...I used MBAM and removed Trojan Agent, also removed (sort of ) Google TB redirect with Gooredfix. Computer seems sluggish. There must be something else or some system damage that occurred. Any help would be much appreciated!I worked through the cleaning guide and am attaching the requested logs...Thanks again!
Malwarebytes' Anti-Malware 1.44
Database version: 3531
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
1/9/2010 10:45:39 PM
mbam-log-2010-01-09 (22-45-39).txt
Scan type: Quick Scan
Objects scanned: 106451
Time elapsed: 4 minute(s), 49 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
GMER 1.0.15.15281 - http://www.gmer.net
Rootkit scan 2010-01-10 12:36:12
Windows 5.1.2600 Service Pack 3
Running: gmer.exe; Driver: C:\DOCUME~1\MarkB\LOCALS~1\Temp\pxtdypow.sys
---- System - GMER 1.0.15 ----
SSDT 8A88E128 ZwAlertResumeThread
SSDT 8A88E200 ZwAlertThread
SSDT 8A8230C0 ZwAllocateVirtualMemory
SSDT 8A91CAE8 ZwConnectPort
SSDT 8A88DA78 ZwCreateMutant
SSDT 8A5AE0C0 ZwCreateThread
SSDT \??\C:\Program Files\Symantec\SYMEVENT.SYS (Symantec Event Library/Symantec Corporation) ZwDeleteValueKey [0x9D002CC0]
SSDT 8A9CDBD8 ZwFreeVirtualMemory
SSDT 8A88DCD8 ZwImpersonateAnonymousToken
SSDT 8A88E050 ZwImpersonateThread
SSDT 8A942A70 ZwMapViewOfSection
SSDT 8A88D9A0 ZwOpenEvent
SSDT 8AB03790 ZwOpenProcessToken
SSDT 8A9BA528 ZwOpenThreadToken
SSDT 8A890B20 ZwQueryValueKey
SSDT 8A8916A0 ZwResumeThread
SSDT 8A952C30 ZwSetContextThread
SSDT 8A9CDB68 ZwSetInformationProcess
SSDT 8A907330 ZwSetInformationThread
SSDT \??\C:\Program Files\Symantec\SYMEVENT.SYS (Symantec Event Library/Symantec Corporation) ZwSetValueKey [0x9D002F20]
SSDT 8A88D828 ZwSuspendProcess
SSDT 8A8CA268 ZwSuspendThread
SSDT 8A893528 ZwTerminateProcess
SSDT 8A8F3A90 ZwTerminateThread
SSDT 8A9CDBA0 ZwUnmapViewOfSection
SSDT 8A9730B8 ZwWriteVirtualMemory
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Ntfs \Ntfs SYMEVENT.SYS (Symantec Event Library/Symantec Corporation)
AttachedDevice \Driver\Tcpip \Device\Ip SYMTDI.SYS (Network Dispatch Driver/Symantec Corporation)
AttachedDevice \Driver\Tcpip \Device\Tcp SYMTDI.SYS (Network Dispatch Driver/Symantec Corporation)
AttachedDevice \Driver\Tcpip \Device\Udp SYMTDI.SYS (Network Dispatch Driver/Symantec Corporation)
AttachedDevice \Driver\Tcpip \Device\RawIp SYMTDI.SYS (Network Dispatch Driver/Symantec Corporation)
AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \FileSystem\Fastfat \Fat SYMEVENT.SYS (Symantec Event Library/Symantec Corporation)
---- Registry - GMER 1.0.15 ----
Reg HKLM\SOFTWARE\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32@cd042efbbd7f7af1647644e76e06692b 0xE2 0x63 0x26 0xF1 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32@bca643cdc5c2726b20d2ecedcc62c59b 0x46 0x47 0x15 0xB0 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32@2c81e34222e8052573023a60d06dd016 0x25 0xDA 0xEC 0x7E ...
Reg HKLM\SOFTWARE\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32@2582ae41fb52324423be06337561aa48 0x86 0x8C 0x21 0x01 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32@caaeda5fd7a9ed7697d9686d4b818472 0xCD 0x44 0xCD 0xB9 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32@a4a1bcf2cc2b8bc3716b74b2b4522f5d 0xDF 0x20 0x58 0x62 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32@4d370831d2c43cd13623e232fed27b7b 0x31 0x77 0xE1 0xBA ...
Reg HKLM\SOFTWARE\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32@1d68fe701cdea33e477eb204b76f993d 0x01 0x3A 0x48 0xFC ...
Reg HKLM\SOFTWARE\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32@1fac81b91d8e3c5aa4b0a51804d844a3 0x51 0xFA 0x6E 0x91 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32@f5f62a6129303efb32fbe080bb27835b 0xB1 0xCD 0x45 0x5A ...
Reg HKLM\SOFTWARE\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32@fd4e2e1a3940b94dceb5a6a021f2e3c6 0x2A 0xB7 0xCC 0xB5 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32@8a8aec57dd6508a385616fbc86791ec2 0x6C 0x43 0x2D 0x1E ...
---- EOF - GMER 1.0.15 ----
OTL logfile created on: 1/10/2010 1:18:40 PM - Run 1
OTL by OldTimer - Version 3.1.23.0 Folder = C:\Documents and Settings\MarkB\Desktop\Clean
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 76.00% Memory free
5.00 Gb Paging File | 4.00 Gb Available in Paging File | 89.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 30.27 Gb Total Space | 14.12 Gb Free Space | 46.65% Space Free | Partition Type: NTFS
Drive D: | 44.22 Gb Total Space | 15.61 Gb Free Space | 35.31% Space Free | Partition Type: NTFS
Drive E: | 74.50 Gb Total Space | 21.24 Gb Free Space | 28.51% Space Free | Partition Type: NTFS
Drive F: | 465.76 Gb Total Space | 410.83 Gb Free Space | 88.21% Space Free | Partition Type: NTFS
Drive G: | 158.19 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: MMB
Current User Name: MarkB
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan
========== Processes (SafeList) ==========
PRC - [2010/01/10 13:16:18 | 00,543,744 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\MarkB\Desktop\Clean\OTL.exe
PRC - [2009/12/15 11:24:48 | 00,293,376 | ---- | M] () -- C:\Documents and Settings\MarkB\Desktop\Clean\gmer.exe
PRC - [2009/11/12 16:33:10 | 00,141,600 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.exe
PRC - [2009/11/12 16:33:00 | 00,545,568 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe
PRC - [2009/10/11 04:17:36 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009/10/11 04:17:35 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2009/07/09 11:22:18 | 00,144,712 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2009/05/27 11:00:24 | 00,753,664 | ---- | M] (Apple Inc.) -- C:\Program Files\AirPort\APAgent.exe
PRC - [2009/05/07 16:06:54 | 00,380,928 | ---- | M] () -- F:\LeapFrog\LeapFrog Connect\Monitor.exe
PRC - [2009/05/07 15:50:24 | 01,089,536 | ---- | M] () -- F:\LeapFrog\LeapFrog Connect\CommandService.exe
PRC - [2008/12/12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2008/04/13 19:12:19 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007/05/17 16:45:33 | 00,271,720 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe
PRC - [2007/04/10 16:46:48 | 00,709,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\vVX3000.exe
PRC - [2007/03/11 20:34:40 | 00,049,152 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
PRC - [2007/02/05 14:52:12 | 00,849,280 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft IntelliPoint\ipoint.exe
PRC - [2006/11/21 16:08:58 | 00,813,912 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft IntelliType Pro\itype.exe
PRC - [2006/11/13 13:39:52 | 01,289,000 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\wcescomm.exe
PRC - [2006/11/13 13:39:34 | 00,199,464 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\rapimgr.exe
PRC - [2006/10/26 12:34:04 | 00,065,536 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Playskool\MADE FOR ME Software\HbDetect.exe
PRC - [2006/07/21 15:14:36 | 00,086,016 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SoundMan.exe
PRC - [2006/06/15 00:40:34 | 00,124,656 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec AntiVirus\VPTray.exe
PRC - [2006/06/15 00:40:24 | 01,805,552 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec AntiVirus\Rtvscan.exe
PRC - [2006/06/15 00:40:16 | 00,031,472 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec AntiVirus\DefWatch.exe
PRC - [2006/05/30 20:24:20 | 00,061,440 | ---- | M] (eMPIA Technology, Inc.) -- C:\WINDOWS\emMON.exe
PRC - [2006/05/04 15:26:36 | 02,808,832 | ---- | M] (RealTek Semicoductor Corp.) -- C:\WINDOWS\alcwzrd.exe
PRC - [2006/04/11 16:13:38 | 01,160,848 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
PRC - [2006/03/24 16:14:58 | 00,169,632 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
PRC - [2006/03/24 16:14:52 | 00,192,160 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
PRC - [2006/03/24 16:14:48 | 00,053,408 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccApp.exe
PRC - [2006/02/07 07:40:02 | 00,118,784 | R--- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxpers.exe
PRC - [2006/02/07 07:39:20 | 00,094,208 | R--- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxtray.exe
PRC - [2006/02/07 07:36:06 | 00,077,824 | R--- | M] (Intel Corporation) -- C:\WINDOWS\system32\hkcmd.exe
PRC - [2004/01/16 04:27:30 | 00,094,208 | ---- | M] (Lexmark International, Inc.) -- C:\Program Files\Lexmark 4200 Series\lxbmbmon.exe
PRC - [2004/01/16 04:04:08 | 00,057,344 | ---- | M] (Lexmark International, Inc.) -- C:\Program Files\Lexmark 4200 Series\lxbmbmgr.exe
PRC - [2004/01/13 17:00:02 | 00,311,296 | ---- | M] (Lexmark International, Inc.) -- C:\WINDOWS\system32\LEXBCES.EXE
PRC - [2004/01/13 16:55:52 | 00,174,592 | ---- | M] (Lexmark International, Inc.) -- C:\WINDOWS\system32\LEXPPS.EXE
PRC - [2003/08/21 10:47:42 | 00,049,152 | R--- | M] (General) -- C:\WINDOWS\system32\umonit.exe
PRC - [2001/08/09 01:01:00 | 00,090,112 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe
PRC - [1999/12/13 08:01:00 | 00,044,032 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\system32\CTSVCCDA.exe
========== Modules (SafeList) ==========
MOD - [2010/01/10 13:16:18 | 00,543,744 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\MarkB\Desktop\Clean\OTL.exe
========== Win32 Services (SafeList) ==========
SRV - [2009/11/12 16:33:00 | 00,545,568 | ---- | M] (Apple Inc.) [On_Demand | Running] -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service)
SRV - [2009/10/11 04:17:35 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2009/07/09 11:22:18 | 00,144,712 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2009/05/07 15:50:24 | 01,089,536 | ---- | M] () [Auto | Running] -- F:\LeapFrog\LeapFrog Connect\CommandService.exe -- (LeapFrog Connect Device Service)
SRV - [2008/12/12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service)
SRV - [2008/10/04 11:31:02 | 00,072,704 | ---- | M] (Adobe Systems) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service)
SRV - [2008/04/07 18:16:26 | 00,136,120 | ---- | M] (Google) [On_Demand | Stopped] -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc)
SRV - [2007/05/17 16:45:33 | 00,271,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe -- (MSCamSvc)
SRV - [2007/03/11 21:02:52 | 00,131,072 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll -- (hpqddsvc)
SRV - [2007/03/11 20:24:50 | 00,217,088 | ---- | M] (Hewlett-Packard Co.) [On_Demand | Running] -- C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll -- (hpqcxs08)
SRV - [2006/06/15 00:40:28 | 00,115,952 | ---- | M] (symantec) [On_Demand | Stopped] -- C:\Program Files\Symantec AntiVirus\SavRoam.exe -- (SavRoam)
SRV - [2006/06/15 00:40:24 | 01,805,552 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec AntiVirus\Rtvscan.exe -- (Symantec AntiVirus)
SRV - [2006/06/15 00:40:16 | 00,031,472 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec AntiVirus\DefWatch.exe -- (DefWatch)
SRV - [2006/04/11 16:13:38 | 01,160,848 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe -- (SPBBCSvc)
SRV - [2006/03/24 16:14:58 | 00,169,632 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe -- (ccSetMgr)
SRV - [2006/03/24 16:14:52 | 00,192,160 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe -- (ccEvtMgr)
SRV - [2006/02/23 10:41:02 | 02,045,632 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_0.EXE -- (LiveUpdate)
SRV - [2006/01/24 19:06:58 | 00,214,720 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe -- (SNDSrvc)
SRV - [2004/01/13 17:00:02 | 00,311,296 | ---- | M] (Lexmark International, Inc.) [Auto | Running] -- C:\WINDOWS\system32\LEXBCES.EXE -- (LexBceS)
SRV - [2001/08/09 01:01:00 | 00,090,112 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe -- (EPSONStatusAgent2)
SRV - [1999/12/13 08:01:00 | 00,044,032 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\WINDOWS\system32\CTSVCCDA.exe -- (Creative Service for CDROM Access)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityrespo...r/fix_homepage/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityrespo...r/fix_homepage/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 7B CD 71 01 A5 E7 62 4C 8F FE AB 7C 2C 89 C3 E7 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.yahoo.ca"
FF - prefs.js..extensions.enabledItems: {a7c6cf7f-112c-4500-a7ea-39801a327e5f}:1.0.4
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {F807FACD-E46A-4793-B345-D58CB177673C}:3.4.1
FF - prefs.js..extensions.enabledItems: {c45c406e-ab73-11d8-be73-000a95be3b12}:1.1.8
FF - prefs.js..network.proxy.no_proxies_on: "*.local"
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/01/08 11:53:36 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/01/08 11:53:36 | 00,000,000 | ---D | M]
[2009/01/21 17:44:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\MarkB\Application Data\Mozilla\Extensions
[2010/01/09 10:38:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\MarkB\Application Data\Mozilla\Firefox\Profiles\zwks82u5.default\extensions
[2009/06/02 07:04:39 | 00,000,000 | ---D | M] (FireFTP) -- C:\Documents and Settings\MarkB\Application Data\Mozilla\Firefox\Profiles\zwks82u5.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}
[2009/07/17 07:08:33 | 00,000,000 | ---D | M] (Web Developer) -- C:\Documents and Settings\MarkB\Application Data\Mozilla\Firefox\Profiles\zwks82u5.default\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}
[2009/07/17 07:08:33 | 00,000,000 | ---D | M] (ScribeFire) -- C:\Documents and Settings\MarkB\Application Data\Mozilla\Firefox\Profiles\zwks82u5.default\extensions\{F807FACD-E46A-4793-B345-D58CB177673C}
[2009/07/17 07:08:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\MarkB\Application Data\Mozilla\Firefox\Profiles\zwks82u5.default\extensions\[email protected]
[2009/09/25 22:25:00 | 00,002,164 | ---- | M] () -- C:\Documents and Settings\MarkB\Application Data\Mozilla\Firefox\Profiles\zwks82u5.default\searchplugins\bing.xml
[2010/01/05 11:00:26 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
O1 HOSTS File: (734 bytes) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AirPort Base Station Agent] C:\Program Files\AirPort\APAgent.exe (Apple Inc.)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [AlcWzrd] C:\WINDOWS\alcwzrd.exe (RealTek Semicoductor Corp.)
O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [emMON] C:\WINDOWS\emMON.exe (eMPIA Technology, Inc.)
O4 - HKLM..\Run: [High Definition Audio Property Page Shortcut] C:\WINDOWS\System32\HdAShCut.exe (Windows ® Server 2003 DDK provider)
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\hpwuSchd2.exe (Hewlett-Packard Co.)
O4 - HKLM..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe (Intel Corporation)
O4 - HKLM..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe (Intel Corporation)
O4 - HKLM..\Run: [IntelliPoint] C:\Program Files\Microsoft IntelliPoint\ipoint.exe (Microsoft Corporation)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [itype] C:\Program Files\Microsoft IntelliType Pro\itype.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Lexmark 4200 Series] C:\Program Files\Lexmark 4200 Series\lxbmbmgr.exe (Lexmark International, Inc.)
O4 - HKLM..\Run: [LifeCam] C:\Program Files\Microsoft LifeCam\LifeExp.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Monitor] F:\LeapFrog\LeapFrog Connect\Monitor.exe ()
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [PinnacleDriverCheck] C:\WINDOWS\System32\PSDrvCheck.exe ()
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [SkyTel] C:\WINDOWS\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SoundMan.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [UMonit] C:\WINDOWS\system32\umonit.exe (General)
O4 - HKLM..\Run: [vptray] C:\Program Files\Symantec AntiVirus\VPTray.exe (Symantec Corporation)
O4 - HKLM..\Run: [VX3000] C:\WINDOWS\vVX3000.exe (Microsoft Corporation)
O4 - HKCU..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\wcescomm.exe (Microsoft Corporation)
O4 - HKCU..\Run: [HbDetect.exe] C:\Program Files\Playskool\MADE FOR ME Software\HbDetect.exe (Creative Technology Ltd)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\EPSON Status Monitor 3 Environment Check 2.lnk = C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV02.EXE (SEIKO EPSON CORPORATION)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Logo Calibration Loader.lnk = C:\Program Files\GretagMacbeth\i1\Eye-One Match 3\CalibrationLoader\CalibrationLoader.exe (LOGO Kommunikations- und Drucktechnik GmbH & Co. KG)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ProfileReminder.lnk = C:\Program Files\GretagMacbeth\i1\Eye-One Match 3\ProfileReminder.exe (LOGO Kommunikations- und Drucktechnik GmbH & Co. KG)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.micros...b?1223086366953 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...t/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\NavLogon: DllName - C:\WINDOWS\system32\NavLogon.dll - C:\WINDOWS\system32\NavLogon.dll (Symantec Corporation)
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/10/02 12:14:03 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2002/12/12 10:42:04 | 00,000,000 | R--D | M] - G:\Autorun -- [ CDFS ]
O32 - AutoRun File - [2001/07/12 00:49:40 | 00,172,032 | R--- | M] () - G:\Autorun.exe -- [ CDFS ]
O32 - AutoRun File - [2001/07/12 00:50:26 | 00,000,054 | R--- | M] () - G:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{96d1bceb-9e40-11dd-86bd-0050bac63d8e}\Shell - "" = AutoRun
O33 - MountPoints2\{96d1bceb-9e40-11dd-86bd-0050bac63d8e}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{96d1bceb-9e40-11dd-86bd-0050bac63d8e}\Shell\AutoRun\command - "" = I:\LaunchU3.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2008/10/02 07:37:55 | 00,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: Wmi - C:\WINDOWS\system32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (52920800314916864)
========== Files/Folders - Created Within 14 Days ==========
[2010/01/09 22:38:20 | 00,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010/01/09 22:37:18 | 00,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2010/01/09 22:30:33 | 00,000,000 | ---D | C] -- C:\Documents and Settings\MarkB\Desktop\Clean
[2010/01/05 23:07:05 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\MarkB\Recent
[2010/01/03 20:50:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
[2010/01/03 20:50:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\MarkB\Application Data\SUPERAntiSpyware.com
[2010/01/03 20:50:29 | 00,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2010/01/03 19:59:54 | 00,000,000 | ---D | C] -- C:\Documents and Settings\MarkB\Application Data\Malwarebytes
[2010/01/03 19:59:46 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/01/03 19:59:44 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/01/03 19:59:44 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/01/03 19:59:44 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010/01/03 19:58:23 | 00,000,000 | ---D | C] -- C:\Documents and Settings\MarkB\Desktop\Virus
[2009/12/31 07:49:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2009/12/31 07:49:43 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2009/12/30 21:19:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\MarkB\Application Data\WinRAR
[2009/12/30 21:17:29 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1052605881
[2009/12/30 21:17:19 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\MarkB\Application Data\SystemProc
[2009/12/30 21:01:35 | 00,000,000 | ---D | C] -- D:\My Documents\LimeWire
[2009/12/30 07:47:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\MarkB\Desktop\CGard
[2009/12/30 07:26:54 | 00,000,000 | ---D | C] -- D:\My Documents\BusinessDocs
[2009/12/30 07:25:59 | 00,000,000 | ---D | C] -- D:\My Documents\LCBO docs
[2009/12/30 07:22:59 | 00,000,000 | ---D | C] -- D:\My Documents\RD350
[2009/12/28 21:22:21 | 00,000,000 | ---D | C] -- C:\Program Files\DivX
[2009/12/28 15:20:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\MarkB\Desktop\Pics to go through with Mark
[2009/12/28 15:19:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\MarkB\Desktop\MB work
[2009/12/28 00:01:31 | 00,458,112 | ---- | C] (Pinnacle Systems) -- C:\WINDOWS\System32\drivers\MarvinUsb.sys
[2009/12/27 23:45:23 | 00,294,912 | ---- | C] (Pegasus Imaging Corporation) -- C:\WINDOWS\System32\pvmjpg21.dll
[2009/12/27 23:45:23 | 00,081,920 | ---- | C] (Pinnacle Systems) -- C:\WINDOWS\System32\vdrmux.dll
[2009/12/27 23:45:23 | 00,046,592 | ---- | C] (Pinnacle Systems) -- C:\WINDOWS\System32\vdrcodec.dll
[2009/12/27 23:43:48 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SmartSound Software Inc
[2009/12/27 23:43:48 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Quicktime
[2009/12/27 23:43:47 | 00,000,000 | ---D | C] -- C:\Program Files\SmartSound Software
[2009/12/27 23:41:32 | 00,019,456 | ---- | C] (VoB Computersysteme GmbH) -- C:\WINDOWS\System32\asapi.dll
[2009/12/27 23:41:30 | 00,090,112 | ---- | C] (MindVision Software) -- C:\WINDOWS\unvise32.exe
[2009/12/27 23:39:06 | 00,061,440 | ---- | C] (Pinnacle Systems) -- C:\WINDOWS\System32\pclepim1.dll
[2009/12/27 23:39:05 | 00,049,152 | ---- | C] (Pinnacle Systems) -- C:\WINDOWS\System32\PCLEGetGuid.dll
[2009/12/27 23:34:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Pinnacle
[2009/12/27 23:34:36 | 00,000,000 | ---D | C] -- C:\Program Files\Pinnacle
[2009/12/27 16:02:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\MarkB\Local Settings\Application Data\WMTools Downloaded Files
[2009/01/22 20:34:45 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2008/12/13 19:35:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Apple
[2008/11/05 22:53:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Google
[2008/10/02 12:16:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
========== Files - Modified Within 14 Days ==========
[2010/01/10 09:57:47 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/01/10 09:57:41 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/01/10 09:56:40 | 05,505,024 | -H-- | M] () -- C:\Documents and Settings\MarkB\NTUSER.DAT
[2010/01/10 09:56:40 | 00,000,278 | -HS- | M] () -- C:\Documents and Settings\MarkB\ntuser.ini
[2010/01/10 09:53:54 | 00,000,612 | ---- | M] () -- C:\WINDOWS\lexstat.ini
[2010/01/09 19:35:01 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010/01/09 15:26:11 | 00,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/01/09 09:06:49 | 00,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/01/08 16:24:45 | 00,000,049 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010/01/07 23:25:56 | 04,289,412 | -H-- | M] () -- C:\Documents and Settings\MarkB\Local Settings\Application Data\IconCache.db
[2010/01/07 16:07:14 | 00,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/01/07 16:07:04 | 00,019,160 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/01/05 21:21:26 | 00,000,552 | ---- | M] () -- C:\WINDOWS\System32\d3d8caps.dat
[2010/01/05 10:45:50 | 00,025,088 | ---- | M] () -- D:\My Documents\Hi Cil2.doc
[2010/01/03 20:39:31 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\19156.exe
[2010/01/03 20:19:31 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\22888.exe
[2010/01/03 20:13:16 | 00,000,817 | ---- | M] () -- C:\WINDOWS\System32\210705118
[2010/01/03 19:59:31 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\19815.exe
[2010/01/03 19:39:31 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\6191.exe
[2010/01/03 19:19:31 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\7958.exe
[2010/01/03 18:59:31 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\29657.exe
[2010/01/03 18:39:31 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\18190.exe
[2010/01/03 17:59:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\6038.exe
[2010/01/03 17:39:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\12292.exe
[2010/01/03 17:19:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\18538.exe
[2010/01/03 16:59:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\23622.exe
[2010/01/03 16:39:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\20472.exe
[2010/01/03 16:19:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\27157.exe
[2010/01/03 15:59:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\28009.exe
[2010/01/03 15:39:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\20798.exe
[2010/01/03 15:19:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\19589.exe
[2010/01/03 14:59:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\15281.exe
[2010/01/03 14:39:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\14798.exe
[2010/01/03 14:19:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\19796.exe
[2010/01/03 13:59:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\20580.exe
[2010/01/03 13:39:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\6618.exe
[2010/01/03 13:19:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\13458.exe
[2010/01/03 12:59:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\25200.exe
[2010/01/03 12:39:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\7448.exe
[2010/01/03 12:19:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\9503.exe
[2010/01/03 11:59:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\29314.exe
[2010/01/03 11:39:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\1587.exe
[2010/01/03 11:19:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\30523.exe
[2010/01/03 10:59:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\14343.exe
[2010/01/03 10:39:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\3093.exe
[2010/01/03 10:19:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\20485.exe
[2010/01/03 09:59:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\3195.exe
[2010/01/03 09:39:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\32702.exe
[2010/01/03 09:19:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\14989.exe
[2010/01/03 08:59:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\32609.exe
[2010/01/03 08:39:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\5844.exe
[2010/01/03 08:19:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\11008.exe
[2010/01/03 07:59:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\6224.exe
[2010/01/03 07:39:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\30303.exe
[2010/01/03 07:19:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\22798.exe
[2010/01/03 06:59:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\31556.exe
[2010/01/03 06:39:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\16519.exe
[2010/01/03 06:19:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\5249.exe
[2010/01/03 05:59:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\20600.exe
[2010/01/03 05:39:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\17451.exe
[2010/01/03 05:19:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\18935.exe
[2010/01/03 04:59:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\7616.exe
[2010/01/03 04:39:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\14309.exe
[2010/01/03 04:19:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\9514.exe
[2010/01/03 03:59:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\22813.exe
[2010/01/03 03:39:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\6617.exe
[2010/01/03 03:19:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\14310.exe
[2010/01/03 02:59:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\2421.exe
[2010/01/03 02:39:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\17807.exe
[2010/01/03 02:19:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\22483.exe
[2010/01/03 01:59:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\24648.exe
[2010/01/03 01:39:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\14893.exe
[2010/01/03 01:19:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\3728.exe
[2010/01/03 00:59:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\467.exe
[2010/01/03 00:39:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\18127.exe
[2010/01/03 00:19:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\3788.exe
[2010/01/02 23:59:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\6900.exe
[2010/01/02 23:39:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\27938.exe
[2010/01/02 23:19:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\26418.exe
[2010/01/02 22:59:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\1999.exe
[2010/01/02 22:39:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\53.exe
[2010/01/02 22:19:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\4734.exe
[2010/01/02 21:59:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\8281.exe
[2010/01/02 21:39:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\24484.exe
[2010/01/02 21:19:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\19668.exe
[2010/01/02 20:59:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\23199.exe
[2010/01/02 20:39:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\27348.exe
[2010/01/02 20:19:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\24021.exe
[2010/01/02 19:59:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\4596.exe
[2010/01/02 19:39:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\11020.exe
[2010/01/02 19:19:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\9374.exe
[2010/01/02 18:59:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\30836.exe
[2010/01/02 18:39:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\10291.exe
[2010/01/02 18:19:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\24350.exe
[2010/01/02 17:59:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\3602.exe
[2010/01/02 17:39:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\4041.exe
[2010/01/02 17:19:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\27595.exe
[2010/01/02 16:59:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\6483.exe
[2010/01/02 16:39:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\21548.exe
[2010/01/02 16:19:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\20537.exe
[2010/01/02 15:59:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\27624.exe
[2010/01/02 15:39:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\6359.exe
[2010/01/02 15:19:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\17410.exe
[2010/01/02 14:59:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\1655.exe
[2010/01/02 14:39:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\18762.exe
[2010/01/02 14:19:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\32591.exe
[2010/01/02 13:59:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\900.exe
[2010/01/02 13:39:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\29168.exe
[2010/01/02 13:19:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\16413.exe
[2010/01/02 12:59:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\13030.exe
[2010/01/02 12:39:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\27506.exe
[2010/01/02 12:19:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\24946.exe
[2010/01/02 11:59:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\6422.exe
[2010/01/02 11:39:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\18588.exe
[2010/01/02 11:19:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\24221.exe
[2010/01/02 10:59:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\9758.exe
[2010/01/02 10:39:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\32209.exe
[2010/01/02 10:19:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\8909.exe
[2010/01/02 09:59:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\14945.exe
[2010/01/02 09:39:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\10383.exe
[2010/01/02 09:19:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\27753.exe
[2010/01/02 08:59:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\12287.exe
[2010/01/02 08:39:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\15457.exe
[2010/01/02 08:19:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\11337.exe
[2010/01/02 07:59:25 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\18007.exe
[2010/01/02 07:39:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\30191.exe
[2010/01/02 07:19:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\31107.exe
[2010/01/02 06:59:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\3430.exe
[2010/01/02 06:39:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\13966.exe
[2010/01/02 06:19:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\21724.exe
[2010/01/02 05:59:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\16941.exe
[2010/01/02 05:39:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\1150.exe
[2010/01/02 05:19:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\27350.exe
[2010/01/02 04:59:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\12052.exe
[2010/01/02 04:39:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\4031.exe
[2010/01/02 04:19:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\15574.exe
[2010/01/02 03:59:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\23655.exe
[2010/01/02 03:39:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\24767.exe
[2010/01/02 03:19:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\22355.exe
[2010/01/02 02:59:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\18636.exe
[2010/01/02 02:39:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\9161.exe
[2010/01/02 02:19:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\13290.exe
[2010/01/02 01:59:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\23986.exe
[2010/01/02 01:39:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\16512.exe
[2010/01/02 01:19:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\5097.exe
[2010/01/02 00:59:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\15573.exe
[2010/01/02 00:39:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\26777.exe
[2010/01/02 00:19:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\5829.exe
[2010/01/01 23:59:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\6270.exe
[2010/01/01 23:39:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\19072.exe
[2010/01/01 23:19:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\26924.exe
[2010/01/01 22:59:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\28745.exe
[2010/01/01 22:39:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\5021.exe
[2010/01/01 22:19:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\22386.exe
[2010/01/01 21:59:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\31673.exe
[2010/01/01 21:39:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\2306.exe
[2010/01/01 21:19:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\13977.exe
[2010/01/01 20:59:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\9930.exe
[2010/01/01 20:39:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\22704.exe
[2010/01/01 20:19:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\29658.exe
[2010/01/01 19:59:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\4639.exe
[2010/01/01 19:39:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\31115.exe
[2010/01/01 19:19:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\4833.exe
[2010/01/01 18:59:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\16541.exe
[2010/01/01 18:39:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\22929.exe
[2010/01/01 18:19:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\2082.exe
[2010/01/01 17:59:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\16118.exe
[2010/01/01 17:39:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\21538.exe
[2010/01/01 17:19:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\5537.exe
[2010/01/01 16:59:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\11323.exe
[2010/01/01 16:39:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\24626.exe
[2010/01/01 16:19:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\32439.exe
[2010/01/01 15:59:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\16944.exe
[2010/01/01 15:39:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\26308.exe
[2010/01/01 15:19:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\13931.exe
[2010/01/01 14:59:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\7376.exe
[2010/01/01 14:39:24 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\4966.exe
[2010/01/01 14:19:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\11840.exe
[2010/01/01 13:59:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\18756.exe
[2010/01/01 13:39:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\19954.exe
[2010/01/01 13:19:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\24084.exe
[2010/01/01 12:59:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\12623.exe
[2010/01/01 12:39:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\19629.exe
[2010/01/01 12:19:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\3548.exe
[2010/01/01 11:59:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\24393.exe
[2010/01/01 11:39:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\31101.exe
[2010/01/01 11:19:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\15006.exe
[2010/01/01 10:59:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\15350.exe
[2010/01/01 10:39:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\24370.exe
[2010/01/01 10:19:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\6729.exe
[2010/01/01 09:59:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\15890.exe
[2010/01/01 09:39:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\23805.exe
[2010/01/01 09:19:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\27446.exe
[2010/01/01 08:59:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\22648.exe
[2010/01/01 08:39:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\19264.exe
[2010/01/01 08:19:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\8942.exe
[2010/01/01 07:59:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\9040.exe
[2010/01/01 07:39:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\30106.exe
[2010/01/01 07:19:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\288.exe
[2010/01/01 06:59:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\1842.exe
[2010/01/01 06:39:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\22190.exe
[2010/01/01 06:19:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\3035.exe
[2010/01/01 05:59:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\12316.exe
[2010/01/01 05:39:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\778.exe
[2010/01/01 05:19:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\27529.exe
[2010/01/01 04:59:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\9741.exe
[2010/01/01 04:39:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\8723.exe
[2010/01/01 04:19:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\12859.exe
[2010/01/01 03:59:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\20037.exe
[2010/01/01 03:39:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\32757.exe
[2010/01/01 03:19:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\32662.exe
[2010/01/01 02:59:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\27644.exe
[2010/01/01 02:39:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\25547.exe
[2010/01/01 02:19:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\6868.exe
[2010/01/01 01:59:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\28253.exe
[2010/01/01 01:39:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\7711.exe
[2010/01/01 01:19:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\15141.exe
[2010/01/01 00:59:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\4664.exe
[2010/01/01 00:39:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\17673.exe
[2010/01/01 00:19:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\30333.exe
[2009/12/31 23:59:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\31322.exe
[2009/12/31 23:39:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\23811.exe
[2009/12/31 23:19:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\28703.exe
[2009/12/31 22:59:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\9894.exe
[2009/12/31 22:39:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\17035.exe
[2009/12/31 22:19:23 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\26299.exe
[2009/12/31 21:59:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\25667.exe
[2009/12/31 21:39:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\19912.exe
[2009/12/31 21:19:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\1869.exe
[2009/12/31 20:59:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\11538.exe
[2009/12/31 20:39:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\14771.exe
[2009/12/31 20:19:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\21726.exe
[2009/12/31 19:59:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\5447.exe
[2009/12/31 19:39:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\19895.exe
[2009/12/31 19:19:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\19718.exe
[2009/12/31 18:59:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\18716.exe
[2009/12/31 18:39:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\17421.exe
[2009/12/31 18:19:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\12382.exe
[2009/12/31 17:59:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\292.exe
[2009/12/31 17:39:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\153.exe
[2009/12/31 17:19:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\3902.exe
[2009/12/31 16:59:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\14604.exe
[2009/12/31 16:39:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\32391.exe
[2009/12/31 16:19:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\5436.exe
[2009/12/31 15:59:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\4827.exe
[2009/12/31 15:39:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\11942.exe
[2009/12/31 15:19:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\2995.exe
[2009/12/31 14:59:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\491.exe
[2009/12/31 14:39:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\9961.exe
[2009/12/31 14:19:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\16827.exe
[2009/12/31 13:59:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\23281.exe
[2009/12/31 13:39:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\28145.exe
[2009/12/31 13:19:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\5705.exe
[2009/12/31 12:59:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\24464.exe
[2009/12/31 12:39:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\26962.exe
[2009/12/31 12:19:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\29358.exe
[2009/12/31 11:59:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\11478.exe
[2009/12/31 11:39:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\15724.exe
[2009/12/31 11:19:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\19169.exe
[2009/12/31 10:59:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\26500.exe
[2009/12/31 10:39:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\6334.exe
[2009/12/31 10:19:22 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\18467.exe
[2009/12/31 09:59:08 | 00,002,078 | -HS- | M] () -- C:\Documents and Settings\MarkB\Application Data\02000000cefac68a724P.manifest
[2009/12/31 09:59:08 | 00,000,344 | -HS- | M] () -- C:\Documents and Settings\MarkB\Application Data\02000000cefac68a724C.manifest
[2009/12/31 09:59:08 | 00,000,285 | -HS- | M] () -- C:\Documents and Settings\MarkB\Application Data\02000000cefac68a724O.manifest
[2009/12/31 09:59:08 | 00,000,011 | -HS- | M] () -- C:\Documents and Settings\MarkB\Application Data\02000000cefac68a724S.manifest
[2009/12/31 00:01:48 | 00,000,019 | ---- | M] () -- C:\WINDOWS\System32\5c0f1dd9
[2009/12/30 23:22:22 | 00,001,102 | -HS- | M] () -- C:\WINDOWS\System32\1558137486
[2009/12/30 21:17:29 | 00,203,776 | -HS- | M] () -- C:\WINDOWS\System32\unrar.exe
[2009/12/30 08:47:53 | 00,001,369 | ---- | M] () -- C:\Documents and Settings\MarkB\Desktop\SGH-i616 My Documents.LNK
[2009/12/29 18:13:27 | 00,030,984 | ---- | M] () -- C:\Documents and Settings\MarkB\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2009/12/29 09:38:10 | 00,143,624 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009/12/28 21:28:40 | 00,000,349 | ---- | M] () -- C:\Documents and Settings\All Users\Documents\PCLECHAL.INI
[2009/12/28 20:42:11 | 00,025,600 | ---- | M] () -- C:\Documents and Settings\MarkB\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
========== Files Created - No Company Name ==========
[2010/01/05 21:21:26 | 00,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2010/01/05 21:21:23 | 00,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/01/05 10:45:50 | 00,025,088 | ---- | C] () -- D:\My Documents\Hi Cil2.doc
[2010/01/03 20:39:31 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\19156.exe
[2010/01/03 20:19:31 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\22888.exe
[2010/01/03 19:59:31 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\19815.exe
[2010/01/03 19:39:31 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\6191.exe
[2010/01/03 19:19:31 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\7958.exe
[2010/01/03 18:59:31 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\29657.exe
[2010/01/03 18:39:31 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\18190.exe
[2010/01/03 17:59:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\6038.exe
[2010/01/03 17:39:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\12292.exe
[2010/01/03 17:19:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\18538.exe
[2010/01/03 16:59:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\23622.exe
[2010/01/03 16:39:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\20472.exe
[2010/01/03 16:19:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\27157.exe
[2010/01/03 15:59:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\28009.exe
[2010/01/03 15:39:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\20798.exe
[2010/01/03 15:19:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\19589.exe
[2010/01/03 14:59:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\15281.exe
[2010/01/03 14:39:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\14798.exe
[2010/01/03 14:19:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\19796.exe
[2010/01/03 13:59:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\20580.exe
[2010/01/03 13:39:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\6618.exe
[2010/01/03 13:19:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\13458.exe
[2010/01/03 12:59:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\25200.exe
[2010/01/03 12:39:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\7448.exe
[2010/01/03 12:19:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\9503.exe
[2010/01/03 11:59:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\29314.exe
[2010/01/03 11:39:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\1587.exe
[2010/01/03 11:19:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\30523.exe
[2010/01/03 10:59:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\14343.exe
[2010/01/03 10:39:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\3093.exe
[2010/01/03 10:19:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\20485.exe
[2010/01/03 09:59:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\3195.exe
[2010/01/03 09:39:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\32702.exe
[2010/01/03 09:19:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\14989.exe
[2010/01/03 08:59:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\32609.exe
[2010/01/03 08:39:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\5844.exe
[2010/01/03 08:19:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\11008.exe
[2010/01/03 07:59:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\6224.exe
[2010/01/03 07:39:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\30303.exe
[2010/01/03 07:19:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\22798.exe
[2010/01/03 06:59:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\31556.exe
[2010/01/03 06:39:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\16519.exe
[2010/01/03 06:19:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\5249.exe
[2010/01/03 05:59:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\20600.exe
[2010/01/03 05:39:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\17451.exe
[2010/01/03 05:19:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\18935.exe
[2010/01/03 04:59:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\7616.exe
[2010/01/03 04:39:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\14309.exe
[2010/01/03 04:19:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\9514.exe
[2010/01/03 03:59:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\22813.exe
[2010/01/03 03:39:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\6617.exe
[2010/01/03 03:19:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\14310.exe
[2010/01/03 02:59:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\2421.exe
[2010/01/03 02:39:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\17807.exe
[2010/01/03 02:19:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\22483.exe
[2010/01/03 01:59:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\24648.exe
[2010/01/03 01:39:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\14893.exe
[2010/01/03 01:19:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\3728.exe
[2010/01/03 00:59:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\467.exe
[2010/01/03 00:39:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\18127.exe
[2010/01/03 00:19:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\3788.exe
[2010/01/02 23:59:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\6900.exe
[2010/01/02 23:39:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\27938.exe
[2010/01/02 23:19:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\26418.exe
[2010/01/02 22:59:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\1999.exe
[2010/01/02 22:39:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\53.exe
[2010/01/02 22:19:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\4734.exe
[2010/01/02 21:59:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\8281.exe
[2010/01/02 21:39:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\24484.exe
[2010/01/02 21:19:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\19668.exe
[2010/01/02 20:59:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\23199.exe
[2010/01/02 20:39:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\27348.exe
[2010/01/02 20:19:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\24021.exe
[2010/01/02 19:59:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\4596.exe
[2010/01/02 19:39:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\11020.exe
[2010/01/02 19:19:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\9374.exe
[2010/01/02 18:59:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\30836.exe
[2010/01/02 18:39:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\10291.exe
[2010/01/02 18:19:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\24350.exe
[2010/01/02 17:59:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\3602.exe
[2010/01/02 17:39:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\4041.exe
[2010/01/02 17:19:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\27595.exe
[2010/01/02 16:59:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\6483.exe
[2010/01/02 16:39:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\21548.exe
[2010/01/02 16:19:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\20537.exe
[2010/01/02 15:59:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\27624.exe
[2010/01/02 15:39:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\6359.exe
[2010/01/02 15:19:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\17410.exe
[2010/01/02 14:59:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\1655.exe
[2010/01/02 14:39:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\18762.exe
[2010/01/02 14:19:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\32591.exe
[2010/01/02 13:59:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\900.exe
[2010/01/02 13:39:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\29168.exe
[2010/01/02 13:19:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\16413.exe
[2010/01/02 12:59:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\13030.exe
[2010/01/02 12:39:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\27506.exe
[2010/01/02 12:19:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\24946.exe
[2010/01/02 11:59:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\6422.exe
[2010/01/02 11:39:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\18588.exe
[2010/01/02 11:19:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\24221.exe
[2010/01/02 10:59:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\9758.exe
[2010/01/02 10:39:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\32209.exe
[2010/01/02 10:19:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\8909.exe
[2010/01/02 09:59:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\14945.exe
[2010/01/02 09:39:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\10383.exe
[2010/01/02 09:19:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\27753.exe
[2010/01/02 08:59:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\12287.exe
[2010/01/02 08:39:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\15457.exe
[2010/01/02 08:19:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\11337.exe
[2010/01/02 07:59:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\18007.exe
[2010/01/02 07:39:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\30191.exe
[2010/01/02 07:19:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\31107.exe
[2010/01/02 06:59:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\3430.exe
[2010/01/02 06:39:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\13966.exe
[2010/01/02 06:19:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\21724.exe
[2010/01/02 05:59:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\16941.exe
[2010/01/02 05:39:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\1150.exe
[2010/01/02 05:19:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\27350.exe
[2010/01/02 04:59:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\12052.exe
[2010/01/02 04:39:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\4031.exe
[2010/01/02 04:19:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\15574.exe
[2010/01/02 03:59:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\23655.exe
[2010/01/02 03:39:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\24767.exe
[2010/01/02 03:19:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\22355.exe
[2010/01/02 02:59:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\18636.exe
[2010/01/02 02:39:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\9161.exe
[2010/01/02 02:19:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\13290.exe
[2010/01/02 01:59:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\23986.exe
[2010/01/02 01:39:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\16512.exe
[2010/01/02 01:19:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\5097.exe
[2010/01/02 00:59:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\15573.exe
[2010/01/02 00:39:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\26777.exe
[2010/01/02 00:19:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\5829.exe
[2010/01/01 23:59:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\6270.exe
[2010/01/01 23:39:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\19072.exe
[2010/01/01 23:19:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\26924.exe
[2010/01/01 22:59:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\28745.exe
[2010/01/01 22:39:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\5021.exe
[2010/01/01 22:19:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\22386.exe
[2010/01/01 21:59:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\31673.exe
[2010/01/01 21:39:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\2306.exe
[2010/01/01 21:19:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\13977.exe
[2010/01/01 20:59:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\9930.exe
[2010/01/01 20:39:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\22704.exe
[2010/01/01 20:19:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\29658.exe
[2010/01/01 19:59:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\4639.exe
[2010/01/01 19:39:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\31115.exe
[2010/01/01 19:19:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\4833.exe
[2010/01/01 18:59:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\16541.exe
[2010/01/01 18:39:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\22929.exe
[2010/01/01 18:19:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\2082.exe
[2010/01/01 17:59:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\16118.exe
[2010/01/01 17:39:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\21538.exe
[2010/01/01 17:19:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\5537.exe
[2010/01/01 16:59:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\11323.exe
[2010/01/01 16:39:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\24626.exe
[2010/01/01 16:19:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\32439.exe
[2010/01/01 15:59:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\16944.exe
[2010/01/01 15:39:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\26308.exe
[2010/01/01 15:19:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\13931.exe
[2010/01/01 14:59:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\7376.exe
[2010/01/01 14:39:24 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\4966.exe
[2010/01/01 14:19:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\11840.exe
[2010/01/01 13:59:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\18756.exe
[2010/01/01 13:39:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\19954.exe
[2010/01/01 13:19:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\24084.exe
[2010/01/01 12:59:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\12623.exe
[2010/01/01 12:39:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\19629.exe
[2010/01/01 12:19:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\3548.exe
[2010/01/01 11:59:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\24393.exe
[2010/01/01 11:39:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\31101.exe
[2010/01/01 11:19:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\15006.exe
[2010/01/01 10:59:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\15350.exe
[2010/01/01 10:39:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\24370.exe
[2010/01/01 10:19:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\6729.exe
[2010/01/01 09:59:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\15890.exe
[2010/01/01 09:39:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\23805.exe
[2010/01/01 09:19:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\27446.exe
[2010/01/01 08:59:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\22648.exe
[2010/01/01 08:39:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\19264.exe
[2010/01/01 08:19:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\8942.exe
[2010/01/01 07:59:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\9040.exe
[2010/01/01 07:39:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\30106.exe
[2010/01/01 07:19:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\288.exe
[2010/01/01 06:59:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\1842.exe
[2010/01/01 06:39:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\22190.exe
[2010/01/01 06:19:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\3035.exe
[2010/01/01 05:59:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\12316.exe
[2010/01/01 05:39:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\778.exe
[2010/01/01 05:19:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\27529.exe
[2010/01/01 04:59:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\9741.exe
[2010/01/01 04:39:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\8723.exe
[2010/01/01 04:19:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\12859.exe
[2010/01/01 03:59:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\20037.exe
[2010/01/01 03:39:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\32757.exe
[2010/01/01 03:19:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\32662.exe
[2010/01/01 02:59:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\27644.exe
[2010/01/01 02:39:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\25547.exe
[2010/01/01 02:19:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\6868.exe
[2010/01/01 01:59:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\28253.exe
[2010/01/01 01:39:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\7711.exe
[2010/01/01 01:19:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\15141.exe
[2010/01/01 00:59:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\4664.exe
[2010/01/01 00:39:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\17673.exe
[2010/01/01 00:19:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\30333.exe
[2009/12/31 23:59:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\31322.exe
[2009/12/31 23:39:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\23811.exe
[2009/12/31 23:19:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\28703.exe
[2009/12/31 22:59:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\9894.exe
[2009/12/31 22:39:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\17035.exe
[2009/12/31 22:19:23 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\26299.exe
[2009/12/31 21:59:22 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\25667.exe
[2009/12/31 21:39:22 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\19912.exe
[2009/12/31 21:19:22 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\1869.exe
[2009/12/31 20:59:22 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\11538.exe
[2009/12/31 20:39:22 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\14771.exe
[2009/12/31 20:19:22 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\21726.exe
[2009/12/31 19:59:22 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\5447.exe
[2009/12/31 19:39:22 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\19895.exe
[2009/12/31 19:19:22 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\19718.exe
[2009/12/31 18:59:22 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\18716.exe
[2009/12/31 18:39:22 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\17421.exe
[2009/12/31 18:19:22 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\12382.exe
[2009/12/31 17:59:22 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\292.exe
[2009/12/31 07:57:51 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\153.exe
[2009/12/31 07:37:51 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\3902.exe
[2009/12/31 07:17:51 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\14604.exe
[2009/12/31 06:57:51 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\32391.exe
[2009/12/31 06:37:51 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\5436.exe
[2009/12/31 06:17:51 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\4827.exe
[2009/12/31 05:57:51 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\11942.exe
[2009/12/31 05:37:51 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\2995.exe
[2009/12/31 05:17:51 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\491.exe
[2009/12/31 04:57:51 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\9961.exe
[2009/12/31 04:37:51 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\16827.exe
[2009/12/31 04:17:50 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\23281.exe
[2009/12/31 03:57:50 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\28145.exe
[2009/12/31 03:37:50 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\5705.exe
[2009/12/31 03:17:50 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\24464.exe
[2009/12/31 02:57:50 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\26962.exe
[2009/12/31 02:37:50 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\29358.exe
[2009/12/31 02:17:50 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\11478.exe
[2009/12/31 01:57:50 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\15724.exe
[2009/12/31 01:37:50 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\19169.exe
[2009/12/31 01:17:50 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\26500.exe
[2009/12/31 00:02:45 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\6334.exe
[2009/12/31 00:00:55 | 00,000,019 | ---- | C] () -- C:\WINDOWS\System32\5c0f1dd9
[2009/12/30 23:42:44 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\18467.exe
[2009/12/30 21:19:25 | 00,001,102 | -HS- | C] () -- C:\WINDOWS\System32\1558137486
[2009/12/30 21:19:24 | 00,000,817 | ---- | C] () -- C:\WINDOWS\System32\210705118
[2009/12/30 21:17:29 | 00,203,776 | -HS- | C] () -- C:\WINDOWS\System32\unrar.exe
[2009/12/30 21:17:14 | 00,002,078 | -HS- | C] () -- C:\Documents and Settings\MarkB\Application Data\02000000cefac68a724P.manifest
[2009/12/30 21:17:14 | 00,000,344 | -HS- | C] () -- C:\Documents and Settings\MarkB\Application Data\02000000cefac68a724C.manifest
[2009/12/30 21:17:14 | 00,000,285 | -HS- | C] () -- C:\Documents and Settings\MarkB\Application Data\02000000cefac68a724O.manifest
[2009/12/30 21:17:14 | 00,000,011 | -HS- | C] () -- C:\Documents and Settings\MarkB\Application Data\02000000cefac68a724S.manifest
[2009/12/30 08:47:53 | 00,001,369 | ---- | C] () -- C:\Documents and Settings\MarkB\Desktop\SGH-i616 My Documents.LNK
[2009/12/27 23:41:33 | 00,406,016 | ---- | C] () -- C:\WINDOWS\System32\PSDrvCheck.exe
[2009/12/27 23:41:33 | 00,026,624 | ---- | C] () -- C:\WINDOWS\System32\PSDrvCheck.KOR
[2009/12/27 23:41:33 | 00,026,624 | ---- | C] () -- C:\WINDOWS\System32\PSDrvCheck.JPN
[2009/12/27 23:41:33 | 00,026,624 | ---- | C] () -- C:\WINDOWS\System32\PSDrvCheck.JP
[2009/12/27 23:41:33 | 00,026,624 | ---- | C] () -- C:\WINDOWS\System32\PSDrvCheck.ITA
[2009/12/27 23:41:33 | 00,026,624 | ---- | C] () -- C:\WINDOWS\System32\PSDrvCheck.IT
[2009/12/27 23:41:33 | 00,026,624 | ---- | C] () -- C:\WINDOWS\System32\PSDrvCheck.FRA
[2009/12/27 23:41:33 | 00,026,624 | ---- | C] () -- C:\WINDOWS\System32\PSDrvCheck.FR
[2009/12/27 23:41:33 | 00,026,624 | ---- | C] () -- C:\WINDOWS\System32\PSDrvCheck.ES
[2009/12/27 23:41:33 | 00,016,896 | ---- | C] () -- C:\WINDOWS\System32\PSDrvCheck.NLD
[2009/12/27 23:41:33 | 00,016,896 | ---- | C] () -- C:\WINDOWS\System32\PSDrvCheck.NL
[2009/12/27 23:41:33 | 00,016,896 | ---- | C] () -- C:\WINDOWS\System32\PSDrvCheck.KO
[2009/12/27 23:41:32 | 00,026,624 | ---- | C] () -- C:\WINDOWS\System32\PSDrvCheck.ESP
[2009/12/27 23:41:32 | 00,026,624 | ---- | C] () -- C:\WINDOWS\System32\PSDrvCheck.DEU
[2009/12/27 23:41:32 | 00,026,624 | ---- | C] () -- C:\WINDOWS\System32\PSDrvCheck.DE
[2009/12/27 23:41:32 | 00,026,112 | ---- | C] () -- C:\WINDOWS\System32\PSDrvCheck.CHT
[2009/12/27 23:41:32 | 00,026,112 | ---- | C] () -- C:\WINDOWS\System32\PSDrvCheck.CHS
[2009/12/27 23:39:33 | 00,396,509 | ---- | C] () -- C:\Documents and Settings\MarkB\Desktop\Picture1.jpg
[2009/12/27 23:39:33 | 00,382,843 | ---- | C] () -- C:\Documents and Settings\MarkB\Desktop\Picture2.jpg
[2009/12/27 23:39:07 | 00,038,232 | ---- | C] () -- C:\WINDOWS\wmprfsky.prx
[2009/12/27 23:39:07 | 00,035,916 | ---- | C] () -- C:\WINDOWS\wmprfptg.prx
[2009/12/27 23:39:07 | 00,033,694 | ---- | C] () -- C:\WINDOWS\wmprfptb.prx
[2009/12/27 23:39:07 | 00,033,580 | ---- | C] () -- C:\WINDOWS\wmprfslv.prx
[2009/12/27 23:39:07 | 00,033,314 | ---- | C] () -- C:\WINDOWS\wmprfsve.prx
[2009/12/27 23:39:07 | 00,032,022 | ---- | C] () -- C:\WINDOWS\wmprftrk.prx
[2009/12/27 23:39:07 | 00,000,804 | ---- | C] () -- C:\WINDOWS\wmprfrus.prx
[2009/12/27 23:39:06 | 00,037,916 | ---- | C] () -- C:\WINDOWS\wmprffra.prx
[2009/12/27 23:39:06 | 00,037,014 | ---- | C] () -- C:\WINDOWS\wmprfhun.prx
[2009/12/27 23:39:06 | 00,036,594 | ---- | C] () -- C:\WINDOWS\wmprfell.prx
[2009/12/27 23:39:06 | 00,035,822 | ---- | C] () -- C:\WINDOWS\wmprfplk.prx
[2009/12/27 23:39:06 | 00,035,680 | ---- | C] () -- C:\WINDOWS\wmprfita.prx
[2009/12/27 23:39:06 | 00,035,590 | ---- | C] () -- C:\WINDOWS\wmprfesp.prx
[2009/12/27 23:39:06 | 00,035,474 | ---- | C] () -- C:\WINDOWS\wmprfcsy.prx
[2009/12/27 23:39:06 | 00,033,820 | ---- | C] () -- C:\WINDOWS\WMPrfDeu.prx
[2009/12/27 23:39:06 | 00,033,336 | ---- | C] () -- C:\WINDOWS\WMPrfAra.prx
[2009/12/27 23:39:06 | 00,032,964 | ---- | C] () -- C:\WINDOWS\wmprfnld.prx
[2009/12/27 23:39:06 | 00,032,852 | ---- | C] () -- C:\WINDOWS\wmprfnor.prx
[2009/12/27 23:39:06 | 00,031,764 | ---- | C] () -- C:\WINDOWS\wmprffin.prx
[2009/12/27 23:39:06 | 00,031,712 | ---- | C] () -- C:\WINDOWS\wmprfdan.prx
[2009/12/27 23:39:06 | 00,028,718 | ---- | C] () -- C:\WINDOWS\wmprfheb.prx
[2009/12/27 23:39:06 | 00,023,304 | ---- | C] () -- C:\WINDOWS\WMPrfJpn.prx
[2009/12/27 23:39:06 | 00,022,338 | ---- | C] () -- C:\WINDOWS\WMPrfKor.prx
[2009/12/27 23:39:06 | 00,000,136 | ---- | C] () -- C:\WINDOWS\WMPrfCHS.prx
[2009/12/27 23:39:06 | 00,000,132 | ---- | C] () -- C:\WINDOWS\WMPrfCHT.prx
[2009/12/27 23:35:56 | 00,000,349 | ---- | C] () -- C:\Documents and Settings\All Users\Documents\PCLECHAL.INI
[2009/12/27 14:40:09 | 00,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI
[2009/12/14 08:53:01 | 00,000,766 | ---- | C] () -- C:\Program Files\GREEN.ICO
[2009/12/14 08:52:59 | 00,001,606 | ---- | C] () -- C:\Program Files\DeIsL1.isu
[2009/10/24 07:30:00 | 00,000,000 | ---- | C] () -- C:\WINDOWS\SETUP32.INI
[2009/07/26 07:06:08 | 00,020,992 | ---- | C] () -- C:\WINDOWS\jestertb.dll
[2009/07/26 06:39:21 | 00,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI
[2009/05/13 17:46:51 | 00,000,110 | ---- | C] () -- C:\WINDOWS\{47FB62DF-832D-485F-95FC-C93BB08B8FE3}_WiseFW.ini
[2009/01/21 12:42:05 | 00,000,128 | ---- | C] () -- C:\Documents and Settings\MarkB\Local Settings\Application Data\fusioncache.dat
[2009/01/08 21:27:51 | 00,000,065 | ---- | C] () -- C:\WINDOWS\FISHUI.INI
[2008/12/28 20:40:41 | 00,015,498 | ---- | C] () -- C:\WINDOWS\VX3000.ini
[2008/12/10 21:37:16 | 00,000,050 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2008/12/09 20:43:35 | 00,000,703 | R--- | C] () -- C:\WINDOWS\System32\iconcfg.ini
[2008/12/06 09:39:11 | 00,002,528 | ---- | C] () -- C:\Documents and Settings\MarkB\Application Data\$_hpcst$.hpc
[2008/11/08 23:58:45 | 00,025,600 | ---- | C] () -- C:\Documents and Settings\MarkB\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/11/01 16:55:22 | 00,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd.dll
[2008/10/15 15:15:07 | 00,000,049 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008/10/07 21:47:03 | 00,040,960 | ---- | C] () -- C:\Program Files\Uninstall_CDS.exe
[2008/10/07 19:14:47 | 00,044,344 | ---- | C] () -- C:\WINDOWS\System32\drivers\i1display.sys
[2008/10/07 19:10:07 | 00,000,030 | ---- | C] () -- C:\WINDOWS\AutoRun.ini
[2008/10/04 19:12:53 | 00,000,329 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log
[2008/10/04 10:54:07 | 00,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008/10/04 10:20:07 | 00,000,612 | ---- | C] () -- C:\WINDOWS\lexstat.ini
[2008/10/04 10:19:50 | 00,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxbmvs.dll
[2008/10/04 10:19:32 | 00,000,187 | ---- | C] () -- C:\WINDOWS\System32\lxbmcoin.ini
[2008/10/04 10:19:29 | 00,077,824 | ---- | C] () -- C:\WINDOWS\System32\LXBMLCNP.DLL
[2008/10/02 13:36:46 | 00,000,000 | ---- | C] () -- C:\WINDOWS\vpc32.INI
[2006/10/27 07:26:56 | 00,069,632 | ---- | C] () -- C:\WINDOWS\System32\vuins32.dll
[2004/09/16 15:24:26 | 03,375,104 | ---- | C] () -- C:\WINDOWS\System32\qt-mt331.dll
[2004/03/18 08:44:29 | 01,663,068 | ---- | C] () -- C:\WINDOWS\System32\libmmd.dll
[1999/01/22 10:46:58 | 00,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL
========== LOP Check ==========
[2008/11/01 22:37:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Deskshare
[2008/12/24 20:51:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Leapfrog
[2009/12/27 23:48:39 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Pinnacle
[2009/12/28 21:42:47 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SmartSound Software Inc
[2009/06/03 07:37:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WinZip
[2009/09/12 18:47:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2009/04/18 18:46:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2009/01/21 12:02:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\MarkB\Application Data\Canon
[2008/10/05 18:42:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\MarkB\Application Data\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2009/01/10 10:28:39 | 00,000,000 | ---D | M] -- C:\Documents and Settings\MarkB\Application Data\DataCast
[2009/02/12 10:39:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\MarkB\Application Data\Expression Media
[2008/10/07 19:31:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\MarkB\Application Data\GretagMacbeth
[2008/11/28 19:43:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\MarkB\Application Data\MediaZoneTrigger
[2008/10/04 20:39:39 | 00,000,000 | ---D | M] -- C:\Documents and Settings\MarkB\Application Data\MSNInstaller
[2009/06/25 19:05:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\MarkB\Application Data\Playskool
[2010/01/03 20:43:32 | 00,000,000 | -HSD | M] -- C:\Documents and Settings\MarkB\Application Data\SystemProc
========== Purity Check ==========
========== Custom Scans ==========
< %SYSTEMDRIVE%\*.exe >
< MD5 for: AGP440.SYS >
[2004/08/04 07:00:00 | 18,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008/10/03 21:48:22 | 23,852,652 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008/10/03 21:48:22 | 23,852,652 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008/04/13 13:36:38 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008/04/13 13:36:38 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
< MD5 for: ATAPI.SYS >
[2004/08/04 07:00:00 | 18,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008/10/03 21:48:22 | 23,852,652 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008/10/03 21:48:22 | 23,852,652 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008/04/13 13:40:30 | 00,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008/04/13 13:40:30 | 00,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004/08/04 07:00:00 | 00,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
< MD5 for: EVENTLOG.DLL >
[2008/04/13 19:11:53 | 00,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008/04/13 19:11:53 | 00,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\system32\eventlog.dll
[2004/08/04 07:00:00 | 00,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
< MD5 for: NETLOGON.DLL >
[2008/04/13 19:12:01 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008/04/13 19:12:01 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\system32\netlogon.dll
[2004/08/04 07:00:00 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
< MD5 for: SCECLI.DLL >
[2004/08/04 07:00:00 | 00,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008/04/13 19:12:05 | 00,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008/04/13 19:12:05 | 00,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\system32\scecli.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< End of report >
Sign In
Create Account
