OTL logfile created on: 11/19/2009 10:11:03 PM - Run 2 OTL by OldTimer - Version 3.1.6.0 Folder = C:\ExtraFiles\Utilities\MalwareUtilities\OTL Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 7.0.5730.13) Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 2.00 Gb Total Physical Memory | 1.13 Gb Available Physical Memory | 56.54% Memory free 4.00 Gb Paging File | 3.97 Gb Available in Paging File | 99.20% Paging File free Paging file location(s): C:\pagefile.sys 3067 3067 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 138.78 Gb Total Space | 74.77 Gb Free Space | 53.87% Space Free | Partition Type: FAT32 Drive D: | 10.22 Gb Total Space | 8.15 Gb Free Space | 79.71% Space Free | Partition Type: FAT32 E: Drive not present or media not loaded F: Drive not present or media not loaded Drive G: | 149.05 Gb Total Space | 148.98 Gb Free Space | 99.95% Space Free | Partition Type: NTFS H: Drive not present or media not loaded Drive I: | 232.88 Gb Total Space | 199.18 Gb Free Space | 85.53% Space Free | Partition Type: NTFS Computer Name: ISINC Current User Name: Alfredo Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: On Skip Microsoft Files: On File Age = 14 Days Output = Standard Quick Scan [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2009/11/19 09:15:44 | 00,529,408 | ---- | M] (OldTimer Tools) -- C:\ExtraFiles\Utilities\MalwareUtilities\OTL\OTL.exe PRC - [2009/10/29 06:54:44 | 01,218,008 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee.com\Agent\mcagent.exe PRC - [2009/10/27 11:19:46 | 00,895,696 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MPF\MpfSrv.exe PRC - [2009/10/19 11:40:52 | 00,092,296 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe PRC - [2009/10/11 04:17:36 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2009/10/11 04:17:36 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe PRC - [2009/10/02 23:32:52 | 00,640,376 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe PRC - [2009/09/17 14:29:04 | 00,865,832 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MSC\mcmscsvc.exe PRC - [2009/09/17 14:29:04 | 00,865,832 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MSC\mcmscsvc.exe PRC - [2009/09/17 14:29:04 | 00,865,832 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MSC\mcmscsvc.exe PRC - [2009/09/16 10:22:08 | 00,144,704 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\VirusScan\Mcshield.exe PRC - [2009/08/27 00:18:44 | 00,634,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\iexplore.exe PRC - [2009/07/13 14:03:10 | 00,292,128 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.exe PRC - [2009/07/13 14:02:50 | 00,542,496 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe PRC - [2009/07/08 11:54:34 | 00,359,952 | ---- | M] (McAfee, Inc.) -- c:\Program Files\Common Files\McAfee\McProxy\McProxy.exe PRC - [2009/07/07 19:10:02 | 02,482,848 | ---- | M] (McAfee, Inc.) -- c:\Program Files\Common Files\McAfee\MNA\McNASvc.exe PRC - [2009/07/01 11:37:06 | 00,037,888 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe PRC - [2009/06/19 16:37:22 | 00,259,344 | ---- | M] (PC Tools) -- C:\Program Files\ThreatFire\TFTray.exe PRC - [2009/06/19 16:37:20 | 00,070,928 | ---- | M] (PC Tools) -- C:\Program Files\ThreatFire\TFService.exe PRC - [2009/06/05 11:48:14 | 00,144,712 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe PRC - [2009/05/19 11:36:18 | 00,240,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe PRC - [2008/12/29 16:17:30 | 00,189,696 | ---- | M] (Solid Documents, LLC) -- C:\WINDOWS\Installer\MSI68.tmp PRC - [2008/12/12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe PRC - [2008/11/04 13:30:38 | 01,627,424 | ---- | M] () -- C:\Program Files\Network World iDemand\Network World iDemand.exe PRC - [2008/10/28 16:42:30 | 00,156,968 | ---- | M] (Seagate Technology LLC) -- C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe PRC - [2008/10/28 16:42:12 | 00,181,544 | ---- | M] (Seagate LLC) -- C:\Program Files\Seagate\SeagateManager\FreeAgent Status\stxmenumgr.exe PRC - [2008/04/13 20:12:42 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe PRC - [2008/04/13 20:12:36 | 00,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\snmp.exe PRC - [2008/04/13 20:12:22 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\inetsrv\inetinfo.exe PRC - [2008/04/13 20:12:20 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2007/09/03 19:14:44 | 00,065,536 | ---- | M] () -- C:\Program Files\Brother\BRAdmin Professional 3\bratimer.exe PRC - [2007/03/09 11:09:58 | 00,063,712 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe PRC - [2007/01/04 17:38:20 | 00,112,336 | ---- | M] (Viewpoint Corporation) -- C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe PRC - [2007/01/04 17:38:10 | 00,024,652 | ---- | M] (Viewpoint Corporation) -- C:\Program Files\Viewpoint\Common\ViewpointService.exe PRC - [2006/11/03 18:20:12 | 00,866,584 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe PRC - [2006/11/03 18:19:58 | 00,013,592 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MsMpEng.exe PRC - [2006/10/18 20:05:26 | 00,204,288 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnscfg.exe PRC - [2006/10/18 20:05:24 | 00,913,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe PRC - [2006/02/21 20:39:16 | 00,405,504 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe PRC - [2006/02/21 20:39:16 | 00,405,504 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe PRC - [2006/01/02 16:41:22 | 00,045,056 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe PRC - [2006/01/02 16:41:22 | 00,045,056 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe PRC - [2006/01/02 16:41:22 | 00,045,056 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe PRC - [2005/07/13 19:38:38 | 01,378,304 | ---- | M] (AlfaSoft Research Labs) -- C:\Program Files\AlfaClock\AlfaClock.exe PRC - [2004/08/04 05:00:00 | 00,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\freecell.exe PRC - [2004/04/14 14:46:50 | 00,057,393 | ---- | M] (ScanSoft, Inc.) -- C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe PRC - [2003/12/01 07:00:00 | 00,036,864 | ---- | M] (Budy Setiawan Kusumah) -- C:\Program Files\BeClean\bca.exe PRC - [2003/08/11 10:28:42 | 00,045,056 | ---- | M] ( ) -- C:\WINDOWS\system32\slserv.exe PRC - [2003/06/20 02:25:00 | 00,322,120 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe PRC - [2003/03/19 17:43:00 | 00,065,536 | ---- | M] (Brother Industries, Ltd.) -- C:\WINDOWS\system32\Brmfrmps.exe PRC - [2002/09/20 15:50:10 | 00,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe PRC - [2002/08/29 12:00:00 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tcpsvcs.exe PRC - [2002/04/12 00:00:00 | 00,057,344 | ---- | M] (brother Industries Ltd) -- C:\WINDOWS\system32\BRSVC01A.EXE PRC - [2001/12/13 00:01:00 | 00,045,056 | ---- | M] (brother Industries Ltd) -- C:\WINDOWS\system32\BRSS01A.EXE PRC - [2001/09/10 15:03:56 | 00,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WFXSNT40.EXE PRC - [2001/08/17 21:36:38 | 00,032,256 | ---- | M] (Brother Industries, Ltd.) -- C:\WINDOWS\system32\BrmfRsmg.exe PRC - [2000/06/19 08:51:16 | 00,031,744 | ---- | M] () -- C:\Program Files\ScanSoft\TextBridge Pro 9.0\Bin\InstantAccess.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2009/11/19 09:15:44 | 00,529,408 | ---- | M] (OldTimer Tools) -- C:\ExtraFiles\Utilities\MalwareUtilities\OTL\OTL.exe MOD - [2009/06/19 16:37:26 | 00,398,608 | ---- | M] (PC Tools) -- C:\Program Files\ThreatFire\TFWAH.dll MOD - [2008/05/19 06:33:20 | 04,445,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msi.dll MOD - [2008/04/14 05:42:52 | 01,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll MOD - [2008/04/13 20:12:06 | 00,250,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\ime\sptip.dll MOD - [2008/04/13 20:12:00 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mslbui.dll MOD - [2008/04/13 20:11:54 | 00,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2008/04/13 12:43:18 | 00,062,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\ime\spgrmr.dll MOD - [2002/08/29 12:00:00 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\serwvdrv.dll MOD - [2002/08/29 12:00:00 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\umdmxfrm.dll MOD - [2001/02/07 02:17:02 | 00,364,607 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Ink\SKCHUI.DLL MOD - [2000/06/19 08:51:00 | 00,139,264 | ---- | M] () -- C:\Program Files\ScanSoft\TextBridge Pro 9.0\Bin\Tbmhook.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found -- -- (AresChatServer) SRV - [2009/10/27 11:19:46 | 00,895,696 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MPF\MPFSrv.exe -- (MpfService) SRV - [2009/10/19 11:40:52 | 00,092,296 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe -- (McAfee SiteAdvisor Service) SRV - [2009/10/11 04:17:36 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2009/09/17 14:29:04 | 00,865,832 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MSC\mcmscsvc.exe -- (mcmscsvc) SRV - [2009/09/16 11:23:32 | 00,365,072 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS) SRV - [2009/09/16 10:22:08 | 00,144,704 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\VirusScan\Mcshield.exe -- (McShield) SRV - [2009/09/16 09:28:38 | 00,606,736 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\VirusScan\mcsysmon.exe -- (McSysmon) SRV - [2009/07/13 14:02:50 | 00,542,496 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service) SRV - [2009/07/08 11:54:34 | 00,359,952 | ---- | M] (McAfee, Inc.) -- c:\Program Files\Common Files\McAfee\McProxy\McProxy.exe -- (McProxy) SRV - [2009/07/07 19:10:02 | 02,482,848 | ---- | M] (McAfee, Inc.) -- c:\Program Files\Common Files\McAfee\MNA\McNASvc.exe -- (McNASvc) SRV - [2009/07/03 15:20:34 | 00,133,104 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\GoogleUpdate.exe -- (gupdate) SRV - [2009/06/19 16:37:20 | 00,070,928 | ---- | M] (PC Tools) -- C:\Program Files\ThreatFire\TFService.exe -- (ThreatFire) SRV - [2009/06/05 11:48:14 | 00,144,712 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device) SRV - [2009/05/19 11:36:18 | 00,240,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort) SRV - [2009/02/06 18:08:58 | 00,533,360 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe -- (fsssvc) SRV - [2009/01/14 19:00:44 | 00,651,720 | ---- | M] (Macrovision Europe Ltd.) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2008/12/29 16:17:30 | 00,189,696 | ---- | M] (Solid Documents, LLC) -- C:\WINDOWS\Installer\MSI68.tmp -- (SCPDFReadSpool) SRV - [2008/12/12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service) SRV - [2008/10/28 16:42:30 | 00,156,968 | ---- | M] (Seagate Technology LLC) -- C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe -- (FreeAgentGoNext Service) SRV - [2008/07/29 21:10:04 | 00,046,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0) SRV - [2008/07/29 19:24:50 | 00,881,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc) SRV - [2008/07/29 19:16:38 | 00,132,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing) SRV - [2008/07/25 11:17:02 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2008/07/25 11:16:40 | 00,034,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state) SRV - [2008/07/15 17:19:12 | 00,138,168 | ---- | M] (Google) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc) SRV - [2008/04/13 20:12:36 | 00,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\snmp.exe -- (SNMP) SRV - [2008/04/13 20:12:22 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (W3SVC) SRV - [2008/04/13 20:12:22 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (SMTPSVC) SRV - [2008/04/13 20:12:22 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (MSFtpsvc) SRV - [2008/04/13 20:12:22 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (IISADMIN) SRV - [2008/04/13 20:12:02 | 00,105,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\p2pgasvc.dll -- (p2pgasvc) SRV - [2008/04/13 20:12:02 | 00,038,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll -- (helpsvc) SRV - [2008/04/13 20:11:48 | 00,100,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\6to4svc.dll -- (6to4) SRV - [2007/09/03 19:14:44 | 00,065,536 | ---- | M] () -- C:\Program Files\Brother\BRAdmin Professional 3\bratimer.exe -- (BRA_Scheduler) SRV - [2007/01/04 17:38:10 | 00,024,652 | ---- | M] (Viewpoint Corporation) -- C:\Program Files\Viewpoint\Common\ViewpointService.exe -- (Viewpoint Manager Service) SRV - [2006/11/03 18:19:58 | 00,013,592 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend) SRV - [2006/10/18 20:05:24 | 00,913,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\WMPNetwk.exe -- (WMPNetworkSvc) SRV - [2006/05/03 11:57:00 | 00,520,192 | ---- | M] () -- C:\WINDOWS\system32\ati2sgag.exe -- (ATI Smart) SRV - [2006/02/21 20:39:16 | 00,405,504 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe -- (Ati HotKey Poller) SRV - [2005/04/04 00:41:10 | 00,069,632 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT) SRV - [2003/08/11 10:28:42 | 00,045,056 | ---- | M] ( ) -- C:\WINDOWS\System32\slserv.exe -- (SLService) SRV - [2003/06/20 02:25:00 | 00,322,120 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe -- (MDM) SRV - [2003/03/19 17:43:00 | 00,065,536 | ---- | M] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\Brmfrmps.exe -- (brmfrmps) SRV - [2002/09/20 15:50:10 | 00,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default) SRV - [2002/08/29 12:00:00 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tcpsvcs.exe -- (SimpTcp) SRV - [2002/04/12 00:00:00 | 00,057,344 | ---- | M] (brother Industries Ltd) -- C:\WINDOWS\system32\BRSVC01A.EXE -- (Brother XP spl Service) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/ IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "http://en-us.start.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:en-US:official" FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}:6.0.03 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}:6.0.05 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}:6.0.07 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11 FF - prefs.js..extensions.enabledItems: {B7082FAA-CB62-4872-9106-E42DD88EDE45}:2.9 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.0 FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.10 FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009/02/18 09:59:40 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\Program Files\McAfee\SiteAdvisor [2009/05/14 21:36:20 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009/03/06 10:02:04 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2006/11/29 09:11:24 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2006/11/29 09:11:24 | 00,000,000 | ---D | M] [2009/06/05 15:32:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\Mozilla\Extensions [2009/06/05 15:32:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} [2009/06/06 22:20:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\Mozilla\Extensions\mozswing@mozswing.org [2006/11/29 09:11:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\Mozilla\Firefox\Profiles\dvdhor9x.default\extensions [2009/02/18 08:48:16 | 00,002,386 | ---- | M] () -- C:\Documents and Settings\Alfredo\Application Data\Mozilla\Firefox\Profiles\dvdhor9x.default\searchplugins\siteadvisor.xml [2006/11/29 09:11:24 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2009/06/05 15:32:22 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2008/01/15 14:41:50 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} [2008/03/15 17:09:12 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} [2008/07/15 17:16:50 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} [2008/12/15 16:48:14 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} [2009/06/09 20:10:52 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} [2009/08/04 21:20:48 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} [2009/11/07 16:01:20 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} [2009/04/24 00:38:32 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browserdirprovider.dll [2009/04/24 00:38:34 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\brwsrcmp.dll [2007/02/04 23:02:56 | 01,642,496 | ---- | M] (LizardTech) -- C:\Program Files\Mozilla Firefox\plugins\npdjvu.dll [2007/01/05 11:31:50 | 00,180,293 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npViewpoint.dll [2008/12/05 22:52:44 | 00,114,688 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np32dsw.dll [2009/10/11 04:17:28 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeploytk.dll [2009/04/24 00:38:34 | 00,065,528 | ---- | M] (mozilla.org) -- C:\Program Files\Mozilla Firefox\plugins\npnul32.dll [2009/06/17 09:45:42 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll [2009/06/17 09:45:42 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll [2009/06/17 09:45:42 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll [2009/06/17 09:45:42 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll [2009/06/17 09:45:42 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll [2009/06/17 09:45:42 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll [2009/06/17 09:45:42 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll [2009/06/17 09:45:42 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin8.dll [2009/02/27 13:13:42 | 00,103,792 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll [2009/04/23 20:39:08 | 00,001,394 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazondotcom.xml [2009/04/23 20:39:08 | 00,002,193 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\answers.xml [2009/04/23 20:39:08 | 00,001,534 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\creativecommons.xml [2009/04/23 20:39:08 | 00,002,343 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay.xml [2009/04/23 20:39:08 | 00,001,706 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.xml [2009/04/23 20:39:08 | 00,001,178 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia.xml [2009/04/23 20:39:08 | 00,000,792 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo.xml O1 HOSTS File: (770 bytes) - C:\WINDOWS\system32\drivers\etc\HOSTS O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: 144.183.32.121 emini.dcma.mil O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) O2 - BHO: () - {206E52E0-D52E-11D4-AD54-0000E86C26F6} - C:\Program Files\FreshDevices\FreshDownload\fdcatch.dll (FreshDevices Corp.) O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation) O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan\scriptsn.dll (McAfee, Inc.) O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll (Google Inc.) O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKLM\..\Toolbar: (Autodesk DWF) - {F03966D3-8EA0-47b4-BBE0-85BFE6CBC8AC} - C:\Program Files\Autodesk\Autodesk DWF Writer\DWF Addin\DWFIEAddin.dll (Autodesk, Inc.) O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKCU\..\Toolbar\WebBrowser: (Autodesk DWF) - {F03966D3-8EA0-47B4-BBE0-85BFE6CBC8AC} - C:\Program Files\Autodesk\Autodesk DWF Writer\DWF Addin\DWFIEAddin.dll (Autodesk, Inc.) O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe (Adobe Systems Inc.) O4 - HKLM..\Run: [Adobe Acrobat Speed Launcher] C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [Adobe Photo Downloader] C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe (Apple Inc.) O4 - HKLM..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\cli.exe (ATI Technologies Inc.) O4 - HKLM..\Run: [BeClean Agent] C:\Program Files\BeClean\bca.exe (Budy Setiawan Kusumah) O4 - HKLM..\Run: [BeClean Start-Up Clean] C:\Program Files\BeClean\BeClean.exe (Budy Setiawan Kusumah) O4 - HKLM..\Run: [ControlCenter2.0] C:\Program Files\Brother\ControlCenter2\brctrcen.exe (Brother Industries, Ltd.) O4 - HKLM..\Run: [IndexSearch] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe (ScanSoft, Inc.) O4 - HKLM..\Run: [InstantAccess] C:\Program Files\ScanSoft\TextBridge Pro 9.0\Bin\InstantAccess.exe () O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.) O4 - HKLM..\Run: [MaxMenuMgr] C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe (Seagate LLC) O4 - HKLM..\Run: [mcagent_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.) O4 - HKLM..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe (ScanSoft, Inc.) O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\qttask.exe (Apple Inc.) O4 - HKLM..\Run: [RegisterDropHandler] C:\Program Files\ScanSoft\TextBridge Pro 9.0\Bin\RegisterDropHandler.exe () O4 - HKLM..\Run: [SetDefPrt] C:\Program Files\Brother\Brmfl04e\BrStDvPt.exe (Brother Industories, Ltd.) O4 - HKLM..\Run: [SSBkgdUpdate] C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe (Scansoft, Inc.) O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.) O4 - HKLM..\Run: [ThreatFire] C:\Program Files\ThreatFire\TFTray.exe (PC Tools) O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe () O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - HKLM..\Run: [WinFaxAppPortStarter] C:\WINDOWS\System32\WFXSNT40.EXE (Microsoft Corporation) O4 - HKCU..\Run: [AlfaClock Classic] C:\Program Files\AlfaClock\AlfaClock.exe (AlfaSoft Research Labs) O4 - HKCU..\Run: [Network World iDemand] C:\Program Files\Network World iDemand\Network World iDemand.exe () O4 - HKCU..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\wmpnscfg.exe (Microsoft Corporation) O4 - HKCU..\RunOnce: [Shockwave Updater] C:\WINDOWS\System32\ADOBE\SHOCKW~1\SWHELP~2.EXE -Update -1103471 -Mozilla\4.0 ( File not found O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.) O8 - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Append to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : PDF Download - Options - {AD9E6088-E00B-42f9-9F0C-8480525D234E} - Reg Error: Key error. File not found O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe (Microsoft Corporation) O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O15 - HKCU\..Trusted Domains: army.mil ([www.cce-e] http in Trusted sites) O15 - HKCU\..Trusted Domains: dcma.mil ([]https in Trusted sites) O15 - HKCU\..Trusted Domains: fbo.gov ([www] https in Trusted sites) O15 - HKCU\..Trusted Domains: 27 domain(s) and sub-domain(s) not assigned to a zone. O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.microsoft.com/templates/ieawsdc.cab (Microsoft Office Template and Media Control) O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/e/7/3/e7345c16-80aa-4488-ae10-9ac6be844f99/OGAControl.cab (Office Genuine Advantage Validation Tool) O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} https://support.microsoft.com/OAS/ActiveX/MSDcode.cab (Microsoft Data Collection Control) O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} http://www.pcpitstop.com/betapit/PCPitStop.CAB (PCPitstop Utility) O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/3/9/8/398422c0-8d3e-40e1-a617-af65a72a0465/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool) O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase5483.cab (Windows Live Safety Center Base Module) O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1158869100796 (MUWebControl Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.) O16 - DPF: {9732FB42-C321-11D1-836F-00A0C993F125} http://www.pcpitstop.com/mhLbl.cab (mhLabel Class) O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab56649.cab (MSN Games - Installer) O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} http://ax.emsisoft.com/asquared.cab (a-squared Scanner) O16 - DPF: {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_02-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_04-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_09-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 216.181.31.11 O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp - No CLSID value found O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp - No CLSID value found O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation) O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Common Files\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation) O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O24 - Desktop Components:0 (My Current Home Page) - About:Home O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation) O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation) O31 - SafeBoot: AlternateShell - cmd.exe O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2004/08/27 15:51:48 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ FAT32 ] O32 - AutoRun File - [2008/10/28 15:29:30 | 00,000,146 | ---- | M] () - I:\autorun.inf -- [ NTFS ] O33 - MountPoints2\{0e9c1d04-cb98-11dd-88b3-00111158c803}\Shell\AutoRun\command - "" = I:\.\EncryptionTool\MaxtorEncryption.exe -- [2008/10/28 15:41:44 | 00,132,392 | ---- | M] () O34 - HKLM BootExecute: (autocheck) - File not found O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation) O34 - HKLM BootExecute: (*) - File not found O35 - comfile [open] -- "%1" %* File not found O35 - exefile [open] -- "%1" %* File not found NetSvcs: 6to4 - C:\WINDOWS\system32\6to4svc.dll (Microsoft Corporation) NetSvcs: Ias - C:\WINDOWS\system32\ias [2004/08/27 15:41:34 | 00,000,000 | ---D | M] NetSvcs: Iprip - C:\WINDOWS\system32\iprip.dll (Microsoft Corporation) NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found NetSvcs: helpsvc - C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll (Microsoft Corporation) CREATERESTOREPOINT Restore point Set: OTL Restore Point (63335430287785984) [color=#E56717]========== Files/Folders - Created Within 14 Days ==========[/color] [2009/11/19 20:30:18 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\Alfredo\Recent [2009/11/19 17:53:40 | 00,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2009/11/19 16:40:25 | 00,000,000 | ---D | C] -- C:\WINDOWS\SDOld [2009/11/19 12:58:28 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Alfredo\Application Data\ImgBurn [2009/11/19 12:49:02 | 00,000,000 | ---D | C] -- C:\Program Files\ImgBurn [2009/11/16 21:12:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Alfredo\My Documents\Autostich [2009/11/15 21:04:04 | 00,116,224 | ---- | C] (Xerox) -- C:\WINDOWS\System32\dllcache\xrxwiadr.dll [2009/11/15 21:04:03 | 00,023,040 | ---- | C] (Xerox Corporation) -- C:\WINDOWS\System32\dllcache\xrxwbtmp.dll [2009/11/15 21:03:46 | 00,099,865 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\xlog.exe [2009/11/15 21:03:45 | 00,016,970 | ---- | C] (US Robotics MCD (Megahertz)) -- C:\WINDOWS\System32\dllcache\xem336n5.sys [2009/11/15 21:03:19 | 00,154,624 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\wlluc48.sys [2009/11/15 21:03:18 | 00,034,890 | ---- | C] (Raytheon Corp.) -- C:\WINDOWS\System32\dllcache\wlandrv2.sys [2009/11/15 21:03:11 | 00,771,581 | ---- | C] (Rockwell) -- C:\WINDOWS\System32\dllcache\winacisa.sys [2009/11/15 21:03:03 | 00,035,871 | ---- | C] (Winbond Electronics Corp.) -- C:\WINDOWS\System32\dllcache\wbfirdma.sys [2009/11/15 21:02:53 | 00,019,016 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w926nd.sys [2009/11/15 21:02:53 | 00,016,925 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w940nd.sys [2009/11/15 21:02:52 | 00,019,528 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w840nd.sys [2009/11/15 21:02:50 | 00,064,605 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vvoice.sys [2009/11/15 21:02:48 | 00,397,502 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vpctcom.sys [2009/11/15 21:02:46 | 00,604,253 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\vmodem.sys [2009/11/15 21:02:46 | 00,249,402 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\vinwm.sys [2009/11/15 21:02:40 | 00,765,884 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usrti.sys [2009/11/15 21:02:37 | 00,794,399 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806v.sys [2009/11/15 21:02:36 | 00,793,598 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806.sys [2009/11/15 21:02:35 | 00,794,654 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1801.sys [2009/11/15 21:02:29 | 00,032,384 | ---- | C] (KLSI USA, Inc.) -- C:\WINDOWS\System32\dllcache\usb101et.sys [2009/11/15 21:02:24 | 00,050,688 | ---- | C] (UMAX DATA SYSTEMS INC.) -- C:\WINDOWS\System32\dllcache\umaxscan.dll [2009/11/15 21:02:22 | 00,211,968 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um54scan.dll [2009/11/15 21:02:21 | 00,216,064 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um34scan.dll [2009/11/15 21:02:15 | 00,525,568 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxp.dll [2009/11/15 21:02:15 | 00,166,784 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxpm.sys [2009/11/15 21:02:14 | 00,440,576 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkb.dll [2009/11/15 21:02:14 | 00,159,232 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkbm.sys [2009/11/15 21:02:13 | 00,315,520 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3d.dll [2009/11/15 21:02:13 | 00,222,336 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3dm.sys [2009/11/15 21:02:04 | 00,123,995 | ---- | C] (Tiger Jet Network) -- C:\WINDOWS\System32\dllcache\tjisdn.sys [2009/11/15 21:02:02 | 00,138,528 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiulnt5.sys [2009/11/15 21:02:01 | 00,081,408 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiul50.dll [2009/11/15 21:02:00 | 00,149,376 | ---- | C] (M-Systems) -- C:\WINDOWS\System32\dllcache\tffsport.sys [2009/11/15 21:01:58 | 00,017,129 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdkcd31.sys [2009/11/15 21:01:57 | 00,037,961 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdk100b.sys [2009/11/15 21:01:52 | 00,172,768 | ---- | C] (Number Nine Visual Technology) -- C:\WINDOWS\System32\dllcache\t2r4disp.dll [2009/11/15 21:01:52 | 00,036,640 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\t2r4mini.sys [2009/11/15 21:01:42 | 00,155,648 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnprop.dll [2009/11/15 21:01:42 | 00,053,248 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlncoin.dll [2009/11/15 21:01:41 | 00,285,760 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnata.sys [2009/11/15 21:01:40 | 00,016,896 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\stcusb.sys [2009/11/15 21:01:37 | 00,048,736 | ---- | C] (3Com) -- C:\WINDOWS\System32\dllcache\srwlnd5.sys [2009/11/15 21:01:21 | 00,058,368 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smiminib.sys [2009/11/15 21:01:20 | 00,147,200 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smidispb.dll [2009/11/15 21:01:19 | 00,035,913 | ---- | C] (SMC) -- C:\WINDOWS\System32\dllcache\smcirda.sys [2009/11/15 21:01:19 | 00,025,034 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smcpwr2n.sys [2009/11/15 21:01:18 | 00,024,576 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smc8000n.sys [2009/11/15 21:01:02 | 00,091,294 | ---- | C] (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) -- C:\WINDOWS\System32\dllcache\skfpwin.sys [2009/11/15 21:01:02 | 00,063,547 | ---- | C] (Symbol Technologies) -- C:\WINDOWS\System32\dllcache\sla30nd5.sys [2009/11/15 21:01:01 | 00,094,698 | ---- | C] (SysKonnect GmbH.) -- C:\WINDOWS\System32\dllcache\sk98xwin.sys [2009/11/15 21:00:59 | 00,032,768 | ---- | C] (SiS Corporation) -- C:\WINDOWS\System32\dllcache\sisnic.sys [2009/11/15 21:00:49 | 00,161,568 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmusb.sys [2009/11/15 21:00:48 | 00,098,080 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiulnt5.sys [2009/11/15 21:00:48 | 00,018,400 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmld.sys [2009/11/15 21:00:47 | 00,386,560 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiul50.dll [2009/11/15 21:00:38 | 00,017,280 | ---- | C] (SCM Microsystems) -- C:\WINDOWS\System32\dllcache\scr111.sys [2009/11/15 21:00:36 | 00,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmusbm.sys [2009/11/15 21:00:36 | 00,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmn50m.sys [2009/11/15 21:00:31 | 00,077,824 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4m.sys [2009/11/15 21:00:30 | 00,198,400 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4.dll [2009/11/15 21:00:30 | 00,061,504 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3dm.sys [2009/11/15 21:00:29 | 00,210,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mvirge.dll [2009/11/15 21:00:29 | 00,179,264 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3d.dll [2009/11/15 21:00:28 | 00,062,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mtrio.dll [2009/11/15 21:00:28 | 00,041,216 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.sys [2009/11/15 21:00:27 | 00,182,272 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.dll [2009/11/15 21:00:27 | 00,166,720 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3m.sys [2009/11/15 21:00:25 | 00,082,432 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia450.dll [2009/11/15 21:00:24 | 00,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia430.dll [2009/11/15 21:00:22 | 00,029,696 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw450ext.dll [2009/11/15 21:00:21 | 00,027,648 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw430ext.dll [2009/11/15 21:00:18 | 00,020,992 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\dllcache\rtl8139.sys [2009/11/15 21:00:17 | 00,019,017 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\dllcache\rtl8029.sys [2009/11/15 21:00:10 | 00,079,104 | ---- | C] (Comtrol Corporation) -- C:\WINDOWS\System32\dllcache\rocket.sys [2009/11/15 21:00:09 | 00,037,563 | ---- | C] (RadioLAN) -- C:\WINDOWS\System32\dllcache\rlnet5.sys [2009/11/15 21:00:08 | 00,086,097 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\reslog32.dll [2009/11/15 20:59:58 | 00,714,762 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdmkxx.sys [2009/11/15 20:59:57 | 00,899,146 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdkxga.sys [2009/11/15 20:59:50 | 00,130,942 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlv.sys [2009/11/15 20:59:49 | 00,128,286 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserli.sys [2009/11/15 20:59:49 | 00,112,574 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlp.sys [2009/11/15 20:59:44 | 00,016,128 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\pscr.sys [2009/11/15 20:59:23 | 00,169,984 | ---- | C] (Cisco Systems) -- C:\WINDOWS\System32\dllcache\pcx500.sys [2009/11/15 20:59:22 | 00,086,016 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\pctspk.exe [2009/11/15 20:59:20 | 00,026,153 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pcmlm56.sys [2009/11/15 20:59:19 | 00,029,502 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\pca200e.sys [2009/11/15 20:59:18 | 00,030,495 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pc100nds.sys [2009/11/15 20:59:06 | 00,054,186 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otcsercb.sys [2009/11/15 20:59:06 | 00,043,689 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otceth5.sys [2009/11/15 20:59:05 | 00,054,528 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\opl3sax.sys [2009/11/15 20:59:05 | 00,027,209 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otc06x5.sys [2009/11/15 20:58:51 | 00,051,552 | ---- | C] (Kensington Technology Group) -- C:\WINDOWS\System32\dllcache\ntgrip.sys [2009/11/15 20:58:44 | 00,087,040 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm6wdm.sys [2009/11/15 20:58:43 | 00,126,080 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm5a2wdm.sys [2009/11/15 20:58:42 | 00,032,840 | ---- | C] (NETGEAR Corporation.) -- C:\WINDOWS\System32\dllcache\ngrpci.sys [2009/11/15 20:58:40 | 00,132,695 | ---- | C] (802.11b) -- C:\WINDOWS\System32\dllcache\netwlan5.sys [2009/11/15 20:58:35 | 00,060,480 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.dll [2009/11/15 20:58:35 | 00,039,264 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.sys [2009/11/15 20:58:30 | 00,091,488 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3disp.dll [2009/11/15 20:58:29 | 00,033,088 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.sys [2009/11/15 20:58:29 | 00,027,936 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3d.sys [2009/11/15 20:58:28 | 00,059,104 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.dll [2009/11/15 20:58:27 | 00,035,392 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.dll [2009/11/15 20:58:27 | 00,013,664 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.sys [2009/11/15 20:58:24 | 00,075,520 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxport.sys [2009/11/15 20:58:24 | 00,007,168 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxport.dll [2009/11/15 20:58:23 | 00,019,968 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxicfg.dll [2009/11/15 20:58:23 | 00,019,968 | ---- | C] (Macronix International Co., Ltd. ) -- C:\WINDOWS\System32\dllcache\mxnic.sys [2009/11/15 20:58:22 | 00,021,888 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxcard.sys [2009/11/15 20:58:21 | 00,103,296 | ---- | C] (Matrox Graphics Inc) -- C:\WINDOWS\System32\dllcache\mtxvideo.sys [2009/11/15 20:57:29 | 00,164,586 | ---- | C] (Madge Networks Ltd) -- C:\WINDOWS\System32\dllcache\mdgndis5.sys [2009/11/15 20:57:21 | 00,802,683 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\ltsm.sys [2009/11/15 20:57:21 | 00,797,500 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltsmt.sys [2009/11/15 20:57:19 | 00,420,992 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntt.sys [2009/11/15 20:57:18 | 00,606,684 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmnt.sys [2009/11/15 20:57:18 | 00,576,746 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntl.sys [2009/11/15 20:57:17 | 00,727,786 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ltck000c.sys [2009/11/15 20:57:13 | 00,070,730 | ---- | C] (Linksys Group, Inc.) -- C:\WINDOWS\System32\dllcache\lne100tx.sys [2009/11/15 20:57:12 | 00,025,065 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\lmndis3.sys [2009/11/15 20:57:12 | 00,020,573 | ---- | C] (The Linksts Group ) -- C:\WINDOWS\System32\dllcache\lne100.sys [2009/11/15 20:57:11 | 00,015,744 | ---- | C] (Litronic Industries) -- C:\WINDOWS\System32\dllcache\lit220p.sys [2009/11/15 20:57:08 | 00,026,442 | ---- | C] (SMSC) -- C:\WINDOWS\System32\dllcache\lanepic5.sys [2009/11/15 20:57:07 | 00,019,016 | ---- | C] (Kingston Technology Company ) -- C:\WINDOWS\System32\dllcache\ktc111.sys [2009/11/15 20:56:29 | 00,023,552 | ---- | C] (MKNet Corporation) -- C:\WINDOWS\System32\dllcache\irmk7.sys [2009/11/15 20:56:23 | 00,045,632 | ---- | C] (Interphase (R) Corporation a Windows (R) 2000 DDK Driver Provider) -- C:\WINDOWS\System32\dllcache\ip5515.sys [2009/11/15 20:55:57 | 00,372,824 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\iconf32.dll [2009/11/15 20:55:23 | 00,068,608 | ---- | C] (Avisioin) -- C:\WINDOWS\System32\dllcache\hpgt53tk.dll [2009/11/15 20:55:21 | 00,126,976 | ---- | C] (Hewlett Packard) -- C:\WINDOWS\System32\dllcache\hpgt34tk.dll [2009/11/15 20:55:09 | 00,028,288 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grserial.sys [2009/11/15 20:55:08 | 00,082,304 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grclass.sys [2009/11/15 20:55:08 | 00,017,408 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\gpr400.sys [2009/11/15 20:55:00 | 00,454,912 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fxusbase.sys [2009/11/15 20:54:48 | 00,455,296 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fusbbase.sys [2009/11/15 20:54:47 | 00,455,680 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fus2base.sys [2009/11/15 20:54:44 | 00,442,240 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpnpbase.sys [2009/11/15 20:54:44 | 00,441,728 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcmbase.sys [2009/11/15 20:54:43 | 00,444,416 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcibase.sys [2009/11/15 20:54:42 | 00,034,173 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\forehe.sys [2009/11/15 20:54:35 | 00,024,618 | ---- | C] (NETGEAR) -- C:\WINDOWS\System32\dllcache\fa410nd5.sys [2009/11/15 20:54:33 | 00,011,850 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xj.sys [2009/11/15 20:54:32 | 00,012,362 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xi.sys [2009/11/15 20:54:27 | 00,045,568 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunib.dll [2009/11/15 20:54:26 | 00,045,568 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuni.dll [2009/11/15 20:54:25 | 00,034,816 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimg.dll [2009/11/15 20:54:23 | 00,043,008 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucm.dll [2009/11/15 20:54:18 | 00,072,192 | ---- | C] (ESS Technology Inc.) -- C:\WINDOWS\System32\dllcache\es1969.sys [2009/11/15 20:53:53 | 00,334,208 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\ds1wdm.sys [2009/11/15 20:53:49 | 00,028,062 | ---- | C] (National Semiconductor Coproration) -- C:\WINDOWS\System32\dllcache\dp83820.sys [2009/11/15 20:53:41 | 00,029,696 | ---- | C] (CNet Technology, Inc. ) -- C:\WINDOWS\System32\dllcache\dm9pci5.sys [2009/11/15 20:53:40 | 00,026,698 | ---- | C] (D-Link Corporation) -- C:\WINDOWS\System32\dllcache\dlh5xnd5.sys [2009/11/15 20:53:39 | 00,952,007 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diwan.sys [2009/11/15 20:53:37 | 00,236,060 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\ditrace.exe [2009/11/15 20:53:36 | 00,038,985 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvsu.dll [2009/11/15 20:53:36 | 00,031,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvpp.dll [2009/11/15 20:53:35 | 00,006,729 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvci.dll [2009/11/15 20:53:34 | 00,091,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\dimaint.sys [2009/11/15 20:53:21 | 00,024,649 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650d.sys [2009/11/15 20:53:21 | 00,024,648 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650.sys [2009/11/15 20:53:18 | 00,020,928 | ---- | C] (Digital Networks, LLC) -- C:\WINDOWS\System32\dllcache\defpa.sys [2009/11/15 20:53:05 | 00,093,952 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcwdm.sys [2009/11/15 20:53:05 | 00,048,640 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwrwdm.sys [2009/11/15 20:53:04 | 00,111,872 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcspud.sys [2009/11/15 20:53:04 | 00,003,584 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcosnt5.sys [2009/11/15 20:53:03 | 00,072,832 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbwdm.sys [2009/11/15 20:53:02 | 00,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbmidi.sys [2009/11/15 20:53:02 | 00,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbase.sys [2009/11/15 20:53:00 | 00,249,856 | ---- | C] (Comtrol® Corporation) -- C:\WINDOWS\System32\dllcache\ctmasetp.dll [2009/11/15 20:52:56 | 00,216,064 | ---- | C] (COMPAQ Inc.) -- C:\WINDOWS\System32\dllcache\cpscan.dll [2009/11/15 20:52:54 | 00,060,970 | ---- | C] (Compaq Computer Corp.) -- C:\WINDOWS\System32\dllcache\cpqtrnd5.sys [2009/11/15 20:52:44 | 00,020,736 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\cmbp0wdm.sys [2009/11/15 20:52:34 | 00,980,034 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\cicap.sys [2009/11/15 20:52:25 | 00,049,182 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem56n5.sys [2009/11/15 20:52:24 | 00,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem33n5.sys [2009/11/15 20:52:24 | 00,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem28n5.sys [2009/11/15 20:52:23 | 00,027,164 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce3n5.sys [2009/11/15 20:52:23 | 00,021,530 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce2n5.sys [2009/11/15 20:52:20 | 00,714,698 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cbmdmkxx.sys [2009/11/15 20:52:19 | 00,046,108 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cben5.sys [2009/11/15 20:52:18 | 00,039,680 | ---- | C] (Silicom Ltd.) -- C:\WINDOWS\System32\dllcache\cb325.sys [2009/11/15 20:52:18 | 00,037,916 | ---- | C] (Fast Ethernet Controller Provider) -- C:\WINDOWS\System32\dllcache\cb102.sys [2009/11/15 20:52:17 | 00,032,256 | ---- | C] (Eicon Technology Corporation) -- C:\WINDOWS\System32\dllcache\diapi2NT.dll [2009/11/15 20:52:16 | 00,164,923 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diapi2.sys [2009/11/15 20:51:35 | 00,031,529 | ---- | C] (BreezeCOM) -- C:\WINDOWS\System32\dllcache\brzwlan.sys [2009/11/15 20:51:34 | 00,039,552 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparwdm.sys [2009/11/15 20:51:33 | 00,003,168 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparimg.sys [2009/11/15 20:51:31 | 00,012,160 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltlo.sys [2009/11/15 20:51:31 | 00,003,968 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltup.sys [2009/11/15 20:50:33 | 00,871,388 | ---- | C] (BCM) -- C:\WINDOWS\System32\dllcache\bcmdm.sys [2009/11/15 20:50:29 | 00,036,128 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.sys [2009/11/15 20:50:28 | 00,342,336 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.dll [2009/11/15 20:50:27 | 00,089,952 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\b1cbase.sys [2009/11/15 20:50:27 | 00,036,992 | ---- | C] (Aztech Systems Ltd) -- C:\WINDOWS\System32\dllcache\aztw2320.sys [2009/11/15 20:50:26 | 00,037,568 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmwan.sys [2009/11/15 20:50:25 | 00,144,384 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmenum.dll [2009/11/15 20:50:25 | 00,087,552 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmcoxp.dll [2009/11/15 20:50:03 | 00,077,568 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\dllcache\ati.sys [2009/11/15 20:50:01 | 00,097,354 | ---- | C] (Bay Networks, Inc.) -- C:\WINDOWS\System32\dllcache\aspndis3.sys [2009/11/15 20:49:57 | 00,016,969 | ---- | C] (AmbiCom, Inc.) -- C:\WINDOWS\System32\dllcache\amb8002.sys [2009/11/15 20:49:47 | 00,046,112 | ---- | C] (Adaptec, Inc ) -- C:\WINDOWS\System32\dllcache\adptsf50.sys [2009/11/15 20:49:46 | 00,010,880 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\admjoy.sys [2009/11/15 20:49:45 | 00,747,392 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8830.sys [2009/11/15 20:49:45 | 00,553,984 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8820.sys [2009/11/15 20:49:44 | 00,584,448 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8810.sys [2009/11/15 20:49:43 | 00,020,160 | ---- | C] (ADMtek Incorporated) -- C:\WINDOWS\System32\dllcache\adm8511.sys [2009/11/15 20:49:41 | 00,061,440 | ---- | C] (Color Flatbed Scanner) -- C:\WINDOWS\System32\dllcache\acerscad.dll [2009/11/15 20:49:40 | 00,297,728 | ---- | C] (Silicon Integrated Systems Corp.) -- C:\WINDOWS\System32\dllcache\ac97sis.sys [2009/11/15 20:49:37 | 00,462,848 | ---- | C] (Aureal Inc.) -- C:\WINDOWS\System32\dllcache\a3dapi.dll [2009/11/15 20:49:34 | 00,148,352 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvsm.sys [2009/11/15 20:49:33 | 00,762,780 | ---- | C] (3Com, Inc.) -- C:\WINDOWS\System32\dllcache\3cwmcru.sys [2009/11/15 20:49:33 | 00,689,216 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvs.dll [2009/11/13 22:07:22 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Alfredo\Application Data\FrmMain [2009/11/13 21:57:12 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Sys [2009/11/13 21:56:58 | 00,000,000 | ---D | C] -- C:\Program Files\Pos Panorama Pro [2009/11/13 21:56:58 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Thraex Software [2009/11/13 20:35:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Alfredo\Application Data\gtk-2.0 [2009/11/13 20:33:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Alfredo\.thumbnails [2009/11/13 20:27:22 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Alfredo\.gimp-2.7 [2009/11/13 20:27:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Alfredo\My Documents\gegl-0.0 [2009/11/13 20:25:48 | 00,000,000 | ---D | C] -- C:\Program Files\GIMP-2.7 [2009/11/12 22:50:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Alfredo\Local Settings\Application Data\ATI [2009/11/12 22:50:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Alfredo\Application Data\ATI [2009/11/12 22:21:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Alfredo\Application Data\Blitware [2009/11/12 08:06:40 | 00,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2005/06/15 14:31:07 | 00,015,000 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\winddx.sys [1980/01/01 00:00:00 | 01,301,776 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\mtlstrm.sys [1980/01/01 00:00:00 | 00,548,888 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\slntamr.sys [1980/01/01 00:00:00 | 00,221,848 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys [1980/01/01 00:00:00 | 00,167,352 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys [1980/01/01 00:00:00 | 00,086,872 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\slnthal.sys [color=#E56717]========== Files - Modified Within 14 Days ==========[/color] [2009/11/19 22:15:24 | 00,000,426 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{64C13EED-5B83-4853-A4B9-4082C0683304}.job [2009/11/19 21:52:02 | 00,000,888 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2009/11/19 21:45:34 | 00,025,609 | ---- | M] () -- C:\WINDOWS\System32\Config.MPF [2009/11/19 21:45:00 | 00,001,180 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2009/11/19 21:44:28 | 00,000,330 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job [2009/11/19 21:42:02 | 00,002,317 | ---- | M] () -- C:\WINDOWS\BrmfBidi.ini [2009/11/19 21:41:24 | 00,000,884 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2009/11/19 21:41:24 | 00,000,236 | ---- | M] () -- C:\WINDOWS\tasks\OGALogon.job [2009/11/19 21:41:22 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2009/11/19 21:41:18 | 21,451,77600 | -HS- | M] () -- C:\hiberfil.sys [2009/11/19 21:41:18 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2009/11/19 21:30:56 | 14,417,920 | ---- | M] () -- C:\Documents and Settings\Alfredo\NTUSER.DAT [2009/11/19 21:30:56 | 00,000,278 | -HS- | M] () -- C:\Documents and Settings\Alfredo\ntuser.ini [2009/11/19 13:00:22 | 00,000,428 | ---- | M] () -- C:\WINDOWS\zipgenius.xml [2009/11/19 09:13:48 | 00,000,015 | ---- | M] () -- C:\Documents and Settings\Alfredo\Desktop\settings.dat [2009/11/18 11:33:34 | 00,126,272 | ---- | M] () -- C:\Documents and Settings\Alfredo\Application Data\GDIPFONTCACHEV1.DAT [2009/11/18 11:27:36 | 00,126,208 | ---- | M] () -- C:\Documents and Settings\Alfredo\Local Settings\Application Data\GDIPFONTCACHEV1.DAT [2009/11/18 11:27:16 | 00,454,064 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2009/11/18 11:13:08 | 00,000,376 | ---- | M] () -- C:\WINDOWS\ODBC.INI [2009/11/18 11:12:36 | 00,001,490 | ---- | M] () -- C:\WINDOWS\win.ini [2009/11/18 11:12:20 | 00,001,634 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk [2009/11/17 23:51:28 | 00,004,931 | ---- | M] () -- C:\Documents and Settings\Alfredo\.recently-used.xbel [2009/11/17 23:14:26 | 00,000,033 | ---- | M] () -- C:\WINDOWS\iltwain.ini [2009/11/15 22:55:24 | 00,000,344 | ---- | M] () -- C:\WINDOWS\tasks\McDefragTask.job [2009/11/13 21:57:16 | 00,120,027 | ---- | M] () -- C:\WINDOWS\Pos Panorama Pro Uninstaller.exe [2009/11/13 17:14:42 | 00,000,454 | ---- | M] () -- C:\WINDOWS\RPSLIGHT.INI [2009/11/12 22:21:44 | 00,000,456 | ---- | M] () -- C:\WINDOWS\tasks\Driver Robot.job [2009/11/07 16:42:42 | 00,608,866 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2009/11/07 16:42:42 | 00,518,612 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2009/11/07 16:42:42 | 00,098,080 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [color=#E56717]========== Files Created - No Company Name ==========[/color] [2009/11/19 09:09:00 | 00,000,015 | ---- | C] () -- C:\Documents and Settings\Alfredo\Desktop\settings.dat [2009/11/19 08:36:08 | 21,451,77600 | -HS- | C] () -- C:\hiberfil.sys [2009/11/17 23:51:26 | 00,004,931 | ---- | C] () -- C:\Documents and Settings\Alfredo\.recently-used.xbel [2009/11/15 21:04:03 | 00,018,944 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxscnui.dll [2009/11/15 21:04:02 | 00,027,648 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxftplt.exe [2009/11/15 20:59:46 | 00,033,280 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisrndr.ax [2009/11/15 20:59:44 | 00,363,520 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisdecd.dll [2009/11/15 20:57:54 | 00,056,832 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdvbnp.ax [2009/11/15 20:55:23 | 00,165,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt53.dll [2009/11/15 20:55:22 | 00,093,696 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt42.dll [2009/11/15 20:55:21 | 00,101,376 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt34.dll [2009/11/15 20:55:20 | 00,089,088 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt33.dll [2009/11/15 20:55:18 | 00,083,968 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt21.dll [2009/11/15 20:53:39 | 00,029,768 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divasu.dll [2009/11/15 20:53:38 | 00,037,962 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaprop.dll [2009/11/15 20:53:37 | 00,006,216 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaci.dll [2009/11/15 20:50:18 | 00,023,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atixbar.sys [2009/11/15 20:50:17 | 00,026,624 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativxbar.sys [2009/11/15 20:50:17 | 00,019,456 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativttxx.sys [2009/11/15 20:50:16 | 00,009,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativmdcd.sys [2009/11/15 20:50:15 | 00,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitvsnd.sys [2009/11/15 20:50:15 | 00,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitunep.sys [2009/11/15 20:50:14 | 00,049,920 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtcap.sys [2009/11/15 20:50:14 | 00,026,880 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtsnd.sys [2009/11/15 20:50:12 | 00,010,240 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atipcxxx.sys [2009/11/15 20:50:07 | 00,046,464 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atibt829.sys [2009/11/13 21:57:08 | 00,120,027 | ---- | C] () -- C:\WINDOWS\Pos Panorama Pro Uninstaller.exe [2009/11/12 22:38:06 | 00,520,192 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe [2009/11/12 22:21:42 | 00,000,456 | ---- | C] () -- C:\WINDOWS\tasks\Driver Robot.job [2009/10/07 11:36:02 | 00,009,398 | ---- | C] () -- C:\Documents and Settings\Alfredo\Application Data\Comma Separated Values (Windows).EML [2009/10/07 11:30:36 | 00,038,493 | ---- | C] () -- C:\Documents and Settings\Alfredo\Application Data\Microsoft Excel.ADR [2009/08/03 15:07:42 | 00,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll [2009/07/04 18:56:08 | 00,819,200 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2009/07/04 18:56:08 | 00,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2009/01/01 17:25:09 | 00,000,022 | ---- | C] () -- C:\WINDOWS\iexplore.ini [2008/11/27 14:32:14 | 00,000,664 | ---- | C] () -- C:\Documents and Settings\Alfredo\Local Settings\Application Data\FASTWiz.html [2008/11/27 13:39:05 | 00,000,074 | ---- | C] () -- C:\Documents and Settings\Alfredo\Local Settings\Application Data\FASTWiz.log [2008/10/26 11:03:54 | 00,000,783 | ---- | C] () -- C:\WINDOWS\NTIWVEDT.INI [2008/10/22 21:16:09 | 00,000,040 | ---- | C] () -- C:\WINDOWS\BO8440.ini [2008/05/22 14:51:32 | 00,021,248 | ---- | C] () -- C:\WINDOWS\System32\solidlocalmon.dll [2008/05/22 14:51:32 | 00,013,568 | ---- | C] () -- C:\WINDOWS\System32\solidlocalui.dll [2008/01/27 21:47:10 | 00,000,482 | ---- | C] () -- C:\Documents and Settings\Alfredo\Application Data\mainhst.zgh [2008/01/27 17:09:02 | 00,008,192 | ---- | C] () -- C:\WINDOWS\System32\DWFPortMon3.dll [2008/01/15 14:57:13 | 00,000,008 | ---- | C] () -- C:\Documents and Settings\Alfredo\Local Settings\Application Data\.mpid [2008/01/15 13:27:01 | 00,000,111 | ---- | C] () -- C:\WINDOWS\IMAGER32.INI [2007/10/02 16:51:18 | 00,000,048 | ---- | C] () -- C:\WINDOWS\scmate.ini [2007/09/27 10:51:02 | 00,020,698 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini [2007/09/27 10:48:48 | 00,030,628 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini [2007/09/27 10:48:28 | 00,031,698 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini [2006/11/20 15:19:48 | 00,034,176 | ---- | C] () -- C:\WINDOWS\System32\drivers\SRS_SSCFilter.sys [2006/11/20 15:19:44 | 00,044,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\Surroundhp_kern_i386.sys [2006/11/20 15:19:44 | 00,037,248 | ---- | C] () -- C:\WINDOWS\System32\drivers\csiidecoder_kern_i386.sys [2006/11/20 15:19:42 | 00,045,568 | ---- | C] () -- C:\WINDOWS\System32\drivers\tshd4_kern_i386.sys [2006/10/10 17:44:10 | 00,000,030 | ---- | C] () -- C:\WINDOWS\System32\brss01a.ini [2006/06/29 14:58:52 | 00,030,808 | ---- | C] () -- C:\WINDOWS\Fonts\GlobalUserInterface.CompositeFont [2006/06/29 14:53:56 | 00,026,489 | ---- | C] () -- C:\WINDOWS\Fonts\GlobalSansSerif.CompositeFont [2006/04/20 21:46:20 | 00,051,392 | ---- | C] () -- C:\WINDOWS\System32\drivers\atnt40k.sys [2006/04/18 15:39:28 | 00,029,779 | ---- | C] () -- C:\WINDOWS\Fonts\GlobalSerif.CompositeFont [2006/04/18 15:39:28 | 00,026,040 | ---- | C] () -- C:\WINDOWS\Fonts\GlobalMonospace.CompositeFont [2006/03/15 16:02:29 | 00,004,274 | ---- | C] () -- C:\WINDOWS\IFiltSet.Ini [2006/02/16 06:48:34 | 02,111,570 | -H-- | C] () -- C:\Documents and Settings\Alfredo\Local Settings\Application Data\IconCache.db [2006/01/12 20:45:08 | 00,001,965 | ---- | C] () -- C:\WINDOWS\CDPLAYER.INI [2006/01/12 19:52:08 | 00,001,759 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache [2005/12/26 20:13:28 | 00,000,000 | ---- | C] () -- C:\WINDOWS\Jcmkr32.INI [2005/09/23 07:52:14 | 00,207,872 | ---- | C] () -- C:\WINDOWS\System32\OneWay.dll [2005/08/16 14:37:10 | 00,000,286 | ---- | C] () -- C:\WINDOWS\ConverterCore.INI [2005/08/16 14:24:31 | 00,245,868 | ---- | C] () -- C:\WINDOWS\System32\DocSmartzHS.dll [2005/08/16 14:24:24 | 01,474,618 | ---- | C] () -- C:\WINDOWS\System32\DOCSMARTZ.dll [2005/07/21 21:07:23 | 00,000,067 | ---- | C] () -- C:\WINDOWS\StationRipper.INI [2005/06/15 14:31:07 | 00,225,280 | ---- | C] () -- C:\WINDOWS\System32\amr_cpl.dll [2005/06/15 14:31:07 | 00,151,552 | ---- | C] () -- C:\WINDOWS\System32\SLMOHServ.dll [2005/06/15 14:31:06 | 00,540,672 | ---- | C] () -- C:\WINDOWS\System32\SLLights.dll [2005/06/15 13:56:44 | 00,000,032 | ---- | C] () -- C:\WINDOWS\BrmfXCh1.ini [2005/06/14 17:53:56 | 00,000,051 | ---- | C] () -- C:\WINDOWS\brmx2001.ini [2005/06/14 17:53:56 | 00,000,040 | ---- | C] () -- C:\WINDOWS\opt_2460.ini [2005/06/14 17:23:31 | 00,002,317 | ---- | C] () -- C:\WINDOWS\BrmfBidi.ini [2005/06/14 17:19:07 | 00,001,585 | ---- | C] () -- C:\WINDOWS\Brpfx04a.ini [2005/06/14 17:19:07 | 00,000,410 | ---- | C] () -- C:\WINDOWS\brwmark.ini [2005/06/14 17:19:07 | 00,000,147 | ---- | C] () -- C:\WINDOWS\brpcfx.ini [2005/06/14 17:19:07 | 00,000,078 | ---- | C] () -- C:\WINDOWS\BRPP2KA.INI [2005/06/14 17:16:15 | 00,027,266 | ---- | C] () -- C:\WINDOWS\maxlink.ini [2005/05/10 19:54:04 | 00,077,824 | ---- | C] () -- C:\WINDOWS\System32\slmdmco.dll [2005/05/10 19:50:26 | 00,192,512 | ---- | C] () -- C:\WINDOWS\System32\slmdmgx.dll [2005/05/10 19:49:58 | 00,221,184 | ---- | C] () -- C:\WINDOWS\System32\slmdmsp.dll [2005/04/25 12:59:22 | 00,012,126 | ---- | C] () -- C:\WINDOWS\System32\Pixpcz.dll [2005/04/25 12:59:22 | 00,011,934 | ---- | C] () -- C:\WINDOWS\System32\Pixpnr.dll [2005/03/03 16:24:32 | 00,000,055 | ---- | C] () -- C:\WINDOWS\DC3TWAIN.INI [2005/03/03 16:20:21 | 00,000,454 | ---- | C] () -- C:\WINDOWS\RPSLIGHT.INI [2005/02/23 20:38:51 | 00,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll [2005/02/23 20:38:43 | 00,206,336 | ---- | C] () -- C:\WINDOWS\pcdlib32.dll [2005/02/18 21:08:59 | 00,000,130 | ---- | C] () -- C:\Documents and Settings\Alfredo\Local Settings\Application Data\fusioncache.dat [2005/02/09 17:44:08 | 00,000,000 | ---- | C] () -- C:\WINDOWS\WTNSETUP.INI [2005/02/09 17:31:59 | 00,000,378 | ---- | C] () -- C:\WINDOWS\WINFAX.INI [2005/02/09 09:51:24 | 00,000,033 | ---- | C] () -- C:\WINDOWS\iltwain.ini [2005/02/08 18:30:15 | 00,037,888 | ---- | C] () -- C:\WINDOWS\System32\DCCWFP32.DLL [2005/02/08 18:30:13 | 00,017,920 | ---- | C] () -- C:\WINDOWS\System32\IMPLODE.DLL [2005/02/08 14:01:40 | 00,000,024 | ---- | C] () -- C:\WINDOWS\ssnew01.ini [2005/02/02 13:00:23 | 00,000,265 | ---- | C] () -- C:\WINDOWS\phedit.ini [2005/01/31 14:13:24 | 00,126,272 | ---- | C] () -- C:\Documents and Settings\Alfredo\Application Data\GDIPFONTCACHEV1.DAT [2005/01/28 16:55:30 | 00,001,125 | ---- | C] () -- C:\WINDOWS\winamp.ini [2005/01/27 20:38:51 | 00,057,856 | ---- | C] () -- C:\Documents and Settings\Alfredo\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2005/01/20 22:50:54 | 00,000,000 | ---- | C] () -- C:\WINDOWS\PROTOCOL.INI [2005/01/20 21:36:17 | 00,000,073 | ---- | C] () -- C:\WINDOWS\PTMail.INI [2005/01/20 21:32:33 | 00,001,246 | ---- | C] () -- C:\Documents and Settings\Alfredo\Application Data\sshot.ini [2005/01/18 09:51:22 | 00,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2005/01/18 09:25:19 | 00,000,000 | ---- | C] () -- C:\WINDOWS\frontpg.ini [2005/01/18 09:24:39 | 00,021,791 | ---- | C] () -- C:\WINDOWS\System32\smtpctrs.ini [2005/01/18 09:24:39 | 00,001,037 | ---- | C] () -- C:\WINDOWS\System32\ntfsdrct.ini [2005/01/18 09:24:25 | 00,007,909 | ---- | C] () -- C:\WINDOWS\System32\ftpctrs.ini [2005/01/18 09:24:24 | 00,038,576 | ---- | C] () -- C:\WINDOWS\System32\w3ctrs.ini [2005/01/18 09:24:24 | 00,011,435 | ---- | C] () -- C:\WINDOWS\System32\infoctrs.ini [2005/01/18 09:24:24 | 00,010,225 | ---- | C] () -- C:\WINDOWS\System32\axperf.ini [2005/01/17 21:42:23 | 00,126,208 | ---- | C] () -- C:\Documents and Settings\Alfredo\Local Settings\Application Data\GDIPFONTCACHEV1.DAT [2005/01/17 19:11:46 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\Alfredo\Application Data\desktop.ini [2005/01/12 07:35:57 | 00,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini [2005/01/12 07:29:39 | 00,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIMPEG2.dll [2005/01/12 07:29:39 | 00,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTICDMK32.dll [2004/08/27 17:24:22 | 00,000,791 | ---- | C] () -- C:\WINDOWS\orun32.ini [2004/08/27 15:45:53 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\desktop.ini [2004/08/27 15:40:08 | 00,001,490 | ---- | C] () -- C:\WINDOWS\win.ini [2004/08/27 15:40:07 | 00,000,227 | ---- | C] () -- C:\WINDOWS\SYSTEM.INI [2004/04/14 12:56:36 | 00,061,440 | ---- | C] () -- C:\WINDOWS\System32\EZXSCSHook.dll [2003/08/26 17:00:52 | 00,139,264 | ---- | C] () -- C:\WINDOWS\System32\NaviDll.dll [2002/10/06 14:42:57 | 00,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll [2002/10/04 19:04:25 | 00,921,600 | ---- | C] () -- C:\WINDOWS\System32\vorbisenc.dll [2002/10/04 19:04:24 | 00,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll [2002/10/04 19:04:17 | 00,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll [2002/03/04 10:16:34 | 00,110,592 | R--- | C] () -- C:\WINDOWS\System32\Jpeg32.dll [2001/12/26 16:12:30 | 00,065,536 | R--- | C] () -- C:\WINDOWS\System32\multiplex_vcd.dll [2001/09/03 23:46:38 | 00,110,592 | R--- | C] () -- C:\WINDOWS\System32\Hmpg12.dll [2001/08/13 20:09:48 | 00,659,520 | ---- | C] () -- C:\WINDOWS\System32\vbid3lib.dll [2001/07/30 16:33:56 | 00,118,784 | R--- | C] () -- C:\WINDOWS\System32\HMPV2_ENC.dll [2001/07/23 22:04:36 | 00,118,784 | R--- | C] () -- C:\WINDOWS\System32\HMPV2_ENC_MMX.dll [1998/08/16 05:00:00 | 00,004,096 | ---- | C] () -- C:\WINDOWS\System32\sysres.dll [1980/01/01 00:00:00 | 00,196,608 | ---- | C] () -- C:\WINDOWS\System32\slextspk.dll [1980/01/01 00:00:00 | 00,163,840 | ---- | C] () -- C:\WINDOWS\System32\SLGen.dll [1980/01/01 00:00:00 | 00,049,152 | ---- | C] () -- C:\WINDOWS\System32\coinst.dll [1980/01/01 00:00:00 | 00,000,502 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI [color=#E56717]========== LOP Check ==========[/color] [2005/01/12 07:27:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ulead Systems [2005/01/20 20:50:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Broderbund LLC [2005/06/14 17:15:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ScanSoft [2005/12/05 12:24:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SolidDocuments [2006/10/16 09:19:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PopCap [2006/12/13 12:03:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SRS Labs [2007/01/11 21:24:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MumboJumbo [2007/01/22 19:12:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint [2007/10/05 20:03:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ACD Systems [2007/10/24 20:29:58 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DFX [2007/12/31 13:41:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\OrbNetworks [2008/01/27 17:03:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Autodesk [2008/10/05 22:23:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP [2008/10/29 12:39:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Caere [2008/10/29 19:26:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\2E2CE [2008/10/29 20:00:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\321A5 [2008/10/30 10:02:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\F29F [2008/10/30 10:21:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\D38A [2008/10/30 22:14:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\171E4 [2008/10/31 17:38:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\1333C [2008/10/31 20:26:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound [2008/11/01 20:50:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\1FAB [2008/11/02 22:02:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\E9C [2008/12/03 21:38:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Azureus [2008/12/16 12:49:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Seagate [2009/03/17 08:44:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3} [2009/05/14 20:18:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Citrix [2009/05/27 20:40:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906} [2009/06/04 11:31:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Applications [2005/01/20 21:40:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\Ulead Systems [2005/02/16 09:20:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\Leadertech [2005/02/24 18:39:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\Serif [2005/06/15 13:58:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\ScanSoft [2005/08/16 14:30:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\SolidDocuments [2005/09/09 20:02:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\ZipGenius [2006/08/01 10:05:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\Smart PC Solutions [2006/09/20 06:34:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\ContentGuard [2006/09/22 15:23:12 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\Windows Live Safety Center [2007/01/22 19:12:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\Viewpoint [2007/10/05 20:40:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\ACD Systems [2007/12/06 20:55:12 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\LimeWire [2007/12/20 13:54:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\Zoner [2008/01/14 14:06:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\iLike [2008/01/25 21:54:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\uTorrent [2008/01/25 22:18:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\iMesh [2008/01/27 16:49:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\Downloaded Installations [2008/01/27 17:03:46 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\Autodesk [2008/02/07 10:30:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\OfficeUpdate12 [2008/10/05 21:39:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\Uniblue [2008/10/05 22:47:12 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\GlarySoft [2008/10/31 20:26:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\NCH Swift Sound [2008/11/01 22:49:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\Shareaza [2008/11/04 13:30:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\Network World iDemand [2008/11/18 14:35:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 [2008/12/03 21:38:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\Azureus [2009/02/18 09:50:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\Windows Desktop Search [2009/02/18 10:09:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\Windows Search [2009/11/12 22:21:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\Blitware [2009/11/12 22:50:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\ATI [2009/11/13 20:36:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\gtk-2.0 [2009/11/13 22:07:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\FrmMain [2009/11/19 12:58:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Alfredo\Application Data\ImgBurn [2004/08/04 05:00:00 | 00,000,065 | RH-- | M] () -- C:\WINDOWS\Tasks\desktop.ini [2009/11/19 21:44:28 | 00,000,330 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job [2009/10/01 21:01:38 | 00,000,342 | ---- | M] () -- C:\WINDOWS\Tasks\McQcTask.job [2009/11/15 22:55:24 | 00,000,344 | ---- | M] () -- C:\WINDOWS\Tasks\McDefragTask.job [2009/11/19 22:15:24 | 00,000,426 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{64C13EED-5B83-4853-A4B9-4082C0683304}.job [2009/11/19 21:41:24 | 00,000,236 | ---- | M] () -- C:\WINDOWS\Tasks\OGALogon.job [2009/11/12 22:21:44 | 00,000,456 | ---- | M] () -- C:\WINDOWS\Tasks\Driver Robot.job [2009/11/19 21:41:22 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\Tasks\SA.DAT [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color] [2007/12/06 18:26:20 | 03,381,280 | ---- | M] (Lime Wire LLC) -- C:\StubInstaller.exe [color=#A23BEC]< %SYSTEMDRIVE%\eventlog.dll /s /md5 >[/color] [2004/08/04 04:56:44 | 00,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll [2008/04/13 20:11:54 | 00,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll [2008/04/13 20:11:54 | 00,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\system32\eventlog.dll [2008/04/13 20:11:54 | 00,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\system32\dllcache\eventlog.dll [color=#A23BEC]< %SYSTEMDRIVE%\scecli.dll /s /md5 >[/color] [2004/08/04 04:56:46 | 00,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll [2008/04/13 20:12:06 | 00,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll [2008/04/13 20:12:06 | 00,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\system32\scecli.dll [2008/04/13 20:12:06 | 00,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\system32\dllcache\scecli.dll [color=#A23BEC]< %SYSTEMDRIVE%\netlogon.dll /s /md5 >[/color] [2004/08/04 04:56:46 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll [2008/04/13 20:12:02 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll [2008/04/13 20:12:02 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\system32\netlogon.dll [2008/04/13 20:12:02 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\system32\dllcache\netlogon.dll [color=#A23BEC]< %SYSTEMDRIVE%\cngaudit.dll /s /md5 >[/color] [color=#A23BEC]< %SYSTEMDRIVE%\sceclt.dll /s /md5 >[/color] [color=#A23BEC]< %SYSTEMDRIVE%\ntelogon.dll /s /md5 >[/color] [color=#A23BEC]< %SYSTEMDRIVE%\logevent.dll /s /md5 >[/color] [color=#A23BEC]< %SYSTEMDRIVE%\iaStor.sys /s /md5 >[/color] [2004/03/23 09:13:58 | 00,467,200 | ---- | M] (Intel Corporation) MD5=F26BFD48B1C314E0F23BF77ACFA75940 -- C:\Drivers\iaStor.sys [2004/03/23 09:13:58 | 00,467,200 | ---- | M] (Intel Corporation) MD5=F26BFD48B1C314E0F23BF77ACFA75940 -- C:\WINDOWS\system32\drivers\iaStor.sys [color=#A23BEC]< %SYSTEMDRIVE%\nvstor.sys /s /md5 >[/color] [color=#A23BEC]< %SYSTEMDRIVE%\atapi.sys /s /md5 >[/color] [2004/08/04 02:59:44 | 00,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys [2008/04/13 14:40:30 | 00,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys [2008/04/13 14:40:30 | 00,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\dllcache\atapi.sys [2008/04/13 14:40:30 | 00,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys [color=#A23BEC]< %SYSTEMDRIVE%\IdeChnDr.sys /s /md5 >[/color] [color=#A23BEC]< %SYSTEMDRIVE%\viasraid.sys /s /md5 >[/color] [2003/10/31 08:22:38 | 00,077,312 | ---- | M] (VIA Technologies inc,.ltd) MD5=EBE101C01D80A42868F57B327BE1B564 -- C:\Drivers\Winxp\viasraid.sys [color=#A23BEC]< %SYSTEMDRIVE%\AGP440.sys /s /md5 >[/color] [2004/08/03 23:07:42 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\$NtServicePackUninstall$\agp440.sys [2008/04/13 14:36:38 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys [2008/04/13 14:36:38 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\dllcache\agp440.sys [2008/04/13 14:36:38 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys [color=#A23BEC]< %SYSTEMDRIVE%\vaxscsi.sys /s /md5 >[/color] [color=#A23BEC]< %SYSTEMDRIVE%\nvatabus.sys /s /md5 >[/color] < End of report >