Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Very unusual problem [Solved]

Started by jhn-e-bee , Mar 21 2010 05:10 PM

Page 7 of 9
5
6
7
8
9

This topic is locked

#91
jhn-e-bee

Posted 25 March 2010 - 04:38 PM

Member

Topic Starter
Member
89 posts

Is there a notepad log with kasp?

I only found this:

Posted Image

does not tell you much. i looked in kasp folder and the only thing called log was a batch file.

Am I looking in the wrong place?

#92
jhn-e-bee

Posted 25 March 2010 - 04:46 PM

Member

Topic Starter
Member
89 posts

Or this might be better:

Posted Image

Edited by jhn-e-bee, 25 March 2010 - 04:52 PM.

#93
Rorschach112

Posted 25 March 2010 - 04:49 PM

Ralphie

Retired Staff
47,710 posts

go ahead with the instructions in my previous post

#94
jhn-e-bee

Posted 25 March 2010 - 05:14 PM

Member

Topic Starter
Member
89 posts

OTM:

All processes killed
========== PROCESSES ==========
========== SERVICES/DRIVERS ==========
Error: No service named Windows Hosts Controller was found to stop!
Service\Driver key Windows Hosts Controller not found.
========== REGISTRY ==========
========== FILES ==========
File/Folder c:\windows\fonts\*.exe not found.
File/Folder c:\windows\system32\asr_*.exe not found.
File/Folder c:\windows\system32\man*.exe not found.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: jhn barrett
->Temp folder emptied: 240008575 bytes
->Temporary Internet Files folder emptied: 25753008 bytes
->Java cache emptied: 0 bytes
->Flash cache emptied: 1809 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 246162 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 19569 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 4989 bytes

Total Files Cleaned = 254.00 mb

Restore point Set: OTM Restore Point (64424509440)

OTM by OldTimer - Version 3.1.10.1 log created on 03252010_231018

Files moved on Reboot...
File C:\WINDOWS\temp\_avast5_\Webshlock.txt not found!

Registry entries deleted on Reboot...

This opened automatically after reboot.

#95
Rorschach112

Posted 25 March 2010 - 05:15 PM

Ralphie

Retired Staff
47,710 posts

and otl

#96
jhn-e-bee

Posted 25 March 2010 - 05:24 PM

Member

Topic Starter
Member
89 posts

OTL logfile created on: 3/25/2010 11:15:54 PM - Run 5
OTL by OldTimer - Version 3.1.37.3 Folder = C:\Documents and Settings\jhn barrett\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

251.00 Mb Total Physical Memory | 115.00 Mb Available Physical Memory | 46.00% Memory free
610.00 Mb Paging File | 454.00 Mb Available in Paging File | 74.00% Paging File free
Paging file location(s): C:\pagefile.sys 372 744 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37.25 Gb Total Space | 29.06 Gb Free Space | 78.02% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 1.84 Gb Total Space | 1.74 Gb Free Space | 94.31% Space Free | Partition Type: FAT32
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: J-C4E7983211AD4
Current User Name: jhn barrett
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/03/21 23:13:24 | 000,555,520 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\jhn barrett\Desktop\OTL.exe
PRC - [2010/03/20 21:43:52 | 000,185,896 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe
PRC - [2010/03/09 11:24:10 | 002,769,336 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010/03/09 11:24:08 | 000,040,384 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2008/04/14 00:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004/07/01 16:23:32 | 000,067,584 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE

========== Modules (SafeList) ==========

MOD - [2010/03/21 23:13:24 | 000,555,520 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\jhn barrett\Desktop\OTL.exe

========== Win32 Services (SafeList) ==========

SRV - [2010/03/09 11:24:08 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV - [2010/03/09 11:24:08 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV - [2010/03/09 11:24:08 | 000,040,384 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)

========== Driver Services (SafeList) ==========

DRV - [2010/03/25 22:23:39 | 000,007,168 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\utezmtyx.sys -- (utezmtyx)
DRV - [2010/03/09 11:12:54 | 000,046,672 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2010/03/09 11:12:33 | 000,162,640 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
DRV - [2010/03/09 11:09:08 | 000,023,376 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2010/03/09 11:08:41 | 000,100,432 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2010/03/09 11:08:30 | 000,019,024 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010/03/09 11:08:15 | 000,028,880 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2008/01/17 16:50:34 | 000,100,864 | ---- | M] (ZTE Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ZTEusbser6k.sys -- (ZTEusbser6k)
DRV - [2008/01/17 16:50:34 | 000,100,864 | ---- | M] (ZTE Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ZTEusbnmea.sys -- (ZTEusbnmea)
DRV - [2008/01/17 16:50:34 | 000,100,864 | ---- | M] (ZTE Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ZTEusbmdm6k.sys -- (ZTEusbmdm6k)
DRV - [2004/08/03 22:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
DRV - [2004/07/22 12:50:16 | 001,268,234 | R--- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2004/07/01 12:49:00 | 000,626,977 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2004/02/24 08:08:52 | 000,400,384 | R--- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS -- (ALCXSENS)
DRV - [2001/08/17 12:10:30 | 000,035,871 | ---- | M] (Winbond Electronics Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wbfirdma.sys -- (WBFIRDMA)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.mirostart...cfg=2-73-0-E39G
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.mirostart...cfg=2-73-0-E2N5

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\software\mozilla\K-Meleon\Extensions\\Plugins: C:\Program Files\K-Meleon\Plugins [2010/03/24 04:56:40 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\K-Meleon\Extensions\\Components: C:\Program Files\K-Meleon\Components [2010/03/20 21:59:42 | 000,000,000 | ---D | M]

O1 HOSTS File: ([2010/03/25 23:10:19 | 000,000,098 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (ALWIL Software)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 36
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = FF FF FF FF [binary data]
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://go.microsoft....k/?linkid=58813 (Office Genuine Advantage Validation Tool)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft....k/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_18)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxsrvc.dll - C:\WINDOWS\System32\igfxsrvc.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\jhn barrett\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\jhn barrett\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/03/20 17:29:50 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2010/03/25 23:02:30 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010/03/25 23:02:32 | 000,000,000 | RHSD | M] - E:\autorun.inf -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: ias - C:\WINDOWS\system32\ias [2010/03/20 17:29:07 | 000,000,000 | ---D | M]
NetSvcs: iprip - File not found
NetSvcs: nwcworkstation - File not found
NetSvcs: nwsapagent - File not found
NetSvcs: wmi - C:\WINDOWS\system32\wmi.dll (Microsoft Corporation)
NetSvcs: wmdmpmsp - File not found
NetSvcs: ulwobcy - File not found

========== Files/Folders - Created Within 30 Days ==========

[2010/03/25 23:02:30 | 000,000,000 | RHSD | C] -- C:\autorun.inf
[2010/03/25 06:15:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2010/03/25 06:15:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010/03/25 05:57:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us
[2010/03/25 05:57:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting
[2010/03/25 05:57:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2010/03/25 05:57:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en
[2010/03/25 05:57:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2010/03/25 05:53:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2010/03/25 05:49:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2010/03/25 05:45:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2010/03/25 05:39:31 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2010/03/25 05:39:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\EHome
[2010/03/25 05:24:36 | 000,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\watv10nt.sys
[2010/03/25 05:24:36 | 000,022,271 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\watv06nt.sys
[2010/03/25 05:24:35 | 000,011,935 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv11nt.sys
[2010/03/25 05:24:35 | 000,011,871 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv09nt.sys
[2010/03/25 05:24:35 | 000,011,295 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv08nt.sys
[2010/03/25 05:24:34 | 000,011,807 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv07nt.sys
[2010/03/25 05:24:25 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys
[2010/03/25 05:24:25 | 000,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnt7554.sys
[2010/03/25 05:24:25 | 000,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnthal.sys
[2010/03/25 05:24:25 | 000,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slwdmsup.sys
[2010/03/25 05:24:20 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys
[2010/03/25 05:24:19 | 000,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\recagent.sys
[2010/03/25 05:24:18 | 001,897,408 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv4_mini.sys
[2010/03/25 05:24:17 | 000,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys
[2010/03/25 05:24:14 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys
[2010/03/25 05:24:14 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys
[2010/03/25 05:24:13 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys
[2010/03/25 05:16:08 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys
[2010/03/25 05:16:08 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys
[2010/03/25 05:16:08 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys
[2010/03/25 05:16:07 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys
[2010/03/25 05:16:07 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys
[2010/03/25 05:16:06 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys
[2010/03/25 05:16:06 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys
[2010/03/25 05:16:06 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys
[2010/03/25 05:16:05 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys
[2010/03/25 05:16:05 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys
[2010/03/25 05:16:03 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys
[2010/03/25 05:16:03 | 000,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys
[2010/03/25 05:16:02 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys
[2010/03/25 05:16:02 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys
[2010/03/25 05:16:01 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys
[2010/03/25 05:16:01 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys
[2010/03/25 05:16:01 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys
[2010/03/25 05:16:01 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys
[2010/03/25 05:16:00 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys
[2010/03/25 05:16:00 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys
[2010/03/25 05:16:00 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys
[2010/03/25 05:15:59 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys
[2010/03/25 04:56:43 | 016,883,056 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\jhn barrett\Desktop\IE8-WindowsXP-x86-ENU.exe
[2010/03/25 03:59:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
[2010/03/25 03:49:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2010/03/25 03:49:49 | 000,026,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe
[2010/03/25 03:45:45 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2010/03/25 03:37:48 | 000,017,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2010/03/25 03:36:52 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2010/03/25 02:33:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Desktop\Virus Removal Tool
[2010/03/25 01:15:51 | 000,019,024 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010/03/25 01:15:50 | 000,162,640 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2010/03/25 01:15:49 | 000,023,376 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2010/03/25 01:15:48 | 000,046,672 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2010/03/25 01:15:46 | 000,100,432 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2010/03/25 01:15:46 | 000,094,800 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2010/03/25 01:15:45 | 000,028,880 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2010/03/25 01:15:11 | 000,153,184 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2010/03/25 01:15:11 | 000,038,848 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\avastSS.scr
[2010/03/25 01:15:00 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2010/03/25 01:02:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2010/03/25 01:02:54 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2010/03/25 01:02:54 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2010/03/24 23:32:32 | 000,212,992 | ---- | C] (PMs) -- C:\WINDOWS\System32\84.exe
[2010/03/24 20:20:17 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/03/24 20:20:15 | 000,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/03/24 20:20:15 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/03/24 19:41:57 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010/03/24 16:09:25 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rastls.dll
[2010/03/24 16:09:25 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\raschap.dll
[2010/03/24 16:09:09 | 000,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gdi32.dll
[2010/03/24 16:09:03 | 000,730,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll
[2010/03/24 16:09:02 | 002,145,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2010/03/24 16:09:01 | 002,189,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2010/03/24 16:09:00 | 002,023,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2010/03/24 16:05:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2010/03/24 14:17:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Desktop\gmer
[2010/03/24 13:53:33 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\telnet.exe
[2010/03/24 13:53:28 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\csrsrv.dll
[2010/03/24 13:53:26 | 000,354,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winhttp.dll
[2010/03/24 13:53:22 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mscms.dll
[2010/03/24 13:52:15 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wkssvc.dll
[2010/03/24 13:52:09 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\localspl.dll
[2010/03/24 13:52:02 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll
[2010/03/24 13:52:02 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll
[2010/03/24 13:52:02 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll
[2010/03/24 13:52:02 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxclu.dll
[2010/03/24 13:52:02 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll
[2010/03/24 13:51:54 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msyuv.dll
[2010/03/24 13:51:46 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avifil32.dll
[2010/03/24 13:51:46 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iyuv_32.dll
[2010/03/24 13:51:46 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrle32.dll
[2010/03/24 13:51:46 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsbyuv.dll
[2010/03/24 13:51:43 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe
[2010/03/24 13:51:28 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\secur32.dll
[2010/03/24 13:51:27 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msv1_0.dll
[2010/03/24 13:51:27 | 000,092,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksecdd.sys
[2010/03/24 13:51:26 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdigest.dll
[2010/03/24 13:51:19 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kerberos.dll
[2010/03/24 13:50:46 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schannel.dll
[2010/03/24 13:50:34 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oakley.dll
[2010/03/24 13:47:10 | 000,455,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2010/03/24 13:46:39 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll
[2010/03/24 13:27:05 | 000,627,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll
[2010/03/24 13:27:04 | 000,689,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp3res.dll
[2010/03/24 13:27:04 | 000,667,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wininet.dll
[2010/03/24 13:27:02 | 003,071,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll
[2010/03/24 13:27:02 | 001,509,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shdocvw.dll
[2010/03/24 13:19:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2010/03/24 12:48:37 | 000,000,000 | ---D | C] -- C:\_OTM
[2010/03/24 12:39:07 | 000,510,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\jhn barrett\Desktop\OTM.exe
[2010/03/24 06:46:26 | 000,000,000 | ---D | C] -- C:\Program Files\Participatory Culture Foundation
[2010/03/24 06:36:24 | 000,282,606 | ---- | C] (Participatory Culture Foundation) -- C:\Documents and Settings\jhn barrett\Desktop\Miro_Installer.exe
[2010/03/24 06:09:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\My Documents\My Videos
[2010/03/24 06:09:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\Mozilla
[2010/03/24 06:08:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\Participatory Culture Foundation
[2010/03/24 06:07:54 | 000,000,000 | ---D | C] -- C:\Program Files\Miro
[2010/03/24 05:00:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Local Settings\Application Data\Adobe
[2010/03/24 04:56:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2010/03/24 04:55:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2010/03/24 04:55:46 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2010/03/24 04:49:17 | 027,386,256 | ---- | C] ( ) -- C:\Documents and Settings\jhn barrett\Desktop\AdbeRdr930_en_US.exe
[2010/03/23 17:29:20 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2010/03/23 15:15:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\DoctorWeb
[2010/03/23 15:11:53 | 068,146,672 | ---- | C] ( ) -- C:\Documents and Settings\jhn barrett\Desktop\setup_9.0.0.722_23.03.2010_14-47.exe
[2010/03/23 12:33:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\My Documents\LastFM downloader
[2010/03/23 12:32:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\My Documents\dogs2
[2010/03/23 12:30:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\My Documents\vids and DLs
[2010/03/23 01:36:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Desktop\avenger
[2010/03/23 01:27:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2010/03/23 01:24:48 | 005,115,824 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\jhn barrett\Desktop\mbam-setup.exe
[2010/03/22 20:41:36 | 000,000,000 | ---D | C] -- C:\Rooter$
[2010/03/22 18:45:47 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010/03/22 18:34:19 | 000,173,119 | ---- | C] (Eric_71) -- C:\Documents and Settings\jhn barrett\Desktop\Rooter.exe
[2010/03/22 17:18:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\.thumbnails
[2010/03/22 15:16:45 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010/03/22 15:16:45 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010/03/22 15:16:45 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010/03/22 15:16:45 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010/03/22 15:15:45 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010/03/22 15:13:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage
[2010/03/22 15:12:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2010/03/22 15:07:45 | 001,607,032 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\jhn barrett\Desktop\MGADiag.exe
[2010/03/22 14:23:45 | 000,000,000 | ---D | C] -- C:\_OTL
[2010/03/22 05:46:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\gtk-2.0
[2010/03/22 05:42:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\.gimp-2.6
[2010/03/22 05:42:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\My Documents\gegl-0.0
[2010/03/22 05:40:40 | 000,000,000 | ---D | C] -- C:\Program Files\GIMP-2.0
[2010/03/21 23:34:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010/03/21 23:27:03 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2010/03/21 23:13:05 | 000,555,520 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\jhn barrett\Desktop\OTL.exe
[2010/03/21 23:11:20 | 000,791,393 | ---- | C] (Lars Hederer ) -- C:\Documents and Settings\jhn barrett\Desktop\erunt_setup.exe
[2010/03/21 23:11:00 | 000,444,416 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\jhn barrett\Desktop\TFC.exe
[2010/03/21 16:58:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2010/03/21 04:53:19 | 000,000,000 | ---D | C] -- C:\Program Files\Ask.com
[2010/03/21 04:53:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\My Documents\DVDVideoSoft
[2010/03/21 04:52:53 | 000,000,000 | ---D | C] -- C:\Program Files\DVDVideoSoft
[2010/03/21 04:52:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DVDVideoSoft
[2010/03/21 04:19:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\Adobe
[2010/03/21 04:18:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2010/03/21 04:18:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010/03/21 04:17:43 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2010/03/21 04:17:43 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010/03/21 04:17:43 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010/03/21 04:17:43 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010/03/21 04:17:43 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2010/03/21 04:17:21 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2010/03/21 04:16:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\Sun
[2010/03/21 04:16:02 | 000,924,448 | ---- | C] (Sun Microsystems, Inc.) -- C:\Documents and Settings\jhn barrett\Desktop\jre-6u18-windows-i586-iftw-rv.exe
[2010/03/21 04:13:44 | 001,924,976 | ---- | C] (Adobe Systems Incorporated) -- C:\Documents and Settings\jhn barrett\Desktop\install_flash_player.exe
[2010/03/20 23:44:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\Template
[2010/03/20 23:34:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\Malwarebytes
[2010/03/20 23:34:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010/03/20 23:25:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\AVG8
[2010/03/20 23:25:23 | 000,891,248 | ---- | C] (AVG Technologies) -- C:\Documents and Settings\jhn barrett\Desktop\avg_free_stb_all_9_40_cnet.exe
[2010/03/20 23:02:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\Macromedia
[2010/03/20 22:28:49 | 000,887,296 | ---- | C] (Kurt Senfer) -- C:\WINDOWS\System32\KsDHTMLEDLib.ocx
[2010/03/20 22:28:48 | 000,000,000 | ---D | C] -- C:\Program Files\Evrsoft First Page 2006
[2010/03/20 22:00:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real
[2010/03/20 21:57:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\vlc
[2010/03/20 21:50:17 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2010/03/20 21:44:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared
[2010/03/20 21:44:00 | 000,185,944 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll
[2010/03/20 21:43:54 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll
[2010/03/20 21:43:54 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll
[2010/03/20 21:43:53 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010/03/20 21:43:51 | 000,000,000 | ---D | C] -- C:\Program Files\Real
[2010/03/20 21:43:51 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Real
[2010/03/20 21:43:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\Real
[2010/03/20 18:43:54 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010/03/20 18:41:29 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2010/03/20 18:38:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2010/03/20 18:32:11 | 000,100,864 | ---- | C] (ZTE Corporation) -- C:\WINDOWS\System32\drivers\ZTEusbser6k.sys
[2010/03/20 18:32:11 | 000,100,864 | ---- | C] (ZTE Corporation) -- C:\WINDOWS\System32\drivers\ZTEusbnmea.sys
[2010/03/20 18:32:11 | 000,100,864 | ---- | C] (ZTE Corporation) -- C:\WINDOWS\System32\drivers\ZTEusbmdm6k.sys
[2010/03/20 18:32:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SupportApp
[2010/03/20 18:31:58 | 000,000,000 | ---D | C] -- C:\Program Files\ZTE Mobile Connection
[2010/03/20 18:31:57 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2010/03/20 18:27:17 | 000,000,000 | ---D | C] -- C:\Intel
[2010/03/20 18:27:16 | 000,159,744 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxres.dll
[2010/03/20 18:24:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Desktop\Tunes
[2010/03/20 18:23:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Desktop\installers
[2010/03/20 18:23:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Local Settings\Application Data\K-Meleon
[2010/03/20 18:23:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\K-Meleon
[2010/03/20 18:22:59 | 000,000,000 | ---D | C] -- C:\Program Files\K-Meleon
[2010/03/20 18:21:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\My Documents\whypay4it.net
[2010/03/20 18:03:01 | 001,268,234 | R--- | C] (Agere Systems) -- C:\WINDOWS\System32\drivers\AGRSM.sys
[2010/03/20 18:03:01 | 000,064,512 | R--- | C] (Agere Systems) -- C:\WINDOWS\agrsmdel.exe
[2010/03/20 18:01:00 | 000,765,952 | R--- | C] (Sensaura Ltd) -- C:\WINDOWS\System\crlds3d.dll
[2010/03/20 18:01:00 | 000,065,536 | R--- | C] (Sensaura Ltd) -- C:\WINDOWS\System32\Audio3D.dll
[2010/03/20 18:01:00 | 000,065,536 | R--- | C] (Sensaura Ltd) -- C:\WINDOWS\System32\a3d.dll
[2010/03/20 18:01:00 | 000,065,536 | ---- | C] (Sensaura Ltd) -- C:\WINDOWS\System32\dllcache\a3d.dll
[2010/03/20 18:00:59 | 000,400,384 | R--- | C] (Sensaura) -- C:\WINDOWS\System32\drivers\ALCXSENS.SYS
[2010/03/20 18:00:56 | 007,509,504 | R--- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTLCPL.EXE
[2010/03/20 18:00:51 | 015,692,800 | R--- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL
[2010/03/20 18:00:51 | 000,067,584 | R--- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
[2010/03/20 18:00:50 | 000,626,977 | R--- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\ALCXWDM.SYS
[2010/03/20 18:00:47 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys
[2010/03/20 18:00:47 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll
[2010/03/20 18:00:46 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax
[2010/03/20 18:00:46 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys
[2010/03/20 17:57:05 | 000,495,616 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\ialmgdev.dll
[2010/03/20 17:57:05 | 000,061,440 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\iAlmCoIn_v3865.dll
[2010/03/20 17:57:04 | 002,285,568 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\ialmgicd.dll
[2010/03/20 17:57:04 | 000,167,936 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrhun.lrc
[2010/03/20 17:57:04 | 000,163,840 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtrk.lrc
[2010/03/20 17:57:04 | 000,106,496 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxext.exe
[2010/03/20 17:57:04 | 000,049,152 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\ialmrem.dll
[2010/03/20 17:57:04 | 000,036,864 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxexps.dll
[2010/03/20 17:57:03 | 000,172,032 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrell.lrc
[2010/03/20 17:57:03 | 000,167,936 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrrus.lrc
[2010/03/20 17:57:03 | 000,167,936 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptg.lrc
[2010/03/20 17:57:03 | 000,167,936 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptb.lrc
[2010/03/20 17:57:03 | 000,167,936 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrplk.lrc
[2010/03/20 17:57:03 | 000,167,936 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnld.lrc
[2010/03/20 17:57:03 | 000,167,936 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrita.lrc
[2010/03/20 17:57:03 | 000,167,936 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfrc.lrc
[2010/03/20 17:57:03 | 000,167,936 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfra.lrc
[2010/03/20 17:57:03 | 000,163,840 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtha.lrc
[2010/03/20 17:57:03 | 000,163,840 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsve.lrc
[2010/03/20 17:57:03 | 000,163,840 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnor.lrc
[2010/03/20 17:57:03 | 000,163,840 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcsy.lrc
[2010/03/20 17:57:03 | 000,159,744 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrkor.lrc
[2010/03/20 17:57:03 | 000,159,744 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrjpn.lrc
[2010/03/20 17:57:03 | 000,159,744 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrheb.lrc
[2010/03/20 17:57:02 | 000,172,032 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxresp.lrc
[2010/03/20 17:57:02 | 000,163,840 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfin.lrc
[2010/03/20 17:57:02 | 000,163,840 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdeu.lrc
[2010/03/20 17:57:02 | 000,163,840 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdan.lrc
[2010/03/20 17:57:02 | 000,159,744 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxreng.lrc
[2010/03/20 17:57:02 | 000,159,744 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcht.lrc
[2010/03/20 17:57:02 | 000,159,744 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrchs.lrc
[2010/03/20 17:57:02 | 000,159,744 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrarb.lrc
[2010/03/20 17:57:02 | 000,159,744 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrara.lrc
[2010/03/20 17:57:00 | 001,097,728 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxress.dll
[2010/03/20 17:57:00 | 000,159,744 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrenu.lrc
[2010/03/20 17:57:00 | 000,151,552 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxdiag.exe
[2010/03/20 17:57:00 | 000,139,264 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxdev.dll
[2010/03/20 17:57:00 | 000,126,976 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxhk.dll
[2010/03/20 17:57:00 | 000,114,688 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxzoom.exe
[2010/03/20 17:57:00 | 000,086,016 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxdo.dll
[2010/03/20 17:57:00 | 000,045,056 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxdgps.dll
[2010/03/20 17:56:59 | 000,487,424 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcfg.exe
[2010/03/20 17:56:59 | 000,225,280 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxpph.dll
[2010/03/20 17:56:59 | 000,221,184 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxeud.dll
[2010/03/20 17:56:59 | 000,094,208 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcpl.cpl
[2010/03/20 17:56:58 | 000,748,091 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\ialmdd5.dll
[2010/03/20 17:56:58 | 000,344,064 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxsrvc.dll
[2010/03/20 17:56:58 | 000,151,259 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\ialmdev5.dll
[2010/03/20 17:56:58 | 000,118,784 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\hccutils.dll
[2010/03/20 17:56:58 | 000,099,388 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\ialmdnt5.dll
[2010/03/20 17:56:58 | 000,069,632 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\oemdspif.dll
[2010/03/20 17:56:57 | 000,037,951 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\ialmrnt5.dll
[2010/03/20 17:52:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData
[2010/03/20 17:36:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\Identities
[2010/03/20 17:36:55 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2010/03/20 17:36:51 | 000,000,000 | R--D | C] -- C:\Documents and Settings\jhn barrett\My Documents\My Music
[2010/03/20 17:36:50 | 000,000,000 | R--D | C] -- C:\Documents and Settings\jhn barrett\My Documents\My Pictures
[2010/03/20 17:36:47 | 000,000,000 | --SD | C] -- C:\Documents and Settings\jhn barrett\Application Data\Microsoft
[2010/03/20 17:36:47 | 000,000,000 | --SD | C] -- C:\Documents and Settings\jhn barrett\Cookies
[2010/03/20 17:36:47 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\jhn barrett\SendTo
[2010/03/20 17:36:47 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\jhn barrett\Recent
[2010/03/20 17:36:47 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\jhn barrett\Application Data
[2010/03/20 17:36:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\jhn barrett\Start Menu
[2010/03/20 17:36:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\jhn barrett\My Documents
[2010/03/20 17:36:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\jhn barrett\Favorites
[2010/03/20 17:36:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\jhn barrett\Templates
[2010/03/20 17:36:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\jhn barrett\PrintHood
[2010/03/20 17:36:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\jhn barrett\NetHood
[2010/03/20 17:36:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\jhn barrett\Local Settings
[2010/03/20 17:36:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Local Settings\Application Data\Microsoft
[2010/03/20 17:36:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Desktop
[2010/03/20 17:34:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2010/03/20 17:34:52 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2010/03/20 17:32:43 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime
[2010/03/20 17:32:43 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime
[2010/03/20 17:32:42 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime
[2010/03/20 17:32:42 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime
[2010/03/20 17:32:42 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime
[2010/03/20 17:32:41 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime
[2010/03/20 17:32:40 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll
[2010/03/20 17:32:40 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys
[2010/03/20 17:32:38 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll
[2010/03/20 17:32:37 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll
[2010/03/20 17:32:37 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll
[2010/03/20 17:32:35 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll
[2010/03/20 17:32:35 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime
[2010/03/20 17:32:34 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe
[2010/03/20 17:32:33 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe
[2010/03/20 17:32:33 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll
[2010/03/20 17:32:32 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime
[2010/03/20 17:32:32 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll
[2010/03/20 17:32:32 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe
[2010/03/20 17:32:31 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys
[2010/03/20 17:32:31 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys
[2010/03/20 17:32:31 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys
[2010/03/20 17:32:28 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll
[2010/03/20 17:32:26 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll
[2010/03/20 17:32:25 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll
[2010/03/20 17:32:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll
[2010/03/20 17:32:24 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll
[2010/03/20 17:32:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll
[2010/03/20 17:32:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll
[2010/03/20 17:32:23 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll
[2010/03/20 17:32:23 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll
[2010/03/20 17:32:23 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll
[2010/03/20 17:32:23 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll
[2010/03/20 17:32:23 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll
[2010/03/20 17:32:23 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll
[2010/03/20 17:32:22 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll
[2010/03/20 17:32:22 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll
[2010/03/20 17:32:22 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll
[2010/03/20 17:32:22 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll
[2010/03/20 17:32:22 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll
[2010/03/20 17:32:22 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll
[2010/03/20 17:32:22 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll
[2010/03/20 17:32:22 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll
[2010/03/20 17:32:22 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll
[2010/03/20 17:32:17 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll
[2010/03/20 17:32:16 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll
[2010/03/20 17:32:15 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2010/03/20 17:32:15 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2010/03/20 17:32:13 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime
[2010/03/20 17:32:12 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe
[2010/03/20 17:32:12 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe
[2010/03/20 17:32:10 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime
[2010/03/20 17:32:10 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe
[2010/03/20 17:32:09 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe
[2010/03/20 17:32:07 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll
[2010/03/20 17:32:07 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe
[2010/03/20 17:32:07 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll
[2010/03/20 17:32:07 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll
[2010/03/20 17:32:07 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll
[2010/03/20 17:32:06 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime
[2010/03/20 17:32:06 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime
[2010/03/20 17:32:06 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll
[2010/03/20 17:32:05 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll
[2010/03/20 17:32:05 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll
[2010/03/20 17:32:05 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll
[2010/03/20 17:32:05 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll
[2010/03/20 17:32:02 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll
[2010/03/20 17:31:57 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll
[2010/03/20 17:31:52 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex
[2010/03/20 17:31:52 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll
[2010/03/20 17:31:42 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys
[2010/03/20 17:31:42 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll
[2010/03/20 17:31:40 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll
[2010/03/20 17:31:37 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll
[2010/03/20 17:31:36 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll
[2010/03/20 17:31:36 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll
[2010/03/20 17:31:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll
[2010/03/20 17:31:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll
[2010/03/20 17:31:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll
[2010/03/20 17:31:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll
[2010/03/20 17:31:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll
[2010/03/20 17:31:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll
[2010/03/20 17:31:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll
[2010/03/20 17:31:35 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll
[2010/03/20 17:31:35 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll
[2010/03/20 17:31:35 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll
[2010/03/20 17:31:34 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll
[2010/03/20 17:31:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll
[2010/03/20 17:31:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll
[2010/03/20 17:31:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll
[2010/03/20 17:31:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll
[2010/03/20 17:31:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll
[2010/03/20 17:31:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll
[2010/03/20 17:31:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll
[2010/03/20 17:31:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll
[2010/03/20 17:31:33 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll
[2010/03/20 17:31:33 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll
[2010/03/20 17:31:33 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll
[2010/03/20 17:31:33 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll
[2010/03/20 17:31:33 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll
[2010/03/20 17:31:33 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll
[2010/03/20 17:31:32 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll
[2010/03/20 17:31:32 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll
[2010/03/20 17:31:32 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll
[2010/03/20 17:31:32 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll
[2010/03/20 17:31:32 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll
[2010/03/20 17:31:29 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll
[2010/03/20 17:31:29 | 000,315,455 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll
[2010/03/20 17:31:29 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll
[2010/03/20 17:31:29 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll
[2010/03/20 17:31:29 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe
[2010/03/20 17:31:28 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe
[2010/03/20 17:31:28 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe
[2010/03/20 17:31:28 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe
[2010/03/20 17:31:27 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll
[2010/03/20 17:31:27 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll
[2010/03/20 17:31:27 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe
[2010/03/20 17:31:27 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe
[2010/03/20 17:31:27 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll
[2010/03/20 17:31:27 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe
[2010/03/20 17:31:26 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll
[2010/03/20 17:31:26 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime
[2010/03/20 17:31:26 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe
[2010/03/20 17:31:26 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll
[2010/03/20 17:31:26 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll
[2010/03/20 17:31:26 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime
[2010/03/20 17:31:26 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll
[2010/03/20 17:31:26 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe
[2010/03/20 17:31:21 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll
[2010/03/20 17:31:14 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll
[2010/03/20 17:31:12 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll
[2010/03/20 17:31:10 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll
[2010/03/20 17:31:10 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe
[2010/03/20 17:31:09 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll
[2010/03/20 17:31:09 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll
[2010/03/20 17:31:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll
[2010/03/20 17:31:06 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe
[2010/03/20 17:31:05 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll
[2010/03/20 17:31:04 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll
[2010/03/20 17:31:04 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll
[2010/03/20 17:31:04 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll
[2010/03/20 17:31:04 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys
[2010/03/20 17:31:03 | 000,514,587 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\edb500.dll
[2010/03/20 17:30:54 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime
[2010/03/20 17:30:52 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe
[2010/03/20 17:30:52 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe
[2010/03/20 17:30:49 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe
[2010/03/20 17:30:49 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime
[2010/03/20 17:30:48 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll
[2010/03/20 17:30:48 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll
[2010/03/20 17:30:48 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll
[2010/03/20 17:30:47 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll
[2010/03/20 17:30:47 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll
[2010/03/20 17:30:46 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime
[2010/03/20 17:30:46 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe
[2010/03/20 17:30:46 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe
[2010/03/20 17:30:46 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe
[2010/03/20 17:30:46 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe
[2010/03/20 17:30:44 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2010/03/20 17:30:44 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll
[2010/03/20 17:30:43 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll
[2010/03/20 17:30:33 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll
[2010/03/20 17:30:31 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll
[2010/03/20 17:30:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2010/03/20 17:30:04 | 000,000,000 | ---D | C] -- C:\Program Files\xerox
[2010/03/20 17:30:04 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2010/03/20 17:29:28 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll
[2010/03/20 17:28:31 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2010/03/20 17:28:17 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2010/03/20 17:28:16 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2010/03/20 17:28:00 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2010/03/20 17:27:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2010/03/20 17:27:13 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\notiflag.exe
[2010/03/20 17:27:13 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atrace.dll
[2010/03/20 17:27:13 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll
[2010/03/20 17:27:12 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helphost.exe
[2010/03/20 17:27:12 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brpinfo.dll
[2010/03/20 17:27:12 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hcappres.dll
[2010/03/20 17:27:04 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srdiag.exe
[2010/03/20 17:27:03 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wb32.exe
[2010/03/20 17:27:03 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmevtmsg.dll
[2010/03/20 17:27:03 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmevtmsg.dll
[2010/03/20 17:27:03 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cb32.exe
[2010/03/20 17:27:02 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\acctres.dll
[2010/03/20 17:27:02 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll
[2010/03/20 17:27:02 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msinfo32.exe
[2010/03/20 17:27:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2010/03/20 17:26:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwres.dll
[2010/03/20 17:26:59 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trialoc.dll
[2010/03/20 17:26:59 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll
[2010/03/20 17:26:59 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icfgnt5.dll
[2010/03/20 17:26:59 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2010/03/20 17:26:58 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoap1.dll
[2010/03/20 17:26:58 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwtutor.exe
[2010/03/20 17:26:58 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wisc10.dll
[2010/03/20 17:26:58 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoapr.dll
[2010/03/20 17:26:58 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe
[2010/03/20 17:26:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2010/03/20 17:26:57 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieinfo5.ocx
[2010/03/20 17:26:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2010/03/20 17:26:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2010/03/20 17:26:52 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe
[2010/03/20 17:26:52 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpvis.dll
[2010/03/20 17:26:52 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpns.dll
[2010/03/20 17:26:52 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpband.dll
[2010/03/20 17:26:51 | 000,786,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe
[2010/03/20 17:26:51 | 000,364,544 | ---- | C] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\WINDOWS\System32\dllcache\npdsplay.dll
[2010/03/20 17:26:51 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npdrmv2.dll
[2010/03/20 17:26:51 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe
[2010/03/20 17:26:51 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\custsat.dll
[2010/03/20 17:26:51 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npwmsdrm.dll
[2010/03/20 17:26:51 | 000,004,639 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplayer2.exe
[2010/03/20 17:26:50 | 001,929,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng.dll
[2010/03/20 17:26:50 | 000,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll
[2010/03/20 17:26:50 | 000,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wucltui.dll
[2010/03/20 17:26:50 | 000,209,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuweb.dll
[2010/03/20 17:26:50 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll
[2010/03/20 17:26:49 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll
[2010/03/20 17:26:49 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuapi.dll
[2010/03/20 17:26:49 | 000,217,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaucpl.cpl
[2010/03/20 17:26:49 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe
[2010/03/20 17:26:49 | 000,053,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt.exe
[2010/03/20 17:26:49 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll
[2010/03/20 17:26:49 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wups.dll
[2010/03/20 17:26:49 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll
[2010/03/20 17:26:49 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll
[2010/03/20 17:26:49 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll
[2010/03/20 17:26:45 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe
[2010/03/20 17:26:45 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2010/03/20 17:26:41 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll
[2010/03/20 17:26:41 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll
[2010/03/20 17:26:41 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll
[2010/03/20 17:26:41 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll
[2010/03/20 17:26:38 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltmc.exe
[2010/03/20 17:26:37 | 000,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll
[2010/03/20 17:26:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2010/03/20 17:26:36 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll
[2010/03/20 17:26:36 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll
[2010/03/20 17:26:36 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll
[2010/03/20 17:26:36 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\isrdbg32.dll
[2010/03/20 17:26:36 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll
[2010/03/20 17:26:33 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll
[2010/03/20 17:26:33 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll
[2010/03/20 17:26:33 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2010/03/20 17:26:32 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll
[2010/03/20 17:26:29 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe
[2010/03/20 17:26:29 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2010/03/20 17:26:28 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll
[2010/03/20 17:26:28 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll
[2010/03/20 17:26:28 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll
[2010/03/20 17:26:28 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll
[2010/03/20 17:26:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2010/03/20 17:26:17 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2010/03/20 17:26:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Pictures
[2010/03/20 17:25:58 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2010/03/20 17:25:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2010/03/20 17:25:08 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music
[2010/03/20 17:25:08 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2010/03/20 17:25:08 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services
[2010/03/20 17:25:01 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
[2010/03/20 17:25:00 | 001,817,687 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgres.dll
[2010/03/20 17:25:00 | 000,753,236 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvseres.dll
[2010/03/20 17:25:00 | 000,082,501 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckg.dll
[2010/03/20 17:25:00 | 000,048,706 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvse.dll
[2010/03/20 17:25:00 | 000,042,577 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgzm.exe
[2010/03/20 17:25:00 | 000,042,574 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe
[2010/03/20 17:24:59 | 002,178,131 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlres.dll
[2010/03/20 17:24:59 | 001,175,635 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzres.dll
[2010/03/20 17:24:59 | 000,780,885 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrres.dll
[2010/03/20 17:24:59 | 000,066,113 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvl.dll
[2010/03/20 17:24:59 | 000,057,409 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtz.dll
[2010/03/20 17:24:59 | 000,042,575 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe
[2010/03/20 17:24:59 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe
[2010/03/20 17:24:59 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe
[2010/03/20 17:24:59 | 000,040,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkr.dll
[2010/03/20 17:24:59 | 000,032,339 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniansi.dll
[2010/03/20 17:24:59 | 000,004,677 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zeeverm.dll
[2010/03/20 17:24:58 | 001,039,955 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnresm.dll
[2010/03/20 17:24:58 | 000,217,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnclim.dll
[2010/03/20 17:24:58 | 000,113,222 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zoneclim.dll
[2010/03/20 17:24:58 | 000,041,029 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zcorem.dll
[2010/03/20 17:24:58 | 000,013,894 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zonelibm.dll
[2010/03/20 17:24:57 | 000,036,937 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zclientm.exe
[2010/03/20 17:24:57 | 000,029,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\znetm.dll
[2010/03/20 17:24:57 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe
[2010/03/20 17:24:57 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\write.exe
[2010/03/20 17:24:57 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2010/03/20 17:24:49 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe
[2010/03/20 17:24:49 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndvol32.exe
[2010/03/20 17:24:49 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll
[2010/03/20 17:24:48 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avtapi.dll
[2010/03/20 17:24:48 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll
[2010/03/20 17:24:48 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avwav.dll
[2010/03/20 17:24:48 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll
[2010/03/20 17:24:48 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe
[2010/03/20 17:24:48 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winchat.exe
[2010/03/20 17:24:48 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avmeter.dll
[2010/03/20 17:24:48 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll
[2010/03/20 17:24:48 | 000,013,312 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\dllcache\htrn_jis.dll
[2010/03/20 17:24:41 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll
[2010/03/20 17:24:41 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getuname.dll
[2010/03/20 17:24:41 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe
[2010/03/20 17:24:41 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe
[2010/03/20 17:24:41 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe
[2010/03/20 17:24:41 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe
[2010/03/20 17:24:40 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe
[2010/03/20 17:24:40 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshearts.exe
[2010/03/20 17:24:40 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe
[2010/03/20 17:24:40 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe
[2010/03/20 17:24:40 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe
[2010/03/20 17:24:40 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe
[2010/03/20 17:24:40 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe
[2010/03/20 17:24:40 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe
[2010/03/20 17:24:40 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe
[2010/03/20 17:24:40 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reset.exe
[2010/03/20 17:24:39 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe
[2010/03/20 17:24:39 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regini.exe
[2010/03/20 17:24:39 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe
[2010/03/20 17:24:39 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qwinsta.exe
[2010/03/20 17:24:39 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe
[2010/03/20 17:24:39 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msg.exe
[2010/03/20 17:24:39 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe
[2010/03/20 17:24:39 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsshutdn.exe
[2010/03/20 17:24:39 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe
[2010/03/20 17:24:39 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qappsrv.exe
[2010/03/20 17:24:39 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe
[2010/03/20 17:24:39 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tskill.exe
[2010/03/20 17:24:39 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe
[2010/03/20 17:24:39 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwinsta.exe
[2010/03/20 17:24:39 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe
[2010/03/20 17:24:39 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logoff.exe
[2010/03/20 17:24:39 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe
[2010/03/20 17:24:39 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsdiscon.exe
[2010/03/20 17:24:39 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe
[2010/03/20 17:24:39 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscon.exe
[2010/03/20 17:24:39 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe
[2010/03/20 17:24:39 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shadow.exe
[2010/03/20 17:24:39 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll
[2010/03/20 17:24:39 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpcfgex.dll
[2010/03/20 17:24:38 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtsadmin.tlb
[2010/03/20 17:24:38 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdmodem.dll
[2010/03/20 17:24:38 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll
[2010/03/20 17:24:37 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll
[2010/03/20 17:24:37 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll
[2010/03/20 17:24:37 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll
[2010/03/20 17:24:37 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll
[2010/03/20 17:24:37 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll
[2010/03/20 17:24:37 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll
[2010/03/20 17:24:37 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe
[2010/03/20 17:24:37 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll
[2010/03/20 17:24:36 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmi2xml.dll
[2010/03/20 17:24:33 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\updprov.dll
[2010/03/20 17:24:33 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipicmp.dll
[2010/03/20 17:24:33 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmplprov.dll
[2010/03/20 17:24:33 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmimsg.dll
[2010/03/20 17:24:33 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.tlb
[2010/03/20 17:24:33 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trnsprov.dll
[2010/03/20 17:24:33 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmitimep.dll
[2010/03/20 17:24:33 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.tlb
[2010/03/20 17:24:33 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unsecapp.exe
[2010/03/20 17:24:33 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmtr.dll
[2010/03/20 17:24:33 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmt.exe
[2010/03/20 17:24:33 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.dll
[2010/03/20 17:24:32 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiprov.dll
[2010/03/20 17:24:32 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsprov.dll
[2010/03/20 17:24:32 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fwdprov.dll
[2010/03/20 17:24:32 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpcons.dll
[2010/03/20 17:24:22 | 000,000,000 | ---D | C] -- C:\Program Files\MSN
[2010/03/20 17:24:21 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe
[2010/03/20 17:24:21 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl
[2010/03/20 17:24:20 | 000,347,136 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll
[2010/03/20 17:24:20 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe
[2010/03/20 17:24:20 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe
[2010/03/20 17:24:20 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe
[2010/03/20 17:24:20 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe
[2010/03/20 17:24:20 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2010/03/20 17:24:19 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe
[2010/03/20 17:24:19 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe
[2010/03/20 17:24:18 | 000,655,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstscax.dll
[2010/03/20 17:24:18 | 000,407,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstsc.exe
[2010/03/20 17:24:18 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll
[2010/03/20 17:24:18 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll
[2010/03/20 17:24:18 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe
[2010/03/20 17:24:18 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe
[2010/03/20 17:24:17 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll
[2010/03/20 17:24:17 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe
[2010/03/20 17:24:17 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscupgrd.exe
[2010/03/20 17:24:17 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscupgrd.exe
[2010/03/20 17:24:17 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll
[2010/03/20 17:24:17 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll
[2010/03/20 17:24:17 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe
[2010/03/20 17:24:17 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icaapi.dll
[2010/03/20 17:24:16 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll
[2010/03/20 17:24:16 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll
[2010/03/20 17:24:16 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll
[2010/03/20 17:24:16 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxoci.dll
[2010/03/20 17:24:16 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll
[2010/03/20 17:24:16 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll
[2010/03/20 17:24:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2010/03/20 17:24:15 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll
[2010/03/20 17:24:15 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll
[2010/03/20 17:24:15 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\colbact.dll
[2010/03/20 17:24:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2010/03/20 17:24:14 | 001,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsvcs.dll
[2010/03/20 17:24:14 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvut.dll
[2010/03/20 17:24:14 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrv.dll
[2010/03/20 17:24:13 | 000,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll
[2010/03/20 17:24:08 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll
[2010/03/20 17:24:08 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll
[2010/03/20 17:24:06 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll
[2010/03/20 17:24:05 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll
[2010/03/20 17:19:32 | 000,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\enum1394.sys
[2010/03/20 17:19:17 | 000,020,992 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\drivers\RTL8139.sys
[2010/03/20 17:19:05 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irftp.exe
[2010/03/20 17:19:04 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wshirda.dll
[2010/03/20 17:18:57 | 000,035,871 | ---- | C] (Winbond Electronics Corp.) -- C:\WINDOWS\System32\drivers\wbfirdma.sys
[2010/03/20 17:18:31 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll
[2010/03/20 17:18:18 | 000,014,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\battc.sys
[2010/03/20 17:16:44 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2010/03/20 17:16:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2010/03/20 17:16:41 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll
[2010/03/20 17:16:41 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll
[2010/03/20 17:16:40 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll
[2010/03/20 17:16:39 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe
[2010/03/20 17:16:39 | 000,000,000 | R--D | C] -- C:\Program Files
[2010/03/20 17:16:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2010/03/20 17:16:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2010/03/20 17:16:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2010/03/20 17:16:36 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll
[2010/03/20 17:16:36 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll
[2010/03/20 17:16:36 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll
[2010/03/20 17:16:36 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll
[2010/03/20 17:16:36 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll
[2010/03/20 17:16:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll
[2010/03/20 17:16:34 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll
[2010/03/20 17:16:34 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll
[2010/03/20 17:16:34 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll
[2010/03/20 17:16:34 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll
[2010/03/20 17:16:34 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll
[2010/03/20 17:16:34 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll
[2010/03/20 17:16:34 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll
[2010/03/20 17:16:34 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll
[2010/03/20 17:16:34 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll
[2010/03/20 17:16:34 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll
[2010/03/20 17:16:34 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll
[2010/03/20 17:16:34 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll
[2010/03/20 17:16:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll
[2010/03/20 17:16:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll
[2010/03/20 17:16:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll
[2010/03/20 17:16:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll
[2010/03/20 17:16:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll
[2010/03/20 17:16:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll
[2010/03/20 17:16:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll
[2010/03/20 17:16:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll
[2010/03/20 17:16:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll
[2010/03/20 17:16:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll
[2010/03/20 17:16:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll
[2010/03/20 17:16:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll
[2010/03/20 17:16:32 | 000,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll
[2010/03/20 17:16:32 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll
[2010/03/20 17:16:32 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll
[2010/03/20 17:16:32 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll
[2010/03/20 17:16:32 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll
[2010/03/20 17:16:32 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll
[2010/03/20 17:16:32 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll
[2010/03/20 17:16:32 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll
[2010/03/20 17:16:32 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll
[2010/03/20 17:16:32 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll
[2010/03/20 17:16:32 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll
[2010/03/20 17:16:32 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll
[2010/03/20 17:16:32 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll
[2010/03/20 17:16:32 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll
[2010/03/20 17:16:31 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll
[2010/03/20 17:16:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll
[2010/03/20 17:16:31 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll
[2010/03/20 17:16:31 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll
[2010/03/20 17:16:31 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll
[2010/03/20 17:16:31 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll
[2010/03/20 17:16:30 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll
[2010/03/20 17:16:30 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll
[2010/03/20 17:16:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll
[2010/03/20 17:16:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll
[2010/03/20 17:16:29 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll
[2010/03/20 17:16:29 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll
[2010/03/20 17:16:29 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll
[2010/03/20 17:16:29 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll
[2010/03/20 17:16:29 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll
[2010/03/20 17:16:29 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl.dll
[2010/03/20 17:16:29 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll
[2010/03/20 17:16:29 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll
[2010/03/20 17:16:28 | 000,007,168 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz.dll
[2010/03/20 17:16:28 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz.dll
[2010/03/20 17:16:28 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll
[2010/03/20 17:16:28 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll
[2010/03/20 17:16:28 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz2.dll
[2010/03/20 17:16:28 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz1.dll
[2010/03/20 17:16:28 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll
[2010/03/20 17:16:28 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL
[2010/03/20 17:16:28 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll
[2010/03/20 17:16:28 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll
[2010/03/20 17:16:28 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz2.dll
[2010/03/20 17:16:28 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz1.dll
[2010/03/20 17:16:28 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll
[2010/03/20 17:16:28 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll
[2010/03/20 17:16:28 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll
[2010/03/20 17:16:28 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll
[2010/03/20 17:16:28 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl1.dll
[2010/03/20 17:16:28 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll
[2010/03/20 17:16:26 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2010/03/20 17:16:26 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll
[2010/03/20 17:16:25 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll
[2010/03/20 17:16:25 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll
[2010/03/20 17:16:25 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll
[2010/03/20 17:16:25 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll
[2010/03/20 17:16:25 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgsetup.dll
[2010/03/20 17:16:25 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll
[2010/03/20 17:16:25 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2010/03/20 17:16:25 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll
[2010/03/20 17:16:25 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL
[2010/03/20 17:16:25 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV
[2010/03/20 17:16:25 | 000,009,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL
[2010/03/20 17:16:25 | 000,004,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV
[2010/03/20 17:16:25 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV
[2010/03/20 17:16:24 | 000,126,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL
[2010/03/20 17:16:24 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL
[2010/03/20 17:16:24 | 000,073,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV
[2010/03/20 17:16:24 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV
[2010/03/20 17:16:24 | 000,025,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV
[2010/03/20 17:16:24 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL
[2010/03/20 17:16:24 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL
[2010/03/20 17:16:24 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV
[2010/03/20 17:16:24 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV
[2010/03/20 17:16:24 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV
[2010/03/20 17:16:24 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK
[2010/03/20 17:16:23 | 000,109,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL
[2010/03/20 17:16:23 | 000,069,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL
[2010/03/20 17:16:23 | 000,032,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL
[2010/03/20 17:16:23 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE
[2010/03/20 17:16:23 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe
[2010/03/20 17:16:23 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL
[2010/03/20 17:16:23 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV
[2010/03/20 17:16:22 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\winspool.drv
[2010/03/20 17:16:22 | 000,068,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL
[2010/03/20 17:16:22 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll
[2010/03/20 17:16:19 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll
[2010/03/20 17:16:08 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu
[2010/03/20 17:16:08 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents
[2010/03/20 17:16:08 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Templates
[2010/03/20 17:16:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Favorites
[2010/03/20 17:16:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Desktop
[2010/03/20 17:15:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2010/03/20 17:15:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2010/03/20 17:15:45 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2010/03/20 17:15:45 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data
[2010/03/20 17:15:16 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2010/03/20 17:15:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2010/03/20 17:07:26 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2010/03/20 17:07:26 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2010/03/20 17:07:26 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2010/03/20 17:07:26 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025

========== Files - Modified Within 30 Days ==========

[2010/03/25 23:11:43 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/03/25 23:11:38 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/03/25 23:10:44 | 002,097,152 | -H-- | M] () -- C:\Documents and Settings\jhn barrett\NTUSER.DAT
[2010/03/25 23:10:44 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\jhn barrett\ntuser.ini
[2010/03/25 23:10:19 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2010/03/25 22:59:18 | 003,704,088 | -H-- | M] () -- C:\Documents and Settings\jhn barrett\Local Settings\Application Data\IconCache.db
[2010/03/25 22:55:42 | 000,132,597 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\Flash_Disinfector.exe
[2010/03/25 22:50:22 | 000,214,525 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\kasp2.jpg
[2010/03/25 22:50:22 | 000,022,248 | ---- | M] () -- C:\Documents and Settings\jhn barrett\.recently-used.xbel
[2010/03/25 22:28:26 | 000,031,461 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\kasp.jpg
[2010/03/25 22:23:39 | 000,007,168 | ---- | M] () -- C:\WINDOWS\System32\drivers\utezmtyx.sys
[2010/03/25 22:01:08 | 000,000,246 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2010/03/25 13:39:30 | 000,071,081 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\avast.jpg
[2010/03/25 06:18:07 | 000,312,172 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/03/25 06:18:07 | 000,040,394 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010/03/25 06:18:05 | 000,356,120 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010/03/25 06:17:44 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010/03/25 06:14:50 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/03/25 06:13:58 | 000,143,624 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/03/25 05:48:33 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2010/03/25 04:57:03 | 016,883,056 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\jhn barrett\Desktop\IE8-WindowsXP-x86-ENU.exe
[2010/03/25 01:15:52 | 000,001,700 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2010/03/25 01:15:47 | 000,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010/03/25 01:14:38 | 045,942,928 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\setup_av_free.exe
[2010/03/25 00:53:16 | 000,000,081 | ---- | M] () -- C:\WINDOWS\System32\asr_gdbnn
[2010/03/25 00:50:09 | 000,000,077 | ---- | M] () -- C:\WINDOWS\System32\asr_fbuqla
[2010/03/24 23:58:26 | 000,000,079 | ---- | M] () -- C:\WINDOWS\System32\asr_foynlr
[2010/03/24 23:34:46 | 000,000,080 | ---- | M] () -- C:\WINDOWS\System32\asr_yrhxgb
[2010/03/24 23:32:38 | 000,212,992 | ---- | M] (PMs) -- C:\WINDOWS\System32\84.exe
[2010/03/24 23:31:03 | 000,000,080 | ---- | M] () -- C:\WINDOWS\System32\asr_exycnb
[2010/03/24 23:24:21 | 000,000,079 | ---- | M] () -- C:\WINDOWS\System32\asr_gvftw
[2010/03/24 22:42:21 | 000,000,079 | ---- | M] () -- C:\WINDOWS\System32\asr_nchui
[2010/03/24 22:33:48 | 000,013,824 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\avenge2.wps
[2010/03/24 22:33:48 | 000,002,900 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Application Data\wklnhst.dat
[2010/03/24 22:25:33 | 000,011,776 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\definition of gordon brown and the labour party.wps
[2010/03/24 20:20:20 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/03/24 20:19:25 | 005,115,824 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\jhn barrett\Desktop\mbam-setup.exe
[2010/03/24 14:16:06 | 000,284,915 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\gmer.zip
[2010/03/24 13:21:25 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010/03/24 12:45:59 | 000,014,848 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\otm text.wps
[2010/03/24 12:39:22 | 000,510,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\jhn barrett\Desktop\OTM.exe
[2010/03/24 06:48:50 | 000,000,785 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\subscribe.miro
[2010/03/24 06:47:00 | 000,001,819 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Miro.lnk
[2010/03/24 06:36:29 | 000,282,606 | ---- | M] (Participatory Culture Foundation) -- C:\Documents and Settings\jhn barrett\Desktop\Miro_Installer.exe
[2010/03/24 06:20:00 | 000,056,338 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\Christiane_F..3503763.TPB.torrent
[2010/03/24 05:56:34 | 000,000,785 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\subscribe.miro
[2010/03/24 05:56:08 | 000,257,422 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\Christiane_F._-_Wir_Kinder_vom_Bahnhof_Zoo.5408545.TPB.torrent
[2010/03/24 05:40:57 | 000,673,809 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\ConservativeTechnologyManifesto.pdf
[2010/03/24 05:07:07 | 000,235,370 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\FixingBrokenPoliticsPartTwo.ashx
[2010/03/24 05:01:05 | 000,442,173 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\FixingBrokenPoliticsPartOne.ashx
[2010/03/24 04:56:43 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2010/03/24 04:53:56 | 027,386,256 | ---- | M] ( ) -- C:\Documents and Settings\jhn barrett\Desktop\AdbeRdr930_en_US.exe
[2010/03/23 20:09:02 | 000,360,448 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\kasp report 2.wps
[2010/03/23 13:48:38 | 068,146,672 | ---- | M] ( ) -- C:\Documents and Settings\jhn barrett\Desktop\setup_9.0.0.722_23.03.2010_14-47.exe
[2010/03/23 13:46:18 | 002,672,312 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\esetsmartinstaller_enu.exe
[2010/03/23 13:38:36 | 034,952,464 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\drweb-cureit.exe
[2010/03/23 10:43:00 | 002,533,663 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\installer_dr_web_cureit!_5_00_2_[10_03_2009]_English.exe
[2010/03/23 01:33:54 | 000,724,952 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\avenger.zip
[2010/03/23 00:44:57 | 000,444,416 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\jhn barrett\Desktop\TFC.exe
[2010/03/22 21:41:52 | 000,451,584 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\CKScanner.exe
[2010/03/22 18:45:54 | 000,000,281 | RHS- | M] () -- C:\boot.ini
[2010/03/22 18:34:24 | 000,173,119 | ---- | M] (Eric_71) -- C:\Documents and Settings\jhn barrett\Desktop\Rooter.exe
[2010/03/22 15:08:02 | 001,607,032 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\jhn barrett\Desktop\MGADiag.exe
[2010/03/22 05:41:29 | 000,000,790 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\GIMP 2.lnk
[2010/03/22 04:07:01 | 000,048,640 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\malware remove.wps
[2010/03/21 23:18:04 | 000,939,956 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\7zip.exe
[2010/03/21 23:13:24 | 000,555,520 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\jhn barrett\Desktop\OTL.exe
[2010/03/21 23:12:11 | 000,791,393 | ---- | M] (Lars Hederer ) -- C:\Documents and Settings\jhn barrett\Desktop\erunt_setup.exe
[2010/03/21 04:53:01 | 000,000,892 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\DVDVideoSoft Free Studio.lnk
[2010/03/21 04:17:28 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2010/03/21 04:17:28 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010/03/21 04:17:28 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010/03/21 04:17:28 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010/03/21 04:17:28 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2010/03/21 04:16:06 | 000,924,448 | ---- | M] (Sun Microsystems, Inc.) -- C:\Documents and Settings\jhn barrett\Desktop\jre-6u18-windows-i586-iftw-rv.exe
[2010/03/21 04:13:53 | 001,924,976 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\jhn barrett\Desktop\install_flash_player.exe
[2010/03/21 03:20:11 | 000,284,050 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\James-Caans-Essential-Business-Tips.pdf
[2010/03/20 23:50:27 | 000,154,624 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\bookmarks.wps
[2010/03/20 23:25:43 | 000,891,248 | ---- | M] (AVG Technologies) -- C:\Documents and Settings\jhn barrett\Desktop\avg_free_stb_all_9_40_cnet.exe
[2010/03/20 23:09:04 | 000,029,528 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010/03/20 22:29:05 | 000,000,698 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\Evrsoft First Page 2006.lnk
[2010/03/20 21:50:32 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk
[2010/03/20 21:45:13 | 000,000,025 | ---- | M] () -- C:\WINDOWS\cdplayer.ini
[2010/03/20 21:44:07 | 000,000,897 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\RealPlayer.lnk
[2010/03/20 21:44:00 | 000,185,944 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll
[2010/03/20 21:43:54 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll
[2010/03/20 21:43:54 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll
[2010/03/20 21:43:53 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010/03/20 18:32:08 | 000,001,617 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\ZTE Mobile Connection.lnk
[2010/03/20 18:23:11 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\K-Meleon.lnk
[2010/03/20 18:22:05 | 000,000,465 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\Shortcut to whypay4it.net.lnk
[2010/03/20 17:34:26 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2010/03/20 17:33:21 | 000,000,302 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2010/03/20 17:29:50 | 000,000,477 | ---- | M] () -- C:\WINDOWS\win.ini
[2010/03/20 17:29:50 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010/03/20 17:29:50 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010/03/20 17:29:50 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini
[2010/03/20 17:29:50 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010/03/20 17:29:50 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010/03/20 17:29:41 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010/03/20 17:29:41 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010/03/20 17:29:28 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2010/03/20 17:28:16 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010/03/20 17:28:16 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010/03/20 17:26:12 | 000,021,640 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010/03/20 17:25:54 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini
[2010/03/20 17:25:54 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini
[2010/03/20 17:22:55 | 000,000,211 | ---- | M] () -- C:\Boot.bak
[2010/03/20 11:30:54 | 000,205,017 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\ins3.xcf
[2010/03/20 01:31:38 | 000,335,330 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\ins2.xcf
[2010/03/20 01:30:06 | 000,283,904 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\ins.xcf
[2010/03/20 01:27:28 | 000,173,010 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\dtop.xcf
[2010/03/12 18:02:38 | 000,261,632 | ---- | M] () -- C:\WINDOWS\PEV.exe
[2010/03/09 11:24:23 | 000,038,848 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\avastSS.scr
[2010/03/09 11:24:05 | 000,153,184 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2010/03/09 11:12:54 | 000,046,672 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2010/03/09 11:12:33 | 000,162,640 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2010/03/09 11:09:08 | 000,023,376 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2010/03/09 11:08:41 | 000,100,432 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2010/03/09 11:08:38 | 000,094,800 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2010/03/09 11:08:30 | 000,019,024 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010/03/09 11:08:15 | 000,028,880 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2010/03/01 20:39:16 | 000,000,058 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\2lktt.bat
[2010/03/01 20:37:00 | 000,000,058 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\ak2opp.bat

========== Files Created - No Company Name ==========

[2010/03/25 22:55:39 | 000,132,597 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\Flash_Disinfector.exe
[2010/03/25 22:50:22 | 000,022,248 | ---- | C] () -- C:\Documents and Settings\jhn barrett\.recently-used.xbel
[2010/03/25 22:43:01 | 000,214,525 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\kasp2.jpg
[2010/03/25 22:28:26 | 000,031,461 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\kasp.jpg
[2010/03/25 22:23:35 | 000,007,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\utezmtyx.sys
[2010/03/25 13:39:29 | 000,071,081 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\avast.jpg
[2010/03/25 05:24:40 | 000,613,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm
[2010/03/25 05:24:40 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav
[2010/03/25 05:24:40 | 000,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta
[2010/03/25 05:24:40 | 000,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css
[2010/03/25 05:24:40 | 000,000,855 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf
[2010/03/25 05:24:40 | 000,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js
[2010/03/25 05:24:39 | 000,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav
[2010/03/25 05:24:39 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav
[2010/03/25 05:24:39 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav
[2010/03/25 05:24:39 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav
[2010/03/25 05:24:39 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav
[2010/03/25 05:24:39 | 000,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav
[2010/03/25 05:24:39 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav
[2010/03/25 05:24:39 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav
[2010/03/25 05:24:38 | 000,017,272 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf
[2010/03/25 05:24:38 | 000,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif
[2010/03/25 05:24:38 | 000,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif
[2010/03/25 05:24:38 | 000,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif
[2010/03/25 05:24:38 | 000,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif
[2010/03/25 05:24:38 | 000,006,769 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf
[2010/03/25 05:24:38 | 000,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif
[2010/03/25 05:24:38 | 000,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif
[2010/03/25 05:24:38 | 000,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif
[2010/03/25 05:24:38 | 000,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif
[2010/03/25 05:24:38 | 000,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif
[2010/03/25 05:24:34 | 000,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv
[2010/03/25 05:24:34 | 000,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif
[2010/03/25 05:24:34 | 000,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif
[2010/03/25 05:24:30 | 000,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif
[2010/03/25 05:24:30 | 000,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js
[2010/03/25 05:24:30 | 000,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif
[2010/03/25 05:24:30 | 000,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif
[2010/03/25 05:24:30 | 000,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif
[2010/03/25 05:24:30 | 000,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif
[2010/03/25 05:24:29 | 000,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif
[2010/03/25 05:24:29 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif
[2010/03/25 05:24:29 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif
[2010/03/25 05:24:29 | 000,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif
[2010/03/25 05:24:25 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm
[2010/03/25 05:24:25 | 000,000,908 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf
[2010/03/25 05:24:20 | 000,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv
[2010/03/25 05:24:19 | 000,077,307 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm
[2010/03/25 05:24:17 | 000,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv
[2010/03/25 05:24:17 | 000,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip
[2010/03/25 05:24:17 | 000,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip
[2010/03/25 05:24:14 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2010/03/25 05:24:07 | 000,018,286 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf
[2010/03/25 05:24:07 | 000,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif
[2010/03/25 05:24:07 | 000,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif
[2010/03/25 05:24:06 | 000,097,117 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.hlp
[2010/03/25 05:24:06 | 000,001,885 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.cnt
[2010/03/25 05:24:02 | 000,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv
[2010/03/25 05:23:38 | 000,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js
[2010/03/25 05:22:27 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2010/03/25 05:22:26 | 000,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv
[2010/03/25 05:22:25 | 000,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css
[2010/03/25 05:22:25 | 000,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm
[2010/03/25 05:22:25 | 000,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js
[2010/03/25 05:22:24 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif
[2010/03/25 05:22:24 | 000,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif
[2010/03/25 05:22:23 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif
[2010/03/25 05:22:23 | 000,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif
[2010/03/25 05:22:23 | 000,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif
[2010/03/25 05:22:19 | 000,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif
[2010/03/25 05:16:08 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
[2010/03/25 01:15:52 | 000,001,700 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2010/03/25 01:12:07 | 045,942,928 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\setup_av_free.exe
[2010/03/25 00:53:16 | 000,000,081 | ---- | C] () -- C:\WINDOWS\System32\asr_gdbnn
[2010/03/25 00:50:09 | 000,000,077 | ---- | C] () -- C:\WINDOWS\System32\asr_fbuqla
[2010/03/24 23:58:26 | 000,000,079 | ---- | C] () -- C:\WINDOWS\System32\asr_foynlr
[2010/03/24 23:34:46 | 000,000,080 | ---- | C] () -- C:\WINDOWS\System32\asr_yrhxgb
[2010/03/24 23:31:03 | 000,000,080 | ---- | C] () -- C:\WINDOWS\System32\asr_exycnb
[2010/03/24 23:24:20 | 000,000,079 | ---- | C] () -- C:\WINDOWS\System32\asr_gvftw
[2010/03/24 22:42:21 | 000,000,079 | ---- | C] () -- C:\WINDOWS\System32\asr_nchui
[2010/03/24 22:33:48 | 000,013,824 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\avenge2.wps
[2010/03/24 22:20:13 | 000,011,776 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\definition of gordon brown and the labour party.wps
[2010/03/24 20:20:20 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/03/24 14:16:04 | 000,284,915 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\gmer.zip
[2010/03/24 13:51:54 | 001,291,776 | ---- | C] () -- C:\WINDOWS\System32\dllcache\quartz.dll
[2010/03/24 12:45:58 | 000,014,848 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\otm text.wps
[2010/03/24 06:48:50 | 000,000,785 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\subscribe.miro
[2010/03/24 06:47:00 | 000,001,819 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Miro.lnk
[2010/03/24 06:19:59 | 000,056,338 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\Christiane_F..3503763.TPB.torrent
[2010/03/24 05:56:34 | 000,000,785 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\subscribe.miro
[2010/03/24 05:56:04 | 000,257,422 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\Christiane_F._-_Wir_Kinder_vom_Bahnhof_Zoo.5408545.TPB.torrent
[2010/03/24 05:40:49 | 000,673,809 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\ConservativeTechnologyManifesto.pdf
[2010/03/24 05:07:07 | 000,235,370 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\FixingBrokenPoliticsPartTwo.ashx
[2010/03/24 05:01:05 | 000,442,173 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\FixingBrokenPoliticsPartOne.ashx
[2010/03/24 04:56:42 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2010/03/23 20:25:42 | 000,360,448 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\kasp report 2.wps
[2010/03/23 15:11:47 | 002,672,312 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\esetsmartinstaller_enu.exe
[2010/03/23 15:11:39 | 034,952,464 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\drweb-cureit.exe
[2010/03/23 10:42:43 | 002,533,663 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\installer_dr_web_cureit!_5_00_2_[10_03_2009]_English.exe
[2010/03/23 01:33:53 | 000,724,952 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\avenger.zip
[2010/03/22 21:41:41 | 000,451,584 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\CKScanner.exe
[2010/03/22 18:45:54 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2010/03/22 18:45:50 | 000,260,272 | ---- | C] () -- C:\cmldr
[2010/03/22 15:16:45 | 000,261,632 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010/03/22 15:16:45 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010/03/22 15:16:45 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010/03/22 15:16:45 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010/03/22 15:16:45 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010/03/22 05:41:29 | 000,000,790 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\GIMP 2.lnk
[2010/03/21 23:17:32 | 000,939,956 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\7zip.exe
[2010/03/21 23:16:11 | 000,048,640 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\malware remove.wps
[2010/03/21 04:53:24 | 000,000,246 | ---- | C] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2010/03/21 04:53:01 | 000,000,892 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\DVDVideoSoft Free Studio.lnk
[2010/03/21 03:20:08 | 000,284,050 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\James-Caans-Essential-Business-Tips.pdf
[2010/03/20 23:50:26 | 000,154,624 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\bookmarks.wps
[2010/03/20 23:44:45 | 000,002,900 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Application Data\wklnhst.dat
[2010/03/20 22:29:05 | 000,000,698 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\Evrsoft First Page 2006.lnk
[2010/03/20 21:50:32 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk
[2010/03/20 21:45:13 | 000,000,025 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2010/03/20 21:44:07 | 000,000,897 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\RealPlayer.lnk
[2010/03/20 18:31:58 | 000,001,617 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\ZTE Mobile Connection.lnk
[2010/03/20 18:23:10 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\K-Meleon.lnk
[2010/03/20 18:22:05 | 000,000,465 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\Shortcut to whypay4it.net.lnk
[2010/03/20 18:01:00 | 000,155,648 | R--- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2010/03/20 18:00:56 | 000,141,016 | R--- | C] () -- C:\WINDOWS\System32\ALSNDMGR.WAV
[2010/03/20 17:57:02 | 000,067,380 | R--- | C] () -- C:\WINDOWS\System32\igfxhhun.lhp
[2010/03/20 17:57:02 | 000,063,938 | R--- | C] () -- C:\WINDOWS\System32\igfxhtrk.lhp
[2010/03/20 17:57:02 | 000,061,984 | R--- | C] () -- C:\WINDOWS\System32\igfxhsve.lhp
[2010/03/20 17:57:02 | 000,061,869 | R--- | C] () -- C:\WINDOWS\System32\igfxhtha.lhp
[2010/03/20 17:57:02 | 000,061,388 | R--- | C] () -- C:\WINDOWS\System32\igfxhptg.lhp
[2010/03/20 17:57:02 | 000,060,547 | R--- | C] () -- C:\WINDOWS\System32\igfxhell.lhp
[2010/03/20 17:57:02 | 000,060,436 | R--- | C] () -- C:\WINDOWS\System32\igfxhptb.lhp
[2010/03/20 17:57:02 | 000,060,216 | R--- | C] () -- C:\WINDOWS\System32\igfxhrus.lhp
[2010/03/20 17:57:02 | 000,059,760 | R--- | C] () -- C:\WINDOWS\System32\igfxhcsy.lhp
[2010/03/20 17:57:01 | 000,065,087 | R--- | C] () -- C:\WINDOWS\System32\igfxhkor.lhp
[2010/03/20 17:57:01 | 000,062,815 | R--- | C] () -- C:\WINDOWS\System32\igfxhplk.lhp
[2010/03/20 17:57:01 | 000,062,509 | R--- | C] () -- C:\WINDOWS\System32\igfxhdeu.lhp
[2010/03/20 17:57:01 | 000,061,950 | R--- | C] () -- C:\WINDOWS\System32\igfxhfrc.lhp
[2010/03/20 17:57:01 | 000,061,799 | R--- | C] () -- C:\WINDOWS\System32\igfxhfin.lhp
[2010/03/20 17:57:01 | 000,061,511 | R--- | C] () -- C:\WINDOWS\System32\igfxhfra.lhp
[2010/03/20 17:57:01 | 000,060,848 | R--- | C] () -- C:\WINDOWS\System32\igfxhesp.lhp
[2010/03/20 17:57:01 | 000,060,758 | R--- | C] () -- C:\WINDOWS\System32\igfxhjpn.lhp
[2010/03/20 17:57:01 | 000,060,476 | R--- | C] () -- C:\WINDOWS\System32\igfxhdan.lhp
[2010/03/20 17:57:01 | 000,059,861 | R--- | C] () -- C:\WINDOWS\System32\igfxharb.lhp
[2010/03/20 17:57:01 | 000,059,753 | R--- | C] () -- C:\WINDOWS\System32\igfxhara.lhp
[2010/03/20 17:57:01 | 000,059,448 | R--- | C] () -- C:\WINDOWS\System32\igfxhnld.lhp
[2010/03/20 17:57:01 | 000,059,350 | R--- | C] () -- C:\WINDOWS\System32\igfxhnor.lhp
[2010/03/20 17:57:01 | 000,059,095 | R--- | C] () -- C:\WINDOWS\System32\igfxhita.lhp
[2010/03/20 17:57:01 | 000,059,064 | R--- | C] () -- C:\WINDOWS\System32\igfxhheb.lhp
[2010/03/20 17:57:01 | 000,058,394 | R--- | C] () -- C:\WINDOWS\System32\igfxhcht.lhp
[2010/03/20 17:57:01 | 000,057,559 | R--- | C] () -- C:\WINDOWS\System32\igfxheng.lhp
[2010/03/20 17:57:01 | 000,057,430 | R--- | C] () -- C:\WINDOWS\System32\igfxhchs.lhp
[2010/03/20 17:57:00 | 000,056,937 | R--- | C] () -- C:\WINDOWS\System32\igfxhenu.lhp
[2010/03/20 17:36:49 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\jhn barrett\ntuser.ini
[2010/03/20 17:36:47 | 002,097,152 | -H-- | C] () -- C:\Documents and Settings\jhn barrett\NTUSER.DAT
[2010/03/20 17:34:25 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2010/03/20 17:33:15 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010/03/20 17:32:53 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls
[2010/03/20 17:32:08 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls
[2010/03/20 17:32:07 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls
[2010/03/20 17:32:06 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2010/03/20 17:31:38 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls
[2010/03/20 17:31:37 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2010/03/20 17:31:29 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2010/03/20 17:31:28 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2010/03/20 17:31:25 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2010/03/20 17:31:17 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2010/03/20 17:31:12 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2010/03/20 17:30:48 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2010/03/20 17:30:43 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls
[2010/03/20 17:30:43 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls
[2010/03/20 17:30:43 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls
[2010/03/20 17:30:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls
[2010/03/20 17:30:42 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls
[2010/03/20 17:30:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls
[2010/03/20 17:30:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls
[2010/03/20 17:30:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls
[2010/03/20 17:30:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls
[2010/03/20 17:30:41 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls
[2010/03/20 17:30:41 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls
[2010/03/20 17:30:41 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls
[2010/03/20 17:30:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls
[2010/03/20 17:30:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls
[2010/03/20 17:30:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls
[2010/03/20 17:30:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls
[2010/03/20 17:30:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls
[2010/03/20 17:30:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls
[2010/03/20 17:30:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls
[2010/03/20 17:30:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls
[2010/03/20 17:30:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls
[2010/03/20 17:30:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls
[2010/03/20 17:30:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls
[2010/03/20 17:30:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls
[2010/03/20 17:30:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls
[2010/03/20 17:30:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls
[2010/03/20 17:30:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls
[2010/03/20 17:30:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls
[2010/03/20 17:30:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls
[2010/03/20 17:30:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls
[2010/03/20 17:30:39 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls
[2010/03/20 17:30:39 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls
[2010/03/20 17:30:39 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls
[2010/03/20 17:30:39 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls
[2010/03/20 17:30:39 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls
[2010/03/20 17:30:39 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls
[2010/03/20 17:30:39 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls
[2010/03/20 17:30:39 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls
[2010/03/20 17:30:39 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls
[2010/03/20 17:30:38 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls
[2010/03/20 17:30:38 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls
[2010/03/20 17:30:38 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls
[2010/03/20 17:30:38 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls
[2010/03/20 17:30:38 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls
[2010/03/20 17:30:38 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls
[2010/03/20 17:30:38 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls
[2010/03/20 17:30:38 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls
[2010/03/20 17:30:38 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls
[2010/03/20 17:30:38 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls
[2010/03/20 17:30:37 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls
[2010/03/20 17:30:37 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls
[2010/03/20 17:30:37 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls
[2010/03/20 17:30:37 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls
[2010/03/20 17:30:37 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls
[2010/03/20 17:30:37 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls
[2010/03/20 17:30:37 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls
[2010/03/20 17:30:36 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls
[2010/03/20 17:30:36 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls
[2010/03/20 17:30:36 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls
[2010/03/20 17:30:35 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls
[2010/03/20 17:29:50 | 000,002,626 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2010/03/20 17:29:50 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010/03/20 17:29:50 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010/03/20 17:29:50 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2010/03/20 17:29:50 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2010/03/20 17:29:41 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2010/03/20 17:29:41 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2010/03/20 17:29:40 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2010/03/20 17:28:16 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010/03/20 17:28:16 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010/03/20 17:27:40 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex
[2010/03/20 17:27:10 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp
[2010/03/20 17:27:10 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp
[2010/03/20 17:27:04 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf
[2010/03/20 17:26:12 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010/03/20 17:24:43 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Prairie Wind.bmp
[2010/03/20 17:24:43 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe Stucco.bmp
[2010/03/20 17:24:43 | 000,026,680 | ---- | C] () -- C:\WINDOWS\River Sumida.bmp
[2010/03/20 17:24:43 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Greenstone.bmp
[2010/03/20 17:24:43 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp
[2010/03/20 17:24:43 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp
[2010/03/20 17:24:42 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce
[2010/03/20 17:24:42 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Soap Bubbles.bmp
[2010/03/20 17:24:42 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Gone Fishing.bmp
[2010/03/20 17:24:42 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Coffee Bean.bmp
[2010/03/20 17:24:42 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce
[2010/03/20 17:24:42 | 000,016,730 | ---- | C] () -- C:\WINDOWS\FeatherTexture.bmp
[2010/03/20 17:24:42 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce
[2010/03/20 17:24:42 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Blue Lace 16.bmp
[2010/03/20 17:24:41 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce
[2010/03/20 17:24:41 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce
[2010/03/20 17:24:41 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce
[2010/03/20 17:24:41 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce
[2010/03/20 17:24:41 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce
[2010/03/20 17:24:39 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2010/03/20 17:24:39 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2010/03/20 17:24:38 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2010/03/20 17:24:32 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2010/03/20 17:16:40 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd
[2010/03/20 17:16:40 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa
[2010/03/20 17:16:40 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf
[2010/03/20 17:16:39 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa
[2010/03/20 17:16:37 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls
[2010/03/20 17:16:37 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls
[2010/03/20 17:16:36 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls
[2010/03/20 17:16:36 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls
[2010/03/20 17:16:36 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls
[2010/03/20 17:16:36 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls
[2010/03/20 17:16:36 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls
[2010/03/20 17:16:36 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls
[2010/03/20 17:16:34 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls
[2010/03/20 17:16:34 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS
[2010/03/20 17:16:34 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls
[2010/03/20 17:16:34 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls
[2010/03/20 17:16:34 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls
[2010/03/20 17:16:34 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls
[2010/03/20 17:16:32 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls
[2010/03/20 17:16:32 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls
[2010/03/20 17:16:32 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls
[2010/03/20 17:16:32 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls
[2010/03/20 17:16:32 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls
[2010/03/20 17:16:32 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls
[2010/03/20 17:16:32 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls
[2010/03/20 17:16:32 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS
[2010/03/20 17:16:32 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls
[2010/03/20 17:16:32 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls
[2010/03/20 17:16:30 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls
[2010/03/20 17:16:30 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls
[2010/03/20 17:16:30 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls
[2010/03/20 17:16:30 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls
[2010/03/20 17:16:30 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls
[2010/03/20 17:16:30 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS
[2010/03/20 17:16:28 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_852.nls
[2010/03/20 17:16:28 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_852.nls
[2010/03/20 17:16:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls
[2010/03/20 17:16:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls
[2010/03/20 17:16:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls
[2010/03/20 17:16:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls
[2010/03/20 17:16:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls
[2010/03/20 17:16:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls
[2010/03/20 17:16:27 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls
[2010/03/20 17:16:27 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls
[2010/03/20 17:16:23 | 000,001,688 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2010/03/20 17:16:07 | 000,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2010/03/20 17:16:07 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2010/03/20 17:16:07 | 000,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2010/03/20 17:16:07 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2010/03/20 17:16:07 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2010/03/20 17:16:07 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2010/03/20 17:16:07 | 000,007,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2010/03/20 17:16:06 | 001,042,903 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT
[2010/03/20 17:15:15 | 000,143,624 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/03/20 17:14:17 | 000,000,281 | RHS- | C] () -- C:\boot.ini
[2010/03/20 17:14:12 | 000,000,302 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2010/03/20 12:31:41 | 000,205,017 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\ins3.xcf
[2010/03/20 12:31:40 | 000,335,330 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\ins2.xcf
[2010/03/20 12:31:40 | 000,283,904 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\ins.xcf
[2010/03/20 12:31:40 | 000,173,010 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\dtop.xcf
[2010/03/20 12:31:40 | 000,000,058 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\ak2opp.bat
[2010/03/20 12:31:40 | 000,000,058 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\2lktt.bat
[2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL

========== Custom Scans ==========

< c:\windows\fonts\*.exe >

< c:\windows\system32\*.exe >
[2010/03/24 23:32:38 | 000,212,992 | ---- | M] (PMs) -- C:\WINDOWS\system32\84.exe
[2008/04/14 00:12:11 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\accwiz.exe
[2008/04/14 00:12:12 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\actmovie.exe
[2008/04/14 00:12:12 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ahui.exe
[2008/04/14 00:12:12 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe
[2004/08/04 12:00:00 | 000,012,498 | ---- | M] () -- C:\WINDOWS\system32\append.exe
[2004/08/04 12:00:00 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\arp.exe
[2010/03/09 11:24:05 | 000,153,184 | ---- | M] (ALWIL Software) -- C:\WINDOWS\system32\aswBoot.exe
[2008/04/14 00:12:12 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\at.exe
[2008/04/14 00:12:12 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\atmadm.exe
[2008/04/14 00:12:12 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\attrib.exe
[2008/04/14 00:12:12 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\auditusr.exe
[2008/04/14 00:12:12 | 000,588,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\autochk.exe
[2008/04/14 00:12:12 | 000,602,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\autoconv.exe
[2008/04/14 00:12:13 | 000,580,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\autofmt.exe
[2008/04/14 00:12:13 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\autolfn.exe
[2008/04/14 00:12:13 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\blastcln.exe
[2004/08/04 12:00:00 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\bootok.exe
[2004/08/04 12:00:00 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\bootvrfy.exe
[2008/04/14 00:12:13 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cacls.exe
[2004/08/04 12:00:00 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\calc.exe
[2004/08/04 12:00:00 | 000,080,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\charmap.exe
[2004/08/04 12:00:00 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\chkdsk.exe
[2004/08/04 12:00:00 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\chkntfs.exe
[2004/08/04 12:00:00 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cidaemon.exe
[2008/04/14 00:12:14 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cisvc.exe
[2004/08/04 12:00:00 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ckcnv.exe
[2008/04/14 00:12:14 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cleanmgr.exe
[2008/04/14 00:12:14 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cliconfg.exe
[2008/04/14 00:12:14 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clipbrd.exe
[2008/04/14 00:12:14 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clipsrv.exe
[2008/04/14 00:12:14 | 000,389,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cmd.exe
[2008/04/14 00:12:14 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cmdl32.exe
[2008/04/14 00:12:15 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cmmon32.exe
[2008/04/14 00:12:15 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cmstp.exe
[2004/08/04 12:00:00 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comp.exe
[2004/08/04 12:00:00 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\compact.exe
[2008/04/14 00:12:15 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\conime.exe
[2004/08/04 12:00:00 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\control.exe
[2004/08/04 12:00:00 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\convert.exe
[2008/04/14 00:12:15 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cscript.exe
[2008/04/14 00:12:15 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
[2008/04/14 00:12:16 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe
[2008/04/14 00:12:16 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dcomcnfg.exe
[2008/04/14 00:12:16 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ddeshare.exe
[2004/08/04 12:00:00 | 000,020,634 | ---- | M] () -- C:\WINDOWS\system32\debug.exe
[2008/04/14 00:12:16 | 000,025,088 | ---- | M] (Microsoft Corp. and Executive Software International, Inc.) -- C:\WINDOWS\system32\defrag.exe
[2008/04/14 00:12:16 | 000,082,944 | ---- | M] (Microsoft Corp. and Executive Software International, Inc.) -- C:\WINDOWS\system32\dfrgfat.exe
[2008/04/14 00:12:16 | 000,105,472 | ---- | M] (Microsoft Corp. and Executive Software International, Inc.) -- C:\WINDOWS\system32\dfrgntfs.exe
[2008/04/14 00:12:17 | 000,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\diantz.exe
[2008/04/14 00:12:17 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\diskpart.exe
[2004/08/04 12:00:00 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\diskperf.exe
[2008/04/14 00:12:17 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dllhost.exe
[2004/08/04 12:00:00 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dllhst3g.exe
[2008/04/14 00:12:17 | 000,224,768 | ---- | M] (Microsoft Corp., Veritas Software) -- C:\WINDOWS\system32\dmadmin.exe
[2008/04/14 00:12:17 | 000,015,872 | ---- | M] (Microsoft Corp.) -- C:\WINDOWS\system32\dmremote.exe
[2004/08/04 12:00:00 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\doskey.exe
[2004/08/04 12:00:00 | 000,053,840 | ---- | M] () -- C:\WINDOWS\system32\dosx.exe
[2008/04/14 00:12:17 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dplaysvr.exe
[2008/04/14 00:12:17 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dpnsvr.exe
[2008/04/14 00:12:18 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dpvsetup.exe
[2004/08/04 12:00:00 | 000,028,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drwatson.exe
[2004/08/04 12:00:00 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drwtsn32.exe
[2008/04/14 00:12:18 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dumprep.exe
[2004/08/04 12:00:00 | 000,055,296 | ---- | M] () -- C:\WINDOWS\system32\dvdplay.exe
[2008/04/14 00:12:18 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dvdupgrd.exe
[2008/04/14 00:12:18 | 000,180,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dwwin.exe
[2008/04/14 00:12:18 | 001,298,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dxdiag.exe
[2004/08/04 12:00:00 | 000,012,642 | ---- | M] () -- C:\WINDOWS\system32\edlin.exe
[2004/08/04 12:00:00 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\esentutl.exe
[2008/04/14 00:12:19 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eudcedit.exe
[2004/08/04 12:00:00 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eventvwr.exe
[2004/08/04 12:00:00 | 000,008,424 | ---- | M] () -- C:\WINDOWS\system32\exe2bin.exe
[2004/08/04 12:00:00 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\expand.exe
[2008/04/14 00:12:19 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\extrac32.exe
[2004/08/04 12:00:00 | 000,000,882 | ---- | M] () -- C:\WINDOWS\system32\fastopen.exe
[2008/04/14 00:12:20 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\faxpatch.exe
[2004/08/04 12:00:00 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\fc.exe
[2004/08/04 12:00:00 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\find.exe
[2008/04/14 00:12:20 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\findstr.exe
[2004/08/04 12:00:00 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\finger.exe
[2004/08/04 12:00:00 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\fixmapi.exe
[2008/04/14 00:12:20 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\fltmc.exe
[2008/04/14 00:12:20 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\fontview.exe
[2008/04/14 00:12:20 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\forcedos.exe
[2004/08/04 12:00:00 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\freecell.exe
[2008/04/14 00:12:20 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\fsquirt.exe
[2004/08/04 12:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\fsutil.exe
[2008/04/14 00:12:20 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ftp.exe
[2004/08/04 12:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi.exe
[2008/04/14 00:12:21 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\grpconv.exe
[2008/04/14 00:12:21 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\help.exe
[2004/07/01 09:58:46 | 000,118,784 | R--- | M] (Intel Corporation) -- C:\WINDOWS\system32\hkcmd.exe
[2004/08/04 12:00:00 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hostname.exe
[2008/04/14 00:12:22 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ie4uinit.exe
[2008/04/14 00:12:22 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\iexpress.exe
[2004/07/01 10:00:30 | 000,487,424 | R--- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxcfg.exe
[2004/07/01 10:01:14 | 000,151,552 | R--- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxdiag.exe
[2004/07/01 10:03:00 | 000,106,496 | R--- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxext.exe
[2004/07/01 10:02:52 | 000,155,648 | R--- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxtray.exe
[2004/07/01 10:03:24 | 000,114,688 | R--- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxzoom.exe
[2008/04/14 00:12:22 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imapi.exe
[2008/04/14 00:12:22 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ipconfig.exe
[2004/08/04 12:00:00 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ipsec6.exe
[2008/04/14 00:12:23 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ipv6.exe
[2008/04/14 00:12:23 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ipxroute.exe
[2008/04/14 00:12:23 | 000,151,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\irftp.exe
[2010/03/21 04:17:28 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\system32\java.exe
[2010/03/21 04:17:28 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\system32\javaw.exe
[2010/03/21 04:17:28 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\system32\javaws.exe
[2004/08/04 12:00:00 | 000,092,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\krnl386.exe
[2004/08/04 12:00:00 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\label.exe
[2004/08/04 12:00:00 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lights.exe
[2004/08/04 12:00:00 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lnkstub.exe
[2008/04/14 00:12:24 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\locator.exe
[2004/08/04 12:00:00 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lodctr.exe
[2008/04/14 00:12:24 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\logagent.exe
[2008/04/14 00:12:24 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\logman.exe
[2004/08/04 12:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\logoff.exe
[2008/04/14 00:12:24 | 000,514,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\logonui.exe
[2004/08/04 12:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lpq.exe
[2004/08/04 12:00:00 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lpr.exe
[2008/04/14 00:12:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
[2008/04/14 00:12:24 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\magnify.exe
[2008/04/14 00:12:25 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\makecab.exe
[2004/08/04 12:00:00 | 000,039,274 | ---- | M] () -- C:\WINDOWS\system32\mem.exe
[2004/08/04 12:00:00 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\migpwd.exe
[2008/04/14 00:12:25 | 001,414,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mmc.exe
[2008/04/14 00:12:25 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mmcperf.exe
[2008/04/14 00:12:25 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mnmsrvc.exe
[2008/04/14 00:12:26 | 000,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mobsync.exe
[2004/08/04 12:00:00 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mountvol.exe
[2008/04/14 00:12:27 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mplay32.exe
[2004/08/04 12:00:00 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mpnotify.exe
[2004/08/04 12:00:00 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mrinfo.exe
[2010/03/01 21:30:14 | 031,648,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MRT.exe
[2004/08/04 12:00:00 | 000,000,817 | ---- | M] () -- C:\WINDOWS\system32\mscdexnt.exe
[2008/04/14 00:12:27 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msdtc.exe
[2004/08/04 12:00:00 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msg.exe
[2004/08/04 12:00:00 | 000,126,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mshearts.exe
[2008/04/14 00:12:27 | 000,029,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mshta.exe
[2008/04/14 00:12:28 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msiexec.exe
[2009/12/16 18:43:27 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mspaint.exe
[2004/08/04 12:00:00 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msswchx.exe
[2008/04/14 00:12:29 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mstinit.exe
[2008/04/14 00:12:23 | 000,677,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mstsc.exe
[2008/04/14 00:12:29 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\napstat.exe
[2008/04/14 00:12:29 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\narrator.exe
[2004/08/04 12:00:00 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\nbtstat.exe
[2008/04/14 00:12:29 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\nddeapir.exe
[2008/04/14 00:12:29 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\net.exe
[2008/04/14 00:12:29 | 000,124,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\net1.exe
[2008/04/14 00:12:29 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netdde.exe
[2008/04/14 00:16:51 | 000,329,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netsetup.exe
[2008/04/14 00:12:29 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netsh.exe
[2008/04/14 00:12:29 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netstat.exe
[2004/08/04 12:00:00 | 000,007,052 | ---- | M] () -- C:\WINDOWS\system32\nlsfunc.exe
[2008/04/14 00:12:29 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\notepad.exe
[2008/04/14 00:12:29 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\nslookup.exe
[2009/02/07 19:02:58 | 002,066,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntkrnlpa.exe
[2009/02/06 11:08:19 | 002,189,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntoskrnl.exe
[2004/08/04 12:00:00 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntsd.exe
[2008/04/14 00:12:30 | 000,420,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntvdm.exe
[2008/04/14 00:12:30 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\odbcad32.exe
[2008/04/14 00:12:30 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\odbcconf.exe
[2008/04/14 00:12:31 | 000,215,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\osk.exe
[2004/08/04 12:00:00 | 000,040,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\osuninst.exe
[2008/04/14 00:12:31 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\packager.exe
[2004/08/04 12:00:00 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pathping.exe
[2004/08/04 12:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pentnt.exe
[2008/04/14 00:12:31 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfmon.exe
[2008/04/14 00:12:31 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ping.exe
[2004/08/04 12:00:00 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ping6.exe
[2008/04/14 00:12:31 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\powercfg.exe
[2004/08/04 12:00:00 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\print.exe
[2008/04/14 00:12:31 | 000,109,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\progman.exe
[2008/04/14 00:12:32 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\proquota.exe
[2008/04/14 00:12:32 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\proxycfg.exe
[2004/08/04 12:00:00 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\qappsrv.exe
[2008/04/14 00:12:32 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\qprocess.exe
[2004/08/04 12:00:00 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\qwinsta.exe
[2004/08/04 12:00:00 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasautou.exe
[2004/08/04 12:00:00 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasdial.exe
[2008/04/14 00:12:32 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasphone.exe
[2008/04/14 00:12:32 | 000,035,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rcimlby.exe
[2008/04/14 00:12:32 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rcp.exe
[2008/04/14 00:12:32 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rdpclip.exe
[2008/04/14 00:12:32 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rdsaddin.exe
[2008/04/14 00:12:32 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rdshost.exe
[2004/08/04 12:00:00 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\recover.exe
[2004/08/04 12:00:00 | 000,003,338 | ---- | M] () -- C:\WINDOWS\system32\redir.exe
[2008/04/14 00:12:32 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\reg.exe
[2004/08/04 12:00:00 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\regedt32.exe
[2004/08/04 12:00:00 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\regini.exe
[2008/04/14 00:12:32 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\regsvr32.exe
[2004/08/04 12:00:00 | 000,004,608 | ---- | M] (Microsoft) -- C:\WINDOWS\system32\regwiz.exe
[2004/08/04 12:00:00 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\replace.exe
[2004/08/04 12:00:00 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\reset.exe
[2008/04/14 00:12:33 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rexec.exe
[2004/08/04 12:00:00 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\route.exe
[2004/08/04 12:00:00 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\routemon.exe
[2008/04/14 00:12:33 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rsh.exe
[2004/08/04 12:00:00 | 000,049,152 | ---- | M] (Microsoft Corp) -- C:\WINDOWS\system32\rsm.exe
[2004/08/04 12:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rsmsink.exe
[2004/08/04 12:00:00 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rsmui.exe
[2004/08/04 12:00:00 | 000,132,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rsvp.exe
[2008/04/14 00:12:33 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rtcshare.exe
[2004/07/01 15:50:18 | 007,509,504 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\system32\RTLCPL.EXE
[2004/08/04 12:00:00 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\runas.exe
[2008/04/14 00:12:33 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe
[2008/04/14 00:12:33 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\runonce.exe
[2004/08/04 12:00:00 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rwinsta.exe
[2008/04/14 00:12:33 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\savedump.exe
[2009/02/06 10:39:08 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sc.exe
[2008/04/14 00:12:33 | 000,095,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\scardsvr.exe
[2008/04/14 00:12:34 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sdbinst.exe
[2009/02/06 11:11:05 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
[2008/04/14 00:12:34 | 000,141,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sessmgr.exe
[2008/04/14 00:12:34 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sethc.exe
[2008/04/14 00:12:34 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setup.exe
[2008/04/14 00:12:35 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupn.exe
[2004/08/04 12:00:00 | 000,011,753 | ---- | M] () -- C:\WINDOWS\system32\setver.exe
[2004/08/04 12:00:00 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sfc.exe
[2004/08/04 12:00:00 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shadow.exe
[2004/08/04 12:00:00 | 000,000,882 | ---- | M] () -- C:\WINDOWS\system32\share.exe
[2008/04/14 00:12:35 | 000,045,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shmgrate.exe
[2008/04/14 00:12:35 | 000,077,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shrpubw.exe
[2008/04/14 00:12:35 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shutdown.exe
[2008/04/14 00:12:35 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sigverif.exe
[2008/04/14 00:12:35 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\skeys.exe
[2008/04/14 00:12:35 | 000,032,866 | ---- | M] (Smart Link) -- C:\WINDOWS\system32\slrundll.exe
[2008/04/14 00:12:35 | 000,073,796 | ---- | M] (Smart Link) -- C:\WINDOWS\system32\slserv.exe
[2008/04/14 00:12:35 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smbinst.exe
[2008/04/14 00:12:35 | 000,089,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smlogsvc.exe
[2008/04/14 00:12:36 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
[2008/04/14 00:12:36 | 000,131,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sndrec32.exe
[2004/08/04 12:00:00 | 000,138,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sndvol32.exe
[2004/08/04 12:00:00 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sol.exe
[2008/04/14 00:12:36 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sort.exe
[2008/04/14 00:12:36 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spdwnwxp.exe
[2008/04/14 00:12:36 | 000,538,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spider.exe
[2008/04/14 05:42:38 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spnpinst.exe
[2008/04/14 00:12:36 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
[2004/08/04 12:00:00 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sprestrt.exe
[2007/08/10 20:46:18 | 000,026,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spupdsvc.exe
[2008/04/14 00:12:36 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spupdwxp.exe
[2008/04/14 00:12:36 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\stimon.exe
[2004/08/04 12:00:00 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\subst.exe
[2008/04/14 00:12:36 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe
[2004/08/04 12:00:00 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\syncapp.exe
[2004/08/04 12:00:00 | 000,018,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sysedit.exe
[2004/08/04 12:00:00 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\syskey.exe
[2008/04/14 00:12:37 | 000,106,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sysocmgr.exe
[2004/08/04 12:00:00 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\systray.exe
[2004/08/04 12:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\taskman.exe
[2008/04/14 00:12:37 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\taskmgr.exe
[2004/08/04 12:00:00 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tcmsetup.exe
[2004/08/04 12:00:00 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tcpsvcs.exe
[2009/06/12 12:31:39 | 000,076,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\telnet.exe
[2004/08/04 12:00:00 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tftp.exe
[2008/04/14 00:12:38 | 000,347,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tourstart.exe
[2008/04/14 00:12:38 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tracert.exe
[2004/08/04 12:00:00 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tracert6.exe
[2004/08/04 12:00:00 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tscon.exe
[2004/08/04 12:00:00 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tscupgrd.exe
[2004/08/04 12:00:00 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tsdiscon.exe
[2004/08/04 12:00:00 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tskill.exe
[2004/08/04 12:00:00 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tsshutdn.exe
[2008/04/14 00:12:38 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tzchange.exe
[2004/08/04 12:00:00 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\unlodctr.exe
[2008/04/14 00:12:38 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\upnpcont.exe
[2008/04/14 00:12:38 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ups.exe
[2004/08/04 12:00:00 | 000,047,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user.exe
[2008/04/14 00:12:38 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userinit.exe
[2004/08/04 12:00:00 | 000,077,891 | ---- | M] (U.S. Robotics Corporation) -- C:\WINDOWS\system32\usrmlnka.exe
[2004/08/04 12:00:00 | 000,061,508 | ---- | M] (U.S. Robotics Corporation) -- C:\WINDOWS\system32\usrprbda.exe
[2004/08/04 12:00:00 | 000,069,700 | ---- | M] ( U.S. Robotics Corporation) -- C:\WINDOWS\system32\usrshuta.exe
[2008/04/14 00:12:38 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\utilman.exe
[2008/04/14 00:12:38 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\verclsid.exe
[2004/08/04 12:00:00 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\verifier.exe
[2004/08/04 12:00:00 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\vssadmin.exe
[2008/04/14 00:12:38 | 000,289,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\vssvc.exe
[2004/08/04 12:00:00 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\w32tm.exe
[2008/04/14 00:12:39 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wextract.exe
[2008/04/14 00:12:39 | 000,433,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wiaacmgr.exe
[2004/08/04 12:00:00 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winchat.exe
[2004/08/04 12:00:00 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winhlp32.exe
[2008/04/14 00:12:39 | 000,507,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
[2004/08/04 12:00:00 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winmine.exe
[2004/08/04 12:00:00 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winmsd.exe
[2004/08/04 12:00:00 | 000,002,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.exe
[2008/04/14 00:12:40 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winver.exe
[2004/08/04 12:00:00 | 000,002,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wowdeb.exe
[2004/08/04 12:00:00 | 000,010,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wowexec.exe
[2008/04/14 00:12:40 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wpabaln.exe
[2008/04/14 00:12:41 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wpnpinst.exe
[2004/08/04 12:00:00 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\write.exe
[2008/04/14 00:12:41 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe
[2008/04/14 00:12:41 | 000,155,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscript.exe
[2009/08/06 19:24:06 | 000,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe
[2008/04/14 00:12:41 | 000,165,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt1.exe
[2004/08/04 12:00:00 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wupdmgr.exe
[2008/04/14 00:12:41 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\xcopy.exe

< End of report >

#97
Rorschach112

Posted 25 March 2010 - 05:33 PM

Ralphie

Retired Staff
47,710 posts

hi

Run OTL

Under the Custom Scans/Fixes box at the bottom, paste in the following

:OTL
NetSvcs: ulwobcy - File not found
[2010/03/25 00:53:16 | 000,000,081 | ---- | M] () -- C:\WINDOWS\System32\asr_gdbnn
[2010/03/25 00:50:09 | 000,000,077 | ---- | M] () -- C:\WINDOWS\System32\asr_fbuqla
[2010/03/24 23:58:26 | 000,000,079 | ---- | M] () -- C:\WINDOWS\System32\asr_foynlr
[2010/03/24 23:34:46 | 000,000,080 | ---- | M] () -- C:\WINDOWS\System32\asr_yrhxgb
[2010/03/24 23:32:38 | 000,212,992 | ---- | M] (PMs) -- C:\WINDOWS\System32\84.exe
[2010/03/24 23:31:03 | 000,000,080 | ---- | M] () -- C:\WINDOWS\System32\asr_exycnb
[2010/03/24 23:24:21 | 000,000,079 | ---- | M] () -- C:\WINDOWS\System32\asr_gvftw
[2010/03/24 22:42:21 | 000,000,079 | ---- | M] () -- C:\WINDOWS\System32\asr_nchui
[2010/03/01 20:39:16 | 000,000,058 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\2lktt.bat
[2010/03/01 20:37:00 | 000,000,058 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\ak2opp.bat

:Files
C:\WINDOWS\System32\asr_*

:Commands
[purity]
[resethosts]
[emptytemp]
[EMPTYFLASH]
[CREATERESTOREPOINT]
[Reboot]

Then click the Run Fix button at the top
Let the program run unhindered, reboot the PC when it is done

also update mbam run a quick scan fix everything, post that log

Open OTL again paste this in the custom scan box

netsvcs

click quick scan post that log

also update mbam run a quick scan fix everything, post that log

#98
jhn-e-bee

Posted 25 March 2010 - 05:36 PM

Member

Topic Starter
Member
89 posts

How's it looking mate?

#99
jhn-e-bee

Posted 25 March 2010 - 05:38 PM

Member

Topic Starter
Member
89 posts

Do you get many that are this bad?

How would you rate this one on a scale of 1 to 10?

#100
Rorschach112

Posted 25 March 2010 - 05:38 PM

Ralphie

Retired Staff
47,710 posts

little better, need to run a few more scans to double check, see my above post

#101
Rorschach112

Posted 25 March 2010 - 05:39 PM

Ralphie

Retired Staff
47,710 posts

Yours is up there as a 10. Anything that cant be fixed = a 10

Its very rare for a topic to go on this long

#102
jhn-e-bee

Posted 25 March 2010 - 06:47 PM

Member

Topic Starter
Member
89 posts

Here's the logs:

It seemed OK, fingers crossed.

MBAM:

Malwarebytes' Anti-Malware 1.44
Database version: 3914
Windows 5.1.2600 Service Pack 3
Internet Explorer 6.0.2900.5512

3/26/2010 12:23:31 AM
mbam-log-2010-03-26 (00-23-31).txt

Scan type: Quick Scan
Objects scanned: 117836
Time elapsed: 6 minute(s), 37 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

OTL:

OTL logfile created on: 3/26/2010 12:26:44 AM - Run 6
OTL by OldTimer - Version 3.1.37.3 Folder = C:\Documents and Settings\jhn barrett\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

251.00 Mb Total Physical Memory | 137.00 Mb Available Physical Memory | 55.00% Memory free
610.00 Mb Paging File | 458.00 Mb Available in Paging File | 75.00% Paging File free
Paging file location(s): C:\pagefile.sys 372 744 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37.25 Gb Total Space | 28.82 Gb Free Space | 77.36% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 1.84 Gb Total Space | 1.74 Gb Free Space | 94.31% Space Free | Partition Type: FAT32
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: J-C4E7983211AD4
Current User Name: jhn barrett
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2010/03/21 23:13:24 | 000,555,520 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\jhn barrett\Desktop\OTL.exe
PRC - [2010/03/20 21:43:52 | 000,185,896 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe
PRC - [2010/03/09 11:24:10 | 002,769,336 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010/03/09 11:24:08 | 000,040,384 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2008/04/14 00:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004/07/01 16:23:32 | 000,067,584 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE

========== Modules (SafeList) ==========

MOD - [2010/03/21 23:13:24 | 000,555,520 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\jhn barrett\Desktop\OTL.exe

========== Win32 Services (SafeList) ==========

SRV - [2010/03/09 11:24:08 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV - [2010/03/09 11:24:08 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV - [2010/03/09 11:24:08 | 000,040,384 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.mirostart...cfg=2-73-0-E39G
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.mirostart...cfg=2-73-0-E2N5

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\software\mozilla\K-Meleon\Extensions\\Plugins: C:\Program Files\K-Meleon\Plugins [2010/03/24 04:56:40 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\K-Meleon\Extensions\\Components: C:\Program Files\K-Meleon\Components [2010/03/20 21:59:42 | 000,000,000 | ---D | M]

O1 HOSTS File: ([2010/03/25 23:43:25 | 000,000,098 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (ALWIL Software)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 36
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = FF FF FF FF [binary data]
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://go.microsoft....k/?linkid=58813 (Office Genuine Advantage Validation Tool)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft....k/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_18)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxsrvc.dll - C:\WINDOWS\System32\igfxsrvc.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\jhn barrett\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\jhn barrett\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/03/20 17:29:50 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2010/03/25 23:02:30 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010/03/25 23:02:32 | 000,000,000 | RHSD | M] - E:\autorun.inf -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: ias - C:\WINDOWS\system32\ias [2010/03/20 17:29:07 | 000,000,000 | ---D | M]
NetSvcs: iprip - File not found
NetSvcs: nwcworkstation - File not found
NetSvcs: nwsapagent - File not found
NetSvcs: wmi - C:\WINDOWS\system32\wmi.dll (Microsoft Corporation)
NetSvcs: wmdmpmsp - File not found

========== Files/Folders - Created Within 14 Days ==========

[2010/03/25 23:02:30 | 000,000,000 | RHSD | C] -- C:\autorun.inf
[2010/03/25 06:15:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2010/03/25 06:15:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010/03/25 05:57:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us
[2010/03/25 05:57:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting
[2010/03/25 05:57:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2010/03/25 05:57:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en
[2010/03/25 05:57:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2010/03/25 05:53:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2010/03/25 05:49:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2010/03/25 05:45:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2010/03/25 05:39:31 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2010/03/25 05:39:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\EHome
[2010/03/25 03:59:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
[2010/03/25 03:49:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2010/03/25 03:45:45 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2010/03/25 03:36:52 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2010/03/25 02:33:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Desktop\Virus Removal Tool
[2010/03/25 01:15:51 | 000,019,024 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010/03/25 01:15:50 | 000,162,640 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2010/03/25 01:15:49 | 000,023,376 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2010/03/25 01:15:48 | 000,046,672 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2010/03/25 01:15:46 | 000,100,432 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2010/03/25 01:15:46 | 000,094,800 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2010/03/25 01:15:45 | 000,028,880 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2010/03/25 01:15:11 | 000,153,184 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2010/03/25 01:15:11 | 000,038,848 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\avastSS.scr
[2010/03/25 01:15:00 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2010/03/25 01:02:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2010/03/25 01:02:54 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2010/03/25 01:02:54 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2010/03/24 20:20:17 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/03/24 20:20:15 | 000,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/03/24 20:20:15 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/03/24 19:41:57 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010/03/24 16:05:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2010/03/24 14:17:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Desktop\gmer
[2010/03/24 13:19:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2010/03/24 12:48:37 | 000,000,000 | ---D | C] -- C:\_OTM
[2010/03/24 12:39:07 | 000,510,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\jhn barrett\Desktop\OTM.exe
[2010/03/24 06:46:26 | 000,000,000 | ---D | C] -- C:\Program Files\Participatory Culture Foundation
[2010/03/24 06:36:24 | 000,282,606 | ---- | C] (Participatory Culture Foundation) -- C:\Documents and Settings\jhn barrett\Desktop\Miro_Installer.exe
[2010/03/24 06:09:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\My Documents\My Videos
[2010/03/24 06:09:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\Mozilla
[2010/03/24 06:08:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\Participatory Culture Foundation
[2010/03/24 06:07:54 | 000,000,000 | ---D | C] -- C:\Program Files\Miro
[2010/03/24 05:00:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Local Settings\Application Data\Adobe
[2010/03/24 04:56:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2010/03/24 04:55:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2010/03/24 04:55:46 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2010/03/24 04:49:17 | 027,386,256 | ---- | C] ( ) -- C:\Documents and Settings\jhn barrett\Desktop\AdbeRdr930_en_US.exe
[2010/03/23 17:29:20 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2010/03/23 15:15:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\DoctorWeb
[2010/03/23 15:11:53 | 068,146,672 | ---- | C] ( ) -- C:\Documents and Settings\jhn barrett\Desktop\setup_9.0.0.722_23.03.2010_14-47.exe
[2010/03/23 12:33:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\My Documents\LastFM downloader
[2010/03/23 12:32:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\My Documents\dogs2
[2010/03/23 12:30:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\My Documents\vids and DLs
[2010/03/23 01:36:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Desktop\avenger
[2010/03/23 01:27:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2010/03/23 01:24:48 | 005,115,824 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\jhn barrett\Desktop\mbam-setup.exe
[2010/03/22 20:41:36 | 000,000,000 | ---D | C] -- C:\Rooter$
[2010/03/22 18:45:47 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010/03/22 18:34:19 | 000,173,119 | ---- | C] (Eric_71) -- C:\Documents and Settings\jhn barrett\Desktop\Rooter.exe
[2010/03/22 17:18:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\.thumbnails
[2010/03/22 15:16:45 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010/03/22 15:16:45 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010/03/22 15:16:45 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010/03/22 15:16:45 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010/03/22 15:15:45 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010/03/22 15:13:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage
[2010/03/22 15:12:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2010/03/22 14:23:45 | 000,000,000 | ---D | C] -- C:\_OTL
[2010/03/22 05:46:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\gtk-2.0
[2010/03/22 05:42:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\.gimp-2.6
[2010/03/22 05:42:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\My Documents\gegl-0.0
[2010/03/22 05:40:40 | 000,000,000 | ---D | C] -- C:\Program Files\GIMP-2.0
[2010/03/21 23:34:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010/03/21 23:27:03 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2010/03/21 23:13:05 | 000,555,520 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\jhn barrett\Desktop\OTL.exe
[2010/03/21 23:11:20 | 000,791,393 | ---- | C] (Lars Hederer ) -- C:\Documents and Settings\jhn barrett\Desktop\erunt_setup.exe
[2010/03/21 23:11:00 | 000,444,416 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\jhn barrett\Desktop\TFC.exe
[2010/03/21 16:58:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2010/03/21 04:53:19 | 000,000,000 | ---D | C] -- C:\Program Files\Ask.com
[2010/03/21 04:53:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\My Documents\DVDVideoSoft
[2010/03/21 04:52:53 | 000,000,000 | ---D | C] -- C:\Program Files\DVDVideoSoft
[2010/03/21 04:52:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DVDVideoSoft
[2010/03/21 04:19:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\Adobe
[2010/03/21 04:18:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2010/03/21 04:18:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010/03/21 04:17:21 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2010/03/21 04:16:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\Sun
[2010/03/20 23:44:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\Template
[2010/03/20 23:34:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\Malwarebytes
[2010/03/20 23:34:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010/03/20 23:25:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\AVG8
[2010/03/20 23:25:23 | 000,891,248 | ---- | C] (AVG Technologies) -- C:\Documents and Settings\jhn barrett\Desktop\avg_free_stb_all_9_40_cnet.exe
[2010/03/20 23:02:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\Macromedia
[2010/03/20 22:28:49 | 000,887,296 | ---- | C] (Kurt Senfer) -- C:\WINDOWS\System32\KsDHTMLEDLib.ocx
[2010/03/20 22:28:48 | 000,000,000 | ---D | C] -- C:\Program Files\Evrsoft First Page 2006
[2010/03/20 22:00:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real
[2010/03/20 21:57:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\vlc
[2010/03/20 21:50:17 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2010/03/20 21:44:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared
[2010/03/20 21:43:53 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010/03/20 21:43:51 | 000,000,000 | ---D | C] -- C:\Program Files\Real
[2010/03/20 21:43:51 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Real
[2010/03/20 21:43:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\Real
[2010/03/20 18:43:54 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010/03/20 18:41:29 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2010/03/20 18:38:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2010/03/20 18:32:11 | 000,100,864 | ---- | C] (ZTE Corporation) -- C:\WINDOWS\System32\drivers\ZTEusbser6k.sys
[2010/03/20 18:32:11 | 000,100,864 | ---- | C] (ZTE Corporation) -- C:\WINDOWS\System32\drivers\ZTEusbnmea.sys
[2010/03/20 18:32:11 | 000,100,864 | ---- | C] (ZTE Corporation) -- C:\WINDOWS\System32\drivers\ZTEusbmdm6k.sys
[2010/03/20 18:32:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SupportApp
[2010/03/20 18:31:58 | 000,000,000 | ---D | C] -- C:\Program Files\ZTE Mobile Connection
[2010/03/20 18:31:57 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2010/03/20 18:27:17 | 000,000,000 | ---D | C] -- C:\Intel
[2010/03/20 18:24:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Desktop\Tunes
[2010/03/20 18:23:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Desktop\installers
[2010/03/20 18:23:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Local Settings\Application Data\K-Meleon
[2010/03/20 18:23:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\K-Meleon
[2010/03/20 18:22:59 | 000,000,000 | ---D | C] -- C:\Program Files\K-Meleon
[2010/03/20 18:21:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\My Documents\whypay4it.net
[2010/03/20 18:03:01 | 001,268,234 | R--- | C] (Agere Systems) -- C:\WINDOWS\System32\drivers\AGRSM.sys
[2010/03/20 18:03:01 | 000,064,512 | R--- | C] (Agere Systems) -- C:\WINDOWS\agrsmdel.exe
[2010/03/20 18:00:59 | 000,400,384 | R--- | C] (Sensaura) -- C:\WINDOWS\System32\drivers\ALCXSENS.SYS
[2010/03/20 17:52:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData
[2010/03/20 17:36:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Application Data\Identities
[2010/03/20 17:36:55 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2010/03/20 17:36:51 | 000,000,000 | R--D | C] -- C:\Documents and Settings\jhn barrett\My Documents\My Music
[2010/03/20 17:36:50 | 000,000,000 | R--D | C] -- C:\Documents and Settings\jhn barrett\My Documents\My Pictures
[2010/03/20 17:36:47 | 000,000,000 | --SD | C] -- C:\Documents and Settings\jhn barrett\Application Data\Microsoft
[2010/03/20 17:36:47 | 000,000,000 | --SD | C] -- C:\Documents and Settings\jhn barrett\Cookies
[2010/03/20 17:36:47 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\jhn barrett\SendTo
[2010/03/20 17:36:47 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\jhn barrett\Recent
[2010/03/20 17:36:47 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\jhn barrett\Application Data
[2010/03/20 17:36:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\jhn barrett\Start Menu
[2010/03/20 17:36:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\jhn barrett\My Documents
[2010/03/20 17:36:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\jhn barrett\Favorites
[2010/03/20 17:36:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\jhn barrett\Templates
[2010/03/20 17:36:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\jhn barrett\PrintHood
[2010/03/20 17:36:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\jhn barrett\NetHood
[2010/03/20 17:36:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\jhn barrett\Local Settings
[2010/03/20 17:36:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Local Settings\Application Data\Microsoft
[2010/03/20 17:36:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\jhn barrett\Desktop
[2010/03/20 17:34:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2010/03/20 17:34:52 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2010/03/20 17:32:15 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2010/03/20 17:32:15 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2010/03/20 17:31:04 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll
[2010/03/20 17:31:04 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll
[2010/03/20 17:31:04 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll
[2010/03/20 17:30:44 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2010/03/20 17:30:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2010/03/20 17:30:04 | 000,000,000 | ---D | C] -- C:\Program Files\xerox
[2010/03/20 17:30:04 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2010/03/20 17:28:31 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2010/03/20 17:28:17 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2010/03/20 17:28:16 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2010/03/20 17:28:00 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2010/03/20 17:27:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2010/03/20 17:27:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2010/03/20 17:26:59 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2010/03/20 17:26:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2010/03/20 17:26:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2010/03/20 17:26:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2010/03/20 17:26:45 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2010/03/20 17:26:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2010/03/20 17:26:33 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2010/03/20 17:26:29 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2010/03/20 17:26:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2010/03/20 17:26:17 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2010/03/20 17:26:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Pictures
[2010/03/20 17:25:58 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2010/03/20 17:25:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2010/03/20 17:25:08 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music
[2010/03/20 17:25:08 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2010/03/20 17:25:08 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services
[2010/03/20 17:25:01 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
[2010/03/20 17:24:57 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2010/03/20 17:24:22 | 000,000,000 | ---D | C] -- C:\Program Files\MSN
[2010/03/20 17:24:20 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2010/03/20 17:24:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2010/03/20 17:24:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2010/03/20 17:19:17 | 000,020,992 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\drivers\RTL8139.sys
[2010/03/20 17:18:57 | 000,035,871 | ---- | C] (Winbond Electronics Corp.) -- C:\WINDOWS\System32\drivers\wbfirdma.sys
[2010/03/20 17:16:44 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2010/03/20 17:16:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2010/03/20 17:16:39 | 000,000,000 | R--D | C] -- C:\Program Files
[2010/03/20 17:16:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2010/03/20 17:16:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2010/03/20 17:16:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2010/03/20 17:16:08 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu
[2010/03/20 17:16:08 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents
[2010/03/20 17:16:08 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Templates
[2010/03/20 17:16:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Favorites
[2010/03/20 17:16:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Desktop
[2010/03/20 17:15:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2010/03/20 17:15:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2010/03/20 17:15:45 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2010/03/20 17:15:45 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data
[2010/03/20 17:15:16 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2010/03/20 17:15:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2010/03/20 17:07:26 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2010/03/20 17:07:26 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2010/03/20 17:07:26 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2010/03/20 17:07:26 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2010/03/20 17:07:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025

========== Files - Modified Within 14 Days ==========

[2010/03/26 00:12:50 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/03/26 00:12:26 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/03/26 00:11:18 | 002,097,152 | -H-- | M] () -- C:\Documents and Settings\jhn barrett\NTUSER.DAT
[2010/03/26 00:11:18 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\jhn barrett\ntuser.ini
[2010/03/26 00:01:01 | 000,000,246 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2010/03/25 23:43:25 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2010/03/25 23:35:38 | 000,312,172 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/03/25 23:35:38 | 000,040,394 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010/03/25 23:35:36 | 000,356,120 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010/03/25 23:32:42 | 000,143,624 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/03/25 23:31:05 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010/03/25 23:25:19 | 003,704,282 | -H-- | M] () -- C:\Documents and Settings\jhn barrett\Local Settings\Application Data\IconCache.db
[2010/03/25 22:55:42 | 000,132,597 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\Flash_Disinfector.exe
[2010/03/25 22:50:22 | 000,214,525 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\kasp2.jpg
[2010/03/25 22:50:22 | 000,022,248 | ---- | M] () -- C:\Documents and Settings\jhn barrett\.recently-used.xbel
[2010/03/25 22:28:26 | 000,031,461 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\kasp.jpg
[2010/03/25 22:23:39 | 000,007,168 | ---- | M] () -- C:\WINDOWS\System32\drivers\utezmtyx.sys
[2010/03/25 13:39:30 | 000,071,081 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\avast.jpg
[2010/03/25 06:17:44 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010/03/25 06:14:50 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/03/25 05:48:33 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2010/03/25 01:15:52 | 000,001,700 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2010/03/25 01:15:47 | 000,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010/03/25 01:14:38 | 045,942,928 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\setup_av_free.exe
[2010/03/24 22:33:48 | 000,013,824 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\avenge2.wps
[2010/03/24 22:33:48 | 000,002,900 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Application Data\wklnhst.dat
[2010/03/24 22:25:33 | 000,011,776 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\definition of gordon brown and the labour party.wps
[2010/03/24 20:20:20 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/03/24 20:19:25 | 005,115,824 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\jhn barrett\Desktop\mbam-setup.exe
[2010/03/24 14:16:06 | 000,284,915 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\gmer.zip
[2010/03/24 13:21:25 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010/03/24 12:45:59 | 000,014,848 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\otm text.wps
[2010/03/24 12:39:22 | 000,510,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\jhn barrett\Desktop\OTM.exe
[2010/03/24 06:48:50 | 000,000,785 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\subscribe.miro
[2010/03/24 06:47:00 | 000,001,819 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Miro.lnk
[2010/03/24 06:36:29 | 000,282,606 | ---- | M] (Participatory Culture Foundation) -- C:\Documents and Settings\jhn barrett\Desktop\Miro_Installer.exe
[2010/03/24 06:20:00 | 000,056,338 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\Christiane_F..3503763.TPB.torrent
[2010/03/24 05:56:34 | 000,000,785 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\subscribe.miro
[2010/03/24 05:56:08 | 000,257,422 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\Christiane_F._-_Wir_Kinder_vom_Bahnhof_Zoo.5408545.TPB.torrent
[2010/03/24 05:40:57 | 000,673,809 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\ConservativeTechnologyManifesto.pdf
[2010/03/24 05:07:07 | 000,235,370 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\FixingBrokenPoliticsPartTwo.ashx
[2010/03/24 05:01:05 | 000,442,173 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\FixingBrokenPoliticsPartOne.ashx
[2010/03/24 04:56:43 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2010/03/24 04:53:56 | 027,386,256 | ---- | M] ( ) -- C:\Documents and Settings\jhn barrett\Desktop\AdbeRdr930_en_US.exe
[2010/03/23 20:09:02 | 000,360,448 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\kasp report 2.wps
[2010/03/23 13:48:38 | 068,146,672 | ---- | M] ( ) -- C:\Documents and Settings\jhn barrett\Desktop\setup_9.0.0.722_23.03.2010_14-47.exe
[2010/03/23 13:46:18 | 002,672,312 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\esetsmartinstaller_enu.exe
[2010/03/23 13:38:36 | 034,952,464 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\drweb-cureit.exe
[2010/03/23 10:43:00 | 002,533,663 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\installer_dr_web_cureit!_5_00_2_[10_03_2009]_English.exe
[2010/03/23 01:33:54 | 000,724,952 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\avenger.zip
[2010/03/23 00:44:57 | 000,444,416 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\jhn barrett\Desktop\TFC.exe
[2010/03/22 21:41:52 | 000,451,584 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\CKScanner.exe
[2010/03/22 18:45:54 | 000,000,281 | RHS- | M] () -- C:\boot.ini
[2010/03/22 18:34:24 | 000,173,119 | ---- | M] (Eric_71) -- C:\Documents and Settings\jhn barrett\Desktop\Rooter.exe
[2010/03/22 05:41:29 | 000,000,790 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\GIMP 2.lnk
[2010/03/22 04:07:01 | 000,048,640 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\malware remove.wps
[2010/03/21 23:18:04 | 000,939,956 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\7zip.exe
[2010/03/21 23:13:24 | 000,555,520 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\jhn barrett\Desktop\OTL.exe
[2010/03/21 23:12:11 | 000,791,393 | ---- | M] (Lars Hederer ) -- C:\Documents and Settings\jhn barrett\Desktop\erunt_setup.exe
[2010/03/21 04:53:01 | 000,000,892 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\DVDVideoSoft Free Studio.lnk
[2010/03/21 03:20:11 | 000,284,050 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\James-Caans-Essential-Business-Tips.pdf
[2010/03/20 23:50:27 | 000,154,624 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\bookmarks.wps
[2010/03/20 23:25:43 | 000,891,248 | ---- | M] (AVG Technologies) -- C:\Documents and Settings\jhn barrett\Desktop\avg_free_stb_all_9_40_cnet.exe
[2010/03/20 23:09:04 | 000,029,528 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010/03/20 22:29:05 | 000,000,698 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\Evrsoft First Page 2006.lnk
[2010/03/20 21:50:32 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk
[2010/03/20 21:45:13 | 000,000,025 | ---- | M] () -- C:\WINDOWS\cdplayer.ini
[2010/03/20 21:44:07 | 000,000,897 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\RealPlayer.lnk
[2010/03/20 21:43:53 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010/03/20 18:32:08 | 000,001,617 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\ZTE Mobile Connection.lnk
[2010/03/20 18:23:11 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\K-Meleon.lnk
[2010/03/20 18:22:05 | 000,000,465 | ---- | M] () -- C:\Documents and Settings\jhn barrett\Desktop\Shortcut to whypay4it.net.lnk
[2010/03/20 17:34:26 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2010/03/20 17:33:21 | 000,000,302 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2010/03/20 17:29:50 | 000,000,477 | ---- | M] () -- C:\WINDOWS\win.ini
[2010/03/20 17:29:50 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010/03/20 17:29:50 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010/03/20 17:29:50 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini
[2010/03/20 17:29:50 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010/03/20 17:29:50 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010/03/20 17:29:41 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010/03/20 17:29:41 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010/03/20 17:29:28 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2010/03/20 17:28:16 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010/03/20 17:28:16 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010/03/20 17:26:12 | 000,021,640 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010/03/20 17:25:54 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini
[2010/03/20 17:25:54 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini
[2010/03/20 17:22:55 | 000,000,211 | ---- | M] () -- C:\Boot.bak
[2010/03/20 11:30:54 | 000,205,017 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\ins3.xcf
[2010/03/20 01:31:38 | 000,335,330 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\ins2.xcf
[2010/03/20 01:30:06 | 000,283,904 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\ins.xcf
[2010/03/20 01:27:28 | 000,173,010 | ---- | M] () -- C:\Documents and Settings\jhn barrett\My Documents\dtop.xcf
[2010/03/12 18:02:38 | 000,261,632 | ---- | M] () -- C:\WINDOWS\PEV.exe

========== Files Created - No Company Name ==========

[2010/03/25 22:55:39 | 000,132,597 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\Flash_Disinfector.exe
[2010/03/25 22:50:22 | 000,022,248 | ---- | C] () -- C:\Documents and Settings\jhn barrett\.recently-used.xbel
[2010/03/25 22:43:01 | 000,214,525 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\kasp2.jpg
[2010/03/25 22:28:26 | 000,031,461 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\kasp.jpg
[2010/03/25 22:23:35 | 000,007,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\utezmtyx.sys
[2010/03/25 13:39:29 | 000,071,081 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\avast.jpg
[2010/03/25 05:24:40 | 000,613,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm
[2010/03/25 05:24:40 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav
[2010/03/25 05:24:40 | 000,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta
[2010/03/25 05:24:40 | 000,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css
[2010/03/25 05:24:40 | 000,000,855 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf
[2010/03/25 05:24:40 | 000,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js
[2010/03/25 05:24:39 | 000,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav
[2010/03/25 05:24:39 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav
[2010/03/25 05:24:39 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav
[2010/03/25 05:24:39 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav
[2010/03/25 05:24:39 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav
[2010/03/25 05:24:39 | 000,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav
[2010/03/25 05:24:39 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav
[2010/03/25 05:24:39 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav
[2010/03/25 05:24:38 | 000,017,272 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf
[2010/03/25 05:24:38 | 000,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif
[2010/03/25 05:24:38 | 000,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif
[2010/03/25 05:24:38 | 000,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif
[2010/03/25 05:24:38 | 000,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif
[2010/03/25 05:24:38 | 000,006,769 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf
[2010/03/25 05:24:38 | 000,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif
[2010/03/25 05:24:38 | 000,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif
[2010/03/25 05:24:38 | 000,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif
[2010/03/25 05:24:38 | 000,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif
[2010/03/25 05:24:38 | 000,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif
[2010/03/25 05:24:34 | 000,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv
[2010/03/25 05:24:34 | 000,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif
[2010/03/25 05:24:34 | 000,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif
[2010/03/25 05:24:30 | 000,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif
[2010/03/25 05:24:30 | 000,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js
[2010/03/25 05:24:30 | 000,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif
[2010/03/25 05:24:30 | 000,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif
[2010/03/25 05:24:30 | 000,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif
[2010/03/25 05:24:30 | 000,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif
[2010/03/25 05:24:29 | 000,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif
[2010/03/25 05:24:29 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif
[2010/03/25 05:24:29 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif
[2010/03/25 05:24:29 | 000,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif
[2010/03/25 05:24:25 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm
[2010/03/25 05:24:25 | 000,000,908 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf
[2010/03/25 05:24:20 | 000,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv
[2010/03/25 05:24:19 | 000,077,307 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm
[2010/03/25 05:24:17 | 000,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv
[2010/03/25 05:24:17 | 000,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip
[2010/03/25 05:24:17 | 000,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip
[2010/03/25 05:24:14 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2010/03/25 05:24:07 | 000,018,286 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf
[2010/03/25 05:24:07 | 000,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif
[2010/03/25 05:24:07 | 000,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif
[2010/03/25 05:24:06 | 000,097,117 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.hlp
[2010/03/25 05:24:06 | 000,001,885 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.cnt
[2010/03/25 05:24:02 | 000,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv
[2010/03/25 05:23:38 | 000,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js
[2010/03/25 05:22:27 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2010/03/25 05:22:26 | 000,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv
[2010/03/25 05:22:25 | 000,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css
[2010/03/25 05:22:25 | 000,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm
[2010/03/25 05:22:25 | 000,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js
[2010/03/25 05:22:24 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif
[2010/03/25 05:22:24 | 000,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif
[2010/03/25 05:22:23 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif
[2010/03/25 05:22:23 | 000,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif
[2010/03/25 05:22:23 | 000,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif
[2010/03/25 05:22:19 | 000,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif
[2010/03/25 05:16:08 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
[2010/03/25 01:15:52 | 000,001,700 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2010/03/25 01:12:07 | 045,942,928 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\setup_av_free.exe
[2010/03/24 22:33:48 | 000,013,824 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\avenge2.wps
[2010/03/24 22:20:13 | 000,011,776 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\definition of gordon brown and the labour party.wps
[2010/03/24 20:20:20 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/03/24 14:16:04 | 000,284,915 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\gmer.zip
[2010/03/24 13:51:54 | 001,291,776 | ---- | C] () -- C:\WINDOWS\System32\dllcache\quartz.dll
[2010/03/24 12:45:58 | 000,014,848 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\otm text.wps
[2010/03/24 06:48:50 | 000,000,785 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\subscribe.miro
[2010/03/24 06:47:00 | 000,001,819 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Miro.lnk
[2010/03/24 06:19:59 | 000,056,338 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\Christiane_F..3503763.TPB.torrent
[2010/03/24 05:56:34 | 000,000,785 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\subscribe.miro
[2010/03/24 05:56:04 | 000,257,422 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\Christiane_F._-_Wir_Kinder_vom_Bahnhof_Zoo.5408545.TPB.torrent
[2010/03/24 05:40:49 | 000,673,809 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\ConservativeTechnologyManifesto.pdf
[2010/03/24 05:07:07 | 000,235,370 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\FixingBrokenPoliticsPartTwo.ashx
[2010/03/24 05:01:05 | 000,442,173 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\FixingBrokenPoliticsPartOne.ashx
[2010/03/24 04:56:42 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2010/03/23 20:25:42 | 000,360,448 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\kasp report 2.wps
[2010/03/23 15:11:47 | 002,672,312 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\esetsmartinstaller_enu.exe
[2010/03/23 15:11:39 | 034,952,464 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\drweb-cureit.exe
[2010/03/23 10:42:43 | 002,533,663 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\installer_dr_web_cureit!_5_00_2_[10_03_2009]_English.exe
[2010/03/23 01:33:53 | 000,724,952 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\avenger.zip
[2010/03/22 21:41:41 | 000,451,584 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\CKScanner.exe
[2010/03/22 18:45:54 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2010/03/22 18:45:50 | 000,260,272 | ---- | C] () -- C:\cmldr
[2010/03/22 15:16:45 | 000,261,632 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010/03/22 15:16:45 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010/03/22 15:16:45 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010/03/22 15:16:45 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010/03/22 15:16:45 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010/03/22 05:41:29 | 000,000,790 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\GIMP 2.lnk
[2010/03/21 23:17:32 | 000,939,956 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\7zip.exe
[2010/03/21 23:16:11 | 000,048,640 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\malware remove.wps
[2010/03/21 04:53:24 | 000,000,246 | ---- | C] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2010/03/21 04:53:01 | 000,000,892 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\DVDVideoSoft Free Studio.lnk
[2010/03/21 03:20:08 | 000,284,050 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\James-Caans-Essential-Business-Tips.pdf
[2010/03/20 23:50:26 | 000,154,624 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\bookmarks.wps
[2010/03/20 23:44:45 | 000,002,900 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Application Data\wklnhst.dat
[2010/03/20 22:29:05 | 000,000,698 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\Evrsoft First Page 2006.lnk
[2010/03/20 21:50:32 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk
[2010/03/20 21:45:13 | 000,000,025 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2010/03/20 21:44:07 | 000,000,897 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\RealPlayer.lnk
[2010/03/20 18:31:58 | 000,001,617 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\ZTE Mobile Connection.lnk
[2010/03/20 18:23:10 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\K-Meleon.lnk
[2010/03/20 18:22:05 | 000,000,465 | ---- | C] () -- C:\Documents and Settings\jhn barrett\Desktop\Shortcut to whypay4it.net.lnk
[2010/03/20 18:01:00 | 000,155,648 | R--- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2010/03/20 18:00:56 | 000,141,016 | R--- | C] () -- C:\WINDOWS\System32\ALSNDMGR.WAV
[2010/03/20 17:57:02 | 000,067,380 | R--- | C] () -- C:\WINDOWS\System32\igfxhhun.lhp
[2010/03/20 17:57:02 | 000,063,938 | R--- | C] () -- C:\WINDOWS\System32\igfxhtrk.lhp
[2010/03/20 17:57:02 | 000,061,984 | R--- | C] () -- C:\WINDOWS\System32\igfxhsve.lhp
[2010/03/20 17:57:02 | 000,061,869 | R--- | C] () -- C:\WINDOWS\System32\igfxhtha.lhp
[2010/03/20 17:57:02 | 000,061,388 | R--- | C] () -- C:\WINDOWS\System32\igfxhptg.lhp
[2010/03/20 17:57:02 | 000,060,547 | R--- | C] () -- C:\WINDOWS\System32\igfxhell.lhp
[2010/03/20 17:57:02 | 000,060,436 | R--- | C] () -- C:\WINDOWS\System32\igfxhptb.lhp
[2010/03/20 17:57:02 | 000,060,216 | R--- | C] () -- C:\WINDOWS\System32\igfxhrus.lhp
[2010/03/20 17:57:02 | 000,059,760 | R--- | C] () -- C:\WINDOWS\System32\igfxhcsy.lhp
[2010/03/20 17:57:01 | 000,065,087 | R--- | C] () -- C:\WINDOWS\System32\igfxhkor.lhp
[2010/03/20 17:57:01 | 000,062,815 | R--- | C] () -- C:\WINDOWS\System32\igfxhplk.lhp
[2010/03/20 17:57:01 | 000,062,509 | R--- | C] () -- C:\WINDOWS\System32\igfxhdeu.lhp
[2010/03/20 17:57:01 | 000,061,950 | R--- | C] () -- C:\WINDOWS\System32\igfxhfrc.lhp
[2010/03/20 17:57:01 | 000,061,799 | R--- | C] () -- C:\WINDOWS\System32\igfxhfin.lhp
[2010/03/20 17:57:01 | 000,061,511 | R--- | C] () -- C:\WINDOWS\System32\igfxhfra.lhp
[2010/03/20 17:57:01 | 000,060,848 | R--- | C] () -- C:\WINDOWS\System32\igfxhesp.lhp
[2010/03/20 17:57:01 | 000,060,758 | R--- | C] () -- C:\WINDOWS\System32\igfxhjpn.lhp
[2010/03/20 17:57:01 | 000,060,476 | R--- | C] () -- C:\WINDOWS\System32\igfxhdan.lhp
[2010/03/20 17:57:01 | 000,059,861 | R--- | C] () -- C:\WINDOWS\System32\igfxharb.lhp
[2010/03/20 17:57:01 | 000,059,753 | R--- | C] () -- C:\WINDOWS\System32\igfxhara.lhp
[2010/03/20 17:57:01 | 000,059,448 | R--- | C] () -- C:\WINDOWS\System32\igfxhnld.lhp
[2010/03/20 17:57:01 | 000,059,350 | R--- | C] () -- C:\WINDOWS\System32\igfxhnor.lhp
[2010/03/20 17:57:01 | 000,059,095 | R--- | C] () -- C:\WINDOWS\System32\igfxhita.lhp
[2010/03/20 17:57:01 | 000,059,064 | R--- | C] () -- C:\WINDOWS\System32\igfxhheb.lhp
[2010/03/20 17:57:01 | 000,058,394 | R--- | C] () -- C:\WINDOWS\System32\igfxhcht.lhp
[2010/03/20 17:57:01 | 000,057,559 | R--- | C] () -- C:\WINDOWS\System32\igfxheng.lhp
[2010/03/20 17:57:01 | 000,057,430 | R--- | C] () -- C:\WINDOWS\System32\igfxhchs.lhp
[2010/03/20 17:57:00 | 000,056,937 | R--- | C] () -- C:\WINDOWS\System32\igfxhenu.lhp
[2010/03/20 17:36:49 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\jhn barrett\ntuser.ini
[2010/03/20 17:36:47 | 002,097,152 | -H-- | C] () -- C:\Documents and Settings\jhn barrett\NTUSER.DAT
[2010/03/20 17:34:25 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2010/03/20 17:33:15 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010/03/20 17:32:53 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls
[2010/03/20 17:32:08 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls
[2010/03/20 17:32:07 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls
[2010/03/20 17:32:06 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2010/03/20 17:31:38 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls
[2010/03/20 17:31:37 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2010/03/20 17:31:29 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2010/03/20 17:31:28 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2010/03/20 17:31:25 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2010/03/20 17:31:17 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2010/03/20 17:31:12 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2010/03/20 17:30:48 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2010/03/20 17:30:43 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls
[2010/03/20 17:30:43 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls
[2010/03/20 17:30:43 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls
[2010/03/20 17:30:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls
[2010/03/20 17:30:42 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls
[2010/03/20 17:30:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls
[2010/03/20 17:30:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls
[2010/03/20 17:30:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls
[2010/03/20 17:30:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls
[2010/03/20 17:30:41 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls
[2010/03/20 17:30:41 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls
[2010/03/20 17:30:41 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls
[2010/03/20 17:30:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls
[2010/03/20 17:30:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls
[2010/03/20 17:30:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls
[2010/03/20 17:30:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls
[2010/03/20 17:30:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls
[2010/03/20 17:30:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls
[2010/03/20 17:30:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls
[2010/03/20 17:30:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls
[2010/03/20 17:30:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls
[2010/03/20 17:30:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls
[2010/03/20 17:30:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls
[2010/03/20 17:30:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls
[2010/03/20 17:30:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls
[2010/03/20 17:30:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls
[2010/03/20 17:30:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls
[2010/03/20 17:30:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls
[2010/03/20 17:30:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls
[2010/03/20 17:30:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls
[2010/03/20 17:30:39 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls
[2010/03/20 17:30:39 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls
[2010/03/20 17:30:39 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls
[2010/03/20 17:30:39 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls
[2010/03/20 17:30:39 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls
[2010/03/20 17:30:39 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls
[2010/03/20 17:30:39 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls
[2010/03/20 17:30:39 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls
[2010/03/20 17:30:39 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls
[2010/03/20 17:30:38 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls
[2010/03/20 17:30:38 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls
[2010/03/20 17:30:38 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls
[2010/03/20 17:30:38 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls
[2010/03/20 17:30:38 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls
[2010/03/20 17:30:38 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls
[2010/03/20 17:30:38 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls
[2010/03/20 17:30:38 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls
[2010/03/20 17:30:38 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls
[2010/03/20 17:30:38 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls
[2010/03/20 17:30:37 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls
[2010/03/20 17:30:37 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls
[2010/03/20 17:30:37 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls
[2010/03/20 17:30:37 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls
[2010/03/20 17:30:37 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls
[2010/03/20 17:30:37 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls
[2010/03/20 17:30:37 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls
[2010/03/20 17:30:36 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls
[2010/03/20 17:30:36 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls
[2010/03/20 17:30:36 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls
[2010/03/20 17:30:35 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls
[2010/03/20 17:29:50 | 000,002,626 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2010/03/20 17:29:50 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010/03/20 17:29:50 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010/03/20 17:29:50 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2010/03/20 17:29:50 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2010/03/20 17:29:41 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2010/03/20 17:29:41 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2010/03/20 17:29:40 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2010/03/20 17:28:16 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010/03/20 17:28:16 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010/03/20 17:28:07 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010/03/20 17:27:40 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex
[2010/03/20 17:27:10 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp
[2010/03/20 17:27:10 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp
[2010/03/20 17:27:04 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf
[2010/03/20 17:26:12 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010/03/20 17:24:43 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Prairie Wind.bmp
[2010/03/20 17:24:43 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe Stucco.bmp
[2010/03/20 17:24:43 | 000,026,680 | ---- | C] () -- C:\WINDOWS\River Sumida.bmp
[2010/03/20 17:24:43 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Greenstone.bmp
[2010/03/20 17:24:43 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp
[2010/03/20 17:24:43 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp
[2010/03/20 17:24:42 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce
[2010/03/20 17:24:42 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Soap Bubbles.bmp
[2010/03/20 17:24:42 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Gone Fishing.bmp
[2010/03/20 17:24:42 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Coffee Bean.bmp
[2010/03/20 17:24:42 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce
[2010/03/20 17:24:42 | 000,016,730 | ---- | C] () -- C:\WINDOWS\FeatherTexture.bmp
[2010/03/20 17:24:42 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce
[2010/03/20 17:24:42 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Blue Lace 16.bmp
[2010/03/20 17:24:41 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce
[2010/03/20 17:24:41 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce
[2010/03/20 17:24:41 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce
[2010/03/20 17:24:41 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce
[2010/03/20 17:24:41 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce
[2010/03/20 17:24:39 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2010/03/20 17:24:39 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2010/03/20 17:24:38 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2010/03/20 17:24:32 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2010/03/20 17:16:47 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2010/03/20 17:16:40 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd
[2010/03/20 17:16:40 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa
[2010/03/20 17:16:40 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf
[2010/03/20 17:16:39 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa
[2010/03/20 17:16:37 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls
[2010/03/20 17:16:37 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls
[2010/03/20 17:16:36 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls
[2010/03/20 17:16:36 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls
[2010/03/20 17:16:36 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls
[2010/03/20 17:16:36 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls
[2010/03/20 17:16:36 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls
[2010/03/20 17:16:36 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls
[2010/03/20 17:16:34 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls
[2010/03/20 17:16:34 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS
[2010/03/20 17:16:34 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls
[2010/03/20 17:16:34 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls
[2010/03/20 17:16:34 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls
[2010/03/20 17:16:34 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls
[2010/03/20 17:16:32 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls
[2010/03/20 17:16:32 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls
[2010/03/20 17:16:32 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls
[2010/03/20 17:16:32 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls
[2010/03/20 17:16:32 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls
[2010/03/20 17:16:32 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls
[2010/03/20 17:16:32 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls
[2010/03/20 17:16:32 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS
[2010/03/20 17:16:32 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls
[2010/03/20 17:16:32 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls
[2010/03/20 17:16:30 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls
[2010/03/20 17:16:30 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls
[2010/03/20 17:16:30 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls
[2010/03/20 17:16:30 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls
[2010/03/20 17:16:30 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls
[2010/03/20 17:16:30 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS
[2010/03/20 17:16:28 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_852.nls
[2010/03/20 17:16:28 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_852.nls
[2010/03/20 17:16:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls
[2010/03/20 17:16:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls
[2010/03/20 17:16:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls
[2010/03/20 17:16:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls
[2010/03/20 17:16:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls
[2010/03/20 17:16:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls
[2010/03/20 17:16:27 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls
[2010/03/20 17:16:27 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls
[2010/03/20 17:16:23 | 000,001,688 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2010/03/20 17:16:07 | 000,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2010/03/20 17:16:07 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2010/03/20 17:16:07 | 000,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2010/03/20 17:16:07 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2010/03/20 17:16:07 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2010/03/20 17:16:07 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2010/03/20 17:16:07 | 000,007,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2010/03/20 17:16:06 | 001,042,903 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT
[2010/03/20 17:15:15 | 000,143,624 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/03/20 17:14:17 | 000,000,281 | RHS- | C] () -- C:\boot.ini
[2010/03/20 17:14:12 | 000,000,302 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2010/03/20 12:31:41 | 000,205,017 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\ins3.xcf
[2010/03/20 12:31:40 | 000,335,330 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\ins2.xcf
[2010/03/20 12:31:40 | 000,283,904 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\ins.xcf
[2010/03/20 12:31:40 | 000,173,010 | ---- | C] () -- C:\Documents and Settings\jhn barrett\My Documents\dtop.xcf
[2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL

========== LOP Check ==========

[2010/03/25 01:15:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2010/03/25 22:50:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\jhn barrett\Application Data\gtk-2.0
[2010/03/20 18:38:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\jhn barrett\Application Data\K-Meleon
[2010/03/24 06:08:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\jhn barrett\Application Data\Participatory Culture Foundation
[2010/03/20 23:44:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\jhn barrett\Application Data\Template
[2010/03/26 00:01:01 | 000,000,246 | ---- | M] () -- C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job

========== Purity Check ==========

< End of report >

MBAM 2:

Malwarebytes' Anti-Malware 1.44
Database version: 3914
Windows 5.1.2600 Service Pack 3
Internet Explorer 6.0.2900.5512

3/26/2010 12:38:33 AM
mbam-log-2010-03-26 (00-38-33).txt

Scan type: Quick Scan
Objects scanned: 117809
Time elapsed: 5 minute(s), 54 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)