C:\WINDOWS\wininit.ini
2016-04-05 17:12 - 2016-04-05 17:12 - 00000000 ____D C:\Program Files\Sonic
2016-04-05 17:12 - 2016-04-05 17:12 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Sonic
2016-04-05 17:12 - 2005-05-31 05:33 - 00098360 _____ (Sonic Solutions) C:\WINDOWS\dla.exe
2016-04-05 17:12 - 2005-05-31 05:33 - 00061500 _____ (Sonic Solutions) C:\WINDOWS\system32\tfswapi.dll
2016-04-05 17:12 - 2005-05-13 10:37 - 00023545 _____ (Sonic Solutions) C:\WINDOWS\system32\Drivers\ssrtln.sys
2016-04-05 17:12 - 2005-05-13 10:37 - 00005627 _____ (Sonic Solutions) C:\WINDOWS\system32\Drivers\sscdbhk5.sys
2016-04-05 17:12 - 2005-04-22 03:22 - 00088352 _____ (Sonic Solutions) C:\WINDOWS\system32\Drivers\drvmcdb.sys
2016-04-05 17:12 - 2005-04-21 02:56 - 00040544 _____ (Sonic Solutions) C:\WINDOWS\system32\Drivers\drvnddm.sys
2016-04-05 17:11 - 2016-04-05 17:11 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Dell
2016-04-05 17:10 - 2016-04-05 17:22 - 00000000 ____D C:\Program Files\Dell
2016-04-05 17:10 - 2016-04-05 17:10 - 00001717 _____ C:\Documents and Settings\All Users\Start Menu\Program Updates.lnk
2016-04-05 17:10 - 2016-04-05 17:10 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Mouse Suite
2016-04-05 17:10 - 2006-06-28 11:48 - 00237568 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\pmxutil.dll
2016-04-05 17:10 - 2006-06-24 11:46 - 00131002 _____ C:\WINDOWS\system32\DellPM.ini
2016-04-05 17:10 - 2006-06-22 11:37 - 02285568 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\DellPM.exe
2016-04-05 17:10 - 2006-06-22 11:05 - 00139264 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\pmxmiced.exe
2016-04-05 17:10 - 2006-06-22 10:30 - 00131072 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\pmxscrll.dll
2016-04-05 17:10 - 2006-06-15 18:40 - 00065536 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\pmxhooks.dll
2016-04-05 17:10 - 2006-06-15 18:40 - 00049152 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\pmxcomm.dll
2016-04-05 17:10 - 2006-06-14 10:46 - 00143360 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\ApSwitch.exe
2016-04-05 17:10 - 2006-06-09 15:02 - 00040960 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\LaunHelp.exe
2016-04-05 17:10 - 2006-06-09 12:47 - 00047104 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\iconspy.exe
2016-04-05 17:10 - 2006-06-09 12:47 - 00047104 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\ico.exe
2016-04-05 17:10 - 2006-05-17 17:55 - 00021504 _____ C:\WINDOWS\system32\FontZoom.exe
2016-04-05 17:10 - 2006-05-17 09:27 - 00028672 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\UnInst.exe
2016-04-05 17:10 - 2006-01-03 03:13 - 01443464 ____R (Macromedia, Inc.) C:\WINDOWS\system32\Flash8a.ocx
2016-04-05 17:10 - 2006-01-03 03:13 - 01443464 ____R (Macromedia, Inc.) C:\WINDOWS\Flash8a.ocx
2016-04-05 17:10 - 2006-01-01 19:31 - 00094208 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\Pelzoom.dll
2016-04-05 17:10 - 2005-08-11 15:29 - 00073728 _____ (Macrovision Corporation) C:\WINDOWS\system32\ISUSPM.cpl
2016-04-05 16:53 - 2016-04-05 18:42 - 00546246 _____ C:\Documents and Settings\sf\Desktop\sfvb3.txt
2016-04-04 10:56 - 2016-04-04 12:32 - 00426496 _____ C:\Documents and Settings\sf\My Documents\Helium WIP.xls
2016-04-04 10:55 - 2016-04-10 18:40 - 00000446 _____ C:\WINDOWS\Tasks\WpsUpdateTask_sf.job
2016-04-04 10:55 - 2016-04-10 18:40 - 00000446 _____ C:\WINDOWS\Tasks\WpsNotifyTask_sf.job
2016-04-03 19:52 - 2007-03-16 18:10 - 03395584 _____ (Dell Inc.) C:\WINDOWS\system32\BCMWLCPL.CPL
2016-04-03 19:52 - 2007-03-16 18:10 - 01392640 _____ (Dell Inc.) C:\WINDOWS\system32\WLTRAY.EXE
2016-04-03 19:52 - 2007-03-16 18:10 - 01253376 _____ (Dell Inc.) C:\WINDOWS\system32\BCMWLTRY.EXE
2016-04-03 19:52 - 2007-03-16 18:10 - 00770048 _____ (Dell Inc.) C:\WINDOWS\system32\BCMLogon.dll
2016-04-03 19:52 - 2007-03-16 18:10 - 00044032 _____ (Broadcom Corporation) C:\WINDOWS\system32\wltrynt.dll
2016-04-03 19:52 - 2007-03-16 18:10 - 00020480 _____ C:\WINDOWS\system32\WLTRYSVC.EXE
2016-04-03 19:52 - 2005-02-23 11:04 - 01396831 ____N (Meetinghouse Data Communications) C:\WINDOWS\system32\AegisE5.dll
2016-04-03 19:52 - 2005-02-23 11:04 - 00192512 ____N () C:\WINDOWS\system32\AegisI5.exe
2016-04-03 19:52 - 2005-02-23 11:04 - 00069632 ____N (Dell Inc) C:\WINDOWS\system32\BCMWLD2K.EXE
2016-04-03 18:33 - 2003-12-08 10:49 - 00983040 _____ (Intel Corporation) C:\WINDOWS\system32\W20MLRES.DLL
2016-04-03 18:33 - 2003-03-17 20:03 - 00966656 _____ (Intel Corporation) C:\WINDOWS\system32\W70MLRES.DLL
2016-04-03 18:32 - 2016-04-03 18:32 - 00000000 ____D C:\Documents and Settings\sf\Local Settings\Application Data\Help
2016-04-03 18:23 - 2007-03-16 18:10 - 00253952 _____ (Dell Inc.) C:\WINDOWS\system32\bcmwlu00.exe
2016-04-03 18:23 - 2005-02-23 11:04 - 00369024 ____N (Broadcom Corporation) C:\WINDOWS\system32\Drivers\BCMWL5.SYS
2016-04-03 18:16 - 2016-04-03 18:16 - 00000000 ____D C:\Program Files\Broadcom
2016-04-03 18:15 - 2016-04-03 18:15 - 00000000 ____D C:\WINDOWS\Downloaded Installations
2016-04-03 18:11 - 2016-04-03 18:11 - 00000000 ____D C:\Program Files\CONEXANT
2016-04-03 18:11 - 2005-05-03 15:08 - 00705408 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\HSF_CNXT.sys
2016-04-03 18:11 - 2005-05-03 15:08 - 00208384 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\HSFHWICH.sys
2016-04-03 18:11 - 2004-03-17 12:04 - 00013059 _____ (Conexant) C:\WINDOWS\system32\Drivers\mdmxsdk.sys
2016-04-03 18:11 - 2004-03-17 12:00 - 00086016 _____ (Conexant) C:\WINDOWS\system32\mdmxsdk.dll
2016-04-03 18:11 - 2003-11-13 18:17 - 01042816 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\HSF_DP.sys
2016-04-03 18:11 - 2003-11-05 15:02 - 00032218 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\HSFCI008.dll
2016-04-03 18:11 - 2003-10-27 06:52 - 00128480 _____ C:\WINDOWS\system32\Drivers\del5422.cty
2016-04-02 11:35 - 2016-04-02 11:35 - 00004517 _____ C:\Documents and Settings\sf\Desktop\process explore2.txt
2016-04-01 21:39 - 2016-04-01 21:41 - 00000000 ____D C:\32788R22FWJFW
2016-04-01 21:35 - 2016-04-01 21:35 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Panda Free Antivirus
2016-04-01 21:11 - 2016-04-10 19:13 - 00151526 _____ C:\Documents and Settings\sf\Desktop\OTL.Txt
2016-04-01 21:11 - 2016-04-01 21:11 - 00040112 _____ C:\Documents and Settings\sf\Desktop\Extras.Txt
2016-04-01 20:10 - 2016-04-01 20:10 - 00000000 ____D C:\Program Files\pandasecuritytb
2016-04-01 20:10 - 2016-04-01 20:10 - 00000000 ____D C:\Program Files\Panda Security URL Filtering
2016-04-01 20:10 - 2016-04-01 20:10 - 00000000 ____D C:\Documents and Settings\Default User\Local Settings\Application Data\panda
2016-04-01 20:10 - 2016-04-01 20:10 - 00000000 ____D C:\Documents and Settings\Default User\Application Data\pandasecuritytb
2016-04-01 19:59 - 2016-04-05 23:15 - 00005238 _____ C:\Documents and Settings\sf\Desktop\sfvb2.txt
2016-04-01 12:04 - 2016-04-10 18:37 - 00000792 _____ C:\Documents and Settings\LocalService\Start Menu\Programs\Windows Media Player.lnk
2016-04-01 12:04 - 2016-04-01 12:04 - 00000767 _____ C:\Documents and Settings\sf\Start Menu\Programs\Internet Explorer.lnk
2016-04-01 12:04 - 2016-04-01 12:04 - 00000345 _____ C:\WINDOWS\OEWABLog.txt
2016-04-01 11:32 - 2016-04-01 11:32 - 00090112 _____ C:\WINDOWS\Minidump\Mini040116-01.dmp
2016-04-01 10:24 - 2016-04-01 10:24 - 00119286 _____ C:\Documents and Settings\sf\Desktop\OTL3.Txt
2016-04-01 10:24 - 2016-04-01 10:24 - 00039438 _____ C:\Documents and Settings\sf\Desktop\Extras3.Txt
2016-03-31 22:27 - 2016-03-31 22:26 - 00090112 _____ C:\WINDOWS\Minidump\Mini033116-01.dmp
2016-03-31 22:16 - 2016-03-31 22:16 - 00119320 _____ C:\Documents and Settings\sf\Desktop\OTL2.Txt
2016-03-31 22:16 - 2016-03-31 22:16 - 00039472 _____ C:\Documents and Settings\sf\Desktop\Extras2.Txt
2016-03-31 16:05 - 2016-03-31 16:05 - 00039470 _____ C:\Documents and Settings\sf\Desktop\Extras1.Txt
2016-03-31 16:04 - 2016-03-31 16:04 - 00119580 _____ C:\Documents and Settings\sf\Desktop\OTL1.Txt
2016-03-31 15:51 - 2016-04-01 10:35 - 00602112 _____ (OldTimer Tools) C:\Documents and Settings\sf\Desktop\OTL.exe
2016-03-31 15:43 - 2016-04-01 11:46 - 00007120 _____ C:\SIPOBJ.DBG
2016-03-29 01:10 - 2016-04-01 10:29 - 00000000 __SHD C:\WINDOWS\CSC
2016-03-29 01:10 - 2016-03-29 01:10 - 00090112 _____ C:\WINDOWS\Minidump\Mini032916-02.dmp
2016-03-29 01:06 - 2016-03-29 01:06 - 00000000 ____D C:\WINDOWS\pss
2016-03-29 01:04 - 2016-03-29 01:03 - 00090112 _____ C:\WINDOWS\Minidump\Mini032916-01.dmp
2016-03-28 22:42 - 2016-03-28 22:41 - 00090112 _____ C:\WINDOWS\Minidump\Mini032816-03.dmp
2016-03-28 22:41 - 2016-04-01 11:33 - 01814166 _____ C:\WINDOWS\ntbtlog.txt
2016-03-28 22:38 - 2016-03-28 22:38 - 00090112 _____ C:\WINDOWS\Minidump\Mini032816-02.dmp
2016-03-28 12:19 - 2016-03-28 12:19 - 00090112 _____ C:\WINDOWS\Minidump\Mini032816-01.dmp
2016-03-28 12:08 - 2016-04-10 18:35 - 00013293 _____ C:\WINDOWS\setuplog.txt
2016-03-28 12:08 - 2016-04-10 18:02 - 00000000 ____D C:\Program Files\Messenger
2016-03-28 12:07 - 2016-04-10 18:00 - 00000000 ____D C:\WINDOWS\system32\scripting
2016-03-28 12:07 - 2016-04-10 18:00 - 00000000 ____D C:\WINDOWS\system32\bits
2016-03-28 12:07 - 2016-04-10 18:00 - 00000000 ____D C:\WINDOWS\l2schemas
2016-03-28 12:07 - 2016-03-28 12:07 - 00000000 ____D C:\Program Files\msn
2016-03-28 12:02 - 2016-04-10 18:01 - 00000000 ____D C:\WINDOWS\network diagnostic
2016-03-28 12:00 - 2008-02-05 11:21 - 00019569 _____ C:\WINDOWS\003065_.tmp
2016-03-28 11:58 - 2008-04-14 05:42 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2016-03-28 11:58 - 2008-04-14 00:26 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunmp.sys
2016-03-28 11:58 - 2008-04-14 00:23 - 00264832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-03-28 11:58 - 2008-04-14 00:23 - 00036608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ip6fw.sys
2016-03-28 11:58 - 2008-04-14 00:15 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2016-03-28 11:58 - 2008-04-14 00:10 - 00011904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sffdisk.sys
2016-03-28 11:58 - 2008-04-14 00:10 - 00011008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sffp_sd.sys
2016-03-28 11:58 - 2008-04-14 00:06 - 00079232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-03-28 11:58 - 2008-04-14 00:06 - 00015488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssmbios.sys
2016-03-28 11:58 - 2008-04-14 00:03 - 00129792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltmgr.sys
2016-03-28 11:58 - 2008-04-14 00:01 - 00037760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk7.sys
2016-03-28 11:58 - 2008-04-14 00:01 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2016-03-28 11:58 - 2008-04-13 23:09 - 02897920 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsp2res.dll
2016-03-28 11:58 - 2004-08-04 20:00 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\gpkcsp.dll
2016-03-28 11:58 - 2004-08-04 20:00 - 00092224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\krnl386.exe
2016-03-28 11:58 - 2004-08-04 20:00 - 00068768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mmsystem.dll
2016-03-28 11:58 - 2004-08-04 20:00 - 00053840 _____ C:\WINDOWS\system32\dllcache\dosx.exe
2016-03-28 11:58 - 2004-08-04 20:00 - 00004656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ds16gt.dll
2016-03-28 11:58 - 2004-08-04 20:00 - 00003338 _____ C:\WINDOWS\system32\dllcache\redir.exe
2016-03-28 11:57 - 2008-09-30 14:19 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ulib.dll
2016-03-28 11:57 - 2008-09-29 18:22 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\format.com
2016-03-28 11:57 - 2008-04-14 05:43 - 00139656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpwd.sys
2016-03-28 11:57 - 2008-04-14 05:43 - 00040840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\termdd.sys
2016-03-28 11:57 - 2008-04-14 05:43 - 00021896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdtcp.sys
2016-03-28 11:57 - 2008-04-14 05:43 - 00012040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdpipe.sys
2016-03-28 11:57 - 2008-04-14 05:42 - 00990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\syssetup.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00985088 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00602624 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00389120 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmd.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysdm.cpl
2016-03-28 11:57 - 2008-04-14 05:42 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-03-28 11:57 - 2008-04-14 05:42 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\nwprovau.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\sessmgr.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\desk.cpl
2016-03-28 11:57 - 2008-04-14 05:42 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\scardsvr.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasauto.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\nslookup.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\locator.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpmonui.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ftp.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rshx32.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfctrs.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\olecnv32.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msgsvc.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\userinit.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\cacls.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\savedump.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlsapi.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00989696 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00728064 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00706048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00617472 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00617472 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mgmtapi.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lmhsvc.dll
2016-03-28 11:57 - 2008-04-14 01:00 - 01845632 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-03-28 11:57 - 2008-04-14 00:58 - 00175744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-03-28 11:57 - 2008-04-14 00:57 - 02188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-03-28 11:57 - 2008-04-14 00:51 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2016-03-28 11:57 - 2008-04-14 00:50 - 00361344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-03-28 11:57 - 2008-04-14 00:50 - 00182656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-03-28 11:57 - 2008-04-14 00:50 - 00091520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2016-03-28 11:57 - 2008-04-14 00:49 - 00146048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2016-03-28 11:57 - 2008-04-14 00:49 - 00138112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-03-28 11:57 - 2008-04-14 00:49 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipsec.sys
2016-03-28 11:57 - 2008-04-14 00:49 - 00051328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-03-28 11:57 - 2008-04-14 00:49 - 00048384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspptp.sys
2016-03-28 11:57 - 2008-04-14 00:48 - 00052480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys
2016-03-28 11:57 - 2008-04-14 00:47 - 00456576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-03-28 11:57 - 2008-04-14 00:47 - 00105344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2016-03-28 11:57 - 2008-04-14 00:47 - 00083072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wdmaud.sys
2016-03-28 11:57 - 2008-04-14 00:46 - 00141056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2016-03-28 11:57 - 2008-04-14 00:46 - 00049536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\classpnp.sys
2016-03-28 11:57 - 2008-04-14 00:45 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-03-28 11:57 - 2008-04-14 00:45 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-03-28 11:57 - 2008-04-14 00:45 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serial.sys
2016-03-28 11:57 - 2008-04-14 00:45 - 00060800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sysaudio.sys
2016-03-28 11:57 - 2008-04-14 00:44 - 00143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2016-03-28 11:57 - 2008-04-14 00:44 - 00063744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2016-03-28 11:57 - 2008-04-14 00:30 - 00225664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip6.sys
2016-03-28 11:57 - 2008-04-14 00:30 - 00030080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\modem.sys
2016-03-28 11:57 - 2008-04-14 00:30 - 00019072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdi.sys
2016-03-28 11:57 - 2008-04-14 00:27 - 00152832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2016-03-28 11:57 - 2008-04-14 00:27 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspppoe.sys
2016-03-28 11:57 - 2008-04-14 00:27 - 00040576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2016-03-28 11:57 - 2008-04-14 00:27 - 00034560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2016-03-28 11:57 - 2008-04-14 00:27 - 00020864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipinip.sys
2016-03-28 11:57 - 2008-04-14 00:27 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\asyncmac.sys
2016-03-28 11:57 - 2008-04-14 00:27 - 00010112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2016-03-28 11:57 - 2008-04-14 00:26 - 00088320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwlnkipx.sys
2016-03-28 11:57 - 2008-04-14 00:26 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\psched.sys
2016-03-28 11:57 - 2008-04-14 00:26 - 00035072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpc.sys
2016-03-28 11:57 - 2008-04-14 00:26 - 00034688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbios.sys
2016-03-28 11:57 - 2008-04-14 00:26 - 00030592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rndismp.sys
2016-03-28 11:57 - 2008-04-14 00:26 - 00014592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndisuio.sys
2016-03-28 11:57 - 2008-04-14 00:26 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys
2016-03-28 11:57 - 2008-04-14 00:25 - 00202624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2016-03-28 11:57 - 2008-04-14 00:24 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irenum.sys
2016-03-28 11:57 - 2008-04-14 00:23 - 00071552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2016-03-28 11:57 - 2008-04-14 00:23 - 00040320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nmnt.sys
2016-03-28 11:57 - 2008-04-14 00:21 - 00061824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nic1394.sys
2016-03-28 11:57 - 2008-04-14 00:21 - 00060800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\arp1394.sys
2016-03-28 11:57 - 2008-04-14 00:21 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\atmarpc.sys
2016-03-28 11:57 - 2008-04-14 00:21 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\atmlane.sys
2016-03-28 11:57 - 2008-04-14 00:16 - 00061696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ohci1394.sys
2016-03-28 11:57 - 2008-04-14 00:16 - 00053376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\1394bus.sys
2016-03-28 11:57 - 2008-04-14 00:16 - 00025344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sonydcam.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00172416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kmixer.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00060160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmk.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00059520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00056576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\swmidi.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00052864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dmusic.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00049408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stream.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00026368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbstor.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00025728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbcamd2.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbcamd.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00024960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00020608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbintel.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00015104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbscan.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00010368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00006272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\splitter.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00002944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmkaud.sys
2016-03-28 11:57 - 2008-04-14 00:14 - 00799744 _____ (Microsoft Corp., Veritas Software) C:\WINDOWS\system32\Drivers\dmboot.sys
2016-03-28 11:57 - 2008-04-14 00:14 - 00153344 _____ (Microsoft Corp., Veritas Software) C:\WINDOWS\system32\Drivers\dmio.sys
2016-03-28 11:57 - 2008-04-14 00:14 - 00081664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\videoprt.sys
2016-03-28 11:57 - 2008-04-14 00:14 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vga.sys
2016-03-28 11:57 - 2008-04-14 00:11 - 00052352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2016-03-28 11:57 - 2008-04-14 00:11 - 00042112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\imapi.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00096512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\atapi.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00096384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scsiport.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00080128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\parport.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdrom.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00057600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\redbook.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\disk.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00027392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fdc.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00024960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciidex.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\flpydisk.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00019712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00015744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serenum.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00014976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tape.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00014208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\diskdump.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00011392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sfloppy.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00005504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelide.sys
2016-03-28 11:57 - 2008-04-14 00:09 - 00384768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\update.sys
2016-03-28 11:57 - 2008-04-14 00:09 - 00042368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2016-03-28 11:57 - 2008-04-14 00:09 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys
2016-03-28 11:57 - 2008-04-14 00:09 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys
2016-03-28 11:57 - 2008-04-14 00:09 - 00007552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
2016-03-28 11:57 - 2008-04-14 00:09 - 00005376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mspclock.sys
2016-03-28 11:57 - 2008-04-14 00:09 - 00004992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mspqm.sys
2016-03-28 11:57 - 2008-04-14 00:09 - 00004352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\swenum.sys
2016-03-28 11:57 - 2008-04-14 00:08 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxg.sys
2016-03-28 11:57 - 2008-04-14 00:06 - 00187776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2016-03-28 11:57 - 2008-04-14 00:06 - 00120192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pcmcia.sys
2016-03-28 11:57 - 2008-04-14 00:06 - 00073472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sr.sys
2016-03-28 11:57 - 2008-04-14 00:06 - 00068224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-03-28 11:57 - 2008-04-14 00:06 - 00063744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mf.sys
2016-03-28 11:57 - 2008-04-14 00:06 - 00037248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\isapnp.sys
2016-03-28 11:57 - 2008-04-14 00:06 - 00014208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\battc.sys
2016-03-28 11:57 - 2008-04-14 00:06 - 00013952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cmbatt.sys
2016-03-28 11:57 - 2008-04-14 00:06 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\compbatt.sys
2016-03-28 11:57 - 2008-04-14 00:03 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fips.sys
2016-03-28 11:57 - 2008-04-14 00:02 - 00196224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2016-03-28 11:57 - 2008-04-14 00:02 - 00180608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-03-28 11:57 - 2008-04-14 00:02 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2016-03-28 11:57 - 2008-04-14 00:02 - 00030848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2016-03-28 11:57 - 2008-04-14 00:02 - 00019072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2016-03-28 11:57 - 2008-04-14 00:01 - 02065792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntkrnlpa.exe
2016-03-28 11:57 - 2008-04-14 00:01 - 00092288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-03-28 11:57 - 2008-04-14 00:01 - 00081152 _____ (Microsoft Corporation) C:\WINDOWS\system32\HAL.DLL
2016-03-28 11:57 - 2008-04-14 00:01 - 00042752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\p3.sys
2016-03-28 11:57 - 2008-04-14 00:01 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk6.sys
2016-03-28 11:57 - 2008-04-14 00:01 - 00036736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crusoe.sys
2016-03-28 11:57 - 2008-04-14 00:01 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2016-03-28 11:57 - 2008-04-13 22:09 - 00142592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\aec.sys
2016-03-28 11:57 - 2008-04-13 22:09 - 00020480 _____ (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) C:\WINDOWS\system32\Drivers\secdrv.sys
2016-03-28 10:56 - 2016-03-28 10:59 - 00000000 ___SD C:\ComboFix
2016-03-28 10:56 - 2016-03-28 10:56 - 00000000 ____D C:\WINDOWS\erdnt
2016-03-28 10:56 - 2016-03-28 10:56 - 00000000 ____D C:\Qoobox
2016-03-28 10:56 - 2011-06-26 14:45 - 00256000 _____ C:\WINDOWS\PEV.exe
2016-03-28 10:56 - 2010-11-08 01:20 - 00208896 _____ C:\WINDOWS\MBR.exe
2016-03-28 10:56 - 2009-04-20 12:56 - 00060416 _____ (NirSoft) C:\WINDOWS\NIRCMD.exe
2016-03-28 10:56 - 2000-08-31 08:00 - 00518144 _____ (SteelWerX) C:\WINDOWS\SWREG.exe
2016-03-28 10:56 - 2000-08-31 08:00 - 00406528 _____ (SteelWerX) C:\WINDOWS\SWSC.exe
2016-03-28 10:56 - 2000-08-31 08:00 - 00212480 _____ (SteelWerX) C:\WINDOWS\SWXCACLS.exe
2016-03-28 10:56 - 2000-08-31 08:00 - 00098816 _____ C:\WINDOWS\sed.exe
2016-03-28 10:56 - 2000-08-31 08:00 - 00080412 _____ C:\WINDOWS\grep.exe
2016-03-28 10:56 - 2000-08-31 08:00 - 00068096 _____ C:\WINDOWS\zip.exe
2016-03-28 10:53 - 2016-04-01 21:40 - 05659241 ____R (Swearware) C:\Documents and Settings\sf\Desktop\ComboFix.exe
2016-03-27 23:36 - 2016-03-27 23:36 - 00004627 _____ C:\Documents and Settings\sf\Desktop\System Idle Process.txt
2016-03-27 23:09 - 2016-03-27 23:09 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB953356$
2016-03-27 21:26 - 2016-03-27 21:26 - 00000000 ____D C:\Documents and Settings\sf\Local Settings\Application Data\Opera Software
2016-03-27 21:26 - 2016-03-27 21:26 - 00000000 ____D C:\Documents and Settings\sf\Application Data\Opera Software
2016-03-27 21:25 - 2016-04-10 18:36 - 00000382 _____ C:\WINDOWS\Tasks\Opera scheduled Autoupdate 1459085101.job
2016-03-27 21:25 - 2016-03-27 21:25 - 00000675 _____ C:\Documents and Settings\All Users\Start Menu\Programs\Opera.lnk
2016-03-27 21:25 - 2016-03-27 21:25 - 00000675 _____ C:\Documents and Settings\All Users\Desktop\Opera.lnk
2016-03-27 21:24 - 2016-04-02 09:48 - 00000000 ____D C:\Program Files\Opera
2016-03-27 14:35 - 2016-03-27 14:37 - 05111240 _____ (Piriform Ltd) C:\Documents and Settings\sf\Desktop\spsetup129.exe
2016-03-27 14:31 - 2016-03-27 14:32 - 02694816 _____ (Sysinternals - www.sysinternals.com) C:\Documents and Settings\sf\Desktop\procexp.exe
2016-03-26 20:18 - 2016-03-26 20:20 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\188F1432-103A-4ffb-80F1-36B633C5C9E1
2016-03-26 16:56 - 2016-03-26 17:27 - 00000000 ____D C:\Documents and Settings\sf\Local Settings\Application Data\panda
2016-03-26 16:56 - 2016-03-26 16:56 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Panda Security URL Filtering
2016-03-26 16:55 - 2016-04-04 10:04 - 00000000 ____D C:\Documents and Settings\sf\Application Data\pandasecuritytb
2016-03-26 15:31 - 2005-07-19 19:04 - 00018496 _____ C:\WINDOWS\system32\igxpxs32.vp
2016-03-26 15:31 - 2005-07-19 18:18 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igldev32.dll
2016-03-26 15:31 - 2005-07-19 18:16 - 02310144 _____ (Intel Corporation) C:\WINDOWS\system32\iglicd32.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00155648 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00147456 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00143360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00143360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00143360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00143360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00139264 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00139264 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00139264 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00139264 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00139264 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00135168 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00122880 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00118784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00114688 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmudlg.exe
2016-03-26 15:31 - 2005-07-19 18:10 - 00114688 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuTRK.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuTHA.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuSVE.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuRUS.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuPTG.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuPTB.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuPLK.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuNOR.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuNLD.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuKOR.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuJPN.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuITA.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuHUN.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuHEB.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuFRC.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuFRA.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuFIN.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuESP.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuENG.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuELL.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuDEU.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuDAN.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuCSY.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuCHT.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuCHS.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuARB.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuARA.dll
2016-03-26 15:31 - 2005-07-19 18:08 - 00077824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2016-03-26 15:31 - 2005-07-19 18:06 - 00159744 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2016-03-26 15:31 - 2005-07-19 18:02 - 00524850 _____ C:\WINDOWS\system32\igxpxa32.cpa
2016-03-26 15:31 - 2005-07-19 18:02 - 00058675 _____ C:\WINDOWS\system32\igxpxk32.vp
2016-03-26 15:31 - 2005-07-19 18:02 - 00000900 _____ C:\WINDOWS\system32\igxpxa32.vp
2016-03-26 15:30 - 2016-03-26 15:30 - 00061440 _____ (Intel Corporation) C:\WINDOWS\system32\iAlmCoIn_v4363.dll
2016-03-26 11:51 - 2016-03-26 20:20 - 00001542 _____ C:\Documents and Settings\All Users\Desktop\iTunes.lnk
2016-03-26 11:51 - 2016-03-26 20:20 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\iTunes
2016-03-26 11:51 - 2012-08-21 13:01 - 00026840 _____ (GEAR Software Inc.) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
2016-03-26 11:50 - 2016-03-26 11:51 - 00000000 ____D C:\Program Files\iTunes
2016-03-26 11:50 - 2016-03-26 11:50 - 00000000 ____D C:\Program Files\iPod
2016-03-26 11:49 - 2013-03-18 16:51 - 06112864 _____ (Apple, Inc.) C:\WINDOWS\system32\usbaaplrc.dll
2016-03-26 11:49 - 2013-03-18 16:51 - 00045056 _____ (Apple, Inc.) C:\WINDOWS\system32\Drivers\usbaapl.sys
2016-03-26 11:48 - 2016-03-26 11:50 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-03-26 01:22 - 2016-03-26 14:34 - 00010884 _____ C:\Documents and Settings\sf\Desktop\Fixlog.txt
2016-03-26 00:16 - 2016-03-26 00:16 - 00000000 ____D C:\Program Files\7-Zip
2016-03-26 00:16 - 2016-03-26 00:16 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\7-Zip
2016-03-25 23:51 - 2016-03-25 23:51 - 00000839 _____ C:\VEWlog system.txt
2016-03-25 23:51 - 2016-03-25 23:51 - 00000359 _____ C:\VEW log application.txt
2016-03-25 23:49 - 2016-04-05 17:58 - 00000358 _____ C:\VEW.txt
2016-03-25 23:37 - 2016-03-31 22:05 - 00007934 _____ C:\Documents and Settings\sf\Desktop\sfvb.txt
2016-03-25 23:26 - 2016-03-25 23:32 - 00061440 _____ ( ) C:\Documents and Settings\sf\Desktop\VEW.exe
2016-03-25 22:40 - 2016-04-05 18:27 - 00023252 _____ C:\Documents and Settings\sf\Desktop\Addition.txt
2016-03-25 22:39 - 2016-04-10 19:15 - 00014555 _____ C:\Documents and Settings\sf\Desktop\FRST.txt
2016-03-25 22:38 - 2016-04-10 19:14 - 00000000 ____D C:\FRST
2016-03-25 22:38 - 2016-03-25 22:38 - 00002566 _____ C:\Documents and Settings\sf\My Documents\JRT.txt
2016-03-25 22:36 - 2016-03-25 22:36 - 00002566 _____ C:\Documents and Settings\sf\Desktop\JRT.txt
2016-03-25 22:34 - 2016-04-10 16:29 - 00000000 ____D C:\Documents and Settings\sf\Application Data\FLV and Media Player
2016-03-25 22:22 - 2016-03-25 22:28 - 00000000 ____D C:\AdwCleaner
2016-03-25 22:17 - 2016-03-25 22:18 - 01610352 _____ (Malwarebytes) C:\Documents and Settings\sf\Desktop\JRT.exe
2016-03-25 22:15 - 2016-03-25 22:16 - 01530368 _____ C:\Documents and Settings\sf\Desktop\adwcleaner_5.105.exe
2016-03-25 22:14 - 2016-03-25 22:14 - 01725440 _____ (Farbar) C:\Documents and Settings\sf\Desktop\FRST.exe
2016-03-24 22:24 - 2016-04-10 16:07 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-03-24 21:15 - 2016-03-24 21:15 - 00000000 ____D C:\Documents and Settings\sf\Application Data\CrystalIdea Software
2016-03-24 21:14 - 2016-04-06 16:42 - 00000000 ____D C:\Program Files\SpeedFan
2016-03-24 21:14 - 2016-03-24 21:14 - 00000682 _____ C:\Documents and Settings\sf\Desktop\SpeedFan.lnk
2016-03-24 21:14 - 2016-03-24 21:14 - 00000045 _____ C:\WINDOWS\system32\initdebug.nfo
2016-03-24 21:14 - 2016-03-24 21:14 - 00000000 ____D C:\Documents and Settings\sf\Start Menu\Programs\SpeedFan
2016-03-23 18:49 - 2016-03-23 18:49 - 00000000 ____D C:\WINDOWS\system32\appmgmt

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-04-10 19:15 - 2014-10-01 20:21 - 00000000 ____D C:\Documents and Settings\sf\Local Settings\Temp
2016-04-10 18:37 - 2014-10-02 03:58 - 00467370 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-04-10 18:37 - 2014-10-02 03:56 - 00000000 ___HD C:\Documents and Settings\Default User
2016-04-10 18:37 - 2014-10-01 20:14 - 00316640 _____ C:\WINDOWS\WMSysPr9.prx
2016-04-10 18:36 - 2014-10-02 03:56 - 00118400 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-04-10 18:36 - 2014-10-01 20:21 - 00000792 _____ C:\Documents and Settings\sf\Start Menu\Programs\Windows Media Player.lnk
2016-04-10 18:35 - 2014-10-01 20:20 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-04-10 18:35 - 2004-08-04 20:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2016-04-10 18:34 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\system32\Setup
2016-04-10 18:34 - 2014-10-01 21:13 - 00720896 _____ C:\WINDOWS\system32\config\Nano.evt
2016-04-10 18:34 - 2014-10-01 20:20 - 00032594 _____ C:\WINDOWS\SchedLgU.Txt
2016-04-10 18:33 - 2014-10-01 20:21 - 00000178 ___SH C:\Documents and Settings\sf\ntuser.ini
2016-04-10 18:10 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\security
2016-04-10 18:05 - 2014-10-02 03:37 - 00000000 RSHDC C:\WINDOWS\system32\dllcache
2016-04-10 18:05 - 2014-10-02 03:37 - 00000000 ___HD C:\WINDOWS\inf
2016-04-10 18:03 - 2014-10-01 20:15 - 00001563 _____ C:\Documents and Settings\All Users\Start Menu\Set Program Access and Defaults.lnk
2016-04-10 18:01 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2016-04-10 18:01 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\ime
2016-04-10 18:01 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\Help
2016-04-10 18:00 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\system32\usmt
2016-04-10 18:00 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\PeerNet
2016-04-10 18:00 - 2014-10-01 20:11 - 00000000 ____D C:\Program Files\Movie Maker
2016-04-10 17:53 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\system32\npp
2016-04-10 17:53 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\mui
2016-04-10 17:53 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\msagent
2016-04-10 17:53 - 2014-10-01 20:11 - 00000000 ____D C:\WINDOWS\srchasst
2016-04-10 17:53 - 2014-10-01 20:10 - 00000000 ____D C:\Program Files\NetMeeting
2016-04-10 17:53 - 2014-10-01 20:07 - 00000000 ____D C:\WINDOWS\system32\Com
2016-04-10 17:53 - 2014-10-01 20:07 - 00000000 ____D C:\Program Files\Windows NT
2016-04-10 17:52 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-04-10 17:52 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\system
2016-04-10 17:52 - 2014-10-01 20:10 - 00000000 ____D C:\Program Files\Outlook Express
2016-04-10 17:52 - 2014-10-01 20:10 - 00000000 ____D C:\Program Files\Common Files\System
2016-04-10 17:47 - 2004-08-04 20:00 - 00250048 __RSH C:\ntldr
2016-04-10 17:46 - 2014-10-01 20:29 - 00000000 ____D C:\WINDOWS\system32\ReinstallBackups
2016-04-07 12:37 - 2014-10-01 20:21 - 00000000 ___RD C:\Documents and Settings\sf\My Documents
2016-04-05 17:42 - 2014-10-01 20:21 - 00000000 ____D C:\Documents and Settings\sf
2016-04-05 17:37 - 2014-10-01 20:26 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2016-04-05 17:19 - 2014-10-01 20:33 - 00021425 _____ (Meetinghouse Data Communications) C:\WINDOWS\system32\Drivers\AegisP.sys
2016-04-05 17:15 - 2014-10-01 20:27 - 00000000 ____D C:\dell
2016-04-05 17:15 - 2014-10-01 20:26 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Dell Accessories
2016-04-05 17:10 - 2014-10-01 20:25 - 00000000 ____D C:\Program Files\Common Files\InstallShield
2016-04-05 17:10 - 2014-10-01 20:13 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2016-04-02 11:21 - 2014-10-01 20:14 - 00023392 _____ C:\WINDOWS\system32\nscompat.tlb
2016-04-02 11:21 - 2014-10-01 20:14 - 00016832 _____ C:\WINDOWS\system32\amcompat.tlb
2016-04-02 09:47 - 2014-10-01 20:24 - 00021056 _____ C:\Documents and Settings\sf\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2016-04-01 12:05 - 2014-10-01 20:21 - 00000000 ___RD C:\Documents and Settings\sf\My Documents\My Pictures
2016-04-01 12:05 - 2014-10-01 20:21 - 00000000 ___RD C:\Documents and Settings\sf\My Documents\My Music
2016-04-01 12:04 - 2014-10-01 20:21 - 00000738 _____ C:\Documents and Settings\sf\Start Menu\Programs\Outlook Express.lnk
2016-04-01 11:32 - 2014-12-20 16:12 - 00000000 ____D C:\WINDOWS\Minidump
2016-03-31 15:44 - 2014-11-01 12:33 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-03-29 01:13 - 2014-10-02 03:55 - 00000211 ___SH C:\boot.ini
2016-03-29 01:13 - 2004-08-04 20:00 - 00000477 _____ C:\WINDOWS\win.ini
2016-03-29 01:13 - 2004-08-04 20:00 - 00000246 _____ C:\WINDOWS\system.ini
2016-03-27 23:09 - 2015-05-06 00:32 - 00000000 ___HD C:\WINDOWS\$hf_mig$
2016-03-27 14:11 - 2014-11-01 13:33 - 00000000 ____D C:\Program Files\WinRAR
2016-03-27 14:07 - 2014-10-01 23:09 - 00000000 ____D C:\WINDOWS\system32\Adobe
2016-03-26 16:55 - 2014-10-01 21:13 - 00000000 ____D C:\Documents and Settings\sf\Application Data\Panda Security
2016-03-26 16:55 - 2014-10-01 21:11 - 00000000 ____D C:\Program Files\Panda Security
2016-03-26 16:55 - 2014-10-01 20:24 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Panda Security
2016-03-26 15:31 - 2014-10-01 20:34 - 00038014 _____ (Intel Corporation) C:\WINDOWS\system32\ialmrnt5.dll
2016-03-26 15:30 - 2014-10-01 20:34 - 00899706 _____ (Intel Corporation) C:\WINDOWS\system32\ialmdd5.dll
2016-03-26 15:30 - 2014-10-01 20:34 - 00116859 _____ (Intel Corporation) C:\WINDOWS\system32\ialmdnt5.dll
2016-03-26 15:30 - 2014-10-01 20:34 - 00077824 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2016-03-26 15:30 - 2014-10-01 20:34 - 00073728 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2016-03-26 14:58 - 2014-10-01 21:27 - 00001324 _____ C:\WINDOWS\system32\d3d9caps.dat
2016-03-26 13:57 - 2016-02-07 18:36 - 00000882 _____ C:\Documents and Settings\sf\Local Settings\mhli.bak8
2016-03-26 13:57 - 2016-02-07 18:36 - 00000144 _____ C:\Documents and Settings\sf\Local Settings\mhli.bak11
2016-03-26 13:57 - 2016-02-07 18:36 - 00000115 _____ C:\Documents and Settings\sf\Local Settings\ibooks1.bak
2016-03-26 13:57 - 2016-02-07 18:36 - 00000115 _____ C:\Documents and Settings\sf\Local Settings\ibooks0.bak
2016-03-26 13:57 - 2016-02-07 18:36 - 00000112 _____ C:\Documents and Settings\sf\Local Settings\mhli.bak12
2016-03-26 11:50 - 2014-10-02 14:09 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Apple Computer
2016-03-26 11:48 - 2014-10-02 14:06 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Apple
2016-03-25 23:39 - 2015-05-26 11:23 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\RpData
2016-03-25 21:38 - 2014-10-01 20:22 - 00000000 ____D C:\2014 program downloads
2016-03-25 21:37 - 2014-10-31 11:33 - 00000000 ____D C:\Documents and Settings\sf\dwhelper
2016-03-25 21:19 - 2016-02-07 18:35 - 00000000 ____D C:\Documents and Settings\sf\Start Menu\Programs\3herosoft
2016-03-25 21:18 - 2015-09-19 21:16 - 00000000 ____D C:\ipad
2016-03-25 21:08 - 2015-08-19 11:22 - 00000000 ____D C:\Documents and Settings\sf\Start Menu\Programs\Vibosoft
2016-03-25 21:00 - 2015-08-19 15:59 - 00000000 ____D C:\Documents and Settings\sf\Start Menu\Programs\iStonsoft
2016-03-25 17:54 - 2016-02-05 18:55 - 00000000 ____D C:\Documents and Settings\sf\My Documents\tv
2016-03-25 17:45 - 2015-03-04 19:32 - 00000000 ____D C:\Documents and Settings\LocalService\Start Menu\Programs\Baidu PC Faster
2016-03-25 17:45 - 2015-03-04 19:32 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Baidu PC Faster
2016-03-24 17:07 - 2014-10-01 20:46 - 00105984 _____ C:\Documents and Settings\sf\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-03-24 16:50 - 2014-10-01 23:20 - 00000000 ____D C:\Documents and Settings\sf\My Documents\My Videos

==================== Files in the root of some directories =======

2013-10-14 10:44 - 2013-10-14 10:44 - 2174976 _____ (Advanced Micro Devices Inc.) C:\Program Files\Common Files\atimpenc.dll
2015-08-22 05:49 - 2016-03-06 10:19 - 0000289 _____ () C:\Documents and Settings\sf\Application Data\FotoSketcher.ini
2014-10-01 20:46 - 2016-03-24 17:07 - 0105984 _____ () C:\Documents and Settings\sf\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

Some files in TEMP:
====================
C:\Documents and Settings\sf\Local Settings\Temp\sfamcc00001.dll
C:\Documents and Settings\sf\Local Settings\Temp\sqlite3.dll
C:\Documents and Settings\sf\Local Settings\Temp\SynISDLL.dll
C:\Documents and Settings\sf\Local Settings\Temp\UIUCU.EXE
C:\Documents and Settings\sf\Local Settings\Temp\{831F316A-5085-4EB9-BCAA-42897389E4B5}.exe

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x86) Version:05-03-2016 01
Ran by sf (2016-04-10 19:16:13)
Running from C:\Documents and Settings\sf\Desktop
Microsoft Windows XP Professional Service Pack 3 (X86) (2014-10-01 12:18:33)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-1085031214-688789844-1343024091-500 - Administrator - Enabled)
Guest (S-1-5-21-1085031214-688789844-1343024091-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-1085031214-688789844-1343024091-1000 - Limited - Disabled)
sf (S-1-5-21-1085031214-688789844-1343024091-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\sf
SUPPORT_388945a0 (S-1-5-21-1085031214-688789844-1343024091-1002 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Panda Free Antivirus (Enabled - Up to date) {5AD27692-540A-464E-B625-78275FA38393}
FW: Panda Firewall (Disabled) {1337562C-110A-4AF8-B12B-750C0B30E802}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 15.14 (HKLM\...\7-Zip) (Version: 15.14 - Igor Pavlov)
Apple Application Support (HKLM\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{18D47FA1-0440-48D3-A7E0-DA09537FF471}) (Version: 7.1.1.3 - Apple Inc.)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Broadcom 440x 10/100 Integrated Controller (HKLM\...\InstallShield_{52504CE6-E909-4113-B232-4AFEC6543A61}) (Version: 5.51.03 - Broadcom)
Broadcom 440x 10/100 Integrated Controller (Version: 5.51.03 - Broadcom) Hidden
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.6059 - CDBurnerXP)
C-Major Audio (HKLM\...\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}) (Version: 42xx - SigmaTel)
Conexant D480 MDC V.92 Modem (HKLM\...\CNXT_MODEM_PCI_VEN_8086&DEV_24x6&SUBSYS_542214F1) (Version: - )
Crash Analysis Tool (HKLM\...\{D5F881C2-B134-474E-AA60-B25DD218AE0D}) (Version: 1.00.0001 - Dell)
Dell Driver Reset Tool (HKLM\...\{5905F42D-3F5F-4916-ADA6-94A3646AEE76}) (Version: 1.02.0000 - Dell Inc.)
Dell ResourceCD (HKLM\...\{D78653C3-A8FF-415F-92E6-D774E634FF2D}) (Version: - )
Dell Wireless WLAN Card (HKLM\...\Broadcom 802.11b Network Adapter) (Version: 4.100.15.8 - Dell Inc.)
Digital Line Detect (HKLM\...\{E646DCF0-5A68-11D5-B229-002078017FBF}) (Version: 1.10 - BVRP Software, Inc)
FotoSketcher 3.10 (HKLM\...\{E7C6D565-2E48-4303-A114-AFE7B2E561AF}_is1) (Version: - David THOIRON)
FreeSizer v.1.0.0 (HKLM\...\{B0C5249A-E603-450A-B19A-D9989D24C855}}_is1) (Version: 1.0.0 - WinBit Software)
iMacsoft iPhone Photo to PC Transfer (HKLM\...\iMacsoft iPhone Photo to PC Transfer) (Version: 3.0.9.0909 - iMacsoft)
InfraRecorder (HKLM\...\InfraRecorder) (Version: - )
Intel® Extreme Graphics 2 Driver (HKLM\...\{8A708DD8-A5E6-11D4-A706-000629E95E20}) (Version: 6.14.10.4363 - )
Intel® PROSet/Wireless Software (HKLM\...\ProInst) (Version: 11.01.0000 - Intel Corporation)
iTunes (HKLM\...\{2F21564D-DE05-4C6D-B21E-08B9D313FAB3}) (Version: 11.1.5.5 - Apple Inc.)
LAV Filters 0.51.3 (HKLM\...\lavfilters_is1) (Version: 0.51.3 - Hendrik Leppkes)
mCore (Version: 9.03.0000 - Intel Corporation) Hidden
mDriver (Version: 9.03.0000 - Intel) Hidden
mDrWiFi (Version: 9.03.0000 - Intel Corporation) Hidden
mHlpDell (Version: 9.03.0000 - Intel) Hidden
Microsoft .NET Framework 2.0 Client Profile Basic SP2 Version 1.0.1.22 (HKLM\...\{10E4121C-8181-4217-8DA9-6CD38DDC34F9}_is1) (Version: 1.0.1.22 - Wondershare, Inc.)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
mIWA (Version: 9.03.0000 - Intel Corporation) Hidden
mLogView (Version: 9.03.0000 - Intel Corporation) Hidden
mMHouse (Version: 9.03.0000 - Intel Corporation) Hidden
Mouse Suite for Laptop Computers (HKLM\...\{BF13AA9D-E4CE-4015-9778-ECC1D4FB06E4}) (Version: 1.00.0000 - Dell)
Mozilla Firefox 45.0.1 (x86 en-US) (HKLM\...\Mozilla Firefox 45.0.1 (x86 en-US)) (Version: 45.0.1 - Mozilla)
mPfMgr (Version: 9.03.0000 - Intel Corporation) Hidden
mPfWiz (Version: 9.03.0000 - Intel Corporation) Hidden
mProSafe (Version: 9.00.0000 - Intel) Hidden
mSCfg (Version: 9.03.0000 - Intel Corporation) Hidden
mSSO (Version: 9.03.0000 - Intel Corporation) Hidden
MSXML 6.0 Parser (Version: 6.00.3883.8 - Microsoft Corporation) Hidden
mToolkit (Version: 9.03.0000 - Intel Corporation) Hidden
mWlsSafe (Version: 9.00.0000 - Intel) Hidden
mWMI (Version: 9.03.0000 - Intel Corporation) Hidden
mZConfig (Version: 9.03.0000 - Intel Corporation) Hidden
NingPo MahJong Deluxe 1.04 (HKLM\...\NingPo MahJong Deluxe 1.04) (Version: - )
Opera Stable 34.0.2036.50 (HKLM\...\Opera 34.0.2036.50) (Version: 34.0.2036.50 - Opera Software)
Panda Devices Agent (HKLM\...\Panda Devices Agent) (Version: 1.03.04 - Panda Security)
Panda Devices Agent (Version: 1.05.00 - Panda Security) Hidden
Panda Free Antivirus (HKLM\...\Panda Universal Agent Endpoint) (Version: 16.0.2 - Panda Security)
Panda Free Antivirus (Version: 8.04.00.0000 - Panda Security) Hidden
Panda Security Toolbar (HKLM\...\pandasecuritytb) (Version: 4.3.1.9 - Panda Security and Visicom Media Inc.)
Photo! Editor 1.1 (HKLM\...\PhotoToolkit_is1) (Version: - )
PhotoBulk 1.0.257 (HKLM\...\PhotoBulk_is1) (Version: 1.0.257 - Eltima Software)
RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden
Sonic DLA (HKLM\...\{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}) (Version: 4.98 - Sonic Solutions)
Sothink Video Converter (HKLM\...\{0FD155A3-DF78-43ee-84B0-3CC86BA962F2}_is1) (Version: 3.6 - SourceTec Software Co., LTD)
SpeedFan (remove only) (HKLM\...\SpeedFan) (Version: - )
Texas Instruments PCIxx20 drivers. (HKLM\...\InstallShield_{33F1EEC8-93C8-4CC5-9C33-6698A4A627BA}) (Version: 2.03.0000 - Texas Instruments Inc.)
TIPCIxx20 (Version: 2.03.0000 - Texas Instruments Inc.) Hidden
VSDC Free Video Editor version 3.3.0.394 (HKLM\...\VSDC Free Video Editor_is1) (Version: 3.3.0.394 - Flash-Integro LLC)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Imaging Component (HKLM\...\WIC) (Version: 3.0.0.0 - Microsoft Corporation)
Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031525 - Microsoft Corporation)
WPS Office (9.1.0.4746) (HKU\S-1-5-21-1085031214-688789844-1343024091-1003\...\WPS Office) (Version: 9.1.0.4746 - Kingsoft Corp.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{00020812-0000-0000-C000-000000000046}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\et.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{00020820-0000-0000-C000-000000000046}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\et.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{00020821-0000-0000-C000-000000000046}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\et.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{00020830-0000-0000-C000-000000000046}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\et.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{00020832-0000-0000-C000-000000000046}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\et.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{00020900-0000-0000-C000-000000000046}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wps.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{00020906-0000-0000-C000-000000000046}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wps.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{00020906-0000-4b30-A977-D214852036FF}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wps.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{00020907-0000-0000-C000-000000000046}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wps.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{000209FF-0000-0000-C000-000000000046}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wps.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{000209FF-0000-4b30-A977-D214852036FF}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wps.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{00024500-0000-0000-C000-000000000046}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\et.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{0002CE21-0000-0000-C000-000000000046}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\ksee\EqnEdit.exe (Design Science, Inc.)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{048EB43E-2059-422F-95E0-557DA96038AF}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wpp.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{18A06B6B-2F3F-4E2B-A611-52BE631B2D22}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wps.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{3C18EAE4-BC25-4134-B7DF-1ECA1337DDDC}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wpp.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{44720441-94BF-4940-926D-4F38FECF2A48}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wpp.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{44720444-94BF-4940-926D-4F38FECF2A48}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wpp.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{45540001-5750-5300-4B49-4E47534F4655}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\et.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{45540003-5750-5300-4B49-4E47534F4655}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\et.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{4D4E0078-1386-4536-BD05-3E1013F17116}\InprocServer32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\oledefaulthandler.dll (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{64818D10-4F9B-11CF-86EA-00AA00B929E8}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wpp.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{64818D11-4F9B-11CF-86EA-00AA00B929E8}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wpp.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{75D01070-1234-44E9-82F6-DB5B39A47C13}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wpp.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{8A624388-AA27-43E0-89F8-2A12BFF7BCCD}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wps.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{912ABC52-36E2-4714-8E62-A8B73CA5E390}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wps.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{91493441-5A91-11CF-8700-00AA0060263B}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wpp.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{9F284818-F253-49f2-82C1-F6CFF86CD4EE}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{CF4F55F4-8F87-4D47-80BB-5808164BB3F8}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wpp.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{DC020317-E6E2-4A62-B9FA-B3EFE16626F4}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wpp.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{F4754C9B-64F5-4B40-8AF4-679732AC0607}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wps.exe (Zhuhai Kingsoft Office Software Co.,Ltd)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Opera scheduled Autoupdate 1459085101.job => C:\Program Files\Opera\launcher.exe
Task: C:\WINDOWS\Tasks\WpsNotifyTask_sf.job => C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\wtoolex\wpsnotify.exe
Task: C:\WINDOWS\Tasks\WpsUpdateTask_sf.job => C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\wtoolex\wpsupdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2007-02-21 11:13 - 2007-02-21 11:13 - 00118784 _____ () C:\Program Files\Intel\Wireless\Bin\IWMSPROV.DLL
2016-04-03 19:52 - 2007-03-16 18:10 - 00020480 _____ () C:\WINDOWS\System32\WLTRYSVC.EXE
2016-04-05 17:22 - 2007-03-16 18:10 - 00757760 _____ () C:\WINDOWS\System32\bcm1xsup.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-04-13 01:23 - 2013-04-13 01:23 - 00612664 _____ () C:\Program Files\Panda Security\Panda Security Protection\SQLite3.dll
2006-10-17 16:13 - 2006-10-17 16:13 - 01167360 _____ () C:\Program Files\Intel\Wireless\Bin\acAuth.dll
2004-08-04 20:00 - 2008-04-14 05:42 - 01288192 _____ () C:\WINDOWS\system32\quartz.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:16EAB5F6 [135]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2004-08-04 20:00 - 2004-08-04 20:00 - 00000734 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1085031214-688789844-1343024091-1003\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Bliss.bmp
DNS Servers: 192.168.1.1
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

StandardProfile\AuthorizedApplications: [F:\Microsoft Age of Empires - Rise of Rome\AOE\Empires.exe] => Disabled:Age of Empires
StandardProfile\AuthorizedApplications: [F:\Microsoft Age of Empires - Rise of Rome\AOE\EMPIRESX.EXE] => Disabled:Age of Empires, the Rise of Rome
StandardProfile\AuthorizedApplications: [C:\Program Files\Bonjour\mDNSResponder.exe] => Enabled:Bonjour Service
StandardProfile\AuthorizedApplications: [E:\Microsoft Age of Empires - Rise of Rome\Microsoft Age of Empires - Rise of Rome\AOE\EMPIRESX.EXE] => Enabled:Age of Empires, the Rise of Rome
StandardProfile\AuthorizedApplications: [C:\Program Files\FlashIntegro\VideoEditor\VideoEditor.exe] => Enabled:VSDC Free Video Editor
StandardProfile\AuthorizedApplications: [C:\Program Files\FlashIntegro\VideoEditor\Updater.exe] => Enabled:VSDC Free Video Editor Updater
StandardProfile\AuthorizedApplications: [C:\Program Files\Mozilla Firefox\firefox.exe] => Enabled:Firefox (C:\Program Files\Mozilla Firefox)
StandardProfile\AuthorizedApplications: [C:\Program Files\pandasecuritytb\dtuser.exe] => Enabled:Panda Security Toolbar DTX Broker
StandardProfile\AuthorizedApplications: [C:\Program Files\pandasecuritytb\ToolbarCleaner.exe] => Enabled:ToolbarCleaner
StandardProfile\AuthorizedApplications: [C:\Program Files\iTunes\iTunes.exe] => Enabled:iTunes
StandardProfile\GloballyOpenPorts: [1900:UDP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22007
StandardProfile\GloballyOpenPorts: [2869:TCP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22008

==================== Restore Points =========================

02-04-2016 10:05:43 System Checkpoint
03-04-2016 18:04:27 Installed C-Major Audio
03-04-2016 18:09:58 Configured PCIxx20
03-04-2016 18:15:56 Installed Broadcom 440x 10/100 Integrated Controller
03-04-2016 20:17:17 Configured Broadcom 440x 10/100 Integrated Controller
05-04-2016 17:10:23 Installed Mouse Suite for Laptop Computers
05-04-2016 17:11:31 Installed Crash Analysis Tool
05-04-2016 17:15:36 Installed Dell Driver Reset Tool
05-04-2016 17:16:18 Installed Digital Line Detect
05-04-2016 17:36:27 Installed TIPCIxx20
06-04-2016 19:21:18 System Checkpoint
10-04-2016 17:28:55 Installed Windows XP KB953356.
10-04-2016 17:46:33 Installed Windows XP Service Pack 3.
10-04-2016 18:05:31 Installed Windows XP KB955704.

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================

System errors:
=============
Error: (04/10/2016 04:43:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Upload Manager service failed to start due to the following error:
%%1079

Error: (04/10/2016 04:25:18 PM) (Source: 0) (EventID: 7) (User: )
Description: \Device\CdRom0

Error: (04/10/2016 04:25:11 PM) (Source: 0) (EventID: 7) (User: )
Description: \Device\CdRom0

Error: (04/10/2016 02:53:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Upload Manager service failed to start due to the following error:
%%1079

Error: (04/09/2016 05:24:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Upload Manager service failed to start due to the following error:
%%1079

Error: (04/07/2016 11:52:43 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Upload Manager service failed to start due to the following error:
%%1079

Error: (04/06/2016 04:42:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Upload Manager service failed to start due to the following error:
%%1079

Error: (04/06/2016 12:17:42 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Upload Manager service failed to start due to the following error:
%%1079

Error: (04/05/2016 11:17:57 PM) (Source: Schannel) (EventID: 4108) (User: )
Description: The certificate received from the remote server has not validated correctly. The
error code is 0x80096004. The SSL connection request has failed. The attached data contains
the server certificate.

Error: (04/05/2016 10:25:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Upload Manager service failed to start due to the following error:
%%1079

==================== Memory info ===========================

Processor: Intel® Pentium® M processor 1.70GHz
Percentage of memory in use: 74%
Total physical RAM: 494.42 MB
Available physical RAM: 125.11 MB
Total Virtual: 1155.66 MB
Available Virtual: 533.44 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:19.53 GB) (Free:5.85 GB) NTFS ==>[drive with boot components (Windows XP)]
Drive d: (Local Disk) (Fixed) (Total:29.29 GB) (Free:5.24 GB) NTFS
Drive e: () (Fixed) (Total:29.29 GB) (Free:2.95 GB) NTFS
Drive f: () (Fixed) (Total:33.66 GB) (Free:0.34 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 111.8 GB) (Disk ID: 04890488)
Partition 1: (Active) - (Size=19.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=92.2 GB) - (Type=OF Extended)

==================== End of Addition.txt ============================

#69
Dakeyras

Posted 11 April 2016 - 11:12 AM

Anti-Malware Mammoth

Expert
9,772 posts

Hi.

My apologies for the delay and all acknowledged.

Given the age of the machine and its current specifications it is never going to be truly reliable I'm afraid. Plus apart from the obvious security risk letting it have any form of internet access. Anyway lets see if we can get the machine a tad more stable for the time being before addressing anything else.

With this in mind; I propose we first check the health of the main system drive as follows...

Check Hard Disk For Errors:

Press Start->Run, then copy/paste the following command into the box and press OK:

cmd /c chkdsk c: |find /v "percent" >> "%userprofile%\desktop\checkhd.txt"

A blank command window will open on your desktop, then close in a few minutes. This is normal.

A file icon named checkhd.txt should appear on your Desktop. Please post the contents of this file in your next reply.

#70
evolutionpill

Posted 11 April 2016 - 08:07 PM

Member

Topic Starter
Member
127 posts

Hi

Im at ur discretion just happy to have your assistance. I accept that the PC will not be fully reliable, hence me using it as a backup
(btw I also have a mass storage as a second back up)m however this is just more convenient, also what Id like to just have the
basics on it so as not to clutter the machine.

My firefox is asking if it should update to 45.0.2. Do I select yes or no?

Below the paste.

The type of the file system is NTFS.

WARNING! F parameter not specified.
Running CHKDSK in read-only mode.

CHKDSK is verifying files (stage 1 of 3)...
CHKDSK is verifying indexes (stage 2 of 3)...
CHKDSK is recovering lost files.
CHKDSK is verifying security descriptors (stage 3 of 3)...
CHKDSK discovered free space marked as allocated in the
master file table (MFT) bitmap.
CHKDSK discovered free space marked as allocated in the volume bitmap.
Windows found problems with the file system.
Run CHKDSK with the /F (fix) option to correct these.

20482843 KB total disk space.
13881788 KB in 60067 files.
20440 KB in 4090 indexes.
4 KB in bad sectors.
192579 KB in use by the system.
65536 KB occupied by the log file.
6388032 KB available on disk.

4096 bytes in each allocation unit.
5120710 total allocation units on disk.
1597008 allocation units available on disk.

#71
Dakeyras

Posted 12 April 2016 - 10:46 AM

Anti-Malware Mammoth

Expert
9,772 posts

Hi.

My firefox is asking if it should update to 45.0.2. Do I select yes or no?

Aye fine to do so before proceeding to the below.

Hard-Drive Maintenance/Repair:

Click on Start >> Run... and type cleanmgr in the box and click on OK.

Ensure the boxes for Temporary Files, Temporary Internet Files and Recycle Bin are checked.
You can choose to check other boxes if you wish but they are not required.
Click on OK then Yes.

Note: for the CHKDSK portion you may refer to this tutorial of mine here and follow the instructions for Graphical Mode if you so wish.

Click Start >> Run... then type in CMD and click on OK.
At the Command Prompt C:\ > type the following:
CD C:\ and hit the Enter/Return key.
Now type in DEFRAG C: -F
A Analysis report will be displayed and then Windows will start the Defragmentation run automatically.
This may take some time, when completed the Command Prompt C:\ > will appear.
Now type in CHKDSK C: /R and hit the Enter/Return key.
When prompted with:

CHKDSK cannot run because the volume is in use by another process
Would you like to schedule this volume to be checked next time the system
restarts (Y/N)

Hit the Y key then at the Command Prompt C:\ >
Type in EXIT and and hit the Enter/Return key.
Now Reboot(Restart) your computer.

Note: Upon Reboot(Restart) the CHKDSK(check-disk) will start and carry out the repairs required.

You should see a screen like this just after the Post(power on self test) screen:

Note: Do not touch either the keyboard or Mouse, otherwise the Check-Disk will be canceled and you computer will continue to boot-up as normal.

Reset SP3 Firewall:

Click on Start >> Run... and cut/paste in the following and click on OK

firewall.cpl

Click on the Advanced tab >> Restore Defaults >> At the prompt click on Yes >> OK

Now click on the General tab >> select On(recommended) >> OK.

Re-scan with Farbar Recovery Scan Tool:

Double-click on FRST.exe to start FRST.

After the tool has checked for any updates and The tool is ready to use is denoted:-

Under Optional Scan ensure both Drivers MD5 and Addition.txt are selected.
Now click on the Scan button/radio tab >> at the Scan completed prompt click on OK
At the next prompt denoting Addition.txt is saved in the same location FRST tool is run >> click on OK
There will now be two logs on your desktop, Addition.txt and FRST.txt. Post the contents of both in your next reply.

Next:

When completed the above, please post back the following in the order asked for:

How is your computer performing now, any further symptoms and or problems encountered ?
Both FRST logs. <-- Post them individually please, IE: one Log per post/reply.

#72
evolutionpill

Posted 13 April 2016 - 04:17 AM

Member

Topic Starter
Member
127 posts

Hi

Followed your instructions. The pc seems stable, same as before the problems prior to installing sp3, which is good, no blue screens, no delayed time opening windows, no automatic rebooting since installing the new sp3, so would seem sp3 is running well the last few days.

However I am still not able to connect my ipad to my pc as before. normally when I insert the ipad plug it would recognise the ipad now nothing.

Below in separate post the frst logs. Not sure you wanted the defrag but adding it.

Thank you for your help so far and await further instructions.

Volume (C:)
Volume size = 19.53 GB
Cluster size = 4 KB
Used space = 13.00 GB
Free space = 6.53 GB
Percent free space = 33 %

Volume fragmentation
Total fragmentation = 10 %
File fragmentation = 21 %
Free space fragmentation = 0 %

File fragmentation
Total files = 60,615
Average file size = 268 KB
Total fragmented files = 6
Total excess fragments = 3,587
Average fragments per file = 1.05

Pagefile fragmentation
Pagefile size = 744 MB
Total fragments = 3

Folder fragmentation
Total folders = 4,076
Fragmented folders = 1
Excess folder fragments = 0

Master File Table (MFT) fragmentation
Total MFT size = 81 MB
MFT record count = 64,914
Percent MFT in use = 78 %
Total MFT fragments = 3

--------------------------------------------------------------------------------
Fragments File Size Files that cannot be defragmented
2,504 316 MB \Documents and Settings\sf\My Documents\downloads\windowsxp-kb936929-sp3-x86-enu_c81472f7eeea2eca421e116cd4c03e2300ebfde4.exe

#73
evolutionpill

Posted 13 April 2016 - 04:18 AM

Member

Topic Starter
Member
127 posts

Frst log

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:05-03-2016 01
Ran by sf (administrator) on SS (13-04-2016 17:59:48)
Running from C:\Documents and Settings\sf\Desktop
Loaded Profiles: sf (Available Profiles: sf)
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) Language: English (United States)
Internet Explorer Version 6 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
(Intel Corporation ) C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
(Intel® Corporation) C:\Program Files\Intel\Wireless\Bin\WLKEEPER.exe
() C:\WINDOWS\system32\WLTRYSVC.EXE
(Dell Inc.) C:\WINDOWS\system32\BCMWLTRY.EXE
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Panda Security, S.L.) C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe
(Panda Security, S.L.) C:\Program Files\Panda Security\Panda Security Protection\PSUAService.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
(Panda Security, S.L.) C:\Program Files\Panda Security\Panda Security Protection\PSANHost.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Panda Security, S.L.) C:\Program Files\Panda Security\Panda Security Protection\PSUAMain.exe
(Visicom Media Inc.) C:\Program Files\Panda Security URL Filtering\Panda_URL_Filtering.exe
(Dell Inc.) C:\WINDOWS\system32\WLTRAY.EXE
(Primax Electronics Ltd.) C:\WINDOWS\system32\ico.exe
(Sonic Solutions) C:\WINDOWS\system32\dla\tfswctrl.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\ZCfgSvc.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(BVRP Software) C:\Program Files\Digital Line Detect\DLG.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM\...\Run: [IMJPMIG8.1] => C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [208952 2004-08-04] (Microsoft Corporation)
HKLM\...\Run: [PSUAMain] => C:\Program Files\Panda Security\Panda Security Protection\PSUAMain.exe [54520 2015-10-23] (Panda Security, S.L.)
HKLM\...\Run: [Panda Security URL Filtering] => C:\Program Files\Panda Security URL Filtering\Panda_URL_Filtering.exe [254472 2015-10-03] (Visicom Media Inc.)
HKLM\...\Run: [Dell Wireless Manager UI] => C:\WINDOWS\system32\WLTRAY
HKLM\...\Run: [PMX Daemon] => C:\WINDOWS\system32\ICO.EXE [47104 2006-06-09] (Primax Electronics Ltd.)
HKLM\...\Run: [dla] => C:\WINDOWS\system32\dla\tfswctrl.exe [122941 2005-05-31] (Sonic Solutions)
HKLM\...\Run: [IntelZeroConfig] => C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe [819200 2007-02-21] (Intel Corporation)
HKLM\...\Run: [IntelWireless] => C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe [970752 2007-02-21] (Intel Corporation)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\WINDOWS\system32\WLTRAY.exe [1392640 2007-03-16] (Dell Inc.)
HKLM\...\Run: [igfxhkcmd] => C:\WINDOWS\system32\hkcmd.exe [77824 2016-03-26] (Intel Corporation)
HKLM\...\Run: [igfxpers] => C:\WINDOWS\system32\igfxpers.exe [114688 2005-07-19] (Intel Corporation)
HKLM\...\Policies\Explorer: [RestrictRun] 0
HKLM\...\Policies\Explorer: [NoCDBurning] 0
HKU\S-1-5-21-1085031214-688789844-1343024091-1003\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-1085031214-688789844-1343024091-1003\...\Policies\Explorer: [RestrictRun] 0
HKU\S-1-5-18\...\RunOnce: [panda] => reg.exe delete "HKCU\Software\AppDataLow\Software\panda" /f
HKU\S-1-5-18\...\RunOnce: [panda_XP] => reg.exe delete "HKCU\Software\panda" /f
Lsa: [Notification Packages] scecli scecli scecli
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Digital Line Detect.lnk [2016-04-05]
ShortcutTarget: Digital Line Detect.lnk -> C:\Program Files\Digital Line Detect\DLG.exe (BVRP Software)
GroupPolicyScripts: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9F97D69D-CCAD-43D1-82EF-AEA478EC3AEE}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{FF5F6470-324D-470D-B981-909AF8BD697B}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\S-1-5-21-1085031214-688789844-1343024091-1003\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
URLSearchHook: HKU\S-1-5-21-1085031214-688789844-1343024091-1003 - Panda Security Toolbar - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files\pandasecuritytb\pandasecurityDx.dll ()
URLSearchHook: HKU\S-1-5-21-1085031214-688789844-1343024091-1003 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: DriveLetterAccess -> {5CA3D70E-1895-11CF-8E15-001234567890} -> C:\WINDOWS\system32\dla\tfswshx.dll [2005-05-31] (Sonic Solutions)
BHO: Panda Security Toolbar -> {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} -> C:\Program Files\pandasecuritytb\pandasecurityDx.dll [2015-10-05] ()
Toolbar: HKLM - Panda Security Toolbar - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files\pandasecuritytb\pandasecurityDx.dll [2015-10-05] ()

FireFox:
========
FF ProfilePath: C:\Documents and Settings\sf\Application Data\Mozilla\Firefox\Profiles\hgx4pa98.default
FF DefaultSearchEngine: Yahoo
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2014-02-20] ()
FF Extension: Web Counselor - C:\Documents and Settings\sf\Application Data\Mozilla\Firefox\Profiles\hgx4pa98.default\Extensions\{25dd52dc-89a8-469d-9e8f-8d483095d1e8} [2014-10-02] [not signed]
FF Extension: Flash Block - C:\Documents and Settings\sf\Application Data\Mozilla\Firefox\Profiles\hgx4pa98.default\Extensions\{95ab36d4-fb6f-47b0-8b8d-e5f3bd547953}.xpi [2015-06-16]
FF Extension: Panda Security Toolbar - C:\Documents and Settings\sf\Application Data\Mozilla\Firefox\Profiles\hgx4pa98.default\Extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}.xpi [2015-09-30] [not signed]
FF Extension: Default - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2016-03-24] [not signed]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2014-02-20]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 EvtEng; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [643072 2007-02-21] (Intel Corporation) [File not signed]
R2 NanoServiceMain; C:\Program Files\Panda Security\Panda Security Protection\PSANHost.exe [142072 2015-10-18] (Panda Security, S.L.)
R2 PandaAgent; C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe [66808 2014-10-09] (Panda Security, S.L.)
R2 PSUAService; C:\Program Files\Panda Security\Panda Security Protection\PSUAService.exe [38136 2015-10-23] (Panda Security, S.L.)
R2 RegSrvc; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [327680 2007-02-21] (Intel Corporation) [File not signed]
R2 S24EventMonitor; C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [983040 2007-02-21] (Intel Corporation ) [File not signed]
R2 WLANKEEPER; C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe [294912 2007-02-21] (Intel® Corporation) [File not signed]
R2 wltrysvc; C:\WINDOWS\System32\bcmwltry.exe [1253376 2007-03-16] (Dell Inc.) [File not signed]
S3 WsDrvInst; "C:\Program Files\Wondershare\TunesGoRetro\DriverInstall.exe" [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21425 2016-04-05] (Meetinghouse Data Communications) [File not signed]
R0 drvmcdb; C:\WINDOWS\System32\drivers\drvmcdb.sys [88352 2005-04-22] (Sonic Solutions) [File not signed]
R2 drvnddm; C:\WINDOWS\System32\drivers\drvnddm.sys [40544 2005-04-21] (Sonic Solutions) [File not signed]
R0 giveio; C:\WINDOWS\System32\giveio.sys [5248 1996-04-04] () [File not signed]
R3 HSFHWICH; C:\WINDOWS\System32\DRIVERS\HSFHWICH.sys [208384 2005-05-03] (Conexant Systems, Inc.)
R3 HSF_DPV; C:\WINDOWS\System32\DRIVERS\HSF_DPV.SYS [1033728 2005-05-03] (Conexant Systems, Inc.)
S3 IWCA; C:\WINDOWS\System32\DRIVERS\iwca.sys [234496 2004-08-12] (Intel Corporation) [File not signed]
R1 NNSALPC; C:\WINDOWS\System32\DRIVERS\NNSAlpc.sys [87032 2015-07-09] (Panda Security, S.L.)
R1 NNSHTTP; C:\WINDOWS\System32\DRIVERS\NNSHttp.sys [202104 2015-07-09] (Panda Security, S.L.)
R1 NNSHTTPS; C:\WINDOWS\System32\DRIVERS\NNSHttps.sys [109688 2015-07-09] (Panda Security, S.L.)
R1 NNSIDS; C:\WINDOWS\System32\DRIVERS\NNSIds.sys [121720 2015-07-09] (Panda Security, S.L.)
R3 NNSNAHS; C:\WINDOWS\System32\DRIVERS\NNSNAHS.sys [55216 2015-05-20] (Panda Security, S.L.)
R1 NNSPICC; C:\WINDOWS\System32\DRIVERS\NNSPicc.sys [102264 2015-07-09] (Panda Security, S.L.)
R1 NNSPIHS; C:\WINDOWS\System32\DRIVERS\NNSPihs.sys [52088 2015-07-09] (Panda Security, S.L.)
R1 NNSPOP3; C:\WINDOWS\System32\DRIVERS\NNSPop3.sys [120568 2015-07-09] (Panda Security, S.L.)
R1 NNSPROT; C:\WINDOWS\System32\DRIVERS\NNSProt.sys [281720 2015-07-09] (Panda Security, S.L.)
R1 NNSPRV; C:\WINDOWS\System32\DRIVERS\NNSPrv.sys [209016 2015-07-09] (Panda Security, S.L.)
R1 NNSSMTP; C:\WINDOWS\System32\DRIVERS\NNSSmtp.sys [108408 2015-07-09] (Panda Security, S.L.)
R1 NNSSTRM; C:\WINDOWS\System32\DRIVERS\NNSStrm.sys [240376 2015-07-09] (Panda Security, S.L.)
R1 NNSTLSC; C:\WINDOWS\System32\DRIVERS\NNSTlsc.sys [94968 2015-07-09] (Panda Security, S.L.)
R1 OMCI; C:\WINDOWS\SYSTEM32\DRIVERS\OMCI.SYS [13632 2001-08-22] (Dell Computer Corporation) [File not signed]
R2 PSINAflt; C:\WINDOWS\System32\DRIVERS\PSINAflt.sys [140792 2015-07-20] (Panda Security, S.L.)
R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [103288 2015-07-20] (Panda Security, S.L.)
R1 PSINKNC; C:\WINDOWS\System32\DRIVERS\psinknc.sys [172792 2015-07-20] (Panda Security, S.L.)
R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [114680 2015-07-20] (Panda Security, S.L.)
R2 PSINProt; C:\WINDOWS\System32\DRIVERS\PSINProt.sys [125176 2015-07-20] (Panda Security, S.L.)
R2 PSINReg; C:\WINDOWS\System32\DRIVERS\PSINReg.sys [100600 2015-07-20] (Panda Security, S.L.)
U3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [50832 2015-05-22] (Panda Security, S.L.)
S3 Rockusb; C:\WINDOWS\System32\DRIVERS\rockusb.sys [46160 2013-10-28] (Fuzhou Rockchip Electronics Co,Ltd.)
R2 s24trans; C:\WINDOWS\System32\DRIVERS\s24trans.sys [12416 2007-02-21] (Intel Corporation) [File not signed]
R0 speedfan; C:\WINDOWS\System32\speedfan.sys [24184 2012-12-30] (Almico Software)
R1 sscdbhk5; C:\WINDOWS\System32\drivers\sscdbhk5.sys [5627 2005-05-13] (Sonic Solutions) [File not signed]
R1 ssrtln; C:\WINDOWS\System32\drivers\ssrtln.sys [23545 2005-05-13] (Sonic Solutions) [File not signed]
R3 STAC97; C:\WINDOWS\System32\drivers\stac97.sys [264440 2004-11-15] (SigmaTel, Inc.)
R2 StarOpen; C:\WINDOWS\system32\Drivers\StarOpen.sys [13120 2016-02-21] ()
S3 tap0901; C:\WINDOWS\System32\DRIVERS\tap0901.sys [32968 2014-03-07] (The OpenVPN Project)
R2 tfsnboio; C:\WINDOWS\System32\dla\tfsnboio.sys [25725 2005-05-31] (Sonic Solutions) [File not signed]
R2 tfsncofs; C:\WINDOWS\System32\dla\tfsncofs.sys [34845 2005-05-31] (Sonic Solutions) [File not signed]
R2 tfsndrct; C:\WINDOWS\System32\dla\tfsndrct.sys [4125 2005-05-31] (Sonic Solutions) [File not signed]
R2 tfsndres; C:\WINDOWS\System32\dla\tfsndres.sys [2241 2005-05-31] (Sonic Solutions) [File not signed]
R2 tfsnifs; C:\WINDOWS\System32\dla\tfsnifs.sys [86876 2005-05-31] (Sonic Solutions) [File not signed]
R2 tfsnopio; C:\WINDOWS\System32\dla\tfsnopio.sys [15069 2005-05-31] (Sonic Solutions) [File not signed]
R2 tfsnpool; C:\WINDOWS\System32\dla\tfsnpool.sys [6365 2005-05-31] (Sonic Solutions) [File not signed]
R2 tfsnudf; C:\WINDOWS\System32\dla\tfsnudf.sys [98716 2005-05-31] (Sonic Solutions) [File not signed]
R2 tfsnudfa; C:\WINDOWS\System32\dla\tfsnudfa.sys [100605 2005-05-31] (Sonic Solutions) [File not signed]
R3 tifm; C:\WINDOWS\System32\drivers\tifm.sys [55808 2006-07-21] (Texas Instruments)
R3 w29n51; C:\WINDOWS\System32\DRIVERS\w29n51.sys [2209408 2007-02-08] (Intel® Corporation)
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S3 UIUSys; system32\drivers\UIUSys.sys [X]

========================== Drivers MD5 =======================

C:\WINDOWS\System32\DRIVERS\ACPI.sys 8FD99680A539792A30E97944FDAECF17
C:\WINDOWS\System32\DRIVERS\ACPIEC.sys 9859C0F6936E723E4892D7141B1327D5
C:\WINDOWS\System32\drivers\aec.sys 8BED39E3C35D6A489438B8141717A557
C:\WINDOWS\System32\DRIVERS\AegisP.sys 375EB0B97E3950ADEF3633C27A82438B
C:\WINDOWS\System32\drivers\afd.sys 322D0E36693D6E24A2398BEE62A268CD
C:\WINDOWS\System32\DRIVERS\arp1394.sys B5B8A80875C1DEDEDA8B02765642C32F
C:\WINDOWS\System32\DRIVERS\asyncmac.sys B153AFFAC761E7F5FCFA822B9C4E97BC
C:\WINDOWS\System32\DRIVERS\atapi.sys 9F3A2F5AA6875C72BF062C712CFA2674
C:\WINDOWS\System32\DRIVERS\atmarpc.sys 9916C1225104BA14794209CFA8012159
C:\WINDOWS\System32\DRIVERS\audstub.sys D9F724AA26C010A217C97606B160ED68
C:\WINDOWS\System32\DRIVERS\bcm4sbxp.sys 78123F44BE9E4768852A3A017E02D637
C:\WINDOWS\system32\Drivers\Beep.sys DA1F27D85E0D1525F6621372E7B685E9
C:\WINDOWS\system32\Drivers\cbidf2k.sys 90A673FC8E12A79AFBED2576F6A7AAF9
C:\WINDOWS\system32\Drivers\Cdaudio.sys C1B486A7658353D33A10CC15211A873B
C:\WINDOWS\system32\Drivers\Cdfs.sys C885B02847F5D2FD45A24E219ED93B32
C:\WINDOWS\System32\DRIVERS\cdrom.sys 1F4260CC5B42272D71F79E570A27A4FE
C:\WINDOWS\System32\DRIVERS\CmBatt.sys 0F6C187D38D98F8DF904589A5F94D411
C:\WINDOWS\System32\DRIVERS\compbatt.sys 6E4C9F21F0FAE8940661144F41B13203
C:\WINDOWS\System32\DRIVERS\disk.sys 044452051F3E02E7963599FC8F4F3E25
C:\WINDOWS\System32\drivers\dmboot.sys D992FE1274BDE0F84AD826ACAE022A41
C:\WINDOWS\System32\drivers\dmio.sys 7C824CF7BBDE77D95C08005717A95F6F
C:\WINDOWS\System32\drivers\dmload.sys E9317282A63CA4D188C0DF5E09C6AC5F
C:\WINDOWS\System32\drivers\DMusic.sys 8A208DFCF89792A484E76C40E5F50B45
C:\WINDOWS\System32\drivers\drmkaud.sys 8F5FCFF8E8848AFAC920905FBD9D33C8
C:\WINDOWS\System32\drivers\drvmcdb.sys 96BC8F872F0270C10EDC3931F1C03776
C:\WINDOWS\System32\drivers\drvnddm.sys 5AFBEC7A6AC61B211633DFDB1D9E0C89
C:\WINDOWS\system32\Drivers\exFat.sys 3EF58F2EAE3AECAB45D682152DB2F67D
C:\WINDOWS\system32\Drivers\Fastfat.sys 38D332A6D56AF32635675F132548343E
C:\WINDOWS\system32\Drivers\Fdc.sys 92CDD60B6730B9F50F6A1A0C1F8CDC81
C:\WINDOWS\system32\Drivers\Fips.sys D45926117EB9FA946A6AF572FBE1CAA3
C:\WINDOWS\system32\Drivers\Flpydisk.sys 9D27E7B80BFCDF1CDD9B555862D5E7F0
C:\WINDOWS\System32\drivers\fltmgr.sys B2CF4B0786F8212CB92ED2B50C6DB6B0
C:\WINDOWS\system32\Drivers\Fs_Rec.sys C865B83411D7347627A4BEEC22543FB1
C:\WINDOWS\System32\DRIVERS\ftdisk.sys 6AC26732762483366C3969C9E4D2259D
C:\WINDOWS\System32\DRIVERS\GEARAspiWDM.sys 185ADA973B5020655CEE342059A86CBB
C:\WINDOWS\System32\giveio.sys 77EBF3E9386DAA51551AF429052D88D0
C:\WINDOWS\System32\DRIVERS\msgpc.sys 0A02C63C8B144BD8C86B103DEE7C86A2
C:\WINDOWS\System32\DRIVERS\hidusb.sys CCF82C5EC8A7326C3066DE870C06DAF1
C:\WINDOWS\System32\DRIVERS\HSFHWICH.sys A84BBBDD125D370593004F6429F8445C
C:\WINDOWS\System32\DRIVERS\HSF_DP.sys 9A0D0C461EF2B3D80CB7875B4B995E47
C:\WINDOWS\System32\DRIVERS\HSF_DPV.SYS B678FA91CF4A1C19B462D8DB04CD02AB
C:\WINDOWS\System32\Drivers\HTTP.sys F6AACF5BCE2893E0C1754AFEB672E5C9
C:\WINDOWS\System32\DRIVERS\i8042prt.sys 4A0B06AA8943C1E332520F7440C0AA30
C:\WINDOWS\System32\DRIVERS\ialmnt5.sys 240D0F5D7CAAFD87BD8D801A97BBE041
C:\WINDOWS\System32\DRIVERS\imapi.sys 083A052659F5310DD8B6A6CB05EDCF8E
C:\WINDOWS\System32\DRIVERS\intelide.sys B5466A9250342A7AA0CD1FBA13420678
C:\WINDOWS\System32\DRIVERS\intelppm.sys 8C953733D8F36EB2133F5BB58808B66B
C:\WINDOWS\System32\drivers\ip6fw.sys 3BB22519A194418D5FEC05D800A19AD0
C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys 731F22BA402EE4B62748ADAF6363C182
C:\WINDOWS\System32\DRIVERS\ipinip.sys B87AB476DCF76E72010632B5550955F5
C:\WINDOWS\System32\DRIVERS\ipnat.sys CC748EA12C6EFFDE940EE98098BF96BB
C:\WINDOWS\System32\DRIVERS\ipsec.sys 23C74D75E36E7158768DD63D92789A91
C:\WINDOWS\System32\DRIVERS\irenum.sys C93C9FF7B04D772627A3646D89F7BF89
C:\WINDOWS\System32\DRIVERS\isapnp.sys 05A299EC56E52649B1CF2FC52D20F2D7
C:\WINDOWS\System32\DRIVERS\iwca.sys 872D090CA5C306F62D1982BCE6302376
C:\WINDOWS\System32\DRIVERS\kbdclass.sys 463C1EC80CD17420A542B7F36A36F128
C:\WINDOWS\System32\drivers\kmixer.sys 692BCF44383D056AED41B045A323D378
C:\WINDOWS\system32\Drivers\KSecDD.sys 1705745D900DABF2D89F90EBADDC7517
C:\WINDOWS\System32\DRIVERS\mdmxsdk.sys 3C318B9CD391371BED62126581EE9961
C:\WINDOWS\system32\Drivers\mnmdd.sys 4AE068242760A1FB6E1A44BF4E16AFA6
C:\WINDOWS\system32\Drivers\Modem.sys DFCBAD3CEC1C5F964962AE10E0BCC8E1
C:\WINDOWS\System32\DRIVERS\mouclass.sys 35C9E97194C8CFB8430125F8DBC34D04
C:\WINDOWS\System32\DRIVERS\mouhid.sys B1C303E17FB9D46E87A98E4BA6769685
C:\WINDOWS\system32\Drivers\MountMgr.sys A80B9A0BAD1B73637DBCBBA7DF72D3FD
C:\WINDOWS\System32\DRIVERS\mrxdav.sys 11D42BB6206F33FBB3BA0288D3EF81BD
C:\WINDOWS\System32\DRIVERS\mrxsmb.sys 68755F0FF16070178B54674FE5B847B0
C:\WINDOWS\system32\Drivers\Msfs.sys C941EA2454BA8350021D774DAF0F1027
C:\WINDOWS\System32\drivers\MSKSSRV.sys D1575E71568F4D9E14CA56B7B0453BF1
C:\WINDOWS\System32\drivers\MSPCLOCK.sys 325BB26842FC7CCC1FCCE2C457317F3E
C:\WINDOWS\System32\drivers\MSPQM.sys BAD59648BA099DA4A17680B39730CB3D
C:\WINDOWS\System32\DRIVERS\mssmbios.sys AF5F4F3F14A8EA2C26DE30F7A1E17136
C:\WINDOWS\system32\Drivers\Mup.sys 2F625D11385B1A94360BFC70AAEFDEE1
C:\WINDOWS\system32\Drivers\NDIS.sys 1DF7F42665C94B825322FAE71721130D
C:\WINDOWS\System32\DRIVERS\ndistapi.sys 1AB3D00C991AB086E69DB84B6C0ED78F
C:\WINDOWS\System32\DRIVERS\ndisuio.sys F927A4434C5028758A842943EF1A3849
C:\WINDOWS\System32\DRIVERS\ndiswan.sys EDC1531A49C80614B2CFDA43CA8659AB
C:\WINDOWS\system32\Drivers\NDProxy.sys 6215023940CFD3702B46ABC304E1D45A
C:\WINDOWS\System32\DRIVERS\netbios.sys 5D81CF9A2F1A3A756B66CF684911CDF0
C:\WINDOWS\System32\DRIVERS\netbt.sys 74B2B2F5BEA5E9A3DC021D685551BD3D
C:\WINDOWS\System32\DRIVERS\nic1394.sys E9E47CFB2D461FA0FC75B7A74C6383EA
C:\WINDOWS\System32\DRIVERS\NNSAlpc.sys BBBB601FB3749A1D0876C2DB82DB5A8A
C:\WINDOWS\System32\DRIVERS\NNSHttp.sys B32E8C24EF54EB0E65FE160622AEC240
C:\WINDOWS\System32\DRIVERS\NNSHttps.sys C81057256FAE5F3CFB7A1F651E43D288
C:\WINDOWS\System32\DRIVERS\NNSIds.sys 14B39AC886DA9E294D41AD8C59FC1606
C:\WINDOWS\System32\DRIVERS\NNSNAHS.sys 38A2763C2D90069B172A520BE358841C
C:\WINDOWS\System32\DRIVERS\NNSPicc.sys 6CF447CF781E4744B27B879AD6B95348
C:\WINDOWS\System32\DRIVERS\NNSPihs.sys 4837AF2A082C95D624151F3ED84A09E8
C:\WINDOWS\System32\DRIVERS\NNSPop3.sys 884BFA9D89EE8D29C036D81BFCC6F8E0
C:\WINDOWS\System32\DRIVERS\NNSProt.sys E5D77DD5800ABCE5B1BD18C389FF5656
C:\WINDOWS\System32\DRIVERS\NNSPrv.sys B93DE267E76C7278A3F6C2ABBEB05383
C:\WINDOWS\System32\DRIVERS\NNSSmtp.sys 60E0176C475F5D27300115956791001A
C:\WINDOWS\System32\DRIVERS\NNSStrm.sys 6752E81E868D23037B61A025C0B1B64D
C:\WINDOWS\System32\DRIVERS\NNSTlsc.sys DA91875B27DB0905B73D6037232BA7DD
C:\WINDOWS\system32\Drivers\Npfs.sys 3182D64AE053D6FB034F44B6DEF8034A
C:\WINDOWS\system32\Drivers\Ntfs.sys 78A08DD6A8D65E697C18E1DB01C5CDCA
C:\WINDOWS\system32\Drivers\Null.sys 73C1E1F395918BC2C6DD67AF7591A3AD
C:\WINDOWS\System32\DRIVERS\nwlnkflt.sys B305F3FAD35083837EF46A0BBCE2FC57
C:\WINDOWS\System32\DRIVERS\nwlnkfwd.sys C99B3415198D1AAB7227F2C88FD664B9
C:\WINDOWS\System32\DRIVERS\ohci1394.sys CA33832DF41AFB202EE7AEB05145922F
C:\WINDOWS\SYSTEM32\DRIVERS\OMCI.SYS CEC7E2C6C1FA00C7AB2F5434F848AE51
C:\WINDOWS\System32\DRIVERS\parport.sys 5575FAF8F97CE5E713D108C2A58D7C7C
C:\WINDOWS\system32\Drivers\PartMgr.sys BEB3BA25197665D82EC7065B724171C6
C:\WINDOWS\system32\Drivers\ParVdm.sys 70E98B3FD8E963A6A46A2E6247E0BEA1
C:\WINDOWS\System32\DRIVERS\pci.sys A219903CCF74233761D92BEF471A07B1
C:\WINDOWS\System32\DRIVERS\pciide.sys CCF5F451BB1A5A2A522A76E670000FF0
C:\WINDOWS\System32\DRIVERS\pcmcia.sys 9E89EF60E9EE05E3F2EEF2DA7397F1C1
C:\WINDOWS\System32\DRIVERS\raspptp.sys EFEEC01B1D3CF84F16DDD24D9D9D8F99
C:\WINDOWS\System32\DRIVERS\psched.sys 09298EC810B07E5D582CB3A3F9255424
C:\WINDOWS\System32\DRIVERS\PSINAflt.sys 173BB240AFD54401BD74B9D98D62DCFE
C:\WINDOWS\System32\DRIVERS\PSINFile.sys 750D60F53843C154D967557685F0D070
C:\WINDOWS\System32\DRIVERS\psinknc.sys 6F9891C59D2577FCABFA9247259932A8
C:\WINDOWS\System32\DRIVERS\PSINProc.sys 470E5F203D5DD38C90DEDED6DA9B0426
C:\WINDOWS\System32\DRIVERS\PSINProt.sys 742E5E552FE42E168E73BC12B50979C6
C:\WINDOWS\System32\DRIVERS\PSINReg.sys 028990AEEBA96B58E2E33FE91694753B
C:\WINDOWS\System32\DRIVERS\PSKMAD.sys B6DE7ACA6781E67F6D614ABC1C88C3FF
C:\WINDOWS\System32\DRIVERS\ptilink.sys 80D317BD1C3DBC5D4FE7B1678C60CADD
C:\WINDOWS\System32\DRIVERS\rasacd.sys FE0D99D6F31E4FAD8159F690D68DED9C
C:\WINDOWS\System32\DRIVERS\rasl2tp.sys 11B4A627BC9614B885C4969BFA5FF8A6
C:\WINDOWS\System32\DRIVERS\raspppoe.sys 5BC962F2654137C9909C3D4603587DEE
C:\WINDOWS\System32\DRIVERS\raspti.sys FDBB1D60066FCFBB7452FD8F9829B242
C:\WINDOWS\System32\DRIVERS\rdbss.sys 7AD224AD1A1437FE28D89CF22B17780A
C:\WINDOWS\System32\DRIVERS\RDPCDD.sys 4912D5B403614CE99C28420F75353332
C:\WINDOWS\System32\DRIVERS\rdpdr.sys 15CABD0F7C00C47C70124907916AF3F1
C:\WINDOWS\system32\Drivers\RDPWD.sys 6728E45B66F93C08F11DE2E316FC70DD
C:\WINDOWS\System32\DRIVERS\redbook.sys F828DD7E1419B6653894A8F97A0094C5
C:\WINDOWS\System32\DRIVERS\rockusb.sys A3D189EC701EDE917966E9F89EF8B8F8
C:\WINDOWS\System32\DRIVERS\s24trans.sys E2C6ABCBEFB1D44F6AAEB1CD5D6062D4
C:\WINDOWS\System32\DRIVERS\secdrv.sys ==> MD5 is legit
C:\WINDOWS\system32\Drivers\Serial.sys CCA207A8896D4C6A0C9CE29A4AE411A7
C:\WINDOWS\system32\Drivers\Sfloppy.sys 8E6B8C671615D126FDC553D1E2DE5562
C:\WINDOWS\System32\speedfan.sys DC8D2952FB6FFBAEC67BD1B93A34DF11
C:\WINDOWS\System32\drivers\splitter.sys AB8B92451ECB048A4D1DE7C3FFCB4A9F
C:\WINDOWS\System32\DRIVERS\sr.sys 76BB022C2FB6902FD5BDD4F78FC13A5D
C:\WINDOWS\System32\DRIVERS\srv.sys 5252605079810904E31C332E241CD59B
C:\WINDOWS\System32\drivers\sscdbhk5.sys 98625722AD52B40305E74AAA83C93086
C:\WINDOWS\System32\drivers\ssrtln.sys D79412E3942C8A257253487536D5A994
C:\WINDOWS\System32\drivers\stac97.sys 5813D453EF8CE49D607C255CF128ACEB
C:\WINDOWS\system32\Drivers\StarOpen.sys 1F730FDDC8E4602ECFD8D143F970CF82
C:\WINDOWS\System32\DRIVERS\swenum.sys 3941D127AEF12E93ADDF6FE6EE027E0F
C:\WINDOWS\System32\drivers\swmidi.sys 8CE882BCC6CF8A62F2B2323D95CB3D01
C:\WINDOWS\System32\drivers\sysaudio.sys 8B83F3ED0F1688B4958F77CD6D2BF290
C:\WINDOWS\System32\DRIVERS\tap0901.sys 880E50AF799CAC4404E20E8F77701741
C:\WINDOWS\System32\DRIVERS\tcpip.sys 93EA8D04EC73A85DB02EB8805988F733
C:\WINDOWS\system32\Drivers\TDPIPE.sys 6471A66807F5E104E4885F5B67349397
C:\WINDOWS\system32\Drivers\TDTCP.sys C56B6D0402371CF3700EB322EF3AAF61
C:\WINDOWS\System32\DRIVERS\termdd.sys 88155247177638048422893737429D9E
C:\WINDOWS\System32\dla\tfsnboio.sys D0177776E11B0B3F272EEBD262A69661
C:\WINDOWS\System32\dla\tfsncofs.sys 599804BC938B8305A5422319774DA871
C:\WINDOWS\System32\dla\tfsndrct.sys A1902C00ADC11C4D83F8E3ED947A6A32
C:\WINDOWS\System32\dla\tfsndres.sys D8DDB3F2B1BEF15CFF6728D89C042C61
C:\WINDOWS\System32\dla\tfsnifs.sys C4F2DEA75300971CDAEE311007DE138D
C:\WINDOWS\System32\dla\tfsnopio.sys 272925BE0EA919F08286D2EE6F102B0F
C:\WINDOWS\System32\dla\tfsnpool.sys 7B7D955E5CEBC2FB88B03EF875D52A2F
C:\WINDOWS\System32\dla\tfsnudf.sys E3D01263109D800C1967C12C10A0B018
C:\WINDOWS\System32\dla\tfsnudfa.sys B9E9C377906E3A65BC74598FFF7F7458
C:\WINDOWS\System32\drivers\tifm.sys 465C92A7CB4FC1885B0018BA6325B463
C:\WINDOWS\system32\Drivers\Udfs.sys 5787B80C2E3C5E2F56C2A233D91FA2C9
C:\WINDOWS\System32\DRIVERS\update.sys 402DDC88356B1BAC0EE3DD1580C76A31
C:\WINDOWS\System32\DRIVERS\usbehci.sys 65DCF09D0E37D4C6B11B5B0B76D470A7
C:\WINDOWS\System32\DRIVERS\usbhub.sys 1AB3CDDE553B6E064D2E754EFE20285C
C:\WINDOWS\System32\DRIVERS\usbscan.sys A0B8CF9DEB1184FBDD20784A58FA75D4
C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS A32426D9B14A089EAA1D922E0C5801A9
C:\WINDOWS\System32\DRIVERS\usbuhci.sys 26496F9DEE2D787FC3E61AD54821FFE6
C:\WINDOWS\System32\drivers\vga.sys 0D3A8FAFCEACD8B7625CD549757A7DF1
C:\WINDOWS\system32\Drivers\VolSnap.sys 4C8FCB5CC53AAB716D810740FE59D025
C:\WINDOWS\System32\DRIVERS\w29n51.sys D6006DE6A6ED423D8016A03BC50CBE6B
C:\WINDOWS\System32\DRIVERS\wanarp.sys E20B95BAEDB550F32DD489265C1DA1F6
C:\WINDOWS\System32\drivers\wdmaud.sys 6768ACF64B18196494413695F0C3A00F
C:\WINDOWS\System32\DRIVERS\HSF_CNXT.sys 0C5B9CF1BDF998750D9C5EEB5F8C55AC
C:\WINDOWS\System32\drivers\ws2ifsl.sys 6ABE6E225ADB5A751622A9CC3BC19CE8

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-04-13 17:52 - 2015-05-22 16:45 - 00050832 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSKMAD.sys
2016-04-13 16:29 - 2016-04-13 16:29 - 00003354 _____ C:\Documents and Settings\sf\Desktop\VolumeC.txt
2016-04-12 09:56 - 2016-04-12 09:57 - 00000942 _____ C:\Documents and Settings\sf\Desktop\checkhd.txt
2016-04-10 19:14 - 2016-04-10 19:14 - 00151526 _____ C:\Documents and Settings\sf\Desktop\OTL5.Txt
2016-04-10 18:05 - 2016-04-10 18:05 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB955704$
2016-04-10 18:02 - 2008-04-14 05:42 - 01306624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6.dll
2016-04-10 18:02 - 2008-04-14 05:40 - 00294912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msaud32.acm
2016-04-10 18:02 - 2008-04-14 05:40 - 00102912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpcdll.dll
2016-04-10 18:02 - 2008-04-14 05:40 - 00086016 ____C (Sipro Lab Telecom Inc.) C:\WINDOWS\system32\dllcache\sl_anet.acm
2016-04-10 18:02 - 2008-04-14 05:39 - 00290816 ____C (Fraunhofer Institut Integrierte Schaltungen IIS) C:\WINDOWS\system32\dllcache\l3codeca.acm
2016-04-10 18:02 - 2008-04-13 22:58 - 00184959 ____C C:\WINDOWS\system32\dllcache\compact.wmz
2016-04-10 18:02 - 2008-04-13 22:58 - 00066725 ____C C:\WINDOWS\system32\dllcache\revert.wmz
2016-04-10 18:02 - 2008-04-13 22:57 - 00079872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6r.dll
2016-04-10 18:02 - 2007-06-26 11:30 - 00572557 ____C C:\WINDOWS\system32\dllcache\rtuner.wmv
2016-04-10 18:02 - 2007-06-26 11:30 - 00457607 ____C C:\WINDOWS\system32\dllcache\mdlib.wmv
2016-04-10 18:02 - 2007-06-26 11:30 - 00381425 ____C C:\WINDOWS\system32\dllcache\copycd.wmv
2016-04-10 18:02 - 2007-06-26 11:30 - 00375519 ____C C:\WINDOWS\system32\dllcache\nuskin.wmv
2016-04-10 18:02 - 2007-06-26 11:30 - 00354468 ____C C:\WINDOWS\system32\dllcache\wmpaud1.wav
2016-04-10 18:02 - 2007-06-26 11:30 - 00343204 ____C C:\WINDOWS\system32\dllcache\wmpaud7.wav
2016-04-10 18:02 - 2007-06-26 11:30 - 00343204 ____C C:\WINDOWS\system32\dllcache\wmpaud6.wav
2016-04-10 18:02 - 2007-06-26 11:30 - 00300969 ____C C:\WINDOWS\system32\dllcache\viz.wmv
2016-04-10 18:02 - 2007-06-26 11:30 - 00172196 ____C C:\WINDOWS\system32\dllcache\wmpaud9.wav
2016-04-10 18:02 - 2007-06-26 11:30 - 00172196 ____C C:\WINDOWS\system32\dllcache\wmpaud8.wav
2016-04-10 18:02 - 2007-06-26 11:30 - 00172196 ____C C:\WINDOWS\system32\dllcache\wmpaud3.wav
2016-04-10 18:02 - 2007-06-26 11:30 - 00086196 ____C C:\WINDOWS\system32\dllcache\wmpaud5.wav
2016-04-10 18:02 - 2007-06-26 11:30 - 00086180 ____C C:\WINDOWS\system32\dllcache\wmpaud4.wav
2016-04-10 18:02 - 2007-06-26 11:30 - 00086180 ____C C:\WINDOWS\system32\dllcache\wmpaud2.wav
2016-04-10 18:02 - 2007-06-26 11:30 - 00022060 ____C C:\WINDOWS\system32\dllcache\npds.zip
2016-04-10 18:02 - 2007-06-26 11:30 - 00010457 ____C C:\WINDOWS\system32\dllcache\wmptour.hta
2016-04-10 18:02 - 2007-06-26 11:30 - 00009585 ____C C:\WINDOWS\system32\dllcache\controls.css
2016-04-10 18:02 - 2007-06-26 11:30 - 00008298 ____C C:\WINDOWS\system32\dllcache\contents.htm
2016-04-10 18:02 - 2007-06-26 11:30 - 00006878 ____C C:\WINDOWS\system32\dllcache\controls.js
2016-04-10 18:02 - 2007-06-26 11:30 - 00005971 ____C C:\WINDOWS\system32\dllcache\events.js
2016-04-10 18:02 - 2007-06-26 11:30 - 00003187 ____C C:\WINDOWS\system32\dllcache\tour.js
2016-04-10 18:02 - 2007-06-26 11:30 - 00001771 ____C C:\WINDOWS\system32\dllcache\wmptour.css
2016-04-10 18:02 - 2007-06-26 11:30 - 00001148 ____C C:\WINDOWS\system32\dllcache\snd.htm
2016-04-10 18:02 - 2007-06-26 11:30 - 00000420 ____C C:\WINDOWS\system32\dllcache\wmploc.js
2016-04-10 18:02 - 2007-06-26 11:29 - 00097117 ____C C:\WINDOWS\system32\dllcache\mplayer2.hlp
2016-04-10 18:02 - 2007-06-26 11:29 - 00001885 ____C C:\WINDOWS\system32\dllcache\mplayer2.cnt
2016-04-10 18:02 - 2007-06-26 11:28 - 00613334 ____C C:\WINDOWS\system32\dllcache\wmplayer.chm
2016-04-10 18:02 - 2007-06-26 11:28 - 00067374 ____C C:\WINDOWS\system32\dllcache\wmplayer.adm
2016-04-10 18:02 - 2007-06-26 11:26 - 00077307 ____C C:\WINDOWS\system32\dllcache\plyr_err.chm
2016-04-10 18:02 - 2007-06-26 11:26 - 00001477 ____C C:\WINDOWS\system32\dllcache\plylst6.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00001477 ____C C:\WINDOWS\system32\dllcache\plylst5.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00001474 ____C C:\WINDOWS\system32\dllcache\plylst3.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00001451 ____C C:\WINDOWS\system32\dllcache\plylst12.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00001448 ____C C:\WINDOWS\system32\dllcache\plylst4.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00001250 ____C C:\WINDOWS\system32\dllcache\plylst1.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00001049 ____C C:\WINDOWS\system32\dllcache\plylst2.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00001046 ____C C:\WINDOWS\system32\dllcache\plylst7.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00001036 ____C C:\WINDOWS\system32\dllcache\plylst8.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00000789 ____C C:\WINDOWS\system32\dllcache\plylst11.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00000787 ____C C:\WINDOWS\system32\dllcache\plylst10.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00000784 ____C C:\WINDOWS\system32\dllcache\plylst9.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00000783 ____C C:\WINDOWS\system32\dllcache\plylst13.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00000775 ____C C:\WINDOWS\system32\dllcache\plylst14.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00000733 ____C C:\WINDOWS\system32\dllcache\plylst15.wpl
2016-04-10 18:02 - 2007-06-26 11:26 - 00000403 ____C C:\WINDOWS\system32\dllcache\npdrmv2.zip
2016-04-10 18:02 - 2007-04-02 23:21 - 00023195 ____C C:\WINDOWS\system32\dllcache\wmplay.chm
2016-04-10 18:01 - 2008-04-14 05:42 - 04274816 ____N (NVIDIA Corporation) C:\WINDOWS\system32\nv4_disp.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 01737856 ____N (Matrox Graphics Inc.) C:\WINDOWS\system32\mtxparhd.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00397056 ____N (S3 Graphics, Inc.) C:\WINDOWS\system32\s3gnb.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00291328 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagentrt.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00290304 ____N (Microsoft Corporation) C:\WINDOWS\system32\rhttpaa.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00286792 ____N (Smart Link) C:\WINDOWS\system32\slextspk.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00193024 ____N (Microsoft Corporation) C:\WINDOWS\system32\napmontr.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00188508 ____N (Smart Link) C:\WINDOWS\system32\slgen.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00176640 ____N (Microsoft Corporation) C:\WINDOWS\system32\napstat.exe
2016-04-10 18:01 - 2008-04-14 05:42 - 00155136 ____N (Microsoft Corporation) C:\WINDOWS\system32\mssha.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00150528 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagent.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00144384 ____N (Microsoft Corporation) C:\WINDOWS\system32\onex.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00076800 ____N (Microsoft Corporation) C:\WINDOWS\system32\qutil.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00073832 ____N (Smart Link) C:\WINDOWS\system32\slcoinst.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00073796 ____N (Smart Link) C:\WINDOWS\system32\slserv.exe
2016-04-10 18:01 - 2008-04-14 05:42 - 00069120 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00062464 ____N (Microsoft Corporation) C:\WINDOWS\system32\qcliprov.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00061952 ____N (Microsoft Corporation) C:\WINDOWS\system32\rasqec.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00060416 ____N (Microsoft Corporation) C:\WINDOWS\system32\tzchange.exe
2016-04-10 18:01 - 2008-04-14 05:42 - 00053248 ____N (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00050688 ____N (Microsoft Corporation) C:\WINDOWS\system32\tspkg.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcperf.exe
2016-04-10 18:01 - 2008-04-14 05:42 - 00032866 ____N (Smart Link) C:\WINDOWS\system32\slrundll.exe
2016-04-10 18:01 - 2008-04-14 05:42 - 00032768 ____N (Microsoft Corporation) C:\WINDOWS\system32\setupn.exe
2016-04-10 18:01 - 2008-04-14 05:42 - 00030208 ____N (Microsoft Corporation) C:\WINDOWS\system32\napipsec.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00028672 ____N (Microsoft Corporation) C:\WINDOWS\system32\vidcap.ax
2016-04-10 18:01 - 2008-04-14 05:42 - 00028672 ____N (Microsoft Corporation) C:\WINDOWS\system32\verclsid.exe
2016-04-10 18:01 - 2008-04-14 05:42 - 00023040 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativmvxx.ax
2016-04-10 18:01 - 2008-04-14 05:42 - 00010752 ____N (Microsoft Corporation) C:\WINDOWS\system32\smtpapi.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00009728 ____N (Microsoft Corporation) C:\WINDOWS\system32\rwnh.dll
2016-04-10 18:01 - 2008-04-14 05:42 - 00009728 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativdaxx.ax
2016-04-10 18:01 - 2008-04-14 05:41 - 01888992 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ati3duag.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00870784 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ati3d1ag.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00650752 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00516768 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ativvaxx.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00397312 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcex.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00377984 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2dvaa.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00233472 ____N (Microsoft Corporation) C:\WINDOWS\system32\azroles.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00229376 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2cqag.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00201728 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2dvag.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00184832 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00184320 ____N (Microsoft Corporation) C:\WINDOWS\system32\microsoft.managementconsole.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00180224 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00136192 ____N (Microsoft Corporation) C:\WINDOWS\system32\aaclient.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00132096 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00126976 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00106496 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcfxcommon.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00094208 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00061440 ____N (Microsoft Corporation) C:\WINDOWS\system32\kmsvc.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00059392 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapqec.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00057856 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3cfg.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00056320 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00048640 ____N (Microsoft Corporation) C:\WINDOWS\system32\dhcpqec.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00040960 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3gpclnt.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsroam.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00037376 ____N (Microsoft Corporation) C:\WINDOWS\system32\l2gpstore.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapsvc.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00032768 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativtmxx.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00032285 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\hsfcisp2.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00030720 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapolqec.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00026112 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00019456 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsntfy.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00012800 ____N (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00009216 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3dlg.dll
2016-04-10 18:01 - 2008-04-14 05:41 - 00007168 ____N (Microsoft Corporation) C:\WINDOWS\system32\bitsprx4.dll
2016-04-10 18:01 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdpash.dll
2016-04-10 18:01 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdnepr.dll
2016-04-10 18:01 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdiultn.dll
2016-04-10 18:01 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdbhc.dll
2016-04-10 18:01 - 2008-04-14 00:15 - 00046592 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irbus.sys
2016-04-10 18:01 - 2008-04-14 00:13 - 00009728 ____N (Microsoft Corporation) C:\WINDOWS\system32\comsdupd.exe
2016-04-10 18:01 - 2008-04-13 23:45 - 00076800 ____N (Microsoft Corporation) C:\WINDOWS\system32\msshavmsg.dll
2016-04-10 18:00 - 2008-04-14 05:42 - 00121856 ____N (Microsoft Corporation) C:\WINDOWS\system32\xmllite.dll
2016-04-10 18:00 - 2008-04-14 05:42 - 00032866 ____N (Smart Link) C:\WINDOWS\slrundll.exe
2016-04-10 18:00 - 2008-04-13 23:09 - 00689152 ____N (Microsoft Corporation) C:\WINDOWS\system32\xpsp3res.dll
2016-04-10 17:53 - 2016-04-10 18:02 - 00000000 ____D C:\WINDOWS\ServicePackFiles
2016-04-10 17:52 - 2008-04-14 05:42 - 00294912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dlimport.exe
2016-04-10 17:48 - 2008-04-14 05:42 - 00011325 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\vchnt5.dll
2016-04-10 17:48 - 2008-04-14 05:42 - 00003901 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\siint5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00025471 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\atv04nt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00021183 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\atv01nt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00017279 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\atv10nt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00015423 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\ch7xxnt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00014143 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\atv06nt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00011359 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\atv02nt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00004255 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv01nt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00003967 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv02nt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00003775 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv11nt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00003711 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv09nt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00003647 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv07nt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00003615 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv05nt5.dll
2016-04-10 17:48 - 2008-04-14 05:41 - 00003135 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\adv08nt5.dll
2016-04-10 17:48 - 2008-04-14 00:26 - 00030592 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rndismpx.sys
2016-04-10 17:48 - 2008-04-14 00:26 - 00012800 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023x.sys
2016-04-10 17:48 - 2008-04-14 00:21 - 00101120 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2016-04-10 17:48 - 2008-04-14 00:16 - 00273024 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-04-10 17:48 - 2008-04-14 00:16 - 00121984 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2016-04-10 17:48 - 2008-04-14 00:16 - 00059136 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2016-04-10 17:48 - 2008-04-14 00:16 - 00037888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthmodem.sys
2016-04-10 17:48 - 2008-04-14 00:16 - 00036480 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthprint.sys
2016-04-10 17:48 - 2008-04-14 00:16 - 00025600 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2016-04-10 17:48 - 2008-04-14 00:16 - 00018944 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthusb.sys
2016-04-10 17:48 - 2008-04-14 00:16 - 00017024 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-04-10 17:48 - 2008-04-14 00:15 - 00019200 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidir.sys
2016-04-10 17:48 - 2008-04-14 00:13 - 00014208 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wacompen.sys
2016-04-10 17:48 - 2008-04-14 00:13 - 00012672 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mutohpen.sys
2016-04-10 17:48 - 2008-04-14 00:10 - 00010240 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sffp_mmc.sys
2016-04-10 17:48 - 2008-04-14 00:06 - 00046464 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\gagp30kx.sys
2016-04-10 17:48 - 2008-04-14 00:06 - 00044928 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agpcpq.sys
2016-04-10 17:48 - 2008-04-14 00:06 - 00044672 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uagp35.sys
2016-04-10 17:48 - 2008-04-14 00:06 - 00043008 ____N (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdagp.sys
2016-04-10 17:48 - 2008-04-14 00:06 - 00042752 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\alim1541.sys
2016-04-10 17:48 - 2008-04-14 00:06 - 00042368 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agp440.sys
2016-04-10 17:48 - 2008-04-14 00:06 - 00042240 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\viaagp.sys
2016-04-10 17:48 - 2008-04-14 00:06 - 00040960 ____N (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\Drivers\sisagp.sys
2016-04-10 17:48 - 2008-04-14 00:06 - 00005888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\smbali.sys
2016-04-10 17:48 - 2008-04-13 23:53 - 01309184 ____N (Smart Link) C:\WINDOWS\system32\Drivers\mtlstrm.sys
2016-04-10 17:48 - 2008-04-13 23:53 - 01041536 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfdpsp2.sys
2016-04-10 17:48 - 2008-04-13 23:53 - 00685056 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfcxts2.sys
2016-04-10 17:48 - 2008-04-13 23:53 - 00404990 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slntamr.sys
2016-04-10 17:48 - 2008-04-13 23:53 - 00220032 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfbs2s2.sys
2016-04-10 17:48 - 2008-04-13 23:53 - 00180360 ____N (Smart Link) C:\WINDOWS\system32\Drivers\ntmtlfax.sys
2016-04-10 17:48 - 2008-04-13 23:53 - 00129535 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slnt7554.sys
2016-04-10 17:48 - 2008-04-13 23:53 - 00126686 ____N (Smart Link) C:\WINDOWS\system32\Drivers\mtlmnt5.sys
2016-04-10 17:48 - 2008-04-13 23:53 - 00095424 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slnthal.sys
2016-04-10 17:48 - 2008-04-13 23:53 - 00013776 ____N (Smart Link) C:\WINDOWS\system32\Drivers\recagent.sys
2016-04-10 17:48 - 2008-04-13 23:53 - 00013240 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slwdmsup.sys
2016-04-10 17:48 - 2008-04-13 22:06 - 00144384 ____N (Windows ® Server 2003 DDK provider) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 01897408 ____N (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nv4_mini.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00701440 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati2mtag.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00452736 ____N (Matrox Graphics Inc.) C:\WINDOWS\system32\Drivers\mtxparhm.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00327040 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati2mtaa.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00166912 ____N (S3 Graphics, Inc.) C:\WINDOWS\system32\Drivers\s3gnbm.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00104960 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinrvxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00073216 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atintuxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00063663 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1rvxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00063488 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinxsxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00057856 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinbtxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00056623 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1btxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00052224 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinraxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00036463 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1tuxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00034735 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1xsxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00031744 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinxbxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00030671 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1raxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00029455 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1xbxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00028672 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinsnxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00026367 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1snxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00025471 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\watv10nt.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00022271 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\watv06nt.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00021343 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1ttxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00014336 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinpdxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00013824 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinttxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00013824 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinmdxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00012047 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1pdxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00011935 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\wadv11nt.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00011871 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\wadv09nt.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00011807 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\wadv07nt.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00011615 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1mdxx.sys
2016-04-10 17:48 - 2008-04-13 22:04 - 00011295 ____N (Intel® Corporation) C:\WINDOWS\system32\Drivers\wadv08nt.sys
2016-04-10 17:48 - 2007-04-02 21:36 - 00129045 ____N C:\WINDOWS\system32\Drivers\cxthsfs2.cty
2016-04-10 17:48 - 2006-12-29 20:21 - 00064352 ____N C:\WINDOWS\system32\Drivers\ativmc20.cod
2016-04-10 17:48 - 2006-12-29 20:02 - 00067866 ____N C:\WINDOWS\system32\Drivers\netwlan5.img
2016-04-10 17:46 - 2006-12-29 00:31 - 00019569 _____ C:\WINDOWS\003058_.tmp
2016-04-10 17:39 - 2016-04-10 17:46 - 00000000 __HDC C:\WINDOWS\$NtServicePackUninstall$
2016-04-10 17:13 - 2016-04-10 17:27 - 00000000 ____D C:\Documents and Settings\sf\Application Data\InfraRecorder
2016-04-10 17:13 - 2016-04-10 17:13 - 00000760 _____ C:\Documents and Settings\All Users\Desktop\InfraRecorder.lnk
2016-04-10 17:13 - 2016-04-10 17:13 - 00000000 ____D C:\Program Files\InfraRecorder
2016-04-10 17:13 - 2016-04-10 17:13 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\InfraRecorder
2016-04-10 16:41 - 2016-04-10 16:41 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Canneverbe Limited
2016-04-10 16:40 - 2016-04-10 16:40 - 00001604 _____ C:\Documents and Settings\All Users\Desktop\CDBurnerXP.lnk
2016-04-10 16:40 - 2016-04-10 16:40 - 00001556 _____ C:\Documents and Settings\All Users\Start Menu\Programs\CDBurnerXP.lnk
2016-04-10 16:40 - 2016-04-10 16:40 - 00000000 ____D C:\Documents and Settings\sf\Application Data\Canneverbe Limited
2016-04-10 16:40 - 2016-02-21 19:04 - 00013120 _____ C:\WINDOWS\system32\Drivers\StarOpen.sys
2016-04-10 16:39 - 2016-04-10 16:40 - 00000000 ____D C:\Program Files\CDBurnerXP
2016-04-10 14:55 - 2016-04-10 14:55 - 00005238 _____ C:\Documents and Settings\sf\Desktop\sfvb5.txt
2016-04-06 01:53 - 2016-04-06 01:53 - 00013132 _____ C:\Documents and Settings\sf\My Documents\bsod.txt
2016-04-06 01:42 - 2016-04-06 01:42 - 00003352 _____ C:\Documents and Settings\sf\Desktop\defrag.txt
2016-04-05 23:28 - 2016-04-05 23:28 - 00005592 _____ C:\Documents and Settings\sf\Desktop\Hardware Interrupts and DPCs.txt
2016-04-05 21:30 - 2016-04-05 21:30 - 00005304 _____ C:\Documents and Settings\sf\Desktop\Search.txt
2016-04-05 21:25 - 2016-04-05 21:58 - 00012966 _____ C:\Documents and Settings\sf\Desktop\sfvb4.txt
2016-04-05 18:28 - 2016-04-05 18:28 - 00246512 _____ C:\Documents and Settings\sf\Desktop\FRST4.txt
2016-04-05 18:28 - 2016-04-05 18:28 - 00023252 _____ C:\Documents and Settings\sf\Desktop\Addition4.txt
2016-04-05 17:58 - 2016-04-05 17:58 - 00000358 _____ C:\VEW3app.txt
2016-04-05 17:57 - 2016-04-05 17:57 - 00000670 _____ C:\VEW3.txt
2016-04-05 17:50 - 2005-07-19 18:05 - 00135168 _____ (Intel Corporation) C:\WINDOWS\system32\igfxres.dll
2016-04-05 17:37 - 2016-04-05 17:37 - 00000000 ____D C:\WINDOWS\tiinst
2016-04-05 17:37 - 2006-07-21 12:42 - 00055808 _____ (Texas Instruments) C:\WINDOWS\system32\Drivers\tifm.sys
2016-04-05 17:32 - 2005-05-03 15:09 - 01033728 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\HSF_DPV.SYS
2016-04-05 17:32 - 2005-05-03 11:56 - 00129405 _____ C:\WINDOWS\system32\Drivers\del1028.cty
2016-04-05 17:32 - 2005-02-23 15:02 - 00042858 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\hsfci014.dll
2016-04-05 17:23 - 2016-04-05 17:23 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Dell Wireless
2016-04-05 17:23 - 2007-03-16 18:10 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ATL71.DLL
2016-04-05 17:23 - 2007-03-16 18:10 - 00033664 _____ (CACE Technologies) C:\WINDOWS\system32\Drivers\BCMWLNPF.SYS
2016-04-05 17:22 - 2016-04-05 17:22 - 00000010 _____ C:\WINDOWS\BCMWLU00.txt
2016-04-05 17:22 - 2007-03-16 18:10 - 02129920 _____ (BCGSoft Ltd) C:\WINDOWS\system32\WLBCGCBPRO731.DLL
2016-04-05 17:22 - 2007-03-16 18:10 - 00757760 _____ C:\WINDOWS\system32\bcm1xsup.dll
2016-04-05 17:22 - 2007-03-16 18:10 - 00086016 _____ C:\WINDOWS\system32\preflib.dll
2016-04-05 17:22 - 2007-03-16 18:10 - 00069632 _____ (CACE Technologies) C:\WINDOWS\system32\bcmwlpkt.dll
2016-04-05 17:20 - 2016-04-05 17:20 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Intel PROSet Wireless
2016-04-05 17:19 - 2016-04-05 17:19 - 00000472 _____ C:\WINDOWS\system32\results.txt
2016-04-05 17:19 - 2016-04-05 17:19 - 00000155 _____ C:\version.ini
2016-04-05 17:19 - 2016-04-05 17:19 - 00000000 ____D C:\Documents and Settings\NetworkService\Application Data\Intel
2016-04-05 17:19 - 2016-04-05 17:19 - 00000000 ____D C:\Documents and Settings\LocalService\Application Data\Intel
2016-04-05 17:19 - 2016-04-05 17:19 - 00000000 ____D C:\Documents and Settings\Default User\Application Data\Intel
2016-04-05 17:18 - 2016-04-05 17:18 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Intel
2016-04-05 17:18 - 2007-02-12 11:41 - 02732032 _____ (Intel Corporation) C:\WINDOWS\system32\Netw2r32.dll
2016-04-05 17:18 - 2007-02-12 11:40 - 00557056 _____ (Intel Corporation) C:\WINDOWS\system32\Netw2c32.dll
2016-04-05 17:17 - 2016-04-05 17:17 - 00000000 ____D C:\Documents and Settings\sf\Application Data\Intel
2016-04-05 17:16 - 2016-04-05 17:16 - 00000000 ____D C:\Program Files\Digital Line Detect
2016-04-05 17:12 - 2016-04-05 17:50 - 00000000 ____D C:\WINDOWS\system32\dla
2016-04-05 17:12 - 2016-04-05 17:12 - 00000181 _____ C:\WINDOWS\wininit.ini
2016-04-05 17:12 - 2016-04-05 17:12 - 00000000 ____D C:\Program Files\Sonic
2016-04-05 17:12 - 2016-04-05 17:12 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Sonic
2016-04-05 17:12 - 2005-05-31 05:33 - 00098360 _____ (Sonic Solutions) C:\WINDOWS\dla.exe
2016-04-05 17:12 - 2005-05-31 05:33 - 00061500 _____ (Sonic Solutions) C:\WINDOWS\system32\tfswapi.dll
2016-04-05 17:12 - 2005-05-13 10:37 - 00023545 _____ (Sonic Solutions) C:\WINDOWS\system32\Drivers\ssrtln.sys
2016-04-05 17:12 - 2005-05-13 10:37 - 00005627 _____ (Sonic Solutions) C:\WINDOWS\system32\Drivers\sscdbhk5.sys
2016-04-05 17:12 - 2005-04-22 03:22 - 00088352 _____ (Sonic Solutions) C:\WINDOWS\system32\Drivers\drvmcdb.sys
2016-04-05 17:12 - 2005-04-21 02:56 - 00040544 _____ (Sonic Solutions) C:\WINDOWS\system32\Drivers\drvnddm.sys
2016-04-05 17:11 - 2016-04-05 17:11 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Dell
2016-04-05 17:10 - 2016-04-05 17:22 - 00000000 ____D C:\Program Files\Dell
2016-04-05 17:10 - 2016-04-05 17:10 - 00001717 _____ C:\Documents and Settings\All Users\Start Menu\Program Updates.lnk
2016-04-05 17:10 - 2016-04-05 17:10 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Mouse Suite
2016-04-05 17:10 - 2006-06-28 11:48 - 00237568 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\pmxutil.dll
2016-04-05 17:10 - 2006-06-24 11:46 - 00131002 _____ C:\WINDOWS\system32\DellPM.ini
2016-04-05 17:10 - 2006-06-22 11:37 - 02285568 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\DellPM.exe
2016-04-05 17:10 - 2006-06-22 11:05 - 00139264 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\pmxmiced.exe
2016-04-05 17:10 - 2006-06-22 10:30 - 00131072 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\pmxscrll.dll
2016-04-05 17:10 - 2006-06-15 18:40 - 00065536 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\pmxhooks.dll
2016-04-05 17:10 - 2006-06-15 18:40 - 00049152 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\pmxcomm.dll
2016-04-05 17:10 - 2006-06-14 10:46 - 00143360 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\ApSwitch.exe
2016-04-05 17:10 - 2006-06-09 15:02 - 00040960 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\LaunHelp.exe
2016-04-05 17:10 - 2006-06-09 12:47 - 00047104 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\iconspy.exe
2016-04-05 17:10 - 2006-06-09 12:47 - 00047104 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\ico.exe
2016-04-05 17:10 - 2006-05-17 17:55 - 00021504 _____ C:\WINDOWS\system32\FontZoom.exe
2016-04-05 17:10 - 2006-05-17 09:27 - 00028672 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\UnInst.exe
2016-04-05 17:10 - 2006-01-03 03:13 - 01443464 ____R (Macromedia, Inc.) C:\WINDOWS\system32\Flash8a.ocx
2016-04-05 17:10 - 2006-01-03 03:13 - 01443464 ____R (Macromedia, Inc.) C:\WINDOWS\Flash8a.ocx
2016-04-05 17:10 - 2006-01-01 19:31 - 00094208 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\Pelzoom.dll
2016-04-05 17:10 - 2005-08-11 15:29 - 00073728 _____ (Macrovision Corporation) C:\WINDOWS\system32\ISUSPM.cpl
2016-04-05 16:53 - 2016-04-05 18:42 - 00546246 _____ C:\Documents and Settings\sf\Desktop\sfvb3.txt
2016-04-04 10:56 - 2016-04-04 12:32 - 00426496 _____ C:\Documents and Settings\sf\My Documents\Helium WIP.xls
2016-04-04 10:55 - 2016-04-13 15:40 - 00000446 _____ C:\WINDOWS\Tasks\WpsUpdateTask_sf.job
2016-04-04 10:55 - 2016-04-13 15:40 - 00000446 _____ C:\WINDOWS\Tasks\WpsNotifyTask_sf.job
2016-04-03 19:52 - 2007-03-16 18:10 - 03395584 _____ (Dell Inc.) C:\WINDOWS\system32\BCMWLCPL.CPL
2016-04-03 19:52 - 2007-03-16 18:10 - 01392640 _____ (Dell Inc.) C:\WINDOWS\system32\WLTRAY.EXE
2016-04-03 19:52 - 2007-03-16 18:10 - 01253376 _____ (Dell Inc.) C:\WINDOWS\system32\BCMWLTRY.EXE
2016-04-03 19:52 - 2007-03-16 18:10 - 00770048 _____ (Dell Inc.) C:\WINDOWS\system32\BCMLogon.dll
2016-04-03 19:52 - 2007-03-16 18:10 - 00044032 _____ (Broadcom Corporation) C:\WINDOWS\system32\wltrynt.dll
2016-04-03 19:52 - 2007-03-16 18:10 - 00020480 _____ C:\WINDOWS\system32\WLTRYSVC.EXE
2016-04-03 19:52 - 2005-02-23 11:04 - 01396831 ____N (Meetinghouse Data Communications) C:\WINDOWS\system32\AegisE5.dll
2016-04-03 19:52 - 2005-02-23 11:04 - 00192512 ____N () C:\WINDOWS\system32\AegisI5.exe
2016-04-03 19:52 - 2005-02-23 11:04 - 00069632 ____N (Dell Inc) C:\WINDOWS\system32\BCMWLD2K.EXE
2016-04-03 18:33 - 2003-12-08 10:49 - 00983040 _____ (Intel Corporation) C:\WINDOWS\system32\W20MLRES.DLL
2016-04-03 18:33 - 2003-03-17 20:03 - 00966656 _____ (Intel Corporation) C:\WINDOWS\system32\W70MLRES.DLL
2016-04-03 18:32 - 2016-04-03 18:32 - 00000000 ____D C:\Documents and Settings\sf\Local Settings\Application Data\Help
2016-04-03 18:23 - 2007-03-16 18:10 - 00253952 _____ (Dell Inc.) C:\WINDOWS\system32\bcmwlu00.exe
2016-04-03 18:23 - 2005-02-23 11:04 - 00369024 ____N (Broadcom Corporation) C:\WINDOWS\system32\Drivers\BCMWL5.SYS
2016-04-03 18:16 - 2016-04-03 18:16 - 00000000 ____D C:\Program Files\Broadcom
2016-04-03 18:15 - 2016-04-03 18:15 - 00000000 ____D C:\WINDOWS\Downloaded Installations
2016-04-03 18:11 - 2016-04-03 18:11 - 00000000 ____D C:\Program Files\CONEXANT
2016-04-03 18:11 - 2005-05-03 15:08 - 00705408 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\HSF_CNXT.sys
2016-04-03 18:11 - 2005-05-03 15:08 - 00208384 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\HSFHWICH.sys
2016-04-03 18:11 - 2004-03-17 12:04 - 00013059 _____ (Conexant) C:\WINDOWS\system32\Drivers\mdmxsdk.sys
2016-04-03 18:11 - 2004-03-17 12:00 - 00086016 _____ (Conexant) C:\WINDOWS\system32\mdmxsdk.dll
2016-04-03 18:11 - 2003-11-13 18:17 - 01042816 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\HSF_DP.sys
2016-04-03 18:11 - 2003-11-05 15:02 - 00032218 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\HSFCI008.dll
2016-04-03 18:11 - 2003-10-27 06:52 - 00128480 _____ C:\WINDOWS\system32\Drivers\del5422.cty
2016-04-02 11:35 - 2016-04-02 11:35 - 00004517 _____ C:\Documents and Settings\sf\Desktop\process explore2.txt
2016-04-01 21:39 - 2016-04-01 21:41 - 00000000 ____D C:\32788R22FWJFW
2016-04-01 21:35 - 2016-04-01 21:35 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Panda Free Antivirus
2016-04-01 21:11 - 2016-04-10 19:13 - 00151526 _____ C:\Documents and Settings\sf\Desktop\OTL.Txt
2016-04-01 21:11 - 2016-04-01 21:11 - 00040112 _____ C:\Documents and Settings\sf\Desktop\Extras.Txt
2016-04-01 20:10 - 2016-04-01 20:10 - 00000000 ____D C:\Program Files\pandasecuritytb
2016-04-01 20:10 - 2016-04-01 20:10 - 00000000 ____D C:\Program Files\Panda Security URL Filtering
2016-04-01 20:10 - 2016-04-01 20:10 - 00000000 ____D C:\Documents and Settings\Default User\Local Settings\Application Data\panda
2016-04-01 20:10 - 2016-04-01 20:10 - 00000000 ____D C:\Documents and Settings\Default User\Application Data\pandasecuritytb
2016-04-01 19:59 - 2016-04-05 23:15 - 00005238 _____ C:\Documents and Settings\sf\Desktop\sfvb2.txt
2016-04-01 12:04 - 2016-04-10 18:37 - 00000792 _____ C:\Documents and Settings\LocalService\Start Menu\Programs\Windows Media Player.lnk
2016-04-01 12:04 - 2016-04-01 12:04 - 00000767 _____ C:\Documents and Settings\sf\Start Menu\Programs\Internet Explorer.lnk
2016-04-01 12:04 - 2016-04-01 12:04 - 00000345 _____ C:\WINDOWS\OEWABLog.txt
2016-04-01 11:32 - 2016-04-01 11:32 - 00090112 _____ C:\WINDOWS\Minidump\Mini040116-01.dmp
2016-04-01 10:24 - 2016-04-01 10:24 - 00119286 _____ C:\Documents and Settings\sf\Desktop\OTL3.Txt
2016-04-01 10:24 - 2016-04-01 10:24 - 00039438 _____ C:\Documents and Settings\sf\Desktop\Extras3.Txt
2016-03-31 22:27 - 2016-03-31 22:26 - 00090112 _____ C:\WINDOWS\Minidump\Mini033116-01.dmp
2016-03-31 22:16 - 2016-03-31 22:16 - 00119320 _____ C:\Documents and Settings\sf\Desktop\OTL2.Txt
2016-03-31 22:16 - 2016-03-31 22:16 - 00039472 _____ C:\Documents and Settings\sf\Desktop\Extras2.Txt
2016-03-31 16:05 - 2016-03-31 16:05 - 00039470 _____ C:\Documents and Settings\sf\Desktop\Extras1.Txt
2016-03-31 16:04 - 2016-03-31 16:04 - 00119580 _____ C:\Documents and Settings\sf\Desktop\OTL1.Txt
2016-03-31 15:51 - 2016-04-01 10:35 - 00602112 _____ (OldTimer Tools) C:\Documents and Settings\sf\Desktop\OTL.exe
2016-03-31 15:43 - 2016-04-01 11:46 - 00007120 _____ C:\SIPOBJ.DBG
2016-03-29 01:10 - 2016-04-01 10:29 - 00000000 __SHD C:\WINDOWS\CSC
2016-03-29 01:10 - 2016-03-29 01:10 - 00090112 _____ C:\WINDOWS\Minidump\Mini032916-02.dmp
2016-03-29 01:06 - 2016-03-29 01:06 - 00000000 ____D C:\WINDOWS\pss
2016-03-29 01:04 - 2016-03-29 01:03 - 00090112 _____ C:\WINDOWS\Minidump\Mini032916-01.dmp
2016-03-28 22:42 - 2016-03-28 22:41 - 00090112 _____ C:\WINDOWS\Minidump\Mini032816-03.dmp
2016-03-28 22:41 - 2016-04-01 11:33 - 01814166 _____ C:\WINDOWS\ntbtlog.txt
2016-03-28 22:38 - 2016-03-28 22:38 - 00090112 _____ C:\WINDOWS\Minidump\Mini032816-02.dmp
2016-03-28 12:19 - 2016-03-28 12:19 - 00090112 _____ C:\WINDOWS\Minidump\Mini032816-01.dmp
2016-03-28 12:08 - 2016-04-10 18:35 - 00013293 _____ C:\WINDOWS\setuplog.txt
2016-03-28 12:08 - 2016-04-10 18:02 - 00000000 ____D C:\Program Files\Messenger
2016-03-28 12:07 - 2016-04-10 18:00 - 00000000 ____D C:\WINDOWS\system32\scripting
2016-03-28 12:07 - 2016-04-10 18:00 - 00000000 ____D C:\WINDOWS\system32\bits
2016-03-28 12:07 - 2016-04-10 18:00 - 00000000 ____D C:\WINDOWS\l2schemas
2016-03-28 12:07 - 2016-03-28 12:07 - 00000000 ____D C:\Program Files\msn
2016-03-28 12:02 - 2016-04-10 18:01 - 00000000 ____D C:\WINDOWS\network diagnostic
2016-03-28 12:00 - 2008-02-05 11:21 - 00019569 _____ C:\WINDOWS\003065_.tmp
2016-03-28 11:58 - 2008-04-14 05:42 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2016-03-28 11:58 - 2008-04-14 00:26 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunmp.sys
2016-03-28 11:58 - 2008-04-14 00:23 - 00264832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-03-28 11:58 - 2008-04-14 00:23 - 00036608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ip6fw.sys
2016-03-28 11:58 - 2008-04-14 00:15 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2016-03-28 11:58 - 2008-04-14 00:10 - 00011904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sffdisk.sys
2016-03-28 11:58 - 2008-04-14 00:10 - 00011008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sffp_sd.sys
2016-03-28 11:58 - 2008-04-14 00:06 - 00079232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-03-28 11:58 - 2008-04-14 00:06 - 00015488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssmbios.sys
2016-03-28 11:58 - 2008-04-14 00:03 - 00129792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltmgr.sys
2016-03-28 11:58 - 2008-04-14 00:01 - 00037760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk7.sys
2016-03-28 11:58 - 2008-04-14 00:01 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2016-03-28 11:58 - 2008-04-13 23:09 - 02897920 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsp2res.dll
2016-03-28 11:58 - 2004-08-04 20:00 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\gpkcsp.dll
2016-03-28 11:58 - 2004-08-04 20:00 - 00092224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\krnl386.exe
2016-03-28 11:58 - 2004-08-04 20:00 - 00068768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mmsystem.dll
2016-03-28 11:58 - 2004-08-04 20:00 - 00053840 _____ C:\WINDOWS\system32\dllcache\dosx.exe
2016-03-28 11:58 - 2004-08-04 20:00 - 00004656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ds16gt.dll
2016-03-28 11:58 - 2004-08-04 20:00 - 00003338 _____ C:\WINDOWS\system32\dllcache\redir.exe
2016-03-28 11:57 - 2008-09-30 14:19 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ulib.dll
2016-03-28 11:57 - 2008-09-29 18:22 - 00030720 ____C (Microsoft Corporation) C:\WINDOWS\system32\format.com
2016-03-28 11:57 - 2008-04-14 05:45 - 00009424 ____C C:\WINDOWS\system32\dllcache\drvmain.sdb
2016-03-28 11:57 - 2008-04-14 05:43 - 00139656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpwd.sys
2016-03-28 11:57 - 2008-04-14 05:43 - 00040840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\termdd.sys
2016-03-28 11:57 - 2008-04-14 05:43 - 00021896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdtcp.sys
2016-03-28 11:57 - 2008-04-14 05:43 - 00012040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdpipe.sys
2016-03-28 11:57 - 2008-04-14 05:42 - 00990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\syssetup.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00985088 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00602624 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00588800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\autochk.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00588800 ____C (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00389120 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmd.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysdm.cpl
2016-03-28 11:57 - 2008-04-14 05:42 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-03-28 11:57 - 2008-04-14 05:42 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\nwprovau.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\sessmgr.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\desk.cpl
2016-03-28 11:57 - 2008-04-14 05:42 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\scardsvr.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasauto.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\nslookup.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\locator.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpmonui.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ftp.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rshx32.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfctrs.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\olecnv32.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msgsvc.dll
2016-03-28 11:57 - 2008-04-14 05:42 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\userinit.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\cacls.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\savedump.exe
2016-03-28 11:57 - 2008-04-14 05:42 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlsapi.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00989696 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00728064 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00706048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00617472 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00617472 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mgmtapi.dll
2016-03-28 11:57 - 2008-04-14 05:41 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lmhsvc.dll
2016-03-28 11:57 - 2008-04-14 01:00 - 01845632 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-03-28 11:57 - 2008-04-14 00:58 - 00175744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-03-28 11:57 - 2008-04-14 00:57 - 02188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-03-28 11:57 - 2008-04-14 00:51 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2016-03-28 11:57 - 2008-04-14 00:50 - 00361344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-03-28 11:57 - 2008-04-14 00:50 - 00182656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-03-28 11:57 - 2008-04-14 00:50 - 00091520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2016-03-28 11:57 - 2008-04-14 00:49 - 00146048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2016-03-28 11:57 - 2008-04-14 00:49 - 00138112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-03-28 11:57 - 2008-04-14 00:49 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipsec.sys
2016-03-28 11:57 - 2008-04-14 00:49 - 00051328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-03-28 11:57 - 2008-04-14 00:49 - 00048384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspptp.sys
2016-03-28 11:57 - 2008-04-14 00:48 - 00052480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys
2016-03-28 11:57 - 2008-04-14 00:47 - 00456576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-03-28 11:57 - 2008-04-14 00:47 - 00105344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2016-03-28 11:57 - 2008-04-14 00:47 - 00083072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wdmaud.sys
2016-03-28 11:57 - 2008-04-14 00:46 - 00141056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2016-03-28 11:57 - 2008-04-14 00:46 - 00049536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\classpnp.sys
2016-03-28 11:57 - 2008-04-14 00:45 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-03-28 11:57 - 2008-04-14 00:45 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-03-28 11:57 - 2008-04-14 00:45 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serial.sys
2016-03-28 11:57 - 2008-04-14 00:45 - 00060800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sysaudio.sys
2016-03-28 11:57 - 2008-04-14 00:44 - 00143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2016-03-28 11:57 - 2008-04-14 00:44 - 00063744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2016-03-28 11:57 - 2008-04-14 00:30 - 00225664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip6.sys
2016-03-28 11:57 - 2008-04-14 00:30 - 00030080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\modem.sys
2016-03-28 11:57 - 2008-04-14 00:30 - 00019072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdi.sys
2016-03-28 11:57 - 2008-04-14 00:27 - 00152832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2016-03-28 11:57 - 2008-04-14 00:27 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspppoe.sys
2016-03-28 11:57 - 2008-04-14 00:27 - 00040576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2016-03-28 11:57 - 2008-04-14 00:27 - 00034560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2016-03-28 11:57 - 2008-04-14 00:27 - 00020864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipinip.sys
2016-03-28 11:57 - 2008-04-14 00:27 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\asyncmac.sys
2016-03-28 11:57 - 2008-04-14 00:27 - 00010112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2016-03-28 11:57 - 2008-04-14 00:26 - 00088320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwlnkipx.sys
2016-03-28 11:57 - 2008-04-14 00:26 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\psched.sys
2016-03-28 11:57 - 2008-04-14 00:26 - 00035072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpc.sys
2016-03-28 11:57 - 2008-04-14 00:26 - 00034688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbios.sys
2016-03-28 11:57 - 2008-04-14 00:26 - 00030592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rndismp.sys
2016-03-28 11:57 - 2008-04-14 00:26 - 00014592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndisuio.sys
2016-03-28 11:57 - 2008-04-14 00:26 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys
2016-03-28 11:57 - 2008-04-14 00:25 - 00202624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2016-03-28 11:57 - 2008-04-14 00:24 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irenum.sys
2016-03-28 11:57 - 2008-04-14 00:23 - 00071552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2016-03-28 11:57 - 2008-04-14 00:23 - 00040320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nmnt.sys
2016-03-28 11:57 - 2008-04-14 00:21 - 00061824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nic1394.sys
2016-03-28 11:57 - 2008-04-14 00:21 - 00060800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\arp1394.sys
2016-03-28 11:57 - 2008-04-14 00:21 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\atmarpc.sys
2016-03-28 11:57 - 2008-04-14 00:21 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\atmlane.sys
2016-03-28 11:57 - 2008-04-14 00:16 - 00061696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ohci1394.sys
2016-03-28 11:57 - 2008-04-14 00:16 - 00053376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\1394bus.sys
2016-03-28 11:57 - 2008-04-14 00:16 - 00025344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sonydcam.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00172416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kmixer.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00060160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmk.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00059520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00056576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\swmidi.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00052864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dmusic.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00049408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stream.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00026368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbstor.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00025728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbcamd2.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbcamd.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00024960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00020608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbintel.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00015104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbscan.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00010368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00006272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\splitter.sys
2016-03-28 11:57 - 2008-04-14 00:15 - 00002944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmkaud.sys
2016-03-28 11:57 - 2008-04-14 00:14 - 00799744 _____ (Microsoft Corp., Veritas Software) C:\WINDOWS\system32\Drivers\dmboot.sys
2016-03-28 11:57 - 2008-04-14 00:14 - 00153344 _____ (Microsoft Corp., Veritas Software) C:\WINDOWS\system32\Drivers\dmio.sys
2016-03-28 11:57 - 2008-04-14 00:14 - 00081664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\videoprt.sys
2016-03-28 11:57 - 2008-04-14 00:14 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vga.sys
2016-03-28 11:57 - 2008-04-14 00:11 - 00052352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2016-03-28 11:57 - 2008-04-14 00:11 - 00042112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\imapi.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00096512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\atapi.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00096384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scsiport.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00080128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\parport.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdrom.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00057600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\redbook.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\disk.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00027392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fdc.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00024960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciidex.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\flpydisk.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00019712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00015744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serenum.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00014976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tape.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00014208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\diskdump.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00011392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sfloppy.sys
2016-03-28 11:57 - 2008-04-14 00:10 - 00005504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelide.sys
2016-03-28 11:57 - 2008-04-14 00:09 - 00384768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\update.sys
2016-03-28 11:57 - 2008-04-14 00:09 - 00042368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2016-03-28 11:57 - 2008-04-14 00:09 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys
2016-03-28 11:57 - 2008-04-14 00:09 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys
2016-03-28 11:57 - 2008-04-14 00:09 - 00007552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
2016-03-28 11:57 - 2008-04-14 00:09 - 00005376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mspclock.sys
2016-03-28 11:57 - 2008-04-14 00:09 - 00004992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mspqm.sys
2016-03-28 11:57 - 2008-04-14 00:09 - 00004352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\swenum.sys
2016-03-28 11:57 - 2008-04-14 00:08 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxg.sys
2016-03-28 11:57 - 2008-04-14 00:06 - 00187776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2016-03-28 11:57 - 2008-04-14 00:06 - 00120192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pcmcia.sys
2016-03-28 11:57 - 2008-04-14 00:06 - 00073472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sr.sys
2016-03-28 11:57 - 2008-04-14 00:06 - 00068224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-03-28 11:57 - 2008-04-14 00:06 - 00063744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mf.sys
2016-03-28 11:57 - 2008-04-14 00:06 - 00037248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\isapnp.sys
2016-03-28 11:57 - 2008-04-14 00:06 - 00014208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\battc.sys
2016-03-28 11:57 - 2008-04-14 00:06 - 00013952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cmbatt.sys
2016-03-28 11:57 - 2008-04-14 00:06 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\compbatt.sys
2016-03-28 11:57 - 2008-04-14 00:03 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fips.sys
2016-03-28 11:57 - 2008-04-14 00:02 - 00196224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2016-03-28 11:57 - 2008-04-14 00:02 - 00180608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-03-28 11:57 - 2008-04-14 00:02 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2016-03-28 11:57 - 2008-04-14 00:02 - 00030848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2016-03-28 11:57 - 2008-04-14 00:02 - 00019072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2016-03-28 11:57 - 2008-04-14 00:01 - 02065792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntkrnlpa.exe
2016-03-28 11:57 - 2008-04-14 00:01 - 00092288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-03-28 11:57 - 2008-04-14 00:01 - 00081152 _____ (Microsoft Corporation) C:\WINDOWS\system32\HAL.DLL
2016-03-28 11:57 - 2008-04-14 00:01 - 00042752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\p3.sys
2016-03-28 11:57 - 2008-04-14 00:01 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk6.sys
2016-03-28 11:57 - 2008-04-14 00:01 - 00036736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crusoe.sys
2016-03-28 11:57 - 2008-04-14 00:01 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2016-03-28 11:57 - 2008-04-13 22:09 - 00142592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\aec.sys
2016-03-28 11:57 - 2008-04-13 22:09 - 00020480 _____ (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) C:\WINDOWS\system32\Drivers\secdrv.sys
2016-03-28 10:56 - 2016-03-28 10:59 - 00000000 ___SD C:\ComboFix
2016-03-28 10:56 - 2016-03-28 10:56 - 00000000 ____D C:\WINDOWS\erdnt
2016-03-28 10:56 - 2016-03-28 10:56 - 00000000 ____D C:\Qoobox
2016-03-28 10:56 - 2011-06-26 14:45 - 00256000 _____ C:\WINDOWS\PEV.exe
2016-03-28 10:56 - 2010-11-08 01:20 - 00208896 _____ C:\WINDOWS\MBR.exe
2016-03-28 10:56 - 2009-04-20 12:56 - 00060416 _____ (NirSoft) C:\WINDOWS\NIRCMD.exe
2016-03-28 10:56 - 2000-08-31 08:00 - 00518144 _____ (SteelWerX) C:\WINDOWS\SWREG.exe
2016-03-28 10:56 - 2000-08-31 08:00 - 00406528 _____ (SteelWerX) C:\WINDOWS\SWSC.exe
2016-03-28 10:56 - 2000-08-31 08:00 - 00212480 _____ (SteelWerX) C:\WINDOWS\SWXCACLS.exe
2016-03-28 10:56 - 2000-08-31 08:00 - 00098816 _____ C:\WINDOWS\sed.exe
2016-03-28 10:56 - 2000-08-31 08:00 - 00080412 _____ C:\WINDOWS\grep.exe
2016-03-28 10:56 - 2000-08-31 08:00 - 00068096 _____ C:\WINDOWS\zip.exe
2016-03-28 10:53 - 2016-04-01 21:40 - 05659241 ____R (Swearware) C:\Documents and Settings\sf\Desktop\ComboFix.exe
2016-03-27 23:36 - 2016-03-27 23:36 - 00004627 _____ C:\Documents and Settings\sf\Desktop\System Idle Process.txt
2016-03-27 23:09 - 2016-03-27 23:09 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB953356$
2016-03-27 21:26 - 2016-03-27 21:26 - 00000000 ____D C:\Documents and Settings\sf\Local Settings\Application Data\Opera Software
2016-03-27 21:26 - 2016-03-27 21:26 - 00000000 ____D C:\Documents and Settings\sf\Application Data\Opera Software
2016-03-27 21:25 - 2016-04-13 17:52 - 00000382 _____ C:\WINDOWS\Tasks\Opera scheduled Autoupdate 1459085101.job
2016-03-27 21:25 - 2016-03-27 21:25 - 00000675 _____ C:\Documents and Settings\All Users\Start Menu\Programs\Opera.lnk
2016-03-27 21:25 - 2016-03-27 21:25 - 00000675 _____ C:\Documents and Settings\All Users\Desktop\Opera.lnk
2016-03-27 21:24 - 2016-04-02 09:48 - 00000000 ____D C:\Program Files\Opera
2016-03-27 14:35 - 2016-03-27 14:37 - 05111240 _____ (Piriform Ltd) C:\Documents and Settings\sf\Desktop\spsetup129.exe
2016-03-27 14:31 - 2016-03-27 14:32 - 02694816 _____ (Sysinternals - www.sysinternals.com) C:\Documents and Settings\sf\Desktop\procexp.exe
2016-03-26 20:18 - 2016-03-26 20:20 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\188F1432-103A-4ffb-80F1-36B633C5C9E1
2016-03-26 16:56 - 2016-03-26 17:27 - 00000000 ____D C:\Documents and Settings\sf\Local Settings\Application Data\panda
2016-03-26 16:56 - 2016-03-26 16:56 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Panda Security URL Filtering
2016-03-26 16:55 - 2016-04-04 10:04 - 00000000 ____D C:\Documents and Settings\sf\Application Data\pandasecuritytb
2016-03-26 15:31 - 2005-07-19 19:04 - 00018496 _____ C:\WINDOWS\system32\igxpxs32.vp
2016-03-26 15:31 - 2005-07-19 18:18 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igldev32.dll
2016-03-26 15:31 - 2005-07-19 18:16 - 02310144 _____ (Intel Corporation) C:\WINDOWS\system32\iglicd32.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00155648 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00147456 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00143360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00143360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00143360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00143360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00139264 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00139264 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00139264 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00139264 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00139264 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00135168 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00122880 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00118784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2016-03-26 15:31 - 2005-07-19 18:10 - 00114688 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmudlg.exe
2016-03-26 15:31 - 2005-07-19 18:10 - 00114688 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuTRK.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuTHA.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuSVE.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuRUS.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuPTG.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuPTB.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuPLK.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuNOR.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuNLD.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuKOR.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuJPN.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuITA.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuHUN.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuHEB.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuFRC.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuFRA.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuFIN.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuESP.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuENG.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuELL.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuDEU.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuDAN.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuCSY.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuCHT.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuCHS.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuARB.dll
2016-03-26 15:31 - 2005-07-19 18:10 - 00040960 _____ (Intel® Corporation) C:\WINDOWS\system32\ialmuARA.dll
2016-03-26 15:31 - 2005-07-19 18:08 - 00077824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2016-03-26 15:31 - 2005-07-19 18:06 - 00159744 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2016-03-26 15:31 - 2005-07-19 18:02 - 00524850 _____ C:\WINDOWS\system32\igxpxa32.cpa
2016-03-26 15:31 - 2005-07-19 18:02 - 00058675 _____ C:\WINDOWS\system32\igxpxk32.vp
2016-03-26 15:31 - 2005-07-19 18:02 - 00000900 _____ C:\WINDOWS\system32\igxpxa32.vp
2016-03-26 15:30 - 2016-03-26 15:30 - 00061440 _____ (Intel Corporation) C:\WINDOWS\system32\iAlmCoIn_v4363.dll
2016-03-26 11:51 - 2016-03-26 20:20 - 00001542 _____ C:\Documents and Settings\All Users\Desktop\iTunes.lnk
2016-03-26 11:51 - 2016-03-26 20:20 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\iTunes
2016-03-26 11:51 - 2012-08-21 13:01 - 00026840 _____ (GEAR Software Inc.) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
2016-03-26 11:50 - 2016-03-26 11:51 - 00000000 ____D C:\Program Files\iTunes
2016-03-26 11:50 - 2016-03-26 11:50 - 00000000 ____D C:\Program Files\iPod
2016-03-26 11:49 - 2013-03-18 16:51 - 06112864 _____ (Apple, Inc.) C:\WINDOWS\system32\usbaaplrc.dll
2016-03-26 11:49 - 2013-03-18 16:51 - 00045056 _____ (Apple, Inc.) C:\WINDOWS\system32\Drivers\usbaapl.sys
2016-03-26 11:48 - 2016-03-26 11:50 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-03-26 01:22 - 2016-03-26 14:34 - 00010884 _____ C:\Documents and Settings\sf\Desktop\Fixlog.txt
2016-03-26 00:16 - 2016-03-26 00:16 - 00000000 ____D C:\Program Files\7-Zip
2016-03-26 00:16 - 2016-03-26 00:16 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\7-Zip
2016-03-25 23:51 - 2016-03-25 23:51 - 00000839 _____ C:\VEWlog system.txt
2016-03-25 23:51 - 2016-03-25 23:51 - 00000359 _____ C:\VEW log application.txt
2016-03-25 23:49 - 2016-04-05 17:58 - 00000358 _____ C:\VEW.txt
2016-03-25 23:37 - 2016-03-31 22:05 - 00007934 _____ C:\Documents and Settings\sf\Desktop\sfvb.txt
2016-03-25 23:26 - 2016-03-25 23:32 - 00061440 _____ ( ) C:\Documents and Settings\sf\Desktop\VEW.exe
2016-03-25 22:40 - 2016-04-10 19:17 - 00025426 _____ C:\Documents and Settings\sf\Desktop\Addition.txt
2016-03-25 22:39 - 2016-04-13 18:00 - 00027021 _____ C:\Documents and Settings\sf\Desktop\FRST.txt
2016-03-25 22:38 - 2016-04-13 17:59 - 00000000 ____D C:\FRST
2016-03-25 22:38 - 2016-03-25 22:38 - 00002566 _____ C:\Documents and Settings\sf\My Documents\JRT.txt
2016-03-25 22:36 - 2016-03-25 22:36 - 00002566 _____ C:\Documents and Settings\sf\Desktop\JRT.txt
2016-03-25 22:34 - 2016-04-10 16:29 - 00000000 ____D C:\Documents and Settings\sf\Application Data\FLV and Media Player
2016-03-25 22:22 - 2016-03-25 22:28 - 00000000 ____D C:\AdwCleaner
2016-03-25 22:17 - 2016-03-25 22:18 - 01610352 _____ (Malwarebytes) C:\Documents and Settings\sf\Desktop\JRT.exe
2016-03-25 22:15 - 2016-03-25 22:16 - 01530368 _____ C:\Documents and Settings\sf\Desktop\adwcleaner_5.105.exe
2016-03-25 22:14 - 2016-03-25 22:14 - 01725440 _____ (Farbar) C:\Documents and Settings\sf\Desktop\FRST.exe
2016-03-24 22:24 - 2016-04-12 09:57 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-03-24 21:15 - 2016-03-24 21:15 - 00000000 ____D C:\Documents and Settings\sf\Application Data\CrystalIdea Software
2016-03-24 21:14 - 2016-04-06 16:42 - 00000000 ____D C:\Program Files\SpeedFan
2016-03-24 21:14 - 2016-03-24 21:14 - 00000682 _____ C:\Documents and Settings\sf\Desktop\SpeedFan.lnk
2016-03-24 21:14 - 2016-03-24 21:14 - 00000045 _____ C:\WINDOWS\system32\initdebug.nfo
2016-03-24 21:14 - 2016-03-24 21:14 - 00000000 ____D C:\Documents and Settings\sf\Start Menu\Programs\SpeedFan
2016-03-23 18:49 - 2016-03-23 18:49 - 00000000 ____D C:\WINDOWS\system32\appmgmt

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-04-13 18:00 - 2014-10-01 20:21 - 00000000 ____D C:\Documents and Settings\sf\Local Settings\Temp
2016-04-13 17:52 - 2014-10-01 21:13 - 00851968 _____ C:\WINDOWS\system32\config\Nano.evt
2016-04-13 17:52 - 2014-10-01 20:20 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-04-13 17:29 - 2014-10-01 20:21 - 00000178 ___SH C:\Documents and Settings\sf\ntuser.ini
2016-04-13 17:29 - 2014-10-01 20:20 - 00031880 _____ C:\WINDOWS\SchedLgU.Txt
2016-04-13 16:07 - 2014-10-02 03:37 - 00000000 RSHDC C:\WINDOWS\system32\dllcache
2016-04-10 18:37 - 2014-10-02 03:58 - 00467370 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-04-10 18:37 - 2014-10-02 03:56 - 00000000 ___HD C:\Documents and Settings\Default User
2016-04-10 18:37 - 2014-10-01 20:14 - 00316640 ____C C:\WINDOWS\WMSysPr9.prx
2016-04-10 18:36 - 2014-10-02 03:56 - 00118400 ____C C:\WINDOWS\system32\FNTCACHE.DAT
2016-04-10 18:36 - 2014-10-01 20:21 - 00000792 _____ C:\Documents and Settings\sf\Start Menu\Programs\Windows Media Player.lnk
2016-04-10 18:35 - 2004-08-04 20:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2016-04-10 18:34 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\system32\Setup
2016-04-10 18:10 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\security
2016-04-10 18:05 - 2014-10-02 03:37 - 00000000 ___HD C:\WINDOWS\inf
2016-04-10 18:03 - 2014-10-01 20:15 - 00001563 _____ C:\Documents and Settings\All Users\Start Menu\Set Program Access and Defaults.lnk
2016-04-10 18:01 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2016-04-10 18:01 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\ime
2016-04-10 18:01 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\Help
2016-04-10 18:00 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\system32\usmt
2016-04-10 18:00 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\PeerNet
2016-04-10 18:00 - 2014-10-01 20:11 - 00000000 ____D C:\Program Files\Movie Maker
2016-04-10 17:53 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\system32\npp
2016-04-10 17:53 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\mui
2016-04-10 17:53 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\msagent
2016-04-10 17:53 - 2014-10-01 20:11 - 00000000 ____D C:\WINDOWS\srchasst
2016-04-10 17:53 - 2014-10-01 20:10 - 00000000 ____D C:\Program Files\NetMeeting
2016-04-10 17:53 - 2014-10-01 20:07 - 00000000 ____D C:\WINDOWS\system32\Com
2016-04-10 17:53 - 2014-10-01 20:07 - 00000000 ____D C:\Program Files\Windows NT
2016-04-10 17:52 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-04-10 17:52 - 2014-10-02 03:37 - 00000000 ____D C:\WINDOWS\system
2016-04-10 17:52 - 2014-10-01 20:10 - 00000000 ____D C:\Program Files\Outlook Express
2016-04-10 17:52 - 2014-10-01 20:10 - 00000000 ____D C:\Program Files\Common Files\System
2016-04-10 17:47 - 2004-08-04 20:00 - 00250048 __RSH C:\ntldr
2016-04-10 17:46 - 2014-10-01 20:29 - 00000000 ____D C:\WINDOWS\system32\ReinstallBackups
2016-04-07 12:37 - 2014-10-01 20:21 - 00000000 ___RD C:\Documents and Settings\sf\My Documents
2016-04-05 17:42 - 2014-10-01 20:21 - 00000000 ____D C:\Documents and Settings\sf
2016-04-05 17:37 - 2014-10-01 20:26 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2016-04-05 17:19 - 2014-10-01 20:33 - 00021425 _____ (Meetinghouse Data Communications) C:\WINDOWS\system32\Drivers\AegisP.sys
2016-04-05 17:15 - 2014-10-01 20:27 - 00000000 ____D C:\dell
2016-04-05 17:15 - 2014-10-01 20:26 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Dell Accessories
2016-04-05 17:10 - 2014-10-01 20:25 - 00000000 ____D C:\Program Files\Common Files\InstallShield
2016-04-05 17:10 - 2014-10-01 20:13 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2016-04-02 11:21 - 2014-10-01 20:14 - 00023392 _____ C:\WINDOWS\system32\nscompat.tlb
2016-04-02 11:21 - 2014-10-01 20:14 - 00016832 _____ C:\WINDOWS\system32\amcompat.tlb
2016-04-02 09:47 - 2014-10-01 20:24 - 00021056 _____ C:\Documents and Settings\sf\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2016-04-01 12:05 - 2014-10-01 20:21 - 00000000 ___RD C:\Documents and Settings\sf\My Documents\My Pictures
2016-04-01 12:05 - 2014-10-01 20:21 - 00000000 ___RD C:\Documents and Settings\sf\My Documents\My Music
2016-04-01 12:04 - 2014-10-01 20:21 - 00000738 _____ C:\Documents and Settings\sf\Start Menu\Programs\Outlook Express.lnk
2016-04-01 11:32 - 2014-12-20 16:12 - 00000000 ____D C:\WINDOWS\Minidump
2016-03-31 15:44 - 2014-11-01 12:33 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-03-29 01:13 - 2014-10-02 03:55 - 00000211 ___SH C:\boot.ini
2016-03-29 01:13 - 2004-08-04 20:00 - 00000477 ____C C:\WINDOWS\win.ini
2016-03-29 01:13 - 2004-08-04 20:00 - 00000246 ____C C:\WINDOWS\system.ini
2016-03-27 23:09 - 2015-05-06 00:32 - 00000000 ___HD C:\WINDOWS\$hf_mig$
2016-03-27 14:11 - 2014-11-01 13:33 - 00000000 ____D C:\Program Files\WinRAR
2016-03-27 14:07 - 2014-10-01 23:09 - 00000000 ____D C:\WINDOWS\system32\Adobe
2016-03-26 16:55 - 2014-10-01 21:13 - 00000000 ____D C:\Documents and Settings\sf\Application Data\Panda Security
2016-03-26 16:55 - 2014-10-01 21:11 - 00000000 ____D C:\Program Files\Panda Security
2016-03-26 16:55 - 2014-10-01 20:24 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Panda Security
2016-03-26 15:31 - 2014-10-01 20:34 - 00038014 _____ (Intel Corporation) C:\WINDOWS\system32\ialmrnt5.dll
2016-03-26 15:30 - 2014-10-01 20:34 - 00899706 _____ (Intel Corporation) C:\WINDOWS\system32\ialmdd5.dll
2016-03-26 15:30 - 2014-10-01 20:34 - 00116859 _____ (Intel Corporation) C:\WINDOWS\system32\ialmdnt5.dll
2016-03-26 15:30 - 2014-10-01 20:34 - 00077824 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2016-03-26 15:30 - 2014-10-01 20:34 - 00073728 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2016-03-26 14:58 - 2014-10-01 21:27 - 00001324 _____ C:\WINDOWS\system32\d3d9caps.dat
2016-03-26 13:57 - 2016-02-07 18:36 - 00000882 _____ C:\Documents and Settings\sf\Local Settings\mhli.bak8
2016-03-26 13:57 - 2016-02-07 18:36 - 00000144 _____ C:\Documents and Settings\sf\Local Settings\mhli.bak11
2016-03-26 13:57 - 2016-02-07 18:36 - 00000115 _____ C:\Documents and Settings\sf\Local Settings\ibooks1.bak
2016-03-26 13:57 - 2016-02-07 18:36 - 00000115 _____ C:\Documents and Settings\sf\Local Settings\ibooks0.bak
2016-03-26 13:57 - 2016-02-07 18:36 - 00000112 _____ C:\Documents and Settings\sf\Local Settings\mhli.bak12
2016-03-26 11:50 - 2014-10-02 14:09 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Apple Computer
2016-03-26 11:48 - 2014-10-02 14:06 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Apple
2016-03-25 23:39 - 2015-05-26 11:23 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\RpData
2016-03-25 21:38 - 2014-10-01 20:22 - 00000000 ____D C:\2014 program downloads
2016-03-25 21:37 - 2014-10-31 11:33 - 00000000 ____D C:\Documents and Settings\sf\dwhelper
2016-03-25 21:19 - 2016-02-07 18:35 - 00000000 ____D C:\Documents and Settings\sf\Start Menu\Programs\3herosoft
2016-03-25 21:18 - 2015-09-19 21:16 - 00000000 ____D C:\ipad
2016-03-25 21:08 - 2015-08-19 11:22 - 00000000 ____D C:\Documents and Settings\sf\Start Menu\Programs\Vibosoft
2016-03-25 21:00 - 2015-08-19 15:59 - 00000000 ____D C:\Documents and Settings\sf\Start Menu\Programs\iStonsoft
2016-03-25 17:54 - 2016-02-05 18:55 - 00000000 ____D C:\Documents and Settings\sf\My Documents\tv
2016-03-25 17:45 - 2015-03-04 19:32 - 00000000 ____D C:\Documents and Settings\LocalService\Start Menu\Programs\Baidu PC Faster
2016-03-25 17:45 - 2015-03-04 19:32 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Baidu PC Faster
2016-03-24 17:07 - 2014-10-01 20:46 - 00105984 _____ C:\Documents and Settings\sf\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-03-24 16:50 - 2014-10-01 23:20 - 00000000 ____D C:\Documents and Settings\sf\My Documents\My Videos

==================== Files in the root of some directories =======

2013-10-14 10:44 - 2013-10-14 10:44 - 2174976 _____ (Advanced Micro Devices Inc.) C:\Program Files\Common Files\atimpenc.dll
2015-08-22 05:49 - 2016-03-06 10:19 - 0000289 _____ () C:\Documents and Settings\sf\Application Data\FotoSketcher.ini
2014-10-01 20:46 - 2016-03-24 17:07 - 0105984 _____ () C:\Documents and Settings\sf\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

Some files in TEMP:
====================
C:\Documents and Settings\sf\Local Settings\Temp\sfamcc00001.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

#74
evolutionpill

Posted 13 April 2016 - 04:19 AM

Member

Topic Starter
Member
127 posts

Additional scan result of Farbar Recovery Scan Tool (x86) Version:05-03-2016 01
Ran by sf (2016-04-13 18:01:38)
Running from C:\Documents and Settings\sf\Desktop
Microsoft Windows XP Professional Service Pack 3 (X86) (2014-10-01 12:18:33)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-1085031214-688789844-1343024091-500 - Administrator - Enabled)
Guest (S-1-5-21-1085031214-688789844-1343024091-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-1085031214-688789844-1343024091-1000 - Limited - Disabled)
sf (S-1-5-21-1085031214-688789844-1343024091-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\sf
SUPPORT_388945a0 (S-1-5-21-1085031214-688789844-1343024091-1002 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Panda Free Antivirus (Enabled - Up to date) {5AD27692-540A-464E-B625-78275FA38393}
FW: Panda Firewall (Disabled) {1337562C-110A-4AF8-B12B-750C0B30E802}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 15.14 (HKLM\...\7-Zip) (Version: 15.14 - Igor Pavlov)
Apple Application Support (HKLM\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{18D47FA1-0440-48D3-A7E0-DA09537FF471}) (Version: 7.1.1.3 - Apple Inc.)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Broadcom 440x 10/100 Integrated Controller (HKLM\...\InstallShield_{52504CE6-E909-4113-B232-4AFEC6543A61}) (Version: 5.51.03 - Broadcom)
Broadcom 440x 10/100 Integrated Controller (Version: 5.51.03 - Broadcom) Hidden
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.6059 - CDBurnerXP)
C-Major Audio (HKLM\...\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}) (Version: 42xx - SigmaTel)
Conexant D480 MDC V.92 Modem (HKLM\...\CNXT_MODEM_PCI_VEN_8086&DEV_24x6&SUBSYS_542214F1) (Version: - )
Crash Analysis Tool (HKLM\...\{D5F881C2-B134-474E-AA60-B25DD218AE0D}) (Version: 1.00.0001 - Dell)
Dell Driver Reset Tool (HKLM\...\{5905F42D-3F5F-4916-ADA6-94A3646AEE76}) (Version: 1.02.0000 - Dell Inc.)
Dell ResourceCD (HKLM\...\{D78653C3-A8FF-415F-92E6-D774E634FF2D}) (Version: - )
Dell Wireless WLAN Card (HKLM\...\Broadcom 802.11b Network Adapter) (Version: 4.100.15.8 - Dell Inc.)
Digital Line Detect (HKLM\...\{E646DCF0-5A68-11D5-B229-002078017FBF}) (Version: 1.10 - BVRP Software, Inc)
FotoSketcher 3.10 (HKLM\...\{E7C6D565-2E48-4303-A114-AFE7B2E561AF}_is1) (Version: - David THOIRON)
FreeSizer v.1.0.0 (HKLM\...\{B0C5249A-E603-450A-B19A-D9989D24C855}}_is1) (Version: 1.0.0 - WinBit Software)
iMacsoft iPhone Photo to PC Transfer (HKLM\...\iMacsoft iPhone Photo to PC Transfer) (Version: 3.0.9.0909 - iMacsoft)
InfraRecorder (HKLM\...\InfraRecorder) (Version: - )
Intel® Extreme Graphics 2 Driver (HKLM\...\{8A708DD8-A5E6-11D4-A706-000629E95E20}) (Version: 6.14.10.4363 - )
Intel® PROSet/Wireless Software (HKLM\...\ProInst) (Version: 11.01.0000 - Intel Corporation)
iTunes (HKLM\...\{2F21564D-DE05-4C6D-B21E-08B9D313FAB3}) (Version: 11.1.5.5 - Apple Inc.)
LAV Filters 0.51.3 (HKLM\...\lavfilters_is1) (Version: 0.51.3 - Hendrik Leppkes)
mCore (Version: 9.03.0000 - Intel Corporation) Hidden
mDriver (Version: 9.03.0000 - Intel) Hidden
mDrWiFi (Version: 9.03.0000 - Intel Corporation) Hidden
mHlpDell (Version: 9.03.0000 - Intel) Hidden
Microsoft .NET Framework 2.0 Client Profile Basic SP2 Version 1.0.1.22 (HKLM\...\{10E4121C-8181-4217-8DA9-6CD38DDC34F9}_is1) (Version: 1.0.1.22 - Wondershare, Inc.)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
mIWA (Version: 9.03.0000 - Intel Corporation) Hidden
mLogView (Version: 9.03.0000 - Intel Corporation) Hidden
mMHouse (Version: 9.03.0000 - Intel Corporation) Hidden
Mouse Suite for Laptop Computers (HKLM\...\{BF13AA9D-E4CE-4015-9778-ECC1D4FB06E4}) (Version: 1.00.0000 - Dell)
Mozilla Firefox 45.0.1 (x86 en-US) (HKLM\...\Mozilla Firefox 45.0.1 (x86 en-US)) (Version: 45.0.1 - Mozilla)
mPfMgr (Version: 9.03.0000 - Intel Corporation) Hidden
mPfWiz (Version: 9.03.0000 - Intel Corporation) Hidden
mProSafe (Version: 9.00.0000 - Intel) Hidden
mSCfg (Version: 9.03.0000 - Intel Corporation) Hidden
mSSO (Version: 9.03.0000 - Intel Corporation) Hidden
MSXML 6.0 Parser (Version: 6.00.3883.8 - Microsoft Corporation) Hidden
mToolkit (Version: 9.03.0000 - Intel Corporation) Hidden
mWlsSafe (Version: 9.00.0000 - Intel) Hidden
mWMI (Version: 9.03.0000 - Intel Corporation) Hidden
mZConfig (Version: 9.03.0000 - Intel Corporation) Hidden
NingPo MahJong Deluxe 1.04 (HKLM\...\NingPo MahJong Deluxe 1.04) (Version: - )
Opera Stable 34.0.2036.50 (HKLM\...\Opera 34.0.2036.50) (Version: 34.0.2036.50 - Opera Software)
Panda Devices Agent (HKLM\...\Panda Devices Agent) (Version: 1.03.04 - Panda Security)
Panda Devices Agent (Version: 1.05.00 - Panda Security) Hidden
Panda Free Antivirus (HKLM\...\Panda Universal Agent Endpoint) (Version: 16.0.2 - Panda Security)
Panda Free Antivirus (Version: 8.04.00.0000 - Panda Security) Hidden
Panda Security Toolbar (HKLM\...\pandasecuritytb) (Version: 4.3.1.9 - Panda Security and Visicom Media Inc.)
Photo! Editor 1.1 (HKLM\...\PhotoToolkit_is1) (Version: - )
PhotoBulk 1.0.257 (HKLM\...\PhotoBulk_is1) (Version: 1.0.257 - Eltima Software)
RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden
Sonic DLA (HKLM\...\{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}) (Version: 4.98 - Sonic Solutions)
Sothink Video Converter (HKLM\...\{0FD155A3-DF78-43ee-84B0-3CC86BA962F2}_is1) (Version: 3.6 - SourceTec Software Co., LTD)
SpeedFan (remove only) (HKLM\...\SpeedFan) (Version: - )
Texas Instruments PCIxx20 drivers. (HKLM\...\InstallShield_{33F1EEC8-93C8-4CC5-9C33-6698A4A627BA}) (Version: 2.03.0000 - Texas Instruments Inc.)
TIPCIxx20 (Version: 2.03.0000 - Texas Instruments Inc.) Hidden
VSDC Free Video Editor version 3.3.0.394 (HKLM\...\VSDC Free Video Editor_is1) (Version: 3.3.0.394 - Flash-Integro LLC)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Imaging Component (HKLM\...\WIC) (Version: 3.0.0.0 - Microsoft Corporation)
Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031525 - Microsoft Corporation)
WPS Office (9.1.0.4746) (HKU\S-1-5-21-1085031214-688789844-1343024091-1003\...\WPS Office) (Version: 9.1.0.4746 - Kingsoft Corp.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{00020812-0000-0000-C000-000000000046}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\et.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{00020820-0000-0000-C000-000000000046}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\et.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{00020821-0000-0000-C000-000000000046}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\et.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{00020830-0000-0000-C000-000000000046}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\et.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{00020832-0000-0000-C000-000000000046}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\et.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{00020900-0000-0000-C000-000000000046}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wps.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{00020906-0000-0000-C000-000000000046}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wps.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{00020906-0000-4b30-A977-D214852036FF}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wps.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{00020907-0000-0000-C000-000000000046}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wps.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{000209FF-0000-0000-C000-000000000046}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wps.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{000209FF-0000-4b30-A977-D214852036FF}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wps.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{00024500-0000-0000-C000-000000000046}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\et.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{0002CE21-0000-0000-C000-000000000046}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\ksee\EqnEdit.exe (Design Science, Inc.)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{048EB43E-2059-422F-95E0-557DA96038AF}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wpp.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{18A06B6B-2F3F-4E2B-A611-52BE631B2D22}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wps.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{3C18EAE4-BC25-4134-B7DF-1ECA1337DDDC}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wpp.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{44720441-94BF-4940-926D-4F38FECF2A48}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wpp.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{44720444-94BF-4940-926D-4F38FECF2A48}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wpp.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{45540001-5750-5300-4B49-4E47534F4655}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\et.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{45540003-5750-5300-4B49-4E47534F4655}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\et.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{4D4E0078-1386-4536-BD05-3E1013F17116}\InprocServer32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\oledefaulthandler.dll (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{64818D10-4F9B-11CF-86EA-00AA00B929E8}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wpp.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{64818D11-4F9B-11CF-86EA-00AA00B929E8}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wpp.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{75D01070-1234-44E9-82F6-DB5B39A47C13}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wpp.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{8A624388-AA27-43E0-89F8-2A12BFF7BCCD}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wps.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{912ABC52-36E2-4714-8E62-A8B73CA5E390}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wps.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{91493441-5A91-11CF-8700-00AA0060263B}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wpp.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{9F284818-F253-49f2-82C1-F6CFF86CD4EE}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{CF4F55F4-8F87-4D47-80BB-5808164BB3F8}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wpp.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{DC020317-E6E2-4A62-B9FA-B3EFE16626F4}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wpp.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1085031214-688789844-1343024091-1003_Classes\CLSID\{F4754C9B-64F5-4B40-8AF4-679732AC0607}\localserver32 -> C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\office6\wps.exe (Zhuhai Kingsoft Office Software Co.,Ltd)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Opera scheduled Autoupdate 1459085101.job => C:\Program Files\Opera\launcher.exe
Task: C:\WINDOWS\Tasks\WpsNotifyTask_sf.job => C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\wtoolex\wpsnotify.exe
Task: C:\WINDOWS\Tasks\WpsUpdateTask_sf.job => C:\Documents and Settings\sf\Local Settings\Application Data\Kingsoft\WPS Office\9.1.0.4746\wtoolex\wpsupdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2007-02-21 11:13 - 2007-02-21 11:13 - 00118784 _____ () C:\Program Files\Intel\Wireless\Bin\IWMSPROV.DLL
2016-04-03 19:52 - 2007-03-16 18:10 - 00020480 _____ () C:\WINDOWS\System32\WLTRYSVC.EXE
2016-04-05 17:22 - 2007-03-16 18:10 - 00757760 _____ () C:\WINDOWS\System32\bcm1xsup.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-04-13 01:23 - 2013-04-13 01:23 - 00612664 _____ () C:\Program Files\Panda Security\Panda Security Protection\SQLite3.dll
2006-10-17 16:13 - 2006-10-17 16:13 - 01167360 _____ () C:\Program Files\Intel\Wireless\Bin\acAuth.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:16EAB5F6 [135]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2004-08-04 20:00 - 2004-08-04 20:00 - 00000734 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1085031214-688789844-1343024091-1003\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Bliss.bmp
DNS Servers: 192.168.1.1
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== Restore Points =========================

02-04-2016 10:05:43 System Checkpoint
03-04-2016 18:04:27 Installed C-Major Audio
03-04-2016 18:09:58 Configured PCIxx20
03-04-2016 18:15:56 Installed Broadcom 440x 10/100 Integrated Controller
03-04-2016 20:17:17 Configured Broadcom 440x 10/100 Integrated Controller
05-04-2016 17:10:23 Installed Mouse Suite for Laptop Computers
05-04-2016 17:11:31 Installed Crash Analysis Tool
05-04-2016 17:15:36 Installed Dell Driver Reset Tool
05-04-2016 17:16:18 Installed Digital Line Detect
05-04-2016 17:36:27 Installed TIPCIxx20
06-04-2016 19:21:18 System Checkpoint
10-04-2016 17:28:55 Installed Windows XP KB953356.
10-04-2016 17:46:33 Installed Windows XP Service Pack 3.
10-04-2016 18:05:31 Installed Windows XP KB955704.
12-04-2016 10:23:35 System Checkpoint
13-04-2016 10:55:12 System Checkpoint

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================

System errors:
=============
Error: (04/10/2016 04:43:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Upload Manager service failed to start due to the following error:
%%1079

Error: (04/10/2016 04:25:18 PM) (Source: 0) (EventID: 7) (User: )
Description: \Device\CdRom0

Error: (04/10/2016 04:25:11 PM) (Source: 0) (EventID: 7) (User: )
Description: \Device\CdRom0

Error: (04/10/2016 02:53:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Upload Manager service failed to start due to the following error:
%%1079

Error: (04/09/2016 05:24:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Upload Manager service failed to start due to the following error:
%%1079

Error: (04/07/2016 11:52:43 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Upload Manager service failed to start due to the following error:
%%1079

Error: (04/06/2016 04:42:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Upload Manager service failed to start due to the following error:
%%1079

Error: (04/06/2016 12:17:42 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Upload Manager service failed to start due to the following error:
%%1079

Error: (04/05/2016 11:17:57 PM) (Source: Schannel) (EventID: 4108) (User: )
Description: The certificate received from the remote server has not validated correctly. The
error code is 0x80096004. The SSL connection request has failed. The attached data contains
the server certificate.

Error: (04/05/2016 10:25:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Upload Manager service failed to start due to the following error:
%%1079

==================== Memory info ===========================

Processor: Intel® Pentium® M processor 1.70GHz
Percentage of memory in use: 54%
Total physical RAM: 494.42 MB
Available physical RAM: 222.57 MB
Total Virtual: 1156.41 MB
Available Virtual: 739.76 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:19.53 GB) (Free:6.53 GB) NTFS ==>[drive with boot components (Windows XP)]
Drive d: (Local Disk) (Fixed) (Total:29.29 GB) (Free:5.24 GB) NTFS
Drive e: () (Fixed) (Total:29.29 GB) (Free:2.95 GB) NTFS
Drive f: () (Fixed) (Total:33.66 GB) (Free:3.93 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 111.8 GB) (Disk ID: 04890488)
Partition 1: (Active) - (Size=19.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=92.2 GB) - (Type=OF Extended)

==================== End of Addition.txt ============================

#75
Dakeyras

Posted 14 April 2016 - 03:32 PM

Anti-Malware Mammoth

Expert
9,772 posts

Hi.

Thank you for your help so far and await further instructions.

You're welcome and again my apologies for the delay...

The pc seems stable, same as before the problems prior to installing sp3, which is good, no blue screens, no delayed time opening windows, no automatic rebooting since installing the new sp3, so would seem sp3 is running well the last few days.

Good.

However I am still not able to connect my ipad to my pc as before. normally when I insert the ipad plug it would recognise the ipad now nothing.

After completing the below custom FRST script try again please and let myself know the outcome in your next reply.

Not sure you wanted the defrag but adding it.

Fair play and not a problem, it transpires would be prudent to run through my Hard-Drive Maintenance/Repair a couple of more times after I give the all clear etc.

Any particular reason you did not update Mozilla Firefox? Not a problem as more curious than anything to be honest.

Uninstall Software:

Please click on Start >> Control Panel >> Add/Remove Programs and remove the following (if present):

Panda Security Toolbar <-- Third party dross that has undesirable characteristics.

To do so, click once on the above to highlight and then click on the Remove button.

Note: Take extra care in answering questions posed by any Uninstaller. Some questions may be worded to deceive you into keeping the program.

Custom FRST Script:

Please download the attached fixlist.txt(see below) and save to the desktop.

Now double-click on FRST.exe to start FRST.

After the tool has checked for any updates and The tool is ready to use is denoted:-

Click on the Fix button/radio tab >> at the Fix completed prompt click on OK
Your machine should now automatically reboot itself.
Post the contents of the newly created Fixlog in your next reply.