I currently have avast antivirus, and malwarebytes on my computer, both are fully updated and have scanned multiple times in the past week and have come up clean. However, whenever I click a Google link I get redirected to another search engine's results (I always back out, so haven't really looked at it too much). I've also been having .dll problems when playing a few video games that I think may be related to how this spyware/virus affects my computer, but not sure.
Below is my OTL scan.
Look forward to whatever help I can get.
Thanks!
OTL logfile created on: 10/29/2011 3:39:18 PM - Run 2
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Greg\My Documents\Downloads
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
3.00 Gb Total Physical Memory | 1.98 Gb Available Physical Memory | 66.15% Memory free
4.87 Gb Paging File | 3.95 Gb Available in Paging File | 81.03% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 186.30 Gb Total Space | 104.14 Gb Free Space | 55.90% Space Free | Partition Type: NTFS
Drive D: | 149.05 Gb Total Space | 102.12 Gb Free Space | 68.52% Space Free | Partition Type: NTFS
Computer Name: GREGSPC | User Name: Greg | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Documents and Settings\Greg\My Documents\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Steam\Steam.exe (Valve Corporation)
PRC - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation)
PRC - C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc.)
PRC - C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
PRC - C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
PRC - C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe (McAfee, Inc.)
PRC - C:\WINDOWS\system32\ZuneBusEnum.exe (Microsoft Corporation)
PRC - C:\Program Files\Zune\ZuneLauncher.exe (Microsoft Corporation)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe ()
PRC - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe ()
PRC - C:\WINDOWS\system32\nvraidservice.exe (NVIDIA Corporation)
PRC - C:\WINDOWS\system32\HPZipm12.exe (HP)
========== Modules (No Company Name) ==========
MOD - C:\Program Files\Alwil Software\Avast5\defs\11102901\algo.dll ()
MOD - C:\Program Files\Alwil Software\Avast5\defs\11102901\aswRep.dll ()
MOD - C:\Program Files\Alwil Software\Avast5\defs\11102900\algo.dll ()
MOD - C:\Program Files\Mozilla Firefox\mozjs.dll ()
MOD - C:\Program Files\Alwil Software\Avast5\defs\11102900\aswRep.dll ()
MOD - C:\Program Files\Steam\bin\libcef.dll ()
MOD - C:\Program Files\Steam\bin\avcodec-52.dll ()
MOD - C:\Program Files\Steam\bin\chromehtml.dll ()
MOD - C:\Program Files\Steam\bin\avformat-52.dll ()
MOD - C:\Program Files\Steam\bin\avutil-50.dll ()
MOD - C:\Program Files\Logitech Gaming Software\plugins\PnpGamePanelDevices-8.01.044\PnpGamePanelDevices.dll ()
MOD - C:\Program Files\Logitech Gaming Software\plugins\SimInput-8.01.063\SimInput.dll ()
MOD - C:\Program Files\Logitech Gaming Software\plugins\MainUI-8.01.172\MainUI.dll ()
MOD - C:\Program Files\Logitech Gaming Software\plugins\G19Device-8.01.142\G19Device.dll ()
MOD - C:\Program Files\Logitech Gaming Software\plugins\G13Device-8.01.150\G13Device.dll ()
MOD - C:\Program Files\Logitech Gaming Software\plugins\DevBusHid-8.01.072\DevBusHid.dll ()
MOD - C:\Program Files\Logitech Gaming Software\plugins\DevBusBulk-8.01.071\DevBusBulk.dll ()
MOD - C:\Program Files\Logitech Gaming Software\plugins\DevMgr-8.01.072\DevMgr.dll ()
MOD - C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll ()
MOD - C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll ()
MOD - C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll ()
MOD - C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
MOD - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
MOD - C:\Program Files\Alwil Software\Avast5\aswDld.dll ()
MOD - C:\WINDOWS\system32\quartz.dll ()
MOD - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe ()
MOD - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe ()
MOD - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\SpecialCase.dll ()
MOD - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nv_common.dll ()
MOD - C:\WINDOWS\system32\tsd32.dll ()
========== Win32 Services (SafeList) ==========
SRV - (AppMgmt) -- File not found
SRV - (nvUpdatusService) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation)
SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
SRV - (McComponentHostService) -- C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe (McAfee, Inc.)
SRV - (ZuneWlanCfgSvc) -- C:\WINDOWS\system32\ZuneWlanCfgSvc.exe (Microsoft Corporation)
SRV - (ZuneBusEnum) -- C:\WINDOWS\system32\ZuneBusEnum.exe (Microsoft Corporation)
SRV - (ZuneNetworkSvc) -- c:\Program Files\Zune\ZuneNss.exe (Microsoft Corporation)
SRV - (ForceWare Intelligent Application Manager (IAM)) ForceWare Intelligent Application Manager (IAM) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe ()
SRV - (nSvcIp) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe ()
SRV - (Pml Driver HPZ12) -- C:\WINDOWS\system32\HPZipm12.exe (HP)
========== Driver Services (SafeList) ==========
DRV - (LGBusEnum) -- C:\WINDOWS\system32\drivers\LGBusEnum.sys (Logitech Inc.)
DRV - (LGVirHid) -- C:\WINDOWS\system32\drivers\LGVirHid.sys (Logitech Inc.)
DRV - (NVHDA) -- C:\WINDOWS\system32\drivers\nvhda32.sys (NVIDIA Corporation)
DRV - (aswSP) -- C:\WINDOWS\System32\drivers\aswSP.sys (AVAST Software)
DRV - (aswTdi) -- C:\WINDOWS\System32\drivers\aswTdi.sys (AVAST Software)
DRV - (aswMon2) -- C:\WINDOWS\System32\drivers\aswmon2.sys (AVAST Software)
DRV - (aswRdr) -- C:\WINDOWS\System32\drivers\aswRdr.sys (AVAST Software)
DRV - (Aavmker4) -- C:\WINDOWS\System32\drivers\aavmker4.sys (AVAST Software)
DRV - (aswFsBlk) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys (AVAST Software)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
DRV - (nvnetbus) -- C:\WINDOWS\system32\drivers\nvnetbus.sys (NVIDIA Corporation)
DRV - (NVENETFD) -- C:\WINDOWS\system32\drivers\NVENETFD.sys (NVIDIA Corporation)
DRV - (nvgts) -- C:\WINDOWS\system32\DRIVERS\nvgts.sys (NVIDIA Corporation)
DRV - (nvrd32) -- C:\WINDOWS\system32\DRIVERS\nvrd32.sys (NVIDIA Corporation)
DRV - (WinUSB) -- C:\WINDOWS\system32\drivers\winusb.sys (Microsoft Corporation)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = DF 31 31 0F 07 24 69 44 B3 CE 8C F5 48 0D 30 E2 [binary data]
IE - HKCU\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuz2.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..extensions.enabledItems: {ba14329e-9550-4989-b3f2-9732e92d17cc}:2.5.8.6
FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20100408.6
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.1.94
FF - prefs.js..extensions.enabledItems: {6904342A-8307-11DF-A508-4AE2DFD72085}:2.1.1.94
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Greg\Local Settings\Application Data\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Greg\Local Settings\Application Data\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video [2011/06/13 22:07:31 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{6904342A-8307-11DF-A508-4AE2DFD72085}: C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa [2011/06/13 22:07:31 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/10/28 21:07:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/10/25 13:56:30 | 000,000,000 | ---D | M]
[2010/03/24 19:56:09 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Greg\Application Data\Mozilla\Extensions
[2011/10/29 15:28:45 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Greg\Application Data\Mozilla\Firefox\Profiles\m2daic4c.default\extensions
[2011/10/20 14:33:30 | 000,000,000 | ---D | M] (XUL Cache) -- C:\Documents and Settings\Greg\Application Data\Mozilla\Firefox\Profiles\m2daic4c.default\extensions\{9cfb3439-050e-4021-b101-14f6c4bc1ffd}
[2011/10/29 15:28:45 | 000,000,000 | ---D | M] (Vuze Remote Community Toolbar) -- C:\Documents and Settings\Greg\Application Data\Mozilla\Firefox\Profiles\m2daic4c.default\extensions\{ba14329e-9550-4989-b3f2-9732e92d17cc}
[2011/10/02 03:32:38 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Documents and Settings\Greg\Application Data\Mozilla\Firefox\Profiles\m2daic4c.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2011/10/29 15:28:45 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Greg\Application Data\Mozilla\Firefox\Profiles\m2daic4c.default\extensions\staged
[2011/10/02 03:35:00 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/10/28 21:07:54 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\distribution\extensions
() (No name found) -- C:\DOCUMENTS AND SETTINGS\GREG\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M2DAIC4C.DEFAULT\EXTENSIONS\[email protected]
[2011/10/28 21:07:54 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/02/06 16:05:42 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011/09/28 09:03:28 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2011/09/28 09:03:28 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml
========== Chrome ==========
CHR - default_search_provider: ()
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - Extension: No name found = C:\Documents and Settings\Greg\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dkejhbcdagodjdndmfnhaibnealjonei\1.0.53.2_0\
CHR - Extension: No name found = C:\Documents and Settings\Greg\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\fnjbmmemklcjgepojigaapkoodmkgbae\2.1.1.94_0\
CHR - Extension: No name found = C:\Documents and Settings\Greg\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.3.0.7550_0\
CHR - Extension: No name found = C:\Documents and Settings\Greg\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.1.94_0\
O1 HOSTS File: ([2006/02/28 05:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (DivX HiQ) - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuz2.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuz2.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Vuze Remote Toolbar) - {BA14329E-9550-4989-B3F2-9732E92D17CC} - C:\Program Files\Vuze_Remote\prxtbVuz2.dll (Conduit Ltd.)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [Launch LCore] C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc.)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NVRaidService] C:\WINDOWS\system32\nvraidservice.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe ()
O4 - HKLM..\Run: [Zune Launcher] c:\Program Files\Zune\ZuneLauncher.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Aim] C:\Program Files\AIM\aim.exe (AOL Inc.)
O4 - HKCU..\Run: [CRLEventnet] rundll32.exe "C:\Documents and Settings\Greg\Local Settings\Application Data\eapMouseaudio\CRLEventnet.dll",winPathTray d3dGL80 File not found
O4 - HKCU..\Run: [Steam] C:\Program Files\Steam\Steam.exe (Valve Corporation)
O4 - HKCU..\Run: [WindowsVerifierVerifier] rundll32.exe "C:\Documents and Settings\All Users\Application Data\WindowsVerifierVerifier.dll",DllRegisterServer File not found
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe (McAfee, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\nvappfilter.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\nvappfilter.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\nvappfilter.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\WINDOWS\system32\nvappfilter.dll (NVIDIA)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 24.205.224.36 24.205.192.61 68.116.46.115
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5F90AB3E-5C28-4DC9-89D3-E6DBBC57D254}: DhcpNameServer = 24.205.224.36 24.205.192.61 68.116.46.115
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/03/24 19:13:27 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{2ad99842-8b3f-11e0-8e11-001fc6703f93}\Shell\AutoRun\command - "" = F:\WDSetup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011/10/28 15:05:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\McAfee
[2011/10/28 15:05:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\McAfee Security Scan Plus
[2011/10/26 15:57:29 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2011/10/26 15:57:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Greg\Start Menu\Programs\HiJackThis
[2011/10/25 13:55:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2011/10/25 13:54:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2011/10/25 13:54:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\McAfee Security Scan
[2011/10/25 13:54:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\McAfee
[2011/10/25 13:53:59 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee Security Scan
[2011/10/22 15:41:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Vuze_Remote
[2011/10/22 15:41:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Apple
[2011/10/20 15:20:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Greg\Application Data\Malwarebytes
[2011/10/20 15:20:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/10/20 15:20:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2011/10/20 15:20:12 | 000,022,216 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011/10/20 15:20:12 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/10/19 19:42:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MpEngineStore
[2011/10/19 19:22:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie7updates
[2011/10/19 19:22:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2011/10/19 19:21:04 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie7
[2011/10/19 19:20:58 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
[2011/10/19 19:20:45 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
[2011/10/19 16:35:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Greg\Start Menu\Programs\Steam
[2011/10/19 16:31:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Steam
[2011/10/19 16:31:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Steam
[2011/10/19 16:31:45 | 000,000,000 | ---D | C] -- C:\Program Files\Steam
[2011/10/19 15:35:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Greg\Local Settings\Application Data\PCHealth
[2011/10/19 12:15:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Greg\Application Data\Fepyuc
[2011/10/19 12:15:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Greg\Application Data\Anha
[2011/10/18 19:46:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Greg\Local Settings\Application Data\Apple Computer
[2011/10/18 19:46:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Greg\Application Data\Apple Computer
[2011/10/18 19:45:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\iTunes
[2011/10/18 19:44:58 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011/10/18 19:44:54 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011/10/18 19:44:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple Computer
[2011/10/18 19:44:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2011/10/18 19:44:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Greg\Local Settings\Application Data\Apple
[2011/10/18 19:44:34 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2011/10/18 19:44:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Apple Computer
[2011/10/18 19:43:57 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2011/10/18 19:43:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2011/10/18 19:43:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple
[2011/10/14 18:57:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Antares Audio Technologies
[2011/10/14 18:57:44 | 000,000,000 | ---D | C] -- C:\Program Files\VstPlugins
[2011/10/14 18:57:44 | 000,000,000 | ---D | C] -- C:\Program Files\Steinberg
[2011/10/14 18:57:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Greg\Application Data\Antares
[2011/10/14 18:57:38 | 000,000,000 | ---D | C] -- C:\Program Files\Antares Audio Technologies
[2011/10/08 20:05:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Greg\Application Data\Download Manager
[2011/10/08 17:34:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Greg\Application Data\Syntrillium
[2011/10/08 17:34:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Cool Edit Pro 2.1
[2011/10/08 17:33:01 | 000,000,000 | ---D | C] -- C:\Program Files\coolpro2
[2011/10/08 17:29:44 | 000,000,000 | ---D | C] -- C:\Downloads
[2011/10/06 22:47:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\XSplit
[2011/10/06 22:47:46 | 000,000,000 | ---D | C] -- C:\Program Files\SplitMediaLabs
[2011/10/06 22:47:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SplitMediaLabs
[2011/10/06 22:47:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Greg\Application Data\SplitMediaLabs
[2011/10/06 22:45:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2011/10/06 22:45:13 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2011/10/06 22:45:04 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2011/10/06 22:28:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2011/10/06 22:13:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting
[2011/10/06 22:13:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2011/10/06 22:13:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us
[2011/10/06 22:13:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en
[2011/10/06 22:13:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2011/10/06 22:09:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2011/10/06 22:05:26 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2011/10/06 22:05:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\EHome
[2011/10/06 22:00:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2011/10/06 21:51:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Greg\UserData
[2011/10/01 01:34:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Greg\Application Data\NVIDIA
[2011/09/30 21:45:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Greg\Application Data\StepMania 5
[2011/09/30 21:45:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\StepMania 5
[2011/09/30 21:45:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Greg\Start Menu\Programs\StepMania
[2011/09/30 21:44:51 | 000,000,000 | ---D | C] -- C:\Program Files\StepMania
[2011/09/30 19:00:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Greg\Local Settings\Application Data\Logitech
[2011/09/30 18:59:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2011/09/30 18:59:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Logitech
[2011/09/30 18:58:57 | 000,000,000 | ---D | C] -- C:\Program Files\Logitech Gaming Software
[6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\Documents and Settings\Greg\*.tmp files -> C:\Documents and Settings\Greg\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2011/10/29 15:41:01 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/10/29 14:57:00 | 000,000,974 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-507921405-651377827-725345543-1004UA.job
[2011/10/29 09:57:52 | 000,002,277 | ---- | M] () -- C:\Documents and Settings\Greg\Desktop\Google Chrome.lnk
[2011/10/29 09:57:52 | 000,002,255 | ---- | M] () -- C:\Documents and Settings\Greg\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2011/10/29 07:57:00 | 000,000,922 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-507921405-651377827-725345543-1004Core.job
[2011/10/28 21:04:24 | 000,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/10/28 21:04:14 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/10/28 15:05:15 | 000,001,619 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\McAfee Security Scan Plus.lnk
[2011/10/28 15:05:15 | 000,001,611 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2011/10/26 15:57:39 | 000,002,445 | ---- | M] () -- C:\Documents and Settings\Greg\Desktop\HiJackThis.lnk
[2011/10/25 13:56:30 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader X.lnk
[2011/10/22 00:43:33 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011/10/21 23:20:13 | 000,280,276 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2011/10/21 23:20:13 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011/10/21 23:20:09 | 000,280,276 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011/10/21 16:24:18 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\Greg\Application Data\3339cf00
[2011/10/21 16:21:03 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\Greg\Application Data\d3e430ff
[2011/10/21 13:54:44 | 000,000,910 | ---- | M] () -- C:\Documents and Settings\Greg\Application Data\c441b8fa
[2011/10/20 15:20:16 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/10/20 15:06:36 | 000,001,606 | ---- | M] () -- C:\Documents and Settings\Greg\Application Data\Microsoft\Internet Explorer\Quick Launch\Heroes of Newerth.lnk
[2011/10/20 15:06:35 | 000,001,588 | ---- | M] () -- C:\Documents and Settings\Greg\Desktop\Heroes of Newerth.lnk
[2011/10/19 19:35:30 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\Greg\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/10/19 19:35:04 | 000,095,072 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/10/19 19:33:00 | 000,432,356 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/10/19 19:33:00 | 000,067,312 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/10/19 19:27:48 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011/10/19 17:47:06 | 000,000,364 | ---- | M] () -- C:\WINDOWS\System32\MRT.INI
[2011/10/19 16:31:48 | 000,000,664 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Steam.lnk
[2011/10/18 19:45:54 | 000,001,542 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2011/10/08 20:05:39 | 000,000,567 | ---- | M] () -- C:\Documents and Settings\Greg\My Documents\Resume download for Realtek_HDAudio_v51005506.zip.html
[2011/10/08 17:34:31 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Cool Edit Pro 2.1.lnk
[2011/10/06 22:36:56 | 000,000,804 | ---- | M] () -- C:\Documents and Settings\Greg\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2011/10/06 22:09:24 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2011/10/02 03:35:04 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\Greg\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/10/02 03:35:04 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2011/10/01 01:19:50 | 000,000,220 | -HS- | M] () -- C:\boot.ini
[6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\Documents and Settings\Greg\*.tmp files -> C:\Documents and Settings\Greg\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011/10/26 15:57:29 | 000,002,445 | ---- | C] () -- C:\Documents and Settings\Greg\Desktop\HiJackThis.lnk
[2011/10/25 13:56:30 | 000,001,804 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader X.lnk
[2011/10/25 13:56:30 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader X.lnk
[2011/10/25 13:53:59 | 000,001,619 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\McAfee Security Scan Plus.lnk
[2011/10/25 13:53:59 | 000,001,611 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2011/10/21 23:19:31 | 000,003,249 | ---- | C] () -- C:\WINDOWS\System32\nvinfo.pb
[2011/10/20 15:20:16 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/10/20 15:06:36 | 000,001,606 | ---- | C] () -- C:\Documents and Settings\Greg\Application Data\Microsoft\Internet Explorer\Quick Launch\Heroes of Newerth.lnk
[2011/10/20 15:06:35 | 000,001,588 | ---- | C] () -- C:\Documents and Settings\Greg\Desktop\Heroes of Newerth.lnk
[2011/10/19 17:47:06 | 000,000,364 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2011/10/19 16:31:48 | 000,000,664 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Steam.lnk
[2011/10/19 15:20:12 | 000,000,910 | ---- | C] () -- C:\Documents and Settings\Greg\Application Data\c441b8fa
[2011/10/19 15:01:09 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\Greg\Application Data\d3e430ff
[2011/10/19 02:11:22 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\Greg\Application Data\3339cf00
[2011/10/18 19:45:54 | 000,001,542 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2011/10/18 19:44:38 | 000,000,284 | ---- | C] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/10/18 19:44:35 | 000,001,830 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Apple Software Update.lnk
[2011/10/08 20:05:39 | 000,000,567 | ---- | C] () -- C:\Documents and Settings\Greg\My Documents\Resume download for Realtek_HDAudio_v51005506.zip.html
[2011/10/08 17:34:31 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Cool Edit Pro 2.1.lnk
[2011/10/02 03:32:07 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk
[2011/06/23 20:13:46 | 002,128,778 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2011/06/11 18:32:39 | 000,000,262 | ---- | C] () -- C:\WINDOWS\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
[2011/05/21 21:23:14 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/09/11 22:05:50 | 000,280,276 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2010/09/11 22:05:47 | 000,280,276 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2010/09/11 22:05:47 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2010/06/20 11:37:50 | 000,004,608 | ---- | C] () -- C:\Documents and Settings\Greg\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/06/17 16:19:34 | 000,105,619 | ---- | C] () -- C:\WINDOWS\hpoins07.dat
[2010/06/17 16:19:34 | 000,017,505 | ---- | C] () -- C:\WINDOWS\hpomdl07.dat
[2010/06/12 02:13:51 | 000,138,264 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010/06/12 02:13:51 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\Greg\Application Data\PnkBstrK.sys
[2010/06/12 02:10:04 | 000,234,768 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2010/06/12 02:09:48 | 002,434,856 | ---- | C] () -- C:\WINDOWS\System32\pbsvc_bc2.exe
[2010/06/12 02:09:48 | 000,075,136 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2010/03/24 20:48:53 | 000,003,276 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin
[2010/03/24 20:29:35 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2010/03/24 19:56:01 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010/03/24 19:14:48 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010/03/24 19:11:36 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010/03/24 10:59:41 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010/03/24 10:56:43 | 000,095,072 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2006/02/28 05:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2006/02/28 05:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2006/02/28 05:00:00 | 000,432,356 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2006/02/28 05:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2006/02/28 05:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2006/02/28 05:00:00 | 000,067,312 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2006/02/28 05:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2006/02/28 05:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2006/02/28 05:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2006/02/28 05:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2006/02/28 05:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2006/02/28 05:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
========== LOP Check ==========
[2011/02/20 18:25:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AIM
[2011/01/19 00:22:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2010/03/25 14:24:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Azureus
[2011/06/25 01:10:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PMB Files
[2011/10/06 22:47:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SplitMediaLabs
[2011/09/30 21:45:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\StepMania 5
[2011/10/18 19:45:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2011/02/20 18:26:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Greg\Application Data\acccore
[2011/10/20 05:40:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Greg\Application Data\Anha
[2011/10/14 19:04:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Greg\Application Data\Antares
[2010/03/26 04:19:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Greg\Application Data\Azureus
[2011/10/14 23:17:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Greg\Application Data\BitComet
[2011/06/13 22:09:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Greg\Application Data\DDMSettings
[2011/10/20 12:58:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Greg\Application Data\Fepyuc
[2011/06/11 17:53:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Greg\Application Data\LolClient
[2011/06/19 22:51:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Greg\Application Data\Mumble
[2011/10/06 22:47:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Greg\Application Data\SplitMediaLabs
[2011/09/30 21:45:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Greg\Application Data\StepMania 5
========== Purity Check ==========
< End of report >