OTL
OTL logfile created on: 25/07/2009 11:37:01 - Run 1
OTL by OldTimer - Version 3.0.10.3 Folder = C:\Users\Jonny\Desktop
Windows Vista Ultimate Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18783)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 100.00% Memory free
4.00 Gb Paging File | 4.00 Gb Available in Paging File | 100.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 285.47 Gb Total Space | 123.05 Gb Free Space | 43.10% Space Free | Partition Type: NTFS
Drive D: | 10.00 Gb Total Space | 5.10 Gb Free Space | 51.03% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: DESHVEER
Current User Name: Jonny
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
========== Processes (SafeList) ========== PRC - C:\Windows\System32\aestsrv.exe (Andrea Electronics Corporation)
PRC - C:\Program Files\Virgin Broadband Wireless\AffinegyService.exe (Affinegy, Inc.)
PRC - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
PRC - C:\Program Files\AVG\AVG8\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
PRC - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe (Intel Corporation)
PRC - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe (Intel Corporation)
PRC - C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe (Microsoft Corporation)
PRC - C:\Program Files\AVG\AVG8\avgrsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\Google\Update\GoogleUpdate.exe (Google Inc.)
PRC - C:\Program Files\AVG\AVG8\avgnsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe (Intel Corporation)
PRC - C:\Program Files\Dell Support Center\bin\sprtsvc.exe (SupportSoft, Inc.)
PRC - C:\Windows\System32\STacSV.exe (IDT, Inc.)
PRC - C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindService.exe (Rocket Division Software)
PRC - C:\Program Files\AVG\AVG8\avgemc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG8\avgcsrvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\Fingerprint Reader Suite\upeksvr.exe (UPEK Inc.)
PRC - C:\Windows\Explorer.EXE (Microsoft Corporation)
PRC - C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
PRC - C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
PRC - C:\Program Files\TortoiseSVN\bin\TSVNCache.exe (
http://tortoisesvn.net)
PRC - C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe (IDT, Inc.)
PRC - C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
PRC - C:\Program Files\AVG\AVG8\avgtray.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Windows\System32\LVComS.exe (Logitech Inc.)
PRC - C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
PRC - C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
PRC - C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe (BillP Studios)
PRC - C:\Windows\ehome\ehtray.exe (Microsoft Corporation)
PRC - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
PRC - C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
PRC - C:\Windows\System32\mobsync.exe (Microsoft Corporation)
PRC - C:\Windows\System32\wbem\unsecapp.exe (Microsoft Corporation)
PRC - C:\Windows\System32\wbem\wmiprvse.exe (Microsoft Corporation)
PRC - C:\Program Files\Fingerprint Reader Suite\psqltray.exe (UPEK Inc.)
PRC - C:\Windows\ehome\ehmsas.exe (Microsoft Corporation)
PRC - C:\Program Files\DellTPad\ApMsgFwd.exe (Alps Electric Co., Ltd.)
PRC - C:\Program Files\DellTPad\HidFind.exe (Alps Electric Co., Ltd.)
PRC - C:\Program Files\DellTPad\Apntex.exe (Alps Electric Co., Ltd.)
PRC - C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.)
PRC - C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
PRC - C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
PRC - C:\Program Files\Google\Google Toolbar\GoogleToolbarUser.exe (Google Inc.)
PRC - C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
PRC - C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
PRC - C:\Users\Jonny\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Internet Explorer\IELowutil.exe (Microsoft Corporation)
========== Win32 Services (SafeList) ========== SRV - (AESTFilters [Auto | Running]) -- C:\Windows\System32\aestsrv.exe (Andrea Electronics Corporation)
SRV - (AffinegyService [Auto | Running]) -- C:\Program Files\Virgin Broadband Wireless\AffinegyService.exe (Affinegy, Inc.)
SRV - (Apple Mobile Device [Auto | Running]) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (avg8emc [Auto | Running]) -- C:\Program Files\AVG\AVG8\avgemc.exe (AVG Technologies CZ, s.r.o.)
SRV - (avg8wd [Auto | Running]) -- C:\Program Files\AVG\AVG8\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
SRV - (Bonjour Service [Auto | Running]) -- C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
SRV - (clr_optimization_v2.0.50727_32 [On_Demand | Stopped]) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (ehRecvr [On_Demand | Stopped]) -- C:\Windows\ehome\ehRecvr.exe (Microsoft Corporation)
SRV - (ehSched [On_Demand | Stopped]) -- C:\Windows\ehome\ehsched.exe (Microsoft Corporation)
SRV - (ehstart [Auto | Stopped]) -- C:\Windows\ehome\ehstart.dll (Microsoft Corporation)
SRV - (Eventlog [Auto | Running]) -- C:\Windows\System32\wevtsvc.dll (Microsoft Corporation)
SRV - (EvtEng [Auto | Running]) -- C:\Program Files\Intel\Wireless\Bin\EvtEng.exe (Intel Corporation)
SRV - (FLEXnet Licensing Service [On_Demand | Stopped]) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)
SRV - (FontCache3.0.0.0 [On_Demand | Stopped]) -- C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation)
SRV - (GoogleDesktopManager-010708-104812 [On_Demand | Stopped]) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
SRV - (gupdate1c9f505dcf6ec00 [Auto | Stopped]) -- C:\Program Files\Google\Update\GoogleUpdate.exe (Google Inc.)
SRV - (gusvc [On_Demand | Stopped]) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (Google)
SRV - (hpqcxs08 [On_Demand | Running]) -- C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll (Hewlett-Packard Co.)
SRV - (hpqddsvc [Auto | Running]) -- C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll (Hewlett-Packard Co.)
SRV - (HPSLPSVC [Auto | Running]) -- C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL (Hewlett-Packard Co.)
SRV - (IAANTMON [Auto | Running]) -- C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe (Intel Corporation)
SRV - (IDriverT [On_Demand | Stopped]) -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe (Macrovision Corporation)
SRV - (idsvc [Unknown | Stopped]) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe (Microsoft Corporation)
SRV - (iPod Service [On_Demand | Running]) -- C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.)
SRV - (MSSQL$SONY_MEDIAMGR [Auto | Running]) -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe (Microsoft Corporation)
SRV - (MSSQLServerADHelper [On_Demand | Stopped]) -- C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe (Microsoft Corporation)
SRV - (Net Driver HPZ12 [Auto | Running]) -- C:\Windows\System32\HPZinw12.dll (Hewlett-Packard)
SRV - (NetTcpPortSharing [Disabled | Stopped]) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe (Microsoft Corporation)
SRV - (odserv [On_Demand | Stopped]) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (ose [On_Demand | Stopped]) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (Pml Driver HPZ12 [Auto | Running]) -- C:\Windows\System32\HPZipm12.dll (Hewlett-Packard)
SRV - (RegSrvc [Auto | Running]) -- C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe (Intel Corporation)
SRV - (sprtsvc_dellsupportcenter [Auto | Running]) -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe (SupportSoft, Inc.)
SRV - (SQLAgent$SONY_MEDIAMGR [On_Demand | Stopped]) -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE (Microsoft Corporation)
SRV - (STacSV [Auto | Running]) -- C:\Windows\System32\STacSV.exe (IDT, Inc.)
SRV - (StarWindService [Auto | Running]) -- C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindService.exe (Rocket Division Software)
SRV - (stllssvr [On_Demand | Stopped]) -- C:\Program Files\Common Files\SureThing Shared\stllssvr.exe (MicroVision Development, Inc.)
SRV - (usnjsvc [On_Demand | Stopped]) -- C:\Program Files\Windows Live\Messenger\usnsvc.exe (Microsoft Corporation)
SRV - (WinDefend [Auto | Running]) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV - (WinVNC4 [Auto | Stopped]) -- File not found
SRV - (WLSetupSvc [On_Demand | Stopped]) -- C:\Program Files\Windows Live\installer\WLSetupSvc.exe (Microsoft Corporation)
SRV - (WMPNetworkSvc [On_Demand | Stopped]) -- C:\Program Files\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
========== Driver Services (SafeList) ========== DRV - (adfs [Auto | Running]) -- C:\Windows\System32\drivers\adfs.sys (Adobe Systems, Inc.)
DRV - (adp94xx [Disabled | Stopped]) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.)
DRV - (adpahci [Disabled | Stopped]) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.)
DRV - (adpu160m [Disabled | Stopped]) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.)
DRV - (adpu320 [Disabled | Stopped]) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.)
DRV - (AFGSp50 [On_Demand | Stopped]) -- C:\Windows\System32\Drivers\AFGSp50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (aic78xx [Disabled | Stopped]) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.)
DRV - (aliide [Disabled | Stopped]) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.)
DRV - (ApfiltrService [On_Demand | Running]) -- C:\Windows\System32\DRIVERS\Apfiltr.sys (Alps Electric Co., Ltd.)
DRV - (arc [Disabled | Stopped]) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.)
DRV - (arcsas [Disabled | Stopped]) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.)
DRV - (AVerBDA6x [On_Demand | Stopped]) -- C:\Windows\System32\DRIVERS\AVerBDA716x.sys (AVerMedia TECHNOLOGIES, Inc.)
DRV - (AvgLdx86 [System | Running]) -- C:\Windows\System32\Drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (AvgMfx86 [System | Running]) -- C:\Windows\System32\Drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (AvgTdiX [System | Running]) -- C:\Windows\System32\Drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.)
DRV - (BrFiltLo [On_Demand | Stopped]) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.)
DRV - (BrFiltUp [On_Demand | Stopped]) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.)
DRV - (Brserid [Disabled | Stopped]) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.)
DRV - (BrSerWdm [Disabled | Stopped]) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.)
DRV - (BrUsbMdm [Disabled | Stopped]) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.)
DRV - (BrUsbSer [On_Demand | Stopped]) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.)
DRV - (btwaudio [On_Demand | Stopped]) -- C:\Windows\System32\drivers\btwaudio.sys (Broadcom Corporation.)
DRV - (btwavdt [On_Demand | Stopped]) -- C:\Windows\System32\drivers\btwavdt.sys (Broadcom Corporation.)
DRV - (btwrchid [On_Demand | Stopped]) -- C:\Windows\System32\DRIVERS\btwrchid.sys (Broadcom Corporation.)
DRV - (cmdide [Disabled | Stopped]) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.)
DRV - (e1express [On_Demand | Stopped]) -- C:\Windows\System32\DRIVERS\e1e6032.sys (Intel Corporation)
DRV - (E1G60 [On_Demand | Stopped]) -- C:\Windows\System32\DRIVERS\E1G60I32.sys (Intel Corporation)
DRV - (eamon [Auto | Running]) -- C:\Windows\System32\DRIVERS\eamon.sys (ESET)
DRV - (ehdrv [System | Running]) -- C:\Windows\System32\DRIVERS\ehdrv.sys (ESET)
DRV - (elxstor [Disabled | Stopped]) -- C:\Windows\system32\drivers\elxstor.sys (Emulex)
DRV - (epfwwfpr [Auto | Running]) -- C:\Windows\System32\DRIVERS\epfwwfpr.sys (ESET)
DRV - (GEARAspiWDM [On_Demand | Running]) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV - (HpCISSs [Disabled | Stopped]) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company)
DRV - (iaNvStor [Disabled | Stopped]) -- C:\Windows\system32\drivers\ianvstor.sys (Intel Corporation)
DRV - (iaStor [Boot | Running]) -- C:\Windows\system32\drivers\iastor.sys (Intel Corporation)
DRV - (iaStorV [Boot | Running]) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation)
DRV - (iirsp [Disabled | Stopped]) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (iteatapi [Disabled | Stopped]) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
DRV - (iteraid [Disabled | Stopped]) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.)
DRV - (LSI_FC [Disabled | Stopped]) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic)
DRV - (LSI_SAS [Disabled | Stopped]) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic)
DRV - (LSI_SCSI [Disabled | Stopped]) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic)
DRV - (megasas [Disabled | Stopped]) -- C:\Windows\system32\drivers\megasas.sys (LSI Logic Corporation)
DRV - (Mraid35x [Disabled | Stopped]) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation)
DRV - (NETw4v32 [On_Demand | Running]) -- C:\Windows\System32\DRIVERS\NETw4v32.sys (Intel Corporation)
DRV - (nfrd960 [Disabled | Stopped]) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation)
DRV - (ntrigdigi [Disabled | Stopped]) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies)
DRV - (NuidFltr [On_Demand | Running]) -- C:\Windows\System32\DRIVERS\NuidFltr.sys (Microsoft Corporation)
DRV - (nvlddmkm [On_Demand | Running]) -- C:\Windows\System32\DRIVERS\nvlddmkm.sys (NVIDIA Corporation)
DRV - (nvraid [Disabled | Stopped]) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation)
DRV - (nvstor [Disabled | Stopped]) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation)
DRV - (OEM02Dev [On_Demand | Running]) -- C:\Windows\System32\DRIVERS\OEM02Dev.sys (Creative Technology Ltd.)
DRV - (OEM02Vfx [On_Demand | Running]) -- C:\Windows\System32\DRIVERS\OEM02Vfx.sys (EyePower Games Pte. Ltd.)
DRV - (PxHelp20 [Boot | Running]) -- C:\Windows\System32\Drivers\PxHelp20.sys (Sonic Solutions)
DRV - (ql2300 [Disabled | Stopped]) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation)
DRV - (ql40xx [Disabled | Stopped]) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation)
DRV - (R300 [On_Demand | Stopped]) -- C:\Windows\System32\DRIVERS\atikmdag.sys (ATI Technologies Inc.)
DRV - (rimmptsk [Auto | Running]) -- C:\Windows\System32\DRIVERS\rimmptsk.sys (REDC)
DRV - (rimsptsk [Auto | Running]) -- C:\Windows\System32\DRIVERS\rimsptsk.sys (REDC)
DRV - (rismxdp [Auto | Running]) -- C:\Windows\System32\DRIVERS\rixdptsk.sys (REDC)
DRV - (SCDEmu [System | Running]) -- C:\Windows\System32\drivers\scdemu.sys (PowerISO Computing, Inc.)
DRV - (secdrv [Auto | Running]) -- C:\Windows\System32\drivers\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
DRV - (SiSRaid2 [Disabled | Stopped]) -- C:\Windows\system32\drivers\sisraid2.sys (Silicon Integrated Systems Corp.)
DRV - (SiSRaid4 [Disabled | Stopped]) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems)
DRV - (SMALUSB [On_Demand | Stopped]) -- C:\Windows\System32\DRIVERS\smallogi.sys (SMaL Camera Technologies, Inc.)
DRV - (sptd [Boot | Running]) -- C:\Windows\System32\Drivers\sptd.sys ()
DRV - (STHDA [On_Demand | Running]) -- C:\Windows\System32\drivers\stwrt.sys (IDT, Inc.)
DRV - (StillCam [On_Demand | Stopped]) -- C:\Windows\System32\DRIVERS\serscan.sys (Microsoft Corporation)
DRV - (Symc8xx [Disabled | Stopped]) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic)
DRV - (Sym_hi [Disabled | Stopped]) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic)
DRV - (Sym_u3 [Disabled | Stopped]) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic)
DRV - (TcUsb [On_Demand | Running]) -- C:\Windows\System32\Drivers\tcusb.sys (UPEK Inc.)
DRV - (uliahci [Disabled | Stopped]) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.)
DRV - (UlSata [Disabled | Stopped]) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.)
DRV - (ulsata2 [Disabled | Stopped]) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.)
DRV - (USBAAPL [On_Demand | Stopped]) -- C:\Windows\System32\Drivers\usbaapl.sys (Apple, Inc.)
DRV - (usbaudio [On_Demand | Stopped]) -- C:\Windows\System32\drivers\usbaudio.sys (Microsoft Corporation)
DRV - (vaxscsi [On_Demand | Running]) -- C:\Windows\System32\Drivers\vaxscsi.sys ()
DRV - (viaide [Disabled | Stopped]) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.)
DRV - (vsmraid [Disabled | Stopped]) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (yukonwlh [On_Demand | Running]) -- C:\Windows\System32\DRIVERS\yk60x86.sys (Marvell)
========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch =
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE - URLSearchHook: {72ae8426-3b8d-4ead-b191-8d0ad1c62158} - Reg Error: Key error. File not found
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
http://www.microsoft.com/isapi/redir.dl ... r=iesearchIE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://www.microsoft.com/isapi/redir.dl ... ar=msnhomeIE - URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - Reg Error: Key error. File not found
IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
http://www.microsoft.com/isapi/redir.dl ... r=iesearchIE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://www.microsoft.com/isapi/redir.dl ... ar=msnhomeIE - URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - Reg Error: Key error. File not found
IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.google.co.uk/ig/dell?hl=en&c ... bd=2080425IE - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
http://www.microsoft.com/isapi/redir.dl ... r=iesearchIE - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://www.google.co.uk/ig/dell?hl=en&c ... bd=2080425IE - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000\S-1-5-21-2617438544-2265370005-1231189347-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000\S-1-5-21-2617438544-2265370005-1231189347-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ========== FF - prefs.js..extensions.enabledItems: {d5bc46d8-67c7-11dc-8c1d-0097498c2b7a}:1.0.0.1
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5
FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009/07/25 11:19:40 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/07/14 13:35:21 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/07/14 13:35:12 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
[2009/07/14 13:36:09 | 00,000,000 | ---D | M] -- C:\Users\Jonny\AppData\Roaming\mozilla\Extensions
[2009/07/14 13:36:09 | 00,000,000 | ---D | M] -- C:\Users\Jonny\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/05/24 15:42:44 | 00,000,000 | ---D | M] -- C:\Users\Jonny\AppData\Roaming\mozilla\Extensions\mozswing@mozswing.org
[2009/07/14 13:36:09 | 00,000,000 | ---D | M] -- C:\Users\Jonny\AppData\Roaming\mozilla\Firefox\Profiles\t81c55x5.default\extensions
[2009/07/14 13:35:13 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009/07/14 13:35:13 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2009/06/24 15:37:46 | 00,023,544 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009/06/24 15:37:46 | 00,137,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2009/06/24 15:37:47 | 00,065,016 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2009/06/24 13:14:16 | 00,001,538 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-en-GB.xml
[2009/06/24 13:14:16 | 00,002,193 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\answers.xml
[2009/06/24 13:14:16 | 00,000,947 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\chambers-en-GB.xml
[2009/06/24 13:14:16 | 00,001,534 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
[2009/06/24 13:14:16 | 00,000,769 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-en-GB.xml
[2009/06/24 13:14:16 | 00,002,371 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2009/06/24 13:14:16 | 00,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia.xml
[2009/06/24 13:14:16 | 00,000,831 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-en-GB.xml
O1 HOSTS File: (27 bytes) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O2 - BHO: (IeMonitorBho Class) - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll (Megaupload Limited)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O3 - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O4 - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [AVG8_TRAY] C:\Program Files\AVG\AVG8\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [dellsupportcenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [dscactivate] C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe ( )
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe (Intel Corporation)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [LVComs] C:\Windows\System32\LVComS.exe (Logitech Inc.)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvSvc] C:\Windows\System32\nvsvc.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [PSQLLauncher] C:\Program Files\Fingerprint Reader Suite\launcher.exe (UPEK Inc.)
O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe (BillP Studios)
O4 - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000..\Run: [msnmsgr] C:\Program Files\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableCAD = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisAllowRun: 1 = SysInspector.exe
O7 - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisAllowRun: 2 = callmsi.exe
O7 - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisAllowRun: 3 = ecmd.exe
O7 - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisAllowRun: 4 = ecls.exe
O7 - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisAllowRun: 5 = eeclnt.exe
O7 - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisAllowRun: 6 = egui.exe
O7 - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisAllowRun: 7 = EHttpSrv.exe
O7 - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: Download Link Using Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm ()
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Send image to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Windows\System32\wshbth.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000\..Trusted Domains: mac.com ([homepage] https in Trusted sites)
O15 - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000\..Trusted Domains: runescape.com ([]https in Trusted sites)
O15 - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000\..Trusted Domains: runescape.com ([world78] https in Trusted sites)
O15 - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\S-1-5-21-2617438544-2265370005-1231189347-1000\..Trusted Ranges: GD ([http] in Local intranet)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000}
http://fpdownload.macromedia.com/get/sh ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258}
http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B}
http://www.fileplanet.com/fpdlmgr/cabs/ ... .9.113.cab (CDownloadCtrl Object)
O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967}
http://dlm.tools.akamai.com/dlmanager/v ... .2.4.1.cab (DLM Control)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5}
http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000}
http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter: - application/x-internet-signup - C:\Program Files\Tiscali\Tiscali Internet\dlls\tiscalifilter.dll ()
O18 - Protocol\Filter: - text/xml - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter: - x-sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.)
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~2\GoogleDesktopNetwork3.dll) - C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)
O20 - AppInit_DLLs: (C:\Windows\System32\avgrsstx.dll) - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~2\GoogleDesktopNetwork3.dll) - C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\Explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: GinaDLL - (vrlogon.dll) - C:\Windows\System32\vrlogon.dll (UPEK Inc.)
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 22:43:36 | 00,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\Windows\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
========== Files/Folders - Created Within 30 Days ========== [2009/08/18 16:11:36 | 10,214,94137 | ---- | C] (Activision ) -- C:\Users\Jonny\Desktop\CoDWaW-1.4-1.5-PatchSetup.exe
[2009/07/25 11:35:49 | 00,513,536 | ---- | C] (OldTimer Tools) -- C:\Users\Jonny\Desktop\OTL.exe
[2009/07/24 21:25:01 | 00,097,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardapi.dll
[2009/07/24 21:25:00 | 00,105,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2009/07/24 21:24:59 | 00,622,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardagt.exe
[2009/07/24 21:24:59 | 00,043,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll
[2009/07/24 21:24:59 | 00,037,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardcpl.cpl
[2009/07/24 21:24:59 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardres.dll
[2009/07/24 21:24:55 | 00,781,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationNative_v0300.dll
[2009/07/24 21:24:54 | 00,326,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe
[2009/07/24 21:22:47 | 00,196,608 | ---- | C] () -- C:\Windows\ocsetup_cbs_install_NetFx3.perf
[2009/07/24 21:22:47 | 00,065,536 | ---- | C] () -- C:\Windows\ocsetup_cbs_install_NetFx3.dpx
[2009/07/24 21:18:43 | 00,096,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dfshim.dll
[2009/07/24 21:18:42 | 00,282,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscoree.dll
[2009/07/24 21:18:41 | 00,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2009/07/24 21:18:34 | 00,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll
[2009/07/24 21:18:32 | 00,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll
[2009/07/24 21:18:05 | 01,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2009/07/24 21:18:05 | 00,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2009/07/24 21:18:04 | 01,985,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iertutil.dll
[2009/07/24 21:18:04 | 00,915,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wininet.dll
[2009/07/24 21:18:04 | 00,385,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2009/07/24 21:18:04 | 00,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2009/07/24 21:18:04 | 00,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2009/07/24 21:18:04 | 00,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2009/07/24 21:18:04 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2009/07/24 21:18:03 | 11,064,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieframe.dll
[2009/07/24 21:18:03 | 01,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2009/07/24 21:18:03 | 01,207,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\urlmon.dll
[2009/07/24 21:18:02 | 05,936,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.dll
[2009/07/24 21:16:36 | 00,348,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2009/07/24 21:16:36 | 00,156,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
[2009/07/24 21:16:36 | 00,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakeng.dll
[2009/07/24 21:16:36 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll
[2009/07/24 21:16:36 | 00,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tdc.ocx
[2009/07/24 21:16:36 | 00,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmled.dll
[2009/07/24 21:16:36 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardie.dll
[2009/07/24 21:16:36 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2009/07/24 21:16:36 | 00,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll
[2009/07/24 21:16:36 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\corpol.dll
[2009/07/24 21:16:35 | 00,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2009/07/24 21:16:35 | 00,236,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\webcheck.dll
[2009/07/24 21:16:35 | 00,229,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll
[2009/07/24 21:16:35 | 00,216,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2009/07/24 21:16:35 | 00,208,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WinFXDocObj.exe
[2009/07/24 21:16:35 | 00,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2009/07/24 21:16:35 | 00,183,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2009/07/24 21:16:35 | 00,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll
[2009/07/24 21:16:35 | 00,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\occache.dll
[2009/07/24 21:16:35 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll
[2009/07/24 21:16:35 | 00,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe
[2009/07/24 21:16:35 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2009/07/24 21:16:35 | 00,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2009/07/24 21:16:35 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2009/07/24 21:16:34 | 00,726,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2009/07/24 21:16:34 | 00,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2009/07/24 21:16:34 | 00,445,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2009/07/24 21:16:34 | 00,420,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2009/07/24 21:16:34 | 00,128,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\advpack.dll
[2009/07/24 21:16:34 | 00,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2009/07/24 21:16:34 | 00,057,667 | ---- | C] () -- C:\Windows\System32\ieuinit.inf
[2009/07/24 21:16:34 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2009/07/24 21:16:33 | 03,698,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2009/07/24 21:16:33 | 00,385,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2009/07/24 21:16:33 | 00,169,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe
[2009/07/24 21:16:33 | 00,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2009/07/24 21:16:33 | 00,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PDMSetup.exe
[2009/07/24 21:16:33 | 00,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2009/07/24 21:16:33 | 00,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2009/07/24 21:16:33 | 00,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe
[2009/07/24 21:16:33 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshta.exe
[2009/07/24 17:54:41 | 22,576,8758 | ---- | C] () -- C:\Users\Jonny\Desktop\Reign Over Me.MP4
[2009/07/24 17:53:25 | 39,178,6451 | ---- | C] () -- C:\Users\Jonny\Desktop\I Now Pronounce You Chuck And Larry.MP4
[2009/07/24 17:52:41 | 36,090,3258 | ---- | C] () -- C:\Users\Jonny\Desktop\Bedtime Stories.mp4
[2009/07/23 21:43:21 | 15,041,704 | ---- | C] (Doctor Web, Ltd.) -- C:\Users\Jonny\Desktop\drweb-cureit.exe
[2009/07/23 16:41:09 | 00,000,000 | ---D | C] -- C:\Users\Jonny\AppData\Roaming\WinPatrol
[2009/07/23 16:41:05 | 00,000,000 | ---D | C] -- C:\Program Files\BillP Studios
[2009/07/22 23:05:48 | 00,000,000 | ---D | C] -- C:\Program Files\ESET
[2009/07/22 14:11:13 | 00,000,392 | -H-- | C] () -- C:\Windows\tasks\User_Feed_Synchronization-{A085D112-D7D5-41D0-8160-0C2AC0A1DB84}.job
[2009/07/21 11:09:01 | 00,000,000 | ---D | C] -- C:\_OTM
[2009/07/21 11:06:29 | 00,000,695 | ---- | C] () -- C:\Users\Jonny\Desktop\NTREGOPT.lnk
[2009/07/21 11:06:29 | 00,000,676 | ---- | C] () -- C:\Users\Jonny\Desktop\ERUNT.lnk
[2009/07/21 11:06:24 | 00,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2009/07/21 11:02:01 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Installer Clean Up
[2009/07/21 10:56:59 | 00,000,000 | ---D | C] -- C:\Program Files\MSECACHE
[2009/07/21 10:55:59 | 00,407,552 | ---- | C] (OldTimer Tools) -- C:\Users\Jonny\Desktop\OTM.exe
[2009/07/21 10:55:45 | 00,791,393 | ---- | C] (Lars Hederer ) -- C:\Users\Jonny\Desktop\erunt-setup.exe
[2009/07/21 10:55:29 | 00,359,656 | ---- | C] (Microsoft Corporation) -- C:\Users\Jonny\Desktop\msicuu2.exe
[2009/07/21 03:01:04 | 00,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_NuidFltr_01005.Wdf
[2009/07/20 23:11:45 | 00,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2009/07/20 23:11:43 | 00,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax
[2009/07/20 23:11:41 | 00,292,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2009/07/20 23:11:23 | 00,000,000 | ---D | C] -- C:\rsit
[2009/07/20 23:11:20 | 01,244,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcmde.dll
[2009/07/20 23:11:12 | 00,177,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2009/07/20 23:11:11 | 00,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax
[2009/07/20 23:11:11 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Mpeg2Data.ax
[2009/07/20 23:11:11 | 00,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSDvbNP.ax
[2009/07/20 23:01:52 | 02,028,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2009/07/20 23:01:40 | 03,505,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2009/07/20 23:01:40 | 03,471,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2009/07/20 23:01:37 | 00,549,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rpcss.dll
[2009/07/20 23:01:33 | 00,654,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2009/07/20 23:01:32 | 00,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdohlp.dll
[2009/07/20 23:01:32 | 00,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrecst.dll
[2009/07/20 23:01:32 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasads.dll
[2009/07/20 23:01:32 | 00,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasdatastore.dll
[2009/07/20 23:01:32 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2009/07/20 23:00:05 | 00,156,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2009/07/20 23:00:05 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2009/07/20 23:00:04 | 00,289,792 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2009/07/20 23:00:04 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lpk.dll
[2009/07/20 23:00:03 | 00,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2009/07/20 23:00:03 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2009/07/20 22:52:49 | 00,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winhttp.dll
[2009/07/20 22:52:39 | 00,500,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll
[2009/07/20 22:52:39 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xolehlp.dll
[2009/07/20 22:52:19 | 10,619,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmp.dll
[2009/07/20 22:52:16 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll
[2009/07/20 22:52:10 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx
[2009/07/20 22:52:10 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxmasf.dll
[2009/07/20 22:52:07 | 08,147,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2009/07/20 22:50:42 | 00,696,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\localspl.dll
[2009/07/20 22:43:38 | 00,000,000 | ---D | C] -- C:\Users\Jonny\AppData\Roaming\Malwarebytes
[2009/07/20 22:43:37 | 00,000,780 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/07/20 22:43:34 | 00,038,160 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2009/07/20 22:43:33 | 00,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2009/07/20 22:43:31 | 00,019,096 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2009/07/20 22:43:31 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009/07/20 22:43:01 | 03,775,176 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Jonny\Desktop\mbam-setup.exe
[2009/07/20 22:42:47 | 01,233,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll
[2009/07/20 22:42:47 | 00,875,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kernel32.dll
[2009/07/20 22:42:46 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secur32.dll
[2009/07/20 22:42:46 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amxread.dll
[2009/07/20 22:42:46 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apilogen.dll
[2009/07/20 22:42:46 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsass.exe
[2009/07/20 22:33:37 | 00,269,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\schannel.dll
[2009/07/20 22:33:10 | 00,788,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rpcrt4.dll
[2009/07/20 22:27:11 | 00,046,157 | ---- | C] (jpshortstuff) -- C:\Users\Jonny\Desktop\GooredFix.exe
[2009/07/20 20:57:19 | 57,344,000 | ---- | C] () -- C:\Windows\ocsetup_install_NetFx3.etl
[2009/07/20 18:14:45 | 00,000,000 | -HSD | C] -- C:\$RECYCLE(2).BIN
[2009/07/20 17:09:35 | 00,924,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\mfc40u.dll
[2009/07/20 17:09:35 | 00,545,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\rpcss.dll
[2009/07/20 17:09:35 | 00,537,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\comctl32.dll
[2009/07/20 17:09:35 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\lpk.dll
[2009/07/20 17:09:35 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\beep.sys
[2009/07/20 17:09:35 | 00,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\sfc.dll
[2009/07/20 17:09:35 | 00,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\null.sys
[2009/07/20 17:09:34 | 01,236,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\comres.dll
[2009/07/20 17:09:34 | 00,035,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\kbdclass.sys
[2009/07/20 17:09:33 | 00,874,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\kernel32.dll
[2009/07/20 17:09:33 | 00,427,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\termsrv.dll
[2009/07/20 17:09:33 | 00,279,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\services.exe
[2009/07/20 17:09:33 | 00,148,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\appmgmts.dll
[2009/07/20 17:09:33 | 00,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\spoolsv.exe
[2009/07/20 17:09:33 | 00,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\imm32.dll
[2009/07/20 17:09:33 | 00,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\powrprof.dll
[2009/07/20 17:09:33 | 00,051,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\wuauclt.exe
[2009/07/20 17:09:33 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\userinit.exe
[2009/07/20 17:09:33 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\ctfmon.exe
[2009/07/20 17:09:33 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\lsass.exe
[2009/07/20 17:09:32 | 03,472,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\ntoskrnl.exe
[2009/07/20 17:09:32 | 02,923,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\explorer.exe
[2009/07/20 17:09:31 | 03,506,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\ntkrnlpa.exe
[2009/07/20 17:09:31 | 00,500,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\ndis.sys
[2009/07/20 17:09:31 | 00,308,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\winlogon.exe
[2009/07/20 17:09:30 | 00,826,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\wininet.dll
[2009/07/20 17:09:30 | 00,806,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\tcpip.sys
[2009/07/20 17:09:30 | 00,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\user32.dll
[2009/07/20 17:09:30 | 00,178,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\ws2_32.dll
[2009/07/20 17:09:30 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllcache\cache\svchost.exe
[2009/07/20 17:09:30 | 00,000,000 | ---D | C] -- C:\Windows\System32\dllcache\cache
[2009/07/20 17:01:04 | 00,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2009/07/20 14:11:48 | 00,000,000 | -HSD | C] -- C:\found.000
[2009/07/20 13:29:25 | 00,219,648 | ---- | C] () -- C:\Windows\PEV.exe
[2009/07/20 13:29:25 | 00,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[2009/07/20 13:29:25 | 00,161,792 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2009/07/20 13:29:25 | 00,136,704 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2009/07/20 13:29:25 | 00,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2009/07/20 13:29:25 | 00,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2009/07/20 13:29:25 | 00,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2009/07/20 13:29:25 | 00,031,232 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2009/07/20 13:26:19 | 00,000,000 | ---D | C] -- C:\Windows\ERDNT
[2009/07/20 13:24:30 | 00,000,000 | ---D | C] -- C:\Qoobox
[2009/07/20 13:23:26 | 03,146,921 | R--- | C] () -- C:\Users\Jonny\Desktop\ComboFix.exe
[2009/07/19 11:31:12 | 00,265,216 | ---- | C] (OldTimer Tools) -- C:\Users\Jonny\Desktop\TFC.exe
[2009/07/18 22:48:44 | 00,181,156 | ---- | C] () -- C:\Users\Jonny\Desktop\nod32removal.exe
[2009/07/18 13:33:08 | 00,000,000 | ---D | C] -- C:\Rooter$
[2009/07/18 13:21:37 | 00,173,119 | ---- | C] (Eric_71) -- C:\Users\Jonny\Desktop\Rooter.exe
[2009/07/18 13:18:04 | 00,794,408 | ---- | C] () -- C:\Users\Jonny\Desktop\pbsvc.exe
[2009/07/17 22:55:34 | 00,028,672 | ---- | C] () -- C:\Users\Jonny\Documents\bounmce.fla
[2009/07/17 22:46:02 | 00,781,909 | ---- | C] () -- C:\Users\Jonny\Desktop\RSIT.exe
[2009/07/17 22:22:00 | 07,220,240 | ---- | C] () -- C:\Users\Jonny\Desktop\xfire_installer_37966.exe
[2009/07/17 20:57:39 | 00,000,527 | ---- | C] () -- C:\Users\Jonny\Desktop\3D Rad - The Empty Space.lnk
[2009/07/17 20:57:26 | 00,087,552 | ---- | C] () -- C:\Windows\System32\trltmpct.dll
[2009/07/17 20:57:22 | 00,000,000 | ---D | C] -- C:\3D Rad
[2009/07/17 19:41:02 | 35,353,366 | ---- | C] (3DRad.com ) -- C:\Users\Jonny\Desktop\3DRadTrial_636.exe
[2009/07/17 11:39:58 | 08,694,074 | ---- | C] () -- C:\Users\Jonny\Desktop\Poker1M 2.7Patched MadHouse.ipa.zip
[2009/07/17 11:37:15 | 09,371,941 | ---- | C] () -- C:\Users\Jonny\Desktop\Sonic Insect Repeller.ipa.zip
[2009/07/16 20:14:14 | 20,099,416 | ---- | C] () -- C:\Users\Jonny\Desktop\Noise.io_Pro-v1.4.ipa.zip
[2009/07/16 20:13:06 | 02,053,821 | ---- | C] () -- C:\Users\Jonny\Desktop\T_Premium-v1.1-Fufi0.ipa.zip
[2009/07/15 19:54:55 | 00,000,000 | ---D | C] -- C:\Users\Jonny\AppData\Roaming\IGN_DLM
[2009/07/15 19:54:49 | 00,000,000 | ---D | C] -- C:\Program Files\Download Manager
[2009/07/15 13:14:06 | 00,560,582 | ---- | C] () -- C:\Users\Jonny\Desktop\FastFile_Tools.zip
[2009/07/14 17:38:09 | 00,000,000 | ---D | C] -- C:\Users\Jonny\AppData\Local\PunkBuster
[2009/07/14 17:37:46 | 00,000,000 | ---D | C] -- C:\Users\Jonny\AppData\Local\Activision
[2009/07/14 17:22:16 | 00,001,050 | ---- | C] () -- C:\Users\Jonny\Desktop\CoDWaW (2) - Shortcut.lnk
[2009/07/14 17:10:36 | 00,022,328 | ---- | C] () -- C:\Users\Jonny\AppData\Roaming\PnkBstrK.sys
[2009/07/14 16:47:08 | 00,000,000 | ---D | C] -- C:\Program Files\Activision
[2009/07/14 15:52:22 | 00,001,854 | ---- | C] () -- C:\Users\Public\Desktop\Safari.lnk
[2009/07/14 15:51:46 | 00,000,000 | ---D | C] -- C:\Program Files\Safari
[2009/07/14 13:35:38 | 00,000,000 | ---D | C] -- C:\Users\Jonny\AppData\Local\Mozilla
[2009/07/14 13:35:22 | 00,001,686 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2009/07/14 13:35:08 | 00,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2009/07/14 10:48:27 | 00,001,836 | ---- | C] () -- C:\Users\Jonny\Desktop\HijackThis.lnk
[2009/07/14 10:48:26 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2009/07/14 10:47:24 | 00,812,344 | ---- | C] (Trend Micro Inc.) -- C:\Users\Jonny\Desktop\HJTInstall.exe
[2009/07/14 10:23:20 | 32,997,7183 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2009/07/10 20:23:37 | 00,124,928 | ---- | C] () -- C:\Users\Jonny\Documents\maze.fla
[2009/07/10 20:23:32 | 00,023,040 | ---- | C] () -- C:\Users\Jonny\Documents\mazdee.fla
[2009/07/10 19:03:38 | 00,030,720 | ---- | C] () -- C:\Users\Jonny\Documents\CAR.fla
[2009/07/10 18:45:08 | 00,000,139 | ---- | C] () -- C:\Users\Jonny\Documents\minion.swf
[2009/07/08 20:09:12 | 00,000,000 | ---D | C] -- C:\ProgramData\ESET
[2009/07/08 20:06:55 | 00,000,000 | ---D | C] -- C:\Users\Jonny\Desktop\Update
[2009/07/06 22:44:23 | 37,560,64768 | -HS- | C] () -- C:\hiberfil.sys
[2009/07/04 12:48:14 | 00,000,534 | ---- | C] () -- C:\Users\Jonny\Desktop\Saved - Shortcut.lnk
[2009/07/03 19:54:30 | 00,000,443 | ---- | C] () -- C:\Users\Jonny\Desktop\Music - Shortcut.lnk
[2009/07/03 15:53:54 | 00,000,000 | ---D | C] -- C:\Users\Jonny\Desktop\Armani
[2009/07/01 17:27:32 | 00,000,000 | ---D | C] -- C:\ProgramData\AVG Security Toolbar
[2009/06/28 19:04:18 | 00,000,000 | ---D | C] -- C:\Users\Jonny\AppData\Roaming\IDM
[2009/06/28 19:04:18 | 00,000,000 | ---D | C] -- C:\Users\Jonny\AppData\Roaming\DMCache
[2009/06/28 19:04:12 | 00,000,000 | ---D | C] -- C:\Program Files\Internet Download Manager
[2009/06/28 16:35:47 | 00,000,000 | ---D | C] -- C:\Users\Jonny\Documents\Downloads
[2009/06/28 15:17:25 | 00,000,000 | ---D | C] -- C:\Program Files\PC Satellite TV
[2009/06/28 12:33:23 | 00,000,000 | ---D | C] -- C:\Users\Jonny\Desktop\Windows Doctor+Serial
[2009/06/27 22:31:06 | 00,000,884 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2009/06/27 22:31:06 | 00,000,880 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2009/06/06 14:47:37 | 00,000,606 | ---- | C] () -- C:\Windows\Uninstall Manager.INI
[2009/05/19 20:36:36 | 00,000,262 | ---- | C] () -- C:\Windows\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
[2009/05/04 16:48:39 | 00,021,840 | ---- | C] () -- C:\Windows\System32\SIntfNT.dll
[2009/05/04 16:48:39 | 00,017,212 | ---- | C] () -- C:\Windows\System32\SIntf32.dll
[2009/05/04 16:48:39 | 00,012,067 | ---- | C] () -- C:\Windows\System32\SIntf16.dll
[2009/04/29 19:01:39 | 00,000,600 | ---- | C] () -- C:\Windows\Rtcw.INI
[2009/04/26 16:45:52 | 00,223,128 | ---- | C] () -- C:\Windows\System32\drivers\vaxscsi.sys
[2009/04/26 16:40:59 | 00,717,296 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2009/04/22 00:19:06 | 00,172,173 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2008/11/21 22:47:52 | 03,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2008/11/21 22:45:16 | 00,000,416 | ---- | C] () -- C:\Windows\System32\dtu100.dll.manifest
[2008/11/21 22:45:16 | 00,000,416 | ---- | C] () -- C:\Windows\System32\dpl100.dll.manifest
[2008/11/21 22:44:16 | 00,012,288 | ---- | C] () -- C:\Windows\System32\DivXWMPExtType.dll
[2008/04/25 07:30:31 | 00,003,072 | ---- | C] () -- C:\Windows\System32\716xCoInstaller.dll
[2008/04/25 07:30:27 | 00,167,936 | ---- | C] () -- C:\Windows\System32\nvccoin.dll
[2008/04/25 07:30:26 | 00,016,480 | ---- | C] () -- C:\Windows\System32\rixdicon.dll
[2007/07/25 16:40:02 | 00,999,424 | ---- | C] () -- C:\Windows\System32\WLIHVUI.dll
[2006/11/03 17:25:56 | 00,389,120 | ---- | C] () -- C:\Windows\System32\btwhidcs.dll
[2006/11/02 13:34:23 | 00,080,010 | ---- | C] () -- C:\Windows\System32\manage-bde.ini.en
[2006/11/02 13:34:20 | 00,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 11:25:44 | 00,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2006/11/02 11:23:31 | 00,000,215 | ---- | C] () -- C:\Windows\system.ini
[2006/11/02 11:23:31 | 00,000,179 | ---- | C] () -- C:\Windows\win.ini
[2006/11/02 08:40:29 | 00,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/08/11 09:55:06 | 00,003,397 | ---- | C] () -- C:\Windows\AVerRadio.ini
[2003/12/06 03:09:46 | 00,294,912 | ---- | C] () -- C:\Windows\System32\liplW7.dll
[2003/12/06 03:09:46 | 00,290,816 | ---- | C] () -- C:\Windows\System32\liplA6.dll
[2003/12/06 03:09:46 | 00,278,528 | ---- | C] () -- C:\Windows\System32\liplPX.dll
[2003/12/06 03:09:46 | 00,278,528 | ---- | C] () -- C:\Windows\System32\liplP6.dll
[2003/12/06 03:09:46 | 00,278,528 | ---- | C] () -- C:\Windows\System32\liplM6.dll
[2003/12/06 03:09:46 | 00,020,480 | ---- | C] () -- C:\Windows\System32\lipl.dll
[2003/12/06 03:03:42 | 00,004,298 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini
[2001/11/14 12:56:00 | 01,802,240 | ---- | C] () -- C:\Windows\System32\lcppn21.dll
========== Files - Modified Within 30 Days ========== [2009/07/25 11:36:11 | 00,000,392 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{A085D112-D7D5-41D0-8160-0C2AC0A1DB84}.job
[2009/07/25 11:36:00 | 00,000,884 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2009/07/25 11:35:57 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Jonny\Desktop\OTL.exe
[2009/07/25 11:32:25 | 00,060,544 | ---- | M] () -- C:\Users\Jonny\AppData\Local\GDIPFONTCACHEV1.DAT
[2009/07/25 11:31:40 | 00,027,335 | ---- | M] () -- C:\Users\Jonny\AppData\Roaming\nvModes.001
[2009/07/25 11:31:09 | 00,000,880 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2009/07/25 11:16:39 | 39,249,378 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm
[2009/07/25 11:16:39 | 00,041,281 | ---- | M] () -- C:\Windows\System32\drivers\Avg\microavi.avg
[2009/07/25 11:14:21 | 00,003,456 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009/07/25 11:14:21 | 00,003,456 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009/07/25 11:14:17 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009/07/25 11:14:14 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009/07/25 11:13:28 | 37,560,64768 | -HS- | M] () -- C:\hiberfil.sys
[2009/07/25 10:49:54 | 02,196,344 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/07/24 23:07:37 | 00,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2009/07/24 23:06:56 | 03,034,084 | -H-- | M] () -- C:\Users\Jonny\AppData\Local\IconCache.db
[2009/07/24 21:24:53 | 57,344,000 | ---- | M] () -- C:\Windows\ocsetup_install_NetFx3.etl
[2009/07/24 21:24:53 | 00,196,608 | ---- | M] () -- C:\Windows\ocsetup_cbs_install_NetFx3.perf
[2009/07/24 21:24:53 | 00,065,536 | ---- | M] () -- C:\Windows\ocsetup_cbs_install_NetFx3.dpx
[2009/07/24 18:46:27 | 39,178,6451 | ---- | M] () -- C:\Users\Jonny\Desktop\I Now Pronounce You Chuck And Larry.MP4
[2009/07/24 18:40:08 | 36,090,3258 | ---- | M] () -- C:\Users\Jonny\Desktop\Bedtime Stories.mp4
[2009/07/24 18:25:59 | 22,576,8758 | ---- | M] () -- C:\Users\Jonny\Desktop\Reign Over Me.MP4
[2009/07/24 11:15:22 | 00,335,752 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgldx86.sys
[2009/07/23 21:43:37 | 15,041,704 | ---- | M] (Doctor Web, Ltd.) -- C:\Users\Jonny\Desktop\drweb-cureit.exe
[2009/07/21 11:06:29 | 00,000,695 | ---- | M] () -- C:\Users\Jonny\Desktop\NTREGOPT.lnk
[2009/07/21 11:06:29 | 00,000,676 | ---- | M] () -- C:\Users\Jonny\Desktop\ERUNT.lnk
[2009/07/21 10:56:07 | 00,407,552 | ---- | M] (OldTimer Tools) -- C:\Users\Jonny\Desktop\OTM.exe
[2009/07/21 10:55:52 | 00,791,393 | ---- | M] (Lars Hederer ) -- C:\Users\Jonny\Desktop\erunt-setup.exe
[2009/07/21 10:55:34 | 00,359,656 | ---- | M] (Microsoft Corporation) -- C:\Users\Jonny\Desktop\msicuu2.exe
[2009/07/21 03:01:04 | 00,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_NuidFltr_01005.Wdf
[2009/07/20 22:43:37 | 00,000,780 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/07/20 22:43:05 | 03,775,176 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Jonny\Desktop\mbam-setup.exe
[2009/07/20 22:27:16 | 00,046,157 | ---- | M] (jpshortstuff) -- C:\Users\Jonny\Desktop\GooredFix.exe
[2009/07/20 17:01:17 | 00,000,215 | ---- | M] () -- C:\Windows\system.ini
[2009/07/20 17:01:01 | 00,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2009/07/20 13:23:44 | 03,146,921 | R--- | M] () -- C:\Users\Jonny\Desktop\ComboFix.exe
[2009/07/19 11:31:17 | 00,265,216 | ---- | M] (OldTimer Tools) -- C:\Users\Jonny\Desktop\TFC.exe
[2009/07/18 22:56:38 | 00,027,335 | ---- | M] () -- C:\Users\Jonny\AppData\Roaming\nvModes.dat
[2009/07/18 22:48:49 | 00,181,156 | ---- | M] () -- C:\Users\Jonny\Desktop\nod32removal.exe
[2009/07/18 17:07:48 | 10,214,94137 | ---- | M] (Activision ) -- C:\Users\Jonny\Desktop\CoDWaW-1.4-1.5-PatchSetup.exe
[2009/07/18 13:21:44 | 00,173,119 | ---- | M] (Eric_71) -- C:\Users\Jonny\Desktop\Rooter.exe
[2009/07/18 13:18:20 | 00,794,408 | ---- | M] () -- C:\Users\Jonny\Desktop\pbsvc.exe
[2009/07/17 22:55:36 | 00,124,928 | ---- | M] () -- C:\Users\Jonny\Documents\maze.fla
[2009/07/17 22:55:34 | 00,028,672 | ---- | M] () -- C:\Users\Jonny\Documents\bounmce.fla
[2009/07/17 22:46:17 | 00,781,909 | ---- | M] () -- C:\Users\Jonny\Desktop\RSIT.exe
[2009/07/17 22:36:32 | 00,000,606 | ---- | M] () -- C:\Windows\Uninstall Manager.INI
[2009/07/17 22:22:34 | 07,220,240 | ---- | M] () -- C:\Users\Jonny\Desktop\xfire_installer_37966.exe
[2009/07/17 21:37:50 | 00,001,933 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2009/07/17 20:57:39 | 00,000,527 | ---- | M] () -- C:\Users\Jonny\Desktop\3D Rad - The Empty Space.lnk
[2009/07/17 19:41:22 | 35,353,366 | ---- | M] (3DRad.com ) -- C:\Users\Jonny\Desktop\3DRadTrial_636.exe
[2009/07/17 11:40:36 | 08,694,074 | ---- | M] () -- C:\Users\Jonny\Desktop\Poker1M 2.7Patched MadHouse.ipa.zip
[2009/07/17 11:37:18 | 09,371,941 | ---- | M] () -- C:\Users\Jonny\Desktop\Sonic Insect Repeller.ipa.zip
[2009/07/17 11:34:35 | 00,000,541 | ---- | M] () -- C:\Users\Jonny\Documents\My Sharing Folders.lnk
[2009/07/16 20:16:48 | 20,099,416 | ---- | M] () -- C:\Users\Jonny\Desktop\Noise.io_Pro-v1.4.ipa.zip
[2009/07/16 20:13:23 | 02,053,821 | ---- | M] () -- C:\Users\Jonny\Desktop\T_Premium-v1.1-Fufi0.ipa.zip
[2009/07/15 13:14:11 | 00,560,582 | ---- | M] () -- C:\Users\Jonny\Desktop\FastFile_Tools.zip
[2009/07/14 17:22:16 | 00,001,050 | ---- | M] () -- C:\Users\Jonny\Desktop\CoDWaW (2) - Shortcut.lnk
[2009/07/14 17:10:36 | 00,022,328 | ---- | M] () -- C:\Users\Jonny\AppData\Roaming\PnkBstrK.sys
[2009/07/14 15:52:22 | 00,001,854 | ---- | M] () -- C:\Users\Public\Desktop\Safari.lnk
[2009/07/14 15:45:05 | 32,997,7183 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2009/07/14 13:38:19 | 00,743,222 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009/07/14 13:38:19 | 00,641,172 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009/07/14 13:38:19 | 00,116,210 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009/07/14 13:35:22 | 00,001,686 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2009/07/14 10:48:27 | 00,001,836 | ---- | M] () -- C:\Users\Jonny\Desktop\HijackThis.lnk
[2009/07/14 10:47:29 | 00,812,344 | ---- | M] (Trend Micro Inc.) -- C:\Users\Jonny\Desktop\HJTInstall.exe
[2009/07/13 13:36:34 | 00,038,160 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2009/07/13 13:36:12 | 00,019,096 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2009/07/13 05:48:54 | 00,219,648 | ---- | M] () -- C:\Windows\PEV.exe
[2009/07/11 22:53:24 | 00,000,879 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickSet.lnk
[2009/07/10 20:23:32 | 00,023,040 | ---- | M] () -- C:\Users\Jonny\Documents\mazdee.fla
[2009/07/10 19:03:38 | 00,030,720 | ---- | M] () -- C:\Users\Jonny\Documents\CAR.fla
[2009/07/10 18:47:55 | 00,000,139 | ---- | M] () -- C:\Users\Jonny\Documents\minion.swf
[2009/07/07 08:10:58 | 24,539,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mrt.exe
[2009/07/04 12:48:14 | 00,000,534 | ---- | M] () -- C:\Users\Jonny\Desktop\Saved - Shortcut.lnk
[2009/07/03 19:54:30 | 00,000,443 | ---- | M] () -- C:\Users\Jonny\Desktop\Music - Shortcut.lnk
[2009/07/03 19:52:37 | 00,000,600 | ---- | M] () -- C:\Users\Jonny\AppData\Roaming\winscp.rnd
[2009/07/01 19:54:31 | 00,000,680 | ---- | M] () -- C:\Users\Jonny\AppData\Local\d3d9caps.dat
[2009/07/01 17:26:48 | 00,027,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgmfx86.sys
[2009/07/01 17:26:48 | 00,011,952 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\avgrsstx.dll
[2009/06/29 18:45:22 | 00,463,779 | ---- | M] () -- C:\Windows\System32\drivers\Avg\miniavi.avg
[2009/06/27 20:52:38 | 00,001,090 | ---- | M] () -- C:\Users\Jonny\Desktop\Devil May Cry4 [DX10].lnk
========== Alternate Data Streams ========== @Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:DFC5A2B2
< End of report >