Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Trojan removal caused mayhem

Started by mercinarynurse , Apr 20 2011 03:40 AM

  • Please log in to reply

#1
mercinarynurse
Posted 20 April 2011 - 03:40 AM

mercinarynurse

    New Member

  • Member
  • Pip
  • 2 posts
Hi there

Thanks way in advanced for any and all help i get here.

Yesturday i started getting redirects. I immediatly ran various spyware tools which identified a dns changer trojan. The problems really started once i removed it. I found that i had completely lost the ability to connect to the net. Basically my computer insists no connections are available.

I have tried the old checking to make sure a proxy server isnt being used but my setting were all fine. Interestingly my router still insists that the main pc is connected to the network. I have blocked all outgoing traffic to be on the safeside. Both Superanti Spyware and Spybot are comming up clean but im not convinced.

Although i am fairly computer literate my own personal geekeyness lies in hardware and overclocking. Beyond what i have already done this falls outside my skillset. Any help would be greatly appreciated.

Many thanks.

Scott.

P.S Apologies for spelling/ typos just come off nightshift so some what knackered.

Edited by mercinarynurse, 20 April 2011 - 02:55 PM.

  • 0

Advertisements

#2
mercinarynurse
Posted 20 April 2011 - 10:49 AM

mercinarynurse

    New Member

  • Topic Starter
  • Member
  • Pip
  • 2 posts
Hello again.

having now had some sleep, i have realised i didnt give you the otl log it is as follows:

OTL logfile created on: 20/04/2011 17:42:20 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Scotty\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

4.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 68.00% Memory free
12.00 Gb Paging File | 10.00 Gb Available in Paging File | 87.00% Paging File free
Paging file location(s): c:\pagefile.sys 0 0e:\pagefile.sys 4000 10000 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 59.62 Gb Total Space | 29.14 Gb Free Space | 48.88% Space Free | Partition Type: NTFS
Drive D: | 100.00 Mb Total Space | 76.24 Mb Free Space | 76.25% Space Free | Partition Type: NTFS
Drive E: | 931.41 Gb Total Space | 855.64 Gb Free Space | 91.87% Space Free | Partition Type: NTFS
Drive G: | 465.65 Gb Total Space | 400.53 Gb Free Space | 86.02% Space Free | Partition Type: FAT32

Computer Name: SCOTTY-PC | User Name: Scotty | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/04/20 17:35:06 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Scotty\Desktop\OTL.com
PRC - [2011/01/07 01:22:54 | 002,747,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG10\avgtray.exe
PRC - [2011/01/06 15:23:20 | 000,737,872 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
PRC - [2011/01/06 15:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
PRC - [2010/10/22 04:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe
PRC - [2010/04/27 10:09:52 | 000,113,288 | ---- | M] (Renesas Electronics Corporation) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
PRC - [2010/01/07 13:09:38 | 000,105,632 | ---- | M] (Corel) -- C:\Program Files (x86)\Common Files\Corel\Standby\Standby.exe
PRC - [2008/11/18 13:15:30 | 000,307,200 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
PRC - [2007/07/24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe


========== Modules (SafeList) ==========

MOD - [2011/04/20 17:35:06 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Scotty\Desktop\OTL.com
MOD - [2010/11/20 12:55:09 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2011/03/09 05:53:04 | 000,203,776 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2011/03/09 01:06:44 | 000,365,568 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV:64bit: - [2010/06/29 18:49:27 | 000,128,752 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE -- (!SASCORE)
SRV:64bit: - [2010/06/17 06:23:36 | 000,194,496 | ---- | M] (Advanced Micro Devices) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe -- (AMD Reservation Manager)
SRV:64bit: - [2009/07/14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2011/03/29 16:03:17 | 000,403,240 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011/03/29 14:06:18 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2011/01/06 15:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2010/10/22 04:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe -- (avgwd)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008/11/18 13:15:30 | 000,307,200 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)
SRV - [2007/07/24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Auto | Running] -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2011/03/09 10:22:42 | 009,258,496 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2011/03/09 05:17:42 | 000,300,544 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2011/01/19 17:47:18 | 000,021,992 | ---- | M] (CPUID) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\cpuz135_x64.sys -- (cpuz135)
DRV:64bit: - [2010/12/08 04:12:36 | 000,308,304 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgldx64.sys -- (Avgldx64)
DRV:64bit: - [2010/11/20 14:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 14:32:47 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/11/20 14:32:46 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2010/11/20 12:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 12:03:42 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2010/11/17 13:04:32 | 000,115,216 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2010/11/12 13:19:38 | 000,382,032 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtdia.sys -- (Avgtdia)
DRV:64bit: - [2010/09/13 15:28:00 | 000,027,216 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AVGIDSEH.sys -- (AVGIDSEH)
DRV:64bit: - [2010/09/07 03:48:56 | 000,041,040 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgmfx64.sys -- (Avgmfx64)
DRV:64bit: - [2010/09/07 03:48:50 | 000,030,288 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgrkx64.sys -- (Avgrkx64)
DRV:64bit: - [2010/08/03 15:24:28 | 000,157,264 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV:64bit: - [2010/08/03 15:24:24 | 000,035,920 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV:64bit: - [2010/06/23 10:10:56 | 000,344,680 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2010/04/27 09:30:52 | 000,184,968 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2010/04/27 09:29:54 | 000,083,080 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2010/02/18 09:18:24 | 000,046,136 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\amdiox64.sys -- (amdiox64)
DRV:64bit: - [2010/02/17 19:23:05 | 000,014,920 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2010/02/17 19:23:05 | 000,012,360 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64bit: - [2010/01/27 03:09:02 | 000,047,632 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\npf.sys -- (npf)
DRV:64bit: - [2009/08/03 11:12:00 | 001,289,216 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\P17.sys -- (P17)
DRV:64bit: - [2009/07/16 04:38:40 | 000,015,416 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor)
DRV:64bit: - [2009/07/14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/14 01:35:32 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
DRV:64bit: - [2009/06/10 21:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2008/07/26 15:26:34 | 000,050,072 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LVUSBS64.sys -- (LVUSBS64)
DRV:64bit: - [2008/07/26 15:22:34 | 002,624,408 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LV302V64.SYS -- (PID_PEPI) Logitech QuickCam IM(PID_PEPI)
DRV:64bit: - [2008/01/17 16:51:44 | 000,018,816 | ---- | M] (Razer USA Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Lycosa.sys -- (Lycosa)

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://uk.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-gb
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = FA 6F F5 06 10 EE CB 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========


FF - HKLM\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files (x86)\AVG\AVG10\Firefox4\ [2011/03/30 08:55:29 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011/04/09 17:19:08 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2011/03/29 15:30:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Scotty\AppData\Roaming\Mozilla\Extensions
[2011/03/29 17:58:14 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2011/03/29 17:58:14 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
File not found (No name found) --
[2011/03/30 08:55:29 | 000,000,000 | ---D | M] (AVG Safe Search) -- C:\PROGRAM FILES (X86)\AVG\AVG10\FIREFOX4
[2011/03/18 18:57:02 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll
[2010/01/01 09:00:00 | 000,001,538 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\amazon-en-GB.xml
[2010/01/01 09:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\bing.xml
[2010/01/01 09:00:00 | 000,000,947 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\chambers-en-GB.xml
[2010/01/01 09:00:00 | 000,001,180 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\eBay-en-GB.xml
[2010/01/01 09:00:00 | 000,001,135 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\yahoo-en-GB.xml

O1 HOSTS File: ([2009/06/10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG10\avgssiea.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files (x86)\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
O4 - HKLM..\Run: [P17RunE] C:\Windows\SysWow64\P17RunE.dll (Creative Technology Ltd.)
O4 - HKLM..\Run: [Standby] c:\Program Files (x86)\Common Files\Corel\Standby\Standby.exe (Corel)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O18:64bit: - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG10\avgppa.dll (AVG Technologies CZ, s.r.o.)
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - Reg Error: Key error. File not found
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (C:\PROGRA~2\AVG\AVG10\avgchsva.exe /sync) - C:\Program Files (x86)\AVG\AVG10\avgchsva.exe (AVG Technologies CZ, s.r.o.)
O34 - HKLM BootExecute: (C:\PROGRA~2\AVG\AVG10\avgrsa.exe /sync /restart) - C:\Program Files (x86)\AVG\AVG10\avgrsa.exe (AVG Technologies CZ, s.r.o.)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/04/20 17:41:46 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\Scotty\Desktop\OTL.com
[2011/04/20 17:24:01 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{CED59540-1C41-4861-8DF3-94A6A783AAC5}
[2011/04/20 10:54:19 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Roaming\Malwarebytes
[2011/04/20 10:54:15 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2011/04/20 10:54:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/04/20 10:54:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/04/20 10:54:12 | 000,024,152 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011/04/20 10:54:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2011/04/20 10:41:53 | 000,000,000 | ---D | C] -- C:\Users\Scotty\Desktop\Security
[2011/04/20 09:43:50 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{E13056A6-1CA7-4966-8261-7A6102DF4D43}
[2011/04/20 09:34:46 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{64446226-7CC0-4234-8519-586975E89E75}
[2011/04/20 09:16:47 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Roaming\SUPERAntiSpyware.com
[2011/04/20 09:16:47 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2011/04/20 09:16:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[2011/04/20 09:16:45 | 000,000,000 | ---D | C] -- C:\ProgramData\!SASCORE
[2011/04/20 09:16:44 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2011/04/19 20:37:00 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{A99D6187-4391-4182-B7BE-49454B943A64}
[2011/04/19 06:03:36 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{FC1036DF-23C1-4A00-AC0B-C4BE77ABC646}
[2011/04/18 15:37:27 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{379016AF-B1CC-49C9-B270-6EFF6797A6F8}
[2011/04/17 22:47:23 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{31C00FF4-D2DC-4692-B764-2EC751C4D674}
[2011/04/17 09:49:45 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{6741C366-534F-481D-8DC2-E5FB5332C4C7}
[2011/04/16 21:49:10 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{FF215FCF-3532-4619-BD42-6C5330C0C3D3}
[2011/04/16 09:48:35 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{17C20690-8D1B-4BFC-9475-68765A41647B}
[2011/04/15 21:48:01 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{F270CE78-4FE2-411C-9B78-5A33BCFD9E7A}
[2011/04/15 11:39:06 | 000,000,000 | ---D | C] -- C:\Users\Scotty\Desktop\running music
[2011/04/15 11:37:45 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Roaming\VDownloader
[2011/04/15 11:37:44 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\VDownloader
[2011/04/15 11:37:28 | 000,000,000 | ---D | C] -- C:\Program Files\WinPcap
[2011/04/15 11:37:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VDownloader
[2011/04/15 11:37:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VDownloader
[2011/04/15 09:47:26 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{089F5BD6-91E8-4534-A38D-A8C4B548197E}
[2011/04/14 21:46:52 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{8AA72B12-0B1E-4050-90C7-C7733838B930}
[2011/04/14 09:46:28 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{1E5A8E0C-4BCF-4AB0-9FE9-03107D8D4AD3}
[2011/04/13 17:46:14 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{F9CB32F3-9CCD-4351-A9FF-2818E00D5F77}
[2011/04/13 05:45:51 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{196F6A90-F927-4011-88D4-A566F5A17731}
[2011/04/12 15:22:13 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{94466212-3706-4C9F-B339-F7A8E77DA1CB}
[2011/04/11 21:48:16 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{7DF2DAE9-56AD-46C9-A682-CCC39CEC8548}
[2011/04/11 09:25:54 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{A663E9CF-9BC0-46E6-8B87-CAB69D95D38D}
[2011/04/10 20:42:50 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{DB100956-C3CF-4FF4-8B33-C17B597BE251}
[2011/04/10 13:56:57 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Roaming\Red Alert 3
[2011/04/10 08:42:16 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{1B596119-B376-4EEA-B60A-4B16854E6CB1}
[2011/04/09 20:41:41 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{680A1EFC-3997-419E-A9E7-EF9C8EA8ECA9}
[2011/04/09 17:20:49 | 000,000,000 | ---D | C] -- C:\Users\Scotty\Documents\My Corel Shows
[2011/04/09 17:20:48 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\Corel
[2011/04/09 17:19:13 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Roaming\Ulead Systems
[2011/04/09 17:19:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2011/04/09 17:19:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple
[2011/04/09 17:19:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2011/04/09 17:19:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2011/04/09 17:18:48 | 000,000,000 | ---D | C] -- C:\Windows\RegisteredPackages
[2011/04/09 17:18:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media
[2011/04/09 17:18:38 | 000,000,000 | ---D | C] -- C:\ProgramData\InterVideo
[2011/04/09 17:18:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Corel
[2011/04/09 17:16:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Protexis
[2011/04/09 17:15:41 | 000,000,000 | ---D | C] -- C:\Users\Scotty\Documents\My PSP Files
[2011/04/09 17:15:41 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Roaming\Corel
[2011/04/09 17:14:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Corel
[2011/04/09 17:14:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel PaintShop Photo Pro X3
[2011/04/09 17:14:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Media Components
[2011/04/09 17:14:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Ulead Systems
[2011/04/09 17:14:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Ulead Systems
[2011/04/09 17:14:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Corel
[2011/04/09 08:41:19 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{7D3705F9-AAE3-4587-8864-BB3911E3FC52}
[2011/04/08 20:40:57 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{9B1B3F06-7E23-42CC-BE34-AEFCDE21CA4A}
[2011/04/08 08:40:22 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{B858417C-1E13-46AE-8F71-B066A7D2EE43}
[2011/04/07 20:39:48 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{77F5B5D0-C23B-417C-9C3A-63719C9235C9}
[2011/04/07 08:15:52 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{AE914CD6-7EF5-44E4-A0C9-4B92A1C5CFB7}
[2011/04/06 17:04:18 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{23773A5E-48CD-471B-A1AE-FC5AE51E3039}
[2011/04/03 10:59:57 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{08EFBFA0-3B8F-4A3A-A5B2-8A64B3521DED}
[2011/04/02 22:18:57 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{10EAC28E-F29C-40C7-8D08-F821D120A622}
[2011/04/02 11:11:01 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2011/04/02 11:07:34 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2011/04/02 11:07:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD APP
[2011/04/02 11:07:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
[2011/04/02 11:06:39 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2011/04/02 10:18:32 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{A4827972-6908-4242-8737-2033F48AAAB0}
[2011/04/01 17:03:16 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{F825D4C2-AD3A-4811-B94C-A26D97D357E5}
[2011/04/01 17:03:16 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{A78670BE-ABBC-4421-AB06-570908130A7D}
[2011/03/31 22:21:43 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{13C27D2A-04FE-43A8-93AA-E9221261DD90}
[2011/03/31 07:19:42 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{88D3810A-E73F-42F0-8D93-BF411B37844C}
[2011/03/30 19:19:19 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{CCC5513E-E004-415C-8D5E-D4C0753C50DF}
[2011/03/30 11:49:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Valve
[2011/03/30 09:59:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
[2011/03/30 09:59:13 | 000,000,000 | ---D | C] -- C:\ProgramData\HP
[2011/03/30 09:59:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HP
[2011/03/30 09:58:27 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2011/03/30 09:57:59 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\HP
[2011/03/30 06:58:54 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{828AC50B-2687-49B6-9B56-E0097B5753CF}
[2011/03/30 05:14:33 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2011/03/30 05:14:20 | 000,000,000 | -HSD | C] -- C:\Boot
[2011/03/29 20:15:32 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2011/03/29 20:15:21 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2011/03/29 18:58:08 | 000,021,992 | ---- | C] (CPUID) -- C:\Windows\SysNative\drivers\cpuz135_x64.sys
[2011/03/29 18:58:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
[2011/03/29 18:58:08 | 000,000,000 | ---D | C] -- C:\Program Files\CPUID
[2011/03/29 18:31:44 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\{B9E38DBC-B002-43FB-BB42-898C151068BB}
[2011/03/29 18:31:28 | 000,000,000 | ---D | C] -- C:\Users\Scotty\Tracing
[2011/03/29 18:30:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\uTorrent
[2011/03/29 18:29:55 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Roaming\uTorrent
[2011/03/29 18:27:15 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
[2011/03/29 18:26:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live
[2011/03/29 18:26:17 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2011/03/29 18:26:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2011/03/29 18:25:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2011/03/29 18:23:30 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\Windows Live
[2011/03/29 18:23:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Windows Live
[2011/03/29 18:04:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Blizzard Entertainment
[2011/03/29 17:58:58 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Roaming\skypePM
[2011/03/29 17:58:19 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Roaming\Skype
[2011/03/29 17:58:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2011/03/29 17:58:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2011/03/29 17:58:10 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2011/03/29 17:58:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2011/03/29 16:27:46 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SPReview
[2011/03/29 16:10:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Active@ ISO Burner
[2011/03/29 16:09:28 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\EventProviders
[2011/03/29 16:07:15 | 000,116,224 | ---- | C] (Windows ® Codename Longhorn DDK provider) -- C:\Windows\SysNative\fms.dll
[2011/03/29 16:07:09 | 000,093,696 | ---- | C] (Windows ® Codename Longhorn DDK provider) -- C:\Windows\SysWow64\fms.dll
[2011/03/29 16:01:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam
[2011/03/29 16:01:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
[2011/03/29 15:46:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Electronic Arts
[2011/03/29 15:46:16 | 000,000,000 | ---D | C] -- C:\ProgramData\EA Core
[2011/03/29 15:40:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe AIR
[2011/03/29 15:39:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2011/03/29 15:39:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2011/03/29 15:39:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2011/03/29 15:38:45 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\Adobe
[2011/03/29 15:37:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Renesas Electronics
[2011/03/29 15:37:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Renesas Electronics
[2011/03/29 15:37:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Downloaded Installations
[2011/03/29 15:35:26 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
[2011/03/29 15:33:50 | 000,000,000 | ---D | C] -- C:\Users\Scotty\Documents\BioWare
[2011/03/29 15:29:44 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Roaming\Mozilla
[2011/03/29 15:29:44 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\Mozilla
[2011/03/29 15:29:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2011/03/29 15:23:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies
[2011/03/29 15:23:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ATI Technologies
[2011/03/29 15:22:47 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2011/03/29 15:17:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2011/03/29 15:02:36 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2011/03/29 15:02:36 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2011/03/29 14:58:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dragon Age 2
[2011/03/29 14:55:52 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Roaming\AVG10
[2011/03/29 14:53:15 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2011/03/29 14:53:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2011
[2011/03/29 14:53:10 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\AVG
[2011/03/29 14:52:54 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG10
[2011/03/29 14:52:54 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\AVG
[2011/03/29 14:52:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVG
[2011/03/29 14:45:07 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2011/03/29 14:44:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2011/03/29 14:44:52 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011/03/29 14:42:53 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\AMD
[2011/03/29 14:42:46 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Roaming\ATI
[2011/03/29 14:42:46 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\ATI
[2011/03/29 14:09:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\logishrd
[2011/03/29 14:09:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2011/03/29 14:09:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2011/03/29 14:08:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2011/03/29 14:06:22 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Creative Installation Information
[2011/03/29 14:06:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Creative
[2011/03/29 14:06:21 | 002,873,820 | ---- | C] (Creative) -- C:\Windows\SysWow64\Sens_oal.dll
[2011/03/29 14:06:21 | 001,908,736 | ---- | C] (Creative) -- C:\Windows\SysNative\Sens_oal.dll
[2011/03/29 14:06:21 | 000,419,840 | ---- | C] (Creative Labs) -- C:\Windows\SysNative\wrap_oal.dll
[2011/03/29 14:06:21 | 000,413,696 | ---- | C] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll
[2011/03/29 14:06:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
[2011/03/29 14:06:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Creative Labs Shared
[2011/03/29 14:06:14 | 000,000,000 | ---D | C] -- C:\Program Files\Creative
[2011/03/29 14:06:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Creative
[2011/03/29 14:06:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2011/03/29 14:06:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Creative
[2011/03/29 14:03:49 | 000,000,000 | ---D | C] -- C:\ProgramData\AMD
[2011/03/29 14:03:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies
[2011/03/29 14:03:34 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2011/03/29 14:03:03 | 000,000,000 | ---D | C] -- C:\ATI
[2011/03/29 13:58:35 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Roaming\Macromedia
[2011/03/29 13:58:33 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Roaming\Adobe
[2011/03/29 13:58:27 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
[2011/03/29 13:50:51 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\Diagnostics
[2011/03/29 13:45:24 | 000,344,680 | ---- | C] (Realtek ) -- C:\Windows\SysNative\drivers\Rt64win7.sys
[2011/03/29 13:45:07 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2011/03/29 13:45:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2011/03/29 13:42:56 | 000,000,000 | R--D | C] -- C:\Users\Scotty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2011/03/29 13:42:56 | 000,000,000 | R--D | C] -- C:\Users\Scotty\Searches
[2011/03/29 13:42:56 | 000,000,000 | R--D | C] -- C:\Users\Scotty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2011/03/29 13:42:56 | 000,000,000 | -H-D | C] -- C:\Users\Scotty\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2011/03/29 13:42:50 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Roaming\Identities
[2011/03/29 13:42:49 | 000,000,000 | R--D | C] -- C:\Users\Scotty\Contacts
[2011/03/29 13:42:48 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\VirtualStore
[2011/03/29 13:42:46 | 000,000,000 | -HSD | C] -- C:\Users\Scotty\AppData\Local\Temporary Internet Files
[2011/03/29 13:42:46 | 000,000,000 | -HSD | C] -- C:\Users\Scotty\Templates
[2011/03/29 13:42:46 | 000,000,000 | -HSD | C] -- C:\Users\Scotty\Start Menu
[2011/03/29 13:42:46 | 000,000,000 | -HSD | C] -- C:\Users\Scotty\SendTo
[2011/03/29 13:42:46 | 000,000,000 | -HSD | C] -- C:\Users\Scotty\Recent
[2011/03/29 13:42:46 | 000,000,000 | -HSD | C] -- C:\Users\Scotty\PrintHood
[2011/03/29 13:42:46 | 000,000,000 | -HSD | C] -- C:\Users\Scotty\NetHood
[2011/03/29 13:42:46 | 000,000,000 | -HSD | C] -- C:\Users\Scotty\Documents\My Videos
[2011/03/29 13:42:46 | 000,000,000 | -HSD | C] -- C:\Users\Scotty\Documents\My Pictures
[2011/03/29 13:42:46 | 000,000,000 | -HSD | C] -- C:\Users\Scotty\Documents\My Music
[2011/03/29 13:42:46 | 000,000,000 | -HSD | C] -- C:\Users\Scotty\My Documents
[2011/03/29 13:42:46 | 000,000,000 | -HSD | C] -- C:\Users\Scotty\Local Settings
[2011/03/29 13:42:46 | 000,000,000 | -HSD | C] -- C:\Users\Scotty\AppData\Local\History
[2011/03/29 13:42:46 | 000,000,000 | -HSD | C] -- C:\Users\Scotty\Cookies
[2011/03/29 13:42:46 | 000,000,000 | -HSD | C] -- C:\Users\Scotty\Application Data
[2011/03/29 13:42:46 | 000,000,000 | -HSD | C] -- C:\Users\Scotty\AppData\Local\Application Data
[2011/03/29 13:42:45 | 000,000,000 | --SD | C] -- C:\Users\Scotty\AppData\Roaming\Microsoft
[2011/03/29 13:42:45 | 000,000,000 | R--D | C] -- C:\Users\Scotty\Videos
[2011/03/29 13:42:45 | 000,000,000 | R--D | C] -- C:\Users\Scotty\Saved Games
[2011/03/29 13:42:45 | 000,000,000 | R--D | C] -- C:\Users\Scotty\Pictures
[2011/03/29 13:42:45 | 000,000,000 | R--D | C] -- C:\Users\Scotty\Music
[2011/03/29 13:42:45 | 000,000,000 | R--D | C] -- C:\Users\Scotty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2011/03/29 13:42:45 | 000,000,000 | R--D | C] -- C:\Users\Scotty\Links
[2011/03/29 13:42:45 | 000,000,000 | R--D | C] -- C:\Users\Scotty\Favorites
[2011/03/29 13:42:45 | 000,000,000 | R--D | C] -- C:\Users\Scotty\Downloads
[2011/03/29 13:42:45 | 000,000,000 | R--D | C] -- C:\Users\Scotty\My Documents
[2011/03/29 13:42:45 | 000,000,000 | R--D | C] -- C:\Users\Scotty\Desktop
[2011/03/29 13:42:45 | 000,000,000 | R--D | C] -- C:\Users\Scotty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2011/03/29 13:42:45 | 000,000,000 | -H-D | C] -- C:\Users\Scotty\AppData
[2011/03/29 13:42:45 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\Temp
[2011/03/29 13:42:45 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Local\Microsoft
[2011/03/29 13:42:45 | 000,000,000 | ---D | C] -- C:\Users\Scotty\AppData\Roaming\Media Center Programs
[2011/03/29 13:42:41 | 000,000,000 | -HSD | C] -- C:\Recovery
[2011/03/29 13:42:39 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2011/03/21 19:56:10 | 000,053,760 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2011/03/21 19:56:06 | 000,051,712 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/04/20 17:39:08 | 000,726,316 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011/04/20 17:39:08 | 000,628,024 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011/04/20 17:39:08 | 000,110,208 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011/04/20 17:35:06 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Scotty\Desktop\OTL.com
[2011/04/20 16:54:43 | 000,013,440 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/04/20 16:54:43 | 000,013,440 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/04/20 16:47:37 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/04/20 16:47:35 | 3220,574,208 | -HS- | M] () -- C:\hiberfil.sys
[2011/04/20 09:04:58 | 112,847,303 | ---- | M] () -- C:\Windows\SysNative\drivers\AVG\incavi.avm
[2011/04/17 08:18:58 | 000,002,828 | -HS- | M] () -- C:\ProgramData\KGyGaAvL.sys
[2011/04/16 07:53:21 | 000,299,416 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011/04/15 11:37:28 | 000,001,887 | ---- | M] () -- C:\Users\Scotty\Application Data\Microsoft\Internet Explorer\Quick Launch\VDownloader.lnk
[2011/04/15 11:37:28 | 000,001,863 | ---- | M] () -- C:\Users\Public\Desktop\VDownloader.lnk
[2011/04/15 09:03:39 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2011/04/10 13:56:55 | 000,000,040 | ---- | M] () -- C:\ProgramData\ra3.ini
[2011/04/09 17:20:51 | 000,003,584 | ---- | M] () -- C:\Users\Scotty\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/04/09 17:20:46 | 000,000,088 | RHS- | M] () -- C:\ProgramData\862618FBDA.sys
[2011/04/02 10:35:55 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2011/03/30 05:14:21 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2011/03/29 20:17:31 | 000,042,045 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2011/03/29 20:17:31 | 000,042,045 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2011/03/29 18:30:25 | 000,000,967 | ---- | M] () -- C:\Users\Scotty\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2011/03/29 17:58:58 | 000,000,056 | -H-- | M] () -- C:\ProgramData\ezsidmv.dat
[2011/03/29 15:38:42 | 000,001,769 | ---- | M] () -- C:\Windows\Language_trs.ini
[2011/03/29 15:34:42 | 000,022,387 | ---- | M] () -- C:\Windows\Ascd_tmp.ini
[2011/03/29 14:53:10 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\drivers\AVG\incavi.avm
[2011/03/29 14:53:10 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\drivers\AVG\iavichjw.avm
[2011/03/29 14:14:50 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2011/03/29 14:06:21 | 000,419,840 | ---- | M] (Creative Labs) -- C:\Windows\SysNative\wrap_oal.dll
[2011/03/29 14:06:21 | 000,413,696 | ---- | M] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll
[2011/03/29 14:05:59 | 000,000,159 | RH-- | M] () -- C:\Windows\ctfile.rfc
[2011/03/29 13:43:18 | 000,001,437 | ---- | M] () -- C:\Users\Scotty\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/03/21 19:56:26 | 000,061,952 | ---- | M] () -- C:\Windows\SysNative\OVDecode64.dll
[2011/03/21 19:56:22 | 000,059,904 | ---- | M] () -- C:\Windows\SysWow64\OVDecode.dll
[2011/03/21 19:56:10 | 000,053,760 | ---- | M] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2011/03/21 19:56:06 | 000,051,712 | ---- | M] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/04/20 09:04:58 | 112,847,303 | ---- | C] () -- C:\Windows\SysNative\drivers\AVG\incavi.avm
[2011/04/15 11:37:28 | 000,001,887 | ---- | C] () -- C:\Users\Scotty\Application Data\Microsoft\Internet Explorer\Quick Launch\VDownloader.lnk
[2011/04/15 11:37:28 | 000,001,863 | ---- | C] () -- C:\Users\Public\Desktop\VDownloader.lnk
[2011/04/15 11:37:27 | 000,444,283 | ---- | C] () -- C:\Program Files (x86)\Common Files\WinPcapNmap.exe
[2011/04/15 09:03:39 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2011/04/10 13:56:55 | 000,000,040 | ---- | C] () -- C:\ProgramData\ra3.ini
[2011/04/09 17:20:51 | 000,003,584 | ---- | C] () -- C:\Users\Scotty\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/04/09 17:19:40 | 000,002,828 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys
[2011/04/09 17:19:40 | 000,000,088 | RHS- | C] () -- C:\ProgramData\862618FBDA.sys
[2011/04/02 10:35:55 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2011/03/30 05:14:21 | 000,383,786 | RHS- | C] () -- C:\bootmgr
[2011/03/30 05:14:21 | 000,008,192 | RHS- | C] () -- C:\BOOTSECT.BAK
[2011/03/29 20:17:26 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2011/03/29 20:17:24 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2011/03/29 20:15:21 | 3220,574,208 | -HS- | C] () -- C:\hiberfil.sys
[2011/03/29 18:30:25 | 000,000,967 | ---- | C] () -- C:\Users\Scotty\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2011/03/29 18:28:19 | 000,002,486 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
[2011/03/29 17:58:58 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2011/03/29 16:08:14 | 000,095,744 | ---- | C] () -- C:\Windows\SysNative\RDVGHelper.exe
[2011/03/29 16:07:50 | 000,347,904 | ---- | C] () -- C:\Windows\SysNative\systemsf.ebd
[2011/03/29 16:06:51 | 000,010,429 | ---- | C] () -- C:\Windows\SysNative\ScavengeSpace.xml
[2011/03/29 16:06:48 | 000,105,559 | ---- | C] () -- C:\Windows\SysWow64\RacRules.xml
[2011/03/29 16:06:48 | 000,105,559 | ---- | C] () -- C:\Windows\SysNative\RacRules.xml
[2011/03/29 16:06:44 | 000,146,389 | ---- | C] () -- C:\Windows\SysWow64\printmanagement.msc
[2011/03/29 16:06:44 | 000,001,041 | ---- | C] () -- C:\Windows\SysWow64\tcpbidi.xml
[2011/03/29 15:40:25 | 000,001,009 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat.com.lnk
[2011/03/29 15:39:49 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
[2011/03/29 15:34:32 | 000,022,387 | ---- | C] () -- C:\Windows\Ascd_tmp.ini
[2011/03/29 15:29:31 | 000,001,146 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2011/03/29 14:53:10 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\drivers\AVG\incavi.avm
[2011/03/29 14:53:10 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\drivers\AVG\iavichjw.avm
[2011/03/29 14:14:50 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2011/03/29 14:06:33 | 000,007,062 | ---- | C] () -- C:\Windows\SysWow64\audiopid.vxd
[2011/03/29 14:05:59 | 000,190,976 | ---- | C] () -- C:\Windows\SysNative\APOMgr64.DLL
[2011/03/29 14:05:59 | 000,148,480 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL
[2011/03/29 14:05:59 | 000,089,088 | ---- | C] () -- C:\Windows\SysNative\CmdRtr64.DLL
[2011/03/29 14:05:59 | 000,073,728 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL
[2011/03/29 14:05:59 | 000,000,159 | RH-- | C] () -- C:\Windows\ctfile.rfc
[2011/03/29 13:45:24 | 000,074,272 | ---- | C] () -- C:\Windows\SysNative\RtNicProp64.dll
[2011/03/29 13:44:56 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2011/03/29 13:43:18 | 000,001,437 | ---- | C] () -- C:\Users\Scotty\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/03/29 13:42:58 | 000,001,409 | ---- | C] () -- C:\Users\Scotty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[2011/03/29 13:42:57 | 000,001,443 | ---- | C] () -- C:\Users\Scotty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2011/03/29 13:42:45 | 000,000,290 | ---- | C] () -- C:\Users\Scotty\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2011/03/29 13:42:45 | 000,000,272 | ---- | C] () -- C:\Users\Scotty\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2011/03/21 19:56:26 | 000,061,952 | ---- | C] () -- C:\Windows\SysNative\OVDecode64.dll
[2011/03/21 19:56:22 | 000,059,904 | ---- | C] () -- C:\Windows\SysWow64\OVDecode.dll
[2011/01/13 04:03:18 | 000,003,155 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2010/01/27 03:09:02 | 000,053,299 | ---- | C] () -- C:\Windows\SysWow64\pthreadVC.dll
[2009/07/14 06:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 03:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009/07/14 03:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009/07/14 01:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/06/10 22:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2009/04/02 13:30:14 | 000,010,296 | ---- | C] () -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS
[2009/02/19 04:35:10 | 000,049,152 | R--- | C] () -- C:\Windows\DAOD.exe
[2008/11/13 06:07:24 | 000,002,177 | ---- | C] () -- C:\Windows\P17EP.ini

========== LOP Check ==========

[2011/03/29 14:55:52 | 000,000,000 | ---D | M] -- C:\Users\Scotty\AppData\Roaming\AVG10
[2011/04/10 14:12:20 | 000,000,000 | ---D | M] -- C:\Users\Scotty\AppData\Roaming\Red Alert 3
[2011/04/09 17:19:13 | 000,000,000 | ---D | M] -- C:\Users\Scotty\AppData\Roaming\Ulead Systems
[2011/04/20 02:51:43 | 000,000,000 | ---D | M] -- C:\Users\Scotty\AppData\Roaming\uTorrent
[2011/04/15 11:37:45 | 000,000,000 | ---D | M] -- C:\Users\Scotty\AppData\Roaming\VDownloader
[2009/07/14 06:08:49 | 000,018,966 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



< End of report >
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP