Logfile of random's system information tool 1.06 (written by random/random)
Run by Shane at 2009-08-09 12:51:28
Microsoft® Windows Vista™ Ultimate
System drive C: has 13 GB (18%) free of 71 GB
Total RAM: 2046 MB (44% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:51:53 PM, on 09/08/2009
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v8.00 (8.00.6001.18813)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Symantec AntiVirus\VPTray.exe
C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Brother\ControlCenter3\brccMCtl.exe
C:\Program Files\Brother\Brmfcmon\BrMfcmon.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\PROGRA~1\Java\jre6\bin\jp2launcher.exe
C:\Program Files\Java\jre6\bin\java.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Windows\System32\mobsync.exe
c:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Symantec AntiVirus\DWHWIZRD.EXE
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Symantec AntiVirus\SavUI.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\explorer.exe
C:\Users\Shane\Downloads\RSIT(2).exe
C:\Program Files\Trend Micro\HijackThis\Shane.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://sympatico.msn.ca/?lang=en-CAR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) =
http://g.msn.ca/0SEENCA/SAOS01?FORM=TOOLBRR1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - c:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [VirtualCloneDrive] "c:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [PaperPort PTD] "C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe"
O4 - HKLM\..\Run: [IndexSearch] "C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe"
O4 - HKLM\..\Run: [PPort11reminder] "C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
O4 - HKLM\..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] "c:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: &Download All with FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: &Download with FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Append Link Target to Existing PDF -
res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF -
res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF -
res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF -
res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xport to Microsoft Excel -
res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O13 - Gopher Prefix:
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - Winlogon Notify: !SASWinLogon - D:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
--
End of file - 11043 bytes
======Scheduled tasks folder======
C:\Windows\tasks\User_Feed_Synchronization-{0AE9F92C-1697-487E-B151-819B63184BED}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2F364306-AA45-47B5-9F9D-39A8B94E7EF7}]
FGCatchUrl - C:\Program Files\FlashGet\jccatch.dll [2007-08-06 94308]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30 403824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-07-07 256112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2009-02-27 349576]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - c:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2009-07-07 761840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - c:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2009-07-07 458736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-08-06 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F156768E-81EF-470C-9057-481BA8380DBA}]
FlashGet GetFlash Class - C:\Program Files\FlashGet\getflash.dll [2007-05-18 163840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2009-02-27 349576]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - c:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-07-07 256112]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2009-02-27 349576]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-08-06 149280]
"ccApp"=C:\Program Files\Common Files\Symantec Shared\ccApp.exe [2006-11-22 107112]
"vptray"=C:\PROGRA~1\SYMANT~1\VPTray.exe [2006-11-28 134808]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-02-25 61440]
"VirtualCloneDrive"=c:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2009-05-26 85160]
"Adobe Acrobat Speed Launcher"=C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [2009-02-27 38768]
""= []
"Acrobat Assistant 8.0"=C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2009-02-27 640376]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-05-26 413696]
"SSBkgdUpdate"=C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-10-25 210472]
"PaperPort PTD"=C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe [2007-10-11 29984]
"IndexSearch"=C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe [2007-10-11 46368]
"PPort11reminder"=C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe [2007-08-31 328992]
"BrMfcWnd"=C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [2007-11-05 741376]
"ControlCenter3"=C:\Program Files\Brother\ControlCenter3\brctrcen.exe [2007-10-30 77824]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]
"swg"=c:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-07-07 39408]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2006-11-02 125440]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTHelper]
C:\Windows\system32\CTHELPER.EXE [2007-03-05 19456]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTxfiHlp]
C:\Windows\system32\CTXFIHLP.EXE [2007-03-05 19968]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray.exe]
C:\Windows\ehome\ehTray.exe [2006-11-02 125440]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RegistryMechanic]
c:\Program Files\Registry Mechanic\RMTray.exe [2008-07-03 812952]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\windows sidebar\sidebar.exe [2008-01-09 1232896]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-02-25 61440]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files\Steam\Steam.exe [2009-07-07 1217784]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2007-11-30 185632]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
c:\Program Files\uTorrent\uTorrent.exe [2009-07-11 288048]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
c:\Program Files\Windows Defender\MSASCui.exe [2007-04-11 1006264]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WindowsWelcomeCenter]
oobefldr.dll,ShowWelcomeCenter []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
C:\Program Files\Windows Media Player\WMPNSCFG.exe [2006-11-02 201728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office.lnk]
C:\PROGRA~1\MICROS~2\Office10\OSA.EXE [2001-02-13 83360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Shane^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 Screen Clipper and Launcher.lnk]
C:\PROGRA~1\MICROS~2\Office12\ONENOTEM.EXE [2008-10-25 98696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Shane^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Xfire.lnk]
C:\PROGRA~1\Xfire\Xfire.exe [2006-06-07 4154504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
D:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2008-12-22 356352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll [2007-10-18 233888]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=D:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLUA"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\K]
shell\AutoRun\command - K:\LSTsetup.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{65123fa8-ed4d-11db-a042-001a4d6287c8}]
shell\AutoRun\command - H:\Autoplay.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{65123fdb-ed4d-11db-a042-001a4d6287c8}]
shell\AutoRun\command - I:\Autoplay.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a3403a0f-16e4-11dc-b919-001a4d6287c8}]
shell\AutoRun\command - J:\LaunchU3.exe -a
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 3 months======
2009-08-09 12:51:28 ----D---- C:\rsit
2009-08-08 13:22:08 ----A---- C:\Windows\BRWMARK.INI
2009-08-08 13:17:16 ----A---- C:\Windows\system32\BrWia07b.dll
2009-08-08 13:17:16 ----A---- C:\Windows\system32\BrUsi07b.dll
2009-08-08 13:17:15 ----N---- C:\Windows\system32\brinsstr.dll
2009-08-08 13:17:15 ----A---- C:\Windows\system32\BRRBTOOL.EXE
2009-08-08 13:17:15 ----A---- C:\Windows\system32\BRLMW03A.INI
2009-08-08 13:17:15 ----A---- C:\Windows\system32\BRLMW03A.DLL
2009-08-08 13:17:15 ----A---- C:\Windows\system32\BRLM03A.DLL
2009-08-08 13:16:40 ----N---- C:\Windows\system32\BrDctF2S.dll
2009-08-08 13:16:40 ----N---- C:\Windows\system32\BrDctF2L.dll
2009-08-08 13:16:40 ----N---- C:\Windows\system32\BrDctF2.dll
2009-08-08 13:16:36 ----N---- C:\Windows\system32\BroSNMP.dll
2009-08-08 13:16:31 ----N---- C:\Windows\system32\NSSearch.dll
2009-08-08 13:16:31 ----N---- C:\Windows\system32\BrWiaNCp.dll
2009-08-08 13:16:31 ----N---- C:\Windows\system32\BrSti07b.dll
2009-08-08 13:16:31 ----N---- C:\Windows\system32\Brnsplg.dll
2009-08-08 13:16:31 ----N---- C:\Windows\system32\BrNetSti.dll
2009-08-08 13:16:31 ----N---- C:\Windows\system32\BrMuSNMP.dll
2009-08-08 13:16:29 ----D---- C:\Brother
2009-08-08 13:16:28 ----A---- C:\Windows\brunin03.dll
2009-08-08 13:16:16 ----D---- c:\Program Files\Brother
2009-08-08 13:15:49 ----D---- C:\Users\Shane\AppData\Roaming\InstallShield
2009-08-08 13:15:23 ----D---- c:\Program Files\Nuance
2009-08-08 13:14:46 ----A---- C:\Windows\maxlink.ini
2009-08-08 13:13:37 ----D---- C:\Program Files\Common Files\ScanSoft Shared
2009-08-08 13:13:22 ----D---- C:\ProgramData\ScanSoft
2009-08-08 13:13:22 ----D---- c:\Program Files\ScanSoft
2009-08-08 13:13:18 ----SHD---- C:\Config.Msi
2009-08-08 13:11:27 ----D---- C:\ProgramData\Brother
2009-08-07 12:20:19 ----A---- C:\Windows\system32\d3dx10_37.dll
2009-08-07 12:20:19 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2009-08-07 12:20:18 ----A---- C:\Windows\system32\D3DX9_37.dll
2009-08-07 12:20:14 ----D---- C:\Windows\system32\xlive
2009-08-07 12:20:06 ----D---- c:\Program Files\Microsoft Games for Windows - LIVE
2009-08-06 21:21:26 ----D---- C:\Users\Shane\AppData\Roaming\Inspiration Software
2009-08-06 20:55:25 ----A---- C:\Windows\unvise32.exe
2009-08-06 20:50:38 ----D---- c:\Program Files\Inspiration 8 IE
2009-08-06 10:39:43 ----A---- C:\Windows\system32\deploytk.dll
2009-08-04 19:38:34 ----D---- C:\Avenger
2009-08-04 19:00:52 ----D---- C:\Users\Shane\AppData\Roaming\Malwarebytes
2009-08-04 18:59:12 ----D---- c:\Program Files\zztoy
2009-08-04 16:18:38 ----RA---- C:\Windows\system32\AdobePDFUI.dll
2009-08-04 16:18:38 ----RA---- C:\Windows\system32\AdobePDF.dll
2009-07-30 17:30:00 ----D---- C:\Program Files\Common Files\ResearchSoft
2009-07-30 17:25:28 ----D---- c:\Program Files\EndNote X3
2009-07-29 05:39:35 ----A---- C:\Windows\system32\mshtml.dll
2009-07-29 05:39:35 ----A---- C:\Windows\system32\ieframe.dll
2009-07-29 05:39:34 ----A---- C:\Windows\system32\wininet.dll
2009-07-29 05:39:34 ----A---- C:\Windows\system32\urlmon.dll
2009-07-29 05:39:34 ----A---- C:\Windows\system32\occache.dll
2009-07-29 05:39:34 ----A---- C:\Windows\system32\msfeeds.dll
2009-07-29 05:39:34 ----A---- C:\Windows\system32\ieui.dll
2009-07-29 05:39:34 ----A---- C:\Windows\system32\iertutil.dll
2009-07-29 05:39:34 ----A---- C:\Windows\system32\iedkcs32.dll
2009-07-29 05:39:33 ----A---- C:\Windows\system32\msfeedssync.exe
2009-07-29 05:39:33 ----A---- C:\Windows\system32\msfeedsbs.dll
2009-07-29 05:39:33 ----A---- C:\Windows\system32\jsproxy.dll
2009-07-29 05:39:33 ----A---- C:\Windows\system32\ieUnatt.exe
2009-07-29 05:39:33 ----A---- C:\Windows\system32\iesysprep.dll
2009-07-29 05:39:33 ----A---- C:\Windows\system32\iesetup.dll
2009-07-29 05:39:33 ----A---- C:\Windows\system32\iernonce.dll
2009-07-29 05:39:33 ----A---- C:\Windows\system32\iepeers.dll
2009-07-29 05:39:33 ----A---- C:\Windows\system32\ie4uinit.exe
2009-07-28 00:54:01 ----D---- c:\Program Files\Trend Micro
2009-07-27 14:01:44 ----D---- C:\Users\Shane\AppData\Roaming\Download Manager
2009-07-26 16:34:59 ----D---- C:\Users\Shane\AppData\Roaming\FlashGet
2009-07-26 16:34:53 ----D---- c:\Program Files\FlashGet
2009-07-21 19:55:31 ----D---- C:\Users\Shane\AppData\Roaming\HouseCall 6.6
2009-07-21 19:55:17 ----D---- C:\Windows\Sun
2009-07-21 18:23:59 ----D---- c:\Program Files\GIGABYTE
2009-07-19 19:00:38 ----D---- C:\Program Files\Common Files\DivX Shared
2009-07-19 18:55:05 ----D---- C:\Users\Shane\AppData\Roaming\vlc
2009-07-17 21:20:31 ----D---- C:\Users\Shane\AppData\Roaming\SlySoft
2009-07-17 21:17:53 ----ASH---- C:\Windows\S1AB52DD3.tmp
2009-07-17 21:17:41 ----D---- c:\Program Files\SlySoft
2009-07-17 20:44:10 ----D---- c:\Program Files\WOT Spy
2009-07-17 19:29:17 ----D---- C:\ProgramData\ATI
2009-07-17 19:14:46 ----A---- C:\Windows\system32\unrar.dll
2009-07-17 19:14:45 ----A---- C:\Windows\avisplitter.ini
2009-07-17 19:14:44 ----A---- C:\Windows\system32\yv12vfw.dll
2009-07-17 19:14:44 ----A---- C:\Windows\system32\xvidvfw.dll
2009-07-17 19:14:44 ----A---- C:\Windows\system32\xvidcore.dll
2009-07-17 19:14:44 ----A---- C:\Windows\system32\vp7vfw.dll
2009-07-17 19:14:44 ----A---- C:\Windows\system32\vp6vfw.dll
2009-07-17 19:14:44 ----A---- C:\Windows\system32\qt-dx331.dll
2009-07-17 19:14:44 ----A---- C:\Windows\system32\huffyuv.dll
2009-07-17 19:14:43 ----A---- C:\Windows\system32\dpl100.dll
2009-07-17 19:14:42 ----A---- C:\Windows\system32\ff_vfw.dll.manifest
2009-07-17 19:14:42 ----A---- C:\Windows\system32\ff_vfw.dll
2009-07-17 19:14:41 ----D---- c:\Program Files\K-Lite Codec Pack
2009-07-16 17:03:40 ----D---- C:\Users\Shane\AppData\Roaming\EndNote
2009-07-16 17:01:06 ----D---- C:\Program Files\Common Files\Risxtd
2009-07-16 16:56:44 ----D---- C:\ProgramData\Thomson.ResearchSoft.Installers
2009-07-15 13:29:57 ----D---- C:\ProgramData\Malwarebytes
2009-07-15 13:29:57 ----D---- c:\Program Files\Malwarebytes' Anti-Malware
2009-07-15 13:26:01 ----D---- C:\Users\Shane\AppData\Roaming\SUPERAntiSpyware.com
2009-07-14 22:09:07 ----SHD---- C:\Windows\system32\%APPDATA%
2009-07-14 20:22:34 ----A---- C:\Windows\system32\t2embed.dll
2009-07-14 20:22:34 ----A---- C:\Windows\system32\fontsub.dll
2009-07-14 20:22:33 ----A---- C:\Windows\system32\lpk.dll
2009-07-14 20:22:33 ----A---- C:\Windows\system32\dciman32.dll
2009-07-14 20:22:33 ----A---- C:\Windows\system32\atmlib.dll
2009-07-14 20:22:33 ----A---- C:\Windows\system32\atmfd.dll
2009-07-14 18:58:16 ----A---- C:\Windows\system32\winresume.exe
2009-07-14 18:58:15 ----A---- C:\Windows\system32\winload.exe
2009-07-14 17:17:04 ----A---- C:\Windows\system32\xlivefnt.dll
2009-07-14 17:17:04 ----A---- C:\Windows\system32\xlive.dll
2009-07-14 17:15:00 ----A---- C:\Windows\system32\xlive.dll.cat
2009-07-14 16:12:53 ----A---- C:\Windows\system32\msls31.dll
2009-07-14 16:12:53 ----A---- C:\Windows\system32\mshtmler.dll
2009-07-14 16:12:53 ----A---- C:\Windows\system32\mshtmled.dll
2009-07-14 16:12:53 ----A---- C:\Windows\system32\icardie.dll
2009-07-14 16:12:53 ----A---- C:\Windows\system32\corpol.dll
2009-07-14 16:12:53 ----A---- C:\Windows\system32\admparse.dll
2009-07-14 16:12:52 ----A---- C:\Windows\system32\webcheck.dll
2009-07-14 16:12:52 ----A---- C:\Windows\system32\msrating.dll
2009-07-14 16:12:52 ----A---- C:\Windows\system32\licmgr10.dll
2009-07-14 16:12:52 ----A---- C:\Windows\system32\inseng.dll
2009-07-14 16:12:52 ----A---- C:\Windows\system32\imgutil.dll
2009-07-14 16:12:52 ----A---- C:\Windows\system32\ieaksie.dll
2009-07-14 16:12:52 ----A---- C:\Windows\system32\ieakeng.dll
2009-07-14 16:12:52 ----A---- C:\Windows\system32\dxtrans.dll
2009-07-14 16:12:52 ----A---- C:\Windows\system32\dxtmsft.dll
2009-07-14 16:12:51 ----A---- C:\Windows\system32\WinFXDocObj.exe
2009-07-14 16:12:51 ----A---- C:\Windows\system32\wextract.exe
2009-07-14 16:12:51 ----A---- C:\Windows\system32\vbscript.dll
2009-07-14 16:12:51 ----A---- C:\Windows\system32\pngfilt.dll
2009-07-14 16:12:51 ----A---- C:\Windows\system32\mstime.dll
2009-07-14 16:12:51 ----A---- C:\Windows\system32\jscript.dll
2009-07-14 16:12:51 ----A---- C:\Windows\system32\ieapfltr.dll
2009-07-14 16:12:51 ----A---- C:\Windows\system32\ieakui.dll
2009-07-14 16:12:51 ----A---- C:\Windows\system32\advpack.dll
2009-07-14 16:12:50 ----A---- C:\Windows\system32\url.dll
2009-07-14 16:12:50 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2009-07-14 16:12:50 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2009-07-14 16:12:50 ----A---- C:\Windows\system32\PDMSetup.exe
2009-07-14 16:12:50 ----A---- C:\Windows\system32\mshta.exe
2009-07-14 16:12:50 ----A---- C:\Windows\system32\iexpress.exe
2009-07-11 20:51:07 ----D---- c:\Program Files\MSN
2009-07-11 20:17:11 ----D---- c:\Program Files\OpenAL
2009-07-11 20:17:11 ----A---- C:\Windows\system32\wrap_oal.dll
2009-07-11 20:17:11 ----A---- C:\Windows\system32\OpenAL32.dll
2009-07-11 20:02:02 ----A---- C:\Windows\system32\SPWizUI.dll
2009-07-11 20:02:02 ----A---- C:\Windows\system32\SPReview.exe
2009-07-11 19:49:16 ----A---- C:\Windows\system32\cbsra.exe
2009-07-11 19:19:05 ----D---- c:\Program Files\Eusing Free Registry Cleaner
2009-07-11 17:24:19 ----A---- C:\Windows\system32\msxml.dll
2009-07-11 17:24:18 ----A---- C:\Windows\system32\STKIT432.DLL
2009-07-11 17:24:16 ----D---- c:\Program Files\Registry Mechanic
2009-07-11 17:22:05 ----A---- C:\Windows\system32\MSIVXodrpunponwraniuxdefepntfmtvlfgpc.dll
2009-07-11 17:22:05 ----A---- C:\Windows\system32\MSIVXbmdudqpmjpddbrcxdmwjnfloaddvqwjp.dll
2009-07-11 16:52:21 ----D---- C:\Users\Shane\AppData\Roaming\Uniblue
2009-07-11 16:52:21 ----D---- C:\ProgramData\DriverScanner
2009-07-11 16:52:21 ----D---- c:\Program Files\Uniblue
2009-07-11 16:51:44 ----HDC---- C:\ProgramData\{66E2F539-12B6-4870-A500-7689CDE75C5E}
2009-07-11 16:37:07 ----A---- C:\Windows\system32\es.dll
2009-07-11 16:36:43 ----A---- C:\Windows\system32\D3DX9_39.dll
2009-07-11 16:34:15 ----A---- C:\Windows\system32\gpprefcl.dll
2009-07-11 16:00:42 ----D---- C:\Windows\system32\WindowsPowerShell
2009-07-11 15:59:14 ----D---- c:\Program Files\Microsoft ATS
2009-07-11 15:46:17 ----D---- C:\ProgramData\PC Drivers HeadQuarters
2009-07-11 13:59:30 ----D---- C:\Program Files\Common Files\Adobe AIR
2009-07-11 13:58:42 ----D---- C:\ProgramData\NOS
2009-07-11 13:58:42 ----D---- c:\Program Files\NOS
2009-07-11 13:33:20 ----D---- c:\Program Files\Port Detective
2009-07-11 13:33:20 ----A---- C:\Windows\iun6002.exe
2009-07-11 13:11:10 ----D---- c:\Program Files\uTorrent
2009-07-11 13:10:46 ----D---- C:\Users\Shane\AppData\Roaming\uTorrent
2009-07-08 17:57:26 ----D---- c:\Program Files\Microsoft Silverlight
2009-07-08 17:57:05 ----DC---- C:\Windows\system32\DRVSTORE
2009-07-08 17:56:14 ----D---- c:\Program Files\Microsoft Sync Framework
2009-07-08 17:54:59 ----D---- c:\Program Files\Microsoft SQL Server Compact Edition
2009-07-08 17:52:54 ----D---- c:\Program Files\Microsoft
2009-07-08 17:52:36 ----D---- c:\Program Files\Windows Live SkyDrive
2009-07-08 17:52:20 ----D---- c:\Program Files\Windows Live
2009-07-08 17:48:42 ----D---- C:\Program Files\Common Files\Windows Live
2009-07-08 10:54:25 ----D---- c:\Program Files\Windows Installer Clean Up
2009-07-08 09:26:28 ----D---- C:\ProgramData\Spybot - Search & Destroy
2009-07-08 09:26:28 ----D---- c:\Program Files\Spybot - Search & Destroy
2009-07-07 17:46:32 ----D---- c:\Program Files\Monitor Calibration Wizard
2009-07-07 16:18:50 ----A---- C:\Windows\system32\winipsec.dll
2009-07-07 16:18:50 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2009-07-07 16:18:49 ----A---- C:\Windows\system32\polstore.dll
2009-07-07 16:18:49 ----A---- C:\Windows\system32\IPSECSVC.DLL
2009-07-07 16:17:49 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2009-07-07 16:17:48 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2009-07-07 16:17:48 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2009-07-07 16:16:43 ----A---- C:\Windows\system32\mcmde.dll
2009-07-07 16:16:42 ----A---- C:\Windows\system32\psisdecd.dll
2009-07-07 16:16:42 ----A---- C:\Windows\system32\EncDec.dll
2009-07-07 16:15:03 ----A---- C:\Windows\system32\WebClnt.dll
2009-07-07 16:12:52 ----A---- C:\Windows\system32\winhttp.dll
2009-07-07 16:11:59 ----A---- C:\Windows\system32\gdi32.dll
2009-07-07 16:09:11 ----A---- C:\Windows\system32\xolehlp.dll
2009-07-07 16:09:11 ----A---- C:\Windows\system32\msdtcprx.dll
2009-07-07 16:08:22 ----A---- C:\Windows\system32\Apphlpdm.dll
2009-07-07 16:08:20 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2009-07-07 16:08:20 ----A---- C:\Windows\system32\gameux.dll
2009-07-07 16:07:13 ----A---- C:\Windows\system32\wmpeffects.dll
2009-07-07 16:06:23 ----A---- C:\Windows\system32\msxml3r.dll
2009-07-07 16:06:23 ----A---- C:\Windows\system32\msxml3.dll
2009-07-07 16:05:22 ----A---- C:\Windows\system32\netapi32.dll
2009-07-07 16:03:35 ----A---- C:\Windows\system32\tzres.dll
2009-07-07 16:02:20 ----A---- C:\Windows\system32\wmploc.DLL
2009-07-07 16:02:20 ----A---- C:\Windows\system32\wmp.dll
2009-07-07 16:02:19 ----A---- C:\Windows\system32\spwmp.dll
2009-07-07 16:02:19 ----A---- C:\Windows\system32\dxmasf.dll
2009-07-07 16:00:57 ----A---- C:\Windows\system32\shell32.dll
2009-07-07 15:59:58 ----A---- C:\Windows\system32\localspl.dll
2009-07-07 15:57:04 ----A---- C:\Windows\explorer.exe
2009-07-07 15:55:17 ----A---- C:\Windows\system32\netcfg.exe
2009-07-07 15:55:16 ----A---- C:\Windows\system32\tcpipcfg.dll
2009-07-07 15:55:16 ----A---- C:\Windows\system32\netiougc.exe
2009-07-07 15:54:09 ----A---- C:\Windows\system32\NlsLexicons0049.dll
2009-07-07 15:54:09 ----A---- C:\Windows\system32\NlsLexicons0047.dll
2009-07-07 15:54:09 ----A---- C:\Windows\system32\NlsLexicons0046.dll
2009-07-07 15:54:09 ----A---- C:\Windows\system32\NlsLexicons0045.dll
2009-07-07 15:54:09 ----A---- C:\Windows\system32\NlsLexicons0020.dll
2009-07-07 15:54:08 ----A---- C:\Windows\system32\NlsLexicons0039.dll
2009-07-07 15:54:08 ----A---- C:\Windows\system32\NlsLexicons0022.dll
2009-07-07 15:54:08 ----A---- C:\Windows\system32\NlsLexicons0021.dll
2009-07-07 15:54:07 ----A---- C:\Windows\system32\NlsLexicons0027.dll
2009-07-07 15:54:07 ----A---- C:\Windows\system32\NlsLexicons0026.dll
2009-07-07 15:54:07 ----A---- C:\Windows\system32\NlsLexicons0024.dll
2009-07-07 15:54:07 ----A---- C:\Windows\system32\NlsLexicons0010.dll
2009-07-07 15:54:06 ----A---- C:\Windows\system32\NlsLexicons0018.dll
2009-07-07 15:54:06 ----A---- C:\Windows\system32\NlsLexicons0013.dll
2009-07-07 15:54:06 ----A---- C:\Windows\system32\NlsLexicons0011.dll
2009-07-07 15:54:05 ----A---- C:\Windows\system32\NlsLexicons0019.dll
2009-07-07 15:54:05 ----A---- C:\Windows\system32\NlsLexicons0003.dll
2009-07-07 15:54:05 ----A---- C:\Windows\system32\NlsLexicons0002.dll
2009-07-07 15:54:05 ----A---- C:\Windows\system32\NlsLexicons0001.dll
2009-07-07 15:54:04 ----A---- C:\Windows\system32\NlsLexicons004b.dll
2009-07-07 15:54:04 ----A---- C:\Windows\system32\NlsLexicons004a.dll
2009-07-07 15:54:04 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2009-07-07 15:54:04 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2009-07-07 15:54:03 ----A---- C:\Windows\system32\NlsLexicons004e.dll
2009-07-07 15:54:03 ----A---- C:\Windows\system32\NlsLexicons004c.dll
2009-07-07 15:54:03 ----A---- C:\Windows\system32\NlsLexicons003e.dll
2009-07-07 15:54:03 ----A---- C:\Windows\system32\NlsLexicons002a.dll
2009-07-07 15:54:03 ----A---- C:\Windows\system32\NlsLexicons001a.dll
2009-07-07 15:54:02 ----A---- C:\Windows\system32\NlsLexicons001d.dll
2009-07-07 15:54:02 ----A---- C:\Windows\system32\NlsLexicons001b.dll
2009-07-07 15:54:02 ----A---- C:\Windows\system32\NlsLexicons000a.dll
2009-07-07 15:54:01 ----A---- C:\Windows\system32\NlsLexicons0414.dll
2009-07-07 15:54:01 ----A---- C:\Windows\system32\NlsLexicons000f.dll
2009-07-07 15:54:01 ----A---- C:\Windows\system32\NlsLexicons000d.dll
2009-07-07 15:54:01 ----A---- C:\Windows\system32\NlsLexicons000c.dll
2009-07-07 15:54:00 ----A---- C:\Windows\system32\NlsLexicons081a.dll
2009-07-07 15:54:00 ----A---- C:\Windows\system32\NlsLexicons0816.dll
2009-07-07 15:54:00 ----A---- C:\Windows\system32\NlsLexicons0416.dll
2009-07-07 15:53:59 ----A---- C:\Windows\system32\NlsModels0011.dll
2009-07-07 15:53:59 ----A---- C:\Windows\system32\NlsData0047.dll
2009-07-07 15:53:59 ----A---- C:\Windows\system32\NlsData0046.dll
2009-07-07 15:53:59 ----A---- C:\Windows\system32\NlsData0045.dll
2009-07-07 15:53:58 ----A---- C:\Windows\system32\NlsData0049.dll
2009-07-07 15:53:58 ----A---- C:\Windows\system32\NlsData0039.dll
2009-07-07 15:53:58 ----A---- C:\Windows\system32\NlsData0022.dll
2009-07-07 15:53:58 ----A---- C:\Windows\system32\NlsData0021.dll
2009-07-07 15:53:58 ----A---- C:\Windows\system32\NlsData0020.dll
2009-07-07 15:53:57 ----A---- C:\Windows\system32\NlsData0027.dll
2009-07-07 15:53:57 ----A---- C:\Windows\system32\NlsData0026.dll
2009-07-07 15:53:57 ----A---- C:\Windows\system32\NlsData0024.dll
2009-07-07 15:53:57 ----A---- C:\Windows\system32\NlsData0010.dll
2009-07-07 15:53:56 ----A---- C:\Windows\system32\NlsData0018.dll
2009-07-07 15:53:56 ----A---- C:\Windows\system32\NlsData0013.dll
2009-07-07 15:53:56 ----A---- C:\Windows\system32\NlsData0011.dll
2009-07-07 15:53:56 ----A---- C:\Windows\system32\NlsData0000.dll
2009-07-07 15:53:55 ----A---- C:\Windows\system32\NlsData0019.dll
2009-07-07 15:53:55 ----A---- C:\Windows\system32\NlsData0003.dll
2009-07-07 15:53:55 ----A---- C:\Windows\system32\NlsData0002.dll
2009-07-07 15:53:55 ----A---- C:\Windows\system32\NlsData0001.dll
2009-07-07 15:53:54 ----A---- C:\Windows\system32\NlsData004b.dll
2009-07-07 15:53:54 ----A---- C:\Windows\system32\NlsData004a.dll
2009-07-07 15:53:54 ----A---- C:\Windows\system32\NlsData0009.dll
2009-07-07 15:53:54 ----A---- C:\Windows\system32\NlsData0007.dll
2009-07-07 15:53:53 ----A---- C:\Windows\system32\NlsData004e.dll
2009-07-07 15:53:53 ----A---- C:\Windows\system32\NlsData004c.dll
2009-07-07 15:53:53 ----A---- C:\Windows\system32\NlsData003e.dll
2009-07-07 15:53:53 ----A---- C:\Windows\system32\NlsData002a.dll
2009-07-07 15:53:53 ----A---- C:\Windows\system32\NlsData001a.dll
2009-07-07 15:53:52 ----A---- C:\Windows\system32\NlsData001d.dll
2009-07-07 15:53:52 ----A---- C:\Windows\system32\NlsData001b.dll
2009-07-07 15:53:52 ----A---- C:\Windows\system32\NlsData000a.dll
2009-07-07 15:53:51 ----A---- C:\Windows\system32\NlsData000f.dll
2009-07-07 15:53:51 ----A---- C:\Windows\system32\NlsData000d.dll
2009-07-07 15:53:51 ----A---- C:\Windows\system32\NlsData000c.dll
2009-07-07 15:53:50 ----A---- C:\Windows\system32\NlsData081a.dll
2009-07-07 15:53:50 ----A---- C:\Windows\system32\NlsData0816.dll
2009-07-07 15:53:50 ----A---- C:\Windows\system32\NlsData0416.dll
2009-07-07 15:53:50 ----A---- C:\Windows\system32\NlsData0414.dll
2009-07-07 15:53:50 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2009-07-07 15:53:49 ----A---- C:\Windows\system32\NlsLexicons0c1a.dll
2009-07-07 15:53:49 ----A---- C:\Windows\system32\NlsData0c1a.dll
2009-07-07 15:46:38 ----A---- C:\Windows\system32\rpcss.dll
2009-07-07 15:46:37 ----A---- C:\Windows\system32\ntoskrnl.exe
2009-07-07 15:46:37 ----A---- C:\Windows\system32\ntkrnlpa.exe
2009-07-07 15:46:36 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2009-07-07 15:46:36 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2009-07-07 15:46:35 ----A---- C:\Windows\system32\sdohlp.dll
2009-07-07 15:46:35 ----A---- C:\Windows\system32\iasdatastore.dll
2009-07-07 15:46:35 ----A---- C:\Windows\system32\iasads.dll
2009-07-07 15:46:34 ----A---- C:\Windows\system32\iasrecst.dll
2009-07-07 15:44:23 ----A---- C:\Windows\system32\secur32.dll
2009-07-07 15:44:23 ----A---- C:\Windows\system32\lsass.exe
2009-07-07 15:44:23 ----A---- C:\Windows\system32\lsasrv.dll
2009-07-07 15:44:23 ----A---- C:\Windows\system32\kernel32.dll
2009-07-07 15:44:22 ----A---- C:\Windows\system32\apilogen.dll
2009-07-07 15:44:22 ----A---- C:\Windows\system32\amxread.dll
2009-07-07 15:42:30 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2009-07-07 15:42:29 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2009-07-07 15:42:29 ----A---- C:\Windows\system32\WindowsCodecs.dll
2009-07-07 15:29:50 ----A---- C:\Windows\system32\win32spl.dll
2009-07-07 15:29:50 ----A---- C:\Windows\system32\printcom.dll
2009-07-07 15:28:57 ----A---- C:\Windows\system32\wshrm.dll
2009-07-07 15:27:50 ----A---- C:\Windows\system32\oleaut32.dll
2009-07-07 15:26:34 ----A---- C:\Windows\system32\dnsrslvr.dll
2009-07-07 15:26:34 ----A---- C:\Windows\system32\dnscacheugc.exe
2009-07-07 15:26:34 ----A---- C:\Windows\system32\dnsapi.dll
2009-07-07 15:25:59 ----A---- C:\Windows\system32\schannel.dll
2009-07-07 15:22:43 ----A---- C:\Windows\system32\infocardapi.dll
2009-07-07 15:22:43 ----A---- C:\Windows\system32\icardres.dll
2009-07-07 15:22:43 ----A---- C:\Windows\system32\icardagt.exe
2009-07-07 15:22:39 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2009-07-07 15:22:38 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2009-07-07 15:22:38 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2009-07-07 15:22:38 ----A---- C:\Windows\system32\PresentationHost.exe
2009-07-07 15:08:23 ----A---- C:\Windows\system32\netfxperf.dll
2009-07-07 15:08:23 ----A---- C:\Windows\system32\dfshim.dll
2009-07-07 15:08:21 ----A---- C:\Windows\system32\mscories.dll
2009-07-07 15:08:21 ----A---- C:\Windows\system32\mscorier.dll
2009-07-07 15:08:21 ----A---- C:\Windows\system32\mscoree.dll
2009-07-07 14:58:39 ----A---- C:\Windows\system32\rrinstaller.exe
2009-07-07 14:58:39 ----A---- C:\Windows\system32\mfps.dll
2009-07-07 14:58:39 ----A---- C:\Windows\system32\mfpmp.exe
2009-07-07 14:58:39 ----A---- C:\Windows\system32\mferror.dll
2009-07-07 14:58:39 ----A---- C:\Windows\system32\mf.dll
2009-07-07 14:58:38 ----A---- C:\Windows\system32\WMVCORE.DLL
2009-07-07 14:58:38 ----A---- C:\Windows\system32\WMNetMgr.dll
2009-07-07 14:58:38 ----A---- C:\Windows\system32\logagent.exe
2009-07-07 14:57:05 ----A---- C:\Windows\system32\INETRES.dll
2009-07-07 14:57:05 ----A---- C:\Windows\system32\inetcomm.dll
2009-07-07 14:56:48 ----A---- C:\Windows\system32\connect.dll
2009-07-07 14:56:21 ----A---- C:\Windows\system32\rpcrt4.dll
2009-07-07 14:56:02 ----A---- C:\Windows\system32\quartz.dll
2009-07-07 14:52:45 ----A---- C:\Windows\system32\msxml6.dll
2009-07-07 14:52:44 ----A---- C:\Windows\system32\msxml6r.dll
2009-07-07 14:15:16 ----A---- C:\Windows\system32\wups2.dll
2009-07-07 14:15:16 ----A---- C:\Windows\system32\wucltux.dll
2009-07-07 14:15:16 ----A---- C:\Windows\system32\wuaueng.dll
2009-07-07 14:15:16 ----A---- C:\Windows\system32\wuauclt.exe
2009-07-07 14:14:48 ----A---- C:\Windows\system32\wups.dll
2009-07-07 14:14:48 ----A---- C:\Windows\system32\wudriver.dll
2009-07-07 14:14:48 ----A---- C:\Windows\system32\wuapi.dll
2009-07-07 14:14:28 ----A---- C:\Windows\system32\wuwebv.dll
2009-07-07 14:14:28 ----A---- C:\Windows\system32\wuapp.exe
2009-05-25 08:16:28 ----A---- C:\Windows\system32\ElbyVCD.dll
2009-05-25 08:01:38 ----A---- C:\Windows\system32\ElbyCDIO.dll
2009-05-13 17:54:52 ----A---- C:\Windows\system32\divx_xx16.dll
2009-05-13 17:54:52 ----A---- C:\Windows\system32\divx_xx11.dll
2009-05-13 17:54:52 ----A---- C:\Windows\system32\divx_xx0c.dll
2009-05-13 17:54:52 ----A---- C:\Windows\system32\divx_xx0a.dll
2009-05-13 17:54:52 ----A---- C:\Windows\system32\divx_xx07.dll
2009-05-13 17:54:52 ----A---- C:\Windows\system32\DivX.dll
======List of files/folders modified in the last 3 months======
2009-08-09 12:51:52 ----D---- C:\Windows\Temp
2009-08-09 11:56:01 ----D---- C:\Windows\Prefetch
2009-08-08 20:49:08 ----D---- C:\Windows\System32
2009-08-08 20:49:08 ----D---- C:\Windows\inf
2009-08-08 20:49:08 ----A---- C:\Windows\system32\PerfStringBackup.INI
2009-08-08 20:47:27 ----AD---- C:\Windows
2009-08-08 13:49:34 ----D---- c:\Program Files\Mozilla Firefox
2009-08-08 13:22:02 ----D---- C:\Windows\system32\drivers
2009-08-08 13:20:40 ----RSD---- C:\Windows\Fonts
2009-08-08 13:19:02 ----D---- C:\Windows\system32\catroot
2009-08-08 13:17:15 ----D---- C:\Windows\twain_32
2009-08-08 13:16:26 ----HD---- c:\Program Files\InstallShield Installation Information
2009-08-08 13:16:16 ----RD---- C:\Program Files
2009-08-08 13:15:45 ----SHD---- C:\Windows\Installer
2009-08-08 13:14:37 ----D---- C:\Windows\winsxs
2009-08-08 13:13:37 ----D---- c:\Program Files\Common Files
2009-08-08 13:13:22 ----HD---- C:\ProgramData
2009-08-07 19:38:07 ----D---- C:\Windows\Minidump
2009-08-06 20:55:14 ----D---- c:\Program Files\QuickTime
2009-08-06 20:54:50 ----D---- C:\Windows\system32\Tasks
2009-08-06 20:54:49 ----D---- c:\Program Files\Apple Software Update
2009-08-06 20:50:51 ----D---- C:\Windows\Speech
2009-08-06 20:50:47 ----D---- C:\Program Files\Common Files\microsoft shared
2009-08-06 10:39:37 ----A---- C:\Windows\system32\javaws.exe
2009-08-06 10:39:37 ----A---- C:\Windows\system32\javaw.exe
2009-08-06 10:39:37 ----A---- C:\Windows\system32\java.exe
2009-08-06 10:39:35 ----D---- c:\Program Files\Java
2009-08-04 16:12:24 ----D---- C:\ProgramData\Adobe
2009-07-31 05:14:44 ----D---- C:\Windows\system32\migration
2009-07-31 05:14:42 ----D---- c:\Program Files\Internet Explorer
2009-07-30 17:23:00 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2009-07-29 05:38:43 ----D---- C:\Windows\system32\catroot2
2009-07-27 14:33:41 ----D---- C:\Program Files\Common Files\Adobe
2009-07-27 14:27:31 ----D---- c:\Program Files\Adobe
2009-07-26 13:51:38 ----D---- C:\WheelOfTime
2009-07-21 19:15:54 ----SD---- C:\Windows\Downloaded Program Files
2009-07-20 18:38:06 ----D---- c:\Program Files\DivX
2009-07-19 18:40:06 ----D---- C:\Program Files\Common Files\PX Storage Engine
2009-07-17 21:36:07 ----D---- c:\Program Files\Elaborate Bytes
2009-07-17 21:11:45 ----D---- c:\Program Files\Steam
2009-07-17 19:29:14 ----RSD---- C:\Windows\assembly
2009-07-17 19:29:03 ----D---- c:\Program Files\ATI Technologies
2009-07-17 19:14:42 ----D---- c:\Program Files\DScaler5
2009-07-17 19:11:04 ----D---- c:\Program Files\DirectVobSub
2009-07-14 22:09:56 ----D---- c:\Program Files\Windows Mail
2009-07-14 22:09:46 ----D---- C:\ProgramData\Microsoft Help
2009-07-14 18:58:16 ----SHD---- C:\Boot
2009-07-14 16:52:20 ----D---- C:\Windows\rescache
2009-07-14 16:50:22 ----A---- C:\Windows\win.ini
2009-07-14 16:35:02 ----D---- C:\Windows\system32\en-US
2009-07-14 16:35:02 ----D---- C:\Windows\PolicyDefinitions
2009-07-14 15:29:29 ----D---- C:\Windows\pss
2009-07-12 06:21:40 ----D---- C:\Windows\servicing
2009-07-11 21:03:18 ----D---- C:\Windows\Microsoft.NET
2009-07-11 20:57:23 ----ASH---- c:\Program Files\desktop.ini
2009-07-11 20:52:26 ----D---- c:\Program Files\Windows Sidebar
2009-07-11 20:52:26 ----D---- c:\Program Files\Windows Calendar
2009-07-11 20:52:26 ----D---- c:\Program Files\Movie Maker
2009-07-11 20:52:24 ----D---- c:\Program Files\Windows Media Player
2009-07-11 20:52:24 ----D---- c:\Program Files\Windows Collaboration
2009-07-11 20:52:23 ----D---- c:\Program Files\Windows Photo Gallery
2009-07-11 20:52:23 ----D---- c:\Program Files\Windows Journal
2009-07-11 20:52:20 ----D---- c:\Program Files\Windows Defender
2009-07-11 20:52:20 ----D---- C:\Program Files\Common Files\System
2009-07-11 20:52:19 ----D---- C:\Windows\ehome
2009-07-11 20:52:18 ----D---- C:\Windows\MSAgent
2009-07-11 20:52:16 ----D---- C:\Windows\L2Schemas
2009-07-11 20:52:16 ----D---- C:\Windows\IME
2009-07-11 20:52:16 ----D---- C:\Windows\DigitalLocker
2009-07-11 20:52:15 ----D---- C:\Windows\system32\ko-KR
2009-07-11 20:52:15 ----D---- C:\Windows\system32\da-DK
2009-07-11 20:52:15 ----D---- C:\Windows\system32\com
2009-07-11 20:52:15 ----D---- C:\Windows\system32\0409
2009-07-11 20:52:10 ----D---- C:\Windows\system32\oobe
2009-07-11 20:52:10 ----D---- C:\Windows\system32\it-IT
2009-07-11 20:52:10 ----D---- C:\Windows\system32\el-GR
2009-07-11 20:52:10 ----D---- C:\Windows\system32\de-DE
2009-07-11 20:52:09 ----D---- C:\Windows\system32\sysprep
2009-07-11 20:52:07 ----D---- C:\Windows\system32\AdvancedInstallers
2009-07-11 20:52:06 ----D---- C:\Windows\system32\sv-SE
2009-07-11 20:52:06 ----D---- C:\Windows\system32\SLUI
2009-07-11 20:52:06 ----D---- C:\Windows\system32\setup
2009-07-11 20:52:06 ----D---- C:\Windows\system32\ru-RU
2009-07-11 20:52:06 ----D---- C:\Windows\system32\pt-PT
2009-07-11 20:52:06 ----D---- C:\Windows\system32\ias
2009-07-11 20:52:06 ----D---- C:\Windows\system32\hu-HU
2009-07-11 20:52:06 ----D---- C:\Windows\system32\he-IL
2009-07-11 20:52:06 ----D---- C:\Windows\system32\fr-FR
2009-07-11 20:52:06 ----D---- C:\Windows\system32\fi-FI
2009-07-11 20:52:06 ----D---- C:\Windows\system32\cs-CZ
2009-07-11 20:52:04 ----D---- C:\Windows\system32\zh-TW
2009-07-11 20:52:04 ----D---- C:\Windows\system32\zh-CN
2009-07-11 20:52:04 ----D---- C:\Windows\system32\ro-RO
2009-07-11 20:52:04 ----D---- C:\Windows\system32\pl-PL
2009-07-11 20:52:04 ----D---- C:\Windows\system32\manifeststore
2009-07-11 20:52:04 ----D---- C:\Windows\system32\ja-JP
2009-07-11 20:52:04 ----D---- C:\Windows\system32\es-ES
2009-07-11 20:52:04 ----D---- C:\Windows\system32\en
2009-07-11 20:52:01 ----D---- C:\Windows\system32\wbem
2009-07-11 20:52:01 ----D---- C:\Windows\system32\tr-TR
2009-07-11 20:51:59 ----D---- C:\Windows\system32\nl-NL
2009-07-11 20:51:59 ----D---- C:\Windows\system32\nb-NO
2009-07-11 20:51:59 ----D---- C:\Windows\system32\ar-SA
2009-07-11 20:51:57 ----D---- C:\Windows\system32\pt-BR
2009-07-11 20:51:57 ----D---- C:\Windows\system32\migwiz
2009-07-11 20:51:12 ----D---- C:\Windows\AppPatch
2009-07-11 20:51:05 ----D---- C:\Windows\system32\Boot
2009-07-11 20:38:55 ----A---- C:\Windows\system32\ifxcardm.dll
2009-07-11 20:38:47 ----A---- C:\Windows\system32\axaltocm.dll
2009-07-11 20:28:10 ----D---- C:\Windows\Boot
2009-07-11 20:28:05 ----D---- C:\perflogs
2009-07-11 17:23:09 ----SHD---- C:\System Volume Information
2009-07-11 17:15:21 ----D---- C:\Windows\Tasks
2009-07-11 16:36:42 ----D---- C:\Windows\Logs
2009-07-11 16:36:32 ----D---- c:\Program Files\Microsoft Games
2009-07-11 16:34:52 ----D---- C:\Windows\system32\uk-UA
2009-07-11 16:34:52 ----D---- C:\Windows\system32\th-TH
2009-07-11 16:34:52 ----D---- C:\Windows\system32\sr-Latn-CS
2009-07-11 16:34:52 ----D---- C:\Windows\system32\sl-SI
2009-07-11 16:34:52 ----D---- C:\Windows\system32\sk-SK
2009-07-11 16:34:51 ----D---- C:\Windows\system32\lv-LV
2009-07-11 16:34:51 ----D---- C:\Windows\system32\lt-LT
2009-07-11 16:34:51 ----D---- C:\Windows\system32\hr-HR
2009-07-11 16:34:51 ----D---- C:\Windows\system32\et-EE
2009-07-11 16:34:51 ----D---- C:\Windows\system32\bg-BG
2009-07-11 16:33:54 ----RSD---- C:\Windows\Media
2009-07-11 16:10:36 ----D---- c:\Program Files\CD Audio Reader Filter
2009-07-11 13:59:31 ----D---- C:\Users\Shane\AppData\Roaming\Adobe
2009-07-11 13:38:05 ----D---- C:\Users\Shane\AppData\Roaming\Azureus
2009-07-10 11:51:09 ----SD---- C:\Users\Shane\AppData\Roaming\Microsoft
2009-07-08 19:02:57 ----D---- c:\Program Files\VistaCodecPack
2009-07-08 18:59:17 ----D---- c:\Program Files\OpenSource Flash Video Splitter
2009-07-08 18:57:00 ----D---- c:\Program Files\Bonjour
2009-07-08 17:56:43 ----D---- c:\Program Files\Windows Live Toolbar
2009-07-08 17:56:05 ----SD---- C:\ProgramData\Microsoft
2009-07-08 10:54:04 ----D---- c:\Program Files\MSECache
2009-07-08 10:44:11 ----D---- c:\Program Files\iPod
2009-07-07 19:11:51 ----D---- C:\Users\Shane\AppData\Roaming\Mozilla
2009-07-07 16:33:23 ----D---- C:\Program Files\Common Files\Steam
2009-07-07 16:23:12 ----D---- C:\Windows\system32\XPSViewer
2009-07-07 15:38:30 ----D---- c:\Program Files\Microsoft Works
2009-07-07 15:31:37 ----D---- c:\Program Files\Microsoft SQL Server
2009-07-07 15:31:20 ----D---- C:\Windows\Registration
2009-07-07 14:27:35 ----D---- c:\Program Files\Google
2009-07-07 14:14:03 ----D---- C:\ProgramData\Google
2009-07-07 11:10:56 ----A---- C:\Windows\system32\mrt.exe
2009-07-06 20:45:28 ----HD---- C:\Windows\system32\GroupPolicyUsers
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 CSC;Offline Files Driver; C:\Windows\system32\drivers\csc.sys [2007-08-30 320000]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [2009-06-16 371248]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2009-02-17 24232]
R1 SPBBCDrv;SPBBCDrv; \??\C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys [2006-10-06 406672]
R1 SRTSP;SRTSP; C:\Windows\System32\Drivers\SRTSP.SYS [2006-11-22 247144]
R1 SRTSPX;SRTSPX; C:\Windows\System32\Drivers\SRTSPX.SYS [2006-11-22 25448]
R1 SYMTDI;SYMTDI; C:\Windows\System32\Drivers\SYMTDI.SYS [2006-10-26 185744]
R2 tmcomm;tmcomm; \??\C:\Windows\system32\drivers\tmcomm.sys [2007-12-24 138384]
R3 ATIAVAIW;ATI T200 Unified AVStream service; C:\Windows\system32\DRIVERS\atinavt2.sys [2007-11-06 173696]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-06-27 2770432]
R3 CT20XUT.DLL;CT20XUT.DLL; C:\Windows\system32\CT20XUT.DLL [2007-03-05 170808]
R3 ctaud2k;Creative Audio Driver (WDM); C:\Windows\system32\drivers\ctaud2k.sys [2007-03-05 520504]
R3 CTEXFIFX.DLL;CTEXFIFX.DLL; C:\Windows\system32\CTEXFIFX.DLL [2007-03-05 1323832]
R3 CTHWIUT.DLL;CTHWIUT.DLL; C:\Windows\system32\CTHWIUT.DLL [2007-03-05 73016]
R3 ctprxy2k;Creative Proxy Driver; C:\Windows\system32\drivers\ctprxy2k.sys [2007-03-05 14648]
R3 ctsfm2k;Creative SoundFont Management Device Driver; C:\Windows\system32\drivers\ctsfm2k.sys [2007-03-05 157496]
R3 emupia;E-mu Plug-in Architecture Driver; C:\Windows\system32\drivers\emupia2k.sys [2007-03-05 92984]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2009-06-16 101936]
R3 ha20x2k;Creative 20X HAL Driver; C:\Windows\system32\drivers\ha20x2k.sys [2007-03-05 1163576]
R3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
R3 NAVENG;NAVENG; \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20090808.003\NAVENG.SYS [2009-07-14 87888]
R3 NAVEX15;NAVEX15; \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20090808.003\NAVEX15.SYS [2009-07-14 875728]
R3 ossrv;Creative OS Services Driver; C:\Windows\system32\drivers\ctoss2k.sys [2007-03-05 126776]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT.SYS [2007-03-30 109744]
R3 SYMREDRV;SYMREDRV; C:\Windows\System32\Drivers\SYMREDRV.SYS [2006-10-26 26384]
R3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2006-11-02 35328]
R3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2009-05-22 29696]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2006-11-02 82560]
R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2007-12-06 298496]
S3 COMMONFX.DLL;COMMONFX.DLL; C:\Windows\system32\COMMONFX.DLL [2007-03-05 98616]
S3 ctac32k;Creative AC3 Software Decoder; C:\Windows\system32\drivers\ctac32k.sys [2007-03-05 511288]
S3 CTAUDFX.DLL;CTAUDFX.DLL; C:\Windows\system32\CTAUDFX.DLL [2007-03-05 552248]
S3 ctdvda2k;Creative DVD-Audio Device Driver; C:\Windows\system32\drivers\ctdvda2k.sys [2007-03-05 347144]
S3 CTEAPSFX.DLL;CTEAPSFX.DLL; C:\Windows\system32\CTEAPSFX.DLL [2007-03-05 174392]
S3 CTEDSPFX.DLL;CTEDSPFX.DLL; C:\Windows\system32\CTEDSPFX.DLL [2007-03-05 286520]
S3 CTEDSPIO.DLL;CTEDSPIO.DLL; C:\Windows\system32\CTEDSPIO.DLL [2007-03-05 134968]
S3 CTEDSPSY.DLL;CTEDSPSY.DLL; C:\Windows\system32\CTEDSPSY.DLL [2007-03-05 329528]
S3 CTERFXFX.DLL;CTERFXFX.DLL; C:\Windows\system32\CTERFXFX.DLL [2007-03-05 101176]
S3 CTSBLFX.DLL;CTSBLFX.DLL; C:\Windows\system32\CTSBLFX.DLL [2007-03-05 566584]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2006-11-02 5632]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2009-02-06 55280]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2009-07-21 17488]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2006-11-02 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2006-11-02 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2006-11-02 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2006-11-02 6016]
S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-06-27 2770432]
S3 RimUsb;BlackBerry Device; C:\Windows\System32\Drivers\RimUsb.sys []
S3 RimVSerPort;RIM Virtual Serial Port v2; C:\Windows\system32\DRIVERS\RimSerial.sys [2007-01-18 26496]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2006-11-02 8192]
S3 SRTSPL;SRTSPL; C:\Windows\System32\Drivers\SRTSPL.SYS [2006-11-22 274328]
S3 TVICHW32;TVICHW32; \??\C:\Windows\system32\DRIVERS\TVICHW32.SYS [2009-07-21 23600]
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys []
S3 usbaudio;USB Audio Driver (WDM); C:\Windows\system32\drivers\usbaudio.sys [2006-11-02 71552]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2006-11-02 39936]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2006-11-02 11264]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2007-06-27 606208]
R2 BcmSqlStartupSvc;Business Contact Manager SQL Server Startup Service; C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe [2009-02-20 30312]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2007-07-24 229376]
R2 ccEvtMgr;Symantec Event Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2006-11-22 107624]
R2 ccSetMgr;Symantec Settings Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2006-11-22 107624]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2006-11-02 22016]
R2 DefWatch;Symantec AntiVirus Definition Watcher; C:\Program Files\Symantec AntiVirus\DefWatch.exe [2006-11-28 30872]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2007-12-31 66872]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
R2 SQLBrowser;SQL Server Browser; C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-11-24 239968]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-24 87904]
R2 Symantec AntiVirus;Symantec AntiVirus; C:\Program Files\Symantec AntiVirus\Rtvscan.exe [2006-11-28 1962136]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-03-30 1533808]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2006-11-02 22016]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2006-11-02 521216]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-07-27 651720]
S3 fsssvc;Windows Live Family Safety; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-02-06 533360]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-07-07 182768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 LiveUpdate;LiveUpdate; C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE [2006-10-31 2541248]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 MSSQL$MSSMLBIZ;SQL Server (MSSMLBIZ); C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2008-11-24 29263712]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SavRoam;SAVRoam; C:\Program Files\Symantec AntiVirus\SavRoam.exe [2006-11-28 122008]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2009-07-07 316664]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2006-11-02 22016]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2006-11-02 562176]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2008-11-24 45408]
-----------------EOF-----------------