Followed instructions and here are the posts:
========== PROCESSES ==========
Process btdna.exe killed successfully.
========== FILES ==========
File/Folder C:\Program Files\LimeWire not found.
C:\Program Files\DNA\plugins moved successfully.
C:\Program Files\DNA moved successfully.
File/Folder C:\Program Files\Vuze not found.
File/Folder C:\Program Files\BitTorrent not found.
C:\Documents and Settings\All Users\Application
Data\Azureus moved successfully.
c:\Documents and Settings\admin\Application
Data\Azureus\torrents moved successfully.
c:\Documents and Settings\admin\Application
Data\Azureus\tmp moved successfully.
c:\Documents and Settings\admin\Application
Data\Azureus\subs moved successfully.
c:\Documents and Settings\admin\Application
Data\Azureus\shares moved successfully.
c:\Documents and Settings\admin\Application
Data\Azureus\plugins moved successfully.
c:\Documents and Settings\admin\Application
Data\Azureus\net moved successfully.
c:\Documents and Settings\admin\Application
Data\Azureus\logs\save moved successfully.
c:\Documents and Settings\admin\Application
Data\Azureus\logs moved successfully.
c:\Documents and Settings\admin\Application
Data\Azureus\dht moved successfully.
c:\Documents and Settings\admin\Application
Data\Azureus\active moved successfully.
c:\Documents and Settings\admin\Application Data\Azureus
moved successfully.
c:\WINDOWS\lik02.exe moved successfully.
C:\WINDOWS\j414.exe moved successfully.
C:\WINDOWS\tj85.exe moved successfully.
C:\WINDOWS\cor704836.exe moved successfully.
C:\WINDOWS\eo4.exe moved successfully.
C:\WINDOWS\ee3362.exe moved successfully.
C:\WINDOWS\tjyvb346054.exe moved successfully.
C:\WINDOWS\system32\dqodorstdzcymxoo.exe moved
successfully.
C:\Documents and Settings\admin\Application Data\DNA moved
successfully.
========== REGISTRY ==========
Registry value
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersio
n\Run\\iesvcmon deleted successfully.
Registry value
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion
\Run\\BitTorrent DNA deleted successfully.
Registry value
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\shared
access\parameters\firewallpolicy\standardprofile\authorized
applications\list\\C:\Program Files\DNA\btdna.exe deleted
successfully.
Registry value
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\shared
access\parameters\firewallpolicy\standardprofile\authorized
applications\list\\C:\Program
Files\BitTorrent\bittorrent.exe deleted successfully.
Registry value
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\shared
access\parameters\firewallpolicy\standardprofile\authorized
applications\list\\C:\Program Files\LimeWire\LimeWire.exe
deleted successfully.
Registry value
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\shared
access\parameters\firewallpolicy\standardprofile\authorized
applications\list\\C:\Program Files\Vuze\Azureus.exe
deleted successfully.
OTMoveIt3 by OldTimer - Version 1.0.7.1 log created on
11182008_183514
RSIT
Logfile of random's system information tool 1.04 (written
by random/random)
Run by admin at 2008-11-18 18:37:35
Microsoft Windows XP Professional Service Pack 3
System drive C: has 40 GB (52%) free of 76 GB
Total RAM: 2014 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 6:37:45 PM, on 11/18/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\WINDOWS\System32\MAFWTray.exe
C:\Program Files\Brownie\BrstsWnd.exe
C:\Program Files\Google\Gmail Notifier\gnotify.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\Brownie\brpjp04a.exe
C:\Program Files\Common Files\Apple\Mobile Device
Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Common Files\Microsoft
Shared\VS7Debug\mdm.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\downloads\OTMoveIt3.exe
C:\WINDOWS\system32\notepad.exe
C:\downloads\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\admin.exe
R1 - HKLM\Software\Microsoft\Internet
Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet
Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search
Page =
http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start
Page =
http://go.microsoft.com/fwlink/?LinkId=69157R1 -
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet
Settings,ProxyOverride = *.local
O2 - BHO: AcroIEHelperStub -
{18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program
Files\Common
Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for
Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA}
- C:\Program
Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter -
{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program
Files\AVG\AVG8\avgssie.dll
O2 - BHO: SSVHelper Class -
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program
Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) -
{C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - (no file)
O3 - Toolbar: (no name) -
{71576546-354D-41c9-AAE8-31F2EC22BF0D} - (no file)
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog
Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [AVG8_TRAY]
C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program
Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program
Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program
Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program
Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [M-Audio Taskbar Icon]
C:\WINDOWS\System32\MAFWTray.exe
O4 - HKLM\..\Run: [MAFWTaskbarApp]
C:\WINDOWS\system32\MAFWTray.exe
O4 - HKLM\..\Run: [KernelFaultCheck]
%systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [BrStsWnd] C:\Program
Files\Brownie\BrstsWnd.exe Autorun
O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}]
C:\Program Files\Google\Gmail Notifier\gnotify.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common
Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [ctfmon.exe]
C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program
Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [RocketDock] "C:\Program
Files\RocketDock\RocketDock.exe"
O8 - Extra context menu item: E&xport to Microsoft Excel -
res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) -
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program
Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console -
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program
Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Research -
{92780B25-18CC-41C8-B9BE-3C9C571A8263} -
C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) -
{e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network
Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 -
{e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network
Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger -
{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program
Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger -
{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program
Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C}
(WUWebControl Class) -
http://www.update.microsoft.com/windows ... V5Controls/en/x86/client/wuweb_site.cab?1191188961546
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java
Runtime Environment 1.6.0) -
http://dl8-cdn-01.sun.com/s/ESD44/JSCDL ... install-6u7-windows-i586-jc.cab?e=1223737652490&h=0d9d6dff8297b924d0f
dcf49c27d6550/&filename=jinstall-6u7-windows-i586-jc.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000}
(Shockwave Flash Object) -
http://fpdownload2.macromedia.com/get/s ... abs/flash/swflash.cab
O18 - Protocol: linkscanner -
{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program
Files\AVG\AVG8\avgpp.dll
O18 - Protocol: wot -
{C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - (no file)
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: Apple Mobile Device - Apple Inc. -
C:\Program Files\Common Files\Apple\Mobile Device
Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. -
C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner -
C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG
Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program
Files\Bonjour\mDNSResponder.exe
O23 - Service: InstallDriver Table Manager (IDriverT) -
Macrovision Corporation - C:\Program Files\Common
Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program
Files\iPod\bin\iPodService.exe
--
End of file - 6623 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersi
on\Explorer\Browser Helper
Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common
Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
[2008-06-11 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersi
on\Explorer\Browser Helper
Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer
- C:\Program
Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2008-10-26
308832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersi
on\Explorer\Browser Helper
Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll
[2008-10-10 455960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersi
on\Explorer\Browser Helper
Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program
Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersi
on\Explorer\Browser Helper
Objects\{C920E44A-7F78-4E64-BDD7-A57026E7FEB7}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet
Explorer\Toolbar]
{71576546-354D-41c9-AAE8-31F2EC22BF0D}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersi
on\Run]
"SoundMAXPnP"=C:\Program Files\Analog
Devices\Core\smax4pnp.exe [2006-05-01 843776]
"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2008-10-10
1234712]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe
[2008-09-06 413696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe
[2008-10-01 289576]
"SunJavaUpdateSched"=C:\Program
Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader
9.0\Reader\Reader_sl.exe [2008-06-12 34672]
"M-Audio Taskbar Icon"=C:\WINDOWS\System32\MAFWTray.exe
[2008-03-03 252424]
"MAFWTaskbarApp"=C:\WINDOWS\system32\MAFWTray.exe
[2008-03-03 252424]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"BrStsWnd"=C:\Program Files\Brownie\BrstsWnd.exe
[2008-01-08 864256]
"{0228e555-4f9c-4e35-a3ec-b109a192b4c2}"=C:\Program
Files\Google\Gmail Notifier\gnotify.exe [2005-07-15 479232]
"TkBellExe"=C:\Program Files\Common
Files\Real\Update_OB\realsched.exe [2008-10-26 185872]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersio
n\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13
15360]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-13
1695232]
"RocketDock"=C:\Program Files\RocketDock\RocketDock.exe
[2007-09-02 495616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Windows]
"AppInit_DLLS"="avgrsstx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2007-07-27 118784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2008-09-05 241704]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersi
on\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} -
C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBo
ot\network\UploadMgr]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersi
on\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersio
n\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\share
daccess\parameters\firewallpolicy\standardprofile\authorize
dapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.
exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network
Diagnostic\xpnetdiag.exe"="%windir%\Network
Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Grisoft\AVG7\avginet.exe"="C:\Program
Files\Grisoft\AVG7\avginet.exe:*:Enabled:avginet.exe"
"C:\Program Files\Grisoft\AVG7\avgamsvr.exe"="C:\Program
Files\Grisoft\AVG7\avgamsvr.exe:*:Enabled:avgamsvr.exe"
"C:\Program Files\Grisoft\AVG7\avgcc.exe"="C:\Program
Files\Grisoft\AVG7\avgcc.exe:*:Enabled:avgcc.exe"
"C:\Program Files\AVG\AVG8\avgupd.exe"="C:\Program
Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program
Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program
Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program
Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\WINDOWS\PCHealth\HelpCtr\Binaries\helpctr.exe"="C:\WIND
OWS\PCHealth\HelpCtr\Binaries\helpctr.exe:*:Enabled:Remote
Assistance - Windows Messenger and Voice"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\share
daccess\parameters\firewallpolicy\domainprofile\authorizeda
pplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.
exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network
Diagnostic\xpnetdiag.exe"="%windir%\Network
Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
======List of files/folders created in the last 1
months======
2008-11-18 18:35:14 ----D---- C:\_OTMoveIt
2008-11-17 19:27:09 ----D---- C:\rsit
2008-11-17 18:15:56 ----D---- C:\Documents and
Settings\admin\Application Data\Malwarebytes
2008-11-17 18:15:47 ----D---- C:\Documents and Settings\All
Users\Application Data\Malwarebytes
2008-11-17 18:15:46 ----D---- C:\Program
Files\Malwarebytes' Anti-Malware
2008-11-14 16:45:42 ----A---- C:\Pro-53fx.dll
2008-11-14 16:45:41 ----A---- C:\Pro-53.dll
2008-11-13 17:06:55 ----D---- C:\Program Files\Pro-53
2008-11-12 23:18:39 ----HDC----
C:\WINDOWS\$NtUninstallKB957097$
2008-11-12 23:18:33 ----HDC----
C:\WINDOWS\$NtUninstallKB954459$
2008-11-12 23:18:24 ----HDC----
C:\WINDOWS\$NtUninstallKB955069$
2008-11-12 17:10:46 ----D---- C:\Program Files\Trend Micro
2008-11-11 20:36:59 ----D---- C:\ACID_Loops
2008-11-10 22:25:45 ----D---- C:\Program Files\SpeedTest
2008-11-10 22:25:41 ----HD---- C:\$AVG8.VAULT$
2008-11-10 21:05:20 ----D---- C:\Documents and
Settings\admin\Application Data\DivX
2008-11-07 17:15:11 ----D---- C:\WINDOWS\Sun
2008-11-02 13:25:21 ----D---- C:\Program Files\MSBuild
2008-11-02 13:25:11 ----D---- C:\WINDOWS\system32\XPSViewer
2008-11-02 13:24:57 ----D---- C:\Program Files\Reference
Assemblies
2008-11-02 13:24:08 ----N----
C:\WINDOWS\system32\spmsg2.dll
2008-11-02 13:20:19 ----D---- C:\Program Files\RegScrubXP
2008-11-01 21:22:31 ----D---- C:\WINDOWS\system32\custom
matrices
2008-11-01 21:22:24 ----D---- C:\WINDOWS\system32\QuickTime
2008-11-01 21:22:24 ----D---- C:\WINDOWS\system32\C2MP
2008-11-01 16:03:53 ----D---- C:\Documents and
Settings\admin\Application Data\Move Networks
2008-10-26 20:26:42 ----A---- C:\WINDOWS\cdplayer.ini
2008-10-26 20:25:36 ----D---- C:\Program Files\Common
Files\xing shared
2008-10-26 20:25:29 ----A----
C:\WINDOWS\system32\rmoc3260.dll
2008-10-26 20:25:22 ----A----
C:\WINDOWS\system32\pndx5032.dll
2008-10-26 20:25:22 ----A----
C:\WINDOWS\system32\pndx5016.dll
2008-10-26 20:25:21 ----D---- C:\Program Files\Real
2008-10-26 20:25:21 ----A---- C:\WINDOWS\system32\pncrt.dll
2008-10-26 20:25:17 ----D---- C:\Program Files\Common
Files\Real
2008-10-26 20:25:11 ----D---- C:\Documents and
Settings\admin\Application Data\Real
2008-10-24 06:19:13 ----HDC----
C:\WINDOWS\$NtUninstallKB958644$
2008-10-20 16:56:46 ----D---- C:\Program Files\Netflix
======List of files/folders modified in the last 1
months======
2008-11-18 18:37:45 ----D---- C:\WINDOWS\Temp
2008-11-18 18:35:17 ----D---- C:\WINDOWS\system32
2008-11-18 18:35:16 ----D---- C:\WINDOWS
2008-11-18 18:35:14 ----RD---- C:\Program Files
2008-11-18 18:34:13 ----D---- C:\WINDOWS\Prefetch
2008-11-18 18:33:00 ----D---- C:\downloads
2008-11-18 18:31:17 ----D---- C:\Program Files\Mozilla
Firefox
2008-11-17 21:05:35 ----D---- C:\WINDOWS\system32\CatRoot2
2008-11-17 19:22:20 ----A---- C:\WINDOWS\Brownie.ini
2008-11-17 19:21:48 ----D---- C:\WINDOWS\system32\drivers
2008-11-17 19:21:28 ----A---- C:\WINDOWS\SchedLgU.Txt
2008-11-13 23:40:09 ----D---- C:\Program Files\Vstplugins
2008-11-13 22:20:53 ----RSHDC----
C:\WINDOWS\system32\dllcache
2008-11-13 21:02:04 ----HD---- C:\WINDOWS\inf
2008-11-13 21:02:04 ----D---- C:\WINDOWS\Help
2008-11-13 19:52:45 ----SHD---- C:\WINDOWS\Installer
2008-11-13 16:59:52 ----D---- C:\Program Files\Sony
2008-11-13 16:47:43 ----D---- C:\Documents and
Settings\admin\Application Data\Sony
2008-11-13 16:46:23 ----D---- C:\Program Files\Sony Setup
2008-11-12 23:18:39 ----HD---- C:\WINDOWS\$hf_mig$
2008-11-12 23:18:36 ----A---- C:\WINDOWS\imsins.BAK
2008-11-10 22:29:46 ----D---- C:\Documents and
Settings\admin\Application Data\LimeWire
2008-11-04 16:47:44 ----HD---- C:\Program
Files\InstallShield Installation Information
2008-11-03 16:10:25 ----A---- C:\WINDOWS\system32\MRT.exe
2008-11-02 23:09:05 ----RSD---- C:\WINDOWS\assembly
2008-11-02 23:09:05 ----D---- C:\WINDOWS\Microsoft.NET
2008-11-02 22:50:45 ----A----
C:\WINDOWS\system32\PerfStringBackup.INI
2008-11-02 13:27:24 ----D---- C:\WINDOWS\WinSxS
2008-11-02 13:25:18 ----RSD---- C:\WINDOWS\Fonts
2008-11-02 13:25:16 ----D---- C:\WINDOWS\system32\en-US
2008-11-02 13:24:19 ----D---- C:\WINDOWS\system32\spool
2008-10-26 20:25:36 ----D---- C:\Program Files\Common Files
2008-10-26 20:25:21 ----A----
C:\WINDOWS\system32\msvcr71.dll
2008-10-26 20:25:21 ----A----
C:\WINDOWS\system32\msvcp71.dll
2008-10-26 14:14:06 ----SD---- C:\Documents and
Settings\admin\Application Data\Microsoft
======List of drivers (R=Running, S=Stopped, 0=Boot,
1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AvgLdx86;AVG Free AVI Loader Driver x86;
C:\WINDOWS\System32\Drivers\avgldx86.sys [2008-10-10 97928]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver
x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2008-10-10
26824]
R1 intelppm;Intel Processor Driver;
C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-13 36352]
R1 kbdhid;Keyboard HID Driver;
C:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-13 14592]
R2 Aspi32;Aspi32; C:\WINDOWS\system32\drivers\Aspi32.sys
[2003-05-28 17005]
R2 tifsfilter;Acronis True Image FS Filter;
C:\WINDOWS\system32\DRIVERS\tifsfilt.sys [2008-08-22 44384]
R3 ADIHdAudAddService;ADI UAA Function Driver for High
Definition Audio Service;
C:\WINDOWS\system32\drivers\ADIHdAud.sys [2006-05-22
230400]
R3 Arp1394;1394 ARP Client Protocol;
C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ati2mtag;ati2mtag;
C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [2007-07-27
2371584]
R3 bcm4sbxp;Broadcom 440x 10/100 Integrated Controller XP
Driver; C:\WINDOWS\System32\DRIVERS\bcm4sbxp.sys
[2006-11-21 45568]
R3 GEARAspiWDM;GEAR ASPI Filter Driver;
C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17
15464]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition
Audio; C:\WINDOWS\System32\DRIVERS\HDAudBus.sys [2008-04-13
144384]
R3 hidusb;Microsoft HID Class Driver;
C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 MAFW;%FW.SvcDesc%; C:\WINDOWS\system32\DRIVERS\mafw.sys
[2008-10-15 186368]
R3 mouhid;Mouse HID Driver;
C:\WINDOWS\System32\DRIVERS\mouhid.sys [2002-08-29 12160]
R3 NIC1394;1394 Net Driver;
C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 SenFiltService;SenFilt Service;
C:\WINDOWS\system32\drivers\Senfilt.sys [2006-03-17 392960]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller
Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbehci.sys
[2008-04-13 30208]
R3 usbhub;Microsoft USB Standard Hub Driver;
C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Microsoft USB Open Host Controller Miniport
Driver; C:\WINDOWS\System32\DRIVERS\usbohci.sys [2008-04-13
17152]
R3 usbprint;Microsoft USB PRINTER Class;
C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbccgp;Microsoft USB Generic Parent Driver;
C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 USBSTOR;USB Mass Storage Driver;
C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver
Framework Platform Driver;
C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver
Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys
[2006-09-28 82944]
S4 IntelIde;IntelIde;
C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot,
1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Apple Mobile Device;Apple Mobile Device; C:\Program
Files\Common Files\Apple\Mobile Device
Support\bin\AppleMobileDeviceService.exe [2008-10-01
116040]
R2 Ati HotKey Poller;Ati HotKey Poller;
C:\WINDOWS\System32\Ati2evxx.exe [2007-07-27 483328]
R2 avg8wd;AVG Free8 WatchDog;
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2008-10-10 231704]
R2 Bonjour Service;Bonjour Service; C:\Program
Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
R2 MDM;Machine Debug Manager; C:\Program Files\Common
Files\Microsoft Shared\VS7Debug\mdm.exe [2003-06-19 322120]
R3 iPod Service;iPod Service; C:\Program
Files\iPod\bin\iPodService.exe [2008-10-01 536872]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe
[2007-07-27 593920]
S3 aspnet_state;ASP.NET State Service;
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.
exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization
Service v2.0.50727_X86;
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
[2007-10-24 70144]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font
Cache 3.0.0.0;
C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFon
tCache.exe [2007-10-09 36864]
S3 IDriverT;InstallDriver Table Manager; C:\Program
Files\Common Files\InstallShield\Driver\1050\Intel
32\IDriverT.exe [2004-10-22 73728]
S3 idsvc;Windows CardSpace;
C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows
Communication Foundation\infocard.exe [2007-10-11 864256]
S3 MSSQL$SONY_MEDIAMGR;MSSQL$SONY_MEDIAMGR; C:\Program
Files\Sony\Shared Plug-Ins\Media
Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe [2002-12-17
7520337]
S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program
Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe
[2002-12-17 66112]
S3 ose;Office Source Engine; C:\Program Files\Common
Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28
89136]
S3 SQLAgent$SONY_MEDIAMGR;SQLAgent$SONY_MEDIAMGR;
C:\Program Files\Sony\Shared Plug-Ins\Media
Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE [2002-12-17
311872]
S3 WMPNetworkSvc;Windows Media Player Network Sharing
Service; C:\Program Files\Windows Media Player\WMPNetwk.exe
[2006-10-18 913408]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver
Framework; C:\WINDOWS\system32\svchost.exe [2008-04-13
14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service;
C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows
Communication Foundation\SMSvcHost.exe [2007-10-11 122880]
-----------------EOF-----------------