HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/MsnInstC.dll\\{1754A1BA-A1DF-4F10-B199-AA55AA1A120F} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/QDow.dll\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/QDow.dll\\.Owner -> {26E8361F-BCE7-4F75-A347-98C88B418322} -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/QDow.dll\\{26E8361F-BCE7-4F75-A347-98C88B418322} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/GWFSPidGen.DLL\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/GWFSPidGen.DLL\\.Owner -> Unknown Owner -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/GWFSPidGen.DLL\\{17492023-C23A-453E-A040-C7C580BBF700} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/LegitCheckControl.DLL\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/LegitCheckControl.DLL\\.Owner -> Unknown Owner -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/LegitCheckControl.DLL\\{17492023-C23A-453E-A040-C7C580BBF700} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/System32/wuweb.dll\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/System32/wuweb.dll\\.Owner -> {6414512B-B978-451D-A0D8-FCFDF33E833C} -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/System32/wuweb.dll\\{6414512B-B978-451D-A0D8-FCFDF33E833C} ->  -> 


[Registry - Additional Scans - Non-Microsoft Only]




[Files/Folders - Created Within 90 days]
avenger -> %SystemDrive%\avenger ->  [Folder | Created Date = 6/18/2008 3:22:55 PM | Attr =    ]
Boot.bak -> %SystemDrive%\Boot.bak ->  [Ver =  | Size = 211 bytes | Created Date = 6/26/2008 5:31:23 PM | Attr =    ]
cmdcons -> %SystemDrive%\cmdcons ->  [Folder | Created Date = 6/26/2008 5:30:47 PM | Attr =    ]
cmldr -> %SystemDrive%\cmldr ->  [Ver =  | Size = 260272 bytes | Created Date = 6/26/2008 5:31:10 PM | Attr =    ]
Deckard -> %SystemDrive%\Deckard ->  [Folder | Created Date = 6/26/2008 4:08:35 PM | Attr =    ]
Inetpub -> %SystemDrive%\Inetpub ->  [Folder | Created Date = 6/20/2008 2:45:51 PM | Attr =    ]
QooBox -> %SystemDrive%\QooBox ->  [Folder | Created Date = 6/26/2008 5:23:48 PM | Attr =    ]
_OTMoveIt -> %SystemDrive%\_OTMoveIt ->  [Folder | Created Date = 6/26/2008 5:07:33 PM | Attr =    ]
quartz.dll -> %SystemRoot%\System32\dllcache\quartz.dll ->  [Ver =  | Size = 1288192 bytes | Created Date = 5/7/2008 1:12:40 AM | Attr =    ]
Awrtpd.sys -> %SystemRoot%\System32\drivers\Awrtpd.sys -> Lavasoft AB [Ver = 1.0.0.134 | Size = 12960 bytes | Created Date = 4/29/2008 11:19:50 AM | Attr =    ]
Awrtrd.sys -> %SystemRoot%\System32\drivers\Awrtrd.sys -> Lavasoft AB [Ver = 7.0.1.3 | Size = 15648 bytes | Created Date = 4/29/2008 11:19:54 AM | Attr =    ]
hdaudbus.sys -> %SystemRoot%\System32\drivers\hdaudbus.sys -> Windows (R) Server 2003 DDK provider [Ver = 5.10.01.5013 built by: WinDDK | Size = 144384 bytes | Created Date = 6/23/2008 3:16:42 PM | Attr =    ]
mbam.sys -> %SystemRoot%\System32\drivers\mbam.sys -> Malwarebytes [Ver = 1, 0, 0, 1 | Size = 17144 bytes | Created Date = 6/23/2008 9:08:51 AM | Attr =    ]
mbamcatchme.sys -> %SystemRoot%\System32\drivers\mbamcatchme.sys ->  [Ver =  | Size = 34296 bytes | Created Date = 6/23/2008 9:08:51 AM | Attr =    ]
NSDriver.sys -> %SystemRoot%\System32\drivers\NSDriver.sys -> Lavasoft AB [Ver = 7.0.1.3 | Size = 15648 bytes | Created Date = 4/29/2008 11:20:00 AM | Attr =    ]
accserv.mib -> %SystemRoot%\System32\accserv.mib ->  [Ver =  | Size = 15597 bytes | Created Date = 6/20/2008 2:48:02 PM | Attr =    ]
authserv.mib -> %SystemRoot%\System32\authserv.mib ->  [Ver =  | Size = 16617 bytes | Created Date = 6/20/2008 2:48:03 PM | Attr =    ]
axctrnm.h -> %SystemRoot%\System32\axctrnm.h ->  [Ver =  | Size = 2024 bytes | Created Date = 6/20/2008 2:48:12 PM | Attr =    ]
axperf.ini -> %SystemRoot%\System32\axperf.ini ->  [Ver =  | Size = 10225 bytes | Created Date = 6/20/2008 2:48:12 PM | Attr =    ]
dhcp.mib -> %SystemRoot%\System32\dhcp.mib ->  [Ver =  | Size = 4597 bytes | Created Date = 6/20/2008 2:48:03 PM | Attr =    ]
en -> %SystemRoot%\System32\en ->  [Folder | Created Date = 6/23/2008 4:31:53 PM | Attr =    ]
ftp.mib -> %SystemRoot%\System32\ftp.mib ->  [Ver =  | Size = 6179 bytes | Created Date = 6/20/2008 2:48:03 PM | Attr =    ]
hostmib.mib -> %SystemRoot%\System32\hostmib.mib ->  [Ver =  | Size = 48593 bytes | Created Date = 6/20/2008 2:48:04 PM | Attr =    ]
http.mib -> %SystemRoot%\System32\http.mib ->  [Ver =  | Size = 20079 bytes | Created Date = 6/20/2008 2:48:04 PM | Attr =    ]
inetsrv.mib -> %SystemRoot%\System32\inetsrv.mib ->  [Ver =  | Size = 698 bytes | Created Date = 6/20/2008 2:48:04 PM | Attr =    ]
infoctrs.h -> %SystemRoot%\System32\infoctrs.h ->  [Ver =  | Size = 3276 bytes | Created Date = 6/20/2008 2:48:09 PM | Attr =    ]
infoctrs.ini -> %SystemRoot%\System32\infoctrs.ini ->  [Ver =  | Size = 11435 bytes | Created Date = 6/20/2008 2:48:09 PM | Attr =    ]
ipforwd.mib -> %SystemRoot%\System32\ipforwd.mib ->  [Ver =  | Size = 15799 bytes | Created Date = 6/20/2008 2:48:04 PM | Attr =    ]
java.exe -> %SystemRoot%\System32\java.exe -> Sun Microsystems, Inc. [Ver = 6.0.60.2 | Size = 135168 bytes | Created Date = 6/22/2008 10:37:35 PM | Attr =    ]
javacpl.cpl -> %SystemRoot%\System32\javacpl.cpl -> Sun Microsystems, Inc. [Ver = 6.0.60.2 | Size = 69632 bytes | Created Date = 6/22/2008 10:37:37 PM | Attr =    ]
javaw.exe -> %SystemRoot%\System32\javaw.exe -> Sun Microsystems, Inc. [Ver = 6.0.60.2 | Size = 135168 bytes | Created Date = 6/22/2008 10:37:36 PM | Attr =    ]
javaws.exe -> %SystemRoot%\System32\javaws.exe -> Sun Microsystems, Inc. [Ver = 6.0.60.2 | Size = 139264 bytes | Created Date = 6/22/2008 10:37:36 PM | Attr =    ]
lmmib2.mib -> %SystemRoot%\System32\lmmib2.mib ->  [Ver =  | Size = 26100 bytes | Created Date = 6/20/2008 2:48:04 PM | Attr =    ]
Logfiles -> %SystemRoot%\System32\Logfiles ->  [Folder | Created Date = 6/20/2008 2:45:51 PM | Attr =    ]
lsdelete.exe -> %SystemRoot%\System32\lsdelete.exe ->  [Ver =  | Size = 12632 bytes | Created Date = 5/16/2008 11:58:04 AM | Attr =    ]
mcastmib.mib -> %SystemRoot%\System32\mcastmib.mib ->  [Ver =  | Size = 30448 bytes | Created Date = 6/20/2008 2:48:04 PM | Attr =    ]
mib_ii.mib -> %SystemRoot%\System32\mib_ii.mib ->  [Ver =  | Size = 107882 bytes | Created Date = 6/20/2008 2:48:05 PM | Attr =    ]
mipx.mib -> %SystemRoot%\System32\mipx.mib ->  [Ver =  | Size = 21386 bytes | Created Date = 6/20/2008 2:48:05 PM | Attr =    ]
mripsap.mib -> %SystemRoot%\System32\mripsap.mib ->  [Ver =  | Size = 10313 bytes | Created Date = 6/20/2008 2:48:05 PM | Attr =    ]
msft.mib -> %SystemRoot%\System32\msft.mib ->  [Ver =  | Size = 581 bytes | Created Date = 6/20/2008 2:48:05 PM | Attr =    ]
msipbtp.mib -> %SystemRoot%\System32\msipbtp.mib ->  [Ver =  | Size = 13767 bytes | Created Date = 6/20/2008 2:48:05 PM | Attr =    ]
msiprip2.mib -> %SystemRoot%\System32\msiprip2.mib ->  [Ver =  | Size = 34317 bytes | Created Date = 6/20/2008 2:48:05 PM | Attr =    ]
nipx.mib -> %SystemRoot%\System32\nipx.mib ->  [Ver =  | Size = 38608 bytes | Created Date = 6/20/2008 2:48:06 PM | Attr =    ]
ntfsdrct.h -> %SystemRoot%\System32\ntfsdrct.h ->  [Ver =  | Size = 773 bytes | Created Date = 6/20/2008 2:49:12 PM | Attr =    ]
ntfsdrct.ini -> %SystemRoot%\System32\ntfsdrct.ini ->  [Ver =  | Size = 1037 bytes | Created Date = 6/20/2008 2:49:12 PM | Attr =    ]
pid.inf -> %SystemRoot%\System32\pid.inf ->  [Ver =  | Size = 974 bytes | Created Date = 6/23/2008 3:16:51 PM | Attr =    ]
scripting -> %SystemRoot%\System32\scripting ->  [Folder | Created Date = 6/23/2008 4:31:57 PM | Attr =    ]
smi.mib -> %SystemRoot%\System32\smi.mib ->  [Ver =  | Size = 4332 bytes | Created Date = 6/20/2008 2:48:06 PM | Attr =    ]
smtpctrs.h -> %SystemRoot%\System32\smtpctrs.h ->  [Ver =  | Size = 8002 bytes | Created Date = 6/20/2008 2:49:12 PM | Attr =    ]
smtpctrs.ini -> %SystemRoot%\System32\smtpctrs.ini ->  [Ver =  | Size = 21791 bytes | Created Date = 6/20/2008 2:49:12 PM | Attr =    ]
w3ctrs.h -> %SystemRoot%\System32\w3ctrs.h ->  [Ver =  | Size = 5379 bytes | Created Date = 6/20/2008 2:48:13 PM | Attr =    ]
w3ctrs.ini -> %SystemRoot%\System32\w3ctrs.ini ->  [Ver =  | Size = 38576 bytes | Created Date = 6/20/2008 2:48:13 PM | Attr =    ]
wfospf.mib -> %SystemRoot%\System32\wfospf.mib ->  [Ver =  | Size = 49275 bytes | Created Date = 6/20/2008 2:48:06 PM | Attr =    ]
wins.mib -> %SystemRoot%\System32\wins.mib ->  [Ver =  | Size = 26236 bytes | Created Date = 6/20/2008 2:48:06 PM | Attr =    ]
ERDNT -> %SystemRoot%\ERDNT ->  [Folder | Created Date = 6/26/2008 4:09:18 PM | Attr =    ]
2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> 
fdsv.exe -> %SystemRoot%\fdsv.exe -> Smallfrogs Studio [Ver = 1, 2, 0, 22 | Size = 89504 bytes | Created Date = 6/26/2008 5:23:45 PM | Attr =    ]
grep.exe -> %SystemRoot%\grep.exe ->  [Ver =  | Size = 80412 bytes | Created Date = 6/26/2008 5:23:45 PM | Attr =    ]
hpdj3500.his -> %SystemRoot%\hpdj3500.his ->  [Ver =  | Size = 264386 bytes | Created Date = 6/20/2008 1:42:11 PM | Attr =    ]
hpdj3500.ini -> %SystemRoot%\hpdj3500.ini ->  [Ver =  | Size = 10479 bytes | Created Date = 6/20/2008 1:42:11 PM | Attr =    ]
IIS Temporary Compressed Files -> %SystemRoot%\IIS Temporary Compressed Files ->  [Folder | Created Date = 6/20/2008 2:53:48 PM | Attr =    ]
l2schemas -> %SystemRoot%\l2schemas ->  [Folder | Created Date = 6/23/2008 4:31:54 PM | Attr =    ]
MF_C420.lfa -> %SystemRoot%\MF_C420.lfa ->  [Ver =  | Size = 3120 bytes | Created Date = 10/23/2435 7:06:24 PM | Attr =    ]
MF_C421.lfa -> %SystemRoot%\MF_C421.lfa ->  [Ver =  | Size = 3120 bytes | Created Date = 10/23/2435 7:06:24 PM | Attr =    ]
msoffice.ini -> %SystemRoot%\msoffice.ini ->  [Ver =  | Size = 2 bytes | Created Date = 6/18/2008 11:02:24 AM | Attr =    ]
Nircmd.exe -> %SystemRoot%\Nircmd.exe -> NirSoft [Ver = 2.10 | Size = 28672 bytes | Created Date = 6/26/2008 5:23:46 PM | Attr =    ]
Prefetch -> %SystemRoot%\Prefetch ->  [Folder | Created Date = 6/24/2008 3:09:56 AM | Attr =    ]
QTFont.for -> %SystemRoot%\QTFont.for ->  [Ver =  | Size = 1409 bytes | Created Date = 6/26/2008 5:38:34 PM | Attr =    ]
QTFont.qfn -> %SystemRoot%\QTFont.qfn ->  [Ver =  | Size = 54156 bytes | Created Date = 6/26/2008 5:38:33 PM | Attr =  H ]
sed.exe -> %SystemRoot%\sed.exe ->  [Ver =  | Size = 98816 bytes | Created Date = 6/26/2008 5:23:45 PM | Attr =    ]
Sun -> %SystemRoot%\Sun ->  [Folder | Created Date = 6/18/2008 4:28:26 PM | Attr =    ]
swreg.exe -> %SystemRoot%\swreg.exe -> SteelWerX [Ver = 3.0.0.0 | Size = 161792 bytes | Created Date = 6/26/2008 5:23:46 PM | Attr =    ]
swsc.exe -> %SystemRoot%\swsc.exe -> SteelWerX [Ver = 2.0.0.5 | Size = 136704 bytes | Created Date = 6/26/2008 5:23:45 PM | Attr =    ]
swxcacls.exe -> %SystemRoot%\swxcacls.exe -> SteelWerX [Ver = 1.0.1.1 | Size = 212480 bytes | Created Date = 6/26/2008 5:23:45 PM | Attr =    ]
VFind.exe -> %SystemRoot%\VFind.exe ->  [Ver =  | Size = 49152 bytes | Created Date = 6/26/2008 5:23:45 PM | Attr =    ]
zip.exe -> %SystemRoot%\zip.exe ->  [Ver =  | Size = 68096 bytes | Created Date = 6/26/2008 5:23:46 PM | Attr =    ]
[Files Created - Additional Folder Scans - Non-Microsoft Only]
Lavasoft -> %AllUsersProfile%\Application Data\Lavasoft ->  [Folder | Created Date = 6/19/2008 9:07:13 AM | Attr =    ]
Malwarebytes -> %AllUsersProfile%\Application Data\Malwarebytes ->  [Folder | Created Date = 6/23/2008 9:08:52 AM | Attr =    ]
SUPERAntiSpyware.com -> %AllUsersProfile%\Application Data\SUPERAntiSpyware.com ->  [Folder | Created Date = 6/23/2008 9:52:07 AM | Attr =    ]
IBM -> %AppData%\IBM ->  [Folder | Created Date = 6/18/2008 10:51:47 AM | Attr =    ]
Macromedia -> %AppData%\Macromedia ->  [Folder | Created Date = 5/29/2008 7:48:07 AM | Attr =    ]
Malwarebytes -> %AppData%\Malwarebytes ->  [Folder | Created Date = 6/23/2008 9:09:16 AM | Attr =    ]
Sun -> %AppData%\Sun ->  [Folder | Created Date = 6/18/2008 4:28:25 PM | Attr =    ]
SUPERAntiSpyware.com -> %AppData%\SUPERAntiSpyware.com ->  [Folder | Created Date = 6/23/2008 9:50:04 AM | Attr =    ]
3500 printer assistant.lnk -> %AllUsersProfile%\Desktop\3500 printer assistant.lnk ->  [Ver =  | Size = 1897 bytes | Created Date = 6/20/2008 1:53:49 PM | Attr =    ]
Ad-Aware.lnk -> %AllUsersProfile%\Desktop\Ad-Aware.lnk ->  [Ver =  | Size = 793 bytes | Created Date = 6/19/2008 9:07:35 AM | Attr =    ]
Ad-Watch.lnk -> %AllUsersProfile%\Desktop\Ad-Watch.lnk ->  [Ver =  | Size = 793 bytes | Created Date = 6/19/2008 9:07:35 AM | Attr =    ]
Cleanup.lnk -> %AllUsersProfile%\Desktop\Cleanup.lnk ->  [Ver =  | Size = 675 bytes | Created Date = 6/16/2008 2:37:36 PM | Attr =    ]
HP Director.lnk -> %AllUsersProfile%\Desktop\HP Director.lnk ->  [Ver =  | Size = 851 bytes | Created Date = 6/20/2008 2:13:10 PM | Attr =    ]
Malwarebytes' Anti-Malware.lnk -> %AllUsersProfile%\Desktop\Malwarebytes' Anti-Malware.lnk ->  [Ver =  | Size = 696 bytes | Created Date = 6/23/2008 9:08:53 AM | Attr =    ]
SUPERAntiSpyware Free Edition.lnk -> %AllUsersProfile%\Desktop\SUPERAntiSpyware Free Edition.lnk ->  [Ver =  | Size = 780 bytes | Created Date = 6/23/2008 9:50:37 AM | Attr =    ]
ComboFix.exe -> %UserProfile%\Desktop\ComboFix.exe ->  [Ver =  | Size = 2037114 bytes | Created Date = 6/26/2008 5:18:12 PM | Attr =    ]
@Alternate Data Stream - 26 bytes -> %UserProfile%\Desktop\ComboFix.exe:Zone.Identifier
dss.exe -> %UserProfile%\Desktop\dss.exe ->  [Ver = 3, 2, 8, 1 | Size = 686630 bytes | Created Date = 6/26/2008 4:07:28 PM | Attr =    ]
@Alternate Data Stream - 26 bytes -> %UserProfile%\Desktop\dss.exe:Zone.Identifier
HijackThis.lnk -> %UserProfile%\Desktop\HijackThis.lnk ->  [Ver =  | Size = 1734 bytes | Created Date = 6/22/2008 9:47:39 PM | Attr =    ]
OTMoveIt2.exe -> %UserProfile%\Desktop\OTMoveIt2.exe -> OldTimer Tools [Ver = 1.0.4.2 | Size = 291328 bytes | Created Date = 6/26/2008 5:05:11 PM | Attr =    ]
@Alternate Data Stream - 26 bytes -> %UserProfile%\Desktop\OTMoveIt2.exe:Zone.Identifier
OTScanIt -> %UserProfile%\Desktop\OTScanIt ->  [Folder | Created Date = 6/27/2008 4:52:09 PM | Attr =    ]
OTScanIt.exe -> %UserProfile%\Desktop\OTScanIt.exe ->  [Ver =  | Size = 568544 bytes | Created Date = 6/27/2008 4:51:46 PM | Attr =    ]
@Alternate Data Stream - 26 bytes -> %UserProfile%\Desktop\OTScanIt.exe:Zone.Identifier
State of Tennessee HOD SSL 2.url -> %UserProfile%\Desktop\State of Tennessee HOD SSL 2.url ->  [Ver =  | Size = 305 bytes | Created Date = 6/22/2008 10:48:01 PM | Attr =    ]
Unused Desktop Shortcuts -> %UserProfile%\Desktop\Unused Desktop Shortcuts ->  [Folder | Created Date = 6/16/2008 1:48:32 PM | Attr =    ]
Download Manager -> %CommonProgramFiles%\Download Manager ->  [Folder | Created Date = 6/23/2008 9:08:28 AM | Attr =    ]
Java -> %CommonProgramFiles%\Java ->  [Folder | Created Date = 6/22/2008 10:31:14 PM | Attr =    ]
Wise Installation Wizard -> %CommonProgramFiles%\Wise Installation Wizard ->  [Folder | Created Date = 6/19/2008 9:05:30 AM | Attr =    ]
Hewlett-Packard -> %ProgramFiles%\Hewlett-Packard ->  [Folder | Created Date = 6/20/2008 1:51:09 PM | Attr =    ]
HP -> %ProgramFiles%\HP ->  [Folder | Created Date = 6/20/2008 1:51:34 PM | Attr =    ]
Java -> %ProgramFiles%\Java ->  [Folder | Created Date = 6/22/2008 10:31:58 PM | Attr =    ]
Malwarebytes' Anti-Malware -> %ProgramFiles%\Malwarebytes' Anti-Malware ->  [Folder | Created Date = 6/23/2008 9:08:49 AM | Attr =    ]
msn -> %ProgramFiles%\msn ->  [Folder | Created Date = 6/23/2008 4:31:53 PM | Attr =    ]
Panda Security -> %ProgramFiles%\Panda Security ->  [Folder | Created Date = 6/23/2008 11:15:06 AM | Attr =    ]
SUPERAntiSpyware -> %ProgramFiles%\SUPERAntiSpyware ->  [Folder | Created Date = 6/23/2008 9:50:05 AM | Attr =    ]
Trend Micro -> %ProgramFiles%\Trend Micro ->  [Folder | Created Date = 6/22/2008 9:47:38 PM | Attr =    ]



[Files/Folders - Modified Within 90 days]
avenger -> %SystemDrive%\avenger ->  [Folder | Modified Date = 6/18/2008 3:28:47 PM | Attr =    ]
Boot.bak -> %SystemDrive%\Boot.bak ->  [Ver =  | Size = 211 bytes | Modified Date = 6/23/2008 9:06:24 AM | Attr =    ]
BOOT.INI -> %SystemDrive%\BOOT.INI ->  [Ver =  | Size = 281 bytes | Modified Date = 6/26/2008 5:31:25 PM | Attr = RHS]
cmdcons -> %SystemDrive%\cmdcons ->  [Folder | Modified Date = 6/26/2008 5:31:21 PM | Attr =    ]
Config.Msi -> %SystemDrive%\Config.Msi ->  [Folder | Modified Date = 6/24/2008 8:42:41 AM | Attr =  HS]
Deckard -> %SystemDrive%\Deckard ->  [Folder | Modified Date = 6/26/2008 4:08:35 PM | Attr =    ]
Documents and Settings -> %SystemDrive%\Documents and Settings ->  [Folder | Modified Date = 6/16/2008 2:48:23 PM | Attr =    ]
hiberfil.sys -> %SystemDrive%\hiberfil.sys ->  [Ver =  | Size = 267460608 bytes | Modified Date = 6/27/2008 9:35:51 AM | Attr =  HS]
Inetpub -> %SystemDrive%\Inetpub ->  [Folder | Modified Date = 6/20/2008 2:56:20 PM | Attr =    ]
NTLDR -> %SystemDrive%\NTLDR ->  [Ver =  | Size = 250048 bytes | Modified Date = 6/23/2008 4:07:09 PM | Attr = RHS]
Program Files -> %ProgramFiles% ->  [Folder | Modified Date = 6/23/2008 4:31:53 PM | Attr =    ]
QooBox -> %SystemDrive%\QooBox ->  [Folder | Modified Date = 6/26/2008 5:44:38 PM | Attr =    ]
temp -> %SystemDrive%\temp ->  [Folder | Modified Date = 6/20/2008 2:33:34 PM | Attr =    ]
WINDOWS -> %SystemRoot% ->  [Folder | Modified Date = 6/26/2008 5:44:52 PM | Attr =    ]
_OTMoveIt -> %SystemDrive%\_OTMoveIt ->  [Folder | Modified Date = 6/26/2008 5:07:33 PM | Attr =    ]
dxmasf.dll -> %SystemRoot%\System32\dllcache\dxmasf.dll ->  [Ver =  | Size = 498742 bytes | Modified Date = 4/13/2008 8:11:52 PM | Attr =    ]
msdxmlc.dll -> %SystemRoot%\System32\dllcache\msdxmlc.dll ->  [Ver =  | Size = 4126 bytes | Modified Date = 4/13/2008 8:10:08 PM | Attr =    ]
quartz.dll -> %SystemRoot%\System32\dllcache\quartz.dll ->  [Ver =  | Size = 1288192 bytes | Modified Date = 5/7/2008 1:12:40 AM | Attr =    ]
adv01nt5.dll -> %SystemRoot%\System32\drivers\adv01nt5.dll -> Intel(R) Corporation [Ver = 6.13.01.3198  | Size = 4255 bytes | Modified Date = 4/13/2008 8:11:48 PM | Attr =    ]
adv02nt5.dll -> %SystemRoot%\System32\drivers\adv02nt5.dll -> Intel(R) Corporation [Ver = 6.13.01.3198  | Size = 3967 bytes | Modified Date = 4/13/2008 8:11:48 PM | Attr =    ]
adv05nt5.dll -> %SystemRoot%\System32\drivers\adv05nt5.dll -> Intel(R) Corporation [Ver = 6.13.01.3198  | Size = 3615 bytes | Modified Date = 4/13/2008 8:11:48 PM | Attr =    ]
adv07nt5.dll -> %SystemRoot%\System32\drivers\adv07nt5.dll -> Intel(R) Corporation [Ver = 6.13.01.3198  | Size = 3647 bytes | Modified Date = 4/13/2008 8:11:48 PM | Attr =    ]
adv08nt5.dll -> %SystemRoot%\System32\drivers\adv08nt5.dll -> Intel(R) Corporation [Ver = 6.13.01.3198  | Size = 3135 bytes | Modified Date = 4/13/2008 8:11:48 PM | Attr =    ]
adv09nt5.dll -> %SystemRoot%\System32\drivers\adv09nt5.dll -> Intel(R) Corporation [Ver = 6.13.01.3198  | Size = 3711 bytes | Modified Date = 4/13/2008 8:11:48 PM | Attr =    ]
adv11nt5.dll -> %SystemRoot%\System32\drivers\adv11nt5.dll -> Intel(R) Corporation [Ver = 6.13.01.3198  | Size = 3775 bytes | Modified Date = 4/13/2008 8:11:48 PM | Attr =    ]
amdagp.sys -> %SystemRoot%\System32\drivers\amdagp.sys -> Advanced Micro Devices, Inc. [Ver = 5.00 (xpsp.080413-2111) | Size = 43008 bytes | Modified Date = 4/13/2008 2:36:39 PM | Attr =    ]
atv01nt5.dll -> %SystemRoot%\System32\drivers\atv01nt5.dll -> Intel(R) Corporation [Ver = 6.13.01.3198  | Size = 21183 bytes | Modified Date = 4/13/2008 8:11:50 PM | Attr =    ]
atv02nt5.dll -> %SystemRoot%\System32\drivers\atv02nt5.dll -> Intel(R) Corporation [Ver = 6.13.01.3198  | Size = 11359 bytes | Modified Date = 4/13/2008 8:11:50 PM | Attr =    ]
atv04nt5.dll -> %SystemRoot%\System32\drivers\atv04nt5.dll -> Intel(R) Corporation [Ver = 6.13.01.3198  | Size = 25471 bytes | Modified Date = 4/13/2008 8:11:50 PM | Attr =    ]
atv06nt5.dll -> %SystemRoot%\System32\drivers\atv06nt5.dll -> Intel(R) Corporation [Ver = 6.13.01.3198  | Size = 14143 bytes | Modified Date = 4/13/2008 8:11:50 PM | Attr =    ]
atv10nt5.dll -> %SystemRoot%\System32\drivers\atv10nt5.dll -> Intel(R) Corporation [Ver = 6.13.01.3198  | Size = 17279 bytes | Modified Date = 4/13/2008 8:11:50 PM | Attr =    ]
Awrtpd.sys -> %SystemRoot%\System32\drivers\Awrtpd.sys -> Lavasoft AB [Ver = 1.0.0.134 | Size = 12960 bytes | Modified Date = 4/29/2008 11:19:50 AM | Attr =    ]
Awrtrd.sys -> %SystemRoot%\System32\drivers\Awrtrd.sys -> Lavasoft AB [Ver = 7.0.1.3 | Size = 15648 bytes | Modified Date = 4/29/2008 11:19:54 AM | Attr =    ]
ch7xxnt5.dll -> %SystemRoot%\System32\drivers\ch7xxnt5.dll -> Intel(R) Corporation [Ver = 6.13.01.3198  | Size = 15423 bytes | Modified Date = 4/13/2008 8:11:50 PM | Attr =    ]
dmboot.sys -> %SystemRoot%\System32\drivers\dmboot.sys -> Microsoft Corp., Veritas Software [Ver = 2600.5512.503.0 | Size = 799744 bytes | Modified Date = 4/13/2008 2:44:48 PM | Attr =    ]
dmio.sys -> %SystemRoot%\System32\drivers\dmio.sys -> Microsoft Corp., Veritas Software [Ver = 2600.5512.503.0 | Size = 153344 bytes | Modified Date = 4/13/2008 2:44:46 PM | Attr =    ]
ETC -> %SystemRoot%\System32\drivers\ETC ->  [Folder | Modified Date = 6/20/2008 2:48:08 PM | Attr =    ]
hdaudbus.sys -> %SystemRoot%\System32\drivers\hdaudbus.sys -> Windows (R) Server 2003 DDK provider [Ver = 5.10.01.5013 built by: WinDDK | Size = 144384 bytes | Modified Date = 4/13/2008 12:36:05 PM | Attr =    ]
mbam.sys -> %SystemRoot%\System32\drivers\mbam.sys -> Malwarebytes [Ver = 1, 0, 0, 1 | Size = 17144 bytes | Modified Date = 6/19/2008 5:47:58 PM | Attr =    ]
mbamcatchme.sys -> %SystemRoot%\System32\drivers\mbamcatchme.sys ->  [Ver =  | Size = 34296 bytes | Modified Date = 6/19/2008 5:48:04 PM | Attr =    ]
NSDriver.sys -> %SystemRoot%\System32\drivers\NSDriver.sys -> Lavasoft AB [Ver = 7.0.1.3 | Size = 15648 bytes | Modified Date = 4/29/2008 11:20:00 AM | Attr =    ]
siint5.dll -> %SystemRoot%\System32\drivers\siint5.dll -> Intel(R) Corporation [Ver = 6.13.01.3198  | Size = 3901 bytes | Modified Date = 4/13/2008 8:12:05 PM | Attr =    ]
sisagp.sys -> %SystemRoot%\System32\drivers\sisagp.sys -> Silicon Integrated Systems Corporation [Ver = 5.12.01.2010 (xpsp.080413-2111) | Size = 40960 bytes | Modified Date = 4/13/2008 2:36:39 PM | Attr =    ]
vchnt5.dll -> %SystemRoot%\System32\drivers\vchnt5.dll -> Intel(R) Corporation [Ver = 6.13.01.3198  | Size = 11325 bytes | Modified Date = 4/13/2008 8:12:08 PM | Attr =    ]
amstream.dll -> %SystemRoot%\System32\amstream.dll ->  [Ver =  | Size = 70656 bytes | Modified Date = 4/13/2008 8:11:49 PM | Attr =    ]
appmgmt -> %SystemRoot%\System32\appmgmt ->  [Folder | Modified Date = 6/20/2008 2:37:32 PM | Attr =    ]
ati2cqag.dll -> %SystemRoot%\System32\ati2cqag.dll -> ATI Technologies Inc. [Ver = 6.14.10.0233 | Size = 229376 bytes | Modified Date = 4/13/2008 8:11:49 PM | Attr =    ]
ati2dvaa.dll -> %SystemRoot%\System32\ati2dvaa.dll -> ATI Technologies Inc. [Ver = 6.13.10.5019 | Size = 377984 bytes | Modified Date = 4/13/2008 8:11:49 PM | Attr =    ]
ati2dvag.dll -> %SystemRoot%\System32\ati2dvag.dll -> ATI Technologies Inc. [Ver = 6.14.10.6462 | Size = 201728 bytes | Modified Date = 4/13/2008 8:11:49 PM | Attr =    ]
ati3d1ag.dll -> %SystemRoot%\System32\ati3d1ag.dll -> ATI Technologies Inc.  [Ver = 6.14.10.4071 | Size = 870784 bytes | Modified Date = 4/13/2008 8:11:49 PM | Attr =    ]
ati3duag.dll -> %SystemRoot%\System32\ati3duag.dll -> ATI Technologies Inc.  [Ver = 6.14.10.0231 | Size = 1888992 bytes | Modified Date = 4/13/2008 8:11:50 PM | Attr =    ]
ativdaxx.ax -> %SystemRoot%\System32\ativdaxx.ax -> ATI Technologies Inc. [Ver = 6.14.10.6238 | Size = 9728 bytes | Modified Date = 4/13/2008 8:12:42 PM | Attr =    ]
ativmvxx.ax -> %SystemRoot%\System32\ativmvxx.ax -> ATI Technologies Inc. [Ver = 6.14.10.6238 | Size = 23040 bytes | Modified Date = 4/13/2008 8:12:42 PM | Attr =    ]
ativtmxx.dll -> %SystemRoot%\System32\ativtmxx.dll -> ATI Technologies Inc. [Ver = 6.14.10.6238 | Size = 32768 bytes | Modified Date = 4/13/2008 8:11:50 PM | Attr =    ]
ativvaxx.dll -> %SystemRoot%\System32\ativvaxx.dll -> ATI Technologies Inc.  [Ver = 6.14.01.0009 | Size = 516768 bytes | Modified Date = 4/13/2008 8:11:50 PM | Attr =    ]
atmfd.dll -> %SystemRoot%\System32\atmfd.dll -> Adobe Systems Incorporated [Ver = 5.1 Build 226 | Size = 285696 bytes | Modified Date = 4/13/2008 8:09:01 PM | Attr =    ]
atmlib.dll -> %SystemRoot%\System32\atmlib.dll -> Adobe Systems [Ver = 5.1 Build 226 | Size = 30208 bytes | Modified Date = 4/13/2008 8:11:50 PM | Attr =    ]
bits -> %SystemRoot%\System32\bits ->  [Folder | Modified Date = 6/23/2008 4:31:52 PM | Attr =    ]
CatRoot -> %SystemRoot%\System32\CatRoot ->  [Folder | Modified Date = 6/23/2008 5:25:44 PM | Attr =    ]
CatRoot2 -> %SystemRoot%\System32\CatRoot2 ->  [Folder | Modified Date = 6/26/2008 4:10:02 PM | Attr =    ]
Com -> %SystemRoot%\System32\Com ->  [Folder | Modified Date = 6/23/2008 4:18:00 PM | Attr =    ]
compatui.dll -> %SystemRoot%\System32\compatui.dll ->  [Ver = 1, 0, 0, 1 | Size = 252928 bytes | Modified Date = 4/13/2008 8:11:51 PM | Attr =    ]
CONFIG -> %SystemRoot%\System32\CONFIG ->  [Folder | Modified Date = 6/6/2008 3:18:23 PM | Attr =    ]
dcache.bin -> %SystemRoot%\System32\dcache.bin ->  [Ver =  | Size = 1804 bytes | Modified Date = 4/13/2008 8:25:26 PM | Attr =    ]
defrag.exe -> %SystemRoot%\System32\defrag.exe -> Microsoft Corp. and Executive Software International, Inc. [Ver = 5.1.2600.5512 (xpsp.080413-2111) | Size = 25088 bytes | Modified Date = 4/13/2008 8:12:16 PM | Attr =    ]
devenum.dll -> %SystemRoot%\System32\devenum.dll ->  [Ver =  | Size = 59904 bytes | Modified Date = 4/13/2008 8:11:51 PM | Attr =    ]
dfrgfat.exe -> %SystemRoot%\System32\dfrgfat.exe -> Microsoft Corp. and Executive Software International, Inc. [Ver = 5.1.2600.5512 (xpsp.080413-2111) | Size = 82944 bytes | Modified Date = 4/13/2008 8:12:16 PM | Attr =    ]
dfrgntfs.exe -> %SystemRoot%\System32\dfrgntfs.exe -> Microsoft Corp. and Executive Software International, Inc. [Ver = 5.1.2600.5512 (xpsp.080413-2111) | Size = 105472 bytes | Modified Date = 4/13/2008 8:12:16 PM | Attr =    ]
dfrgsnap.dll -> %SystemRoot%\System32\dfrgsnap.dll -> Microsoft Corp. and Executive Software International, Inc. [Ver = 5.1.2600.5512 (xpsp.080413-2111) | Size = 39424 bytes | Modified Date = 4/13/2008 8:11:51 PM | Attr =    ]
dfrgui.dll -> %SystemRoot%\System32\dfrgui.dll -> Microsoft Corp. and Executive Software International, Inc. [Ver = 5.1.2600.5512 (xpsp.080413-2111) | Size = 124416 bytes | Modified Date = 4/13/2008 8:11:51 PM | Attr =    ]
dgnet.dll -> %SystemRoot%\System32\dgnet.dll -> Microsoft [Ver = 1, 0, 0, 1 | Size = 111104 bytes | Modified Date = 4/13/2008 8:11:51 PM | Attr =    ]
DLLCACHE -> %SystemRoot%\System32\DLLCACHE ->  [Folder | Modified Date = 6/23/2008 5:23:44 PM | Attr = RHS]
dmadmin.exe -> %SystemRoot%\System32\dmadmin.exe -> Microsoft Corp., Veritas Software [Ver = 2600.5512.503.0 | Size = 224768 bytes | Modified Date = 4/13/2008 8:12:17 PM | Attr =    ]
dmdlgs.dll -> %SystemRoot%\System32\dmdlgs.dll -> Microsoft Corp. [Ver = 2600.5512.503.0 | Size = 285184 bytes | Modified Date = 4/13/2008 8:11:52 PM | Attr =    ]
dmdskmgr.dll -> %SystemRoot%\System32\dmdskmgr.dll -> Microsoft Corp. [Ver = 2600.5512.503.0 | Size = 200704 bytes | Modified Date = 4/13/2008 8:11:52 PM | Attr =    ]
dmremote.exe -> %SystemRoot%\System32\dmremote.exe -> Microsoft Corp. [Ver = 2600.5512.503.0 | Size = 15872 bytes | Modified Date = 4/13/2008 8:12:17 PM | Attr =    ]
dmserver.dll -> %SystemRoot%\System32\dmserver.dll -> Microsoft Corp. [Ver = 2600.5512.503.0 | Size = 23552 bytes | Modified Date = 4/13/2008 8:11:52 PM | Attr =    ]
dmutil.dll -> %SystemRoot%\System32\dmutil.dll -> Microsoft Corp. [Ver = 2600.5512.503.0 | Size = 52224 bytes | Modified Date = 4/13/2008 8:11:52 PM | Attr =    ]
DRIVERS -> %SystemRoot%\System32\DRIVERS ->  [Folder | Modified Date = 6/26/2008 5:32:15 PM | Attr =    ]
dxmasf.dll -> %SystemRoot%\System32\dxmasf.dll ->  [Ver =  | Size = 498742 bytes | Modified Date = 4/13/2008 8:11:52 PM | Attr =    ]
en -> %SystemRoot%\System32\en ->  [Folder | Modified Date = 6/23/2008 4:31:53 PM | Attr =    ]
en-US -> %SystemRoot%\System32\en-US ->  [Folder | Modified Date = 6/23/2008 4:32:00 PM | Attr =    ]
encdec.dll -> %SystemRoot%\System32\encdec.dll ->  [Ver =  | Size = 186880 bytes | Modified Date = 4/13/2008 8:11:53 PM | Attr =    ]
FNTCACHE.DAT -> %SystemRoot%\System32\FNTCACHE.DAT ->  [Ver =  | Size = 245512 bytes | Modified Date = 6/24/2008 3:08:17 AM | Attr =    ]
hsfcisp2.dll -> %SystemRoot%\System32\hsfcisp2.dll -> Conexant Systems, Inc. [Ver = 7.12.09 | Size = 32285 bytes | Modified Date = 4/13/2008 8:11:54 PM | Attr =    ]
hypertrm.dll -> %SystemRoot%\System32\hypertrm.dll -> Hilgraeve, Inc. [Ver = 5.1.2600.5512 | Size = 347136 bytes | Modified Date = 4/13/2008 8:11:54 PM | Attr =    ]
i81xdnt5.dll -> %SystemRoot%\System32\i81xdnt5.dll -> Intel(R) Corporation [Ver = 6.13.01.3198  | Size = 702845 bytes | Modified Date = 4/13/2008 8:11:54 PM | Attr =    ]
iac25_32.ax -> %SystemRoot%\System32\iac25_32.ax -> Intel Corporation [Ver = 2.05.53 | Size = 199680 bytes | Modified Date = 4/13/2008 8:12:42 PM | Attr =    ]
iccvid.dll -> %SystemRoot%\System32\iccvid.dll -> Radius Inc. [Ver = 1.10.0.11 | Size = 80384 bytes | Modified Date = 4/13/2008 8:11:54 PM | Attr =    ]
INETSRV -> %SystemRoot%\System32\INETSRV ->  [Folder | Modified Date = 6/27/2008 9:40:46 AM | Attr =    ]
ir41_32.ax -> %SystemRoot%\System32\ir41_32.ax -> Intel Corporation [Ver = 4.51.16.03 | Size = 848384 bytes | Modified Date = 4/13/2008 8:12:42 PM | Attr =    ]
ir41_qc.dll -> %SystemRoot%\System32\ir41_qc.dll -> Intel Corporation. [Ver = 4.30.62.02 | Size = 120320 bytes | Modified Date = 4/13/2008 8:11:55 PM | Attr =    ]
ir41_qcx.dll -> %SystemRoot%\System32\ir41_qcx.dll -> Intel Corporation. [Ver = 4.30.64.01 | Size = 338432 bytes | Modified Date = 4/13/2008 8:11:55 PM | Attr =    ]
ir50_32.dll -> %SystemRoot%\System32\ir50_32.dll -> Intel Corporation [Ver = R.5.10.15.2.55 | Size = 755200 bytes | Modified Date = 4/13/2008 8:11:55 PM | Attr =    ]
ir50_qc.dll -> %SystemRoot%\System32\ir50_qc.dll -> Intel Corporation. [Ver = R.5.10.63.2.48 | Size = 200192 bytes | Modified Date = 4/13/2008 8:11:55 PM | Attr =    ]
ir50_qcx.dll -> %SystemRoot%\System32\ir50_qcx.dll -> Intel Corporation. [Ver = R.5.10.64.2.48 | Size = 183808 bytes | Modified Date = 4/13/2008 8:11:55 PM | Attr =    ]
isrdbg32.dll -> %SystemRoot%\System32\isrdbg32.dll -> Intel Corporation [Ver = 0.0 | Size = 32768 bytes | Modified Date = 4/13/2008 8:11:55 PM | Attr =    ]
ivfsrc.ax -> %SystemRoot%\System32\ivfsrc.ax -> Intel Corporation [Ver = R.5.10.15.2.51 | Size = 154624 bytes | Modified Date = 4/13/2008 8:12:42 PM | Attr =    ]
jgdw400.dll -> %SystemRoot%\System32\jgdw400.dll -> America Online [Ver = 106 | Size = 163840 bytes | Modified Date = 4/13/2008 8:11:55 PM | Attr =    ]
jgpl400.dll -> %SystemRoot%\System32\jgpl400.dll -> Johnson-Grace Company [Ver = 054 | Size = 27648 bytes | Modified Date = 4/13/2008 8:11:55 PM | Attr =    ]
l3codeca.acm -> %SystemRoot%\System32\l3codeca.acm -> Fraunhofer Institut Integrierte Schaltungen IIS [Ver = 1, 9, 0, 0305 | Size = 290816 bytes | Modified Date = 4/13/2008 8:09:57 PM | Attr =    ]
Logfiles -> %SystemRoot%\System32\Logfiles ->  [Folder | Modified Date = 6/20/2008 2:45:51 PM | Attr =    ]
lsdelete.exe -> %SystemRoot%\System32\lsdelete.exe ->  [Ver =  | Size = 12632 bytes | Modified Date = 5/16/2008 11:58:04 AM | Attr =    ]
mciqtz32.dll -> %SystemRoot%\System32\mciqtz32.dll ->  [Ver =  | Size = 35328 bytes | Modified Date = 4/13/2008 8:11:56 PM | Attr =    ]
mpeg2data.ax -> %SystemRoot%\System32\mpeg2data.ax ->  [Ver =  | Size = 118272 bytes | Modified Date = 4/13/2008 8:12:42 PM | Attr =    ]
mpg2splt.ax -> %SystemRoot%\System32\mpg2splt.ax ->  [Ver =  | Size = 148992 bytes | Modified Date = 4/13/2008 8:12:42 PM | Attr =    ]
msdmo.dll -> %SystemRoot%\System32\msdmo.dll ->  [Ver =  | Size = 14336 bytes | Modified Date = 4/13/2008 8:11:59 PM | Attr =    ]
msdxm.ocx -> %SystemRoot%\System32\msdxm.ocx ->  [Ver =  | Size = 844314 bytes | Modified Date = 4/13/2008 8:10:08 PM | Attr =    ]
msdxmlc.dll -> %SystemRoot%\System32\msdxmlc.dll ->  [Ver =  | Size = 4126 bytes | Modified Date = 4/13/2008 8:10:08 PM | Attr =    ]
mtxparhd.dll -> %SystemRoot%\System32\mtxparhd.dll -> Matrox Graphics Inc. [Ver = 6.13.01.1296 | Size = 1737856 bytes | Modified Date = 4/13/2008 8:12:01 PM | Attr =    ]
NPP -> %SystemRoot%\System32\NPP ->  [Folder | Modified Date = 6/23/2008 4:18:24 PM | Attr =    ]
odbcconf.rsp -> %SystemRoot%\System32\odbcconf.rsp ->  [Ver =  | Size = 4310 bytes | Modified Date = 4/13/2008 1:26:09 PM | Attr =    ]
OOBE -> %SystemRoot%\System32\OOBE ->  [Folder | Modified Date = 6/23/2008 4:16:31 PM | Attr =    ]
PERFC009.DAT -> %SystemRoot%\System32\PERFC009.DAT ->  [Ver =  | Size = 62234 bytes | Modified Date = 6/24/2008 3:16:11 AM | Attr =    ]
PERFH009.DAT -> %SystemRoot%\System32\PERFH009.DAT ->  [Ver =  | Size = 412450 bytes | Modified Date = 6/24/2008 3:16:11 AM | Attr =    ]
PerfStringBackup.INI -> %SystemRoot%\System32\PerfStringBackup.INI ->  [Ver =  | Size = 482022 bytes | Modified Date = 6/24/2008 3:16:11 AM | Attr =    ]
proctexe.ocx -> %SystemRoot%\System32\proctexe.ocx -> Intel Corporation [Ver = 6.00.2900.5512 (xpsp.080413-2105) | Size = 81920 bytes | Modified Date = 4/13/2008 8:10:35 PM | Attr =    ]
qcap.dll -> %SystemRoot%\System32\qcap.dll ->  [Ver =  | Size = 192512 bytes | Modified Date = 4/13/2008 8:12:03 PM | Attr =    ]
qdv.dll -> %SystemRoot%\System32\qdv.dll ->  [Ver =  | Size = 279040 bytes | Modified Date = 4/13/2008 8:12:03 PM | Attr =    ]
qdvd.dll -> %SystemRoot%\System32\qdvd.dll ->  [Ver =  | Size = 386048 bytes | Modified Date = 4/13/2008 8:12:03 PM | Attr =    ]
qedit.dll -> %SystemRoot%\System32\qedit.dll ->  [Ver =  | Size = 562176 bytes | Modified Date = 4/13/2008 8:12:03 PM | Attr =    ]
qedwipes.dll -> %SystemRoot%\System32\qedwipes.dll ->  [Ver =  | Size = 733696 bytes | Modified Date = 4/13/2008 1:21:32 PM | Attr =    ]
quartz.dll -> %SystemRoot%\System32\quartz.dll ->  [Ver =  | Size = 1288192 bytes | Modified Date = 5/7/2008 1:12:40 AM | Attr =    ]
regwizc.dll -> %SystemRoot%\System32\regwizc.dll -> Microsoft [Ver = 3, 0, 0, 0 | Size = 397824 bytes | Modified Date = 4/13/2008 8:12:04 PM | Attr =    ]
ReinstallBackups -> %SystemRoot%\System32\ReinstallBackups ->  [Folder | Modified Date = 6/23/2008 4:01:31 PM | Attr =    ]
Restore -> %SystemRoot%\System32\Restore ->  [Folder | Modified Date = 6/23/2008 4:18:25 PM | Attr =    ]
s3gnb.dll -> %SystemRoot%\System32\s3gnb.dll -> S3 Graphics, Inc. [Ver = 6.14.10.0012-13.94.12 | Size = 397056 bytes | Modified Date = 4/13/2008 8:12:04 PM | Attr =    ]
sbe.dll -> %SystemRoot%\System32\sbe.dll ->  [Ver =  | Size = 270848 bytes | Modified Date = 4/13/2008 8:12:04 PM | Attr =    ]
scripting -> %SystemRoot%\System32\scripting ->  [Folder | Modified Date = 6/23/2008 4:31:58 PM | Attr =    ]
Setup -> %SystemRoot%\System32\Setup ->  [Folder | Modified Date = 6/24/2008 3:08:10 AM | Attr =    ]
slbiop.dll -> %SystemRoot%\System32\slbiop.dll -> Schlumberger Technology Corporation [Ver = 5.1.2600.2095 (xpsp_sp2_rc1.040310-2010) | Size = 98304 bytes | Modified Date = 4/13/2008 8:12:06 PM | Attr =    ]
slcoinst.dll -> %SystemRoot%\System32\slcoinst.dll -> Smart Link [Ver = 3.80.01MC15 | Size = 73832 bytes | Modified Date = 4/13/2008 8:12:06 PM | Attr =    ]
slextspk.dll -> %SystemRoot%\System32\slextspk.dll -> Smart Link [Ver = 3.80.01MC15 | Size = 286792 bytes | Modified Date = 4/13/2008 8:12:06 PM | Attr =    ]
slgen.dll -> %SystemRoot%\System32\slgen.dll -> Smart Link [Ver = 3.80.01MC15 | Size = 188508 bytes | Modified Date = 4/13/2008 8:12:06 PM | Attr =    ]
slrundll.exe -> %SystemRoot%\System32\slrundll.exe -> Smart Link [Ver = 3.80.01MC15 | Size = 32866 bytes | Modified Date = 4/13/2008 8:12:35 PM | Attr =    ]
slserv.exe -> %SystemRoot%\System32\slserv.exe -> Smart Link [Ver = 3.80.01MC15 | Size = 73796 bytes | Modified Date = 4/13/2008 8:12:35 PM | Attr =    ]
sl_anet.acm -> %SystemRoot%\System32\sl_anet.acm -> Sipro Lab Telecom Inc. [Ver = 3.02 | Size = 86016 bytes | Modified Date = 4/13/2008 8:10:50 PM | Attr =    ]
USMT -> %SystemRoot%\System32\USMT ->  [Folder | Modified Date = 6/23/2008 4:32:00 PM | Attr =    ]
vbicodec.ax -> %SystemRoot%\System32\vbicodec.ax ->  [Ver =  | Size = 53248 bytes | Modified Date = 4/13/2008 8:12:42 PM | Attr =    ]
WBEM -> %SystemRoot%\System32\WBEM ->  [Folder | Modified Date = 6/24/2008 3:08:04 AM | Attr =    ]
WPA.DBL -> %SystemRoot%\System32\WPA.DBL ->  [Ver =  | Size = 1170 bytes | Modified Date = 6/27/2008 4:22:06 PM | Attr =    ]
wstpager.ax -> %SystemRoot%\System32\wstpager.ax ->  [Ver =  | Size = 164352 bytes | Modified Date = 4/13/2008 8:12:43 PM | Attr =    ]
wstrenderer.ax -> %SystemRoot%\System32\wstrenderer.ax ->  [Ver =  | Size = 239616 bytes | Modified Date = 4/13/2008 8:12:43 PM | Attr =    ]
$hf_mig$ -> %SystemRoot%\$hf_mig$ ->  [Folder | Modified Date = 6/22/2008 7:50:53 PM | Attr =  H ]
2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> 
$NtServicePackUninstall$ -> %SystemRoot%\$NtServicePackUninstall$ ->  [Folder | Modified Date = 6/23/2008 4:00:48 PM | Attr =  H ]
AppPatch -> %SystemRoot%\AppPatch ->  [Folder | Modified Date = 6/24/2008 3:08:06 AM | Attr =    ]
BOOTSTAT.DAT -> %SystemRoot%\BOOTSTAT.DAT ->  [Ver =  | Size = 2048 bytes | Modified Date = 6/27/2008 9:36:00 AM | Attr =   S]
Debug -> %SystemRoot%\Debug ->  [Folder | Modified Date = 6/23/2008 2:29:14 PM | Attr =    ]
Downloaded Program Files -> %SystemRoot%\Downloaded Program Files ->  [Folder | Modified Date = 6/26/2008 4:10:39 PM | Attr =   S]
EHome -> %SystemRoot%\EHome ->  [Folder | Modified Date = 6/23/2008 3:45:24 PM | Attr =    ]
ERDNT -> %SystemRoot%\ERDNT ->  [Folder | Modified Date = 6/26/2008 5:29:07 PM | Attr =    ]
Fonts -> %SystemRoot%\Fonts ->  [Folder | Modified Date = 6/24/2008 3:08:00 AM | Attr = R S]
Help -> %SystemRoot%\Help ->  [Folder | Modified Date = 6/23/2008 4:32:24 PM | Attr =    ]
hpdj3500.his -> %SystemRoot%\hpdj3500.his ->  [Ver =  | Size = 264386 bytes | Modified Date = 6/20/2008 2:22:08 PM | Attr =    ]
hpdj3500.ini -> %SystemRoot%\hpdj3500.ini ->  [Ver =  | Size = 10479 bytes | Modified Date = 6/20/2008 2:22:08 PM | Attr =    ]
ie7updates -> %SystemRoot%\ie7updates ->  [Folder | Modified Date = 6/22/2008 6:50:16 PM | Attr =    ]
IIS Temporary Compressed Files -> %SystemRoot%\IIS Temporary Compressed Files ->  [Folder | Modified Date = 6/20/2008 2:53:48 PM | Attr =    ]
IME -> %SystemRoot%\IME ->  [Folder | Modified Date = 6/23/2008 4:32:25 PM | Attr =    ]
INF -> %SystemRoot%\INF ->  [Folder | Modified Date = 6/23/2008 5:26:05 PM | Attr =  H ]
Installer -> %SystemRoot%\Installer ->  [Folder | Modified Date = 6/24/2008 8:42:41 AM | Attr =  HS]
JAVA -> %SystemRoot%\JAVA ->  [Folder | Modified Date = 6/22/2008 9:41:11 PM | Attr =    ]
l2schemas -> %SystemRoot%\l2schemas ->  [Folder | Modified Date = 6/23/2008 4:31:55 PM | Attr =    ]
Media -> %SystemRoot%\Media ->  [Folder | Modified Date = 6/22/2008 6:32:33 PM | Attr =    ]
MF_C420.lfa -> %SystemRoot%\MF_C420.lfa ->  [Ver =  | Size = 3120 bytes | Modified Date = 10/23/2435 7:06:24 PM | Attr =    ]
MF_C421.lfa -> %SystemRoot%\MF_C421.lfa ->  [Ver =  | Size = 3120 bytes | Modified Date = 10/23/2435 7:06:24 PM | Attr =    ]
MSAGENT -> %SystemRoot%\MSAGENT ->  [Folder | Modified Date = 6/23/2008 4:18:16 PM | Attr =    ]
msoffice.ini -> %SystemRoot%\msoffice.ini ->  [Ver =  | Size = 2 bytes | Modified Date = 6/18/2008 11:02:24 AM | Attr =    ]
MUI -> %SystemRoot%\MUI ->  [Folder | Modified Date = 6/23/2008 4:18:23 PM | Attr =    ]
network diagnostic -> %SystemRoot%\network diagnostic ->  [Folder | Modified Date = 6/23/2008 4:32:25 PM | Attr =    ]
peernet -> %SystemRoot%\peernet ->  [Folder | Modified Date = 6/23/2008 4:31:52 PM | Attr =    ]
Prefetch -> %SystemRoot%\Prefetch ->  [Folder | Modified Date = 6/27/2008 4:53:04 PM | Attr =    ]
QTFont.for -> %SystemRoot%\QTFont.for ->  [Ver =  | Size = 1409 bytes | Modified Date = 6/26/2008 5:38:34 PM | Attr =    ]
QTFont.qfn -> %SystemRoot%\QTFont.qfn ->  [Ver =  | Size = 54156 bytes | Modified Date = 6/27/2008 4:23:33 PM | Attr =  H ]
Registration -> %SystemRoot%\Registration ->  [Folder | Modified Date = 6/20/2008 2:53:14 PM | Attr =    ]
SECURITY -> %SystemRoot%\SECURITY ->  [Folder | Modified Date = 6/23/2008 5:06:58 PM | Attr =    ]
ServicePackFiles -> %SystemRoot%\ServicePackFiles ->  [Folder | Modified Date = 6/23/2008 4:32:48 PM | Attr =    ]
slrundll.exe -> %SystemRoot%\slrundll.exe -> Smart Link [Ver = 3.80.01MC15 | Size = 32866 bytes | Modified Date = 4/13/2008 8:12:35 PM | Attr =    ]
SRCHASST -> %SystemRoot%\SRCHASST ->  [Folder | Modified Date = 6/23/2008 4:18:12 PM | Attr =    ]
Sun -> %SystemRoot%\Sun ->  [Folder | Modified Date = 6/18/2008 4:28:26 PM | Attr =    ]
SYSTEM -> %SystemRoot%\SYSTEM ->  [Folder | Modified Date = 6/23/2008 4:16:08 PM | Attr =    ]
system.ini -> %SystemRoot%\system.ini ->  [Ver =  | Size = 291 bytes | Modified Date = 6/26/2008 5:38:42 PM | Attr =    ]
SYSTEM32 -> %SystemRoot%\SYSTEM32 ->  [Folder | Modified Date = 6/27/2008 4:50:05 PM | Attr =    ]
Tasks -> %SystemRoot%\Tasks ->  [Folder | Modified Date = 6/27/2008 9:39:33 AM | Attr =   S]
Temp -> %SystemRoot%\Temp ->  [Folder | Modified Date = 6/27/2008 4:29:05 PM | Attr =    ]
twain_32.dll -> %SystemRoot%\twain_32.dll -> Twain Working Group [Ver = 1,7,1,1 | Size = 50688 bytes | Modified Date = 4/13/2008 8:12:07 PM | Attr =    ]
WBEM -> %SystemRoot%\WBEM ->  [Folder | Modified Date = 6/22/2008 6:32:58 PM | Attr =    ]
WIN.INI -> %SystemRoot%\WIN.INI ->  [Ver =  | Size = 658 bytes | Modified Date = 6/23/2008 9:06:24 AM | Attr =    ]
WinInit.Ini -> %SystemRoot%\WinInit.Ini ->  [Ver =  | Size = 124 bytes | Modified Date = 6/18/2008 11:03:01 AM | Attr =    ]
WinSxS -> %SystemRoot%\WinSxS ->  [Folder | Modified Date = 6/23/2008 4:33:29 PM | Attr =    ]
WMSysPr9.prx -> %SystemRoot%\WMSysPr9.prx ->  [Ver =  | Size = 316640 bytes | Modified Date = 6/24/2008 3:13:19 AM | Attr =    ]
MP Scheduled Scan.job -> %SystemRoot%\tasks\MP Scheduled Scan.job ->  [Ver =  | Size = 330 bytes | Modified Date = 6/27/2008 9:39:34 AM | Attr =  H ]
SA.DAT -> %SystemRoot%\tasks\SA.DAT ->  [Ver =  | Size = 6 bytes | Modified Date = 6/27/2008 9:36:37 AM | Attr =  H ]
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\ -> C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader ->  [Folder | Modified Date = 8/3/2007 12:14:47 PM | Attr =    ]
qmgr0.dat -> C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat ->  [Ver =  | Size = 5493 bytes | Modified Date = 6/26/2008 2:22:36 AM | Attr =    ]
qmgr1.dat -> C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat ->  [Ver =  | Size = 4232 bytes | Modified Date = 6/26/2008 2:22:36 AM | Attr =    ]
C:\Documents and Settings\All Users\Application Data\Microsoft\Office\Data\ -> C:\Documents and Settings\All Users\Application Data\Microsoft\Office\Data ->  [Folder | Modified Date = 6/18/2003 9:48:38 AM | Attr =    ]
data.dat -> C:\Documents and Settings\All Users\Application Data\Microsoft\Office\Data\data.dat ->  [Ver =  | Size = 1538 bytes | Modified Date = 6/18/2003 9:57:21 AM | Attr =    ]
C:\Documents and Settings\admin\Local Settings\Temp\ -> C:\Documents and Settings\admin\Local Settings\Temp ->  [Folder | Modified Date = 6/27/2008 4:24:50 PM | Attr =    ]
SSUPDATE.EXE -> C:\Documents and Settings\admin\Local Settings\Temp\SSUPDATE.EXE -> SUPERAntiSpyware.com [Ver = 1, 0, 0, 1034 | Size = 158960 bytes | Modified Date = 6/24/2008 10:16:59 AM | Attr =    ]
C:\WINDOWS\Temp\ -> C:\WINDOWS\Temp ->  [Folder | Modified Date = 6/27/2008 4:52:57 PM | Attr =    ]
Perflib_Perfdata_1d8.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_1d8.dat ->  [Ver =  | Size = 16384 bytes | Modified Date = 6/25/2008 4:46:16 PM | Attr =    ]
Perflib_Perfdata_1e8.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_1e8.dat ->  [Ver =  | Size = 16384 bytes | Modified Date = 6/27/2008 8:24:49 AM | Attr =    ]
Perflib_Perfdata_1ec.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_1ec.dat ->  [Ver =  | Size = 16384 bytes | Modified Date = 6/27/2008 9:36:57 AM | Attr =    ]
[Files Modified - Additional Folder Scans - Non-Microsoft Only]
AOL -> %AllUsersProfile%\Application Data\AOL ->  [Folder | Modified Date = 6/20/2008 2:28:16 PM | Attr =    ]
Lavasoft -> %AllUsersProfile%\Application Data\Lavasoft ->  [Folder | Modified Date = 6/19/2008 9:11:58 AM | Attr =    ]
Malwarebytes -> %AllUsersProfile%\Application Data\Malwarebytes ->  [Folder | Modified Date = 6/23/2008 9:08:52 AM | Attr =    ]
SUPERAntiSpyware.com -> %AllUsersProfile%\Application Data\SUPERAntiSpyware.com ->  [Folder | Modified Date = 6/23/2008 9:52:07 AM | Attr =    ]
Google -> %AppData%\Google ->  [Folder | Modified Date = 6/18/2008 2:49:53 PM | Attr =    ]
IBM -> %AppData%\IBM ->  [Folder | Modified Date = 6/18/2008 10:51:47 AM | Attr =    ]
Macromedia -> %AppData%\Macromedia ->  [Folder | Modified Date = 5/29/2008 7:48:07 AM | Attr =    ]
Malwarebytes -> %AppData%\Malwarebytes ->  [Folder | Modified Date = 6/23/2008 9:09:16 AM | Attr =    ]
Microsoft -> %AppData%\Microsoft ->  [Folder | Modified Date = 6/18/2008 11:26:46 AM | Attr =   S]
Sun -> %AppData%\Sun ->  [Folder | Modified Date = 6/18/2008 4:28:25 PM | Attr =    ]
SUPERAntiSpyware.com -> %AppData%\SUPERAntiSpyware.com ->  [Folder | Modified Date = 6/23/2008 9:50:04 AM | Attr =    ]
IconCache.db -> %UserProfile%\Local Settings\Application Data\IconCache.db ->  [Ver =  | Size = 4835058 bytes | Modified Date = 6/19/2008 4:30:55 PM | Attr =  H ]
Microsoft -> %UserProfile%\Local Settings\Application Data\Microsoft ->  [Folder | Modified Date = 6/22/2008 9:51:22 PM | Attr =    ]
DESKTOP.INI -> %UserProfile%\My Documents\DESKTOP.INI ->  [Ver =  | Size = 76 bytes | Modified Date = 6/24/2008 8:42:42 AM | Attr =  HS]
My Music -> %UserProfile%\My Documents\My Music ->  [Folder | Modified Date = 6/24/2008 8:42:42 AM | Attr = R  ]
My Pictures -> %UserProfile%\My Documents\My Pictures ->  [Folder | Modified Date = 6/24/2008 8:42:42 AM | Attr = R  ]
3500 printer assistant.lnk -> %AllUsersProfile%\Desktop\3500 printer assistant.lnk ->  [Ver =  | Size = 1897 bytes | Modified Date = 6/20/2008 1:53:49 PM | Attr =    ]
Ad-Aware.lnk -> %AllUsersProfile%\Desktop\Ad-Aware.lnk ->  [Ver =  | Size = 793 bytes | Modified Date = 6/19/2008 9:07:35 AM | Attr =    ]
Ad-Watch.lnk -> %AllUsersProfile%\Desktop\Ad-Watch.lnk ->  [Ver =  | Size = 793 bytes | Modified Date = 6/19/2008 9:07:35 AM | Attr =    ]
Cleanup.lnk -> %AllUsersProfile%\Desktop\Cleanup.lnk ->  [Ver =  | Size = 675 bytes | Modified Date = 6/16/2008 2:39:40 PM | Attr =    ]
HP Director.lnk -> %AllUsersProfile%\Desktop\HP Director.lnk ->  [Ver =  | Size = 851 bytes | Modified Date = 6/20/2008 2:13:10 PM | Attr =    ]
Malwarebytes' Anti-Malware.lnk -> %AllUsersProfile%\Desktop\Malwarebytes' Anti-Malware.lnk ->  [Ver =  | Size = 696 bytes | Modified Date = 6/23/2008 9:08:53 AM | Attr =    ]
SUPERAntiSpyware Free Edition.lnk -> %AllUsersProfile%\Desktop\SUPERAntiSpyware Free Edition.lnk ->  [Ver =  | Size = 780 bytes | Modified Date = 6/23/2008 9:50:37 AM | Attr =    ]
ComboFix.exe -> %UserProfile%\Desktop\ComboFix.exe ->  [Ver =  | Size = 2037114 bytes | Modified Date = 6/26/2008 5:18:32 PM | Attr =    ]
@Alternate Data Stream - 26 bytes -> %UserProfile%\Desktop\ComboFix.exe:Zone.Identifier
dss.exe -> %UserProfile%\Desktop\dss.exe ->  [Ver = 3, 2, 8, 1 | Size = 686630 bytes | Modified Date = 6/26/2008 4:08:29 PM | Attr =    ]
@Alternate Data Stream - 26 bytes -> %UserProfile%\Desktop\dss.exe:Zone.Identifier
HijackThis.lnk -> %UserProfile%\Desktop\HijackThis.lnk ->  [Ver =  | Size = 1734 bytes | Modified Date = 6/22/2008 9:47:40 PM | Attr =    ]
OTMoveIt2.exe -> %UserProfile%\Desktop\OTMoveIt2.exe -> OldTimer Tools [Ver = 1.0.4.2 | Size = 291328 bytes | Modified Date = 6/26/2008 5:06:57 PM | Attr =    ]
@Alternate Data Stream - 26 bytes -> %UserProfile%\Desktop\OTMoveIt2.exe:Zone.Identifier
OTScanIt -> %UserProfile%\Desktop\OTScanIt ->  [Folder | Modified Date = 6/27/2008 4:52:10 PM | Attr =    ]
OTScanIt.exe -> %UserProfile%\Desktop\OTScanIt.exe ->  [Ver =  | Size = 568544 bytes | Modified Date = 6/27/2008 4:51:56 PM | Attr =    ]
@Alternate Data Stream - 26 bytes -> %UserProfile%\Desktop\OTScanIt.exe:Zone.Identifier
State of Tennessee HOD SSL 2.url -> %UserProfile%\Desktop\State of Tennessee HOD SSL 2.url ->  [Ver =  | Size = 305 bytes | Modified Date = 6/22/2008 10:48:01 PM | Attr =    ]
Unused Desktop Shortcuts -> %UserProfile%\Desktop\Unused Desktop Shortcuts ->  [Folder | Modified Date = 6/16/2008 1:48:32 PM | Attr =    ]
aol -> %CommonProgramFiles%\aol ->  [Folder | Modified Date = 6/20/2008 2:29:18 PM | Attr =    ]
Download Manager -> %CommonProgramFiles%\Download Manager ->  [Folder | Modified Date = 6/23/2008 9:08:28 AM | Attr =    ]
Java -> %CommonProgramFiles%\Java ->  [Folder | Modified Date = 6/22/2008 10:31:14 PM | Attr =    ]
Symantec Shared -> %CommonProgramFiles%\Symantec Shared ->  [Folder | Modified Date = 6/6/2008 3:55:44 PM | Attr =    ]
System -> %CommonProgramFiles%\System ->  [Folder | Modified Date = 6/23/2008 4:17:35 PM | Attr =    ]
Wise Installation Wizard -> %CommonProgramFiles%\Wise Installation Wizard ->  [Folder | Modified Date = 6/23/2008 9:49:13 AM | Attr =    ]

[File - Purity Scan: Additional Folder Scans - Non-Microsoft Only]

< End of report >
[/code]