OTL log
OTL by OldTimer - Version 3.2.29.1
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
1014.37 Mb Total Physical Memory | 298.36 Mb Available Physical Memory | 29.41% Memory free
2.38 Gb Paging File | 1.69 Gb Available in Paging File | 70.87% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37.24 Gb Total Space | 21.98 Gb Free Space | 59.01% Space Free | Partition Type: NTFS
Drive D: | 12.44 Gb Total Space | 12.37 Gb Free Space | 99.47% Space Free | Partition Type: NTFS
Computer Name: OCOMPUTER | User Name: Oscar Macias | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ========== PRC - [2011/10/11 16:02:29 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Oscar Macias\Desktop\OTL.scr
PRC - [2008/04/13 17:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007/04/10 14:46:52 | 000,709,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\vVX1000.exe
PRC - [2006/09/05 17:02:50 | 000,026,112 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\realplay.exe
PRC - [2006/05/16 23:15:10 | 000,071,288 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe
PRC - [2006/04/06 12:57:54 | 000,380,928 | ---- | M] (Dell Inc.) -- C:\Program Files\Dell\QuickSet\NicConfigSvc.exe
========== Modules (No Company Name) ========== MOD - [2010/03/15 16:57:20 | 000,067,872 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2010/02/05 11:27:45 | 001,291,776 | ---- | M] () -- C:\WINDOWS\system32\quartz.dll
MOD - [2008/04/13 17:12:08 | 000,186,368 | ---- | M] () -- C:\WINDOWS\anomumus.dll
MOD - [2008/04/13 17:11:59 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2008/04/13 17:11:51 | 000,059,904 | ---- | M] () -- C:\WINDOWS\system32\devenum.dll
MOD - [2005/12/19 06:08:30 | 000,757,760 | ---- | M] () -- C:\WINDOWS\system32\bcm1xsup.dll
MOD - [2005/08/05 12:01:54 | 000,282,112 | ---- | M] () -- C:\WINDOWS\system32\sbe.dll
========== Win32 Services (SafeList) ========== SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - [2006/04/06 12:57:54 | 000,380,928 | ---- | M] (Dell Inc.) [Auto | Running] -- C:\Program Files\Dell\QuickSet\NicConfigSvc.exe -- (NICCONFIGSVC)
========== Driver Services (SafeList) ========== DRV - [2007/07/03 17:59:10 | 000,086,824 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdserd.sys -- (sscdserd) SAMSUNG Mobile Modem Diagnostic Serial Port (WDM)
DRV - [2007/07/03 17:58:20 | 000,106,792 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdm.sys -- (sscdmdm)
DRV - [2007/07/03 17:57:24 | 000,011,944 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV - [2007/07/03 17:54:24 | 000,080,552 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM)
DRV - [2007/04/10 14:46:53 | 001,966,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\VX1000.sys -- (VX1000)
DRV - [2006/09/05 17:02:52 | 000,008,552 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\asctrm.sys -- (ASCTRM)
DRV - [2006/03/24 14:34:30 | 001,156,648 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2005/11/02 10:24:34 | 000,424,320 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2005/10/14 06:40:18 | 000,307,968 | ---- | M] (REDC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2005/10/14 06:40:18 | 000,051,328 | ---- | M] (REDC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2005/10/14 06:40:18 | 000,028,544 | ---- | M] (REDC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2005/08/12 15:50:46 | 000,016,128 | ---- | M] (Dell Inc) [Kernel | System | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS -- (APPDRV)
DRV - [2005/08/05 07:32:16 | 000,045,312 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\bcm4sbxp.sys -- (bcm4sbxp)
DRV - [2005/07/21 18:02:12 | 001,035,008 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV)
DRV - [2005/07/21 18:01:08 | 000,201,600 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys -- (HSFHWAZL)
DRV - [2005/07/21 18:01:00 | 000,717,952 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2005/06/24 18:36:16 | 000,039,036 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgusbmodem.sys -- (USBModem)
DRV - [2005/05/26 11:01:36 | 000,038,144 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgusbdiag.sys -- (UsbDiag)
DRV - [2005/05/26 11:01:18 | 000,021,344 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgusbbus.sys -- (usbbus)
DRV - [2004/02/13 07:46:00 | 000,017,153 | ---- | M] (Dell Inc) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\omci.sys -- (omci)
========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.yahoo.comIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL =
http://news.yahoo.com [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages =
http://news.yahoo.com [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://www.yahoo.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.yahoo.comIE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL =
http://news.yahoo.com [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL =
http://www.google.co...ie=utf8&oe=utf8IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:6092
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{FD2A425D-D06F-4CDA-9CC3-B4A17A334A35}: C:\Documents and Settings\Oscar Macias\Local Settings\Application Data\{FD2A425D-D06F-4CDA-9CC3-B4A17A334A35} [2010/07/07 19:20:55 | 000,000,000 | ---D | M]
O1 HOSTS File: ([2004/08/10 03:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (DriveLetterAccess) - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll (Sonic Solutions)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll (Dell Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found.
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Adasud] C:\WINDOWS\anomumus.dll ()
O4 - HKLM..\Run: [AOLDialer] C:\Program Files\Common Files\AOL\ACS\AOLDial.exe File not found
O4 - HKLM..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe (McAfee, Inc.)
O4 - HKLM..\Run: [ofkoihoq] C:\Documents and Settings\Oscar Macias\Local Settings\Application Data\ftikgxoww\sahykjxtssd.exe File not found
O4 - HKLM..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe (Sonic Solutions)
O4 - HKLM..\Run: [VX1000] C:\WINDOWS\vVX1000.exe (Microsoft Corporation)
O4 - HKLM..\Run: [yrohombe] C:\Documents and Settings\NetworkService\Local Settings\Application Data\iljaayeif\ifakkrvshdw.exe ()
O4 - HKCU..\Run: [Fpiveduv] C:\WINDOWS\udlbvif.dll (Wondershare)
O4 - HKCU..\Run: [ofkoihoq] C:\Documents and Settings\Oscar Macias\Local Settings\Application Data\ftikgxoww\sahykjxtssd.exe File not found
O4 - HKCU..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe (Adobe Systems Incorporated)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\NPJPI150_06.dll (Sun Microsystems, Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {26FCCDF9-A7E1-452A-A73D-7BF7B4D0BA6C}
http://o.aolcdn.com/...ns.10.6.0.8.cab (AOL Pictures Uploader Class)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000}
http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 8.8.8.8 8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 93.188.162.221,93.188.166.201
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2CBDA2BF-01DB-434E-9FF1-1B683B89A08E}: DhcpNameServer = 8.8.8.8 8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2CBDA2BF-01DB-434E-9FF1-1B683B89A08E}: NameServer = 93.188.162.221,93.188.166.201
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\Userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O21 - SSODL: eitheror - {2016a466-91a2-43c6-97d8-2fd380f065ef} - No CLSID value found.
O22 - SharedTaskScheduler: {2016a466-91a2-43c6-97d8-2fd380f065ef} - eitheror - No CLSID value found.
O24 - Desktop WallPaper: C:\Documents and Settings\Oscar Macias\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Oscar Macias\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2005/08/16 02:43:04 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2007/04/22 06:38:14 | 000,000,090 | ---- | M] () - D:\AUTORUN.INF -- [ NTFS ]
O33 - MountPoints2\{361ac05d-0e0d-11da-9aa9-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{361ac05d-0e0d-11da-9aa9-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{361ac05d-0e0d-11da-9aa9-806d6172696f}\Shell\AutoRun\command - "" = E:\setup.exe
O33 - MountPoints2\{9f0c900d-f0a8-11e0-840b-0015c5ae8d61}\Shell - "" = AutoRun
O33 - MountPoints2\{9f0c900d-f0a8-11e0-840b-0015c5ae8d61}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9f0c900d-f0a8-11e0-840b-0015c5ae8d61}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: HidServ - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
CREATERESTOREPOINT
Error creating restore point.
========== Files/Folders - Created Within 30 Days ========== [2011/10/11 16:02:29 | 000,582,656 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Oscar Macias\Desktop\OTL.scr
[2011/10/11 02:12:26 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Oscar Macias\Recent
[2011/10/08 21:54:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Oscar Macias\My Documents\Downloads
[2011/10/08 17:16:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Oscar Macias\Local Settings\Application Data\Mozilla
[2011/10/08 17:15:12 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2011/10/08 14:45:54 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Research In Motion
[2010/07/07 18:57:38 | 000,062,976 | ---- | C] (Blog do Birungueta) -- C:\Documents and Settings\Oscar Macias\Application Data\164814d4.exe
[2006/09/30 22:09:38 | 036,656,704 | ---- | C] (Apple Computer, Inc.) -- C:\Program Files\iTunesSetup.exe
[9 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ========== [2011/10/11 16:02:29 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Oscar Macias\Desktop\OTL.scr
[2011/10/11 15:25:38 | 000,011,094 | ---- | M] () -- C:\WINDOWS\Abijaseveg.dat
[2011/10/10 22:37:03 | 000,011,006 | ---- | M] () -- C:\WINDOWS\iqusafuza.dll
[2011/10/10 19:25:47 | 000,010,927 | ---- | M] () -- C:\WINDOWS\ulezubohidozo.dll
[2011/10/10 01:22:43 | 000,011,072 | ---- | M] () -- C:\WINDOWS\odajizuqufuna.dll
[2011/10/09 23:21:00 | 000,011,156 | ---- | M] () -- C:\WINDOWS\awayicub.dll
[2011/10/09 22:25:52 | 000,011,072 | ---- | M] () -- C:\WINDOWS\alijafabipere.dll
[2011/10/09 22:22:47 | 000,011,075 | ---- | M] () -- C:\WINDOWS\iqohimuhabucuyaj.dll
[2011/10/09 22:21:15 | 000,011,074 | ---- | M] () -- C:\WINDOWS\ikuzifowasi.dll
[2011/10/09 21:26:54 | 000,011,157 | ---- | M] () -- C:\WINDOWS\usamocinexilah.dll
[2011/10/09 19:24:43 | 000,011,072 | ---- | M] () -- C:\WINDOWS\awaxivumeged.dll
[2011/10/09 19:23:03 | 000,011,156 | ---- | M] () -- C:\WINDOWS\anosocukexugu.dll
[2011/10/09 17:19:14 | 000,011,158 | ---- | M] () -- C:\WINDOWS\ajomufavele.dll
[2011/10/09 16:46:39 | 000,011,159 | ---- | M] () -- C:\WINDOWS\eyukiqaqoju.dll
[2011/10/09 16:39:04 | 000,011,157 | ---- | M] () -- C:\WINDOWS\ulusuhel.dll
[2011/10/09 16:34:01 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/10/09 16:33:54 | 000,000,294 | -H-- | M] () -- C:\WINDOWS\tasks\164814d4.job
[2011/10/09 15:05:30 | 000,062,976 | ---- | M] (Blog do Birungueta) -- C:\WINDOWS\System32\ernel32.dll
[2011/10/09 15:05:19 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/10/09 15:05:16 | 1063,714,816 | -HS- | M] () -- C:\hiberfil.sys
[2011/10/09 01:11:04 | 000,011,072 | ---- | M] () -- C:\WINDOWS\omupokid.dll
[2011/10/08 23:06:37 | 000,010,925 | ---- | M] () -- C:\WINDOWS\ekejaged.dll
[2011/10/08 21:04:35 | 000,011,158 | ---- | M] () -- C:\WINDOWS\efudapeqiko.dll
[2011/10/08 19:02:32 | 000,011,073 | ---- | M] () -- C:\WINDOWS\uxupozek.dll
[2011/10/08 17:00:28 | 000,011,071 | ---- | M] () -- C:\WINDOWS\epuxekocubuworu.dll
[2011/10/08 14:59:06 | 000,011,072 | ---- | M] () -- C:\WINDOWS\amihupotovunik.dll
[2011/10/08 12:56:36 | 000,011,072 | ---- | M] () -- C:\WINDOWS\apamisab.dll
[2011/10/08 10:55:37 | 000,011,156 | ---- | M] () -- C:\WINDOWS\eroxeqetalajoqi.dll
[2011/10/08 02:15:29 | 000,010,924 | ---- | M] () -- C:\WINDOWS\imunawif.dll
[2011/10/08 00:24:30 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Mzaqecekiriyij.bin
[2011/10/07 04:13:52 | 000,011,008 | ---- | M] () -- C:\WINDOWS\ivuyuwamoxobuzog.dll
[9 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ========== [2011/10/10 22:36:46 | 000,011,006 | ---- | C] () -- C:\WINDOWS\iqusafuza.dll
[2011/10/10 19:25:47 | 000,010,927 | ---- | C] () -- C:\WINDOWS\ulezubohidozo.dll
[2011/10/10 01:22:41 | 000,011,072 | ---- | C] () -- C:\WINDOWS\odajizuqufuna.dll
[2011/10/09 23:21:00 | 000,011,156 | ---- | C] () -- C:\WINDOWS\awayicub.dll
[2011/10/09 22:25:52 | 000,011,072 | ---- | C] () -- C:\WINDOWS\alijafabipere.dll
[2011/10/09 22:22:47 | 000,011,075 | ---- | C] () -- C:\WINDOWS\iqohimuhabucuyaj.dll
[2011/10/09 22:21:15 | 000,011,074 | ---- | C] () -- C:\WINDOWS\ikuzifowasi.dll
[2011/10/09 21:26:54 | 000,011,157 | ---- | C] () -- C:\WINDOWS\usamocinexilah.dll
[2011/10/09 19:24:43 | 000,011,072 | ---- | C] () -- C:\WINDOWS\awaxivumeged.dll
[2011/10/09 19:23:03 | 000,011,156 | ---- | C] () -- C:\WINDOWS\anosocukexugu.dll
[2011/10/09 17:19:14 | 000,011,158 | ---- | C] () -- C:\WINDOWS\ajomufavele.dll
[2011/10/09 16:46:39 | 000,011,159 | ---- | C] () -- C:\WINDOWS\eyukiqaqoju.dll
[2011/10/09 16:39:04 | 000,011,157 | ---- | C] () -- C:\WINDOWS\ulusuhel.dll
[2011/10/09 01:11:04 | 000,011,072 | ---- | C] () -- C:\WINDOWS\omupokid.dll
[2011/10/08 23:06:33 | 000,010,925 | ---- | C] () -- C:\WINDOWS\ekejaged.dll
[2011/10/08 21:04:34 | 000,011,158 | ---- | C] () -- C:\WINDOWS\efudapeqiko.dll
[2011/10/08 19:02:32 | 000,011,073 | ---- | C] () -- C:\WINDOWS\uxupozek.dll
[2011/10/08 17:00:28 | 000,011,071 | ---- | C] () -- C:\WINDOWS\epuxekocubuworu.dll
[2011/10/08 14:59:00 | 000,011,072 | ---- | C] () -- C:\WINDOWS\amihupotovunik.dll
[2011/10/08 12:56:32 | 000,011,072 | ---- | C] () -- C:\WINDOWS\apamisab.dll
[2011/10/08 10:55:36 | 000,011,156 | ---- | C] () -- C:\WINDOWS\eroxeqetalajoqi.dll
[2011/10/08 02:15:29 | 000,010,924 | ---- | C] () -- C:\WINDOWS\imunawif.dll
[2011/10/07 04:13:52 | 000,011,008 | ---- | C] () -- C:\WINDOWS\ivuyuwamoxobuzog.dll
[2010/09/06 18:00:06 | 000,002,839 | ---- | C] () -- C:\WINDOWS\iqirosuloromazi.dll
[2010/09/06 11:36:17 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ihigidelubemojok.dll
[2010/09/05 23:32:56 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ohuqadir.dll
[2010/09/05 21:31:34 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ehoyisuk.dll
[2010/09/03 14:18:33 | 000,006,464 | ---- | C] () -- C:\WINDOWS\eholazahixuso.dll
[2010/09/02 23:35:31 | 000,000,000 | ---- | C] () -- C:\WINDOWS\acegijaniler.dll
[2010/08/31 23:04:44 | 000,000,000 | ---- | C] () -- C:\WINDOWS\elasefac.dll
[2010/08/31 22:19:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\umuhifuc.dll
[2010/07/08 23:04:23 | 000,002,716 | ---- | C] () -- C:\WINDOWS\ehajohapuhidonok.dll
[2010/07/07 19:20:56 | 000,011,094 | ---- | C] () -- C:\WINDOWS\Abijaseveg.dat
[2010/07/07 19:20:56 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Mzaqecekiriyij.bin
[2010/07/07 19:06:51 | 000,173,056 | ---- | C] () -- C:\WINDOWS\Nzyqua.exe
[2010/05/20 02:50:24 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/03/23 23:22:59 | 000,000,531 | ---- | C] () -- C:\Documents and Settings\Oscar Macias\Local Settings\Application Data\print.ini
[2010/03/23 21:54:54 | 000,000,004 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2008/12/26 10:59:06 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2008/12/03 01:41:02 | 000,000,256 | ---- | C] () -- C:\WINDOWS\System32\pool.bin
[2008/09/26 17:15:19 | 000,015,498 | ---- | C] () -- C:\WINDOWS\VX1000.ini
[2008/07/01 06:27:59 | 000,222,552 | ---- | C] () -- C:\WINDOWS\RM.exe
[2008/06/06 23:57:56 | 000,000,022 | ---- | C] () -- C:\WINDOWS\Destiny3.INI
[2008/01/17 08:56:55 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\pt19f.dll
[2007/03/19 10:44:45 | 000,002,508 | ---- | C] () -- C:\Documents and Settings\Oscar Macias\Application Data\$_hpcst$.hpc
[2007/03/02 10:34:50 | 000,000,305 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\addr_file.html
[2006/12/03 23:29:45 | 000,000,595 | ---- | C] () -- C:\WINDOWS\eReg.dat
[2006/11/29 01:12:42 | 000,000,670 | ---- | C] () -- C:\WINDOWS\SportballChallenge.ini
[2006/11/17 00:57:16 | 000,001,755 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2006/10/27 00:34:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iplayer.INI
[2006/09/27 20:58:05 | 000,016,896 | ---- | C] () -- C:\Documents and Settings\Oscar Macias\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2006/09/22 10:50:52 | 000,000,049 | ---- | C] () -- C:\WINDOWS\cgminivw.ini
[2006/09/22 10:48:16 | 000,000,107 | ---- | C] () -- C:\WINDOWS\Tiny_Run.ini
[2006/09/22 09:59:47 | 000,003,766 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys
[2006/09/22 09:59:47 | 000,000,088 | RHS- | C] () -- C:\WINDOWS\System32\D15D531568.sys
[2006/09/12 19:08:34 | 000,000,454 | ---- | C] () -- C:\Documents and Settings\Oscar Macias\Application Data\wklnhst.dat
[2006/09/12 16:30:31 | 000,000,135 | ---- | C] () -- C:\Documents and Settings\Oscar Macias\Local Settings\Application Data\fusioncache.dat
[2006/09/05 17:25:09 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2006/09/05 17:17:26 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2006/09/05 17:08:00 | 000,149,504 | ---- | C] () -- C:\WINDOWS\UNWISE.EXE
[2006/09/05 17:06:17 | 000,712,704 | ---- | C] () -- C:\WINDOWS\System32\DellSystemRestore.dll
[2006/09/05 17:03:24 | 000,000,138 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2006/09/05 17:01:52 | 000,000,335 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2006/09/05 16:58:24 | 000,000,004 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\QSLLPSVCShare
[2006/09/05 16:29:27 | 000,049,152 | ---- | C] () -- C:\WINDOWS\setpwrcg.exe
[2006/09/05 16:29:19 | 000,016,480 | ---- | C] () -- C:\WINDOWS\System32\rixdicon.dll
[2006/09/05 16:29:07 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\preflib.dll
[2006/09/05 16:29:07 | 000,018,944 | ---- | C] () -- C:\WINDOWS\System32\WLTRYSVC.EXE
[2006/09/05 16:29:03 | 000,757,760 | ---- | C] () -- C:\WINDOWS\System32\bcm1xsup.dll
[2006/09/05 16:27:45 | 000,000,391 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2005/08/31 10:11:14 | 000,000,442 | ---- | C] () -- C:\WINDOWS\System32\dlcfplc.ini
[2005/08/16 02:48:31 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2005/08/16 02:38:45 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2005/08/16 02:37:24 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2005/08/16 02:33:38 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2005/08/16 02:27:59 | 000,356,160 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2005/08/16 02:18:42 | 000,186,368 | ---- | C] () -- C:\WINDOWS\anomumus.dll
[2005/08/16 02:18:35 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2005/08/16 02:18:33 | 000,463,768 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2005/08/16 02:18:33 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2005/08/16 02:18:33 | 000,080,730 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2005/08/16 02:18:33 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2005/08/16 02:18:32 | 000,004,627 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2005/08/16 02:18:30 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2005/08/16 02:18:28 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2005/08/16 02:18:23 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2005/08/16 02:18:23 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2005/08/16 02:18:15 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2005/08/16 02:18:08 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2005/08/05 12:01:54 | 000,239,104 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2005/04/09 08:04:54 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2003/01/07 13:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
========== LOP Check ========== [2007/11/20 19:38:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2011/10/08 14:52:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WildTangent
[2010/05/30 18:29:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2006/11/29 11:50:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Oscar Macias\Application Data\funkitron
[2006/09/12 17:16:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Oscar Macias\Application Data\Leadertech
[2010/03/23 22:32:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Oscar Macias\Application Data\MSNInstaller
[2008/12/03 01:40:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Oscar Macias\Application Data\Research In Motion
[2008/09/27 19:48:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Oscar Macias\Application Data\Smith Micro
[2008/07/01 08:19:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Oscar Macias\Application Data\Sprint Desktop Sync
[2006/09/12 19:10:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Oscar Macias\Application Data\Template
[2010/07/09 06:53:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Oscar Macias\Application Data\Tific
[2007/11/20 19:38:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Oscar Macias\Application Data\Viewpoint
[2011/10/09 16:33:54 | 000,000,294 | -H-- | M] () -- C:\WINDOWS\Tasks\164814d4.job
========== Purity Check ========== ========== Custom Scans ========== < %SYSTEMDRIVE%\*.exe >[2006/12/05 21:39:47 | 000,010,920 | ---- | M] () -- C:\aolconnfix.exe
< MD5 for: EXPLORER.EXE >[2008/04/13 17:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\explorer.exe
[2008/04/13 17:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2007/06/13 04:26:03 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=7712DF0CDDE3A5AC89843E61CD5B3658 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007/06/13 03:23:07 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=97BD6515465659FF8F3B7BE375B2EA87 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
[2004/08/10 03:00:00 | 001,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- C:\WINDOWS\$NtUninstallKB938828$\explorer.exe
< MD5 for: SVCHOST.EXE >[2008/04/13 17:12:36 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008/04/13 17:12:36 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\system32\svchost.exe
[2004/08/10 03:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- C:\i386\svchost.exe
[2004/08/10 03:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
< MD5 for: USERINIT.EXE >[2004/08/10 03:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\i386\userinit.exe
[2004/08/10 03:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
[2008/04/13 17:12:38 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008/04/13 17:12:38 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\system32\userinit.exe
< MD5 for: WINLOGON.EXE >[2004/08/10 03:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=01C3346C241652F43AED8E2149881BFE -- C:\i386\winlogon.exe
[2004/08/10 03:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=01C3346C241652F43AED8E2149881BFE -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008/04/13 17:12:39 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008/04/13 17:12:39 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\system32\winlogon.exe
< %systemroot%\*. /mp /s > < hklm\software\clients\startmenuinternet|command /rs >HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\system32\ie4uinit.exe" -reinstall [2010/05/04 05:39:27 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -hide [2010/05/04 05:39:27 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -show [2010/05/04 05:39:27 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2010/04/16 04:43:25 | 000,634,656 | ---- | M] (Microsoft Corporation)
< hklm\software\clients\startmenuinternet|command /64 /rs >HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\system32\ie4uinit.exe" -reinstall [2010/05/04 05:39:27 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -hide [2010/05/04 05:39:27 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -show [2010/05/04 05:39:27 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2010/04/16 04:43:25 | 000,634,656 | ---- | M] (Microsoft Corporation)
< End of report >